Comments on: How-To: Set up a LAN gateway with DHCP, Dynamic DNS and iptables on Debian Etch — page 4 — IPtables http://www.debuntu.org/how-to-set-up-a-lan-gateway-with-dhcp-dynamic-dns-and-iptables-on-debian-etch-page-4-iptables/ Debian/Ubuntu Tips and Tricks Tue, 21 May 2013 04:29:54 +0000 hourly 1 http://wordpress.org/?v=3.5.1 By: chantra http://www.debuntu.org/how-to-set-up-a-lan-gateway-with-dhcp-dynamic-dns-and-iptables-on-debian-etch-page-4-iptables/#comment-29230 chantra Thu, 10 Jan 2013 07:25:01 +0000 http://www.debuntu.org/?p=627#comment-29230 Hi Kevin,
please review page 2 of this how-to (basically, there were errors in both dhcp and dns files that prevented the settings to work.

in bind zone, NS should be using A and record.

The DNS issue prevents your client to get the right router ip.

If your client is a debian box, make sure you use:
send host-name “
in /etc/dhcp/dhclient.conf

]]> By: Kevin http://www.debuntu.org/how-to-set-up-a-lan-gateway-with-dhcp-dynamic-dns-and-iptables-on-debian-etch-page-4-iptables/#comment-28322 Kevin Wed, 09 Jan 2013 05:29:28 +0000 http://www.debuntu.org/?p=627#comment-28322 Hi Chantra. I have configured my debian machine to be dns and dhcp as shown in the post. Here are some details:

Server Hostname: debtest2
eth0 = DHCP from external router; 192.168.1.x
eth1 = 192.168.2.1, netmask 255.255.255.0

For DNS configuration

—— named.conf.local

#allow dns updates from localhost with key “rndc-key”
include “/etc/bind/rndc.key”;
controls {
inet 127.0.0.1 allow { localhost; } keys { “rndc-key”; };
};
#defines galaxy.local
zone “galaxy.local” {
type master;
file “db.galaxy.local”;
allow-update { key “rndc-key”; };
};
#defines our local subnet 192.168.2.0/24
zone “2.168.192.in-addr.arpa” {
type master;
notify no;
file “db.2.168.192″;
allow-update { key “rndc-key”; };
};

—— db.galaxy.local file

$TTL 3D
@ IN SOA ns.galaxy.local. postmaster.galaxy.local. (
201201081; serial, todays date + todays serial #
8H ; refresh, seconds
2H ; retry, seconds
4W ; expire, seconds
1D ) ; minimum, seconds
;
NS ns ; Inet Address of name server
MX 10 mail ; Primary Mail Exchanger
;
A 192.168.2.1 ; IP address
;
router A 192.168.2.1
ns CNAME router
dhcp CNAME ns.galaxy.local.
* A 192.168.2.1

—— db.2.168.192 file

$TTL 3D
@ IN SOA galaxy.local. postmaster.galaxy.local. (
201201081 ; serial, todays date + todays serial #
8H ; refresh, seconds
2H ; retry, seconds
4W ; expire, seconds
1D ) ; minimum, seconds
;
@ IN NS ns.galaxy.local.
@ IN PTR galaxy.local.
1 IN PTR router.galaxy.local.

Issue: nslookup debtest2 gives me error. I believe it does not function as intended.

Server: 206.248.154.22
Address: 206.248.154.22#52
server can’t find debtest2: NXDOMAIN

DHCP server configuration

—– /etc/defaults/isc-dhcp-server file

INTERFACES = “eth1″

—— /etc/dhcp/dhcpd.conf file

server-identifier router;
authoritative;
ddns-update-style interim;
include “/etc/bind/rndc.key”;
# Use what key in what zone
zone galaxy.local. {
primary 127.0.0.1;
key “rndc-key”;
}
#Standard DHCP info
option domain-name “galaxy.local”;
option domain-name-servers ns.galaxy.local;
default-lease-time 600;
max-lease-time 7200;
log-facility local7;
subnet 192.168.2.0 netmask 255.255.255.0 {
range 192.168.2.20 192.168.2.200;
option routers router.galaxy.local;
zone 2.168.192.in-addr.arpa. {
primary ns.galaxy.local;
key “rndc-key”;
}
zone galaxy.local. {
primary ns.galaxy.local;
key “rndc-key”;
}
}

When I boot up a client PC (configured with internal adapter), it gets the IP address from the DHCP server. Details are:

ifconfig: clientPC#1

eth0 Link encap:Ethernet HWaddr 08:00:27:b6:9b:d3
inet addr:192.168.2.21 Bcast:192.168.2.255 Mask:255.255.255.0
inet6 addr: fe80::a00:27ff:feb6:9bd3/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:7 errors:0 dropped:0 overruns:0 frame:0
TX packets:92 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:986 (986.0 B) TX bytes:15307 (15.3 KB)
Interrupt:10 Base address:0xd020

route -n clientPC#1

Destination Gateway Genmask Flags Metric Ref Use Iface
169.254.0.0 0.0.0.0 255.255.0.0 U 1000 0 0 eth0
192.168.2.0 0.0.0.0 255.255.255.0 U 1 0 0 eth0

hostname -f: client PC#1
Mint12-PC1

Issue: I can’t resolve debtest2 from the client PC. Cannot access Internet as well. I think the gateway address is missing.

Any suggestions or perhaps any obvious error? Thank you again for helping me. Kevin (hot_wireless@yahoo.com)

]]> By: Kevin http://www.debuntu.org/how-to-set-up-a-lan-gateway-with-dhcp-dynamic-dns-and-iptables-on-debian-etch-page-4-iptables/#comment-28121 Kevin Tue, 08 Jan 2013 23:43:58 +0000 http://www.debuntu.org/?p=627#comment-28121 **** OK, now it is working on my laptop ****

This time I selected a different NIC in the network settings. Re-installed Debian. Inserted the above four lines. Brought up the interface. I am up and working.

*** Thanks again. Kevin

]]> By: Kevin http://www.debuntu.org/how-to-set-up-a-lan-gateway-with-dhcp-dynamic-dns-and-iptables-on-debian-etch-page-4-iptables/#comment-28110 Kevin Tue, 08 Jan 2013 22:58:22 +0000 http://www.debuntu.org/?p=627#comment-28110 Hi Chantra. I am facing an issue here. I performed the exact installation for the VM on two different physical machines. One desktop and one laptop. The above suggestion worked perfectly in a desktop environment and hence my comment about working.

On the laptop, the same four lines gives me “Don’t seem to have all the variables for eth1/inet. Failed to bring up eth1″. Not sure why. Both installations are default, no additional package installed. Any suggestions? Thanks. Kevin

]]> By: Kevin http://www.debuntu.org/how-to-set-up-a-lan-gateway-with-dhcp-dynamic-dns-and-iptables-on-debian-etch-page-4-iptables/#comment-28036 Kevin Tue, 08 Jan 2013 20:21:48 +0000 http://www.debuntu.org/?p=627#comment-28036 Wow! I have been trying combinations of commands since the last night. Nothing seemed to work. This fixed my issue. I really appreciate your help. Now I can move on. Thank you very much.

]]> By: chantra http://www.debuntu.org/how-to-set-up-a-lan-gateway-with-dhcp-dynamic-dns-and-iptables-on-debian-etch-page-4-iptables/#comment-28004 chantra Tue, 08 Jan 2013 16:22:42 +0000 http://www.debuntu.org/?p=627#comment-28004 most likely your eth1 configurstion is from. It should look like

auto eth1
iface eth1 inet static
address 10.10.10.1
netmask 255.255.255.0

in /etc/network/interfaces, then reload your network settings.

In case it still fails, using:

ifup eth1

might give you some info on why it fails.

]]> By: Kevin http://www.debuntu.org/how-to-set-up-a-lan-gateway-with-dhcp-dynamic-dns-and-iptables-on-debian-etch-page-4-iptables/#comment-27904 Kevin Tue, 08 Jan 2013 14:29:16 +0000 http://www.debuntu.org/?p=627#comment-27904 Hi Chantra. I am newbie. After extensive searching on the Internet, I came across your post. I have the exact similar setup on my system, i.e. eth0 is get IP via DHCP which can connect to the Internet. eth1 is intended to be the interface for the internal lan. My objective is to setup and internal lan that can reach the internet and get DHCP IP address from the eth1 interface. I want to accomplish more than this however, I’d like to start small.

I am running the system in oracle virtualbox. The eth0 adapter is set as bridge adapter and is getting IP address from my router. eth1 is set as an internal network adapter with the name as intnet-test (in Virtualbox).

My system is running debain squeeze (kernel 2.6.32-5-686) in terminal mode so there is no gui interface. I have not installed any of the server packages from debian. When the system comes to the login prompt, the eth0 interface is up. I am able to ping http://www.yahoo.com.

My issue is that when I execute ifconfig , I can only see eth0 and the loop back adapter in the listing. eth1 does not show up. I have been trying to set up the interface with a static IP address, by editing the /etc/network/interface file, however, the error message says I don’t have enough variables set for eth1 and the interface does not come up.

Any help with this is really appreciated. Thanks – Kevin

]]>