Author Topic: Ebox installation in XEN  (Read 5521 times)

evital

  • Zen Apprentice
  • *
  • Posts: 3
  • Karma: +0/-0
    • View Profile
Ebox installation in XEN
« on: December 18, 2007, 01:54:22 am »
Is there a good how-to on installing Ebox as a XEN guest? I did a lot of searching but didn't find any good references.

I don't mind rtfm - just need some pointers on where to start.


P.S. I think Ebox will fill a very empty void in the Linux world, an excellent product with a bright future.

Thanks for all the hard work.


jcanfield

  • Zen Monk
  • **
  • Posts: 89
  • Karma: +2/-0
    • View Profile
Re: Ebox installation in XEN
« Reply #1 on: December 18, 2007, 03:06:55 am »
I attempted this a while back.  It's not impossible, but you have to consider a lot of moving parts when working with multiple interfaces in XEN.  If you are ambitious, you might want to start with a XEN router config and build from there.  After researching the matter I personally decided it was way too much work.

Best of Luck.

Jim
"Any intelligent fool can make things bigger, more complex, and more violent. It takes a touch of genius...and a lot of courage - to move in the opposite direction."  --  Albert Einstein

sixstone

  • Zentyal Staff
  • Zen Hero
  • *****
  • Posts: 1417
  • Karma: +26/-0
    • View Profile
    • Sixstone's blog
Re: Ebox installation in XEN
« Reply #2 on: December 18, 2007, 09:09:42 am »
Hi there!

My first post and I've already had a t-shirt! hahahaha. Well... there is a tool called ANSTE [1] developed at warp to test network-oriented tools which uses XEN to manage eBox instances. You may take a look and see how xen configuration is modified to handle eBox.

[1] http://public.warp.es/anste/
My secret is my silence...

znguissi

  • Zen Apprentice
  • *
  • Posts: 12
  • Karma: +0/-0
    • View Profile
Re: Ebox installation in XEN
« Reply #3 on: December 19, 2007, 12:58:13 pm »
Hi there

I found it quite simple to have ebox running on VMWare Server than Xen.

I'm currently running VMWare Server 1.0.4 on Ubuntu Server 7 with
 - 1 VM machine running IPCop 1.4.13
 - 1 VM running ebox as PDC
 - 1 VM running Ubuntu Server 7 with ISPConfig

Maybe you should try it too !
Knowledge is free !

kumar

  • Zen Apprentice
  • *
  • Posts: 7
  • Karma: +0/-0
    • View Profile
Re: Ebox installation in XEN
« Reply #4 on: December 24, 2007, 12:18:12 pm »
evital

i have done installing eBox on SUSE 10.3 Xen (dom0)

eBox acting as a Firewall for all my Virtual Machines. I have tested all basic features, working very well.


If you still need help on this please give me your network layout how you want to use eBox on your Xen layer, so that I can help you out how to change Xen configuration files.

Thanks for the great product..

austin

  • Zen Apprentice
  • *
  • Posts: 14
  • Karma: +0/-0
    • View Profile
Re: Ebox installation in XEN
« Reply #5 on: January 16, 2008, 01:11:18 am »
I am trying to install xen to a sarge xen VM.  It worked flawlessly last week.. however this week it is giving me big issues.  Any ideas on whats going on? It seems like everything is failing due to some... "as a HASH ref while "strict refs" in use "

Code: [Select]
Setting up foomatic-db-hpijs (1.5-20050420-1) ...
Setting up foomatic-filters-ppds (20050430-1) ...
Restarting Common Unix Printing System: cupsd.

Setting up libtree-perl (1.00-1) ...
Setting up libwww-perl (5.803-4) ...
Setting up libapache-mod-perl (1.29.0.3-6sarge3.0warp) ...

Setting up apache-perl (1.3.33-6sarge3.0warp) ...

Creating config file /etc/apache-perl/httpd.conf with new version

Creating config file /etc/apache-perl/srm.conf with new version

Creating config file /etc/apache-perl/access.conf with new version

Creating config file /etc/apache-perl/modules.conf with new version
Starting web server: apache-perl.

Setting up libapache-authcookie-perl (3.06-1) ...
Setting up ebox (0.11) ...
/var/lib/dpkg/info/ebox.postinst: line 10: gconf-schemas: command not found
pkill: invalid user name: ebox
Stopping web server: apache-perl.
/usr/bin/openssl
/usr/bin/md5sum
Creating eBox's ssl.key directory
Generating RSA private key, 1024 bit long modulus
....................++++++
......................................++++++
e is 65537 (0x10001)
New key file generated
Creating eBox's ssl.crt directory
New certificate file generated
Creating eBox's ssl.pem directory
New PEM file generated
All server's certificate files in place

Adding group `ebox' (113)...
Done.
adduser: Warning: The home dir you specified already exists.
Adding system user `ebox'...
Adding new user `ebox' (108) with group `ebox'.
Home directory `/var/lib/ebox/' already exists.
Adding user `ebox' to group `adm'...
Done.
Creating the eboxlogs database
apache is not a valid module name
invoke-rc.d: initscript ebox, action "start" failed.

Setting up ebox-ca (0.11) ...
/var/lib/dpkg/info/ebox-ca.postinst: line 21: /usr/lib/ebox/ebox-migrate: No such file or directory

Setting up ebox-objects (0.11) ...
/var/lib/dpkg/info/ebox-objects.postinst: line 21: /usr/lib/ebox/ebox-migrate: No such file or directory
EBox: restart objects:                     [ OK ]
apache is not a valid module name
invoke-rc.d: initscript ebox, action "apache" failed.

Setting up ebox-network (0.11) ...
/var/lib/dpkg/info/ebox-network.postinst: line 30: /usr/lib/ebox/ebox-migrate: No such file or directory
Deconfiguring network interfaces...SIOCDELRT: No such process
done.
Setting up IP spoofing protection: rp_filter.
Configuring network interfaces...ifup: interface lo already configured
done.
Can't use string ("/ebox-ro/modules/network/nameser") as a HASH ref while "strict refs" in use at /usr/share/perl5/EBox/GConfModule.pm line 916.
invoke-rc.d: initscript ebox, action "network" failed.
apache is not a valid module name
invoke-rc.d: initscript ebox, action "apache" failed.

Setting up ebox-services (0.11) ...
/var/lib/dpkg/info/ebox-services.postinst: line 21: /usr/lib/ebox/ebox-migrate: No such file or directory
apache is not a valid module name
invoke-rc.d: initscript ebox, action "apache" failed.

Setting up ebox-firewall (0.11) ...
service eBox administration does not exist./var/lib/dpkg/info/ebox-firewall.postinst: line 28: /usr/lib/ebox/ebox-migrate: No such file or directory
EBox: restart firewall:            [ OK ]
apache is not a valid module name
invoke-rc.d: initscript ebox, action "apache" failed.

Setting up ebox-dhcp (0.11) ...
update-rc.d: /etc/init.d/dhcp3-server exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/dhcp3-server ...
   /etc/rc0.d/K20dhcp3-server
   /etc/rc1.d/K20dhcp3-server
   /etc/rc2.d/S20dhcp3-server
   /etc/rc3.d/S20dhcp3-server
   /etc/rc4.d/S20dhcp3-server
   /etc/rc5.d/S20dhcp3-server
   /etc/rc6.d/K20dhcp3-server
Stopping DHCP server: dhcpd3.
/var/lib/dpkg/info/ebox-dhcp.postinst: line 31: /usr/lib/ebox/ebox-sql-table: No such file or directory
logs is not a valid module name
invoke-rc.d: initscript ebox, action "logs" failed.
apache is not a valid module name
invoke-rc.d: initscript ebox, action "apache" failed.
Can't use string ("/ebox/modules/services/serviceTa") as a HASH ref while "strict refs" in use at /usr/share/perl5/EBox/GConfModule.pm line 416.
/var/lib/dpkg/info/ebox-dhcp.postinst: line 43: /usr/lib/ebox/ebox-migrate: No such file or directory
EBox: restart dhcp:                     [ ERROR ]
No such daemon: dhcpd3

Setting up ebox-dns (0.11) ...
update-rc.d: /etc/init.d/bind9 exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/bind9 ...
   /etc/rc0.d/K85bind9
   /etc/rc1.d/K85bind9
   /etc/rc2.d/S15bind9
   /etc/rc3.d/S15bind9
   /etc/rc4.d/S15bind9
   /etc/rc5.d/S15bind9
   /etc/rc6.d/K85bind9
Stopping domain name service: named.
Can't use string ("/ebox/modules/services/serviceTa") as a HASH ref while "strict refs" in use at /usr/share/perl5/EBox/GConfModule.pm line 416.
/var/lib/dpkg/info/ebox-dns.postinst: line 35: /usr/lib/ebox/ebox-migrate: No such file or directory
EBox: restart dns:                      [ ERROR ]
No such daemon: bind9

Setting up libnet-ldap-perl (0.3202-3) ...
Setting up ebox-usersandgroups (0.11.2) ...
Stopping OpenLDAP: slapd.
Can't use string ("/ebox/modules/services/serviceTa") as a HASH ref while "strict refs" in use at /usr/share/perl5/EBox/GConfModule.pm line 416.
/etc/ldap/slapd.conf: line 52: rootdn is always granted unlimited privileges.
bdb_db_open: Warning - No DB_CONFIG file found in directory /var/lib/ebox/ldap: (2)
Expect poor performance for suffix dc=ebox.
done
Starting OpenLDAP: slapd.
EBox: restart users:                       [ OK ]

Setting up ebox-jabber (0.11) ...
update-rc.d: /etc/init.d/jabberd2-ldap-bdb exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/jabberd2-ldap-bdb ...
   /etc/rc0.d/K15jabberd2-ldap-bdb
   /etc/rc1.d/K15jabberd2-ldap-bdb
   /etc/rc2.d/S25jabberd2-ldap-bdb
   /etc/rc3.d/S25jabberd2-ldap-bdb
   /etc/rc4.d/S25jabberd2-ldap-bdb
   /etc/rc5.d/S25jabberd2-ldap-bdb
   /etc/rc6.d/K15jabberd2-ldap-bdb
Stopping Jabber Services: c2s s2s sm resolver router.
Stopping OpenLDAP: slapd.
Starting OpenLDAP: slapd.
Can't create ldapi connection
Setting up ebox-mail (0.11) ...
update-rc.d: /etc/init.d/postfix exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/postfix ...
   /etc/rc0.d/K20postfix
   /etc/rc1.d/K20postfix
   /etc/rc2.d/S20postfix
   /etc/rc3.d/S20postfix
   /etc/rc4.d/S20postfix
   /etc/rc5.d/S20postfix
   /etc/rc6.d/K20postfix
update-rc.d: /etc/init.d/courier-authdaemon exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/courier-authdaemon ...
   /etc/rc0.d/K20courier-authdaemon
   /etc/rc1.d/K20courier-authdaemon
   /etc/rc2.d/S20courier-authdaemon
   /etc/rc3.d/S20courier-authdaemon
   /etc/rc4.d/S20courier-authdaemon
   /etc/rc5.d/S20courier-authdaemon
   /etc/rc6.d/K20courier-authdaemon
update-rc.d: /etc/init.d/courier-imap exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/courier-imap ...
   /etc/rc0.d/K20courier-imap
   /etc/rc1.d/K20courier-imap
   /etc/rc2.d/S20courier-imap
   /etc/rc3.d/S20courier-imap
   /etc/rc4.d/S20courier-imap
   /etc/rc5.d/S20courier-imap
   /etc/rc6.d/K20courier-imap
update-rc.d: /etc/init.d/courier-imap-ssl exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/courier-imap-ssl ...
   /etc/rc0.d/K20courier-imap-ssl
   /etc/rc1.d/K20courier-imap-ssl
   /etc/rc2.d/S20courier-imap-ssl
   /etc/rc3.d/S20courier-imap-ssl
   /etc/rc4.d/S20courier-imap-ssl
   /etc/rc5.d/S20courier-imap-ssl
   /etc/rc6.d/K20courier-imap-ssl
update-rc.d: /etc/init.d/courier-pop exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/courier-pop ...
   /etc/rc0.d/K20courier-pop
   /etc/rc1.d/K20courier-pop
   /etc/rc2.d/S20courier-pop
   /etc/rc3.d/S20courier-pop
   /etc/rc4.d/S20courier-pop
   /etc/rc5.d/S20courier-pop
   /etc/rc6.d/K20courier-pop
update-rc.d: /etc/init.d/courier-pop-ssl exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/courier-pop-ssl ...
   /etc/rc0.d/K20courier-pop-ssl
   /etc/rc1.d/K20courier-pop-ssl
   /etc/rc2.d/S20courier-pop-ssl
   /etc/rc3.d/S20courier-pop-ssl
   /etc/rc4.d/S20courier-pop-ssl
   /etc/rc5.d/S20courier-pop-ssl
   /etc/rc6.d/K20courier-pop-ssl
Stopping OpenLDAP: slapd.
Starting OpenLDAP: slapd.
EBox: restart mail:                        [ OK ]
Stopping SASL Authentication Daemon: (not running).
Starting SASL Authentication Daemon: saslauthd.
/var/lib/dpkg/info/ebox-mail.postinst: line 49: /usr/lib/ebox/ebox-sql-table: No such file or directory
logs is not a valid module name
invoke-rc.d: initscript ebox, action "logs" failed.

Setting up ebox-ntp (0.11) ...
update-rc.d: /etc/init.d/ntp-server exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/ntp-server ...
   /etc/rc0.d/K23ntp-server
   /etc/rc1.d/K23ntp-server
   /etc/rc2.d/S23ntp-server
   /etc/rc3.d/S23ntp-server
   /etc/rc4.d/S23ntp-server
   /etc/rc5.d/S23ntp-server
   /etc/rc6.d/K23ntp-server
Can't use string ("/ebox/modules/services/serviceTa") as a HASH ref while "strict refs" in use at /usr/share/perl5/EBox/GConfModule.pm line 416.
Can't use string ("/ebox-ro/modules/ntp/server1") as a HASH ref while "strict refs" in use at /usr/share/perl5/EBox/GConfModule.pm line 916.
invoke-rc.d: initscript ebox, action "ntp" failed.

Setting up ebox-openvpn (0.11) ...
Generating DH parameters, 1024 bit long safe prime, generator 2
This is going to take a long time
.................+...................+..................+.................+...+...........................................+............................................+...+...+....+...+........................................+..........................................................+..........................................+..................+...................................................+...........................................+..................................++*++*++*
update-rc.d: /etc/init.d/openvpn exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/openvpn ...
   /etc/rc0.d/K20openvpn
   /etc/rc1.d/K20openvpn
   /etc/rc2.d/S16openvpn
   /etc/rc3.d/S16openvpn
   /etc/rc4.d/S16openvpn
   /etc/rc5.d/S16openvpn
   /etc/rc6.d/K20openvpn
update-rc.d: /etc/init.d/quagga exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/quagga ...
   /etc/rc0.d/K20quagga
   /etc/rc1.d/K20quagga
   /etc/rc2.d/S20quagga
   /etc/rc3.d/S20quagga
   /etc/rc4.d/S20quagga
   /etc/rc5.d/S20quagga
   /etc/rc6.d/K20quagga
/var/lib/dpkg/info/ebox-openvpn.postinst: line 44: /usr/lib/ebox/ebox-sql-table: No such file or directory
/var/lib/dpkg/info/ebox-openvpn.postinst: line 47: /usr/lib/ebox/ebox-migrate: No such file or directory
logs is not a valid module name
invoke-rc.d: initscript ebox, action "logs" failed.
EBox: restart openvpn:                     [ OK ]

Setting up smbldap-tools (0.8.7-4) ...

Setting up ebox-samba (0.11) ...
update-rc.d: /etc/init.d/samba exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/samba ...
   /etc/rc0.d/K19samba
   /etc/rc1.d/K19samba
   /etc/rc2.d/S20samba
   /etc/rc3.d/S20samba
   /etc/rc4.d/S20samba
   /etc/rc5.d/S20samba
   /etc/rc6.d/K19samba
Stopping Samba daemons: nmbd smbd.
Stopping OpenLDAP: slapd.
Starting OpenLDAP: slapd.
No such daemon: smbdSetting stored password for "" in secrets.tdb
root command /usr/sbin/smbldap-useradd -a ebox-samba-admin failed.
Error output: Unable to open /etc/smbldap-tools/smbldap.conf for reading !
 Compilation failed in require at /usr/sbin/smbldap-useradd line 32, <DATA> line 225.
 BEGIN failed--compilation aborted at /usr/sbin/smbldap-useradd line 32, <DATA> line 225.

Command output: .
Exit value: 2Could not find / or /home mounting pointsTurning off quotas.
EBox: restart samba:                    [ ERROR ]
No such daemon: smbd

Setting up ebox-printers (0.11) ...
update-rc.d: /etc/init.d/cupsys exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/cupsys ...
   /etc/rc0.d/K20cupsys
   /etc/rc1.d/K20cupsys
   /etc/rc2.d/S20cupsys
   /etc/rc3.d/S20cupsys
   /etc/rc4.d/S20cupsys
   /etc/rc5.d/S20cupsys
   /etc/rc6.d/K20cupsys
Stopping Common Unix Printing System: cupsd.
/var/lib/dpkg/info/ebox-printers.postinst: line 30: /usr/lib/ebox/ebox-sql-table: No such file or directory
logs is not a valid module name
invoke-rc.d: initscript ebox, action "logs" failed.
EBox: restart printers:         [ ERROR ]
No such daemon: cups

Setting up ebox-software (0.11) ...
/var/lib/dpkg/info/ebox-software.postinst: line 21: ebox-sudoers-friendly: command not found
Can't use string ("/ebox-ro/modules/firewall/deny") as a HASH ref while "strict refs" in use at /usr/share/perl5/EBox/GConfModule.pm line 916.
/var/lib/dpkg/info/ebox-software.postinst: line 21: ebox-sudoers-friendly: command not found
Can't use string ("/ebox/modules/firewall/rules/out") as a HASH ref while "strict refs" in use at /usr/share/perl5/EBox/GConfModule.pm line 916.
WARNING: Using deprecated debconf compatibility library.
EBox: restart software:            [ OK ]

Setting up ebox-squid (0.11.1) ...
update-rc.d: /etc/init.d/squid exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/squid ...
   /etc/rc0.d/K30squid
   /etc/rc1.d/K30squid
   /etc/rc2.d/S30squid
   /etc/rc3.d/S30squid
   /etc/rc4.d/S30squid
   /etc/rc5.d/S30squid
   /etc/rc6.d/K30squid
update-rc.d: /etc/init.d/dansguardian exists during rc.d purge (continuing)
 Removing any system startup links for /etc/init.d/dansguardian ...
   /etc/rc0.d/K19dansguardian
   /etc/rc1.d/K19dansguardian
   /etc/rc2.d/S50dansguardian
   /etc/rc3.d/S50dansguardian
   /etc/rc4.d/S50dansguardian
   /etc/rc5.d/S50dansguardian
   /etc/rc6.d/K19dansguardian
EBox: stop squid:                       [ ERROR ]
No such daemon: squid
Stopping proxy server: squid.
FATAL: Could not determine fully qualified hostname.  Please set 'visible_hostname'

Squid Cache (Version 2.5.STABLE9): Terminated abnormally.
CPU Usage: 0.000 seconds = 0.000 user + 0.000 sys
Maximum Resident Size: 0 KB
Page faults with physical i/o: 0
/var/lib/dpkg/info/ebox-squid.postinst: line 77:  8928 Aborted                 /usr/sbin/squid -z
/var/lib/dpkg/info/ebox-squid.postinst: line 66: /usr/lib/ebox/ebox-sql-table: No such file or directory
/var/lib/dpkg/info/ebox-squid.postinst: line 69: /usr/lib/ebox/ebox-migrate: No such file or directory
logs is not a valid module name
invoke-rc.d: initscript ebox, action "logs" failed.
Can't use string ("/ebox-ro/modules/squid/tables_ar") as a HASH ref while "strict refs" in use at /usr/share/perl5/EBox/GConfModule.pm line 916.
invoke-rc.d: initscript ebox, action "squid" failed.
apache is not a valid module name
invoke-rc.d: initscript ebox, action "apache" failed.

Setting up ebox-trafficshaping (0.11) ...
/var/lib/dpkg/info/ebox-trafficshaping.postinst: line 21: /usr/lib/ebox/ebox-migrate: No such file or directory
Can't use string ("/ebox/modules/network/gatewaytab") as a HASH ref while "strict refs" in use at /usr/share/perl5/EBox/GConfModule.pm line 416.
invoke-rc.d: initscript ebox, action "trafficshaping" failed.
apache is not a valid module name
invoke-rc.d: initscript ebox, action "apache" failed.

« Last Edit: January 16, 2008, 01:13:25 am by austin »