Re: [Efw-user] Captive Portal on Endian Community?
Don't get me wrong. I've been a supporter since 2.1.2 and I know there are users here that go way back. I did my part in reporting bugs, submitting little code changes and the likes, but trying to actually BUY the product left me baffled at the company's lack of communication. That, coupled with some pretty big long-standing bugs (in my opinion) made me look somewhere else. Endian is great at leveraging old hardware for a good all-round solution, but if you need to step up, look elsewhere. -- Rafael Fonseca On 5 May 2010 09:01, Steven Sher stev...@techtron.co.za wrote: I have also been looking at Utangle as a replacement for Endian, due to lack of communication from the Endian team and the extremely slow release/development cycle. Also despite the advertisement of a community/open source project Endian seem to be moving further and further away from these principles. With all that said, I still love the product and keeping hoping things will change. The optimist! *From:* Rafael Fonseca [mailto:rafael.m...@gmail.com] *Sent:* 04 May 2010 10:29 PM *To:* efw-user@lists.sourceforge.net *Subject:* Re: [Efw-user] Captive Portal on Endian Community? Based on Endian's lack of response to sales enquiries, I'd recommend trying Untangle instead. I have switched one of my clients from Endian to Untangle to use their free Captive Portal and it's been very good. The daily/weekly/monthly reports are very comprehensive and the overall polish of the product makes Endian look a bit too simple. It does require a bit more hardware grunt to run than Endian, but you do get way nicer filters such as Protocol Control (for completely blocking P2P without actually blocking outbound legitimate traffic or closing ports), a free Captive Portal implementation and more flexible licensing. For example, to integrate with LDAP or Active Directory, you can buy the Directory Connector (a plugin) which is licensed on a number of users/year type of license, and it integrates the whole system to it: VPN logins, Captive Portal. It even does reporting by username. Since setup, I haven't had any issues with it. I'm considering switching other clients to it as well. If you're after Captive Portal, have a look at it. PS: The interface is a completely different concept, so it takes a little bit of time getting used to. Regards, -- Rafael Fonseca On 5 May 2010 02:43, Matthew W. Ross mr...@ephrataschools.org wrote: According to this page, comparing the various editions of Endian... http://www.endian.com/en/community/feature-comparison/ The answer to your question is no. The Captive Portal feature is listed under the HotSpot area. Which is really too bad, as I would love to use a captive portal/cookie system to authenticate users, instead of using an authenticating proxy. The proxy authentication method works, but in an environment where we don't want to have to configure every user who uses our network to authenticate, this method seems very viable. But, that's why there is a free/open version, and a payed for version. Can somebody on this list describe how Endian's captive portal work? Can it authenticate users for the content filter? Does it authenticate against an Active Directory? Any known pitfalls with a captive portal system? --Matt Ross Ephrata School District - Original Message - From: Alberto Ferrer [mailto:alber...@barrahome.org] To: efw-user@lists.sourceforge.net Sent: Tue, 04 May 2010 04:49:04 -0700 Subject: [Efw-user] Captive Portal on Endian Community? There is Captive Portal on Endian Community? -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Captive Portal on Endian Community?
Bear in mind, though, that it required me to upgrade the hardware Endian was running on to use all of the features. On the same hardware it was struggling a bit. -- Rafael Fonseca On 5 May 2010 11:05, Alberto Ferrer alber...@barrahome.org wrote: Untable looks better than Endian on many ways, that console... Jesus is amazing.- -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Roadmap 2.3.1
I too would like an ETA, Endian devs. Any news? -- Rafael Fonseca www.nunca.com.br On 17 March 2010 22:18, Fabian Abplanalp fabian.abplan...@bug.ch wrote: Hi Is there a planned release date for 2.3.1? Or when it's finish? For us especially the RBL Bug is very annoying... Thanks, Fabian -- Download Intel#174; Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Download Intel#174; Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian and Asterisk
I would expect so, but I'm not sure on that. Test and see how it goes. -- Rafael Fonseca www.nunca.com.br On 11/02/2010, at 1:04 AM, Wolf Paul wrote: Shouldn't need rules if the phones are registered with asterisk -- that ring is coming in on the existing connection of the registration, isn't it? -- Wolf N. Paul - Doulos Communications Net: w...@doulos.at - www.doulos.at FON: +43-1-336- - +44-1708-878221 GSM: +43-699-1715-0995 - FAX: +43-1-817-4955-1928 -- I have not lost my mind -- it's backed up on disk somewhere. --Unknown On Tue, Feb 9, 2010 at 6:54 PM, Rafael Fonseca rafael.m...@gmail.com wrote: Any traffic that crosses between zones needs rules. From memory, traffic from green is always allowed to blue/orange. The way back, however, will need to be allowed for incoming packets from the Asterisk server to ring the phones (not 100% sure on this one, though). -- Rafael Fonseca www.nunca.com.br On 9/02/2010, at 10:17 PM, Vassilis V. wrote: Thank you for the fast answer Rafael! If its in the orange zone do softphones and IP Phones over VPN in the green zone work directly or do I need to make rules in the inter-zone firewall to allow certain ports from orange to green? Thank you! Rafael Fonseca wrote on 08.02.2010 22:57: Green if it's supposed to be an internal PBX server. Orange if it's supposed to be a public one. -- Rafael Fonseca www.nunca.com.br http://www.nunca.com.br On 9 February 2010 10:43, Vassilis V. bigracc...@gmx.net mailto:bigracc...@gmx.net wrote: Hello all, I successfully managed to get an Asterisk running behind my Endian firewall. All installation/configuration was done while in the green zone so I have as little network configuration needed as possible while setting it up. Now thats its all working, my question is, what zone is the ideal one for an asterisk server? Where do you guys/gals have yours and why? Thank you for your time! -- The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net mailto:Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- SOLARIS 10 is the OS for Data Centers - provides features such as DTrace, Predictive Self Healing and Award Winning ZFS. Get Solaris 10 NOW http://p.sf.net/sfu/solaris-dev2dev___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- SOLARIS 10 is the OS for Data Centers - provides
Re: [Efw-user] Endian and Asterisk
Any traffic that crosses between zones needs rules. From memory, traffic from green is always allowed to blue/orange. The way back, however, will need to be allowed for incoming packets from the Asterisk server to ring the phones (not 100% sure on this one, though). -- Rafael Fonseca www.nunca.com.br On 9/02/2010, at 10:17 PM, Vassilis V. wrote: Thank you for the fast answer Rafael! If its in the orange zone do softphones and IP Phones over VPN in the green zone work directly or do I need to make rules in the inter-zone firewall to allow certain ports from orange to green? Thank you! Rafael Fonseca wrote on 08.02.2010 22:57: Green if it's supposed to be an internal PBX server. Orange if it's supposed to be a public one. -- Rafael Fonseca www.nunca.com.br http://www.nunca.com.br On 9 February 2010 10:43, Vassilis V. bigracc...@gmx.net mailto:bigracc...@gmx.net wrote: Hello all, I successfully managed to get an Asterisk running behind my Endian firewall. All installation/configuration was done while in the green zone so I have as little network configuration needed as possible while setting it up. Now thats its all working, my question is, what zone is the ideal one for an asterisk server? Where do you guys/gals have yours and why? Thank you for your time! -- The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net mailto:Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian and Asterisk
Green if it's supposed to be an internal PBX server. Orange if it's supposed to be a public one. -- Rafael Fonseca www.nunca.com.br On 9 February 2010 10:43, Vassilis V. bigracc...@gmx.net wrote: Hello all, I successfully managed to get an Asterisk running behind my Endian firewall. All installation/configuration was done while in the green zone so I have as little network configuration needed as possible while setting it up. Now thats its all working, my question is, what zone is the ideal one for an asterisk server? Where do you guys/gals have yours and why? Thank you for your time! -- The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Open up ports without sending it to an IP on the LAN
You probably need to use the SIP Proxy for this, but I don't think it is possible at all to have an open port without redirecting it to an internal IP. -- Rafael Fonseca www.nunca.com.br On 15/01/2010, at 6:02 AM, jonas kellens wrote: Hello list ! How can I open up some UDP port on the firewall without having to specify the IP of the LAN-client ? Why would I need that : I have multiple SIP-phones with multiple SIP-accounts, using ports 5060, 5061, 5062, 5063. So it can be that 2 IP-phones make use of the same UDP-ports. So how to just open up these 4 ports without having to send the traffic to a specific IP-phone ?? If I send it to one phone, the other phone is useless... Jonas. -- Throughout its 18-year history, RSA Conference consistently attracts the world's best and brightest in the field, creating opportunities for Conference attendees to learn about information security's most important issues through interactions with peers, luminaries and emerging and established companies. http://p.sf.net/sfu/rsaconf-dev2dev___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Throughout its 18-year history, RSA Conference consistently attracts the world's best and brightest in the field, creating opportunities for Conference attendees to learn about information security's most important issues through interactions with peers, luminaries and emerging and established companies. http://p.sf.net/sfu/rsaconf-dev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Problems with OpenVPN from 2.2 to 2.3
After a couple of weekends diagnosing the issues with 2.3, I've found that it's still presenting some bugs from 2.1 (!!). Namely, OpenVPN does not push DNS servers to the client. I've added the following lines to my /etc/openvpn/openvpn.conf.tmpl in order to make it work: #if $PUSH_GLOBAL_DNS == 'on' push dhcp-option DNS ${GLOBAL_DNS} #end if It will ONLY work if you have just ONE DNS server under Push these nameservers. This fix will survive restarts. Another problem I've found (this is 2.3 exclusively): The DHCP server is creating non-working configs that prevent dhcpd from working when you use double quotes ( ) under Custom configuration lines, such as: filename \pxelinux.0; The Python script on the backend is escaping the quotes on the line above, thus making the config file invalid. I had to manually edit the config file from dhcpd to make it work. If someone logs into the GUI and restarts the DHCP through the web interface, the problem reappears. Hope this helps other people as well. Regards, -- Rafael Fonseca www.nunca.com.br 2009/12/8 Rafael Fonseca rafael.m...@gmail.com I've noticed that whenever rules with IPS are enabled, traffic does not get through. Snort might be set too strictly in my scenario. Disabled IPS, but the VPN server still does not let traffic through. Since this is for a client, I'll have to go back to their offices to have a look again. Will keep you posted. I also need to report to Endian some issues I've found while migrating their firewall from 2.2 to 2.3 last weekend. Thanks for the replies, Rafael 2009/12/8 Vikash Khatuwala vik...@netvigator.com Do you have IPS (snort) running? I found that snort will filter VPN traffic regardless of VPN firewall rules. At 07:03 PM 07-12-09, you wrote: Have you cheked the VPN firewall config? Cheers, Pedro On Monday 07 December 2009 07:58:17 Rafael Fonseca wrote: I'm getting the same thing. Any news? -- Rafael Fonseca www.nunca.com.br 2009/11/7 Elmar Natter e...@allgaeu.org I've just encountered a new problem while switching from 2.2 to 2.3. The same config which worked perfect under 2.2 cause a problem under 2.3. Now only the router is pingable, and the web front end is available. But none IP from the network (same subnet on green interface) is available. So what to do different in efw 2.3 to get openvpn access running? Regards Elmar -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- -- Pedro M. S. Oliveira IT Consultant Email: pmsolive...@gmail.com URL: http://www.linux-geex.com Cellular: +351 96 5867227 -- -- Join us December 9, 2009 for the Red Hat Virtual Experience, a free event focused on virtualization and cloud computing. Attend in-depth sessions from your desk. Your couch. Anywhere. http://p.sf.net/sfu/redhat-sfdev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Join us December 9, 2009 for the Red Hat Virtual Experience, a free event focused on virtualization and cloud computing. Attend in-depth sessions from your desk. Your couch. Anywhere. http://p.sf.net/sfu/redhat-sfdev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- -- Rafael Fonseca www.nunca.com.br -- This SF.Net email is sponsored by the Verizon Developer Community Take advantage of Verizon's best-in-class app development support A streamlined, 14 day to market process makes app distribution fast and easy Join now and get one step closer to millions of Verizon customers http://p.sf.net/sfu/verizon-dev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] VMWare Tools for EFW 2.3?
Any luck getting VMware tools on it? I'm also interested. -- Rafael Fonseca 2009/11/12 Bodo Olschewski bodo.olschew...@freenet.de Elmar Natter e...@... writes: I'm using EFW 2.3 in a ESXi Enviroement. Performance is just great but I still miss the VMWare Tools to have the heartbeat and shutdown feature. Has somebody compiled the vmware tools and is able to provide them? Would be great! Elmar -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july Hello, I also would like to have vmware tools inside Endian firewall. I find this how to's: for Efw 2.1.1 http://www.rndgroup.co.nz/blog/2009/01/30/vmware-tools-in-an-endian-appliance/ for Efw 2.2RC3 http://www.howtoforge.com/install-vmware-tools-on-endian-firewall-community-2.2-rc3-on-esxi-3.5 But actually it looks like, inside the Efw 2.3-developper package are a lot of necessary files missing. ( see also http://bugs.endian.it/view.php?id=2302 ) Otherwise it should be not to difficult to write a small script, that everybody who likes to, can install the vmware tools easy. Does anybody know, from where I can load the missing files ? -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Return on Information: Google Enterprise Search pays you back Get the facts. http://p.sf.net/sfu/google-dev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Problems with OpenVPN from 2.2 to 2.3
I'm getting the same thing. Any news? -- Rafael Fonseca www.nunca.com.br 2009/11/7 Elmar Natter e...@allgaeu.org I've just encountered a new problem while switching from 2.2 to 2.3. The same config which worked perfect under 2.2 cause a problem under 2.3. Now only the router is pingable, and the web front end is available. But none IP from the network (same subnet on green interface) is available. So what to do different in efw 2.3 to get openvpn access running? Regards Elmar -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Join us December 9, 2009 for the Red Hat Virtual Experience, a free event focused on virtualization and cloud computing. Attend in-depth sessions from your desk. Your couch. Anywhere. http://p.sf.net/sfu/redhat-sfdev2dev___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Problems with OpenVPN from 2.2 to 2.3
I've noticed that whenever rules with IPS are enabled, traffic does not get through. Snort might be set too strictly in my scenario. Disabled IPS, but the VPN server still does not let traffic through. Since this is for a client, I'll have to go back to their offices to have a look again. Will keep you posted. I also need to report to Endian some issues I've found while migrating their firewall from 2.2 to 2.3 last weekend. Thanks for the replies, Rafael 2009/12/8 Vikash Khatuwala vik...@netvigator.com Do you have IPS (snort) running? I found that snort will filter VPN traffic regardless of VPN firewall rules. At 07:03 PM 07-12-09, you wrote: Have you cheked the VPN firewall config? Cheers, Pedro On Monday 07 December 2009 07:58:17 Rafael Fonseca wrote: I'm getting the same thing. Any news? -- Rafael Fonseca www.nunca.com.br 2009/11/7 Elmar Natter e...@allgaeu.org I've just encountered a new problem while switching from 2.2 to 2.3. The same config which worked perfect under 2.2 cause a problem under 2.3. Now only the router is pingable, and the web front end is available. But none IP from the network (same subnet on green interface) is available. So what to do different in efw 2.3 to get openvpn access running? Regards Elmar -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- -- Pedro M. S. Oliveira IT Consultant Email: pmsolive...@gmail.com URL: http://www.linux-geex.com Cellular: +351 96 5867227 -- -- Join us December 9, 2009 for the Red Hat Virtual Experience, a free event focused on virtualization and cloud computing. Attend in-depth sessions from your desk. Your couch. Anywhere. http://p.sf.net/sfu/redhat-sfdev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Join us December 9, 2009 for the Red Hat Virtual Experience, a free event focused on virtualization and cloud computing. Attend in-depth sessions from your desk. Your couch. Anywhere. http://p.sf.net/sfu/redhat-sfdev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- -- Rafael Fonseca www.nunca.com.br -- Return on Information: Google Enterprise Search pays you back Get the facts. http://p.sf.net/sfu/google-dev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Congratulation to endian team!
So what's the procedure to do an in-place upgrade using the update system? Is it possible at all or do I have to pull out the CD drive again to perform the upgrade? -- Rafael Fonseca www.nunca.com.br On 28/10/2009, at 5:28 AM, Pedro M. S. Oliveira wrote: Well I've just installed the new endian 2.3, been using the release candidate for some time and didn't find much to complain hehehe, just the collectd and ntp setting that was previously reported. But in my thoughts 2.3rc1 was really nice, so today i'm saying thank you the endian team for the new release! Did you guys noticed the release time between version from 2.1 to 2.2 and from 2.2 to 2.3? Apart from the thanks is there a link for the devel rpms? I tried the 2.2 devel rpms but they didn't work as glibc is another version (or better they do work but then things like modules don't link to the kernel) Cheers, Pedro -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Upgrade from 2.3 rc1 to 2.3 final
That's what I'm also looking forward to do. I haven't tried 2.3rc1 on it, so I'll be going straight from 2.2 to 2.3. -- Rafael Fonseca www.nunca.com.br 2009/10/28 Matt Hayes domin...@slackadelic.com Luca Giovenzana wrote: Best option is to backup, reinstall and restore, that's because of a bug in 2.3 rc1 which assigns a very small size to /var/log partition. http://bugs.endian.it/view.php?id=2288 Have fun with your 2.3 Luca What about an upgrade from 2.2 to 2.3 using efw-upgrade :) Anyone try this yet? -Matt -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Announcement: Endian Firewall Community 2.3 has been released
I guess this answers my question about upgrading 2.2 to 2.3 using efw-upgrade. -- Rafael Fonseca www.nunca.com.br 2009/10/28 Christian Graffer christ...@endian.com Hello Community, As some of you have already noticed today we can proudly announce the final release of Endian Firewall Community 2.3! Exactly one month and ten days have passed since we released the first release candidate of version 2.3. Since then we have been working hard to fix bugs and improve the overall user experience. Since the release candidate was already feature complete no new features have been added to the final release. Upgrading from a previous version is not yet possible. We are already working on the upgrade procedure and by the end of November you will be able to do so. There are lots of features that have been added since the last stable release (v2.2). These features are either new or were available only to users of the Enterprise Edition previously. You can find the list of new features here: http://www.endian.com/en/community/efw-23/ For a more detailed changelog please visit this URL: http://bugs.endian.com/changelog_page.php Enjoy the final release! Christian and the whole Endian team P.S. Why not become a fan of our facebook page? :) http://www.facebook.com/endian -- :: e n d i a n :: security with passion :: christian graffer :: product manager :: http://www.endian.com :: c.graffer (AT) endian.com -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Event Notifications
Maybe your Spam folder got something? Gmail is known for marking messages from unknown boxes as Spam. I had to manually add rules to my Inbox to prevent messages coming from my home server to be sent to Spam. Regards, -- Rafael Fonseca www.nunca.com.br 2009/10/28 Matt Hayes domin...@slackadelic.com Ok, Got 2.3 installed, however, I configure the event notifications and it is supposed to trip on successful and failed root login attempts. I've tested both of these and not seeing anything. Am I missing something? -Mat -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Block sites
I believe you achieve that by using the Content Filter inside the Proxy settings. I'm not sure you can block specific words, though. Only pre-configured patterns. -- Rafael Fonseca www.nunca.com.br 2009/8/13 Fellipe Pinheiro - Analista de Redes fellipepinhe...@macae.rj.gov.br How can i block thee URL by word? My endian blocks by domain. I want to block by word. Att, Fellipe Pinheiro Analista de Projetos de Redes Prefeitura Municipal de Macaé Sec. Mun. de Ciência e Tecnologia Tel: 22-2772-6243 R: 301 Tel: 22-2772-6750 R: 301 E-mail: fellipepinhe...@macae.rj.gov.br -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Disconnect/Reconnect cronjob
Not necessary in this case. They're for error reporting and tidying up output from cron-jobs, but in your case I'd just ignore them. -- Rafael Fonseca www.nunca.com.br On 30/07/2009, at 11:19 PM, Vassilis wrote: Hello Rafael! I added the root there since it was there from a howto I found on a german forum. I removed it and the script works, thank you! Seeing in the crontab file the daily, hourly, etc cron jobs, I noticed the lines [ -x /bin/run-parts ] run-parts --report in front of the command. I dont understand what they mean and should I add them to my own cronjob aswell? Thank you for your help! Vassilis Rafael Fonseca schrieb: Why did you add the 'root' part in front of the script? AFAIK, that shouldn't be there. Just make sure you chmod 755 the script, and you don't even need to sh script, as you already have the #!/bin/sh line there, which tell whatever shell you're in that they should use sh to run your script. 2009/7/30 Vassilis bigracc...@gmx.net mailto:bigracc...@gmx.net Hello all! Since my ISP is disconnecting my connection every 24 hours I would like to make sure that happens in the early morning hours rather than at noon. After a bit of searching I found the .sh script that works but I havent managed to get it to work properly. This is the .sh script: #!/bin/sh # Reconnect and update DynDNS /etc/rc.d/uplinks stop main sleep 90 /usr/local/bin/setddns.pl sleep 30 /usr/local/bin/setddns.pl I made a folder called /customscripts and moved the .sh file in there. Running it manually via sh scriptname.sh works perfectly, getting it to run at a specific time is where I am stuck. I edited the /etc/crontab file and added at the end: 30 3 * * * root /customscripts/reconnect.sh This should run the script at 03:30 in the morning but unfortunately it doest work. Since this is my first cronjob ever I am almost certain I have missed something trivial but important :-) Thank you! -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net mailto:Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Disconnect/Reconnect cronjob
Why did you add the 'root' part in front of the script? AFAIK, that shouldn't be there. Just make sure you chmod 755 the script, and you don't even need to sh script, as you already have the #!/bin/sh line there, which tell whatever shell you're in that they should use sh to run your script. 2009/7/30 Vassilis bigracc...@gmx.net Hello all! Since my ISP is disconnecting my connection every 24 hours I would like to make sure that happens in the early morning hours rather than at noon. After a bit of searching I found the .sh script that works but I havent managed to get it to work properly. This is the .sh script: #!/bin/sh # Reconnect and update DynDNS /etc/rc.d/uplinks stop main sleep 90 /usr/local/bin/setddns.pl sleep 30 /usr/local/bin/setddns.pl I made a folder called /customscripts and moved the .sh file in there. Running it manually via sh scriptname.sh works perfectly, getting it to run at a specific time is where I am stuck. I edited the /etc/crontab file and added at the end: 30 3 * * * root /customscripts/reconnect.sh This should run the script at 03:30 in the morning but unfortunately it doest work. Since this is my first cronjob ever I am almost certain I have missed something trivial but important :-) Thank you! -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian use %97 of ram
Do you have 512MBs of RAM? I've noticed that under 1GB of RAM, Endian shows 50% use. As of now, the Endian system I'm running has 512MB and it does show almost full usage of the RAM. Regards, -- Rafael Fonseca www.nunca.com.br On 6/05/2009, at 6:34 PM, Tunç YURDAKUL wrote: Hello, I have Endian 2.2rc3 Nowadays my Endian uses %97 ram of total memory. Why system very busy? Which service do this? Where can i check and watch it? Thanks __ Information from ESET NOD32 Antivirus, version of virus signature database 4054 (20090505) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] EFW 2.2-RC3 [bridge mode]
If you mean the proxy in transparent mode, then yes. -- Rafael Fonseca www.nunca.com.br On 7/03/2009, at 10:18 AM, Andres Gonzalez wrote: Can someone please confirm whether, using two network interfaces (RED and GREEN), can Endian can operate in transparent/bridge mode? Regards, Andres -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian Community Firewall 2.2 RC3 InstallationCrashed
Same here. -- Rafael Fonseca www.nunca.com.br On 21/02/2009, at 3:37 AM, Allie Syadiqin wrote: Mike, sounds great. I'll look forward to the demo. 2009/2/20 Mike Knisely mknis...@mtbt.com You'll need to make certain that the hardware you have is supported by the ESX hypervisor. You need some pretty contemporary kit for it. I'm running that version on my ML350G5, but it won't run on my G3. The installation and basic configuration is so simple that anyone that's installed XP can do it. Basically, you boot from the CD and give the machine a hostname and IP address. What I think would be good to demo is how we setup an Endian box (or any other firewall distro for that matter) on an ESX server. I've done this many times in my lab and would be willing to create a demo. I'll try to get a video together and uploaded to youtube. It won't be until Thursday morning at the earliest. Sound good? Mike K. From: Allie Syadiqin [mailto:allie.syadi...@gmail.com] Sent: Friday, February 20, 2009 8:28 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Endian Community Firewall 2.2 RC3 InstallationCrashed Mike, are you referring to the VMWare ESXi3? I would love to see your demo/howto to set it up. Just got myself an old machine that I can use. Regards, A. Syadiqin 2009/2/20 Mike Knisely mknis...@mtbt.com I'd be willing to give a quick demo on this. It's truely amazingly easy to setup. Mike K. From: Rafael Fonseca [mailto:rafael.m...@gmail.com] Sent: Thu 2/19/2009 16:07 To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Endian Community Firewall 2.2 RC3 InstallationCrashed I'm considering virtualization as the next step for our infrastructure, and ESXi3 looks like the way to go. I would love to see how it working, but couldn't get a test server yet for that. -- Rafael Fonseca www.nunca.com.br http://www.nunca.com.br/ On 20/02/2009, at 9:51 AM, Allie Syadiqin wrote: Thanks Mike. I like the way you put it. :P But I have no experience running VMWare and I'm not confident that I could get it to work without any hitch. Anyway, I am now more inclined towards swapping the box with the MySQL server. 2009/2/19 Mike Knisely mknis...@mtbt.com I'd go the VMWare ESX3i way if I were in your shoes. It's an amazing platform that will allow you to use more of the obscene power of that box. Running Endian on it is a little like using an F-350 Super Duty as a commuter car. Mike From: Allie Syadiqin [mailto:allie.syadi...@gmail.com] Sent: Thursday, February 19, 2009 3:18 PM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Endian Community Firewall 2.2 RC3 InstallationCrashed hahaha Thanks for that, mike. Though I agree with most of the suggestions posted so far, the fact is that I am now stuck with this server. Unfortunately, the company have put their trust on me to get this to work. If there is no other way for me to get Endian 2.2 RC3 to work on this server, I might suggest swapping the server with the MySQL server, which is running on a Dell PowerEdge 850 (same machine as the current working Endian Firewall 2.1). So far, the replies I received are alternatives rather than a fix. 1) Disable hardware RAID and use software RAID if that work 2) Use VMWare/Xenware Looking at the dump, I think Mike is correct to say that the mptsas module is the cause but then I am no expert. Anyway, unless someone has any valid solution to actually fix this, I will follow the majority of the ppl and agree that its simply not possible to install Endian 2.2 RC3 on this server. Thanks to everyone who posted their opinions/suggestions. Regards, Allie Syadiqin 2009/2/19 Mike Tremaine m...@stellarcore.net Allie Syadiqin wrote: OMG ... this is just like the nighmare I had when I got the position of server administrator . doing real server administration ... :P :) Welcome to your nightmare I would love to look into all suggestions, ie. VMWare, software RAID, etc.. but I don't think that I am competent enough nor have the luxury or time to try these suggestions but thanks anyway. Software Raid setup is in the install Wizard so it's not that bad. -Mike -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open
Re: [Efw-user] Endian Community Firewall 2.2 RC3 Installation Crashed
The problem with this (IMHO) is that we still don't know WHAT the issue to be fixed is. Is it the controller? The 4 CPUs? The cutting edge hardware. The tip about switching off the hardware RAID and testing is just to narrow down the options. It's not meant to be final. Try disabling the RAID, installing Endian. If it fails, we'll know it's not the controller. If it doesn't fail, you'll know what the issue is. :) Only then can we try and 'fix it'. Maybe with a custom kernel compile, maybe with a kernel module. But first things first. Regards, -- Rafael Fonseca www.nunca.com.br On 20/02/2009, at 9:17 AM, Allie Syadiqin wrote: hahaha Thanks for that, mike. Though I agree with most of the suggestions posted so far, the fact is that I am now stuck with this server. Unfortunately, the company have put their trust on me to get this to work. If there is no other way for me to get Endian 2.2 RC3 to work on this server, I might suggest swapping the server with the MySQL server, which is running on a Dell PowerEdge 850 (same machine as the current working Endian Firewall 2.1). So far, the replies I received are alternatives rather than a fix. 1) Disable hardware RAID and use software RAID if that work 2) Use VMWare/Xenware Looking at the dump, I think Mike is correct to say that the mptsas module is the cause but then I am no expert. Anyway, unless someone has any valid solution to actually fix this, I will follow the majority of the ppl and agree that its simply not possible to install Endian 2.2 RC3 on this server. Thanks to everyone who posted their opinions/suggestions. Regards, Allie Syadiqin 2009/2/19 Mike Tremaine m...@stellarcore.net Allie Syadiqin wrote: OMG ... this is just like the nighmare I had when I got the position of server administrator . doing real server administration ... :P :) Welcome to your nightmare I would love to look into all suggestions, ie. VMWare, software RAID, etc.. but I don't think that I am competent enough nor have the luxury or time to try these suggestions but thanks anyway. Software Raid setup is in the install Wizard so it's not that bad. -Mike -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- = = = = = = = = = = = = = == DISCLAIMER This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this email. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. = = = = = = = = = = = = = == -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian Community Firewall 2.2 RC3 InstallationCrashed
I'm considering virtualization as the next step for our infrastructure, and ESXi3 looks like the way to go. I would love to see how it working, but couldn't get a test server yet for that. -- Rafael Fonseca www.nunca.com.br On 20/02/2009, at 9:51 AM, Allie Syadiqin wrote: Thanks Mike. I like the way you put it. :P But I have no experience running VMWare and I'm not confident that I could get it to work without any hitch. Anyway, I am now more inclined towards swapping the box with the MySQL server. 2009/2/19 Mike Knisely mknis...@mtbt.com I'd go the VMWare ESX3i way if I were in your shoes. It's an amazing platform that will allow you to use more of the obscene power of that box. Running Endian on it is a little like using an F-350 Super Duty as a commuter car. Mike From: Allie Syadiqin [mailto:allie.syadi...@gmail.com] Sent: Thursday, February 19, 2009 3:18 PM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Endian Community Firewall 2.2 RC3 InstallationCrashed hahaha Thanks for that, mike. Though I agree with most of the suggestions posted so far, the fact is that I am now stuck with this server. Unfortunately, the company have put their trust on me to get this to work. If there is no other way for me to get Endian 2.2 RC3 to work on this server, I might suggest swapping the server with the MySQL server, which is running on a Dell PowerEdge 850 (same machine as the current working Endian Firewall 2.1). So far, the replies I received are alternatives rather than a fix. 1) Disable hardware RAID and use software RAID if that work 2) Use VMWare/Xenware Looking at the dump, I think Mike is correct to say that the mptsas module is the cause but then I am no expert. Anyway, unless someone has any valid solution to actually fix this, I will follow the majority of the ppl and agree that its simply not possible to install Endian 2.2 RC3 on this server. Thanks to everyone who posted their opinions/suggestions. Regards, Allie Syadiqin 2009/2/19 Mike Tremaine m...@stellarcore.net Allie Syadiqin wrote: OMG ... this is just like the nighmare I had when I got the position of server administrator . doing real server administration ... :P :) Welcome to your nightmare I would love to look into all suggestions, ie. VMWare, software RAID, etc.. but I don't think that I am competent enough nor have the luxury or time to try these suggestions but thanks anyway. Software Raid setup is in the install Wizard so it's not that bad. -Mike -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- = = = = = = = = = = = = = == DISCLAIMER This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this email. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. = = = = = = = = = = = = = == -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- = = = = = = = = = = = = = == DISCLAIMER This message contains confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate
Re: [Efw-user] DNS address format for OpenVPN server?
Do you by any chance have DHCP on Green turned OFF on Endian? I have been looking into the config files and it seems the 'push dhcp- options DNS xxx.xxx.xxx.xxx' line is not being written on openvpn.conf. I also have DHCP turned off on Green (I have a Windows Server acting as DHCP server), and I have this weird feeling that it may be related. I've added the above line manually to my .conf file and will see how it goes. -- Rafael Fonseca www.nunca.com.br On 21/01/2009, at 5:53 PM, wharfratjoe wrote: I just verified that this is an an issue with endian. domian is pushed but is not resolving at all. wharfratjoe wrote: It seems to be. Rafael Fonseca wrote: So, just to clarify: it's NOT an issue in Endian, but rather on your outgoing firewall? I have this issue but on roadwarriors connecting to Endian from outside the office. The information is pushed, but no name resolving. -- Rafael Fonseca www.nunca.com.br On 9/01/2009, at 11:16 AM, wharfratjoe wrote: Incoming or outgoing? -- This is an issue with connecting to endian openvpn from behind a Untangle firewall (have not figured it out yet since i locked down the box pretty tight and dont have time to mess with it right now). Openvpn connections endian to endian boxes resolves the internal hostnames with no problem with one exception: I have found that you need to append the internal domain name to the hostname (this has been this way for awhile and never posted about it until now) to resolve correctly. Here is a sample config that I started using for about a year or so and works fine: http://www.nabble.com/open-vpn-client-settings-to13594062.html#a13596758 Hope this helps. -joe Rafael Fonseca wrote: Incoming or outgoing? -- Rafael Fonseca www.nunca.com.br On 9/01/2009, at 10:05 AM, wharfratjoe wrote: Due to lack of sleep it was a firewall issue blicking udp port 53. Pushing Vpn settings work fine in 2.2 RC3, as seen below Here is another example that is working that is running 2.2 RC3. Ethernet adapter {29815F69-DD48-4711-9FBD-0B4FBB37DE43}: Connection-specific DNS Suffix . : domain.local Description . . . . . . . . . . . : TAP-Win32 Adapter V8 Physical Address. . . . . . . . . : 00-FF-29-81-5F-69 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.76.230 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : DHCP Server . . . . . . . . . . . : 192.168.76.0 DNS Servers . . . . . . . . . . . : 192.168.76.3 192.168.76.2 Lease Obtained. . . . . . . . . . : Thursday, January 08, 2009 11:31:31 AM Lease Expires . . . . . . . . . . : Friday, January 08, 2010 11:31:31 AM (I will post my .ovpn client config later today). wharfratjoe wrote: I am being pushed the settings but it is not resolving internal names when pinging, etc. Connection-specific DNS Suffix . : domainname.int Description . . . . . . . . . . . : TAP-Win32 Adapter V8 - Packet Schedu ler Miniport Physical Address. . . . . . . . . : 00-FF-E9-98-09-B8 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 172.16.0.230 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : DHCP Server . . . . . . . . . . . : 172.16.0.0 DNS Servers . . . . . . . . . . . : 172.16.0.3 172.16.0.2 Lease Obtained. . . . . . . . . . : Wednesday, January 07, 2009 9:19:49 PM Lease Expires . . . . . . . . . . : Thursday, January 07, 2010 9:19:49 P M I will search bugtraq and if it is not already listed I will open a ticket on this. Rafael Fonseca wrote: I have noticed that the upgrade to 2.2 did NOT bring me the push DNS I was waiting for. For some reason, the clients can't connect to the servers inside my green network without putting something inside the hosts file. Do you guys experience the same thing? I have put the DNS server as follows on the VPN Advanced Global push options (as the help instructs), but no go. I have also tried putting just the IP address, without /24. On a side note, what do you guys use in the client .ovpn files? I have been collecting settings through the years and I don't know if I'm using the optimal settings for Endian. Regards, -- Rafael Fonseca www.nunca.com.br -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- View
Re: [Efw-user] DNS address format for OpenVPN server?
Even though it's not a solution, your email just made me a whole lot happier. I was beginning to wonder what was wrong with my network setup, routers, etc... LOL! -- Rafael Fonseca www.nunca.com.br On 21/01/2009, at 5:53 PM, wharfratjoe wrote: I just verified that this is an an issue with endian. domian is pushed but is not resolving at all. wharfratjoe wrote: It seems to be. Rafael Fonseca wrote: So, just to clarify: it's NOT an issue in Endian, but rather on your outgoing firewall? I have this issue but on roadwarriors connecting to Endian from outside the office. The information is pushed, but no name resolving. -- Rafael Fonseca www.nunca.com.br On 9/01/2009, at 11:16 AM, wharfratjoe wrote: Incoming or outgoing? -- This is an issue with connecting to endian openvpn from behind a Untangle firewall (have not figured it out yet since i locked down the box pretty tight and dont have time to mess with it right now). Openvpn connections endian to endian boxes resolves the internal hostnames with no problem with one exception: I have found that you need to append the internal domain name to the hostname (this has been this way for awhile and never posted about it until now) to resolve correctly. Here is a sample config that I started using for about a year or so and works fine: http://www.nabble.com/open-vpn-client-settings-to13594062.html#a13596758 Hope this helps. -joe Rafael Fonseca wrote: Incoming or outgoing? -- Rafael Fonseca www.nunca.com.br On 9/01/2009, at 10:05 AM, wharfratjoe wrote: Due to lack of sleep it was a firewall issue blicking udp port 53. Pushing Vpn settings work fine in 2.2 RC3, as seen below Here is another example that is working that is running 2.2 RC3. Ethernet adapter {29815F69-DD48-4711-9FBD-0B4FBB37DE43}: Connection-specific DNS Suffix . : domain.local Description . . . . . . . . . . . : TAP-Win32 Adapter V8 Physical Address. . . . . . . . . : 00-FF-29-81-5F-69 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.76.230 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : DHCP Server . . . . . . . . . . . : 192.168.76.0 DNS Servers . . . . . . . . . . . : 192.168.76.3 192.168.76.2 Lease Obtained. . . . . . . . . . : Thursday, January 08, 2009 11:31:31 AM Lease Expires . . . . . . . . . . : Friday, January 08, 2010 11:31:31 AM (I will post my .ovpn client config later today). wharfratjoe wrote: I am being pushed the settings but it is not resolving internal names when pinging, etc. Connection-specific DNS Suffix . : domainname.int Description . . . . . . . . . . . : TAP-Win32 Adapter V8 - Packet Schedu ler Miniport Physical Address. . . . . . . . . : 00-FF-E9-98-09-B8 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 172.16.0.230 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : DHCP Server . . . . . . . . . . . : 172.16.0.0 DNS Servers . . . . . . . . . . . : 172.16.0.3 172.16.0.2 Lease Obtained. . . . . . . . . . : Wednesday, January 07, 2009 9:19:49 PM Lease Expires . . . . . . . . . . : Thursday, January 07, 2010 9:19:49 P M I will search bugtraq and if it is not already listed I will open a ticket on this. Rafael Fonseca wrote: I have noticed that the upgrade to 2.2 did NOT bring me the push DNS I was waiting for. For some reason, the clients can't connect to the servers inside my green network without putting something inside the hosts file. Do you guys experience the same thing? I have put the DNS server as follows on the VPN Advanced Global push options (as the help instructs), but no go. I have also tried putting just the IP address, without /24. On a side note, what do you guys use in the client .ovpn files? I have been collecting settings through the years and I don't know if I'm using the optimal settings for Endian. Regards, -- Rafael Fonseca www.nunca.com.br -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- View this message in context: http://www.nabble.com/DNS-address-format-for-OpenVPN-server--tp21340568p21360926.html Sent from the efw-user mailing list archive at Nabble.com. -- Check out
Re: [Efw-user] compared bandwidth efw/ipcop
I have 2.2rc3 with everything enabled on a VDSL2 network with 10Mb down/2Mb up and I do get full speed. Could it be something with your modem routing and Endian? -- Rafael Fonseca www.nunca.com.br On 12/01/2009, at 5:12 AM, Vassilis wrote: Hello Stéphane, I am using 2.2rc3 too and I am having similar problems. Snort causes my speed to go down drasticly and as soon as I enable it my speed goed down. I havent found any solution to it yet, what I have noticed though is that when snort is active, I see alot of messages in the snort log. Maybe the same happens with you and it causes the firewall to slow down? Vassilis NightLord schrieb: NightLord a écrit : Hi everyone... This i s a bit strange... last time i was questionning about snort, and today i'm questionning myself about efw... I've re-installed ipcop on my hardware and found that i was able to download at full speed (ie 1.6 MB - 12.Mbits/s)... I switched bak to ipcop 2.2rc3 and found my max download were back to /_200/250 MB_/ (kB to be read !)... What can be so greedy for efw so he cannot go for more than this download rate... what can set a limit ? the conf is the same on the 2 installation (no proxy, no out firewalling, 1 orange and a couple of port forwarding) I came back to ipcop and here we are, again 1.6 MB compared to 250 KB (and not MB as written above... my mistake ! i wish i have a 250 MB band :-) ) The hardware has not changed, the services are the same i don't need content filtering so i think i'll stick to ipcop for the moment, but i'd like to understand what's the problem (if problem it is) Stéphane -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] DNS address format for OpenVPN server?
Incoming or outgoing? -- Rafael Fonseca www.nunca.com.br On 9/01/2009, at 10:05 AM, wharfratjoe wrote: Due to lack of sleep it was a firewall issue blicking udp port 53. Pushing Vpn settings work fine in 2.2 RC3, as seen below Here is another example that is working that is running 2.2 RC3. Ethernet adapter {29815F69-DD48-4711-9FBD-0B4FBB37DE43}: Connection-specific DNS Suffix . : domain.local Description . . . . . . . . . . . : TAP-Win32 Adapter V8 Physical Address. . . . . . . . . : 00-FF-29-81-5F-69 DHCP Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.76.230 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : DHCP Server . . . . . . . . . . . : 192.168.76.0 DNS Servers . . . . . . . . . . . : 192.168.76.3 192.168.76.2 Lease Obtained. . . . . . . . . . : Thursday, January 08, 2009 11:31:31 AM Lease Expires . . . . . . . . . . : Friday, January 08, 2010 11:31:31 AM (I will post my .ovpn client config later today). wharfratjoe wrote: I am being pushed the settings but it is not resolving internal names when pinging, etc. Connection-specific DNS Suffix . : domainname.int Description . . . . . . . . . . . : TAP-Win32 Adapter V8 - Packet Schedu ler Miniport Physical Address. . . . . . . . . : 00-FF-E9-98-09-B8 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 172.16.0.230 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : DHCP Server . . . . . . . . . . . : 172.16.0.0 DNS Servers . . . . . . . . . . . : 172.16.0.3 172.16.0.2 Lease Obtained. . . . . . . . . . : Wednesday, January 07, 2009 9:19:49 PM Lease Expires . . . . . . . . . . : Thursday, January 07, 2010 9:19:49 P M I will search bugtraq and if it is not already listed I will open a ticket on this. Rafael Fonseca wrote: I have noticed that the upgrade to 2.2 did NOT bring me the push DNS I was waiting for. For some reason, the clients can't connect to the servers inside my green network without putting something inside the hosts file. Do you guys experience the same thing? I have put the DNS server as follows on the VPN Advanced Global push options (as the help instructs), but no go. I have also tried putting just the IP address, without /24. On a side note, what do you guys use in the client .ovpn files? I have been collecting settings through the years and I don't know if I'm using the optimal settings for Endian. Regards, -- Rafael Fonseca www.nunca.com.br -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- View this message in context: http://www.nabble.com/DNS-address-format-for-OpenVPN-server--tp21340568p21360926.html Sent from the efw-user mailing list archive at Nabble.com. -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] DNS address format for OpenVPN server?
I have noticed that the upgrade to 2.2 did NOT bring me the push DNS I was waiting for. For some reason, the clients can't connect to the servers inside my green network without putting something inside the hosts file. Do you guys experience the same thing? I have put the DNS server as follows on the VPN Advanced Global push options (as the help instructs), but no go. inline: Picture 1.jpg I have also tried putting just the IP address, without /24. On a side note, what do you guys use in the client .ovpn files? I have been collecting settings through the years and I don't know if I'm using the optimal settings for Endian. Regards, -- Rafael Fonseca www.nunca.com.br -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] http proxy - openldap authentication
I believe there is an issue with the Bind DN string you're using. Try testing that string with Softerra's LDAP Browser (free) and see if it returns anything. For my company's Active Directory, the string actually reads: cn=Administrator,cn=Users,ou=Company,ou=Com But that's because AD treats the Users folder as a Container, rather than the normal Organizational Unit. hope it helps. -- Rafael Fonseca www.nunca.com.br On 7/01/2009, at 10:57 AM, Eduardo Silva wrote: Hello list, I just installed EFWC 2.2 rc3 and i'm getting some problems to authenticate the http proxy with openldap. On tab proxy http authentication I tried to use the same values for authentication that i inserted on other applications, like zabbix, cacti ex: Base DN: dc=company,dc=com,dc=br Bind DN: cn=Administrator,dc=company,dc=com,dc=br (also tried only Administrator, cn=Administrator, uid=Administrator,dc=company,dc=com,dc=br) Some of then returned invalid credentials or protocol error, but when i fix those i always receive : Ldap search returned nothing If i use any of my systems that are integrated with ldap, they work fine, even if i make an ldapsearch from another machine on same network, i can list all my users without any problem, but the proxy authentication doesnt seen to work properly. Any ideas / suggestions?? thanks! -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] OOT, other software
It is indeed a somewhat old P4 entry-level motherboard. Running with 512Mb of RAM. -- Rafael Fonseca On 16/12/2008, at 6:35 AM, Scott Silva ssi...@sgvwater.com wrote: on 12-14-2008 2:26 PM Rafael Fonseca spake the following: Just thought I'd give you guys a follow up to this one. Turned out to be the motherboard slowing down if I put two sticks of RAM on it. As soon as I removed one, it booted 2.1.2 (and then 2.2) fine under 2 minutes. Tested all possible scenarios with the slots and memory sticks, all with the same result: 2 sticks = slow down; 1 stick = fine. Weird. Is it an older board? Some older boards had a fixed cache, and any memory over the amount the cache could cover turned the cache off completely. -- MailScanner is like deodorant... You hope everybody uses it, and you notice quickly if they don't --- --- --- - SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] OOT, other software
Just thought I'd give you guys a follow up to this one. Turned out to be the motherboard slowing down if I put two sticks of RAM on it. As soon as I removed one, it booted 2.1.2 (and then 2.2) fine under 2 minutes. Tested all possible scenarios with the slots and memory sticks, all with the same result: 2 sticks = slow down; 1 stick = fine. Weird. -- Rafael Fonseca www.nunca.com.br On 13/10/2008, at 12:31 PM, Mike Tremaine wrote: On Oct 11, 2008, at 1:56 PM, Rafael Fonseca wrote: Hi Chris, It didn't completely fail. It just takes too long to boot fully (more than 30 minutes). I did a full backup AND a settings-only backup. Tried installing using RAID, and then restored with the full backup. Booting took more than what I believe to be normal. It's certainly possible to have a udev problem which causes slow boots. If you google for udev slow boot you'll find lots of examples. One possible solution is to use acpi=off as a kernel option when booting. Other you might check out your logs to see what it is getting hung up on. -Mike - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] OOT, other software and my experience with endian
That traffic accounting module REALLY interests me. Let us know when you get a first version out. []'s -- Rafael Fonseca www.nunca.com.br On 13/10/2008, at 11:48 PM, Pedro M. S. Oliveira wrote: I did upgrade my virtual machine from rc2 to rc3 in 5 minutes and rebooting no problems whatsoever. first i thought in a clean install but, in the end i didn't wanted to have a downtime bigger than 2 minutes and as i had a backup i just wanted to upgrade my vm I tried the unrecommended method of mounting the iso on /mnt and do something like rpm -Uvh --nodeps -- force *.rpm it worked quite well, just rebooted afterwards, the reboot process failed after umounting the discs (with a lib error) thats normal as i did the upgrade. on the first boot everything worked perfectly. with this i don't expect it to work for all of you guy because there are plenty of different configuration, etc. it just worked perfectly with mine. befor i also moved from vmware 1.7 to 2.0 and it works really well too, i'm in the process of compiling and creating an rpm for endian with VMWARE tools. if there is interest from endian i can maintain that package and it will be my litle contribution. about other software, well i've tried a few, but i still like endian more, it's just a matter of personal taste... i like because of the functionality, and most of all flexibility, although it's more or less closed box if you loose a bit of time understanding it i will deliver you a lot of power. btw i'm also working in a module (for now command line) for doing ip traffic accounting, more or less like qos but with accounting and bandwidth limitation (kb/mb/s), for protocol or internal ip or external ip cheers, Pedro On Friday 10 October 2008 21:36:31 yuan yudistira wrote: I know this is out of topic I juts want to inform all of you, after no luck installing endian, I try other open source software (untangle), and it works as expected within 30 minutes or less installation process. Thank you all for your support Love always and God Bless you! YUAN -- -- Pedro Oliveira IT Consultant Email: [EMAIL PROTECTED] URL: http://pedro.linux-geex.com Telefone: +351 96 5867227 -- - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] EFW 2.2rc3 install
Sounds very similar to what I experienced. Orange became green for me, but it took a while to answer to pings as well at first. -- Rafael Fonseca www.nunca.com.br On 14/10/2008, at 2:46 AM, woodrowbone wrote: I had problems connecting to the green card after install for the initial setup. I switch cables unsure if the the wrong card became the green one, but no go. I swithed back to and after like 30-40 minutes i could reach the box, anyone know why this happens? Woodrow Mike Tremaine wrote: I just wanted to say that I sat down this morning and installed the efw2.2rc3 iso and it took about 5 mins. No real problems, about the only thing I ran into was br0 being attached to eth0 [which makes sense] but since I was using a qemu-kvm virtual setup I needed br0 on eth1 to reach the box. Simple enough I just edited /var/efw/ethernet/br0 and restarted it. Then ran through the setup and off we go. I will also note that the content filter works fine for me but the setup was less then obvious. First you have to add the content-filter into the rule under Default Policy just edit the virus scanner rule. Second everything is allowed by default so you have to click onteh category you want to block and change it from Green to Red and restart the dansguardian process. Then the blocking will start. Not sure why other people reported such problems but there it is. -Mike - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- View this message in context: http://www.nabble.com/EFW-2.2rc3-install-tp19943338p19955257.html Sent from the efw-user mailing list archive at Nabble.com. - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] OOT, other software
Thanks Mike. Logs don't show anything abnormal. Dmesg shows a CPU workaround being used, and that's that. Really puzzled me, but I ran out of patience (mostly because I skipped breakfast and it was already 1pm). So I kinda gave up looking through other logs and digging deeper. :/ I have marked you guys' emails for later reference when I attempt the upgrade again. -- Rafael Fonseca www.nunca.com.br On 13/10/2008, at 12:31 PM, Mike Tremaine wrote: On Oct 11, 2008, at 1:56 PM, Rafael Fonseca wrote: Hi Chris, It didn't completely fail. It just takes too long to boot fully (more than 30 minutes). I did a full backup AND a settings-only backup. Tried installing using RAID, and then restored with the full backup. Booting took more than what I believe to be normal. It's certainly possible to have a udev problem which causes slow boots. If you google for udev slow boot you'll find lots of examples. One possible solution is to use acpi=off as a kernel option when booting. Other you might check out your logs to see what it is getting hung up on. -Mike - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] OOT, other software
Hi Chris, It didn't completely fail. It just takes too long to boot fully (more than 30 minutes). I did a full backup AND a settings-only backup. Tried installing using RAID, and then restored with the full backup. Booting took more than what I believe to be normal. Removed RAID, reinstalled onto a single HDD, then restored with a settings-only backup. Same thing. Put back the old HDD with 2.1.2, boots fine. Hardware is a P4 3.0Ghz with 1Gb of Kingston RAM and 4 NICs (1 onboard/ 1 3Com/2 Realteks). -- Rafael Fonseca www.nunca.com.br On 11/10/2008, at 9:51 PM, Chris Mair wrote: Hi, Quite interesting, in fact. Especially after my failed attempt this morning at upgrading a 2.1.2 box to 2.2-rc3 which took me more than 4 hours and I ended up reverting. How did you upgrade? Did you backup the 2.1.2 configuration (GUI), install 2.2 and restore the backup configuration (GUI)? Where did it fail? Bye, Chris. -- :: e n d i a n :: open source - open minds :: chris mair :: http://www.endian.com - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] OOT, other software
Quite interesting, in fact. Especially after my failed attempt this morning at upgrading a 2.1.2 box to 2.2-rc3 which took me more than 4 hours and I ended up reverting. Something's really weird in the new version: booting a clean system took more than 15 minutes! -- Rafael Fonseca www.nunca.com.br On 11/10/2008, at 9:40 AM, toby wrote: Looks pretty slick. On Fri, Oct 10, 2008 at 3:36 PM, yuan yudistira [EMAIL PROTECTED] wrote: I know this is out of topic I juts want to inform all of you, after no luck installing endian, I try other open source software (untangle), and it works as expected within 30 minutes or less installation process. Thank you all for your support Love always and God Bless you! YUAN - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian address to the community / release 2.2
Nice uptime. I'd like to congratulate Chris Mair on his new role, and I wish him all the best in bringing the Endian development tools to 2.2 so that we can work on it more actively than just 'reporting bugs'. I for one would love to see a Subversion repository for Endian, so that I can add the Active Directory integration for OpenVPN that I use here and I'm sure users on this list would like too. Regards, -- Rafael Fonseca www.nunca.com.br On 8/10/2008, at 6:33 AM, Mike Tremaine wrote: On Oct 7, 2008, at 8:57 AM, Chris Mair wrote: Hello EFW Users everywhere, my name is Chris Mair -- I'm the new CTO of Endian Srl. If you're a developer, expect more from as as soon as I get those 1000 buttons figured out... CU on the lists :) Chris, Thanks for note, I'm looking forward to RC3 aka final. About the only advice I'd have is take a look at the 2.0 release. I would argue that it was the best release so far because it was the most complete in terms of development tools. Because of this I think that more community development occurred during the 2.0 cycle to the benefit on Endian. It's pretty well known that I'm still on 2.0 here is why [EMAIL PROTECTED]:~ # uptime 10:25:56 up 343 days, 19:35, 1 user, load average: 0.30, 0.18, 0.11 My 2.0 is rock solid, it serves 300+ users. I'd love to move to 2.2 but it has to be supportable. Thanks, Mike - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] 2.2 RC3 upgrade path?
I'd also like to know the same. I'm planning on that same upgrade here, but not without taking a copy of the hard-drive first, just in case. Anyone that did it already care to shed some light? -- Rafael Fonseca www.nunca.com.br On 8/10/2008, at 4:54 PM, Matt Hayes wrote: Does anyone know if with the release of 2.2 RC3 how safe it is to backup a current 2.1.2 config and then upgrade and restore? Is there any type of upgrade path at this time? Thanks, Matt - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] IPHONE VPN, possible?
Yes, but how easy is it to customize the PPTP server on Endian to allow traffic from the different zones and etc... Best bet would be to use IPSec. Please let us know how it goes, as I also am considering plugging our company's iPhones into Endian (but I'm waiting on the final release of 2.2). -- Rafael Fonseca www.nunca.com.br On 12/09/2008, at 5:14 AM, Marcelo Santos wrote: No matter the brand of firewall you choose to use, the main concept at an VPN is that the firewall creates a tunnel, and in that tunnel you can pass any protocol that you pass in a normal network. I don't know any problem to use a firewall with iphone, since the firewall supports VPN passthrough. You need to make a some research to discover the kind of VPN iphone do, and, If this VPN client is compatible with L2TP. By the way, you can install PPTP server in a Endian Box, since Endia is a Linux distro customized to work like a secure firewall out of box. Regards, Marcelo Santos Digital Domain +5511 4220-3518 Phone +5511 9768-3330 Mobile [EMAIL PROTECTED] www.digitaldomain.com.br Solutions for a Digital World On Thu, Sep 11, 2008 at 09:06, Mark Casey [EMAIL PROTECTED] wrote: Does anyone know if it is possible to configure Endian for usage with an iphone over a VPN? I'm currently trying to figure out what firewall is best to purchase, Endian is on that list but trying to find any information about Endian, VPN's and iphones is pretty damn hard. Thanks Mark - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] HAVP Unable to create temporary directory
Since the updates of 2.1.2 we have had random occurrences of this message when trying to access some websites. There is no pattern with the websites (sometimes Google.com works, sometimes it doesn't). HAVP - Virus scanner error ClamAV: Unable to create temporary directory A virus scanner error occurred while scanning Anyone have any ideas why? I asked mother Google for answers but most of them were related to either Debug mode being ON in ClamAV or the directory being full. I have checked df -h and have at least 12% free on system partitions and 85% free space on /var. Regards, -- Rafael Fonseca www.nunca.com.br - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] HTTP Proxy W/O Cache
It seems your Squid settings have the 'Offline mode' enabled. It's under Proxy Cache management. This is 2.1.2. It may differ to other versions. inline: Picture 1.jpg -- Rafael Fonseca www.nunca.com.br On 22/07/2008, at 9:05 AM, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote: This is a two-part question. 1) The squid web cache serves stale content for several web sites. Is there a setting somewhere that will cause squid to check for site updates on every load? 2) Presuming that the answer to '1' is No. Is there a way to disable the web cache without disabling the other proxy features (content filter, anti-virus, etc.) Lane Beneke Network Administrator Southern Piping Co. Wilson, NC, USA - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] efw-toolbox
Screen is a program that allows you to run multiple programs (or shells) in the background. Kinda like a window-manager, but text-only. -- Rafael Fonseca www.nunca.com.br On 17/07/2008, at 5:40 PM, Gregory Machin wrote: What is screen ? Rafael Fonseca wrote: Anyone got squidview to open at startup. Love the tally function. If only I could get screen to install, but when it comes to RPM-based distros, I fail! Zola-3 wrote: hi glibc: http://schwarzecker.homelinux.net/index.php?option=com_remositoryItemid=28func=selectfolderfilecatid=43 joe, mc: http://schwarzecker.homelinux.net/index.php?option=com_remositoryItemid=28func=selectcatcat=36 i like mc :) and its not a simple tool, but recently i started www.hyperic.com agent on endian, with no problem! (watch out system time tobe accurate always! ntpdate pool.ntp.org) Z. Wednesday, July 16, 2008, 5:48:31 PM, you wrote: I've always put iftop and htop on my Endians, they're both great apps. Mike K. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Gregory Machin Sent: Wednesday, July 16, 2008 8:14 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] efw-toolbox Hi I have added 2 more applications to the efw-toolbox one is squidview which is grate for monitoring users in real time and the other htop which is an alternative top, giving a nive view of whats going on with the processes and their child processes . http://sourceforge.net/projects/efw-toolbox/ my little contribution to the efw project. - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Gregory Machin CT-Net www.ct-net.org [EMAIL PROTECTED] phone : +27 12 379 3497 fax : +27 12 379 4113 Cell : +27 72 524 8096 humans do not use the address below its for trapping spam. spamtrap [EMAIL PROTECTED] - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] Re quest for /etc/init.d/spamassassin from EFW 2.1.2
Can anyone please post the full contents (or attach) /etc/init.d/spamassassin as a reply to this message? My version of this file seems to have gone missing and restartspamassassin.py is complaining about it. Thanks in advance! -- View this message in context: http://www.nabble.com/Request-for--etc-init.d-spamassassin-from-EFW-2.1.2-tp18436585p18436585.html Sent from the efw-user mailing list archive at Nabble.com. - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Re quest for /etc/init.d/spamassassin from EFW 2.1.2
Much appreciated! Scott Silva wrote: on 7-15-2008 2:00 PM Rafael Fonseca spake the following: Can anyone please post the full contents (or attach) /etc/init.d/spamassassin as a reply to this message? My version of this file seems to have gone missing and restartspamassassin.py is complaining about it. Thanks in advance! -- MailScanner is like deodorant... You hope everybody uses it, and you notice quickly if they don't - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- View this message in context: http://www.nabble.com/Request-for--etc-init.d-spamassassin-from-EFW-2.1.2-tp18436585p18475218.html Sent from the efw-user mailing list archive at Nabble.com. - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] efw 2.1.2
Gustavo Villaran [EMAIL PROTECTED] writes: Hi, i just changed to the las stable version and is not working good, havpd have some strange behavour, and the box takes like 20 minutes to fully startup, the proxy logs are not working also. anyone knows how to correct this situation? Thanks I'm glad and sad at the same time to find that I'm not the only one in this situation. Havp DOES take about 55 minutes (clocked) to start on my hardware, a P4 3.0Ghz with 1Gb of RAM and 4 network cards. I do have a big cache (20Gb+) set, but it still is absurd. It started fine when we first got it, but since then it just took longer and longer. Can't trial 2.2 yet as it isn't final and I cannot take this machine out of my network. I have tried it in VMware and it does look better, but I still don't know about Havp. Something that may be related to this is the fact that ClamAV crashes constantly, especially if I have mail virus-scanning enabled. Anyone experiencing that as well? - Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://sourceforge.net/services/buy/index.php ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Problem with HAVP and proxy
ajh [EMAIL PROTECTED] writes: Hi! If I enable virus checking on the HTTP proxy, then no one can access any web pages. Off - it's OK. I've had a look at the HAVP log and can't see a problem. In the clamav log this appears: squid[14306]: Squid Parent: child process 14308 exited with status 0 squid[15889]: Squid Parent: child process 15891 started Don't know if that's normal. I can't see any other problems/errors. Any thoughts? Thanks Andy I have a similar problem, but it actually happens when I switch on Content filtering. Although users can still browse certain pages, Dansguardian doesn't seem to respect the whitelists and simply blocks pages without really showing any messages other than a '1'. Switching it off makes it go away. And does anyone else have a problem where HAVP takes almost 10 minutes to load? - This SF.net email is sponsored by the 2008 JavaOne(SM) Conference Don't miss this year's exciting event. There's still time to save $100. Use priority code J8TL2D2. http://ad.doubleclick.net/clk;198757673;13503038;p?http://java.sun.com/javaone ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] Zone firewall to multiple IPs?
I don't know if this was covered before, but I've searched through the knowledgebase and the bug tracker and could not find an answer: does the upcoming stable release of Endian support opening ports between two zones without a set destination IP? I have an FTP server on one of my zones (orange) which works with passive mode fine for outside (internet) clients, but when someone on the green network tries to use passive mode with the FTP server, the firewall (understandably) blocks the traffic. Does anyone know if this has been changed? - Check out the new SourceForge.net Marketplace. It's the best place to buy or sell services for just about anything Open Source. http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user