A.3 Troubleshooting a Linux Access Gateway Appliance Installation

This section contains the following troubleshooting scenarios for Linux Access Gateway:

A.3.1 Some of the New Hardware Drivers or Network Cards Are Not Detected during Installation

Sometimes, the installation of the Access Gateway Appliance fails if some of the hardware drivers or network cards are not detected. If this happens, you must upgrade the hardware drivers manually as follows:

  1. Start the installation of the Linux Access Gateway. See Section 6.0, Installing the Linux Access Gateway Appliance.

  2. Select Kernel Module (Hardware Driver) in the main menu, then click OK.

  3. Select Add Driver Update, then click OK.

  4. Select the driver update medium. The driver update medium can be CD-ROM or floppy disk. Click OK. The hardware driver is updated.

  5. Continue with the Linux Access Gateway installation.

A.3.2 After Reinstalling the Access Gateway, SSL Fails

Sometimes after installing an existing Access Gateway, the gateway starts before the SSL certificates are sent to the gateway. When this happens, you need to trigger an update so that the newest configuration is sent to the Access Gateway.

  1. In the Administration Console, click Auditing > Troubleshooting.

  2. Scroll to the Current Access Gateway Configurations section, select the reinstalled Access Gateway, then click Re-push Current Configuration.

A.3.3 Reverting to an Earlier Snapshot of the Access Gateway Appliance Can Cause Multiple Crashes

If you are using a VM environment such as ESXi 4.0, reverting to an earlier snapshot of the Access Gateway Appliance can result in multiple crashes after the server is restarted with the older snapshot.

To work around the issue:

  1. Revert to the earlier snapshot.

  2. Clear the cache:

    rm /var/novell/.~newInstall

  3. Restart novell-vmc: 

    /etc/init.d/novell-vmc restart

A.3.4 Manually Configuring a Network Interface

If you have configured a network interface during installation and it is not showing up, you can configure it manually through the command line interface (CLI).

NOTE:If Linux Access Gateway is not imported, modifications to the Linux Access Gateway configuration should be done through nash. If the Linux Access Gateway is already imported, any modifications to the configuration should be done through the Administration Console.

Before you begin, make sure you have rebooted the system after installation.

  1. Log in as root.

  2. At the command prompt, enter the following command:

    nash

  3. At the nash shell prompt, run the following command to enter the configuration mode:

    configure .current

  4. To display the current IP address for the eth0 network card, enter the following:

    show interface eth0

  5. To change the IP address of eth0, enter the following:

    interface eth0

  6. To replace the IP address of eth0, enter the following command:

    replace <current IP address> with <IP address/netmask>

    Replace <IP address/netmask> with the IP address of the network interface card and the subnet mask. For example:

    replace 10.0.0.1 with 12.1.1.1/23

    IMPORTANT:Do not use the interface eth0 no <ip_address> command to remove the IP address. Always use the above command.

  7. To return to the configuration mode, enter the following command:

    exit

  8. To save the configuration, enter the following command:

    save .current

  9. For the configuration to take effect, enter the following command:

    apply

  10. To exit from the configuration mode, enter the following command:

    exit

  11. To exit from the nash shell, enter the following command:

    exit

A.3.5 Manually Setting and Deleting the Default Gateway

NOTE:If Access Gateway Appliance is not imported, modifications to the Access Gateway Appliance configuration should be done through nash. If the Access Gateway Appliance is already imported, any modifications to the configuration should be done through the Administration Console.

  1. Log in as root.

  2. At the command prompt, enter the following shell command:

    nash

  3. At the nash shell prompt, run the following command to enter the configuration mode: configure .current

  4. To set up the default gateway IP address, enter the following command:

    ip route 0.0.0.0/0 <gateway_IP_address> 1

    Replace <gateway_IP_address> with the IP address of your gateway server.

  5. To delete the default gateway IP address, enter the following command:

    no ip route 0.0.0.0/0 <gateway_IP_address> 1

    Replace <gateway_IP_address> with the IP address of your gateway server.

  6. To save the configuration, enter the following command:

    save .current

  7. For the configuration to take effect, enter the following command:

    apply

  8. To exit from the configuration mode, enter the following command:

    exit

  9. To exit from the nash shell, enter the following command:

    exit

A.3.6 Manually Configuring the Hostname, Domain Name, and DNS Server

  1. At the command prompt, enter the following shell command:

    nash

  2. At the nash shell prompt, run the following command to enter the configuration mode: configure .current

  3. Configure the domain name and hostname.

    1. To set up the domain name, enter the following command:

      ip domain-name <domain_name>

      Replace <domain_name> with the domain name for this network interface card.

    2. To set up the hostname, enter the following command:

      hostname <host_name>

      Replace <host_name> with the hostname of the Linux Access Gateway machine.

    3. If the hostname is not resolvable using an external DNS server, use the following command to add the hostname and IP address mapping to the /etc/hosts file:

      hosts <ip-address><host_name>

      Replace <ip_address> with the IP address of this Access Gateway machine. Replace <host_name> with the computer name for this Access Gateway machine.

    4. To set up the DNS server, enter the following command:

      ip name-server <DNS_IP_address>

      Replace <DNS_IP_address> with the IP address of your DNS server.

  4. To save the configuration, enter the following command:

    save .current

  5. For the configuration to take effect, enter the following command:

    apply

  6. To exit from the configuration mode, enter the following command:

    exit

  7. To exit from the nash shell, enter the following command:

    exit

  8. You must exit from the bash shell for configuration changes to hostname, domain name and DNS server to take effect. To exit from the bash shell, enter the following command:

    exit

  9. Enter the following command to log in again:

    root

  10. To manually import the Linux Access Gateway to the Administration Console, enter the following command from the bash prompt:

    /chroot/lag/opt/novell/bin/lagconfigure.sh

A.3.7 Verifying Component Installation

  1. Check the install logs (inst_component-name_date_time.log) at the following location:

    /tmp/novell_access_manager

    • For logs on RPM installation and network configuration, see /tmp/novell_access_manager/inst_lag.log

    • For logs on configuration and import during installation, see /tmp/novell_access_manager/inst_lag_import_<timestamp>.log

    • For all the re-import logs generated while running lagconfigure.sh manually, see /tmp /novell_access_manager/lag_import.log

    • For all the upgrade logs, see /tmp/novell_access_manager/upgr_lag_<time stamp>.log

    For more information on collecting logs, see Access Gateway Logs in the Novell Access Manager 3.1 SP2 Access Gateway Guide.

  2. If the logs contain errors, send the logs to Novell Support.

A.3.8 Signature Error in SLES 11 Network Mode of Installation

When you try to install the SUSE Linux Enterprise Server (SLES) 11 Linux Access Gateway ISO over the network by using the SLES 11 bootable CD, you get a signature error.

To workaround this issue, use the SLES11 Linux Access Gateway bootable DVD.