Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Russian / Re: dhcp по mac address
« on: November 04, 2014, 07:55:49 pm »
Понял. Тогда по другому. Возможно ли сделать так, чтоб пока не бил зафиксирован адрес в этом списке, компьютер не получил ip адресу....? Получил ip когда в списке есть (в списке mac адресов). Если в списку нету - не получил ip.
Такое возможно сделать?
Такое возможно сделать?
2
Russian / Re: dhcp по mac address
« on: November 03, 2014, 11:13:39 pm »
я так понимаю Вы про статистические. Около 100 компьютеров - било б хорошо что б dhcp бил ... Так проще, если меняются настройки dns или других систем....
3
Russian / (решено) dhcp по mac address
« on: November 03, 2014, 10:08:50 pm »
Здравствуйте!
Возможно ли сделать так, что б dhcp раздавал адреса только тем компьютерам, которые есть в списке mac адресов?
Возможно ли сделать так, что б dhcp раздавал адреса только тем компьютерам, которые есть в списке mac адресов?
4
Russian / глючит zentyal
« on: September 29, 2014, 05:24:37 pm »
Помогите.
Выдает такую ошибку при подключении к админ-вебке.
Sorry, an unexpected error has occurred
Redis command 'get /ebox-ro/modules/openvpn/Servers/keys/version' failed: Could not write to Redis server: Broken pipe at /usr/share/perl5/Redis.pm line 266 Redis::__send_command('Redis=HASH(0x7fb851f42ec0)', 'get', '/ebox-ro/modules/openvpn/Servers/keys/version') called at /usr/share/perl5/Redis.pm line 107 Redis::AUTOLOAD('Redis=HASH(0x7fb851f42ec0)', '/ebox-ro/modules/openvpn/Servers/keys/version') called at /usr/share/perl5/EBox/Config/Redis.pm line 679 eval {...} called at /usr/share/perl5/EBox/Config/Redis.pm line 674 EBox::Config::Redis::_redis_call('EBox::Config::Redis=HASH(0x7fb8540bb388)', 'get', '/ebox-ro/modules/openvpn/Servers/keys/version') called at /usr/share/perl5/EBox/Config/Redis.pm line 85 EBox::Config::Redis::get_string('EBox::Config::Redis=HASH(0x7fb8540bb388)', '/ebox-ro/modules/openvpn/Servers/keys/version') called at /usr/share/perl5/EBox/Config/Redis.pm line 107 EBox::Config::Redis::get_int('EBox::Config::Redis=HASH(0x7fb8540bb388)', '/ebox-ro/modules/openvpn/Servers/keys/version') called at /usr/share/perl5/EBox/GConfModule.pm line 537 EBox::GConfModule::_get_int('EBox::OpenVPN=HASH(0x7fb853eeee50)', 'Servers/keys/version') called at /usr/share/perl5/EBox/GConfModule.pm line 557 EBox::GConfModule::get_int('EBox::OpenVPN=HASH(0x7fb853eeee50)', 'Servers/keys/version') called at /usr/share/perl5/EBox/Model/DataTable.pm line 1442 EBox::Model::DataTable::_storedVersion('EBox::OpenVPN::Model::Servers=HASH(0x7fb8540d0618)') called at /usr/share/perl5/EBox/Model/DataTable.pm line 1670 EBox::Model::DataTable::_ids('EBox::OpenVPN::Model::Servers=HASH(0x7fb8540d0618)') called at /usr/share/perl5/EBox/Model/DataTable.pm line 1604 EBox::Model::DataTable::ids('EBox::OpenVPN::Model::Servers=HASH(0x7fb8540d0618)') called at /usr/share/perl5/EBox/OpenVPN/Model/Servers.pm line 206 EBox::OpenVPN::Model::Servers::servers('EBox::OpenVPN::Model::Servers=HASH(0x7fb8540d0618)') called at /usr/share/perl5/EBox/OpenVPN.pm line 394 EBox::OpenVPN::servers('EBox::OpenVPN=HASH(0x7fb853eeee50)') called at /usr/share/perl5/EBox/OpenVPN.pm line 1567 EBox::OpenVPN::widgets('EBox::OpenVPN=HASH(0x7fb853eeee50)') called at /usr/share/perl5/EBox/CGI/Dashboard/Index.pm line 71 EBox::CGI::Dashboard::Index::masonParameters('EBox::CGI::Dashboard::Index=HASH(0x7fb85261b930)') called at /usr/share/perl5/EBox/CGI/Base.pm line 522 EBox::CGI::Base::_process('EBox::CGI::Dashboard::Index=HASH(0x7fb85261b930)') called at /usr/share/perl5/EBox/CGI/Base.pm line 275 EBox::CGI::Base::__ANON__() called at /usr/share/perl5/Error.pm line 416 eval {...} called at /usr/share/perl5/Error.pm line 408 Error::subs::try('CODE(0x7fb8529d5a78)', 'HASH(0x7fb855c24fd8)') called at /usr/share/perl5/EBox/CGI/Base.pm line 291 EBox::CGI::Base::run('EBox::CGI::Dashboard::Index=HASH(0x7fb85261b930)') called at /usr/share/perl5/EBox/CGI/Run.pm line 129 EBox::CGI::Run::run('EBox::CGI::Run', '', 'EBox') called at /usr/share/zentyal/cgi/ebox.cgi line 34 ModPerl::ROOT::ModPerl::Registry::usr_share_zentyal_cgi_ebox_2ecgi::__ANON__() called at /usr/share/perl5/Error.pm line 416 eval {...} called at /usr/share/perl5/Error.pm line 408 Error::subs::try('CODE(0x7fb8526925e8)', 'HASH(0x7fb85269e3f0)') called at /usr/share/zentyal/cgi/ebox.cgi line 123 ModPerl::ROOT::ModPerl::Registry::usr_share_zentyal_cgi_ebox_2ecgi::handler('Apache2::RequestRec=SCALAR(0x7fb852889478)') called at /usr/lib/perl5/ModPerl/RegistryCooker.pm line 204 eval {...} called at /usr/lib/perl5/ModPerl/RegistryCooker.pm line 204 ModPerl::RegistryCooker::run('ModPerl::Registry=HASH(0x7fb852889af0)') called at /usr/lib/perl5/ModPerl/RegistryCooker.pm line 170 ModPerl::RegistryCooker::default_handler('ModPerl::Registry=HASH(0x7fb852889af0)') called at /usr/lib/perl5/ModPerl/Registry.pm line 31 ModPerl::Registry::handler('ModPerl::Registry', 'Apache2::RequestRec=SCALAR(0x7fb852889478)') called at -e line 0 eval {...} called at -e line 0
Сам не очень опытный админ. Получил в наследство. Это наш DNS сервер. Думаю через него и глючит интернет на предприятии.
Спасибо!
Выдает такую ошибку при подключении к админ-вебке.
Sorry, an unexpected error has occurred
Redis command 'get /ebox-ro/modules/openvpn/Servers/keys/version' failed: Could not write to Redis server: Broken pipe at /usr/share/perl5/Redis.pm line 266 Redis::__send_command('Redis=HASH(0x7fb851f42ec0)', 'get', '/ebox-ro/modules/openvpn/Servers/keys/version') called at /usr/share/perl5/Redis.pm line 107 Redis::AUTOLOAD('Redis=HASH(0x7fb851f42ec0)', '/ebox-ro/modules/openvpn/Servers/keys/version') called at /usr/share/perl5/EBox/Config/Redis.pm line 679 eval {...} called at /usr/share/perl5/EBox/Config/Redis.pm line 674 EBox::Config::Redis::_redis_call('EBox::Config::Redis=HASH(0x7fb8540bb388)', 'get', '/ebox-ro/modules/openvpn/Servers/keys/version') called at /usr/share/perl5/EBox/Config/Redis.pm line 85 EBox::Config::Redis::get_string('EBox::Config::Redis=HASH(0x7fb8540bb388)', '/ebox-ro/modules/openvpn/Servers/keys/version') called at /usr/share/perl5/EBox/Config/Redis.pm line 107 EBox::Config::Redis::get_int('EBox::Config::Redis=HASH(0x7fb8540bb388)', '/ebox-ro/modules/openvpn/Servers/keys/version') called at /usr/share/perl5/EBox/GConfModule.pm line 537 EBox::GConfModule::_get_int('EBox::OpenVPN=HASH(0x7fb853eeee50)', 'Servers/keys/version') called at /usr/share/perl5/EBox/GConfModule.pm line 557 EBox::GConfModule::get_int('EBox::OpenVPN=HASH(0x7fb853eeee50)', 'Servers/keys/version') called at /usr/share/perl5/EBox/Model/DataTable.pm line 1442 EBox::Model::DataTable::_storedVersion('EBox::OpenVPN::Model::Servers=HASH(0x7fb8540d0618)') called at /usr/share/perl5/EBox/Model/DataTable.pm line 1670 EBox::Model::DataTable::_ids('EBox::OpenVPN::Model::Servers=HASH(0x7fb8540d0618)') called at /usr/share/perl5/EBox/Model/DataTable.pm line 1604 EBox::Model::DataTable::ids('EBox::OpenVPN::Model::Servers=HASH(0x7fb8540d0618)') called at /usr/share/perl5/EBox/OpenVPN/Model/Servers.pm line 206 EBox::OpenVPN::Model::Servers::servers('EBox::OpenVPN::Model::Servers=HASH(0x7fb8540d0618)') called at /usr/share/perl5/EBox/OpenVPN.pm line 394 EBox::OpenVPN::servers('EBox::OpenVPN=HASH(0x7fb853eeee50)') called at /usr/share/perl5/EBox/OpenVPN.pm line 1567 EBox::OpenVPN::widgets('EBox::OpenVPN=HASH(0x7fb853eeee50)') called at /usr/share/perl5/EBox/CGI/Dashboard/Index.pm line 71 EBox::CGI::Dashboard::Index::masonParameters('EBox::CGI::Dashboard::Index=HASH(0x7fb85261b930)') called at /usr/share/perl5/EBox/CGI/Base.pm line 522 EBox::CGI::Base::_process('EBox::CGI::Dashboard::Index=HASH(0x7fb85261b930)') called at /usr/share/perl5/EBox/CGI/Base.pm line 275 EBox::CGI::Base::__ANON__() called at /usr/share/perl5/Error.pm line 416 eval {...} called at /usr/share/perl5/Error.pm line 408 Error::subs::try('CODE(0x7fb8529d5a78)', 'HASH(0x7fb855c24fd8)') called at /usr/share/perl5/EBox/CGI/Base.pm line 291 EBox::CGI::Base::run('EBox::CGI::Dashboard::Index=HASH(0x7fb85261b930)') called at /usr/share/perl5/EBox/CGI/Run.pm line 129 EBox::CGI::Run::run('EBox::CGI::Run', '', 'EBox') called at /usr/share/zentyal/cgi/ebox.cgi line 34 ModPerl::ROOT::ModPerl::Registry::usr_share_zentyal_cgi_ebox_2ecgi::__ANON__() called at /usr/share/perl5/Error.pm line 416 eval {...} called at /usr/share/perl5/Error.pm line 408 Error::subs::try('CODE(0x7fb8526925e8)', 'HASH(0x7fb85269e3f0)') called at /usr/share/zentyal/cgi/ebox.cgi line 123 ModPerl::ROOT::ModPerl::Registry::usr_share_zentyal_cgi_ebox_2ecgi::handler('Apache2::RequestRec=SCALAR(0x7fb852889478)') called at /usr/lib/perl5/ModPerl/RegistryCooker.pm line 204 eval {...} called at /usr/lib/perl5/ModPerl/RegistryCooker.pm line 204 ModPerl::RegistryCooker::run('ModPerl::Registry=HASH(0x7fb852889af0)') called at /usr/lib/perl5/ModPerl/RegistryCooker.pm line 170 ModPerl::RegistryCooker::default_handler('ModPerl::Registry=HASH(0x7fb852889af0)') called at /usr/lib/perl5/ModPerl/Registry.pm line 31 ModPerl::Registry::handler('ModPerl::Registry', 'Apache2::RequestRec=SCALAR(0x7fb852889478)') called at -e line 0 eval {...} called at -e line 0
Сам не очень опытный админ. Получил в наследство. Это наш DNS сервер. Думаю через него и глючит интернет на предприятии.
Спасибо!
5
Russian / Re: Iphone и VPN
« on: May 27, 2014, 04:38:12 pm »
вроде зароботало, но на подключениях с пк какиета глюки пошли .... уже завтра посмотрю и отпишу, все ли хорошо, спасибо!
6
Russian / Re: Iphone и VPN
« on: May 27, 2014, 04:11:40 pm »
еще одно, после перезагрузки сервиса openvpn, в конфиге на сервере вновь пишет dev tap1.........(
7
Russian / Re: Iphone и VPN
« on: May 27, 2014, 03:40:22 pm »
сейчас такую ошибку видает:
2014-05-27 16:35:52 EVENT: ASSIGN_IP
2014-05-27 16:35:52 TUN Error: tun_builder_error: ifconfig addresses are not in the same /30 subnet (topology net30)
2014-05-27 16:35:52 EVENT: TUN_SETUP_FAILED tun_builder_error: ifconfig addresses are not in the same /30 subnet (topology net30) [ERR]
2014-05-27 16:35:52 EVENT: DISCONNECTED
?
2014-05-27 16:35:52 EVENT: ASSIGN_IP
2014-05-27 16:35:52 TUN Error: tun_builder_error: ifconfig addresses are not in the same /30 subnet (topology net30)
2014-05-27 16:35:52 EVENT: TUN_SETUP_FAILED tun_builder_error: ifconfig addresses are not in the same /30 subnet (topology net30) [ERR]
2014-05-27 16:35:52 EVENT: DISCONNECTED
?
8
Russian / Re: Iphone и VPN
« on: May 27, 2014, 03:37:15 pm »
А конфиг сервера можете скинуть....?
Я на сервере, ручками, ничего не редактировал.
Мой рабочий конфиг для iphone:
client
dev tun
proto udp
remote ..........
float
resolv-retry infinite
nobind
persist-key
persist-tun
ca ".........."
cert "...........pem"
key "...........pem"
tls-remote ..........
comp-lzo
verb 3
explicit-exit-notify 3
9
Russian / Re: Iphone и VPN
« on: May 27, 2014, 01:33:58 pm »
Хорошо, с первим понятно. Редагую конфиг на клиенте.
А что с конфигом на сервере. Где нужно вставить ету строчку: push "topology subnet" .....?
Вот конфиг:
####Server######
# EBox OpenVPN 2.0 config file for server sachemplace1
# Which local IP address should OpenVPN
# listen on? (optional)
# Which TCP/UDP port should OpenVPN listen on?
port ***
# TCP or UDP server?
proto ***
# virtual device
dev tap1
# SSL/TLS root certificate (ca), certificate
# (cert), and private key (key).
ca '/var/lib/ebox/CA/cacert.pem'
cert '/var/lib/ebox/CA/certs/34F288873BF03F59.pem'
key '/var/lib/ebox/CA/private/vpn-sachemplace1.pem'
# This file should be kept secret
# check peer certificate against certificate revokation list
crl-verify /var/lib/ebox/CA/crl/latest.pem
# Diffie hellman parameters.
# Generate your own with:
# openssl dhparam -out dh1024.pem 1024
# Substitute 2048 for 1024 if you are using
# 2048 bit keys.
#dh /etc/openvpn/dh1024.pem
dh /etc/openvpn/ebox-dh1024.pem
# Configure server mode and supply a VPN subnet
# for OpenVPN to draw client addresses from.
server 192.168.160.0 255.255.255.0
# Maintain a record of client <-> virtual IP address
# associations in this file.
ifconfig-pool-persist '/etc/openvpn/sachemplace1-ipp.txt'
# If enabled, this directive will configure
# all clients to redirect their default
# network gateway through the VPN
;push "redirect-gateway"
# Uncomment this directive to allow different
# clients to be able to "see" each other.
client-to-client
# The keepalive directive causes ping-like
# messages to be sent back and forth over
keepalive 10 120
# client certificate common name authentication
# For extra security beyond that provided
# by SSL/TLS, create an "HMAC firewall"
# to help block DoS attacks and UDP port flooding.
;tls-auth ta.key 0 # This file is secret
# Select a cryptographic cipher.
# This config item must be copied to
# the client config file as well.
;cipher BF-CBC # Blowfish (default)
;cipher AES-128-CBC # AES
;cipher DES-EDE3-CBC # Triple-DES
# Enable compression on the VPN link.
# If you enable it here, you must also
# enable it in the client config file.
comp-lzo
# The maximum number of concurrently connected
# clients we want to allow.
;max-clients 100
# group and user for the OpenVPN
# daemon's privileges after initialization.
user nobody
group nogroup
# The persist options will try to avoid
# accessing certain resources on restart
# that may no longer be accessible because
# of the privilege downgrade.
persist-key
persist-tun
# Output a short status file showing
# current connections, truncated
# and rewritten every minute.
status '/var/log/ebox/openvpn/status-sachemplace1.log'
# By default, log messages will go to the syslog (or
# on Windows, if running as a service, they will go to
# the "\Program Files\OpenVPN\log" directory).
# Use log or log-append to override this default.
# "log" will truncate the log file on OpenVPN startup,
# while "log-append" will append to it. Use one
# or the other (but not both).
log-append '/var/log/ebox/openvpn/sachemplace1.log'
# Set the appropriate level of log
# file verbosity.
#
# 0 is silent, except for fatal errors
# 4 is reasonable for general usage
# 5 and 6 can help to debug connection problems
# 9 is extremely verbose
verb 3
# Silence repeating messages. At most 20
# sequential messages of the same message
# category will be output to the log.
;mute 20
push "route 192.168.4.0 255.255.255.0"
А что с конфигом на сервере. Где нужно вставить ету строчку: push "topology subnet" .....?
Вот конфиг:
####Server######
# EBox OpenVPN 2.0 config file for server sachemplace1
# Which local IP address should OpenVPN
# listen on? (optional)
# Which TCP/UDP port should OpenVPN listen on?
port ***
# TCP or UDP server?
proto ***
# virtual device
dev tap1
# SSL/TLS root certificate (ca), certificate
# (cert), and private key (key).
ca '/var/lib/ebox/CA/cacert.pem'
cert '/var/lib/ebox/CA/certs/34F288873BF03F59.pem'
key '/var/lib/ebox/CA/private/vpn-sachemplace1.pem'
# This file should be kept secret
# check peer certificate against certificate revokation list
crl-verify /var/lib/ebox/CA/crl/latest.pem
# Diffie hellman parameters.
# Generate your own with:
# openssl dhparam -out dh1024.pem 1024
# Substitute 2048 for 1024 if you are using
# 2048 bit keys.
#dh /etc/openvpn/dh1024.pem
dh /etc/openvpn/ebox-dh1024.pem
# Configure server mode and supply a VPN subnet
# for OpenVPN to draw client addresses from.
server 192.168.160.0 255.255.255.0
# Maintain a record of client <-> virtual IP address
# associations in this file.
ifconfig-pool-persist '/etc/openvpn/sachemplace1-ipp.txt'
# If enabled, this directive will configure
# all clients to redirect their default
# network gateway through the VPN
;push "redirect-gateway"
# Uncomment this directive to allow different
# clients to be able to "see" each other.
client-to-client
# The keepalive directive causes ping-like
# messages to be sent back and forth over
keepalive 10 120
# client certificate common name authentication
# For extra security beyond that provided
# by SSL/TLS, create an "HMAC firewall"
# to help block DoS attacks and UDP port flooding.
;tls-auth ta.key 0 # This file is secret
# Select a cryptographic cipher.
# This config item must be copied to
# the client config file as well.
;cipher BF-CBC # Blowfish (default)
;cipher AES-128-CBC # AES
;cipher DES-EDE3-CBC # Triple-DES
# Enable compression on the VPN link.
# If you enable it here, you must also
# enable it in the client config file.
comp-lzo
# The maximum number of concurrently connected
# clients we want to allow.
;max-clients 100
# group and user for the OpenVPN
# daemon's privileges after initialization.
user nobody
group nogroup
# The persist options will try to avoid
# accessing certain resources on restart
# that may no longer be accessible because
# of the privilege downgrade.
persist-key
persist-tun
# Output a short status file showing
# current connections, truncated
# and rewritten every minute.
status '/var/log/ebox/openvpn/status-sachemplace1.log'
# By default, log messages will go to the syslog (or
# on Windows, if running as a service, they will go to
# the "\Program Files\OpenVPN\log" directory).
# Use log or log-append to override this default.
# "log" will truncate the log file on OpenVPN startup,
# while "log-append" will append to it. Use one
# or the other (but not both).
log-append '/var/log/ebox/openvpn/sachemplace1.log'
# Set the appropriate level of log
# file verbosity.
#
# 0 is silent, except for fatal errors
# 4 is reasonable for general usage
# 5 and 6 can help to debug connection problems
# 9 is extremely verbose
verb 3
# Silence repeating messages. At most 20
# sequential messages of the same message
# category will be output to the log.
;mute 20
push "route 192.168.4.0 255.255.255.0"
10
Russian / Iphone и VPN
« on: May 27, 2014, 09:59:04 am »
Здравствуйте!
Хочу подключить Iphone к VPN. Использую програму с app store OpenVPN.
Получаю такое:
2014-05-27 10:48:51 ----- OpenVPN Start (iOS 32-bit) -----
2014-05-27 10:48:51 EVENT: TAP_NOT_SUPPORTED only OSI layer 3 tunnels currently supported [ERR]
2014-05-27 10:48:51 Raw stats on disconnect:
2014-05-27 10:48:51 Performance stats on disconnect:
CPU usage (microseconds): 7791
Network bytes per CPU second: 0
Tunnel bytes per CPU second: 0
2014-05-27 10:48:51 ----- OpenVPN Stop -----
2014-05-27 10:48:51 EVENT: DISCONNECT_PENDING
Есть варианты?
Спасибо!
Хочу подключить Iphone к VPN. Использую програму с app store OpenVPN.
Получаю такое:
2014-05-27 10:48:51 ----- OpenVPN Start (iOS 32-bit) -----
2014-05-27 10:48:51 EVENT: TAP_NOT_SUPPORTED only OSI layer 3 tunnels currently supported [ERR]
2014-05-27 10:48:51 Raw stats on disconnect:
2014-05-27 10:48:51 Performance stats on disconnect:
CPU usage (microseconds): 7791
Network bytes per CPU second: 0
Tunnel bytes per CPU second: 0
2014-05-27 10:48:51 ----- OpenVPN Stop -----
2014-05-27 10:48:51 EVENT: DISCONNECT_PENDING
Есть варианты?
Спасибо!
Pages: [1]