This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
1
Installation and Upgrades / Re: Users synchronization password error.
« on: March 14, 2014, 10:08:53 pm »
Hello,
Same issue here.
Any update/fix?
Thanks
Same issue here.
Any update/fix?
Thanks
2
Installation and Upgrades / Re: Erro HTML 417
« on: August 10, 2012, 03:52:02 pm »
Recent way,
mkdir -p /etc/zentyal/stubs/squid
cp /usr/share/zentyal/stubs/squid/squid.conf.mas /etc/zentyal/stubs/squid
edit /etc/zentyal/stubs/squid/squid.conf.mas
add at the end of the file,
ignore_expect_100 on
sudo /etc/init.d/zentyal squid restart
mkdir -p /etc/zentyal/stubs/squid
cp /usr/share/zentyal/stubs/squid/squid.conf.mas /etc/zentyal/stubs/squid
edit /etc/zentyal/stubs/squid/squid.conf.mas
add at the end of the file,
ignore_expect_100 on
sudo /etc/init.d/zentyal squid restart
3
Installation and Upgrades / Re: Zentyal 2.2 - virtual machine module
« on: March 05, 2012, 10:33:51 am »
Hello,
Im trying to implement 2 VMs in my Zentyal test server but the documentation on the training portal and the manual are not very extensive in this chapter, so following some of your directions i was able to put the machines running attached to the host network card using bridged mode, but each time i reboot the VMs i got a new NIC. Did anyone has any idea of what could be causing this?
I have only a single NIC on the host that is configured as bridge, on the bridge i have inputed the IP i want and made this available to the VMs. The host NIC is marked as external.
Thanks
Im trying to implement 2 VMs in my Zentyal test server but the documentation on the training portal and the manual are not very extensive in this chapter, so following some of your directions i was able to put the machines running attached to the host network card using bridged mode, but each time i reboot the VMs i got a new NIC. Did anyone has any idea of what could be causing this?
I have only a single NIC on the host that is configured as bridge, on the bridge i have inputed the IP i want and made this available to the VMs. The host NIC is marked as external.
Thanks
4
Installation and Upgrades / Re: new zentyal dansguardian template
« on: January 16, 2012, 09:07:16 pm »
Hello,
Are you using ebox or zentyal?
Are you using ebox or zentyal?
5
Installation and Upgrades / Re: Samba broken after upgrade to 2.2
« on: December 12, 2011, 08:07:25 pm »
Hello,
There are no errors on the logs and the upgrade went smoothly.
Also have rebooted the server and nothing new.
After requesting support from Zentyal staff they where able to troubleshoot the problem, and relate it to the antivirus module that was disable in the modules page before the upgrade process to 2.2.
I have another server that where in the same conditions (2.0 and antivirus module disable in the modules page) and the upgrade process haven't caused a samba break as this one did, did you have any other similar problems running the upgrade?
There are no errors on the logs and the upgrade went smoothly.
Also have rebooted the server and nothing new.
After requesting support from Zentyal staff they where able to troubleshoot the problem, and relate it to the antivirus module that was disable in the modules page before the upgrade process to 2.2.
I have another server that where in the same conditions (2.0 and antivirus module disable in the modules page) and the upgrade process haven't caused a samba break as this one did, did you have any other similar problems running the upgrade?
6
Installation and Upgrades / [SOLVED]Samba broken after upgrade to 2.2
« on: December 09, 2011, 10:21:50 am »
Hello,
Yesterday night i have been upgrading some servers from 2.0 to 2.2 using the migration tool, and same is working funky.
Every time i try to access a share i can correctly browse its contents but cannot execute whats inside giving the error, Access to the device, path or file has been denied.
I have checked the permission and created a guest folder, i can create files but not read, when using getfacl i have the correct permissions set.
Thanks
Yesterday night i have been upgrading some servers from 2.0 to 2.2 using the migration tool, and same is working funky.
Every time i try to access a share i can correctly browse its contents but cannot execute whats inside giving the error, Access to the device, path or file has been denied.
I have checked the permission and created a guest folder, i can create files but not read, when using getfacl i have the correct permissions set.
Thanks
7
Installation and Upgrades / Re: Firewall blocking LAN IP
« on: December 08, 2011, 12:02:49 pm »This happened to me when we had a duplicate use of ip address on clients assigned with fixed ip in Network objects.That was it.
Check if you have this.
Thanks
8
Installation and Upgrades / Re: Firewall blocking LAN IP
« on: December 08, 2011, 11:59:55 am »Do you have any object members with 00:00:00:00.00:00 as the MAC addr?
Nope.
9
Installation and Upgrades / Re: Firewall blocking LAN IP
« on: November 29, 2011, 05:50:37 pm »
Hello,
Attached.
Thanks
Attached.
Thanks
10
Installation and Upgrades / Re: Firewall blocking LAN IP
« on: November 29, 2011, 10:23:48 am »
Hello,
Rules
Chain fnospoof (1 references)
target prot opt source destination
fdrop all -- machine1.domain.tld anywhere MAC ! 00:xx:xx:xx:xx:xx
fdrop all -- 192.168.1.80 anywhere MAC ! 00:00:00:00:00:00
fdrop all -- 192.168.1.0/24 anywhere
fdrop all -- 172.18.12.0/24 anywhere
fdrop all -- 192.168.133.0/24 anywhere
destination
Chain inospoof (1 references)
target prot opt source destination
idrop all -- machine1.domain.tld anywhere MAC ! 00:xx:xx:xx:xx:xx
idrop all -- 192.168.1.80 anywhere MAC ! 00:00:00:00:00:00
idrop all -- 192.168.1.0/24 anywhere
idrop all -- 172.18.12.0/24 anywhere
idrop all -- 192.168.133.0/24 anywhere
My network config is setup as followed,
192.168.1.0 (Internal Network eth0)
172.18.12.0 (Virtual Internet of eth0)
192.168.133.0 (eth1 WAN)
machine1.domain.tld is the one being blocked by the rule, if i disable the firewall it can contact Zentyal successfully.
Thanks
Rules
Chain fnospoof (1 references)
target prot opt source destination
fdrop all -- machine1.domain.tld anywhere MAC ! 00:xx:xx:xx:xx:xx
fdrop all -- 192.168.1.80 anywhere MAC ! 00:00:00:00:00:00
fdrop all -- 192.168.1.0/24 anywhere
fdrop all -- 172.18.12.0/24 anywhere
fdrop all -- 192.168.133.0/24 anywhere
destination
Chain inospoof (1 references)
target prot opt source destination
idrop all -- machine1.domain.tld anywhere MAC ! 00:xx:xx:xx:xx:xx
idrop all -- 192.168.1.80 anywhere MAC ! 00:00:00:00:00:00
idrop all -- 192.168.1.0/24 anywhere
idrop all -- 172.18.12.0/24 anywhere
idrop all -- 192.168.133.0/24 anywhere
My network config is setup as followed,
192.168.1.0 (Internal Network eth0)
172.18.12.0 (Virtual Internet of eth0)
192.168.133.0 (eth1 WAN)
machine1.domain.tld is the one being blocked by the rule, if i disable the firewall it can contact Zentyal successfully.
Thanks
11
Installation and Upgrades / [SOLVED]Firewall blocking LAN IP
« on: November 28, 2011, 02:57:27 pm »
Hi,
This morning one of the computers in the LAN got blocked by zentyal, if i list the firewall rules and grep for the ip or host of the blocked machine it is listed in the inospoof chain.
Does anyone have any idea how i can manually remove this machine for the chain?
Thanks
This morning one of the computers in the LAN got blocked by zentyal, if i list the firewall rules and grep for the ip or host of the blocked machine it is listed in the inospoof chain.
Does anyone have any idea how i can manually remove this machine for the chain?
Thanks
12
Installation and Upgrades / Re: Creating a Firewall Dyndns Based Rule
« on: October 29, 2011, 05:51:13 pm »What I do is setting up a VPN and only allow ebox administration, ssh etc from the internal network. In the firewall rules I have for the external NIC (eth0 in my case) a specific DENY to be able to connect for these services.
This way, you don't have your external nic exposed with ssh, https, etc... connections and you can have any IP adres because of the valid VPN certificate.
Hello,
I am actually using the scenario you described, just wanted to have a direct ssh to the machine if some service or module stops. But i think this should be the right way to go.
Thanks for all your feedback.
13
Installation and Upgrades / Re: Creating a Firewall Dyndns Based Rule
« on: October 29, 2011, 11:30:46 am »You can create a group and a member associated to the dyndns name and your IP address. That's what I do.Hello,
Yes i have considered that but the IP address is not fixed, it changes once in a while. Any other way to accomplish this?
Thanks
14
Installation and Upgrades / [SOLVED] Creating a Firewall Dyndns Based Rule
« on: October 29, 2011, 12:08:26 am »
Hello,
I have a few linux servers that i have iptables working, but in order to access to some services like ssh i have a cronjob that translates an IP address from a dyndns hostname since i have dynamic IP address and adds it to the firewall allow rules, is there any way to accomplish this in Zentyal?
Thanks for all the feedback.
I have a few linux servers that i have iptables working, but in order to access to some services like ssh i have a cronjob that translates an IP address from a dyndns hostname since i have dynamic IP address and adds it to the firewall allow rules, is there any way to accomplish this in Zentyal?
Thanks for all the feedback.
15
Installation and Upgrades / Re: Samba share permissions - Backup and Restore
« on: October 21, 2011, 09:59:15 am »Since Duplicity (which is used by Zentyal backup) does not support ACLs/ext. attributes, you are out of luck here.
You have to backup/restore ACLs separately (see: man setfacl).
That's why I once asked for "Pre- and post-scripts for Zentyal's backup module":
http://lists.zentyal.org/pipermail/zentyal-users/2011-July/000097.html
Meanwhile, I implemented this and sent the corresponding patch to the devel-list. Let's see what happens ...
Hello,
Sorry for the time taken to get back to this thread,
I was able to backup and restore ACLs manually using the two commands,
To backup,
getfacl --absolute-names -R /home > permissions.acl
To restore,
setfacl --restore=permissions.acl
I hope that Zentyal guys implement this option on a future version.