1
Other modules / How to properly re-create a CA in Zentyal
« Last post by covex on September 02, 2024, 07:09:59 pm »My CA is going to expire soon, I'm probably not going to renew cert with old key as its pretty hairy and should update also to better private key. But there is nowhere written how to properly re-create the CA - there seems to be no GUI option to do that. Should I delete the /var/lib/zentyal/CA to re-initialize the "Certificate Authority -> General" to ask for CA creation?
2
Installation and Upgrades / Re: Server not reachable
« Last post by foeke on September 02, 2024, 10:06:39 am »If this problem doesn't return, it was most probably because some eternal party crammed 3 other servers in my clients little server cabinet. And the server was just overheating. A reboot outside the cabinet solved it for now.
3
Installation and Upgrades / Server not reachable
« Last post by foeke on September 02, 2024, 09:39:17 am »One of the servers running 7.0 is not reachable.
Can't open the shares, can't ssh, can't open the web console.
It is pingable. But it takes a whole while before it starts.
Internet still works. Full bandwidth.
And OVPN is also still working fine.
When I try to connect with Putty, it takes a while before it asks for the username. Then even longer for the password.
Just once I could log in, and I tried to restart the firewall first. But that didn't happen. I don't know if it started that processes.
Any suggestions?
Can't open the shares, can't ssh, can't open the web console.
It is pingable. But it takes a whole while before it starts.
Internet still works. Full bandwidth.
And OVPN is also still working fine.
When I try to connect with Putty, it takes a while before it asks for the username. Then even longer for the password.
Just once I could log in, and I tried to restart the firewall first. But that didn't happen. I don't know if it started that processes.
Any suggestions?
4
Installation and Upgrades / Re: After upgrade from 7.1 to 8.0 gateway is not working fine
« Last post by Siroco on August 26, 2024, 10:50:34 am »Hi,
Could you give more specific details about the configuration? For example:
- Network interfaces configuration
- (DHCP, static, bridge...)
- Gateways,
- Output of the ip route show command to see the routes and gateways.
- Static routes configuration.
- Load balancing rules
- WAN Failover rules
- Netplan configuration file, usually /etc/netplan/netplan.yaml
Without the above, people might not be able to reproduce it.
Regards.
Could you give more specific details about the configuration? For example:
- Network interfaces configuration
- (DHCP, static, bridge...)
- Gateways,
- Output of the ip route show command to see the routes and gateways.
- Static routes configuration.
- Load balancing rules
- WAN Failover rules
- Netplan configuration file, usually /etc/netplan/netplan.yaml
Without the above, people might not be able to reproduce it.
Regards.
5
Installation and Upgrades / After upgrade from 7.1 to 8.0 gateway is not working fine
« Last post by ocid on August 24, 2024, 05:37:52 pm »Hi there,
after upgrage Zentyal form 7.1 to 8.0, all is working fine but gateway.
I have 3 network interfaces, one internal and two externals. Before the upgrade, all input traffic by the external interfaces was forwarded right to the local network.
With Zentyal 8, only "the default gateway" forward the traffic to the local network, the other one doesn't forward the traffic. If I'll change the default gw on the webadmin it doesn't work (no switching to the other external interface). Forwarding only works if I "disable" the first external interface, then input traffic is well redirected to the local network.
I built from scratch Zentyal 8 restoring the configuration backup of the upgraded Zentyal, but fail is persisting. Any suggestion?
Thx in advance.
after upgrage Zentyal form 7.1 to 8.0, all is working fine but gateway.
I have 3 network interfaces, one internal and two externals. Before the upgrade, all input traffic by the external interfaces was forwarded right to the local network.
With Zentyal 8, only "the default gateway" forward the traffic to the local network, the other one doesn't forward the traffic. If I'll change the default gw on the webadmin it doesn't work (no switching to the other external interface). Forwarding only works if I "disable" the first external interface, then input traffic is well redirected to the local network.
I built from scratch Zentyal 8 restoring the configuration backup of the upgraded Zentyal, but fail is persisting. Any suggestion?
Thx in advance.
6
Installation and Upgrades / Re: Pre-Upgrade check 7.1.3 to 8.0 - possible issue in log /var/log/syslog
« Last post by trvaa on August 23, 2024, 10:14:18 pm »I have done the steps outlined in the first entry of this post and after un-enabling Dynamic DNS Options, then re-enabling all seems fine.
I can now reverse lookup IP addresses using nslookup.
There are now no errors in the logs.
I can now reverse lookup IP addresses using nslookup.
There are now no errors in the logs.
7
Installation and Upgrades / Re: Pre-Upgrade check 7.1.3 to 8.0 - possible issue in log /var/log/syslog
« Last post by trvaa on August 23, 2024, 06:50:13 pm »However, on looking a bit further I do have:
/etc/dhcp/ddns-keys/keys
Which contains a secret key!
Is this for something else?
/etc/dhcp/ddns-keys/keys
Which contains a secret key!
Is this for something else?
8
Installation and Upgrades / Re: Pre-Upgrade check 7.1.3 to 8.0 - possible issue in log /var/log/syslog
« Last post by trvaa on August 23, 2024, 05:48:21 pm »thank you very much:
I have a dhcpuser and the /var/log/zentyal/zentyal.log has:
# If the domain user is present
Creating dhcpduser for dynamic dns DON'T NEED, ignore step
but I don't have:
/etc/dhcp/samba-keys/dhcpduser.keytab
I'm not sure why it was not created but it looks like I need to create it using the steps in the log
I have a dhcpuser and the /var/log/zentyal/zentyal.log has:
# If the domain user is present
Creating dhcpduser for dynamic dns DON'T NEED, ignore step
but I don't have:
/etc/dhcp/samba-keys/dhcpduser.keytab
I'm not sure why it was not created but it looks like I need to create it using the steps in the log
9
Installation and Upgrades / Re: Pre-Upgrade check 7.1.3 to 8.0 - possible issue in log /var/log/syslog
« Last post by turalyon on August 23, 2024, 05:18:15 pm »The special DHCP domain user (dhcpduser) is created by Zentyal when the Dynamic DHCP option is selected and the Domain Controller is enabled. Below you have two links with the configuration that Zentyal applies.
* https://github.com/zentyal/zentyal/blob/7.1/main/dhcp/src/EBox/DHCP.pm#L1162
* https://github.com/zentyal/zentyal/blob/7.1/main/dhcp/src/EBox/DHCP.pm#L1229
Also, note that in the log file /var/log/zentyal/zentyal.log you should have records like the following depending on your setup:
—
This world is ours, and by the Holy Light, we will keep it safe, now and forever.
* https://github.com/zentyal/zentyal/blob/7.1/main/dhcp/src/EBox/DHCP.pm#L1162
* https://github.com/zentyal/zentyal/blob/7.1/main/dhcp/src/EBox/DHCP.pm#L1229
Also, note that in the log file /var/log/zentyal/zentyal.log you should have records like the following depending on your setup:
Code: [Select]
# If the domain user is present
Creating dhcpduser for dynamic dns DON'T NEED, ignore step
# If the domain user is created
Creating dhcpduser for dynamic dns
—
This world is ours, and by the Holy Light, we will keep it safe, now and forever.
10
Installation and Upgrades / Re: Pre-Upgrade check 7.1.3 to 8.0 - possible issue in log /var/log/syslog
« Last post by trvaa on August 23, 2024, 01:15:24 pm »OK it's Aug 23 12:09 and there are 141 views but no comment.
Could I ask in a slightly different way?
Could someone check if they have a /etc/dhcp/samba-keys/dhcpduser.keytab
ls -l /etc/dhcp/samba-keys/ should do it and indicate what XXXX:XXXX is - presumable root:dhcpd ?
Thanks
Could I ask in a slightly different way?
Could someone check if they have a /etc/dhcp/samba-keys/dhcpduser.keytab
ls -l /etc/dhcp/samba-keys/ should do it and indicate what XXXX:XXXX is - presumable root:dhcpd ?
Thanks