Forums

Resolved
0 votes
Hi all, i have an issue which i cannot pinpoint exactly where it is.
My setup
ISP box to Cisco switch,
from Cisco to Clearos (lets call it ClearOS1) box and servers with VMs
ClearOS1 is on separate computer virtualized and in this machine there is one onboard ethernet and additional PCI with 4 ethernal ports
i had some breaks in connections (up till 30 seconds when i pinged google) so i tried to add aditional line between cisco and machine on which ClearOS1 is located
all was working fine untill the day when i tried to put additional line from switch to clearos at the same time i switched lines for external ip from onboard ethernet to one of the 4 in PCI card
not sure what went wrong but i lost one way communication
for example i can ping Laptop1 (my laptop) from one of my vms (lets call it VM1 which has external IP) but not another way around
this VM1 has external IP and it is visible from the whole world but not from Laptop1 or any other machine in the same vlan that are behind ClearOS1
for test purposes i setup another clearos (ClearOS2, to eliminate switch issues) and if i switch Laptop1 to ClearOS2 i can ping this machine

please help, give me ideas as to what to check, cisco config or clearos config
Wednesday, January 12 2022, 09:16 AM
Share this post:

Accepted Answer

Wednesday, January 12 2022, 10:34 PM - #Permalink
Resolved
0 votes
Please delete all the non-existent interfaces from /etc/clearos/network.conf or delete them from the webconfig, if you can. Then check /etc/clearos/firewall.conf for non-existent interfaces and remove those lines as well.
The reply is currently minimized Show
Responses (7)
  • Accepted Answer

    Wednesday, January 12 2022, 12:43 PM - #Permalink
    Resolved
    0 votes
    Can you give some sort of diagram detailing the interfaces and also give the output of "ifconfig | grep '^\S' -A1" and "grep IF /etc/clearos/network.conf"?
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, January 12 2022, 08:11 PM - #Permalink
    Resolved
    0 votes
    Hi Nick
    i have separate machine with proxmox and there i have virtualized clearOS1 and clearOS2
    the first one has t interfaces connected
    eth0 External DHCP 82.x.x.189
    eth1 LAN Static 10.10.0.1
    eth2 Hot LAN Static 10.0.5.1
    here are outputs from

    [root@gateway network-scripts]# ifconfig | grep '^\S' -A1

    eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
    inet 82.x.x.189 netmask 255.255.255.0 broadcast 82.x.x.255
    --
    eth1: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
    inet 10.10.0.1 netmask 255.255.255.0 broadcast 10.10.0.255
    --
    eth2: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
    inet 10.0.5.1 netmask 255.255.255.0 broadcast 10.0.5.255
    --
    lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
    inet 127.0.0.1 netmask 255.0.0.0

    -------------------------------

    and

    [root@gateway network-scripts]# grep IF /etc/clearos/network.conf

    EXTIF="eno1 eth0"
    LANIF="enp1s0f1 enp1s0f1.1020 eth1"
    DMZIF=""
    HOTIF="enp1s0f0 eth2"
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, January 13 2022, 12:17 PM - #Permalink
    Resolved
    0 votes
    in gui i see
    eth0 external dhcp 82....
    eth1 lan static 10.10..
    eth2 hotlan static 10.0.5..

    and after i removed those enp1 (those were physical prots on this 4 port network card)
    my network.conf looks like this

    # Network mode
    MODE="gateway"

    # Network interface roles
    EXTIF="eth0"
    LANIF="eth1"
    DMZIF=""
    HOTIF="eth2"

    # Domain and Internet Hostname
    DEFAULT_DOMAIN="digriz.eu"
    INTERNET_HOSTNAME="gateway.digriz.eu"

    # Extra LANS
    EXTRALANS=""

    # ISP Maximum Speeds
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, January 13 2022, 12:34 PM - #Permalink
    Resolved
    0 votes
    it looks a lot cleaner now , i restarted clearos but still no ping to the machine with private ip behind that same clearos
    its as if it was blocking one way communication from eth1 to eth0
    and probably from eth2 to eth0 (yet to be checked)
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, January 13 2022, 12:58 PM - #Permalink
    Resolved
    0 votes
    Did you tidy up the rules in /etc/clearos/firewall.conf?
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, January 13 2022, 07:28 PM - #Permalink
    Resolved
    0 votes
    hi Nick
    all is fixed so i think that what you recommended has worked it just needed a little time to work

    yes i removed those extra devices
    when i created this clearos i installed clearos on new VM and backed up the old one and put it into new one

    the old one had those physical NICs and they stayed in the network.conf
    i removed them and problem is gone

    thanks for help
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, January 13 2022, 08:09 PM - #Permalink
    Resolved
    0 votes
    ClearOS is a bit weak there when a configured NIC is pulled without un-configuring it. The same issue comes up when you backup on one machine and restore onto another, so is documented in the Configuration Backup and Restore documentation.
    The reply is currently minimized Show
Your Reply