Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Installation and Upgrades / rootkit infected
« on: January 18, 2012, 12:14:46 pm »
I think I have been infected with a rootkit. I lost all zentyal logs and other directories of logs.
I have checked with chkrootkit but it has not found anything.
Any other idea?
I have checked with chkrootkit but it has not found anything.
Any other idea?
2
Installation and Upgrades / Firewall module error starting
« on: January 03, 2012, 05:45:37 pm »
I have a problem with this comand launching firewall module, is it possible to delete it from launching?
I get this in a openvz (proxmox) container of zentyal 2.2.4: Linux zentyal2 2.6.32-4-pve #1 SMP Mon May 9 12:59:57 CEST 2011 x86_64 GNU/Linux
Code: [Select]
sysctl -q -w net.ipv4.tcp_syncookies="1"I get this in a openvz (proxmox) container of zentyal 2.2.4: Linux zentyal2 2.6.32-4-pve #1 SMP Mon May 9 12:59:57 CEST 2011 x86_64 GNU/Linux
Code: [Select]
# sudo /sbin/sysctl -q -w net.ipv4.tcp_syncookies="1"
error: permission denied on key 'net.ipv4.tcp_syncookies'
3
Installation and Upgrades / IP Route configuration problem
« on: November 09, 2011, 09:50:20 am »
I have a Zentyal-A with VPN server (192.168.130.1) and exposed network (192.168.1.x), in other place I have a zentyal-B VPN client with local IP: 192.168.1.100.
My problem is that when I enable VPN in client I cant access to the Zetyal-B, the route table is:
I have to delete the second route to work with my zentyal-b but I lost the access to LAN network exposed by VPN.
Any idea?
My problem is that when I enable VPN in client I cant access to the Zetyal-B, the route table is:
Code: [Select]
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.130.0 * 255.255.255.0 U 0 0 0 tap0
192.168.1.0 192.168.130.0 255.255.255.0 U 0 0 0 tap0
192.168.1.0 * 255.255.255.0 U 0 0 0 eth2
default 192.168.1.1 0.0.0.0 UG 0 0 0 eth2
I have to delete the second route to work with my zentyal-b but I lost the access to LAN network exposed by VPN.
Any idea?
4
Installation and Upgrades / basic subscription for multiple servers
« on: October 23, 2011, 06:45:34 pm »
Is possible to use basic subscription to management multiple servers??
5
Installation and Upgrades / Clean list of pending sync
« on: October 23, 2011, 06:28:44 pm »
How can I clean list of pending sync in master?
6
Installation and Upgrades / Slave, PDC + File Sharing
« on: September 28, 2011, 02:59:05 pm »
I have opened a ticket with this problem, but it has been closed because it is a adminsitration problem: http://trac.zentyal.org/ticket/3280#comment:1
I have tested with a fresh install of 2.2 slave server and 2.0 master. Also I have tested it in 2.0 slave with the same result.
The problem is that I can not login in windows client to join domain or access to files sharing.
Other thing, I have to insert in smb.conf this line to map correctly users and domain: map untrusted to domain = Yes if I dont put this line i get:
If I try to access to a file sharing with permissions I get:
And if I try to join the client to the domain, I also get this error.
I have tested with a fresh install of 2.2 slave server and 2.0 master. Also I have tested it in 2.0 slave with the same result.
The problem is that I can not login in windows client to join domain or access to files sharing.
Other thing, I have to insert in smb.conf this line to map correctly users and domain: map untrusted to domain = Yes if I dont put this line i get:
Code: [Select]
==> casa <==
[2011/09/27 10:02:42, 3] auth/auth.c:222(check_ntlm_password)
check_ntlm_password: Checking password for unmapped user []\[]@[CASA] with the new password interface
[2011/09/27 10:02:42, 3] auth/auth.c:225(check_ntlm_password)
check_ntlm_password: mapped user is: [GRANADA1]\[]@[CASA]
[2011/09/27 10:02:42, 2] lib/smbldap.c:890(smbldap_open_connection)
smbldap_open_connection: connection opened
...If I try to access to a file sharing with permissions I get:
Code: [Select]
[2011/09/27 16:56:31, 3] libsmb/ntlm_check.c:350(ntlm_password_check)
ntlm_password_check: NT MD4 password check failed for user dominiosAnd if I try to join the client to the domain, I also get this error.
Code: [Select]
....
[2011/09/27 16:56:31, 3] libsmb/ntlm_check.c:350(ntlm_password_check)
ntlm_password_check: NT MD4 password check failed for user dominios
....
[2011/09/27 16:56:31, 3] auth/auth_winbind.c:54(check_winbind_security)
check_winbind_security: Not using winbind, requested domain [GRANADA1] was for this SAM.
[2011/09/27 16:56:31, 2] auth/auth.c:320(check_ntlm_password)
check_ntlm_password: Authentication for user [dominios] -> [dominios] FAILED with error NT_STATUS_WRONG_PASSWORD
[2011/09/27 16:56:31, 3] smbd/error.c:60(error_packet_set)
error packet at smbd/sesssetup.c(122) cmd=115 (SMBsesssetupX) NT_STATUS_LOGON_FAILURE
....
7
Installation and Upgrades / Slave 2.0 work with master 2.2?
« on: September 28, 2011, 01:09:47 pm »
I have too many errors with a master in version 2.0.23 and slaves in 2.0. I thinking to test upgrade to version 2.2 in master, but i sure is there will be a problem master 2.2 and slaves in 2.0
Any experiences with this?
thanks
Any experiences with this?
thanks
8
Installation and Upgrades / howto upgrade to 2.2 from 2.0?
« on: September 27, 2011, 11:55:22 am »
howto upgrade to 2.2 from 2.0?
http://trac.zentyal.org/wiki/Document/Announcement/2.2
Here you say:
Is this posted ? where?
Thanks
http://trac.zentyal.org/wiki/Document/Announcement/2.2
Here you say:
Quote
Upgrading
It will be possible to easily upgrade from a existing Zentyal 2.0 installation to Zentyal 2.2. But you'll have to wait until we publish the migration tool for this purpose in a few days. Moreover, we don't guarantee that everything will be migrated straightforwardly, we'll publish a list of known issues that will need reconfiguration.
Is this posted ? where?
Thanks
9
Installation and Upgrades / Error slave + PDC + samba
« on: September 26, 2011, 12:16:29 pm »
Hi
I have a salve server PDC with filesharing. And I get some errors when i try to auth uses in Windows.
A directory set public can be access without problem:
But when I try to access a other directory with access control I get always this error:
I have change log level of samba to set 3, and I am watching logs...
What could I test more?
EDIT
I have get this log changing the log level:
I don´t know why don´t find the user.... any idea??
I have a salve server PDC with filesharing. And I get some errors when i try to auth uses in Windows.
A directory set public can be access without problem:
Code: [Select]
[2011/09/26 11:57:22, 1] smbd/service.c:1063(make_connection_snum)
servidor (50.33.43.116) connect to service PUBLICO initially as user nobody (uid=65534, gid=65534) (pid 16324)
But when I try to access a other directory with access control I get always this error:
Code: [Select]
[2011/09/26 12:14:38, 1] smbd/service.c:676(make_connection_snum)
create_connection_server_info failed: NT_STATUS_ACCESS_DENIED
[2011/09/26 12:14:51, 1] smbd/service.c:676(make_connection_snum)
create_connection_server_info failed: NT_STATUS_ACCESS_DENIED
[2011/09/26 12:14:59, 1] smbd/service.c:676(make_connection_snum)
create_connection_server_info failed: NT_STATUS_ACCESS_DENIED
[2011/09/26 12:15:04, 1] smbd/service.c:676(make_connection_snum)
create_connection_server_info failed: NT_STATUS_ACCESS_DENIED
I have change log level of samba to set 3, and I am watching logs...
What could I test more?
EDIT
I have get this log changing the log level:
Code: [Select]
[2011/09/26 17:06:40, 3] lib/smbldap.c:1101(smbldap_connect_system)
ldap_connect_system: successful connection to the LDAP server
[2011/09/26 17:06:40, 3] smbd/sec_ctx.c:418(pop_sec_ctx)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2011/09/26 17:06:40, 3] auth/auth_sam.c:282(check_sam_security)
check_sam_security: Couldn't find user 'dominios' in passdb.
[2011/09/26 17:06:40, 3] auth/auth_winbind.c:54(check_winbind_security)
check_winbind_security: Not using winbind, requested domain [ZENTYAL] was for this SAM.
[2011/09/26 17:06:40, 2] auth/auth.c:320(check_ntlm_password)
check_ntlm_password: Authentication for user [dominios] -> [dominios] FAILED with error NT_STATUS_NO_SUCH_USER
[2011/09/26 17:06:40, 3] smbd/sesssetup.c:42(do_map_to_guest)
No such user dominios [ZENTYAL] - using guest account
[2011/09/26 17:06:40, 3] smbd/sec_ctx.c:210(push_sec_ctx)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
I don´t know why don´t find the user.... any idea??
10
Installation and Upgrades / Network configuration VPN + subnet
« on: September 23, 2011, 11:04:56 am »
Hi
I have this infracture and I not sure how I could config it.
I have 2 servers: Zentyal1 and Zentyal2 in the same subnet.
Zentyal1: PDC + VPN + backup + Slave
Zentyal2: Master
Also, I have others servers slave in differents location: Office1, Office2, Office3.... These servers are connected by VPN to Zentyal1 and they can see the subnet of Zentyal1 and Zentyal2.
example: From OfficeX ping to Zentyal1 and Zentyal2 OK
But, I need that Zentyal2 could see the other host. How can I configure it ?
I have tried connect Zentyal2 to VPN in Zentyal1, but I get to many erros...any other idea??
I have this infracture and I not sure how I could config it.
I have 2 servers: Zentyal1 and Zentyal2 in the same subnet.
Zentyal1: PDC + VPN + backup + Slave
Zentyal2: Master
Also, I have others servers slave in differents location: Office1, Office2, Office3.... These servers are connected by VPN to Zentyal1 and they can see the subnet of Zentyal1 and Zentyal2.
example: From OfficeX ping to Zentyal1 and Zentyal2 OK
But, I need that Zentyal2 could see the other host. How can I configure it ?
I have tried connect Zentyal2 to VPN in Zentyal1, but I get to many erros...any other idea??
11
Installation and Upgrades / zentyal-desktop for ubuntu 11.04 server edition
« on: July 03, 2011, 07:50:09 pm »
Hi all,
I looking for a manual to configurate some ubuntu 11.04 servers edition auth with Zentyal LDAP. Now, I am looking this howto https://help.ubuntu.com/community/LDAPClientAuthentication and some post but i can´t get it work.
I thinking to test zentyal-desktop packet to configurate auth in ubuntu servers, So will it work?
If some one know a better way to configurate or a HOWTO to consult, please reply me.
Thanks
I looking for a manual to configurate some ubuntu 11.04 servers edition auth with Zentyal LDAP. Now, I am looking this howto https://help.ubuntu.com/community/LDAPClientAuthentication and some post but i can´t get it work.
I thinking to test zentyal-desktop packet to configurate auth in ubuntu servers, So will it work?
If some one know a better way to configurate or a HOWTO to consult, please reply me.
Thanks
12
Installation and Upgrades / Zentyal on Proxmox (openvz) - Iptables problems and configuration routes
« on: May 26, 2011, 07:07:44 pm »
Hi all,
I want to install a Zentyal in a openvz container on Proxmox. I have yet installed zentyal, and it is running. But I have some problems just now,
I want use zentyal to forwarding routes to others virtuals machines, port 80 to a web server virtual machine, and others...
First I had some problemes with Firewall Module of zentyal, because I had not changed some configuration parameters in /etc/vz/vz.conf (you can see it here http://www.leopoldomaestro.com/habilitar-iptables-para-los-containers-openvz-en-proxmox/), secondly I had to reload kernel modules of the containers.. you can see it here: http://forum.openvz.org/index.php?t=msg&goto=38107&
Now, all it is running but I cant do port forwarding to port 80 on other VM.
network configuration in zentyal:
Routes
IPTABLES
With this configuration I try to access web server hosted in 10.30.X.222 but it dont run...
I want to install a Zentyal in a openvz container on Proxmox. I have yet installed zentyal, and it is running. But I have some problems just now,
I want use zentyal to forwarding routes to others virtuals machines, port 80 to a web server virtual machine, and others...
First I had some problemes with Firewall Module of zentyal, because I had not changed some configuration parameters in /etc/vz/vz.conf (you can see it here http://www.leopoldomaestro.com/habilitar-iptables-para-los-containers-openvz-en-proxmox/), secondly I had to reload kernel modules of the containers.. you can see it here: http://forum.openvz.org/index.php?t=msg&goto=38107&
Now, all it is running but I cant do port forwarding to port 80 on other VM.
network configuration in zentyal:
Code: [Select]
#VLAN internal
iface eth0 inet static
address 10.30.X.120
netmask 255.255.255.0
broadcast 10.30.X.255
gateway 10.30.X.1
#VLAN external
iface eth1 inet static
address 10.90.X.33
netmask 255.255.255.248
broadcast 10.90.X.39
Routes
Code: [Select]
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
10.90.X.32 * 255.255.255.248 U 0 0 0 eth1
10.30.X.0 * 255.255.255.0 U 0 0 0 eth0
default 10.90.X.38 0.0.0.0 UG 0 0 0 eth1
IPTABLES
Code: [Select]
iptables -t nat -L -n
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
premodules all -- 0.0.0.0/0 0.0.0.0/0
DNAT udp -- 0.0.0.0/0 10.90.X.33 udp dpt:81 to:10.30.X.222:80
DNAT tcp -- 0.0.0.0/0 10.90.X.33 tcp dpt:81 to:10.30.X.222:80
DNAT udp -- 0.0.0.0/0 10.90.X.33 udp dpt:80 to:10.30.X.222
DNAT tcp -- 0.0.0.0/0 10.90.X.33 tcp dpt:80 to:10.30.X.222
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
postmodules all -- 0.0.0.0/0 0.0.0.0/0
SNAT all -- !10.90.X.33 0.0.0.0/0 to:10.90.X.33
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain postmodules (1 references)
target prot opt source destination
Chain premodules (1 references)
target prot opt source destination
With this configuration I try to access web server hosted in 10.30.X.222 but it dont run...
13
Installation and Upgrades / Change IP of slave server
« on: November 09, 2010, 10:31:23 am »
If I have move a server (slave or master) from the network so it will change its IP.
how can i change the ip on the master and the slave to continue working without reinstalling usersandgroups (ebox-usersandgroups-reinstall).
I have tried changing the ip on https://ipslave/ebox/Users/View/Mode and adding on /etc/hosts master the IP slave but it dont work
only be done in this way with ebox-usersandgroups-reinstall??
Thanks
how can i change the ip on the master and the slave to continue working without reinstalling usersandgroups (ebox-usersandgroups-reinstall).
I have tried changing the ip on https://ipslave/ebox/Users/View/Mode and adding on /etc/hosts master the IP slave but it dont work
only be done in this way with ebox-usersandgroups-reinstall??
Thanks
14
Installation and Upgrades / Sync two masters
« on: September 09, 2010, 01:37:44 pm »
I have several servers running as masters, i want to sync all users and groups in one master.
How can I do it?
How can I do it?
15
Installation and Upgrades / Master/Slave on the same host
« on: July 22, 2010, 03:00:22 pm »
I want to make a system with somes slave and one master, but i need that on the master host I will be able to have users groups and shared files also.
Like this scheme:
HOST 1 (Master)
+ Users 1 and groups 1
+ shared files
SLAVE 1 (slave of master)
+ Users 2 and groups 2
+ shared files
SLAVE 2 (slave of master)
+ Users 3 and groups 3
+ shared files
Can use one host (machine) to be master and have be able to share files and manage users???
Like this scheme:
HOST 1 (Master)
+ Users 1 and groups 1
+ shared files
SLAVE 1 (slave of master)
+ Users 2 and groups 2
+ shared files
SLAVE 2 (slave of master)
+ Users 3 and groups 3
+ shared files
Can use one host (machine) to be master and have be able to share files and manage users???
Pages: [1]