Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
16
Installation and Upgrades / VirtualBox Coexist
« on: July 26, 2011, 11:14:08 pm »
I have an Zentyal Server and also Installed Virtualbox on the Zentyal-Ubuntu
I also have successfully Installed VPN
If I use SSH to the Zentyal Server and I can tunnel the port 3389 (RDP) and Connect to localhost through the tunnel
I cannot get the RDP via VPN to work, Can someone help!!
I have created the RDP service VirtualBox as TCP 3389, added the RDP Service to the firewall packet filter (alow)source(any) in Internal networks to Zentyal, Internal networks (redundent because Source, Destination, Service Any,Any,any exist) and Traffic coming out from Zentyal (redundent because Destination, Service Any,any exist)
As the VPN is an "Internal" network the first setting should open the port up for it to work, but it does not.
What did I miss?
Thanx
I also have successfully Installed VPN
Code: [Select]
nmap -T4 -A -v localhost result show the RDP client running3389/tcp open microsoft-rdp VirtualBox VM Remote Desktop ServiceIf I use SSH to the Zentyal Server and I can tunnel the port 3389 (RDP) and Connect to localhost through the tunnel
I cannot get the RDP via VPN to work, Can someone help!!
I have created the RDP service VirtualBox as TCP 3389, added the RDP Service to the firewall packet filter (alow)source(any) in Internal networks to Zentyal, Internal networks (redundent because Source, Destination, Service Any,Any,any exist) and Traffic coming out from Zentyal (redundent because Destination, Service Any,any exist)
As the VPN is an "Internal" network the first setting should open the port up for it to work, but it does not.
What did I miss?
Thanx
17
Installation and Upgrades / Yet Another port forward Issue
« on: July 02, 2011, 06:31:23 am »
I want to get external port for ssh on 222 to forward to internal on port 22 through my Zentyal
I make the service:
Service name:ssh-222
Protocol: tcp
Source port: Single Port 222
Destination port: 22
I create the Port forward entry:
Interface: eth1 * my external internet port
Original destination: zentyal
Original destination port: Single port 222
Protocol: tcp
Source: any
Destination IP: 192.168.10.252
Port: other 22
I open the Filtering rules from external networks to Zentyal
Decision: ACCEPT
Source: any
Service: ssh-222
I open the Filtering rules from external networks to internal networks
Decision: ACCEPT
Source: any
Destination: Destination IP 192.168.10.252/32
Service: ssh-222
My result from outside:
I do get loging on port 22
root@poseidon:~# ssh chaos.zone.tld
root@chaos.zone.tld's password:
I get no forward to inside server
root@poseidon:~# ssh chaos.zone.tld -p 222
ssh: connect to host chaos.zone.tld port 222: No route to host
My iptables after:
Please help!
I make the service:
Service name:ssh-222
Protocol: tcp
Source port: Single Port 222
Destination port: 22
I create the Port forward entry:
Interface: eth1 * my external internet port
Original destination: zentyal
Original destination port: Single port 222
Protocol: tcp
Source: any
Destination IP: 192.168.10.252
Port: other 22
I open the Filtering rules from external networks to Zentyal
Decision: ACCEPT
Source: any
Service: ssh-222
I open the Filtering rules from external networks to internal networks
Decision: ACCEPT
Source: any
Destination: Destination IP 192.168.10.252/32
Service: ssh-222
My result from outside:
I do get loging on port 22
root@poseidon:~# ssh chaos.zone.tld
root@chaos.zone.tld's password:
I get no forward to inside server
root@poseidon:~# ssh chaos.zone.tld -p 222
ssh: connect to host chaos.zone.tld port 222: No route to host
My iptables after:
Code: [Select]
root@chaos:~# iptables-save >ipt
root@chaos:~# cat ipt |grep 22
-A PREROUTING -d 196.215.137.120/32 -i ppp0 -p tcp -m tcp --dport 222 -j DNAT --to-destination 192.168.10.252:22
-A ffwdrules -d 192.168.10.252/32 -p tcp -m tcp --sport 222 --dport 22 -j ACCEPT
-A fredirects -d 192.168.10.252/32 -i ppp0 -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT
-A iexternal -p tcp -m tcp --sport 222 --dport 22 -m state --state NEW -j ACCEPT
-A iexternal -p tcp -m tcp --dport 22 -m state --state NEW -j ACCEPT
-A iglobal -p tcp -m tcp --dport 22 -m state --state NEW -j ACCEPTPlease help!
18
Installation and Upgrades / snort! or not
« on: February 28, 2011, 03:47:12 pm »
root@chaos:~# tail -vf /var/log/ebox/ebox.log
==> /var/log/ebox/ebox.log <==
2011/02/28 16:34:21 INFO> Base.pm:151 EBox::Module::Base::save - Restarting service for module: logs
2011/02/28 16:35:46 INFO> Service.pm:706 EBox::Module::Service::restartService -
???HMM ... I wonder, looks to me that Zentayl cant restart snort but command line root user can! I changed the IP number of one eth2 (2nd Internet Gateway) I do loadbalance shaping and failover. what I Did not do was follow an procedure to undo the first settings and then remake the new. If it is required for me to first remove all relational settings for an interface/gateway before reconfiguring, then i'd say Zentyal team has much more work cut out for them. Zentyal can't expect the average user to predict the errors caused by changes of configuration. Zentyal will need to think undo/redo and changes trough.
==> /var/log/ebox/ebox.log <==
2011/02/28 16:34:21 INFO> Base.pm:151 EBox::Module::Base::save - Restarting service for module: logs
2011/02/28 16:35:46 INFO> Service.pm:706 EBox::Module::Service::restartService -
Code: [Select]
Restarting service for module: ids
2011/02/28 16:35:47 ERROR> Sudo.pm:212 EBox::Sudo::_rootError - root command /etc/init.d/snort status failed.
Error output:
Command output: * Status of snort daemon(s)
...fail!
.
Exit value: 3
^C
root@chaos:~# /etc/init.d/snort status
* Status of snort daemon(s) ???HMM ... I wonder, looks to me that Zentayl cant restart snort but command line root user can! I changed the IP number of one eth2 (2nd Internet Gateway) I do loadbalance shaping and failover. what I Did not do was follow an procedure to undo the first settings and then remake the new. If it is required for me to first remove all relational settings for an interface/gateway before reconfiguring, then i'd say Zentyal team has much more work cut out for them. Zentyal can't expect the average user to predict the errors caused by changes of configuration. Zentyal will need to think undo/redo and changes trough.
19
Installation and Upgrades / Zentyal & Blackberry
« on: December 15, 2010, 09:02:51 am »
I have had many problems with Blackberry and there days other PDA type phones. The network provider remove or disable the pop3/imap4/smtp functions from the Blackberry connection by default and then blackmail the user to pay extra to re-gain the functionality. Although this is unacceptable in general terms as it infringe on the "freedom" that exist on the internet, we need to live with it. (my Apologies, I had to get this off my chest)
The problem is that by default the providers allow connectivity to MS Exchange server in a Domain.
Is it possible for me to configure the Zentyal / postfix / Groupware (Zarafa) to allow direct MS Exchange connectivity from the Blackberry?
The problem is that by default the providers allow connectivity to MS Exchange server in a Domain.
Is it possible for me to configure the Zentyal / postfix / Groupware (Zarafa) to allow direct MS Exchange connectivity from the Blackberry?
20
Installation and Upgrades / SMTP-AUTH and TLS
« on: November 10, 2010, 10:18:58 am »
ZenTyal is Almost there, For SMTP-AUTH and TLS to work you need to have some Authentication installed.
Even if you set Mail -> General -> Mail server options:
TLS for SMTP server: yes
Require authentication: Yes
If you see the lines
250-STARTTLS
and
250-AUTH LOGIN PLAIN
everything is fine.
The output on my system looks like this:
Is there Any Intelligence out there about getting this to work?
Even if you set Mail -> General -> Mail server options:
TLS for SMTP server: yes
Require authentication: Yes
If you see the lines
250-STARTTLS
and
250-AUTH LOGIN PLAIN
everything is fine.
The output on my system looks like this:
Code: [Select]
root@cheetah:/var/log# telnet localhost 25
Trying ::1...
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220 cheetah.ame.local ESMTP Postfix (Ubuntu)
ehlo localhost 25
250-cheetah.ame.local
250-PIPELINING
250-SIZE
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSN
quit
221 2.0.0 Bye
Connection closed by foreign host.
root@cheetah:/var/log# telnet localhost 465
Trying ::1...
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220 cheetah.ame.local ESMTP Postfix (Ubuntu)
ehlo localhost
250-cheetah.ame.local
250-PIPELINING
250-SIZE
250-ETRN
250-STARTTLS
250-ENHANCEDSTATUSCODES
250-8BITMIME
250 DSNThat mean No one will be able to Authenticate for SMTP-AUTH from in or outside. I need my roaming stations (notebooks/PDA's) to be able to relay mail via this server instead of the default ISP server because they simply mess up the setting if they need to change it every time they go to another country.Is there Any Intelligence out there about getting this to work?
21
Installation and Upgrades / [Solved] HOWTO configure HTTP Proxy with Exceptions
« on: September 13, 2010, 10:01:07 pm »
I need to by-pass the HTTP Proxy [Transparent] with the following to allow people to play Lotro MMORPG
The data I need to enter in the exception is:
*.lotro.com;*.turbine.com;12.130.63.*;206.17.109.*
HTTP Proxy > Filter Profiles > select edit default configuration > Domains filtering > Add new lotro.com and another one turbine.com
But How do I add the IP Literal's [12.130.63.*;206.17.109.*]?
The data I need to enter in the exception is:
*.lotro.com;*.turbine.com;12.130.63.*;206.17.109.*
HTTP Proxy > Filter Profiles > select edit default configuration > Domains filtering > Add new lotro.com and another one turbine.com
But How do I add the IP Literal's [12.130.63.*;206.17.109.*]?
22
Installation and Upgrades / [solved] Zentyal Samba BUG #02
« on: September 10, 2010, 09:15:28 am »
If you make an share in Zentyal Dashboard I would expect the file location will be created and properly chown / chmod so it is readable / usable
I had to go create the shares by hand and run
In this case I have made my shares in filesystem but the same issue prevail if maid under zentyal share location [NOTE: zentyal method is correct as it is supposed to be in the /var or the /home tree]
Please add some checks to get this automated - It will only cause some unanswered forum postings or bad reputation points
Thanx
I had to go create the shares by hand and run
Code: [Select]
sudo chown -R ebox:__USERS__ /datato get proper ownership NOTE: be carefull when using the -R in chown - you can mess up things badly if as root user!In this case I have made my shares in filesystem but the same issue prevail if maid under zentyal share location [NOTE: zentyal method is correct as it is supposed to be in the /var or the /home tree]
Please add some checks to get this automated - It will only cause some unanswered forum postings or bad reputation points
Thanx
23
Installation and Upgrades / Zentyal Samba BUG #01 [reported to http://trac.zentyal.org]
« on: September 10, 2010, 09:09:05 am »
I have created shares, allocated groups for read/write and then deleted the shares then only to find two BUG's
The delete process only deleted a portion of the data from postgress tables. this means that if you make another change to File Sharing a "broken" config entry gets made in the /etc/samba/smb.conf file. Thi is rather messy and we need to edit the postgres table to clear it. however I dont have the postgress database password not can I get it anyware.
I'll make a seperate post about The second error
The delete process only deleted a portion of the data from postgress tables. this means that if you make another change to File Sharing a "broken" config entry gets made in the /etc/samba/smb.conf file. Thi is rather messy and we need to edit the postgres table to clear it. however I dont have the postgress database password not can I get it anyware.
I'll make a seperate post about The second error
24
Installation and Upgrades / [NOT Solved but Better] Zentyal have Vary Bad Public support!
« on: September 09, 2010, 11:09:01 pm »
I have used a lot of Open-Source Applications and have had many Comunity driven Support from them one good sample is ISPConfig Control Pannel.
Zentyl Absolutel stand last in the line, I see daily pleny people asking for support as Zentyal is still full of BUGS and We get no support absolutely nothing!
DONT tell me you have Open Source and then Only support people Paying for Professional support, then you will probably miss the boat totally!
Ubuntu themself at least answer some questions fairly quick, but appart from that the only inter-action I seen so far from Zentyal is little entries to try and get people to define their problems better.
Well my problem is that We need a little more support - especially because the Comunity Documentation is non-existing!
Please supply us with at least one forum guy that can go bug the internal team for some answers and the comunity will help you grow more popular!
Zentyl Absolutel stand last in the line, I see daily pleny people asking for support as Zentyal is still full of BUGS and We get no support absolutely nothing!
DONT tell me you have Open Source and then Only support people Paying for Professional support, then you will probably miss the boat totally!
Ubuntu themself at least answer some questions fairly quick, but appart from that the only inter-action I seen so far from Zentyal is little entries to try and get people to define their problems better.
Well my problem is that We need a little more support - especially because the Comunity Documentation is non-existing!
Please supply us with at least one forum guy that can go bug the internal team for some answers and the comunity will help you grow more popular!
25
Installation and Upgrades / [solved] Postgress Password
« on: September 09, 2010, 11:01:00 pm »
I need to install an Application on the Zentyal server that require Postgress, I need to know what is the Postgress admin password for the server to add my tables.
26
Installation and Upgrades / [solved] zentyal CD/iso Omissions/bugs/missed
« on: September 09, 2010, 07:11:55 pm »
I have picked up some small problems that can easily be fixed on next creation of the CD/iso distribution.
Add
after aptitude update
Reading package lists... Done
W: GPG error: http://ppa.launchpad.net lucid Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 0E83F6EB10E239FF
Will add to this list as I get them
My CD was Downloaded today from http://www.zentyal.org/
Add
Code: [Select]
sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys E83F6EB10E239FFthe error is:after aptitude update
Reading package lists... Done
W: GPG error: http://ppa.launchpad.net lucid Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 0E83F6EB10E239FF
Will add to this list as I get them
My CD was Downloaded today from http://www.zentyal.org/
27
Installation and Upgrades / Asterisk Hardware
« on: September 08, 2010, 11:42:42 am »
I wish to connect to an PSTN using PRI line with asterisk. My current solution is Elastix or similar.
I saw an echo from the ebox-asterisk package while installing about "could not locate xxxxxxx hardware.
I would like to know what hardware I can obtain and will Digium equipment work?
Thank you
I saw an echo from the ebox-asterisk package while installing about "could not locate xxxxxxx hardware.
I would like to know what hardware I can obtain and will Digium equipment work?
Thank you
28
Installation and Upgrades / Adding shell users / passwd err!
« on: September 08, 2010, 10:16:33 am »
I cant add users and add passwords for them in a shell after installing Zentyal
I open a putty session to root and try to add some users, I get this error
even changing passwd's result in
I need to know how to fix this because I want to install some other software on the server that require login.
I open a putty session to root and try to add some users, I get this error
Code: [Select]
root@chaos:~# adduser test
Adding user `test' ...
Adding new group `test' (1001) ...
Adding new user `test' (1001) with group `test' ...
Creating home directory `/home/test' ...
Copying files from `/etc/skel' ...
passwd: Authentication token manipulation error
passwd: password unchanged
Try again? [y/N]even changing passwd's result in
Code: [Select]
passwd: Authentication token manipulation error
passwd: password unchanged
I need to know how to fix this because I want to install some other software on the server that require login.
29
Installation and Upgrades / HowTo Complete Remove ebox/zentyal
« on: September 01, 2010, 07:47:17 pm »
To install is easy as
During the beta phase my server got all messed up but rather than reformatting "Windows standard routine" and re-installing I'd like to use the proper Ubuntu way by using aptitude remove/purge to get rid if the whole installation giving me a clear slate.
If you do not purge the setup files for eg. slapd then well the new install dont re-create them and ofc some "misconfigured config debris" is all over the place.
Can someone point me to the complete tree of dependent's installed?
I do realise this list will end in linux itself, however it be nice to have an list that include only the packages that is configured by the zentyal Dashboard or the Installation routine. The config files is probable the parts that will hinder such an attempted clean install.
Code: [Select]
aptitude install ebox-allbut to "Purge" is NOT because the installation installs a lot of dependants and save configuration all over the place, Making it Impossible to completely remove so you can start over.During the beta phase my server got all messed up but rather than reformatting "Windows standard routine" and re-installing I'd like to use the proper Ubuntu way by using aptitude remove/purge to get rid if the whole installation giving me a clear slate.
If you do not purge the setup files for eg. slapd then well the new install dont re-create them and ofc some "misconfigured config debris" is all over the place.
Can someone point me to the complete tree of dependent's installed?
I do realise this list will end in linux itself, however it be nice to have an list that include only the packages that is configured by the zentyal Dashboard or the Installation routine. The config files is probable the parts that will hinder such an attempted clean install.
30
Installation and Upgrades / Reset Administrator Password for Dashboard
« on: August 27, 2010, 08:40:00 am »
In this morning's Update "aptitude safe-upgrade" updated some ebox/Zentyal components.
I do this daily till Zentyal become released in a few days.
The problem now is that my Dashboard Admin password is NOT accepted, I guess the LDAP was messed up.
How can I fix this and reset the Dashboard password with the command-line?
https://zentyal.domain.tld/LOGIN
Thanx
I do this daily till Zentyal become released in a few days.
The problem now is that my Dashboard Admin password is NOT accepted, I guess the LDAP was messed up.
How can I fix this and reset the Dashboard password with the command-line?
https://zentyal.domain.tld/LOGIN
Thanx