On Mon, 2012-07-02 at 13:15 +0800, Ed Greshko wrote:
> On 07/02/2012 10:08 AM, Ed Greshko wrote:
> > I can also tell you that I have installed Window 2003 Server and added the role of
> > "Terminal Server". The Windows 2003 is running in a Virtual Box VM with the VM
> > network adapter *Bridged* to the network adapter of meimei (F16).
Didn't see this before. Your virtual switch configuration is different
somewhat, as well as the hypervisor. We're running vSphere on this side
of the equation and using standard vSwitches with a VLAN based port
group for the VM network. That doesn't matter in this case because there
isn't an issue with virtual switch configurations.
> OK.... I have installed Windows 2008 Server in a VM. I simply did an "Enable
> Remote Desktop" from the "Initial Configuration Tasks". I didn't "Add roles" since
> that seemed not necessary according to the prompts when I started doing that.
>
> I only used IP addresses since I didn't want to put that system in my DNS.
> 192.168.0.184 is the IP address it was assigned via DHCP.
>
> [egreshko@meimei ~]$ telnet 192.168.0.184 3389
> Trying 192.168.0.184...
> Connected to 192.168.0.184.
> Escape character is '^]'.
>
> I then used Remmina on my F16 box (meimei) to connect. Everything worked 100%.
>
> So, to me, that confirms a configuration issue at your end.
I must respectfully disagree. You confirmed that you can connect at
least briefly to a Windows Server VM from inside a network, with no vpn
in the picture.
Based on what I've found, I am now 100% certain there is an issue with
gnome-rdp / Reminna AND with Network Manager. We also need to get off of
the host name resolution thing. This is not where the problems we're
having are coming from.
"It works on my system" is never confirmation. It isn't working on
multiple F16 and F17 systems, and it IS working on multiple Windows 7
systems when using the Cisco VPN client.
Case in point:
I am certain there is an issue with Network Manager and vpnc. Why?
Because on multiple systems, with both F16 and F17, I am able to show
the following:
Connection using Network Manager / vpnc first connects, then hangs.
Specifically, I did:
1) Start vpnc based connection on Network Manager
2) Attempted to connect via ssh to a Linux based VM on the inside
network: (command was "ssh -X -l cwilliams jericho.risingstar.local")
3) ssh connects successfully, but then eventually hangs after a few
seconds.
There is nothing in the ssh log or Network Manager log that I'm able to
find regarding any kind of error. The ssh session just stops working.
Further, all other vpn connectivity stops working.
The contents of /etc/resolv.conf are irrelevant because the host name
WAS indeed resolved. It does correctly show the proper domain search and
DNS information though. But as I just mentioned, this is irrelevant to
the problems we're seeing. The VPN connection simply failed, and with no
errors.
When on the inside network:
1) Connect using WiFi connection on an F17 laptop, receive address via
dhcp
2) Connect via ssh to the same machine with the exact same command as
above. The ssh connection remains up and stable.
Again, the contents of /etc/resolv.conf (and nsswitch.con for that
matter) are irrelevant because host names are being properly resolved.
HOWEVER:
Connect via Reminna or gnome-rdp to the internal system. the rdp
connection first starts, then eventually hangs after about 5 minutes.
Again, host name resolution is NOT the issue.
When connecting from a Windows 7 system using the Cisco VPN client, the
VPN connection remains stable AND Remote Desktop Connection for Windows
works as expected. This is doing this with a VM on the same Linux system
that fails when using Network Manager / vpnc. Since the VM is using
Network Manager without vpnc under the covers (VMware Workstation using
a NAT mode virtual switch that then talks to Network Manager - as an
aside, when doing client based VMs, bridged adapters should be used only
as a last resort because you chew up IP addresses needlessly), this
leads me to believe there most likely is an issue with vpnc itself.
I actually have held off on what I really know on networking here - I
know for a fact that the network configuration is correct. I also went
through our ASA box again and re-validated the configuration is correct.
I'm not going to display the entire network configuration here
(security). That said, we need to stop troubleshooting this as a DNS or
host name resolution issue. It is not.
There is, however, an issue with vpnc on Network Manager not working
correctly.
There also is an issue with rdp sessions (I noticed that Reminna and
gnome-rdp both appear to use some of the same rdp libraries, so this
isn't a surprise). They drop after anywhere from a few seconds to a few
minutes of activity when connected to a Windows Server 2008 system, and
they do this regardless of if Network Manager or vpnc are in the
picture.
I guess I'll just file a Bugzilla report on this and then take things
from there.
Thanks for trying...
Chris
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
07-02-2012, 01:23 PM
Ed Greshko
Gnome-rdp (re-post)
On 07/02/2012 08:33 PM, Christopher A. Williams wrote:
> On Mon, 2012-07-02 at 13:15 +0800, Ed Greshko wrote:
>> On 07/02/2012 10:08 AM, Ed Greshko wrote:
>>> I can also tell you that I have installed Window 2003 Server and added the role of
>>> "Terminal Server". The Windows 2003 is running in a Virtual Box VM with the VM
>>> network adapter *Bridged* to the network adapter of meimei (F16).
> Didn't see this before. Your virtual switch configuration is different
> somewhat, as well as the hypervisor. We're running vSphere on this side
> of the equation and using standard vSwitches with a VLAN based port
> group for the VM network. That doesn't matter in this case because there
> isn't an issue with virtual switch configurations.
I'm just telling you my configuration.....
>
>> OK.... I have installed Windows 2008 Server in a VM. I simply did an "Enable
>> Remote Desktop" from the "Initial Configuration Tasks". I didn't "Add roles" since
>> that seemed not necessary according to the prompts when I started doing that.
>>
>> I only used IP addresses since I didn't want to put that system in my DNS.
>> 192.168.0.184 is the IP address it was assigned via DHCP.
>>
>> [egreshko@meimei ~]$ telnet 192.168.0.184 3389
>> Trying 192.168.0.184...
>> Connected to 192.168.0.184.
>> Escape character is '^]'.
>>
>> I then used Remmina on my F16 box (meimei) to connect. Everything worked 100%.
>>
>> So, to me, that confirms a configuration issue at your end.
> I must respectfully disagree. You confirmed that you can connect at
> least briefly to a Windows Server VM from inside a network, with no vpn
> in the picture.
I'm not sure what you mean by "briefly". I was connected the the remote system for
*hours* today. Yes, there was no VPN...and I thought that was part of the idea to
get rid of an extra layer.
You indicated that you've tried this inside of your network without a VPN and it
failed as well....
So.....
>
> I guess I'll just file a Bugzilla report on this and then take things
> from there.
>
> Thanks for trying...
>
Good luck....
I hope you don't "hold back" in your bugzilla. You may want to mention the fact
that you're able to connect....but that it dies after 5 minutes. That is another
piece of information which seem secret. :-) :-)
--
Never be afraid to laugh at yourself, after all, you could be missing out on the joke
of the century. -- Dame Edna Everage
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
07-02-2012, 01:57 PM
"Darryl L. Pierce"
Gnome-rdp (re-post)
On Sun, Jul 01, 2012 at 03:43:58PM -0600, Christopher A. Williams wrote:
> On Sun, 2012-07-01 at 22:56 +0800, Ed Greshko wrote:
> > On 07/01/2012 09:58 PM, Christopher A. Williams wrote:
> >
> > Look forward to hearing how your test without the VPN work out....
>
> OK - I was able to test inside the building today. Using my Linux (F17)
> laptop, and getting a DHCP assigned IP address. Ping works to all hosts
> normally, and I am also able to resolve all DNS host names as expected.
>
> RDP sessions still fail however. They either connect and hang after a
> few seconds, or they simply don't connect at all. It's exactly the same
> symptoms as when connected via the VPN. Clearly, there's some sort of
> issue with both gnome-rdp and Reminna.
If two separate apps are experience the same problem, then that tells me
it's not them but what they have in common (the server in this case)
might be the problem.
Can you connect to the RDP servers using a Windows box?
--
Darryl L. Pierce, Sr. Software Engineer @ Red Hat, Inc.
Delivering value year after year.
Red Hat ranks #1 in value among software vendors.
http://www.redhat.com/promo/vendor/
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
07-02-2012, 02:04 PM
Ed Greshko
Gnome-rdp (re-post)
On 07/02/2012 09:23 PM, Ed Greshko wrote:
> Good luck....
Oh, one more thing.....
I am sure this is not impressive..... But, I'm located in Taiwan. I have a vpn
account which places my system in Los Angles, CA.
I connected to the VPN using OpenVPN and NetworkManager (I've not had any problems
with it) and the following tunnel was created.
tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
inet addr:10.94.100.74 P-t-P:10.94.100.74 Mask:255.255.255.0
I enabled port forwarding on my router to transfer port 3389 to the internal Win2008
server.
I then used Remmina to create a connection to that system which goes from
Taiwan--->USA--->Taiwan.
And I have now been connect for 15+ minutes.
Oh, just to clarify, I said you had 2 issues. DNS and RDP....I never suggested they
were linked. Sorry if you misunderstood me.
--
Never be afraid to laugh at yourself, after all, you could be missing out on the joke
of the century. -- Dame Edna Everage
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
07-02-2012, 02:21 PM
Ed Greshko
Gnome-rdp (re-post)
On 07/02/2012 08:33 PM, Christopher A. Williams wrote:
> Thanks for trying...
Since you can't get it to work properly for you in any situation you've tried. And I
seem unable to get it to fail. I'll offer you the chance to connect to my Win2008
server over the internet if you like.
Just contact me off-line and I'll create an account and let you connect.
--
Never be afraid to laugh at yourself, after all, you could be missing out on the joke
of the century. -- Dame Edna Everage
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
07-02-2012, 02:24 PM
"Christopher A. Williams"
Gnome-rdp (re-post)
On Mon, 2012-07-02 at 22:04 +0800, Ed Greshko wrote:
> On 07/02/2012 09:23 PM, Ed Greshko wrote:
> > Good luck....
>
> Oh, one more thing.....
>
> I am sure this is not impressive..... But, I'm located in Taiwan. I have a vpn
> account which places my system in Los Angles, CA.
>
You're right, that's not impressive. I'm based in Denver. I connect via
vpn to systems in Bangalore, India (literally halfway around the globe
from me) for work all the time. Distance and country doesn't impress me
all that much, especially with connectivity available in today's
networks. I also regularly travel those kinds of distances in my
professional role.
> I connected to the VPN using OpenVPN and NetworkManager (I've not had any problems
> with it) and the following tunnel was created.
>
> tun0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00
> inet addr:10.94.100.74 P-t-P:10.94.100.74 Mask:255.255.255.0
>
> I enabled port forwarding on my router to transfer port 3389 to the internal Win2008
> server.
>
> I then used Remmina to create a connection to that system which goes from
> Taiwan--->USA--->Taiwan.
>
> And I have now been connect for 15+ minutes.
First, OpenVPN is different from vpnc. The only thing they have in
common is that they are both essentially plugins for Network Manager. I
wrote that there's an issue with vpnc.
> Oh, just to clarify, I said you had 2 issues. DNS and RDP....I never suggested they
> were linked. Sorry if you misunderstood me.
...Except that your diagnosis was wrong from the start, and I didn't
misunderstand you there. I wrote repeatedly that there was not a DNS
issue here and was supplying relevant information to show it. I think it
was you who misunderstood me. I mentioned I had two issues, but they are
Network Manager / vpnc and RDP. I never wrote that I had an issue with
DNS. You must have me confused with someone else (Lawrence, perhaps?)...
Glad rdp works for you. It doesn't on multiple systems over here,
running both F16 and F17, with default configurations. I suppose that
means you won't have anything to contribute to the BZ beyond "It works
on my system", which is number 2 on the 10 most common things developers
say when their software doesn't work. Number 1, but the way, is, "That's
weird..."
Chris
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
07-02-2012, 02:35 PM
Ed Greshko
Gnome-rdp (re-post)
On 07/02/2012 10:24 PM, Christopher A. Williams wrote:
> On Mon, 2012-07-02 at 22:04 +0800, Ed Greshko wrote:
>> On 07/02/2012 09:23 PM, Ed Greshko wrote:
>>> Good luck....
>> Oh, one more thing.....
>>
>> I am sure this is not impressive..... But, I'm located in Taiwan. I have a vpn
>> account which places my system in Los Angles, CA.
>>
> You're right, that's not impressive. I'm based in Denver. I connect via
> vpn to systems in Bangalore, India (literally halfway around the globe
> from me) for work all the time. Distance and country doesn't impress me
> all that much, especially with connectivity available in today's
> networks. I also regularly travel those kinds of distances in my
> professional role.
Cute.....
Going to have a "I've been to more places than you have" contest? :-)
I guess that means it is my turn to recount the adventures I had in India with
satellite links and trying to do LDAP directory replication to Kenya. :-) :-)
> First, OpenVPN is different from vpnc. The only thing they have in
> common is that they are both essentially plugins for Network Manager. I
> wrote that there's an issue with vpnc.
No kidding..... Of course they are "different". I just thought I'd mention it since
I have it working locally as well as "remotely".
>
>
>> Oh, just to clarify, I said you had 2 issues. DNS and RDP....I never suggested they
>> were linked. Sorry if you misunderstood me.
> ...Except that your diagnosis was wrong from the start, and I didn't
> misunderstand you there. I wrote repeatedly that there was not a DNS
> issue here and was supplying relevant information to show it. I think it
> was you who misunderstood me. I mentioned I had two issues, but they are
> Network Manager / vpnc and RDP. I never wrote that I had an issue with
> DNS. You must have me confused with someone else (Lawrence, perhaps?)...
I didn't confuse you with Lawrence. But since you seemed to be picking up where he
left off....
Maybe you have to fix his understanding of things. :-)
>
> Glad rdp works for you. It doesn't on multiple systems over here,
> running both F16 and F17, with default configurations. I suppose that
> means you won't have anything to contribute to the BZ beyond "It works
> on my system", which is number 2 on the 10 most common things developers
> say when their software doesn't work. Number 1, but the way, is, "That's
> weird..."
>
Like I mentioned.....
Since it does work for me ... and I'm using F16 ... and it doesn't work for you ...
and you are using F16 ... you can try connecting to my Win2008 Server system to see
if the symptoms for you are the same.
I'm always happy to try and recreate the failure. Just so happens I can't at the
moment. Post the bugzilla.... And try my system.... You may find something
interesting.
--
Never be afraid to laugh at yourself, after all, you could be missing out on the joke
of the century. -- Dame Edna Everage
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
07-02-2012, 02:36 PM
"Christopher A. Williams"
Gnome-rdp (re-post)
On Mon, 2012-07-02 at 09:57 -0400, Darryl L. Pierce wrote:
> > OK - I was able to test inside the building today. Using my Linux (F17)
> > laptop, and getting a DHCP assigned IP address. Ping works to all hosts
> > normally, and I am also able to resolve all DNS host names as expected.
> >
> > RDP sessions still fail however. They either connect and hang after a
> > few seconds, or they simply don't connect at all. It's exactly the same
> > symptoms as when connected via the VPN. Clearly, there's some sort of
> > issue with both gnome-rdp and Reminna.
>
> If two separate apps are experience the same problem, then that tells me
> it's not them but what they have in common (the server in this case)
> might be the problem.
>
> Can you connect to the RDP servers using a Windows box?
Yes - Windows 7 clients, both physical and virtual, do indeed connect
successfully (note that there are actually roughly 11 different Windows
servers we're dealing with internally). They can connect successfully
either locally inside the building or remotely when using the Cisco VPN
Client for Windows. We're using a traditional Cisco ipsec style VPN
configuration here. All connections, VPN and RDP, remain stable.
The Linux systems use the same VPN configuration profile as the Windows
boxes. In fact, I exported the configuration profile from a working
Windows 7 system and imported it for use on the Linux systems. So the
same configuration profile that works on the Windows machines fails on
Linux machines when using Network Manager / vpnc.
Further, our testing shows that, when using Linux systems inside the
building (and thus not using the VPN), the rdp sessions using either
Reminna or gnome-rdp will hang after a short time and sometimes fail to
connect at all.
Thus, my point there are apparently multiple issues at play: One with
Network Manager / vpnc, and the other with Reminna / gnome-rdp...
Chris
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
07-02-2012, 02:43 PM
Lawrence Graves
Gnome-rdp (re-post)
On 07/02/2012 08:36 AM, Christopher A. Williams wrote:
On Mon, 2012-07-02 at 09:57 -0400, Darryl L. Pierce wrote:
OK - I was able to test inside the building today. Using my Linux (F17)
laptop, and getting a DHCP assigned IP address. Ping works to all hosts
normally, and I am also able to resolve all DNS host names as expected.
RDP sessions still fail however. They either connect and hang after a
few seconds, or they simply don't connect at all. It's exactly the same
symptoms as when connected via the VPN. Clearly, there's some sort of
issue with both gnome-rdp and Reminna.
If two separate apps are experience the same problem, then that tells me
it's not them but what they have in common (the server in this case)
might be the problem.
Can you connect to the RDP servers using a Windows box?
Yes - Windows 7 clients, both physical and virtual, do indeed connect
successfully (note that there are actually roughly 11 different Windows
servers we're dealing with internally). They can connect successfully
either locally inside the building or remotely when using the Cisco VPN
Client for Windows. We're using a traditional Cisco ipsec style VPN
configuration here. All connections, VPN and RDP, remain stable.
The Linux systems use the same VPN configuration profile as the Windows
boxes. In fact, I exported the configuration profile from a working
Windows 7 system and imported it for use on the Linux systems. So the
same configuration profile that works on the Windows machines fails on
Linux machines when using Network Manager / vpnc.
Further, our testing shows that, when using Linux systems inside the
building (and thus not using the VPN), the rdp sessions using either
Reminna or gnome-rdp will hang after a short time and sometimes fail to
connect at all.
Thus, my point there are apparently multiple issues at play: One with
Network Manager / vpnc, and the other with Reminna / gnome-rdp...
Chris
I would greatly appreciate it if we would not get personal about this problem. If we spend more energy on solving the problem more people will benifit. Keep it real, please.
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
07-02-2012, 02:47 PM
Ed Greshko
Gnome-rdp (re-post)
On 07/02/2012 10:43 PM, Lawrence Graves wrote:
> I would greatly appreciate it if we would not get personal about this problem. If
> we spend more energy on solving the problem more people will benifit. Keep it real,
> please.
I've not see anyone getting personal. All in fun...
But, if you are in a situation where you can try...since you were the OP....I'll give
you access to my Win2008 server to try out over the internet. Just contact me offline.
It is nearly 11PM here....so I won't be able up much longer.
--
Never be afraid to laugh at yourself, after all, you could be missing out on the joke
of the century. -- Dame Edna Everage
--
users mailing list
users@lists.fedoraproject.org
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
Gnome-rdp (re-post)
