[Samba] win98 browsing problem across VPN subnets

Ruben I Safir ruben at mrbrklyn.com
Mon Dec 30 03:44:00 GMT 2002 

I'm not certain I understand the need for WINS Server.

I have freeswan and I can broadcast ping one subnet 192.168.1.255
PING 192.168.1.255 (192.168.1.255) from 64.105.122.138 : 56(84) bytes of data.
64 bytes from 66.114.66.239: icmp_seq=1 ttl=255 time=30.4 ms
64 bytes from 66.114.66.239: icmp_seq=2 ttl=255 time=28.5 ms
64 bytes from 66.114.66.239: icmp_seq=3 ttl=255 time=30.6 ms

But not another

www2:~ # ping -b 192.168.0.255
PING 192.168.0.255 (192.168.0.255) from 64.105.122.138 : 56(84) bytes of data.

--- 192.168.0.255 ping statistics ---
4 packets transmitted, 0 received, 100% loss, time 3015ms


And yet both are only attached by VPN.

www2:~ # route -n |grep ipsec
64.0.231.99     64.105.122.137  255.255.255.255 UGH   0      0        0 ipsec0
66.114.66.239   64.105.122.137  255.255.255.255 UGH   0      0        0 ipsec0
64.105.122.136  0.0.0.0         255.255.255.248 U     0      0        0 ipsec0
192.168.1.0     64.105.122.137  255.255.255.0   UG    0      0        0 ipsec0
192.168.0.0     64.105.122.137  255.255.255.0   UG    0      0        0 ipsec0


What can cause this?  The 192.168.0 is behind a FreSwan System with a gateway looking like this

216.254.100.195 64.0.231.97     255.255.255.255 UGH   0      0        0 ipsec0
64.105.122.138  64.0.231.97     255.255.255.255 UGH   0      0        0 ipsec0
66.114.66.239   64.0.231.97     255.255.255.255 UGH   0      0        0 ipsec0
64.0.231.96     0.0.0.0         255.255.255.248 U     0      0        0 eth1
64.0.231.96     0.0.0.0         255.255.255.248 U     0      0        0 ipsec0
10.0.0.0        64.0.231.97     255.255.255.0   UG    0      0        0 ipsec0
192.168.1.0     64.0.231.97     255.255.255.0   UG    0      0        0 ipsec0
192.168.0.0     192.168.0.100   255.255.255.0   UG    0      0        0 eth0
192.168.0.0     0.0.0.0         255.255.255.0   U     0      0        0 eth0
127.0.0.0       0.0.0.0         255.0.0.0       U     0      0        0 lo
0.0.0.0         64.0.231.97     0.0.0.0         UG    0      0        0 eth1


This VPN Server is not the default route for the 192.168.0.0 subnet machines.  The hosts behind it 
look like this in their routing:

192.168.0.110   0.0.0.0         255.255.255.255 UH    0      0        0 eth0
192.168.0.130   0.0.0.0         255.255.255.255 UH    0      0        0 eth0
192.168.1.0     192.168.0.130   255.255.255.0   UG    0      0        0 eth0
192.168.0.0     0.0.0.0         255.255.255.0   U     0      0        0 eth0
127.0.0.0       0.0.0.0         255.0.0.0       U     0      0        0 lo
0.0.0.0         192.168.0.100   0.0.0.0         UG    0      0        0 eth0

It can't broadcast to the 192.168.1 network

[root at superman /root]# ping -b 192.168.1.255
PING 192.168.1.255 (192.168.1.255) from 192.168.0.110 : 56(84) bytes of data.

--- 192.168.1.255 ping statistics ---
3 packets transmitted, 0 packets received, 100% packet loss


But it can ping an individual host in the 192.168.1 network

PING 192.168.1.100 (192.168.1.100) from 192.168.0.110 : 56(84) bytes of data.
64 bytes from 192.168.1.100: icmp_seq=0 ttl=125 time=27.1 ms
64 bytes from 192.168.1.100: icmp_seq=1 ttl=125 time=25.9 ms
64 bytes from 192.168.1.100: icmp_seq=2 ttl=125 time=27.3 ms

--- 192.168.1.100 ping statistics ---
3 packets transmitted, 3 packets received, 0% packet loss
round-trip min/avg/max = 25.9/26.7/27.3 ms








Ruben

On 2002.12.29 18:08 snowch at care4pcs.info wrote:
> I have just setup a VPN connection three sites using IPCOP. 
> 
> Everything seems to be talking ok, apart from browsing the network neighborhood.  There are no NT/Win2K/XP servers running on any of the sites, all sites are just running win98 pc's using tcp/ip.  I have tried configuring all PC's to be on the same workgroup and setup sharing, but still each site can only see the pc's connected on it's that site.  
> 
> I have read in some newsgroups that I need to setup a WINS server, and others have suggested setting up a PDC server. Who is correct? 
> 
> I have an e-smith server (linux/samba/qmail/etc) that is running at one site to distribute emails, and I have the possibility of setting this server to be a (samba) domain master.  Would this resolve my browsing problem, or would I need to setup WINS browsing?  
> 
> Any help will be appreciated...
> 
> Thanks,
> 
> Chris Snow
> -- 
> To unsubscribe from this list go to the following URL and read the
> instructions:  http://lists.samba.org/mailman/listinfo/samba
> 
-- 
__________________________
Brooklyn Linux Solutions
__________________________
DRM is THEFT - We are the STAKEHOLDERS http://fairuse.nylxs.com

http://www.mrbrklyn.com - Consulting
http://www.inns.net <-- Happy Clients
http://www.nylxs.com - Leadership Development in Free Software
http://www2.mrbrklyn.com/resources - Unpublished Archive or stories and articles from around the net
http://www2.mrbrklyn.com/downtown.html - See the New Downtown Brooklyn....

1-718-382-0585

More information about the samba mailing list