This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
1
Installation and Upgrades / Re: Upgrade from 3.3 to 3.4 via restore 3.3 config is a no go
« on: March 30, 2014, 07:27:17 am »
That worked but after it imported, and I clicked "save changes" when it started saving changes it said :
Some modules reported error when saving changes . More information on the logs in /var/log/zentyal/
Service Zentyal Administration Web Server already exists.
I went in and checked three boxes that were unchecked: "ftp" "Intrusion Prevention System" and "Webserver"
I clicked save changes again, and it hung on "Current operation: Saving haproxy module". The screen never moved again. I closed the console window and reopened the console and it seems to be working?
Arch
Some modules reported error when saving changes . More information on the logs in /var/log/zentyal/
Service Zentyal Administration Web Server already exists.
I went in and checked three boxes that were unchecked: "ftp" "Intrusion Prevention System" and "Webserver"
I clicked save changes again, and it hung on "Current operation: Saving haproxy module". The screen never moved again. I closed the console window and reopened the console and it seems to be working?
Arch
2
Installation and Upgrades / Upgrade from 3.3 to 3.4 via restore 3.3 config is a no go
« on: March 29, 2014, 07:04:20 pm »
In the FWIW department, I tried to upgrade a 3.3 installation to 3.4 using a restore from 3.3 but it didn't work.
1. In my existing installation, I created an export of the system config via Import/Export Configuration > Backup the Current State.
2. I saved that to a disk.
3. I made a brand new install of 3.4 and made it so that had the same modules.
4. In the new install, I attempted an import of the system config via Import/Export Configuration >Restore Backup from File
5. It starts and then gives this error:
Some error has happened in Zentyal:
The following modules present in the backup are not installed: apache ids. You need to install them before restoring.
As far as I know, they are installed.
1. In my existing installation, I created an export of the system config via Import/Export Configuration > Backup the Current State.
2. I saved that to a disk.
3. I made a brand new install of 3.4 and made it so that had the same modules.
4. In the new install, I attempted an import of the system config via Import/Export Configuration >Restore Backup from File
5. It starts and then gives this error:
Some error has happened in Zentyal:
The following modules present in the backup are not installed: apache ids. You need to install them before restoring.
As far as I know, they are installed.
3
Installation and Upgrades / Re: Upgrading Community from 3.2.8 to 3.4, is it possible?
« on: March 29, 2014, 07:02:50 pm »
I tried to upgrade a 3.3 installation sort of like that but it didn't work.
1. In my existing installation, I created an export of the system config via Import/Export Configuration > Backup the Current State.
2. I saved that to a disk.
3. I made a brand new install of 3.4 and made it so that had the same modules.
4. In the new install, I attempted an import of the system config via Import/Export Configuration >Restore Backup from File
5. It starts and then gives this error:
Some error has happened in Zentyal:
The following modules present in the backup are not installed: apache ids. You need to install them before restoring.
As far as I know, they are installed.
1. In my existing installation, I created an export of the system config via Import/Export Configuration > Backup the Current State.
2. I saved that to a disk.
3. I made a brand new install of 3.4 and made it so that had the same modules.
4. In the new install, I attempted an import of the system config via Import/Export Configuration >Restore Backup from File
5. It starts and then gives this error:
Some error has happened in Zentyal:
The following modules present in the backup are not installed: apache ids. You need to install them before restoring.
As far as I know, they are installed.
4
Installation and Upgrades / Re: Current Zentyal Version?
« on: January 27, 2014, 05:47:28 pm »
I get the same message here ("Core version 3.3.2 (3.3.3 available)").
5
Installation and Upgrades / Re: Firewall not blocking specific IP addresses
« on: November 11, 2013, 07:50:36 pm »
" for what I understand, forwarding will bypass rules defined "to Zentyal"."
Ouch!!!
So how do I block specific IP's from being forwarded?
Or, put another way, what if one only wanted to allow one IP address (or range) to use a port that was begin forwarded (RDP being a good example). If I'm reading you correctly, that is not possible. If you allow any traffic to forward to another port, you must let it all be forwarded??
Ouch!!!
So how do I block specific IP's from being forwarded?
Or, put another way, what if one only wanted to allow one IP address (or range) to use a port that was begin forwarded (RDP being a good example). If I'm reading you correctly, that is not possible. If you allow any traffic to forward to another port, you must let it all be forwarded??
6
Installation and Upgrades / Re: Firewall not blocking specific IP addresses
« on: November 11, 2013, 07:23:37 pm »
1. Packer filter
2."Filtering rules from external networks to Zentyal"
3. Configure rulers
4. Add New
5. Decision: Drop
6. Source:Source IP < 123.456.345.123/32
7. Service: any
2."Filtering rules from external networks to Zentyal"
3. Configure rulers
4. Add New
5. Decision: Drop
6. Source:Source IP < 123.456.345.123/32
7. Service: any
7
Installation and Upgrades / Firewall not blocking specific IP addresses
« on: November 11, 2013, 06:50:38 pm »
I use Zentyal to forward a variety of ports to internal servers. A whie back, I created a netwoirk object and have it populated with ip addresses that I don't want to allow any access to our site. I just realzied its not working so for the heck of it, I just added a rule that only blocks one ip address (its the first rule under "Filtering rules from external networks to Zentyal". That does not work either.
Ami I missing something? Lets say I don't want to allow ip 123.456.654.321 any access to any of the ports being forwarded. I thought I could just create a rule that says:
Decision: = "deny"
Source = 123.456.654.321/32
Service = any
Arch
Ami I missing something? Lets say I don't want to allow ip 123.456.654.321 any access to any of the ports being forwarded. I thought I could just create a rule that says:
Decision: = "deny"
Source = 123.456.654.321/32
Service = any
Arch
8
Installation and Upgrades / Has anyone set up Suricata to actually block any incoming traffic?
« on: November 11, 2013, 06:08:28 pm »
Ive read up on the IDS/IPS aspect of Suricata but Ive yet to figure out how the blocking aspect works with Zentyal.Is anyone doing it? I'd be especially interested in knowing how you set it up to block based on excessive number of access attempts.
Thanks!
Thanks!
9
Installation and Upgrades / New install of 3.2 has much new version of kernel than upgrade of 3.2
« on: October 21, 2013, 01:04:19 pm »
I have several installs of 3.2. Some were upgrades from 3.0 and some were new installs. I've noticed that the new installs have a kernel version of Linux 3.8.0-31-generic but the installs that were upgrades are suck at Linux 3.2.0-54-generic
Output of "uname -a"
New install: 3.8.0-31-generic #46~precise1-Ubuntu SMP Wed Sep 11 18:21:16 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux
Upgrade installs:3.2.0-54-generic #82-Ubuntu SMP Tue Sep 10 20:08:42 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux
I've run "sudo apt-get update && sudo apt-get upgrade" as well as "sudo apt-get update && sudo apt-get dist-upgrade"
Thanks!
Output of "uname -a"
New install: 3.8.0-31-generic #46~precise1-Ubuntu SMP Wed Sep 11 18:21:16 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux
Upgrade installs:3.2.0-54-generic #82-Ubuntu SMP Tue Sep 10 20:08:42 UTC 2013 x86_64 x86_64 x86_64 GNU/Linux
I've run "sudo apt-get update && sudo apt-get upgrade" as well as "sudo apt-get update && sudo apt-get dist-upgrade"
Thanks!
10
Installation and Upgrades / Port forwarding does not work on some ports, others dont show up in NMAP.
« on: August 19, 2013, 06:45:19 pm »
Ive got a brand new install of Zentyal beta (core version 3.17). I set it up at a test site just like I had a previous install there. I have three ports forwarded. One is 3389 which goes to port 3389 which goes to internal server A, port 23 which goes to internal server B and port 24 which goes to internal server C.
Problem 1
The odd thing is that the forward of port 3389 works fine but the other two do not (I have confirmed that I can log in and use ssh to connect to the other two servers).
Problem 2
For the heck of it, I ran an nmap against the server and against a Zentyal 3.0 server at another site. The nmap output to the Zentyal beta site does not show any of the forwarded ports...only the ports I have open to specific service. On the other hand, the nmap output to the existing Zentyal regular 3.0 site DOES show the forwarded ports as well as the ports I have open to specific services.
Thoughts?
Arch
Problem 1
The odd thing is that the forward of port 3389 works fine but the other two do not (I have confirmed that I can log in and use ssh to connect to the other two servers).
Problem 2
For the heck of it, I ran an nmap against the server and against a Zentyal 3.0 server at another site. The nmap output to the Zentyal beta site does not show any of the forwarded ports...only the ports I have open to specific service. On the other hand, the nmap output to the existing Zentyal regular 3.0 site DOES show the forwarded ports as well as the ports I have open to specific services.
Thoughts?
Arch
11
Installation and Upgrades / Re: suricata Eats CPU
« on: August 19, 2013, 12:37:26 am »
I'm getting the same thing...CPU stays at 22% for suricata. I've got a brand new install (core version 3.1.7).
Arch
Arch
12
Installation and Upgrades / Re: Upgrade existing install to beta?
« on: August 18, 2013, 10:57:32 pm »
No problem - thanks!
Arch
Arch
13
Installation and Upgrades / Upgrade existing install to beta?
« on: August 15, 2013, 09:35:17 pm »
I assume since this is a beta, there is no ability to upgrade an existing installation right? Ive got a ton of settings to move from one install to another and it would be nice to be able to move some or all of the existing 3.0 install to the beta.
NO biggie if its not possible but I thought I'd ask.
Thanks!
Arch
NO biggie if its not possible but I thought I'd ask.
Thanks!
Arch
14
Installation and Upgrades / Re: Zentyal 3.1
« on: May 14, 2013, 08:42:20 pm »
After installing 3.1x beta, I tried to upgrade the packages after the initial installation howver this error pops up:
Internal Error, No file name for libssl1.0.0
Internal Error, No file name for libssl1.0.0
15
Installation and Upgrades / Re: Virtual Machines How To
« on: March 14, 2013, 09:55:09 pm »
No but I have Zentyal running in three different Vmware machines!