Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Messages - c4rdinal

Pages: [1] 2 3 ... 19
News and Announcements / Re: Zentyal 4.0 Roadmap Published!
« on: August 27, 2014, 07:52:31 am »
Just wanna express my disappointment with the 4.0 Roadmap. I feel the same like most of the active members. I suppose v4.0 simply lack the spirit of a fully functional SBS server.

I hope Zentyal will try to reconsider their plans...

I have VLAN configured VLAN10 :- /24 , VLAN20 .Zentyal Server is in VLAN 20 .

Machines in VLAN10 are not able to resolve DNS from Zentyal Server , But i was able to join mahcine to the Domain.

Did you make the appropriate DNS entry about the subnet in question in the DNS Module?

I agree that Zentyal MULTIWAN is unstable. Have used it for a while for one of my client but consistently got problem on fail-over. The problem was whenever there is a single WAN link failure, fail-over won't work very well. Especially when there is only one (1) link that is getting High RTO or Latency issue failover always misses which causes ALL WAN to fail.

Fail-over worked whenever there is a complete failure (disconnect/link down) in the link, though. I did so many variation settings to resolve but to no avail. Until I replaced it with PfSense and my life couldn't get better after that.

I use Zentyal primarily for filesharing and it's superior in many ways compared to other SMBs, imho.


I tried this method, but it didnt create a bridge. maybe I'm missing something, but I set one zentyal box to server other to client with the zentyal vpn config, with zentyal-to-zentyal checked but my vpn address was in different subnet than my local subnets. do I need to bridge tap interfaces to ethernet interfaces?

VPN Subnet must be different from your local network. I'm not currently using Zentyal VPN, so I really can't simulate. You can try toggleling NAT to OFF and see how it's doing. And make sure you can route vpn traffic by making sure you have route set and your firewall is not blocking it.

Here's how:

Zentyal Firewall for OpenVPN connections. Go to Firewall -> Packet Filter- > Filer rules from Internal Network to Zentyal – Configure Rules and hit on Add New.

On the newly rule make the following settings and when you finished hit on Add.

    Decision = Accept
    Source = Any
    Service = your vpn service rule

You need need to add a VPN Service prior to this. Use the following settings on vpn service configuration and when you’re done hit on Add.

    Protocol = UDP (if on VPN Server configuration you selected TCP protocol make sure you add a new service here with same port on TCP).
    Source Port = Any.
    Destination Port = 1194.

Also make sure your local network is in the list of ADVERTISED NETWORK.


Installation and Upgrades / Re: Zentyal as Cisco VPN client
« on: July 09, 2014, 02:40:10 am »
How did you connected your Zentyal as a Cisco VPN Client? Thanks

Don't hijack the post. Anyway, configure IPSEC in zentyal and your cisco vpn client should work.


Just install Zentyal OpenVPN and configure zentyal-to-zentyal. Here you'll get same subnet on vpn interface.

Follow this document:


Installation and Upgrades / Re: VPN Server without Port Forwarding
« on: July 08, 2014, 05:33:37 am »
You don't need to setup portforwarding in order to run vpn. You need a vpn client for road warriors setup or zentyal-to-zentyal setup. The two methods will create a "TUNNEL" to allow you to access private networks.

Whenever you activate the vpn service TUN/TAP will be activated for you by Zentyal Service.

Here's a link:


Make sure all client (Win7) PC are configured to Obtain DHCP & DNS.

Did you configure Network Objects and have subnet on you LAN?

As far as I know there is no limit by default for users that may cause problem as yours.




Maybe this link can help you...

Gud luck!

Installation and Upgrades / Re: Multicast, firewall, and openvpn
« on: July 03, 2014, 10:08:00 am »
The firewall will block multicast - this is easiest fixed as follows by disabling the firewall on the openvpnbr0 bridge:

nano /etc/ufw/before.rules
  -A ufw-before-input -i openvpnbr0 -j ACCEPT
  -A ufw-before-forward -i openvpnbr0 -j ACCEPT
ufw disable && ufw enable

If the rules worked, then apply this using the GUI.

ou probably ought to make sure multicast is working, so there is a handy test tool which you can install via 'aptitude install ssmping'.

root@serv:/home/ned# asmping 2xx.0.2.1
asmping joined (S,G) = (*,2xx.0.2.234)
pinging from
  unicast from, seq=1 dist=0 time=226.947 ms
multicast from, seq=1 dist=0 time=341.924 ms
  unicast from, seq=2 dist=0 time=76.332 ms
multicast from, seq=2 dist=0 time=146.323 ms
  unicast from, seq=3 dist=0 time=77.307 ms
multicast from, seq=3 dist=0 time=149.288 ms
  unicast from, seq=4 dist=0 time=77.378 ms

What is key here is that there are lines containing 'multicast'. If you're getting 'unicast' only then something is broken.


Installation and Upgrades / Re: Apply Default ACL's to Home shares
« on: April 14, 2014, 05:07:00 am »
Here's the folder ACL permission for your reference:

mkdir -p /home/samba/
chown root:__USERS__ /home/samba/
chmod 770 /home/samba/
setfacl -b /home/samba/
setfacl -m u:nobody:rx /home/samba/
setfacl -m u:ebox:rwx /home/samba/
mkdir -p /home/samba/profiles
chown root:__USERS__ /home/samba/profiles
chmod 770 /home/samba/profiles
setfacl -b /home/samba/profiles
mkdir -p /home/samba/shares
chown root:__USERS__ /home/samba/shares
chmod 770 /home/samba/shares
setfacl -b /home/samba/shares
setfacl -m u:nobody:rx /home/samba/shares
setfacl -m u:ebox:rwx /home/samba/shares



You might find the solution here:,13712.msg75670.html#msg75670

Hi it's a sip service so you don't need to add a custom service. As you may have noticed it RR follows after SIP, TCP. But the problem is there is no entry for the RR option in the GUI.

Any help from the admin is greatly appreciated :)


I'm try to configure via GUI the SRV Record for our sip servers. The requirement should look like this:

SRV record for service SIP TCP
;     priority: 1  weight: 0  port: 5070  server:
; IN      SRV     1   0 5070

SRV record for the resource record (port 5070 tcp) for each of the servers. This record is used for replication services to locate other servers for replication.

I can add SRV record via the GUI but not DNS SRV resource records (RRs).

Any clue on how to achieve this?


May i know to config properly thanks.

Pls. elaborate what you're doing the time this error happened. We need details.

Installation and Upgrades / Re: Using Backup Rsync to a Local Drive
« on: February 06, 2014, 10:57:01 am »
The hardcode is what I need. hehe :)

Explained here.

But keep in mind this is hard coded  ;) meaning next release ...  ::)


Thanks for taking time to answer. Does the script will allow me to map locally the USB drive for my RSYNC backup?

Pages: [1] 2 3 ... 19