Route Arch host traffic through VirtualBox guest

I was successful doing this under Windows 7. I would much rather have this running under linux so that I could learn more. I am a linux noob so I am still taking this all in (migrating from Xubuntu).
So far I have installed a bridge. I have found a helpful wiki entry https://wiki.archlinux.org/index.php/Ad … Networking
but it makes references to rc.config which seems to be gone do to the implementation of systemd. That is where I hit a wall. I am not familiar with systemd.
Thanks for any help you can give me (i've done my googling)
Richard Freeman

Okay, so you want a pfsense VirtualBox guest to be your gateway/firewall for the Arch linux Host.
What I would do is this...
NOTE: Arch dev's and forums people now think that the tools in the inetutils package (ifconfig, route and stuff) are out of date. So, someone will for sure come in and tell you how to do this with the iproute2 commands....
pacman -S bridge-utils uml_utilities inetutils
tunctl -g users
brctl addbr br0
ifconfig br0 192.168.30.2 up
ifconfig eth0 up
brctl addif br0 tap0
route add default gw 192.168.30.1 dev br0
# Owe, and set the DNS server to be sure
echo 'nameserver 8.8.8.8' > /etc/resolv.conf
Then in the VirtualBox GUI, give the VM 2 network interfaces. One being the physical ethernet interface eth0, and another being the virtual tap0 interface.
Now in the pfsense Guest. Make the Ethernet interface be the WAN and the tap0 interface be the LAN. Configure the tap0 interface with a Static IP address of 192.168.30.1 netmask 255.255.255.0 i.e. /24
Last edited by hunterthomson (2012-12-29 01:08:14)

Similar Messages

WinXp Pro as Virtualbox Guest can't ping router/internet

Hi:
I am running Arch 64 and installed virtualbox_bin 2.0.4-1 from AUR and guest additions 2.0.2-1 from AUR.
I have installed as a guest os, WinXP Pro and set up bridge networking per
http://mychael.gotdns.com/blog/2007/05/ … -bridging/.
My Arch host works fine (it can access the internet and ping the guest WinXP Pro). My WinXP Pro guest can ping my Arch host and other local machines on my network. However it cannot ping my router or access or ping the internet.
I log onto the WinXP Pro as the Administrator and I have the firewall disabled, so I don't think it is being blocked on the XP side by anything.
As far as Arch goes, I have tried adding the host name of the WinXP Pro machine to /etc/hosts and put the ip adress of the XP machine into /etc/hosts.allow. Neither of these actions resulted in success. I don't think I have a firewall or other special security measures on my Arch? I just did a fresh ftp install yesterday and did not add ssh or other security measures that weren't included in the default install and the base-devel install.
My search of the forums turned up a similar problem to mine that was solved by removing the firewall in the WinXP guest. I have already done that still without success.
My uneducated guess is that the gateway ip is not getting to the guest. I am using static ip for both the Arch host and the WinXP guest. The WinXP guest says that it is connected and reports no problems. I tried using dhcp on the XP guest but that didn't work either.
Here is the network section of my /etc/rc.conf
lo="lo 127.0.0.1"
BRIDGE_INTERFACES=(br0)
bridge_br0=(eth0)
br0="br0 192.168.1.201 netmask 255.255.255.0 broadcast 192.168.0.255"
eth0="eth0 0.0.0.0 promisc"
INTERFACES=(lo br0 eth0)
gateway="default gw 192.168.1.1"
ROUTES=(gateway)
Any help would be much appreciated.
bdika

Hi Floris:
Thanks for the reply.
I originally tried the Arch Way without success, that is why I tried the other way.
However at your suggestion, I have tried the Arch Way again, with the same results. That is I can ping other computers on my network but I can't ping my router nor access the internet from my guest.
Seeing that I have the same problem regardless of which method I use leads me to believe that it must be something simple and obvious that I am doing wrong. But what??! I have no idea.
Any thoughts you have would be much appreciated.
bdika

Route only some traffic trough VPN

Is it possible to route only certain traffic through VPN and other through default gw route?
I have tried to google it, i didn't find anything usefull.
Thank you

Replace 'eth1' with 'ppp0' or 'tun0' or whatever your VPN interface is:
http://bbs.archlinux.org/viewtopic.php? … 63#p497763
Then for the ports you want to send via the VPN, add a rule like this:
iptables -t mangle -A OUTPUT -p tcp --dport XX -m state --state NEW -j MARK --set-mark 102
Last edited by fukawi2 (2009-09-21 23:09:11)

Direct all traffic through a socks proxy

is this possible to direct all tcp/ip traffic through a socks proxy. how about just one application. can i socksify an application? tia

You want to utilize an upstream SOCKS proxy? I doubt it, you'd be better off setting up a VPN and routing your outbound traffic through that.

[SOLVED] no sound in Arch virtualbox guest

I had no sound in an Arch virtualbox guest. The fix (original link below) was to use the alsa97 option in virtualbox settings and then to add
options snd-intel8x0 ac97_clock=48000
to
/etc/modprobe.d/alsa-base.conf
Here is the link to where I read about this fix: http://www.withoutthesarcasm.com/fixing … irtualbox/
Last edited by mek42 (2014-09-14 14:21:16)

I mucked around with alsa mixer and muted a channel and now I have sound. However, when I run:
speaker-test -c 6
the app cycles through my speakers, however sound comes out of all the speakers at once for the individual channels front left and front right. I do not get any sound out of either of the rears or the center. I double checked alsa mixer and all the volumes are turned up.
Is there a way I can get arch to send sound to the correct speakers?
--nixIT

Policy based routing on VRF interfaces to route traffic through TE Tunnel

Hi All,
Is there a method to do policy based routing on VRF interfaces and route data traffic through one TE tunnel and non-data traffic through another TE tunnel.
The tunnel is already build up with these below config
interface Tunnel25
ip unnumbered Loopback0
tunnel destination 10.250.16.250
tunnel mode mpls traffic-eng
tunnel mpls traffic-eng path-option 10 explicit name test
ip explicit-path name test enable
next-address x.x.x.x
next-address y.y.y.y
router ospf 1
mpls traffic-eng router-id Loopback0
mpls traffic-eng area 0
mpls traffic-eng tunnels
nterface GigabitEthernet5/2
mpls traffic-eng tunnels
mpls ip
Is there additional config needed to work ,also in the destination end for the return traffic,we want to use the normal PATH --I mean non TE tunnel.
We tested with the above scenario,but couldn't able to reach the destination.Meantime we had a question,when the packet uses the policy map while ingress,it may not know the associatuion with VRF(Is that right? --If so ,how to make it happen)
Any help would be really appreciated
Thanks
Regards
Anantha Subramanian Natarajan

hi Anantha!
I might not be the right person to comment on your first question. I have not configured MVPNs yet and not very confertable with the topic.
But I am sure that if you read through the CBTS doc thoroughly, you might be able to derive the answer yourself. One thing I notice is that " a Tunnel will be selected regularly according to the routing process (even isf it is cbts enabled). From the tunnels selected using the regular best path selection, the traffic is mapped to a perticular tunnel in the group if specific class is mapped to that tunnel.
So a master tunnel can be the only tunnel between the 2 devices over which the routing (bgp next hops) are exchanged and all other tunnels can be members of this tunnel. So your RPF might not fail.
You might have to explore on this a bit more and read about the co-existance of multicast and TE. This will be the same as that.
For your second question, the answer would be easy :
If you want a specific eompls cust to take a particular tunnel/path, just create a seperate pair of loopbacks on the PEs. Make the loopback learnt on the remote PE through the tunnel/path that you want the eompls to take. Then establish the xconnect with this loopback. I am assuming that your question is that a particular eompls session should take a particular path.
If you meant that certain traffic from the same eompls session take a different path/tunnel, then CBTS will work.
Regards,
Niranjan

No 3D acceleration with Arch + virtualbox-guest-modules 4.3.24-1

I've been using Arch happily in 64 bit VirtualBox setup for a few months (under 64bit Win7), but after installing cool-retro-term, realized I have no 3D acceleration. glxinfo shows I'm using unaccelerated Gallium instead of Chromium:
OpenGL renderer string: Gallium 0.4 on llvmpipe (LLVM 3.5, 128 bits)
I've googled about 100 different bug reports and solution suggestions, but to no avail. Virtualbox forums say that a similar bug was fixed last June, and after that the glxinfo should give a dozen warnings about being unable to load stuff, but report the Chromium drivers. I have the latest version of virtualbox-guest-modules (4.3.24-1) which should contain the fix, but that doesn't help.
I installed Debian today to test things out, and indeed, I had 3D acceleration out of the box. This was likely because the initial install was Debian stable, and the latest Mesa versions (around early 2014) initially broke the 3D acceleration, so probably Mesa was too stable... Upgrading to Debian Jessie broke the 3D acceleration to same state as my Arch install (Gallium renderer instead of Chromium), which seems to support this hypothesis. HOWEVER, re-compiling the latest guest additions seemed to have the effect the Virtualbox forums suggested there should be -- 3D support was restored, and Chromium once again the renderer in glxinfo.
Has someone successfully gotten Arch under Virtualbox working with 3D acceleration without downgrading Mesa libraries? The Cinnamon desktop nags me about not having HW acceleration, and cool-retro-term uses 100 % CPU due to software rendering, so I'd rather have acceleration than not.

I have the same problem (with standard 3.19.2-1 kernel, vbox 4.3.26).
I tried grabbing an older mesa and mesa-libgl from the arch rollback machine (which worked the last time it stopped working) but version 10.4.6 just crashed my machine when gnome was starting. I'm guessing there are more packages required for that approach to work but i don't know what they are. A complete rollback would be clean but would probably be more annoying lol.

Accessing Host Content through VirutalBox via NETBIOS Name?

Hi,
I've got Arch Linux installed in VirtualBox and I want to access local resources like Apache installed on my host (Windows 7). Ideally want I to achieve is to be able to access resources via my laptops NETBIOS name, this is because I move around a lot and accessing via IP will be awkward as it will change depending on location i.e. My home network uses the local IP of 192.168.x.x where as another location use 10.60.x.x etc.
Due to NETBIOS being a Windows related service, would it be possible to do this in Arch Linux? I also use Windows XP Mode for testing and accessing Apache via NETBIOS works fine, but obviously that's because it Windows!
Thanks,
James
Last edited by James2k (2012-05-09 13:23:56)

Two things.
First, you might want to look into Avahi
Second: How is your networking on the Virtual machine set up? If it uses NAT, there is a virtual network between the host and the guest. That network is independent from the host's physical network to the outside world. As such the address assigned the guest, and the address of the gateway it uses (the other end of the virtual network on the host) do not change. What does change is the NAT configuration that allows the host to route data from its real, physical network to the virtual network.
On the other hand, if you using a bridged network, that means the guest machine receives its address from the same physical DHCP server as does the host. This would require something like Avahi.
edit: Typos
Last edited by ewaller (2012-05-09 15:07:21)

New Multi-OS/CPU aware virus broke through virtualbox. For a reason.FYI

FYI (all)
Dear sir (RMS @ GNU),
my apologies. That e-mail concerned the embedding (secretly) of personal information during the make process of certain gnu software but there's a new developent and I'm extremely mad : I have been looking for ways to de-obscurify certain (gnu) Make processes. During my search I found a certain GITHUB repo that provided a way to do that. It was not "AO" but another... In reality it was a virus and/or a magic trigger that broke and destroyed All my systems in a manner of 2 hours or so.
It's a special case, methods used are not mentioned anywhere on internet. This one is multi-os aware and broke through a running virtualbox installation (I suppose via I/O hooks exploits yet unknown ). Both host and guest gets destroyed, independant of OS!
from what I have seen:
- the maker has somehow trojaned the Freedesktop.org desktop-daemon- input dbus helper software to gain and maintain root via init. Virtually everydebian based is thereby vulrenable.
- the maker has found a new way (unknown to every antivirus software) to gain Admin acces to windows system via lowlevel IO and/or abused "signed drivers" - and mmaps itselfs there to propagate..
- the virus broke through running virtualbox installations (latest installation, new installations, old VDI's) and they got all destroyed, first guest and hours or days later both host and guest installations.... also new.
- the virus injects itself on every network IF / download / and propagates on installation (triggered) within the virtualbox installation. This happens on the host too, but hours later.
- it eventually kills every document on every OS by spawning hundreds of processes to kill documents (overwrite, move, symlink)
The strange thing about this, is that GNU sources / software like the sourcecode for GLIBC and GCC was left alone! Because of that and the mentioning of GNU on that repo I contacted GNU. On my windows system there was even a special message "Thanks to Freedesktop and embedded Ruby".
The virus was obviously not meant for worldwide propagation but to target a certain audience (I suppose people like me), it's been engineered beyond belief and I triggered it somehow. In order to clean my system I tried a ISO/USB boot from AVG (linux based.) I booted from that USB and it got infected upon scanning... amazing.!!
Anyhow.. sorry to have bothered you.
Regards,
To microsoft: Windows : is trojaned via virtualbox Usb I/O and/or other lowlevel I/O trickery. Obviously new methods are used, hard to reproduce and I can only mention a few details : virtualbox breakage like this is not yet mentioned anywhere and no admin priviledges are needed to reproduce. this "virus" has no signature known to clamav/kaspersky/mssc/avg/macafee. New exploits are obviously used, unknown and/or used in a similar manner. Microsoft should investigate this on their own.
To FreeDesktop DBUS daemon: has been abused (and this darn thing is used in many debian based INIT scripts etc, in order to gain and maintain root (or worse). There was a note left on my system "thanks to freedesktop and embedded...": every Linux instance, new or old (2.6 to 3.2xxx was infected immediately). FreeDesktop: I *** your** because similar trickery is mentioned since 2009.
To certain people at Debian: thanks for not taking me seriously or even understand what you are doing. Clueless.
To Oracle: Every HOST that mounts an infected VDI, gets infected immediately upon boot. Or the other way around: upon scanning the filesystem. The scanning OS itself gets trojaned (reproduced via multiple USB installations/Gpart ISO, AVG iso) and gets destroyed . Even within virtualbox ..... the ISO grows to hunderds of gigs. Virtually. I suppose it's hooked via USB transport to gain accces over keyboard and mouse. In fact it doent matter what OS is used, the killing process is "universal" because it happens within the hooked kernelspace.
To reproduce : I cannot give much details and its hard to traceback or reconstuct the order of events but I wanted to look for a way to de-obscurify a certain gnu-make process (in particular a piece of GNU software (for ..keys) from which I suspected to embed privacy information about the user and this software is used on virtually every OS and in many software packages as building block. And I certainly found one. I guess some magic 0xUL that passed my system or action I did -triggered this OS independant chainreaction or "OSkiller" process. I should have suspected this.. well. Even github trickery was (AB)used ~/.git / gitprocesses are used for some reason because every new download got the "make" process treatment instantly. Tricks to use parts of sha1 signatures (actually the gitters identification. Some people are aware of these methods and are abusing this system, not to "watermark" but to pull off this kind of work?
The result: all my virtual Linux / Freebsd VDI/VMDK installations were completely destroyed within a manner of minutes and later the host (windows7, regular update cycle, well maintained and secured) too. It was hard to traceback and/or/try forensics because the host got infected too -- obviously no way to sandbox. (maybe I'm not clever enough). Mounting from another OS is killing that OS too. Amazing. The reason I wanted to traceback or mount a certain partition was because it contained my work on my research. I had backups (even incremental) of some instances and they all got destroyed too (unaware of the systemhooks that were luring for the magic).
Reproducable? Yes. But hard to pull off and therefore I suppose this "virus" is not meant to propagate worldwide but targetted at a certain audience. The maker(s) has/have deep profound knowledge of windows internals, virtualbox exploits,, linux exploits, methods not seen by any anti-vir software I got running. It means there's a whole bunch of multi-os exploits, application exploits, not used or mentioned anywhere, bundled in a well prepared trap for anyone who gets the magic. I still have the infected VDI's. cannot tell if they are completely destroyed because I dare not mount it in ANY way. (I tried virtually every way possible!!!!!). Forensics could do some work on the raw material.
Here's a brief list of software that must have already been trojaned / to kill the running OS's (on host/guest) of a target:
- "nonfree" linux-firmware. Certain IO/dev (dbus?) userspace layers (linux)
- linux or windows virtualbox guest addition(s): CERTAIN debian updates (* triggers the killing process). Especially the RE-make of IO kernelmods process caused a chainreaction in one case. The maker(s) did some magic there because one should assume that KERNEL code is well maintained (like Theo.d.r. does :-) )
- (gnu) remake processes of kernel mods (RT/Pre-emt) -> guest additions. I could only reproduce this a few times because my host got killed.
- github trickery....
- techniques: callbacks via IO hooks on both HID and available network devices and injects itself via sockets (because every download was infected)
- I suppose no known shellcode was used or not recognised. Every virusscanner that I got running got killed and infected upon scan, both windows and linux based, clamav and AVG mssc, macafee, kaspersky etc etc. Even a simple mount gets a host killed. Amazing.
and all of this must have been "packaged" for a special occasion? Its profoundly layered, multi-disciplined and networked (I guess there are more related triggers to this network) and this OS killer must have been ready or "waiting" for months, none of the exploits I've witnessed are mentioned on internet or have been used on seperate occasions (except for the dbus trickery: there have been rumors but no real actions by ubuntu or debian etc etc). All these multi-cpu/os/software exploits (means transports) events that happened on my systems, both metal and virtual, are not mentioned anywhere or seperately used on other occasions or else someone would have mentioned it? Even the slightest kernel breakage or trojaned kernel in this respect should gained prestige for certain w/b hat hackers. This is beyond belief. The guest/host breakage is amazing, multi-os and the killer does its work profoundly.
- so oracle can deal with this virtualbox breakage from host to guest and vice versa
- linus gets his multi-OS io / kernelspace breakage, kills of every mount or gets triggered by even mmapping.
- microsoft no idea.... no blame this should have been recognised within the security framework, but there's obviously not yet a signature known.
I don't know if I should call this a virus. It uses virus-like techniques but on so many levels happening at once. I dont think oracle or microsoft or linux / freebsd /solaris is targetted. It looks like a well contained (only propagating on the host/guest, even socks are targetted only at localhost) - trap, the killing process is very persistant and for a reason. If this was used in a network-propagating carrier virus it should raise a Major worldwide alert. I think this unknown network of suddenly revealed exploits are means to immediatly shutdown/completely kill the running system(s) of a certain audience (like me). It's like a network and eventually a killswitch, a "destroyer" which I happened to trigger while I was investigating some things concerning privacy issues (in fact building blocks for signing of public keys). This message should raise some questions.
And about that github repo. It's not AO.
Thats all folks.
0X

We would really like to debug your problem but the provided information is not sufficient and very hard to parse. A few questions:
- Which version of VirtualBox are you using?
- What host systems did you use to test, only Windows 7 or also other systems?
- Did you try to use an infected .vdi disk with a fresh installation of VirtualBox on a fresh host?
- Which guest is affected (exact version please)?
- You report that even your host will be infected (breaking through from a VirtualBox guest to a host). Did you do scan your host for viruses before you started your guest so you can be 100% sure that your host was clean before it was infected by the guest?
- When scanning the infected system with a Linux-based virus scanner: Did the scan report any problems? If so, which? And did you consider to use a virus scanner on a read-only boot medium? In the latter case it is impossible that the virus scanner gets infected.
I would appreciate if you could answer these questions, there could be more questions once I have the answers to these. But please, try to be precise and short when answering the questions.

Black screen on starting X in Virtualbox guest

Hi Arch Linux,
I am running Arch linux as a Virtualbox 4.2.6 guest with a Windows 7 host. I have virtualbox-guest-utils 4.2.6-1 installed.
When I run "startx" or "xinit" my screen goes black and freezes up. The VM seems totally unresponsive, I can't even switch to other virtual consoles with ctrl+alt+f2,f3 etc. I have to reset or use the ACPI shutdown command from the virtualbox menu. Even the ACPI shutdown seems to be a hard shutdown, as if the kernel or systemd has stopped responding (the VM closes with no messages in well less than a second). Sometimes after this power cycle, I get spammed by a repeating message from systemd when I boot that says it failed to start the journal service, though this may be unrelated. Here is my /var/log/Xorg.0.log if it helps: http://codepad.org/Ry1ixshS
Can anyone help?
Thanks,
Alex

In the Beginners' Guide, right after Testing X, there's a Troubleshooting section, and it says there to look out for lines that start with (EE) or (WW).
[ 38.633] (EE) Failed to load module "vesa" (module does not exist, 0)
I think you need to install the generic vesa driver, else there's nothing to fall back to:
https://wiki.archlinux.org/index.php/Be … deo_driver
Last edited by DSpider (2013-01-13 07:44:22)

VirtualBox Guest Tools

Hey All!
Finally decided to give Arch a drive and love it so far.
I've set myself up in a VirtualBox VM with the Host OS being Ubuntu 7.10.
Did a basic install and then installed xorg, openssh and xfce4. Nothing fancy.
My problem is that when I go to install the VirtualBox Guest Tools it fails to compile. I'm sure I'm missing a package somewhere but not sure which. I installed the kernel-headers pack this morning but it made no difference and the install still fails.
Building a test kernel module...
make KBUILD_VERBOSE=1 -C /lib/modules/2.6.24-ARCH/build SUBDIRS=/tmp/selfgz30341
9006/module/test SRCROOT=/tmp/selfgz303419006/module/test modules
test -e include/linux/autoconf.h -a -e include/config/auto.conf || (
echo; \
echo " ERROR: Kernel configuration is invalid."; \
echo " include/linux/autoconf.h or include/config/auto.conf are
missing."; \
echo " Run 'make oldconfig && make prepare' on kernel src to fix
it."; \
echo; \
/bin/false)
mkdir -p /tmp/selfgz303419006/module/test/.tmp_versions ; rm -f /tmp/selfgz30341
9006/module/test/.tmp_versions/*
make -f scripts/Makefile.build obj=/tmp/selfgz303419006/module/test
I've tried running make oldconfig from the /usr/src/<arch> dir but no luck there either.
Any suggestions?

Thanks for the speedy reply!
make and patch are installed already, must have been a dep from something else I installed.
Here is the full log from VB:
[root@herbert ~]# make --version
GNU Make 3.81
Copyright (C) 2006 Free Software Foundation, Inc.
This is free software; see the source for copying conditions.
There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A
PARTICULAR PURPOSE.
This program built for i686-pc-linux-gnu
[root@herbert ~]# cat /var/log/vboxadd-install.log |more
Installing VirtualBox 1.5.0 Guest Additions, built Fri Aug 31 14:57:14 CEST 2007
Testing the setup of the guest system
Building a test kernel module...
make KBUILD_VERBOSE=1 -C /lib/modules/2.6.24-ARCH/build SUBDIRS=/tmp/selfgz30341
9006/module/test SRCROOT=/tmp/selfgz303419006/module/test modules
test -e include/linux/autoconf.h -a -e include/config/auto.conf || (
echo; \
echo " ERROR: Kernel configuration is invalid."; \
echo " include/linux/autoconf.h or include/config/auto.conf are
missing."; \
echo " Run 'make oldconfig && make prepare' on kernel src to fix
it."; \
echo; \
/bin/false)
mkdir -p /tmp/selfgz303419006/module/test/.tmp_versions ; rm -f /tmp/selfgz30341
9006/module/test/.tmp_versions/*
make -f scripts/Makefile.build obj=/tmp/selfgz303419006/module/test
gcc -m32 -Wp,-MD,/tmp/selfgz303419006/module/test/.test.o.d -nostdinc -isyste
m /usr/lib/gcc/i686-pc-linux-gnu/4.2.3/include -D__KERNEL__ -Iinclude -include
include/linux/autoconf.h -Wall -Wundef -Wstrict-prototypes -Wno-trigraphs -fno-s
trict-aliasing -fno-common -Werror-implicit-function-declaration -O2 -pipe -msof
t-float -mregparm=3 -freg-struct-return -mpreferred-stack-boundary=2 -march=i68
6 -mtune=generic -ffreestanding -maccumulate-outgoing-args -DCONFIG_AS_CFI=1 -DC
ONFIG_AS_CFI_SIGNAL_FRAME=1 -Iinclude/asm-x86/mach-default -fomit-frame-pointer
-fno-stack-protector -Wdeclaration-after-statement -Wno-pointer-sign -I/lib/m
odules/2.6.24-ARCH/build/include -I/tmp/selfgz303419006/module/test/ -I/tmp/sel
fgz303419006/module/test/include -I/tmp/selfgz303419006/module/test/r0drv/linux
-D__KERNEL__ -DMODULE -D__LINUX__ -DIN_RING0 -D_X86_ -DIN_RT_R0 -DIN_SUP_R0 -DVB
GL_VBOXGUEST -DVBGL_HGCM -DVBOX_HGCM -DMODULE -D"KBUILD_STR(s)=#s" -D"KBUILD_B
ASENAME=KBUILD_STR(test)" -D"KBUILD_MODNAME=KBUILD_STR(vboxadd_test)" -c -o /tm
p/selfgz303419006/module/test/test.o /tmp/selfgz303419006/module/test/test.c
ld -m elf_i386 -m elf_i386 -r -o /tmp/selfgz303419006/module/test/vboxadd_te
st.o /tmp/selfgz303419006/module/test/test.o
Building modules, stage 2.
make -f /usr/src/linux-2.6.24-ARCH/scripts/Makefile.modpost
scripts/mod/modpost -i /usr/src/linux-2.6.24-ARCH/Module.symvers -I /tmp/sel
fgz303419006/module/test/Module.symvers -o /tmp/selfgz303419006/module/test/Modu
le.symvers -w -s
gcc -m32 -Wp,-MD,/tmp/selfgz303419006/module/test/.vboxadd_test.mod.o.d -nost
dinc -isystem /usr/lib/gcc/i686-pc-linux-gnu/4.2.3/include -D__KERNEL__ -Iinclud
e -include include/linux/autoconf.h -Wall -Wundef -Wstrict-prototypes -Wno-trig
raphs -fno-strict-aliasing -fno-common -Werror-implicit-function-declaration -O2
-pipe -msoft-float -mregparm=3 -freg-struct-return -mpreferred-stack-boundary=2
-march=i686 -mtune=generic -ffreestanding -maccumulate-outgoing-args -DCONFIG_
AS_CFI=1 -DCONFIG_AS_CFI_SIGNAL_FRAME=1 -Iinclude/asm-x86/mach-default -fomit-fr
ame-pointer -fno-stack-protector -Wdeclaration-after-statement -Wno-pointer-sig
n -D"KBUILD_STR(s)=#s" -D"KBUILD_BASENAME=KBUILD_STR(vboxadd_test.mod)" -D"K
BUILD_MODNAME=KBUILD_STR(vboxadd_test)" -DMODULE -c -o /tmp/selfgz303419006/modu
le/test/vboxadd_test.mod.o /tmp/selfgz303419006/module/test/vboxadd_test.mod.c
ld -m elf_i386 -r -m elf_i386 --build-id -o /tmp/selfgz303419006/module/test/
vboxadd_test.ko /tmp/selfgz303419006/module/test/vboxadd_test.o /tmp/selfgz30341
9006/module/test/vboxadd_test.mod.o
Inserting the test module module/test/vboxadd_test.ko into the kernel.
Building the VirtualBox Guest Additions kernel module.
make KBUILD_VERBOSE=1 -C /lib/modules/2.6.24-ARCH/build SUBDIRS=/tmp/vbox.0 SRCR
OOT=/tmp/vbox.0 modules
test -e include/linux/autoconf.h -a -e include/config/auto.conf || (
echo; \
echo " ERROR: Kernel configuration is invalid."; \
echo " include/linux/autoconf.h or include/config/auto.conf are
missing."; \
echo " Run 'make oldconfig && make prepare' on kernel src to fix
it."; \
echo; \
/bin/false)
mkdir -p /tmp/vbox.0/.tmp_versions ; rm -f /tmp/vbox.0/.tmp_versions/*
make -f scripts/Makefile.build obj=/tmp/vbox.0
gcc -m32 -Wp,-MD,/tmp/vbox.0/.cmc.o.d -nostdinc -isystem /usr/lib/gcc/i686-pc
-linux-gnu/4.2.3/include -D__KERNEL__ -Iinclude -include include/linux/autoconf
.h -Wall -Wundef -Wstrict-prototypes -Wno-trigraphs -fno-strict-aliasing -fno-co
mmon -Werror-implicit-function-declaration -O2 -pipe -msoft-float -mregparm=3 -f
reg-struct-return -mpreferred-stack-boundary=2 -march=i686 -mtune=generic -ffre
estanding -maccumulate-outgoing-args -DCONFIG_AS_CFI=1 -DCONFIG_AS_CFI_SIGNAL_FR
AME=1 -Iinclude/asm-x86/mach-default -fomit-frame-pointer -fno-stack-protector
-Wdeclaration-after-statement -Wno-pointer-sign -I/lib/modules/2.6.24-ARCH/bui
ld/include -I/tmp/vbox.0/ -I/tmp/vbox.0/include -I/tmp/vbox.0/r0drv/linux -D__K
ERNEL__ -DMODULE -DRT_OS_LINUX -DIN_RING0 -D_X86_ -DIN_RT_R0 -DIN_SUP_R0 -DVBGL_
VBOXGUEST -DVBOX_HGCM -DLOG_TO_BACKDOOR -DMODULE -D"KBUILD_STR(s)=#s" -D"KBUIL
D_BASENAME=KBUILD_STR(cmc)" -D"KBUILD_MODNAME=KBUILD_STR(vboxadd)" -c -o /tmp/v
box.0/cmc.o /tmp/vbox.0/cmc.c
In file included from /tmp/vbox.0/include/iprt/types.h:72,
from /tmp/vbox.0/r0drv/linux/the-linux-kernel.h:25,
from /tmp/vbox.0/cmc.c:17:
include/linux/types.h:40: error: redefinition of typedef 'uintptr_t'
/tmp/vbox.0/include/iprt/stdint.h:118: error: previous declaration of 'uintptr_t
' was here
In file included from include/linux/thread_info.h:33,
from include/linux/preempt.h:9,
from include/linux/spinlock.h:49,
from /tmp/vbox.0/r0drv/linux/the-linux-kernel.h:53,
from /tmp/vbox.0/cmc.c:17:
include/linux/bitops.h:6:1: warning: "BIT" redefined
In file included from /tmp/vbox.0/include/iprt/types.h:20,
from /tmp/vbox.0/r0drv/linux/the-linux-kernel.h:25,
from /tmp/vbox.0/cmc.c:17:
/tmp/vbox.0/include/iprt/cdefs.h:1019:1: warning: this is the location of the pr
evious definition
make[2]: *** [/tmp/vbox.0/cmc.o] Error 1
make[1]: *** [_module_/tmp/vbox.0] Error 2
make: *** [vboxadd] Error 2
I figured the compile errors were related to the initial part of the log I posted.
Any suggestions very much appreciated....
EDIT: I'm using VirtualBox 1.5.0_OSE
Last edited by volksman (2008-03-10 17:26:04)

Multicast to Host but not to Guest

Hi all
I have a strange situation. To give you some background, I have recently built 2 Hyper V3 2 node server 2012 clusters in a failover environment; all has been working without issue. The kit moves from location to location, so is frequently turned on and shutdown.
The other day upon bringing the server up, it was noted that the servers on cluster2 could not receive or stream mulitcast traffic, whilst those on cluster1 were fine. Initial thoughts were to it being a single guest machine problem, but upon rebooting the
guest this made no difference. All guests were moved off of one node, rebooted the node and then shifted back, again to no avail. Wireshark was used to see whether the guests were receiving multicast traffic, and no they weren’t. Wireshark was also installed
on the hosts, and it was being received to there.
The guest in question was failed over to cluster1 and then worked without issues. The kit is currently in transit so I’m unable to test anything but has anyone seen anything similar to this before. As I have said, this situation was not present the last
time the clusters were turned on, only this time.
A little bit of background that may help: the hosts are HP385 G8 servers, and 3 ports from each HP server is connected to a cisco 3850 via LACP. The fourth port on the server is connected to each other as the heartbeat connection.
Many thanks

Hi Chris,
Are you trying to enable NLB (Network Load Balancing) in Multicast mode or are you really trying to achieve something else?
The fact is, Multicast issues can be caused by a lot of things. I don't want to go into to much detail. But to give me a bit more information. Are you using Multicast or IGMP Multicast? Are you trying to reach your guests from a source located behind
a router? Have tried accessing the guests from the local subnet? Any diffrence? You are aware that you have to configure your netwerk devices (e.g. Cisco Catalyst switches) for multicast traffic right?
Boudewijn Plomp, BPMi Infrastructure & Security | Please remember, if you see a post that helped you please click "Vote as Helpful" and if it answered your question, please click "Mark as Answer".

Policy based routing to host in same vlan/subnet

Hello i have nexus 7k that i have a policy based routing setup as follows for 2 vlans, 802 and 803, to set default route out to a host in vlan 802. i have applied my policy to the vlans and everything works fine for a host in vlan 803, it routes over and out properly. However when im in vlan 802 my host traffic never gets to 172.21.1.237 when pointed at the gateway 172.21.1.1. I can see the pbr statistics incrementing indicating that i am initially hitting the policy but im not sure where my traffic goes after that. I can talk to .237 direct in the vlan but i would like this to work through pbr to utilize all of my other routes and default gateway.
vlans 802
172.21.1.1/24
ip policy route-map West
vlan 803
172.21.17.1/24
ip policy route-map West
route-map West permit 10
match vlan 802-803
set ip default next-hop 172.21.1.237
Im thinking there is some kind of hairpinning problem or maybe im creating some kind of blackhole.
any help is appreciated.
thanks, scott

Scott
If the destination IP is in the same subnet as source IP then it won't be routed it will be L2 switched so it would never use the default gateway ie.
src IP 172.21.1.10 255.255.255.0
dst IP 172.21.1.237 255.255.255.0
src compares it's own IP with it's subnet mask and sees it is on the 172.21.1.x network. src then compares the destination IP with it's own subnet mask and sees it is also on the 172.21.1.x network so it simply arps out for that address and when it gets the mac address it sends it direct to the destination. It would only use the default gateway if the destination IP was on a different network.
So i don't see how you will be able to do this and i'm not sure why you are seeing hits in your PBR acl for the host in the 172.21.1.x network.
Edit - what exactly do you mean when you say -
However when im in vlan 802 my host traffic never gets to 172.21.1.237 when pointed at the gateway 172.21.1.1.
How are you doing this ie. pointing it to the default gateway because as i say it should always be able to communicate with 172.21.1.237 as it is in the same subnet.
Jon

Installing virtualbox-guest-modules = depmod error

I'm setting up a new system, and I tried following the instructions at https://wiki.archlinux.org/index.php/Vi … nux_guests.
Using "sudo pacman -S virtualbox-guest-utils" gives me an error message:
depmod: ERROR: could not open directory /lib/modules/3.9.4-1-ARCH: No such file or directory
depmod: FATAL: could not search modules: No such file or directory"
I see I do have a 3.9.5-1-ARCH directory, though.
I assume something somewhere needs to be updated. Is there anything I can do until that happens?

I think I have a similar problem
Im using Arch as the host and trying to use other OSs as guests in virtualbox.
But when I try to use virtualbox and push start (on XP) it say:
"The VirtualBox Linux kernel driver (vboxdrv) is either not loaded
or there is a permission problem with /dev/vboxdrv. Please
reinstall the kernel module by executing
'pacman -S virtualbox-host-modules'
as root. If you don't use our stock kernel, install
virtualbox-host-source and execute dkms autoinstall."
when I execute: # pacman -S virtualbox-host-modules it say:
(1/1) reinstalling virtualbox-host-modules
depmod: ERROR: could not open directory /lib/modules/3.9.4-1-ARCH: No such file or directory
depmod: FATAL: could not search modules: No such file or directory
In order to use the new version, reload all virtualbox modules manually.
I tryied to execute "depmod 3.9.5-1-ARCH" but in my case it didnt help,
I also running on 3.9.5-1-ARCH.
So basicly there is nothing to do now, but waiting for bug to be fixed?

Tunnelling web traffic through ssh

for tunnelling web traffic through ssh, it says here
http://wiki.freaks-unidos.net/weblog...fox-ssh-tunnel
that i have to set only the SOCKS Host text field in the edit>preferences>advanced>network>connection>settings
to localhost and the port i used for ssh but what about the other fields like http,ftp,gopher,and ssl proxy, shouldn't i need to set those too? if not why and what are those fields for anyway?
btw, is it possible to view streaming video like youtube.com while using a proxy? if so, then how would i go about it?

jordi wrote:
ssh -D 4444 (or any other port number) youruser@yourserver
see the manual:
-D [bind_address:] port
Specifies a local ''dynamic'' application-level port forwarding. This works by
allocating a socket to listen to port on the local side, optionally bound to
the specified bind_address. Whenever a connection is made to this port, the
connection is forwarded over the secure channel, and the application protocol
is then used to determine where to connect to from the remote machine. Cur‐
rently the SOCKS4 and SOCKS5 protocols are supported, and ssh will act as a
SOCKS server. Only root can forward privileged ports. Dynamic port forward‐
ings can also be specified in the configuration file.
streaming videos like youtube.com will be possible... surfing the web will be the same as without socks proxy...
I suggest to use a addon like FoxyProxy if you use socks proxy's a lot.
1) I already know the ssh part, im talking about the configuration in firefox, sorry if i didn't make this clear.
for tunnelling web traffic through ssh, it says here
http://wiki.freaks-unidos.net/weblog...fox-ssh-tunnel
that i have to set only the SOCKS Host text field in the edit>preferences>advanced>network>connection>settings
to localhost and the port i used for ssh but what about the other fields like http,ftp,gopher,and ssl proxy, shouldn't i need to set those too? if not why and what are those fields for anyway?
2) and another thing about streaming videos, why is it that some proxies i have used before don't allow streaming traffic through?
ok it says here for vpn
http://searchsecurity.techtarget.com/sDefi...213324,00.html#
An additional level of security involves encrypting not only the data, but also the originating and receiving network addresses.
3) so how would the routers know where to route the data if its encrypted? and how would i go about implementing that?
4) btw, is ssh tunnelling an implementation of vpn?
5) another question i have would be that for ssh tunnelling, it works at the transport layer onwards so only applications which are designed to use the port would go through the tunnel and be encrypted right, other apps would not go through the tunnel. On the contrary, IPsec works on the network layer so all information above the network layer whether they use UDP or TCP or whatever ports for TCP would go through the tunnel and be encrypted. Are the above statements correct?
Last edited by unregistered (2008-05-11 08:39:19)

Route Arch host traffic through VirtualBox guest

Similar Messages

Maybe you are looking for