Ubuntu Networking :: Create A New Virtual Network Using A Subnet Of Public Range
Jan 27, 2010
There seems to be a lot written about virtual networking but I am not sure what approach to take in my situation. My local subnet has a public block of 128 addresses. I have a virtual host running on my machine. My machine has a static address and I'd need to assign one to the guest. I have edited the guest's interface file and assigned a public address to it's eth0. However the guest cannot ping out and I can't ping in.
By default the virtual machine manager creates a virtual network (virbr0) and assigned a private address range to it. I have tried to create a new virtual network using a subnet of my public range (/31) but the manager says the range must to a minimum of 16 addresses (/4). It doesn't look possible to achieve my aims using the virtual machine manager.
In the past I have used the procedure laid out here:[URL].. which is to manually create a bridge. I am not sure that is relevant for my 9.10. I think I would have to disable the network manager if I were to do that and I am not sure how to do that.
I will try to explain a bit first about my network typology: I have one cent os 5.5 machine with 2 nics - external one 86.x.x.122 and internal one with 2 IPs: 192.168.1.1 and 89.x.x.121. The ideea is that I have a public subnet (86.x.x.120/29) of IPs which are routable only through 86.x.x.122 so I have a webserver hosted on a different machine with the IP of 89.x.x.122 and GW 89.x.x.121 - everything works perfectly fine, except that I cannot access from the internal network 192.168.1.0 / 24 the so called DMZ (roughly) - the 89.x.x.122.
What really makes me crazy is that I setup the IPtables rules correctly because I can access the webserver from the outside world but I cannot accessit from the internal network...
what I'm missing - why the 192.168.1.0/24 cannot see the 89.x.x.122 machine... What IPtables rules should I add?
I have been trying to get a DHCP PXE server up for a few days now, this is what I got so far..I am following this how-tohere are some outputs and what-nots, go to the last one to see the problem I am having.the host network
Code: :~> /sbin/ifconfig br0 Link encap:Ethernet HWaddr 00:19:DB:62:97:20
does somebody know how dnsmasq / iptables need to be configured such that requests to my public IP from lan are correctly NAT'ed to the host that handles them? Currently my routing device treats them like "oh, these are anyway for me, gnam gnam" which actually doesn't work.Unfortunatly setting up NAT rules that redirect requests from my lan correctly as they are redirected from wan is an option I would like to use only if there is no other possibility.I would like some kind of solution that treats packets that are sent to my public IP as normal packets that are not looped back before they even get out. So they would need to be at least sent to the wan gateway where they are directed back where my firewall can successfully treat them like all other public requests.
eth1= WAN IP= 110.88.89.66/32 Gateway= 110.88.89.65 eth0= LAN IP= 192.168.1.1/24 Chain POSTROUTING (policy ACCEPT) target prot opt source destination MASQUERADE all -- 0.0.0.0/0 0.0.0.0/0 [Code]....
My ISP gave me IP Pool 110.88.90.68/29 to use this on my LAN. my question is how can I use this IP pool on LAN side interface. i think now its simple. 192.168.1.0 /24 is my LAN network and I can not change this, because i have near 180 PCs on my LAN.
I have TWO L3 + router switch (say switch1 and switch2). I created VLAN100 with VLAN ID 100 in both the switches. I created router 192.168.1.1/24 in Switch1. I created router 192.168.2.1/24 in Switch2. Switch1 is connected with 1.x/24 PCs. PCs are configured with 1.1 gateway. Switch2 is connected with 2.x/24 PCs. PCs are configured with 2.1 gateway. Both Switch1 and switch2 are connected by a trunk to carry VLAN100 data.
1)I have few PCs of 1.x connected to say Switch1 Is it possible for PC with IP 192.168.1.100(x) to ping PC with IP 192.168.2.100(y)?What are the configuration required in both switches to make them communicate ? All the device in both the subnets should ping/communicate with each other.
2)Move PC (192.168.1.100) to switch2. Move PC (192.168.2.100)to switch1.What will happen when PC(1.100) ping (2.100) and vice versa?What will happen when PC(say 1.80 in switch1) pings PC (say 1.100 in switch2) and vice versa? What will happen when PC(say 1.80 in switch1) pings PC (say 2.100 in switch1) and vice versa?
I have openSUSE 11.2 installed and i need to create a gateway server that allows virtual private network connections. I want to play with my friends some lan games, but we are in different networks, so i want to create this gateway server so we can connect with VPN clients to this server and play freely.
I'm living at a friend's right now, and he's got a wireless access point in the house that I set my laptops wlan0 interface to route through the eth0 to my desktop. It's been working fine for internet sharing and internal networking ( ssh and ftp ) between the laptop and the desktop, but there's a problem with both subnets being able to communicate with each other, and I haven't been able to solve it with DNAT either.
The wireless access point is 192.168.0.1 and has its own lan on 192.168.0.0/24 of which my laptop is 192.168.0.5. I setup the little subnet I created by routing with the laptop to 192.168.1.0/24 and my desktop is 192.168.1.50. With shorewall I can configure iptables to DNAT all of my ssh traffic destined to 192.168.0.5 to 192.168.1.50, but the problem seems to occur when ssh on my desktop fails to connect rather than the DNAT failing.
Using iptraf I've seen that all of the routing does work properly, because I can see on the connection in iptraf that only the SYN packet is being sent from a 192.168.0.x address, there is no ACK packet sent back. I believe this is because in the connection dialog it always shows a 192.168.0.x ip as the source of the connection, but I don't have a route to 192.168.0.0/24 from 192.168.1.0/24 setup and I'm unsure of how to do so.
I'm pretty much in over my head because I don't know what is wrong, I thought it should work like this. Everything else from port configurations, to the configurations of the software itself seems fine so I don't think it's anything like that preventing a connection, but I can't think of what it would be aside from the lack of routing between each subnet.
Is there anyway to just add a route so that 192.168.1.0/24 and 192.168.0.0/24 can communicate with each other directly? I know there should be, I'm just not at all sure how it would be done.
I am basically from system side and often confused about the calculation of the IP addresses.Just i want to know that what how can i calculate the following of a IP Address:
(1) Available IP in a Network (2) Broadcast IP (3) Network Prefix or Net Mask
I'm updating many servers blacklist manualy. from time to time. I want to create a blacklist and host it on a website, and servers will update from this list regularly. For servers I'm using:
Centos iPcop Smoothwall
And for proxy I'm using Squid. And I dont use squidguard.
I installed Redhat Enterprise linux server5. it has two LAN card and two subnet connected to these two LAN card. i can browse network from these two network easily. But i created VLAN on one network card.Now i cant browse network from these VLAN subnet.
I am trying to remember how to determine the number of subnets there are in a given subnet range. The example range is shown below:Quote:217.133.64.0-217.133.127.255nce I did the binary conversions of the two addresses shown, the address that I got when comparing the two was the following:Quote:217.133.192.0he number of subnets I got from his was 63.Correct me if I am wrong, but is the number of subnets the difference between the number, in this case, the third octet and 255? If there is another, or correct, way of determining the number subnets what would it entail?
I have a problem with network manager. I use Ubuntu 10.04 on a Dell Latitude D530. I used to have the same problem with Ubuntu 9.10 before I upgraded. I typically connect to two wireless networks: HOME and WORK. Both networks are set to automatic connection mode. I am at work, I connect to the network WORK. At the end of the day, I just close the lid and go home. At home, I open the lid and have the following problem: network manager still displays the network WORK whereas it is clearly out-of-range and it automatically tries to connect to it. It does so until network manager asks if the password is correct.
If I want to connect to HOME, I have to tell network manager to do so. Then, I receive a notification that I am disconnected to WORK. Next morning, I go to work, and I have the same problem, network manager tries to automatically connect to HOME. What I would expect from network manager: when I am at home, NM automatically connects to HOME and does not display WORK, when I am at work, NM automatically connects to WORK and does not display HOME.
Working on ubuntu 10.04 on an IBM Thinkpad X61 laptop with an Alpha 2W wireless usb card on wlan0. Once in a while the wireless network disconnects and can't connect to any network in range (open, wep, wpa, wpa2). It looks like it's trying to connect but then asks for a password (even if allready given one) and if open just not finishing connecting and trying to connect to another network. Happends the same with wicd. Network card is working ok. Also with other computers. Drivers are installed correctly and power consumption management is off.
So I want to put some of my folders on my network. I open up nautilus and go to my home folder and right click -> properties-> share and then selected share this folder, made it so that others could modify stuff on it and have guest access (which is what I want), and changed the share name to "home". Then I clicked create share. I then went to Places->Network->******'s public files on [the name of my computer]. But then some stupid error message popped up saying:
"DBus error org.freedesktop.DBus.Error.NoReply: Message did not receive a reply (timeout by message bus)"
Using my laptop, I'm trying to get onto the local library's wireless network, with zero results so far.Basically, I can see the network, but when NetworkManager tries to connect it just spins for a few minutes and then rejects the connection. (Or the connection is rejected by the router) My wireless connection works fine when connecting to my WPA home network.
We have to connect one PC in private network (campus) with other PC (mostly a modem in our case)in public network. Connection should be peer to peer like and we have to use C coding for establishing connection between this two systems. Is it possible if we use port forwarding or is there any other way?
Is there any one know how to deploy a remote OS installation for a host with public network address? In a LAN with private network, we can use PXE, kickstart... but what we could do with the hosts have only public ip address?
I've searched the forums (250 thread limit) for a fix on this, but all the questions seem unanswered or unrelated. My situation is this: I'm running Ubuntu x64 10.10 'Maverick'. I have a cablemodem connection for my Internet access. I have home network running on DD-WRT with the dreadful Linksys WRT54G series router.
My DD-WRT router is 192.168.1.1, subnet 255.255.255.0. My Linux box is 192.168.1.61, subnet 255.255.255.0.
I have a VyprVPN connection set up successfully on Linux. Mostly everything works great, speed's fine, latency is what I expect it to be. Except... I also run an SSH server to remotely admin the box at port 22, an Apache server running over SSL at port 7001, and a Transmission web client at port 7002 (only secured by basic HTTP realms auth). All of these things worked before I got the VPN working, I'm of course using NAT at the DD-WRT router.
The endresult I am looking for, is to have the security and protection of the VPN (even if it's only perceived) for everything I do on this machine -- EXCEPT on Apache, the Transmission web panel, and the SSH server, which I want to access from the outside world. I have no firewalls running or configured, not even iptables, not even the SPI firewall on DD-WRT. All connections to the aforementioned services from the outside world timeout coming in to the Linux box. They all work from inside my home network (182.168.1.0/24). In case it's needed, he's my routing:
I need to set a NAC (PacketFence) system , i would like to set in my case eth0 to work with several different VLAN'S i created ifcfg-eth0.2 copied from orginal ifcfg-eth0 and changed the ip and append VLAN=yes but when i am triyng to load ifcfg-eth0.2 i get error
I've been trying to understand how Linux creates the network/interfaces on a machine (been reading the Linux admin guide), but as I'm pretty new to this subject, I've got lost in the forest.
To provide with my goal: 1.) Learn about network setups on Linux 2.) Be able to maintain my own (virtual) network 3.) Configure my (virtual) network
I have a server that is on both a standard network and a virtual network, as follows: server1 attached to standard network server1 acting as Dom0 with two linux DomU guests (under Xen) I only have one network card. How do I configure server1 to have a different hostname on the standard network than on the virtual network? Here are the relevant network configuration files for server1:
I need to set a NAC (PacketFence) system (CentOS 5.5), i would like to set in my case eth0 to work with several different VLAN'S i created ifcfg-eth0.2 copied from orginal ifcfg-eth0 and changed the ip and append VLAN=yes but when i am triyng to load ifcfg-eth0.2 i get error
my ifcfg-eth0 goes as follow
# Intel Corporation 82578DM Gigabit Network Connection # Normal VLAN Lan adapter (Managment)(On-boad 1st NIC) DEVICE=eth0
I would like to configure and SAN disk. But I do not have a physical SAN disk. Is it possible to create and configure a Virtual SAN disk and work on it with virtual machines?I have around 400GB of space in my Laptop.
