Re: NetworkManager from command line

From: Dan Williams <dcbw redhat com>
To: Mohan Sfo <mohansfo yahoo com>
Cc: "networkmanager-list gnome org" <networkmanager-list gnome org>
Subject: Re: NetworkManager from command line
Date: Tue, 15 Nov 2011 11:45:42 -0600
On Sat, 2011-11-05 at 17:30 -0700, Mohan Sfo wrote:
> 
> Dan, you have amazing energy. Please ignore whatever I said earlier  as I reimaged the box to Fedora 15.  :-)    I have wasted the whole day on NetworkManager. config: 
> 2.6.38.6-26.rc1.fc15.x86_64
> NetworkManager-0.9.1.90-3.git20110927.fc15.x86_64
> 
> 
> I have the following problems currently:
> 1) When I boot, by default eth0 not coming up.  I need to type at console "nmcli con up ..."    How do I fix it?

Look in /etc/sysconfig/network-scripts/ifcfg-eth0 and see if
"ONBOOT=no".  If so, change it to "yes".

> 2) This is a headless machine. If I start vncviewer (remote connection) under a non-root account, why does it not let me define a PPTP VPN? The place to put in gateway etc is greyed out.  I had to do it as root. But, if I am logged on to the machine locally without root, it lets me do it via X.  Can you please explain the security going on here?

D-Bus (which is how things talk to NetworkManager) has a way to restrict
who can talk to networking, and that mechanism is called "at_console".
If you're not at_console then usually most operations are not available
because it may be a security risk.  at_console is determined
from /var/run/console which is in turn managed by pam_console I believe.
So if PAM thinks you're at_console then D-Bus will too.

> 
> 
> 3) [Ubuntu 10.10] I read the source code for NetworkManager.  It looks like I cannot setup a PPTP VPN via NetworkManager if I setup my network manually via wvdial. Is that right?  The reason I setup manually is that UML290 does not work properly in NetworkManager and sometimes it works in wvdial. :-)   This device and the service is a crappy one even in good coverage. So is the Windows software that the telecom provider  provides. Yuckiest software I deal with.  Any ideas on how to reverse engineer the software?  It does not use the typical modem devices.

The UML290 will work with NM in CDMA/3G mode, but you most likely have
to use the tool here http://www.evdoinfo.com/content/view/3492/64/ to
force it to 3G/HRPD instead of eHRPD.  But that's just the 3G
connection, and doesn't have anything to do with PPTP.  I did just spend
a whole day doing more reverse engineering of the WMC protocol that the
UML290 uses so there is hope that we'll get it working natively with
seamless handoff between EVDO and LTE in the near future.

http://cgit.freedesktop.org/ModemManager/ModemManager/log/

Dan


> 
> Regards,
> Mohan
> 
> #cat /etc/NetworkManager/NetworkManager.conf 
> [main]
> plugins=ifcfg-rh,keyfile
> #cat /etc/sysconfig/network-scripts/ifcfg-eth0
> DEVICE=eth0
> BOOTPROTO=static
> IPADDR=1.1.1.1
> NETMASK=255.255.255.0
> ONBOOT=yes
> DNS1=8.8.8.8
> DNS1=8.8.4.4
> 
> NM_CONTROLLED=yes 
> 
> #Below is the wvdial.conf:
> #cat /etc/wvdial.conf
> [Dialer Defaults]
> Phone = 
> Username = 
> Password = 
> New PPPD = yes
> 
> [Dialer Defaults]
> Init1 = ATZ
> Init2 = ATQ0 V1 E1 S0=0 &C1 &D2 +FCLASS=0
> #Init3 = AT+CGDCONT=3,"IPV4V6","vzwinternet","0.0.0.0",0,0
> Modem Type = USB Modem
> Stupid Mode = 1
> New PPPD = yes
> Dial Command = atdt
> Carrier Check = no
> ISDN = 0
> 
> [Dialer Verizon4GLTE]
> Modem = /dev/ttyACM0
> #Baud = 100000000
> Baud = 230400
> Phone = *99***3#
> Username = 8581111222 vzw4g com
> Password = vzw
> 
> [Dialer Verizon3g]
> Modem = /dev/ttyACM0
> Baud = 3100000
> Phone = #777
> Username = 8581111222 vzw4g com
> Password = vzw
> 
> 
> 
> Thanks!
> 
> 
> 
> 
> ________________________________
> From: Dan Williams <dcbw redhat com>
> To: Mohan Sfo <mohansfo yahoo com>
> Cc: "networkmanager-list gnome org" <networkmanager-list gnome org>
> Sent: Wednesday, November 2, 2011 9:17 PM
> Subject: Re: NetworkManager from command line
> 
> On Wed, 2011-11-02 at 16:10 -0700, Mohan Sfo wrote:
> > All,
> > 
> > 
> > Two issues in this mail.
> > 
> > 
> > 1) Trouble starting VPN via "nmcli con up uuid"
> > 
> > 
> > 2) "nmcli con" not showing a connection setup via nm-applet under
> > vncserver.  I typed nmcli both as root and regular user. Why?
> > Presumably some permission is failing. How do I fix it?
> > 
> > 
> > 
> > Reg 1: 
> > 
> > Dan, Thanks.  I did what you said.  It is not working, with
> > NetworkManager thinking there is no network connectivity.  I
> > definitely have network connectivity as I am able to ping Google.
> > But, NetworkManager is not understanding it.  This network
> > connectivity is coming up at startup on eth0 due to legacy Redhat
> > scripts (/etc/sysconfig/network-scripts/ifcfg-eth0). When I do
> 
> Can you paste in your /etc/sysconfig/network-scripts/ifcfg-eth0?  Also
> check and  make sure that NM_CONTROLLED=yes in that file.
> 
> Dan
> 
> > 
> > nmcli con up uuid <uuid>
> > 
> > 
> > I get this error: Error: No suitable device found: no active
> > connection or device.
> > 
> > 
> > How do I get NetworkManager to realize there is a connection or
> > override it's connection availability checking?
> > NetworkManager-0.8.4-1.fc14.i686
> > 
> > 
> > 
> > Can you help?  Thanks.
> > 
> > 
> > NetworkManager.conf reads:
> > [main]
> > plugins=ifcfg-rh,keyfile
> > 
> > 
> > 
> > --Mohan
> > 
> > 
> > 
> > ______________________________________________________________________
> > From: Dan Williams <dcbw redhat com>
> > To: Mohan Sfo <mohansfo yahoo com>
> > Cc: "networkmanager-list gnome org" <networkmanager-list gnome org>
> > Sent: Friday, September 30, 2011 1:35 AM
> > Subject: Re: NetworkManager from command line
> > 
> > On Tue, 2011-09-20 at 14:11 -0700, Mohan Sfo wrote:
> > > 
> > > 
> > > Hi all,
> > > 
> > > 
> > > 
> > > 
> > > Could you show me how to setup a PPTP VPN via  NetworkManager via
> > > command line? What files need to be edited, what commands need to be
> > > run?
> > 
> > At the moment, VPN connections can be configured manually by editing
> > 'keyfile' connection files in /etc/NetworkManager/system-connections.
> > A
> > sample PPTP keyfile is as follows:
> > 
> > [connection]
> > id=Sample PPTP
> > uuid=2b88c363-f97e-4e76-9ee6-8b9bb136e75b
> > type=vpn
> > autoconnect=false
> > 
> > [vpn]
> > service-type=org.freedesktop.NetworkManager.pptp
> > gateway=1.1.1.1
> > user=dcbw
> > password=myspace
> > 
> > [ipv4]
> > method=auto
> > 
> > You can change various other options.  One way to do that is to run
> > nm-connection-editor on a machine with a GUI and set up the
> > connection,
> > then copy the connection file when you've got it set up right.
> > 
> > Dan
> > 
> > > 
> > > Also, does it allow any user who logged in to modify the network
> > > configuration? Is there a way to restrict who can modify the
> > network?
> > > I was very susprised that a non-root user was able to change routing
> > > parameters.
> > > 
> > > 
> > > 
> > > 
> > > 
> > > Thanks,
> > > Mohan
> > > _______________________________________________
> > > networkmanager-list mailing list
> > > networkmanager-list gnome org
> > > http://mail.gnome.org/mailman/listinfo/networkmanager-list
> > 
> > 
> > 
> > 
> >
References:
- Re: NetworkManager from command line
  - From: Mohan Sfo
- Re: NetworkManager from command line
  - From: Dan Williams
- Re: NetworkManager from command line
  - From: Mohan Sfo
[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]