VMware Cloud Community
xkdcc
Contributor
Contributor
‎09-07-2009 10:05 PM

[HELP] Physical box can't ftp Linux(it's a VMware guest OS, shutdown iptables, ping successfully), they are in same network section (10.10.10.0/24)

Please have a look at my problem:

On Windows2003 -

hostname:win03, physical NIC is 10.10.10.0/24, using DHCP get ip: 10.10.10.10, gateway is 10.10.10.1, firewall shutdown

The Windows2003 have been installed a VMware Workstation, the VMware Workstation network use bridge.

Install a RedHat53 on the VMware Workstation, hostname: rh53,use DHCP and get IP: 10.10.10.20(10.10.10.0/24), gateway is 10.10.10.1, iptables has been shutdown,vsftpd is running.

On win03 can ftp login the vsftpd on RedHat53 successfully as well as ping command.

Why other physical box (windows2003, firewall shutdown, 10.10.10.30) can ping rh53 successfully but can not ftp log in rh53 ?

tcpdump can't catch any ftp package from other physical box.

Thank you very much ~~~

Tags (3)
0 Kudos
6 Replies
AWo
Immortal
Immortal
‎09-08-2009 02:12 AM

Does other services work from other physical boxes to the VM? Like ssh or telnet?

Can the virtual guest ping the physical boxes?


AWo

VCP / VMware vEXPERT 2009

vExpert 2009/10/11 [:o]===[o:] [: ]o=o[ :] = Save forests! rent firewood! =
0 Kudos
xkdcc
Contributor
Contributor
‎09-08-2009 05:50 AM

Both SSH and Telnet can't work on other physical box . -

But rh53 can receive arp packages in the meanwhile.

Only ping successfully.

And win03 can ssh rh53 successfully .

Hope those information may be helpful.

Thank you ~~

0 Kudos
puzzledtux
Hot Shot
Hot Shot
‎09-08-2009 10:37 PM

Are you able to ping from your RHEL GOS to the problematic windows machines?

Have you setup any TCP wrapper in your linux RHEL guest? Any entries in hosts.deny etc to allow specific IP addresses?

Can you post the output of the below commands?

netstat -untap --- on your linux RHEL machine

ipconfig /all -

windows host machine and any one problematic machine.

0 Kudos
xkdcc
Contributor
Contributor
‎09-09-2009 01:32 AM

Q: Are you able to ping from your RHEL GOS to the problematic windows machines?

A: Yes. I can.

Q: netstat -untap -

on linux rh53:

# netstat -uptap

Active Internet connections (servers and established)

Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name

tcp 0 0 rh53vm:2208 : LISTEN 2220/hpiod

tcp 0 0 *:sunrpc : LISTEN 1980/portmap

tcp 0 0 *:ftp : LISTEN 2276/vsftpd

tcp 0 0 rh53vm:ipp : LISTEN 2251/cupsd

tcp 0 0 rh53vm:smtp : LISTEN 2296/sendmail: acce

tcp 0 0 *:923 : LISTEN 2013/rpc.statd

tcp 0 0 rh53vm:2207 : LISTEN 2225/python

tcp 0 0 *:ssh : LISTEN 2240/sshd

tcp 0 148 ::ffff:10.200.108.243:ssh ::ffff:10.200.108.29:drmsmc ESTABLISHED 3161/2

udp 0 0 *:917 : 2013/rpc.statd

udp 0 0 *:920 : 2013/rpc.statd

udp 0 0 *:bootpc : 1882/dhclient

udp 0 0 *:52049 : 2427/avahi-daemon:

udp 0 0 *:mdns : 2427/avahi-daemon:

udp 0 0 *:sunrpc : 1980/portmap

udp 0 0 *:ipp : 2251/cupsd

udp 0 0 *:36511 : 2427/avahi-daemon:

udp 0 0 *:mdns : 2427/avahi-daemon:

Q: ipconfig /all -

windows host machine and any one problematic machine.

C:\Documents and Settings\Administrator>ipconfig /all

Windows IP Configuration

Host Name . . . . . . . . . . . . : locdell08

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter VMware Network Adapter VMnet8:

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : VMware Virtual Ethernet Adapter for VMnet8

Physical Address. . . . . . . . . : 00-50-56-C0-00-08

DHCP Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 192.168.163.1

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . :

Ethernet adapter VMware Network Adapter VMnet1:

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : VMware Virtual Ethernet Adapter for VMnet1

Physical Address. . . . . . . . . : 00-50-56-C0-00-01

DHCP Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 192.168.117.1

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . :

Ethernet adapter Local Area Connection:

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client)

Physical Address. . . . . . . . . : 00-1E-C9-EC-E5-CB

DHCP Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 10.200.108.28

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 10.200.108.1

DNS Servers . . . . . . . . . . . : 143.127.251.102

143.127.160.5

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Broadcom BCM5708C NetXtreme II GigE (NDIS VBD Client) #2

Physical Address. . . . . . . . . : 00-1E-C9-EC-E5-CD

PS: This windows system have a VM workstation installed, would this be a concern?

If any problem, please feel free to let me know ~~~

Thank you very much puzzledtux~~

0 Kudos
puzzledtux
Hot Shot
Hot Shot
‎09-09-2009 01:44 AM

netstat -untap output is required, I think you ran netstat -uptap

Also your IP address networks are different for the linux and problematic windows(10.200.108.28). Are you sure you are able to ping to and from?

0 Kudos
xkdcc
Contributor
Contributor
‎09-09-2009 08:50 AM

Update:

# netstat -untap

Active Internet connections (servers and established)

Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name

tcp 0 0 127.0.0.1:2208 0.0.0.0:* LISTEN 2220/hpiod

tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN 1980/portmap

tcp 0 0 0.0.0.0:21 0.0.0.0:* LISTEN 2276/vsftpd

tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN 2251/cupsd

tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 2296/sendmail: acce

tcp 0 0 0.0.0.0:923 0.0.0.0:* LISTEN 2013/rpc.statd

tcp 0 0 127.0.0.1:2207 0.0.0.0:* LISTEN 2225/python

tcp 0 0 :::22 :::* LISTEN 2240/sshd

tcp 0 596 ::ffff:10.200.108.243:22 ::ffff:10.200.108.29:1878 ESTABLISHED 3161/2

udp 0 0 0.0.0.0:917 0.0.0.0:* 2013/rpc.statd

udp 0 0 0.0.0.0:920 0.0.0.0:* 2013/rpc.statd

udp 0 0 0.0.0.0:68 0.0.0.0:* 1882/dhclient

udp 0 0 0.0.0.0:52049 0.0.0.0:* 2427/avahi-daemon:

udp 0 0 0.0.0.0:5353 0.0.0.0:* 2427/avahi-daemon:

udp 0 0 0.0.0.0:111 0.0.0.0:* 1980/portmap

udp 0 0 0.0.0.0:631 0.0.0.0:* 2251/cupsd

udp 0 0 :::36511 :::* 2427/avahi-daemon:

udp 0 0 :::5353 :::* 2427/avahi-daemon:

# ping 10.200.108.28

PING 10.200.108.28 (10.200.108.28) 56(84) bytes of data.

64 bytes from 10.200.108.28: icmp_seq=1 ttl=128 time=6.28 ms

64 bytes from 10.200.108.28: icmp_seq=2 ttl=128 time=3.28 ms

--- 10.200.108.28 ping statistics ---

2 packets transmitted, 2 received, 0% packet loss, time 1001ms

rtt min/avg/max/mdev = 3.283/4.785/6.287/1.502 ms

Em, just a kind reminder: actually, my linux (rh53vm) network ip is 10.200.108.243. (10.10.10.0/24 is used as a example)

Sorry for any confuse.

Now could you please have a look at it again?

Thank you~~

0 Kudos