Any device does not obtain ip address from hotspot

Bulakh · December 20, 2021, 11:16am

The problem is described in the title. I have the second OS (Win 10) and all works fine.
I set up the connection with the network manager.

JulinaB · December 20, 2021, 3:32pm

A bit of detail as to what you actually did would help.

Also you could try assigning a static IP and DNS servers and see if you get any connection that way.

Bulakh · December 21, 2021, 11:55am

I try to share the internet on my computer (lan) to other devices (e.g., phones, computers) over wifi, using the standard suggesting settings in the network manager. Today I have found out that all works fine if I stop firewalld service. Thus, my issue is related to the firewall. I set the wifi interface to internal. Also, I should add some services to ‘allowed’ in the zone settings. But I don’t know which ones. Could you help?

Bulakh · December 21, 2021, 3:08pm

Sorry, I was wrong. Indeed, my phone connects to the access point if firewalld is stopped, but there is no Internet anyway.

arvidjaar · December 21, 2021, 8:03pm

I do not know what is standard here. You should really describe your settings.

Could you help?

You provided near to zero information about your setup, so it is rather hard to make any concrete suggestion.

In general, your system should enable forwarding, it should be configured as default gateway for your wifi clients and your firewall should allow forwarding between lan and wifi interfaces. Most likely you also need to enable; masquerading on LAN interface (or configure routing to network behind wifi in your upstream router).

If you system is also DHCP server for your wifi clients, firewall should at least enable DHCP requests on wifi interface.

Alternatively it may be possible to bridge lan and wifi thus basically eliminating routing at all.

What exactly does it mean?

Bulakh · December 22, 2021, 12:53pm

There are my "standard’ settings on screenshots below:
https://i.postimg.cc/5YH1mCbZ/Screenshot-20211220-120143.png](https://postimg.cc/5YH1mCbZ) https://i.postimg.cc/BtK4LHhF/Screenshot-20211220-120218.png](https://postimg.cc/BtK4LHhF) https://i.postimg.cc/hfRg9vw5/Screenshot-20211220-120235.png](https://postimg.cc/hfRg9vw5) https://i.postimg.cc/MMhw3pGX/Screenshot-20211220-120254.png](https://postimg.cc/MMhw3pGX)

Bulakh · December 22, 2021, 1:31pm

I have just set up the hotspot on another computer under leap 15.2 following the screenshots from the previous message. There is no problem with connection or internet. I have done nothing more than indicated on screenshots.

arvidjaar · December 22, 2021, 1:39pm

Please do not post links to commercial web hosting with advertisements. We have https://susepaste.org/ for that.

Anyway - NetworkManager connection sharing should setup everything needed. Most likely when you stop firewalld it removes masquerading rules added by NetworkManager (and it may have reset forwarding). Try to completely disable firewalld and reboot - does connection sharing work after reboot?

pier_andreit · December 22, 2021, 8:20pm

I had the same problem also with 15.2 and 15.3 but only by cable, the workaround for me is to switch off the pc, reboot by software the router, wait the reboot is complete, reboot the pc

Bulakh · December 23, 2021, 2:34pm

I disabled firewalld, rebooted and turned on the hotspot. My phone connected to the hotspot and the internet without any problem.
After that, I enabled and started the firewalld while the hotspot was working. The internet on the phone disappeared at once.
I restarted the NetworkManager service, tried to turn on the hotspot again and got the error “IP configuration was unavailable”.

Bulakh · December 23, 2021, 3:15pm

If I change the method in “IPv6” Tab from “Ignored” to “Automatic”, the hotspot turns on without the error but the phone does not obtain the IP.

arvidjaar · December 23, 2021, 5:14pm

OK, this confirms it. Could you please reboot with firewalld disabled and post output of

iptables -L -n -v 
iptables -L -n -v -t nat
nft list rulest

Output may be long, better upload to https://susepaste.org/

Bulakh · December 24, 2021, 9:23am

I disabled the firewalld and rebooted. The output can be found by the link:
https://susepaste.org/63050134

arvidjaar · December 24, 2021, 4:37pm

So to repeat the same settings with firewalld you would need to

enable masquerading on external interface
enable forwarding from internal to external interface
allow DHCP and DNS on internal interface

Assuming you are using firewalld zone “external” for external interface and “internal” for internal interface it would be something like

firewall-cmd --permanent --zone=external --add-masquerade
firewall-cmd --permanent --new-policy nm-conn-share
firewall-cmd --permanent --policy=nm-conn-share --add-ingress-zone=internal
firewall-cmd --permanent --policy=nm-conn-share --add-egress-zone=external
firewall-cmd --permanent --zone=internal --add-service=dhcp
firewall-cmd --permanent --zone=internal --add-service=dns
firewall-cmd --reload

It is less restrictive than configuration built by NetworkManager, but as long as you have only two interfaces, and just one subnet on your wifi, it should be functionally equivalent.

Bulakh · December 31, 2021, 10:27am

Thank you very much. I followed your instructions and my hotspot works as it should at last.