It's how I had me previous set up with ver 2.xx.
Zentyal acts as the gateway for all my clients.
I set up Network/interfaces eth0, static, External(WAN) ticked (if I don't tick https doesn't work), static ip address (192.168.0.102) and netmask (255.255.255.0)
Network/Gateways points to my router 192.168.0.1
Network/DNS points to my router. (192.168.0.1)
HTTP Proxy/General Settings, just ticked Transparent proxy.
Set up all Client pc's to Static Ip address, 192.168.0.xx, mask 255.255.255.0, gateway 192.168.0.102 (zentyal), and dns server 192.168.0.102 (zentyal)
My aim is to restrict access to certain sites, with the proxy server,
And it works.
All computers within the network connect and access the internet without any browser config etc.
My aim (as with ebox 2.xx) is to restrict users to certain websites etc. Ebox worked very well and have had it running for a few years now. Once configured, never really touched it unless looking at logs etc.
The packets that are being dropped are when clients try to RDP into their workstation. It won't let them through.
But my main point is, zentyal how do I make zentyal allow all traffic/services, both in and out.
I see the packets drop as I try to connect.
Jun 28 15:57:51 primary kernel: [11187.111546] ebox-firewall drop IN=eth0 OUT=eth0 MAC=08:00:27:26:c8:57:00:14:fd:10:49:b6:08:00 SRC=192.168.0.105 DST=110.174.52.193 LEN=48 TOS=0x00 PREC=0x00 TTL=63 ID=0 DF PROTO=TCP SPT=8080 DPT=2354 WINDOW=5840 RES=0x00 ACK SYN URGP=0 MARK=0x1
Even though I have ANY/ANY ALLOW in every section.
I couldn't ssh into my box without adding ALLOW source/any service/SSH into External networks to Zentyal, even with ALLOW any at the top of the ruleset.
My question is, how come if I ALLOW any service, source and destination, in all sections of configure rules for packet filter and they are the top of the list, why does then it still block traffic, even if I delete all other rules and just leave allow any.
I will be migrating to the zentyal email server aswell, and maybe use it as a PDC.