Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I recently have been tasked with figuring out why a machine running Fedora 6 has lost internet connectivity. We have several servers on one subnet (192.168.1.x) and another set of servers in the DMZ subnet (192.168.88.x). This server is in the DMZ and has no issue pinging any of the other servers (Windows machines) within the DMZ. However, that is where the communication stops. It cannot get to the other subnet like the other machines and cannot reach the outside (internet).
One test that we tried was changing the IP to one of the machines that did work to make sure it wasn't the router. Well, it still didn't work (I'm not necessarily satisfied with that test either). The network admin really thinks it is the machine.
The hosts and nameservers are correct. I don't deal with linux, so I'm not really sure where to start.
I do know this only became a problem when the network was switched around. Two companies were sharing the same network, but we just recently split into two different networks. This is why I'm leaning towards the router more than anything else.
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.88.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 eth0
0.0.0.0 192.168.88.1 0.0.0.0 UG 0 0 0 eth0
cat /etc/hosts.allow (just has comments)
Code:
#
# hosts.allow This file describes the names of the hosts which are
# allowed to use the local INET services, as decided
# by the '/usr/sbin/tcpd' server.
#
cat /etc/hosts.deny (just has comments as well)
Code:
#
# hosts.deny This file describes the names of the hosts which are
# *not* allowed to use the local INET services, as decided
# by the '/usr/sbin/tcpd' server.
#
# The portmap line is redundant, but it is left to remind you that
# the new secure portmap uses hosts.deny and hosts.allow. In particular
# you should know that NFS uses portmap!
Hmmm ... nothing untoward or unexpected. I'll dare say
the problem sits somewhere else. I've seen interesting
cases where e.g., one windows machine had a private subnet
on a secondary interface that happened to use the same
address range that a Linux box was on on the corporate
LAN ... took a while to find out just what was happening
and prodding the windows and network guys hard enough
to start looking ;}
I forgot to mention that the IP of the machine did not change after the split. I'll have to dig for some more information to really learn what happened with the split and how it was originally.
I decided to check the message log and found that the machine uses Avahi. My initial search showed a lot of people having issues with this. Here is the log. It has done this 3-4 times today. Not sure if it's right.
Code:
Aug 26 13:37:57 db avahi-daemon[2661]: Withdrawing address record for 192.168.88.41 on eth0.
Aug 26 13:37:57 db avahi-daemon[2661]: Leaving mDNS multicast group on interface eth0.IPv4 with addr
ess 192.168.88.41.
Aug 26 13:37:57 db avahi-daemon[2661]: iface.c: interface_mdns_mcast_join() called but no local addr
ess available.
Aug 26 13:37:57 db avahi-daemon[2661]: Interface eth0.IPv4 no longer relevant for mDNS.
Aug 26 13:37:57 db NetworkManager: <information> SWITCH: terminating current connection 'eth0
' because it's no longer valid.
Aug 26 13:37:57 db NetworkManager: <information> Deactivating device eth0.
Aug 26 13:37:57 db avahi-daemon[2661]: Interface eth0.IPv6 no longer relevant for mDNS.
Aug 26 13:37:57 db avahi-daemon[2661]: Withdrawing address record for fe80::213:d4ff:fe0a:8b1d on et
h0.
Aug 26 13:37:57 db NetworkManager: nm_device_is_802_3_ethernet: assertion `dev != NULL' failed
Aug 26 13:37:57 db NetworkManager: nm_device_is_802_11_wireless: assertion `dev != NULL' failed
Aug 26 13:37:57 db avahi-daemon[2661]: New relevant interface eth0.IPv6 for mDNS.
Aug 26 13:37:57 db avahi-daemon[2661]: Joining mDNS multicast group on interface eth0.IPv6 with addr
ess fe80::213:d4ff:fe0a:8b1d.
Aug 26 13:37:57 db avahi-daemon[2661]: IPV6_ADD_MEMBERSHIP failed: Invalid argument
Aug 26 13:37:57 db avahi-daemon[2661]: Registering new address record for fe80::213:d4ff:fe0a:8b1d o
n eth0.
Aug 26 13:37:57 db dhcdbd: message_handler: message handler not found under /com/redhat/dhcp/eth0 fo
r sub-path eth0.dbus.get.reason
Aug 26 13:37:57 db NetworkManager: <information> Will activate wired connection 'eth0' becaus
e it now has a link.
Aug 26 13:37:57 db NetworkManager: <information> SWITCH: no current connection, found better
connection 'eth0'.
Aug 26 13:37:57 db dhcdbd: message_handler: message handler not found under /com/redhat/dhcp/eth0 fo
r sub-path eth0.dbus.get.reason
Aug 26 13:37:57 db NetworkManager: <information> Will activate connection 'eth0'.
Aug 26 13:37:57 db NetworkManager: <information> Device eth0 activation scheduled...
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) started...
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 1 of 5 (Device Prepa
re) scheduled...
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 1 of 5 (Device Pre
re) started...
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 2 of 5 (Device Con
gure) scheduled...
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 1 of 5 (Device Pre
re) complete.
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 2 of 5 (Device Con
gure) starting...
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 2 of 5 (Device Con
gure) successful.
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 3 of 5 (IP Configu
Start) scheduled.
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 2 of 5 (Device Con
gure) complete.
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 3 of 5 (IP Configu
Start) started...
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 4 of 5 (IP Configu
Get) scheduled...
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 3 of 5 (IP Configu
Start) complete.
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 4 of 5 (IP Configu
Get) started...
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 5 of 5 (IP Configu
Commit) scheduled...
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 4 of 5 (IP Configu
Get) complete.
Aug 26 13:37:57 db NetworkManager: <information> Activation (eth0) Stage 5 of 5 (IP Configu
Commit) started...
Aug 26 13:37:57 db avahi-daemon[2661]: New relevant interface eth0.IPv4 for mDNS.
Aug 26 13:37:57 db avahi-daemon[2661]: Joining mDNS multicast group on interface eth0.IPv4 with ad
ess 192.168.88.41.
Aug 26 13:37:57 db avahi-daemon[2661]: Registering new address record for 192.168.88.41 on eth0.
Aug 26 13:37:58 db NetworkManager: <information> Activation (eth0) successful, device activ
ed.
Aug 26 13:37:58 db NetworkManager: <information> Activation (eth0) Finish handler scheduled
Aug 26 13:37:58 db NetworkManager: <information> Activation (eth0) Stage 5 of 5 (IP Configu
Commit) complete.
Aug 26 13:37:59 db kernel: eth0: Media Link On 100mbps full-duplex
Aug 26 13:38:37 db avahi-daemon[2661]: Invalid query packet.
Okay, a little update. I put the server on the internal switch and it worked just fine. It could ping hosts outside and talk to all of the servers on both subnets. I switched it back and of course it's not happy. I'm not sure why the DMZ is an issue. I'm leaning more towards an issue with the switch, minus the test with switching the IP to something known to work.
Okay, here is an update. I ended up adding the subnet 192.168.1.0 into the routing table. So now it looks like this:
Code:
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
192.168.88.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
0.0.0.0 192.168.88.1 0.0.0.0 UG 0 0 0 eth0
I can now ping machines within that subnet. I also fixed a DNS issue. It couldn't access the outside DNS address, so changing it to the internal one fixed that. Now the problem is it still can't access the outside. The computer knows all of the hosts and IPs, it just can't get through.
It really sounds like an issue with the router or the firewall. I would get your network folk to check that there's no specific block or filter relating to that machine.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.