7

I'm unsure of what's causing my instability but here's what I know:

The server is running Debian with no GUI.

I have a static IP, and /etc/network/interfaces is configured with a 'gateway x.x.x.1' entry.

Periodically, my server loses all internet connectivity, and when I can get to it for access, the default gateway is missing from the routing table.

Because this error halts all traffic to my server, I've set up a cronjob to periodically attempt to 'route add default gw x.x.x.1' so that I don't have to keep physically returning to the machine. I'd like a better solution...

/etc/network/interfaces:

auto lo
iface lo inet loopback

allow-hotplug eth0
iface eth0 inet static
address 192.168.0.121
netmask 255.255.255.0
network 192.168.0.0
broadcast 192.168.0.255
gateway 192.168.0.1
up route add default gw 192.168.0.1
dns-nameservers 192.168.0.1
dns-search domain.com

Why doesn't the entry: up route add default gw x.x.x.1 work in /etc/network/interfaces to keep the gateway in the routing table? Moreover, shouldn't the 'gateway x.x.x.1' entry already make sure that the default gateway stays in the routing table?

Also, what log files should I be looking at in order to track down this reoccurring error?

Side question: could a DoS type attack cause eth0 to go down?

Andrew Parker
  • 203
  • 3
  • 9
  • 1
    Can you post the full interfaces file? If you are concerned about sharing public addresses, then just use RFC1918 address space. – Zoredache Mar 01 '12 at 21:55
  • That `up route add default gw 192.168.0.1` is useless and unnecessary when you have a "gateway" entry. – daff Aug 14 '12 at 20:26

4 Answers4

6

The ifconfig command is not intended to setup anything other than the interface itself, so no gateway is involved.

When you run ifconfig down, the gateway is removed by the kernel because it sees it is no longer valid.

When you run ifconfig up, the kernel can't guess anything about the gateway.

You should use your distro specific command to up the interface (for example with Debian this is ifup eth0), or explicitly use the route command.

Garrett
  • 1,332
  • 10
  • 16
Gregory MOUSSAT
  • 1,673
  • 2
  • 25
  • 50
1

I am not sure about debian but redhat requires the sysconfig scripts to be configured in order to keep the gateway settings. I am not sure how relevant this is to debian but it drove me nuts on redhat.

DaffyDuc
  • 512
  • 2
  • 7
  • All you need to do is add a one line `GATEWAY=X.X.X.X` to /etc/sysconfig/network. There's no way for the OS to automatically know what the gateway is, since it varies depending on the network. – devicenull Mar 02 '12 at 03:42
  • That is correct. I am not sure if debian uses the network sysconfig. Seems like it didn't last time I played with it. – DaffyDuc Mar 02 '12 at 04:34
1

Okay, first off, why are you using ifconfig? On a normal server, you wouldn't touch that unless you were changing IP addresses.

I suspect you have a copy of the DHCP client running somewhere. I've seen intermittent issues like this when dhclient wakes up near the end of the lease expiration time. Make sure this is fully disabled (you can probably go so far as chmod -x or even removing it, as it has no real purpose on production servers). Check ps aux and make sure you don't see anything relating to DHCP.

Last, a DoS attack will not have any effect on your system's gateway address. It's possible it could cause the gateway to go down (if it overwhelms the router), but it would not cause your system to suddenly remove it from your routing table.

devicenull
  • 5,622
  • 1
  • 26
  • 31
  • I'm just trying to trace what's happening to my server and why it keeps losing its route to the gateway (it just so happens that ifconfig up/down also does exactly this and I'm looking for a way to ensure that the gateway route comes up along with eth0). My server periodically goes offline, and I have to physically visit it to get it reconnected, and when I do, the route to the gateway is missing from the routing table... There's no DHCP, everything is static, no dhcp related items in ps aux. – Andrew Parker Mar 02 '12 at 04:53
  • @AndrewParker It is probably not necessary to mention, but be sure to check for "dhclient" in the `ps aux` output, not simply for a pattern containing "dhcp". – daff Aug 14 '12 at 20:25
  • Also check /var/log/syslog , in case dhclient starts and terminates. – user61849 Mar 31 '15 at 18:37
0

Not a solution but a quick fix to keep you from driving in to correct the config file.

Put a bash together that checks connectivity. If it can't get out have it append the gateway to the config file and bounce networking. At least for now it would save you the down time and driving.

Sorry for creating another answer... can't append comments yet apparently.

DaffyDuc
  • 512
  • 2
  • 7