Ubuntu 14.04 can only access outside networks if using DHCP, not static IPs

dhcpstatic-ipUbuntuubuntu-14.04

I am configuring some server on Ubuntu Server 14.04 (no GUI) and I am have the following configuration:

auto lo
iface lo inet loopback


## Management network eth0
auto eth0
iface eth0 inet static
address 10.0.0.11
netmask 255.255.255.0
gateway 10.0.0.1
dns-nameservers 8.8.8.8 8.8.4.4

Unfortunately, when using this configuration I can only access the LAN, any attempt to ping or access anything outside of our network fails.

If I use DHCP and just take what ever IP address the router gives me, I can access internal and external networks. For testing sake I've been attempting to use "ping google.com" to test outside connectivity.

One other note, in the router if I bind the IP to the MAC Address it appears to work just fine, but I don't want these rules to live in my router, I'd much rather they be configured on the server.

Best Answer

What appears to be happening is that either your router is not getting the MAC address of your machine's NIC, or your NIC is not getting the MAC address of the router. To verify this, you might want to dump the mac table on both. In Linux you can do arp -an to verify.

The next question is why, and why does it work at all (i.e. why are local IPs pingable). I have two ideas, neither of which fit perfectly:

Your static configuration is wrong. For instance, it's the wrong gateway IP, the wrong subnet mask, or whatever. Stuff often works when it shouldn't as Linux is particularly keen to use proxy-arp. I know you say you've checked this, but I've been in the situation before where I've checked things twice, and they've still been typo'd. So I include this for completeness. It would be useful to post the output of ip route show and ip addr show (as opposed to just the configuration files) to verify they are the same for dhcp and static. This will check your configuration file is being parsed correctly.
Your router or your switch is 'trying to be clever'. For instance, the router may have a feature to attempt to stop people stealing IP addresses by blocking IP traffic for IP addresses in the pool that it has not handed out; to fix this, turn the feature off, or use an IP address outside the pool. Equally the switch may be using DHCP snooping which will have the same effect; either whitelist the IP, or turn it off.

Related Solutions

Networking – Use Specific Interface for Outbound Connections on Ubuntu 9.04

You should only have one default gateway. If you remove the gateway line from eth1, it'll all just work (after networking is restarted).

Ubuntu – Setting up a static IP address (public) in Ubuntu

You are missing a default route.

In ubuntu, you'll need:

 gateway <IP of default route>

Here is /etc/network/interfaces on my system (with a private IP, but there is no difference):

auto eth0
iface eth0 inet static
    address 10.22.16.2
    netmask 255.255.255.0
    network 10.22.16.0
    broadcast 10.22.16.255
    gateway 10.22.16.1
    # dns-* options are implemented by the resolvconf package, if installed
    dns-nameservers 10.21.1.21
    dns-search example.com

Best Answer

Related Solutions

Networking – Use Specific Interface for Outbound Connections on Ubuntu 9.04

Ubuntu – Setting up a static IP address (public) in Ubuntu

Related Topic