Author Topic: Breaking internet routing 2 times in a day (Read 1633 times)

qmic · « **on:** May 21, 2009, 02:37:46 pm »

About 2 times in a day ebox is breaking internet routing (internet is connected by ethernet eth2), then I must login via ssh (from internet side), restart ebox service only, and everything is ok back. Anybody got any clues ? I think it can be local network side related, because i can ping any host but i cannot connect to (ie. via ssh)

javi · « **Reply #1 on:** May 21, 2009, 02:47:57 pm »

Do you have any interface configured with DHCP?

If it happens again, please, before restore internet, save the output of these commands:

Code: [Select]

sudo ps aux | grep dhclient
sudo ip route ls table default
sudo iptables -L -n -v
sudo ifconfig -a

If you do that, it will be easy to find out what the problem is.

Thanks!

qmic · « **Reply #2 on:** May 21, 2009, 03:15:01 pm »

Thanks for a quick reply.

I`m only using static adressess, when problem occurs again i will provide here needed information.

qmic · « **Reply #3 on:** May 22, 2009, 08:42:47 am »

dhcp 4809 0.0 0.1 2440 764 ? S<s May19 0:01 dhclient3 -e IF_METRIC=100 -pf /var/run/dhclient.eth0.pid -lf /var/lib/dhcp3/dhclient.eth0.leases eth0
qmic 11455 0.0 0.1 3004 752 pts/0 R+ 08:07 0:00 grep dhclient

default via xx.48.17.1 dev eth2

Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 DROP all -- * * 10.8.0.0/24 100.1.1.0/24
971 475K ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
13597 1328K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0
4635 559K inospoof all -- * * 0.0.0.0/0 0.0.0.0/0
4635 559K iexternalmodules all -- * * 0.0.0.0/0 0.0.0.0/0
4635 559K iexternal all -- * * 0.0.0.0/0 0.0.0.0/0
4634 559K inoexternal all -- * * 0.0.0.0/0 0.0.0.0/0
4081 495K imodules all -- * * 0.0.0.0/0 0.0.0.0/0
4081 495K iintservs all -- * * 0.0.0.0/0 0.0.0.0/0
4081 495K iglobal all -- * * 0.0.0.0/0 0.0.0.0/0
4081 495K idrop all -- * * 0.0.0.0/0 0.0.0.0/0

Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 DROP all -- * * 10.8.0.0/24 100.1.1.0/24
904 485K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0
2608 165K fnospoof all -- * * 0.0.0.0/0 0.0.0.0/0
2608 165K fredirects all -- * * 0.0.0.0/0 0.0.0.0/0
2608 165K fmodules all -- * * 0.0.0.0/0 0.0.0.0/0
2608 165K ffwdrules all -- * * 0.0.0.0/0 0.0.0.0/0
2608 165K fnoexternal all -- * * 0.0.0.0/0 0.0.0.0/0
2608 165K fdns all -- * * 0.0.0.0/0 0.0.0.0/0
2569 163K fobjects all -- * * 0.0.0.0/0 0.0.0.0/0
2569 163K fglobal all -- * * 0.0.0.0/0 0.0.0.0/0
2538 161K fdrop all -- * * 0.0.0.0/0 0.0.0.0/0

Chain OUTPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 DROP all -- * * 10.8.0.0/24 100.1.1.0/24
971 475K ACCEPT all -- * lo 0.0.0.0/0 0.0.0.0/0
82 11104 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 ACCEPT icmp !f * * 0.0.0.0/0 0.0.0.0/0
37313 2620K ointernal all -- * * 0.0.0.0/0 0.0.0.0/0
15697 1113K omodules all -- * * 0.0.0.0/0 0.0.0.0/0
15697 1113K oglobal all -- * * 0.0.0.0/0 0.0.0.0/0
15697 1113K odrop all -- * * 0.0.0.0/0 0.0.0.0/0

Chain drop (4 references)
pkts bytes target prot opt in out source destination
22869 1833K DROP all -- * * 0.0.0.0/0 0.0.0.0/0

Chain fdns (1 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT udp -- * * 0.0.0.0/0 100.1.1.2 state NEW udp dpt:53
39 2469 ACCEPT udp -- * * 0.0.0.0/0 194.204.159.1 state NEW udp dpt:53

Chain fdrop (3 references)
pkts bytes target prot opt in out source destination
2538 161K drop all -- * * 0.0.0.0/0 0.0.0.0/0

Chain ffwdrules (1 references)
pkts bytes target prot opt in out source destination

Chain fglobal (1 references)
pkts bytes target prot opt in out source destination
31 1860 ACCEPT all -- * * 100.1.1.0/24 0.0.0.0/0

Chain fmodules (1 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- tap2 * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT all -- * tap2 0.0.0.0/0 0.0.0.0/0

Chain fnoexternal (1 references)
pkts bytes target prot opt in out source destination
0 0 fdrop all -- eth2 * 0.0.0.0/0 0.0.0.0/0 state NEW

Chain fnospoof (1 references)
pkts bytes target prot opt in out source destination

Chain fobjects (1 references)
pkts bytes target prot opt in out source destination

Chain fredirects (1 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT tcp -- eth2 * 0.0.0.0/0 100.1.1.2 state NEW tcp dpt:2222

Chain ftoexternalonly (0 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- * eth2 0.0.0.0/0 0.0.0.0/0
0 0 fdrop all -- * * 0.0.0.0/0 0.0.0.0/0

Chain idrop (2 references)
pkts bytes target prot opt in out source destination
4634 559K drop all -- * * 0.0.0.0/0 0.0.0.0/0

Chain iexternal (1 references)
pkts bytes target prot opt in out source destination
4635 559K inointernal all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT tcp -- * * xx.222.103.53 0.0.0.0/0 tcp dpt:443 state NEW
1 60 ACCEPT tcp -- * * xx.222.103.53 0.0.0.0/0 tcp dpt:22 state NEW

Chain iexternalmodules (1 references)
pkts bytes target prot opt in out source destination
4635 559K inointernal all -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT udp -- tap2 * 0.0.0.0/0 0.0.0.0/0 udp dpt:520
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:1194

Chain iglobal (1 references)
pkts bytes target prot opt in out source destination
0 0 drop tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:389 state NEW
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:123 state NEW
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:53 state NEW
0 0 ACCEPT udp -- * * 0.0.0.0/0 0.0.0.0/0 udp dpt:69 state NEW
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 state NEW
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:443 state NEW

Chain iintservs (1 references)
pkts bytes target prot opt in out source destination

Chain imodules (1 references)
pkts bytes target prot opt in out source destination

Chain inoexternal (1 references)
pkts bytes target prot opt in out source destination
553 64388 idrop all -- eth2 * 0.0.0.0/0 0.0.0.0/0 state NEW

Chain inointernal (2 references)
pkts bytes target prot opt in out source destination
8158 989K RETURN all -- eth0 * 0.0.0.0/0 0.0.0.0/0

Chain inospoof (1 references)
pkts bytes target prot opt in out source destination

Chain odrop (1 references)
pkts bytes target prot opt in out source destination
15697 1113K drop all -- * * 0.0.0.0/0 0.0.0.0/0

Chain oglobal (1 references)
pkts bytes target prot opt in out source destination

Chain ointernal (1 references)
pkts bytes target prot opt in out source destination
21616 1507K ACCEPT udp -- * * 0.0.0.0/0 100.1.1.2 state NEW udp dpt:53
0 0 ACCEPT udp -- * * 0.0.0.0/0 194.204.159.1 state NEW udp dpt:53

Chain omodules (1 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT udp -- * tap2 0.0.0.0/0 0.0.0.0/0 udp dpt:520
0 0 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80

eth0 Link encap:Ethernet HWaddr 00:80:48:c2:af:f2
inet addr:100.1.1.208 Bcast:100.1.1.255 Mask:255.255.255.0
inet6 addr: fe80::280:48ff:fec2:aff2/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:4757618 errors:0 dropped:0 overruns:0 frame:0
TX packets:5094368 errors:1 dropped:0 overruns:0 carrier:2
collisions:156027 txqueuelen:1000
RX bytes:1145937873 (1.0 GB) TX bytes:4208552960 (3.9 GB)
Interrupt:16 Base address:0x9000

eth1 Link encap:Ethernet HWaddr 00:80:48:fd:27:37
BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
Interrupt:17 Base address:0x9400

eth2 Link encap:Ethernet HWaddr 00:80:48:ca:cb:8d
inet addr:xx.48.17.32 Bcast:80.48.17.63 Mask:255.255.255.192
inet6 addr: fe80::280:48ff:feca:cb8d/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:5297597 errors:0 dropped:0 overruns:0 frame:0
TX packets:4504671 errors:54 dropped:0 overruns:0 carrier:108
collisions:356315 txqueuelen:1000
RX bytes:4242566086 (3.9 GB) TX bytes:1119920162 (1.0 GB)
Interrupt:18 Base address:0x9800

eth0:vpngenzyme Link encap:Ethernet HWaddr 00:80:48:c2:af:f2
inet addr:100.1.2.1 Bcast:100.1.2.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
Interrupt:16 Base address:0x9000

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:14390 errors:0 dropped:0 overruns:0 frame:0
TX packets:14390 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:7039030 (6.7 MB) TX bytes:7039030 (6.7 MB)

tap2 Link encap:Ethernet HWaddr 00:ff:80:0d:4f:99
inet addr:10.8.0.1 Bcast:10.8.0.255 Mask:255.255.255.0
inet6 addr: fe80::2ff:80ff:fe0d:4f99/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:6 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:0 (0.0 B) TX bytes:468 (468.0 B)

qmic · « **Reply #4 on:** May 22, 2009, 08:44:07 am »

I`ve got a clue, eth0 is changed by dhcp but why (it have a static address)

javi · « **Reply #5 on:** May 22, 2009, 10:18:42 am »

Quote

I`ve got a clue, eth0 is changed by dhcp but why (it have a static address)

Exactly, that's the problem. Please post your /etc/network/interfaces file.

qmic · « **Reply #6 on:** May 22, 2009, 07:14:46 pm »

# This file describes the network interfaces available on your system
# and how to activate them. For more information, see interfaces(5).

# The loopback network interface
auto lo
iface lo inet loopback

# The primary network interface
auto eth0
iface eth0 inet dhcp

should i remove lines eth0 related? Only ebox should manage interfaces?

javi · « **Reply #7 on:** May 22, 2009, 07:49:33 pm »

What's your eBox version?

qmic · « **Reply #8 on:** May 22, 2009, 10:58:27 pm »

0.11.99-0ubuntu11

javi · « **Reply #9 on:** May 23, 2009, 12:57:33 pm »

Quote

0.11.99-0ubuntu11

Ok, in that case it makes sense, we hadn't fixed that issue in that version yet. Just remove the "auto eth0" thing and you should be fine when you reboot again

qmic · « **Reply #10 on:** May 23, 2009, 01:50:35 pm »

Ok, thank you very much

Cookies usage

Author Topic: Breaking internet routing 2 times in a day (Read 1633 times)

qmic

Breaking internet routing 2 times in a day

javi

Re: Breaking internet routing 2 times i na day

qmic

Re: Breaking internet routing 2 times i na day

qmic

Re: Breaking internet routing 2 times i na day

qmic

Re: Breaking internet routing 2 times i na day

javi

Re: Breaking internet routing 2 times i na day

qmic

Re: Breaking internet routing 2 times i na day

javi

Re: Breaking internet routing 2 times i na day

qmic

Re: Breaking internet routing 2 times i na day

javi

Re: Breaking internet routing 2 times i na day

qmic

Re: Breaking internet routing 2 times i na day