confused: server network setup not working (beginner)

Distro-jumper · 2009-01-09 04:07:37

I just installed arch to be a file/print server (though I haven't started with Samba yet). I did install openssh in hopes I could ssh to the server from my laptop to configure everything, but it didn't work. I setup the server with a static ip in rc.conf and the laptop uses dhcp and network manager. I've added the server to /etc/hosts on both the server and laptop as '192.168.0.100 server.home.com server'.

From the server, I can ping the laptop. From the laptop I cannot ping the server. I've been trying to find a solution for hours, but just get more confused. Internet access is working on both machines.

Thanks,
/Bob

Xyne · 2009-01-09 05:15:15

Hi Bob,

I'm tired and my neurons started a revolt in my cortex a few hours ago (and my remaining thoughts are scattered across my desktops right now), so I'm just going to list a few ideas of what you could check in hopes that something helps:

Did you follow the wiki? http://wiki.archlinux.org/index.php/SSH
Physical connections are ok (you can ping your laptop), but you can't reach your server... your server doesn't have the ip address you think it has or it has a firewall...
Are you sure that your server has the ip you set? "ifconfig" will confirm it.
If not, look at the dhcp configuration and other network pages in the wiki.
Do you have a firewall? Check your permissions if you do and open the right ports.

Remember to restart the sshd daemon if you change the configuration file.

If none of that helps, get some live chickens, bleed them, paint yourself in their blood, boil the flesh off their bones, throw the bones on the floor, dance around them, then come back. By that time, someone might have a better idea or you might have had a revelation.

Distro-jumper · 2009-01-09 14:10:26

Xyne wrote:

Hi Bob,
I'm tired and my neurons started a revolt in my cortex a few hours ago (and my remaining thoughts are scattered across my desktops right now), so I'm just going to list a few ideas of what you could check in hopes that something helps:
Did you follow the wiki? http://wiki.archlinux.org/index.php/SSH
Physical connections are ok (you can ping your laptop), but you can't reach your server... your server doesn't have the ip address you think it has or it has a firewall...
Are you sure that your server has the ip you set? "ifconfig" will confirm it.
If not, look at the dhcp configuration and other network pages in the wiki.
Do you have a firewall? Check your permissions if you do and open the right ports.
Remember to restart the sshd daemon if you change the configuration file.

If none of that helps, get some live chickens, bleed them, paint yourself in their blood, boil the flesh off their bones, throw the bones on the floor, dance around them, then come back. By that time, someone might have a better idea or you might have had a revelation.

No firewall on the server. I have indeed verified the server ip with ifconfig. I've been looking at wiki's and searching for solutions for awhile, that's why I finally posted for help. At this point I'm not worried about ssh, I just want to ping the server. Guess it's chicken time .

tomk · 2009-01-09 14:31:49

Post the output of ifconfig and route from both machines.

Distro-jumper · 2009-01-09 15:08:23

tomk wrote:

Post the output of ifconfig and route from both machines.

Will post when I get home ~4:00pm MST. Thanks.

Distro-jumper · 2009-01-09 23:18:32

tomk wrote:

Post the output of ifconfig and route from both machines.

From the server:
[root@server ~]$ ifconfig
eth0 Link encap:Ethernet HWaddr 00:01:02:45:C7:06
inet addr:192.168.0.100 Bcast:192.168.0.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:50108 errors:0 dropped:0 overruns:1 frame:0
TX packets:298 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:16902899 (16.1 Mb) TX bytes:20484 (20 kb)
Interrupt:16 Base address:0x800

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:62 errors:0 dropped:0 overruns:0 frame:0
TX packets:62 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:5156 (5 Kb) TX bytes:5156 (5 Kb)

[root@server ~]$ route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.0.0 * 255.255.255.0 U 0 0 0 eth0
default 192.168.0.1 0.0.0.0 UG 0 0 0 eth0

From the laptop:
[bob@arch-iBook ~]$ ifconfig
eth1 Link encap:Ethernet HWaddr 00:30:65:06:EE:6A
inet addr:192.168.0.101 Bcast:192.168.0.255 Mask:255.255.255.0
inet6 addr: fe80::230:65ff:fe06:ee6a/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:22416 errors:0 dropped:0 overruns:0 frame:0
TX packets:16452 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:17458894 (16.6 Mb) TX bytes:3662011 (3.4 Mb)
Interrupt:57

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:20 errors:0 dropped:0 overruns:0 frame:0
TX packets:20 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:1444 (1.4 Kb) TX bytes:1444 (1.4 Kb)

[bob@arch-iBook ~]$ route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.0.0 * 255.255.255.0 U 0 0 0 eth1
default 192.168.0.1 0.0.0.0 UG 0 0 0 eth1

kjon · 2009-01-10 00:53:26

It looks you didn't allow the different machines communicate among each other. Have a look at /etc/hosts.{allow, deny} and tell me what did you write there.

On the WCS (Worst Case scenario) you might want to add something like

/etc/hosts.deny
ALL: ALL: DENY

(I really love that insane default of arch).

And ....

/etc/hosts.allow
ALL: eee900, slimline
mpd: ALL
ssh: ALL

Use those files as example, and have a look at what daemons are listening specific ports. (Run netstat -tnlp as root to get the ports and the processes to add them to hosts.allow whitelist)

Luck with your setup

Last edited by kjon (2009-01-10 00:54:24)

Distro-jumper · 2009-01-10 02:41:30

Do you really need to add a machine to hosts.allow to ping a machine? It's not making sense or I don't think that's the problem. For example, I can ping my laptop from the server but my hosts.allow file in the laptop is empty. Meaning no one has access to the laptop, but I can still ping the laptop from the server.

tomk · 2009-01-10 08:23:41

Yes, kjon seems to be addressing your ssh issue, but your basic network issue is more critical.

I can't see anything wrong with your ifconfig/route info. How are they connected? If there is a router or some other device in between, double-check its configuration, and try using other network ports, if they're available.

Distro-jumper · 2009-01-10 16:45:00

More confusion:

I tested ping & ssh on another desktop I had to the server and both worked. I restarted my arch laptop and booted to osx to see if ping would work from there (it did not). Then I restarted back to arch on the laptop and it picked up a different ip than I previously reported with iproute. Tried to ping the server from the laptop and suprise suprise it worked. Then tried to ssh and once again suprise suprise it worked.

Still confused: It should have been working.

Last edited by Distro-jumper (2009-01-10 16:46:24)

Xyne · 2009-01-10 23:28:23

Are you absolutely sure that you don't have a firewall set up on the server (or some other filter/blocker) that was preventing the laptop's old IP?

Distro-jumper · 2009-01-10 23:50:04

Xyne wrote:

Are you absolutely sure that you don't have a firewall set up on the server (or some other filter/blocker) that was preventing the laptop's old IP?

No firewall on the server, unless the base Arch install includes it. I definitely haven't added one. I have a wireless router that my two desktops are connected to and through which my laptop connects wirelessly, but I've looked all through the setup and don't see anything that would block a specific ip. In fact it is listed in the wireless router firewall as:

Allow    Ping on LAN    Source=LAN,*    Destination=LAN,*

I assume this means any ip can ping any ip on the LAN.

I don't understand why it wasn't working, or what happened to make it start working.

Xyne · 2009-01-11 01:38:45

Distro-jumper wrote:

I don't understand why it wasn't working, or what happened to make it start working.

It must have been those chicken bones.

Arch Linux

#1 2009-01-09 04:07:37

confused: server network setup not working (beginner)

#2 2009-01-09 05:15:15

Re: confused: server network setup not working (beginner)

#3 2009-01-09 14:10:26

Re: confused: server network setup not working (beginner)

#4 2009-01-09 14:31:49

Re: confused: server network setup not working (beginner)

#5 2009-01-09 15:08:23

Re: confused: server network setup not working (beginner)

#6 2009-01-09 23:18:32

Re: confused: server network setup not working (beginner)

#7 2009-01-10 00:53:26

Re: confused: server network setup not working (beginner)

#8 2009-01-10 02:41:30

Re: confused: server network setup not working (beginner)

#9 2009-01-10 08:23:41

Re: confused: server network setup not working (beginner)

#10 2009-01-10 16:45:00

Re: confused: server network setup not working (beginner)

#11 2009-01-10 23:28:23

Re: confused: server network setup not working (beginner)

#12 2009-01-10 23:50:04

Re: confused: server network setup not working (beginner)

#13 2009-01-11 01:38:45

Re: confused: server network setup not working (beginner)

Board footer