Netcfg

From ArchWiki

From the netcfg man page:

netcfg is used to configure and manage network connections via profiles. It has pluggable support for a range of connection types, such as wireless, ethernet, ppp. It is also capable of starting/stopping many to one connections, that is, multiple connections within the same profile, optionally with bonding.

netcfg is useful for users seeking a simple and robust means of managing multiple network configurations (e.g. laptop users). For systems connecting to a single network, the network daemon may be more appropriate.

Preparation

In the simplest cases, users must at least know the name of their network interface(s) (e.g. eth0, wlan0). If configuring a static IP address, gateway and name server addresses must also be known.

If connecting to a wireless network, have some basic information ready. For a wireless network this includes what type of security is used, the network name (SSID), and any password or encryption keys. Additionally, ensure the proper drivers and firmware are installed for the wireless device, as described in Wireless Setup.

Installation

Ensure you have the latest version of netcfg installed. Older versions have more bugs and may not work well with the latest drivers. The netcfg package is available in core:

# pacman -S netcfg

As of version 2.5.x, optional dependencies include wpa_actiond – required for automatic/roaming wireless connection – and ifplugd – required for automatic ethernet configuration. (More information.)

# pacman -S wpa_actiond ifplugd

Configuration

Network profiles are stored in the /etc/network.d directory. To minimize the potential for errors, copy an example configuration from /etc/network.d/examples to /etc/network.d/mynetwork. The file name is the name of the network profile ("mynetwork" is used as an example throughout this article). The name is not a network setting and does not need to match the wireless network name (SSID).

Depending on the connection type and security, use one of the following examples from /etc/network.d/examples as a base. Be wary of examples found on the Internet as they often contain deprecated options that may cause problems.

Next, modify the new configuration file, /etc/network.d/mynetwork:

• Set INTERFACE to the correct wireless or ethernet interface. This can be checked with ifconfig and iwconfig.
• Ensure the ESSID and KEY (passphrase) are set correctly for wireless connections. Typos in these fields are common errors.
  • Note that WEP string keys (not hex keys) must be specified with a leading s: (e.g. KEY="s:somepasskey").

Usage

To connect a profile:

# netcfg mynetwork

To disconnect a profile:

# netcfg down <profile-name>

If successful, users can configure netcfg to connect automatically or during boot. If the connection fails, see #Troubleshooting for solutions and how to get help.

For other functions, see:

$ netcfg help

Connecting automatically

Several methods are available to users wanting to automatically connect network profiles (e.g. during boot or whilst roaming). Note that a network profile must be properly configured within the /etc/network.d directory first (see #Configuration).

net-profiles

net-profiles allows users to connect profiles during boot.

To enable this feature, users must add net-profiles to the DAEMONS array in rc.conf and specify profiles to try in the NETWORKS array:

NETWORKS=(mynetwork yournetwork)

...

DAEMONS=(... net-profiles ...)

Alternatively, net-profiles can be configured to display a menu – allowing users to choose a desired profile – by setting the contents of the NETWORKS array to menu:

NETWORKS=(menu)

...

DAEMONS=(... net-profiles ...)

Additionally, the dialog package is required.

net-auto-wireless

net-auto-wireless allows users to automatically connect to wireless networks with proper roaming support.

To enable this feature, users must add net-auto-wireless to the DAEMONS array in rc.conf and specify the desired wireless interface with the WIRELESS_INTERFACE variable:

WIRELESS_INTERFACE="wlan0"

...

DAEMONS=(... net-auto-wireless ...)

Additionally, the wpa_actiond package is required.

net-auto-wired

net-auto-wired allows users to automatically connect to wired networks.

To enable this feature, users must add net-auto-wired to the DAEMONS array in rc.conf and specify the desired wired interface with the WIRED_INTERFACE variable:

WIRED_INTERFACE="eth0"

...

DAEMONS=(... net-auto-wired ...)

Additionally, the ifplugd package is required.

Tips and tricks

Passing arguments to iwconfig before connecting

Simply add the following to a profile:

IWCONFIG="<arguments>"

Where <arguments> can be any valid iwconfig argument. The script then runs iwconfig $INTERFACE $IWCONFIG.

For example, force the card to register to a specific access point given by MAC address:

IWCONFIG="ap 12:34:56:78:90:12"

This supersedes the IWOPTS and WEP_OPTS options which were incompletely implemented.

rfkill (enable/disable radio power)

netcfg can enable/disable radio for wireless cards equipped with software control of radio. For wireless cards with hardware switches, netcfg can detect disabled hardware switches and fail accordingly.

To enable rfkill support, you need to specify what sort of switch the wireless interface has; hardware or software. This can be set within a profile or at the interface level (/etc/network.d/interfaces/$INTERFACE; see #Per-interface configuration).

RFKILL=soft # can be either 'hard' or 'soft'

For some kill switches the rfkill entry in /sys is not linked to the interface and the RFKILL_NAME variable needs to be set to the contents of the matching /sys/class/rfkill/rfkill#/name.

For example, on an Eee PC:

RFKILL=soft
RFKILL_NAME='eeepc-wlan'

Execute commands before/after interface up/down

If your interface requires special actions prior/after the establishment/closure of a connection, you may use the PRE_UP, POST_UP, PRE_DOWN, and POST_DOWN variables.

For example, if you want to configure your wireless card to operate in ad-hoc mode but you can only change modes when the interface is down, you could use something like this:

PRE_UP="ifconfig wlan0 down; iwconfig wlan0 mode ad-hoc"

Or if you want to mount your network shares after a successful connection, you could use:

POST_UP="sleep 5; mount /mnt/shares/nexus/utorrent 2>/dev/null"

Per-interface configuration

Configuration options that apply to all profiles using an interface can be set using /etc/network.d/interfaces/$INTERFACE. For example:

/etc/network.d/interfaces/wlan0

This is useful for wpa_supplicant options, rfkill switch support, pre/post up/down scripts and net-auto-wireless. These options are loaded before profiles so that any profile-based options will take priority.

/etc/network.d/interfaces/$INTERFACE may contain any valid profile option, though you are likely to use PRE_UP/DOWN and POST_UP/DOWN (described in the previous section) or one of the options listed below. Remember that these options are set for all profiles using the interface; you probably do not want to connect to your work VPN here, for instance, as it will try to connect on every wireless network!

WPA_GROUP   - Setting the group of the wpa_ctrl interface
WPA_COUNTRY - Enforces local regulatory limitations and allows use of more channels
WPA_DRIVER  - Defaults to wext, may want nl80211 for mac80211 devices

Output hooks

netcfg has limited support to load hooks that handle output. By default it loads the arch hook which provides the familiar output that you see. A syslog logging hook is also included. These can be found at /usr/lib/network/hooks.

ArchAssitant (GUI)

A Qt-based netcfg front-end called ArchAssistant exists. It proposes to manage and connect/disconnect profiles from a systray icon. Automatic wireless detection is also available. This tool is particularly useful for laptop users.

Links:

• archassistant in the AUR
• archassistant on kde-apps.org
• archassistant package on archlinux.fr: i686 and x86_64

There is also a relatively new GUI for netcfg2 on qt-apps.org that does only network configuration. You can find it here.

wifi-select

There is a console tool for selecting wireless networks in "real-time" (in NetworkManager manner) called wifi-select. The tool is convenient for use in Internet cafés or other places you are visiting for the first (and maybe the last) time. With this tool, you do not need to create a profile for a new network, just type sudo wifi-select wlan0 and choose the network you need.

The tool is currently packaged and available in [community] repository. To install:

# pacman -S wifi-select

wifi-select does the following:

• parses iwlist scan results and presents list of networks along with its security settings (WPA/WEP/none) using dialog
• if user selects network with existing profile -- just use this profile to connect with netcfg
• if user selects a new network (for example, WiFi hotspot), wifi-select automatically generates new profile with corresponding $SECURITY and asks for the key (if needed). It uses DHCP as $IP by default
• then, if connection succeeds, profile is saved for later usage
• if connection fails, user is asked if he/she wants to keep generated profile for further usage (for example to change $IP to static or adjust some additional options)

Links:

• Forum thread related to development of wifi-select
• wifi-select in the AUR
• wifi-select Mercurial repository

Troubleshooting

Debugging

To run netcfg with debugging output, set the NETCFG_DEBUG environment variable to "yes", for example:

# NETCFG_DEBUG="yes" netcfg <arguments>

Debugging information for wpa_supplicant can be logged using WPA_OPTS within a profile, for example:

WPA_OPTS="-f/path/to/log"

Whatever is entered here will be added to the command when wpa_supplicant is called.

Network unavailable

This error is typically due to:

• Out of range
• Driver issue
• Trying to connect to a hidden network

If you know your network is hidden, set:

SCAN=no 

Wireless association failed

This error is typically due to:

• Out of range/reception
• Incorrect configuration
• Invalid key
• Driver problem

If it is a range problem, increasing TIMEOUT can help.

Unable to get IP address with DHCP

This error is typically due to:

• Out of range/reception

Try increasing DHCP_TIMEOUT.

Not a valid connection, check spelling or look at examples

You must set CONNECTION to one of the connection types listed in the /usr/lib/network/connections directory. Alternatively, use one of the provided configuration examples in /etc/network.d/examples.

Driver quirks

Some drivers behave oddly and need workarounds to connect. Quirks must be enabled manually. They are best determined by reading the forums, seeing what others have used, and, if that fails, trial and error. Quirks can be combined.

prescan

Run iwlist $INTERFACE scan before attempting to connect (broadcom)

preessid

Run iwconfig $INTERFACE essid $ESSID before attempting to connect (ipw3945 and Intel PRO/Wireless 4965AGN)

wpaessid

Same as previous, run before starting wpa_supplicant. Not supported anymore - use

IWCONFIG="essid $ESSID"

instead. (ath9k)

predown

Take interface down before association and then restore it after (madwifi)

postsleep

Sleep one second before checking if the association was successful

postscan

Run iwlist scan after associating

For example:

QUIRKS=(prescan preessid)

If you receive "Wireless network not found" or "Association failed" errors and have tried the above, try:

SCAN=no

If an AP with a hidden SSID is used, try

IWCONFIG="essid $ESSID"

Ralink legacy drivers rt2500, rt2400 that use iwpriv

There is no plans to add WPA support to these drivers. rt2x00 is supported, however, and will replace these.

If you must use them, create a shell script that runs the needed iwpriv commands and put its path in PRE_UP.

It still doesn't work, what do I do?

If this article did not help solve your problem, the next best place to ask for help is the forums or the mailing list.

To be able to determine the problem, we need information. When you ask, provide the following output:

• ALL OUTPUT FROM netcfg
• ALL OUTPUT FROM netcfg
• ALL OUTPUT FROM netcfg
  • This is absolutely crucial to be able determine what went wrong. The message might be short or non-existent, but it can mean a great deal.
• /etc/network.d network profiles
  • This is also crucial as many problems are simple configuration issues. Feel free to censor your wireless key.
• netcfg version
• lsmod
• iwconfig

FAQ