Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Installation and Upgrades / Virtual ip port forwarding not working
« on: December 14, 2013, 01:45:46 am »
Hello,
I had been a long term user of zentyal until recently when i was forced to switch to another UTM/Firewall solution. I very much want to switch back to zentyal however every time i've tried to configure zentyal with my network (The same exact configuration that was used previously) i run into the following issue:
My wan / isp is verizon fios with a block of 5 static ip's.
the IP range is XXX.236.XXX.226 - XXX.236.XXX.230
subnet mask is /24 and it the wan gateway is xxx.236.XXX.1
No matter what i try i cannot get traffic to come through on the other IP's.
setting up a virtual IP for the other 4 IP's seems to work ok, however when i set up port forwarding for (for example) http port 80 from .230 to an internal IP, the trafffic does not get forwarded.
I do believe this is not a problem with verizon fios itself as any other gateway/firewall solution i use works fine (Pfsense currently).
the first address of .226 works fine, any traffic / ports i forward on that address works fine., it's only the virtual ip port forwarding that does not seem to work no matter which of the 4 additional addresses is used.
Can anyone provide any pointers or URL's for troubleshooting.
I have searched the forums and haven't found anything specific to my problem that has been helpful.
Regards and thanks!
Scott
I had been a long term user of zentyal until recently when i was forced to switch to another UTM/Firewall solution. I very much want to switch back to zentyal however every time i've tried to configure zentyal with my network (The same exact configuration that was used previously) i run into the following issue:
My wan / isp is verizon fios with a block of 5 static ip's.
the IP range is XXX.236.XXX.226 - XXX.236.XXX.230
subnet mask is /24 and it the wan gateway is xxx.236.XXX.1
No matter what i try i cannot get traffic to come through on the other IP's.
setting up a virtual IP for the other 4 IP's seems to work ok, however when i set up port forwarding for (for example) http port 80 from .230 to an internal IP, the trafffic does not get forwarded.
I do believe this is not a problem with verizon fios itself as any other gateway/firewall solution i use works fine (Pfsense currently).
the first address of .226 works fine, any traffic / ports i forward on that address works fine., it's only the virtual ip port forwarding that does not seem to work no matter which of the 4 additional addresses is used.
Can anyone provide any pointers or URL's for troubleshooting.
I have searched the forums and haven't found anything specific to my problem that has been helpful.
Regards and thanks!
Scott
2
Installation and Upgrades / virtual ip port fowarding seems broken
« on: November 29, 2013, 03:25:42 pm »
Hello,
I had been a long term user of zentyal until recently when i was forced to switch to another UTM/Firewall solution. I very much want to switch back to zentyal however every time i've tried to configure zentyal with my network (The same exact configuration that was used previously) i run into the following issue:
My wan / isp is verizon fios with a block of 5 static ip's.
the IP range is XXX.236.XXX.226 - XXX.236.XXX.230
subnet mask is /24 and it the wan gateway is xxx.236.XXX.1
No matter what i try i cannot get traffic to come through on the other IP's.
setting up a virtual IP for the other 4 IP's seems to work ok, however when i set up port forwarding for (for example) http port 80 from .230 to an internal IP, the trafffic does not get forwarded.
I do believe this is not a problem with verizon fios itself as any other gateway/firewall solution i use works fine (Pfsense currently).
the first address of .226 works fine, any traffic / ports i forward on that address works fine., it's only the virtual ip port forwarding that does not seem to work no matter which of the 4 additional addresses is used.
Can anyone provide any pointers or URL's for troubleshooting.
I have searched the forums and haven't found anything specific to my problem that has been helpful.
Regards and thanks!
Scott
I had been a long term user of zentyal until recently when i was forced to switch to another UTM/Firewall solution. I very much want to switch back to zentyal however every time i've tried to configure zentyal with my network (The same exact configuration that was used previously) i run into the following issue:
My wan / isp is verizon fios with a block of 5 static ip's.
the IP range is XXX.236.XXX.226 - XXX.236.XXX.230
subnet mask is /24 and it the wan gateway is xxx.236.XXX.1
No matter what i try i cannot get traffic to come through on the other IP's.
setting up a virtual IP for the other 4 IP's seems to work ok, however when i set up port forwarding for (for example) http port 80 from .230 to an internal IP, the trafffic does not get forwarded.
I do believe this is not a problem with verizon fios itself as any other gateway/firewall solution i use works fine (Pfsense currently).
the first address of .226 works fine, any traffic / ports i forward on that address works fine., it's only the virtual ip port forwarding that does not seem to work no matter which of the 4 additional addresses is used.
Can anyone provide any pointers or URL's for troubleshooting.
I have searched the forums and haven't found anything specific to my problem that has been helpful.
Regards and thanks!
Scott
3
Installation and Upgrades / Re: all traffic goes out on 1st IP of a /248 WAN
« on: October 12, 2012, 04:57:32 pm »
I didn't assign anything to go out of .10... it does it by default it seems 
let me clarify...
What i really need to know is can you can set up filtering rules to send traffic coming from a LAN address IE: 192.168.0.13 to go out on the external IP of xx.xx.xx.13
-Scott
let me clarify...
What i really need to know is can you can set up filtering rules to send traffic coming from a LAN address IE: 192.168.0.13 to go out on the external IP of xx.xx.xx.13
-Scott
4
Installation and Upgrades / all traffic goes out on 1st IP of a /248 WAN
« on: October 11, 2012, 03:53:45 am »
Hello,
I have 5 static IPs from my ISP:
For example:
1.1.1.9 - gateway
1.1.1.10 -- static 1
1.1.1.11 --- static 2
1.1.1.12 --- static 3
1.1.1.13 -- static 4
1.1.1.14 -- static 5
.11 to .14 are virtual IP's in zentyal 3.0
the problem i'm having is that all traffic seems to go out .10 ... traffic coming out of the LAN is not going on the assigned outbound IP.
This is causing a huge problem with hosted email servers as the rDNS / PTR records are not always assigned to .10
Can anyone assist with this?
Thanks,
-Scott
I have 5 static IPs from my ISP:
For example:
1.1.1.9 - gateway
1.1.1.10 -- static 1
1.1.1.11 --- static 2
1.1.1.12 --- static 3
1.1.1.13 -- static 4
1.1.1.14 -- static 5
.11 to .14 are virtual IP's in zentyal 3.0
the problem i'm having is that all traffic seems to go out .10 ... traffic coming out of the LAN is not going on the assigned outbound IP.
This is causing a huge problem with hosted email servers as the rDNS / PTR records are not always assigned to .10
Can anyone assist with this?
Thanks,
-Scott
5
Installation and Upgrades / Re: Zentyal 3.0 manage-logs process using 50-100% cpu and using 80% RAM
« on: September 21, 2012, 04:14:11 pm »
I have noticed that mysql is also a culprit... Sometimes mysql is the main culprit , sometimes it's manage-logs. This of course leads me to believe manage-logs is running tons of mysql queries as mysql might be 90% cpu while manage-logs is 10-20% at the same time.
I can easily change the swappiness value but in reference to the previous post i thought 60 was recommended for server installs on ubuntu... (Which is why it's the default).
Lowering the swappiness might delay performance degradation but the long term effect is still the same, mysql / manage-logs will thrash eventually.
Also , I currently have 2gigs allocated to the zentyal VM (running on esxi 5.1). I can increase the ram easily however 2 gig should be more than sufficient for just the firewall / gateway . I'm not running office or communication aspects of zentyal.
I can easily change the swappiness value but in reference to the previous post i thought 60 was recommended for server installs on ubuntu... (Which is why it's the default).
Lowering the swappiness might delay performance degradation but the long term effect is still the same, mysql / manage-logs will thrash eventually.
Also , I currently have 2gigs allocated to the zentyal VM (running on esxi 5.1). I can increase the ram easily however 2 gig should be more than sufficient for just the firewall / gateway . I'm not running office or communication aspects of zentyal.
6
Installation and Upgrades / Re: Zentyal 3.0 manage-logs process using 50-100% cpu and using 80% RAM
« on: September 21, 2012, 07:38:13 am »
I have not had any problems with the GUI and i'm quite happy with that aspect.
The only two problems i've had were the cpu usage / memory issues with manage-logs process.. and with samba / file sharing refusing to configure (Which i gave up on for now).
The only two problems i've had were the cpu usage / memory issues with manage-logs process.. and with samba / file sharing refusing to configure (Which i gave up on for now).
7
Installation and Upgrades / Re: Zentyal 3.0 manage-logs process using 50-100% cpu and using 80% RAM
« on: September 20, 2012, 10:26:56 pm »
yeah, it's a real bummer. 3.0 is so much better than 2.2 as far as features, UI, etc. But with this kinda of bug i may have to revert back to 2.2-2 ... Clients are already complaning.
8
Installation and Upgrades / Zentyal 3.0 manage-logs process using 50-100% cpu and using 80% RAM
« on: September 20, 2012, 06:46:12 pm »
Hi,
My zentyal 3.0 (Clean install) is having a problem. I've been monitoring performance since it was installed on 9/14/2012. The process manage-logs is using at random a huge amt of cpu (50-100% of one core of the quad core cpu) and also using 80-90% of ram on the server at times. This behavior is affecting performance in a fairly negative way i believe.
I have tried disabling both the logs module and the bandwidth monitor and neither of these help. This does not happen 100% of the time but is a majority of the time it seems.
Has anyone had this issue or know of a solution?
All components are up to date as well as all ubuntu updates.
Thanks!
My zentyal 3.0 (Clean install) is having a problem. I've been monitoring performance since it was installed on 9/14/2012. The process manage-logs is using at random a huge amt of cpu (50-100% of one core of the quad core cpu) and also using 80-90% of ram on the server at times. This behavior is affecting performance in a fairly negative way i believe.
I have tried disabling both the logs module and the bandwidth monitor and neither of these help. This does not happen 100% of the time but is a majority of the time it seems.
Has anyone had this issue or know of a solution?
All components are up to date as well as all ubuntu updates.
Thanks!
9
News and Announcements / Re: Zentyal 3.0 available!
« on: September 14, 2012, 01:15:49 am »
Does anyone know if i can install 3.0 and restore my config from the cloud from my previous 2.2-2 ??
10
Installation and Upgrades / Re: 1:1 NAT (1 to 1 NAT) problem
« on: April 06, 2011, 09:40:17 pm »
Hi,
Could you provide a url for creating the firewall hooks ? The links i have found with instructions do not work for me.
Thank you
-Edge
Could you provide a url for creating the firewall hooks ? The links i have found with instructions do not work for me.
Thank you
-Edge
11
Installation and Upgrades / Re: 1:1 NAT (1 to 1 NAT) problem
« on: April 06, 2011, 05:47:47 am »
I am not sure i understand .
Are you saying i have to setup dns entries for ALL of my domains / websites on the zentyal server?
Are you saying i have to setup dns entries for ALL of my domains / websites on the zentyal server?
12
Installation and Upgrades / 1:1 NAT (1 to 1 NAT) problem
« on: April 05, 2011, 02:50:50 am »
For a long time i have used ClearOS as our firewall / gateway / SBS solution, However I now want to switch to zentyal as all of our other systems / servers run ubuntu / ubuntu server.
I cannot figure out how to make 1:1 NAT (1 to 1 Nat) properly work.
I have 5 (five) public IP addresses and two of them need to NAT to internal servers.
The reason i need this is that websites hosted on my network are unreachable from the local network because DNS does not work correctly without 1:1 NAT
For example, DNS server and web server is at public ip (for example) 10.10.10.1 and internal 192.168.0.X.
I have followed / translated the post here, ( http://forum.zentyal.org/index.php?topic=163.0) but it does not work.
Any help is appreciated.
Thank you.
I cannot figure out how to make 1:1 NAT (1 to 1 Nat) properly work.
I have 5 (five) public IP addresses and two of them need to NAT to internal servers.
The reason i need this is that websites hosted on my network are unreachable from the local network because DNS does not work correctly without 1:1 NAT
For example, DNS server and web server is at public ip (for example) 10.10.10.1 and internal 192.168.0.X.
I have followed / translated the post here, ( http://forum.zentyal.org/index.php?topic=163.0) but it does not work.
Any help is appreciated.
Thank you.
Pages: [1]