what entry do I have to add to my ifcg-eth1 file to put the "nic" in promiscuous mode?
PHP Code:
# Intel Corporation 82545EM Gigabit Ethernet Controller (Copper)
DEVICE=eth1
HWADDR=00:00:00:00:00:00
ONBOOT=no
HOTPLUG=no
should I add PROMISC=ON
I've looked today on my logs /var/log/message and I find device eth0 entered promiscuous mode I don't remember putting eth0 in promiscuous mode I'm connected to the net thru a router how do i turn that off ?
View 1 Replies View Relatedwant to monitor network traffic with ntop from a Lucid 10.04 machine. Both NICs have picked up an IP address, I need to put one in promiscuous mode. I typed sudo ifconfig eth1 promisc and the response was SIOCSIFFLAGS: Permission denied
View 1 Replies View RelatedI need to route packets coming from a standalone switch port which is a mirror ("tap") of another port ("source"). I can't seem to forward packets whose MAC address is for a different device (the actual "target" of "source"). My device is in promisc mode,I can see the incoming packets in tcpdump and Wireshark. The only packets which get forwarded are those which have my MAC destination address (I changed the wiring to come straight from source and not the mirror port, to get "my" MAC address in the packet). My routing table is configured to forward and I have ip_forwarding enabled, obviously (otherwise packets sent to my MAC wouldn't route). By the way, the incoming packets are all VLAN tagged and I have matching subinterfaces.
Q1 - is this inherent, that packets won't get "passed up" to the IP layer unless the MAC addresses match?
Q2 - Would ebtables be a good solution, i.e. rewrite the dest MAC address to my own MAC addr and send to the INPUT target?
I try to generate a server client code. What i try to do is sending video streams from eth0 and eth1 to the other server programs' eth0 and eth1. In order to do that, i decided to use SO_BINDTODEVICE. But the code is not working. Am i misunderstood the usage of SO_BINDTODEVICE.
1-Defining two ports
2-Defining two sockets
3-Assigning host ips on them
[code]....
I want to configure eth0 and eth1 in bonding mode with 2 vlans each (sam existing vlan 100 and 200)configured on 2 Cisco switches. How can I go about that? I got the following procedure for bonding from the internet, is it right?
1. Add the below lines to /etc/modprobe.conf alias bond0 bonding options bond0 mode=1 miimon=100
2. Create bond0 device file, /etc/sysconfig/network-scripts/ifcfg-bond0 with the following content:
DEVICE=bond0
BOOTPROTO=none
ONBOOT=yes
NETWORK=192.168.122.0
NETMASK=255.255.255.0
IPADDR=192.168.122.118
USERCTL=no
[Code]....
I need to setup two ethernets in my Centos box. OK no problem both ethernet and 1 virtual works perfect. eth0, eth1 and eth1:0. I'm trying to set up diferent routes for eth0 and eth1/eth1:0 I need eth0 has a 192.168.1.1 gateway and eth1/eth1:0 192.168.1.100 gateway.I think I've tried almost every thing but always get one gateway for all the eth.These are my config..
/sbin/ifconfig
eth0 Link encap:Ethernet HWaddr 00:XX:XX:XX:XX:XX
inet addr:192.168.1.168 Bcast:192.168.1.255 Mask:255.255.255.0[code]......
I'm no expert on DHCP. My problem is that i have a CentOS 5.5 server on which i want to install a DHCP server. I have two NICs where eth0 has access to the internet and where eth1 should act as an DHCP server.
I have installed dhcpd and this is how my dhcpd.conf file looks like.
Code:
ifconfig looks like this
Code:
When i start dhcpd on eth1 i get no error messages but when i connect any devices to eth1 they don't get any IP. I cant find anything in any logs about devices trying to get an IP address. I dont have any firewall rules in iptables.
there are some configuration files where linux require the password of application user, to do something.how can i to encrypt the password in these files? Or how can i to store that password in encrypted file and retrieve it in secure mode?
View 2 Replies View RelatedI have Linux server (centos) in my company ,In Server have two Ethernet card we are using one for getting internet connection via eth0 and another one is passing network is shared through this ethernet eth1.Network is shared through this linux squid proxy server to Windows client .But thing is In Windows client Browsing internet via proxy is fine . But while ping google.com in cmd it say could not connect.
View 2 Replies View RelatedI have the following setup: An ADSL Router (192.168.4.1) which plugs into my server (that has 2 network cards) Server(eth0-connecting to the ADSL Router) = 192.168.4.2 Server(eth1-connecting to the windows XP PC) = 192.168.4.3 And the windows XP PC = 192.168.4.4 if I delete the entire routing table and add a default route route add default gw 192.168.4.1 dev eth0 I get an error (I can't remember the error, the PC's at work) however if I unplug the cable going from the PC to eth1, I can then successfully add the default route, and I can ping the router, however when I reconnect the cable to the PC and Server... I can still ping the router (from the server) but I cannot ping the PC
if I try and add another route such as: route add -net 192.168.4.0 netmask 255.255.255.0 gw 192.168.4.4 it wont let me add the rule I have a feeling i am doing something really stupid here with the addressing scheme,
I am trying to do something outlandish with iptables (or so I think!).I have a source sending udp packets to a destination (say dst11). Using port mirroring I am able to get all these packets to a different machine (say dst22). I am able to see these packets on dst22 interface using tcpdump.I want to analyze the packets on dst22. So what I do is put dst22 interface in promiscuous mode (using ifconfig eth0 promisc). This in theory should get the packet through the MAC layer. Now using iptables I am trying to DNAT the packets in nat prerouting to change the packets destination IP to dst22's interface and change the destination port.
View 2 Replies View RelatedThe system always boot up in Graphic Mode. After installation of Web Server, I want to disable Graphic Mode and change it to boot to Text Mode to save memory. Is there a way to disable graphic mode?
View 1 Replies View Relatedthis should be trivial for all you big sysadmin guys My box is a firewall/gateway. ETH0 is on the Internet-side, and is fully auto-configured (DHCP client) from my ISP. ETH1 is on the LAN-side, has DHCPD enabled, and I route the traffic to/from the Internet via iptables (NATting, of course). Everything works pretty good, except for the DNS-server assignment via DHCP: how can I configure dhcpd.conf to assign the SAME dns-server I receive from my provider on ETH0 to all my PC on ETH1?
View 8 Replies View RelatedI have a Fedora 11 system and cbq.init-v0.7.3 in it. Now I want to restrict upload speed from my ftp server to Internet (eth1). According to docs I've made a simple file /etc/sysconfig/cbq/cbq- 00.inet_upload_restrict:
DEVICE=eth1,100Mbit,10Mbit
RATE=800Kbit
WEIGHT=80Kbit
PRIO=5
RULE=:20,
So as you can see I want to limit outbound traffic on eth1 from my ftp port 20 to any to the 800Kbit/s (100Kbyte/s). Now I do cbq start, it says: find: warning: you have specified the -maxdepth option after a non-option argument (, but options are not positional (-maxdepth affects tests specified before it as well as those specified after it). Please specify options before other arguments.
find: warning: you have specified the -maxdepth option after a non-option argument (, but options are not positional (-maxdepth affects tests specified before it as well as those specified after it). Please specify options before other arguments. but it starts and works. Now I check the speed and it is...
I have a hardware device with two ethernet ports, eth0 and eth1 running Centos 5. Basically my goal is to forward packets from eth0->eth1 and eth1->eth0 as well as get a copy of these packets for analysis. If I set IP routing to do the forwarding then I won't get a copy of the packets for analysis.
View 3 Replies View RelatedI have openvpn tunnel setup between two CentOS servers. One of the CentOS servers also acts as a DHCP server for some client computers.
Server A= OpenVPN server
Server B= OpenVPN client (connects to Server A with OpenVPN)
The two CentOS servers can ping each other (172.16.0.0/24) via the tun0.
However, client computer connected to Server B (DHCP server) can't reach 172.16.0.1 (which is the OpenVPN server).
I think I am missing some routing in my "ip route show". Following is the full picture:
What command can I issue to get this fixed? something along ip route add?
There is no firewall service on both end. service iptables stop! I can't bridge eth1 and tun0 as DHCP server might mess up the other side. I can't do a push of "redirect-gateway def1" because then clients loose their IP as they send DHCP requests to Server A.
I work for a company that makes portable devices running Linux and I was recently asked to make the underlying file system read-only for "security" purposes. Since the distribution is based on LinuxFromScratch, I know that very little writing happens at run time. So, even if the device runs on a usb flash device, I doubt that putting the root file system RO will be that beneficial. I am actually more concerned about a process actually breaking because it cannot open a file in RW mode than a process going rogue and filling the root file system with log files, etc. I'd really like to ear what kind of advantages disadvantages there really is with read-only file-systems.
View 6 Replies View RelatedBelow is a print out of my partition Table from Fdisk, in Cylinder mode, Sector mode, and then in expert mode?
Why in expert mode does it look like Partitions 2 and 3 share the same sector / hd / Cylinders? Is this OK?
Code:
I have two servers on a vlan at my datacentre/colocation and previously both servers had public IPs on their eth0 interfaces. The servers are HP ProLiant DL360s - one is a G4 and one is a G5 The newer G5 is now the LAMP server and the G4 has been retired and I want to repurpose it as an iSCSI target using openfiler freenas or similar.
My G5 has public/static IPs lashed to the eth0 physical interface and the eth1 is not configured to do anything yet. The G4 will have both interfaces available - perhaps one for ssh access from one of my static public IPs and the other to be a private IP on the local vlan. Here is what I am trying to get my head around...
The G5
eth0 - Public IP - full LAMP services on two or three virtual interfaces
eth1 - Private IP 192.168.0.1
The G4
eth0 - Public IP for ssh
eth1 - Private IP 192.168.0.2
Because my traffic between eth1 on these boxes is via private IPs on the local private vlan it doesn't add to my quota for bandwidth. How do I go about configuring the routing and gateways and other aspects of this so that I can run a private IP space network between the eth1s and still serve the outside world from the eth0s...
I am afraid that if I assign the private IPs to the eth1 interfaces the routing may either not work or interfere with the access to the production internet facing interfaces (eth0s).
I've a popular vbulletin forum (10k max in vbulletin stats 'whos online') runnin in two servers like this:
1) Web server running vBulletin.
Dual Intel E5620 @ 2.40GHz (shows 16 cpus)
12 GB RAM
2 x 500 GB SATA (one for system/web and other for backups)
CentOS 5.6 64 bit
Apache/2.2.17
PHP 5.2.16
2) MySQL 5.server
Dual Intel E5620 @ 2.40GHz (shows 16 cpus)
16 GB RAM
2 x 500 GB SATA (one for system/web and other for backups)
CentOS 5.6 64 bit
MySQL 5.0.77
Web server connects to MySQL using private LAN.
Web-php server works with xcache as recommended by vBulletin.
Image/avatars and other static files (css, js, etc) are on a CDN
MySQL server uses Memcached for caching common queries.
The problem I'm facing, is from time to time (let's say one or two times a week) the Web server goes into read only mode... then the server has to be rebooted in order to get online normally and be able to work. From the logs I've seen this:
Code:
This is a new server, and in the old server the 'read only mode' issue happened very often too... so I guess it's not a HD issue.. it's just the HD have a heavy I/O usage. What do you think?
I am thinking about this solutions to improve the webserver performance:
1) 75% of the vbulletin users are anonymous users, so I've been thinking about using Cloudflare as a cache for all that traffic, that would reduce the php-webserver process a lot.
2) Using an external email server is a good option I guess... as right now the webservers also handles the email notifications for all the vbulletin users and it is constantly sending email everywhere. So, email will be stopped to gain server performance.
3) Mounting partitions with 'noatime' at /etc/fstab seems to improve I/O performance.
I have Ubuntu9.10 installed in my desktop and the version of thunderbird is 2.0.0.23 and I am facing a problem that if I open any attached document from my mail, it open in Read-Only mode. To make changes I have to save the file or click on edit button but if I click on edit button then file get renamed as Untitled document.
View 4 Replies View RelatedI have a dual boot (WinXp, Ubuntu) on my machine. Unbuntu is installed in the same partition of WinXp. Evertime i have to access a windows file or folder i mount the windows drive using the following command
Code:
sudo mount -t ntfs -o nls=utf8,umask=0222 /dev/sda1 /media/c
This works just fine. My problem is that all the files are loaded with -rwxrwxrwx and the directories drwxrwxrwx. I cannot change the file mode bits using chmod even in su mode. chmod incidentally works just fine and does not give any error. But the file mode bits are still the same.
I have to read files from a linux server. When I copy a file I receivce just a portion of the file I expected if the process generationg ths file is still writing it.
I read the file from a java apllication using SSH/SFTP. How can I detect if the file is still used by the writing process ?
i have used debugfs command and "open -w /dev/sda1" command, but i did not close it. the file system is in read-only mode now.
View 2 Replies View RelatedNow i am in grub mode as following : grub> And i need to edit a specific file What is the command that enable me to do this?
View 14 Replies View RelatedIn fedora, to use browse mode, you have to right click on a folder and choose browse. How can I make that the default option, like in Ubuntu if that rings a bell on what I am talking about. Every time I double click a folder I would like browse mode.
View 3 Replies View Relatedinstalled a couple of apps, and then by accident removed one. The problem is he was looking about in all the sections, and he cant remember what section it was from let alone what he removed. Now when the laptop boots it shows xsplash then goes to a dialog screen which says :-
(EE) open /dev/fb0:no such file or directory
When I click <OK> I get a small menu with Run ubuntu in low-graphics mode Reconfigure graphics Troubleshoot Exit to console Reconfigure does no good, but I can get logged in to text install. The laptop is an Acer Aspire 3630 and uses SiS graphics.
I have setup FTP Server on my Windows machine with Filezilla server. Now, if I try to copy files from it using Ubuntu 10.04, Lucid, it downloads incomplete files if I don't switch to binary mode.
Is there some config issue from Ubuntu client or something needs to be changed from Windows Client.
I just modified the grub file in 10.10 in order to see what the text line boot is like. Well now I want to go back, but when I try to gedit /etc/default/grub it gives an error that he couldn't display. How can I edit the file to go back to gnome??? I am on macbookpro 6.2 tripleboot Mac OS 10.6, Win7 and Ubuntu 10.10.