Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
31
Installation and Upgrades / [SOLVED] CRITICAL - VOIP and OpenVPN
« on: March 14, 2014, 04:38:49 am »
Hi,
Has anybody managed to get a VOIP phone working over OpenVPN?
The client just can't connect to the VOIP service (not asterisk)
I have tried it with Zentyal being the default gateway, and with it not being default gateway (since we are still testing). When not the default gateway, incoming connection is NAT'd, which I know is troublesome.
I need help. I have no clue where to go from here.
Gerald
Has anybody managed to get a VOIP phone working over OpenVPN?
Code: [Select]
client 192.168.161.x
|
|
zentyal 192.168.161.1 (tap0) and 192.168.100.x
|
|
VOIP 192.168.100.244The client just can't connect to the VOIP service (not asterisk)
I have tried it with Zentyal being the default gateway, and with it not being default gateway (since we are still testing). When not the default gateway, incoming connection is NAT'd, which I know is troublesome.
I need help. I have no clue where to go from here.
Gerald
32
Installation and Upgrades / Re: OpenVPN download bundle fails 3.4
« on: March 11, 2014, 11:29:06 pm »
You've just introduced this issue into 3.3.5.
33
Installation and Upgrades / Re: Upgrade question
« on: March 10, 2014, 04:59:15 pm »Hi,
You can do a configuration backup, and then try to restore it in a 3.4 version in a VM. The certs are also backed up.
If it is not working, post the problems here if you don't mind.
Best regards,
Thanks for the reply. I'll give it a try when 3.4 is official.
34
Installation and Upgrades / Multicast, firewall, and openvpn
« on: March 09, 2014, 05:06:26 pm »
Hi,
I'm trying to get Windows Network Browsing working over openvpn. The Zentyal server is a firewall gateway and the openvpn server.
When I look in my logs, I see multicast packets being dropped:
I installed pimd, but saw no changes. pimd gives me (error 1): Operation not permitted on each interface
Is there a better way to get Windows Network Browsing working ona VPN connection?
Gerald
eth0: Internal network (192.168.100.2)
eth1: WAN1 (192.168.155.2)
eth2: WAN2 (192.168.156.2)
tap0: VPN (192.168.161.0/24)
I'm trying to get Windows Network Browsing working over openvpn. The Zentyal server is a firewall gateway and the openvpn server.
When I look in my logs, I see multicast packets being dropped:
Code: [Select]
drop IN= OUT=eth0 src=192.168.100.2 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=52297 PROTO=2 MARK=0x1
drop IN= OUT=eth1 src=192.168.155.2 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=52298 PROTO=2 MARK=0x1
drop IN= OUT=eth2 src=192.168.156.2 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=52299 PROTO=2 MARK=0x1
drop IN= OUT=tap0 src=192.168.161.1 DST=224.0.0.1 LEN=28 TOS=0x00 PREC=0xC0 TTL=1 ID=52300 PROTO=2 MARK=0x1
I installed pimd, but saw no changes. pimd gives me (error 1): Operation not permitted on each interface
Is there a better way to get Windows Network Browsing working ona VPN connection?
Gerald
eth0: Internal network (192.168.100.2)
eth1: WAN1 (192.168.155.2)
eth2: WAN2 (192.168.156.2)
tap0: VPN (192.168.161.0/24)
35
Installation and Upgrades / OpenVPN download bundle fails 3.4
« on: March 08, 2014, 05:42:04 pm »
Hi,
I just installed 3.4 as a backup VPN server. I created a user and tried to download the certificates. I ended up on a 'Page not found' error.
My 3.4 is up to date as of March 8 at 10:30 AM CST.
Gerald
I just installed 3.4 as a backup VPN server. I created a user and tried to download the certificates. I ended up on a 'Page not found' error.
My 3.4 is up to date as of March 8 at 10:30 AM CST.
Gerald
36
Installation and Upgrades / Upgrade question
« on: March 07, 2014, 03:24:10 pm »
Hi,
Is there a way to use my existing 3.3 settings (firewall rules, certs, squid settings, etc) on a new 3.4 install?
I'm having serious squid issues in 3.3, and want to try 3,4, but if it works, I don't want to issue my users new OpenVPN certs.
Gerald
Is there a way to use my existing 3.3 settings (firewall rules, certs, squid settings, etc) on a new 3.4 install?
I'm having serious squid issues in 3.3, and want to try 3,4, but if it works, I don't want to issue my users new OpenVPN certs.
Gerald
37
Installation and Upgrades / Re: squid update fails
« on: March 07, 2014, 03:02:22 pm »
So, I tried to install the squid from the install CD. I first removed zentyal-squid-3.3.2.
I get the same error:
Gerald
I get the same error:
Code: [Select]
# dpkg --install zentyal-squid_3.3_all.deb
Selecting previously unselected package zentyal-squid.
(Reading database ... 85982 files and directories currently installed.)
Unpacking zentyal-squid (from zentyal-squid_3.3_all.deb) ...
Setting up zentyal-squid (3.3) ...
root command mysql --defaults-file=/etc/mysql/debian.cnf zentyal < /usr/share/zentyal-squid/sql/squid_access.sql failed.
Error output: ERROR 130 (HY000) at line 1: Incorrect file format 'squid_access'
Command output: .
Exit value: 1dpkg: error processing zentyal-squid (--install):
subprocess installed post-installation script returned error exit status 1
Processing triggers for ureadahead ...
Errors were encountered while processing:
zentyal-squid
Gerald
38
Installation and Upgrades / Re: squid update fails
« on: March 06, 2014, 03:27:05 pm »
Hi,
I'm not getting any answers on my bug report. Has anyone had the same issue, or is it just me?
Gerald
I'm not getting any answers on my bug report. Has anyone had the same issue, or is it just me?
Gerald
39
Installation and Upgrades / Re: DHCP and OpenVPN
« on: March 06, 2014, 05:19:07 am »
Hi,
The Zentyal GUI will most definitely not do it. Which is unfortunate.
My client uses a VOIP product that, from what they tell me, requires their remote laptops to have a local IP.
I know nothing about L2TP, but will it do it?
Gerald
The Zentyal GUI will most definitely not do it. Which is unfortunate.
My client uses a VOIP product that, from what they tell me, requires their remote laptops to have a local IP.
I know nothing about L2TP, but will it do it?
Gerald
40
Installation and Upgrades / DHCP and OpenVPN
« on: March 06, 2014, 02:31:48 am »
Hi,
I have OpenVPN working, using a tun interface. However, OpenVPN currently hands out IP addresses to connected clients.
Is there a way I can have connected clients get ip addresses from an internal DHCP server?
Gerald
I have OpenVPN working, using a tun interface. However, OpenVPN currently hands out IP addresses to connected clients.
Is there a way I can have connected clients get ip addresses from an internal DHCP server?
Gerald
41
Installation and Upgrades / Re: Open VPN User authentication
« on: March 05, 2014, 05:09:43 am »
Anybody?
42
Installation and Upgrades / Re: Port Forwarding not working
« on: March 04, 2014, 03:45:20 pm »Do you mean you have fixed you typo with this virtual IP and it still doesn't work ?
No. Works perfectly now. I'm just not sure what robb is referring to as bad network design.
43
Installation and Upgrades / Re: Port Forwarding not working
« on: March 04, 2014, 02:38:28 pm »I would like to advice you to read, re-read and possibly read an extra few times more this IP primer. As soon you understand what is written there, you will see what is wrong with your network design.
Ummm, nothing? Besides my error with the virtual IP, it's pretty much correct.
44
Installation and Upgrades / Open VPN User authentication
« on: March 03, 2014, 08:25:51 pm »
Hi,
I'd like to have users type in a name/password when connecting via OpenVPN. Not necessarily through Active Directory (Server 2003), but it would be nice.
I found this: https://forum.zentyal.org/index.php?topic=1646.0 but it's rather old.
Can this still be done?
Gerald
I'd like to have users type in a name/password when connecting via OpenVPN. Not necessarily through Active Directory (Server 2003), but it would be nice.
I found this: https://forum.zentyal.org/index.php?topic=1646.0 but it's rather old.
Can this still be done?
Gerald
45
Installation and Upgrades / Re: Port Forwarding not working
« on: March 02, 2014, 08:39:44 pm »So you access Zentyal from outside with 192.168.101.X IP and reach server inside (from Zentyal viewpoint) where (inside) there is another 192.168.101.X subnet (known by Zentyal).
Indeed, it doesn't work
Indeed.