Newest questions tagged networking - Super User © superuser.commost recent 30 from superuser.com2018-01-16T20:49:11Zhttp://superuser.com.xemphimonlines.com/feeds/tag?tagnames=networking&sort=newesthttp://www.creativecommons.org/licenses/by-sa/3.0/rdf http://superuser.com.xemphimonlines.com/q/12861860How to get PC to automatically reboot after internet connection disconnects © superuser.comLukehttp://superuser.com.xemphimonlines.com/users/8629832018-01-16T20:29:22Z2018-01-16T20:29:22Z<p>I found this old post you replied to, with a script to automatically reboot PC when internet connection is lost. I myself don't know how to write code but I was wondering if you could be kind enough to write a scrip similar to this one that I could use on a windows 10 pro 64x system. I would be so so greatful!!!</p><p>"""you can use a script like this, and schedule it to run on machine startup. This script test the connection for IP 8.8.8.8 (could be changed) if the ping is ok just test it after 5 minutes, if ping fails force a restart</p><p>.</p><h1>!/bin/bash</h1><p>{sleep 180 # wait 3 minutes on machine startupwhile true;do#if [ping] --> 0 means host reachableif ping -c 5 8.8.8.8; thensleep 300 ; #line stable , test after 5minelseshutdown -r nowdone} &amp;> /dev/null</p><p>""</p><p>Link to the original thread:<a href="http://superuser.com.xemphimonlines.com/questions/980427/how-to-automatically-reconnect-reboot-remote-computer-when-internet-disconnects">How to automatically reconnect/reboot remote computer when internet disconnects</a></p>http://superuser.com.xemphimonlines.com/q/12861810Ubuntu command to change IP address only works for about half a minute before changing back © superuser.comDustin Soodakhttp://superuser.com.xemphimonlines.com/users/7770542018-01-16T20:23:43Z2018-01-16T20:42:23Z<p>According to <a href="https://www.howtogeek.com/118337/stupid-geek-tricks-change-your-ip-address-from-the-command-line-in-linux/" rel="nofollow noreferrer">https://www.howtogeek.com/118337/stupid-geek-tricks-change-your-ip-address-from-the-command-line-in-linux/</a>and <a href="http://superuser.com.xemphimonlines.com/questions/564797/change-ip-address-permanently-with-ifconfig-in-debian">Change IP address permanently with ifconfig in Debian</a>the command<br>ifconfig eth0 169.254.1.99 netmask 255.255.255.0 up<br>should change the ip configuration until the machine is rebooted. <br>In my case it lasts about 30-40 seconds (until a device on this network stops pinging and "network disconnected" message pops up) then changes back to DHCP mode. The command "dhclient eth0 -v" (to change to DHCP) works fine so it probably just wants to automatically change back to DHCP for some reason. <br>I am using Ubuntu 16.04.3 LTS.</p>http://superuser.com.xemphimonlines.com/q/12861590Subnetting on a Wireless Network © superuser.comMarronhttp://superuser.com.xemphimonlines.com/users/8629502018-01-16T19:06:22Z2018-01-16T19:46:47Z<p>To reduce network congestion, is it at all useful to subnet your home <strong>wireless</strong> network?</p><p>Basically, I am having an issue with dropped connections and high latency on my network. We have about 12 devices, between our Rokus, Fire TVs, Apple TV devices, two laptops, a PC, and a couple phones and tablets. I have read that subnetting is useful for reducing network congestion because it breaks up broadcast domains (no source I have read has explicitly said that subnets break up broadcast domains, but that is what I have inferred), but would this actually reduce network congestion on a wireless network? It's my understanding that a wireless network is forced to broadcast its signals to everyone and that switching is only possible on a wired network (the wireless router can't really <em>choose</em> to send its signals in one direction). So even if the signals of other subnets were ignored by the hosts, they would still receive these, and then have to make the decision to ignore them, which will not reduce network congestion.</p><p>Am I right that there is no benefit to subnetting a wireless network to reduce latency?</p>http://superuser.com.xemphimonlines.com/q/12860930VPN ipsec Cisco881 © superuser.comFotis Markhttp://superuser.com.xemphimonlines.com/users/8628932018-01-16T15:20:19Z2018-01-16T15:22:05Z<p>I have a cisco router 881 with some PCs on it and a WebServer connected to VDSL. I have created the dhcp, dialer, etc... but here comes the hard part:</p><p>I wanted to see my Web Server from my local Network, so I created a route map, with a loopback, so I can access my local web server and log in with my credentials. Now, I can see the intranet that I have created with the IPsec tunnel. Anyone Can Assist? Local IP 10.79.55.0 and Ipsec Tunnel I am trying to reach is 192.168.100.0.</p><p>I also created a VPN local group, I connect to it with a VPN client, and I can see the 192.168.100.0, but when I am at local pc, it should see the 192.168.100.0 without VPN client since I have created the tunnel.</p><p>In the access lists it's not matching the ACL100 but the ACL PBR (when I am at home) but when I connect with VPN Client, it does Matches ACL100</p><p>Here is the configuration:</p><pre><code>Current configuration : 7832 bytes!! Last configuration change at 10:15:20 UTC Tue Jan 16 2018 by mnemonicversion 15.1no service padservice timestamps debug datetime msecservice timestamps log datetime msecno service password-encryption!hostname *******!boot-start-markerboot-end-marker!!logging buffered 64000enable password mnemonic!aaa new-model!!aaa authentication login default localaaa authentication login ciscocp_vpn_xauth_ml_1 localaaa authentication login ciscocp_vpn_xauth_ml_2 localaaa authorization exec default local aaa authorization network ciscocp_vpn_group_ml_1 local aaa authorization network ciscocp_vpn_group_ml_2 local !!!!!aaa session-id common!memory-size iomem 10service-module wlan-ap 0 bootimage autonomouscrypto pki token default removal timeout 0!crypto pki trustpoint TP-self-signed-3702956536enrollment selfsignedsubject-name cn=IOS-Self-Signed-Certificate-3702956536revocation-check nonersakeypair TP-self-signed-3702956536!!crypto pki certificate chain TP-self-signed-3702956536certificate self-signed 01*********quitno ip source-route!!!ip dhcp excluded-address 10.79.55.1 10.79.55.9ip dhcp excluded-address 10.79.55.101 10.79.55.254ip dhcp excluded-address 10.79.55.15 10.79.55.20!ip dhcp pool ccp-pool1network 10.79.55.0 255.255.255.0dns-server 6******* 8.8.8.8 default-router 10.79.55.1 !!ip cefip domain name ultima.grno ipv6 cef!!multilink bundle-name authenticatedlicense udi pid CISCO881GW-GN-A-K9 sn FTX161880ZNlicense boot module c880-data level advipservices!!username *****privilege 15 password 0 *****username ****privilege 15 password 0 ******!!!!controller Cellular 0!! !crypto isakmp policy 1encr 3desauthentication pre-sharegroup 2crypto isakmp key toimoi address *******!crypto isakmp client configuration group EXTERNALSkey ******dns 8.8.8.8pool SDM_POOL_1save-passwordcrypto isakmp profile ciscocp-ike-profile-1match identity group EXTERNALSclient authentication list ciscocp_vpn_xauth_ml_2isakmp authorization list ciscocp_vpn_group_ml_2client configuration address respondvirtual-template 1! !crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac !crypto ipsec profile CiscoCP_Profile1set isakmp-profile ciscocp-ike-profile-1!!crypto map SDM_CMAP_1 1 ipsec-isakmp description Tunnel to*********set peer ****set transform-set ESP-3DES-SHA match address 100!!!!!interface Loopback0ip address 1.1.1.1 255.255.255.255ip nat insideip virtual-reassembly in!interface FastEthernet0switchport mode trunkno ip address!interface FastEthernet1no ip address!interface FastEthernet2no ip address!interface FastEthernet3no ip address!interface FastEthernet4description $ETH-WAN$no ip addressduplex autospeed autopppoe-client dial-pool-number 1!interface Virtual-Template1 type tunnelip unnumbered Dialer0tunnel mode ipsec ipv4tunnel protection ipsec profile CiscoCP_Profile1!interface wlan-ap0description Service module interface to manage the embedded APip unnumbered Vlan1arp timeout 0!interface Wlan-GigabitEthernet0description Internal switch interface connecting to the embedded APswitchport mode trunkno ip address!interface Cellular0no ip addressencapsulation ppp!interface Vlan1ip address 10.79.55.1 255.255.255.0no ip redirectsip nat outsideip nat enableip virtual-reassembly inip tcp adjust-mss 1412ip policy route-map PBRNAT!interface Dialer0ip address negotiatedno ip proxy-arpip mtu 1452ip nat outsideip nat enableip virtual-reassembly inencapsulation pppip policy route-map PBRNATdialer pool 1dialer-group 1ppp authentication chap pap callinppp chap hostname **********ppp chap password 0 *********ppp pap sent-username ****** password 0********crypto map SDM_CMAP_1!ip local pool SDM_POOL_1 10.79.55.15 10.79.55.20ip forward-protocol ndno ip http serverip http authentication localno ip http secure-server!!ip nat pool NAT-POOL 10.79.55.0 10.79.55.254 netmask 255.255.255.0ip nat source list 1 interface Dialer0 overloadip nat source static tcp 10.79.55.100 25 interface Dialer0 25ip nat source static tcp 10.79.55.100 110 interface Dialer0 110ip nat source static tcp 10.79.55.100 443 interface Dialer0 443ip nat source static tcp 10.79.55.100 80 interface Dialer0 80ip nat source static tcp 10.79.55.100 53 interface Dialer0 53ip nat source static tcp 10.79.55.100 389 interface Dialer0 389ip nat source static tcp 10.79.55.100 26 interface Dialer0 26ip nat source static tcp 10.79.55.100 44 interface Dialer0 44ip nat source static tcp 10.79.55.100 143 interface Dialer0 143ip nat source static tcp 10.79.55.100 995 interface Dialer0 995ip nat source static tcp 10.79.55.100 993 interface Dialer0 993ip nat source static tcp 10.79.55.100 8100 interface Dialer0 8100ip nat source static tcp 10.79.55.100 3000 interface Dialer0 3000ip nat source static tcp 10.79.55.100 1300 interface Dialer0 1300ip nat source static tcp 10.79.55.100 21 interface Dialer0 21ip nat source static tcp 10.79.55.100 5938 interface Dialer0 5938ip nat source static udp 10.79.55.17 11155 interface Dialer0 11155ip nat inside source static tcp 10.79.55.100 1000 interface Dialer0 1000ip nat inside source list PBR pool NAT-POOL overloadip nat inside source route-map SDM_RMAP_1 interface Dialer0 overloadip route 0.0.0.0 0.0.0.0 Dialer0! ip access-list extended PBRpermit ip 10.79.55.0 0.0.0.255 192.168.100.0 0.0.0.255permit ip 10.79.55.0 0.0.0.255 any!access-list 1 remark INSIDE_IF=Vlan1access-list 1 remark CCP_ACL Category=2access-list 1 permit 10.79.55.0 0.0.0.255access-list 100 remark CCP_ACL Category=4access-list 100 remark IPSec Ruleaccess-list 100 permit ip 10.79.55.0 0.0.0.255 192.168.100.0 0.0.0.255access-list 101 remark CCP_ACL Category=2access-list 101 remark IPSec Ruleaccess-list 101 deny ip 10.79.55.0 0.0.0.255 192.168.100.0 0.0.0.255access-list 101 permit ip 10.79.55.0 0.0.0.255 anydialer-list 1 protocol ip permitdialer-list 2 protocol ip permit!!!!route-map PBRNAT permit 10match ip address PBRset interface Loopback0!route-map SDM_RMAP_1 permit 1match ip address 101!!!!control-plane!!line con 0line aux 0line 2no activation-characterno exectransport preferred nonetransport input allline 3no execline vty 0 4password mnemonictransport input all!end</code></pre>http://superuser.com.xemphimonlines.com/q/12859992How to deal with multiple client VPNs © superuser.comBloodPhiliahttp://superuser.com.xemphimonlines.com/users/348442018-01-16T08:13:43Z2018-01-16T08:13:43Z<p>So, previously I used a management server where I had access to all my client's different VPN connections using site-to-site connections to the firewall on the network. Unfortunately, due to security upgrades, they have now decided to switch to (10+) client VPN connections only.</p><p>As I am already using several other client VPN connections to other networks with conflicting IP configurations and subnets, it's almost undoable to install these connections on my PC locally. As a temporary solution I now run a few virtual machines that each have a VPN connection set up in the guest's Windows OS. However, as the number of needed connections grow, using all these resources for each VM seems almost ridiculous. </p><p>Is there anyone who has any experience with this kind of situation and/or has any suggestions on how to deal with this more effectively?</p>http://superuser.com.xemphimonlines.com/q/12859800Interface IP in public range, incorrect IP sent to noip © superuser.comkrghttp://superuser.com.xemphimonlines.com/users/8627242018-01-16T06:52:06Z2018-01-16T07:48:16Z<p>RPi3 is connected to internet via 3G dongle. <code>wwan0</code> interface IP is in public range, is accessible from outside and hasn't changed since I got the SIM. So far so good, right?</p><p>What worries me, is that a probably NAT-ed IP is sent to noip, not the interface one, making the site served by RPi inaccessible, unless the IP is known. Is there a way to send the "correct", <code>wwan0</code> interface IP to noip?</p><p>Second worry is that when RPi will be moved off-site (to measure indoor temp), the dongle will use a different mobile mast and probably the IP of the <code>wwan0</code> iface will change. My fear is that I will have to do a custom script to notify noip about the interface IP when IP changes or some sort of other notification.</p><p>Any feedback is appreciated!</p>http://superuser.com.xemphimonlines.com/q/12859561Proxy RPC through apache (port 443) while keeping SSL webpage too © superuser.comJohnhttp://superuser.com.xemphimonlines.com/users/8627092018-01-16T05:14:20Z2018-01-16T05:14:20Z<p>I run a RPC daemon in port 443 which talks in JSON format, I'd like to keep it in that port as to prevent being blocked by firewalls.</p><p>The server also has a HTTP webpage (port 80) which I'd like to upgrade to use SSL..</p><p>Here lies the problem, since you can't run 2 services under the same TCP port, is it possible to filter traffic just using apache and proxy it to the service? if so, how would I setup apache to identify the JSON data? </p><p>Example raw RPC request:</p><pre><code>{"method":"login","params":{"login":"admin","pass":"password","agent":"testing"},"id":1}</code></pre><p>Thanks.</p>http://superuser.com.xemphimonlines.com/q/12859531How to use dnsmasq address directive while having different nameservers for each lan interface © superuser.comm59http://superuser.com.xemphimonlines.com/users/2745482018-01-16T05:02:47Z2018-01-16T14:52:46Z<p>I have always used dnsmasq to point a subdomain to my local dev machine at the router/network level.</p><pre><code>address=/dev.example.com/192.168.1.80</code></pre><p>I have now setup two vlan interfaces for other purposes (i.e. guest network). I need to be able to use different nameservers on each lan, which I also accomplished using dnsmasq.</p><pre><code>dhcp-option=br0,6,208.67.222.123,208.67.220.123dhcp-option=br1,6,208.67.222.222,208.67.220.220dhcp-option=br2,6,208.67.222.123,208.67.220.123</code></pre><p>However, once this configuration is in place, the <code>address</code> directive no longer works. It appears this dhcp config will be used for dns resolution above everything else, so requests for the dev subdomain reach out to the internet rather than my local ip as before. For good measure, I have tried moving the address directive before and after the dhcp config. It makes no difference.</p><p>Is there a way to assign per interface dns servers and use the address directive, or to accomplish the same behavior some other way?</p><p>In case it helps, I am using AdvancedTomato firmware.</p>http://superuser.com.xemphimonlines.com/q/12859421Subnetting and node isolation © superuser.comBrandon Powellhttp://superuser.com.xemphimonlines.com/users/8627002018-01-16T04:16:06Z2018-01-16T17:33:27Z<p>I'd just like to ask about networking... I'm a total novice to networking so I'm sorry if this isn't possible but I think it is.</p><p>I have 2 Sky SR101 routers. One is connected to the modem and currently hosts all the devices in the house (54 total). I live with my dad and grandparents, who own most of the devices. I only own 4 of them (not including the second router).</p><p>The main router has the IP address 192.168.0.1, and subnet mask 255.255.255.0 by default.</p><p>If it's possible, I'd like to make a subnet, where most of the devices still reside on one subnet (eg, 192.168.0.x) and my four devices reside on another subnet (eg 192.168.1.x) using the spare second router. I've looked for tutorials on the Internet about how to do this but they really overcomplicate it and don't even tell you how to configure the router with the numbers you come out with.</p><p>Again, if possible, these subnets should be able to communicate individually with the Internet but not with each other, as the whole reason for this idea is my dad constantly messing with my PC and chromecast.</p><p>I've done some research and I understand that I need to use the subnet mask 255.255.255.192 to allow 4 subnets, as 255.255.255.128 seems to be flaky as many people say it doesn't work but many say it does.</p><p>I can get the two routers working if I have one network use addresses 192.168.0.1 - 62, and another using 192.168.0.63 - 128, but when I do this the devices completely bypass the second router, essentially just using it as a switch, and use the DHCP server from the main router which just means it's still accessible by my dad's annoying tricks. If I set the secondary network to use 192.168.1.x then there's no Internet access, and the devices still sometimes use the DHCP server from the main router, giving them a 192.168.0.x address.</p><p>Any help is much appreciated as I'm still just a noob. Many thanks! </p>http://superuser.com.xemphimonlines.com/q/12859600Enable WOL for Intel I218-V Card (Windows 10) © superuser.comMadHatterhttp://superuser.com.xemphimonlines.com/users/4192372018-01-16T02:02:35Z2018-01-16T19:24:05Z<p>I'm having troubles in enabling Wake On Lan on an Intel I218-V network adapter. It's integrated in an Asus Z97-A board.</p><p>The BIOS is properly set, since WOL works under Linux. </p><p>For Windows 10, it is my understanding that you have to enable it from Device Manager, as countless tutorials recommend.</p><p>But I cannot select the proper checkbox, since it's inactive:</p><p><a href="https://i.stack.imgur.com/zHOkN.png" rel="nofollow noreferrer"><img src="https://i.stack.imgur.com/zHOkN.png" alt="enter image description here"></a></p><p>Suggestions?</p>http://superuser.com.xemphimonlines.com/q/12858530Network cable splitter not working © superuser.comDeniz Zoetemanhttp://superuser.com.xemphimonlines.com/users/153102018-01-15T20:55:43Z2018-01-15T21:24:20Z<p>I'm working on a home set-up where I can split my network cable to use two computers on one side, and two ports on my modem on the other side (so a 2-1-2 config). I have the following set-up:</p><ul><li>1 (longer) gigabit network cable between the 2 computers and my modem.</li><li>2 ISDN RJ45 splitters</li><li>cat 5 cables between my two computers and one splitter, and two cat 5 cables between the other splitter and two ports on the modem.</li></ul><p>However, whenever I have both cables connected on my modem and just one cable (to one PC) to the splitter, my PC cannot get a connection (it just shows unplugged). Whenever I take out one of the cables on the modem side, it starts working again.</p><p>I've understood this should work as long as I also have it connected to two ports on the modem, but I can't get it to work. Do I need different cables? Or is this a method that just doesn't work anymore?</p><p>I understand this is also not a preferred method (and something like a switch would be better), but I am trying to run this cheaply for a short period of time, and running two long cables is not an option unfortunately.</p>http://superuser.com.xemphimonlines.com/q/12858500Export nfs to devices in the local ip range without specifying local ip © superuser.comSteevieDhttp://superuser.com.xemphimonlines.com/users/8626122018-01-15T20:33:03Z2018-01-16T12:58:56Z<p>I have a system which contains a number of raspberry pi's, one of which is a 'master' which must export an nfs to a number of 'slave' devices in the system. </p><p>The system will be connected to the end users network; the end user will be able to specify an ip subnet range on which the pi's must communicate.</p><p>To cut down on setup complexity for the end user, is it possible to specify in /etc/exports to share with only the local ip address of the pi?</p><p>Something like:</p><pre><code>/home local-ip/255.255.255.0(ro)</code></pre><p>To be clear: If the end user sets the ip of the pi's to be in the 10.0.1.x range or the 192.168.5.x range, is it possible for exports to automatically use this range without modifying /etc/exports? I don't want to export to all ip's.</p><p>Other info: The user has no communication with the system while in use. The SD card for the pi has a small FAT partition which the end user can mount in a windows computer and modify an interfaces file which is sourced by /etc/network/interfaces to allow them to change the ip. The /etc/exports does not appear to support sourcing from another file.</p>http://superuser.com.xemphimonlines.com/q/12858400Can't log in locally to SQLServer 2012 which was running fine © superuser.comuser1469457http://superuser.com.xemphimonlines.com/users/1899842018-01-15T20:11:37Z2018-01-15T20:11:37Z<p>A Win7 machine with SQL Server Express 2012 suddenly stopped allowing SSAdmin to log in locally. It gives the 1225 error about network problems. The machine name and credentials are correct. Internet works fine, no IP collisions, etc.</p><p>After fiddling, we noticed that SQL Server Browser was Disabled. This was not done manually, but whatever - we set it to Automatic and rebooted and it is up and running now. Still can't connect, same error.</p><p>Some have suggested using an IP instead of a machine name, but I don't even see a way to do that in SSAdmin.</p><p>Suggestions for further debugging?</p>http://superuser.com.xemphimonlines.com/q/12858190How to make ncat support multiple connection over udp © superuser.comWilliam Pursellhttp://superuser.com.xemphimonlines.com/users/41652018-01-15T19:36:25Z2018-01-15T19:36:25Z<p><code>-k</code> doesn't work for udp! Running <code>ncat -ul localhost $port</code> in one shell, then running 'echo foo | ncat -u localhost $port' works for the first connection. Then, the connection is established and the only way I can see to get data to the listener is to specify the source port: 'ncat -p $source -u localhost $port'. Eg:</p><pre><code>5363451236bf:1375 $ ncat -ul localhost 8973 foobar─────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────5363451236bf:1140 $ echo foo | ncat -u localhost 89735363451236bf:1140 $ ss -o state established '( sport=8973 )' | sed -n 2pudp 0 0 127.0.0.1:8973 127.0.0.1:36162 5363451236bf:1140 $ echo bar | ncat -p 36162 -u localhost 89735363451236bf:1140 $ echo bar | ncat -u localhost 8973Ncat: Connection refused.</code></pre><p>This is bothersome. I'm trying to debug a script which is generating udp traffic, and I'd like to use <code>ncat</code> to emulate the server. How can I do that?</p><pre><code>5363451236bf:1140 $ ncat --versionNcat: Version 7.40 ( https://nmap.org/ncat )</code></pre>http://superuser.com.xemphimonlines.com/q/12857740OpenVPN Routing tables default gateway © superuser.comNan Raithttp://superuser.com.xemphimonlines.com/users/7587252018-01-15T17:05:45Z2018-01-15T17:05:45Z<p>I am running ubuntu server 16.04 and openvpn. I would like to change my settings on the vpnserver so that all the traffic comes in on the current connection (192.168.1.254) and all my traffic goes out my second internet connection (192.168.2.3). </p><p>My current routing table: </p><pre><code>Kernel IP routing tableDestination Gateway Genmask Flags Metric Ref Use Iface0.0.0.0 192.168.1.254 0.0.0.0 UG 0 0 0 ens3310.8.0.0 10.8.0.2 255.255.255.0 UG 0 0 0 tun010.8.0.2 0.0.0.0 255.255.255.255 UH 0 0 0 tun0192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 ens33192.168.2.0 0.0.0.0 255.255.255.0 U 0 0 0 ens34</code></pre><p>Currently I can access the vpn on ens33 but that will use ens33 as default gateway (192.168.1.254). If i add metric to the interfaces so ens34 is 10 and ens33 is 100 I cannot reach the server. If I change <code>/etc/ufw/before.rules</code> </p><pre><code># START OPENVPN RULES# NAT table rules*nat:POSTROUTING ACCEPT [0:0]# I CHANGED THIS FROM DEFAULT ens33 to ens34 -A POSTROUTING -s 10.8.0.0/8 -o ens34 -j MASQUERADECOMMIT# END OPENVPN RULE</code></pre><p>I can access the server to connect but not the internet in browser...</p><p>My interface setup is as follows:</p><pre><code> # This file describes the network interfaces available on your system# and how to activate them. For more information, see interfaces(5).source /etc/network/interfaces.d/*# The loopback network interfaceauto loiface lo inet loopback# The primary network interface#auto ens33#iface ens33 inet dhcp# The primary network interfaceauto ens33iface ens33 inet staticaddress 192.168.1.72netmask 255.255.255.0broadcast 192.168.1.255gateway 192.168.1.254#metric 10# the secondary network interfaceauto ens34iface ens34 inet staticaddress 192.168.2.12netmask 255.255.255.0broadcast 192.168.2.255gateway 192.168.2.3dns-nameservers 8.8.4.4 8.8.8.8#metric 100</code></pre><p>I am missing a route rule or something but I have been banging my head against the wall this last few days on this one... Can someone please help me? I know this will be something very simple and any help is appreciated!! Thanks in advance!!&lt;3&lt;3&lt;3</p>http://superuser.com.xemphimonlines.com/q/12857660Cant connect to webpage hosted on internal server on wifi through vpn © superuser.comjzeefhttp://superuser.com.xemphimonlines.com/users/8625652018-01-15T16:34:09Z2018-01-15T16:34:09Z<p>I'm having trouble connecting to a webpage hosted on a server when connected to wifi and using a vpn. I can access the website when connected to a LAN cable. visiting website1.company.org:3000 takes me to the correct website, but when I try to connect to the company network over wifi using vpn (required), I can no longer connect. </p><p>To be clear, I CAN ssh to the server, and I CAN reach info.company.org and website2.company.org:3000 and many other sites hosted on many other internal servers. It is only this one that gives me a problem over wifi. I have control over this server, so if its some kind of port issue, or something local to my specific server, I may be able to resolve this myself. But otherwise I'm not sure whats preventing me from connection. I am getting ERR_CONNECTION_TIMED_OUT when trying to hit the relevant webpage. </p><p>I realize there is a lot of info missing here on the specifics of the network Im operating on, but a lot of this networking is beyond my understanding and/or control, and I'm hoping to find some solution that assumes the VPN and proxy are not part of this issue, and it is instead something on my server itself that I need to change. The only way I can access the webpage from wifi is to load up the server's google chrome in xming and visit localhost:3001 which is less than ideal.</p><p>Has anyone come across something like this?</p>http://superuser.com.xemphimonlines.com/q/12857401Virtual Router disconnects some devices and won't allow them to reconnect © superuser.comKizuxhttp://superuser.com.xemphimonlines.com/users/8625322018-01-15T14:41:31Z2018-01-15T15:33:46Z<p>I'm using Virtual Router Manager v1.0, had to go through some hoops to get it to work. The problem I have is after some minutes/hours, devices that are connected to the virtual router are booted out of the network, and can't reconnect, while other devices can't even connect in the first place. Apparently, my iPhone is the only device that gets permanent connectivity for some reason. Yesterday my tablet had perfect connectivity, but after one or two hours, I lost connection and couldn't reconnect no matter what I did, while my iPhone had perfect connection.</p><p>The only "fix" for this is to restart my pc and run the Virtual Router Manager again, but this is obviously annoying since I would have to restart my PC like 10 times a day.</p><p>Obviously the PC didn't lose internet connection since I could use the internet on it and my iPhone with no problem. It isn't a password problem since it didn't change.</p>http://superuser.com.xemphimonlines.com/q/12857350CentOS networking: ping doesn't reach a single private IP for no apparent reason © superuser.comG. Hekthttp://superuser.com.xemphimonlines.com/users/8625352018-01-15T14:25:54Z2018-01-16T15:54:17Z<p>I'm running a CentOS 7 VM in VirtualBox and all works fine except for the fact that one single IP from our internal network isn't reachable. The host is macOS Sierra and pinging this IP from it works without any problems. This IP is reachable also from every other client on this network, it's just this CentOS machine that doesn't find it.</p><p>The CentOS VM has two network interfaces each bridged to a separate interface on the host. Every interface connects to a different subnet. There are no other network issues.</p><p>Does anyone have an idea where this problem could originate? I myself wasn't able to find a solution and after a few weeks of pointless web searching, I'm really lost.</p><p>I'd be very thankful for all help in troubleshooting this and will provide requested information.</p><p>Best,Georg</p><p>EDIT: forgot to mention that the device did respond to pings up until two months ago. It was also disappearing from time to time (meaning it stopped responding in the same manner as now, otherwise it was connected and working) but after restarting the network.service on the CentOS machine it was again reachable.</p><p>EDIT 2: Output of <code>netstat -rn</code></p><p><code>Destination Gateway Genmask Flags MSS Window irtt Iface0.0.0.0 10.10.10.254 0.0.0.0 UG 0 0 0 enp0s30.0.0.0 192.168.0.1 0.0.0.0 UG 0 0 0 enp0s810.10.10.0 0.0.0.0 255.255.255.0 U 0 0 0 enp0s3192.168.0.0 0.0.0.0 255.255.252.0 U 0 0 0 enp0s8</code></p>http://superuser.com.xemphimonlines.com/q/12856821Network : Linux can't connect to specific site © superuser.commaxbchttp://superuser.com.xemphimonlines.com/users/5156262018-01-15T11:28:21Z2018-01-15T11:28:21Z<p>I have a local network connected to internet, and several computers. The Windows machines are working just fine, but all the Linux machines (VMs or hard) can't connect to one specific site (on any port/service, including 80/443/22 etc.). They are based on Ubuntu 16.04 (kubuntu for the most part). </p><p>The rest of the sites are working fine. DNS requests are working fine and yield the right address.</p><p>Just <strong>this specific IP</strong> address doesn't work, and <strong>only on Linux</strong>. For all the services tested, the result is always the same : they can't connect to the server. The problem happened sporadically but is now more extreme. It's also probably not a firewall rule (since it used to work without changes in any firewall).</p><p>How can I diagnose such a problem?</p>http://superuser.com.xemphimonlines.com/q/12856630LAN traffic brings down Internet connectivity © superuser.comtwisteroid ambassadorhttp://superuser.com.xemphimonlines.com/users/3700142018-01-15T10:42:33Z2018-01-15T10:42:33Z<p>My "work" network is organized like this:</p><p>Internet connectivity is through a consumer wireless router, which only has 100mbit LAN ports. A server is plugged into one LAN port of the router, and a gigabit switch is plugged into another LAN port. Several people's computers, as well as another wireless router acting as access point, are plugged into the switch.</p><p>Seemingly randomly, everyone would lose Internet access from time to time. Eventually it was discovered that the outage happened whenever a colleague <code>scp</code>-ed large amounts of data between their own computer and the server. During these outages, accessing websites on the Internet, accessing the management page of the router, and pings to the router all result in timeouts.</p><p>What are some likely reasons why traffic inside the LAN breaks Internet? What are some potential ways to investigate further? Are there any potential solutions?</p><p>(I am open to all kinds of responses, from rigorous solutions to wild hacks, since it seems that the problem might not be solved "properly". To provide some context, the boss has rejected several times requests to get a better router, or to even purchase a switch; the gigabit switch everyone relies on right now is my personal property. He does get quite pissed whenever Internet broke, however.)</p>http://superuser.com.xemphimonlines.com/q/12856530What is the recommended FDQN for a local laptop on a DHCP home network? © superuser.comIvanhttp://superuser.com.xemphimonlines.com/users/1526832018-01-15T10:13:20Z2018-01-16T08:02:04Z<p>I have a pretty common home network and a laptop that connects to it either by Ethernet or wifi and gets an IP using DHCP. What is the recommended configuration for FDQN, including hostname and /etc/hosts? I currently have</p><p>/etc/hosts:</p><pre><code>127.0.0.1 localhost127.0.1.1 euclides.localdomain euclides::1 localhost ip6-localhost ip6-loopback</code></pre><p>and on /etc/hostname:</p><pre><code>euclides.localdomain</code></pre><p>I would like to configure it to keep everything in the local network working the way it is now and try to prevent errors like this one from Spark:</p><pre><code>18/01/15 08:12:25 WARN Utils: Your hostname, euclides.localdomain resolves to a loopback address: 127.0.1.1; using 192.168.0.22 instead (on interface enp3s0)</code></pre>http://superuser.com.xemphimonlines.com/q/12856260Installing a 3 node Cluster without Internet © superuser.comuser2610769http://superuser.com.xemphimonlines.com/users/8623832018-01-15T07:57:56Z2018-01-15T07:57:56Z<p>I am very new to the networking. I have small groups of friends who are trying to build 3 node cluster for installing Hadoop. So we have 3 Desktops systems in our room. So we want to connect all these 3 desktops without internet. And also we have our individual laptops as well. so we want to share some Documents or files across my laptops and these Desktops over the wifi Router. Can we do all these things without internet using only Wifi Router and a Switch. If so can anyone help me what are the steps to be followed to do these things.</p><p>thanks in Advance.</p>http://superuser.com.xemphimonlines.com/q/12856200Load balance multiple routers / wan / gateways over openwrt © superuser.comSchnullihttp://superuser.com.xemphimonlines.com/users/8623812018-01-15T07:21:21Z2018-01-15T07:21:21Z<p>I have got two routers. One for DSL(slow, dualstack) and one for Cable(fast, ds-lite) Internet.</p><p>DSL: AVM Fritzbox 7490</p><ul><li>slow</li><li>vpn server to connect to the lan</li><li>low ping</li></ul><p>Cable: Noname by ISP</p><ul><li>fast</li><li>high ping</li></ul><p>I have bought a third router (Linksys WRT3200acm). <strong>Now I want to use it to load balance between the other routers</strong>. But I want to place it freely in my LAN to have another WiFi AP.</p><p>Currently I only found following tool in openwrt:<a href="https://wiki.openwrt.org/doc/howto/mwan3" rel="nofollow noreferrer">https://wiki.openwrt.org/doc/howto/mwan3</a>It seems to only work when the third router is placed directly behind the other two.</p><p>Is it possible to use mwan3 to load balance between the gateways?</p>http://superuser.com.xemphimonlines.com/q/12855910After clicking on a computer in network, it says "This folder is empty" © superuser.comLucas C.http://superuser.com.xemphimonlines.com/users/6858292018-01-15T04:38:06Z2018-01-15T04:38:06Z<p>Using Windows 10, after clicking on another computer under "Network" in Windows Explorer, it says "This folder is empty." The other computer's sharing settings are set to share it's files on this network, and it can access my files just fine. Can anyone help with this? Thanks!</p>http://superuser.com.xemphimonlines.com/q/12855860Program hardcodes an API port to localhost, how to expose it to network? © superuser.comMichael Bhttp://superuser.com.xemphimonlines.com/users/872542018-01-15T04:00:02Z2018-01-15T05:26:21Z<p>I'm running a program that exposes a TCP-JSON messaging system bound to 127.0.0.1:4000. The IP and the port are non-negotiable and cannot be changed in configuration files; any attempt to rebind (which is theoretically supported) to the LAN IP (192.168.x.x for example) causes the program to fail, since it's constantly looking for 127.0.0.1:4000.</p><p>Even when binding it to port 4000 on the LAN IP, it fails.</p><p>What's the best way to work around this situation? I want to make the port accessible over the network, and I've done this for the MySQL and apache servers running on the machine. But this port is stubborn since it binds to localhost.</p><p>Is there anyway to point the LAN IP at it for that given port? I've tried redirecting localhost in the hosts ifle to it, but that fails (as expected). Not sure if there's anything in <code>netsh</code> that can be run for this. Google searching and checking StackOverflow/SuperUser have been unsuccessful, as they all describe situations where the port is bound to the LAN IP, not localhost.</p><p>Thanks.</p><p><strong>EDIT: It's running Windows 10.</strong></p>http://superuser.com.xemphimonlines.com/q/1285530-2Wifi adapter, too slow internet © superuser.comNuflixhttp://superuser.com.xemphimonlines.com/users/8622902018-01-14T22:59:19Z2018-01-14T22:59:19Z<p>I have asus USB-N10 and I got it when I bought my computer, and when I connect to my wifi(about 30Mbs when using any another adapter) my internet speed is less than 1Mbs and even gets 0Kbs sometimes. Wifi signal is 70% + so it's very good. I have even downloaded latest asus driver from their website. I didn't mention that this adapter should be up to 150Mbs. On asus utility it says my Internet is 58Mbs but I can't play games, and websites load very slowly, and speedtest says less than 1Mbs. I test on my phone and it's 30Mbs+ I don't know what's up with this adapter, but pls help me, I had another adapter but it broke yesterday so I have no other choice but to pray I find some kind of solution soon. Thanks</p>http://superuser.com.xemphimonlines.com/q/1285523-5nat network - one exam task © superuser.comDaniel Garcia Sanchezhttp://superuser.com.xemphimonlines.com/users/7707942018-01-14T22:19:43Z2018-01-14T22:19:43Z<p>having this image<a href="https://i.stack.imgur.com/LCwLk.jpg" rel="nofollow noreferrer"><img src="https://i.stack.imgur.com/LCwLk.jpg" alt="enter image description here"></a></p><p>could help me to complete these sentences?</p><ol><li><p>Server PT opens a connection to the router IP through the address configured in the gateway. The packages used for this will have an IP header with IP of origin ______________ and IP of destination _______________.</p></li><li><p>The router of the security company converts the Server PT package to the source IP address _____________ by the router address of type __________ which is the IP ____________. In this way outgoing packets of the network to the outside will have a header with IP of origin __________ and IP of destination _______________.</p></li><li><p>The router of the local network of the individual, using the protocol _____, will use the package from the SERVER PT and will change the destination IP address _____________ by the address of the IoT lamp of type __________ which is the IP ____________. In this way outgoing packets of the network to the outside will have a header with IP of origin __________ and IP of destination _______________.</p></li><li><p>When these packets reach the destination IP, they will be processed by the lamp and it will turn on. Can the SERVER PT know the local IP of the other equipment or the lamp? Reason the answer.</p></li></ol>http://superuser.com.xemphimonlines.com/q/12854950MAC address filtering not working through range extender © superuser.comStefcyphttp://superuser.com.xemphimonlines.com/users/8577732018-01-14T20:56:56Z2018-01-14T21:56:15Z<p>I have TP-Link TL-ER604W router wih MAC filtering enabled, allowing only clients from the list. I also have a TP-Link TL-WA850RE range extender in WDS mode.</p><p>The trouble is, when a client connects to the range extender, it can connect to the internet even though it isn't in the list of allowed MAC addresses.</p><p>Can someone please advise me as to what I'm doing wrong?</p>http://superuser.com.xemphimonlines.com/q/12854550WD My Cloud EX2 not staying connected © superuser.comNicroshttp://superuser.com.xemphimonlines.com/users/3183872018-01-14T18:12:58Z2018-01-14T18:12:58Z<p>I have a WD EX2 My Cloud NAS that I bought in 2015. I've never been able to get it to stay mounted on any of my machines. On my Windows 10 Pro system, I can mount it as a network drive just fine but after some amount of time it just disconnects. Reconnecting is as simple as trying to open the drive in explorer, but unless I do that it's dead. I have also mounted this on an iMac, with pretty much the same effect. If I don't use it, it drops the mount and I have to open the drive in finder to re-mount it.</p><p>Where this really sucks is this is my plex content nas. So trying to use either my PC or the mac as a plex server fails. I'm constantly trying to start a movie from the pc or mac plex servers on apple tv and stuck staring at a spinning wheel. I have to then go to the server that the apple tv is connected to, open the nas to get it to re-mount and then I can watch a movie.</p><p>I did use the plex server on the nas itself, but more and more lately I get the error that the server isn't powerful enough to convert video.</p><p>Anyone know the cause of this problem and how to fix it? Really don't want to buy more hardware just because I can't get the wd nas to stay connected.</p>http://superuser.com.xemphimonlines.com/q/12854400How to Access a NAS outside your home network © superuser.comXmalevolentXhttp://superuser.com.xemphimonlines.com/users/8622172018-01-14T17:11:25Z2018-01-14T18:30:20Z<p>I'm not sure if this is the correct place to ask this question but here goes.</p><p>I recently purchased a Synology NAS DS918+ and have a few beginner questions to ask. I have 2 people that would like to assess the NAS (One is at a local university, the other is on the other side of the country).</p><p>I have 2 questions id like to ask.</p><p>1) What is the "best practice" way to allow these 2 people to connect to the NAS?</p><p>2) Would it help to install a VPN on the router? or do they have to log in to a VPN on their side giving the illusion that they are on my home network in order to access it?</p><p>Thanks for any help or advice in advance.</p><p><strong>Update: I was given this information on the 'networkengineering' stackexchange.</strong></p><p>Basically, there are two different approaches:</p><p>1) Given the NAS is hardenend and isn't affected by hacking, you could map/open the required port/s on the firewall. Without hardening, setting up access to the NAS doesn't only endanger the NAS and its data but also the entire network.</p><p>2) Provide transparent access through a VPN tunnel. VPN allows remote access without exposing your network devices to hacking from the Internet. You might want to set up VPN rules to restrict remote users to the devices in question.</p><p><strong>My Response</strong></p><p>Awesome! thanks for your response! An additional question. Are we talking about the end user VPN'ing into my network? The reason I'm asking is the 2 end user have 0 technical experience so I want to make the process as simple and foolproof for them - given this info which of the 2 options would you recommend? and could you be so kind to point me to a guide to enact such a setup?</p>