I am trying to secure my LAN a little by doing static arp entries. But I am not sure how to go about doing this... I have a gateway, and I have a seperate box that runs dhcpd. I would like to assign every machine an ip and only allow it to use that ip, therefore static dhcp entries, and static arp entries on the gateway.
1. But how do I prevent someone from picking an ip that nobody is using and assigning it manually?
2. I assigned a static arp entry by doing arp -i br0 -s 2.2.2.35 00:1F:E1:CC:2E:46, how do I remove it now? I used arp -d but now it just says:
? (2.2.2.84) at <incomplete> on br0
3. I would also like each machine to have a hostname/dns.. like machinex.local, where I can do forward and reverse dns lookups, how do I config this?
4. I know static arp can be fooled if someone just clones an allow mac.. is there anything else that I could use that is more secure for wired lan?
5. I have my gateway running rflow sending all data to ntop running on my dhcp box.. Ntop is kinda cryptic, is there anything easier to use? or something that is better in features? I would like to see how much bandwidth each local ip is using and possibly what protocols, like ntop already shows.
In 8.04 I can use the network manager app to set a static IP.
In 8.1 the network manager doesn't seem to work. I tried many different permutations of settings and got nowhere. Even though I put in IP subnet and gateway it still does the DHCP config.
So I added lines to my /etc/networking/interfaces file like this:
auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 192.168.0.100 netmask 255.255.255.0 gateway 192.168.0.1
I then either reboot or do this: sudo /etc/init.d/networking restart
This made the network manager icon in the top panel vanish. An ifconfig showed that those settings are in place but DNS doesn't seem to be working. I can ping other hosts on my network by IP but not www.yahoo.com etc.
I even read the man, that's how desperate I got! (a config like the above seems to work on my 8.04 machine except that the auto eth0 appears at the end of the file.)
I didn't see how to set the DNS server(s), unless I was in the wrong man.
I have a fresh install of Centos 5.x and I'm having issues on setting up the network...i know i have to edit/etc/sysconfig/network-script/ifcfg-eth0 and create an ifcfg-eth0:0 right?im just having issues getting everything setup correctly.my network setup:Router IP: 192.168.2.1IPs on network: 192.168.2.xNetmask: 255.255.255.0
I'm setting up a home webserver with Ubuntu 10.10 and want to configure the interface to static. I'm using a router, which is setup and working correctly. I have been using linux workstation with dhcp for some time.
I've edited my interfaces file to reflect the parameters for setting static ip, with the exception of 'network'. No matter what I put into this setting, it causes me to loose connectivity to the outside world. I've tried to put my router IP, and my IP set by my provider. What should the 'network' value be?
At this time, my 'interfaces' files only includes the following and has connectivity out to the internet:
Code:
Do I need the 'network' settings as shown in every tutorial (but never explained)?
I'm having strange difficulties in setting a static ip for my CentOS 5.4 installation. If I use DHCP everything is fine, but with a static ip I have no network connectivity. I have done this many times with RedHat/Fedora/Ubuntu etc. with no problems and now I have no idea what I'm missing or doing wrong. I have tried to set ip as 192.168.1.20 (anything below .100 will do). GW is 192.168.1.1 and NM is 255.255.255.0. This is all I have had to use with other distros, but now when I set these I cannot even access my routers admin page or ping it (192.168.1.1). (I just did this with Vista on my other machine and all worked fine).
I need static networking to be functional on F14 to try freeipa....the problem I have is I am unable to get eth0 to start. Knowing the software it has to be eth0 or it will likely not work... The guest is in a RHEV6svr environment... So I have disabled NetworkManager and enabled networ and set manula settings in ifcfg-eth0 incl the hware address but eth0 wont start on boot....
next I tried setting a e1000 network card after the hypervisor default didnt work, only to find that this doesnt work either. The MAC addresses are changing as I try and fault find a dead DNS client issue (yet another F14 issue but lets not go there yet, it could be RHEV's "funky" NATing setup)....so I suspect F14 has got its knickers in a twist over the MAC for ETH0....I keep changing it and I suspect it cant keep up.....so I need to disable the automatic function(s), if there is one....
So somewhere down in the code there is probably a line saying eth0= <mac address> but despite greping I cant find that.....or not something that I edit and it then works.... I have tried the gui tools and command line tools and I still have no network..... So what would be a totally CLI process to fix this automated crap? ie stop F14 pointing at the wrong MAC for eth0?
I want my Ubuntu desktop to have a static ip-address, i have altered the interfaces file to the below and also filled the info regarding my wireless network card but still every time I reboot the desktop gets the ip 10.42.43.1, HOW is that possible???
I use a apple time capsule router, I want my desktop to run a apache server thats why I need the static ip. I also want the static ip to be set on the wireless network interface. I have an old laptop with an internal Intel pro 2200 card so there should not be a driver problem.
This i my interfaces config code...
To be on the sure side to get this to work I have configured my router(DHCP) to give my wireless-HWaddress the ip of 10.0.1.15, STILL the ubuntu desktop starts with the false address above.
I wanted to have a static local IP on my server,But on my 192*.168.1.1, there's a place where ic an see all devices, and before, the displayed name was "STASH" and with the update i put, it'S now "--", but i'd like to keep my old one..
I want to set up a static IP on my laptop that connects via wireless to my home network. I have 11.04 installed on my laptop. When I try to use the manual IPv4 setting in the network manager the save option gets greyed out. I tried to edit the /etc/network/interfaces file but all the examples I could find on the net refer to eth0. I tried replacing this with wlan0 but this did not work. I tried installing wicd but I kept getting "Bad Password" errors even though I know the password is correct. A number of people recommended uninstalling network manager to get wicd to work but many other posts said that uninstalling network manager didn't help so I didn't want to go ahead and uninstall unnecessarily. Besides I figure if Ubuntu is distributed with network manager there must be a reason for having it. So what do I do to get a static IP address for the client on a wireless connection?
1. I went to network manager and selected "Connection Information" On the information window I saw the following:
IPv4 IP Address: 192.168.1.6 (This is the item I wanted to change and make static) Broadcast Address: 192.168.1.255 Subnet Mask: 255.255.255.0
[code].....
2. I went to network manager and selected "Edit Connections" 3. I selected the wireless tab and then the wireless network I wanted to edit 4. I clicked on the edit button and then I clicked on the IPv4 settings tab. 5. I changed method from Automatic (DHCP) to Manual
I decided to take the plunge and change the existing static ip configuration for my home network to a dynamic (DHCP) configuration. The DHCP server in this new network config is my gt701-wg actiontec DSL modem.
Our F14 server is looses access to the network once we set a static IP.The same IP, if used on any other pc works fine.We had the same exact setup in our F10 server also.
I'm using ubuntu server 10.04. I need to create a second network to do some testing. Here's what it looks like so far: WAN > x.x.x.x/9 > router > 192.168.1.0/24 > LAN
I need to do this: WAN > x.x.x.x/9 > router > 192.168.1.0/24 > LAN > ubuntu server (LAMP, dhcp, dns via eth1) [eth0 192.168.1.138] > ubuntu server [eth1 10.0.0.1] The two networks should be transparent to one another. I've got everything working, except routing. Here is ifconfig:
I've been using slackware for many years. I think I started with Slack 8. I know how to configure the network, I've had this same POS Dell computer for a few years now but the other day I tried to go to a different distro (first mistake) everything worked fine but it was not for me. Once you go slack you never go back! Anyway I had slack on here prior to the change and it all worked fine. I'm running slack 13 and all of a sudden my network is slow as balls! I set it up as I always have so I did some research and tried a few things, nothing worked. So i enabled DHCP and its fine now.. I have a dell xps 420. onboard intel nic. worked fine when i first installed slack 13. Anyone have any clue what to do? I would like my static IP on this machine.
I am having a problem with when I bind a static IP to my NIC I loose all network connectivity but, if i leave it set to dhcp it works fine. I've gone over all my settings a thousand times and they are all correct. Has anyone else had this problem or give me a hint as to what the problem might be?
I'm trying to install CentOS 5.4 from my local repo, booting the server from centos54-netinstall iso (vmware). I write "linux URL..." during boot. I eventually get prompted for network config, where I choose manual configuration. Hitting OK ignores my config and defaults back to dhcp, which won't work since I don't have any dhcp server available.Whats wrong? Is there a bug in anaconda?
I recently installed fedora 12 in my server where I had a page published in my local net by tomcat, and I was looking on the Internet how to set up an static ip address and this is what I did
then I can access via ssh by two addresses the one I got from dhcp (10.17.148.223) and the static one (10.17.148.26) I put ifconfig and and 10.17.148.223 appear on eth0 I restart my server and I just can access from 10.17.148.223 I have to put
ifdown eth0 ifup eth0
Again...to access by my static ip, y can access my page by its dns on my server, but I cant access from other computer...so, I guess when my static adress appears on ifconfig I would be able to access my page from other computer...
I'm having mysterious wired network problem with my Karmic/9.10 machine. It hasn't been in network a while, but now I finally got the cabling done. I can't get the IP from dhcp server (TW-EA510), and static settings doesn't work either. Fresh cabling showed OK 1Gb connection on tester, and win7 laptop works fine. I even tried with long cable though the rooms, but it doesn't help, so it definately isn't the new cabling.
Log from the router after issuing #"dhclient": Feb 16 23:01:43 DHCP SERVER: DHCPDISCOVER from 00:01:29:fb:c5:d1 via br0 Feb 16 23:01:43 DHCP SERVER: DHCP offer to 00:01:29:fb:c5:d1 Feb 16 23:01:49 DHCP SERVER: DHCP request from 00:1b:ea:c8:a0:ba Feb 16 23:01:49 DHCP SERVER: DHCP ack to 00:1b:ea:c8:a0:ba Feb 16 23:01:54 DHCP SERVER: DHCPDISCOVER from 00:01:29:fb:c5:d1 via br0 Feb 16 23:01:54 DHCP SERVER: DHCP offer to 00:01:29:fb:c5:d1 Feb 16 23:02:03 DHCP SERVER: DHCPDISCOVER from 00:01:29:fb:c5:d1 via br0 [Code]....
Motherboard is some old Lanparty with two ethernet ports, NVidia CK804 and Marvell 88E800 rev 13 Gigabit netwok adapters, neither of them works. At least another of them has been worked earlier when I last got it wired. It's been a while, so I'm not sure which one of them and with different router if that matters.
I got this message on Friday from just one domain. uote:mailsrv.forthnet.gr #<mailsrv.forthnet.gr #5.5.0 smtp; 554 5.5.0 Your message was considered to be spam by the FORTHnet Antispamming Policy and was not delivered to the recipient. The following spam tests returned positive for this message:FORGED_RCVD_HELO,RCVD_IN_BRBL. For further information visitWe are not a spamming community but it seems we have a statice IP address that has a Reverse lookup to "myipaddress.static.lyse.net" and not my email domain. Would setting a cname mail.mydomain.no -> myipaddress.static.lyse.net cure this problem or are there more tricks to be performedOnce I have cured the FORGED_RCVD_HELO I can move to getting the IP removed from BARACUDA.
i have some problems with configuring openvpn tunnel connection to my openvpn server. I'm using static-key tcp connection. Network manager always said to me that connection could not be established. Also, when i try to run openvpn from terminal, i got some strange permissions problem:
Code:
openvpn --config config.ovpn Mon Apr 5 15:48:37 2010 OpenVPN 2.1_rc19 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Oct 13 2009 Mon Apr 5 15:48:37 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables Mon Apr 5 15:48:37 2010 /usr/sbin/openvpn-vulnkey -q moj.key
How do I activate static DNS for mobile broadband. I can't find any place to write down this information. Settings are made in Network Manager - not Yast.
Version 10.04 LTS. Installed desktop version and network worked but I needed a static IP address and the install configures for a DHCP configured address. I tried changing to static address using the System->Preferences->Network Connections application but was unable to get the system to come up with the network up.
So I manually modified the /etc/network/interfaces and the /etc/resolv.conf files. I restart the system but when I do an ifconfig, I don't see a configured IP address on eth0 (only the loopback address). If I run /sbin/ifup eth0 everything then works fine and ifconfig shows the correct address bound to eth0.
I'd like to have a set up where my Ethernet card has a static IP set up but my WiFi card doesn't.Currently I have a profile for this set up in Network Manager, however on boot up and every time I replug the cable Network Manager chooses the default "auto eth1" profile. I manually have tochoose my own profile for the Ethernet card every time. How can I make it default??I know the workaround would be to use ifup but then I lose the ability to quickly change access points for my WiFi card so that's not a solution for me
New SUSE 11.3 install connects to network/internet etc OK with DHCP-assigned IP address. When I switch to static IP, I can no longer ping internal network, or anything else. This works OK with SUSE 11.2 on same hardware and (as far as I can see) same setup. Some diagnostics are shown below.
Firewall Disabling the firewall makes no difference.
Not using a network manager (can't see how to assign fixed address if I do - all greyed out).
ifup eth0: eth0 device: Intel Corporation 82540EM Gigabit Ethernet Controller (rev 02) SuSEfirewall2: Warning: no default firewall zone defined, assuming 'ext' (not sure why the warning - eth0 is assigned to external in the firewall setup).
setup my static network connection Here are my details :
IP : 172.16.152.137 Subnet : 255.255.255.192 Gateway : 172.16.152.191 Primary DNS : 172.16.0.1
[code]....
but after this setup when i restart my network #service network restart while bringing up the eth0 the following message is displayed before [OK] - RTNETLINK answers : Invalid Argument now it seems either this setup is wrong or not sufficient to set up the connection, whenever i try to ping 172.16.0.1 it showing connect : Network is Unreachable
Recently our sys administrator decided to go to static IPs from the earlier assigned dynamic ones. This has created some havoc in my open suse 11 and I do not have access to network. I tried using the YAST network configuration manager, after everything is done it shows 'network wired' but unable to ping.
I moved to static Ip method for my laptop. I edited the interfaces file and it seems to work since I am writing this message from that laptop, but I have a new problem with my Debian. The mounts are not mounted during the startup anymore. Before I was using the network manager method and the nerwork mounts were all fine. Now with this method, they are not mounted and I need to mount them by firing "sudo mount -a" manually.
