Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
31
Installation and Upgrades / Re: Zentyal 2.2 - Sudden Problem after 1 year
« on: February 18, 2013, 12:47:21 pm »
When I look at syslog.... the last thing I see is zentyal slapd: connection_read: No connection!
Before that it has some smbd audits from a client machine (it was scanning the files for changes).
The no slapd connection is the only thing that is strange..... however as I look farther and farther back in the syslog I see this message keep popping back up.
Before that it has some smbd audits from a client machine (it was scanning the files for changes).
The no slapd connection is the only thing that is strange..... however as I look farther and farther back in the syslog I see this message keep popping back up.
32
Installation and Upgrades / Re: Zentyal 2.2 - Sudden Problem after 1 year
« on: February 18, 2013, 03:40:32 am »
My zentyal install in not a VM so I actually do not use snapshots of any sort. I just simply use the backup module to rsync everything (except the raid6 data... just to large) to the local NAS (OpenMediaVault).
The virtualbox VMs do have a saved snapshot of them, but that is also stored on the raid6 so that is not an LVM.
It is like the system just stalls out......one minute everything fine......next minute no response (not even at the server directly)...just a blank screen. All the logs stop working as if the machine was shut down. I thought looking through the Munin graphs I would see something happen right before the system goes dark, but nothing strange is jumping out at me.
The virtualbox VMs do have a saved snapshot of them, but that is also stored on the raid6 so that is not an LVM.
It is like the system just stalls out......one minute everything fine......next minute no response (not even at the server directly)...just a blank screen. All the logs stop working as if the machine was shut down. I thought looking through the Munin graphs I would see something happen right before the system goes dark, but nothing strange is jumping out at me.
33
Installation and Upgrades / Re: Zentyal 2.2 - Sudden Problem after 1 year
« on: February 17, 2013, 10:53:12 pm »
I use virtualbox to for about 4 different VMs (Gallery Server, Java Server, Web Server and OCS Inventory). Virtualbox itself is installed on the operating system drives so those are on an LVM. However the actual VMs are located on the raid6 (this has been my setup for the last year).
I don't think the VMs I have running through virtualbox are the cause, but I can shut them down to check.
I have installed cacti on a proxmox VM and have gotten it to connect to my OpenMediaVault NAS. So I think I have cacti up and running.
From reading online..... in order to get it working with zentyal I will have to install SNMP in zentyal ? Open firewall for the correct host...... Am I correct in this?
Thanks !!
I don't think the VMs I have running through virtualbox are the cause, but I can shut them down to check.
I have installed cacti on a proxmox VM and have gotten it to connect to my OpenMediaVault NAS. So I think I have cacti up and running.
From reading online..... in order to get it working with zentyal I will have to install SNMP in zentyal ? Open firewall for the correct host...... Am I correct in this?
Thanks !!
34
Installation and Upgrades / Re: Zentyal 2.2 - Sudden Problem after 1 year
« on: February 17, 2013, 08:06:19 pm »
Thanks Christian ..... I do have several other servers (not part of zentyal) so I will try to install cacti (Not on a VM of zentyal ....hahahaha)
I have checked the VM's that I have running in virtualbox, but they don't show anything (just to check.... I will turn off all the VM's and see what happens)
I have checked the VM's that I have running in virtualbox, but they don't show anything (just to check.... I will turn off all the VM's and see what happens)
35
Installation and Upgrades / Zentyal 2.2 - Sudden Problem after 1 year
« on: February 17, 2013, 05:56:29 pm »
Need some help or thoughts on the following issue.
My main zentyal 2.2 server has developed a strange issue after performing perfectly for about a year. The system runs 24/7 and has been running without a reboot for the last 140 days (no issues). All of a sudden I lost all connection to the system. I could not connect through ssh or any other method. I hooked up a monitor and keyboard, but no matter what I did nothing appeared on the screen. I had to do a hard stop and restarted the system. Since then however this issue keeps coming back after the system has been running for about a week. The zentyal logs that I have looked at so far do not show me anything. Basically they just stop recording.... all the munin graphs and zentyal graphs just go dead. The server is on, but nothing is happening.
All modules are running on Zentyal 2.2 system.
Some info on the system: Dual Intex Xenon processors, 24 gigs of ram, single power supply connected to UPS, 4 gigabit lan ports. I use mdadm software raid. 2x32 gig SSD in raid1 using LVM & EXT4 for base system; 1x32 gig SSD which is split between swap and /var/logs; 2x300 gig 10,000RPM raptor drives in raid1 for /home partition; 7x2TB 5900RPM drives in raid6 (mostly media files) . The hole system gets backed up using rsync to a NAS runnig OpenMediaVault
Other than the base zentyal 2.2 system I have installed an UPS monitoring program, virtualbox, subsonic and munin. I have also tweaked my raid6 performance, but nothing else.
I can't find anything in the log files I have looked at for what could be causing this type of failure. It seems to happen randomly... I thought it might be some sort of hardware failure, but not sure.... when I restart the system everything works perfectly.
Any advice or directly will be great !! (This is my production system)
My main zentyal 2.2 server has developed a strange issue after performing perfectly for about a year. The system runs 24/7 and has been running without a reboot for the last 140 days (no issues). All of a sudden I lost all connection to the system. I could not connect through ssh or any other method. I hooked up a monitor and keyboard, but no matter what I did nothing appeared on the screen. I had to do a hard stop and restarted the system. Since then however this issue keeps coming back after the system has been running for about a week. The zentyal logs that I have looked at so far do not show me anything. Basically they just stop recording.... all the munin graphs and zentyal graphs just go dead. The server is on, but nothing is happening.
All modules are running on Zentyal 2.2 system.
Some info on the system: Dual Intex Xenon processors, 24 gigs of ram, single power supply connected to UPS, 4 gigabit lan ports. I use mdadm software raid. 2x32 gig SSD in raid1 using LVM & EXT4 for base system; 1x32 gig SSD which is split between swap and /var/logs; 2x300 gig 10,000RPM raptor drives in raid1 for /home partition; 7x2TB 5900RPM drives in raid6 (mostly media files) . The hole system gets backed up using rsync to a NAS runnig OpenMediaVault
Other than the base zentyal 2.2 system I have installed an UPS monitoring program, virtualbox, subsonic and munin. I have also tweaked my raid6 performance, but nothing else.
I can't find anything in the log files I have looked at for what could be causing this type of failure. It seems to happen randomly... I thought it might be some sort of hardware failure, but not sure.... when I restart the system everything works perfectly.
Any advice or directly will be great !! (This is my production system)
36
Installation and Upgrades / Re: Add RAID1 and mounting /home
« on: February 11, 2013, 10:17:20 pm »
I run several raid arrays using mdadm (Several raid 1 , 5 and 6) and it has been working great for me. I use webmin to manage setup and mount my raid arrays in Zentyal 2.2
Also mdadm allows you to have hot spare drives as well.
Overall I have been very satisfied !!
Also mdadm allows you to have hot spare drives as well.
Overall I have been very satisfied !!
37
Installation and Upgrades / Re: Remote desktop to Client connected through OpenVPN - Questions
« on: January 18, 2013, 04:54:25 am »
Yes the remote desktop is enabled on the clients and remote desktop works when those clients are in the office and connected to one office Vlan's
I have also tried turning off the firewall and that did not do anything either
It is almost like the connection is one directional .... from the client to the internal network, but not from the internal network to the client
I have also tried turning off the firewall and that did not do anything either
It is almost like the connection is one directional .... from the client to the internal network, but not from the internal network to the client
38
Installation and Upgrades / Re: Remote desktop to Client connected through OpenVPN - Questions
« on: January 18, 2013, 01:20:33 am »
Yes I do have both of those checked.
My VPN seems to work fine and the clients can view all the network shares.
I can see the clients under windows network from my LAN computer.
I just can't connect RDP to those clients.... Also I can't ping the clients
My VPN seems to work fine and the clients can view all the network shares.
I can see the clients under windows network from my LAN computer.
I just can't connect RDP to those clients.... Also I can't ping the clients
39
Installation and Upgrades / Re: Remote desktop to Client connected through OpenVPN - Questions
« on: January 17, 2013, 08:21:19 pm »
Could the RDP connection not be going through because of how the TAP interface is configured on the client side?
Does it matter if the TAP interface is listed as home, work, public or unknown network?
Does it matter if the TAP interface is listed as home, work, public or unknown network?
40
Installation and Upgrades / Remote desktop to Client connected through OpenVPN - Questions
« on: January 17, 2013, 04:08:34 am »
I have several remote clients which OpenVPN to connect to the Network shares and other servers running on the LAN. Everything works fine there.
Today I however tried to connect to one of those clients using remote desktop (the user was having some issues). I however was not able to connect. Remote desktop works if the client is at the office and connected to the network, but I can not get it to work if the client is remote and just connect through OpenVPN
Is it even possible to connect to the client? I tried to ping the client using the OpenVPN address (192.168.160.2), but that did not work either.
Any help or direction will be most appreciated !!!
Thank you !!!
Today I however tried to connect to one of those clients using remote desktop (the user was having some issues). I however was not able to connect. Remote desktop works if the client is at the office and connected to the network, but I can not get it to work if the client is remote and just connect through OpenVPN
Is it even possible to connect to the client? I tried to ping the client using the OpenVPN address (192.168.160.2), but that did not work either.
Any help or direction will be most appreciated !!!
Thank you !!!
41
Installation and Upgrades / Re: VLAN separation firewall rules and proxy
« on: November 03, 2012, 09:08:41 pm »
I have a similar setup as you. I have one external interface and 6 Vlan interfaces. All with their own DHCP server.
I use transparent proxy so all of my http requests go through the proxy (the HTTPS requests still go through the firewall).
If you use non-transparent proxy I believe both HTTP and HTTPS requests will go through the proxy).
You have to set your proxy to filter.
In my case I setup individual proxy filter profiles for each Vlan subnet. For instance I have a subnet on which my admin control PC resides (control.lan). I setup that profile to be very permissive, allow users to reach sites just by IP number and I am not blocking any domains. However for my guest subnet (wifi.guest); I made the profile very strict, not allow access to sites just though IP number, and I added domains to which the users do not have access (I don't want my guest to be able to reach any servers/users on home.lan, wifi.lan or dmz.lan).
Just remember that if you use transparent proxy HTTPS traffic does not go through the proxy, but still through the firewall.
I use transparent proxy so all of my http requests go through the proxy (the HTTPS requests still go through the firewall).
If you use non-transparent proxy I believe both HTTP and HTTPS requests will go through the proxy).
You have to set your proxy to filter.
In my case I setup individual proxy filter profiles for each Vlan subnet. For instance I have a subnet on which my admin control PC resides (control.lan). I setup that profile to be very permissive, allow users to reach sites just by IP number and I am not blocking any domains. However for my guest subnet (wifi.guest); I made the profile very strict, not allow access to sites just though IP number, and I added domains to which the users do not have access (I don't want my guest to be able to reach any servers/users on home.lan, wifi.lan or dmz.lan).
Just remember that if you use transparent proxy HTTPS traffic does not go through the proxy, but still through the firewall.
42
Installation and Upgrades / Re: Traffic Shaping Zentya 2.2 - possible issue
« on: October 26, 2012, 03:38:27 pm »
Thank you Christian. I thought about this as well.
However Zentyal does let you set a rate limit for a particular protocol. This would mean that no matter what; service like FTP or other port based service should not exceed a certain bit rate. There is also a guaranteed bit rate which you can set as well.
Finally I have tried running several services at the same time in order to completely flood my connection. I have a plex server which I gave highest priority and gave subsonic servers lowest priority + bit rate limit (they all run on different ports). However I still ran into a problem where the plex server was constantly buffering because the traffic was not being shaped properly.
I probably should try to use some sort of RRDTOOL to really see what is going on..... which one would you suggest? Do you know if something like Munin could provide me that kind of detail?
Thank you !!
However Zentyal does let you set a rate limit for a particular protocol. This would mean that no matter what; service like FTP or other port based service should not exceed a certain bit rate. There is also a guaranteed bit rate which you can set as well.
Finally I have tried running several services at the same time in order to completely flood my connection. I have a plex server which I gave highest priority and gave subsonic servers lowest priority + bit rate limit (they all run on different ports). However I still ran into a problem where the plex server was constantly buffering because the traffic was not being shaped properly.
I probably should try to use some sort of RRDTOOL to really see what is going on..... which one would you suggest? Do you know if something like Munin could provide me that kind of detail?
Thank you !!
43
Installation and Upgrades / Re: Traffic Shaping Zentya 2.2 - possible issue
« on: October 26, 2012, 04:24:58 am »
I have tried other to limit other protocols and am not getting anything to work. I tried to set rules for FTP on the internal LAN interface, but nothing is getting limited.
When I run "top" I can see L7 filtering taking up CPU, but I do not see any actual results.
Does anyone have traffic shaping working properly for both upload and download restrictions?
When I run "top" I can see L7 filtering taking up CPU, but I do not see any actual results.
Does anyone have traffic shaping working properly for both upload and download restrictions?
44
Installation and Upgrades / Re: Changing mail location
« on: October 25, 2012, 12:29:15 pm »
you would first move the contents of /var/vmail to another temporarily created directory. Then mount the partition which is currently mounts under /mails ..... under /var/vmails This way /var/vmails will be on its own partition.
Finally copy back the directories back to /var/vmail..... Keep of the permissions so that if for some reason it does change with the permissions you can easily change them back.
Finally copy back the directories back to /var/vmail..... Keep of the permissions so that if for some reason it does change with the permissions you can easily change them back.
45
Installation and Upgrades / Re: Connect Promox to Zentyal DC
« on: October 25, 2012, 05:46:18 am »
I second using proxmox as a virutalization platform. I don't use with HA, but I have several VMs running on it. I find it easy to use.