Re: [newbie] Shorewall & VMWare
Greg Meyer wrote: On Sunday 15 August 2004 08:27 am, Graham Watkins wrote: Hi Y'all I've had this problem for some time and nothing I try seems to fix it. Whenever I run VMware, unless I switch off Shorewall and reboot first, I am unable to access the virtual network and consequently can't save or work on files outside the virtual disk. I've tried setting up the following firewall rule along lines suggested to me some time back by Anne - apparently it worked for her. ACCEPT loc:172.16.210/24, !172.16.210.1 $fw all - - For me though, no joy. Can anyone tell me if there's something wrong with the rule or if there's anything else I need to do. I'm a total newbie when it comes to Shorewall and life's probably too short to become an expert. Another possibility is to install a program that I can use to close the internet connection when Shorewall is stopped. There used to be such a thing in an earlier version of Mandrake (8.2, I think) but it's not on 9.2 which I'm using. This of course would be very much the second best option. Any input gratefully received. I'm surprised this problem isn't better documented. You probably have to add the vmnet interface to the /etc/shorewall/interfaces file as a trusted interface. I've already added vmnet1 to interfaces in the local zone but it doesn't help. I'm wondering if I should open some ports. -- Graham Watkins "Don't be lucid and ironic; people will turn this against you to show that you aren't a nice person." - Albert Camus Registered Linux user number 265254 http://counter.li.org Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] Shorewall & VMWare
On Sunday 15 August 2004 08:27 am, Graham Watkins wrote: > Hi Y'all > > I've had this problem for some time and nothing I try seems to fix it. > Whenever I run VMware, unless I switch off Shorewall and reboot first, I > am unable to access the virtual network and consequently can't save or > work on files outside the virtual disk. > > I've tried setting up the following firewall rule along lines suggested > to me some time back by Anne - apparently it worked for her. > > ACCEPT loc:172.16.210/24, !172.16.210.1 $fw all - - > > For me though, no joy. > > > Can anyone tell me if there's something wrong with the rule or if > there's anything else I need to do. I'm a total newbie when > it comes to Shorewall and life's probably > too short to become an expert. > > Another possibility is to install a program that I can use to close the > internet connection when Shorewall is stopped. There used to be such a > thing in an earlier version of Mandrake (8.2, I think) but it's not on > 9.2 which I'm using. This of course would be very much the second best > option. > > Any input gratefully received. I'm surprised this problem isn't better > documented. You probably have to add the vmnet interface to the /etc/shorewall/interfaces file as a trusted interface. -- /g Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
[newbie] Shorewall & VMWare
Hi Y'all I've had this problem for some time and nothing I try seems to fix it. Whenever I run VMware, unless I switch off Shorewall and reboot first, I am unable to access the virtual network and consequently can't save or work on files outside the virtual disk. I've tried setting up the following firewall rule along lines suggested to me some time back by Anne - apparently it worked for her. ACCEPT loc:172.16.210/24, !172.16.210.1 $fw all - - For me though, no joy. Can anyone tell me if there's something wrong with the rule or if there's anything else I need to do. I'm a total newbie when it comes to Shorewall and life's probably too short to become an expert. Another possibility is to install a program that I can use to close the internet connection when Shorewall is stopped. There used to be such a thing in an earlier version of Mandrake (8.2, I think) but it's not on 9.2 which I'm using. This of course would be very much the second best option. Any input gratefully received. I'm surprised this problem isn't better documented. -- Graham Watkins "Don't be lucid and ironic; people will turn this against you to show that you aren't a nice person." - Albert Camus Registered Linux user number 265254 http://counter.li.org Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] Shorewall & VMware
I see my Debian box with samba, from a win98 PC. How can I see it from my Mandrake boz? Carlos Contreras Club Cientifico de Penalolen Chile On Wednesday 14 April 2004 02:26 pm, Graham Watkins wrote: > Stephen Kuhn wrote: > > On Sat, 2004-04-10 at 17:23, Graham Watkins wrote: > >>Anyone know how to configure Shorewall so as to enable access to the > >>Linux host by the W98 guest? > >> > >>As things stand, I can only see the host from the guest if I shut > >>Shorewall down. > > > > You should be able to "share" the internet connection by enabling > > sharing of the internet connection in MCC; I've always NOT used the > > suggested bridging IP DHCP server in VMware and just assigned a nice old > > static IP with the gateway being that of the host system and then used > > IPTABLES to route as ICS would. Works fine for all my virtual machines. > > There's no problem with the internet connection. Perhaps I wasn't as > clear as I might have been. IE found and used that from day one. > What's confounding me is the network neighbourhood thingy where I should > be able to see my linux /home/graham folder and my networked printer > (which was the only way I could get a printer working with VMWare). > > Haven't had much time to mess with it lately but I think I need to tweak > Shorewall as there is no problem when I switch that off. Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] Shorewall & VMware
On Thu, 2004-04-15 at 04:20, Graham Watkins wrote: > Thanks Anne - I'm trying to set it up using webmin. I'm not sure I got > it right because I still can't connect to the host. It's sometimes the > case (at least on my system) that the Windows guest takes a while to > respond to changes in the firewall, so I'll leave it a while before > crying for help again. > > Graham Watkins Open a term and type: killall -KILL vmware-smbd killall -KILL vmware-nmbd Reconfigure your TCP/IP settings in VMware to abide by the IP settings of your internal network. Reboot the VMware machine. Make sure you've set the same workgroup or domain. You'll be right. NOTE: The VMware smb server chokes the local machine's smb server by default... stephen kuhn - owner == illawarra computer services a kuhn media australia company http://kma.0catch.com -- * This message was composed on a 100% Microsoft free computer * We expressly refuse to utilise Microsoft DRM encoded documents -- The singular multiplicity of this universe draws my deepest attention. It is a thing of ultimate beauty. -The Stolen Journals Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] Shorewall & VMware
Stephen Kuhn wrote: On Sat, 2004-04-10 at 17:23, Graham Watkins wrote: Anyone know how to configure Shorewall so as to enable access to the Linux host by the W98 guest? As things stand, I can only see the host from the guest if I shut Shorewall down. You should be able to "share" the internet connection by enabling sharing of the internet connection in MCC; I've always NOT used the suggested bridging IP DHCP server in VMware and just assigned a nice old static IP with the gateway being that of the host system and then used IPTABLES to route as ICS would. Works fine for all my virtual machines. There's no problem with the internet connection. Perhaps I wasn't as clear as I might have been. IE found and used that from day one. What's confounding me is the network neighbourhood thingy where I should be able to see my linux /home/graham folder and my networked printer (which was the only way I could get a printer working with VMWare). Haven't had much time to mess with it lately but I think I need to tweak Shorewall as there is no problem when I switch that off. -- Graham Watkins On the whole, I preferred cats to women because cats seldom if ever used the word "relationship".(Kinky Friedman - Greenwich Killing Time) Registered Linux user number 265254 http://counter.li.org Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] Shorewall & VMware
Anne Wilson wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Saturday 10 April 2004 08:23, Graham Watkins wrote: Anyone know how to configure Shorewall so as to enable access to the Linux host by the W98 guest? As things stand, I can only see the host from the guest if I shut Shorewall down. In rules I have ACCEPT net:192.168.0.0/24,!192.168.0.1 fw all Thanks Anne - I'm trying to set it up using webmin. I'm not sure I got it right because I still can't connect to the host. It's sometimes the case (at least on my system) that the Windows guest takes a while to respond to changes in the firewall, so I'll leave it a while before crying for help again. Graham Watkins -- On the whole, I preferred cats to women because cats seldom if ever used the word "relationship".(Kinky Friedman - Greenwich Killing Time) Registered Linux user number 265254 http://counter.li.org Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] Shorewall & VMware
On Sat, 2004-04-10 at 17:23, Graham Watkins wrote: > Anyone know how to configure Shorewall so as to enable access to the > Linux host by the W98 guest? > > As things stand, I can only see the host from the guest if I shut > Shorewall down. You should be able to "share" the internet connection by enabling sharing of the internet connection in MCC; I've always NOT used the suggested bridging IP DHCP server in VMware and just assigned a nice old static IP with the gateway being that of the host system and then used IPTABLES to route as ICS would. Works fine for all my virtual machines. stephen kuhn - owner == illawarra computer services a kuhn media australia company http://kma.0catch.com -- * This message was composed on a 100% Microsoft free computer * We expressly refuse to utilise Microsoft DRM encoded documents -- XI: If the Earth could be made to rotate twice as fast, managers would get twice as much done. If the Earth could be made to rotate twenty times as fast, everyone else would get twice as much done since all the managers would fly off. XII: It costs a lot to build bad products. XIII: There are many highly successful businesses in the United States. There are also many highly paid executives. The policy is not to intermingle the two. XIV: After the year 2015, there will be no airplane crashes. There will be no takeoffs either, because electronics will occupy 100 percent of every airplane's weight. XV: The last 10 percent of performance generates one-third of the cost and two-thirds of the problems. -- Norman Augustine Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
Re: [newbie] Shorewall & VMware
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Saturday 10 April 2004 08:23, Graham Watkins wrote: > Anyone know how to configure Shorewall so as to enable access to the > Linux host by the W98 guest? > > As things stand, I can only see the host from the guest if I shut > Shorewall down. In rules I have ACCEPT net:192.168.0.0/24,!192.168.0.1 fw all Anne - -- Registered Linux User No.293302 Have you visited http://twiki.mdklinuxfaq.org yet? -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQFAd7mxkFAvMr/nNX8RAv5pAJ9EfMOniFhO1tBYFAt50gA2Gfws3ACghrzz NKfv7qP+4dsV8x0Tl6Va2KQ= =T9gs -END PGP SIGNATURE- Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com
[newbie] Shorewall & VMware
Anyone know how to configure Shorewall so as to enable access to the Linux host by the W98 guest? As things stand, I can only see the host from the guest if I shut Shorewall down. -- Graham Watkins On the whole, I preferred cats to women because cats seldom if ever used the word "relationship".(Kinky Friedman - Greenwich Killing Time) Registered Linux user number 265254 http://counter.li.org Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com Join the Club : http://www.mandrakeclub.com