Ubuntu iTOps Tube

advertisement center

Monday, May 7, 2012

[ubuntu] Ubuntu server works on LAN but can't get to internet

Hello,



I have been working on this problems for over 4 days trying to solve this problem. My ubuntu 10.04.4 server is setup as a mail server and has been working fine since 2010. However on 5/3/2012 something happened and it no longer could connect to the internet or the internet to it. My symptoms are I cans see the server on the LAN, I can SSH to the server locally, I can ping it etc. and the server can see and ping other computers on the LAN, but it does not get to internet or the internet to it.

I have gone through several pages and suggestions I have on this forum along with Ubuntu Questions and several others on the net

The only thing that I can find that changed was and update to a few items in a apt-get on 5/1/2012 but I have

checked those and they don't' seem to affect anything. I know the statement something must have changed, but I can't find what it is.

Here are some pertinent files, I am sure you will want more and I will get to you.




Code:


Ubuntu version:

$ sudo lsb_release -a

No LSB modules are available.

Distributor ID: Ubuntu

Description:    Ubuntu 10.04.4 LTS

Release:        10.04

Codename:      lucid



Network interfaces

cat /etc/network/interfaces

# This file describes the network interfaces available on your system

# and how to activate them. For more information, see interfaces(5).



# The loopback network interface

auto lo

iface lo inet loopback



# The primary network interface

auto eth0

iface eth0 inet static

address 192.168.xxx.xxx

netmask 255.255.255.0

network 192.168.0.0

broadcast 192.168.0.255

gateway 192.168.xxx.xxx



# Pubilc IP network interface

auto eth0:0

iface eth0:0 inet static

        name Ethernet Public IP card

        address 65.15.XXX.XXX

        netmask 255.255.255.240

        broadcast 65.15.XXX.XXX

        network 65.15.XXX.XXX



$ /etc/reslov.conf

# Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8)

#    DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES WILL BE OVERWRITTEN

nameserver 127.0.0.1

    The resolv.conf gets rebuilt often.  This has NOT changed in since 2010.

If I put in the GW address it doesn't change anything.



A route request

$ route

Kernel IP routing table

Destination    Gateway        Genmask        Flags Metric Ref    Use Iface

65.15.xxx.xxx  *              255.255.255.240 U    0      0        0 eth0

192.168.0.0    *              255.255.255.0  U    0      0        0 eth0

default        towerysxxx.towe 0.0.0.0        UG    100    0        0 eth0



$ route -n

Kernel IP routing table

Destination    Gateway        Genmask        Flags Metric Ref    Use Iface

65.15.74.48    0.0.0.0        255.255.255.240 U    0      0        0 eth0

192.168.0.0    0.0.0.0        255.255.255.0  U    0      0        0 eth0

0.0.0.0        192.168.xxx.xxx 0.0.0.0        UG    100    0        0 eth0



host request to where my apt-get points to

$ host www.gtlib.gatech.edu

www.gtlib.gatech.edu has address 128.61.111.13

www.gtlib.gatech.edu has address 128.61.111.11

www.gtlib.gatech.edu has address 128.61.111.10

www.gtlib.gatech.edu has IPv6 address 2610:148:1f00:6f00:21b:24ff:fe1d:e940

www.gtlib.gatech.edu has IPv6 address 2610:148:1f00:6f00:20c:29ff:fe3c:63a8

www.gtlib.gatech.edu has IPv6 address 2610:148:1f00:6f00:216:36ff:fee9:2178

then a ping to there

$ ping 128.61.111.13

PING 128.61.111.13 (128.61.111.13) 56(84) bytes of data.

it timed out.

When I do a apt-get or a wget it times out.



another host request

$ host cnn.com

cnn.com has address 157.166.226.26

cnn.com has address 157.166.255.18

cnn.com has address 157.166.255.19

cnn.com has address 157.166.226.25

cnn.com mail is handled by 10 nycmail1.turner.com.

cnn.com mail is handled by 10 nycmail2.turner.com.

cnn.com mail is handled by 10 atlmail3.turner.com.

cnn.com mail is handled by 10 atlmail5.turner.com.

cnn.com mail is handled by 10 hkgmail1.turner.com.

cnn.com mail is handled by 10 lonmail1.turner.com.



nslookup

$ ping 8.8.8.8

PING 8.8.8.8 (8.8.8.8) 56(84) bytes of data.

^C

--- 8.8.8.8 ping statistics ---

6 packets transmitted, 0 received, 100% packet loss, time 5038ms



$ nslookup 8.8.8.8

Server:        127.0.0.1

Address:        127.0.0.1#53



Non-authoritative answer:

8.8.8.8.in-addr.arpa    name = google-public-dns-a.google.com.



Authoritative answers can be found from:



$ nslookup linuxquestions.org

Server:        127.0.0.1

Address:        127.0.0.1#53



Non-authoritative answer:

Name:  linuxquestions.org

Address: 75.126.162.205



More PING

I can ping my firewall and get answers when I ping a internet host

I get:

$ ping router.host.com

PING 192.168.xxx.xxx (192.168.xxx.xxx) 56(84) bytes of data.

64 bytes from 192.168.0.10: icmp_seq=1 ttl=64 time=0.378 ms

64 bytes from 192.168.0.10: icmp_seq=2 ttl=64 time=0.297 ms

64 bytes from 192.168.0.10: icmp_seq=3 ttl=64 time=0.279 ms

64 bytes from 192.168.0.10: icmp_seq=4 ttl=64 time=0.283 ms

^C

--- 192.168.0.10 ping statistics ---

4 packets transmitted, 4 received, 0% packet loss, time 2997ms

rtt min/avg/max/mdev = 0.279/0.309/0.378/0.042 ms

As well as other servers and workstations on the LAN.



ping 74.125.45.100

PING 74.125.45.100 (74.125.45.100) 56(84) bytes of data.

~C

Timed out after several minutes.



Running traceroute:

$ traceroute 74.125.45.100

traceroute to 74.125.45.100 (74.125.45.100), 30 hops max, 60 byte packets

 1  toweryxxxxx.towerysxxxxx.com (192.168.xxx.xxx)  0.358 ms  0.348 ms  0.387 ms

 2  * * *

 3  * * *

 4  * * *

 5  * * *

 6  * * *

 7  * * *

 8  * * *

 9  * * *

10  * * *

11  * * *

12  * * *

13  * * *

14  * * *

15  * * *

16  * * *

17  * * *

18  * * *

19  * * *

20  * * *

21  * * *

22  * * *

23  * * *

24  * * *

25  * * *

26  * * *

27  * * *

28  * * *

29  * * *

30  * * *



BIND

I have BIND9 running as a forward caching DNS server.  I am not sure which files you want to see, so please let me know and I will

send them asap.  The BIND configuration has not changed since 2010 so I don't know if this would cause the problem.



Router

Checked Router setup as listener in another similar post on the internet.  I am using IPCop 1.4.21 as the firewall. 

I have checked my router and it is in throughput mode, I do all my NAT and packet filtering through the firewall which I have verified

there have no config changes made to that machine.



NOTES

Another linux server on the LAN has no trouble getting out as do all other machines on the LAN.


Please let me know what else I can provide.



techyjt



UBUNTU user# 31635