Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Topics - spott

Pages: [1]
1
Hi

Suddenly - after moving some big folders from one share to another (I made it over terminal) and reseting ownership of files as usual - chown -R username . - we have now big problems with that share. Users can't overwrite files or folders - windows giving disk is full error. They can add new files and folders to this share and delete existing ones - but they can't overwrite files/folders as it gives disk is full error (but we have more than 2TB free space). I gave inside this folder 777 permissions to all files and folders - nothing. I restarted several times server - still nothing.
What I discover. I am running Zentyal 5.0.14 - and under Shares - I don't see "Apply ACLs recursively" part any more in Zentyal admin. This is completely missing.
When I am checking folder permissions under /home/samba/shares, then I see fallowing situation:
Code: [Select]
drwxrwx---+ 11 SERVER-DOMAIN\administrator adm                        4096 Feb 28 15:50 SHARE_1
drwxrwx---+  4 root                        adm                        4096 Mar  3 13:07 SHARE_WITH_PROBLEMS
drwxrwx---+ 30 SERVER-DOMAIN\administrator adm                        4096 Mar 30  2018 SHARE_3
drwxrwx---+  8 SERVER-DOMAIN\administrator adm                        4096 Mar  3 14:09 SHARE_4
this share has other owner - not SERVER_DOMAIN - but root.
When I am making new share - then also - owner is root and group adm.

So my questions:
1) Why this Apply ACLs recursively - is missing now from admin
2) How I can fix permissions inside this share - usually samba restart rewrites all ACL permissions. But not now. Why?
Any other help and tips - what to look.

2
Installation and Upgrades / All Samba shares in one folder/drive?
« on: March 03, 2015, 06:45:55 am »
Hi

How I can add all Samba shares to one folder/drive, so that users need to mount only one drive? Also - they can see only these shares - where they have permissions. I have seen similar solutions and I get with one older samba it to work. But now - it doesn't work.
I added these rules to the all shares:
hide unreadable = yes
browseable = No
wide links = yes

and In global section I added:
unix extensions = no
follow symlinks =Yes

I made from all shares  symbolic links to one shared folder - but I can't mount this share. But I can't mount it.

So what is the best solutions to link all shares to one shared folder and so that users can see only these shares, where they have access.

3
Installation and Upgrades / Zentyal backup problem with SCP
« on: May 07, 2012, 07:54:21 pm »
Hi

I have two servers with the same problem. I set up Zentyal backup with SCP and with IP addresses. Address and destination folder is also controlled. I have made from both servers also ssh sessions to backup units - no problem.
But still - no backups and from Events log I can see:

Zentyal full backup failed. Cannot contact to the backup server. Check your Internet connection prior to perform the backup

Two different servers, two different backup servers, two different networks - but the same problem.
Here is the host how I give them: 192.168.0.4:22/lyys
Folder lyys is greated also.

Any ideas - what is wrong?

4
Hi

I have problem with setting up VPN to VPN tunnel.
Here is network map: http://spottraining.org/wp-content/uploads/2012/04/oniartallinnprob.png
Office one is where Client 1-1, 1-2, PDC, fileserver and Gateway 1 is located. (IP: 192.168.0.0/24)

Office two - there are Client 2-1, 2-2 and Gateway 2 (local IP there 192.168.5.0/24)

Between Gateway 1 and 2 I set up Zentyal to Zentyal tunnel like in Documentation: http://doc.zentyal.org/en/vpn.html#configuration-of-a-vpn-server-for-interconnecting-networks

Problem: I can't access from office two Clients to fileserver (IP: 192.168.0.7).
Clients can ping all addresses 192.168.0.0/24, they can access to internal webpages (intranet in 192.168.0.7 server, webadministration to 192.168.0.45 printer),they can access to Gateway 1 https and http pages but they can't access to samba shares in 192.168.0.7 and they can not access to https://192.168.0.7 administration

Directly from Gateway 2 command line (smbclient) - I can access to 192.168.0.7 shares.
But not from client 2-1 or 2-2
They getting error:
http://spottraining.org/wp-content/uploads/2012/04/onnet.png
Even, when they trying to connect with IP.
Linux clients getting error:
Error NT_STATUS_UNSUCCESSFUL

But - we have also second OpenVPN server for laptops (Client 3-1) - and they don't have any problems. They can access to all shares in 192.168.0.7 and use all needed features. When they starting their OpenVPN clients.

Getaway 1 and Getaway 2 - booth have firewall installed also.
In Gateway 1 - 192.168.161.0/24, 192.168.160.0/24, 192.168.5.0/24 from external networks to internal traffic - all is allowed.

Also in Getaway 2 - 192.168.0.0/24 - all external traffic is allowed.

So - my question - why office 2 can't access to fileserver shares?
What is wrong right now?


EDIT:
I looked now this fileserver log, and what I discover:
[2012/04/09 14:50:16, 0] libsmb/nmblib.c:send_udp(793)
  Packet send failed to 192.168.5.25(137) ERRNO=Network is unreachable
[2012/04/09 14:50:16, 0] nmbd/nmbd_packets.c:reply_netbios_packet(992)
  reply_netbios_packet: send_packet to IP 192.168.5.25 port 137 failed
There is lot of the same meesages.
192.168.5.25 is Client 2-1 IP

It mean, that Gateway 1 doesn't giving to fileserver information about remote subnet.
Where I can add this information in Gateway 1?



5
Installation and Upgrades / VPN questions
« on: April 02, 2012, 08:07:12 am »
Hi

I am setting up right now two Zentyal gateways.
These two getaways have VPN tunnel between them.

But I want to add some normal VPN clients also. Question is - is OpenVPN for this good? As I looked - normal OpenVPN doesn't have any password protection. All information is inside certificates. And now - when laptop is stolen - then new owner can simply start the OpenVPN service and he is connected to company network. No password - nothing.

Maybe is better then to use for these clients other VPN solution?
Whats are suggestions?

6
Installation and Upgrades / Zentyal servers over VPN
« on: March 21, 2012, 04:57:32 pm »
Hi

Can someone share good practice how to configure fallowing situation.

I have one main office - there is one eBox Samba PDC failserver and one Zentyal getaway what gives IP-s, etc.

Now - they opening new office. So I am setting up there also one Zentyal getaway and one fileserver. With these two Zentyal gateways I am making VPN connection between two offices. But question is - how is the best to do the second fileserver - so that share permissions are the same as in main server? And also PDC users? I want that when I am adding user to main office samba server - then he has also shares in main server and also in this new fileserver.

We can't use only the one server, as connection lines are not good - so we need the second server. One problem is, that the main fileserver running old eBox software (With Ubuntu 8.04) - but as there is no step by step upgrade guide - its takes more time for upgrade and right now it is impossible.

7
Installation and Upgrades / Problem with group shares permissions
« on: July 03, 2009, 06:45:16 pm »
Hi

I  set up new eBox server for small company as file server. But I have problem with samba shares permissions.
I have four groups and each group has its own share (I set up it from group shares panel). All these four shares are added to Windows XP machines as four separated drives. When user doesn't belong to group - drive is not added.
And now the problem - with all these shares. Users can view these drives and also files inside them, but they can't modify them or delete failes, what are created by other users. It gives Permissions error.

I changed in smb.conf file the force create mode = 0777, force directory mode = 0777.
I try d to changed them to create mask and directory mask. Also 0777.
Also I found this thread: https://lists.warp.es/pipermail/ebox-user/2007-October/000722.html
So I changed /usr/share/ebox/stubs/samba/smb.conf.mas file also as there recommended. Still nothing.

I restarted every time the samba and ebox services and logoff/login in client machines. But still I have problem with permissions - users can see, can create, but they can't change or delete files, what is created by other users.

So what I am missing - what I can try?



Pages: [1]