Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - Escorpiom

Pages: 1 ... 52 53 [54]
Installation and Upgrades / Re: Can not add more storage for file server
« on: February 11, 2011, 09:27:21 pm »
I'd better post the link here that i used to add the disks.

Code: [Select]
That's the guide I used, and it worked a charm. Even for a total linux n00b like me.


Alignment is indeed necesary if your drives are AF.
I found out when using parted, my partitions were not aligned.
Although there are tricks to use parted and align the partitions, i found it was not worth the trouble.
Ubuntu 10.04 creates aligned partitions using the build in fdisk utility, so I used that instead.

I have two Samsung HD204UI drive's and once aligment was done, no problems with speed.
I wouldn't choose WD disks but that's personal preference.


Installation and Upgrades / Re: CONFIGURE A STATIC IP FOR eth0
« on: February 11, 2011, 09:12:46 pm »
I don't disable the firewall, as it is indeed the most important component in my Zentyal box.
It helps me to block unauthorized access.

Ok so you have the router set up to hand out ip addresses. Your Zentyal box sits on your lan like the other machines. It's not acting like a gateway (doesn't sit between your router and the lan).
I hope thats correct.
You want to set up Zentyal with a fixed ip.
First of you'll have to know the ip from the router. That's the gateway you'll have to configure in Zentyal. Put it as default, else it won't work.
If your router still hands out ip's, you will have to choose an ip outside of that dynamic pool.
Don't forget to set the DNS servers. I use Zentyals own DNS as a cache, but you can choose any DNS server that suits you.

Set the interface facing your router as external. Don't forget to put in the right netmask. 
You can leave the firewall alone, I found that there are two rules pre-configured as any-any that will allow internet access. You can tweak that later on.
Last thing to do is set your other networks cards (if you have them) on a different subnet. 

I just remembered that on install you'll get to choose wether the box is meant as gateway or standalone, if above guidelines do not help, you might want to consider a reinstall choosing a different role.
Just remeber that in gateway mode your lan card(s) have to be configured on a different subnet.
The Zentyal box acts as a router and if it is all on the same subnet it can't build the routing tables.


Installation and Upgrades / Re: Can not add more storage for file server
« on: February 11, 2011, 05:46:55 am »
Yes, LVM is not RAID and does not include a level of fault tolerance. For that you should use a RAID setup.
LVM is mainly intented to manage partitions more flexible. You can add drives and when for example /home is full you can add storage space from a different drive.
I'm just learning how to use it, sorry haven't got more info.

I recently added 2 drives to the system and I created mountpoints in /media, that was recommended for Ubuntu. If you did it somewhere else, you might try my method.
After that I created the share in Zentyal with Samba Filesharing. It also allowed me to set access rights. 
It is not necessary to enter a pass if you use the same credentials. In my case I created the same user as I'm using on my windows box, set myself as admin and can do anything with the share.

Installation and Upgrades / Re: Allow internet access through proxy only
« on: February 11, 2011, 05:29:36 am »
Proxy - you mean the Squid HTTP proxy included with Zentyal?
And you say that you have configured Squid to be NON transparent?
In that case all your clients are pointing at the Zentyal machine port 3128 right?

What you have do to is in the firewall delete the two rules in two sections thats state "all-any".
Because these rules allow access from anyone with any service, that's the default Zentyal setup.
The two sections are filtering rules from internal networks to Zentyal and filtering rules for internal networks.
be advised that deleting these rules blocks access for anything on any service and you have to configure manually who and what you want to allow access.
You can also try to insert a block all rule just above these two accept-all rules, it should work but I haven't tested that.
The first thing would be allowing http access, you can configure source IP or source object. I recommend you to use objects as they can hold several network objects and it is easier to manage.
After you have set that up, you have to configure Squid and the default policy.

You can also try to set the proxy transparent. That way all traffic on port 80 is redirected to port 3128, the Squid service. No config needed on the clients machine.
Drawback is that proxy authentication doesn't work in transparent mode. Don't know if you were planning to use it.  

Edit: The proxy has no effect on internet speed. It does however increase the internet speed for the users behind the proxy, as it caches frequently used objects for faster retrieval.
Internet feels more responsive and you save some bandwidth.


Installation and Upgrades / Re: CONFIGURE A STATIC IP FOR eth0
« on: February 11, 2011, 05:11:30 am »
I've got it setup with a static IP.
In fact it is a static IP from my internet provider with the default gateway configured as well.
No problems at all.

You have to take care that your internal LAN ip and external WAN ip are on a different subnet.
It seems like the box has to route,  when both ip's are on the same subnet it can't build the routing tables hence no connection.

Also take care that the gateway has "default" checked. You need at least one default gateway, if you have some router upstream than it's that ip.   

My setup:
eth0 WAN static from provider
eth1 LAN static to clients
eth2 LAN GB interface to my windows box

It would be nice if you could include some basic info about your connection.


Installation and Upgrades / Re: log in / hotspot
« on: February 11, 2011, 04:32:43 am »
The hotspot function is not yet implemented.
There is another topic about authentication with Freeradius, but we haven't made much progress either.
I would like to use this also, I'm using Zentyal in a hotel were we have fixed clients (personnel) and guest access for our clients.
For the fixed clients I use IP/MAC binding and then block all else on the firewall. Works a charm, but for the guests I have not found a suitable way to make them login using credentials.


Installation and Upgrades / Re: FreeRadius - How To Get Started?
« on: February 09, 2011, 06:41:57 pm »
Thanks for your reply Roasted.
I will also do some tests here as soon as our ap is running. Will share anything usefull here.
I know about the lack of information on the internet. Been there, done that.

This stuff is just not as widely adopted as a Windows XP for example. Doesn't mean it's impossible, we just have to dig a little deeper. And learn in the process.



Installation and Upgrades / Re: FreeRadius - How To Get Started?
« on: February 09, 2011, 05:01:14 am »
Hi Roasted, please allow me to ask some basic questions, I'm more or less in the same boat as you are.
What I want to do is enable freeradius to authenticate users with user and pass so that they are allowed or denied to surf the internet.
The confusion is this:
Creating users on the Zentyal system enables these users to only access services on the Zentyal box, it does not apply to internet access.

At the moment I'm creating network objects with ip/mac binding and a deny all rule in the firewall.
That is ok for some fixed clients, but for the wireless access point clients I would like to use freeradius.

Is this possible or am I way off?


Great to hear that the performance might improve! Can't wait until the 2.1 release.
In my case, a lot of modules are not active yet because Zentyal was installed only three days ago.
For example voip, mail and office stuff is not yet activated, only the network, firewall, proxy and dns modules are working. Basically just the gateway.
And even in this setup the web interface it is rather unresponsive.

I'm sure the machine on which Zentyal runs has sufficient horsepower.
I might add that the old p3 800 test machine had ClearOS installed and it was way way faster.
Perhaps not a fair comparison (old centOS vs Ubuntu 10.04) but if you focus on the fact that they do more or less the same things, there might be room for improvement.


This is a question I would have liked answered as well. If some time has passed since your last login to the webinterface, it will take at least 10 seconds from you push the "Enter"-button till the webconfigurator-page actually gets served.

I you run top in a shell when logging in, you will see that in fact nothing is happening, the processors are just idling, and there is no hard-disk activity to speak of either. It seems Zentyal is just waiting for some external event to happen before it can go on, or is waiting for messages from some subsystem before it times out. I really don't know, but I do know it's very annoying and unproductive.

If anybody knows if anything can be done about it, please respond.


Exactly the same thing here. About a year ago I was doing some tests to see if we could use Ebox as our network gateway.
I did not pay that much attention to the slow responding web interface because the tests were done on a P3-1000Mhz/Intel 810 system.
I figured it was because of the below spec machine and that it would be different on the final production system.
Wrong! Now Zentyal is running on a Core2Duo E6750 with 4GB of DDR2 memory and it's still slow as described in Trym's quote.

I like Zentyal a lot because it's loaded with stuff. But it has some issues.
As a n00b I depend heavily on the docs and the forum, but sorry the forum leaves most questions unanswered and the docs are not that detailed.
I really had a hard time get it running, and when it comes to issues like this one I'm totally lost.   


Installation and Upgrades / Re: Enable addl. HD in Zentyal? [SOLVED]
« on: February 07, 2011, 12:03:45 pm »
I had to do the same thing - more or less. I'm a complete n00b when it comes to Linux.
Zentyal is installed on a WD Velociraptor 160GB. That should be enough for the system, but I wanted to make it a file server also.
So I put two extra harddrives in the box, Samsung two TB each.
One drive was previously formatted NTFS and had some files on it. The other drive was still clean.

Ofcourse, Zentyal does not show the drive in the web interface. So I tried with Gparted and saw that they were both present. Guess the kernel supports them at boot.
The drive formatted as NTFS was detected instantly and all my files were OK. Nice considering that Linux not always reads NTFS formatted disks.
Next step was create a partition on the clean disk. I did not like Gparted because it did not align!
So I used fdisk and that created an aligned partition. Formatted as ext4.
The procedure is outlined here:

Code: [Select]
The tricky part is this: You have to "mount" the drive so it becomes accessible as described in the article.
After doing that, I shared the drives with Samba through the web interface. Even the acl's worked straight away!
Just keep in mind that the path is case-sensitive, I found out the hard way.

Installation and Upgrades / Re: A couple of file sharing question
« on: February 07, 2011, 05:42:15 am »
It's an old question but I just encountered the same issue. If anyone can provide further information it would be great.

Pages: 1 ... 52 53 [54]