Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
46
Installation and Upgrades / Re: How to prefil the Dansguradian bypass list file?
« on: August 15, 2012, 04:36:35 pm »
Cool! I found this url that sort of explained it http://blogs.zentyal.org/jacalvo/2011/01/04/how-to-customize-the-configuration-files-generated-by-zentyal/
I did this:
1. created a /etc/zentyal/hooks/squid.postsetconf script with the following line:
echo "msn.com" >> /etc/dansguardian/lists/exceptionsitelist3
2. I have no idea what kicks it off so I just added another site via the GUI and sure enough, when I printed the file "/etc/dansguardian/lists/exceptionsitelist3" sure enough there at the end was msn.com.
3. What I'm missing is that even though its there, the "msn.com" does not appear in the GUI screen. The GUI screen only shows the sites that were added via the GUI. I want it to also show what was added via the script above. Any ideas??
Thanks!
Arch
I did this:
1. created a /etc/zentyal/hooks/squid.postsetconf script with the following line:
echo "msn.com" >> /etc/dansguardian/lists/exceptionsitelist3
2. I have no idea what kicks it off so I just added another site via the GUI and sure enough, when I printed the file "/etc/dansguardian/lists/exceptionsitelist3" sure enough there at the end was msn.com.
3. What I'm missing is that even though its there, the "msn.com" does not appear in the GUI screen. The GUI screen only shows the sites that were added via the GUI. I want it to also show what was added via the script above. Any ideas??
Thanks!
Arch
47
Installation and Upgrades / Does IDS block incoming attacks?
« on: August 14, 2012, 03:12:25 pm »
I've been working with Zentyal for about two weeks. Its a great package and I'm still learning.
How do you test IDS? I ran a port scan from another network but I don't see where it ends up blocking the connection? Did I miss something? How do you set it to kick in the firewall and block the connection?
Thanks!
Arch
How do you test IDS? I ran a port scan from another network but I don't see where it ends up blocking the connection? Did I miss something? How do you set it to kick in the firewall and block the connection?
Thanks!
Arch
48
Installation and Upgrades / How to prefil the Dansguradian bypass list file?
« on: August 14, 2012, 03:15:18 am »
I need to put a ton of domains in the file /etc/dansguardian/lists/exceptionsitelist3 . i'd rather not put them in one at a time. I tried putting a couple in there manually but Zentyal wipes out whaver you put in there. Is there another way to prefill it?
Thanks!
Arch
Thanks!
Arch
49
Installation and Upgrades / Re: Many sites cannot resolve and return what looks like IPV6 errors??
« on: July 31, 2012, 03:16:09 am »
I may have solved it or y'all may tell me I'm crazy and dumb as a box of rocks?!?!?
I was looking in teh squid file (/var/log/squid3/access.log) and saw lots of stuff like this:
1343695473.458 179734 192.168.1.21 TCP_MISS/504 4652 GET http://www.google-analytics.com/__utm.gif? - DIRECT/2607:f8b0:4002:802::100e text/html
Since all those erros I've been getting back showed what I assume are ipv6 addresses, I noticed that the areas that were causing problem also had ipv6 addresses in the /var/log/squid3/access.log. I found a site that told how to kill ipv6 in ubuntu (http://www.noobslab.com/2012/05/disable-ipv6-if-your-internet-is.html)
sudo nano /etc/sysctl.conf
Now add these lines at the end of file:
# IPv6
net.ipv6.conf.all.disable_ipv6 = 1
net.ipv6.conf.default.disable_ipv6 = 1
net.ipv6.conf.lo.disable_ipv6 = 1
Now Save sysctl.conf file and close.
Once I ran "sudo sysctl -p" I saw that the clients now work but I rebooted to be on the safe side.
If you run "cat /proc/sys/net/ipv6/conf/all/disable_ipv6" you will get a "1" if its now disabled.
Again, this may be pure luck on my part that this worked. Would one of you that knows what you are doign tell me is this was a logical fix?
Thanks!
Arch
I was looking in teh squid file (/var/log/squid3/access.log) and saw lots of stuff like this:
1343695473.458 179734 192.168.1.21 TCP_MISS/504 4652 GET http://www.google-analytics.com/__utm.gif? - DIRECT/2607:f8b0:4002:802::100e text/html
Since all those erros I've been getting back showed what I assume are ipv6 addresses, I noticed that the areas that were causing problem also had ipv6 addresses in the /var/log/squid3/access.log. I found a site that told how to kill ipv6 in ubuntu (http://www.noobslab.com/2012/05/disable-ipv6-if-your-internet-is.html)
sudo nano /etc/sysctl.conf
Now add these lines at the end of file:
# IPv6
net.ipv6.conf.all.disable_ipv6 = 1
net.ipv6.conf.default.disable_ipv6 = 1
net.ipv6.conf.lo.disable_ipv6 = 1
Now Save sysctl.conf file and close.
Once I ran "sudo sysctl -p" I saw that the clients now work but I rebooted to be on the safe side.
If you run "cat /proc/sys/net/ipv6/conf/all/disable_ipv6" you will get a "1" if its now disabled.
Again, this may be pure luck on my part that this worked. Would one of you that knows what you are doign tell me is this was a logical fix?
Thanks!
Arch
50
Installation and Upgrades / Re: Many sites cannot resolve and return what looks like IPV6 errors??
« on: July 31, 2012, 01:54:03 am »
I tried http://forum.zentyal.org/index.php/topic,11300.msg45755.html" = I try that one tonight.
I changed this file "/etc/init/ebox.bind9.conf" as follows:
re-start script
invoke-rc.d bind9 stop || true
modprobe capability >/dev/null 2>&1 || true
mkdir -p /var/run/named
chmod 775 /var/run/named
chown root:bind /var/run/named >/dev/null 2>&1 || true
end script
# exec /usr/sbin/named -u bind -f
exec /usr/sbin/named -4 -u bind -f
respawn
It didnt work. If you go to msn.com, it works fine. If you try to go to www.foxnews.com, you see the bottom left of the screen get stuck on fonts.googleapis.com. After about a minute, it goes there only once (but won't later). If you go to www.google.com it just sits there on "waiting on www.google.com".
Help!
I changed this file "/etc/init/ebox.bind9.conf" as follows:
re-start script
invoke-rc.d bind9 stop || true
modprobe capability >/dev/null 2>&1 || true
mkdir -p /var/run/named
chmod 775 /var/run/named
chown root:bind /var/run/named >/dev/null 2>&1 || true
end script
# exec /usr/sbin/named -u bind -f
exec /usr/sbin/named -4 -u bind -f
respawn
It didnt work. If you go to msn.com, it works fine. If you try to go to www.foxnews.com, you see the bottom left of the screen get stuck on fonts.googleapis.com. After about a minute, it goes there only once (but won't later). If you go to www.google.com it just sits there on "waiting on www.google.com".
Help!
51
Installation and Upgrades / Re: Many sites cannot resolve and return what looks like IPV6 errors??
« on: July 30, 2012, 02:21:43 pm »
Robb:
"Are you able to resolve any site? Or do some sites work and others not?" = Yes, I can get to about half the sites. I'm not at home now but I can get to msn.com, www.tuparks.com, www.chattanoogan.com, and others. There does not seem to be any rhyme nor reason to what I can get to.
"Why use ip6? Or didn't you configure that yourself? Does your ISP provide your MoDem/Router with an ip6 address?" = I'm not trying to use ip6. I never really even thought it might come into to play until I saw those weird errors like "Connection to 2607:f8b0:4002:802::1013 failed". I didn't configure the ip6 part. I ran one of those tests at "http://test-ipv6.com/" and it said "No IPv6 address detected "
Escorpiom:
"You use transparent DNS cache, define as first DNS server in Zentyal: 127.0.0.1" = that is how its set. Under it is the google DNS servers.
"On the clients, set Zentyal server as DNS server." = I tried them that way as well as putting the google DNS in the client, neither worked.
"Try to disable the IPv6 resolving in Zentyal, you can find details in this post:
http://forum.zentyal.org/index.php/topic,11300.msg45755.html" = I try that one tonight.
Thanks y'all!
Arch
"Are you able to resolve any site? Or do some sites work and others not?" = Yes, I can get to about half the sites. I'm not at home now but I can get to msn.com, www.tuparks.com, www.chattanoogan.com, and others. There does not seem to be any rhyme nor reason to what I can get to.
"Why use ip6? Or didn't you configure that yourself? Does your ISP provide your MoDem/Router with an ip6 address?" = I'm not trying to use ip6. I never really even thought it might come into to play until I saw those weird errors like "Connection to 2607:f8b0:4002:802::1013 failed". I didn't configure the ip6 part. I ran one of those tests at "http://test-ipv6.com/" and it said "No IPv6 address detected "
Escorpiom:
"You use transparent DNS cache, define as first DNS server in Zentyal: 127.0.0.1" = that is how its set. Under it is the google DNS servers.
"On the clients, set Zentyal server as DNS server." = I tried them that way as well as putting the google DNS in the client, neither worked.
"Try to disable the IPv6 resolving in Zentyal, you can find details in this post:
http://forum.zentyal.org/index.php/topic,11300.msg45755.html" = I try that one tonight.
Thanks y'all!
Arch
52
Installation and Upgrades / Many sites cannot resolve and return what looks like IPV6 errors??
« on: July 30, 2012, 12:14:15 am »
I have installed version 2.2 and 2.3. I'm currently testing 2.3. I'm having some weird issues. About 50% of the sites will not resolve from the clients. Examples of sites that will not resolve (i.e. open) are zentyal.org, google.com, bing.com, etc. In each case, the browser (Internet Explorer and Firefox on Windows and Firefox on Linux), tries for about a minute and then finally quits and gives the errors below.
1. I've got the Zentyal server set so that its clients are using transperent proxy.
2. turned off the antiviru settign, I turned
3. Enable transparent DNS cache: yes
4. I have forwarders set 8.8.8.8, 8.8.4.4, 75.75.76.76
5. I even tried to manually stick the 8.8.8.8, 8.8.4.4 DNS servers in the windows client but no go.
6. I replaced the swich
7. I've tried different cables.
8. Ive reset the cable modem (Comcast)
9. Note that I'm typing this from the brower on the Zentyal server. It works fine and everythign resolves correctly while sittign at the console.
10. Note I can also unplug the internet wire from the back of the Zentyal server an dthen plug it stairght into any of the clients and they too will then work fine and everythign resolve correctly.
11. Noet that each error below retuns what I assume is an IPV6 address?? For th eheck of it, I told the windows machie to not use IPV6 but it gives the same error.
The requested URL could not be retrieved
The following error was encountered while trying to retrieve the URL: http://www.bing.com/
Connection to 2600:807:320:1::3f61:7b0b failed.
The system returned: (110) Connection timed out
The remote host or network may be down. Please try the request again.
Your cache administrator is webmaster.
The requested URL could not be retrieved
The following error was encountered while trying to retrieve the URL: http://www.google.com/
Connection to 2607:f8b0:4002:802::1013 failed.
The system returned: (110) Connection timed out
The remote host or network may be down. Please try the request again.
Your cache administrator is webmaster.
The requested URL could not be retrieved
The following error was encountered while trying to retrieve the URL: http://www.internic.com/
Connection to 2620:0:2d0:200::9 failed.
The system returned: (110) Connection timed out
The remote host or network may be down. Please try the request again.
Your cache administrator is webmaster.
Any ideas?
Arch
1. I've got the Zentyal server set so that its clients are using transperent proxy.
2. turned off the antiviru settign, I turned
3. Enable transparent DNS cache: yes
4. I have forwarders set 8.8.8.8, 8.8.4.4, 75.75.76.76
5. I even tried to manually stick the 8.8.8.8, 8.8.4.4 DNS servers in the windows client but no go.
6. I replaced the swich
7. I've tried different cables.
8. Ive reset the cable modem (Comcast)
9. Note that I'm typing this from the brower on the Zentyal server. It works fine and everythign resolves correctly while sittign at the console.
10. Note I can also unplug the internet wire from the back of the Zentyal server an dthen plug it stairght into any of the clients and they too will then work fine and everythign resolve correctly.
11. Noet that each error below retuns what I assume is an IPV6 address?? For th eheck of it, I told the windows machie to not use IPV6 but it gives the same error.
The requested URL could not be retrieved
The following error was encountered while trying to retrieve the URL: http://www.bing.com/
Connection to 2600:807:320:1::3f61:7b0b failed.
The system returned: (110) Connection timed out
The remote host or network may be down. Please try the request again.
Your cache administrator is webmaster.
The requested URL could not be retrieved
The following error was encountered while trying to retrieve the URL: http://www.google.com/
Connection to 2607:f8b0:4002:802::1013 failed.
The system returned: (110) Connection timed out
The remote host or network may be down. Please try the request again.
Your cache administrator is webmaster.
The requested URL could not be retrieved
The following error was encountered while trying to retrieve the URL: http://www.internic.com/
Connection to 2620:0:2d0:200::9 failed.
The system returned: (110) Connection timed out
The remote host or network may be down. Please try the request again.
Your cache administrator is webmaster.
Any ideas?
Arch