windows 7 - What is wrong if some network traffic is only working out of a bridged VM but not on the host OS?
2014-04
Martin
I'm in the situation that IMAP/SSL connections from my PC to all imap servers are failing on my PC. (more details there)
After experimenting, I have now established that:
- On the Win7 64bit host,
imaps/993outgoing connections simply fail. (httpsworks fine though) - On the XP Mode VM,
imaps--- works, when using bridged networking
- also fails when using NAT networking
On which "layer" in my Windows system should I start looking for the problem?
Things I tried:
- Disabling (but not yet uninstalling) AV/firewall
- Disabling the filter driver of the AV in the Interface settings
- Disabling running stuff (as much as I could find, from printer tools to updater services, to ...)
Martin
Theory: If only the bridged networking works, then a software component on the host OS is messing up the traffic.
Confirmed: Uninstalling the AV software (ESET Smart Security 5) fixed the problem. (I then re-installed the newer version 7, and the problem has not reappeared.)
G Koe
The "problem" is that using Network Address Translation in Microsoft Virtual PC is firewalling your VM.
Did SSL connections to your VM ever work behind a NAT? It has always been like that with VPC. NAT is a quick and easy way to get Internet access, but it does not give you local networking. Use normal networking and let your vm get its network config the same way as the host OS does. Scroll to the bottom for other workarounds!
Here's a full explanation: The main difference between this and the bridge mode is that the guest is behind the NAT and it does not have a unique identity in the external network. It supports all connections which uses TCP/IP. Connecting using the bridge mode networking requires separate IP Address for the guest, thus in situations where there is a shortage of IP addresses, connecting using NAT is a valuable option. This option should also be used in cases when you don’t want to directly connect to an external network and remain behind this NAT. This acts as a strong firewall which protects the guest from outside attacks.
There are certain limitations while connecting using NAT. If the payload contains the source IP Address, then it may break as the IP address is replaced with the host but the payload will still contain the guest IP address. Also connecting via VPN from inside the guest is not supported. Some VPN requires raw sockets to be opened, which needs admin privileges to successfully open these sockets, whereas WVPC application runs in the user context. Applications using TCP/IP like Internet Browsing, messenger, shared access, etc. will work when connected using NAT. It is recommended to connect using the bridge mode when the guest needs to use VPN, or incoming connections.
Consider using the virtual switch options included in VPC: Use Virtual Switch networking to help you perform advanced networking functions on a Virtual PC guest PC. Networking features and functions that require Virtual Switch networking include the following:
Server software that uses predefined port numbers
Remote logon
Network performance analysis
Remote shells
When you configure your guest PC Networking settings to use the Virtual Switch option, you have the following routing options:
- Local only. The guest PC does not send or receive information to or from the host PC. The guest PC does not send or receive information over your network. This setting can be useful for testing network protocols.
- Local and host. The guest PC sends and receives information over your network. In this case, the guest PC appears and behaves like any physical computer on your network.
- Local, host and external. This is the default setting. The guest PC can send and receive information on the network by using the network adapter that is configured in the Virtual Switch settings in Virtual PC Preferences. The guest PC can also do this with other guest PCs and with the host PC. In this case, the guest PC appears and behaves like any physical computer on your network, and therefore it can communicate with the host PC.
- External Only. Other guest PCs and the host PC do not receive information directly from the guest PC. Network information is sent and received on the network through the network adapter that is configured in the Virtual Switch settings in Virtual PC Preferences. This setting is useful for testing without affecting your host or your other guests.
To configure Virtual Switch networking options:
- In the Virtual PC window, click the guest PC that you want to configure, and then click Settings.
- Under PC Settings, click Networking.
- Under Networking, click Virtual Switch, click the option that you want to use, and then click OK.
user26104
Does anybody have the step by step configuration process that would allow VirtualBox running a Linux/Ubuntu guest on a Mac OS X host use the bridge type network using Ethernet and wireless? I have read that it does work and it doesn't work, trying to find a definite answer. I want the guest environment to look like a separate box.
Thanks
Greg K
I have a bridge network working on OSX with a Ubuntu guest VM. You need a network connection for this to work. I have my nic configured via DHCP in OSX and then I statically assigned the guest eth0 an IP on the same subnet.
With this set up I could SSH to my Ubuntu guest; with entries in /etc/hosts on OSX I was able to access internal domains I'd set up in apache on the Ubuntu guest.
I simply installed Ubuntu, in the VM settings, set the adapter to a bridge connection. Boot Ubuntu and be sure to configure /etc/network/interfaces
Mine looks like this:
auto eth0
iface eth0 inet static
address 192.168.0.20
netmask 255.255.255.0
network 192.168.0.0
broadcast 192.168.0.255
gateway 192.168.0.1
OSX would pick up an IP address on the same subnet (e.g. 192.168.0.102), I could see the guest from the host just fine.
ssh 192.168.0.20
Hope this helps.
I'm struggling to get host-only networking set up so I can communicate with the guest VM without an active internet connection.