Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Installation and Upgrades / Proofreading
« on: April 29, 2010, 09:59:23 pm »
Hello,
I'd like to contribute to the improvement of the English used on the site and the platform - it must be difficult to translate it into other languages otherwise. Obviously some of the English has been translated from Spanish.
Noticed this evening the following on the platform:
"There is no information about the backuped files yet" under Backup->Configuration and Status.
It should read something like: "There is as yet no information about the backed up files" (the Americans would put in a hyphen as in "backed-up").
It's a shame for such a professional product. Checking copy is imperative in all multi-nationals, to protect their image.
Kind regards
I'd like to contribute to the improvement of the English used on the site and the platform - it must be difficult to translate it into other languages otherwise. Obviously some of the English has been translated from Spanish.
Noticed this evening the following on the platform:
"There is no information about the backuped files yet" under Backup->Configuration and Status.
It should read something like: "There is as yet no information about the backed up files" (the Americans would put in a hyphen as in "backed-up").
It's a shame for such a professional product. Checking copy is imperative in all multi-nationals, to protect their image.
Kind regards
2
Installation and Upgrades / Locked out of Administration
« on: December 12, 2009, 10:34:06 pm »
Hello,
could anyone please help here?
I wanted to change the admin port of eBox to allow for later use of the port by other web pages. I added a new https service port at 443 for secure http, added a new admin port at 7443 under the eBox Administration Service (I did not remove the original 443 port, thinking that if it didn't work, it would still connect with 443...oh well), and changed the port under Services ->General to 7433. Added the new https service to allow external connections in the firewall, and added the port to the external router, and saved changes. Hum.
I do have ssh, so I can alter the config files as necessary.
There are no other secure pages set up as yet. Firefox gives an "Unable to connect" page for https://www.website.com:7443/ebox, and https://www.website.com/ebox.
What have I missed?
Kind regards
could anyone please help here?
I wanted to change the admin port of eBox to allow for later use of the port by other web pages. I added a new https service port at 443 for secure http, added a new admin port at 7443 under the eBox Administration Service (I did not remove the original 443 port, thinking that if it didn't work, it would still connect with 443...oh well), and changed the port under Services ->General to 7433. Added the new https service to allow external connections in the firewall, and added the port to the external router, and saved changes. Hum.
I do have ssh, so I can alter the config files as necessary.
There are no other secure pages set up as yet. Firefox gives an "Unable to connect" page for https://www.website.com:7443/ebox, and https://www.website.com/ebox.
What have I missed?
Kind regards
3
Installation and Upgrades / A very nasty bug indeed!!!
« on: November 17, 2009, 04:50:52 pm »
Hello,
Just wanted to add a new mail user to an existing object, save changes and:
A really nasty bug has occurred
Exception
Can't open /var/log/ebox/ebox.log (Permission denied)
Trace
Can't open /var/log/ebox/ebox.log (Permission denied) at /usr/share/perl5/Log/Log4perl/Appender/File.pm line 102.
At present, still locked out of the administration. ssh works.
Any ideas?
Kind regards
Just wanted to add a new mail user to an existing object, save changes and:
A really nasty bug has occurred
Exception
Can't open /var/log/ebox/ebox.log (Permission denied)
Trace
Can't open /var/log/ebox/ebox.log (Permission denied) at /usr/share/perl5/Log/Log4perl/Appender/File.pm line 102.
At present, still locked out of the administration. ssh works.
Any ideas?
Kind regards
4
Installation and Upgrades / VPN daemon does not start
« on: November 12, 2009, 12:20:15 pm »
Hello,
I have set up VPN. but on the dashboard, the service is enabled but the daemon is stopped.
The local address and port are correct, the VPN subnet reads 192.168.20.0/255.255.255.255, the VPN interface is tap2, the VPN interface address is "No active".
Could anyone please let me know what I have missed or done incorrectly here, or is this normal behaviour if there are no VPN connections? I cannot seem to connect by VPN - always times out.
Kind regards
I have set up VPN. but on the dashboard, the service is enabled but the daemon is stopped.
The local address and port are correct, the VPN subnet reads 192.168.20.0/255.255.255.255, the VPN interface is tap2, the VPN interface address is "No active".
Could anyone please let me know what I have missed or done incorrectly here, or is this normal behaviour if there are no VPN connections? I cannot seem to connect by VPN - always times out.
Kind regards
5
Installation and Upgrades / IDS won't start...?
« on: November 11, 2009, 11:54:40 pm »
Hello,
Read a previous post from a few months ago where it was written that this problem would apparently be resolved in version 1.2.2, but I have version 1.2.2 of eBox, and IDS will not start (or at least, according to the dashboard). The screen says that the module was started correctly, but the button does not change from "Start" to "Restart".
What to do?
Kind regards
Read a previous post from a few months ago where it was written that this problem would apparently be resolved in version 1.2.2, but I have version 1.2.2 of eBox, and IDS will not start (or at least, according to the dashboard). The screen says that the module was started correctly, but the button does not change from "Start" to "Restart".
What to do?
Kind regards
6
Installation and Upgrades / Help - when I mark an interface as external, I loose connection with eBox
« on: November 06, 2009, 04:29:12 pm »
Hello,
I marked eth0 with "external", and I lost contact with the eBox! It asked to change the file for the IDS, and I ticked it for yes. This happened on the last install as well, but I needed to mark one interface as external for VPN.
There are 2 NICs, eth0 and eth1, with addresses like 192.168.0.1 and 192.168.1.1
Can anyone please help here? I have lost ssh contact as well at the moment (can ping the router), it seems, and the computer is only 2000 miles away...
Kind regards
I marked eth0 with "external", and I lost contact with the eBox! It asked to change the file for the IDS, and I ticked it for yes. This happened on the last install as well, but I needed to mark one interface as external for VPN.
There are 2 NICs, eth0 and eth1, with addresses like 192.168.0.1 and 192.168.1.1
Can anyone please help here? I have lost ssh contact as well at the moment (can ping the router), it seems, and the computer is only 2000 miles away...
Kind regards
7
Installation and Upgrades / New installation - again...
« on: October 27, 2009, 02:49:03 pm »
Hello,
after intermittent connection yesterday, have installed the system again, this time with 2 Ethernet cards.
I can connect over https, ssh, and http works now.
However, I have an error with "snort, ebox-ids, ebox-security, and ebox-all. I have removed ebox-ids and reinstalled these, but still the error.
The Intrusion Detection System Configuration shows both cards disabled.
apt-get install ebox-* shows 4 packages not fully installed or removed. snort fails to start, and i take it that the others depend on snort to install. I have removed and installed ebox-ids, but still no change.
Most modules were not stated in the first instance, but all are started now.
Before making a mess of the settings if anyone could point me in the right direction, would be grateful.
The first Ethernet card has a static address 192.168.0.1, same IP set as the router, and I have not marked it as external. The second card is not yet set.
Kind regards
after intermittent connection yesterday, have installed the system again, this time with 2 Ethernet cards.
I can connect over https, ssh, and http works now.
However, I have an error with "snort, ebox-ids, ebox-security, and ebox-all. I have removed ebox-ids and reinstalled these, but still the error.
The Intrusion Detection System Configuration shows both cards disabled.
apt-get install ebox-* shows 4 packages not fully installed or removed. snort fails to start, and i take it that the others depend on snort to install. I have removed and installed ebox-ids, but still no change.
Most modules were not stated in the first instance, but all are started now.
Before making a mess of the settings if anyone could point me in the right direction, would be grateful.
The first Ethernet card has a static address 192.168.0.1, same IP set as the router, and I have not marked it as external. The second card is not yet set.
Kind regards
8
Installation and Upgrades / http://trac.ebox-platform.com/#Forum
« on: October 26, 2009, 04:09:53 pm »
Hello,
the above link on the site to the forum is wrong - missing the hyphen between ebox and platform.
Kind regards
the above link on the site to the forum is wrong - missing the hyphen between ebox and platform.
Kind regards
9
Installation and Upgrades / adding DNS entry with a specific port
« on: October 24, 2009, 11:26:45 am »
Hello,
We have a domain name which I wish to point to another server (not mine) which hosts another domain name (ours), as the content is the same, but it runs Cold Fusion, which we have not tried on Apache2 yet.. I can change the Nominet DNS lookup to my fixed IP with eBox.
However, the entry is rejected if I add the necessary port. I am trying to add something like 200.200.200.200:8300, which is the address of the other site.
Could anyone please tell me if this is possible, and if so, how?
Kind regards
We have a domain name which I wish to point to another server (not mine) which hosts another domain name (ours), as the content is the same, but it runs Cold Fusion, which we have not tried on Apache2 yet.. I can change the Nominet DNS lookup to my fixed IP with eBox.
However, the entry is rejected if I add the necessary port. I am trying to add something like 200.200.200.200:8300, which is the address of the other site.
Could anyone please tell me if this is possible, and if so, how?
Kind regards
10
Installation and Upgrades / Cannot use for the bundle the server's certificate
« on: October 17, 2009, 11:42:11 pm »
Hello,
in the VPN section, trying to download clients` certificate, Linux bundle, clients` certificate VPN, server address and one additional server address give the error "Cannot use for the bundle the server's certificate". Is this only available for Windows clients, or have I made a mistake somewhere?
Kind regards,
For eBoxs` translation department:
I would think that the correct phasing for the message is "Cannot use this bundle for the servers` certificate" or "Cannot use the servers` certificate for this bundle"? I don`t know enough about it to know which of the two phrases is correct in this case, but I presume the latter.
Apostrophe:
"server`s" is short for "server is" (as in the server`s down), and "servers`" means "belonging to the server" (as in the servers` name). Down to Microsofts` spell-checker no doubt - they don`t know that s` exists!
That`s what you get when everyone passes the exam...
in the VPN section, trying to download clients` certificate, Linux bundle, clients` certificate VPN, server address and one additional server address give the error "Cannot use for the bundle the server's certificate". Is this only available for Windows clients, or have I made a mistake somewhere?
Kind regards,
For eBoxs` translation department:
I would think that the correct phasing for the message is "Cannot use this bundle for the servers` certificate" or "Cannot use the servers` certificate for this bundle"? I don`t know enough about it to know which of the two phrases is correct in this case, but I presume the latter.
Apostrophe:
"server`s" is short for "server is" (as in the server`s down), and "servers`" means "belonging to the server" (as in the servers` name). Down to Microsofts` spell-checker no doubt - they don`t know that s` exists!
That`s what you get when everyone passes the exam...
11
Installation and Upgrades / https works, http doesn`t
« on: October 17, 2009, 11:06:12 pm »
Hello,
I can reach the eBox remotely using ebox management port 443 (https://my.com brings up eBox), and ssh as well with PuTTY. Http did work, in that I used to get "It works!" in a browser window on www.my.com. It then stopped working, and I am not sure why.
nmap shows ssh and https as open ports, but strangely http as a filtered port. The port is open in the router. Could I have made an error in eBox? Firewall settings: "Filtering rules from internal networks to eBox" has 2 way traffic for http, "Filtering rules for internal networks" has no http entry, "Filtering rules for traffic coming out from eBox" has http with arrow down, "Filtering rules from external networks to eBox" has http with arrow down.
Would love to find the answer to this one!
Kind regards
I can reach the eBox remotely using ebox management port 443 (https://my.com brings up eBox), and ssh as well with PuTTY. Http did work, in that I used to get "It works!" in a browser window on www.my.com. It then stopped working, and I am not sure why.
nmap shows ssh and https as open ports, but strangely http as a filtered port. The port is open in the router. Could I have made an error in eBox? Firewall settings: "Filtering rules from internal networks to eBox" has 2 way traffic for http, "Filtering rules for internal networks" has no http entry, "Filtering rules for traffic coming out from eBox" has http with arrow down, "Filtering rules from external networks to eBox" has http with arrow down.
Would love to find the answer to this one!
Kind regards
12
Installation and Upgrades / unable to resolve host
« on: October 17, 2009, 10:49:41 pm »
After setting up fetchmail, the following problem appears in Queue Management:
To: root
From: ebox
Auto-Submitted: auto-generated
Subject: *** SECURITY information for my.com ***
my.com: Oct 17 22:08:26 : ebox : unable to resolve host my.com
fetchmail on the command line gives me "couldn`t find the canonical DNS name of pop.my.com: name or service not known Query status 11
The DNS servers are in the resolv.conf, and I have added them into the dhclient.conf as well for good measure. If I wget google.com from the eBox, it returns the http file index.html, so I presume that it is correctly resolving names.
In eBox, my.com is set up in DNS, with hostname set to "www" and Mail Exchanger set to pop.my.com, although I have tried just "pop" as well.
Any help/ideas greatly appreciated.
Kind regards
To: root
From: ebox
Auto-Submitted: auto-generated
Subject: *** SECURITY information for my.com ***
my.com: Oct 17 22:08:26 : ebox : unable to resolve host my.com
fetchmail on the command line gives me "couldn`t find the canonical DNS name of pop.my.com: name or service not known Query status 11
The DNS servers are in the resolv.conf, and I have added them into the dhclient.conf as well for good measure. If I wget google.com from the eBox, it returns the http file index.html, so I presume that it is correctly resolving names.
In eBox, my.com is set up in DNS, with hostname set to "www" and Mail Exchanger set to pop.my.com, although I have tried just "pop" as well.
Any help/ideas greatly appreciated.
Kind regards
13
Installation and Upgrades / cannot reach ssh or https from outside the LAN
« on: October 13, 2009, 06:47:23 pm »
Sorry if there is a post for this - I did look, but didn't find one.
I have eBox 1.2 installed on a network with 2 workstations. i can reach the eBox dashboard from the LAN without problem, and also with PuTTY on port 22, but I cannot reach either of these 2 ports from outside the LAN (i.e. the Internet). I just get "Firefox can't establish a connection to the server at..." instead of a server certificate offer. Currently, I am using RealVNC to connect to a MS workstation, and connecting from that to the server..! Can't be right!
Before I change settings that shouldn't be changed, I would very much appreciate if anyone could tell my why the secure ports are not reachable over the net, and how to solve this.
Under "Filtering rules from external networks to eBox" and "Filtering rules for traffic coming out from eBox" I have added ssh and https.
Under "List of services " I have added https with port 443. I noticed an odd entry for ssh :Internal with a red cross, any source port and destination port 22, but it was created by the system.
There are no entries under "Filtering rules from external networks to internal networks".
Any help gratefully received!
I have eBox 1.2 installed on a network with 2 workstations. i can reach the eBox dashboard from the LAN without problem, and also with PuTTY on port 22, but I cannot reach either of these 2 ports from outside the LAN (i.e. the Internet). I just get "Firefox can't establish a connection to the server at..." instead of a server certificate offer. Currently, I am using RealVNC to connect to a MS workstation, and connecting from that to the server..! Can't be right!
Before I change settings that shouldn't be changed, I would very much appreciate if anyone could tell my why the secure ports are not reachable over the net, and how to solve this.
Under "Filtering rules from external networks to eBox" and "Filtering rules for traffic coming out from eBox" I have added ssh and https.
Under "List of services " I have added https with port 443. I noticed an odd entry for ssh :Internal with a red cross, any source port and destination port 22, but it was created by the system.
There are no entries under "Filtering rules from external networks to internal networks".
Any help gratefully received!
Pages: [1]