Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1] 2
1
Installation and Upgrades / Re: Remaking the eBox sidebar (discussion help needed)
« on: August 13, 2009, 02:31:25 pm »
Referring to the UTM concept (http://en.wikipedia.org/wiki/Unified_threat_management) the "Security" label should consist of:
- Firewall
- Intrusion Detection
- antivirus
- VPN (no need to put it under Infrastructure)
- content filtering (HTTP proxy and L7)
- load balancing (traffic shaping?)
- Mail filter (anti-spam)
I'm puzzled with the question does the menu need "Gateway" label at all?
BR
Jüri Kirch
- Firewall
- Intrusion Detection
- antivirus
- VPN (no need to put it under Infrastructure)
- content filtering (HTTP proxy and L7)
- load balancing (traffic shaping?)
- Mail filter (anti-spam)
I'm puzzled with the question does the menu need "Gateway" label at all?
BR
Jüri Kirch
2
Installation and Upgrades / Re: Remaking the eBox sidebar (discussion help needed)
« on: August 13, 2009, 01:34:36 pm »
Hi!
Is it intentional that VPN is under Security and Infrastructure? Shouldn't it be just under Security?
BR
Jüri Kirch
Is it intentional that VPN is under Security and Infrastructure? Shouldn't it be just under Security?
BR
Jüri Kirch
3
Installation and Upgrades / Re: Working domain & email (thanks Sixstone!), but thunderbird login probs now
« on: May 06, 2009, 12:59:38 pm »
Hello
Maybe the following reference can be helpful:
http://forum.ebox-platform.com/index.php?topic=595
Best regards
Jüri Kirch
Maybe the following reference can be helpful:
http://forum.ebox-platform.com/index.php?topic=595
Best regards
Jüri Kirch
4
Installation and Upgrades / Re: Document clearly defining a basic network example.
« on: May 04, 2009, 03:00:30 pm »
Hello
Here is a simple howto:
http://forum.ebox-platform.com/index.php?topic=896.0
Best regards
Jüri Kirch
Here is a simple howto:
http://forum.ebox-platform.com/index.php?topic=896.0
Best regards
Jüri Kirch
5
Installation and Upgrades / Re: Unable to startup
« on: April 15, 2009, 08:03:47 am »
Hello
Maybe this will help you:
Source: https://answers.launchpad.net/ubuntu/+question/23343
With regards
Jüri Kirch
Maybe this will help you:
Quote
You have to boot the server install CD and choose "Rescue a broken system". When you get the prompt, run "apt-get install linux-generic" to install the generic kernel. Reboot and choose the new kernel in GRUB.
Source: https://answers.launchpad.net/ubuntu/+question/23343
With regards
Jüri Kirch
6
News and Announcements / Re: ebox-egroupware ready for testing
« on: March 26, 2009, 10:28:43 am »
Hello
I can report that the upgrade from eBox 0.12.3 to 1.0 went well and as you might imagine it also resolved the eGroupware module error problem that I was having.
But now I'm puzzled with a question how to reset the eGroupware admin password for access at
"http://localserver/egroupware/setup" ?
I tried:
BR
Jüri Kirch
I can report that the upgrade from eBox 0.12.3 to 1.0 went well and as you might imagine it also resolved the eGroupware module error problem that I was having.
But now I'm puzzled with a question how to reset the eGroupware admin password for access at
"http://localserver/egroupware/setup" ?
I tried:
Code: [Select]
sudo dpkg-reconfigure ebox-egroupwareBut that seemed to restart a few eBox modules and did not ask for the administrative account credentials as it was on the first time when installing ebox-egroupware.BR
Jüri Kirch
7
Installation and Upgrades / Re: proxy and HTTPS problem - same old problem with a twist
« on: March 11, 2009, 01:04:12 pm »
So in an eBox environment with one network interface such problem does not exist because there is no NAT taking place (unless using VPN). Is it so?
BR
Jüri Kirch
BR
Jüri Kirch
8
News and Announcements / Re: ebox-egroupware ready for testing
« on: March 10, 2009, 02:38:07 pm »
Hello
Here is the output:
BR
Jüri Kirch
Here is the output:
Code: [Select]
2009/03/10 14:20:29 INFO> Manager.pm:601 EBox::ServiceModule::Manager::__ANON__ - File /etc/amavis/conf.d/amavisd.conf does not exist. So we won't compute it
2009/03/10 14:20:35 INFO> Global.pm:360 EBox::Global::saveAllModules - Saving config and restarting services: firewall mailfilter egroupware
2009/03/10 14:20:35 INFO> Module.pm:155 EBox::Module::save - Restarting service for module: firewall
2009/03/10 14:20:38 DEBUG> LogFiltering.pm:70 EBox::Events::Model::Watcher::LogFiltering::new - Missing argument: tableInfo
2009/03/10 14:20:38 WARN> Events.pm:623 EBox::Events::__ANON__ - model EBox::Events::Model::Watcher::LogFiltering cannot be instantiated
2009/03/10 14:20:40 INFO> Module.pm:155 EBox::Module::save - Restarting service for module: mailfilter
2009/03/10 14:20:40 ERROR> Sudo.pm:185 EBox::Sudo::_rootError - root command /usr/bin/test -f /var/lib/ebox/tmp//trainSpam failed.
Error output:
Command output: .
Exit value: 1
2009/03/10 14:20:41 INFO> Module.pm:155 EBox::Module::save - Restarting service for module: egroupware
2009/03/10 14:21:42 DEBUG> CompositeManager.pm:393 EBox::Model::CompositeManager::_inferModuleFromComposite - compositeName VMailDomain does not exist.
2009/03/10 14:21:46 DEBUG> LogFiltering.pm:70 EBox::Events::Model::Watcher::LogFiltering::new - Missing argument: tableInfo
2009/03/10 14:21:46 WARN> Events.pm:623 EBox::Events::__ANON__ - model EBox::Events::Model::Watcher::LogFiltering cannot be instantiated
2009/03/10 14:21:47 DEBUG> CompositeManager.pm:393 EBox::Model::CompositeManager::_inferModuleFromComposite - compositeName DefaultApplications does not exis
2009/03/10 14:21:47 DEBUG> CompositeManager.pm:393 EBox::Model::CompositeManager::_inferModuleFromComposite - compositeName PermissionTemplates does not exis
2009/03/10 14:21:47 ERROR> ModelProvider.pm:243 EBox::Model::ModelProvider::AUTOLOAD - Undefined method isImapEnabled
2009/03/10 14:37:38 DEBUG> LogFiltering.pm:70 EBox::Events::Model::Watcher::LogFiltering::new - Missing argument: tableInfo
2009/03/10 14:37:38 WARN> Events.pm:623 EBox::Events::__ANON__ - model EBox::Events::Model::Watcher::LogFiltering cannot be instantiated
2009/03/10 14:41:58 ERROR> Sudo.pm:185 EBox::Sudo::_rootError - root command test -e /etc/amavis/conf.d/amavisd.conf failed.
Error output:
Command output: .
Exit value: 1
2009/03/10 14:41:58 INFO> Manager.pm:601 EBox::ServiceModule::Manager::__ANON__ - File /etc/amavis/conf.d/amavisd.conf does not exist. So we won't compute it
2009/03/10 14:42:02 INFO> Global.pm:360 EBox::Global::saveAllModules - Saving config and restarting services: firewall mailfilter
2009/03/10 14:42:02 INFO> Module.pm:155 EBox::Module::save - Restarting service for module: firewall
2009/03/10 14:42:05 DEBUG> LogFiltering.pm:70 EBox::Events::Model::Watcher::LogFiltering::new - Missing argument: tableInfo
2009/03/10 14:42:05 WARN> Events.pm:623 EBox::Events::__ANON__ - model EBox::Events::Model::Watcher::LogFiltering cannot be instantiated
2009/03/10 14:42:07 INFO> Module.pm:155 EBox::Module::save - Restarting service for module: mailfilter
2009/03/10 14:42:07 ERROR> Sudo.pm:185 EBox::Sudo::_rootError - root command /usr/bin/test -f /var/lib/ebox/tmp//trainSpam failed.
BR
Jüri Kirch
9
News and Announcements / Re: ebox-egroupware ready for testing
« on: March 10, 2009, 01:36:42 pm »
Hello
I enabled debug mode in "/etc/ebox/99ebox.conf".
When enabling egroupware and trying to open egroupware module in eBox I get the same error "An internal error has...".
Here is the output of /var/log/ebox/ebox.log:
With regards
Jüri Kirch
I enabled debug mode in "/etc/ebox/99ebox.conf".
When enabling egroupware and trying to open egroupware module in eBox I get the same error "An internal error has...".
Here is the output of /var/log/ebox/ebox.log:
Quote
Error output:
Command output: .
Exit value: 1
2009/03/10 14:20:41 INFO> Module.pm:155 EBox::Module::save - Restarting service for module: egroupware
2009/03/10 14:21:42 DEBUG> CompositeManager.pm:393 EBox::Model::CompositeManager::_inferModuleFromComposite - compositeName VMailDomain does not exist.
2009/03/10 14:21:46 DEBUG> LogFiltering.pm:70 EBox::Events::Model::Watcher::LogFiltering::new - Missing argument: tableInfo
2009/03/10 14:21:46 WARN> Events.pm:623 EBox::Events::__ANON__ - model EBox::Events::Model::Watcher::LogFiltering cannot be instantiated
2009/03/10 14:21:47 DEBUG> CompositeManager.pm:393 EBox::Model::CompositeManager::_inferModuleFromComposite - compositeName DefaultApplications does not exis
2009/03/10 14:21:47 DEBUG> CompositeManager.pm:393 EBox::Model::CompositeManager::_inferModuleFromComposite - compositeName PermissionTemplates does not exis
2009/03/10 14:21:47 ERROR> ModelProvider.pm:243 EBox::Model::ModelProvider::AUTOLOAD - Undefined method isImapEnabled
With regards
Jüri Kirch
10
Installation and Upgrades / Re: proxy and HTTPS problem - same old problem with a twist
« on: March 10, 2009, 09:50:01 am »
Hello
Just for your information:
I came across nearly the same kind of problem in a two network card eBox environment:
for client computers HTTP connections worked, HTTPS and FTP did not work.
Solution was to mark one network interface as external and HTTPS and FTP opened up nicely.
With regards
Jüri Kirch
Just for your information:
I came across nearly the same kind of problem in a two network card eBox environment:
for client computers HTTP connections worked, HTTPS and FTP did not work.
Solution was to mark one network interface as external and HTTPS and FTP opened up nicely.
With regards
Jüri Kirch
11
News and Announcements / Re: ebox-egroupware ready for testing
« on: February 26, 2009, 03:55:23 pm »
Hello
There where two things that I noticed after installing egroupware with "apt-get update && install ebox-egroupware":
1.) when running the egroupware installation test an error is found:
This might take a while, please wait ...
ErrorChecking file-permissions of .././sitemgr/doc for not world writable:
.././sitemgr/doc does not exist !!!
2.) eBox Software Management module has no knowledge that egroupware is installed:
Component Installed version
eBox - eGroupware none
With regards
Jüri Kirch
There where two things that I noticed after installing egroupware with "apt-get update && install ebox-egroupware":
1.) when running the egroupware installation test an error is found:
This might take a while, please wait ...
ErrorChecking file-permissions of .././sitemgr/doc for not world writable:
.././sitemgr/doc does not exist !!!
2.) eBox Software Management module has no knowledge that egroupware is installed:
Component Installed version
eBox - eGroupware none
With regards
Jüri Kirch
12
Installation and Upgrades / Re: VPN howto
« on: February 23, 2009, 10:57:46 am »
Hello
I would like to add that if the client computer has Windows Vista instead of Windows XP then a minor change has to be made:
1.) add two lines to the client side configuration file (with the extension .ovpn):
route-method exe
route-delay 2
2.) make sure OpenVPN GUI is started with administrator privileges.
More can be read from the next post:
http://www.ctunion.com/node/226
Best regards
Jüri Kirch
I would like to add that if the client computer has Windows Vista instead of Windows XP then a minor change has to be made:
1.) add two lines to the client side configuration file (with the extension .ovpn):
route-method exe
route-delay 2
2.) make sure OpenVPN GUI is started with administrator privileges.
More can be read from the next post:
http://www.ctunion.com/node/226
Best regards
Jüri Kirch
13
Installation and Upgrades / Re: How To Configure HTTP Proxy
« on: February 21, 2009, 10:30:13 am »
Hello Pfff
It's very simple to use transparency proxy and then there is no need to configure each browser. I have the transparency proxy configured in the following way:
1.) HTTP Proxy->General:
Transparent Proxy: on
Port: 3128
Default policy: Filter
2.) HTTP Proxy->Filter Settings:
Threshold:Very permissive
Domains filtering:
ebuddy.com Always deny
etc.
For example the domain "ebuddy.com" gets always filtered and other domains that have inappropriate content according to Danguardian content filtering get blocked too. But you can play around with the "Threshold" to find the best restrictiveness. Add as much domains as you like to domain filtering and use the "Always allow" policy for unrestricted domains (google.com etc).
Still there is two things to remember:
1.) eBox has to be the gateway to your client computers for content filter to work;
2.) as the HTTP Proxy->General Settings tab applies "you cannot proxy HTTPS transparently. You will need to add a firewall rule if you enable this mode".
It's very simple to use transparency proxy and then there is no need to configure each browser. I have the transparency proxy configured in the following way:
1.) HTTP Proxy->General:
Transparent Proxy: on
Port: 3128
Default policy: Filter
2.) HTTP Proxy->Filter Settings:
Threshold:Very permissive
Domains filtering:
ebuddy.com Always deny
etc.
For example the domain "ebuddy.com" gets always filtered and other domains that have inappropriate content according to Danguardian content filtering get blocked too. But you can play around with the "Threshold" to find the best restrictiveness. Add as much domains as you like to domain filtering and use the "Always allow" policy for unrestricted domains (google.com etc).
Still there is two things to remember:
1.) eBox has to be the gateway to your client computers for content filter to work;
2.) as the HTTP Proxy->General Settings tab applies "you cannot proxy HTTPS transparently. You will need to add a firewall rule if you enable this mode".
14
Installation and Upgrades / Re: Ebox install HOWTO. (Part 1)
« on: February 21, 2009, 09:12:37 am »
Hello
As I understand ndra, you should use static IP on the server (like for local LAN the IP could be 192.168.1.1).
So for example, if you have a DHCP range for some client computers in your network from IP 192.168.1.10 to IP 192.168.1.100 then there are two ranges that you can use for client computers with static IPs:
1.) range from 192.168.1.2 to 192.168.1.9
2.) range form 192.168.1.101 to 192.168.1.254
When you want the clients to have static IPs then you have to configure each client computer one by one.
If you have a network printer in your network it would be wise to assign a static IP to it like 192.168.1.2 is. Because eBox uses the same local LAN your computers can communicate with the printer easily.
Best regards
Jüri Kirch
As I understand ndra, you should use static IP on the server (like for local LAN the IP could be 192.168.1.1).
So for example, if you have a DHCP range for some client computers in your network from IP 192.168.1.10 to IP 192.168.1.100 then there are two ranges that you can use for client computers with static IPs:
1.) range from 192.168.1.2 to 192.168.1.9
2.) range form 192.168.1.101 to 192.168.1.254
When you want the clients to have static IPs then you have to configure each client computer one by one.
If you have a network printer in your network it would be wise to assign a static IP to it like 192.168.1.2 is. Because eBox uses the same local LAN your computers can communicate with the printer easily.
Best regards
Jüri Kirch
15
Installation and Upgrades / Re: Trouble With Setting IP/Can't Access eBox
« on: February 18, 2009, 02:48:38 pm »
Here is the Ebox install HOWTO:
http://forum.ebox-platform.com/index.php?topic=896.0
Best regards
Jüri Kirch
http://forum.ebox-platform.com/index.php?topic=896.0
Best regards
Jüri Kirch
Pages: [1] 2