Fedora :: No Routing Of Packages In F12 And F13
Jun 18, 2010
I have a fedora 13 with two Internet links, but I'm having problems in configuring them. In the past 11 fedora works fine, on Redhat, Centos, only fedora 13 and 12 is not working the same configuration posted below:
# File rc.local
ip route add 200.20.150.192 dev eth0 src 200.20.150.194 table 1
ip route add default via 200.20.150.193 table 1
ip route add 192.168.2.0 dev eth3 src 192.168.2.2 table 2
ip route add default via 192.168.2.254 table 2
ip route add 200.20.150.192 dev eth0 src 200.20.150.194
ip route add 192.168.2.0 dev eth3 src 192.168.2.2
ip rule add from 200.20.150.194 table 1
ip rule add from 192.168.2.2 table 2
ip rule add fwmark 1 lookup 1
ip rule add fwmark 2 lookup 2
ip route flush cached
# The route default is to link 1 ( 200.20.150.193 )
# Some configuration basic tested and not work with iptables
iptables -t mangle -A PREROUTING -i eth3 -s 192.168.0.0/24 -j MARK --set-mark 2
iptables -t nat -A POSTROUTING -o eth0
iptables -t nat -A POSTROUTING -o eth1
My iptables do the identification mark of the packets, but some things happen that it could not do the routing of packages in Fedora 13 and 12, I don't really know what can be, I tried everything I knew.
View 3 Replies
ADVERTISEMENT
Apr 6, 2010
I have a firewall, this consists of three NIC's:
Code: eth0[192.168.0.2] eth1[192.168.1.2] and eth2[10.10.165.2]
I am trying to ping eth0 from eth2, but I am not able to succesfully get a response from pinging the device, I am using:
Code: ping 192.168.0.2 -I eth2
I have tried to insert routing data into the routing table, but it still doesn't work
View 2 Replies
View Related
Feb 22, 2010
On Fedora repo I found VirtualBox-ose packages there. What will be the difference in operation/function between their packages and the packages download on virtualbox.org website?
View 5 Replies
View Related
Nov 17, 2010
I recently upgraded from F13 to F14 using "preupgrade". This is the first time I've used preupgrade. So far, F14 is running OK. There are some leftovers from F13 and I'm wondering if this is correct.
Q1: There are 176 F13 packages remaining. [alfrugal@localhost Documents]$ rpm -qa | grep fc13 | wc -l 176 Is this OK? FWIW, after the upgrade, I ran "package-cleanup --orphans" as recommended by the "preupgrade" page on the Fedora Project wiki.
Q2: Also, my GRUB menu was correctly updated for F14, but it still contains the three entries it had for F13. Is it normal for the preupgrade process to require the user to clean up the obsolete entries from the GRUB menu?
View 2 Replies
View Related
Mar 31, 2011
im using fedora 14 and i have a slow internet connection. i want 2 install some packages from the fedora 14 dvd instead of downloading from internet using add/remove packages. i tried to edit /etc/yum.repos.d/fedora.repo and /etc/yum.repos.d/fedora-updates.repo but it dint work.
View 2 Replies
View Related
Mar 3, 2009
I want to use tab networking in my kvm with routing.Can any one guide me how i can do it. i have been reading different guides over the net but not understand any one clearly.I have read this[URL].. One problem is this all my server are remote and no gui is running.I am able to install kvm with ssh console with -nographic and -x "console=ttyS0" option now i want to change from bridging to tap networking with routing.And i have live ip on kvm guest/Virtual machine.
View 1 Replies
View Related
Feb 20, 2010
IN LAN default GW box I have a routing rule of 172.17.1.0 192.168.180.100 255.255.255.0 UG 0 0 0 eth3 that sends packets matching 172.17.1.0/24 to eth3 etc. When I ping 172.17.1.50 - it goes correctly when ping is issued in the same box (LAN GW) - falls through to default rule when the ping is done in LAN's boxes i.e. it goes to the LAN GW box and then to Internet incorrectly instead of going to eth3 and 192.168.180.100.
Is there any way of seeing why the packet matches or not the routing rules?
View 14 Replies
View Related
Aug 6, 2010
given above is my network structurei want to enable routing in my machine(192.168.1.5,192.168.2.1)i have already configured /etc/sysctl.confand disabled firewall in my machine i can ping 192.168.2.3,192.168.2.4and in return these two machines can ping 192.168.2.1 but they could not ping 192.168.1.6 and 192.168.1.7
View 1 Replies
View Related
Dec 13, 2010
I just started my Linux class the other day. We are having to use Fedora 12 it came with our book. For homework we were told to join a forum and ask 3 questions. I myself really didn't like this Idea because I would rather do some digging to find the answer but I do need the grade for the homework haha. My First question is, How do you set up routing from wireless to wired?
View 4 Replies
View Related
Nov 29, 2010
I have a Pc that has 2 Ethernet and I have also 2 switch. I want the PC to become the router and be connected to 2 switch.How can I setup this one on FEDORA and I want to assigned for eth0 192.168.26.51 and eth1 192.168.22.51 for the IP.
View 1 Replies
View Related
Feb 4, 2009
So my server running FC4 died last night and I decided to go ahead with the long-awaited upgrade to FC10 while I was rebuilding my server. I use my server for a number of things including, but not limited to: router, firewall, web server, mail server... I have a typical configuration process that I have followed since before fedora, and it has worked well for me up through FC4, but my usual config process doesn't work on FC10.
First of all, I don't want SELinux running, I didn't see an option to not install it during the FC10 setup, so how to I properly disable or uninstall it afterwards? Second, I was unable to even configure the server to route traffic from my internal network to the web, here's the process I usually go through for this:
[Code]...
I don't have a static IP from my ISP, so I'm not quite sure how to add the default route. I think I need to do something like "route add default gw xxx.xxx.xxx.xxx eth1" where eth1 is my external NIC, correct?
What else do I need to do to route traffic? I noticed that I wasn't even able to ping my server from the internal network even though they are on the same subnet, my server's internal NIC has an address of 192.168.7.1 and my computer on the network has an address of 192.168.7.2. If I can get this going to I have internet access again at the very least, I can move forward with the web server, email, etc.
View 8 Replies
View Related
Apr 14, 2009
I have just installed Fedora 10 on an old laptop and was quite impressed with how smoothly it all went ... until it came to setting up networking!
I have battled for three days now and I'm almost there;
- installed updated firmware to the built in Broadcom 4306 wireless network adapter
- got NetworkManager to work with a static ip address by manually editing the ifcfg-wlan0 file
- managed to get the WPA security to work
The only problem I am left with is that there is no default route; if I set one up using: ip r a default via 10.1.1.1 dev wlan0
Then everything starts working.
If I try to add routes using the NetworkManager gui interface they dont get saved (no suprises there then! ).
I have tried creating a route-wlan0 file in /etc/sysconfig/network-scripts/ but this seems to be ignored by NetworkManager.
Since the NetworkManager GUI is almost useless, does anyone know if there are any other configuration files I can manually modify to get a default route set?
View 6 Replies
View Related
May 24, 2009
On a Fedora 11 machine, I configured ppp0 on eth0 and ppp1 on eth1, each one is connected to a modem, I also defined ppp0 as the default gateway.. Should I do anything else to load balance the 2 connections or will ppp1 take some of the load by default? Should I add any other routing rules? If yes then please tell me what should I add, keeping in mind that for each pppoe connection both the pppoe address and the remote address are not static so I actually needed some scripting to change the default gateway each time the remote pppoe address changes.
View 4 Replies
View Related
Sep 1, 2009
Background: Took a while to get this working correctly, so figured I'd save you all some time... I (finally) received the beta invite from iPredator. I wasn't happy with the NetworkManager-pptp implementation, I'm running the stock kernel, I stopped the NetworkManager service at this point.
Goals:
1. To be able to control the PPTP tunnel from a remote location over ssh
2. To have services I run from my box accessible via my public IP on the internet (sshd, httpd etc) whilst the tunnel is up
3. To route all Torrent traffic from Vuze out of the encrypted PPTP tunnel, and have it return over that interface
4. To route all other traffic, by default, to my ISP unencrypted
5. To block all Vuze traffic if the tunnel is down
Method:1. PPP config
First, I entered my login details (altered in the below output, of course!!) into chap-secrets and then used "chmod 600 chap-secrets" to make it read/write for root only:
Next, I created a peer file (644 permissions) for the VPN connection, the file name has to match the "iPred" I used above:
I stuck with the defaults in /etc/ppp/options.pptp
To initiate the tunnel, I use: pppd call iPred mtu 1435 mru 1435 persist nolog
Regarding the options used... I'll get onto the MTU/MRU later, persist has the tunnel attempt to reconnect 10 times if it drops, nolog reduces the high volume of syslog messages. The logs for the connection process are written to /var/log/messages, interface ppp0 was created and routing entries were set up (internal network stuff has been cut out below; we'll call 192.168.100.104 my WAN IP, though I've got a static internet-routable IP and wanted to mask it here). The (dynamic) endpoint of the tunnel is 93.182.164.2: you need two routes to this, one via eth0 (my WAN interface) for internet routing of the encrypted packets, and one through the tunnel itself to tunnel and encrypt the traffic:
References:[url] [url]
2. Firewall Setup
I'm a "belt-and-braces" kinda guy ("belt-and-suspenders" if you're from the US), and I've got a custom firewall setup. As I've brought a new interface into the equation, I needed to add some rules.
In order, the rules:
A. NAT the outgoing packets to the ppp0 interface IP
B. Allow established sessions back in
C. Allow the default ports for Vuze through, even if unsolicited, on port 63255 (TCP and UDP)
D. Drop traffic that originates from Vuze (identified by the IP of interface lo:0, which we'll see later) if it tries to exit via eth0 (useful if the tunnel drops or hasn't yet been started)
You can view the rules in place by issuing: iptables -nL
References:man iptables [url]
3. Routing Setup
Obviously, I didn't know who the Vuze peers are going to be and setting a default route via ppp0 means that all traffic would be encrypted. Instead, I created a new, distinct, routing table called IPRED in iproute.
Then I added a default route, via ppp0, into the IPRED routing table and checked that it was there:
The main (default) routing table is still there and has it's routes:
4. Traffic Identification
I tried setting the DSCP (ToS) in Vuze, but that didn't make it into the packets (checking the output packets with Wireshark). So, I created a new Loopback interface lo:0 on my box (later I entered this line into /etc/rc.local so it'll survive a reboot):
I then added a rule to pass traffic from this new lo:0 IP to the IPRED table:
There are a number of other ways to pick out traffic with "ip rule", but this seemed the most elegant solution in this situation.
5. Vuze Config
I looked down the list for the local IP addresses, then bound Vuze to the lo:0 interface which, in Vuze, is lo[1]
Whilst in here, I also dropped the Line MTU to 1435. You'll notice that this matches the MTU and MRU set when using pppd to establish the tunnel... I'm on DSL and have the MTU set to 1478 for the DSL link, the difference between the 1478 and 1435 is the overhead of the additional headers used with PPTP tunnelling (both PPP and GRE headers encapsulate the packets). With the MTUs set up in this way, I shouldn't get any fragmentation of packets on the link, packets with the DontFragment bit set shouldn't get dropped. I gave Vuze a restart.
6. Verifying Operation
I closed any apps that were using the internet, fired up Vuze, loaded a torrent, then opened two Wireshark windows.... Started Wireshark#1 on the eth0 WAN interface and Wireshark#2 on the ppp0 tunnel interface. I saw a long list of PPP and GRE packets (in white) scrolling on the eth0 window, showing that Vuze is going through the tunnel. Checking the ppp0 Wireshark window, I saw the actual Vuze traffic on the ppp0, with SYN's, ACK's, http packets etc as it's being sent down/back through the tunnel.
Starting firefox and visiting www.whatismyip.com, the IP reported was my eth0 address, I saw the http traffic on Wireshark on eth0. Starting e-mail, I saw the packets on eth0.
Dropping the tunnel, I checked Vuze, saw that torrents had stopped and confirmed that I couldn't connect to the net with it.
7. DNATing
Reconnecting everything, I sat and watched the Wireshark outputs on ppp0 and eth0 for a while to make sure everything was working. I noticed that the ppp0 interface was creating a lot of ARP requests for external IP's and sending them out, unencrypted, through eth0 - BAD news!! I'd forgotten that I would need to Destination NAT the unsolicited inbound connections... D'Oh!
As the unsolicited inbound connections are directed at the internet-routable tunnel IP of ppp0, we need to point these to the lo:0 interface that Vuze is listening on. Replies to these will be NAT'd back to the ppp0 address by the MASQUERADE rule we've already entered in iptables and, since the source IP will 172.27.72.64, the packets will match the ip rule pointing them to the IPRED routing table, thus they won't generate ARP requests.
Retrying everything with the firewall updated, everything is working 100% :-D
8. Misc
As the iptables rules have been saved, and lo:0 will survive a reboot in /etc/rc.local, the only commands that need to be run each time you want to bring up the tunnel are (easily scripted with a sleep statement of about 10 seconds after pppd call...):
And, if you wanted to just send all traffic over ppp0, this would be:
Conclusion: I love Linux, an intellectual challenge, having complete control over my PC; iPredator rocks and I hope this howto is of use to anyone running Fedora and iPredator :-D
View 4 Replies
View Related
Feb 3, 2011
I want to implement routing using fedora 14. The following is how I arrange my computers -
[PC1]<=======>[ROUTER]<=======>[PC2]
And the following are the configuration -
PC1 : (Tiny Core Linux)
eth0 192.168.2.2/24 (netmask 255.255.255.0)
ROUTER (FC14)
eth0 192.168.2.1/24 (netmask 255.255.255.0)
eth1 192.168.4.1/24 (netmask 255.255.255.0)
PC2 (Tiny Core Linux)
eth0 192.168.4.2/24 (netmask 255.255.255.0)
On the ROUTER I have set the ip_forward=1 and eth0.proxy_arp=1 and eth1.proxy_arp=1
then I run the following command :
route add -net 192.168.2.0/24 gw 192.168.2.1 dev eth0
route add -net 192.168.4.0/24 gw 192.168.4.1 dev eth1
On PC1 I executed the following :
route add -net 192.168.4.0/24 gw 192.168.2.1 dev eth0
and for PC2 I run the following
route add -net 192.168.2.0/24 gw 192.168.4.1 dev eth0
After doing those things, I can't ping between PC1 and PC2... but both can ping the router...
View 14 Replies
View Related
Feb 23, 2010
I'm currently reading through the Linux Advanced Routing and Traffic Control HOWTO from lartc.org, and I'm wondering whether anyone knows of a file where I could keep qos rules persistent across a reboot, similar to /etc/sysconfig/iptables for netfilter. Should I just write my own script, or does something already exist?
By the way, iproute-2.6.29-4.fc12.i686.
View 2 Replies
View Related
Feb 15, 2011
I'm having problems with my route rule in Firewall, I have two links that are working, and set the firewall to use multiple links at once. What has happened is that when i look the IPs of the clients, (its have for default the route to Link 2), they are changing or losing the rule route for link 2 and have in Explorer the Link 1 in any site for show me ip address, then after some seconds back to normal. And the firewall is not configured to do routing load balancing. What can be? Exist some configuration of kernel to accept this configuration ? Like ip route source or anything ?
View 1 Replies
View Related
Feb 28, 2011
I have a problem with the activation of routing under fedora. The problem lies exactly in the file ip_forward who I didn't not change the value to 1. When I use the command echo 1> / proc/sys/net/ipv4/ip_forward. They appears not granted permission. Knowing that I use the root account.
View 1 Replies
View Related
Mar 19, 2011
i have a Server, which has 2 nics installed. Each of those is connected to a router, which is connected to internet. On the server, i have apache, maillserver and im-server running. On the other hand, also squid, dansguardian and clam are running. so now: via eth0 i would like to have just the traffic, which is requested from outside (the big bad internet..) to my server (apache, mail, etc). via eth1 i would like to have all OUTGOING (also to the big bad internet) from the server, which is requested by a internal client. And of course all requests to my own server
both nics shall route their traffic to their own router. For better comprehension please consult the enclosed graph. Until now, i did not find a good solution, the default route is set to the traffic from eth0, if not, no external request will find back to a client do you have a idea how to handle this the easiest way?
View 4 Replies
View Related
Feb 7, 2010
I download all packages of Fedora 12 64 bit and all rpmfusion packages , all of them free and nonfree. all of them is near 20GB, I download all of them by rsync.I download them in work,In home I use Fedora12 64 bit and do not have internet connection , I copy all packages with USB flash and copy them to my Fedora box , and I want install VLC and other codecs and Nvidia driver for some games.What I must do ?I said again I do not have internet connection in home but I have all packages , free and nofree and rpmfusion packages
View 14 Replies
View Related
Jan 8, 2010
I don't know what I'm trying to achieve falls into 'routing' or 'Bridging'???I have two network ports (with static IP ) and I would like to forward RX packets of one to the other.
I have done this in Windows by enabling a service called 'routing'.Is there something similar in Fedora 11? I am pretty sure there are a few thread explaining these but I am just not educated enough to find one that makes sense to me, so Please excuse me for starting a redundant thread and point me to it?
View 1 Replies
View Related
Sep 10, 2010
I am having trouble for routing port 80 from a Billion adsl modem to a guest server in VirtualBox. There are quite few different changes from my last setup so I kind of confuse which one is wrong.
I used to use have the setup belowusing modem Linksys WAG354G use static ip 192.168.1.100 for my machine use static ip 192.168.1.102 for my guest VirtualBox server guest OS is serving http listening on port 80 i use bridge from my host OS for VirtualBox set my modem to direct all traffic on port 80 to 192.168.1.102 host OS was Fedora 11
now I useusing modem Billion 7404VNPX use same static address and configuration host OS is Fedora 13
main issue is I cannot reach the guest OS if I navigate to my modem ip address. (e.g. http://192.168.1.1) if I change the modem to direct all traffic to my host OS ip address (192.168.1.100) it works nicely.
I have tried to disable and enable the firewall without any luck.
View 1 Replies
View Related
Jul 7, 2010
I've been trying to make myself anonymous, but I cant find 'Tor' anywhere, tried 'yum & kpackagekit' neither have it. I did find 'Privoxy', installed it, set proxy for HTTP and HTTPS in Firefox, but it says 'unknown proxy' when I try to use it! I've been to the Privoxy web site and read through the 'User manual', but most of it is 'geek' to me!
View 8 Replies
View Related
Dec 23, 2010
I recently upgraded from Fedora 13 to Fedora 14 and noticed something strange when I used Yum to install GNote and Inkscape. Yum installed the Fedora 14 version of the programs, but installed some dependencies that were actually from Fedora 12 and 13. The output below shows what packages were installed.
Yum output:
==================================================================================================== ===================================================================
Package Arch Version Repository Size
[code].....
When I ran the yum command to list all of the packages for the dependencies in question, it only listed the version for Fedora 12 or 13. Is there something wrong with one of my repositories or do these Fedora 14 programs actually use packages from previous versions of Fedora?
View 2 Replies
View Related
Feb 22, 2010
On Debian repo I found virtualbox-ose packages there. What will be the difference in operation/function between their packages and the packages download on virtualbox.org website?
View 3 Replies
View Related
Apr 30, 2010
Whenever I do sudo apt-get or use the Ubuntu Software Center, I can't download anything because a message comes up saying "Action requires installation of untrusted packages: The action would require the installation of packages from not authenticated sources." I've been trying to download GIMP and Thunderbird, so... I dunno what the problem is.
View 8 Replies
View Related
Apr 8, 2015
I am working on a project which targets both 32 and 64 bit architectures at the moment. My system is amd64. I added i386 architecture using this guide. However, my problem is
Code: Select allapt-get install package-name:i386
prompts the removal of currently installed packages (amd64 arch.) which is the problem.
Code: Select allReading package lists... Done
Building dependency tree
Reading state information... Done
The following extra packages will be installed:
libportaudio0:i386
[Code] ...
Some of the packages I am talking about are
-libegl1-mesa-dev:i386
-libportaudio-dev:i386
Now, as of now, I want to carry out the compilation using 32 bit libraries, however, I really don't want to install 64bit version of all prerequisites each time I switch the compilation from 32 bit to 64. Is there any way to have both architectures at the same time?
View 1 Replies
View Related
Aug 31, 2011
I just upgraded from 11.2 to 11.4 and the installation/upgrade worked just perfect. I than followed the instructions in the "New User How To/FAQ", "Multimedia and restricted format" post. I was following the instruction in the 11.4 section. I added the additional repositories as explained. I then was on the section where it talks about going into software management and selecting the "Packman" repository and clicking to "switch systems packages" to the versions in this repository (packman). I than click this link and the "warning" screen appears and I am present with conflict resolution after conflict resolution dialog. It just seems that there are some many conflicts, it just seems wrong and I canceled.
The installation/upgrade appears to have worked just fine. My mail is there, audio and dvd play back worked the first try after the upgrade. I am not clear if this is what I should expect or their is something wrong or if I even need to complete this step for a successfully installation.
View 3 Replies
View Related
Dec 2, 2010
Is there a way using dpkg or apt-get to segregate user application packages from system packages? What I envision is an /apps directory structure that can be the install target for selected packages so not to "clutter" the storage areas for the system administration files/packages - maybe even with permissions set so that (a GROUP of) users could install packages on an Ubuntu server w/o SysAdmin guidance. This could also allow 1)system upgrades with or w/o including these packages, and 2)the sharing of /apps (via NFS) among common Ubuntu systems. Is this doable using the dpkg or apt maintenance tools?
View 2 Replies
View Related
Sep 21, 2010
How to add packages using X-Window's add/remove packages option in RHEL-5.3 as it shows only the currently installed package and and does not show any thing when we click the button "available packages" ?
View 2 Replies
View Related
