Re: [Efw-user] endian (community) has dynamic cache?
Hello Endian and Squid support dinamic caching http://wiki.squid-cache.org/ConfigExamples/DynamicContent if you need to help to implement there is a lot of information available on the internet about squid, if you need help configuring it in endian paid support is there for you, or you can pay someone for time and effort to do it (but I think you will be better suited with paid support from endian). Regards, Pedro On 01/30/2014 03:56 PM, Luciano Bonifácio wrote: > So Matt, I know the Squid, but it does only static cache sites. Needed > to make dynamic websites cache ... So probably the Endian need another > solution to work together ... What a shame, such a complete solution, > but does not cache dynamic ... > > Luciano > > > Em 30/01/2014 08:12, Matt Hayes escreveu: >> It does come with squid for proxy caching.. I've configured mine at >> home to cache websites.. no scanning of antivirus etc. >> >> -Matt >> >> >> On Wed, Jan 29, 2014 at 10:02 PM, Luciano Bonifácio >> mailto:lbo...@yahoo.com.br>> wrote: >> >> Yes. I want storage sites dynamic >> >> Enviado do Yahoo Mail no Android >> <https://br.overview.mail.yahoo.com/mobile/?.src=Android> >> >> >> >> *From: * Matt Hayes > <mailto:domin...@slackadelic.com>>; >> *To: * > <mailto:efw-user@lists.sourceforge.net>>; >> *Subject: * Re: [Efw-user] endian (community) has dynamic cache? >> *Sent: * Mon, Jan 27, 2014 3:59:09 PM >> >> Do you mean in regards to a proxy server for web browsing? >> >> -Matt >> >> >> On Mon, Jan 27, 2014 at 10:03 AM, Luciano Bonifácio >> wrote: >> >> endian (community) has dynamic cache? >> >> Thanks, >> Luciano >> >> >> -- >> CenturyLink Cloud: The Leader in Enterprise Cloud Services. >> Learn Why More Businesses Are Choosing CenturyLink Cloud For >> Critical Workloads, Development Environments & Everything In >> Between. >> Get a Quote or Start a Free Trial Today. >> >> http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk >> ___ >> Efw-user mailing list >> Efw-user@lists.sourceforge.net >> https://lists.sourceforge.net/lists/listinfo/efw-user >> >> >> >> >> -- >> WatchGuard Dimension instantly turns raw network data into actionable >> security intelligence. It gives you real-time visual feedback on key >> security issues and trends. Skip the complicated setup - simply >> import >> a virtual appliance and go from zero to informed in seconds. >> >> http://pubads.g.doubleclick.net/gampad/clk?id=123612991&iu=/4140/ostg.clktrk >> ___ >> Efw-user mailing list >> Efw-user@lists.sourceforge.net <mailto:Efw-user@lists.sourceforge.net> >> https://lists.sourceforge.net/lists/listinfo/efw-user >> >> >> >> >> -- >> WatchGuard Dimension instantly turns raw network data into actionable >> security intelligence. It gives you real-time visual feedback on key >> security issues and trends. Skip the complicated setup - simply import >> a virtual appliance and go from zero to informed in seconds. >> http://pubads.g.doubleclick.net/gampad/clk?id=123612991&iu=/4140/ostg.clktrk >> >> >> ___ >> Efw-user mailing list >> Efw-user@lists.sourceforge.net >> https://lists.sourceforge.net/lists/listinfo/efw-user > > -- > WatchGuard Dimension instantly turns raw network data into actionable > security intelligence. It gives you real-time visual feedback on key > security issues and trends. Skip the complicated setup - simply import > a virtual appliance and go from zero to informed in seconds. > http://pubads.g.doubleclick.net/gampad/clk?id=123612991&iu=/4140/ostg.clktrk > ___ > Efw-user mailing list > Efw-user@lists.sourceforge.net > https:
Re: [Efw-user] Consultation over Endian Community FW Capabilities
Hello, Endian is based on x86_64 architecture (only addressing 3.2GB of ram) nevertheless you have the option of installing another kernel the linux-xx-xx-pae. I already did it with endian if not wrong with: smart install kernel-pae (not sure if it's available on the community version though) if not available you may compile it. Just grab the config /boot/config-2.6.xx.xxx. Apply this config to a kernel source and then with make menu config activate PAE Compile ( make rpm for easy deploy) And install the rpm on the Endian machine. Endian can support a lot of concurrent sessions, the limit will be your HW. I've used both community and UMT versions of Endian with more than 3.000, 100+ servers (email, dns, http, imap, etc) the setup isn't the easiest ones and you should be familiar with networking principles, not only be comfortable with the interface. I've also used the support from Endian in the paid versions, if you are using it for the mission critical I would suggest that. The prices are affordable for the setup. If you want' to keep using the community it's fine too but sometimes even with deep knowledge it will save you a lot of time. For the numbers you present a simple setup should be enough, nevertheless i would go with enterprise hw. Regs, Pedro On 11/12/2013 08:28 PM, Jose Luis Marin Perez wrote: Dear Pedro, Thanks for your answer. Endian FW Community supports 8GB of RAM? Indeed I gave a bad data in the current Appliance (Sonicwall NSA 2400) over a period of five months the peak of concurrent connections has been 19,479 Endian FW Community supports many concurrent connections? This Firewall in principle would only be for 8 servers, however if the future will add to 50 users of my internal network, Endian FW Community can support this? Thank you very much for your help. Best Regards Jose Luis 2013/11/12 Pedro M. S. Oliveira <mailto:pmsolive...@gmail.com>> Hello Yep you may use it no problem, just don't forget to use the pae kernel to have the full 4GB support. Also filtering on layer 7 (proxy http, email filtering) with antivirus may be a bit heavy on cpu and disk usage, you should pay attention to that. IPS (snort) may be heavy with all those connections so use with care, specify the rules that are really needed if any. I doubt you can do anything with 200.000 connections and 4Mbps connection so you should revise your numbers. For a setup like that your also should have enterprise grade hw, the price is almost the same for a Basic Xeon 8GB ram 2x250 GB sata disk (RAID 1) 2-4 network cards enterprise level, don't use realtek chips, broadcom is not that nice either, go with intel e1000 or newer models If you really have the numbers you described you shouldn't have a problem in setting a low end server for it. Regards, Pedro Oliveira On 11/12/2013 05:59 PM, Jose Luis Marin Perez wrote: Dear Sirs, I have 8 servers (6 Linux and 2 Windows) where I have the following services: Mail services (Approximately 9,000 email accounts) Web hosting services (Approximately 100 Web pages) FTP Service (Approximately 100 accounts) In addition 4Mbps internet access 100Mbps Internal Network We would need approximately 200,000 concurrent connections. My question would be if the Endian FW Community could support these features. The Endian FW Community will install it on a server with the following characteristics: CPU Core I3 4GB RAM 500GB HDD Thanks for your help Regards Jose Luis -- November Webinars for C, C++, Fortran Developers Accelerate application performance with scalable programming models. Explore techniques for threading, error checking, porting, and tuning. Get the most from the latest Intel processors and coprocessors. See abstracts and register http://pubads.g.doubleclick.net/gampad/clk?id=60136231&iu=/4140/ostg.clktrk ___ Efw-user mailing list Efw-user@lists.sourceforge.net <mailto:Efw-user@lists.sourceforge.net> https://lists.sourceforge.net/lists/listinfo/efw-user -- ---------- Pedro M. S. Oliveira IT Consultant Email:pmsolive...@gmail.com <mailto:pmsolive...@gmail.com> URL:http://www.linux-geex.com Telefone: +351 96 586 7227 -- -- November Webinars for C, C++, F
Re: [Efw-user] Consultation over Endian Community FW Capabilities
Hello Yep you may use it no problem, just don't forget to use the pae kernel to have the full 4GB support. Also filtering on layer 7 (proxy http, email filtering) with antivirus may be a bit heavy on cpu and disk usage, you should pay attention to that. IPS (snort) may be heavy with all those connections so use with care, specify the rules that are really needed if any. I doubt you can do anything with 200.000 connections and 4Mbps connection so you should revise your numbers. For a setup like that your also should have enterprise grade hw, the price is almost the same for a Basic Xeon 8GB ram 2x250 GB sata disk (RAID 1) 2-4 network cards enterprise level, don't use realtek chips, broadcom is not that nice either, go with intel e1000 or newer models If you really have the numbers you described you shouldn't have a problem in setting a low end server for it. Regards, Pedro Oliveira On 11/12/2013 05:59 PM, Jose Luis Marin Perez wrote: Dear Sirs, I have 8 servers (6 Linux and 2 Windows) where I have the following services: Mail services (Approximately 9,000 email accounts) Web hosting services (Approximately 100 Web pages) FTP Service (Approximately 100 accounts) In addition 4Mbps internet access 100Mbps Internal Network We would need approximately 200,000 concurrent connections. My question would be if the Endian FW Community could support these features. The Endian FW Community will install it on a server with the following characteristics: CPU Core I3 4GB RAM 500GB HDD Thanks for your help Regards Jose Luis -- November Webinars for C, C++, Fortran Developers Accelerate application performance with scalable programming models. Explore techniques for threading, error checking, porting, and tuning. Get the most from the latest Intel processors and coprocessors. See abstracts and register http://pubads.g.doubleclick.net/gampad/clk?id=60136231&iu=/4140/ostg.clktrk ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- ---------- Pedro M. S. Oliveira IT Consultant Email: pmsolive...@gmail.com URL: http://www.linux-geex.com Telefone: +351 96 586 7227 -- -- November Webinars for C, C++, Fortran Developers Accelerate application performance with scalable programming models. Explore techniques for threading, error checking, porting, and tuning. Get the most from the latest Intel processors and coprocessors. See abstracts and register http://pubads.g.doubleclick.net/gampad/clk?id=60136231&iu=/4140/ostg.clktrk___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] New EFW Community 2.5.1 Repositories
great news, thanks a lot On Feb 23, 2013 11:01 PM, "Robert B. Nelson" wrote: > I've created some new repositories for EFW Community 2.5.1. > > There are three repositories: release, updates, and addons. Each > repository has two actual repositories, one for RPMs, the other for SRPMs. > > The release repository just contains the binary RPMs you get when you use > the Developer Environment I created to build the SRPMs from Endian. It > also contains the SRPMs used to build those binaries. This repository is > intended to allow users of the Developer Environment to install the > necessary *-devel RPM packages without having to build all the packages > from the SRPMs. Please don't use it to download the RPMs or SRPMs that are > available from the Endian update site or SourceForge. > > The updates repository is currently empty but will contain packages which > replace packages that ship as part of EFW, either to fix bugs or provide > additional features. > > The addons repository has packages that are in addition to, rather than > replacements for, standard packages. It currently contains wget, > subversion (with http support), iftop, fping, and nmap as well as their > dependencies. > > Full instructions and links to more information are available at the root > of the repository tree: http://repo.opensource-sw.net/efw. The > repositories can be browsed using repoview, the links are included in the > previous URL. > > > > -- > Everyone hates slow websites. So do we. > Make your web apps faster with AppDynamics > Download AppDynamics Lite for free today: > http://p.sf.net/sfu/appdyn_d2d_feb > ___ > Efw-user mailing list > Efw-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/efw-user > > -- Everyone hates slow websites. So do we. Make your web apps faster with AppDynamics Download AppDynamics Lite for free today: http://p.sf.net/sfu/appdyn_d2d_feb___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] Features
Hello, I've been using Endian FWs for a few years now, at the beginning just the Community versions but as I gained trust in the product I started to sell the idea to my clients and they started to buy Endians. Usually I would recommend the Endian FW to customers who didn't have the know how to set a decent firewall, apart from the firewall issue it's nice to have an integrated dashboard and that matters to the less techy clients. Even for others that have the knowledge is nice to be able to have an whole in one package. But I think Endian still lacks a bit in real enterprise solutions I'm talking in: 1 - IPV6 Support (it's on the roadmap for endian 3). 2 - BGP,IGP Support, and if its not much to ask MPLS support. 3 - Bonding support (specially with LACP). I'm not sure if there are people out there looking for this too, but if there is please let Endian know :) Cheers, Pedro -- ---------- Pedro M. S. Oliveira IT Consultant Email: pmsolive...@gmail.com URL: http://www.linux-geex.com Telefone: +351 96 586 7227 -- -- Monitor your physical, virtual and cloud infrastructure from a single web console. Get in-depth insight into apps, servers, databases, vmware, SAP, cloud infrastructure, etc. Download 30-day Free Trial. Pricing starts from $795 for 25 servers or applications! http://p.sf.net/sfu/zoho_dev2dev_nov ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] [EFW 2.5.1] Routes
Hello, I'm using the Web interface to setup routes without trouble in every version since 2.1 until 2.5. Both in community as in paid versions. I also have more than 50 endians running and almost every one has routing to other gws apart from the default setup. What rule do you wish to setup? Cheers, Pedro On Aug 24, 2012 6:02 AM, "Andres Gonzalez" wrote: > Hi, I'm trying to setup some routes and since EFW 2.2 the GUI seems to be > not working. > Up to EFW I could add route on a script located at /etc/init.d/rc.local > but on 2.5.1 seems that it doesn't exists anymore. > > Any idea if there is a workaround for this routes issue ? > > Regards.- > > > > -- > Live Security Virtual Conference > Exclusive live event will cover all the ways today's security and > threat landscape has changed and how IT managers can respond. Discussions > will include endpoint security, mobile security and the latest in malware > threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ > ___ > Efw-user mailing list > Efw-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/efw-user > > -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Fw: EFW Community Update 2.4.1
Hi guys, Did the online update on my home FW and it worked perfect! This system is running on a VM (vmware server). I'll try it a few more days before I drop it on the production systems but for now I liked it a lot (I'm running more than 50 EFWs by now) Keep up the good work. Cheers, Pedro On Wednesday 03 November 2010 16:47:24 AJ Weber wrote: > Endian [Focus On/Newsletter]: TITLEAnyone know where this update actually is > (to be downloaded), and what the update procedures would be for an existing > 2.4(.0) box? > > Thanks, > AJ > > - Original Message - > From: Endian Community > To: Aaron > Sent: Wednesday, November 03, 2010 11:57 AM > Subject: EFW Community Update 2.4.1 > > > Having trouble viewing this email? View it in your browser. > > > > > Endian Firewall Community Update 2.4.1 > > The update for Endian Firewall Community to version 2.4.1 > is now available! This release introduces the following new features: > > > a.. General > a.. Japanese is now a fully supported language > b.. SHA1 is now used instead of MD5 as default hash > algorithm wherepossible (#1796) > c.. A web console has been added > d.. The system console has been replaced by efw-shell > b.. System > a.. Kernel has been updated to LTS version 2.6.32.24 > b.. Amavisd-new has been updated to version 2.6.4 > c.. Snort has been updated to version 2.8.6.1 > d.. Template language has been switched to mako to > speed up EMI > e.. Hooks that will be triggered on shutdown have been > added to /etc/rc.d/halt (#2875) > f.. "All system logs" has been added to the log viewer > and is now set as default (#549) > g.. netstatus.cgi has been rewritten to recognize NICs > that are faster than 100Mb/s > c.. DNS Proxy > a.. Randomized mirror usage and switching from cron to > anacron to decrease the load on malwaredomains.com (#3113) > d.. SMTP Proxy > a.. Support for Japanese emails has been added to the > spam filter > b.. RBL lists have been updated (#2020) > c.. File extension list has been updated > d.. Spam subject is now optional (#2781) > e.. Support for 7z archives has been added > e.. ClamAV Antivirus > a.. ClamAV has been updated to version 0.96.3 > b.. Bytecode compiled patterns have been enabled > (#2882) > c.. Google safebrowsing signatures have been enabled > f.. Firewall > a.. BADTCP filtering can now be disabled (#3152) > b.. A logic for classifying bridged OpenVPN traffic in > a dynamic way has been added > c.. An OpenVPN interface has been added to the firewall > GUIs in case of the OpenVPN server not being bridged > g.. OpenVPN Server > a.. It is now possible to select to which zone the > server should be bridged > b.. It is now possible not to bridge the server but to > run it in a separate subnet on its tap interface > h.. IPSEC > a.. Openswan has been updated to version 2.6.29 > REMOVED FEATURES > a.. SIP Proxy > > > > Your Endian Team > > > > © Copyright 2010 Endian - All rights reserved - Various > trademarks held by their respective owners > > You're receiving this newsletter because you are in our contact > list. > > If you no longer wish to receive e-mail from Endian, unsubcribe > clicking here. > > > -- -- Pedro M. S. Oliveira IT Consultant Email: pmsolive...@gmail.com URL: http://www.linux-geex.com Cellular: +351 96 5867227 -- --
Re: [Efw-user] PCMCIA/PC Card support removed?
Hi, I'll only be able to properly answer this over the weekend. Sorry for
the delay but my IO capability is over the limit.
I wasn't thinking in building over endian sources but on kernel sources as I
also need vmware support.
So in the end the requisites ARE:
USB network
Vmware network (vmxnet)
Pcmcia
Does anyone need something else?
Cheers
Pedro
On Sep 8, 2010 3:41 PM, "eric rosel" wrote:
> Hi,
> I have a similar problem, I've run out of ethernet ports and I'm trying to
use USB-to-Ethernet adapters. These adapters I have run properly on Ubuntu,
but aren't working on EFW 2.4.
> The EFW-COMMUNITY sources are still unavailable from the download site:
http://www.endian.com/en/community/download/
>
> Can you please provide some more details on how you were able to get the
sources and compile them with additional drivers?
> Thanks,-eric
>
> --- On Wed, 9/8/10, Pedro M. S. Oliveira wrote:
>
> From: Pedro M. S. Oliveira
> Subject: Re: [Efw-user] PCMCIA/PC Card support removed?
> To: efw-user@lists.sourceforge.net
> Date: Wednesday, September 8, 2010, 5:47 AM
>
>
>
> #yiv1241236470 p, #yiv1241236470 li {white-space:pre-wrap;}
>
> It's just a sugestion but you can download the kernel source and compile
it the modules you wish...
> If you need some help just tell me.
> Cheers
> Pedro
>
>
>
>
>
--
This SF.net Dev2Dev email is sponsored by:
Show off your parallel programming skills.
Enter the Intel(R) Threading Challenge 2010.
http://p.sf.net/sfu/intel-thread-sfd___
Efw-user mailing list
Efw-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] PCMCIA/PC Card support removed?
It's just a sugestion but you can download the kernel source and compile it the modules you wish... If you need some help just tell me. Cheers Pedro On Tuesday 07 September 2010 18:09:45 jonassimpson wrote: > > Thanks for the replies, everyone. It's good to know that I'm not the only one > who is frustrated and it doesn't sound like we're being that unreasonable. I > think I'll take a look at Untangle and see how it compares. > > Thx, > > JS > > > oneforall wrote: > > > > > > > > I've been waiting for a lot longer and still no reply :( some good > > things in 2.4 but its really starting more to look like I need to go back > > to 2.3 or find something else too. > > > >> Date: Sat, 4 Sep 2010 11:49:45 -0700 > >> From: jonassimp...@yahoo.com > >> To: efw-user@lists.sourceforge.net > >> Subject: Re: [Efw-user] PCMCIA/PC Card support removed? > >> > >> > >> The better part of a week and no one has any thoughts? > >> > >> Is this list still alive or are folks just giving up on Endian and moving > >> to > >> some other product? Are there any developers or Endian staff reading this > >> list? > >> > >> JS > >> > >> > >> jonassimpson wrote: > >> > > >> > Hi, > >> > > >> > I have used Endian on older laptops for several years, from version 2.0 > >> up > >> > to the present. When I recently tried to upgrade a laptop to Endian 2.4 > >> > neither of the PCMCIA Ethernet adapters was detected. I reinstalled > >> with > >> > 2.3 and they were immediately detected fine. I went back to 2.4 and > >> tried > >> > about 7 or 8 different models of PCMCIA Ethernet cards from 3Com, > >> > Megahertz, D-Link and Linksys but none of them showed up as network > >> > interfaces. > >> > > >> > Is there something missing or removed from version 2.4 that means > >> PCMCIA > >> > cards are not supported? Is it something that could be added back > >> easily? > >> > I'll be disappointed if there is no way to use them as I will have to > >> find > >> > an alternative to Endian to run on these systems. > >> > > >> > Thanks, > >> > > >> > JS > >> > > >> > > > > -- > > This SF.net Dev2Dev email is sponsored by: > > > > Show off your parallel programming skills. > > Enter the Intel(R) Threading Challenge 2010. > > http://p.sf.net/sfu/intel-thread-sfd > > ___ > > Efw-user mailing list > > Efw-user@lists.sourceforge.net > > https://lists.sourceforge.net/lists/listinfo/efw-user > > > > > > -- -- Pedro M. S. Oliveira IT Consultant Email: pmsolive...@gmail.com URL: http://www.linux-geex.com Cellular: +351 96 5867227 -- -- This SF.net Dev2Dev email is sponsored by: Show off your parallel programming skills. Enter the Intel(R) Threading Challenge 2010. http://p.sf.net/sfu/intel-thread-sfd___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] firewall rules are hard to use
Hi, Imagine the following network schema EFW 123.12.32.1 - Red interface Router 192.168.2.253 - GW to network 10.2.3.0/24 EFW 192.168.2.254 - Green interface netmask 255.255.255.0 PC clients 192.168.2.1-50 Client machines on network 192.168.2.0/24 with only one default gw (and no specif routes) that will be endian green ip 192.168.2.254. If you want your clients to get the network 10.2.3.0/24, lets imagine you have 10.2.3.1 as web server the package will flow like this: Outgoing path: PC (192.168.3.32) -> EFW GREEN -> GW (192.168.2.243) -> WEB SERVER (10.2.3.1) Incoming path: WEB SERVER (10.2.3.1) -> GW (192.168.2.243) -> PC (192.168.2.32) as you see the returning path is different, this is due to ARP resolution on switches that found out that the destination IP is on it's local network, the problem is that the some equipment (not all), and most of the PCs firewalls wont accept this packet as they were especting the packet to arrive from the endian green interface. That said you may use source nat, this will make that all packets originating from endian have endian as source address and it will allow you to maintain the correct return path. WEB SERVER (10.2.3.1) -> GW (192.168.2.243) -> EFW GREEN -> PC About routed traficc the situation is the oposite you woun't need NAT but you want the scr and dst headers on the packet to be maintained, the incovinience is that all the routers should know the path to all networks in question to work as no forwarding is done, in reallity i like it more as there aren't portforwarding rules in every FW. On Thursday 31 December 2009 10:23:39 oneforall immortal wrote: > > Destination NAT, Source NAT, Incoming routed traffic > these to are split up and make no sence to me now. > > > > > From: jonas.kell...@telenet.be > To: efw-user@lists.sourceforge.net > Date: Wed, 30 Dec 2009 21:32:45 +0100 > Subject: Re: [Efw-user] firewall rules are hard to use > > > > > > > > > > > Thank you Pedro for your explanation. I much appreciate it !! > > > > Things become clearer... > > > > > > On Wed, 2009-12-30 at 19:25 +, Pedro M. S. Oliveira wrote: > > Hi Jonas, > When you specify target green or 192.168.1.25 this means that the packet > arriving on the uplink should have a destination ip of the green network or > 192.168.1.25 and usuually that doesn't happen because they are marked to > arrive at your red ip address (usually a public ip from your provider if you > use a classic network schema). > > lets put it this way: > > > 183.23.13.24 - ExtHost - host on internet > 213.21.23.23 - RedIP - your red ip address > 192.168.1.254 - GreenIP - your green ip address > 192.168.1.25 - HTSrv - your http server > > Now lets see the situation you described: > > "Access from : RED" does not work. I don't understand why. Do you ? > > "Target : GREEN" or "Target : 192.168.1.25" does not work. I don't > > understand why I can't use my LAN-client as target, as this is the > > client to where to portforward ?! > > ExtHost -> RedIP -> GreenIP - forwarding refused because your rule says > forward all packages with destination 192.168.1.25 but the package has > destination 213.21.23.23 (RedIP) and that's why it's not forwarded > > To accomplish this you could have something like: > Access from: Any (or anyuplink or uplink) > Target: Uplink or any uplink > IP: your internal server ip (192.168.1.25) > Type: IP > DNAT: NAT > Service: HTTP > > This way: > ExtHost -> RedIP -> GreenIP - forwarding accepted because access from and > target are matched as well the service port and packet will be forwarded to > the HTServ > > Access from is related to where the package is coming from. > Target is the package destination on ip header not your local intended > destination. > > With this new features on EFW you can have a greater control on more complex > networks where you may have different layers of firewalling and this will be > done just relying on the web interface, on version 2.2 with more complex > rules and different layers of firewalling you needed to write a bunch of > rules manually on command line. > > > > > > _ > Windows Live: Friends get your Flickr, Yelp, and Digg updates when they > e-mail you. > http://go.microsoft.com/?linkid=9691817 -- -- Pedro M. S. Oliveira IT Consultant
Re: [Efw-user] firewall rules are hard to use
Hi Jonas, When you specify target green or 192.168.1.25 this means that the packet arriving on the uplink should have a destination ip of the green network or 192.168.1.25 and usuually that doesn't happen because they are marked to arrive at your red ip address (usually a public ip from your provider if you use a classic network schema). lets put it this way: 183.23.13.24 - ExtHost - host on internet 213.21.23.23 - RedIP - your red ip address 192.168.1.254 - GreenIP - your green ip address 192.168.1.25 - HTSrv - your http server Now lets see the situation you described: > "Access from : RED" does not work. I don't understand why. Do you ? > "Target : GREEN" or "Target : 192.168.1.25" does not work. I don't > understand why I can't use my LAN-client as target, as this is the > client to where to portforward ?! ExtHost -> RedIP -> GreenIP - forwarding refused because your rule says forward all packages with destination 192.168.1.25 but the package has destination 213.21.23.23 (RedIP) and that's why it's not forwarded To accomplish this you could have something like: Access from: Any (or anyuplink or uplink) Target: Uplink or any uplink IP: your internal server ip (192.168.1.25) Type: IP DNAT: NAT Service: HTTP This way: ExtHost -> RedIP -> GreenIP - forwarding accepted because access from and target are matched as well the service port and packet will be forwarded to the HTServ Access from is related to where the package is coming from. Target is the package destination on ip header not your local intended destination. With this new features on EFW you can have a greater control on more complex networks where you may have different layers of firewalling and this will be done just relying on the web interface, on version 2.2 with more complex rules and different layers of firewalling you needed to write a bunch of rules manually on command line. On Wednesday 30 December 2009 10:27:30 jonas kellens wrote: > Pedro, > > This is the right configuration for port forwarding to a LAN-client : > > Access from : any > Target : > Port :TCP 51413 > Translate to IP 192.168.1.25 port 51413 > > > "Access from : RED" does not work. I don't understand why. Do you ? > "Target : GREEN" or "Target : 192.168.1.25" does not work. I don't > understand why I can't use my LAN-client as target, as this is the > client to where to portforward ?! > > Even with a good understanding of IPtables, I don't get this 'acces', > 'target' and 'source'. > > Can you maybe post a link to some examples cause I feel that the > documentation of Endian lacks some explanatory examples. > > > Jonas. > > > On Wed, 2009-12-30 at 10:12 +, Pedro M. S. Oliveira wrote: > > > Hi > > I disagree on you both about the new EFW firewall interface, I see it > > much more complete and feature rich than the previous one. This new > > interface has more advanced options that you may use and it reseable > > best the iptables capabilities. In my opinion this is the way to go > > and it will be the difference between an home router and a business > > system. > > im sure that with a bit of reading about firewall and the way they > > work you ll get there. > > cheers, > > pedro > > > -- -- Pedro M. S. Oliveira IT Consultant Email: pmsolive...@gmail.com URL: http://www.linux-geex.com Cellular: +351 96 5867227 -- -- This SF.Net email is sponsored by the Verizon Developer Community Take advantage of Verizon's best-in-class app development support A streamlined, 14 day to market process makes app distribution fast and easy Join now and get one step closer to millions of Verizon customers http://p.sf.net/sfu/verizon-dev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] firewall rules are hard to use
Hi I disagree on you both about the new EFW firewall interface, I see it much more complete and feature rich than the previous one. This new interface has more advanced options that you may use and it reseable best the iptables capabilities. In my opinion this is the way to go and it will be the difference between an home router and a business system. im sure that with a bit of reading about firewall and the way they work you ll get there. cheers, pedro www.linux-geex.com 2009/12/30, jonas kellens : > I share your opinion. I'm still using Endian 2.2 for this reason. > > Now I'm checking Untangle, which is quite good also. It has the "easier > configuration"-version of Endian 2.2 when it comes to firewall, port > forwarding/NAT and QoS. > > You need to adapt the interface of Untangle, but with the wiki and an > active forum/mailinglist you'll get there. > > Jonas. > > On Wed, 2009-12-30 at 03:37 +, oneforall immortal wrote: > >> HI >> I wish there was a nice bug page for users setup. Becaus the eamil >> is so hard to use and see responses etc. >> But anyway I asked a while ago and witht his email system it so darn >> hard too find out if therer was any answers. I find and have seen >> others too having trouble getting things that used to be easier to >> setup and now are way to hard or like myself just give up trying. I >> can't figure out howto have the addresses/web pages bypass the proxy >> like it was done in 2.2 mush easier, becaude I never had to ask. Also >> on my box with apche running I used to be able to on that same box put >> in the domain anme and it worked. But now it only work using >> localhost:81/ . Thats no good for testing and frustrating also to >> figure out with out success:( >> Some new features are nice but when thing that used to work much >> easier are to hard to even figure out its diapionting :( > > > -- This SF.Net email is sponsored by the Verizon Developer Community Take advantage of Verizon's best-in-class app development support A streamlined, 14 day to market process makes app distribution fast and easy Join now and get one step closer to millions of Verizon customers http://p.sf.net/sfu/verizon-dev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Problems with OpenVPN from 2.2 to 2.3
Have you cheked the VPN firewall config? Cheers, Pedro On Monday 07 December 2009 07:58:17 Rafael Fonseca wrote: > I'm getting the same thing. Any news? > -- > Rafael Fonseca > www.nunca.com.br > > > 2009/11/7 Elmar Natter > > > I've just encountered a new problem while switching from 2.2 to > > 2.3. The same config which worked perfect under 2.2 cause a > > problem under 2.3. Now only the router is pingable, and the web > > front end is available. But none IP from the network (same subnet > > on green interface) is available. So what to do different in efw > > 2.3 to get openvpn access running? > > > > Regards > > > > Elmar > > > > > > > > > > > > -- > > Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day > > trial. Simplify your report design, integration and deployment - and focus > > on > > what you do best, core application coding. Discover what's new with > > Crystal Reports now. http://p.sf.net/sfu/bobj-july > > ___ > > Efw-user mailing list > > Efw-user@lists.sourceforge.net > > https://lists.sourceforge.net/lists/listinfo/efw-user > > > -- -- Pedro M. S. Oliveira IT Consultant Email: pmsolive...@gmail.com URL: http://www.linux-geex.com Cellular: +351 96 5867227 -- -- Join us December 9, 2009 for the Red Hat Virtual Experience, a free event focused on virtualization and cloud computing. Attend in-depth sessions from your desk. Your couch. Anywhere. http://p.sf.net/sfu/redhat-sfdev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Congratulation to endian team!
I just did a fresh install and recovered from a backup I previously did. Cheers, Pedro www.linux-geex.com 2009/10/27 Rafael Fonseca > So what's the procedure to do an in-place upgrade using the update > system? Is it possible at all or do I have to pull out the CD drive > again to perform the upgrade? > > -- > Rafael Fonseca > www.nunca.com.br > > On 28/10/2009, at 5:28 AM, Pedro M. S. Oliveira wrote: > > > Well I've just installed the new endian 2.3, been using the release > > candidate for some time and didn't find much to complain hehehe, > > just the collectd and ntp setting that was previously reported. > > > > But in my thoughts 2.3rc1 was really nice, so today i'm saying thank > > you the endian team for the new release! > > Did you guys noticed the release time between version from 2.1 to > > 2.2 and from 2.2 to 2.3? > > > > Apart from the thanks is there a link for the devel rpms? I tried > > the 2.2 devel rpms but they didn't work as glibc is another version > > (or better they do work but then things like modules don't link to > > the kernel) > > Cheers, > > Pedro > > > -- > > Come build with us! The BlackBerry(R) Developer Conference in SF, CA > > is the only developer event you need to attend this year. Jumpstart > > your > > developing skills, take BlackBerry mobile applications to market and > > stay > > ahead of the curve. Join us from November 9 - 12, 2009. Register now! > > > http://p.sf.net/sfu/devconference___ > > Efw-user mailing list > > Efw-user@lists.sourceforge.net > > https://lists.sourceforge.net/lists/listinfo/efw-user > > > > -- > Come build with us! The BlackBerry(R) Developer Conference in SF, CA > is the only developer event you need to attend this year. Jumpstart your > developing skills, take BlackBerry mobile applications to market and stay > ahead of the curve. Join us from November 9 - 12, 2009. Register now! > http://p.sf.net/sfu/devconference > ___ > Efw-user mailing list > Efw-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/efw-user > -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] Congratulation to endian team!
Well I've just installed the new endian 2.3, been using the release candidate for some time and didn't find much to complain hehehe, just the collectd and ntp setting that was previously reported. But in my thoughts 2.3rc1 was really nice, so today i'm saying thank you the endian team for the new release! Did you guys noticed the release time between version from 2.1 to 2.2 and from 2.2 to 2.3? Apart from the thanks is there a link for the devel rpms? I tried the 2.2 devel rpms but they didn't work as glibc is another version (or better they do work but then things like modules don't link to the kernel) Cheers, Pedro -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Strange HTTP Proxy issue both 2.2rc2 and 2.2 28 May 09 release
Hi, did you clean you Squid cache after updating? Cheers, Pedro On Friday 05 June 2009 01:09:35 McJerry wrote: > > I've had efw 2.2rc2 running since its release and until today have had NO > problems. I have it configured with multiple uplinks on red, > green+blue+orange. Today, with 2.2rc2 running, client browsing became > extremely slow and at times would time out. I tried disabling uplinks one > at a time to rule out the possibility they were having issues. Finally I > disabled the HTTP proxy and clients started browsing as normal. There has > been NO changes to the configuration in many months. Enabling the HTTP > proxy again caused problems. > > I swapped the box and performed a fresh install of the current 2.2 release. > After manually configuring to match the other box and restarting all modems > and the efw box, I was browsing fine until I enabled the HTTP proxy. > > What could cause this strange problem? What can I do to resolve the issue? -- ---------- Pedro M. S. Oliveira IT Consultant Email: pmsolive...@gmail.com URL: http://pedro.linux-geex.com Cellular: +351 96 5867227 -- -- Crystal Reports - New Free Runtime and 30 Day Trial Check out the new simplified licensing option that enables unlimited royalty-free distribution of the report engine for externally facing server and web deployment. http://p.sf.net/sfu/businessobjects ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] How to implement BGP on Endian 2.2 R3 Community
Hi! This is just thought: If you want to load balance and you have both hosts inside your network you can use IPvs. It will be easier to maintain and configure than DNS load balance and it will be far more effective because the use of dns caching. Cheers, Pedro On Monday 06 April 2009 17:24:56 Julio Cesar wrote: > Israel, > > I use a Cisco router 2600, its possible with this router? > > Another alternative I thought, since my focus is on the sites which host > would be the use of DNS Load Balance. > > Thanks, > > Julio > > > 2009/4/6 Israel Junior > > > On Mon, Apr 6, 2009 at 11:12, Julio Cesar wrote: > > > I need to implement load balance between 2 of internet links, I think the > > > BGP protocol is the best alternative. How to implement this operation in > > > Endian 2.2 RC3 Community? > > > > Consider using a router before your Endian Firewall. If you don't have > > a real router you can use Quagga or Vyatta in a Linux box. > > > > > > -- > > ___ > > Efw-user mailing list > > Efw-user@lists.sourceforge.net > > https://lists.sourceforge.net/lists/listinfo/efw-user > > > -- -- Pedro M. S. Oliveira IT Consultant Email: pmsolive...@gmail.com URL: http://pedro.linux-geex.com Cellular: +351 96 5867227 -- -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Entering correct subnet mask stops connection?
Really nice explanation!! I'm an IT teacher myself and sometimes it's really hard to explain this to students... i think I'll use your mail... cheers Pedro On Friday 17 October 2008 18:08:21 Mike Knisely wrote: > First, I'm happy to hear you're going through the Cisco Academy. I am a > graduate of that program and have been an instructor for that curriculum at a > local state college. I think that it is an excellent foundation no matter > what your IT focus is in the future and would encourage anyone in the IT > field to get the first semester book at a minimum. An IT knowledge built on > the OSI model (or even TCP/IP model) will do wonders for your troubleshooting > skills. > > Next, 16 is not a gateway... 16 in the last octet would be the network > number. Network number and Gateway are not the same thing. A gateway is the > IP address, from the useable pool of addresses, assigned to another router in > that network. All devices that have interfaces should have the same first > three octets and the last octet should be a value between (and including) > 17-30. Each interface should also have the subnet mask 255.255.255.240. > Assuming that the 28-bit mask is correct, anything other than 255.255.255.240 > for the mask is wrong... not saying it won't work, but it's wrong. > > For a basic example, lets look at this in the good ol' 192.168.1.0 > 255.255.255.0 space, common to practically every home-class broadband router > available. When you unbox the thing, it is configured with an ip address of > 192.168.1.1 on it's LAN interface. You would then use that IP address as > your "gateway" setting on any internal device. 192.168.1.0 (the network > number) isn't typed as a setting anywhere, because it is a mathematical > result of "anding" an IP address and the mask. So, if your PC is > 192.168.1.10 on this network and your mask is 255.255.255.0 let's "and" them. > > 192.168.1.10 = 1100.10101000.0001.1010 > 255.255.255.0 = ... > anding result = 1100.10101000.0001. > > So, we convert that back to decimal and we get 192.168.1.0... Our network > number! > > Your original post says that you entered .16 as the "gateway ip" in Endian. > That tells me that you have told Endian it needs to go to a router at > 88.255.199.16 to get to the Internet. Now that we know that 16 is a network > number and not a useable IP address on this network, we see that it > definitely is not the correct setting for this field. > > Whomever is giving your a connection to the outside world, probably the same > entity that told you to use this address space, should be able to tell you > which of your pool of addresses is the correct IP to use as your gateway. > > Mike K. > > > > From: ozgurerdogan [mailto:[EMAIL PROTECTED] > Sent: Fri 10/17/2008 03:54 > To: efw-user@lists.sourceforge.net > Subject: Re: [Efw-user] Entering correct subnet mask stops connection? > > > > > Thats exatcly what I meant Mike Knisely. I am a CCNA student and I know all > what you explained. So I have 16-31 and my netmask would be 255.255.255.240 > and 16 is my gateway (network ID) and 31 is my broadcast ip and I use only > 17-30 ip inside network. > > I do not remember why I entered 31 as netmask but at the moment it is > running so. Maybe my datacenter did something in router so I can not enter > 240, I will call them today. But by entering 240, I think I am doing correct > settings right? > > Thank you very much. > -- > View this message in context: > http://www.nabble.com/Entering-correct-subnet-mask-stops-connection--tp20015603p20028158.html > Sent from the efw-user mailing list archive at Nabble.com. > > > - > This SF.Net email is sponsored by the Moblin Your Move Developer's challenge > Build the coolest Linux based applications with Moblin SDK & win great prizes > Grand prize is a trip for two to an Open Source event anywhere in the world > http://moblin-contest.org/redirect.php?banner_id=100&url=/ > ___ > Efw-user mailing list > Efw-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/efw-user > > > -- -- Pedro Oliveira IT Consultant Email: [EMAIL PROTECTED] URL: http://pedro.linux-geex.com Telefone: +351 96 5867227 -- - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to
[Efw-user] OOT, other software and my experience with endian
I did upgrade my virtual machine from rc2 to rc3 in 5 minutes and rebooting no problems whatsoever. first i thought in a clean install but, in the end i didn't wanted to have a downtime bigger than 2 minutes and as i had a backup i just wanted to upgrade my vm I tried the unrecommended method of mounting the iso on /mnt and do something like rpm -Uvh --nodeps --force *.rpm it worked quite well, just rebooted afterwards, the reboot process failed after umounting the discs (with a lib error) thats normal as i did the upgrade. on the first boot everything worked perfectly. with this i don't expect it to work for all of you guy because there are plenty of different configuration, etc. it just worked perfectly with mine. befor i also moved from vmware 1.7 to 2.0 and it works really well too, i'm in the process of compiling and creating an rpm for endian with VMWARE tools. if there is interest from endian i can maintain that package and it will be my litle contribution. about other software, well i've tried a few, but i still like endian more, it's just a matter of personal taste... i like because of the functionality, and most of all flexibility, although it's more or less closed box if you loose a bit of time understanding it i will deliver you a lot of power. btw i'm also working in a module (for now command line) for doing ip traffic accounting, more or less like qos but with accounting and bandwidth limitation (kb/mb/s), for protocol or internal ip or external ip cheers, Pedro On Friday 10 October 2008 21:36:31 yuan yudistira wrote: > I know this is out of topic > > I juts want to inform all of you, after no luck installing endian, I try > other open source software (untangle), > and it works as expected within 30 minutes or less installation process. > > Thank you all for your support > > > Love always and God Bless you! > > > YUAN > -- -- Pedro Oliveira IT Consultant Email: [EMAIL PROTECTED] URL: http://pedro.linux-geex.com Telefone: +351 96 5867227 -- - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Block Overseas IP Addresses
I don't recal if efw use tcp wrappers, if so you can add the entries in /etc/hosts.deny cheers, Pedro On Friday 22 August 2008 17:55:59 Chris Bullock wrote: > Thanks for the quick reply! > > I'm not currently using it as an SMTP proxy, and for the time being would like > to find a way to accomplish this without using endian as an SMTP proxy. Is > there possibly another way to do this? > > -Chris > > > > > - > This SF.Net email is sponsored by the Moblin Your Move Developer's challenge > Build the coolest Linux based applications with Moblin SDK & win great prizes > Grand prize is a trip for two to an Open Source event anywhere in the world > http://moblin-contest.org/redirect.php?banner_id=100&url=/ > ___ > Efw-user mailing list > Efw-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/efw-user > - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] [Endian 2.2-RC1] upgrade
Hi, I don't think so. What you can do is a full backup through the http interface, reinstall and restore your backup. Cheers, Pedro On Mon, Aug 18, 2008 at 3:27 PM, Andres Gonzalez <[EMAIL PROTECTED]> wrote: > Hi, > > I installed Endian 2.2-RC1, it's possible to upgrade to 2.2-RC2 > without having to re install ? > Thanks in advance. > > Regads, > Andres > > - > This SF.Net email is sponsored by the Moblin Your Move Developer's > challenge > Build the coolest Linux based applications with Moblin SDK & win great > prizes > Grand prize is a trip for two to an Open Source event anywhere in the world > http://moblin-contest.org/redirect.php?banner_id=100&url=/ > ___ > Efw-user mailing list > Efw-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/efw-user > - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] Traffic from orange, blue, green to orange, blue, green EFW 2.2 rc2
Hi I need some help with this: I have to subnets and each one as a interface, the green is network 192.168.250.0/24 and orange 192.168.251.0/24, i need to enable traffic between the two, the thing is i don't know how. in previous editions of endian there as a entry in the knowledge base about this but it doesn't work anymore, btw i'm using efw 2.2 rc2. i also tried to change iptables to suit my needs but without luck. what i did was: iptables -A FORWARD -i br0 -o br1 -j ACCEPT iptables -A FORWARD -i br1 -o br0 -j ACCEPT cheers Pedro - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] Globally enable trafic from orange to green an vice versa
Hi I need some help with this: I have to subnets and each one as a interface, the green is network 192.168.250.0/24 and orange 192.168.251.0/24, i need to enable traffic between the two, the thing is i don't know how. in previous editions of endian there as a entry in the knowledge base about this but it doesn't work anymore, btw i'm using efw 2.2 rc2. i also tried to change iptables to suit my needs but without luck. what i did was: iptables -A FORWARD -i br0 -o br1 -j ACCEPT iptables -A FORWARD -i br1 -o br0 -j ACCEPT cheers Pedro - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian Firewall Community 2.2 RC2 released
Keep up the good work, I'll test it as soon as possible leaving some feedback. Cheers, Pedro On Friday 25 July 2008 14:23:59 Peter Warasin wrote: > Hi Endians > > The Endian Team is glad to announce the latest release candidate > of Endian Firewall Community: RC2 contains many bug fixes since > the previous release candidate. > > Endian Firewall Community is an all-in-one Linux security > distribution > that turns every system into a full featured security appliance. > Designed with usability in mind, Endian developed a solution that is > extremely flexible, easy to install and manage. The Community > version > has been warmly embraced by the open source community and has so far > enjoyed over 29 downloads with thousands of installations > worldwide. > > This is a bugfix release, for the full change log see > http://bugs.endian.it/changelog_page.php > > Happy Testing! :) > - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Log Msn Chat
you can do it with tcpdump i'm on vacations but you can do it in a command line like tcpdump -i br0 -A -s 1024 -vvv | grep -i x-msn > file.txt On Mon, Jul 7, 2008 at 10:55 AM, Steven Sher <[EMAIL PROTECTED]> wrote: > My understanding (I am not a lawyer) is you need your users to sign an > IT policy document, this may vary for different countries, which > outlines that the company has the right to monitor all traffic on the > company network. This may be attached, or included to the users > contract of employment. > > As to actually how to log the msn traffic you need an application for > that, I don't think Endian does this out of the box, I think smoothwall > and few other firewall boxes to offer this service, they create a msn > proxy which captures all msn traffic. > > Steve > > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Stephane > Parenton > Sent: 07 July 2008 10:41 AM > To: efw-user@lists.sourceforge.net > Subject: [Efw-user] Log Msn Chat > > Hi everyone, > > A question from a user : is it possible (I don't get a position here on > "is it clean/legal or not") to log on the firewall the msn conversations > > ? if yes, how ? > > TIA > Stephane > > > - > Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! > Studies have shown that voting for your favorite open source project, > along with a healthy diet, reduces your potential for chronic lameness > and boredom. Vote Now at http://www.sourceforge.net/community/cca08 > ___ > Efw-user mailing list > Efw-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/efw-user > > - > Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! > Studies have shown that voting for your favorite open source project, > along with a healthy diet, reduces your potential for chronic lameness > and boredom. Vote Now at http://www.sourceforge.net/community/cca08 > ___ > Efw-user mailing list > Efw-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/efw-user > - Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! Studies have shown that voting for your favorite open source project, along with a healthy diet, reduces your potential for chronic lameness and boredom. Vote Now at http://www.sourceforge.net/community/cca08___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] DNS and Configuration Problems
On Monday 09 June 2008 12:26:59 Vadim B wrote: > > is this mailing list dead? No, i don't think so heheheh, it's just that the european football championship started ! cheers Pedro - Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] Endian 2.2 release date.
Hi does anyone know the roadmap for the final release of EFW 2.2? Thanks Pedro - This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse012070mrt/direct/01/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] VMWare Server installation
Hi, you should use "other 2,6 linux" when you choose the linux distribution cheers, Pedro On Monday 28 April 2008 20:31:14 Lars Oeschey wrote: > Hi, > > for testing I would like to install Endian on a VMWare Server, however > it fails, I just get a blue screen after hardware recognition. Anything > I should take care of regarding what controller etc. to use? I just took > default for now... > It's 2.2.4b btw... > > Lars > > > - > This SF.net email is sponsored by the 2008 JavaOne(SM) Conference > Don't miss this year's exciting event. There's still time to save $100. > Use priority code J8TL2D2. > http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/java >one ___ > Efw-user mailing list > Efw-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian 2.2 beta 3 Vmware instalation problem
Hi I use the EFW same version you are trying with VMWARE and it works quite well, I use a virtual scsi drive with pre-alocated space. BTW i use SLES10 SP1. try to remove the usb adapter from your virtual machine (if you don't use it) On Monday 14 April 2008 13:03:02 Ruald Andreae wrote: > hey all, > > has anyone else been unable to install the latest beta 3 of v 2.2 in > VMWARE? To even get the install process past the 1st screen I had to add > the option nousborpcmcia. The install then starts but hangs at > "Installing Grub". > > I also tried using the dma option, creating a scsi hard drive(but then > no drives are detected), using an IDE drive but allocating space and > nothing works. Am I doing something wrong? Anybody else have issues? > > I am using VMWare 1.0.4 build-56528 running on an ubuntu gutsy host > > Thanks > > - > This SF.net email is sponsored by the 2008 JavaOne(SM) Conference > Don't miss this year's exciting event. There's still time to save $100. > Use priority code J8TL2D2. > http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/java >one ___ > Efw-user mailing list > Efw-user@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
