HPE Community
Operating System - HP-UX
1834296 Members
2472 Online
110066 Solutions
New Discussion

Re: networking question

 
SOLVED
Go to solution
Chris Fadrowski
Super Advisor

‎09-27-2004 07:56 AM

‎09-27-2004 07:56 AM

networking question

I have a new itanium server that i am setting up. It's running 11.23 HPUX.. My problem is, i can't get outside of our network. I can ping anything inside but not outside like www.yahoo.com by name or IP.. i checked my /etc/hosts which includes

192.168.x.x gw_host

and my nsswitch.conf which includes

hosts: files, DNS

i should be getting out.. what am i missing? It's not the firewall, i have access for that.
0 Kudos
Reply
13 REPLIES 13
Geoff Wild
Honored Contributor

‎09-27-2004 07:59 AM

‎09-27-2004 07:59 AM

Re: networking question

What does traceroute reveal?

How about? netstat -rn

What is in? /etc/resolv.conf


Rgds...Geoff
Proverbs 3:5,6 Trust in the Lord with all your heart and lean not on your own understanding; in all your ways acknowledge him, and he will make all your paths straight.
0 Kudos
Reply
Chris Fadrowski
Super Advisor

‎09-27-2004 08:05 AM

‎09-27-2004 08:05 AM

Re: networking question

during a traceroute, it never leaves the the local server (itself). i get this;

traceroute: Warning: www.yahoo.com has multiple addresses; using 216.109.118.73
traceroute to www.yahoo.com (216.109.118.73), 30 hops max, 40 byte packets
1 hostname (192.168.3.21) 0.067 ms !N 0.020 ms !N 0.019 ms !N

Netstat -m is not supported in 11.23 (reading from a core file is no longer supported) is the message i get.

and /etc/rsolv.conf is correct with my DNS and name servers.

my netconf file is also the same as the other unix servers that can get out.
0 Kudos
Reply
Scot Bean
Honored Contributor

‎09-27-2004 08:05 AM

‎09-27-2004 08:05 AM

Re: networking question

Check your browser settings, especially for proxy, if needed at your site.
0 Kudos
Reply
Chris Fadrowski
Super Advisor

‎09-27-2004 08:06 AM

‎09-27-2004 08:06 AM

Re: networking question

i won't be using a browser on this server, however, i punched a hole in my firewall for this server so i know it should be bypassing the proxy.
0 Kudos
Reply
Sridhar Bhaskarla
Honored Contributor

‎09-27-2004 08:08 AM

‎09-27-2004 08:08 AM

Solution

Re: networking question

Hi Chris,

Looks like your default gateway is not setup on the system as it is trying to use your local interface.

Try 'netstat -rn' (it's "r" and "n") and you should see an entry with 'default' string. If you don't have it then add it using the command

route add default gw_host 1

and then try.

Adjust your netconf file with the ROUTE entries. Examples are given in there.

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
Reply
Todd McDaniel_1
Honored Contributor

‎09-27-2004 08:08 AM

‎09-27-2004 08:08 AM

Re: networking question

What does your /etc/rc.config.d/netconf say?

Do you have a gateway setup with route hop set at 1 or with your HOST as the gateway and hop set to 0?

INTERFACE_NAME[0]=lan0
IP_ADDRESS[0]=132.201.xx.xx
SUBNET_MASK[0]=255.255.255.224
BROADCAST_ADDRESS[0]=""
INTERFACE_STATE[0]=""
DHCP_ENABLE[0]=0

ROUTE_GATEWAY[0]=132.201.yy.yy
ROUTE_COUNT[0]=1
ROUTE_DESTINATION[0]=default
Unix, the other white meat.
0 Kudos
Reply
Geoff Wild
Honored Contributor

‎09-27-2004 08:10 AM

‎09-27-2004 08:10 AM

Re: networking question

actually - it's netstat -rn ( r n )

Are you running ipfilter on the 11.23 server?

Can you actually get to you firewall?

Rgds...Geoff
Proverbs 3:5,6 Trust in the Lord with all your heart and lean not on your own understanding; in all your ways acknowledge him, and he will make all your paths straight.
Reply
Chris Fadrowski
Super Advisor

‎09-27-2004 08:21 AM

‎09-27-2004 08:21 AM

Re: networking question

netconf file

INTERFACE_NAME[0]=lan0
IP_ADDRESS[0]=192.168.3.21
SUBNET_MASK[0]=255.255.255.0
BROADCAST_ADDRESS[0]=192.168.255.255
INTERFACE_STATE[0]=""
DHCP_ENABLE[0]=0


ROUTE_DESTINATION[0]=default
ROUTE_MASK[0]=""
ROUTE_GATEWAY[0]=192.168.1.1
ROUTE_COUNT[0]=1
ROUTE_ARGS[0]=""

it does look like it can't find the gateway after doing netstat -rn.. it was looking to 127.0.0.1

i did the route add and now everything works. I just don't recall having to do this in the past. I would config the netconf file and it would work. thanks to all ..
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎09-27-2004 09:15 AM

‎09-27-2004 09:15 AM

Re: networking question

Chris that default gateway in your netconf file must be reachable.

You have to be able to ping it in order for it to work and have that NIC be the first place traceroutes and other internet traffic go.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
rick jones
Honored Contributor

‎09-27-2004 12:15 PM

‎09-27-2004 12:15 PM

Re: networking question

if your router will not respond to ICMP echo requests (pings), then you have to disable dead gateway detection via ndd - ip_ire_gw_probe to 0.

And based on your 192.168.X.X stuff, I presume your gateway is also a NAT.

there is no rest for the wicked yet the virtuous have no pillows
0 Kudos
Reply
Todd McDaniel_1
Honored Contributor

‎09-29-2004 03:58 AM

‎09-29-2004 03:58 AM

Re: networking question

Chris,

Correct me if Im wrong isnt your gateway address wrong?

INTERFACE_NAME[0]=lan0
IP_ADDRESS[0]=192.168.3.21
SUBNET_MASK[0]=255.255.255.0
BROADCAST_ADDRESS[0]=192.168.255.255
INTERFACE_STATE[0]=""
DHCP_ENABLE[0]=0


ROUTE_GATEWAY[0]=192.168.1.1


Shouldnt it be 192.168."3".1, where there is a 3 instead of a 1???

Unix, the other white meat.
0 Kudos
Reply
Todd McDaniel_1
Honored Contributor

‎09-29-2004 03:59 AM

‎09-29-2004 03:59 AM

Re: networking question

sorry didnt see you got your solution...

No points on my last post or this one.
Unix, the other white meat.
0 Kudos
Reply
Chris Fadrowski
Super Advisor

‎09-29-2004 05:05 AM

‎09-29-2004 05:05 AM

Re: networking question

actually the gateway is not wrong, we are using class B subnet. with 172 addressing.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.