Ubuntu Networking :: Host Can't Access Gateway But VM Can With Bridged
Jun 19, 2011
I've set up bridged networking so that I can have KVM virtual machines that are accessible from outside the host. I can access both the Host and my VM from other machines on the local network, and from the VM I can access the internet but from the Host I can only access my local network. Since I can access the local network and the same issue applies regardless of whether I use host names or IP addresses I suspect it's not picking up the gateway properly.
How do I go about allowing the VM host to access the internet while still having bridged networking so I can access my VMs?
What I've checked so far:
Ping Google DNS (184.108.40.206 )
From Host: Destination Host Unreachable
From VM: Suceeds
The issues are only with accessing things outside of my subnet. I can access other machines on the same subnet from the Host just fine.
I have an Ubuntu 10.10 host running in VirtualBox 4.0.8 r71778, and I need to setup a LDAP authentication network between two VM's: a Maverick-based distro and Ubuntu Server 11.04.
Screenshot of the two running perfectly fine:
Using NAT, I can have the two VM's up and running on VBox, but they get the same IP (10.0.2.15).So I googled it and quickly found out that I needed to change the VM's network interfaces to Bridged Networking. So I tried that. Here's two screenshots of the default configurations:
1- Ubuntu Maverick based distro:
2- And here is one of the Ubuntu Server:
(I'm Portuguese, that's why there are mixed languages in the UI)It's pretty stupid to explain like this, but whenever I try to start one of those two using Bridged Networking, I get a black screen full of errors (I can't take a printscreen of that, so I took a bunch of pictures - yeah, it's lame, I know ). Then, I have to press the power button to shut down my host, and restart the pc.Here they are:
Where I think the problem is:
My host is currently running Linux kernel 2.6.38-10.I have dkms, linux-header-generic and build-essentials installed (and the VB extension package too)And my host is a laptop, connecting to the internet using the router my ISP provided me.How can I solve this? Is this some kind of bug regarding 2.6.38-10 kernel?I don't have other pc's to test my LDAP authentication, so I needed the two VM's to have different IP's.
Bridged successfully but cannot access the Internet.I installed VMware in my Fc13,and installed XP sp3 in the VMware.I can access the Internet in XP,I set the network as Bridged with Fc13,but Fc cannot open a page,but I ping google.com,it can display: Code: Pinging google.com [220.127.116.11] with 32 bytes of data: then nothing.I still cannot access the Internet in my Fc13.
Just something that struck me while working on our virtual servers today.
I have bonded 3 NICs at the host in Ubuntu Server 8.04 LTS. They are using mode 0 for Round-robin. Point is to increase the speed/performance of all the servers, but mainly the fileserver. The fileserver is a virtual server running Ubuntu Server 8.04 LTS on VMware Server 2.0.
1) I noticed the NIC in the slave OS reported link speed as 1000 and Im unable to change it as the NIC (virtual one) doesnt support it. Does this not really matter, as the NIC doesnt exist, and it will run at higher speeds anyway? Or do I have to remove the bond on the host, bridge all 3 interfaces from the host to the slave OS, and then make a bond in the slave OS?
2) While at it, does mode 0 only increase performance on data being sent from the host or does it also increase the available incoming bandwidth?
I have installed fedora 11 64 bit on a new computer. I have no problems accessing the computers on my local network, but can not get past the gateway. The gateway is running windows XP with IP address 192.168.0.1 and is named "internet". When I boot the new computer in windows, there is no problem. Here is the output of some commands I saw in other posts with similar problems:
I am completely new to linux in any flavour. I installed ubuntu 10.4.1 64-bit on my Gateway NV59 laptop as a dual boot with Windows 7. The installation went just fine. When it comes to networking, I can connect to my home network when wired directly, wireless is another matter. I can connect wireless in windows just fine, so the card is physically fine.
My set up is as follows: Gateway NV59 laptop with Atheros AR928X PCI-E wireless adapter Linksys WRT54G router using WPA2 Personal and a class C address scheme (192.168.x.x) (If anyone thinks it would be necessary to post actual hardware specs of the laptop, I can, but don't think it really necessary). I have followed the Wifi Wireless Troubleshooting Guide found at [URL].
When connecting to my network wirelessly, I click the icon in the top right, and choose "Create New Wireless Network". When I input my settings (SSID - not broadcast, and security type and key - WPA), it then states I am connected under the "Wireless Networks" section found in that menu, and shows my network name with a strong signal and a computer/monitor icon. When I double-click the icon, it tells me I am connected and that the connection is active, yet the actual wireless icon on the top bar is grey, not white, and has a red exclamation mark on it. According to the steps in the troubleshooting guide, my wireless card is recognized and installed, with a driver of ath9k.
When I run lsmod, the driver is listed, therefore loaded, and ndiswrapper is NOT listed. I have verified that the driver is communicating with the kernel. When I scan for my router, it is listed under Cell 04, with the correct SSID and hardware address. There do not appear to be multiple drivers loaded, and my wifi is NOT disabled. When I check to see if I'm associated with a router, iwconfig shows my network ssid under wlan0, with the correct hardware address listed under Cell:, yet I cannot ping my router's internal ip address. At this point, I ran ifconfig, and for some reason, my wireless card has been given a class A address of 10.42.43.1.
When I try to assign an ip address via dhcp, DHCPDISCOVER runs for a number of intervals and then tells me "No DHCPOFFERS received", yet my router is using dhcp to assign ips with a pool of 50, more than enough ips for all the hardware in my network. When I run the command "sudo invoke-rc.d networking restart", I get the statement "Ignoring unknown interface wlan0=wlan0" - not sure what that means, but doesn't sound good to me, and retrying to accquire an ip address through dhcp still does not work. If I attempt to assign an ip address within my network range manually, I first run the command "sudo ifconfig wlan0 down", then just out of curiosity to see if the interface is really down.
I run ifconfig again, and wlan0 is no longer listed, but now there is eth0 (my regular ethernet interface) with no ip address. AND another interface is listed - eth0:avahi with the same hardware address as eth0, and an address of 169.254.4.42 - this seems to be the default address the OS will assign when it cannot get one via dhcp, but I have no idea why it has shown up as eth0::avahi... Anyway, after entering the command "sudo ifconfig ip addr 192.168.x.x netmask 255.255.255.0 broadcast 192.168.x.255 up" with the appropriate addresses, I receive the error "addr: Unknown host".
What I have NOT tried, are the following steps: 1. Change my router to an open signal (I would prefer not to do this, but will, if it is absolutely necessary for troubleshooting) 2. Try gtk wifi, or wifi radar 3. Try booting with kernel option pci=noacpi or acpi=off (not entirely sure how to do this just yet) 4. Try wpa supplicant (not sure what this is, just noted it was in the troubleshooting guide)
I have a simple system at home where a DSL router is used as a basic dhcp server with one port forward for ssh to a server. I need to allow my daughters, ages 14,12 and 10, to access the net and also email but I want to have complete control and logging. What I'm looking to do is set up the Ubuntu file server I already have on the network to act as a gateway and also add content management and logging as step one.
I also want to add an email server so that all the email comes into the Ubuntu server and then is allowed to be accessed by outlook on their machines after spam/content scanning for valid emails as step two. My question is what, if any, additional software do I need and what options do I have. I've played with dhcp servers at work but never got much beyond ip assignment and network booting so I'm unfamiliar with what is needed for content management and such. As to the email server I've never even played with this at all so I'm completely in the dark as to what I should be looking at to start with. I'm looking for directions, RTFM is fine but right now I'm not sure even WHAT manual/manuals I should be reading.
Does anyone have experience with the D-LINK DIR-655 gateway OR router OR wireless access point? On the surface, I like this box, but it is giving me grief. First, it wants me to use a win-dose CD configurator application. I use the embedded web page configurator. Next, there are several configuration wizards at the embedded web page. After trying the wizards, I went to the manual screens to tinker to get something working.
So what is going on? When a LAN client connects, I want DHCP to present at least two "nameserver" values ... which then make their way into /etc/resolv.conf The DIR-655 plays some nameserver games like caching and blacklisting and other things. However, I get some ad-vert page from "dnssearch" or "yahoo" or similar when names don't resolve. I really don't want this behavior. Network-manager does not report the connection down, however streaming anything stops or "reconnects", browsing times out, LAN side traffic seems to stop as well.
Have set the gateway server as 121.x.x.1. Which is the gateway server of the ISP. Now I can ping the local network, but cant ping the gateway or any other website. Also I am unable to access the router administration page.
I am wanting a computer with an external dialup modem (ppp0 modem through a com port /dev/ttys1) to act as a gateway to the internet, forwarding internet traffic through ethernet (eth0 is set to static 192.168.2.2) to a router (the router is 192.168.2.1) where it will be broadcast to other wireless computers like my laptop (192.168.2.3). I've had this setup until recently when the gateway computer (the one with the modem) died. Now I'm replacing that machine with another box and an install of Ubuntu 10.10 but so far things aren't working for me.
Success so far:I have dialup access working on the new box. Took me a while to work out the configuration for getting dialup working, though the IP address is Dynamic (or it won't stay connected), "Check carrier line" is off, and "Ignore Terminal Strings (stupid mode)" is on in order to successfully connect and stay connected to my ISP. I also had to make my normal (non-root) user "lancer" a member of the "pid" group (the reboot) in order to use gnome-ppp as non-root. The laptop (192.168.2.3) is successfully connecting to the router (192.168.2.1) as I can see the router configuration page when I type http://192.168.2.1 into the laptop's web browser. This setup is unchanged from how I had it before when this was previously working and I don't want to change how the router itself is set up. What I want is to know what to fix in the new box in order to get it connected to the router (through ethernet) and bridging the internet through.
My problem is that whenever I plug in the eth0 from the gateway (192.168.2.2) to the router (192.168.2.1), Ubuntu's automatic plug-me-in network detection kicks in and I find my dialup no longer working through some kind of IP conflict (at least that's what I think it is). Maybe I don't have the "gateway" correctly assigned? (in the gateway computer for the ethernet connection, I had it pointing to itself as I don't know what to put for "gateway IP" as that is automatic So, just to check my connection, here I am pinging google (from the gateway computer which has the dialup modem) once a dialup connection has been made.
Code: lancer@lancer-desktop:~$ ping www.google.com PING www.l.google.com (18.104.22.168) 56(84) bytes of data. 64 bytes from 22.214.171.124: icmp_req=1 ttl=55 time=179 ms 64 bytes from 126.96.36.199: icmp_req=2 ttl=55 time=176 ms 64 bytes from 188.8.131.52: icmp_req=3 ttl=55 time=158 ms
What do I need to do in order to make Ubuntu of my gateway computer stay connected to my dialup but also simultaneously share an ethernet LAN to my wireless router and feed traffic to the other computers from there? I have googled this but some of the most promising instruction (e.g. http://www.ubuntugeek.com/sharing-in...in-ubuntu.html) call for packages like dnsmasq or ipmasq which seem defunct now in Ubuntu 10.10. Other pages seem to suggest dual-networks "can't be done" in Ubuntu [URL].. (what!?! I had it before my other gateway died)
My server is installed on a guest OS on vmware. It really bugs me because I can't access it from the host OS's browser even though there is no discrepancy between /etc/hosts, /etc/sysconfig/network, httpd.conf files. Issuing ifconfig command also returns the same IP. I have also enabled netwroking in the vmware settings. And I can ping the guest OS's IP from the host.
5.10 Breezy configured as machine controller. Works great eth0 is a fixed IP to communicate with controller comms board. Not easy at all to alter - the comms board is hard coded to listen on eth0 for commands.
I can use eth1 as the default gateway and ping google.com, etc. But when I now attempt to communicate with the controller with netcat, e.g.
Code: echo !HH | nc 192.168.1.6 80
I obviously never get an answer since the request is passed via eth1. Using the -g option with netcat doesn't work either. I had a look at iptables but it doesn't seem to be able to do what I want. How I can still use eth0 as my communication port to the controller whilst eth1 is the default gateway?
I'm running a Fedora 10 box behind a Comcast cable modem that provides squid and mail services to 15 XP and Vista workstations. I upgraded the ethernet cards on our Fedora box to support our new 1 gigabyte network. I kept the same device configuration eth0 and eth2 by updating the /etc/udev/net persistent file and changing the ethernet hardware address in the respective ifcfg-eht files in the /etc/sysconfig/network-scripts. The box booted to the new cards, the route and ifgonfig shows the new cards and their hardware addresses, the configuration looks as how the old cards looked (eth0 and eth2 respectfully). I was able to browse the local network and have access to the internet as before from inside the network . However I cannot get access to our web server that serves our web host and our VPN services from ouside our network. I tried stopping the firewall and still could nor connect from outside the network.Could my old ethernet hardware address be hard coded somewherel?
My brother has a Ubuntu server attached to a LAN with Windows PCs. I set up an openVPN tun service on the server, let's call this VPN1, so that I can connect remotely from my Ubuntu desktop. The server has one NIC and the LAN has a router that is the gateway to the internet.
My brother would like to remotely access his windows network when roaming with his Windows laptop.
Therefore, I would like to set up a second VPN service, this time tap, that is bridged with his LAN. Let's call this VPN2.
The LAN subnet is 192.168.1.0/24. The internet gateway is 192.168.1.1
The NIC has a fixed IP set by the router of 192.168.1.150
How do I set up VPN2 so as not to trash VPN1? That is, if I bridge eth0 with tap0 how will that impact VPN1's tun0 that is using eth0? Do I need a separate NIC for the VPN2 bridge?
host is windows 2003 server 64-bit guest is ubuntu 9.04 server 64bit Qemu : 0.11.1 Qemu manager: 7.0
from Qemu manager, if network card is using User Networking, it's a NAT and I can see that Guest Ubuntu has an ip address 10.0.2.15 and is able to access the internet. However, as Guest ubuntu is running server so I want to do use Tap networking and I assue with Tap, the Guest ubuntu will get an ip address which is in the same subnet as host machine by dhcp. so from Qemu Manager 7.0, I changed Network card to be:
NE2000PCI Vlan Number =0 VLAN Type: Tap Networking Mac address: tap0's mac address from host TAP Network Adpator: Tap0
Note that tap0 was created by openvpn. and then fired Ubuntu guest, ifconfig shows no ip address on eth0 (which has the same mac address as Tap0) so the guest Ubuntu has no ip address and can't access public.
I have a WindowsXP virtual machine which I need to isolate from the host machine completely (have the host act as a bridge but not be visible on the IP layer at all.) It still needs to have Internet access. Obviously it has to be able to contact the router but I would like to be able to block port 80 (or even just block all SYN packets addressed to the router.) I also want to allow port forwarding from the router to the virtual machine. I can use basic iptables but this is way beyond me.
The host OS is probably going to be Debian Lenny but this is not built yet so if someone can recommend a different distro which is as lightweight as possible but will support VMWare, iptables and tcpdump then that would be great. I was thinking of Slackware but I have not used it in ages and from what I can remember their is no real package management.
I currently have one of our clients set up to use a routed VPN for their 5 laptops to connect to the server remotley. And this works brilliantly. They are about to bring on a remote office that will need a VPN connection back to the main office, so I was going to set up a bridged connection between the two sites (and possibly more sites in the future).
So my question is whats the best way to go about this? Can I have one instance of OpenVPN running with tun0 set up for a routed connection to the laptops and add a second tun (tun1) to the config that will be for the bridged connection between the sites? Or am I going to have to run multiple instances of OpenVNP, one for the routed and another for the bridged?
If routed and bridged have to run in seperate instances, will I have to add another instance for each new remote site that needs a connection? Can a bridged config connect to multiple sites, or have multiple tuns in the one config?
I have two eth interfaces bridged in CentOS, one of these interface is connected to a Windows Server, I can do a ifconfig down on both these interfaces and there is no change of status at the windows side, I don't get the message that 'network cable has been unplugged'
Is this behavior normal ? I think when you shut an interface than you get the interface down message at other end ? And what becomes the status of the bridge if I shutdown one of its interface ?
Newbie Question: How do I setup networking on openSuSE 11.4 on an HP Proliant DL385 G7 with 4 NICs to host Windows 2008 R2 on Xen? I've installed openSuSE 11.4 with all the patches (and most of the server patterns - Mail and News, LAMP, LDAP, Samba, etc.), and I've installed Windows 2008 R2 in a Xen virtual machine. I'm having problems configuring the 4 NICs eth0, eth1, eth2, eth3 are "bound" without an ip_address as br0
eth0 connects to my ISP - currently through a private LAN - It connects directly to the router with static IP 192.168.0.105 Eventually, one of the other NICs will serve ip_addresses via DHCP to a separate LAN (for use in an office setting), and eth0 will be set with a static IP from the ISP That means, eth0 will be static to the ISP, and the other NICs will attach to a switch serving private ip_addresses in the 192.168.0.xxx range.
Currently, I have br0 unconfigured and eth0 static. I have configured eth0 in the External Zone and br0 in the Internal Zone in the firewall, and all the correct ports are opened (afaik) I have enabled masquerading. Hostname, Domain (workgroup), DNS Server addresses and IPv4 Gateway are configured.
Windows 2008 R2 (Guest VM in Xen) "sees" the other machines on the network, and "browses" the internet, although it will not download patches except intermittently. I have not tried connecting to it from the LAN Eventually, I wish to run Windows Terminal Server. openSuSE cannot "browse" the internet, though it initially did. What am I missing? I "think" I need routing or NAT, or I may have my bridge setup incorrectly, although I've tried almost every combination. Google says Xen should be setup with either NAT or a Bridged Network.
Im using fedora 13 x64 install from DVD. Has anyone else found problems using vmware 7.0.1 or 7.1. My bridged networking will not pickup a dhcp address, and even if I configure static my network will still not work, yet NAT works fine. Even configuring bridged to use a dedicated device doesnt work. Workstation worked fine on Fedora 12 but this seems to be a reoccuring problem in every other release.
I have been trying to set up bridged networking, but I keep failing. I am using Fedora 14 x86_64 KDE as host with qemu-kvm and SPICE. The plan is to install a windows server, a few windows clients and then rawhide as guests on that. Naturally I want to use bridged networking for the windows guests.[URL]..But those both leave the guest without internet access. Is it really this difficult, or am I doing it wrong(tm)?
I'm having trouble getting Fedora 15 to work with my em/bond/br configuration as it did in Fedora 14. I've got a bonding interface over em1 and em2, and then individual bond vlans (bond0.2, bond0.10, etc...), I then have a similarly named bridge interface (br0.2, br0.10, etc...) for kvm. Regardless of if I assign bond0.2 or br0.2 the IP address, I am unable to ping the gateway, but the native untagged VLAN (bond0, br0) has no issue at all.
To try to isolate this issue down to the switch or Fedora 15, I went with a plain em setup and configured em1, and em1.2 which works as expected. This issue has been plaguing me since Fedora 15 came out and I'm about to trash it and go back to Fedora 14 (Which didn't have this issue), but some of the new kvm features have kept me trying to get over this incomprehensible hump.