Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Installation and Upgrades / Zentyal as Windows Active Directory domain member / client
« on: December 20, 2013, 10:27:45 pm »
Hello,
Is it possible to configure Zentyal as AD member? I need extra storage on my Windows server, so I wanted to build a NAS that connects to the existing AD 2003 server. If it's connected I want to create a new share with permissions for a group in Active Directory.
Is this possible?
If not it will be better to use QNAP/Synology because they can do this, but I want to try a custom build NAS.
Is it possible to configure Zentyal as AD member? I need extra storage on my Windows server, so I wanted to build a NAS that connects to the existing AD 2003 server. If it's connected I want to create a new share with permissions for a group in Active Directory.
Is this possible?
If not it will be better to use QNAP/Synology because they can do this, but I want to try a custom build NAS.
2
Installation and Upgrades / OpenVPN routing without zentyal to zentyal tunnel
« on: September 08, 2012, 02:44:24 pm »
I have a small Linux server as client without Zentyal connecting to a Zentyal VPN server.
Normally, when creating a Zentyal-to-Zentyal tunnel, both networks can talk with each other.
How can I create a Zentyal-to-Custom tunnel?
My situation:
Computer1 -> VPN client -> Internet -> Zentyal Server -> Computer2
192.168.3.0 <-> 10.10.1.0
Route print on my VPN client 192.168.3.0:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.161.0 * 255.255.255.0 U 0 0 0 tap0
192.168.3.0 * 255.255.255.0 U 0 0 0 eth0
10.10.1.0 192.168.161.1 255.255.255.0 UG 0 0 0 tap0
default 192.168.3.1 0.0.0.0 UG 100 0 0 eth0
Route print on my Zentyal server:
Destination Gateway Genmask Flags Metric Ref Use Iface
localnet * 255.255.255.224 U 0 0 0 eth0
192.168.161.0 * 255.255.255.0 U 0 0 0 tap1
192.168.166.0 * 255.255.255.0 U 0 0 0 tap7
192.168.168.0 * 255.255.255.0 U 0 0 0 tap9
192.168.2.0 192.168.166.2 255.255.255.0 UG 2 0 0 tap7
192.168.1.0 192.168.168.2 255.255.255.0 UG 2 0 0 tap9
10.10.1.0 * 255.255.255.0 U 0 0 0 eth1
Here you see that 192.168.2.0 and 192.168.1.0 work, because Zentyal added a route for this network to the VPN IP.
However, the 192.168.161.0 * is not working, this should be my 192.168.3.0 network.
When I try to create a route in the Zentyal interface I get: Gateway 192.168.161.2 not reachable
When I manually create a route in console everything works:
root@router:~# route add -net 192.168.3.0 netmask 255.255.255.0 gw 192.168.161.2 dev tap1
root@router:~# route -v
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
localnet * 255.255.255.224 U 0 0 0 eth0
192.168.161.0 * 255.255.255.0 U 0 0 0 tap1
192.168.3.0 192.168.161.2 255.255.255.0 UG 0 0 0 tap1
192.168.166.0 * 255.255.255.0 U 0 0 0 tap7
192.168.2.0 192.168.166.2 255.255.255.0 UG 2 0 0 tap7
192.168.1.0 192.168.168.2 255.255.255.0 UG 2 0 0 tap9
10.10.1.0 * 255.255.255.0 U 0 0 0 eth1
192.168.168.0 * 255.255.255.0 U 0 0 0 tap9
10.1.1.0 * 255.255.255.0 U 0 0 0 eth1
So only when I manually create the route, outside Zentyal interface, it starts working.
Is there a way to make this easier? Am I doing something wrong?
Normally, when creating a Zentyal-to-Zentyal tunnel, both networks can talk with each other.
How can I create a Zentyal-to-Custom tunnel?
My situation:
Computer1 -> VPN client -> Internet -> Zentyal Server -> Computer2
192.168.3.0 <-> 10.10.1.0
Route print on my VPN client 192.168.3.0:
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.161.0 * 255.255.255.0 U 0 0 0 tap0
192.168.3.0 * 255.255.255.0 U 0 0 0 eth0
10.10.1.0 192.168.161.1 255.255.255.0 UG 0 0 0 tap0
default 192.168.3.1 0.0.0.0 UG 100 0 0 eth0
Route print on my Zentyal server:
Destination Gateway Genmask Flags Metric Ref Use Iface
localnet * 255.255.255.224 U 0 0 0 eth0
192.168.161.0 * 255.255.255.0 U 0 0 0 tap1
192.168.166.0 * 255.255.255.0 U 0 0 0 tap7
192.168.168.0 * 255.255.255.0 U 0 0 0 tap9
192.168.2.0 192.168.166.2 255.255.255.0 UG 2 0 0 tap7
192.168.1.0 192.168.168.2 255.255.255.0 UG 2 0 0 tap9
10.10.1.0 * 255.255.255.0 U 0 0 0 eth1
Here you see that 192.168.2.0 and 192.168.1.0 work, because Zentyal added a route for this network to the VPN IP.
However, the 192.168.161.0 * is not working, this should be my 192.168.3.0 network.
When I try to create a route in the Zentyal interface I get: Gateway 192.168.161.2 not reachable
When I manually create a route in console everything works:
root@router:~# route add -net 192.168.3.0 netmask 255.255.255.0 gw 192.168.161.2 dev tap1
root@router:~# route -v
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
localnet * 255.255.255.224 U 0 0 0 eth0
192.168.161.0 * 255.255.255.0 U 0 0 0 tap1
192.168.3.0 192.168.161.2 255.255.255.0 UG 0 0 0 tap1
192.168.166.0 * 255.255.255.0 U 0 0 0 tap7
192.168.2.0 192.168.166.2 255.255.255.0 UG 2 0 0 tap7
192.168.1.0 192.168.168.2 255.255.255.0 UG 2 0 0 tap9
10.10.1.0 * 255.255.255.0 U 0 0 0 eth1
192.168.168.0 * 255.255.255.0 U 0 0 0 tap9
10.1.1.0 * 255.255.255.0 U 0 0 0 eth1
So only when I manually create the route, outside Zentyal interface, it starts working.
Is there a way to make this easier? Am I doing something wrong?
3
Installation and Upgrades / LAN over WAN communication OpenVPN
« on: January 28, 2012, 05:29:05 pm »
Hello,
I have a small server cluster in a datacenter that needs to be connected to the same LAN in another datacenter. So both locations have a 10.10.1.X /24 network, without knowing that some servers might be over WAN.
How can I set this? I tried several things with Zentyal, but I think it's imposible with the default settings. I tried to create my own Ehternet tunnel with plain OpenVPN tunneling, but I was unable to ping IP addresses on the other side.
The reason I want this, is because I need to migrate about 50 hosted desktops connected to a fileserver with minimal downtime. So I would like to stop, copy, start each hosted desktop for minimal downtime. After that, I will migrate the massive fileserver in the weekend.
Please let me know if LAN over WAN is possible with Zentyal! And if it doesn't, what are my options?
I have a small server cluster in a datacenter that needs to be connected to the same LAN in another datacenter. So both locations have a 10.10.1.X /24 network, without knowing that some servers might be over WAN.
How can I set this? I tried several things with Zentyal, but I think it's imposible with the default settings. I tried to create my own Ehternet tunnel with plain OpenVPN tunneling, but I was unable to ping IP addresses on the other side.
The reason I want this, is because I need to migrate about 50 hosted desktops connected to a fileserver with minimal downtime. So I would like to stop, copy, start each hosted desktop for minimal downtime. After that, I will migrate the massive fileserver in the weekend.
Please let me know if LAN over WAN is possible with Zentyal! And if it doesn't, what are my options?
4
Installation and Upgrades / Replace source address not working
« on: October 27, 2011, 09:23:49 am »
Hello,
I have a MTA server behind my Zentyal router/firewall. The MTA server is located in the LAN, and mail is received by a NAT rule that forwards port 25 to the MTA server.
I want to open this MTA as relay server for a specific host (WAN IP). The MTA only shows the IP of the firewall/zentyal server in the logs, therefore I can't open the relay to the remote IP, because it won't receive this IP.
I tried to disable the function Replace source address for port 25 in the firewall, but I still see the local IP as source address in the MTA logs.
Anyone has a solution?
I have a MTA server behind my Zentyal router/firewall. The MTA server is located in the LAN, and mail is received by a NAT rule that forwards port 25 to the MTA server.
I want to open this MTA as relay server for a specific host (WAN IP). The MTA only shows the IP of the firewall/zentyal server in the logs, therefore I can't open the relay to the remote IP, because it won't receive this IP.
I tried to disable the function Replace source address for port 25 in the firewall, but I still see the local IP as source address in the MTA logs.
Anyone has a solution?
5
Installation and Upgrades / ARP corruption and network errors
« on: September 29, 2011, 11:49:09 pm »
Hello,
I have a big server with alot of VM's. The gateway server is Zentyal 2.2 (also tried 2.0) and has 2 virtual network cards.
Both eth0 and eth1 are on the same physical network card of the virtual host server. eth0 is external (WAN) IP and eth1 is internal (LAN) IP.
Everything works great, but sometimes servers can't reach the network anymore (ping the zentyal gateway).
I resolve this every time by SSHing to the zentyal gateway, removing the ARP entries with arp -d and ping the server from the gateway. When the ping starts from zentyal to the server with network problems, a new ARP entry gets created. After the first ping reply, the server has network connection again.
So in short, how can I avoid ARP corruption? Why are my servers getting disconnected?
Here is my ARP situation when a server can't reach the network:
hostname.domain.nl ether 5e:19:32:fe:bd:fb C eth1
hostname.domain.nl ether 5e:19:32:fe:bd:fb C eth0
After delete + ping I get the same, but this time with ns. in front.
I added the hostname.domain.nl in my dns (created a zone and entered IP) so I can resolve domain names within the LAN network.
Can anyone help?
I have a big server with alot of VM's. The gateway server is Zentyal 2.2 (also tried 2.0) and has 2 virtual network cards.
Both eth0 and eth1 are on the same physical network card of the virtual host server. eth0 is external (WAN) IP and eth1 is internal (LAN) IP.
Everything works great, but sometimes servers can't reach the network anymore (ping the zentyal gateway).
I resolve this every time by SSHing to the zentyal gateway, removing the ARP entries with arp -d and ping the server from the gateway. When the ping starts from zentyal to the server with network problems, a new ARP entry gets created. After the first ping reply, the server has network connection again.
So in short, how can I avoid ARP corruption? Why are my servers getting disconnected?
Here is my ARP situation when a server can't reach the network:
hostname.domain.nl ether 5e:19:32:fe:bd:fb C eth1
hostname.domain.nl ether 5e:19:32:fe:bd:fb C eth0
After delete + ping I get the same, but this time with ns. in front.
I added the hostname.domain.nl in my dns (created a zone and entered IP) so I can resolve domain names within the LAN network.
Can anyone help?
6
Installation and Upgrades / ARP problems, LAN interface timeouts
« on: August 25, 2011, 08:06:33 pm »
I have a simple Zentyal installation with 2 network cards (virtual).
Eth0 is for WAN
Eth1 is for LAN
Sometimes the LAN interface has a short timeout period. I tracked the problem down to a ARP command:
for arptable in `arp | grep "eth1" | cut -d " " -f1`; do arp -d $arptable; done
This command deletes the arp entries on eth1. If I run this, all LAN access is normal again.
How can I stop these sudden timeout moments?
Eth0 is for WAN
Eth1 is for LAN
Sometimes the LAN interface has a short timeout period. I tracked the problem down to a ARP command:
for arptable in `arp | grep "eth1" | cut -d " " -f1`; do arp -d $arptable; done
This command deletes the arp entries on eth1. If I run this, all LAN access is normal again.
How can I stop these sudden timeout moments?
7
Installation and Upgrades / Remote web administration lost with WAN adapter
« on: July 13, 2011, 10:08:54 pm »
I have a Zentyal server connected directly to the internet (datacenter). It is configured with 2 network adapters.
eth0: WAN - remote IP
eth1: LAN - Internal IP
I've set rules in the firewall packet filter for remote administration. The remote admin page should be visible to "any". Also I created a rule wich allows all services (any) to the Zentyal.
Even with these rules, the web page is not showing. I can SSH into the Zentyal and shutdown the firewall, then the admin page comes up again.
How can I enable the firewall and still be able to go to the remote administration web page?
eth0: WAN - remote IP
eth1: LAN - Internal IP
I've set rules in the firewall packet filter for remote administration. The remote admin page should be visible to "any". Also I created a rule wich allows all services (any) to the Zentyal.
Even with these rules, the web page is not showing. I can SSH into the Zentyal and shutdown the firewall, then the admin page comes up again.
How can I enable the firewall and still be able to go to the remote administration web page?
8
Installation and Upgrades / Routing multiple networks
« on: July 07, 2011, 04:46:04 pm »
Hi,
I have a virtual zentyal server with 1 NIC (eth0). It is configured with 2 IP adressen:
eth0 Link encap:Ethernet HWaddr 00:16:36:19:a9:70
inet addr:10.10.1.70 Bcast:10.10.1.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:9989 errors:0 dropped:0 overruns:0 frame:0
TX packets:5537 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:2348733 (2.3 MB) TX bytes:1480699 (1.4 MB)
eth0:test Link encap:Ethernet HWaddr 00:16:36:19:a9:70
inet addr:10.10.13.1 Bcast:10.10.13.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
The second network (eth0:test) is configured for a test LAN. The test LAN computer has IP 10.10.13.101 and can connect to the Zentyal server but not the internet, wich is behind the 10.10.1.0 netwerk.
How can I get my test lan to access the internet?
Windows PC (10.10.13.101) -> Zentyal gateway (10.10.13.1) -> Zentyal gateway (10.10.1.70) -> LVS (10.10.1.1) -> internet
At this moment my Windows PC cannot ping any host in the 10.10.1.0 network, therefore it cannot access the internet.
Computers from the 10.10.1.0 network can ping the Windows PC (10.10.13.101).
I have a virtual zentyal server with 1 NIC (eth0). It is configured with 2 IP adressen:
eth0 Link encap:Ethernet HWaddr 00:16:36:19:a9:70
inet addr:10.10.1.70 Bcast:10.10.1.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:9989 errors:0 dropped:0 overruns:0 frame:0
TX packets:5537 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:2348733 (2.3 MB) TX bytes:1480699 (1.4 MB)
eth0:test Link encap:Ethernet HWaddr 00:16:36:19:a9:70
inet addr:10.10.13.1 Bcast:10.10.13.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
The second network (eth0:test) is configured for a test LAN. The test LAN computer has IP 10.10.13.101 and can connect to the Zentyal server but not the internet, wich is behind the 10.10.1.0 netwerk.
How can I get my test lan to access the internet?
Windows PC (10.10.13.101) -> Zentyal gateway (10.10.13.1) -> Zentyal gateway (10.10.1.70) -> LVS (10.10.1.1) -> internet
At this moment my Windows PC cannot ping any host in the 10.10.1.0 network, therefore it cannot access the internet.
Computers from the 10.10.1.0 network can ping the Windows PC (10.10.13.101).
9
Installation and Upgrades / Profiles don't work after removing local profile
« on: April 19, 2011, 10:22:35 pm »
When I create a user with PDC account and login to a Windows 7 Pro 64 bit computer, it works without problems.
When I remove the local user folder (c:\users\username) I try to login again. Now I get the error about roaming profiles and that I should logoff and login to resolve the problem. Roaming profiles is disabled on the Zentyal server.
Also I can't browse the home folder anymore, because of permission issues.
Steps to reproduce:
1. Create a user account in Zentyal
2. Login to a Winodws 7 Pro machine with the Zentyal user
3. Logout the Zentyal user
4. Remove the C:\users\username folder (to reset user data/settings)
5. Try to login with the Zentyal user again
This is the samba log:
[2011/04/19 22:13:02, 1] smbd/service.c:1240(close_cnum)
nomad-laptop (192.168.3.101) closed connection to service nomad
[2011/04/19 22:13:26, 0] lib/util_sock.c:539(read_fd_with_timeout)
[2011/04/19 22:13:26, 0] lib/util_sock.c:1491(get_peer_addr_internal)
getpeername failed. Error was Transport endpoint is not connected
read_fd_with_timeout: client 0.0.0.0 read error = Connection reset by peer.
[2011/04/19 22:13:28, 1] smbd/service.c:1063(make_connection_snum)
nomad-laptop (192.168.3.101) connect to service netlogon initially as user nomad (uid=2008, gid=1901) (pid 21284)
[2011/04/19 22:13:28, 1] smbd/service.c:1063(make_connection_snum)
nomad-laptop (192.168.3.101) connect to service nomad initially as user nomad (uid=2008, gid=1901) (pid 21284)
[2011/04/19 22:13:28, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:13:38, 1] smbd/service.c:1063(make_connection_snum)
nomad-laptop (192.168.3.101) connect to service nomad initially as user nomad (uid=2008, gid=1901) (pid 21284)
[2011/04/19 22:13:38, 1] smbd/service.c:1240(close_cnum)
nomad-laptop (192.168.3.101) closed connection to service nomad
[2011/04/19 22:13:57, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:13:57, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:13:57, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:14:14, 1] smbd/service.c:1240(close_cnum)
nomad-laptop (192.168.3.101) closed connection to service netlogon
[2011/04/19 22:14:40, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:14:40, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:14:40, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:14:40, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
When I remove the local user folder (c:\users\username) I try to login again. Now I get the error about roaming profiles and that I should logoff and login to resolve the problem. Roaming profiles is disabled on the Zentyal server.
Also I can't browse the home folder anymore, because of permission issues.
Steps to reproduce:
1. Create a user account in Zentyal
2. Login to a Winodws 7 Pro machine with the Zentyal user
3. Logout the Zentyal user
4. Remove the C:\users\username folder (to reset user data/settings)
5. Try to login with the Zentyal user again
This is the samba log:
[2011/04/19 22:13:02, 1] smbd/service.c:1240(close_cnum)
nomad-laptop (192.168.3.101) closed connection to service nomad
[2011/04/19 22:13:26, 0] lib/util_sock.c:539(read_fd_with_timeout)
[2011/04/19 22:13:26, 0] lib/util_sock.c:1491(get_peer_addr_internal)
getpeername failed. Error was Transport endpoint is not connected
read_fd_with_timeout: client 0.0.0.0 read error = Connection reset by peer.
[2011/04/19 22:13:28, 1] smbd/service.c:1063(make_connection_snum)
nomad-laptop (192.168.3.101) connect to service netlogon initially as user nomad (uid=2008, gid=1901) (pid 21284)
[2011/04/19 22:13:28, 1] smbd/service.c:1063(make_connection_snum)
nomad-laptop (192.168.3.101) connect to service nomad initially as user nomad (uid=2008, gid=1901) (pid 21284)
[2011/04/19 22:13:28, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:13:38, 1] smbd/service.c:1063(make_connection_snum)
nomad-laptop (192.168.3.101) connect to service nomad initially as user nomad (uid=2008, gid=1901) (pid 21284)
[2011/04/19 22:13:38, 1] smbd/service.c:1240(close_cnum)
nomad-laptop (192.168.3.101) closed connection to service nomad
[2011/04/19 22:13:57, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:13:57, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:13:57, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:14:14, 1] smbd/service.c:1240(close_cnum)
nomad-laptop (192.168.3.101) closed connection to service netlogon
[2011/04/19 22:14:40, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:14:40, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:14:40, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
[2011/04/19 22:14:40, 0] smbd/service.c:191(set_current_service)
chdir (/home/nomad) failed
10
Installation and Upgrades / Backup not working after clean install
« on: April 08, 2011, 08:44:40 pm »
After a normal Zentyal 2.0 installation I'm unable to use the backup function.
I installed the backup module (2.0.10) and set up a Rsync backup.
This is the configuration:
Mode = Rsync
Dest = 192.168.3.10/media/backup/ebox
User = root
Pass = root password
Encryption = disabled
Full = every month (1st)
Incr = daily
Start = 00:00
Full keep = 1
This is the error after "/usr/share/ebox-ebackup/ebox-remote-ebackup --full"
Command output: .
Exit value: 30
2011/04/08 20:43:29 ERROR> Sudo.pm:212 EBox::Sudo::_rootError - root command /usr/share//ebox-ebackup/ebox-duplicity-wrapper collection-status rsync://root@192.168.3.10/media/backup/ebox --no-encryption failed.
Error output: Traceback (most recent call last):
File "/usr/bin/duplicity", line 1257, in <module>
with_tempdir(main)
File "/usr/bin/duplicity", line 1250, in with_tempdir
fn()
File "/usr/bin/duplicity", line 1151, in main
sync_archive()
File "/usr/bin/duplicity", line 928, in sync_archive
remlist = globals.backend.list()
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 130, in list
result, stdout = self.run_command(commandline)
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 101, in run_command
result, stdout, stderr = self.subprocess_popen_persist(commandline)
AttributeError: RsyncBackend instance has no attribute 'subprocess_popen_persist'
Command output: .
Exit value: 30
2011/04/08 20:43:30 ERROR> Sudo.pm:212 EBox::Sudo::_rootError - root command /usr/share//ebox-ebackup/ebox-duplicity-wrapper remove-all-but-n-full 1 --force rsync://root@192.168.3.10/media/backup/ebox --no-encryption failed.
Error output: Traceback (most recent call last):
File "/usr/bin/duplicity", line 1257, in <module>
with_tempdir(main)
File "/usr/bin/duplicity", line 1250, in with_tempdir
fn()
File "/usr/bin/duplicity", line 1151, in main
sync_archive()
File "/usr/bin/duplicity", line 928, in sync_archive
remlist = globals.backend.list()
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 130, in list
result, stdout = self.run_command(commandline)
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 101, in run_command
result, stdout, stderr = self.subprocess_popen_persist(commandline)
AttributeError: RsyncBackend instance has no attribute 'subprocess_popen_persist'
Command output: .
Exit value: 30
2011/04/08 20:43:30 DEBUG> ebox-remote-ebackup:239 main::__ANON__ -
2011/04/08 20:43:31 ERROR> Sudo.pm:212 EBox::Sudo::_rootError - root command /usr/share//ebox-ebackup/ebox-duplicity-wrapper collection-status rsync://root@192.168.3.10/media/backup/ebox --no-encryption failed.
Error output: Traceback (most recent call last):
File "/usr/bin/duplicity", line 1257, in <module>
with_tempdir(main)
File "/usr/bin/duplicity", line 1250, in with_tempdir
fn()
File "/usr/bin/duplicity", line 1151, in main
sync_archive()
File "/usr/bin/duplicity", line 928, in sync_archive
remlist = globals.backend.list()
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 130, in list
result, stdout = self.run_command(commandline)
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 101, in run_command
result, stdout, stderr = self.subprocess_popen_persist(commandline)
AttributeError: RsyncBackend instance has no attribute 'subprocess_popen_persist'
Command output: .
Exit value: 30
2011/04/08 20:43:32 ERROR> Sudo.pm:212 EBox::Sudo::_rootError - root command /usr/share//ebox-ebackup/ebox-duplicity-wrapper list-current-files rsync://root@192.168.3.10/media/backup/ebox --no-encryption > /var/lib/ebox/tmp/backuplist-cache failed.
Error output: Traceback (most recent call last):
File "/usr/bin/duplicity", line 1257, in <module>
with_tempdir(main)
File "/usr/bin/duplicity", line 1250, in with_tempdir
fn()
File "/usr/bin/duplicity", line 1151, in main
sync_archive()
File "/usr/bin/duplicity", line 928, in sync_archive
remlist = globals.backend.list()
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 130, in list
result, stdout = self.run_command(commandline)
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 101, in run_command
result, stdout, stderr = self.subprocess_popen_persist(commandline)
AttributeError: RsyncBackend instance has no attribute 'subprocess_popen_persist'
Command output: .
Exit value: 30
I installed the backup module (2.0.10) and set up a Rsync backup.
This is the configuration:
Mode = Rsync
Dest = 192.168.3.10/media/backup/ebox
User = root
Pass = root password
Encryption = disabled
Full = every month (1st)
Incr = daily
Start = 00:00
Full keep = 1
This is the error after "/usr/share/ebox-ebackup/ebox-remote-ebackup --full"
Command output: .
Exit value: 30
2011/04/08 20:43:29 ERROR> Sudo.pm:212 EBox::Sudo::_rootError - root command /usr/share//ebox-ebackup/ebox-duplicity-wrapper collection-status rsync://root@192.168.3.10/media/backup/ebox --no-encryption failed.
Error output: Traceback (most recent call last):
File "/usr/bin/duplicity", line 1257, in <module>
with_tempdir(main)
File "/usr/bin/duplicity", line 1250, in with_tempdir
fn()
File "/usr/bin/duplicity", line 1151, in main
sync_archive()
File "/usr/bin/duplicity", line 928, in sync_archive
remlist = globals.backend.list()
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 130, in list
result, stdout = self.run_command(commandline)
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 101, in run_command
result, stdout, stderr = self.subprocess_popen_persist(commandline)
AttributeError: RsyncBackend instance has no attribute 'subprocess_popen_persist'
Command output: .
Exit value: 30
2011/04/08 20:43:30 ERROR> Sudo.pm:212 EBox::Sudo::_rootError - root command /usr/share//ebox-ebackup/ebox-duplicity-wrapper remove-all-but-n-full 1 --force rsync://root@192.168.3.10/media/backup/ebox --no-encryption failed.
Error output: Traceback (most recent call last):
File "/usr/bin/duplicity", line 1257, in <module>
with_tempdir(main)
File "/usr/bin/duplicity", line 1250, in with_tempdir
fn()
File "/usr/bin/duplicity", line 1151, in main
sync_archive()
File "/usr/bin/duplicity", line 928, in sync_archive
remlist = globals.backend.list()
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 130, in list
result, stdout = self.run_command(commandline)
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 101, in run_command
result, stdout, stderr = self.subprocess_popen_persist(commandline)
AttributeError: RsyncBackend instance has no attribute 'subprocess_popen_persist'
Command output: .
Exit value: 30
2011/04/08 20:43:30 DEBUG> ebox-remote-ebackup:239 main::__ANON__ -
2011/04/08 20:43:31 ERROR> Sudo.pm:212 EBox::Sudo::_rootError - root command /usr/share//ebox-ebackup/ebox-duplicity-wrapper collection-status rsync://root@192.168.3.10/media/backup/ebox --no-encryption failed.
Error output: Traceback (most recent call last):
File "/usr/bin/duplicity", line 1257, in <module>
with_tempdir(main)
File "/usr/bin/duplicity", line 1250, in with_tempdir
fn()
File "/usr/bin/duplicity", line 1151, in main
sync_archive()
File "/usr/bin/duplicity", line 928, in sync_archive
remlist = globals.backend.list()
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 130, in list
result, stdout = self.run_command(commandline)
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 101, in run_command
result, stdout, stderr = self.subprocess_popen_persist(commandline)
AttributeError: RsyncBackend instance has no attribute 'subprocess_popen_persist'
Command output: .
Exit value: 30
2011/04/08 20:43:32 ERROR> Sudo.pm:212 EBox::Sudo::_rootError - root command /usr/share//ebox-ebackup/ebox-duplicity-wrapper list-current-files rsync://root@192.168.3.10/media/backup/ebox --no-encryption > /var/lib/ebox/tmp/backuplist-cache failed.
Error output: Traceback (most recent call last):
File "/usr/bin/duplicity", line 1257, in <module>
with_tempdir(main)
File "/usr/bin/duplicity", line 1250, in with_tempdir
fn()
File "/usr/bin/duplicity", line 1151, in main
sync_archive()
File "/usr/bin/duplicity", line 928, in sync_archive
remlist = globals.backend.list()
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 130, in list
result, stdout = self.run_command(commandline)
File "/usr/lib/python2.6/dist-packages/duplicity/backends/rsyncbackend.py", line 101, in run_command
result, stdout, stderr = self.subprocess_popen_persist(commandline)
AttributeError: RsyncBackend instance has no attribute 'subprocess_popen_persist'
Command output: .
Exit value: 30
11
Installation and Upgrades / Isolated LAN interfaces
« on: April 05, 2011, 10:48:21 pm »
Hello,
I want to create private networks for my remote clients. Each LAN should be able to connect to the WAN interface, but not to any other private network.
For example:
WAN = 192.168.3.19
LAN1 = 10.0.0.1
LAN2 = 192.168.100.1
LAN1 + LAN2 should not be able to see or ping each other, however they should be able to go to WAN. How can this be configured? I tried to create objects and deny connection, but somehow it doesn't seem to work.
With this setup I want to isolate a network, so my clients can't access other resources or hack into the other LAN.
I want to create private networks for my remote clients. Each LAN should be able to connect to the WAN interface, but not to any other private network.
For example:
WAN = 192.168.3.19
LAN1 = 10.0.0.1
LAN2 = 192.168.100.1
LAN1 + LAN2 should not be able to see or ping each other, however they should be able to go to WAN. How can this be configured? I tried to create objects and deny connection, but somehow it doesn't seem to work.
With this setup I want to isolate a network, so my clients can't access other resources or hack into the other LAN.
12
Installation and Upgrades / Firewall behind NAT router bug
« on: August 09, 2010, 10:55:31 am »
Hello,
I have a Draytek router for the internet. eBox is sitting inside my LAN. There is only 1 interface, wich is internal (so WAN is not selected).
I've set up my Draytek to put eBox as DMZ. All traffic is send to the eBox. I noticed that all my services/firewall rules are available from external networks, like the eBox remote admin page (port 443). In eBox, there is a rule specified that only internal network can access the remote admin page (port 443). I think this is because my router forwards to the eBox, looking like it's comming from the internal network, and exposing it to the whole world.
I have a Draytek router for the internet. eBox is sitting inside my LAN. There is only 1 interface, wich is internal (so WAN is not selected).
I've set up my Draytek to put eBox as DMZ. All traffic is send to the eBox. I noticed that all my services/firewall rules are available from external networks, like the eBox remote admin page (port 443). In eBox, there is a rule specified that only internal network can access the remote admin page (port 443). I think this is because my router forwards to the eBox, looking like it's comming from the internal network, and exposing it to the whole world.
13
Installation and Upgrades / Home Directories
« on: August 09, 2010, 10:50:18 am »
When I install 1.5, I noticed that the user home directory is in the root of /home, like /home/user
Shouldn't this be in /home/samba/users or /home/samba/profiles?
In my older 1.5 installation this was default, now it changed somehow. I make a file share to /home/samba/profiles so I can see all the FTP documents, but now everyone has access to the whole /home root if I want to read the FTP documents.
Shouldn't this be in /home/samba/users or /home/samba/profiles?
In my older 1.5 installation this was default, now it changed somehow. I make a file share to /home/samba/profiles so I can see all the FTP documents, but now everyone has access to the whole /home root if I want to read the FTP documents.
14
Installation and Upgrades / Fetchmail external account retrieval not working
« on: July 27, 2010, 10:31:25 am »
Hello,
I've set up my eBox some time ago for file/ftp/vpn server. Now I added mail, mail filter and user corner to retrieve mail from my private mail. I'm doing this because my private mail has a bad mail filter, and I wan't to use IMAP wich is not possible at my currect provider.
I created a virtual domain, the same as the real domain. So this would be test@test.nl, wich is my private mail account. The user has the alias test@test.nl so they match. Now I selected the POP, IMAP and retrieval services in the mail module. All is saved and the user corner is configured to retrieve the mail.
The External retrieval service on the dashboard has the status "Stopped". When I activate it, it waits a bit and then shows again that it's stopped. In the mail log I see that dovecot is restarted. Where can I find logs about fetchmail and why it's not retrieving mail?
My version is 1.5.8 on Ubuntu 10.4
I've set up my eBox some time ago for file/ftp/vpn server. Now I added mail, mail filter and user corner to retrieve mail from my private mail. I'm doing this because my private mail has a bad mail filter, and I wan't to use IMAP wich is not possible at my currect provider.
I created a virtual domain, the same as the real domain. So this would be test@test.nl, wich is my private mail account. The user has the alias test@test.nl so they match. Now I selected the POP, IMAP and retrieval services in the mail module. All is saved and the user corner is configured to retrieve the mail.
The External retrieval service on the dashboard has the status "Stopped". When I activate it, it waits a bit and then shows again that it's stopped. In the mail log I see that dovecot is restarted. Where can I find logs about fetchmail and why it's not retrieving mail?
My version is 1.5.8 on Ubuntu 10.4
Pages: [1]