Forums

Resolved
0 votes
Hi

I have a Clearos 6 gateway that was setup at home with a multiwan fail over setup. I have a problem I am tying to resolve and I cant get hold of the person who did the install as he moved away. Here is a short description

eth0 Lan running 192.168.0.x range Subnet 255.255.255.0
eth1 External Primary wan connection static ip to isp modem 192.168.1.x range Subnet 255.255.0.0
eth2 Spare External not in use DHCP
eth3 External Backup wan 192.168.2.x Range Subnet 255.255.128.0

He could not get port forwarding to work on clearos for my playstation system so he installed a hub that connects to the isp modem and from there there is a cable to the the clearos pc and playstation to get a open NAT.

I recently got a Playstation TV as a gift and want to connect it so that it can access the media streaming server on the LAN but I cant get it to connect from the External to LAN network if I connect the laptop to the hub on the 192.168.1.x network I can access and ping it from the 192.168.0.x network but i cant get it to ping or access from the 192.168.1.x network to the 192.168.0.x network.

Is it possible to allow a connection from the eth1 to eth0 network ?


Thank you
Tuesday, December 08 2015, 10:39 AM
Share this post:
Responses (11)
  • Accepted Answer

    Tuesday, December 08 2015, 01:52 PM - #Permalink
    Resolved
    0 votes
    Are you sure eth1 has a subnet of 255.255.0.0? It will cause all sorts of problems if your LAN is 192.168.0.x as they overlap. Somehow you need to get eth1 onto 255.255.255.0 but the isp modem would also need to be changed. You have the same problem with eth3. Eth0 covers the range 192.168.0.0-192.168.0.255, eth1 192.168.0.0-192.168.255.255 and eth3 192.168.0.0-192.168.127.255. A basic rule of routing and networking is that the networks must not overlap for routing to work.

    ClearOS is acting as a router and so will stop any device connected to its WAN to access anything on the LAN. You can poke holes in the firewall, but in your cast the basic routing needs to be sorted first.

    For port forwarding you could try installing miniupnpd.
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, December 08 2015, 03:39 PM - #Permalink
    Resolved
    0 votes
    Hi

    Yes eth0 is definitely on 255.255.255.0. I'm keen to learn how to fix this, so my understanding is that I need to set all the sub nets to 255.255.255.0 ? Or do I need to change ip ranges too ? Thank you for the help so far :)

    Clearos pc is set to 192.168.0.6 255.255.255.0
    Primary wan gateway is 192.168.1.1 255.255.0.0
    and Backup gateway is 192.168.2.1 255.255.128.0

    I phoned a local pc shop and they said I should buy a TL-R4299G router but thats out of my budget and overkill for a home setup
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, December 08 2015, 04:01 PM - #Permalink
    Resolved
    0 votes
    First of all you'll need to establish how your WAN devices are configured as they could be dictating the subnet mask. Can you give the output to:
    grep BOOTP /etc/sysconfig/network-scripts/ifcfg*


    Note, very useful tools for this are PuTTy and WinSCP which are both free. PuTTy will give you command line access to ClearOS and WinSCP is a graphical file manager and text editor. You can copy from PuTTy just by selecting text, and paste to it by right clicking.

    What are your WAN devices? Are they routers or modems? Cable or ADSL (or what)?

    Note if we start playing round with your networking can you make sure you have another way of getting onto the internet for help, just in case?
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, December 08 2015, 05:32 PM - #Permalink
    Resolved
    0 votes
    /etc/sysconfig/network-scripts/ifcfg-eth0:BOOTPROTO="static"
    /etc/sysconfig/network-scripts/ifcfg-eth1:BOOTPROTO="static"
    /etc/sysconfig/network-scripts/ifcfg-eth2:BOOTPROTO="dhcp"
    /etc/sysconfig/network-scripts/ifcfg-eth3:BOOTPROTO="static"

    eth0 LAN IP 192.168.0.6
    eth1 IP on Clearos box 192.168.1.3 is connected to a Ubiquity M5 HP IP on M5 192.168.1.1 Role External
    eth2 nothing connected
    eth3 IP on Clearos 192.168.2.3 is connected to a B660 Cellular router IP 192.168.2.1 Role External
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, December 08 2015, 06:23 PM - #Permalink
    Resolved
    0 votes
    Can you log onto each router and make sure they have a subnet mask of 255.255.255.0 or greater. After you change one router, then change ClearOS for that interface. Only then change the next router and interface.

    Can you link to the produce manuals for your routers as I am not sure of the exact Ubiquity model and the Huawei link I followed had no downloads.
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, December 08 2015, 06:32 PM - #Permalink
    Resolved
    0 votes
    Sorry its the Nanobeam M5 400

    Title

    All subnets are 255.255.255.0 on all interfaces and routers internet access still 100% working
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, December 08 2015, 07:49 PM - #Permalink
    Resolved
    0 votes
    That is good.

    As I don't know how the other end of your routers are working I'll leave that alone. What I was trying to look for was to see if they could act in bridge mode and pass the true WAN IP address through to ClearOS. That is something for you to research.

    That is the basic subnet sorted out.

    Your PS TV should now hopefully work when connected to your LAN. It should be able to connect to your Playstation, but not vice versa.

    My next concern is port forwarding as you are probably NAT'd behind your router and again behind ClearOS. This is difficult to manage. Perhaps the easiest way is to install miniupnpd then see if you can configure both your routers so that each ClearOS WAN is in a DMZ of the router. My concerns are that in this case you won't want anything else like a switch in the DMZ. I am also not sure how to configure miniupnpd for MultiWAN, but it may look after itself.

    Can you have a look and see if your routers support a DMZ. Start with your main one as that is the one currently connected to the Playstation. Is there anything else on the Playstation LAN?
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, December 08 2015, 09:09 PM - #Permalink
    Resolved
    0 votes
    I forgot to add, if you install miniupnpd you may want to edit the file /etc/miniupnpd/miniupnpd.conf and change the three lines
    allow 1024-65535 192.168.0.0/16 1024-65535
    allow 1024-65535 10.0.0.0/8 1024-65535
    allow 1024-65535 172.16.0.0/12 1024-65535
    to
    allow 0-65535 192.168.0.0/16 0-65535
    allow 0-65535 10.0.0.0/8 0-65535
    allow 0-65535 172.16.0.0/12 0-65535
    then restart miniupnpd. This is necessary for one of the games consoles but I can't remember which.
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, December 09 2015, 12:32 PM - #Permalink
    Resolved
    0 votes
    Hi

    There is no other devices on the 192.168.1.x network I had my laptop connected and was able to ping it from lan side and access it by using direct ip. The playstation tv still wont connect to the ps4 from the lan side, do I need to add an exception on the firewall to allow it to access ?

    The Nanobeam is in router mode as it connects to a pppoe connection

    If I assign a static ip say 192.168.0.20 to the ps tv can I allow that ip to connect to the ps4 192.168.1.2
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, December 09 2015, 12:53 PM - #Permalink
    Resolved
    0 votes
    Friedrich Rabie wrote:

    Hi

    There is no other devices on the 192.168.1.x network I had my laptop connected and was able to ping it from lan side and access it by using direct ip. The playstation tv still wont connect to the ps4 from the lan side, do I need to add an exception on the firewall to allow it to access ?

    The Nanobeam is in router mode as it connects to a pppoe connection

    If I assign a static ip say 192.168.0.20 to the ps tv can I allow that ip to connect to the ps4 192.168.1.2
    I don't know how the devices work, but if the PS TV uses some sort of network discovery, it will never see the playstation as long as the playstation is on a different network. There is nothing blocking outbound traffic from your LAN. What I am hoping to do is get your playstation onto your LAN.

    If the Nanobeam has a bridge or passthrough mode, ClearOS can handle the PPPoE connection by changing the WAN type from Static to PPPoE. If the router supports a DMZ, this may be the other thing to try (with putting the playstation on your LAN and install miniupnpd).

    I can't help much at the moment as I'm back at work today.
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, December 09 2015, 08:52 PM - #Permalink
    Resolved
    0 votes
    Looking at the airOS user guide, assuming your Nanobeam M5 400 connects to another airOS device at the other end of the radio link, bridge mode may well be supported. You will need to be very careful of the subnets you use, with a different one for every network segment. Note you do not have to have a 255.255.255.0 subnet mask If you only need 2 IP's you can go right down to 255.255.255.252. There are subnet calculators which can help you work out what to use. Remember that you can never use the first or last address in the range. I've no idea why you can't use the first one, but you can't. You can't use the last one as it is the broadcast address for the subnet.
    The reply is currently minimized Show
Your Reply