From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <che@red-team.org.ua>
Message-ID: <43AADAB3.6010403@red-team.org.ua>
Date: Thu, 22 Dec 2005 18:56:19 +0200
From: Vladimir Cherednichenko <che@red-team.org.ua>
User-Agent: Thunderbird 1.5 (Windows/20051201)
MIME-Version: 1.0
To: ALT Linux sysadmin discuss <sysadmins@lists.altlinux.org>
Content-Type: text/plain; charset=KOI8-R; format=flowed
Content-Transfer-Encoding: 8bit
X-Virus-Scanned: by amavisd-new at dib.ukrsat.com
Subject: [Sysadmins] nmap and vlans and troubles
X-BeenThere: sysadmins@lists.altlinux.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: ALT Linux sysadmin discuss <sysadmins@lists.altlinux.org>
List-Id: ALT Linux sysadmin discuss <sysadmins.lists.altlinux.org>
List-Unsubscribe: <https://lists.altlinux.org/mailman/listinfo/sysadmins>,
	<mailto:sysadmins-request@lists.altlinux.org?subject=unsubscribe>
List-Archive: <http://lists.altlinux.org/pipermail/sysadmins>
List-Post: <mailto:sysadmins@lists.altlinux.org>
List-Help: <mailto:sysadmins-request@lists.altlinux.org?subject=help>
List-Subscribe: <https://lists.altlinux.org/mailman/listinfo/sysadmins>,
	<mailto:sysadmins-request@lists.altlinux.org?subject=subscribe>
X-List-Received-Date: Thu, 22 Dec 2005 16:56:46 -0000
Archived-At: <http://lore.altlinux.org/sysadmins/43AADAB3.6010403@red-team.org.ua/>
List-Archive: <http://lore.altlinux.org/sysadmins/>

Всем привет, надеюсь написал по адресу :)
Возникла такая проблема:
На сервер Master 2.4 подняты вланы, они работат нареканий нет, 
используются net-scripts. Один из vlan-интерфейсов указан как дефолтный 
в мир. Но когда пытаюсь nmap-ом просканить любой какойнибудь хост то
  получаю следующее:
$ sudo nmap -e vlan20 1.2.3.1

Starting nmap 3.55 ( http://www.insecure.org/nmap/ ) at 2005-12-21 11:19 EET
Failed to find interface eth0 mentioned in /proc/net/route

QUITTING!

даже опция -е не помогает.

Как победить, кто нибудь стыкался с такой ситуацией ?

Настройки сети:

$ cat /etc/sysconfig/vlan
# VLAN subsystem

# Change this to yes if you want VLANS.
DOT1Q_VLANS=yes

# VLAN name types:
#       VLAN_PLUS_VID           = vlan0005
#       VLAN_PLUS_VID_NO_PAD    = vlan5
#       DEV_PLUS_VID            = eth0.0005
#       DEV_PLUS_VID_NO_PAD     = eth0.5
VLAN_NAMING=VLAN_PLUS_VID_NO_PAD

$ cat /etc/sysconfig/network
NETWORKING=yes
HOSTNAME=zzz.xxx.xxx
DOMAINNAME=xxx.xxx
GATEWAY=1.2.3.1


$ cat /etc/sysconfig/network-scripts/ifcfg-eth0
DEVICE=eth0
BOOTPROTO=none
IPADDR=0.0.0.0
ONBOOT=yes


$ cat /etc/sysconfig/network-scripts/ifcfg-vlan20
DEVICE=vlan20
VLAN_TRUNK_IF=eth0
BOOTPROTO=static
IPADDR=1.2.3.2
NETMASK=z.z.z.z
ONBOOT=yes

[che@radius che]$ cat /etc/sysconfig/network-scripts/ifcfg-vlan21
DEVICE=vlan21
VLAN_TRUNK_IF=eth0
BOOTPROTO=static
IPADDR=5.5.5.5
NETMASK=y.y.y.y
ONBOOT=yes

$ sudo ip r
1.2.3.0/28 dev vlan20  proto kernel  scope link  src 1.2.3.7
5.5.5.0/24 dev vlan21  proto kernel  scope link  src 5.5.5.5
0.0.0.0/8 dev eth0  scope link
127.0.0.0/8 dev lo  scope link
default via 1.2.3.1 dev vlan20

$ sudo ip r del 0.0.0.0/8 dev eth0
$ sudo ip r
1.2.3.0/28 dev vlan20  proto kernel  scope link  src 1.2.3.7
5.5.5.0/24 dev vlan21  proto kernel  scope link  src 5.5.5.5
127.0.0.0/8 dev lo  scope link
default via 1.2.3.1 dev vlan20

$ sudo nmap -e vlan20 1.2.3.1

Starting nmap 3.55 ( http://www.insecure.org/nmap/ ) at 2005-12-21 11:22 EET
Failed to find interface eth0 mentioned in /proc/net/route

QUITTING!
-- 

WBR, Vladimir Cherednichenko
R.E.D Team | Admin
Ukraine | Kiev