Networking :: Firewall Cannot Connect Beyond ISP Gateway

May 17, 2009

Our firewall (debian) currently has 4 public ip addresses (eth0 1.2.3.4, eth0:0 1.2.3.5, eth0:1 1.2.3.8, eth0:2 1.2.3.9) and 3 internal subnets (eth1 10.1.x.x, eth1:0 10.2.x.x, eth2 10.7.x.x). We are experiencing the following two problems which I believe have the same root cause. 1) The firewall cannot access beyond the isp gateway (1.2.3.1). 2) From externally, we can ping eth0 with no trouble, however, pinging the eth0:0, eth0:1 and eth0:2 interfaces have results similar to the following:

Code:
PING 1.2.3.8 (1.2.3.8) 56(84) bytes of data.
64 bytes from 1.2.3.8: icmp_seq=2 ttl=57 time=59.0 ms
64 bytes from 1.2.3.8: icmp_seq=2 ttl=57 time=63.0 ms (DUP!)
64 bytes from 1.2.3.8: icmp_seq=13 ttl=57 time=59.3 ms
64 bytes from 1.2.3.8: icmp_seq=13 ttl=57 time=63.0 ms (DUP!)
64 bytes from 1.2.3.8: icmp_seq=24 ttl=57 time=62.0 ms
64 bytes from 1.2.3.8: icmp_seq=24 ttl=57 time=65.6 ms (DUP!)

I get the feeling that I'm missing something obvious, especially since all traffic on the internal subnets can access externally as normal.

View 4 Replies


ADVERTISEMENT

Networking :: Gateway / Firewall And Log Server

Aug 1, 2009

I got 2 servers, each on different locations (server 1 and server 2). I want all traffic on server1 included web browsing, applications etc., be always going through server2, like a gateway. I want the traffic to be encrypted (maybe use VPN?) So if I browse, or any logs pick up ip adresses from applications used by server1, I want it to display the IP address from server2 (Might be the wrong way to say it).

I always wants server2 to act as an firewall and logserver that logs all the traffic. I was thinking about using Snort for IPS/IDS solutions and OpenVPN for the traffic, but what can I use as a firewall? Most firewalls I find on google has its own OS/Distribution. Maybe Squid for logs? But squid does not support much protocols. Distribution on both servers are updated Debian/Ubuntu based.

View 3 Replies View Related

Ubuntu Networking :: How To Set Up A Gateway/router And Firewall On Server

Jul 20, 2011

I want to do is setup a gateway(or router, idk what Ubuntu refers to it as.). So my set up would be Modem>Server>Switch>Router. I know that I need to set up it up as a DHCP server as well. I would also like to setup it up as a firewall too. I already have two Gbit cards that are already configured. So how do I do this? I already tried one tutorial, but it was old and was for Debian. I also installed ebox, but I couldnt figure that out either.

View 2 Replies View Related

Networking :: Setup Firewall / Gateway Address And Dns / Give To Clients For Accessing Internet?

May 12, 2010

I have 17 system (sys1,sys2,sys3.....sys17) in my office, and i am willing to setup a dedicated system to act as a firewall for that i have selected sys1 with two NIC(eth0 for local network and eth1 for internet) and i have configured to access internet in my office for that i have opened a wellknown port 80.but my clients are not accessing the internet..

and please check my sample IP configuration !!!

interface : eth1 (ISP IP)just for example
IP :192.168.0.2
gateway:192.168.0.1
dns:202.56.230.5
dns:202.56.230.6

Interface : eth0 (my local lan )

192.168.1.1
255.255.255.0

IP address of xp clients ranges form 192.168.1.2 to 192.168.1.16 with default 255.255.255.0

my question is that which gateway address and dns i have to give to my clients for accessing internet ?...

View 1 Replies View Related

Networking :: Cannot Connect PC As Gateway Using One NIC

Sep 9, 2010

I have one scenerio ,I want to use my Linux PC as residential gateway .I have only one NIC connected to my PC(I cannot connect more) to handle this problem I am using switch . All the devices including my PC are connected using switch (Please refer attached file). I am not sure how can I achieve this ? I am familiar with NAT and DHCP but do not know is this possible in this case?

View 11 Replies View Related

Fedora Networking :: Can't Connect To Wireless Gateway

May 20, 2009

I've just installed fedora 10 on my Dell Inspiron 1525, and I can't connect to my wireless net. I know how to manually enter the SSID (and have no clue what a BSSID is), MAC address, and I know it's infastructure (well, it's not ad-hoc, so it must be).

The problem is, my router uses a 64-bit encryption protocol, and there's no '64-bit' key option under Wireless Security's dropdown. Is there any way around this, aside from either changing the encryption protocol, or plugging it in manually (neither of which are options)?

View 10 Replies View Related

Networking :: How To Connect Via Gateway (Desktop And Laptop)

Feb 3, 2009

I have two computers. The first computer has windows xp in it and is a member of the local lan with ip address 192.168.11.21. The second is my laptop having ubuntu 8.10.Both these computers are connected to each other via the broadband router which assigns ips 192.168.1.3 to my laptop and 192.168.1.1 to my desktop. I am able to browse the lan of 192.168.11.x via the desktop and I want the same possible on my laptop whose only connection is through the router to the desktop. Is there any way I can do it?

View 1 Replies View Related

Debian Configuration :: Set Up Headless Bubba Two For Firewall / Gateway?

Jul 3, 2011

I have a Bubba Two headless PC box and on it a Debian GNU/Linux Squeeze operating system.

I have upgraded my Bubba Two [URL]to Debian Squeeze from Debian Etch following these steps: Running Debian lenny or squeeze on Bubba Two [URL]

After this upgrade I have setup networking on Bubba following these steps: Setting up networking [URL]

In the case [URL] doesn't work, here are these steps:

[Code].....

View 5 Replies View Related

Ubuntu Servers :: Setting Up Gateway / Router And Firewall

Jul 20, 2011

So what I want to do is setup a gateway(or router, idk what Ubuntu refers to it as.). So my set up would be Modem>Server>Switch>Router. I know that I need to set up it up as a DHCP server as well. I would also like to setup it up as a firewall too. I already have two Gbit cards that are already configured. So how do I do this? I already tried one tutorial, but it was old and was for Debian. I also installed ebox, but I couldnt figure that out either.

View 1 Replies View Related

Networking :: VPN Client Exists Which Will Connect To A Sonicwall Firewall?

Feb 3, 2011

Linux VPN client exists which will connect to a Sonicwall firewall?

View 1 Replies View Related

Ubuntu Networking :: Using Endian Firewall In Order To Connect Two LANs

Feb 23, 2010

I am using Endian firewall in order to connect two LANs but I am getting many problems and I don't know how to solve them since there is no much information about this software on the internet. Do yuo know good webpage about this powerful program?

View 5 Replies View Related

General :: Installing Firewall / Gateway Into Linksys Router To Protect Windows?

Apr 1, 2010

story is my brother is a dindows lover (gamer) and hes been gettin attacked by virus's,etc cause he runs his Vista setup with no firewall or antivirus

He says the firewall,etc slows down the PC too much for gaming He doesnt want to use Linux as his games wont play on Linux as on dindows

He wants to know if you can install a Linux firewall/gateway or whatever into his Linksys WRT54GC router and thus protect his PC without using a firewall or av in it.

EDIT: precisely; he has a Linksys wireless-G connected to a always-on Verizon Westel 6100G modem so its a wired connection, not wireless

View 6 Replies View Related

General :: Backup / Setup A Second VPN Tunnel On A Fallback Gateway / Firewall On The Client Side

Mar 1, 2011

I've set up a Lan-to-Lan (routed) OpenVPN tunnel. For redundancy I want to set up a second VPN tunnel on a fallback gateway/firewall on the client side. Currently, both sides (server/client) know how to route packets across each others physical LAN. So no NAT is used. When the primary gateway (fw1) is connected to the VPN server all traffic runs via the fw1 tunnel. Than when the secondary gateway (fw2) connects to the VPN server and fw1 is still connected all traffic for fw1 will be delivered to fw2 and effectively destroying traffic intended for fw1. This is of course no problem if I first shutdown (fence) fw1, than set up fw2 to use the gateway IP address from fw1 and set up the VPN tunnel to the VPN server. Effectively replacing fw1 with fw2 on the client side.
However, I can't seem to find a decent howto.

I am also exploring the possibility to let both tunnels active and let OpenVPN (or another tool) decide how to route packets back and forth the different LANs. A virtual IP between two gateway's both running a VPN or something similar. This would be the preferred method of course. However, I don't know how to tackle this one but I'm pretty sure there are people out there who are happy to share their 2 cents.

View 3 Replies View Related

Fedora Networking :: OpenVPN Timeout - Error From NetworkManager - Connect To My Router/firewall

Mar 13, 2011

I'm getting a timeout error from NetworkManager when attempting to connect to my router/firewall.

Excerpt from /var/log/messages attached.

View 1 Replies View Related

CentOS 5 Networking :: When I Change Dom0's Firewall Setup, The DomU Will Fail To Connect To Internet?

May 17, 2010

I'm using virtual network (NAT network) for my domU.When I change dom0's firewall setup, the domU will fail to connect to Internet anymore.So far, the only way to bring the network back is reboot dom0 !I try to restart service network and libvirtd on dom0 ... it doesn't work.How can I bring the domU network back without reboot dom0 ?

View 1 Replies View Related

Networking :: Setup Firewall / Sys1 Is Not Connected To Firewall For Testing Purpose?

May 18, 2010

I am learning to setup firewall in my home for that i have selected four system(sys1,sys2....sys4) for testing .I have configured sys2 to act as a firewall with two NIC. sys3 and sys4 are inside the firewall . sys1 is not connected to firewall for testing purpose.

the IP assignments are follows :

sys1 : ( fedora, not connected to firewall i am thinking, But i am not sure )

IP : 192.168.2.1 ,
gateway : blank
dns1 : blank
dns2 : blank

sys2 firewall ,IPTABLES )
code....

what happened is that sys1(not connected to firewall) can ssh to sys4(connected,inside firewall),since the rules are written not to ssh form sys1 to sys4..

then I came to know whatever the request I give, It directly goes as sys1 --> sys4. Not as sys1-----> sys2(firewall)---> sys4 .and the firewall is not filtering and processing anything for both inbound and outbound (i think it's my mistake some where). the requests are directly going inside without firewall.

View 3 Replies View Related

General :: Connect VPN In Gateway Server?

Aug 2, 2011

We are using Linux machine as a gateway server to connect our local network to wan. We use pptp vpn to connect our remote customers network, is it possible to connect VPN to the gateway and make local network to connect through it? So that there is no need to connect vpn in every local client.

View 3 Replies View Related

Slackware :: Cannot Connect To Network Gateway

Mar 9, 2010

Right now I cannot ping to my default gateway. The machine also has SuSE installed on a separate partition. Networking with the same parameters runs fine in that installation.

I use a troubleshooting checklist for situations like this:
- network troubleshooting checklist
- (case of wired connection with static ip)
- make sure net cable is well plugged in on both sides. CHKD.
- make sure ifconfig eth0 details the static IP you want set and that the iface is running (this stage is quite a head start if you've got to it. It would suggest that you have rc.inet1.conf set up properly. CHKD.
- HAL checked against eth0, and it also specifies eth0 for this interface.
- no problem pinging to 127.0.0.1
- type "route" and see if your default gateway comes up. SEMI-CHK: it does come up but takes a long while .. that's bad sign. It still means your rc.inet1.conf is OK, but here's something else up.
- check /etc/resolv.conf for your nameservers .. just in case some over-zealous program has decided to overwrite it. CHKD, all OK .. I use the google nameservers 8.8.8.8 and 4.4.8.8

Despite using what I thought were decent tools of the trade, if I unplug the cable they give the same output!

View 7 Replies View Related

General :: How To Connect To Gateway In Windows (VMWare Workstation)

Aug 11, 2010

I cannot connect to the windows gateway from red hat Linux which is installed on VMware workstation. I cannot ping to the gateway from Linux.

View 2 Replies View Related

Ubuntu Security :: Cannot Connect To Port Number / When Firewall Is Enabled

Sep 5, 2010

i am using 9.10 karmic. Firewall is enabled. added ports with ufw allow [portnumber], and i still cannot connect to a port number. iv tryed ufw allow ssh/tcp but that does not work. the ports work when i disable the firewall and i dont want to do that.

ufw is available in all new installations of Ubuntu since 8.04 LTS, but is disabled by default. The standard Ubuntu installation has a no open service ports policy, so enabling the firewall by default doesn't gain any extra security in the default installation, but could provide confusion for people new to Ubuntu when new software that is installed does not work because of restrictive firewall rules. As a result, when first adding ufw to Ubuntu it was decided that users must 'opt-in' to using the firewall. In Ubuntu 9.04 and later, you can enable ufw during installation using preseeding. See /usr/share/doc/ufw/README.Debian for details.

View 7 Replies View Related

Networking :: Cannot Ping Gateway Server Within Windows Networking Environment

Jul 11, 2011

I am trying to get a Linux (Slackware 13.37) working in a Windows networking environment. The IT support for this organisation does not extend to Linux support, so I'm limited in what help I can get for this.

I'm trying to get to the point where I can get to the internet to download what I need on this Linux machine.

The situation is this (*fictitious addresses used) -My Linux machine uses a fixed IP address (10.100.150.21)
My Windows machine uses a DHCP assigned IP address (10.100.150.213)Both Linux and Windows machine are configured to access the gateway server (10.100.150.1)So, I can ping the Linux machine from the Windows machine and vice-versa.I can ping the gateway machine from the Windows machine.I can browse Windows Shares on the network via SMB from the Linux machine.I CANNOT ping the gateway machine from the Linux machine with the Destination Host Unreachable message being the error message.

For actual internet access I need to access a proxy server but since the Linux machine can't even ping the gateway server, it fails to ping the proxy.Now, I have been told the gateway is a HW based router and for Windows machine they use some software for authentication to connect to the network. This software isn't available for Linux, so that's why I've been told to use a fixed IP address.My experience of networking is pretty basic and most of the Linux setup is done via running Slackware's setup program.

View 12 Replies View Related

Networking :: Defining Two Gateway With Different IPs

Aug 2, 2009

I have a server with 192.1.9.10 ip address and I want to define two gateways with ip: 192.1.9.4 and 192.1.9.254 on it but I don't know how I can do it. I don't have professional information in linux.

View 1 Replies View Related

Networking :: Gateway In Other Subnet

Jan 1, 2011

I've rent a server from a Germany data center,They use a single IP as their gateway that is not in range of my servers IP,Strangly server is working well and when I use 'route -n' command the gateway which is in other subnet appears properly./etc/sysconfig/network contains no gateway IP and I don't know how they set the default gateway while after reboot the gateway is the same, also the IP is static and there's now DHCP.I need to know how they did it so I can do the same on my VPSes.

View 1 Replies View Related

Networking :: How To Add Gateway (Static IP)

Jul 12, 2011

I have 2 lancard eth0 connected to local lan eth1 connected to bsnl broadband connection, I have centos 5.3 here I configure broadband in dial up mode. I am unable to ping outside world and unable to access some site but able to access internet like google etc, configure file is as:

eth0 Link encap:Ethernet HWaddr 00:14:85:96:1C:A7
inet addr:182.x.x.24 Bcast:1182.16.255.255 Mask:255.255.0.0
inet6 addr: fe80::214:85ff:fe96:1ca7/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:736487 errors:0 dropped:0 overruns:0 frame:0
TX packets:859918 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:122617961 (116.9 MiB) TX bytes:772581200 (736.7 MiB)
Interrupt:185 Base address:0x6000

eth1 Link encap:Ethernet HWaddr 00:08:A1:7B:A0:F9
inet addr:192.168.1.2 Bcast:192.168.1.255 Mask:255.255.255.0
inet6 addr: fe80::208:a1ff:fe7b:a0f9/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:658246 errors:0 dropped:0 overruns:0 frame:0
TX packets:620456 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:728744445 (694.9 MiB) TX bytes:100768525 (96.1 MiB)
Interrupt:193 Base address:0x4000

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:21198 errors:0 dropped:0 overruns:0 frame:0
TX packets:21198 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:5867015 (5.5 MiB) TX bytes:5867015 (5.5 MiB)

ppp0 Link encap:Point-to-Point Protocol
inet addr:59.xx.xx.xx P-t-P:59.xx.xx.1 Mask:255.255.255.255
UP POINTOPOINT RUNNING NOARP MULTICAST MTU:1460 Metric:1
RX packets:793 errors:0 dropped:0 overruns:0 frame:0
TX packets:968 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:3
RX bytes:528818 (516.4 KiB) TX bytes:148274 (144.7 KiB)

[root@venus ~]# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
59.xx.xx.1 * 255.255.255.255 UH 0 0 0 ppp0
192.168.1.0 * 255.255.255.0 U 0 0 0 eth1
169.254.0.0 * 255.255.0.0 U 0 0 0 eth1
182.xx.0.0 * 255.255.0.0 U 0 0 0 eth0
default * 0.0.0.0 U 0 0 0 ppp0

I am unable to ping gateway of ISP IP i.e gateway of static IP.

View 1 Replies View Related

Ubuntu Networking :: Trying To Fix Up A Gateway Computer?

Jan 2, 2010

I have a gateway computer that I've been trying to fix up - whenever I try to install Windows XP/2000/Ubuntu, it finds a bunch of errors. I'd really like to get this computer working, it has a 300GB HD, TV inputs, USB ports out the wazoo, and all that other good stuff. Can someone help me with what to do or have a suggestion on what to replace?

I have formatted the hard drive (the Windows installation did it.) The windows installation is to the point where its copying the installation files to the disk, then it gives me an error that it can't find/can't copy the file. The Linux installation just gives me cryptic errors before it even does anything.

I just want to get it to a point where it's usable I really don't care what operating system.

View 1 Replies View Related

Ubuntu Networking :: FTP Is Not Working Through A Gateway?

Jan 26, 2010

FTP is not working through a gateway and I think I found that I need to modprobe ip_masq_ftp. However, when I do try to load ip_masq_ftp I get the error: FATAL: Module ip_masq_ftp.o not found.My question is: how do I get ip_masq_ftp?More questions: Do I have to build a new kernel? If I do need to build a new kernel do I just include the ip_masq_ftp module or are there other modules that I need?

View 1 Replies View Related

Ubuntu Networking :: Gateway With 2 Red Networks?

Jun 21, 2010

What i need to do is setup a gateway with 2 red networks, reason being 1 is my internet connection and the other is my bDSL connection for our IP phone system and i need an IP range of traffic routed to the bDSL rather than internet, i can do this on individual PC's but id like to do it at the firewall level so i dont have to configure each machine on the network.

basically i want all traffic to go to internet except for say 203.x.x.x which i want routed to the bDSL router and let it handle it. Ive dome some reading and it seems ipcop and smoothwall cant do it so i was hoping with some tricky work maybe i can get ubuntu to do it for me.

View 2 Replies View Related

Ubuntu Networking :: Cannot Ping The Gateway

Feb 12, 2011

I can ping my IP, and other PC in the same LAN, but I CANNOT ping the gateway on my 10.04LTS ubuntu. Other PC in the same LAN(Ubuntu 10.04LTS) could ping the gateway and my IP. I thought that (1)network cable is OK because I could ping the other PC in the same LAN.(2)Gateway is OK because other PC could ping it. (3)setting of operating system might be somehow wrong.

I have tried to restart the network several times and still not works. I followed the HOW-To debug tips and following is the results. Any suggestions?

1. ifconfig
eth2 Link encap:Ethernet HWaddr 00:1d:7d:aa:d5:d3
inet addr:140.112.61.75 Bcast:140.112.61.255 Mask:255.255.255.0
inet6 addr: fe80::21d:7dff:feaa:d5d3/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1

[code]....

View 2 Replies View Related

Networking :: Gateway Changing Hostname?

Mar 14, 2010

I am coming across a strange error with my gateway. When I do a "ping", this is what I get below:k-63a5b848c6cb4:~ # ping simba PING simba.gateway.2wire.net (192.168.1.69) 56(84) bytes of data.

64 bytes from k-63a5b848c6cb4 (192.168.1.69): icmp_seq=1 ttl=64 time=0.041 ms
64 bytes from k-63a5b848c6cb4 (192.168.1.69): icmp_seq=2 ttl=64 time=0.029 ms
64 bytes from k-63a5b848c6cb4 (192.168.1.69): icmp_seq=3 ttl=64 time=0.023 ms

[code]....

View 1 Replies View Related

Networking :: Routing One Gateway To Different Subnets ?

Sep 3, 2010

Im having a issue with routing internet traffic from my router two different subnets (vlans).

Theres my setup:-

Server:

Both eth0,1 are running dhcp (two scoopes) that works fine!

The output of route -n is:

I have ip_forwarding on aswell, but i can ping the ip on the server running that dhcp scoope ie ping 192.168.4.1 works great but i just cant get the internet on the clients.

View 8 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved