Hi guys me again
I did the test once again using my iPhone to avoid problem with the subnet. Following also the result for the iptables you asked. I’m adding the LOG to the marker and see if the packages are marked (seems to me yes, I was doing “by hand” for testing purposes the same as the ConnMan is meant to do and I sow the packages marked correctly in /var/log/kern.log). The most relevant information is that: ——————— root@jf:/home/jf# ip route show table 0x100 ——————— ——————— root@jf:/home/jf# ip route show table 0x101 default via 172.20.10.1 dev wlan0 ——————— Can be that Ubuntu for security reason is doing something preventing to go to Internet via eth0? Following the other LOG for the test ——————— ethsession@jf:~$ connmanctl connmanctl> services *AO Wired ethernet_68b599eda216_cable connmanctl> session on Session /sessions/_1_77/net/connman/connmanctl2210 created Session Update = { State = disconnected Name = IPv4 = [ ] IPv6 = [ ] Interface = Bearer = ConnectionType = internet AllowedBearers = [ ethernet ] } connmanctl> services *AO Gianfranco's iPhone wifi_0024d76e6c38_4769616e6672616e636f2773206950686f6e65_managed_psk *AR Wired ethernet_68b599eda216_cable connmanctl> exit ethsession@jf:~$ id uid=1001(ethsession) gid=1001(ethsession) groups=1001(ethsession),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),115(lpadmin),131(sambashare),1000(jf) ethsession@jf:~$ curl ifconfig.me 91.253.148.158 (from the Phone) ——————— ——————— wifisession@jf:~$ connmanctl connmanctl> services *AO Wired ethernet_68b599eda216_cable connmanctl> services *AO Wired ethernet_68b599eda216_cable *Aa Gianfranco's iPhone wifi_0024d76e6c38_4769616e6672616e636f2773206950686f6e65_managed_psk connmanctl> session on Session /sessions/_1_78/net/connman/connmanctl2211 created Session Update = { State = online Name = Gianfranco's iPhone IPv4 = [ Method=dhcp, Address=172.20.10.10, Netmask=255.255.255.240, Gateway=172.20.10.1 ] IPv6 = [ ] Interface = wlan0 Bearer = wifi ConnectionType = internet AllowedBearers = [ wifi ] } Session /sessions/_1_78/net/connman/connmanctl2211 connected connmanctl> session connect connmanctl> services *AO Gianfranco's iPhone wifi_0024d76e6c38_4769616e6672616e636f2773206950686f6e65_managed_psk *AR Wired ethernet_68b599eda216_cable connmanctl> exit wifisession@jf:~$ id uid=1002(wifisession) gid=1002(wifisession) groups=1002(wifisession),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),115(lpadmin),131(sambashare),1000(jf) wifisession@jf:~$ curl ifconfig.me 91.253.148.158 (from the Phone) ——————— ——————— root@jf:/home/jf# ifconfig eth0 Link encap:Ethernet HWaddr 68:b5:99:ed:a2:16 inet addr:192.168.1.100 Bcast:192.168.1.255 Mask:255.255.255.0 inet6 addr: fe80::6ab5:99ff:feed:a216/64 Scope:Link UP BROADCAST RUNNING MULTICAST DYNAMIC MTU:1500 Metric:1 RX packets:84 errors:0 dropped:0 overruns:0 frame:0 TX packets:101 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:18449 (18.4 KB) TX bytes:13899 (13.8 KB) Interrupt:20 Memory:d7500000-d7520000 lo Link encap:Local Loopback inet addr:127.0.0.1 Mask:255.0.0.0 inet6 addr: ::1/128 Scope:Host UP LOOPBACK RUNNING MTU:65536 Metric:1 RX packets:1008 errors:0 dropped:0 overruns:0 frame:0 TX packets:1008 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:0 RX bytes:86690 (86.6 KB) TX bytes:86690 (86.6 KB) wlan0 Link encap:Ethernet HWaddr 00:24:d7:6e:6c:38 inet addr:172.20.10.10 Bcast:172.20.10.15 Mask:255.255.255.240 inet6 addr: fe80::224:d7ff:fe6e:6c38/64 Scope:Link UP BROADCAST RUNNING MULTICAST DYNAMIC MTU:1500 Metric:1 RX packets:28 errors:0 dropped:0 overruns:0 frame:0 TX packets:76 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:3264 (3.2 KB) TX bytes:13115 (13.1 KB) ——————— ——————— root@jf:/home/jf# ip rule show 0: from all lookup local 32764: from all fwmark 0x101 lookup 257 32765: from all fwmark 0x100 lookup 256 32766: from all lookup main 32767: from all lookup default ——————— ——————— root@jf:/home/jf# route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 172.20.10.1 0.0.0.0 UG 0 0 0 wlan0 8.8.4.4 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0 8.8.8.8 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0 172.20.10.0 0.0.0.0 255.255.255.240 U 0 0 0 wlan0 172.20.10.1 0.0.0.0 255.255.255.255 UH 0 0 0 wlan0 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 192.168.1.1 0.0.0.0 255.255.255.255 UH 0 0 0 eth0 ——————— ——————— root@jf:/home/jf# iptables -t mangle -L Chain PREROUTING (policy ACCEPT) target prot opt source destination Chain INPUT (policy ACCEPT) target prot opt source destination connman-INPUT all -- anywhere anywhere Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination connman-OUTPUT all -- anywhere anywhere Chain POSTROUTING (policy ACCEPT) target prot opt source destination connman-POSTROUTING all -- anywhere anywhere Chain connman-INPUT (1 references) target prot opt source destination CONNMARK all -- anywhere anywhere CONNMARK restore Chain connman-OUTPUT (1 references) target prot opt source destination MARK all -- anywhere anywhere owner UID match ethsession MARK set 0x100 MARK all -- anywhere anywhere owner UID match wifisession MARK set 0x101 Chain connman-POSTROUTING (1 references) target prot opt source destination CONNMARK all -- anywhere anywhere CONNMARK save ——————— ——————— root@jf:/home/jf# iptables -t filter -L Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination ——————— ——————— root@jf:/home/jf# cat /etc/iproute2/rt_tables # # reserved values # 255 local 254 main 253 default 0 unspec # # local # #1 inr.ruhep ——————— ——————— root@jf:/home/jf# ip route show table 0x100 ——————— ——————— root@jf:/home/jf# ip route show table 0x101 default via 172.20.10.1 dev wlan0 ——————— > On 03 Jul 2015, at 10:48, Patrik Flykt <patrik.fl...@linux.intel.com> wrote: > > Hi, > > On Fri, 2015-07-03 at 09:12 +0200, Gianfranco Casanova wrote: > >> ethsession: >> >> connmanctl> session on >> Session /sessions/_1_116/net/connman/connmanctl4383 created >> Session Update = { >> State = disconnected > ... >> ConnectionType = internet >> AllowedBearers = [ ethernet ] > > So the correct 'ethernet' bearer is now selected. Good. As only one > connection at a time can be in state 'online', only one session at a > time can use type 'internet'; i.e. 'online' maps 1:1 to 'internet'. > Therefore this is in line with the current connmanctl services output > below. > >> wifisession: >> >> connmanctl> session on >> Session /sessions/_1_117/net/connman/connmanctl4384 created >> Session Update = { >> State = online > ... >> Bearer = wifi >> ConnectionType = internet >> AllowedBearers = [ wifi ] > > Same here. > >> connmanctl> services >> *AO abwifi-low wifi_0024d76e6c38_6162776966692d6c6f77_managed_psk >> *AR Wired ethernet_68b599eda216_cable > > The wifi session can request state 'internet' and it will be connected, > if the ethernet session does the same it is reported as being > disconnected. > >> $> ip rule show >> >> 0: from all lookup local >> 0: from all lookup main >> 0: from all fwmark 0x1 lookup 1 >> 0: from all fwmark 0x100 lookup ISP1 >> 0: from all fwmark 0x101 lookup ISP2 > > Looks fine. ISP1 and ISP2 are in /etc/iproute2/rt_tables, right? ConnMan > reuses the fwmark as the table name, so these have the values 256 and > 257 respectively. Note that the fwmark value is not static and depends > on the order of the sessions being activated. With this ISP1 and ISP2 > strings will not always be mapped to the intended ISP1 and ISP2... > > What does 'ip route show table 0x100' and 'ip route show table 0x101' > show here? Don't configure any of these tables manually in advance, let > ConnMan handle the table and entry creation. > >> $> route -n >> >> >> Kernel IP routing table >> Destination Gateway Genmask Flags Metric Ref Use Iface >> 0.0.0.0 192.168.1.1 0.0.0.0 UG 0 0 0 wlan0 >> 8.8.4.4 192.168.1.1 255.255.255.255 UGH 0 0 0 wlan0 >> 8.8.4.4 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0 >> 8.8.8.8 192.168.1.1 255.255.255.255 UGH 0 0 0 wlan0 >> 8.8.8.8 192.168.1.1 255.255.255.255 UGH 0 0 0 eth0 >> 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 >> 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 wlan0 >> 192.168.1.1 0.0.0.0 255.255.255.255 UH 0 0 0 wlan0 >> 192.168.1.1 0.0.0.0 255.255.255.255 UH 0 0 0 eth0 > > This command shows the default routing table used for everybody else not > matched by UIDs to specific tables. > > >> $> iptables -t mangle -L > ... >> Chain connman-INPUT (1 references) >> target prot opt source destination >> CONNMARK all -- anywhere anywhere CONNMARK >> restore >> >> >> Chain connman-OUTPUT (1 references) >> target prot opt source destination >> MARK all -- anywhere anywhere owner UID >> match ethsession MARK set 0x100 >> MARK all -- anywhere anywhere owner UID >> match wifisession MARK set 0x101 >> >> >> Chain connman-POSTROUTING (1 references) >> target prot opt source destination >> CONNMARK all -- anywhere anywhere CONNMARK save > > Looks fine. > > All of this is now working correctly. Please check the output of 'ip > route show table 0x...' > > Cheers, > > Patrik > > > _______________________________________________ connman mailing list connman@connman.net https://lists.connman.net/mailman/listinfo/connman