[Efw-user] Endian firewall and Munin monitoring tool
Hi all, I've been lurking for a very long time now with an occasional try to help others with their questions. Now I have a question. I've seen that the question was asked before but without an answer as far as I could tell. Also I tried to google but had almost no hits (more about the big-endian and the little-endian ;-) ). Is it possible to install munin-node on an EFW firewall and if so is there a howto (or are there pointers)? With kind regards, Marc Fellman -- Download Intel#174; Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Allow RDP
Allan Marques - MULTIBELT schreef: Hi all, Hi Allan, I need to allow connection RDP on port 3389 on EFW I expect you need to portforward this port to another server. See firewall - portforwarding. I need a tutorial to know how to do that ? I hope this helpes. Sorry for my bad english, No problem, My spanish (is it the language in Brasilia?) is far worse ;-) Keep in touch. Thanks -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Ping forwarding
Hi Kenneth, I guess you have to do it by tweaking some scripts on the EFW machine but I'm not sure if this could really be possible. Something to remember is that you're connection to the internet also needs to be capable to just that. I'm not sure if exposed host settings and so on really let you ping the EFW machine behind the modem device Marc Kenneth Lundström schreef: But how do I forward the ICMP packages to the webserver? Kenneth Hi Kenneth, Why would you want to ping the webserver? If you do portforwarding of the webservice to the webserver (expose the webserver on port 80 to the internet) you can easelly check if the host is alive by just requesting a (simple) page. You also might try to do portforwarding of the ICMP packages If you have more then one public IP-address you should probably give the webserver a public IP-number in the DMZ. HTH Marc Kenneth Lundström schreef: Hello, is there a way to forward a ping to server behind a endian firewall. I would like to ping a webserver from outside. Kenneth Lundström -- Come build with us! The BlackBerryreg; Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9#45;12, 2009. Register now#33; http://p.sf.net/sfu/devconf ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Come build with us! The BlackBerryreg; Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9#45;12, 2009. Register now#33; http://p.sf.net/sfu/devconf ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Come build with us! The BlackBerryreg; Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9#45;12, 2009. Register now#33; http://p.sf.net/sfu/devconf ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Come build with us! The BlackBerryreg; Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9#45;12, 2009. Register now#33; http://p.sf.net/sfu/devconf___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Ping forwarding
Hi Kenneth, Why would you want to ping the webserver? If you do portforwarding of the webservice to the webserver (expose the webserver on port 80 to the internet) you can easelly check if the host is alive by just requesting a (simple) page. You also might try to do portforwarding of the ICMP packages If you have more then one public IP-address you should probably give the webserver a public IP-number in the DMZ. HTH Marc Kenneth Lundström schreef: Hello, is there a way to forward a ping to server behind a endian firewall. I would like to ping a webserver from outside. Kenneth Lundström -- Come build with us! The BlackBerryreg; Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9#45;12, 2009. Register now#33; http://p.sf.net/sfu/devconf ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Come build with us! The BlackBerryreg; Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9#45;12, 2009. Register now#33; http://p.sf.net/sfu/devconf ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian use %97 of ram
Hi. This is very normal for Linux. Much will be cache. Although you might also have not enough RAM but that's not clear from you're question. How much ram does the server have? Met vriendelijke groet / With kind regards Marc Fellman Send with my iPhone. Verstuurd met mijn iPhone. Op 6 mei 2009 om 08:34 heeft Tunç YURDAKUL tyurda...@gmx.net het volgende geschreven:\ Hello, I have Endian 2.2rc3 Nowadays my Endian uses %97 ram of total memory. Why system very busy? Which service do this? Where can i check and watch it? Thanks __ Information from ESET NOD32 Antivirus, version of virus signature database 4054 (20090505) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com --- --- --- - The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] I am lost with new install, help please
why do you need to switch after going through the webgui thing? This makes no sence! Marc turbo wrote: I reinstalled and it is as you mentioned below the second option. cable modem efw (24.72.112.29red/192.168.100.50green) switch During the initial setup ( blue screen) i am asked for the green IP whci I supplied with 192.168.100.50. After the reboot and connecting to the webgui I set the following: 1/7 : for red ethernet dhcp 2/7: None for orange, blue 3/7: green IP 192.168.100.50 subnet 255.255.255.0 eth1 4/7: red: etho hostname: xdomain: .zz DNS: automatic 5/7: DNS: automatic 6/7: Save After this I have to switch the cable so it is: from the switch to the eth1 nic and eth0 to the cable modem. To be sure, I made a reboot and got no dhcp connection to the ISP. I tried from the terminal with 'dhclient eth0' and after a while it timed out with no response. Damn!! The nic was still active, I checked it a few times!! I searched for /var/efw/red/resolv.conf and this file was not created as there was nothing to create with as it was no connection. here a terminal screen of dhclient: --- [EMAIL PROTECTED]:~ # dhclient eth0 Internet Systems Consortium DHCP Client V3.0.1 Copyright 2004 Internet Systems Consortium. All rights reserved. For info, please visit http://www.isc.org/products/DHCP Listening on LPF/eth0/00:06:5b:82:fc:f7 Sending on LPF/eth0/00:06:5b:82:fc:f7 Sending on Socket/fallback DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 4 DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 9 DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 14 DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 18 DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 13 DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 3 No DHCPOFFERS received. No working leases in persistent database - sleeping. --- Just for the sake of testing I released and renewd the IP of the ISP with the dlink and it's just working. Where am I making the wrong move ?? I really can't see it. It's late here now and I will work on that further tomorrow. Thank you for your persistence. Hope to here from you tomorrow. Johannes So, where is the efw in that chain? Should be: cable modem d-link (24.72.112.29 wan/192.168.0.1 lan) efw (192.168.0.x red/ 192.168.1.1 lan) switch or cable modem efw (24.72.112.29 wan/192.168.0.1 lan) switch Fill in the private ips above with what you actually use. Note the two different private ip addy ranges are needed in the first setup. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of turbo Sent: Wednesday, October 03, 2007 7:46 PM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] I am lost with new install, help please okay, here is the setup: cable modem d-link (no dhcp server for my LAN) switch The dlink gets the ISP settings per dchp client (the dlink router itself= dchp release, dchp renew button) And those settings are the ones I noted. snipped a lot - This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now http://get.splunk.com/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] how to configure EFW using SSH
Dy-J schreef: hi pls help I can't access my EFW web gui, it doesn't authenticate. is there a way that i can configure it using ssh or text based mode pls help thanks How do you mean? Don't you get a logon or is it complaining about a certificate. If you had another firewall on the same IP before with a SSL certificate you probably have to clear this certificate from the browser. If you don't get anything at all you probably have to check the firewall settings of you're client. If the password is incorrect you could ssh to the EFW and use passwd to (re)set the password of the admin user. Marc - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] reject spams
Hi, I believe this is covered in the FAQ on the website. It's a technical/protocol thing. Marc - Bericht van [EMAIL PROTECTED] - Datum: Tue, 16 Jan 2007 11:10:26 +0200 Van: Ali Ozaltin [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: [Efw-user] reject spams Aan: efw-user@lists.sourceforge.net Hello, I am using POP3 proxy i dont use SMTP. When I receive my mail p3scan scanning incoming mail and sending mails to users mailbox. When p3scan detect a spam mail its sending to user in a attached file. But i want remove this spam mails on p3scan is this possible ? Thanks, - Einde bericht van [EMAIL PROTECTED] - - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] reject spams
Ali Ozaltin schreef: Yes, I know but maybe we can configure manually for removing spams ? No, It is just not possible (or you have to rewrite the pop3 protocol to a pop3.1 protocol and have the rest of the world to adopt it. Marc *From:* [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] *On Behalf Of *Marc Fellman *Sent:* Tuesday, January 16, 2007 11:17 AM *To:* efw-user@lists.sourceforge.net *Subject:* Re: [Efw-user] reject spams Hi, I believe this is covered in the FAQ on the website. It's a technical/protocol thing. Marc - Bericht van [EMAIL PROTECTED] - Datum: Tue, 16 Jan 2007 11:10:26 +0200 Van: Ali Ozaltin [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: [Efw-user] reject spams Aan: efw-user@lists.sourceforge.net Hello, I am using POP3 proxy i dont use SMTP. When I receive my mail p3scan scanning incoming mail and sending mails to users mailbox. When p3scan detect a spam mail its sending to user in a attached file. But i want remove this spam mails on p3scan is this possible ? Thanks, - Einde bericht van [EMAIL PROTECTED] - - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Network Traffic Graphs (follow-up)
OK,It happened again :-/Because it is started by the cron I checked my log (because I restarted my firewall) and saw that the real problem seems to be the crash of cron (So no real solution in writing a script that is started by _cron_ to check if makgraphs is being run).Maybe an error with the cron binary?Marc - Bericht van [EMAIL PROTECTED] - Datum: Tue, 12 Sep 2006 22:41:18 -0400 Van: Jonathan H. Pierce [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: Re: [Efw-user] Network Traffic Graphs Aan: efw-user@lists.sourceforge.net Not much help, but thought I'd chime in again since I originated the post... As Marc said, a reboot and then waiting 5 minutes helped me, all was back to normal after a reboot, and has remained working since then as well... I had the same thing as you, SMTP graphs would be fine, but nothing else was updating.. Assuming it happens to me again, I'm going to follow marc's suggestion from a previous response... I found out that /usr/local/bin/makegraph is being used to create the network (and system and probably proxy) grpahs. it is started every 5 minutes and probably locked the stuff. Maybe you could look if this process is still running or try to start it manualy. ... Have you tried looking at that file yet and seeing if it's running? Thanks, ~Jon From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Michael C. Colligan Sent: Sunday, September 10, 2006 11:19 PM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Network Traffic Graphs Has anybody solved this logging/graph issue? I still have the problem and a reboot didn't help me. This is consistent across multiple firewalls. To reiterate, I am talking about the graphs via the Status tab. The only one showing current information is the SMTP Mail Statistics. Thanks. -Mike From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Marc Fellman Sent: Sunday, September 03, 2006 4:54 PM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Network Traffic Graphs OK, I just rebooted my EFW2 server. And after a few minutes the graphs where updated again but had a serious gap in them. Not that the system wouldn't do what it is supposed to do but one wonders Marc - Bericht van [EMAIL PROTECTED] - Datum: Sun, 3 Sep 2006 22:28:11 +0200 Van: Marc Fellman [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: Re: [Efw-user] Network Traffic Graphs Aan: efw-user@lists.sourceforge.net It seems that I'm having the same issue since 3:00 this morning. I even tried IE (which I rarely use) so a cache issue is out of the question right now. I'm not sure if the 2 snort processes running in top say something The system graphs and the prixy graphs suffer from the same issue but not the SMTP graphs. Maybe someone with a more thourough knowledge of the logging tools could see a connection. It is almost like the graphic generating tool (maybe in the cron) is hanging?? HTH Marc - Bericht van [EMAIL PROTECTED] - Datum: Sat, 02 Sep 2006 00:36:47 -0400 Van: Adam Pavelec [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: Re: [Efw-user] Network Traffic Graphs Aan: efw-user@lists.sourceforge.net Or a CTRL+F5 ;) Marc Fellman said the following on 09/01/2006 06:14 PM: Hi Jonathan, I noticed this as well under some circumstances. With me a refresh worked (F5). Maybe a clear cache could work as well. Marc - Bericht van [EMAIL PROTECTED] - Datum: Fri, 1 Sep 2006 17:01:39 -0400 Van: Jonathan H. Pierce [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: [Efw-user] Network Traffic Graphs Aan: efw-user@lists.sourceforge.net Hey all, My network traffic graphs seem to have stopped updating... I gave it a couple of days to update but so far it hasn't, it still shows, The statistics were last updated at: Tue Aug 22 07:00:10 2006 on the last graph. Which was a little over a week ago... Is there a setting somewhere that I may be missing, or is there something I can do to give it kick in the pants? Thanks, Jon - Einde bericht van [EMAIL PROTECTED] - - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Efw-user mailing list Efw
Re: [Efw-user] Network Traffic Graphs (follow-up)
- Bericht van [EMAIL PROTECTED] - Datum: Tue, 17 Oct 2006 15:13:53 +0200 Van: Peter Warasin [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: Re: [Efw-user] Network Traffic Graphs (follow-up) Aan: efw-user@lists.sourceforge.net hi Marc Fellman wrote: It happened again :-/ uhm. well, we now have multiple notes about this problem from different people. it seems that really something goes wrong :( Because it is started by the cron I checked my log (because I restarted my firewall) and saw that the real problem seems to be the crash of cron (So no real solution in writing a script that is oh, that's not good. i try to upgrade. are you sure that it crashes? i mean did you find the machine without a running cron daemon? because init should respawn cron if it is not running.I wil check the next time (I rebooted oops). From the moment the graphs stopped there wheren't any mentionings of fcron in the /var/log/messages. This was what pointed me in this direction. however, thank you very much for your pointers! peter -- :: e n d i a n :: open source - open minds :: peter warasin :: http://www.endian.it :: [EMAIL PROTECTED] - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - Einde bericht van [EMAIL PROTECTED] - - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Network Traffic Graphs (follow-up)
Peter Warasin schreef: hi Marc Fellman wrote: because init should respawn cron if it is not running. I wil check the next time (I rebooted oops). From the moment the graphs stopped there wheren't any mentionings of fcron in the /var/log/messages. This was what pointed me in this direction. yes please :) oops, i rechecked and found that cron will *not* be respawned by our init. if it crashes then it will not be restarted automatically. i add this to the inittab, since it really makes sense and regarding the inittab of other distros i don't understand how i could forget about that. again, thank you for pointing me in the right direction. peter Hi Peter, Could you send me (and the list) the mod I have to make to inittab? tia Marc - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Network Traffic Graphs (follow-up)
Peter Warasin schreef: Marc Fellman wrote: Could you send me (and the list) the mod I have to make to inittab? uhm.. i googled a little bit.. and found out that this is old-style fashion and that it is safer to not start cron through the inittab. one stated this tries to fix the symptoms and not the problem itself, sounds reasonable to me.. i upgrade to a newer version. hope that fixes the problem. btw, adding this somewhere to inittab: lala:2345:respawn:/usr/sbin/fcron I'll try this solution. If it breaks I will let everyone know (after installing efw2 for the second time ;-) ). I'm not sure if anything else could get broken if the cron isn't running. Marc should do the work, but it's not recommended peter - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] mailgraph.pl and colours
Hi all,I was just wondering. I'm using EFW2 and I like it very much. But in the SMTP mail graphs I was wondering how I could change the order of the colours in the graphics. Because the spam colour is solid grey it covers all other colours. How could I change the order (layers) of the different colours or make the spam colour (GREY) not solid?If anyone has any pointers Thanks in advance,Marc- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] So long to Start
I'm experiencing the same although it doesn't take 20 minutes. What kind of hardware are you using? Patricio A. Bruna schreef: Endian takes a long time to boot, when i get Starting Endian FW Rules it takes forever, well 20 min, to finnish booting. The only thing i change was a route added to rc.local. is this normal, or i have doing something bad Patricio Bruna V. Red Hat Certified Engineer IT Linux Ltda. http://www.it-linux.cl Fono : (+56-2) 333 0051 Cel : (+56-09) 8288 5195 - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Network Traffic Graphs
Marc Fellman schreef: OK, I just rebooted my EFW2 server. And after a few minutes the graphs where updated again but had a serious gap in them. Not that the system wouldn't do what it is supposed to do but one wonders I found out that /usr/local/bin/makegraph is being used to create the network (and system and probably proxy) grpahs. it is started every 5 minutes and probably locked the stuff. Maybe you could look if this process is still running or try to start it manualy. just a thought. Marc - Bericht van [EMAIL PROTECTED] - Datum: Sun, 3 Sep 2006 22:28:11 +0200 Van: Marc Fellman [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: Re: [Efw-user] Network Traffic Graphs Aan: efw-user@lists.sourceforge.net It seems that I'm having the same issue since 3:00 this morning. I even tried IE (which I rarely use) so a cache issue is out of the question right now. I'm not sure if the 2 snort processes running in top say something The system graphs and the prixy graphs suffer from the same issue but not the SMTP graphs. Maybe someone with a more thourough knowledge of the logging tools could see a connection. It is almost like the graphic generating tool (maybe in the cron) is hanging?? HTH Marc - Bericht van [EMAIL PROTECTED] - Datum: Sat, 02 Sep 2006 00:36:47 -0400 Van: Adam Pavelec [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: Re: [Efw-user] Network Traffic Graphs Aan: efw-user@lists.sourceforge.net Or a CTRL+F5 ;) Marc Fellman said the following on 09/01/2006 06:14 PM: Hi Jonathan, I noticed this as well under some circumstances. With me a refresh worked (F5). Maybe a clear cache could work as well. Marc - Bericht van [EMAIL PROTECTED] - Datum: Fri, 1 Sep 2006 17:01:39 -0400 Van: Jonathan H. Pierce [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: [Efw-user] Network Traffic Graphs Aan: efw-user@lists.sourceforge.net Hey all, My network traffic graphs seem to have stopped updating... I gave it a couple of days to update but so far it hasn't, it still shows, The statistics were last updated at: Tue Aug 22 07:00:10 2006 on the last graph. Which was a little over a week ago... Is there a setting somewhere that I may be missing, or is there something I can do to give it kick in the pants? Thanks, Jon - Einde bericht van [EMAIL PROTECTED] - - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - Einde bericht van [EMAIL PROTECTED] - - Einde bericht van [EMAIL PROTECTED] - - Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642 ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - Using Tomcat but need to do more? Need to support web services, security
Re: [Efw-user] EFW related -maybe routing problem
Hi Joseph, I think you need some editing of the text (missing any layout). It's now unreadeble (no line-break's} and it's hard to say but no zone information as well? What are the interfaces (and to which zone do they belong)? Somewhere there should be a diagram of what is allowed from which zone to any other zone (I found this somewhere IPcop related but my guess is this is also true for EFW). Maybe this could help you. HTH. Marc - Bericht van [EMAIL PROTECTED] - Datum: Thu, 10 Aug 2006 23:27:01 -0700 (PDT) Van: Josephw [EMAIL PROTECTED]Antwoorden aan:efw-user@lists.sourceforge.netOnderwerp: [Efw-user] EFW related -maybe routing problem Aan: efw-user@lists.sourceforge.net Hi All: it's my network diagram . I use EFW with proxy disable and trun off Outgoing Firewall which means allowing all of traffic from Green to RED. PCs in subnet 192.168.90.0/24 can access the internet smoothly. But PCs in subnet 192.168.180.0/24 CAN NOT access the internet. EFW's routing table: Destination Gateway Genmask Flags Metric Ref Use Iface 210.243.168.x 0.0.0.0 255.255.255.240 U 0 0 0 eth1 192.168.90.0 0.0.0.0 255.255.255.0 U 0 0 0 br0 192.168.180.0 192.168.90.254 255.255.0.0 UG 0 0 0 br0 0.0.0.0 210.243.168.x 0.0.0.0 UG 0 00 eth1 ip_forwarding enable in EFW 1. I tried to traceroute an internet IP 210.17.1.x from PC in subnet 192.168.180.0/24. The Path is below: 192.168.180.254 192.168.90.3 * 2. I can also ping 192.168.180.x from EFW Could anyone tell me how to deal with this ? Thanks -- View this message in context: http://www.nabble.com/EFW-related--maybe-routing-problem-tf2088942.html#a5757424 Sent from the efw-user forum at Nabble.com.- Einde bericht van [EMAIL PROTECTED] -- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnkkid=120709bid=263057dat=121642___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] training spamassasin with EFW2
Hi all, I was just looking into training spamassasin in EFW2. In the FAQ there is a mention in the FAQ of sending the mail as an attachment to [EMAIL PROTECTED] or if it shouldn't be regarded as spam [EMAIL PROTECTED] I tried this but with no luck yet. This is what I tried: Just sending it from a E-mail client (settings of SMTP and so on as it is). It returned undeliverable. Sending it from Thunderbird and made EFW2 the SMTP server. Same result. Should I add spam.spam and ham.ham top my local domains? Hope to get some hints. With Kind Regards, Marc Fellman - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] SMTP statistics graphs not updated
Hi all,It seems that the SMTP mail statistics graphs (on EFW2) are not updated. Am I missing a setting to get a good refresh of those graphs?Marc- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] default gateway outside ip/netmask range
- Bericht van [EMAIL PROTECTED] - Datum: Sat, 05 Aug 2006 17:42:39 +0200 Van: heupink [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: Re: [Efw-user] default gateway outside ip/netmask range Aan: efw-user@lists.sourceforge.net Dear Marc and list, Thanks very much for your feedback. Your solution seems like a complicated procedure to get something simple up and running. I've also tested the community astaro (www.astaro.com) and it simply accepts my (our) ip/netmask/gateway without a problem and therefore simply works.IPcop and MNF simply work as well. It looks like the problem is the newer Kernel (2.6) that just can't cope with this alternate routing.I'm glad I persisted with EFW2 because of the extra's possible in for example the SMTP proxy. it seems a lot of my spam gets blocked now (40-50 mails a day). The last task is to get OpenVPN working over a Proxy that onlys allows port 80 and port 443 and keep port 443 available for HTTPS. (I just have to relay the HTTPS connection requests from my employer to the OpenVPN port, I guess ;-) ).Keep up the good work EFW team! Regards, and have a nice weekend! Mourik Jan Marc Fellman wrote: - Bericht van [EMAIL PROTECTED] - Datum: Fri, 04 Aug 2006 22:26:54 +0200 Van: heupink [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: [Efw-user] default gateway outside ip/netmask range Aan: efw-user@lists.sourceforge.net hi all. I've asked this before in the forums, but received no replies, therefore asking again here: I need to specify a default gateway (192.x.x.x) that is OUTSIDE the range of my public ip address/netmask (80.x.x.x/255.255.255.0) for my RED interface. I've found a solution if you use DHCP to get this information. (I've got a SpeedTouch 510(i) in ddhcp_spoof mode). I've added one line in the following file: /etc/dhclient/dhclient-enter-hooks.d/enter-hook-write-info-file The line is on the end: /usr/sbin/repairroute $interface $routers Then I wrote the following script: #!/bin/sh interface=$1 routers=$2 #give dhclient some time to setup the interface sleep 10 ping -c 1 [EXTERNAL-PINGABLE-IP] /dev/null 2 /dev/null ROUTEFAILURE=$? logger repairroute $1 $2 ($ROUTEFAILURE) if [ ${ROUTEFAILURE} != 0 ];then if [ ${routers} != ];then route add -host ${routers} ${interface} route add default gateway ${routers} ${interface} logger Repaired defective route fi fi Just fill in a trustworthy (one that allwyas works if the link is configured correctly) IP number in place of [EXTERNAL-PINGABLE-IP]. It has worked for 24 hours now (I know that's not long but it looks OK for me) without hickup's. Endian checks the values entered in the web interface, and it doesn't let me. Is there a config file where I can enter these details manually? If you've got a static IP you have to check which programs are run (and add the route add lines at the end of the script that is run). I've not looked into this yet. Regards, mourik jan - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - Einde bericht van [EMAIL PROTECTED] - - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - Einde bericht van [EMAIL PROTECTED
Re: [Efw-user] SMTP statistics graphs not updated
- Bericht van [EMAIL PROTECTED] - Datum: Sat, 5 Aug 2006 10:09:30 +0200 Van: Marc Fellman [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: [Efw-user] SMTP statistics graphs not updated Aan: efw-user@lists.sourceforge.net Hi all, It seems that the SMTP mail statistics graphs (on EFW2) are not updated. Am I missing a setting to get a good refresh of those graphs?It seems more caching related. Maybe this is something that needs to be addressed in the generated HTML for the webinterface? Marc - Einde bericht van [EMAIL PROTECTED] - - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] default gateway outside ip/netmask range
- Bericht van [EMAIL PROTECTED] - Datum: Fri, 04 Aug 2006 22:26:54 +0200 Van: heupink [EMAIL PROTECTED] Antwoorden aan:efw-user@lists.sourceforge.net Onderwerp: [Efw-user] default gateway outside ip/netmask range Aan: efw-user@lists.sourceforge.net hi all. I've asked this before in the forums, but received no replies, therefore asking again here: I need to specify a default gateway (192.x.x.x) that is OUTSIDE the range of my public ip address/netmask (80.x.x.x/255.255.255.0) for my RED interface.I've found a solution if you use DHCP to get this information. (I've got a SpeedTouch 510(i) in ddhcp_spoof mode).I've added one line in the following file:/etc/dhclient/dhclient-enter-hooks.d/enter-hook-write-info-fileThe line is on the end:/usr/sbin/repairroute $interface $routers Then I wrote the following script:#!/bin/shinterface=$1routers=$2#give dhclient some time to setup the interfacesleep 10ping -c 1 [EXTERNAL-PINGABLE-IP] /dev/null 2 /dev/nullROUTEFAILURE=$?logger repairroute $1 $2 ($ROUTEFAILURE)if [ ${ROUTEFAILURE} != 0 ];then if [ ${routers} != ];then route add -host ${routers} ${interface} route add default gateway ${routers} ${interface} logger Repaired defective route fifiJust fill in a trustworthy (one that allwyas works if the link is configured correctly) IP number in place of [EXTERNAL-PINGABLE-IP].It has worked for 24 hours now (I know that's not long but it looks OK for me) without hickup's. Endian checks the values entered in the web interface, and it doesn't let me. Is there a config file where I can enter these details manually?If you've got a static IP you have to check which programs are run (and add the route add lines at the end of the script that is run). I've not looked into this yet. Regards, mourik jan - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - Einde bericht van [EMAIL PROTECTED] - - Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] DHCP problem on RED interface
Hi all, I tried a lot and haven't found a real solution yet. The problem i'm experiencing is as follows: I have a SpeedTouch (510i) DSL modem which I have set up in DHCP spoof mode. This means that the network card from the firewaal connected to the modem is getting the external IP-number (via DHCP). This in itself is no problem but the gateway address that is used is on a different subnet then the IP-number of the externel interface. With older distributions (MNF and so on) I never had a problem. The DHCP client added a host on the external interface and a default route to this host. The more modern Distributions and EFW2 seem to be unable to coop with this. I can add the route information manualy and it works fine but why can't this be done automagically? I tried to fill in a static IP number with the gateway in the webinterface but it was also complaining thet the gateway was on a different subnet. Is anyone else using EFW2 with a simular setup? How did youo solve this? Or are newer Linux kernels (and DHCP clients) unable to do this? I hope someone has a sulution since I'm willing to switch to EFW2 (from MNF) because of the looks and feels and the options (OpenVPN). I'm just missing a blacklist for the firewall. With Kind Regards, Marc Fellman- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT business topics through brief surveys -- and earn cash http://www.techsay.com/default.php?page=join.phpp=sourceforgeCID=DEVDEV___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user