Solved

Route Problems with a Socks Proxy Server

Posted on 1998-07-27
5
285 Views
Last Modified: 2010-03-18
Linux Red Hat 5.0 Multi Homed Proxy server.
Socks5 Proxy server installed
SocksCap32 TPC/IP shim run on client PC’s
Internal NIC address = 192.168.5.2

Internal Network Sub’ed into 2 Networks seperated by Routers and a T1 superpath.  Proxy server is on 192.168.5.0 subnet (Router address is 192.168.5.1).  Other subnet  is 192.168.6.0

External NIC address = 204.211.78.240 (Connected to a Cable Modem and Road Runner) Road Runner upstream router is 204.211.78.1

Current problem : Internal clients can not connect to host 192.168.5.2 for e-mail or Romstar.com when running “Socksified”.  The server refuses the connection.  External address browsing works fine.

When you try to ping www.romstar.com or 192.168.5.2 at the console you get “Network is unreachable”

Have tried :

Route add –net 127.0.0.0  result=“Network Unreachable”
Tried route del “on almost all entries and the Route Table comes back the same after reboot”
Tried changing DomainName in network file to “maine.rr.com” (Was Romstar.com). result=no change

Current etc/sysconfig/network

NETWORKING=yes
FORWARD_IPV4=no
HOSTNAME=tt022nfc
DOMAINNAME=maine.rr.com
GATEWAYDEV=eth0
GATEWAY=204.211.78.1




Current etc/sysconfig/static-routes

eth0 net 0.0.0.0 netmask 255.255.255.0 gw 204.211.78.1
eth0 net 204.211.78.0 netmask 255.255.255.0 gw 204.211.78.1
eth1 net 192.168.5.0 netmask 255.255.255.0 gw 192.168.5.1
eth1 net 192.168.6.0 netmask 255.255.255.0 gw 192.168.5.1


Current Output when “route” is run

Destination Gateway Genmask Flags Metric Ref Use Iface

204.211.78.0 204.211.78.1 255.255.255.0 UG 0 0 3 Eth0
204.211.78.0 *            255.255.255.0 U  0 0 0 Eth0
default      204.211.78.1 255.255.255.0      UG 0 0 0 Eth0
192.168.5.0  192.168.5.1  255.255.255.0 UG 0 0 30Eth1
192.168.5.0  *            255.255.255.0 U  0 0 0 Eth1
192.168.6.0  192.168.5.1  255.255.255.0 UG 0 0 14 Eth1
default      204.211.78.1 0.0.0.0       UG 0 0 50 Eth0
0
Comment
Question by:hbrady
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 1

Author Comment

by:hbrady
ID: 1585921
Edited text of question
0
 
LVL 3

Accepted Solution

by:
marcelofr earned 100 total points
ID: 1585922
You don't have route to localhost (lo0). I recommend adding it with netcfg (startx as root->networking icon of control-panel) and verify you have "lo" interface defined... It's address has to be 127.0.0.1

Anyway it would be better to instruct socksified clients no to use socks on the local network: you save a lot of cpu time...

Good luck
0
 
LVL 1

Author Comment

by:hbrady
ID: 1585923
You are right; however, the reason I do not want to hit activate on it is that the IP address is blank.  Here is how it reads :

Interface       IP address      Proto   OnBoot  Active
lo                              none            inactive
eth0            204.211.78.240  none    yes     active
eth1            192.168.5.1    none    yes     active

When I try to edit to lo line it states that the local loop back can not be changed; however, if I hit activate what ip address will it try ? Thanks !
0
 
LVL 3

Expert Comment

by:marcelofr
ID: 1585924
I've heard things like this... Always is due to some missing information... Just compare in /etc/sysconfig/network-scripts the definition of ifcfg-lo and ifcfg-eth0. Maybe the first has some data missing...
0
 
LVL 1

Author Comment

by:hbrady
ID: 1585925
Thanks marcelofr, you nailed this one !
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

724 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question