Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1] 2
1
Installation and Upgrades / SSL Error after netbios name change
« on: July 02, 2015, 08:21:34 pm »
Hi,
If I install, then change my netbios name, I get a protocol error from Chrome when going to the webmail site. The admin interface still works.
The same happens when I do system updates.
To test:
1. install 4.1
2. change netbios name
3. goto https://url/SOGo
Has anyone seen this before, or got a solution?
Gerald
If I install, then change my netbios name, I get a protocol error from Chrome when going to the webmail site. The admin interface still works.
The same happens when I do system updates.
To test:
1. install 4.1
2. change netbios name
3. goto https://url/SOGo
Has anyone seen this before, or got a solution?
Gerald
2
Installation and Upgrades / Folders not synching between IMAP and MAPI
« on: March 26, 2015, 11:18:35 pm »
Hi,
I've connected Outlook 2003 to my Zentyal 4.0 install, and imported data from a PST file. It works not too bad, except for syncing issues.
The Web interface and Thunderbird IMAP do not show all the folder that out look shows. I have INBOX, Sent, Draft, Outbox, but none of the folders I created.
So, I created a folder in Oitloo called bob1. It did not dhow up in the Web interface or Thunderbird.
I created a folder in Thunderbird called bob2, it show up in the web interface, but NOT in outlook.
Is this normal?
Gerald
I've connected Outlook 2003 to my Zentyal 4.0 install, and imported data from a PST file. It works not too bad, except for syncing issues.
The Web interface and Thunderbird IMAP do not show all the folder that out look shows. I have INBOX, Sent, Draft, Outbox, but none of the folders I created.
So, I created a folder in Oitloo called bob1. It did not dhow up in the Web interface or Thunderbird.
I created a folder in Thunderbird called bob2, it show up in the web interface, but NOT in outlook.
Is this normal?
Gerald
3
Installation and Upgrades / DNS Not updated when using Microsoft AD Tools
« on: March 26, 2015, 08:15:45 pm »
Hi,
I installed the Microsoft Active Directory tools on my WIndows 7 box, which is part of the domain on Zentyal. Using the tools, I added a couple of DNS entries. Those entries do not appear in the web interface. Is what I'm seeing normal?
I'd prefer to use the MS tools, since I can type in the new name and IP address without having to click on a bunch of icons. Zentyal should allow adding a new hostname and IP in a single dialog box.
Gerald
I installed the Microsoft Active Directory tools on my WIndows 7 box, which is part of the domain on Zentyal. Using the tools, I added a couple of DNS entries. Those entries do not appear in the web interface. Is what I'm seeing normal?
I'd prefer to use the MS tools, since I can type in the new name and IP address without having to click on a bunch of icons. Zentyal should allow adding a new hostname and IP in a single dialog box.
Gerald
4
Installation and Upgrades / [SOLVED] Kerberos failing - can't join domain
« on: March 26, 2015, 04:29:39 pm »
Hi,
I'm trying to add a machine to the domain, but it's not authenticating my admin user:
[2015/03/26 10:16:37.597537, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: AS-REQ administrator@erlphase.com from ipv4:192.168.100.141:49196 for krbtgt/erlphase.com@erlphase.com
[2015/03/26 10:16:37.599574, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: Client sent patypes: ENC-TS, 128
[2015/03/26 10:16:37.599676, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: Looking for PK-INIT(ietf) pa-data -- administrator@erlphase.com
[2015/03/26 10:16:37.599733, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: Looking for PK-INIT(win2k) pa-data -- administrator@erlphase.com
[2015/03/26 10:16:37.599795, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: Looking for ENC-TS pa-data -- administrator@erlphase.com
[2015/03/26 10:16:37.599870, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: Failed to decrypt PA-DATA -- administrator@erlphase.com (enctype arcfour-hmac-md5) error Decrypt integrity check failed
[2015/03/26 10:16:37.599953, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: Need to use PA-ENC-TIMESTAMP/PA-PK-AS-REQ
[2015/03/26 10:16:37.600609, 3] ../source4/smbd/service_stream.c:66(stream_terminate_connection)
Terminating connection - 'kdc_tcp_call_loop: tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED'
[2015/03/26 10:16:37.600687, 3] ../source4/smbd/process_single.c:114(single_terminate)
single_terminate: reason[kdc_tcp_call_loop: tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED]
The 'Decrypt integrity check failed is new.
Any ideas?
Gerald
I'm trying to add a machine to the domain, but it's not authenticating my admin user:
[2015/03/26 10:16:37.597537, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: AS-REQ administrator@erlphase.com from ipv4:192.168.100.141:49196 for krbtgt/erlphase.com@erlphase.com
[2015/03/26 10:16:37.599574, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: Client sent patypes: ENC-TS, 128
[2015/03/26 10:16:37.599676, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: Looking for PK-INIT(ietf) pa-data -- administrator@erlphase.com
[2015/03/26 10:16:37.599733, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: Looking for PK-INIT(win2k) pa-data -- administrator@erlphase.com
[2015/03/26 10:16:37.599795, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: Looking for ENC-TS pa-data -- administrator@erlphase.com
[2015/03/26 10:16:37.599870, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: Failed to decrypt PA-DATA -- administrator@erlphase.com (enctype arcfour-hmac-md5) error Decrypt integrity check failed
[2015/03/26 10:16:37.599953, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper)
Kerberos: Need to use PA-ENC-TIMESTAMP/PA-PK-AS-REQ
[2015/03/26 10:16:37.600609, 3] ../source4/smbd/service_stream.c:66(stream_terminate_connection)
Terminating connection - 'kdc_tcp_call_loop: tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED'
[2015/03/26 10:16:37.600687, 3] ../source4/smbd/process_single.c:114(single_terminate)
single_terminate: reason[kdc_tcp_call_loop: tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED]
The 'Decrypt integrity check failed is new.
Any ideas?
Gerald
5
Installation and Upgrades / per user or per group login scripts
« on: March 20, 2015, 08:31:11 pm »
Hi,
Is there a way to have per user or per group login scripts?
Gerald
Is there a way to have per user or per group login scripts?
Gerald
6
Installation and Upgrades / Repllace SBS 2003 SP2
« on: March 13, 2015, 08:14:32 pm »
Hi,
I have a Small Business Server 2003 SP2. I do not have R2 (these guys never kept up to date).
It seems Zentyal 4.0 can't become an additional domain controller for SP2. I was hoping to set it up that way to ease transference.
Is there an easy way to get my users data, etc from SP2 to Zentyal 4.0?
Gerald
I have a Small Business Server 2003 SP2. I do not have R2 (these guys never kept up to date).
It seems Zentyal 4.0 can't become an additional domain controller for SP2. I was hoping to set it up that way to ease transference.
Is there an easy way to get my users data, etc from SP2 to Zentyal 4.0?
Gerald
7
Installation and Upgrades / Transfer of VPN Data
« on: January 16, 2015, 01:41:33 pm »
Hi,
I'm running a 3.4 server for VPN and firewall only, and I'd like to move to a 4.0 one. I know I could do an upgrade, but this box has always had issues with squid not running (even after upgrades), so I'd like to try from scratch.
Is there an easy was to move all of my VPN users and certs to the new machine? Maybe my firewall rules as well.
Gerald
I'm running a 3.4 server for VPN and firewall only, and I'd like to move to a 4.0 one. I know I could do an upgrade, but this box has always had issues with squid not running (even after upgrades), so I'd like to try from scratch.
Is there an easy was to move all of my VPN users and certs to the new machine? Maybe my firewall rules as well.
Gerald
8
Installation and Upgrades / SPAM and VIRUS quarantine
« on: January 16, 2015, 01:38:39 pm »
Hi,
Does Zentyal store its virus and spam emails anywhere? We occasionally get emails marked as a virus, yet we trust the sender. How can I release the email and have it delivered to the end user?
Gerald
Does Zentyal store its virus and spam emails anywhere? We occasionally get emails marked as a virus, yet we trust the sender. How can I release the email and have it delivered to the end user?
Gerald
9
Installation and Upgrades / zentyal to zentyal question (not default gateway)
« on: April 04, 2014, 01:51:42 pm »
Hi,
I've set up a zentyal to zentyal openvpn connection. The connection is made, and the VPN works.
If I'm on the zentyal client, I can ping a host behind the server. If I'm on another system on the client side, no data gets through at all.
ping from 'zentyal client' to 'computer' works.
ping from 'inside' to 'computer' fails
My normal default gateway is 192.168.101.1, but on 'inside' I set the default gateway to 'zentyal client' 192.168.101.3
If I do a traceroute from 'inside' 192.168.101.10 to 'computer' 192.168.100.30 I see:
The 'zentyal client' 192.168.101.3 doesn't seem to be forwarding data. Any idea what I'm doing wrong?
Gerald
I've set up a zentyal to zentyal openvpn connection. The connection is made, and the VPN works.
If I'm on the zentyal client, I can ping a host behind the server. If I'm on another system on the client side, no data gets through at all.
Code: [Select]
zentyal client - 192.168.101.3 (openvpn 192.168.162.2)
|
|
zentyal server - 192.168.100.1 (openvpn 192.168.162.1)
|
|
computer - 192.168.100.30ping from 'zentyal client' to 'computer' works.
Code: [Select]
inside - 192.168.101.10
|
|
zentyal client - 192.168.101.3 (openvpn 192.168.162.2)
|
|
zentyal server - 192.168.100.1 (openvpn 192.168.162.1)
|
|
computer - 192.168.100.30ping from 'inside' to 'computer' fails
My normal default gateway is 192.168.101.1, but on 'inside' I set the default gateway to 'zentyal client' 192.168.101.3
If I do a traceroute from 'inside' 192.168.101.10 to 'computer' 192.168.100.30 I see:
Code: [Select]
1: 192.168.101.3 0.456ms
2: no reply
3: no reply
^CThe 'zentyal client' 192.168.101.3 doesn't seem to be forwarding data. Any idea what I'm doing wrong?
Gerald
10
Installation and Upgrades / OpenChange multi domain
« on: March 18, 2014, 04:32:43 pm »
Hi,
Does Zentyal OpenChange support multi domain? I currently run 3 domains under Zimbra, and I'm looking for a to change to SoGo/OpenChange.
Gerald
Does Zentyal OpenChange support multi domain? I currently run 3 domains under Zimbra, and I'm looking for a to change to SoGo/OpenChange.
Gerald
11
Installation and Upgrades / openvpn ifconfig-pool-persist not working
« on: March 14, 2014, 12:39:44 pm »
Hi,
Zentyal creates the ifconfig-pool-persist line on the Openvpn config, but persistent IP's are never written to the file.
The reason is Zentyal also writes client-config-dir to the openvpn config file. The two options do not work together.
Why does Zentyal have the client-config-dir option? Is there a permanent (upgrade safe) way to remove it?
Gerald
Zentyal creates the ifconfig-pool-persist line on the Openvpn config, but persistent IP's are never written to the file.
The reason is Zentyal also writes client-config-dir to the openvpn config file. The two options do not work together.
Why does Zentyal have the client-config-dir option? Is there a permanent (upgrade safe) way to remove it?
Gerald
12
Installation and Upgrades / [SOLVED] CRITICAL - VOIP and OpenVPN
« on: March 14, 2014, 04:38:49 am »
Hi,
Has anybody managed to get a VOIP phone working over OpenVPN?
The client just can't connect to the VOIP service (not asterisk)
I have tried it with Zentyal being the default gateway, and with it not being default gateway (since we are still testing). When not the default gateway, incoming connection is NAT'd, which I know is troublesome.
I need help. I have no clue where to go from here.
Gerald
Has anybody managed to get a VOIP phone working over OpenVPN?
Code: [Select]
client 192.168.161.x
|
|
zentyal 192.168.161.1 (tap0) and 192.168.100.x
|
|
VOIP 192.168.100.244The client just can't connect to the VOIP service (not asterisk)
I have tried it with Zentyal being the default gateway, and with it not being default gateway (since we are still testing). When not the default gateway, incoming connection is NAT'd, which I know is troublesome.
I need help. I have no clue where to go from here.
Gerald
13
Installation and Upgrades / Multicast, firewall, and openvpn
« on: March 09, 2014, 05:06:26 pm »
Hi,
I'm trying to get Windows Network Browsing working over openvpn. The Zentyal server is a firewall gateway and the openvpn server.
When I look in my logs, I see multicast packets being dropped:
I installed pimd, but saw no changes. pimd gives me (error 1): Operation not permitted on each interface
Is there a better way to get Windows Network Browsing working ona VPN connection?
Gerald
eth0: Internal network (192.168.100.2)
eth1: WAN1 (192.168.155.2)
eth2: WAN2 (192.168.156.2)
tap0: VPN (192.168.161.0/24)
I'm trying to get Windows Network Browsing working over openvpn. The Zentyal server is a firewall gateway and the openvpn server.
When I look in my logs, I see multicast packets being dropped:
Code: [Select]
drop IN= OUT=eth0 src=192.168.100.2 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=52297 PROTO=2 MARK=0x1
drop IN= OUT=eth1 src=192.168.155.2 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=52298 PROTO=2 MARK=0x1
drop IN= OUT=eth2 src=192.168.156.2 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=52299 PROTO=2 MARK=0x1
drop IN= OUT=tap0 src=192.168.161.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=52300 PROTO=2 MARK=0x1
I installed pimd, but saw no changes. pimd gives me (error 1): Operation not permitted on each interface
Is there a better way to get Windows Network Browsing working ona VPN connection?
Gerald
eth0: Internal network (192.168.100.2)
eth1: WAN1 (192.168.155.2)
eth2: WAN2 (192.168.156.2)
tap0: VPN (192.168.161.0/24)
14
Installation and Upgrades / OpenVPN download bundle fails 3.4
« on: March 08, 2014, 05:42:04 pm »
Hi,
I just installed 3.4 as a backup VPN server. I created a user and tried to download the certificates. I ended up on a 'Page not found' error.
My 3.4 is up to date as of March 8 at 10:30 AM CST.
Gerald
I just installed 3.4 as a backup VPN server. I created a user and tried to download the certificates. I ended up on a 'Page not found' error.
My 3.4 is up to date as of March 8 at 10:30 AM CST.
Gerald
15
Installation and Upgrades / Upgrade question
« on: March 07, 2014, 03:24:10 pm »
Hi,
Is there a way to use my existing 3.3 settings (firewall rules, certs, squid settings, etc) on a new 3.4 install?
I'm having serious squid issues in 3.3, and want to try 3,4, but if it works, I don't want to issue my users new OpenVPN certs.
Gerald
Is there a way to use my existing 3.3 settings (firewall rules, certs, squid settings, etc) on a new 3.4 install?
I'm having serious squid issues in 3.3, and want to try 3,4, but if it works, I don't want to issue my users new OpenVPN certs.
Gerald
Pages: [1] 2