Recent Posts

Pages: 1 ... 6 7 [8] 9 10
71
Russian / Re: Vlan's и контролер домена
« Last post by luha on June 24, 2020, 10:09:25 am »
В настройках интерфейсов можно добавлять подсети и виртуальные адреса. В настройках правил файервола определяется взаимодействие между сетями (можно обмениваться, нельзя, частично). Подсети настроены на железе маршрутизаторов или как, с разделением интерфейсов? Если трафик летает по тем же проводам то можно всё настроить на одной карте, если разделено то надо будет добавить сетевых карт (если нету) и каждой смотреть в свою подсеть.

Для одного контроллера только один АД домен. Можно много доменов почты.
72
Russian / Vlan's и контролер домена
« Last post by Djalin on June 23, 2020, 07:33:46 pm »
Здравствуйте, есть сеть на несколько вланов, уже поделена между пользователями. Как правильно настроить контролер домена - что б его видели все вланы?
73
German / Ich kann Zentyal unter Windows Server 2003 nicht beitreten.
« Last post by DXZ on June 23, 2020, 02:14:11 pm »
Hallo, ich bin neu in der Community.

Ich habe das folgende Problem: Ich kann Zentyal in Windows Server 2003 nicht beitreten. Mein DNS wird auf beiden Seiten aufgelöst. Wenn ich mich jedoch mit Strg + Typ smb anmelde: // 10.20.10.13 wird die folgende Meldung angezeigt: "Fehler - Vorgang nicht unterstützt "Ich denke, das ist das Hauptproblem.

Am Ende des Prozesses erhalte ich folgende Nachricht:

Die folgenden Module sind beim Speichern ihrer Änderungen fehlgeschlagen, ihr Status ist unbekannt: samba

Kann mir jemand helfen?


Danke im Voraus!

Herzlichen Glückwunsch zur Community!
74
Hallo,

here the solution for the problem and I modified the config in that way that conversations is usable as a client with file upload etc...

It would be great if somebody could upgrade the ejabberd for zentyal ....

Code: [Select]
#### This config file is generated by Zentyal.
#### Any modifcation will be resetted by restart of Zentyal Server !!!
#### To configure modify /usr/share/zentyal/stubs/jabber/ejabberd.yml.mas instead
####
#### This config was created by Denis Robel for Ejabberd 20.0.4
####
######################################################################################

hosts:
  - "dmt1.nsupdate.info"


loglevel: 4
log_rotate_size: 10485760
log_rotate_date: ""
log_rotate_count: 1
log_rate_limit: 100

certfiles:
#  - "/opt/ejabberd/conf/server.pem"
  - "/etc/letsencrypt/live/dmt1.nsupdate.info/fullchain.pem"
  - "/etc/letsencrypt/live/dmt1.nsupdate.info/privkey.pem"

#ca_file: "/opt/ejabberd/conf/cacert.pem"
ca_file: "/opt/ejabberd/conf/ejabberd.pem"

auth_method: ldap
ldap_servers:
  - "127.0.0.1"
ldap_port: 389
#ldap_encrypt: tls
ldap_rootdn: "CN=zentyal-jabber-zentyal2,CN=Users,DC=dantschke,DC=org"
ldap_password: "++++++++++++++++++++++++++"
ldap_base: "DC=dantschke,DC=org"
ldap_uids: [jabberUid]
#  "jabberUid": "%u"
ldap_filter: "(&(objectclass=User)(jabberUid=*))"


listen:
  -
    port: 5222
    ip: "0.0.0.0"
    module: ejabberd_c2s
    starttls: true
    certfile: "/opt/ejabberd/conf/ejabberd.pem"
    tls_compression: false
    dhfile: "/opt/ejabberd/conf/dh4096.pem"

    starttls_required: true
    max_stanza_size: 262144
    shaper: c2s_shaper
    access: c2s

  -
    port: 5269
    ip: "0.0.0.0"
    module: ejabberd_s2s_in
    max_stanza_size: 524288

  -
    port: 3478
    ip: "192.168.1.1"
    transport: udp
    module: ejabberd_stun
    use_turn: true
    turn_ip: "192.168.1.1"
    ## The server's public IPv4 address:
    # turn_ipv4_address: "203.0.113.3"
    ## The server's public IPv6 address:
    # turn_ipv6_address: "2001:db8::3"

  -
    port: 5443
    ip: "::"
    module: ejabberd_http
    tls: true
    request_handlers:
      "/admin": ejabberd_web_admin
      "/api": mod_http_api
      "/bosh": mod_bosh
      "/captcha": ejabberd_captcha
      "/upload": mod_http_upload
      "/ws": ejabberd_http_ws
      "/oauth": ejabberd_oauth


  -
    port: 5280
    ip: "::"
    module: ejabberd_http
    request_handlers:
      "/admin": ejabberd_web_admin
  -
    port: 1883
    ip: "::"
    module: mod_mqtt
    backlog: 1000


s2s_use_starttls: optional

acl:
  local:
    user_regexp: ""
  loopback:
    ip:
      - 127.0.0.0/8
      - ::1/128
      - ::FFFF:127.0.0.1/128
  admin:
    user:
      - "robel": "dmt1.nsupdate.info"
      - "domainadmin": "dmt1.nsupdate.info"

access_rules:
  local:
    allow: local
  c2s:
    deny: blocked
    allow: all
  announce:
    allow: admin
  configure:
    allow: admin
  muc_create:
    allow: local
  pubsub_createnode:
    allow: local
  trusted_network:
    allow: loopback

api_permissions:
  "console commands":
    from:
      - ejabberd_ctl
    who: all
    what: "*"
  "admin access":
    who:
      access:
        allow:
          acl: loopback
          acl: admin
      oauth:
        scope: "ejabberd:admin"
        access:
          allow:
            acl: loopback
            acl: admin
    what:
      - "*"
      - "!stop"
      - "!start"
  "public commands":
    who:
      ip: 127.0.0.1/8
    what:
      - status
      - connected_users_number

shaper:
  normal: 1000
  fast: 50000

shaper_rules:
  max_user_sessions: 10
  max_user_offline_messages:
    5000: admin
    100: all
  c2s_shaper:
    none: admin
    normal: all
  s2s_shaper: fast

max_fsm_queue: 10000

acme:
   contact: "mailto:d.robel@dantschke-med.de"
   ca_url: "https://acme-v01.api.letsencrypt.org"


language: "de"

modules:
  mod_adhoc: {}
  mod_admin_extra: {}
  mod_announce:
    access: announce
  mod_avatar: {}
  mod_caps: {}
  mod_carboncopy: {}
  mod_configure: {}
  mod_client_state: {}
  mod_blocking: {}
  mod_disco:
   server_info:
    -
      modules: all
      name: "abuse-addresses"
      urls:
        - "mailto:info@dantschke-med.de"
    -
      modules: all
      name: "support-addresses"
      urls:
        - "mailto:info@dantschke-med.de"
    -
      modules: all
      name: "admin-addresses"
      urls:
        - "mailto:info@dantschke-med.de"
  mod_http_upload: {}
  mod_last: {}
  mod_mam: {}
  mod_mqtt: {}
  mod_muc:
    host: "conference.@HOST@"
    access:
      - allow
    access_admin:
      - allow: admin
    access_create: muc_create
    access_persistent: muc_create
    access_mam:
      - allow
    default_room_options:
      allow_subscription: true  # enable MucSub
      mam: true
      persistent: true
      public: false
      public_list: false
  mod_muc_admin: {}
  mod_offline:
    access_max_user_messages: max_user_offline_messages
  mod_ping: {}
  mod_privacy: {}
  mod_pres_counter:
    count: 5
    interval: 60
  mod_private: {}
  mod_proxy65:
    access: local
    max_connections: 5
  mod_pubsub:
    access_createnode: pubsub_createnode
    ignore_pep_from_offline: true
    last_item_cache: false
    plugins:
      - flat
      - hometree
      - pep
    force_node_config:
      ## Avoid buggy clients to make their bookmarks public
      storage:bookmarks:
        access_model: whitelist
  mod_push: {}
  mod_push_keepalive: {}
  mod_register:
    ## Only accept registration requests from the "trusted"
    ## network (see access_rules section above).
    ## Think twice before enabling registration from any
    ## address. See the Jabber SPAM Manifesto for details:
    ## https://github.com/ge0rg/jabber-spam-fighting-manifesto
    ip_access: trusted_network
  mod_roster:
    versioning: true
  mod_s2s_dialback: {}
  mod_shared_roster_ldap:
    ldap_rfilter: "(&(objectClass=user)(!(isCriticalSystemObject=*)))"
    ldap_ufilter: "(&(objectClass=userJabberAccount)(distinguishedName=%u))"
    ldap_groupattr: "cn"
    ldap_groupdesc: "cn"
    ldap_memberattr: "sAMAccountName"
    ldap_useruid: "jabberUid"
    ldap_userdesc: "sAMAccountName"
  mod_sic: {}
  mod_stats: {}
  mod_stream_mgmt:
    resend_on_timeout: if_offline
  mod_stun_disco: {}
  mod_time: {}
  mod_vcard:
    db_type: ldap
    search: true
    allow_return_all: true
    ldap_vcard_map:
      "NICKNAME": {"%u": []}
      "FIRST": {"%s": ["givenName"]}
      "LAST": {"%s": ["sn"]}
      "FN": {"%s, %s": ["sn", "givenName"]}
      "EMAIL": {"%s": ["mail"]}
      "ORGNAME": {"%s": ["company"]}
      "ORGUNIT": {"%s": ["department"]}
      "CTRY": {"%s": ["c"]}
      "LOCALITY": {"%s": ["l"]}
      "STREET": {"%s": ["streetAddress"]}
      "REGION": {"%s": ["st"]}
      "PCODE": {"%s": ["postalCode"]}
      "TITLE": {"%s": ["title"]}
      "URL": {"%s": ["wWWHomePage"]}
      "DESC": {"%s": ["description"]}
      "TEL/CELL": {"%s": ["mobile"]}
      "TEL/NUMBER": {"%s": ["telephoneNumber"]}
    ## Search form
    ldap_search_fields:
      "User": "%u"
      "Name": "givenName"
      "Family Name": "sn"
      "Email": "mail"
      "Company": "company"
      "Department": "department"
      "Role": "title"
      "Description": "description"
      "Phone": "telephoneNumber"
    ## vCard fields to be reported
    ## Note that JID is always returned with search results
    ldap_search_reported:
      "Full Name": "FN"
      "Nickname": "NICKNAME"
      "Email": "EMAIL"
  mod_vcard_xupdate: {} 

  mod_version: {}


best regards

Denis
75
Hi,
I upgraded zentyal to lastest version 6.2.2. Now I have ClamAV 0.102.3/25850, with apache 2.4.43 and PHP 7.2.24-0ubuntu0.18.04.6 with Zend OPcache v7.2.24-0ubuntu0.18.04.6.
The problem was still present. So I tried to change the PHP server configuration from fast-cgi (configuration file /etc/php/7.2/fpm/php.ini) to apache handler (configuration file /etc/php/7.2/apache2/php.ini). I do not why, but the problem of clamAV seems solved.
However, now there is another problem related to clamAV which was not present with fast-cgi. Whenever there is an upload of a file on the web server, clamAV fails:
/tmp/phpys4WKw: lstat() failed: No such file or directory. ERROR
ClamAV user has write access to web server folders and is member of www-data group.
76
I have been running a Zentyal 3.5 Server for several years, it successfully connects to the internet via a BT Openreach VDSL FFTC modem using PPPoE, on one of its Ethernet ports.

On a new server I have tried both Zentyal 6.1 and 6.2, but in both cases I am unable to get a internet connection using the same modem setup as with Zentyal 3.5.  I've tested with a clean install selecting only the Firewall role.

When setting up the interface I receive the following warning:

Some modules reported error when saving changes . More information on the logs in /var/log/zentyal/
The following modules failed while saving their changes, their state is unknown: network

Looking through the log file (attached below) this appears to be the problem:

Error output: ethtool: bad command line argument(s)
Failed to bring up zentyal-ppp-eth0.

I've been a Ubuntu user for many years so have learnt a little, but am stuck with this one don't know how to troubleshoot any further.  I love to get it working, and can do what I can my end to help debug further.

Thanks for any assistance
Chris

_______________________________________________________________________________

Zentyal.log

2020/06/21 15:05:10 INFO> GlobalImpl.pm:616 EBox::GlobalImpl::saveAllModules - Saving config and restarting services: network firewall
2020/06/21 15:05:10 INFO> Base.pm:231 EBox::Module::Base::save - Restarting service for module: network
2020/06/21 15:05:12 ERROR> Sudo.pm:240 EBox::Sudo::_rootError - root command /usr/share/zentyal/unblock-exec /sbin/ifup --force -i /etc/network/interfaces zentyal-ppp-eth0 failed.
Error output: ethtool: bad command line argument(s)
 For more information run ethtool -h
 run-parts: /etc/network/if-up.d/ethtool exited with return code 1

Command output: Plugin rp-pppoe.so loaded.
 Failed to bring up zentyal-ppp-eth0.
.
Exit value: 1 at root command /usr/share/zentyal/unblock-exec /sbin/ifup --force -i /etc/network/interfaces zentyal-ppp-eth0 failed.
Error output: ethtool: bad command line argument(s)
 For more information run ethtool -h
 run-parts: /etc/network/if-up.d/ethtool exited with return code 1

Command output: Plugin rp-pppoe.so loaded.
 Failed to bring up zentyal-ppp-eth0.
.
Exit value: 1 at /usr/share/perl5/EBox/Sudo.pm line 240
EBox::Sudo::_rootError('/usr/bin/sudo -p sudo: /var/lib/zentyal/tmp/EfW0C0WgR2.cmd 2> /var/lib/zentyal/tmp/stderr', '/usr/share/zentyal/unblock-exec /sbin/ifup --force -i /etc/network/interfaces zentyal-ppp-eth0', 256, 'ARRAY(0x564265d6fc30)', 'ARRAY(0x564262d756d0)') called at /usr/share/perl5/EBox/Sudo.pm line 210
EBox::Sudo::_root(1, '/usr/share/zentyal/unblock-exec /sbin/ifup --force -i /etc/network/interfaces zentyal-ppp-eth0') called at /usr/share/perl5/EBox/Sudo.pm line 153
EBox::Sudo::root('/usr/share/zentyal/unblock-exec /sbin/ifup --force -i /etc/network/interfaces zentyal-ppp-eth0') called at /usr/share/perl5/EBox/Network.pm line 3735
EBox::Network::_enforceServiceState('EBox::Network=HASH(0x564264fe3a90)') called at /usr/share/perl5/EBox/Module/Service.pm line 947
EBox::Module::Service::_regenConfig('EBox::Network=HASH(0x564264fe3a90)') called at /usr/share/perl5/EBox/Module/Base.pm line 234
eval {...} at /usr/share/perl5/EBox/Module/Base.pm line 233
EBox::Module::Base::save('EBox::Network=HASH(0x564264fe3a90)') called at /usr/share/perl5/EBox/GlobalImpl.pm line 648
eval {...} at /usr/share/perl5/EBox/GlobalImpl.pm line 647
EBox::GlobalImpl::saveAllModules('EBox::GlobalImpl=HASH(0x5642616a6be8)', 'progress', 'EBox::ProgressIndicator=HASH(0x564264d581d0)') called at /usr/share/perl5/EBox/Global.pm line 95
EBox::Global::AUTOLOAD('EBox::Global=HASH(0x564260c6a710)', 'progress', 'EBox::ProgressIndicator=HASH(0x564264d581d0)') called at /usr/share/zentyal/global-action line 32
eval {...} at /usr/share/zentyal/global-action line 30
2020/06/21 15:05:12 ERROR> GlobalImpl.pm:652 EBox::GlobalImpl::saveAllModules - Failed to save changes in module network: root command /usr/share/zentyal/unblock-exec /sbin/ifup --force -i /etc/network/interfaces zentyal-ppp-eth0 failed.
Error output: ethtool: bad command line argument(s)
 For more information run ethtool -h
 run-parts: /etc/network/if-up.d/ethtool exited with return code 1

Command output: Plugin rp-pppoe.so loaded.
 Failed to bring up zentyal-ppp-eth0.
.
Exit value: 1


77
Installation and Upgrades / Re: Reinstall Zentyal with all users/groups in it?
« Last post by mrpsycho on June 19, 2020, 10:17:23 pm »
thank you, @doncamilo!

super answer!
78
Hallo,

I upgraded ejebberd manually to 20.04 now the ldap authentication does not work anymore.

old code
Code: [Select]
auth_method: ldap
ldap_servers:
  - "127.0.0.1"
ldap_port: 389
ldap_rootdn: "CN=zentyal-jabber-zentyal2,CN=Users,DC=dantschke,DC=org"
ldap_password: "-----------------------------"
ldap_base: "DC=dantschke,DC=org"
ldap_uids:
  - "jabberUid": "%u"

Startup ends with error:
2020-06-19 15:19:18.343 [critical] <0.107.0>@ejabberd_app:start:71 Failed to start ejabberd application: Invalid value of option ldap_uids: Expected map, got list instead

I'm not so familar with ldap but I thing ther should be an ldap filter in config, something like that:

Code: [Select]
auth_method: [ldap]
ldap_servers: [office.org]  # List of LDAP servers
ldap_base: "DC=office,DC=org" # Search base of LDAP directory
ldap_rootdn: "CN=Administrator,CN=Users,DC=office,DC=org" # LDAP manager
ldap_password: "*******" # Password to LDAP manager
ldap_uids: [sAMAccountName]
ldap_filter: "(memberOf=*)"

The ejabberd.yml.mas should be modified that it will working again with ejabberd 20.04.

see https://docs.ejabberd.im/admin/configuration/database-ldap/#ldap-authentication

Some help would be appreciated...

best regards Denis
79
Spanish / No puedo unirme a Zentyal en Windows Server 2003.
« Last post by DXZ on June 19, 2020, 03:07:52 pm »
Hola, soy nuevo en la comunidad.

Tengo el siguiente problema, no puedo unirme a Zentyal en Windows Server 2003. Mi DNS se resuelve en ambos lados, sin embargo, cuando entro por ctrl + le escriba smb: //10.20.10.13 recibo el siguiente mensaje "Error - Operación no admitida" Creo que este es el principal problema.

Al final del proceso recibo el siguiente mensaje:

The following modules failed while saving their changes, their state is unknown: samba

¿Alguien me puede ayudar?


¡Gracias de antemano!

¡Felicidades por la comunidad!

80
Portuguese / Não consigo ingressar no Windows Server 2003
« Last post by DXZ on June 19, 2020, 02:41:17 pm »
Olá gente, sou novo aqui e estou tentando colocar o Zentyal 4.0 ou o 6.2 como Ad adicional, porém sem sucesso. Meu DNS resolver em ambos os lados, mas quando tento abrir pelo ctrl+l e digito smb://10.20.10.13 recebo a seguinte mensagem "Erro - Operation not supported". Acredito que seja por este motivo que não consigo ingressar o Zentyal como AD secundário.

Alguém pode me ajudar?

Agradeço desde já.

Parabéns pela comunidade!!!

Abç
Pages: 1 ... 6 7 [8] 9 10