OpenVZ Forum: Support » Another Centos 6 network problem

Home » General » Support » Another Centos 6 network problem (VE on HN Centos 6 can only be reached from Internet , not from LAN)

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

Another Centos 6 network problem [message #44680]

Wed, 21 December 2011 16:57

surftimer
Messages: 3
Registered: February 2008
Location: Austria

Junior Member

Hi Folks

First of all , it works with Centos 5.5 to 5.7 on a production machine !! ( Same hardware , same network settings etc. )

I wanted to upgrade to Centos 6 and did a clean install on a test server ( same hardware ) first.
2 Nic´s , one is eth0 connected to the LAN , eth1 connected to the router with public IP from ISP.

I can ping and access the VE from the internet ( SSH , Web server etc. ) but not from the LAN.

Here are some details :

eth0 ( lan ) IP 192.168.0.52 , netmask 255.255.255.0 gateway 192.168.0.254
eth1 ( wan ) IP 62.XX.XX.249 , netmask 255.255.255.240 gateway 62.XX.XX.241

VE IP_ADDRESS set in config file 62.XX.XX.252

ifconfig shows :

eth0 Link encap:Ethernet HWaddr 00:0A:E6:05:DE:DD
inet addr:192.168.0.52 Bcast:192.168.0.255 Mask:255.255.255.0
inet6 addr: fe80::20a:e6ff:fe05:dedd/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:10954 errors:0 dropped:0 overruns:0 frame:0
TX packets:7560 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:925918 (904.2 KiB) TX bytes:1754733 (1.6 MiB)

eth1 Link encap:Ethernet HWaddr 00:E0:4C:58:D6:B8
inet addr:62.XX.XX.249 Bcast:62.XX.XX.255 Mask:255.255.255.240
inet6 addr: fe80::2e0:4cff:fe58:d6b8/64 Scope:Link
UP BROADCAST RUNNING PROMISC MULTICAST MTU:1500 Metric:1
RX packets:21073 errors:0 dropped:0 overruns:0 frame:0
TX packets:18812 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:9646132 (9.1 MiB) TX bytes:2860358 (2.7 MiB)
Interrupt:22

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:12 errors:0 dropped:0 overruns:0 frame:0
TX packets:12 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:1920 (1.8 KiB) TX bytes:1920 (1.8 KiB)

venet0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
RX packets:4394 errors:0 dropped:0 overruns:0 frame:0
TX packets:6166 errors:0 dropped:42 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:267950 (261.6 KiB) TX bytes:7952725 (7.5 MiB)

ip route shows :

62.XX.XX.252 dev venet0 scope link
62.XX.XX.240/28 dev eth1 proto kernel scope link src 62.XX.XX.249
192.168.0.0/24 dev eth0 proto kernel scope link src 192.168.0.52
169.254.0.0/16 dev eth1 scope link metric 1002
169.254.0.0/16 dev eth0 scope link metric 1003
default via 62.XX.XX.241 dev eth1

Kernel Version 2.6.32-042stab044.11

service iptables is stopped

cat /etc/sysctl.conf
net.ipv4.ip_forward = 1
net.ipv4.conf.default.proxy_arp = 0
net.ipv4.conf.all.rp_filter = 1
kernel.sysrq = 1
net.ipv4.conf.default.send_redirects = 1
net.ipv4.conf.all.send_redirects = 0
net.ipv4.icmp_echo_ignore_broadcasts=1
net.ipv4.conf.default.forwarding=1

tcpdump -i eth1 -vvvvvv icmp
tcpdump: listening on eth1, link-type EN10MB (Ethernet), capture size 65535 bytes
17:52:14.221658 IP (tos 0x0, ttl 127, id 29470, offset 0, flags [none], proto ICMP (1), length 60)
192.168.0.225 > 62-XX-XX-252: ICMP echo request, id 512, seq 39168, length 40
17:52:19.435891 IP (tos 0x0, ttl 127, id 29473, offset 0, flags [none], proto ICMP (1), length 60)
192.168.0.225 > 62-XX-XX-252: ICMP echo request, id 512, seq 39424, length 40
17:52:24.936865 IP (tos 0x0, ttl 127, id 29509, offset 0, flags [none], proto ICMP (1), length 60)
192.168.0.225 > 62-XX-XX-252.c-ggoesting.xdsl-line.inode.at: ICMP echo request, id 512, seq 39680, length 40
17:52:30.437860 IP (tos 0x0, ttl 127, id 29511, offset 0, flags [none], proto ICMP (1), length 60)
192.168.0.225 > 62-XX-XX-252: ICMP echo request, id 512, seq 39936, length 40
17:52:40.356925 IP (tos 0x0, ttl 127, id 29555, offset 0, flags [none], proto ICMP (1), length 60)
192.168.0.225 > 62-XX-XX-249: ICMP echo request, id 512, seq 40192, length 40
17:52:45.440720 IP (tos 0x0, ttl 127, id 29592, offset 0, flags [none], proto ICMP (1), length 60)

as mentioned above , it works with Centos 5.7 with same settings.

Any help would be great , if you need more details please tell me

Thank you in advance

Michael

Report message to a moderator

Previous Topic:	Resource issues
Next Topic:	Any way to limit SSH bruteforce scanning of VPS's on the node?

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

]

Current Time: Thu Aug 22 22:12:40 GMT 2024

Total time taken to generate the page: 0.03008 seconds