Networking :: CentOS VLANs And Cisco Catalyst Switch?
Jul 27, 2011
I have router based on CentOS system with DHCP server. In one eth I have fiber converter attached in second one I have Cisco Catalyst switch connected. From the switch rest of ports are used to provide internet traffic to rest of network. I wanted to divide each segment of network (based on switch ports) that they don't see each other (it'll be good for me if someone will connect his wireless router to the network not to WAN by LAN port and start be a second DHCP server). So my network configuration:
CentOS:
DHCP with range 10.0.0.1/8 network
Switch ports
1 - CentOS DHCP
2 - second server
[code]....
Parts of networks I've assigned IPs 10.network_part.subnet_part.client_ip so I have addresses for clients: 10.1.1.2/8, 10.2.1.3/8, 10.3.0.4/8, etc ...
I've decided to give each port it's own VLAN like below:
Port / VLAN
1 / trunk
[code]....
I've configured switch ports by using:
(config)# interface Gi0/Port_Number
(config-if)# switchport access vlan VLAN_NUMBER
[code]....
And after doing that whole network stopped working. I think that cisco part of configuration is OK (at least customer ports, I don't know if there is any additional info needed for trunk port). On CentOS router I didn't setup anything regarding VLANs ...
View 4 Replies
ADVERTISEMENT
May 24, 2011
Before going to vlan topic I have basic question. I have a gateway as 10.209.108.1/22 if I am connecting gateway to cisco 3750 switch port 1 can I use remaining ports to connect via above gateway? I mean suppose I am connecting NIC to port 2 and IP 10.209.111.200 can i ping 10.209.108.1? Is this valid without configuring any vlan or anything on switch?
View 3 Replies
View Related
Feb 15, 2011
I am trying to setup CentOS server 5 with tftp where the Cisco switch configs can be sent. I have the following:
[code]...
View 14 Replies
View Related
Apr 22, 2010
I'm trying to figure out a simple script to go thought 500 Cisco devices to see if I can SSH to the device. Then display something like this:
10.0.0.1 Yes
10.0.0.2 No
10.0.0.3 No
I tried something like this:
Code:
ssh -q -o BatchMode=yes -o StrictHostKeyChecking=no user@10.0.0.1 "echo 2>&1" && echo "Yes" || echo "No"
When tested the above line it replied No, even if I tried it on a Switch that does not have SSH configure.
View 8 Replies
View Related
Apr 29, 2010
Is there any possibility to transport one or two VLANs through a VPN (IPSEC) link on Linux
View 2 Replies
View Related
Jan 25, 2009
Assume I installed originally CentOS Desktop with IP receiving from DHCP server.Later I decided to assign a fixed IP to the local CentOS installation.How do I switch (permanently) the dynamic DHCP IP assignment to a fixed IP?
View 1 Replies
View Related
Mar 11, 2010
I followed the instructions on this page ([URL]) in order to secure my sshd and prevent anyone form accessing the server directly as root. Therefore I changed the "PermitRootLogin yes" to "PermitRootLogin no" and restarted sshd. After that root access was denied directly but for some reason I am unable to switch to root from any of the normal user accounts with "su -" because I keep getting the "Incorrect password" errors. I am sure that the password is correct but for some, to me unclear, reasons I am unable to access the root account over SSH from a normal user account. I also noticed that after that I lost the ability to access the server as root over SFTP. why I am unable to generally use the root account after doing the named changes to sshd_config/ I am running CentOS 5.4 with the newest update.
View 7 Replies
View Related
May 11, 2010
I installed the CentOS v5.4 on a virtual machine vmware server v1.0. I put the the vmware ethernet on bridged mode and now I have an ip address, subnet mask and dns from my dhcp server from the the office where I am. I edit the file /etc/sysconfig/network and I put there the gateway ip. Now is okay but not at my home where I have another gateway ip. a script who switch between my gateways ?
View 4 Replies
View Related
Jan 7, 2011
I had something I think if very odd happen to one of my computers at work today, it appears to have spontaneously switched from having a static address set to getting its address by dhcp.this is a small office with a mix of mostly linux servers and desktops with a few stand alone windows computers, mostly notebooks. Most of the desktop computers get their address by dhcp, they all have NIS /NFS for remote mounted home directories (interchangeable desktops so anyone can log in at any desk). The particular desktop computer in question here has a shared printer on its parallel port, so has a static IP. Yesterday a UPS in the server rack died, after pulling it and plugging things back in and restarting the servers, it was easiest just to reboot all the desktops, everything came up ok including the desktop in question, and the printer did work.
Today I pulled the oversized UPS from this desktop to replace the dead one, and put a more appropriately sized one in its place, shut the servers down again, rebooted, etc,About an hour later someone tells me the printer is not working on the desktop, and after a lot of searching I find this desktop has the wrong IP address, I ran system-config-network and it showed the address was set to dhcp, I changed this back to the correct static IP and things seem to be working ok now.
View 3 Replies
View Related
Dec 8, 2009
I have a program that attaches to an interface. I can run two copies of the program on two systems (each running one instance), connect it to a switch, say 1.1.1.1 & 1.1.2.1. In this configuration two instances of the program can communicate and everything is fine.
Now, to reduce cost, it want to use only one system with two nics connected to the same switch, running two instances of the above program, each instance attached to two interfaces respectively on the system. I have the following settings:
eth1 Link encap:Ethernet HWaddr XXXXXXXXXXXXXXX
inet addr:1.1.1.1 Bcast:1.1.1.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
eth2 Link encap:Ethernet HWaddr XXXXXXXXXXXXXXX
inet addr:1.1.2.1 Bcast:1.1.2.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
[Code]...
View 6 Replies
View Related
Sep 25, 2009
i want to authenticate user (client) via switch to the radius server(CentOS)Can anyone tell me the authentication/authorization configuration that should be made in the switch (huawei) and the radius server(centos).Esp. the main files under /etc/raddb/ in the Server& the configuration to be made under the radius server template "test"( as of my case)...
View 1 Replies
View Related
Dec 29, 2010
someone who has configured vpn tunnel with Cisco ASA 5510 3DES-168 in centos 5.3 if some one has configured
View 6 Replies
View Related
Jul 14, 2010
I've got a machine running Ubuntu Server that is on several VLANs. Each VLAN has its own subnet and the server has an address on each subnet. The switches are set to allow tagged traffic to the server for each VLAN that it is on. Switch ports ending with workstations are given untagged ports on whatever VLAN is appropriate. Workstations are given addresses on a subnet for each VLAN via DHCP. All this works great and hosts on any subnet/VLAN can access the server as normal via its address on that subnet/VLAN.
Accessing the machine by its address on a non-local subnet is where I run into a problem. Inter-subnet traffic has to go through a router, which has been set up appropriately. Running tcpdump on the server and pinging it from a workstation on a subnet, using its address on a different subnet, shows the server receives the ping, but sends no response:
Code:
sudo tcpdump -i vlan4 -n
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
[code]...
View 8 Replies
View Related
Jan 12, 2011
I am using ubuntu 10.10 and facing problem with cisco VPN connection. VPN connection is getting successful but not able to connect to destination servers.I also tried to add default gw to the the IP which is assigned to my VPN connection but still access to VPN machines not working.
View 1 Replies
View Related
Feb 28, 2011
I use VPNC to connect to a Cisco VPN. I am able to connect, but some issues exist when I use SSH. For example, I login through SSH to a computer in the VPN and I execute ls => it works. If I execute ls -la => connection stalls. I think it stalls every time it is supposed to return more content (top, ls /etc).
If I do scp from my end to server => works. If I do scp from server to my end => connection stalls.
View 1 Replies
View Related
May 7, 2011
I'm trying to install the Cisco VPN client on Ubuntu 11.04, kernel version 2.6.38-8 generic-pae. I need a step by step process since I am an absolute beginner with Ubuntu and this is my first install on the operating system. I have already tried the network manager but connection always fails. I have also tried the website [URL] but this always fails, seems this was made for earlier versions of Ubuntu and earlier kernel versions.
View 9 Replies
View Related
Mar 31, 2010
I did a forum search and too much came up that was not the answer I was looking for. I have only Linux devices at work and I was wondering how do Linux Administrators connect to Cisco devices via serial console cable. Cisco recommends 'Hyper Terminal' which was a Windows add-on applications licensed to XP. I think Vista and 7 no longer have the license to use Hyper Terminal. Regardless I don't have any versions of Windows and would like to use a serial cable from Com port 1 to the console port on the device. I can't use SSH since some devices don't support SSH and or I have to do a password recovery.
View 4 Replies
View Related
Mar 11, 2009
Is using Cisco AnyConnect for ssl remote access, i loged on on my company vpn.abcd.com , using a username and a password, requested a certificate which was added to Firefox certificates, then installed the AnyConnect client. now i can just start the AnyConnect client to connect without the need to access to my company vpn.abcd.comWhat i want to do is to add a vpn connection to the network manager so its always connected once i powered my computer on, and dont need to start the AnyConnect client to get connected each time.
There were three options Password/SecurID, Certificate(TLS), Certificate(TLS) with TPM.I tried the first one, got a message "Unknown certificate from VPN server "vpn.abcd.com". Do you want to accept it?" , accepted entered my password ---> login failedThe other two options need a certificate files which i dont know how to get, is it the firefoxcertificate, or what ?.
View 2 Replies
View Related
May 9, 2009
Just wanted to ask a small question... I've set up a VPN connection to my university and i installed and configured everything ok, cause I can connect without any problems...
Now that I'm connected I want my browser to run through the VPN tunnel created by the connection so i can access certain sites that are else inaccessible, but how do i force my browser (I'm using firefox atm) to do that?
When I'm on MAC of Windows OS, as soon as i connect with a VPN, all connection run through them. Fedora seems to ignore the VPN connection and just continues to use my home-network to connect to the internet.
So the basic question is: how do i use the VPN connection.
Iuse FC10, kernel 2.6.27.21-170.2.56.fc10.i686, fully updated system
View 4 Replies
View Related
Jun 18, 2009
Probably there is bug in kernel used FC11 [url] This bug freeze computer after ping or other data sending over VPN connection.
Is there any chance to backport this patch to kernel in FC11?
More about this in topic:[url]
View 14 Replies
View Related
Jun 30, 2010
cisco vpn client 4.8.5 I have no problem to connect it, but got disconnected every minute after I opened a terminal and ssh to company's server. Not sure what's causing the problem. There's no problem to connect to windows.
View 2 Replies
View Related
Mar 7, 2011
Problem with fedora 13, I am no longer able set up a virtual private network using vpn. The following error message appers:
"/usr/sbin/vpnc: no response from target"
No problem when connecting with ubuntu or windows.
View 1 Replies
View Related
Feb 11, 2010
Put all Cisco drivers and firmware for wireless in a new ubuntu 10.04. I love ubuntu and I have a big problem with a mini pci wireless Cisco Airo MPI 350...
View 9 Replies
View Related
Dec 3, 2010
When I try to connect to my company's VPN using the Cisco VPN client, I get a kernel panic. Please don't suggest I should Cisco's client, it only works with Kernels older than 2.6.24 (I have 2.6.35).
So I use vpnc. The error message is:
Quote:
$ sudo vpnc
[sudo] password for phirt:
Enter password for user@group@fubar.net:
received notice of type (ISAKMP_N_NO_PROPOSAL_CHOSEN)(14), giving up
vpnc: quick mode response rejected: (ISAKMP_N_INVALID_MESSAGE_ID)(9)
this means the concentrator did not like what we had to offer.
Possible reasons are:
[Code]...
View 3 Replies
View Related
Jan 21, 2011
When I connect to my company's VPN (it's a Cisco), it connects just fine and displays the broadcast message, but once connected I can't ping anything or ssh anywhere. Not on the private network, not on the Internet [URL], nothing. I can still browse the web without difficulties when connected to the VPN, but no ssh or ping. With ping, it properly resolves the host name, but I get 100% packet loss.
Once I disconnect from the VPN, a ping of [URL] works exactly as expected.
I don't have any firewalls set up on this host that I'm aware of (unless something is installed and configured by default).
I'm using Ubuntu 10.10, amd64 build.
View 5 Replies
View Related
Jun 2, 2011
I can't install/configure this router. I have my PC connected to it via ethernet cable, and Ubuntu sees the connection, but I can't connect to the internet and I can't access 192.168.1.1. I've searched the forum, and I know there are a lot of threads on this, but neither were helpful and since the CD has only win drivers, I couldn't install anything.
I can access the internet through a phone using WiFi though, so theoretically everything is working, I just can't use it with the PC.
View 5 Replies
View Related
Jul 8, 2011
I have just installed Ubuntu 11.04 and the Cisco VPN client with :
apt-get install network-manager-vpnc
I have imported the PCF provided by my employer into the GUI. The group password also seems ok, when I login to the VPN server, I am provided with the "VPN Login message". (On Windoze, I get an Ok/Cancel popup with the same message). In Ubuntu, I don't get to click "Ok" but it looks like I'm connected properly. The /var/log/syslog file contains numerous static routes added, 30 or so. After the Login Message, I see the couple of line:
Jul 8 12:40:51 ubuntu02 vpnc[1613]: can't open pidfile /var/run/vpnc/pid for writing
Jul 8 12:40:52 ubuntu02 NetworkManager[630]: <info> VPN connection 'VPN to my network' (IP Config Get) complete.
I get an IP from the external network correctly as well:
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:172.16.10.170 P-t-P:172.16.10.170 Mask:255.255.255.0
However, I cannot ping any of the machine on the remote network. None of the network services seems to be accessible. Why the machines on the VPN are not accessible?
View 2 Replies
View Related
Jul 20, 2011
I'm using Ubuntu 11.04. I'm trying to get a Cisco Valet Connector AM10 to work. It's one of those ZeroCD USB devices that is both storage and modem. Using this link:
[URL]
I filled out usb_modeswitch like this:
Code:
# Configuration for the usb_modeswitch package, a mode switching tool for
# USB devices providing multiple states or modes
#
[code]....
View 9 Replies
View Related
Mar 1, 2011
I was given a Cisco IP Phone (model 7962) and CyberGuard Firewall/VPN (model SG300) from my company. So that I can work from home. But I've been struggling for the past couple of days trying to get it to work. The phone successfully configures it's ip; but it hangs on "Registering".
The setup is such:Cisco phone plugs into the CyberGuard and gets assigned a private IP address; 192.168.48.34; from the CyberGuard.
CyberGuard plugs into my Slackware (12.1) box and gets assigned a private IP address; 10.0.0.191; from the dhcpd server on my Slackware box.
Slackware box then masquerades that 10.0.0.191 into my static public address on the internet.
Port 1723 (PPTP) is open in the iptables firewall on my Slackware box. I've also tried disabling the firewall (ie opening all ports) on my Slackware box.
On my Slackware box; via iptraf; I can see traffic between my Slackware box, the CyberGuard, and my company's server.
Traffic such as:
Code:
And on the company's server; the following is observed:
Code:
My company just keeps saying "open port 1723 + 47". But as I stated above; I have opened them. And Internet searches have revealed absolutely nothing. At this point; I am completely lost as to what may be wrong.
View 5 Replies
View Related
Feb 4, 2010
I have got different clients with different SOHO routers on sites (Netgear , Linksys, SnapGear,etc.) All those clients use VPN IPSec . As you know that those routers has many entries :
Tunnel name
key lifetime
Preshared Secret
Phase 1 proposal
Phase 2 Proposal etc.
I am trying to familiarize myself to use different VPN clients (a piece of software ), that will be installed on clients, laptops to access their work network from home. I came across a problem with Cisco VPN client V5.0.06 I could not find all the above entries. I know Cisco devices are proprietary, does that mean cisco vpn client is not compatible with those router?
View 1 Replies
View Related
