I am running a VPN (Juniper Networks client) and an ifconfig shows me that its opening a tunnel and also adding routing instructions (I think). Anyway the problem is that when I'm connected to the VPN, I lose route to all my local machines and this is getting annoying when I want to use ssh.Does anyone know how to not route a certain range of IP's through the VPN?
View 4 RepliesI have 3 network interfaces on my Linux Router :
Interface - Gateway - Type
Code:
br0 - 192.168.0.1 - Internet
eth2 - 192.168.1.1 - LAN
tun0 - 10.0.0.2 - VPN (via br0)
What I'd like to do is to route all TCP packets coming from eth2 to tun0 where a VPN client is running on 10.0.0.2. If I delete all default routes and if I add a new route to tun0 like :
Code:
route del default
route add default gw 10.0.0.2
Everything is fine, and everyone on eth2 can reach the Internet using the VPN access. Now the problem is that my VPN client does not allow any other protocols other than TCP. And I also want to allow VPN access only to eth2, no other LAN nor the router itself. use iptables to filter any TCP packets and mark them, so they can be sent to tun0, while any other packets can reach the Internet via br0 (192.168.0.1). I found on the Internet that we can mark packets before they get routed. Using the following commands :
Code:
iptables -t mangle -A PREROUTING -j MARK --set-mark 85 -i eth2 -p tcp --dport 80
ip route add table 300 default via 10.0.0.2 dev tun0
ip rule add fwmark 0x55 table 300
First of all, --dport 80 never work... :/ I wanted to filter TCP 80 packets coming from eth2, but none of them seems to be HTTP packets... oO (very strange...). Nevermind, I decided to forget about the --dport option. I use the "iptables -L -v -t mangle" command to see how many packets are marked, and it is working fine, all TCP packets coming from eth2 are marked. Now the problem is that none of them are routed to tun0 they are all respecting the "route -n" rules... and not the "table 300" rule I have created.
get me understand the short range and the long range links from routing (and routing protocols') point of view.
View 6 Replies View RelatedI want to plot a set of data in only one plot.The problem is that some points of the data should be better plotted in a linear scale (lets say 0 to 100,000) but there are other data points that, exceding the value 100,000, would be better plotted in a logarithmic scale, as they goes in the range 100,000 to 500,000,000. Let's say the data is:
Code:
X Y
0 100
10000 80
20000 75
[code]....
Is there a way to plot all these points in the same plot in only one X-axis showing two different ranges in that axis: linear: 0-100,000 logarithmic: 100,000 - 1,000,000,000?The axis would be read, for example, as:
Code:
|-----|-----|-----|-----|-----|-----|-----|-----|-----|
0 20k 40k 60k 80k 100k 1M 10M 100M 1G
(The abbreviations k-M-G are not the important point. Just shown for clarity)
I would like to add a static route, however I do not understand what is meant by the Address setting below
GATEWAY2=10.241.58.62
NETMASK2=255.255.255.224
ADDRESS2=10.241.57.32
Does this mean any addresses beginning with 10.241.57.32 are routed over the gateway 10.241.58.62 an address range
I want to build a bash script, which can ping a range IP adresses which will be filled in by the admin. If there is no IP-adress filled in, then the script must ping the subnet where the system is logged on. So if my ip is 192.168.1.6, then the script must ping from 192.168.1.1 till 192.168.1.255 Or else, if there is given a beginning and ending ip it must ping that!
The first part of the bash script is to ping a given range (see below). But there is one problem, how can I tell the script to ping from $begin till $end, [..] is of course wrong! But what must be filled in there???
echo "Enter beginning IP-adres:"
read begin
echo "Enter ending IP-adres:"
read end
ping -c 1 $begin [..] $end
The second part is to find my own ip and ping the whole range.. How to do that? I only can find my own IP, but I cant ping the whole range,, how to do that?
#!/bin/bash
ifconfig | grep 'inet addr:' | grep -v '127.0.0.1' |
cut -d: -f2 | awk '{ print $1 }'
I got this definition:"a process that replaces a series of related, specific routes in a route table with a more generic route." honestly I found it not so clear.. I want to know if this definition is correct and also more details about this subject..
View 1 Replies View RelatedHaving trouble getting my Netgear WNA1000 working thru wireless router. Have tried lots of suggestions from other threads to no avail. Someone suggested that th routing table isn't set correctly, so have been trying to use the follwing to make the proper entry in the routing table: sudo route add -net 192.168.0.1 netmask 255.255.255.0 dev wlan0
Result: error message stating with:
"route: netmask does not match route address"
followed by "Usage" instructions which tell me to do what I just did. Any ideas on how I can populate my routing table with correct entry for my wireless card? Not to complicate matters, but I temporarily turned off encryption on my router to eliminate that as a possibility until I get connected. So maybe it'still trying to connect via encrypted mode - do I need to turn off encryption on my (client) end?
I have been trying unsuccessfully to load Debian on my desktop. I have tried both live and otherwise. Both AMD64 and i386. It seems to be loading fine and then all of a sudden the monitor quits with a sign Input signal out of range. I have tried lots of other live disks and they have worked fine. My monitor is a Hanns G and my video card is NVIDIA GeForce8200. All other stuff very normal. 4 Gigs of RAM. What?
View 4 Replies View Relatedi just did a graphic install of debian lenny and when i finished the installation and restarted the computer the grub boot menu appeared and i selected debian and nothing happened the monitor just displayed a message saying "out of range" i have a dell studio xps 1800is it my graphics card (it shouldn't be) how do i start x server in a different resolution (if screen resolution is the problem
View 9 Replies View RelatedHow would one block an IP range access to a Debian-based Linux system for say 47.1.1.1. - 48.255.255.255? Would it be with the hosts.deny file? If so, how would it be written in the file? Also, would the system require being restarted for the changes to take effect, after writing to the file?
View 14 Replies View RelatedMy last Linux install was SUSE 6 on an early ISA based Pentium clone. I'm used to Unix / bash from OS X, MinGW, QNX & BeOS... none of these rely heavily on X. But I'm thinking that Linux is so popular, I'm doing a lot of my Windows stuff under MinGW, why not just stick Linux on and be done with it.So I've polled the various distros, I'm a power-user / dev so Ubuntu doesn't seem like me, and I'm not familiar enough with Linux to go Gentoo just yet, but the way I slim Windows and OS X installs down to just what I need. I love apt-get and like FreeBSD installs I've seen, but want some Linux kernel goodness for my self, so I have chosen Debian.
I grabbed the amd64 build of lenny DVD 1, partitioned up and installed a bare system that I can apt-get the bits I want later.Here's the problem... When the install completes rebooting sends the graphical login to a frequency my old Hanns-G TFT can't handle.I can Ctrl-Alt-F1 back to the terminal or boot in single user mode, and everything seems to be good until you go GUI.Here's what I've tried.
I've renamed /etc/X11/xorg.conf to /etc/X11/xorg.conf.oldI ran dpkg-reconfigure xserver-xorgI've reinstalled using both simple GUI and Expert GUI using both kernelsI've tried adding nvidia-* packages with apt-get and aptitudeI remember there used to be a frequency tuner app for SUSE 6 and XFree86, but it seems that sort of thing is depreciated in modern Linux.Info? My GFX card is an nvidia GT 220, the motherboard is an ASUS P5QL Pro, the Monitor (Hanns-G) is attached via RGB HD-15 D-Sub (sadly that's all I have access to right now) and it's native resolution is 1280x1024 4:3 @ 60Hz, but in heXPee it will sync at that resolution at 60, 70, 72 or 75Hz, though it does get fuzzy at 75Hz.I'm fairly certain that X is working, just not at a frequency my screen can display... how can I fix this from single user, or regular bash terminal?
---edit--- Forgot to mention I ran dpkg-reconfigure on the XServer. :s It didn't offer video drivers, only to change from gb 105 keyboard layout and ps/2 mouse. I set the META key to the logo key while I was there, but it wasn't really helpful in any other way.
After a fresh install of debian 5.05 over net it boots then at end of text lcd screen shows out of range. if start in single user then startx it goes out oif range. How can i set it to a range monitor can do?
View 4 Replies View RelatedI have up until now been able to use the add-apt-repository command without issue but right now it keeps returning an IndexError.
The error is below:
Code:
Select allx@y:~$ sudo add-apt-repository ppa:/kilian/f.lux
Traceback (most recent call last):
File "/usr/bin/add-apt-repository", line 122, in <module>
shortcut = shortcut_handler(line)
[Code] ....
IndexError: string index out of range
I have tried using the command with an empty ppa (just sudo add-apt-repository ppa:) but that comes with the same error. Googling the issue only brought up some bugreports of a month back, and I've used the command with success a few days ago.
I am trying to get audio to play in tv/monitor via HDMI cable. It seems ALSA does not recognize my nVidia audio device and can only use the onboard audio device. Here's some relevant info I have collected:
[Code]...
I am running an AMD Athlon 64 with an NVIDIA 6600 video built into the motherboard (PC Chips). My monitor is a 19" LCD with a standard VGA connector. I tried installing Lenny and everything went smoothly. However, when I rebooted, the monitor said "Signal out of range." I had this happen with a live CD of another distro too.
View 1 Replies View RelatedYesterday I installed a RaLink RT2800 802.11n PCI on my squeeze system. Now I have a connection to Internet but I can not connect other systems in my home network. An ssh-try to a system in my home network results in: ssh: connect to host xxx.xxx.xxx.xxx port 22: No route to host If I use my eth0, I do not have connection to Internet, but I can connect other systems in my home network.
View 7 Replies View RelatedI would like to update my network setup.
Today, I have an ADSL box which is my gateway to internet (192.168.0.1).
I have a Raspberry pi (RPI) which I use as a dhcp & dns server (192.168.0.2).
Recently my mobile phone operator installed a 4G antenna beside my home, and the bandwidth and latency are much better with my mobile phone than with my internet provider (ADSL).
I would like to install a wifi dongle on my RPI (I would get wlan0 & eth0 interfaces)
When RPI detect my shared phone connection (tethering) I would like RPI to automatically route internet:
- from authorized devices on my network to my mobile connexion (wlan0 -> mobile phone).
- from other devices to the standard ADSL internet (eth0 -> ADSL box).
I don't want any device to use the shared 4G connexion, best would be authorized devices to be selected by MAC address. How I should properly setup such a network ?
I am in serious situation involving PPTP protocol VPN in Debian 8 Jessie stable. I recently became a paid VPN subscriber. Using PPTP; Is there a way to automatically route all traffic through ppp0? Im getting the vpn service killed (ip address goes back to normal unmasked state) whenever there is a power outage (modem reset) and there are alot of those where I live, Im going to get astabilizer and I need a software solution for the situation as well. Theres gotta be a way to route all traffic through the VPN route ppp0 . I tried adding persist and maxfail 0 to the pptp config file but it did not do what i wanted.
Here's my peer configuration file :
pty "pptp blabla.net --nolaunchpppd"
name blablabla
password blablabla
remotename PPTP
file /etc/ppp/options.pptp
require-mppe-128
refuse-eap noauth
persist
maxfail 0
On a second note, its clear to add that I basically need a way to also auto load the line
pppd call blabla.net
and
route add default dev ppp0
On system startup by default so the computer does not use "Wired" connection ^at all^ when not through ppp0. Any other way of not losing VPN anonymity ever due to hardware malfunction.
Is there a way to do this? Ive looked on the net and everything seems like its either from the nineties or can fry my pc , Im no debian expert, less than a year at linux..
Need it to use wired only if ppp0 is being used so if its no vpn, no connection at all period,
I am currently running Debian 6. I would like to know if there is a way and how i would go about blocking a certain IP range from connecting to my server within a certain port range. Say for example.
i want to block ip range 123.123.123.* from connecting to my server on the ports 33000 - 43000. But, i want to allow them to connect on any other port range, and i want to be able to allow connections from my server to the blocked ip range on those same ports. so, blocking incoming only on the above port range.
using iptables.
Got a new HP Mini 210 the other day and things run pretty good using squeeze considering how new it is. The only serious problem is that the available scaling frequencies are mis-reported by the system. Instead of 800, 1.0, 1.3 and 1.6, only 1.0 and up are shown.
acpi-cpufreq is installed and run properly on boot, indeed the system scales nicely from 1.0 through max as needed / dicatated by the ondemand governor. Powertop tells me it spends 99.8% of its time at the "lowest" frequency of 1.0.
In the hopes that a newer kernel would solve things I downloaded 2.6.34-1 and built it, and though it runs very nicely it doesn't solve the problem of the missing 800Mhz frequency. At this point I'm at a bit of loss as to how to proceed. I've asked the same question on the Debian mailing list, because I want to give this the good old college try before submitting a bug report to the kernel mailing list.
Last Thursday, 3/11, I installed a new mother board (ASUS M4A785TD-V EVO), AMD Athlon II X4 Processor, 4Gig DDR3 ram (RIP JAWS), 1 SATA DVD drive, along with my 2 IDE HDD's. The display was OK during BIOS review, and boot UNTIL it came to mounting x-graphics, at which point the screen went black, and a display message came up saying Out-of-RangeHf: 30KHz-70KHzVf: 50Hz-90HzCurrent Frequency:90.3KHz, 60.0Hz.
Does anyone know what is causing this? I mean, is there no way that Deb 5 X86 is going to run on a quad 64-bit system, or can something else be wrong? Before changing hardware, I had seen indications that this system was backward-compatible to older systems, and the more in depth study I've done since seems to verify this.y be, however, that I completely mis-understand what I am reading - this is all pretty new to me.
I tried booting into Debian 4, Libranet 3, and Linspire 6. They all complained loudly, but differently, about x being inoperable. I can't tell you how they complained because I can't go back and check them. THAT is because, in BIOS, I was testing the system with all the different options for "Internal Graphics", to see if one would work. One of these options was "Disabled". Oh-ho-ho! BAD MOVE!!! it's disabled, all right, including BIOS! I can't believe it. There was no warning, whatsoever. I assumed no engineer in his right mind would allow that option to lock out the BIOS without SOME kind of warning. I'm going to try to call ASUS tech support tomorrow to see if they have a solution, but if anyone knows how to reverse this, please let me know. I suppose the only answer is a separate graphics board. But I don't want to get that if I can't use this MotherBd.-processor setup.
I certainly do not consider myself a Debian power-user, but I do presently have 3 Lenny systems and 1 Squeeze system running fine in my home on "older" hardware. However, for the past week I have been trying to get yet another system running, and I have hit the wall. This is on a new home-built system with an AMD Athlon II X4 and an ASUS M4A785-M motherboard. The Lenny installation was done with a net install of the AMD64 variety.
I always get a "Monitor frequency out of range" error whenever I boot. I can do a CTRL ALT F1 to get to command line, but I have no success getting to GUI. I have read numerous posts of similar monitor frequency problems with various distros, and most point toward HorizSync, VertRefresh, etc settings in xorg.conf. I have played with a myriad of options there, but I still get the "frequency out of range" error after a reboot. I have swapped monitors to no avail (monitors that work on my other Debian 32-bit systems). I really don't think the problem can be the xorg.conf file, since I have tried the exact same file as on the other machines. (Also, those systems seem to be more than happy without custom HorizSync and VertRefresh options in their xorg.conf files.)
On this new computer, I am using the motherboard's integrated video output (theoretically a ATI Radeon HD5200).I don't know if special options are needed in xorg.conf for this???I am able to successfully boot to GUI with multiple differentCD Linux distros; however, no such luck with the Debian installation. I would prefer to stay with Debian if possible, but I cannot live by command line alone on this system.Please let me know if there is something else that I should try before punting and moving to another 64-bit distro.
Installed Debian OK in Windows XP Computer.After boot in Debian, the screen goes black and reports "Out of range"
View 1 Replies View RelatedI am using my wifes comp to post thisI just installed debian but now when i boot up i get a black screen and a message from my monitor saying: input out of rangechange settings to 1280x1024 60hzas i boot up i can get into my root and get adebian~#:what code/command do i need to change the settings
View 5 Replies View RelatedI am having troubles with my old school monitor though.Upon boot up I can press CTRL+ALT+F1 to see a text only screen, but CTRL+ALT+F7uses my monitor to say "frequency out of range". I googled and found that I can press CTRL+ALT+"+" to change the X.org resolution. If I do this about five times I finally see a screen. However, the resolution must be too high because in order to see other parts of the screen I have to "scroll" with the mouse off the edges of the screen. Furthermore, if I go to System->Preferences->Screen Resolution, Resolution and Refresh rate are blank
View 5 Replies View RelatedI have a server in the office and when I need to connect via cable I have to start up a root terminal and type in:
route add -net 0.0.0.0 gw 10.0.1.10 dev eth0
Is there a way to have this saved so I don't have to re-type it every time ? I already tried adding the command in /etc/rc.local and also in /etc/network/interfaces but it doesn't.
On a Red Hat Enterprise Linux Server release 5.4 (Tikanga) system, I set up a static route that unfortunately seems to get ignored.I set up the static route in the file /etc/sysconfig/network-scripts/route-eth0 as follows: 172.16.96.2/32 via 192.168.219.251
I've restarted the network service and also rebooted a few times. Here's my current routing table:
[Code]....
I am able to ping 172.16.96.2. However, when I do traceroute 172.16.96.2, it appears that the traffic goes through the default gateway 192.168.219.250 instead of our requested specific gateway 192.168.219.251:
[Code]....
I can ping both 192.168.219.251 and 192.168.219.250. In the route-eth0 file, I�ve also tried using the alternate syntax with ADDRESS0=<IP address> etc, but it didn�t work any better. I also tried setting a more general route of
172.16.96.0/24 via 192.168.219.251
The System / Administration / Network tool previously showed a spurious extra NIC called eth0.bak in addition to eth0. I deleted the eth0.bak and rebooted, but this also didn't help. Currently, eth0 is the only NIC on the system.
I would like to put my webcam up and upstream to 'ustream' to show my ponies playing. The distance between my computer and the stable is about a 100 feet. Is there enough power to push the signal that far or do I need to put a booster along the route.
View 9 Replies View RelatedI've succesfullly connected to my vpn with kvpnc, but none of my traffic is going through the vpn! I dont know how to route traffic to the vpn. for instance, when I go to whatsmyip.com it still has my previous ip.
View 1 Replies View Related