General :: Adjust Routing Of External Packets To One NIC Instead Of Another?
Apr 13, 2010
I'm running Ubuntu 9.10 server at home on VMware Workstation 7. I have two NIC's configured, one NIC is setup to have a direct connection to the network "Bridged", another NIC is setup to have a private network connection on VMnet1.
So when I try to access the Internet, I can not go out on the NIC 1. If I try to ping google.com I get a return from 10.1.1.1 "no reply". But I know that NIC 2 is working, because I can ping 192.168.1.160 from the workstation I'm running on.
So I think that my routing is sending traffic out to the wrong NIC, but not sure if this is a metric in the iptables or another place?
The reason for two NICS is to simulate a DMZ where the server will be running Squid, to test proxy from another workstation on the 10.1.1.X subnet.
My setup is...I have a wireless access point using laptop as a gateway. The AP is also connected to a switch as is the laptop. So the laptop has two interfaces one wireless and one wired. A third device is using the AP to connect to a server on the internet. The AP sends the packets to my laptop where they are dropped. I've been looking for a solution to this problem without success. Basically is there a way for my laptop to forward all packets it sees from a certain IP address to whatever destination address they have?To clarify, my laptop is just the gateway of the AP and none of the packets are addressed to it at all, it just picks them up using a sniffer or similar tool.
I am running into trouble while trying to set-up a iptables routing policy. I have two machines on the same sub-network (xxx.xxx.153.0). One of the machines is used as a default gw for the other (xxx.xxx.153.250 is a gateway for xxx.xxx.153.142 and xxx.xxx.153.254 is a gw for xxx.xxx.153.250). There is no explanation for why the xxx.xxx.153.250 is in the middle -- xxx.xxx.153.142 can go straight to xxx.xxx.153.254, but is is like that for now.I am trying to find an iptable rule to be executed on the xxx.xxx.153.250 machine to route the packets.
My requirement was to direct certain traffic from various ports down different Internet connections. Basically, for locally generated packets, the OUTPUT chain in the mangle tables is used. You can MARK packets in this chain for ip rule processing.Now the "clear as mud" part. There must be a valid routing decision made without the fwmark, selecting the right source address, even if the gateway ip is invalid.
I have a router/modem linux box, connection to DSL through PPP.I also use an OpenVPN service, to which this box connects.My problem is that the speed cap of the VPN is just half that of the DSL connection. I don't need it for internet browsing. Is there a way I can route all the http traffic coming from the client computers (or all of the traffic will do too) through the normal connection?As of now I can only route all traffic either on VPN or normal PPP
Is there any possible way I could add loose/strict source routing for traffic originating from a host ? I mean to add certain hops I want my packet to pass.With iproute2 or maybe iptables ?
I have one external ip address and a few domains. Would it be possible to have each domain on a internal domain and the box that sits on that external ip route to the internal. This would be for a number of server (mail, apache, imap, pop3, https ) So for example:
Some visit domain1.com ->external ip -> 192.168.10.100 Someone else visit domain2.com ->external ip -> 192.168.10.101 and so one with a number of domains
I have a block of 5 static ip's and 2 servers that push HTTP and other services. What is the best method of configuring/routing traffic to individual boxes on the network?
More detail: One of my static IP's is assigned to a dedicated box for an Ubuntu mirror. Another static IP is assigned to a server with all of the HTTP traffic.
Several configurations function to route traffic appropriately (forwarding proxy or 1-to-1 NAT). However, with 1-to-1 NAT, the box is left open to the world with only the software firewall. Do I really need to place a hardware firewall inline to EVERY server?
Or, what other methods of routing and firewall would you recommend?
i have a linux server runnig oracle applications. i need to access this server from putty using ssh through internet. i did by registering my static ip with the dnydns.org and i am able to connect to the server. but now there is no security to authenticate any user as any one knowing the password can login to it.
i thought of configuring the firewall of linux server but the client ip`s are not static and they change continiously. so thought of keeping one more pc between the server and the router which will do the work of authenticating. but i am confuse as how to configure it to allow the packets coming from the internet after authenticating and to by pass the packets generated from internal LAN?
Have just installed my frist linux os and the screen has a big black border around it. Set the res on install to 1024x768 & this is displayed in display settings. If I run xrandr in a shell tool it only shows 640x480 available.xorg.conf has "1024x768" "800x600" & "640x480" available.Have search the web but nothing I've found works.
I want to adjust clock in ubuntu. When I installed it it asked about location and setting if for asia it automatically take the clock, but that timing is not correct. It showed 10 pm when actually it was 5pm. After installation I tried it to adjust but it could not be managed..it automatically took that previous timing.
to see the packet drops every 1 second. but the problem is the output is so long(Due to large number of virtual interfaces) it doesn't fit into the putty prompt. I dont need to monitor each and every network interface I m more interested in monitoring the interfaces starting from vif but whenever i run following command it doesnt display anything.
I have a low end 7" CnMBook running modified Debian OS. Is there any way to adjust the screen brightness, if possible by adding a Fn command Up and Down?
I have a hardware device with two ethernet ports, eth0 and eth1 running Centos 5. Basically my goal is to forward packets from eth0->eth1 and eth1->eth0 as well as get a copy of these packets for analysis. If I set IP routing to do the forwarding then I won't get a copy of the packets for analysis.
I'm on Debian with KDE 3.5 desktop and I use the Konsole terminal emulator.What I would like to know is: is it possible to tweak the color palette, for example to change my red to something a bit brighter? I use the "white on black" schema in Konsole and all colors are great except that red is far too dark on the black background. I found this Perl script that is supposed to change the palette but, while it prints the current palette just fine, I can see no difference between the various palettes.Searching for solutions mostly brings up pages about changing the scheme in Konsole or how to use colors in prompts and ls output etc, which is not quite what I need.
I just upgraded from Ubuntu 8.1 to 9.1. Selecting (tapping) with the touchpad is a problem. I can not adjust it with the System > Preferences > Touchpad GUI. I have to tap and tap and tap, harder and harder. The sensitivity is way off. Can't adjust it with the GUI.
Anyone else have this issue. I'm using a Dell Inspiron.
More info: sometimes I tap and it works. Other times I have to tap tap tap tap, harder and harder. I believe it's a matter of adjusting the sensitivity of the touchpad, but do not know how to do this after upgrading to 9.1.
I'm new to the Linux OS, and this is also my first post on this form. My question is Can you physically adjust the position of the dashboard? I'm familiar with Mac OS X where you could "Physically" adjust to the top, left, right or originally at the bottom. Is it possible and if it is, can someone explain to me the process on going about that?
I have acer Aspire 5742 with mint 9 {64/32 bit both} installed.. I cannot adjust brightness of my laptop in any of them.. The shortcut keys are working fine as increasing or decreasing through keys show icon increasing or decreasing brightness but it is not affecting brightness in anyway.
I'm often on my corporate network but also need to be on another network simultaneously. At the moment I have to manually switch back and forth between the two. I'm using ubuntu 10.04. I've come across an excellent document that explains how to do this: "Linux Advanced Routing & Traffic Control HOWTO" by Bart Hubert. He mentions:
make sure that your kernel is compiled with the "IP: advanced router" and "IP: policy routing" features
I've downloaded the kernel sources, but I don't find any config options with names like these in them.
So my question is...how can I tell if the kernel I have has these config options. Failing that, how do I build a kernel that does support these things?
Additional use cases for this knowledge. (1) At work with desktop computer plugged into corporate network. Plug 3g phone into USB port. My corporate network wont allow me to access my external servers over ssh, but the 3g phone will. (2) At home on the corporate VPN, but would like to access my other local network computers.
I have a computer with a BSD subsystem that is acting as a router to other Windows computers.
On one of my Windows, I have an Apache Web Server that I want people to access from the outside world.
So, I have created an ipfw rule in my router computer that goes like this: ipfw add 100 fwd 10.0.2.2 ip from any to any dst-port 2443
Thing is, nothing happens.
I've tried changing the ServerName in my Apache to match my IP address (which is the destination IP of the incoming packets, I imagine) but still, nothing.
I've done the usual edit of /etc/sysctl.conf to include the parameter, but it just tosses errors. I haven't had to tune a kernel in a very long time, what's different about it nowadays (or have I simply forgotten how)?
edit: Added "kernel.semmni = 2048" to the tail of /etc/sysctl.conf and then ran "sysctl -p". End result is an unknown key error (apparently kernel.semmni isn't the valid name anymore?).
I'd like to widen the width of the standard vertical scrollbar in firefox 3.6 or above. I know now that it is not an edit in about:config and appears that you have to edit in user.js, prefs.js, or in the Profile folder but I 3 prefs.js in my profile folder -
prefs.js prefs-1.js and prefs-2.js
Secondly, I cannot find the user.js file. its location if it is still a viable file to edit. which (or what) prefs file I should concentrate on for this edit.
Plainly, it shouldn't be this tough to adjust the vertical scrollbar width, in a perfect world it would be adjustable though Windows. Anyway, this old fart's having difficulty grabbing that scrollbar.
Long, sad story made short. I have a Samsung Netbook running Windows XP Home, SP3. I set it up to dual boot with Ubuntu, just so I could play around with Ubuntu. Well, Ubuntu started giving me trouble: my internet connection went south, I was unable to adjust the brightness of the Netbook screen, etc., and when I looked for troubleshooting help on the internet, it was all Greek to me as it involved working with Terminal.
I did a search for removing a partition in Windows XP and found "How to use Disk Management to configure basic disks in Windows XP" on the Microsoft and followed the instructions there.
