Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Installation and Upgrades / Re: some hosts can't access the internet nor the gateway which is my Zentyal server
« on: November 15, 2013, 03:01:46 am »
okay.. Here's where I am with this... The Elastix/Asterisk install now works for I moved it in front of Zentyal. It's NIC is plugged directly into the router. So, Zentyal was causing the inbound call issue with my Asterisk box. The exact error my carrier saw was a 408. The FreePBX agent was giving them a 408 unauthorized error when sending me calls. Now that I moved it in front of the Zentyal (directly into the router) it works. A firewall blocking traffic would not result in a 408 from a FreePBX agent. Also, my rules where correct. So.. Either Zentyal's SIP server was sending the 408 or my server was.. But.. When at the console of my server while the 408 was being issued to the carrier the Asterisk console didn't show any inbound request. It showed no transactions at all. I was running it via verbose mode 'asterisk -vvvvvvvr'. So.. Is it possible that Zentyal's SIP server was sending the 408 even though the module is not installed? I looked for running processes but didn't see anything. I have limited knowledge of Linux so what command should I run to see if Zentyal's SIP server is actually running in memory?
Now,
In regards to hosts not being able to access the internet... The 3 most recent hosts added to my network where being blocked access to the internet. This is why I thought it was a license issue. I could ping other hosts within it's VLAN. And.. Hosts on other VLANs.. But... I could not ping the inside interface of Zentyal nor could I browser the internet. Once I powered off a few hosts I was able to power on others and they could connect. This also made me think it was a license issue for once hosts where off of the network (powered down and xlates/ARP cleared) the other hosts could then access the internet. So, basically I powered down 2 x VMs and I was then able to power on and connect the laptop that previously was not getting internet access. This also stands true for the other VM that had issues accessing the internet. Below is my config.
I have an Adtran router issues from the carrier with 5 useable IPs. One is assigned to the Zentyal as an outside interface. Two where assigned as virtual interfaces. The other 2 where assigned directly to devices and skipped the Zentyal. They plug directly into the Adtran.
Now,
I have 4 x inside interfaces. 1 x is on the default VLAN. The other three are tagged for VLAN traffic. I use a third party DHCP server to issue IPs to all VLANS.
Now,
Each interface managed by Zentyal is connected to an ESXi vswitch. The port used for the tagged inside interfaces is using a tagged vswitch port. The other inside interface used for the default VLAN is plugged into an untagged vswitch port.
Now,
In regards to hosts not being able to access the internet... The 3 most recent hosts added to my network where being blocked access to the internet. This is why I thought it was a license issue. I could ping other hosts within it's VLAN. And.. Hosts on other VLANs.. But... I could not ping the inside interface of Zentyal nor could I browser the internet. Once I powered off a few hosts I was able to power on others and they could connect. This also made me think it was a license issue for once hosts where off of the network (powered down and xlates/ARP cleared) the other hosts could then access the internet. So, basically I powered down 2 x VMs and I was then able to power on and connect the laptop that previously was not getting internet access. This also stands true for the other VM that had issues accessing the internet. Below is my config.
I have an Adtran router issues from the carrier with 5 useable IPs. One is assigned to the Zentyal as an outside interface. Two where assigned as virtual interfaces. The other 2 where assigned directly to devices and skipped the Zentyal. They plug directly into the Adtran.
Now,
I have 4 x inside interfaces. 1 x is on the default VLAN. The other three are tagged for VLAN traffic. I use a third party DHCP server to issue IPs to all VLANS.
Now,
Each interface managed by Zentyal is connected to an ESXi vswitch. The port used for the tagged inside interfaces is using a tagged vswitch port. The other inside interface used for the default VLAN is plugged into an untagged vswitch port.
2
Installation and Upgrades / Re: Asterisk SIP server behind Zentyal firewall
« on: November 14, 2013, 11:34:45 pm »
I think I found the problem.. If you see my most recent thread I started it seems there is a connection or license limit on the community version of Zentyal?! The last hosts I added are having issues accessing the internet. If I shut a few host down a few new can then get on the internet. Any suggestions? Is there a license limit?
3
Installation and Upgrades / some hosts can't access the internet nor the gateway which is my Zentyal server
« on: November 14, 2013, 09:46:32 pm »
Is there a license/connection limit to Zentyal Community version? The last two host added to my network can't access the internet nor can they ping the Zentyal inside interface. They are able to talk to other hosts on other VLANs that Zentyal is doing the inter VLAN routing for.. but... These two most recently added host cannot access the internet nor ping Zentyal.
My config works like such... I have 4 x virtual interfaces. 3 are tagged for their respective VLAN and the other is default VLAN. I have 1 x outside interface that I use my public IPs...
Why is it that my most two recent hosts cannot access the internet nor ping Zentyal?
My config works like such... I have 4 x virtual interfaces. 3 are tagged for their respective VLAN and the other is default VLAN. I have 1 x outside interface that I use my public IPs...
Why is it that my most two recent hosts cannot access the internet nor ping Zentyal?
4
Installation and Upgrades / Re: Asterisk SIP server behind Zentyal firewall
« on: November 14, 2013, 04:27:07 pm »
I see NOTHING hit my asterisk server on inbound calls. But.. At first people where able to register via remote extensions. That I would see on the console. That actually just quit.. It was working when I went to bed. The only change I made was the packet filters.. odd. Last night if a remote extension called voicemail I would see it.. But.. Inbound calls never hit my SIP server. And now.. remote extensionsi are not registering. I'm even using verbose mode 7 via the command 'asterisk -vvvvvvvr'. I'm going to move the SIP server in front of the Zentyal... This will rule out Zentyal. My ports have to be correct for 5060, 10000-20000 have to be open for them to register and for them to be able to call voicemail. That at least was working. I'm registering the remote extensions via the internet. I created a rule to hit HTTPS on the Elastix/Asterisk server and I can access it. So, port forwarding is fine. I'm beginning to think maybe my new install of Elastix/Asterisk is having issues.
So. Long story short. Remote extensions where working last night and now they are not.. But.. My HTTPS port forward IS working?! Do I need a packet filter for all traffic that I port forward?
One thing odd about my Zentyal public IP config is that no matter what I tried the correct network / CIDR would work. I ended up using a subnet mask of 255.255.255.0 for my public IPs. My other poet forwards work perfectly though. Including the HTC forward I have in place pointing to the same server I'm having issues with.
Are packet filters required for port forwards to work?
So. Long story short. Remote extensions where working last night and now they are not.. But.. My HTTPS port forward IS working?! Do I need a packet filter for all traffic that I port forward?
One thing odd about my Zentyal public IP config is that no matter what I tried the correct network / CIDR would work. I ended up using a subnet mask of 255.255.255.0 for my public IPs. My other poet forwards work perfectly though. Including the HTC forward I have in place pointing to the same server I'm having issues with.
Are packet filters required for port forwards to work?
5
Installation and Upgrades / Re: Asterisk SIP server behind Zentyal firewall
« on: November 14, 2013, 02:25:31 pm »
I have all ports open.. TCP/UDP 5060 is open. TCP/UDP 10000-20000 is open. They are port forwarded to my SIP server. Please keep in mind I'm not using Zentyal's SIP server. I'm using my own. I have no packet filtering nor do I have traffic shaping. I'm able to register from remote extensions and able to call the voicemail from remote extensions. This being remote extensions via the internet.. But. I'm also able to register to my SIP gateway..But.. Incoming and outdoing calls to two different carrier get INVITE issues. I checked the firewall logs and they only show some DROPs that are not from my provider. I don't see where I can see all LOGs. I have LOG enabled for my firewall / port forward rules but I only see DROP entries in my log files.. This stands true for all traffic not just this IP. So.. My logs aren't helping too much. I double checked to make sure Zentyal's SIP server is not running and it's not.. That module is not installed.
In regards to 'Do you have a matching port-forward entry for each item listed in the service section? ' I left all this section in default. I do see a TCP any any and a UDP any any. That is in their by default. I don't think there is anything for me to configure. It's really strange I can register from remote extensions through the internet and even call voicemail.. But.. Inbound and outbound calls don't work.
In regards to 'Is there an entry in Packet-Filter ---- External Networks to Zentyal for VOIP accepting it?'. Initially I left this at default. But.. I just added packet filters for TCP/UDP 5060 and TCP/UDP 10000-20000 and allows from any source... Still same symptoms.
My provider even sent me a packet capture.
In regards to 'Do you have a matching port-forward entry for each item listed in the service section? ' I left all this section in default. I do see a TCP any any and a UDP any any. That is in their by default. I don't think there is anything for me to configure. It's really strange I can register from remote extensions through the internet and even call voicemail.. But.. Inbound and outbound calls don't work.
In regards to 'Is there an entry in Packet-Filter ---- External Networks to Zentyal for VOIP accepting it?'. Initially I left this at default. But.. I just added packet filters for TCP/UDP 5060 and TCP/UDP 10000-20000 and allows from any source... Still same symptoms.
My provider even sent me a packet capture.
6
Installation and Upgrades / Asterisk SIP server behind Zentyal firewall
« on: November 14, 2013, 06:57:23 am »
I installed an Asterisk SIP server behind the Zentyal firewall. I'm simply using the Zentyal server as a gateway/firewall. I'm having problems forwarding traffic to my SIP server. I'm getting various INVITE errors. It almost seems Zentyal is trying to answer the SIP requests... I do not have the VoIP module installed. What am I doing wrong? All of my other port forwards work perfectly fine.. My SIP carrier says they are getting various INVITE errors. Please help.
7
Installation and Upgrades / Segmentation fault
« on: June 08, 2011, 12:06:18 am »
I get the below error when booting now.. I'm using the virtual machine appliance for VMWare.. It seems to happen when it gets stuck saving settings in modules... What should I do?
Segmentation fault
Gave up waiting for root device. Comming problems:
-Boot args (cat /proc/cmdline)
- Check rootdelay= (did the system wait long enough?)
- Check root= (did the system wait for the right device?)
- Missing modules (cat /proc/modules; ls /dev)
ALERT! /dev/disk/by/uuid/28614da5-afc1-455a-b14c-6e19947dd20d does not exist. Dropping to a shell!
Segmentation fault
Gave up waiting for root device. Comming problems:
-Boot args (cat /proc/cmdline)
- Check rootdelay= (did the system wait long enough?)
- Check root= (did the system wait for the right device?)
- Missing modules (cat /proc/modules; ls /dev)
ALERT! /dev/disk/by/uuid/28614da5-afc1-455a-b14c-6e19947dd20d does not exist. Dropping to a shell!
8
Installation and Upgrades / Re: can't send emails from Outlook
« on: June 07, 2011, 09:34:32 pm »
I now see the 'listen on SSL' on my webservers instance... I'm all good now.. I also changed the port to 444 so it wont interfere with my admin page. I'm thinking of setting up a virtual host though for I want to void anyone being able to access my admin page from any IP address.
9
Installation and Upgrades / Re: can't send emails from Outlook
« on: June 06, 2011, 09:02:17 pm »
First of all. Thanks for the responses. I really appreciate all of your help. It ended up being that I had 'internal' checked on the Mail Service setting! I think I did this on accident. Once un-checked I was able to send via port 465 SMTP TLS.
Now,
How do I get SSL to work on the roundcube web mail service? Only HTTP works.
Now,
How do I get SSL to work on the roundcube web mail service? Only HTTP works.
10
Installation and Upgrades / can't send emails from Outlook
« on: June 06, 2011, 07:13:31 am »
I just configured the mail services for Zentyal. The webmail works perfectly fine, however, when sending from Outlook I get a send error. I'm able to receive. I just can't send. I'm using SSL IMAP and TLS SMTP. I have SMTP configured for outbound authenticatino required and no luck. I even tried disabling outbould authentication for SMTP and stilll no luck. I know port 25 is open for I'm able to receive inbound emails to the server.
Any suggestions?
Any suggestions?
Pages: [1]