I tried with firewall on and off, and with all interfaces in external zone, fw on and off. No ip conflict I assume since we can influence what NIC to be active, all of them works but only one at a time :(
and that is not a silly question, my experince is that often the error is to simple ! meaning somebody did not ask those silly questions I think I go for that 'martian source' message. Obviously this is the reason the ssh login is refused, I just have figure out why. Since we use Layer3 network here, we know that MACaddress as seen from outside is the same for all three NICs, that might be the reason it is considered an impossible source ip address. Hmm.... Cordialement / Vriendelijke Groeten / Best Regards / Med Vänliga Hälsningar Tore Agblad Volvo Information Technology Infrastructure Mainframe Design & Development SE-405 08, Gothenburg Sweden E-mail: tore.agb...@volvo.com http://www.volvo.com/volvoit/global/en-gb/ ________________________________________ From: Linux on 390 Port [linux-...@vm.marist.edu] On Behalf Of Amir Glaser [a...@csl-int.com] Sent: Thursday, July 15, 2010 13:11 To: LINUX-390@VM.MARIST.EDU Subject: Re: Strange problems adding network adapter no 2 (eth1) in SLES11 SP1 OK, do you have the firewall on or off now? What happens if you try to turn the firewall on with the new settings (all interfaces in the internal zone)? By the way - excuse me for the silly question, but is it at all possible that you might have a conflicting IP address? (another server on the network with the same IP address which does not support SSH) Thanks, Amir Glaser CSL-WAVE Development MGR Tel: +972 9 9540470, ext. 105 www.csl-int.com Fax: +972 9 9541452 -----Original Message----- From: Linux on 390 Port [mailto:linux-...@vm.marist.edu] On Behalf Of Agblad Tore Sent: Thursday, July 15, 2010 12:39 PM To: LINUX-390@VM.MARIST.EDU Subject: Re: Strange problems adding network adapter no 2 (eth1) in SLES11 SP1 Ok, I have tried that now, had to be sure how to turn of firewall first via VM console in case of no net at all. No change, but now I get messages in the log (messages file) with 'kernel: martian source <my login ip not working> from <my PC ip address>, on dev eth0' (or 1) martian source means a source IP that is not possible together with other ipconfig ( I have done some googling here ), so the kernel just refuse it. But I don't get the reason here, it is not an 'impossible' source IP here. I keep digging/googling /Tore ___________________________________________ Tore Agblad Volvo Information Technology Infrastructure Mainframe Design & Development, Linux servers Dept 4352 DA1S SE-405 08, Gothenburg Sweden Telephone: +46-31-3233569 E-mail: tore.agb...@volvo.com http://www.volvo.com/volvoit/global/en-gb/ -----Original Message----- From: Linux on 390 Port [mailto:linux-...@vm.marist.edu] On Behalf Of Amir Glaser Sent: den 14 juli 2010 12:54 To: LINUX-390@VM.MARIST.EDU Subject: Re: Strange problems adding network adapter no 2 (eth1) in SLES11 SP1 I've noticed that sometimes in various version of SuSE it is not enough to turn the firewall off. For some unknown reason (I haven't had the time to look deeper into it), when you have several interfaces you have to add them all to the internal zone, and only then turn the firewall off (or keep it on if you wish). I'm not sure this issue still exists in SLES11 (as I've said - I haven't had the time to fully investigate this), but I definitely experienced this on SLES9 and SLES10. Thanks, Amir Glaser CSL-WAVE Development MGR Tel: +972 9 9540470, ext. 105 www.csl-int.com Fax: +972 9 9541452 -----Original Message----- From: Linux on 390 Port [mailto:linux-...@vm.marist.edu] On Behalf Of Agblad Tore Sent: Tuesday, July 13, 2010 4:21 PM To: LINUX-390@VM.MARIST.EDU Subject: Re: Strange problems adding network adapter no 2 (eth1) in SLES11 SP1 Yes , we took the easy way and turned the firewall off. No luck :( My current suspicions is that somewhere a config default value specify that if two interfaces, use one as current and the other as backup Haven't verified that one yet, for the moment I'm preparing to clone a new server in our ip zone to verify it doesn't work here as well. Thank's anyway :) ___________________________________________ Tore Agblad Volvo Information Technology Infrastructure Mainframe Design & Development, Linux servers Dept 4352 DA1S SE-405 08, Gothenburg Sweden Telephone: +46-31-3233569 E-mail: tore.agb...@volvo.com http://www.volvo.com/volvoit/global/en-gb/ ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For more information on Linux on System z, visit http://wiki.linuxvm.org/ ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For more information on Linux on System z, visit http://wiki.linuxvm.org/ No virus found in this incoming message. Checked by AVG - www.avg.com Version: 9.0.830 / Virus Database: 271.1.1/3006 - Release Date: 07/15/10 05:26:00 ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For more information on Linux on System z, visit http://wiki.linuxvm.org/ ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For more information on Linux on System z, visit http://wiki.linuxvm.org/
