Networking :: Routing Vs OpenVPN Vs VMware - Host Only
Apr 4, 2010
My special networking configuration.
The case: I'm running two dedicated Linux servers (openSUSE). Both servers are connected through public IP addresses to the internet. Each server hosts a VMware with another Linux inside.
SRV1 and SRV2 are the entry points for OpenVPN from external clients. SRV1 and SRV2 are although connected through an OpenVPN connection for save data sharing.
My problems:
SRV3 can't connect to SRV2 and SRV4.
SRV4 can't connect to SRV1 and SRV3.
External OpenVPN clients connected to SRV1 can't reach SRV2 and SRV4.
External OpenVPN clients connected to SRV2 can't reach SRV1 and SRV3.
Here are my configurations:
Code:
Code:
Code:
Code:
View 1 Replies
ADVERTISEMENT
Oct 30, 2010
I just installed (n this 11.2 system) vmware server (v 2.02), to have access to a few small systems. One of them is a 11.1 guest which I just upgraded to 11.3, successfully (almost).
I have a problem, though: from the host I can not ping/ssh the guest.
Guest to host works fine (including names).
Code:
The firewall is down on both sides. I don't see anything with iptraf in the guest. The IP addres of the guest is correct, unless I'm too tired to see.
Why?
Code:
View 9 Replies
View Related
Apr 16, 2011
To be able to use my 3g connection from my laptop I am using Azilink.Azilink work by setting up a little Openvpn server on your smartphone then you connect to your smartphone from your laptop with OpenVPN.From there what i wanted was to use a second VPN connection to an external Linux host and redirecting all my traffic to that tunnel... (redirect-gateway + iptables)It is working but partially..Here is the way I connect through my phone (all steps are I think important for the routing issue...)
1) I plug the phone then a usb0 interface is created with the 192.168.239.5 ip adress (my phone is 192.168.239.4)Then adb connect 192.168.239.4
2) I have to enable a port forward on my phone adb forward tcp:41927 tcp:41927
3) I run the openvpn script (to connect to my phone on wich i have launched Azilink)
So Openvpn connect to 127.0.0.1:41927 (to my phone) From there I have a Initialization Sequence Completed
At this time I am connected through 3G via my smartphone to the Internet..And as you imagine i don't want to enter all the IP adresses of Internet minus RFC1918 manually via route command.I think the problem comes from the fact that when i do the route add default gw 10.8.0.5 it is overwritting all the routes required to establish the first and the second connection am i right? Could someone help me solve that issue ?
View 2 Replies
View Related
Jul 27, 2010
I've been on a quest to enable full routing through my openvpn tunnel between my office and the colo. Masquerading will work, however it will throw off anything key based and makes a lot of things just more difficult and vague in general. Is there an easy way to do this via iptables? I tried using quagga hoping it would magically solve my problems, however it does not seem to do my routing for me . I just did a basic static route within zebra...
View 3 Replies
View Related
Mar 6, 2010
I have a problem with the Fedora 12 Network Manager - OpenVPN configuration. If I use the same configuration and manually start openvpn (as client) I get connected to the OpenVPN server and I can ping the network that I am accessing. With Network Manager - I get connected but when I try to ping is giving me "Destination host unreachable". The routing table looks similar except that when connecting with network manager is giving me on more route in table
Destination Gateway Genmask Flags Metric Ref Use Iface
xxx.xxx.xxx.xxx 192.168.0.1 255.255.255.255 UGH 0 0 0 wlan0
192.168.0.0 0.0.0.0 255.255.255.0 U 2 0 0 wlan0
192.168.171.0 0.0.0.0 255.255.255.0 U 0 0 0 tap0
0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 wlan0
Where xxx.xxx.xxx.xxx is the IP of the OpenVPN server. When connecting "manually" I this routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.0.0 0.0.0.0 255.255.255.0 U 2 0 0 wlan0
192.168.171.0 0.0.0.0 255.255.255.0 U 0 0 0 tap0
0.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 wlan0
What I do wrong in Network Manager? If I try to delete the route with xxx.xxx.xxx.xxx is disconnecting the vpn connection.
View 8 Replies
View Related
Mar 28, 2010
After I applied below iptables rule.. I am unable to ping the host in 172.16.1.0/24 from OpenVPN client
View 1 Replies
View Related
Sep 14, 2010
I have VMWare on a notebook, guest Windows running on Linux host. The network in that virtual machine is configured as NAT. I want to share/transfer files from Linux (host) to Windows (guest). So I leave sshd always running on the notebook, I go into Windows and run an SSH/SFTP program. My Wifi router has address 192.168.1.1, my desktop has address 192.168.1.2 and my notebook has address 192.168.1.3. On the notebook, that SSH/SFTP program connects to 192.168.1.3 (i.e. the notebook itself) and everything works fine. But it's a notebook, and when I leave home with it, 192.168.1.3 is no longer accessible. How can I let the guest OS connect to the host OS when I'm away from my Wifi network?
View 1 Replies
View Related
Oct 3, 2010
I have been using VMware Player for some time to host Fedora VMware images on Windows XP. I have been using Fedora 11 and 12 (both 32 and 64 bit) and recently started to use Fedora 13.
I use as a base the images provided by thoughtpolice. http://www.thoughtpolice.co.uk/
I usually install VMware tools and also keep the images updated (yum update) which sometimes changes the kernel.
I have recently had problems with the snapshots not having a network when I restore them. So far I don't have the problem with Fedora 11 and do have it with Fedora 12 (but used not to). I do have it with Fedora 13.
In each case the problem goes away when I uninstall the VMware tools and comes back when I install them again.
One of the symptoms is that SElinux complains about not being able to do something with /var/run/vmware-active-nics.
It looks to me that something is incorrect in the actions being taken when the snapshot is being restored. It does not happen every time and sometimes the network restores itself.
The network can be restored by rebooting the image.
View 12 Replies
View Related
Aug 31, 2011
I've been working with my OpenVPN server for a while, and I have a rather interesting problem. I need to redirect all client traffic through the tunnel except for a couple IP's that need to be resolvable locally. The way I'm doing this is pushing these routes from the server:
Server 'PUSH' directives
push "redirect-gateway def1 bypass-dhcp"
push "dhcp-option DNS 8.8.8.8"
push "dhcp-option DNS 8.8.4.4"
I'm seeing that translating into these Windows routes:
Windows routes occurring
Wed Aug 31 15:14:35 2011 PUSH: Received control message: 'PUSH_REPLY,redirect-gateway def1 bypass-dhcp,dhcp-option DNS 8.8.8.8,dhcp-option DNS 8.8.4.4,route 10.8.0.1,topology net30,ping 5,ping-restart 30,ifconfig 10.8.0.6 10.8.0.5'
Wed Aug 31 15:14:35 2011 ROUTE default_gateway=192.168.1.254
Wed Aug 31 15:14:40 2011 C:WINDOWSsystem32
oute.exe ADD 199.[*.*.*] MASK 255.255.255.255 192.168.1.254
Wed Aug 31 15:14:40 2011 C:WINDOWSsystem32
oute.exe ADD 0.0.0.0 MASK 128.0.0.0 10.8.0.5
Wed Aug 31 15:14:40 2011 C:WINDOWSsystem32
oute.exe ADD 128.0.0.0 MASK 128.0.0.0 10.8.0.5
Wed Aug 31 15:14:40 2011 C:WINDOWSsystem32
oute.exe ADD 10.8.0.1 MASK 255.255.255.255 10.8.0.5
I've hidden my server's IP beginning with 199 for security purposes.What I've gathered.I'm assuming that 0.0.0.0 is a kind of code for "everything," so I'm not sure how I could get this to work, but the general idea is that I need a specific IP range (172.16.*) to be resolvable on the LOCAL NETWORK (of the client) meaning it does not go through the VPN tunnel and the client can connect to 172.16.* locally.Is this possible? Routes can be executed through the command line, server "push" or client config options. Any way to get this to work while still routing other traffic through would do, really.
Additional Info: I have the server running on Debian 64-bit and the client running on Windows 7 (although Vista needs to work as well).Client/server configs can be provided if needed.
View 2 Replies
View Related
Apr 21, 2010
Just curious to see what everyone's opinion on using routing vs. bridging for openVPN. I'm installing openVPN on a linux box that I'm using as a router. What I was wondering was your opinions on which one of these two options to use.
View 2 Replies
View Related
May 2, 2010
I am playing with openvpn, and I got stuck.I am using ubuntu server for openvpn server, which has 2 physical NICs, one is directly on internet and other is LAN, where few pcs are connected on.
View 5 Replies
View Related
Aug 16, 2011
I am running a Ubuntu Linux VM using VMware Player on a Windows 7 host.
I don't want to connect directly to the network or use NAT; I need host-only networking but also need Internet access. How can I do this?
View 2 Replies
View Related
Jul 28, 2009
I am running VMware workstation on a Linux host and WinXP guest using NAT. I have shared a folder on WinXP, and I am able to mount it on the linux host with:
mount -t smbfs -o username=Administrator,password=mypasswd //192.168.100.129/Shared /mnt/tmp
This works fine. However, I want to mount the same folder from a different linux machine (not the host).
I added port forwarding in /etc/vmware/vmnet8/nat/nat.conf:
[incomingtcp]
#445 = 192.168.100.129:445
If I run:
mount -t smbfs -o username=Administrator,password=mypasswd //external_ip_number/Shared /mnt/tmp
I am getting:
mount error 112 = Host is down
Refer to the mount.cifs(8) manual page (e.g.man mount.cifs)
It doesn't work even if I try the above command from the linux host itself. It only works if I use the internal IP number. I suspect vmware is not forwarding port 445 but I am not sure how to verify it. I am not running smbd on the linux host, in case that make any difference. I didn't think that was required because the server is really on the WinXP and the linux is just a client.
View 3 Replies
View Related
Apr 1, 2010
I have Fedora 12 (Fedora-12-i686-Live.iso) installed and booting in a VMWare workstation (version 6.5.3). I am able to login as the LiveUser.
I need information on how to access the drives on my host which is WindowsXP. My C: on the host is shared, and my network adapter for the VM is "NAT".
The only directory listed in my /mnt directory is "live".
My Fedora enviornment is "bare bones". There is nothing installed except for the original files from the "iso" loading procedure.
I also have been unable to get the VMWare tools installed, and I don't know if this is related. I don't mind bypassing this if this isn't required. My only desire right now is to access my C:
View 6 Replies
View Related
Jul 14, 2009
Have done a bit of Googling around this but got totally swamped so will try here. Basically we are running a CentOS server which hosts a number of virtual hosts under Apache. Recently I needed to set up a development environment for another site using Ubuntu and have this running and accessible on the LAN from a VMWare image. I'm using bridged networking so the VMWare machine has its own IP on the LAN subnet.
I've set up a DNS to point to the external IP of the physical host but can't figure out how to route traffic requested on this domain to the VMWare host. I've basically tried two approaches (configuring a proxy web server and reverse proxy in an httpd.conf file and mucking around with iptables forwarding rules but without success.
Ideally I'd like somesite.somewhere.com to point to the VMWare IP but I could live with a custom port on the end if thats whats required.
To throw further complication into the mix I need reliable communication between the VMWare machine and external mail relay servers in order to debug any issues with mail bouncebacks, embargos etc.
Any idea what's the easiest way to accomplish this?
View 4 Replies
View Related
Oct 31, 2009
I have a WindowsXP virtual machine which I need to isolate from the host machine completely (have the host act as a bridge but not be visible on the IP layer at all.) It still needs to have Internet access. Obviously it has to be able to contact the router but I would like to be able to block port 80 (or even just block all SYN packets addressed to the router.) I also want to allow port forwarding from the router to the virtual machine. I can use basic iptables but this is way beyond me.
The host OS is probably going to be Debian Lenny but this is not built yet so if someone can recommend a different distro which is as lightweight as possible but will support VMWare, iptables and tcpdump then that would be great. I was thinking of Slackware but I have not used it in ages and from what I can remember their is no real package management.
View 1 Replies
View Related
Apr 6, 2010
I have a firewall, this consists of three NIC's:
Code: eth0[192.168.0.2] eth1[192.168.1.2] and eth2[10.10.165.2]
I am trying to ping eth0 from eth2, but I am not able to succesfully get a response from pinging the device, I am using:
Code: ping 192.168.0.2 -I eth2
I have tried to insert routing data into the routing table, but it still doesn't work
View 2 Replies
View Related
Apr 5, 2010
i have some problems with configuring openvpn tunnel connection to my openvpn server. I'm using static-key tcp connection. Network manager always said to me that connection could not be established. Also, when i try to run openvpn from terminal, i got some strange permissions problem:
Code:
openvpn --config config.ovpn
Mon Apr 5 15:48:37 2010 OpenVPN 2.1_rc19 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Oct 13 2009
Mon Apr 5 15:48:37 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Apr 5 15:48:37 2010 /usr/sbin/openvpn-vulnkey -q moj.key
[code]....
View 1 Replies
View Related
Jul 19, 2009
Just something that struck me while working on our virtual servers today.
I have bonded 3 NICs at the host in Ubuntu Server 8.04 LTS. They are using mode 0 for Round-robin. Point is to increase the speed/performance of all the servers, but mainly the fileserver. The fileserver is a virtual server running Ubuntu Server 8.04 LTS on VMware Server 2.0.
1) I noticed the NIC in the slave OS reported link speed as 1000 and Im unable to change it as the NIC (virtual one) doesnt support it. Does this not really matter, as the NIC doesnt exist, and it will run at higher speeds anyway? Or do I have to remove the bond on the host, bridge all 3 interfaces from the host to the slave OS, and then make a bond in the slave OS?
2) While at it, does mode 0 only increase performance on data being sent from the host or does it also increase the available incoming bandwidth?
View 1 Replies
View Related
Oct 10, 2010
I just purchased vmware workstation 7 and I am trying to decide what the best host is. I will be running both windows, Linux, etc. I was hoping to go with the most stable and lean is and that is pointing towards ubuntu.
Does anyone have any experience with either or? any suggestions would be great and my linux skills are entry level but I always like to learn so I'm ready for the challenge.
View 2 Replies
View Related
Dec 17, 2010
I was wondering if the "Unity" function of VMware Player will work with Ubuntu 10.10 as the host OS and Windows XP as the guest OS.
I would simply just try it out myself but I am at work right now and I am too impatient to wait until I get home to try it.
View 2 Replies
View Related
Apr 14, 2010
i just want to run linux(guest) on winxp(Host)on vmware. where i download linux guest. and how i installed the same in vmware runing on winxp.
View 3 Replies
View Related
Feb 9, 2010
I just had one hell of an experience trying to get openSUSE 11.2 to run on VMware server 2.0 on a Windows XP host. I am posting some instructions on how I finally got things working.
1) Download the openSuse iso image (and add-on CD if needed)
2) Download and install the VMWare server
3) Before you try to start the server console, you will need to configure the web access to allow you to log on. go to press Start->Programs->VMware->VMWare web access->Configure Tomcat
4) on the logon tab check logon as: option
5) add your account there and set the password
6) Now in your web browser (I use firefox) access the console via: [url] [url]
7) Before you start to create a virtual machine, you will want to set up the server to have access to your iso's. The server will only allow VM's access to specific directories through "datastores". You can either move the iso images to what has been specified as the default datastore... or create another datastore that points to the where you have the iso's.
8) Now we can create our virtual machine. This is simple, just press the button and follow the prompts.
a) at some point it will ask about an CD-Rom, you will want to use your suse DVD iso image. Select the option and then navigate the datastore that contains the image. Once found click and continue.
b) Network interface has 3 choices:
Bridged - the virtual machine will appear on the network as any other computer. Allows the VM to host server applications. User needs to have control over the network to ensure DHCP requests are handled (or static IP is assigned).
NAT - VMWare server will manage a virtual router, the VM is then connected to this router. On this router, the hosts internet is used as the WAN. Users do not have to have control of the network, but will have to setup port forwarding in VMWare to host server applications
Host Only - This means that the virtual machine can only talk to the host. The only way to get networking is to have a proxy through the host machine. This is setup on the host independent of VMWare. Users do not need control of the network, but control over the host. I doubt you could host server applications though.
9) With the VM created we can start it up. We can open a window to it through the console tab of the VMWare server console. When I first started it, it was stuck looking for an OS once the console finally rendered the graphics. A reset, an F2 at the post and selecting the appropriate boot media for boot got the installation started.
10) Install Suse as you would any other suse installation. I added a separate partition for swap, but kept the rest on one big one. Others may still want to maintain the separation of home and root
11) ---- Important Error/Solution ----
Once the installation has completed many will notice that the mouse or keyboard does not work! This was the source of my biggest head-ache. Some may think it was a problem with VMWare tools... I tried that to fix that and found the tools were working properly.
View 7 Replies
View Related
Jul 28, 2010
My RHEL version is Red Hat Enterprise Linux AS release 4(Nanhant update 6) I installed Linux on vmware.My host is win xp.Am able to ping guest as well host.How i can copy the files from host to guest.
View 2 Replies
View Related
Dec 29, 2009
I am new to linux, it was nice to work with linux on virtual machine, but suddenly yesterday when I try to connect using putty from my windowsxp machine its showing network connection error. I dont know what happened. In linux machine ifconfig shows only 127.0.0.1, could not trace problem, guide me to trace the problem.
Previously it used to give 192.168.1.2/192.168.1.3 it used to vary every boot. FTP also stopped working. I am clueless. My system setup:
Del inspiron 1525:
RAM 3G
HDD 160G
Linux RHEL3 on VMWare
View 5 Replies
View Related
Feb 11, 2010
I can no longer drag files from my ubuntu host into my XP guest. I have vmware tools installed in XP and up until recently I could simply drag whatever I wanted back and forth between the systems. When I try to drag a file across into XP the cursor has the plus sign like it would normally to drop a file in, but now it also makes a selection box on the XP desktop. Same problem in Workstation and Player. I haven't posted on the vmware forums yet, I figured someone here probably has had the same problem. I don't think it was a kernel update. I restarted ubuntu with 2.6.31.18 which was fully functional before, still with the same problem.
View 1 Replies
View Related
Apr 25, 2010
Not sure if this post belongs here, but here it is.
Host: Win server 2003
Guest: Ubuntu server
Host: IS able to ping guest. Firewall is OFF. NOT able to access guest (which is a web-server) at browser.
Guest: NOT able to ping host. Running a web server, you can check the website: (pegajosa.com) is running under that virtual Linux server.
Problem: guest needs to access host's sql database and/or any resources.
Network: is bridged.
At the Linux box ifconfig -a code...
View 7 Replies
View Related
Apr 28, 2011
Could you provide me steps on how to connect the guest OS (RHEL 4) using Vmware thru host OS( Win 7)
I am using Bridged connection. How to choose the static IP to be added in the Host OS.
View 1 Replies
View Related
Sep 18, 2009
Centos 5 was set up for me on my server with VMware and XP SP3 as a guest. I have little to no knowledge of centos (or anything Linux) so i tend to leave well alone but i am trying to get a USB printer to work from my networked pcs through XP - Through VMware - Through Centos5 to the USB port on the back of my server. I am reasonably OK with XP but am not a techie so will probably need to be walked through this.
I can see the printer appearing on Centos' equivalent to device manager and when i print everything seems ok with the XP print queue clearing after a few seconds but nothing prints. At a guess i need some sort of software bridge- (is this SAMBA?).
View 5 Replies
View Related
Apr 12, 2010
I have RHEL 5 installed on VMware 6.0 and the host OS is Windows 7. My Host is connected to internet using a wireless connection and works on shared IP. Earlier when I had Windows vista as host I have managed to get the internet connection on the RHEL but do not remember how I managed it. Now I need help in setting the internet connection on RHEL. I have set up a NAT connection. But of no use.
View 4 Replies
View Related
