LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 04-19-2008, 01:28 PM   #1
AntonyW
LQ Newbie
 
Registered: Sep 2005
Location: worcestershire UK
Posts: 9

Rep: Reputation: 0
ipcop/vista causing network connection problem


Ive just set up a compaq proliant ml370 server to act as a ipcop firewall for my home network. The network consists of 2 vista pc's and 2 xp pc's ethernet wired through a hub to the firewall. After a few initial teething problems ipcop is set up and running as I believe it is supposed to. My problem is this:

If I shut down the vista pc's for any reason and then reboot it - I lose connection to the home network. (Havent tested this yet with the xp pc's). I have access to the internet and I can access the management pages for the ipcop firewall without problem so I know its nothing to do with the firewall or the cabling. If I try to open he network and sharing center it just gives me an empty window which is locked up. If I try to diagnose the problem I get a message telling me that the facility is not available. If I leave it long enough (an hour plus) it might suddenly correct itself (as it did earlier). Im fairly sure its down to a connection issue between vista and ipcop but I hae no idea where to start. the only other way Ive been able to reestablish the connection on the network has been to take the firewall out of the loop, restablish the network then put the firewall back in. This usually allows me to then reset the network cards to resinc it with the
firewall.
As you can see a most unsatisfactory situation. can anyone tell me what is going on and more importantly how to solve it? Please be aware that I hae a very limited undertanding of linux and even less of ipcop.

thanks
Antony
 
Old 04-19-2008, 02:03 PM   #2
bmarx
Member
 
Registered: Dec 2004
Distribution: Slackware, Arch, FreeBSD
Posts: 202

Rep: Reputation: 34
This sounds more like an issue with windows. Why would there be an issue with the firewall if everything is connected into the hub? They should be able to access each other directly without going through the firewall, although the firewall will still see the traffic. Is there any reason why you did not use a switch instead? Also, when you are unable to see any of the other computers in the sharing center, are you able to ping the ip addresses? Are you able to map the shares directly using Map Network Drive?

A few steps I would try:

1. Use wireshark to see what packets are getting where
2. Use ip addresses to directly access other computer shares
3. Turn off any firewalls on the pc's.
4. Downgrade from vista to xp

Good luck.
 
Old 04-19-2008, 02:44 PM   #3
AntonyW
LQ Newbie
 
Registered: Sep 2005
Location: worcestershire UK
Posts: 9

Original Poster
Rep: Reputation: 0
Ok. Ive downloaded wireshark so all I need to do now is see what info it gives me. Ive just checked the "hub" and realised it is a switch not a hub - Ive only just replaced it a day or 2 ago so its new. Ive also tuned off the firewall running on my own pc so I'll see what that does too. I hadn't thought about direct access of the ip addresses so I shall look into that one. But as for downgrading from vista to xp well its a new pc and it came supplied. I might do so when the warrenty runs out but I guess you get what you pay for. Anyway thanks for the advise. I shall monitor it when I shut down and see what happens when I reboot. Thanks

Antony
 
Old 04-19-2008, 03:01 PM   #4
AntonyW
LQ Newbie
 
Registered: Sep 2005
Location: worcestershire UK
Posts: 9

Original Poster
Rep: Reputation: 0
Ok I just shut down my pc and the restarted it again. Same problem as before. I started up wireshark and got the following "The NPF driver isn't running. You may have trouble capturing or lsiting interfaces". Well when I try to list the interfaces - nothing. Ive tried to map to one of the other pc's and it wont let me access them. I did notice one peculiar thing that might help. The ip address for the one I tried to access should have been 192.168.0.xx however the router is reporting it back as 192.168.1.xx . which tells me its is not picking up its ip address from the firewall. Checking my own I note that mine also is in error. And to add to my confusion th ipcop is also reporting a 192.168.1.xx number instead of 192.168.0.254. So a question arises - is the ipcop set up correctly?

[edit] just to clarify something. From the router to the ipcop the ip should be 192.168.1.xx and from the ipcop to the clients should be set at 192.168.0.xx - at least that is what I thought I was setting up when I installed ipcop.

Last edited by AntonyW; 04-19-2008 at 03:04 PM.
 
Old 04-21-2008, 06:17 AM   #5
mickza
Member
 
Registered: Mar 2005
Location: South Africa
Distribution: Centos, Fedora, Ubuntu desktop, IPCop
Posts: 168

Rep: Reputation: 33
On IPCop admin go to Services>DHCP Server and check that the GREEN server is enabled, check the start & end addresses to confirm the range it is handing out. Then, with your PCs running, scroll down to Current dynamic leases and see if IPCop has handed all of them a lease. If not check the LAN settings on the PCs.
 
Old 05-08-2009, 01:30 PM   #6
Diego Lluna
LQ Newbie
 
Registered: May 2009
Posts: 3

Rep: Reputation: 0
IPCOP vista problem

Hi,

We are experiencing trouble with an IPCop and a Vista Business computer.

The configuration is as follows:
-green network: 4 PCs: XP Professional, Windows Server 2008, ubuntu and Vista Businesss
192.168.2.0

-red network: router
192.168.0.0

all PCs can surf outside fine, except the Vista.

network configuration is similar to all of them.

the vista can sometimes surf, and sometimes not. when packets are rejected, the logs in the firewall show the following:

chain: OUTPUT
MAC address: ::::::
Dst port: here the concept varies, can be '53(DOMAIN)' or '161(SNMP)' or 'ICMP'

all type of traffic is blocked. web traffic, pings to IPs, address resolution, etc

but, what is more interesting.
if we keep a continuous ping to the IPCop alive, the firewall does not drop the traffic from the vista anymore

if we stop the ping, the traffic will stop working in a few minutes, then maybe be restarted again after several tries, etc.

one last comment: both green and orange interfaces are connected to the same switch, since we are testing the equipment but, as i said before, that does not interfere with all the other PCs.
what's more, a virtualized vista business can effectively connect to the internet also.

I'd greatly appreciate any help.
Best,
Diego
 
Old 05-09-2009, 03:08 AM   #7
mickza
Member
 
Registered: Mar 2005
Location: South Africa
Distribution: Centos, Fedora, Ubuntu desktop, IPCop
Posts: 168

Rep: Reputation: 33
What version of IPCop (1.4.xx) are you running?
Static or dynamic IP on the Vista m/c?
 
Old 05-12-2009, 12:48 PM   #8
Diego Lluna
LQ Newbie
 
Registered: May 2009
Posts: 3

Rep: Reputation: 0
IPCop crashes

Hi Mickza,

and first of all, thanks for such a quick response.

IPCop is running version 1.4.21
Windows Vista is using static IP

However, the problem I mentioned before disappeared.

The solution was to settle the network as in a real working environment.
Originally, both router and PCs where connected in the same switch, and used different logical networks. This seemed to turn crazy the IPCop: all PCs worked fine, except the Vista.

Now, PCs are in a switch which is NOT connected to the router, so the packets must physically go through the IPCop to reach the router.

The problem now, however, is that the IPCop will crash every now and then. Yesterday it stopped working twice.

When crashing, there is no visible answer in the screen, and no response to pings. The only way to set it to work again is to physically turn it off.
There is, however, a visual indicator when this happens: leds in the switch connected to the IPCop are flashing real quick.

We are inclined to believe there might be some kind of incompatibility with the motherboard, and are thinking of trying with a different one, and reinstall IPCop, but we really don't know.

thanks many,
Diego
 
Old 05-13-2009, 03:15 AM   #9
mickza
Member
 
Registered: Mar 2005
Location: South Africa
Distribution: Centos, Fedora, Ubuntu desktop, IPCop
Posts: 168

Rep: Reputation: 33
IPCop should be rock solid unless you have some incompatible addons loaded so it looks as though you have hardware problems - it is running on a standalone box (not virtualized) right?.

If the IPCop GUI logs arenīt helping enable SSH under the IPCOP GUI System tab, ssh into the IPCop (use port 222) and check /var/log/messages for clues.
 
Old 05-14-2009, 03:04 PM   #10
Diego Lluna
LQ Newbie
 
Registered: May 2009
Posts: 3

Rep: Reputation: 0
Hello,

and thanks again!

seems that the hardware supposition was the right one!

IPCop is running in a dedicated machine, a barebone. We changed the hard disk, reinstalled everything from scratch and have had it on for a couple of days with no problem.

actually, we have a lot of addons installed, but all of them claim to be fully compatible with this version of IPCop.

we'll have to wait still for a few days, but, for the time being, the hard disk change seems to have solved the issue.

thanks many Mickza!
Diego
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
IPCop - 1 network cannot surf internet unless proxy is enabled, other network can Micro420 Linux - Networking 0 08-25-2007 11:47 PM
IPCop Connection Limitations NetCrawler Linux - Networking 3 04-14-2007 02:54 AM
IPCop / no outside network connection neocontrol Linux - Software 4 12-10-2006 04:20 PM
VMWare and NdisWrapper Causing Network wide DHCP problem? kendolin Linux - Wireless Networking 0 07-20-2006 08:46 AM
network use causing connection to hang chaostrophy Linux - Networking 3 03-07-2006 12:21 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 03:50 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration