Hej
Jag har confat en mail/webserver med bla apache2/postfix/devcote.
Vid uppstart så koppla den upp sig mot en VPN tjänst som jag har hos prq.se mha openvpn.
allt detta fungerar perfekt när servern sitter bakom min NATade router.
WAN------MC-----ROUTER------DEBIAN SERVER
Så fort jag koppla in den mot min operatörs fiber-mediaconverter(MC) så kan jag logga in via ssh(både via vpn-ip och nic-ip) men knappt inte få någon trafik att routa ut från servern.
WAN-----MC-----DEBIAN SERVER
Ping / Traceroute
ifconfig -a
route tabell
openvpn stoppad
Någon som har en ide vad som kan vara galet. När jag logga in via ssh så kommer login prompten direkt men när jag skrivit in root och tryckt enter så tar det ca 15 sec innan password prompten kommer upp. och så fort jag koppla ner VPN tunnlen så flyter allt som vanligt,
/crouge
Jag har confat en mail/webserver med bla apache2/postfix/devcote.
Vid uppstart så koppla den upp sig mot en VPN tjänst som jag har hos prq.se mha openvpn.
allt detta fungerar perfekt när servern sitter bakom min NATade router.
WAN------MC-----ROUTER------DEBIAN SERVER
Så fort jag koppla in den mot min operatörs fiber-mediaconverter(MC) så kan jag logga in via ssh(både via vpn-ip och nic-ip) men knappt inte få någon trafik att routa ut från servern.
WAN-----MC-----DEBIAN SERVER
Ping / Traceroute
[PHP]
root@mail:~# ping google.se
ping: unknown host google.se
root@mail:~# traceroute google.se
traceroute to google.se (173.194.32.63), 30 hops max, 60 byte packets
1 88.80.xx.xx (88.80.xx.xx) 9.211 ms 9.491 ms 9.428 ms
2 88.80.30.1 (88.80.30.1) 9.466 ms 9.670 ms 9.607 ms
3 178.16.212.1 (178.16.212.1) 9.975 ms 9.921 ms 9.860 ms
4 178.16.212.58 (178.16.212.58) 9.807 ms 9.774 ms 9.723 ms
5 * * *
6 195.66.224.125 (195.66.224.125) 36.895 ms 37.569 ms 37.652 ms
7 209.85.245.112 (209.85.245.112) 38.147 ms 38.053 ms 38.125 ms
8 209.85.244.240 (209.85.244.240) 38.136 ms 38.175 ms 38.190 ms
9 209.85.246.152 (209.85.246.152) 46.258 ms
209.85.246.154 (209.85.246.154) 38.175 ms
209.85.246.152 (209.85.246.152) 46.248 ms
10 209.85.254.231 (209.85.254.231) 41.792 ms 41.821 ms
209.85.255.73 (209.85.255.73) 41.415 ms
11 209.85.255.61 (209.85.255.61) 45.029 ms
209.85.254.207 (209.85.254.207) 45.050 ms 45.161 ms
12 209.85.241.193 (209.85.241.193) 61.428 ms 61.524 ms
209.85.241.195 (209.85.241.195) 65.525 ms
13 209.85.254.32 (209.85.254.32) 62.748 ms
209.85.254.12 (209.85.254.12) 62.786 ms 62.799 ms
14 216.239.43.255 (216.239.43.255) 62.958 ms 63.571 ms 63.293 ms
15 173.194.32.63 (173.194.32.63) 62.533 ms 62.832 ms 63.129 ms
root@mail:~#
[/PHP]
root@mail:~# ping google.se
ping: unknown host google.se
root@mail:~# traceroute google.se
traceroute to google.se (173.194.32.63), 30 hops max, 60 byte packets
1 88.80.xx.xx (88.80.xx.xx) 9.211 ms 9.491 ms 9.428 ms
2 88.80.30.1 (88.80.30.1) 9.466 ms 9.670 ms 9.607 ms
3 178.16.212.1 (178.16.212.1) 9.975 ms 9.921 ms 9.860 ms
4 178.16.212.58 (178.16.212.58) 9.807 ms 9.774 ms 9.723 ms
5 * * *
6 195.66.224.125 (195.66.224.125) 36.895 ms 37.569 ms 37.652 ms
7 209.85.245.112 (209.85.245.112) 38.147 ms 38.053 ms 38.125 ms
8 209.85.244.240 (209.85.244.240) 38.136 ms 38.175 ms 38.190 ms
9 209.85.246.152 (209.85.246.152) 46.258 ms
209.85.246.154 (209.85.246.154) 38.175 ms
209.85.246.152 (209.85.246.152) 46.248 ms
10 209.85.254.231 (209.85.254.231) 41.792 ms 41.821 ms
209.85.255.73 (209.85.255.73) 41.415 ms
11 209.85.255.61 (209.85.255.61) 45.029 ms
209.85.254.207 (209.85.254.207) 45.050 ms 45.161 ms
12 209.85.241.193 (209.85.241.193) 61.428 ms 61.524 ms
209.85.241.195 (209.85.241.195) 65.525 ms
13 209.85.254.32 (209.85.254.32) 62.748 ms
209.85.254.12 (209.85.254.12) 62.786 ms 62.799 ms
14 216.239.43.255 (216.239.43.255) 62.958 ms 63.571 ms 63.293 ms
15 173.194.32.63 (173.194.32.63) 62.533 ms 62.832 ms 63.129 ms
root@mail:~#
[/PHP]
[PHP]
root@mail:~# ifconfig -a
eth0 Link encap:Ethernet HWaddr 00:22:4d:a7:75:9c
inet addr:82.197.XX.XX Bcast:82.197.229.255 Mask:255.255.254.0
inet6 addr: fe80::222:4dff:fea7:759c/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:32731 errors:0 dropped:0 overruns:0 frame:0
TX packets:14952 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:23717473 (22.6 MiB) TX bytes:4121760 (3.9 MiB)
Interrupt:16 Memory:80120000-80140000
eth1 Link encap:Ethernet HWaddr 00:22:4d:a7:75:a0
BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
Interrupt:17 Memory:80020000-80040000
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:2539 errors:0 dropped:0 overruns:0 frame:0
TX packets:2539 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:440878 (430.5 KiB) TX bytes:440878 (430.5 KiB)
tap0 Link encap:Ethernet HWaddr 52:b6:74:2e:b5:09
inet addr:88.80.XX.XX Bcast:88.80.28.255 Mask:255.255.255.128
inet6 addr: fe80::50b6:74ff:fe2e:b509/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:18705 errors:0 dropped:0 overruns:0 frame:0
TX packets:1265 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:21241597 (20.2 MiB) TX bytes:174877 (170.7 KiB)
root@mail:~#
[/PHP]
root@mail:~# ifconfig -a
eth0 Link encap:Ethernet HWaddr 00:22:4d:a7:75:9c
inet addr:82.197.XX.XX Bcast:82.197.229.255 Mask:255.255.254.0
inet6 addr: fe80::222:4dff:fea7:759c/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:32731 errors:0 dropped:0 overruns:0 frame:0
TX packets:14952 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:23717473 (22.6 MiB) TX bytes:4121760 (3.9 MiB)
Interrupt:16 Memory:80120000-80140000
eth1 Link encap:Ethernet HWaddr 00:22:4d:a7:75:a0
BROADCAST MULTICAST MTU:1500 Metric:1
RX packets:0 errors:0 dropped:0 overruns:0 frame:0
TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:0 (0.0 B) TX bytes:0 (0.0 B)
Interrupt:17 Memory:80020000-80040000
lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:2539 errors:0 dropped:0 overruns:0 frame:0
TX packets:2539 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:440878 (430.5 KiB) TX bytes:440878 (430.5 KiB)
tap0 Link encap:Ethernet HWaddr 52:b6:74:2e:b5:09
inet addr:88.80.XX.XX Bcast:88.80.28.255 Mask:255.255.255.128
inet6 addr: fe80::50b6:74ff:fe2e:b509/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:18705 errors:0 dropped:0 overruns:0 frame:0
TX packets:1265 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:21241597 (20.2 MiB) TX bytes:174877 (170.7 KiB)
root@mail:~#
[/PHP]
route tabell
[PHP]
root@mail:~# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default 88.80.28.129 128.0.0.0 UG 0 0 0 tap0
default user254.82-197- 0.0.0.0 UG 0 0 0 eth0
82.197.228.0 * 255.255.254.0 U 0 0 0 eth0
88.80.28.128 * 255.255.255.128 U 0 0 0 tap0
88.80.30.7 user254.82-197- 255.255.255.255 UGH 0 0 0 eth0
128.0.0.0 88.80.28.129 128.0.0.0 UG 0 0 0 tap0
[/PHP]
root@mail:~# route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
default 88.80.28.129 128.0.0.0 UG 0 0 0 tap0
default user254.82-197- 0.0.0.0 UG 0 0 0 eth0
82.197.228.0 * 255.255.254.0 U 0 0 0 eth0
88.80.28.128 * 255.255.255.128 U 0 0 0 tap0
88.80.30.7 user254.82-197- 255.255.255.255 UGH 0 0 0 eth0
128.0.0.0 88.80.28.129 128.0.0.0 UG 0 0 0 tap0
[/PHP]
openvpn stoppad
[PHP]
root@mail:~# ping google.se
ping: unknown host google.se
root@mail:~# /etc/init.d/openvpn stop
[ ok ] Stopping virtual private network daemon: client.
root@mail:~# ping google.se
PING google.se (173.194.32.56) 56(84) bytes of data.
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=1 ttl=58 time=9.12 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=2 ttl=58 time=9.10 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=3 ttl=58 time=9.01 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=4 ttl=58 time=9.10 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=5 ttl=58 time=9.09 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=6 ttl=58 time=9.12 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=7 ttl=58 time=9.10 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=8 ttl=58 time=9.12 ms
^C
--- google.se ping statistics ---
8 packets transmitted, 8 received, 0% packet loss, time 7011ms
rtt min/avg/max/mdev = 9.019/9.099/9.124/0.057 ms
root@mail:~#
[/PHP]
root@mail:~# ping google.se
ping: unknown host google.se
root@mail:~# /etc/init.d/openvpn stop
[ ok ] Stopping virtual private network daemon: client.
root@mail:~# ping google.se
PING google.se (173.194.32.56) 56(84) bytes of data.
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=1 ttl=58 time=9.12 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=2 ttl=58 time=9.10 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=3 ttl=58 time=9.01 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=4 ttl=58 time=9.10 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=5 ttl=58 time=9.09 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=6 ttl=58 time=9.12 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=7 ttl=58 time=9.10 ms
64 bytes from arn06s02-in-f24.1e100.net (173.194.32.56): icmp_req=8 ttl=58 time=9.12 ms
^C
--- google.se ping statistics ---
8 packets transmitted, 8 received, 0% packet loss, time 7011ms
rtt min/avg/max/mdev = 9.019/9.099/9.124/0.057 ms
root@mail:~#
[/PHP]
Någon som har en ide vad som kan vara galet. När jag logga in via ssh så kommer login prompten direkt men när jag skrivit in root och tryckt enter så tar det ca 15 sec innan password prompten kommer upp. och så fort jag koppla ner VPN tunnlen så flyter allt som vanligt,
/crouge