Solved

Active Diald does not work occasionally

Posted on 1997-06-17
7
228 Views
Last Modified: 2010-03-17
I have a typical setup with a local network and a Linux server on a single phone line. I have diald and IP masq installed. It works great, but once in a few days diald makes the connection completely, but no IP traffic is possible. Here is some output:

#ping 194.220.146.5 (the other end of connection)
ping: sendto: Operation not permitted
PING 194.220.146.5 (194.220.146.5): 56 data bytes
ping: wrote 194.220.146.5 64 chars, ret=-1

#ifconfig ppp0
ppp0      Link encap:Point-Point Protocol  
          inet addr:194.135.178.215  P-t-P:194.220.146.5
Mask:255.255.255.0
          UP POINTOPOINT RUNNING  MTU:1500  Metric:1
          RX packets:193 errors:0 dropped:0 overruns:0
          TX packets:237 errors:0 dropped:0 overruns:0

I am not even sure if the problem is with diald or IP masq.
Any suggestions?

Thanks,
Simon
0
Comment
Question by:simonff
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
7 Comments
 
LVL 3

Expert Comment

by:sauron
ID: 1584936
Try the above again, from both your masqueraded machine, and from your directly connected machine. This will tell you whether the problem is with the masquerading setup, or the PPP link.

The output from route -n on both machihnes when the problem manifests would also be useful in tracking this one down.
0
 

Author Comment

by:simonff
ID: 1584937
Alas, I cannot ping from other machines - UDP is not allowed through the masq setup, and I cannot use ifconfig because they are Win 95 machines. The above output applied to the directly connected machine.
I will monitor the 'route -n' output when this strange thing happens again, but I do not quite like what I have even under the normal conditions (note the multiple entries). Here 200.200.200.0 is our local network.

Fresh after reboot:
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
194.135.176.5   0.0.0.0         255.255.255.255 UH    1      0        0 sl0
200.200.200.0   0.0.0.0         255.255.255.0   U     0      0        1 eth0
127.0.0.0       0.0.0.0         255.0.0.0       U     0      0        0 lo
0.0.0.0         0.0.0.0         0.0.0.0         U     1      0        0 sl0

While online:
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
194.135.176.5   0.0.0.0         255.255.255.255 UH    0      0        0 ppp0
194.135.176.5   0.0.0.0         255.255.255.255 UH    1      0        0 sl0
194.220.146.5   0.0.0.0         255.255.255.255 UH    0      0        1 ppp0
200.200.200.0   0.0.0.0         255.255.255.0   U     0      0      316 eth0
127.0.0.0       0.0.0.0         255.0.0.0       U     0      0      129 lo
0.0.0.0         0.0.0.0         0.0.0.0         U     0      0        3 ppp0
0.0.0.0         0.0.0.0         0.0.0.0         U     1      0      110 sl0
0
 
LVL 3

Accepted Solution

by:
sauron earned 100 total points
ID: 1584938
After a reboot, you have a route to your local network, using eth0, a loopback route, a host route to 194.135.176.5, using sl0, and a default route over sl0.

The last 2 are set by diald, and monitored - when a packet is routed over the sl0 interface, it brings the link up, and adds the ppp0 routes you seen in the second table.

You can see that you only have a route to the remote end of your ppp link (194.220.146.5) when the link is up - the fake sl0 route goes to 194.220.176.5 - when the link comes up diald sets up this route over the ppp0 interface. I would guess that the route you have to 194.220.146.5 (your real route) is negotiated by the remote end of your link, and if the negotiation goes a little slow sometimes, then this route may not get registered, leaving outgoing packets on the ppp link trying to reach 194.220.176.5 - an address which is on a different class C network, and will be unreachable, thus your error message.

Check you diald.conf, and look for that bogus ip address - if you replace that with 194.220.146.5, it'll probably cure your problem. You might also want to look in the /etc/syconfig/network-scripts directory, and set up 194.220.146.5 to be your default gateway, to tidy up your routing table.
0
NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

 

Author Comment

by:simonff
ID: 1584939
Silly me... :) I had this bogus IP address as remote_IP in diald.conf... Thanks. Say, do you know where I can get wildmat sources or the whole implementation of XPAT command?
0
 

Author Comment

by:simonff
ID: 1584940
Oops, it was premature. I have just had the same problem again. See the routing table, it is quite good now. What else can be wrong?

Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
194.220.146.5   0.0.0.0         255.255.255.255 UH    0      0        1 ppp0
194.220.146.5   0.0.0.0         255.255.255.255 UH    1      0        0 sl0
200.200.200.0   0.0.0.0         255.255.255.0   U     0      0      263 eth0
127.0.0.0       0.0.0.0         255.0.0.0       U     0      0       77 lo
0.0.0.0         0.0.0.0         0.0.0.0         U     0      0        2 ppp0
0.0.0.0         0.0.0.0         0.0.0.0         U     1      0        4 sl0
0
 
LVL 3

Expert Comment

by:sauron
ID: 1584941
Routing table looks fine to me now - I have a very similar setup, and my routing table looks just like that, so I'd say your routing is set up right.

You're getting 'Operation not permitted' as well, so that seems to suggest that something else is up. What you might want to do, is , next time the problem occurs, try running tcpdump on the ppp0 interface, then trying to ping. See if any packets go out at all - if they don't, something is wrong with the logic somewhere, as opposed to the physical connection being at fault. You could put diald into debug mode - add 'debug 31' to the end of your diald.conf - this logs *loads* of stuff to syslog, and might give you some pointers.
0
 

Author Comment

by:simonff
ID: 1584942
OK, here is something that I have caught during the last trouble period.

Diald debug messages (debug flags at 255, rule 30 is the very last one - accept any):
Jul  5 19:01:18 rrg diald[216]: filter accepted rule 30 proto 89 len 64 packet 194.220.146.5,0 => 224.0.0.5,0
Jul  5 19:01:18 rrg diald[216]: Adding connection 134680648 @ 868114878 - timeout 30

Tcpdump results:
22:21:06.090000 194.220.146.5 > 224.0.0.5: OSPFv2-hello 44: backbone [tos 0xc0] [ttl 1]
22:21:16.090000 194.220.146.5 > 224.0.0.5: OSPFv2-hello 44: backbone [tos 0xc0] [ttl 1]
And so on...

Does that help to diagnose the problem, or should I run tcpdump in a more verbose mode?
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

759 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question