Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 2 > Installation/Configuration

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 16th January 2006, 18:23
Sinisfun Sinisfun is offline
Member
 
Join Date: Dec 2005
Posts: 35
Thanks: 0
Thanked 0 Times in 0 Posts
Default "Connect : Network is Unreachable"

This started this morning, I woke up and my site was there, checked my mail, and then my site was gone. When I login locally and try and ping google.ca I get "Connect : Network is unreachable" ifconfig eth0 shows the ip address has changed to a .101 from a .103 so I change it back, however the site cannot be seen and I cannot connect to it using putty.... I am at a loss, I have googled and searched and I can find many others with this issue, however very few if any solutions. Any help would be welcomed...

-Lee
Reply With Quote
Sponsored Links
  #2  
Old 16th January 2006, 18:26
till till is online now
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 36,395
Thanks: 833
Thanked 5,492 Times in 4,323 Posts
Default

Have you checked your router?

What is the output of:

netstat -nr
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #3  
Old 16th January 2006, 18:31
Sinisfun Sinisfun is offline
Member
 
Join Date: Dec 2005
Posts: 35
Thanks: 0
Thanked 0 Times in 0 Posts
Default

dest Gateway Genmask Flags MSS Window irtt iface
192.168.0.0 0.0.0.0 255.255.255.0 u 0 0 0 eth0
Reply With Quote
  #4  
Old 16th January 2006, 18:33
till till is online now
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 36,395
Thanks: 833
Thanked 5,492 Times in 4,323 Posts
Default

please try this:

/sbin/route add -net 0.0.0.0 gw 1.1.1.1 eth0

where you have to replace 1.1.1.1 with the internal IP address of your router (gateway).
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #5  
Old 16th January 2006, 18:37
Sinisfun Sinisfun is offline
Member
 
Join Date: Dec 2005
Posts: 35
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Absolutely Stunning... It works Thank you for the great reply times and accuracy. May I ask what may have caused this so I can possibly prevent future issues?

Again thanks so much.... you rock!

-Lee
Reply With Quote
  #6  
Old 16th January 2006, 18:40
till till is online now
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 36,395
Thanks: 833
Thanked 5,492 Times in 4,323 Posts
Default

Something has deleted the route to the gateway on your server. Can you check with the "uptime" command if your server rebootet at the time the problems begun?
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #7  
Old 16th January 2006, 18:53
Sinisfun Sinisfun is offline
Member
 
Join Date: Dec 2005
Posts: 35
Thanks: 0
Thanked 0 Times in 0 Posts
Default

It says that it has been up for 14 days...
Reply With Quote
  #8  
Old 16th January 2006, 19:49
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,743 Times in 2,577 Posts
Default

Maybe a server oops...

To be on the safe side I'd run chkrootkit and Rootkithunter to check if your system has been hijacked. You can never know...
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #9  
Old 16th January 2006, 20:26
Sinisfun Sinisfun is offline
Member
 
Join Date: Dec 2005
Posts: 35
Thanks: 0
Thanked 0 Times in 0 Posts
Default

I get this as output from chkrootkit
Code:
Checking `rexedcs'... not found
Checking `sniffer'... eth0: not promisc and no PF_PACKET sockets
Checking `w55808'... not infected
Checking `wted'... chkwtmp: nothing deleted
Checking `scalper'... not infected
Checking `slapper'... not infected
Checking `z2'... chklastlog: nothing deleted
Checking `chkutmp'...  The tty of the following user process(es) were not found
 in /var/run/utmp !
! RUID          PID TTY    CMD
! root         7684 tty6   /sbin/getty 38400 tty6
chkutmp: nothing deleted
There is more to the list however everything else states that there was nothing found, this however list eth0 and I dont know what it is telling me.
Rootkit Hunter Finds this
Code:
System checks
* Allround tests
   Checking hostname... Found. Hostname is mikethetv
   Checking for passwordless user accounts... OK
   Checking for differences in user accounts...                       [ NA ]
   Checking for differences in user groups... Creating file It seems this is your first time.
   Checking boot.local/rc.local file...
     - /etc/rc.local                                          [ Not found ]
     - /etc/rc.d/rc.local                                     [ Not found ]
     - /usr/local/etc/rc.local                                [ Not found ]
     - /usr/local/etc/rc.d/rc.local                           [ Not found ]
     - /etc/conf.d/local.start                                [ Not found ]
     - /etc/init.d/boot.local                                 [ Not found ]
   Checking rc.d files...                                     [ Not found ]
   Checking history files
     Bourne Shell                                             [ Not Found ]

* Filesystem checks
   Checking /dev for suspicious files...                      [ OK ]
   Scanning for hidden files...                               [ Warning! ]
---------------
 /dev/.static
/dev/.udevdb
/dev/.initramfs-tools /etc/.pwd.lock
---------------
Please inspect:  /dev/.static (directory)  /dev/.udevdb (directory)
I noticed that it created a user file... do you think this will interfere with ISPconfig?

Any ideas or does everything look ok?

Last edited by Sinisfun; 16th January 2006 at 20:44.
Reply With Quote
  #10  
Old 16th January 2006, 21:41
till till is online now
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 36,395
Thanks: 833
Thanked 5,492 Times in 4,323 Posts
 
Default

Quote:
Originally Posted by Sinisfun
/dev/.static
/dev/.udevdb
/dev/.initramfs-tools /etc/.pwd.lock
I think this is normal, as far as i know these directories where created when you install raid.

Quote:
I noticed that it created a user file... do you think this will interfere with ISPconfig?
Chkrootkit and rkhunter work fine together with ISPConfig.

Quote:
Any ideas or does everything look ok?
I think its ok.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Wireless network access speeds badben Technical 1 3rd January 2006 17:36
how to test a site on local network fuchsbox Installation/Configuration 4 17th December 2005 08:34
suse update 9.3---->10.0 network dead shadowsa Installation/Configuration 9 8th December 2005 07:25
Proftpd Access outside of network palkat Installation/Configuration 4 13th October 2005 18:50
Can't see webpage on local network lsb Server Operation 2 11th September 2005 18:33


All times are GMT +2. The time now is 09:03.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.