« previous next »
Pages: [1]

Author Topic: Help in EBOX Configurations  (Read 2402 times)

shamari72

  • Zen Apprentice
  • *
  • Posts: 1
  • Karma: +0/-0
    • View Profile
Help in EBOX Configurations
« on: April 16, 2008, 10:58:23 am »
GOOD DAY, ???

Recently installed a 2nd ebox server for access via ipvpn, heres my problem.
1. Installed it with no changes in any configuration except domain filtering, allowing only specified websites and blocking all others.

2. Ethernet0 is configured as 192.168.1.184 - 255.255.255.0 - 192.168.1.131--gateway. Not checking the external box. Complete with DNS provided by ADSL provider. Ive also activated the DNS setting on the ebox to act as a DNS. The gateway is a cisco router configured as an internet access and ipvpn connection. Also provided a command for 1.184 to access the internet in (ip acces-list extended Internet), also providing an (ip nat inside source static tcp 192.168.1.184 3128 interface fastethernet4 3128) in the router. Filter is set to filter.

3. My local (LAN) user is configured like this.       
    192.168.1.188 - IP Address
    255.255.255.0 - Subnet Mask
    192.168.1.184 - Gateway
    192.168.1.184 - Primary DNS
Locally this user can access the only specified website it has to access through EBOX, thus blocking all others. Transparent proxy is checked, so no input is needed in the web browsers http proxy settings.

4. My remote (WAN-IPVPN Connection) user is configured like this.
   192.168.2.10 - IP Address
   255.255.255.0 - Subnet
   192.168.2.1 - Gateway
   192.168.1.184 - Primary DNS
Remotely this user can access the internet through EBOX via IPVPN (WAN). But it can also access the website no permitted in the Domain Filtering. Ive only specified the website it can  access and checking the blocking all others not listed. Input is needed in the web browsers settings http proxy 192.168.1.184 3128. Not inputting this on the web browsers, disallows th remote user to access the internet via IPVPN.

Can anyone help me on this one. To summarize it all. I want to connect all my other branches to access the internet for only specified websites using ebox as their access.

On my first EBox setup, i had no problems there because my users can access the internet locally without any problems.

Thank you very much, much help is greatly appreciated.

Logged

sixstone

  • Zentyal Staff
  • Zen Hero
  • *****
  • Posts: 1417
  • Karma: +26/-0
    • View Profile
    • Sixstone's blog
Re: Help in EBOX Configurations
« Reply #1 on: April 16, 2008, 07:27:50 pm »
In order to make transparent proxying with eBox, you need to have at least two interfaces, one internal and one external to make it work.

I hope this helps.
Logged
My secret is my silence...
Pages: [1]
« previous next »