Forums

Subscribe via email Subscribe via email
Subscribe via rss
Guest
or Ask a Question
Add a reply View Replies (6) →
Neil
Neil
Offline

HotLAN won't ARP

Resolved
0 votes
On an up-to-date ClearOS 7 Community firewall running in Gateway mode. It has been working fine since a clean install a few months back, initially with just Ext & LAN interfaces, have enabled andconnected HotLAN today on differnet IP range and the interface will not properly respond. Ext and LAN still work.

The NIC connects to the switch and registers as UP, and appears to be find from an 
 ifconfig eth2
but cannot get traffic to other nodes on that switch (in the HotLAN). Other devices on that switch comminucate successfully. Patchingthe ClearOS to another switch port does not change the behaviour. (Switch is a managed switch, but has been factory reset (for this deployment) and is configured as a single zone.

As part of debugging, have connected a laptop via a crossover cable direct to the eth2 HotLAN interface and set it's IP address to be the default gateway and the laptop is continually arp'ing for the the HotLAN interface IP Address with no response.

tcpdump on the eth2 (HotLAN) interface shows no packets.

rebooting has had no impact
iptables -F
has no impact

before I replace the interface card.. any ideas?
In IP Settings
Sunday, March 12 2017, 06:20 PM
Subscribe via email
Share this post:
Responses (6)

  • Accepted Answer

    Dave Loper
    Dave Loper
    Offline
    Sunday, March 12 2017, 11:38 PM - #Permalink
    Resolved
    0 votes
    One test is to temporarily assign the network as LAN and validate that the firewall is not the issue. Keep in mind that NICs can go bad. If your chassis will handle it, try temporarily adding another nic.
    The reply is currently minimized Show

  • Accepted Answer

    Nick Howitt
    Nick Howitt
    Offline
    Sunday, March 12 2017, 09:34 PM - #Permalink
    Resolved
    0 votes
    Redacting the IP's does not help me, I'm afraid, and since they are all private to you, I don't see they are much use to anyone else.

    If you reinstall, I hope it goes well. In theory you can restore a 6.x config backup into 7.x but it left me with a few minor issues.
    The reply is currently minimized Show

  • Accepted Answer

    Neil
    Neil
    Offline
    Sunday, March 12 2017, 09:03 PM - #Permalink
    Resolved
    0 votes
    Thanks for the advice... You are right this may be a v6 Community - apologies for the confusion.


    
# ifconfig | grep HWa -A 1
    
eth0      Link encap:Ethernet  HWaddr 00:1A:6B:REDACTED  
    
          inet addr:10.REDACTED  Bcast:10.REDACTED.255  Mask:255.255.255.0
    
--
    
eth1      Link encap:Ethernet  HWaddr 00:11:0A:REDACTED  
    
          inet addr:192.REDACTED  Bcast:192.REDACTED.255  Mask:255.255.255.0
    
--
    
eth2      Link encap:Ethernet  HWaddr 00:11:0A:REDACTED  
    
          inet addr:10.REDACTED  Bcast:10.REDACTED.255  Mask:255.255.255.0
    
--
    
tun0      Link encap:UNSPEC  HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00  
    
          inet addr:10.8.REDACTED  P-t-P:10.8.REDACTED  Mask:255.255.255.255
    
--
    
tun1      Link encap:UNSPEC  HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00  
    
          inet addr:10.8.REDACTED  P-t-P:10.8.REDACTED  Mask:255.255.255.255
    
#


    In which case I may re-install it first.
    The reply is currently minimized Show

  • Accepted Answer

    Nick Howitt
    Nick Howitt
    Offline
    Sunday, March 12 2017, 08:13 PM - #Permalink
    Resolved
    0 votes
    Are you sure you're on ClearOS 7.x and not 6.x? 7.x does not normally have ethX interfaces.

    If you have 6.x can you do:
    ifconfig | grep HWa -A 1


    Your NIC drivers look OK.
    The reply is currently minimized Show

  • Accepted Answer

    Neil
    Neil
    Offline
    Sunday, March 12 2017, 08:03 PM - #Permalink
    Resolved
    0 votes 
    # lspci -k | grep Eth -A 3
    
03:00.0 Ethernet controller: Broadcom Corporation NetLink BCM5787 Gigabit Ethernet PCI Express (rev 02)
    
        Subsystem: Lenovo Device 100d
    
        Kernel driver in use: tg3
    
        Kernel modules: tg3
    
0a:09.0 Ethernet controller: Intel Corporation 82546EB Gigabit Ethernet Controller (Copper) (rev 01)
    
        Subsystem: Compaq Computer Corporation NC7170 Gigabit Server Adapter
    
        Kernel driver in use: e1000
    
        Kernel modules: e1000
    
0a:09.1 Ethernet controller: Intel Corporation 82546EB Gigabit Ethernet Controller (Copper) (rev 01)
    
        Subsystem: Compaq Computer Corporation NC7170 Gigabit Server Adapter
    
        Kernel driver in use: e1000
    
        Kernel modules: e1000
    
# ifconfig | grep flags -A 1
    
#


    returns nothing
    The reply is currently minimized Show

  • Accepted Answer

    Nick Howitt
    Nick Howitt
    Offline
    Sunday, March 12 2017, 07:15 PM - #Permalink
    Resolved
    0 votes
    What is the result of:
    lspci -k | grep Eth -A 3
    
ifconfig | grep flags -A 1
    The reply is currently minimized Show
Your Reply