This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
1
News and Announcements / Re: Zentyal 4.0 Roadmap Published!
« on: August 27, 2014, 07:52:31 am »
Just wanna express my disappointment with the 4.0 Roadmap. I feel the same like most of the active members. I suppose v4.0 simply lack the spirit of a fully functional SBS server.
I hope Zentyal will try to reconsider their plans...
I hope Zentyal will try to reconsider their plans...
2
Installation and Upgrades / Re: DNS does not get resolve for the Other Subnet
« on: July 23, 2014, 11:52:12 am »I have VLAN configured VLAN10 :- 192.168.0.0 /24 , VLAN20 192.168.2.0/23 .Zentyal Server is in VLAN 20 .
Machines in VLAN10 are not able to resolve DNS from Zentyal Server , But i was able to join mahcine to the Domain.
Did you make the appropriate DNS entry about the subnet in question in the DNS Module?
3
Installation and Upgrades / Re: WAN Failover and Multigateway rules fail if more than two WANs enabled
« on: July 11, 2014, 05:37:55 am »
I agree that Zentyal MULTIWAN is unstable. Have used it for a while for one of my client but consistently got problem on fail-over. The problem was whenever there is a single WAN link failure, fail-over won't work very well. Especially when there is only one (1) link that is getting High RTO or Latency issue failover always misses which causes ALL WAN to fail.
Fail-over worked whenever there is a complete failure (disconnect/link down) in the link, though. I did so many variation settings to resolve but to no avail. Until I replaced it with PfSense and my life couldn't get better after that.
I use Zentyal primarily for filesharing and it's superior in many ways compared to other SMBs, imho.
Fail-over worked whenever there is a complete failure (disconnect/link down) in the link, though. I did so many variation settings to resolve but to no avail. Until I replaced it with PfSense and my life couldn't get better after that.
I use Zentyal primarily for filesharing and it's superior in many ways compared to other SMBs, imho.
4
Installation and Upgrades / Re: Help with setting up zentyal-to-zentyal openvpn bridge with 1 subnet 2 locations
« on: July 09, 2014, 05:51:29 am »
I tried this method, but it didnt create a bridge. maybe I'm missing something, but I set one zentyal box to server other to client with the zentyal vpn config, with zentyal-to-zentyal checked but my vpn address was in different subnet than my local subnets. do I need to bridge tap interfaces to ethernet interfaces?
VPN Subnet must be different from your local network. I'm not currently using Zentyal VPN, so I really can't simulate. You can try toggleling NAT to OFF and see how it's doing. And make sure you can route vpn traffic by making sure you have route set and your firewall is not blocking it.
Here's how:
Zentyal Firewall for OpenVPN connections. Go to Firewall -> Packet Filter- > Filer rules from Internal Network to Zentyal – Configure Rules and hit on Add New.
On the newly rule make the following settings and when you finished hit on Add.
Decision = Accept
Source = Any
Service = your vpn service rule
You need need to add a VPN Service prior to this. Use the following settings on vpn service configuration and when you’re done hit on Add.
Protocol = UDP (if on VPN Server configuration you selected TCP protocol make sure you add a new service here with same port on TCP).
Source Port = Any.
Destination Port = 1194.
Also make sure your local network is in the list of ADVERTISED NETWORK.
HTH
5
Installation and Upgrades / Re: Zentyal as Cisco VPN client
« on: July 09, 2014, 02:40:10 am »How did you connected your Zentyal as a Cisco VPN Client? Thanks
Don't hijack the post. Anyway, configure IPSEC in zentyal and your cisco vpn client should work.
HTH
6
Installation and Upgrades / Re: Help with setting up zentyal-to-zentyal openvpn bridge with 1 subnet 2 locations
« on: July 09, 2014, 02:37:14 am »
Just install Zentyal OpenVPN and configure zentyal-to-zentyal. Here you'll get same subnet on vpn interface.
Follow this document:
http://doc.zentyal.org/en/vpn.html
http://www.zentyal.org/2013/05/how-to-set-up-a-vpn-on-your-zentyal-small-business-server/
HTH
Follow this document:
http://doc.zentyal.org/en/vpn.html
http://www.zentyal.org/2013/05/how-to-set-up-a-vpn-on-your-zentyal-small-business-server/
HTH
7
Installation and Upgrades / Re: VPN Server without Port Forwarding
« on: July 08, 2014, 05:33:37 am »
You don't need to setup portforwarding in order to run vpn. You need a vpn client for road warriors setup or zentyal-to-zentyal setup. The two methods will create a "TUNNEL" to allow you to access private networks.
Whenever you activate the vpn service TUN/TAP will be activated for you by Zentyal Service.
Here's a link:
http://www.techrepublic.com/blog/smb-technologist/set-up-a-vpn-on-your-zentyal-small-business-server/
http://doc.zentyal.org/en/vpn.html
HTH
Whenever you activate the vpn service TUN/TAP will be activated for you by Zentyal Service.
Here's a link:
http://www.techrepublic.com/blog/smb-technologist/set-up-a-vpn-on-your-zentyal-small-business-server/
http://doc.zentyal.org/en/vpn.html
HTH
8
Installation and Upgrades / Re: New Zentyal 3.4 Gateway- Some Win 7 Users cannot ping GW-No Internet
« on: July 07, 2014, 02:52:16 am »
Make sure all client (Win7) PC are configured to Obtain DHCP & DNS.
Did you configure Network Objects and have subnet on you LAN?
As far as I know there is no limit by default for users that may cause problem as yours.
HTH,
Did you configure Network Objects and have subnet on you LAN?
As far as I know there is no limit by default for users that may cause problem as yours.
HTH,
9
Installation and Upgrades / Re: Basic Web Server / Web App Configuration
« on: July 03, 2014, 10:15:31 am »10
Installation and Upgrades / Re: Multicast, firewall, and openvpn
« on: July 03, 2014, 10:08:00 am »
The firewall will block multicast - this is easiest fixed as follows by disabling the firewall on the openvpnbr0 bridge:
nano /etc/ufw/before.rules
-A ufw-before-input -i openvpnbr0 -j ACCEPT
-A ufw-before-forward -i openvpnbr0 -j ACCEPT
ufw disable && ufw enable
If the rules worked, then apply this using the GUI.
ou probably ought to make sure multicast is working, so there is a handy test tool which you can install via 'aptitude install ssmping'.
root@serv:/home/ned# asmping 2xx.0.2.1 10.xxx.xxx.1
asmping joined (S,G) = (*,2xx.0.2.234)
pinging 10.xxx.xxx.1 from 10.xxx.xxx.10
unicast from 10.xxx.xxx.1, seq=1 dist=0 time=226.947 ms
multicast from 10.xxx.xxx.1, seq=1 dist=0 time=341.924 ms
unicast from 10.xxx.xxx.1, seq=2 dist=0 time=76.332 ms
multicast from 10.xxx.xxx.1, seq=2 dist=0 time=146.323 ms
unicast from 10.xxx.xxx.1, seq=3 dist=0 time=77.307 ms
multicast from 10.xxx.xxx.1, seq=3 dist=0 time=149.288 ms
unicast from 10.xxx.xxx.1, seq=4 dist=0 time=77.378 ms
What is key here is that there are lines containing 'multicast'. If you're getting 'unicast' only then something is broken.
HTH
nano /etc/ufw/before.rules
-A ufw-before-input -i openvpnbr0 -j ACCEPT
-A ufw-before-forward -i openvpnbr0 -j ACCEPT
ufw disable && ufw enable
If the rules worked, then apply this using the GUI.
ou probably ought to make sure multicast is working, so there is a handy test tool which you can install via 'aptitude install ssmping'.
root@serv:/home/ned# asmping 2xx.0.2.1 10.xxx.xxx.1
asmping joined (S,G) = (*,2xx.0.2.234)
pinging 10.xxx.xxx.1 from 10.xxx.xxx.10
unicast from 10.xxx.xxx.1, seq=1 dist=0 time=226.947 ms
multicast from 10.xxx.xxx.1, seq=1 dist=0 time=341.924 ms
unicast from 10.xxx.xxx.1, seq=2 dist=0 time=76.332 ms
multicast from 10.xxx.xxx.1, seq=2 dist=0 time=146.323 ms
unicast from 10.xxx.xxx.1, seq=3 dist=0 time=77.307 ms
multicast from 10.xxx.xxx.1, seq=3 dist=0 time=149.288 ms
unicast from 10.xxx.xxx.1, seq=4 dist=0 time=77.378 ms
What is key here is that there are lines containing 'multicast'. If you're getting 'unicast' only then something is broken.
HTH
11
Installation and Upgrades / Re: Apply Default ACL's to Home shares
« on: April 14, 2014, 05:07:00 am »
Here's the folder ACL permission for your reference:
mkdir -p /home/samba/
chown root:__USERS__ /home/samba/
chmod 770 /home/samba/
setfacl -b /home/samba/
setfacl -m u:nobody:rx /home/samba/
setfacl -m u:ebox:rwx /home/samba/
mkdir -p /home/samba/profiles
chown root:__USERS__ /home/samba/profiles
chmod 770 /home/samba/profiles
setfacl -b /home/samba/profiles
mkdir -p /home/samba/shares
chown root:__USERS__ /home/samba/shares
chmod 770 /home/samba/shares
setfacl -b /home/samba/shares
setfacl -m u:nobody:rx /home/samba/shares
setfacl -m u:ebox:rwx /home/samba/shares
HTH,
James
mkdir -p /home/samba/
chown root:__USERS__ /home/samba/
chmod 770 /home/samba/
setfacl -b /home/samba/
setfacl -m u:nobody:rx /home/samba/
setfacl -m u:ebox:rwx /home/samba/
mkdir -p /home/samba/profiles
chown root:__USERS__ /home/samba/profiles
chmod 770 /home/samba/profiles
setfacl -b /home/samba/profiles
mkdir -p /home/samba/shares
chown root:__USERS__ /home/samba/shares
chmod 770 /home/samba/shares
setfacl -b /home/samba/shares
setfacl -m u:nobody:rx /home/samba/shares
setfacl -m u:ebox:rwx /home/samba/shares
HTH,
James
12
Installation and Upgrades / Re: SRV record for the resource record - DNS Setting
« on: March 07, 2014, 03:28:45 am »You might find the solution here:
https://forum.zentyal.org/index.php/topic,13712.msg75670.html#msg75670
Hi it's a sip service so you don't need to add a custom service. As you may have noticed it RR follows after SIP, TCP. But the problem is there is no entry for the RR option in the GUI.
Any help from the admin is greatly appreciated
13
Installation and Upgrades / SRV record for the resource record - DNS Setting
« on: March 06, 2014, 10:42:11 am »
Hi,
I'm try to configure via GUI the SRV Record for our sip servers. The requirement should look like this:
SRV record for the resource record (port 5070 tcp) for each of the servers. This record is used for replication services to locate other servers for replication.
I can add SRV record via the GUI but not DNS SRV resource records (RRs).
Any clue on how to achieve this?
Thanks
I'm try to configure via GUI the SRV Record for our sip servers. The requirement should look like this:
Quote
;
SRV record for service SIP TCP rr.openuc.ezuce.com
; priority: 1 weight: 0 port: 5070 server: openuc.ezuce.com
;
_sip._tcp.rr.openuc.ezuce.com. IN SRV 1 0 5070 openuc.ezuce.com.
SRV record for the resource record (port 5070 tcp) for each of the servers. This record is used for replication services to locate other servers for replication.
I can add SRV record via the GUI but not DNS SRV resource records (RRs).
Any clue on how to achieve this?
Thanks
14
Installation and Upgrades / Re: said: 451 Please try again later (in reply to end of DATA command)
« on: February 06, 2014, 10:59:06 am »May i know to config properly thanks.
Pls. elaborate what you're doing the time this error happened. We need details.
15
Installation and Upgrades / Re: Using Backup Rsync to a Local Drive
« on: February 06, 2014, 10:57:01 am »The hardcode is what I need. hehe
Explained here.
But keep in mind this is hard coded meaning next release ...
christian,
Thanks for taking time to answer. Does the script will allow me to map locally the USB drive for my RSYNC backup?