SOLVED Re: any ideas? no network traffic gets through
On Sun, Feb 24, 2002 at 03:41:43PM +1300, Cameron Kerr wrote: > On Sat, 23 Feb 2002, will trillich wrote: > >there's probably something simple that's wrong here, but my > >3c509 connection won't cooperate no my potato system. it'll > >respond only to self-pings; no other traffic seems to get in or > >out. > Go to 3Com's site, and get the DOS driver disk (Disk 2), make a DOS > bootable disk, and stick all the files in the root of the self-extracting > archive (you can decompress under Linux using lha, or dosemu), and boot > from the floppy. Run the program PNPDSABL.BAT to disable Plug and Pray, > and then run the E3C5X9CFG.EXE program, and change/note the IO and IRQ > values. You should also run the tests. > > If it still doesn't work in Linux, cat /proc/interrupts and take note of > the 2nd column (if your device is sharing interrupts, ignore this). If its > zero, then no interrupts have been received. Send some pings to your > interface from outside the box, and reexamine this statistic. If its still > zero, your card may be dropping interrupts. The testing program will show > this. > > A symptom of this fatal condition is that the lights on the hub flicker, > meaning data is sent, and the ping target gets the frames, and sends them > back, but nothing happens. > > PS. Send the dmesg output regarding the 3c509 module load. thanks, cameron -- the 3c5x9cfg.exe was interesting. nice utility there! but apparently a secondary ethernet card (network everywhere nc100 v2.1) was conflicting somehow. very odd situation -- it had been working under linux (3c509 connections were fine) under linux and then it worked fine when rebooting under qdos (only the nc100 worked for windon't) and then quit working for linux after the next reboot. solved: no more nc100, no more windo~1. :) -- DEBIAN NEWBIE TIP #95 from Joost Kooij <[EMAIL PROTECTED]> : You can ALLOCATE MORE CONSOLES than there are function keys. Switching to vc4 requires alt-F4 (or ctrl-alt-F4 if you're already in X, which itself defaults to vc7). To switch to vc[13..24] (if allocated), use right alt w/ function keys. In /etc/inittab, you can add getty's to enable more virtual consoles with a login. The default is 6. Or try: "X :1 vt14", it will start an xserver on vc14. >From vc1, left alt + left arrow will bring you to the xserver, as will right alt + . The right alt key doesn't work in X11 though, only on the linux console. Also see http://newbieDoc.sourceForge.net/ ...
Re: any ideas? no network traffic gets through
will trillich wrote: > i never have understood the "command > line args" portion of modconf: "Please enter any command-line > arguments for the XYZ module. Many modules can autoprobe and do > not require additional parameters." i don't understand the > syntax needed. The 'command line args' portion of modconf is just after a line like: io=0x300 irq=10 The variables available and range of values for them is dependent on the module.
Re: any ideas? no network traffic gets through
On Sat, 23 Feb 2002, will trillich wrote: >okay, once i detect the io/irq via qdos, how do i replicate that >under linux? is it lilo? Just put it in /etc/modules, if it isn't found at load time. 3c509 io=0x300 irq=10 You only need to use append="ether=10,0x300,eth0" if your driver is compiled into the kernel. >i keep forgetting about the amazing power behind the /proc area. >i'll check this out -- cool idea. Cameron Kerr -- [EMAIL PROTECTED] http://homepages.paradise.net.nz/~cameronk/
Re: any ideas? no network traffic gets through
will trillich wrote: > > [EMAIL PROTECTED] ipmasq -v I haven't got ipmasq - is it a seperate package? Should I have it? > /sbin/ipchains -A input -j DENY -s 0.0.0.0/0 -d 0.0.0.0/0 -l > /sbin/ipchains -A output -j DENY -s 0.0.0.0/0 -d 0.0.0.0/0 -l > /sbin/ipchains -A forward -j DENY -s 0.0.0.0/0 -d 0.0.0.0/0 -l This being output from ipmasaq, I guess it may not be the same syntax as what goes in, but if it is - is there any point in specifying "-s 0.0.0.0/0 -d 0.0.0.0/0"? Doesn't that just mean any source or destination, which is the same as not specifying any at all? Anyway - given that all your DENY rules are logged, have you checked the logs to find out why the packets are denied (by which rule)? Also, apologies for sending my previous response direct rather than to the list. I'm subscribed to too many lists with different policies ... Richard -- I'm currently looking for work; see my Curriculum Vitae here: http://homepages.paradise.net.nz/~rhector/cv.html
Re: any ideas? no network traffic gets through
On Sun, Feb 24, 2002 at 03:41:43PM +1300, Cameron Kerr wrote: > On Sat, 23 Feb 2002, will trillich wrote: > >there's probably something simple that's wrong here, but my > >3c509 connection won't cooperate no my potato system. it'll > >respond only to self-pings; no other traffic seems to get in or > >out. > > I was dealing to this very kind of card the other day, and I have two > things to say. excellent. nice to know it's not just me. > Go to 3Com's site, and get the DOS driver disk (Disk 2), make a DOS > bootable disk, and stick all the files in the root of the self-extracting > archive (you can decompress under Linux using lha, or dosemu), and boot > from the floppy. Run the program PNPDSABL.BAT to disable Plug and Pray, > and then run the E3C5X9CFG.EXE program, and change/note the IO and IRQ > values. You should also run the tests. okay, once i detect the io/irq via qdos, how do i replicate that under linux? is it lilo? i never have understood the "command line args" portion of modconf: "Please enter any command-line arguments for the XYZ module. Many modules can autoprobe and do not require additional parameters." i don't understand the syntax needed. can this be overridden via lilo.conf somehow? or can you 'do it by hand' via left-shift at startup? then again maybe it's in a config file somewhere... > If it still doesn't work in Linux, cat /proc/interrupts and take note of > the 2nd column (if your device is sharing interrupts, ignore this). If its > zero, then no interrupts have been received. Send some pings to your > interface from outside the box, and reexamine this statistic. If its still > zero, your card may be dropping interrupts. The testing program will show > this. i keep forgetting about the amazing power behind the /proc area. i'll check this out -- cool idea. > A symptom of this fatal condition is that the lights on the hub flicker, > meaning data is sent, and the ping target gets the frames, and sends them > back, but nothing happens. > > PS. Send the dmesg output regarding the 3c509 module load. i can do this. [ i even know what you're talking about! :) ] next time i'm at the office... -- DEBIAN NEWBIE TIP #106 from Joost Kooij <[EMAIL PROTECTED]> : Wondering HOW TO GET CPAN MODULES FOR PERL THAT ARE DEBIAN-FRIENDLY? Many perl modules are already Debianized: apt-get install lib-perl apt-get install libdbi-perl libmd5-perl libmime-base64-perl To recover from using CPAN installs directly, reinstall all the perl debs on your system. If you use the --reinstall option to apt-get, it is almost easy, even. To create Debian-friendly *.deb packages from Perl modules, apt-get install dh-perl-make and then you can build your own. Also see http://newbieDoc.sourceForge.net/ ...
Re: any ideas? no network traffic gets through
On Sat, Feb 23, 2002 at 07:40:45PM -0200, Rafael Sasaki wrote: > On Sat, Feb 23, 2002 at 02:30:28PM -0600, will trillich wrote: > > [EMAIL PROTECTED] ifdown eth0 ; ifup eth0 > > > > [EMAIL PROTECTED] ifconfig eth0 > > eth0 Link encap:Ethernet HWaddr 00:60:8C:82:CF:3B > > inet addr:208.251.253.83 Bcast:208.251.253.87 > > Mask:255.255.255.248 > > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > > RX packets:0 errors:0 dropped:0 overruns:0 frame:0 > > TX packets:590 errors:0 dropped:0 overruns:0 carrier:0 > > collisions:0 txqueuelen:100 > > Interrupt:10 Base address:0x300 > > Hi, > maybe here you got an error. IIRC, your broadcast address must be > 208.251.253.255, and your Network Mask 255.255.255.0 if you have > a class C internet address. we've got a 'mini commercial' cluster from our isp which included our own subnet of 8 ip addresses (with ...0 and ...7 being used for listen and broadcast). so yes, the netmask is supposed to be (binary) ...1000 (decimal) 255.255.255.248 where class C subnets are normally (binary) ... (decimal) 255.255.255.0 we've got a windon't box that's got the same subnet mask (255.255.255.248) and [unfortunately :)] it works without a snag. but apparently the netmask CAN be just about anything you choose, for your private in-house nets... it's just easier to maintain if you keep all the zeroes together at the right end of the binary string. at least that's what i've read-- but next time i'm at the office, i could experiment with trying a different netmask if y'all think it would really help... -- DEBIAN NEWBIE TIP #62 from Will Trillich <[EMAIL PROTECTED]> : Wouldn't it be nice to SEE YOUR TABS WHILE YOU EDIT? With Vim, you can do this with :set listchars=tab:+-,trail:$ :set list and format them via ":highlight NonText ...". (See ":help listchars" and ":help highlight" for more info.) Put them in your ~/.vimrc if you decide you like that setup. Also see http://newbieDoc.sourceForge.net/ ...
Re: any ideas? no network traffic gets through
On Sat, Feb 23, 2002 at 03:28:42PM -0600, Gary Turner wrote: > On Sat, 23 Feb 2002 14:30:28 -0600, will trillich wrote: > >there's probably something simple that's wrong here, but my > >3c509 connection won't cooperate no my potato system. it'll > >respond only to self-pings; no other traffic seems to get in or > >out. > When you refer to 'self ping', is that "ping localhost" "ping > " or "ping 208.251.253.83"? That might give someone a clue. [EMAIL PROTECTED] ping 208.251.253.83 PING 208.251.253.83 (208.251.253.83): 56 data bytes 64 bytes from 208.251.253.83: icmp_seq=0 ttl=255 time=0.2 ms 64 bytes from 208.251.253.83: icmp_seq=1 ttl=255 time=0.1 ms 64 bytes from 208.251.253.83: icmp_seq=2 ttl=255 time=0.1 ms 64 bytes from 208.251.253.83: icmp_seq=3 ttl=255 time=0.1 ms --- 208.251.253.83 ping statistics --- 4 packets transmitted, 4 packets received, 0% packet loss round-trip min/avg/max = 0.1/0.1/0.2 ms but pings sent anywhere else are dropped... [EMAIL PROTECTED] ping 208.33.90.85 PING 208.33.90.85 (208.33.90.85): 56 data bytes --- 208.33.90.85 ping statistics --- 9 packets transmitted, 0 packets received, 100% packet loss [EMAIL PROTECTED] > My only real suggestion is to "whack it back to where it works." That > is, lose all the ipchains/NAT/firewall stuff and just go with > /etc/network/interfaces, and appropriate NIC driver. If that doesn't > work, at least the area of investigation is much smaller. If it does, > then add your other stuff one de-bug-able line or stanza at a time. had this problem even before "apt-get install ipmasq" but to be certain, i "apt-get --purge remove ipmasq" and then "reboot" and still no luck. > Not much, but it's all I've got. i appreciate the effort! we'll nail this reall soon now, i hope... -- DEBIAN NEWBIE TIP #92 from Martin F. Krafft <[EMAIL PROTECTED]> : Would you like to use SHUTDOWN AS NORMAL USER? Install appropriate entries into /etc/sudoers (assuming that 'sudo' is installed: User_Alias SHUTDOWNERS = Cmnd_Alias SHUTDOWN = /sbin/shutdown /sbin/halt /sbin/reboot SHUTDOWNERS ALL = NOPASSWD: SHUTDOWN Also see http://newbieDoc.sourceForge.net/ ...
Re: any ideas? no network traffic gets through
On Sat, 23 Feb 2002, will trillich wrote: > >[didn't get any response on this last time -- i'm reposting with >a new subject line hoping to get some assistance... thanks] > >there's probably something simple that's wrong here, but my >3c509 connection won't cooperate no my potato system. it'll >respond only to self-pings; no other traffic seems to get in or >out. I was dealing to this very kind of card the other day, and I have two things to say. Go to 3Com's site, and get the DOS driver disk (Disk 2), make a DOS bootable disk, and stick all the files in the root of the self-extracting archive (you can decompress under Linux using lha, or dosemu), and boot from the floppy. Run the program PNPDSABL.BAT to disable Plug and Pray, and then run the E3C5X9CFG.EXE program, and change/note the IO and IRQ values. You should also run the tests. If it still doesn't work in Linux, cat /proc/interrupts and take note of the 2nd column (if your device is sharing interrupts, ignore this). If its zero, then no interrupts have been received. Send some pings to your interface from outside the box, and reexamine this statistic. If its still zero, your card may be dropping interrupts. The testing program will show this. A symptom of this fatal condition is that the lights on the hub flicker, meaning data is sent, and the ping target gets the frames, and sends them back, but nothing happens. PS. Send the dmesg output regarding the 3c509 module load. Hope this helps. Cameron Kerr -- [EMAIL PROTECTED] http://homepages.paradise.net.nz/~cameronk/
Re: any ideas? no network traffic gets through
On Sat, Feb 23, 2002 at 02:30:28PM -0600, will trillich wrote: > there's probably something simple that's wrong here, but my > 3c509 connection won't cooperate no my potato system. it'll > respond only to self-pings; no other traffic seems to get in or > out. > > any pointers are appreciated -- here's the output from several > various related commands that i know about, so you who've > travelled this road might be able to direct me in my efforts: > > [EMAIL PROTECTED] ifdown eth0 ; ifup eth0 > > [EMAIL PROTECTED] ifconfig eth0 > eth0 Link encap:Ethernet HWaddr 00:60:8C:82:CF:3B > inet addr:208.251.253.83 Bcast:208.251.253.87 Mask:255.255.255.248 > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > RX packets:0 errors:0 dropped:0 overruns:0 frame:0 > TX packets:590 errors:0 dropped:0 overruns:0 carrier:0 > collisions:0 txqueuelen:100 > Interrupt:10 Base address:0x300 Hi, maybe here you got an error. IIRC, your broadcast address must be 208.251.253.255, and your Network Mask 255.255.255.0 if you have a class C internet address. HTH, Rafael Sasaki
Re: any ideas? no network traffic gets through
On Sat, 23 Feb 2002 14:30:28 -0600, will trillich wrote: >[didn't get any response on this last time -- i'm reposting with >a new subject line hoping to get some assistance... thanks] > >there's probably something simple that's wrong here, but my >3c509 connection won't cooperate no my potato system. it'll >respond only to self-pings; no other traffic seems to get in or >out. > >any pointers are appreciated -- here's the output from several >various related commands that i know about, so you who've >travelled this road might be able to direct me in my efforts: > >[EMAIL PROTECTED] ifdown eth0 ; ifup eth0 > >[EMAIL PROTECTED] ifconfig eth0 >eth0 Link encap:Ethernet HWaddr 00:60:8C:82:CF:3B > inet addr:208.251.253.83 Bcast:208.251.253.87 Mask:255.255.255.248 > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > RX packets:0 errors:0 dropped:0 overruns:0 frame:0 > TX packets:590 errors:0 dropped:0 overruns:0 carrier:0 > collisions:0 txqueuelen:100 RX bytes: TX bytes: <---none at all, T or R? > Interrupt:10 Base address:0x300 Will, I won't pretend to have a clue. Can I assume your interfaces file looks ok? What about ifconfig lo? When you refer to 'self ping', is that "ping localhost" "ping " or "ping 208.251.253.83"? That might give someone a clue. My only real suggestion is to "whack it back to where it works." That is, lose all the ipchains/NAT/firewall stuff and just go with /etc/network/interfaces, and appropriate NIC driver. If that doesn't work, at least the area of investigation is much smaller. If it does, then add your other stuff one de-bug-able line or stanza at a time. Not much, but it's all I've got. gt Yes I fear I am living beyond my mental means--Nash
any ideas? no network traffic gets through
[didn't get any response on this last time -- i'm reposting with a new subject line hoping to get some assistance... thanks] there's probably something simple that's wrong here, but my 3c509 connection won't cooperate no my potato system. it'll respond only to self-pings; no other traffic seems to get in or out. any pointers are appreciated -- here's the output from several various related commands that i know about, so you who've travelled this road might be able to direct me in my efforts: [EMAIL PROTECTED] ifdown eth0 ; ifup eth0 [EMAIL PROTECTED] ifconfig eth0 eth0 Link encap:Ethernet HWaddr 00:60:8C:82:CF:3B inet addr:208.251.253.83 Bcast:208.251.253.87 Mask:255.255.255.248 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:590 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 Interrupt:10 Base address:0x300 [EMAIL PROTECTED] ipmasq -v Interfaces found: eth0 208.251.253.83/255.255.255.248 /sbin/ipchains -P input DENY /sbin/ipchains -P output DENY /sbin/ipchains -P forward DENY /sbin/ipchains -F input /sbin/ipchains -F output /sbin/ipchains -F forward /sbin/ipchains -A input -j ACCEPT -i lo /sbin/ipchains -A input -j DENY -i !lo -s 127.0.0.1/255.0.0.0 -l /sbin/ipchains -A input -j ACCEPT -i eth0 -d 208.251.253.83/32 /sbin/ipchains -A input -j ACCEPT -i eth0 -d 208.251.253.87/32 /sbin/ipchains -A output -j ACCEPT -i lo /sbin/ipchains -A output -j ACCEPT -i eth0 -s 208.251.253.83/32 /sbin/ipchains -A output -j ACCEPT -i eth0 -s 208.251.253.87/32 echo "1" > /proc/sys/net/ipv4/ip_forward /sbin/ipchains -M -S 7200 10 160 /sbin/ipchains -A input -j DENY -s 0.0.0.0/0 -d 0.0.0.0/0 -l /sbin/ipchains -A output -j DENY -s 0.0.0.0/0 -d 0.0.0.0/0 -l /sbin/ipchains -A forward -j DENY -s 0.0.0.0/0 -d 0.0.0.0/0 -l [EMAIL PROTECTED] ipchains -nvL Chain input (policy DENY: 255160 packets, 23735195 bytes): pkts bytes target prot opttosa tosx ifname mark outsize sourcedestination ports 0 0 ACCEPT all -- 0xFF 0x00 lo 0.0.0.0/00.0.0.0/0 n/a 0 0 DENY all l- 0xFF 0x00 !lo 127.0.0.0/8 0.0.0.0/0 n/a 0 0 ACCEPT all -- 0xFF 0x00 eth0 0.0.0.0/0208.251.253.83n/a 0 0 ACCEPT all -- 0xFF 0x00 eth0 0.0.0.0/0208.251.253.87n/a 0 0 DENY all l- 0xFF 0x00 * 0.0.0.0/00.0.0.0/0 n/a Chain forward (policy DENY: 0 packets, 0 bytes): pkts bytes target prot opttosa tosx ifname mark outsize sourcedestination ports 0 0 DENY all l- 0xFF 0x00 * 0.0.0.0/00.0.0.0/0 n/a Chain output (policy DENY: 510311 packets, 35223165 bytes): pkts bytes target prot opttosa tosx ifname mark outsize sourcedestination ports 0 0 ACCEPT all -- 0xFF 0x00 lo 0.0.0.0/00.0.0.0/0 n/a 173 ACCEPT all -- 0xFF 0x00 eth0 208.251.253.83 0.0.0.0/0 n/a 0 0 ACCEPT all -- 0xFF 0x00 eth0 208.251.253.87 0.0.0.0/0 n/a 0 0 DENY all l- 0xFF 0x00 * 0.0.0.0/00.0.0.0/0 n/a [EMAIL PROTECTED] route -nvCF Kernel IP routing table Destination Gateway Genmask Flags Metric RefUse Iface 208.251.253.80 0.0.0.0 255.255.255.248 U 0 00 eth0 0.0.0.0 208.251.253.81 0.0.0.0 UG0 00 eth0 Kernel IP routing cache Source Destination Gateway Flags Metric RefUse Iface 208.251.253.83 192.112.36.4208.251.253.810 00 eth0 208.251.253.83 192.36.148.17 208.251.253.810 00 eth0 208.251.253.83 208.251.253.83 208.251.253.83 l 0 02 lo 208.251.253.83 128.8.10.90 208.251.253.810 10 eth0 208.251.253.83 198.41.0.4 208.251.253.810 00 eth0 [EMAIL PROTECTED] route -n Kernel IP routing table Destination Gateway Genmask Flags Metric RefUse Iface 208.251.253.80 0.0.0.0 255.255.255.248 U 0 00 eth0 0.0.0.0 208.251.253.81 0.0.0.0 UG0 00 eth0 [EMAIL PROTECTED] netstat -nr Kernel IP routing table Destination Gateway Genmask Flags MSS Window irtt Iface 208.251.253.80 0.0.0.0 255.255.255.248 U 0 0 0 eth0 0.0.