4

I wanted to install a Debian server then work on it from my physical XP through PuTTY with a SSH session. It only worked once. Actually, it failed shortly after authentication request.

I use a Windows XP physical computer linked to internet with a modem-router, a Netgear. Three other computers are on the network: 2 XP Sweet and 1 Ubuntu.

I've installed a virtual machine I plan to use as server for my network, it's a text-only Debian5 virtualized with Vmware player 3.0.1 build-227600. Its virtual network connection is set as bridged. I also have a graphical Debian virtual machine I set for tests, virtual network connection bridged as well.

Every machine in the network, physical or virtual, have fixed IP. They all ping the other machines in any direction you want.

I tried SSH sessions from my test Debian and it worked flawlessly. People from outside the network could also when I opened a route for them. After installing OCS-NG server on the virtual machine (through SSH from the test Debian), I've deployed (manually) the agents on the machines in the network, their inventories all appeared, except for my XPs. Similarly, I can access the web interface of OCS-NG from any machine of the network except this one.

It seems that from my physical machine, only ICMP packets can reach the virtual machine.

I thought at first it was a firewall problem from my machine but I've opened the required ports on the firewall of XP. Also after a test, I could SSH to the server of a friend, without problem.

I'm running low on ideas as to why both machines won't communicate.

Improve this question
3
  • 1
    Put your sshd into debug mode on your virtual ubuntu. What do you see there when you try to connect from XP?
    – Nils
    Commented Nov 27, 2011 at 21:48
  • Have you tried stopping iptables in the debian server ? Is openssh-server installed and running ?
    – harrymc
    Commented Nov 28, 2011 at 7:03
  • If the above suggestions don't clarify the matter: Do you have any anti-virus software that you need to disable?
    – Lumi
    Commented Dec 2, 2011 at 15:33

2 Answers 2

Reset to default
1

For setup similar to your environment, I always add two NICs to my virtual machines: a NAT (or bridged) one, and a host only network. The host only network allows all my VMs and the host machine to talk to each other on known addresses. I don't use DHCP for my host only network, which allows me to write scripts on my host machine (be it Putty sessions or Xming menu items) which don't break when I connect to a different network. Also the host only network is restricted to the host and other VMs running on the host, so you can reduce security for traffic on that network.

I know this is not really answering your question, but in case it is OK for you to change your setup a bit I find this topology quite suitable for VMs.

Improve this answer
0
+200

Your setup is somewhat complex, and it's conceivable your problem stems from a network misconfiguration. You should design and test it step by step. In the process you'll gain a deeper understanding of what goes on in your network, and you'll be able to debug errors much more effectively.

Link layer design

Make a network diagram first. Depict all VMs, computers, routers, modems, bridges, switches and their physical or logical links, which will help you identify the subnets later on. Test all physical connections. E.g. using the ip -lcommand which reports NO-CARRIER if some connection does not work, like in

1: eth0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc [...]

Windows also reports disconnected network interface cards.

Network layer design

After having identified the subnets, assign static IP addresses and subnet masks. Static configurations are much easier to debug. Then test IP along the network links.

If a test fails, use a network analysis tool like Wireshark (available for both, Windows and Linux). As it is one possible source of error, make sure you have a basic grasp of what the address resolution protocol (ARP) does. You will see the ARP messages in wireshark.

Only after IP works along the network links, setup all static routes, and test these.

Improve this answer
3
  • Well, I do have a logical diagram of the network, that I started when the network was made of 2 machines and updated at every change : i5.photobucket.com/albums/y162/sylesis/network14092011.jpg . The bottom left machines on the diagram are the virtual devices installed on Hyperion, my main machine. All ip are static. Machines ping each others.<br>I haven't tried wireshark yet but did some traceroute from each sides.<br>Hyperion to virtual machine 1 and 2 : route found<br>Virtual machine 1 to 2 and 2 to 1 : route found<br> VM 2 to hyperion : no route. Yet the static route is there.
    – Sylesis
    Commented Dec 8, 2011 at 9:20
  • @sylesis Nice, now you should add device names, types and ip addresses. And I suggest working the virtual bridging thing into the diagram. That one may fool you.
    – wnrph
    Commented Dec 9, 2011 at 13:17
  • @sylesis What I mean: The diagram actually shows the imaginary configuration where it should depict the real one. (e.g. The test PC is not really connected to the router). At least that's what I would do.
    – wnrph
    Commented Dec 9, 2011 at 13:25

You must log in to answer this question.

Not the answer you're looking for? Browse other questions tagged .