[Efw-user] Are EFW appliances any better than the Community version?
I have a customer that is interested in a security appliance, and I would like to suggest an Endian product but their community version is so poorly maintained and the software like clamAV is so outdated that I'm afraid to recommend one. Does anyone have any experience with them? Thanks. -- See everything from the browser to the database with AppDynamics Get end-to-end visibility with application monitoring from AppDynamics Isolate bottlenecks and diagnose root cause in seconds. Start your free trial of AppDynamics Pro today! http://pubads.g.doubleclick.net/gampad/clk?id=48808831iu=/4140/ostg.clktrk ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] EFW crash
I have a problem with the EFW box, today the system was turned off. I thinks that there's a hardware issue or there's a process that makes this happens. I would think a hardware problem too. I've run EFW for many years, and it is as stable as any 'nix based OS. For the last few years, I've run it in a qemu-kvm virtual machine. This makes it portable, meaning that I can copy the VM to new hardware without having to worry about hardware compatibility, and drivers, etc. The one thing it lacks is the ability to shutdown when the power button is pressed, which it sorely needs. So I think you can eliminate someone accidentally hitting the button. -- See everything from the browser to the database with AppDynamics Get end-to-end visibility with application monitoring from AppDynamics Isolate bottlenecks and diagnose root cause in seconds. Start your free trial of AppDynamics Pro today! http://pubads.g.doubleclick.net/gampad/clk?id=48808831iu=/4140/ostg.clktrk___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Porting the Endian packages on one of the main distributions
By the way I was also checking out ClearOS which uses latest version of Squid, have you ever thought of using ClearOS instead of Endian? ClearOS is insanely expensive for any of the features you would want that match a firewall. The roles on the website calls itself a network, a gateway, or a server. I can't really point to it a say exactly what it is. -- Introducing AppDynamics Lite, a free troubleshooting tool for Java/.NET Get 100% visibility into your production application - at no cost. Code-level diagnostics for performance bottlenecks with 2% overhead Download for free and get started troubleshooting in minutes. http://p.sf.net/sfu/appdyn_d2d_ap1 ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Bandwidth and Thruput
the NICs are 3COM and Realtec 10/100MBit/s CPUload is about 80% 100baseT = 100 Mbps = 12.5 MBps EFW depends on the speed of the host cpu and on the network cards. Because of overhead and the limits of older computer buses and cpus, I don't believe you will get much more than 7MBit/s using 100baseT nics. I also do not believe 3Com nics are known for their speed. What cpu is in the firewall, and how much ram? These are very important when processing your enabled services. -- Everyone hates slow websites. So do we. Make your web apps faster with AppDynamics Download AppDynamics Lite for free today: http://p.sf.net/sfu/appdyn_d2d_mar___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] endian and wifi
I would like to build a system with built in WIFI AP - but I dont seems to have the right drivers. I installed a network card that EFW supports. (Intel or Realtek nics are fine) Then I attached an external wireless AP with a network (patch) cord to the network card. An external Wireless N Access Point cost around $30 dollars. -- LogMeIn Rescue: Anywhere, Anytime Remote support for IT. Free Trial Remotely access PCs and mobile devices and provide instant support Improve your efficiency, and focus on delivering more value-add services Discover what IT Professionals Know. Rescue delivers http://p.sf.net/sfu/logmein_12329d2d ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Missing SRPMs and new Developer Environment
I'm now testing ZeroShell and pfSense. I'm waiting for a linux firewall that supports ipv6 in the GUI to make ipv6 easy to work with. Until then, Endian will work... -- Monitor your physical, virtual and cloud infrastructure from a single web console. Get in-depth insight into apps, servers, databases, vmware, SAP, cloud infrastructure, etc. Download 30-day Free Trial. Pricing starts from $795 for 25 servers or applications! http://p.sf.net/sfu/zoho_dev2dev_nov ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] EFW Developer Environment Released
Thanks for the effort. Since I'm not a developer, I was wondering if it was possible to use this to update clamav from 0.97 to 0.97.6? Is that a difficult thing to do? -- Monitor your physical, virtual and cloud infrastructure from a single web console. Get in-depth insight into apps, servers, databases, vmware, SAP, cloud infrastructure, etc. Download 30-day Free Trial. Pricing starts from $795 for 25 servers or applications! http://p.sf.net/sfu/zoho_dev2dev_nov___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] EFW 5.1 NTP daemon not auto starting
This is on Endian 5.1 Community. I guess you mean 2.5.1 If you search the file /var/log/messages for the word 'ntpd' what do you see there? If you click ServicesTime server is the time wrong? Do you override the default time servers? If so, what do you enter for time servers? and copied-and-pasted the ip address assignments for static ip addresses from the 4.1 configuration into the 5.1 configuration. I can't tell what you mean by this, but I wouldn't edit configuration files by hand. I often import settings from older versions of EFW to upgrade, but I've found it's best to click SystemNetwork configuration, and step through each of the pages to configure your networks. Then be sure to click 'OK, apply configuration' at the end. -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] [EFW 2.5.1] System Access Rules not working
I like EFW and I have 2.5.1 , but my problem with System Access is now working When I add rule Source Address: blank Source Interface: Any service:User define protocol: TCP : 10443 policy action:allow enabled: checked Mine works when set this way: Source Address: blank Source Interface: RED service:ANY protocol: TCP : 10443 policy action:allow with IPS Position First enabled: checked -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] warning to EFW users: you may be abusing malwaredomains.com site
http://www.malwaredomains.com/ does not seem to exist, unless your email caused enough people to open it, causing it to fail. What are the correct settings in files you mentioned? -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] warning to EFW users: you may be abusing malwaredomains.com site
Yes, http://www.malwaredomains.com eventually opened. On my Endian Firewall Community release 2.5.1, '/var/efw/dnsmasq/default' is an empty directory. However, I do have this: root@firewall:/ # cat /var/efw/dnsmasq/settings DNSMASQ_BLACKHOLE=redirect DNSMASQ_TRANSPARENT_ORANGE= DNSMASQ_TRANSPARENT_GREEN=on NTOP_ENABLED=off CREDENTIALS=off DNSMASQ_UPDATE_SCHEDULE=daily DNSMASQ_BLACKHOLE_REDIRECT=75.125.225.163 DNSMASQ_BLACKHOLE_URL=http://www.malwaredomains.com/files/spywaredomains.zon es,http://mirror1.malwaredomains.com/files/spywaredomains.zones DNSMASQ_TRANSPARENT_BLUE=on DNSMASQ_ANTISPYWARE=on SIGNATURES_VERSION=2.47 According to the website, I think I need to remove: http://www.malwaredomains.com/files/spywaredomains.zones, And change: DNSMASQ_BLACKHOLE_REDIRECT= 127.0.0.1 (or 0.0.0.0) Can this be confirmed? Are there any other modifications? -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] 2.5.1 upgrade
Running efw-upgrade -s and selecting development builds I'm able to upgrade to 2.5.1 This does not work for me -- Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] 2.5.1 upgrade
A backup of 2.4.1 that is restored to a new install of 2.5.1 seems to work perfectly... -- Try before you buy = See our experts in action! The most comprehensive online learning library for Microsoft developers is just $99.99! Visual Studio, SharePoint, SQL - plus HTML5, CSS3, MVC3, Metro Style Apps, more. Free future releases when you subscribe now! http://p.sf.net/sfu/learndevnow-dev2 ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Port forwarding on RED multi-IP
We use EFW on a physical machine. At the moment we have 3x RED interfaces (pppoe to adsl). Running 2.4.0, as the latest version does not like the nic (driver issue). Hope this helps With a VM, you can create as many interfaces as you like. Being virtual, you have a certain amount of flexibility. You could create several red interfaces which could all attach to one (real) physical nic, or they could attach to multiple physical nics, as your networking requires. In qemu-kvm, this is done by creating a bridge to each physical nic. The virtual nics are then created attached to the bridge. You can share the physical nic with as many virtual nics as makes sense. There would be no driver issues within EFW, since you decide which type of virtual nic to install in the VM. (Realtek, Intel, virtio, etc) So the issue becomes how many red interfaces (or any colored zones) EFW can support. -- The demand for IT networking professionals continues to grow, and the demand for specialized networking skills is growing even more rapidly. Take a complimentary Learning@Cisco Self-Assessment and learn about Cisco certifications, training, and career opportunities. http://p.sf.net/sfu/cisco-dev2dev___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Port forwarding on RED multi-IP
I use efw in kvm, but have never needed to support more than one IP address. Virtual environments give you the ability to easily test hardware configurations. Could someone tell me how many active red interfaces/nics EFW supports? Maybe we can come up with a way to make it work. -- The demand for IT networking professionals continues to grow, and the demand for specialized networking skills is growing even more rapidly. Take a complimentary Learning@Cisco Self-Assessment and learn about Cisco certifications, training, and career opportunities. http://p.sf.net/sfu/cisco-dev2dev___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] dansguardian
The problem is that over 2 or 3 days I have to restart the proxy service because the dansguardian process consumes all the RAM memory. Been a while, but I think dansguardian can get stuck trying to update itself. There were always so many issues with the content filter and with snort, I keep them turned off. Once a service like dansguardian or spamassassin becomes outdated, they stop updating themselves. It's been ages since people have reported various EFW bugs, but none of the bugs have been fixed. (unless you fix them yourself) Once a community version is released, Endian pretty much forgets about it. They're in the business of selling firewalls, and only release a free version because it's in the open source agreement. You're often on your own. -- All of the data generated in your IT infrastructure is seriously valuable. Why? It contains a definitive record of application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-d2d-c2___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Help! SIP proxy issue
It works great, but about 3 times a day, my IP telephones will start blinking a message that it cannot find the SIP Server...Connecting. As others have mentioned, you should upgrade. By now the clamav and spamassassin and other services are badly out of date. You should check your logs to be sure they are even updating. The SIP proxy has been removed, but it turns out its not needed and it runs better than it used to. If the crashing is a new thing, look at your hardware - check the hard drive(s) SMART data to see if there are any reallocated or pending sectors. And look for bad capacitors on the motherboard and inside the PSU. If any are rounded on top, you have to replace the mainboard or power supply. http://en.wikipedia.org/wiki/Capacitor_plague Also, upon a reboot of the firewall, I often have to go to each IP phone and give it a new IP address. Also a good idea to assign fixed leases to your devices so you don't have to mess with ip addresses anymore. You might want to give them host names too. -- Colocation vs. Managed Hosting A question and answer guide to determining the best fit for your organization - today and in the future. http://p.sf.net/sfu/internap-sfd2d ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] 2.4.1 install freezes
Could be: bad download, bad cd media, bad cdrom drive, incompatible hardware. What hardware are you installing on? From: Andres Gonzalez [mailto:tuc...@gmail.com] Sent: Wednesday, December 29, 2010 11:14 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] 2.4.1 install freezes Hi, I'm trying to install EFW CE 2.4.1 but the installation get freezes at 94% (efw-spamassassing package). Any idea ? Regards, Andres -- AGD -- Learn how Oracle Real Application Clusters (RAC) One Node allows customers to consolidate database storage, standardize their database environment, and, should the need arise, upgrade to a full multi-node Oracle RAC database without downtime or disruption http://p.sf.net/sfu/oracle-sfdevnl___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Xen again
I run EFW as a virtual machine on a centos kvm box. It even supports the virtio network card emulation. Works great. Xen is still around, but RHEL is going kvm... -- Increase Visibility of Your 3D Game App Earn a Chance To Win $500! Tap into the largest installed PC base get more eyes on your game by optimizing for Intel(R) Graphics Technology. Get started today with the Intel(R) Software Partner Program. Five $500 cash prizes are up for grabs. http://p.sf.net/sfu/intelisp-dev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Bridge Mode?
My cable modem doesn't have nat, but it's usually easy enough to disable nat in a broadband modem. Not that there's anything wrong with double nats. From: Fernando Cabrera [mailto:balama...@gmail.com] Sent: Thursday, September 23, 2010 7:35 AM To: AJ Weber; efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Bridge Mode? Yeah, its esay, configure your red interface as Gateway. That's how i'm doing it. FERNANDO CABRERA JARAMILLO On Thu, Sep 23, 2010 at 7:53 AM, AJ Weber awe...@comcast.net wrote: Hi All, I was a Endian user for a good while, then went away from it for a few years (no comments/flames, please). I'm looking to put something back in, behind a decent router that has probably enough FW features for my use. Thus, I'm considering putting a box in between the FW/router and the LAN for other UTM and caching (anti-spam, anti-virus, squid, dansguardian all features I'd like to make use of). I'd prefer not to double-NAT connections where I don't have to, so I am considering inserting a box in bridge-mode. Can Endian 2.4 do this? Thanks in advance, AJ -- Start uncovering the many advantages of virtual appliances and start using them to simplify application deployment and accelerate your shift to cloud computing. http://p.sf.net/sfu/novell-sfdev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Nokia and ATT present the 2010 Calling All Innovators-North America contest Create new apps games for the Nokia N8 for consumers in U.S. and Canada $10 million total in prizes - $4M cash, 500 devices, nearly $6M in marketing Develop with Nokia Qt SDK, Web Runtime, or Java and Publish to Ovi Store http://p.sf.net/sfu/nokia-dev2dev___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Trying Endian at home for learning
There is no reason not to have a router behind another router. And there is nothing wrong with having two firewalls. Networks are set up this way all the time. It's also fine to set it up your way. (green nic into one of the wired ports of the WRT54G2) as long as you configure the WRT54G2 and efw correctly. And if the wireless clients can reach the efw and use it as their gateway. Your way does use up a wired port. And it might be a bit more work, but it's all for learning anyway... -- This SF.net email is sponsored by Make an app they can't live without Enter the BlackBerry Developer Challenge http://p.sf.net/sfu/RIM-dev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Trying Endian at home for learning
Yes, you probably will need to set up EFW first. Once its working, you should be able to reach EFW from behind the WRT54G2, and from the internet if you enable that. The dsl modems around here tend to log in automatically using PPPoE or PPPoA without the client having to do anything. Does your dsl modem require that the client dials? Set up the red nic on EFW to be the same way the WAN port of the WRT54G2 is before the EFW was installed... -Original Message- From: Enrique Becerra [mailto:kab...@gmail.com] Sent: Sunday, August 01, 2010 9:16 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Trying Endian at home for learning Hi CompDoc Before anything, thanks a lot for giving me a hand 1) I did the connections you suggested. Connected RED nic to DSL Modem and GREEN NIC to WRT54G2's WAN port. After I did this connection I can't access EFW, so I guess I'll have to go back, configure EFW and then make connection again, right? 2) I guess RED nic should be configured as PPPoE? This will make RED nic to dial DSL modem and connect to ISP, am I wrong? http://imgur.com/zJNtr.jpg 3) By connecting GREEN to WRT54G2's WAN port, I guess I should change the GREEN nic settings, right? If so, where should I do this? Also, when I did your suggested connections, eth1 (red) activated in dashboard. This is the dashboard I see now http://imgur.com/7ZpPT.jpg Hope the screens help in some way Thanks again A LOT for reading and helping Greets... Enrique On Sat, Jul 31, 2010 at 8:44 PM, compdoc comp...@hotrodpc.com wrote: Internet-wan---DSL Modem---lan--red---EFW Firewall---green-wan---WRT54G2---both lans--to users -- The Palm PDK Hot Apps Program offers developers who use the Plug-In Development Kit to bring their C/C++ apps to Palm for a share of $1 Million in cash or HP Products. Visit us here for more details: http://p.sf.net/sfu/dev2dev-palm ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user --- --- The Palm PDK Hot Apps Program offers developers who use the Plug-In Development Kit to bring their C/C++ apps to Palm for a share of $1 Million in cash or HP Products. Visit us here for more details: http://p.sf.net/sfu/dev2dev-palm ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- The Palm PDK Hot Apps Program offers developers who use the Plug-In Development Kit to bring their C/C++ apps to Palm for a share of $1 Million in cash or HP Products. Visit us here for more details: http://p.sf.net/sfu/dev2dev-palm ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Trying Endian at home for learning
You should connect the red nic directly to the dsl modem, setting it for dhcp, using the IP range 192.168.1.x, (which is what the dsl modem likes) and also using whatever cable works - normal cable or crossover cable. Try a normal cable first. You should then connect the green nic to the Internet/WAN port of the WRT54G2 using an unused address range, for example, 192.168.5.x, also using whatever cable works. Then the WRT54G2 needs to use two more unused address ranges. For example, the wireless lan could be 192.168.10.x, and the wired lan could use 192.168.15.x That would protect all your computers, and allow you to block sites, etc. -Original Message- From: Enrique Becerra [mailto:kab...@gmail.com] Sent: Saturday, July 31, 2010 4:19 PM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Trying Endian at home for learning Hi guys I'm Enrique, from Argentina I've got Endian for learning and installed in an old PC at home I have the following structure at home for testing -- The Palm PDK Hot Apps Program offers developers who use the Plug-In Development Kit to bring their C/C++ apps to Palm for a share of $1 Million in cash or HP Products. Visit us here for more details: http://p.sf.net/sfu/dev2dev-palm ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Trying Endian at home for learning
Internet-wan---DSL Modem---lan--red---EFW Firewall---green-wan---WRT54G2---both lans--to users -- The Palm PDK Hot Apps Program offers developers who use the Plug-In Development Kit to bring their C/C++ apps to Palm for a share of $1 Million in cash or HP Products. Visit us here for more details: http://p.sf.net/sfu/dev2dev-palm ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] EFW CE 2.4 missing kernel module
If you are, you shouldn't use the raid feature on the motherboard. Just attach the drives to the standard sata connectors, and disable any raid in the bios. -- ThinkGeek and WIRED's GeekDad team up for the Ultimate GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the lucky parental unit. See the prize list and enter to win: http://p.sf.net/sfu/thinkgeek-promo ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Antwort: Antwort: Re: 2.4 upgrade
Thanks. I recorded the mac addresses for my virtual nics, deleted them, added them back using the virtio drivers and the old mac addresses, and it's working. It seems as though cpu use is higher now in the dashboard, but an occasional lag that I was experiencing with an online game appears to be gone. Finally - virtio. :) From: Nico Prenzel [mailto:nico.pren...@bebit.de] Sent: Wednesday, June 02, 2010 2:01 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Antwort: Antwort: Re: 2.4 upgrade Hi, I've checked that my EFW 2.4 loaded the virtio drivers for all my NIC's. But you can't run the installer when you've assigned your virtio NIC's. You have to first install it with emulated NIC's and after the installer finished you have to switch your NIC's to virtio. See, my bug report here: http://bugs.endian.it/view.php?id=1116 http://bugs.endian.it/view.php?id=1116 Regards. NicoP. -- ThinkGeek and WIRED's GeekDad team up for the Ultimate GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the lucky parental unit. See the prize list and enter to win: http://p.sf.net/sfu/thinkgeek-promo___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] EFW F1 key during boot up
That can mean a couple of things. Typically, it means the motherboard has lost its bios settings (date time, etc.) and it needs a new cmos battery. (the small silver coin battery thats on the motherboard) Not as common, but it happens to me: it can also mean a setting in the bios that youre using causes the motherboard to reset itself. And I suppose, it can mean the motherboard needs replacing. On the motherboard and also inside the power supply, look for bad capacitors as shown here: (click on pics to see closer) http://en.wikipedia.org/wiki/Capacitor_plague A $100 investment in a UPS battery backup unit can save your equipment. In any case, thats not a problem caused by EWF. From: Edgar Rentería [mailto:renteria.j.ed...@gmail.com] Sent: Monday, May 31, 2010 9:59 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] EFW F1 key during boot up Hello Recently at my organization we are having many problems with the energy supply, the local electric commission is delivering a very poor service so its impacting many of our systems, a desktop PC with ENDIAN on it is one of these systems, and during the system boot up is needing a F1 strike to continue in order to properly start. How can avoid or bypass these strike to the F1 key in order to automatically start up the system after failures? System Details: Endian Firewall Community release 2.2 Pentium 4 2.2 GHz Mainboard Biostar 500 watts Power Supply Sata HDD/CD 1 GB RAM Ing. Edgar A. Rentería Jácquez Tel.: (52) (614) 189 23 23 renteria.j.ed...@gmail.com mailto:griv...@bcgconsultoreslegales.com -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian 2.3 and 3ware 9650SE Controller
Set it to 32. And then see if it boots, but you might need to reinstall the OS after setting it. Most boards default to 64, but I think every controller I have used from 3Ware, Adaptec, and I think even some Promise cards, has had issues with that setting. In servers I've built using the 9650SE 2p, 4p, and just yesterday on a 12p card, (that I got cheap off ebay) they have all had stability problems because of that setting. The server I just built has four 'green' 5400 rpm Samsung 2TB drives set up as RAID 5. I had just installed centos and was setting the server up, when programs started stalling and there were file checks happening at boot. At first I thought it was because of the 5.4TB size of the volume - that's the biggest Ive ever tried. But on this Supermicro board, I had to dig into the bios to find the setting for each PCI slot and set it to 20h, which is hex for 32. I love 3Ware cards. I get amazing performance from these drives. About 199 MB/s. -- Download Intel#174; Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian performance (400users)
I can't speak to version 2.3 because I still use 2.2, but I have to disable many of the scanners to get it to run in that much ram without a lot of disk swap use. Disabling things like the content filter (which never seems to work well for me or my customers anyway), and intrusion detection, and the spam filters. I keep the virus scanners running, though... Anyway, it has been possible to use so little ram, but 1 Gig of ram (or more) is better... -- Download Intel#174; Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian Hardware Recommendation
You might search these lists, but I think someone with one of these had issues with efw recognizing the nic. Unfortunately, the linux that efw is based on has limited hardware support. I wish it included virtio drivers, but it doesn't... -- Download Intel#174; Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] EFW - Atom processors
Do you have a system with an atom cpu? -- SOLARIS 10 is the OS for Data Centers - provides features such as DTrace, Predictive Self Healing and Award Winning ZFS. Get Solaris 10 NOW http://p.sf.net/sfu/solaris-dev2dev___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] EFW - Atom processors
I have several efw 2.2 servers running out in the world, and you wouldn't want to run 2.2 on a P3, or a Duron. You can't compare a modern system with those old systems. Drive and memory bandwidth speeds were pretty horrible back then. One customer currently has a 1.5HGz Sempron 2200+ with 512Megs servicing 10 internal users, and three openvpn connections to servers located in other states, and a couple of road worriers, so about 18 to 20 users in all. However, to get it to run in that much ram, I had to turn off a few services like the content filer, IPS, and spam filters. I kept the AV scanners. There's another box that services 45 users, (internal and remote) has a gig of ram, and a dual core 2.3GHz amd cpu. The content filter is off on that one too, but because it's an oncology clinic and words like 'breast cancer' would prevent access to sites. This runs in a VM on citrix xenserver. The atom should be much faster at using ram and with r/w to the drives. But a power saving, single core, 1.6GHz cpu handling 150 users? I think it might be slow. A dual core atom, maybe. Anyone with 150 user systems? I'd like to hear your specs... -- SOLARIS 10 is the OS for Data Centers - provides features such as DTrace, Predictive Self Healing and Award Winning ZFS. Get Solaris 10 NOW http://p.sf.net/sfu/solaris-dev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Question
From: Gustavo Castro Admon Sistemas [mailto:siste...@fenusa.com.co] Sent: Monday, February 08, 2010 10:50 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Question Hi, Good evenings it wanted to know if there is the possibility of connecting an I-phone to VPN to the endian I've only helped a customer connect his iPhone to the company server to send/receive emails, so I don't know enough, and have to ask for what would you use a lan connection for? In any case, I doubt you could use the openvpn service unless there's an openvpn client made for the iPhone. That leaves IPSec connections... image002.gif-- The Planet: dedicated and managed hosting, cloud storage, colocation Stay online with enterprise data centers and the best network in the business Choose flexible plans and management services without long-term contracts Personal 24x7 support from experience hosting pros just a phone call away. http://p.sf.net/sfu/theplanet-com___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Open up ports without sending it to an IP on the LAN
From: jonas kellens [mailto:jonas.kell...@telenet.be] Sent: Friday, January 15, 2010 8:23 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Open up ports without sending it to an IP on the LAN Hello Marco, to keep the NAT tunnel open between my SIP-phones behind NAT/firewall I send SIP-option packets from my SIP-server (Asterisk) to the SIP-phones. But when I restart my SIP-server and my firewall, my SIP-server complaints : [Jan 14 16:50:26] WARNING[1480]: chan_sip.c:1817 __sip_xmit: sip_xmit of 0x1e56c160 (len 552) to publicip:5063 returned -1: Operation not permitted [Jan 14 16:50:26] WARNING[1480]: chan_sip.c:1817 __sip_xmit: sip_xmit of 0x1e56c3d0 (len 546) to publicip:5062 returned -1: Operation not permitted [Jan 14 16:50:26] WARNING[1480]: chan_sip.c:1817 __sip_xmit: sip_xmit of 0x1e562440 (len 546) to publicip:5061 returned -1: Operation not permitted So the SIP option packets do not get through my Endian firewall any more. That's why I need to just open up this range 5060 -- 5063. Jonas. ** You are saying that your asterisk sip-server is outside your lan, (or is it inside?) sending packets to the phones inside your lan to keep a NAT tunnel open? Why is that necessary? -- Throughout its 18-year history, RSA Conference consistently attracts the world's best and brightest in the field, creating opportunities for Conference attendees to learn about information security's most important issues through interactions with peers, luminaries and emerging and established companies. http://p.sf.net/sfu/rsaconf-dev2dev___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Open up ports without sending it to an IP on the LAN
Wouldn’t it be better to use a server like trixbox to handle everything? In any case, I think sip and iax2 opens ports as needed – at least I have never needed to open any. I have used the sip proxy, but it's off right now. I need to read up on its usefulness... From: jonas kellens [mailto:jonas.kell...@telenet.be] Sent: Thursday, January 14, 2010 10:03 AM To: EFW Subject: [Efw-user] Open up ports without sending it to an IP on the LAN Hello list ! How can I open up some UDP port on the firewall without having to specify the IP of the LAN-client ? Why would I need that : I have multiple SIP-phones with multiple SIP-accounts, using ports 5060, 5061, 5062, 5063. So it can be that 2 IP-phones make use of the same UDP-ports. So how to just open up these 4 ports without having to send the traffic to a specific IP-phone ?? If I send it to one phone, the other phone is useless... Jonas. __ Information from ESET NOD32 Antivirus, version of virus signature database 4771 (20100114) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- Throughout its 18-year history, RSA Conference consistently attracts the world's best and brightest in the field, creating opportunities for Conference attendees to learn about information security's most important issues through interactions with peers, luminaries and emerging and established companies. http://p.sf.net/sfu/rsaconf-dev2dev___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Kernel panic - not syncing: IO-APIC + timer doesn't work
Did you mean it's the DFI Infinity NF570 SLI-M2 G? Gigabyte doesn't seem to have a model with that number.. Is apic enabled in the bios? It should be as this gives you over 200 IRQs instead of the 16 that the original IBM PC offered. If it is enabled, its possible that its not implemented correctly, so you could try disabling it in the bios. The bios is code, and sometimes they get it wrong. You can try loading setup defaults in the bios, to load what the manufacturer recommends for that board. There is one option in the bios that seems to mess things up - the PCI Latency Timer. This should be set for 32. Also, check for bios updates for that board. -- This SF.Net email is sponsored by the Verizon Developer Community Take advantage of Verizon's best-in-class app development support A streamlined, 14 day to market process makes app distribution fast and easy Join now and get one step closer to millions of Verizon customers http://p.sf.net/sfu/verizon-dev2dev ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Confused about port forwarding in Endian 2.3
Can't be opened by name? Can it be opened by its ip address? -Original Message- From: Vikash Khatuwala [mailto:vik...@netvigator.com] Sent: Tuesday, November 17, 2009 7:10 PM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Confused about port forwarding in Endian 2.3 Hi, Ive been able to get Destination NAT working for my local http server, however when I try to access the website from with-in the GREEN network then it does not work. Any ideas? ANY:80 ---(NAT)--- 192.168.1.10:80 ANY:443 ---(NAT)--- 192.168.1.10:443 Vikash. -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Confused about port forwarding in Endian 2.3
Most firewalls don't allow connections to go out then back in. You have to tell your computers how to go there directly, using its private network address. If the efw provides your LAN's local dns service, add www.host.dyndns.org and its ip address in the host section. If some other server provides dns, add a host record there. -Original Message- From: Vikash Khatuwala [mailto:vik...@netvigator.com] Sent: Tuesday, November 17, 2009 8:42 PM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Confused about port forwarding in Endian 2.3 Yes I can directly access using the local IP address 192.168.1.10 from GREEN zone, however it does not work when I try with the public IP address. Also I am using dyndns.org for my dynamic IP PPPoE (RED) connection. Outside the network is OK no problem http://www.host.dyndns.org:80/ ---(NAT)--- 192.168.1.10:80 https://www.host.dyndns.org:443/ ---(NAT)--- 192.168.1.10:443 From inside the GREEN network (eg. my own PC) http://www.host.dyndns.org:80/ -- redirect to https://192.168.1.1:10443 https://www.host.dyndns.org:443/ -- Connection time out. Thanks, Vikash. At 10:22 AM 18-11-09, compdoc wrote: Can't be opened by name? Can it be opened by its ip address? -Original Message- From: Vikash Khatuwala [mailto:vik...@netvigator.com] Sent: Tuesday, November 17, 2009 7:10 PM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Confused about port forwarding in Endian 2.3 Hi, Ive been able to get Destination NAT working for my local http server, however when I try to access the website from with-in the GREEN network then it does not work. Any ideas? ANY:80 ---(NAT)--- 192.168.1.10:80 ANY:443 ---(NAT)--- 192.168.1.10:443 Vikash. -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user __ Information from ESET NOD32 Antivirus, version of virus signature database 4615 (20091117) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Antwort: Re: Antwort: Re: Antwort: Devel tools for driver compilation
I have both windows and linux guests, and I have 2 efw firewalls running virtual for myself, and one as a vm for a customer. I cant get the linux drivers installed on any of them for the same reason you cant, but I find the performance perfectly acceptable. My customer has about 40 users, and two permanent (more or less) remote users by openvpn. Runs great, alongside a win2003 Server vm that's used to share a volume for backups. I dont think I said I experienced any bad performance. I just havent noticed any perfomnace gains using virtio drivers versus using the e1000 emulation. And yes, centos 5.4 is kernel 2.6.18-164.6.1.el5. But the performance is better on it than my tests with xen or kvm on ubuntu, for example. And even though Fedora 11 has the newest kernel and kvm versions, VMs running on centos are more stable and the tools like the virtual machine manager work better. Anyway, good luck to you. I'd like to hear if you find a way to get the drivers installed. -- View this message in context: http://old.nabble.com/Devel-tools-for-driver-compilation-tp26200823p26225439.html Sent from the efw-user mailing list archive at Nabble.com. -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Problem with green network traffic...any suggestions?
What ports do the phones use, and are you using the sip proxy? -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] 2.3Rc1 port forwarding problems
Don't use 2.3rc1 - 2.3 has been released. What ports are you forwarding? -Original Message- From: McJerry [mailto:bryanj0...@hotmail.com] Sent: Friday, October 16, 2009 5:11 PM To: efw-user@lists.sourceforge.net Subject: [Efw-user] 2.3Rc1 port forwarding problems I've tried installing 2.3Rc1 twice now and it loads fine and routes traffic outbound and via system access rules just fine. I've added a few port forwarding rules to a couple of internal servers and it simply won't work. Am I missing something here or is does port forwarding require additional setup on this version. Port forwarding works just fine when I install 2.2 on the same box. I'm not sure about Destination/Source Nat and usually don't mess with NAT. Setting up port forward rules simply works. Please advise what I may be missing here. Thanks in advance, Jerry -- View this message in context: http://www.nabble.com/2.3Rc1-port-forwarding-problems-tp2593 3621p25933621.html Sent from the efw-user mailing list archive at Nabble.com. -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user __ Information from ESET NOD32 Antivirus, version of virus signature database 4515 (20091016) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- Come build with us! The BlackBerry(R) Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9 - 12, 2009. Register now! http://p.sf.net/sfu/devconference ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Announcement: Endian Firewall Community 2.3rc1
Oh. Well, theres Xen, and theres xenserver from Citrix. That's what I thought you meant. Sorry... -Original Message- From: Neobiker [mailto:neo-ml-efw-1...@neobiker.de] Sent: Friday, September 25, 2009 9:23 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Announcement: Endian Firewall Community 2.3rc1 Do you mean the Citrix XENServer products? We're using Debian, not Citrix xenserver. Also, we're using EFW mostly in a PV-DomU (some with PCI-delegation for the network cards), not HVM like xenserver has to do. With a lot of tricks, it would be possible to create a pv-efw with xenserver, but this is unsupported. regards neobiker compdoc wrote: That sounds great. Are you able to install the tools from the xs-tools.iso? I have efw running happily on two xenservers, even without a xen kernel. Any interest in kvm in redhat/centos 5.4 when it gets here? Thanks ** -- View this message in context: http://www.nabble.com/Announcement%3A-Endian-Firewall-Commun ity-2.3rc1-tp25499897p25614048.html Sent from the efw-user mailing list archive at Nabble.com. -- Come build with us! The BlackBerryreg; Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9#45;12, 2009. Register now#33; http://p.sf.net/sfu/devconf ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Announcement: Endian Firewall Community 2.3rc1
That sounds great. Are you able to install the tools from the xs-tools.iso? I have efw running happily on two xenservers, even without a xen kernel. Any interest in kvm in redhat/centos 5.4 when it gets here? Thanks ** Hi Christian, thanks for the ongoing work, it looks really nice. I hope it will be stable for production soon, we're waiting for the next version to update our XEN-Servers with the XENified (paravirtualised) version of EFW 2.3. There is a community using EFW on XEN (with ctserver from c't/heise or on plain debian XEN servers) here in Germany as you already know. We're actually using my efw-xen kernel 2.6.21 (kernel-xen-2.6.21.7-2.neobiker.i686.efw22.rpm) or even the actual Debain Lenny XEN Kernel to use EFW in a XEN DomU. Installation from ISO as HVM and integration the XEN-Kernel's to use it afterwords as PV-DomU worked like a charm. Greetings from Neobiker (Jens Friedrich from the EFW credits note) -- View this message in context: http://www.nabble.com/Announcement%3A-Endian-Firewall-Community-2.3rc1-tp25499897p25585708.html Sent from the efw-user mailing list archive at Nabble.com. -- Come build with us! The BlackBerryreg; Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9#45;12, 2009. Register now#33; http://p.sf.net/sfu/devconf ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Announcement: Endian Firewall Community 2.3rc1
wow -- Come build with us! The BlackBerryreg; Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9#45;12, 2009. Register now#33; http://p.sf.net/sfu/devconf ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Services Not Running??
There were problems with the services in 2.1.2 and earlier versions of EFW. Clamav, etc had problems initialzing and updating themselves at install because they were out of date. They would take up a lot of cpu time as shown using top. Updates are available online for those services, but efw 2.2 is really the best way to go... -- View this message in context: http://www.nabble.com/Services-Not-Running---tp10005572p25213876.html Sent from the efw-user mailing list archive at Nabble.com. -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Services Not Running??
takCoder wrote: besides, would someone tell me about system requirements of EFW ?? thanks in advance :-) Download the current memtest86+ iso or floppy image and create a bootable disk. Boot the PC that you want to use as a firewall, and look at the numbers in the upper left-hand corner. It lists the speed that your PC is able to access its cpu cache and ram. It's listed in MegaBytes per second (MB/s) 'Memory' means your ram. If your memory is running at 300 MB/s or less, it's going to be slow but might be ok for 1 or 2 users. 600 to 800 MB/s is better. 1000 or more is nice. Current modern desktop computers go 3000 MB/s or more. As far as the amount of ram that the firewall should have, enable the services you want and look in StatusSystem Graphs in your efw GUI. If it shows its running out or has very little of Free memory (in green), then add more ram. If you turned off most of the filter and scanner services, you could get by with 256 Megs. Without enough free memory, they start using the swap area on the hard drive which slows things down and works the equipment harder. I have efw 2.2 running at 6 different sites, each one has from 1 to 30 users. I found that if I disable the content filter and anti-spam service, and but leave the the virus scanner and other services running (DNS, DHCP, NTP, etc) then 512 Megs of ram is perfect. By the way, its a good idea to let memtest86+ run through one or two passes to test your ram -- View this message in context: http://www.nabble.com/Services-Not-Running---tp10005572p25214370.html Sent from the efw-user mailing list archive at Nabble.com. -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] IPSEC Router behind Endian 2.2
I use the efw as a vpn router. In the Http Proxy - Bypass / Banned Sources and Destinations section, try placing the ip address of your vpn server into BOTH Bypass the transparent Proxy from Source, and the Bypass the Proxy FILTER by source IP. That would eliminate any interference from the proxy... -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] IPSEC Router behind Endian 2.2
If it requests the IPSEC connection, then you allow the port outward? Try disabling the outgoing firewall to test... -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] upgrade error 2MB on /boot
Did you solve this problem? From: Steven Sher [mailto:stev...@techtron.co.za] Sent: Wednesday, July 22, 2009 1:02 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] upgrade error 2MB on /boot I am trying to upgrade Endian 2.2RC3 to 2.2 I am getting the following error msg. error: installing package kernel-2.6.22.19-72.endian15 needs 2MB on the /boot filesystem any advice to resolve this? Thanks Steve -- Let Crystal Reports handle the reporting - Free Crystal Reports 2008 30-Day trial. Simplify your report design, integration and deployment - and focus on what you do best, core application coding. Discover what's new with Crystal Reports now. http://p.sf.net/sfu/bobj-july___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Network interfaces down with no cause
I use mostly AMD cpus for efw and this is the first I've heard of it. Was this info you found online, or something you discovered for yourself? Sorry, but I dont know who the team is that works on efw, so its always good to hear what to watch out for. It would be helpful to know which chipsets to aviod? I do know that the majority of problems Ive seen and those that have been recorded here in this forum, shows that there are certain onboard realtek nics that are the problem. -- View this message in context: http://www.nabble.com/Network-interfaces-down-with-no-cause-tp24237432p24277738.html Sent from the efw-user mailing list archive at Nabble.com. -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Network interfaces down with no cause
Theres nothing wrong with AMD processors. It's the network cards. Try Intel network cards... -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Network interfaces down with no cause
Did you make the patch cords? -Original Message- From: jeffrey steve borbon sanabria [mailto:siste...@fenusa.com.co] Sent: Saturday, June 27, 2009 4:56 PM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Network interfaces down with no cause Hi I have a straignh trouble with 1 Endian Firewall v2.2. Since 2 o 3 days ago Red and Green interfaces goes down with no reason. I have see the network log and found this: Jun 26 16:13:58 kernel: eth0 link down Jun 26 16:14:02 kernel: eth0 link up, 100Mbps, full-duplex, lpa 0x41E1 Jun 26 16:14:13 kernel: eth0 link down Jun 26 16:14:15 kernel: eth0 link up, 100Mbps, full-duplex, lpa 0x41E1 Jun 26 16:16:13 kernel: eth1 link down Jun 26 16:16:30 kernel: eth1 link up, 100Mbps, full-duplex, lpa 0x45E1 Jun 26 16:16:36 kernel: eth0 link down Jun 26 16:16:38 kernel: eth0 link up, 100Mbps, full-duplex, lpa 0x41E1 eth0 = Red eth1 = Green When I realice this I have to restart eth1 interface trought : ifconfig eth1 down and then ifconfig eth1 up. The straign thing is that isn't related to network cards because I changed it today and it continues happening. Any Idea?, it's EF bug or something? -- Ing. Jeffrey Steve Borbón Sanabria Administrador de sistemas Ferretería Nurueña http://www.fenusa.com.co Telefono: 3607899 ext 207 Celular: 320 3489575 -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user __ Information from ESET NOD32 Antivirus, version of virus signature database 4193 (20090626) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] quickbooks update errors
Ive been playing around with various settings, and found one that works for one customer. They have limited ram in the efw 2.2 firewall, so I keep the content filter disabled, running only the virus scanner with http set to transparent. Quickbooks is set to use IE's settings... If I place ip address of the quickbooks PC into both Bypass the transparent Proxy from Source, and Bypass the Proxy FILTER by source IP, it works. Of course, this means that particular PC's web traffic isnt scanned for viruses. It would be better if the HTTP virus scanner was set to not scan the intuit websites, but this doesnt seem to work... -- View this message in context: http://www.nabble.com/quickbooks-update-errors-tp10191596p24225435.html Sent from the efw-user mailing list archive at Nabble.com. -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] openvpn issue since upgrade to most recent Endian version? -- connection issue
These don't sound like efw problems. You must have a modem of some kind: dsl, cable, etc? Can you configure the modem to place the efw into a DMZ zone? Usually this is done with an ip address. Ports are being blocked somewhere... -- Are you an open source citizen? Join us for the Open Source Bridge conference! Portland, OR, June 17-19. Two days of sessions, one day of unconference: $250. Need another reason to go? 24-hour hacker lounge. Register today! http://ad.doubleclick.net/clk;215844324;13503038;v?http://opensourcebridge.org ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] openvpn issue since upgrade to most recent Endian version? -- connection issue
Your cable company gives you a static ip? Mine doesn't... -- Are you an open source citizen? Join us for the Open Source Bridge conference! Portland, OR, June 17-19. Two days of sessions, one day of unconference: $250. Need another reason to go? 24-hour hacker lounge. Register today! http://ad.doubleclick.net/clk;215844324;13503038;v?http://opensourcebridge.org ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] openvpn issue since upgrade to most recent Endian version? -- connection issue
What version did you upgrade from? Could you post the *.opvn file that you use to connect from outside? Make sure you do not post any passwords or ip addresses, of course. -- Are you an open source citizen? Join us for the Open Source Bridge conference! Portland, OR, June 17-19. Two days of sessions, one day of unconference: $250. Need another reason to go? 24-hour hacker lounge. Register today! http://ad.doubleclick.net/clk;215844324;13503038;v?http://opensourcebridge.org ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Kernel Panic
That's From: Rafael Rodrigues de Oliveira [mailto:rafa.drak...@gmail.com] Sent: Tuesday, June 02, 2009 8:21 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Kernel Panic Ok onboard nic is disable, I have two 3com nic PCI Latency Timer 32 Overclocking No Bios Version: PRG310H.86A.0028.2007.0928.1134 The message is: Code: 80 c0 39 5e 04 7e 38 .. ... . . . . . .(and more numbers) EIP: [c056cb44] intel_i915_configure+0xe4/110 SS:ESP 0068:c20eaeac Kernel Panic - not syncing: Attempted to kill init!!! thanks again! 2009/6/1 compdoc comp...@hotrodpc.com Yes, please. What are the lines on the screen just before you see the bad EIP Value and kernel panic? In the bios, what is the setting of the PCI Latency Timer? What is the bios version? Are you overclocking? I am seeing issues with the realtek 8111 causing kernel panics and only running when having the built in nic disabled. From: Rafael Rodrigues de Oliveira [mailto:rafa.drak...@gmail.com] Sent: Monday, June 01, 2009 11:46 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Kernel Panic Motherboard: Intel DG31PR Hard Drive: Seagate Barracuda 160GB (SATA) DVD ROM: Sony Nec Optiarc (IDE) You need more information? thanks -- OpenSolaris 2009.06 is a cutting edge operating system for enterprises looking to deploy the next generation of Solaris that includes the latest innovations from Sun and the OpenSource community. Download a copy and enjoy capabilities such as Networking, Storage and Virtualization. Go to: http://p.sf.net/sfu/opensolaris-get ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Rafael Rodrigues de Oliveira Jesus Christ's Blood Purifies Us of All Sin Linux #357492 / FreeBSD #BSD051202 http://google.vtnc.org/ -- OpenSolaris 2009.06 is a cutting edge operating system for enterprises looking to deploy the next generation of Solaris that includes the latest innovations from Sun and the OpenSource community. Download a copy and enjoy capabilities such as Networking, Storage and Virtualization. Go to: http://p.sf.net/sfu/opensolaris-get___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Kernel Panic
There is a newer bios out for that board, if Im looking at the right board on their website. But I need more info from the boot screen. Please type a few lines above the Code: 80 c0 39 5e 04 7e 38 part. Im trying to see what the OS is doing just before the panic... What amount of ram is the onboard video card set to share? The EIP: [] intel_i915_configure errors Im seeing on google are mainly related to the onboard video... From: Rafael Rodrigues de Oliveira [mailto:rafa.drak...@gmail.com] Sent: Tuesday, June 02, 2009 8:21 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Kernel Panic Ok onboard nic is disable, I have two 3com nic PCI Latency Timer 32 Overclocking No Bios Version: PRG310H.86A.0028.2007.0928.1134 The message is: Code: 80 c0 39 5e 04 7e 38 .. ... . . . . . .(and more numbers) EIP: [c056cb44] intel_i915_configure+0xe4/110 SS:ESP 0068:c20eaeac Kernel Panic - not syncing: Attempted to kill init!!! thanks again! -- OpenSolaris 2009.06 is a cutting edge operating system for enterprises looking to deploy the next generation of Solaris that includes the latest innovations from Sun and the OpenSource community. Download a copy and enjoy capabilities such as Networking, Storage and Virtualization. Go to: http://p.sf.net/sfu/opensolaris-get___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Kernel Panic
I didn't want the code, I wanted the lines above the code, but no matter. The panic is because of the onboard video. That's good to know... They sell 1x (single lane) PCI-e video cards for a few dollars here in the US. You might even be able to buy an old 2 or 4 meg PCI video card on ebay for a couple of dollars... Still, you might try upgrading the bios, since its free and not too hard to do. See if that helps... -- OpenSolaris 2009.06 is a cutting edge operating system for enterprises looking to deploy the next generation of Solaris that includes the latest innovations from Sun and the OpenSource community. Download a copy and enjoy capabilities such as Networking, Storage and Virtualization. Go to: http://p.sf.net/sfu/opensolaris-get___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Kernel Panic
What type of drive are you installing it on? What kind of drive controller? From: Rafael Rodrigues de Oliveira [mailto:rafa.drak...@gmail.com] Sent: Monday, June 01, 2009 11:14 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Kernel Panic anyone has more suggestions? please thanks []'s -- Register Now for Creativity and Technology (CaT), June 3rd, NYC. CaT is a gathering of tech-side developers brand creativity professionals. Meet the minds behind Google Creative Lab, Visual Complexity, Processing, iPhoneDevCamp as they present alongside digital heavyweights like Barbarian Group, R/GA, Big Spaceship. http://p.sf.net/sfu/creativitycat-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Kernel Panic
Yes, please. What are the lines on the screen just before you see the bad EIP Value and kernel panic? In the bios, what is the setting of the PCI Latency Timer? What is the bios version? Are you overclocking? I am seeing issues with the realtek 8111 causing kernel panics and only running when having the built in nic disabled. From: Rafael Rodrigues de Oliveira [mailto:rafa.drak...@gmail.com] Sent: Monday, June 01, 2009 11:46 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Kernel Panic Motherboard: Intel DG31PR Hard Drive: Seagate Barracuda 160GB (SATA) DVD ROM: Sony Nec Optiarc (IDE) You need more information? thanks -- OpenSolaris 2009.06 is a cutting edge operating system for enterprises looking to deploy the next generation of Solaris that includes the latest innovations from Sun and the OpenSource community. Download a copy and enjoy capabilities such as Networking, Storage and Virtualization. Go to: http://p.sf.net/sfu/opensolaris-get___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Remote upgrade
You won't lose connection if you ssh directly to the efw from outside. Doesn't seem as though you have to reboot, but I always do. And 2.1.2 to 2.2 works fine, except for a problem I had with openvpn, which has a fix and is probably now fixed in the upgrade... -Original Message- From: Paul McWhinnie [mailto:e...@mcwhinnie.com] Sent: Monday, June 01, 2009 5:51 PM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Remote upgrade Hi Has anyone tried doing a remote upgrade from 2.1.2 to 2.2 final? I assume you need to reboot, but other than that do you lose the network connection at any point during the upgrade? Thanks -- OpenSolaris 2009.06 is a cutting edge operating system for enterprises looking to deploy the next generation of Solaris that includes the latest innovations from Sun and the OpenSource community. Download a copy and enjoy capabilities such as Networking, Storage and Virtualization. Go to: http://p.sf.net/sfu/opensolaris-get ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user __ Information from ESET NOD32 Antivirus, version of virus signature database 4121 (20090601) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- OpenSolaris 2009.06 is a cutting edge operating system for enterprises looking to deploy the next generation of Solaris that includes the latest innovations from Sun and the OpenSource community. Download a copy and enjoy capabilities such as Networking, Storage and Virtualization. Go to: http://p.sf.net/sfu/opensolaris-get ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] use endian as a VPN appliance behind another firewall
I don't see a problem with that setup. I would recommend using openvpn, since the only port you have to forward is 1194 udp. From: Lightningbit @ gmail.com [mailto:lightning...@gmail.com] Sent: Sunday, May 31, 2009 11:06 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] use endian as a VPN appliance behind another firewall Hi, I was wondering if I could use Endian (or any other OPENVPN server, but I'm used to Endian now) in the following situation : Roadwarrior user on hotspot or home connection --- INTERNET --- [PUBLIC IP - NETWORK FIREWALL - INTERNAL IP 192.168.53.1 ] - SUBNET 192.168.53.0 - Server 1 : 192.168.53.10 - Server 2 : 192.168.53.12 - OpenVPN : 192.168.53.90 The idea is to have remote users VPN into the openvpn server (either using ipsec, or the cert/password way), once authenticated, allow access to the rest of the 192.168.53.0 subnet The clients would use the openvpn client, or just the built in windows client in case of ipsec vpn Te network firewall is managed the provider of the wan, but we can ask to open up the required ports to forward to the openvpn server Any feedback? Thanks Olivier __ Information from ESET NOD32 Antivirus, version of virus signature database 4117 (20090530) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- Register Now for Creativity and Technology (CaT), June 3rd, NYC. CaT is a gathering of tech-side developers brand creativity professionals. Meet the minds behind Google Creative Lab, Visual Complexity, Processing, iPhoneDevCamp as they present alongside digital heavyweights like Barbarian Group, R/GA, Big Spaceship. http://p.sf.net/sfu/creativitycat-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] updating efw 2.1 or 2.1.2 to 2.2, openvpn problem
I've updated a few 2.3rc3 servers to 2.2 and this has worked flawlessly. Good job, guys. But today, I stupidly updated a few 2.1 and 2.1.2 servers to 2.2. It seemed to go perfectly, and everything works that I can see. But then I noticed one major problem... Normally, on the VPN setup page, there are these three choices in the left pane: OpenVPN serverOpenVPN client (Gw2Gw) IPsec On the 2.1 and 2.1.2 servers that were upgraded with the efw-uprade command, only these two choices appear: OpenVPN IPsec They are missing the ability to create server-to-server bridges. Also, the directory /var/efw/openvpnclients is missing, as well as some config files in /etc/openvpn. Config files for existing bridges were not created, so these bridges are no longer working. I'm going to attempt to recreate these files by hand tomorrow since this has to be up monday morning, unless you think you can fix this by then. Of course, I wont be able to add the missing 'serverOpenVPN client (Gw2Gw)' setup page. -- View this message in context: http://www.nabble.com/updating-efw-2.1-or-2.1.2-to-2.2%2C-openvpn-problem-tp23796399p23796399.html Sent from the efw-user mailing list archive at Nabble.com. -- Register Now for Creativity and Technology (CaT), June 3rd, NYC. CaT is a gathering of tech-side developers brand creativity professionals. Meet the minds behind Google Creative Lab, Visual Complexity, Processing, iPhoneDevCamp as they present alongside digital heavyweights like Barbarian Group, R/GA, Big Spaceship. http://p.sf.net/sfu/creativitycat-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] updating efw 2.1 or 2.1.2 to 2.2, openvpn problem
Excellent! Thank you. -Original Message- From: Andreas Schiller [mailto:a...@aschiller.de] Sent: Saturday, May 30, 2009 2:35 PM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] updating efw 2.1 or 2.1.2 to 2.2, openvpn problem Hi compdoc, They are missing the ability to create server-to-server bridges. Also, the directory /var/efw/openvpnclients is missing, as well as some config files in /etc/openvpn. confirmed. on shell try $ smart install efw-vpnclient this should bring back Gw2Gw-connections Greetz, Andy -- Register Now for Creativity and Technology (CaT), June 3rd, NYC. CaT is a gathering of tech-side developers brand creativity professionals. Meet the minds behind Google Creative Lab, Visual Complexity, Processing, iPhoneDevCamp as they present alongside digital heavyweights like Barbarian Group, R/GA, Big Spaceship. http://p.sf.net/sfu/creativitycat-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user __ Information from ESET NOD32 Antivirus, version of virus signature database 4117 (20090530) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- Register Now for Creativity and Technology (CaT), June 3rd, NYC. CaT is a gathering of tech-side developers brand creativity professionals. Meet the minds behind Google Creative Lab, Visual Complexity, Processing, iPhoneDevCamp as they present alongside digital heavyweights like Barbarian Group, R/GA, Big Spaceship. http://p.sf.net/sfu/creativitycat-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Kernel Panic
I would d/l and create a memtest86+ boot cd, and see if your ram can run thru one pass without errors. This lets you know there's nothing wrong with your cpu, ram, and motherboard. When I've seen this, it's been about my hard drive controller. Some things to try: Is there an AHCI option for your SATA ports? If it's enabled now, disable it. If its disabled, enable it. If you are trying to load onto a raid controller, disable it and install onto a single PATA or SATA drive to test. Disable the onboard nic(s) and add a known good nic that efw supports. Disable the onboard sound. This will free up many resources like IRQs and memory areas, but is probably not causing your crash. If you have 4 gigs of ram, reduce it to 2 gigs. Also not likely, but something you can test - disable the onboard video and use a cheap pci or pic-e vid card. If hyper-threading is enabled, disable it. And one last thing: if the bios has a Load safe/optimized defaults, try loading it... From: Rafael Rodrigues de Oliveira [mailto:rafa.drak...@gmail.com] Sent: Friday, May 29, 2009 10:34 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Kernel Panic Good afternoon, I was installing Endian Community final version on Intel DG31PR motherboard, on the start of installation appers kernel panic message EIP kernel panic - not syncing: Attempted to kill init I tried disable acpi and usb and not succeed, someone already went through this situation? already thanks regards -- Rafael Rodrigues de Oliveira Jesus Christ's Blood Purifies Us of All Sin Linux #357492 / FreeBSD #BSD051202 http://google.vtnc.org/ -- Register Now for Creativity and Technology (CaT), June 3rd, NYC. CaT is a gathering of tech-side developers brand creativity professionals. Meet the minds behind Google Creative Lab, Visual Complexity, Processing, iPhoneDevCamp as they present alongside digital heavyweights like Barbarian Group, R/GA, Big Spaceship. http://p.sf.net/sfu/creativitycat-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Kernel Panic
How much ram is in the computer? From: Rafael Rodrigues de Oliveira [mailto:rafa.drak...@gmail.com] Sent: Friday, May 29, 2009 11:49 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Kernel Panic I try disable that but unsuccessful, I test on machine Smoothwall, Slackware, OpenBSD and all works ok, I wanna use Endian Firewall, sincerely I want replace Smoothwall by Endian -- Register Now for Creativity and Technology (CaT), June 3rd, NYC. CaT is a gathering of tech-side developers brand creativity professionals. Meet the minds behind Google Creative Lab, Visual Complexity, Processing, iPhoneDevCamp as they present alongside digital heavyweights like Barbarian Group, R/GA, Big Spaceship. http://p.sf.net/sfu/creativitycat-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] ClamAV 0.95 + HAVP 0.90 for EFW 2.2[rc3]
They're saying you should also add this line to clamd.conf and clamd.conf.tmpl to activate this feature which will save cpu time: HeuristicScanPrecedence yes --heuristic-scan-precedence[=yes/no(*)] Allow heuristic match to take precedence. When enabled, if a heuristic scan (such as phishingScan) detects a possible virus/phish it will stop scan immediately. Recommended, saves CPU scan-time. When disabled, virus/phish detected by heuristic scans will be reported only at the end of a scan. If an archive contains both a heuristically detected virus/phish, and a real malware, the real malware will be reported Keep this disabled if you intend to handle *.Heuristics.* viruses differently from real malware. If a non-heuristically-detected virus (signa- ture-based) is found first, the scan is interrupted immedi- ately, regardless of this config option. -- View this message in context: http://www.nabble.com/ClamAV-0.95-%2B-HAVP-0.90-for-EFW-2.2-rc3--tp22769879p23669932.html Sent from the efw-user mailing list archive at Nabble.com. -- Register Now for Creativity and Technology (CaT), June 3rd, NYC. CaT is a gathering of tech-side developers brand creativity professionals. Meet the minds behind Google Creative Lab, Visual Complexity, Processing, iPhoneDevCamp asthey present alongside digital heavyweights like Barbarian Group, R/GA, Big Spaceship. http://www.creativitycat.com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Content filtering 2.2.rc3 doesn't work
If you don't set it to transparent, you have to manually set up the client (such as IE) to use the proxy server. That is located in: Tools Internet Options Connections tab Lan settings button. I would disable Automatically detect settings, since this slows IE down when opening. And enable Use a proxy server for you Lan Enter the address of your efw and port 8080, and enable Bypass proxy server for local addresses... Also, sometimes, I think you need to restart the proxy after making changes, but you can try it either way... -Original Message- From: forums forums [mailto:for...@computerconsultingforyou.com] Sent: Tuesday, May 12, 2009 1:43 PM To: efw-user Subject: [Efw-user] Content filtering 2.2.rc3 doesn't work Hi, I'm trying to configure Community 2.2.rc3 Content Filtering and wow, it seems way overcomplicated!! Anyhow, I can't get it to work properly, Its enabled, etc. I tried a test web page to blacklist like msn.com and it doesn't block access to it. I set HTTP Proxy to local authentication and setup two different groups and users and still, can browse the web just fine, no blockage of websites or asking for username and password. When you authenticate locally, does it mean authenticating with the Endian router or some other workstation or server? Anybody have any write-up or instructions to make content filtering work properly in the latest release and how to exclude users etc. Thanks -- The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user __ Information from ESET NOD32 Antivirus, version of virus signature database 4068 (20090512) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Content filtering 2.2.rc3 doesn't work
Transparent just means it intercepts all clients as if you had entered the proxy info into IE, etc. Once you've added www.google.com and the rest to the white list, return to the first tab named Configuration, and click the Save button at the bottom. A green colored box should appear near the top of the page with the Apply button. Click that, and it should apply your settings. At least that's what I have to do to get it working. Also, you might click the Clear Cache button to clean it out... -- The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Content filtering 2.2.rc3 doesn't work
By the way, if you manually enter the proxy settings into IE, there is an Advanced button there where you can also enter websites that IE will bypass the proxy server for... -- The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian use %97 of ram
That's seems to be for version 2.2 rc1. I have efw 2.2 rc3, and have not seen memory issues on lightly or heavily used systems. There were issues for version 2.1.2... From: Alexsander Loula [mailto:alex.lo...@gmail.com] Sent: Friday, May 08, 2009 8:24 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Endian use %97 of ram This release has a memory leak issue related with Squid and HAVP: http://bugs.endian.it/view.php?id=981 -- The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian use %97 of ram
Where are you seeing this memory usage? On the Status-system graphs page? From: Tunç YURDAKUL [mailto:tyurda...@gmx.net] Sent: Thursday, May 07, 2009 6:51 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Endian use %97 of ram Hi, Nobody have any idea ? Tunç -- The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian use %97 of ram
That’s actually normal. When it starts using swap memory, which is disk based, then you start having issues. However, I believe the amount reserved for swap is usually equal to the amount of ram. Did you install efw and then latter added more ram? On the Status-system graphs page, you should see nice even colored lines with the blue Used Memory line not going up too high. From: Tunç YURDAKUL [mailto:tyurda...@gmx.net] Sent: Thursday, May 07, 2009 7:52 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Endian use %97 of ram In status \ system status section \ memory Memory Size Used Free Percentage RAM 2074516 2021724 52792 Image removed by sender. 97% -/+ buffers/cache 1006536 1067980 Image removed by sender. 48% Swap 530136 64 530072 Image removed by sender. 0% shared 0 buffers 180376 cached 834812 image001.jpg-- The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Connecting to remote offices via VPN
I have a customer with several remote offices connected to a main office. I'm pretty sure the remote offices can reach the other remote offices using pings, etc., but they dont normally do that. Just running the Windows openvpn GUI on the remote workstations to connect them to the main lan/server might work, but not having a fixed ip is an issue for daily connections, since its always changing. VPNs simulate a 10baseT or 10meg connection. That shouldnt be hard to route through your connection. -Original Message- From: Kenneth Lundström [mailto:kenneth.lundst...@nudata.fi] Sent: Wednesday, May 06, 2009 7:06 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Connecting to remote offices via VPN Hello everybody, I have an client with two offices, i main office they got an booking system on an Apache and PHP server. Now they would like to use the same system in the remote office. The system is not made to withstand open internet connection, no password no nothing like that. Both places have standard ADSL lines, so no fixed public IP-address. But we have own servers with fixed public IP-addresses. We are running Endian firewall and it would be no problem getting them too running Endian firewall. Would it be possible to have two VPN tunnels to our Endian and does IP trafic from main office find it´s way to remote office and vice verse. Will it be very slow? Or does anyone have any other solution? Kenneth -- The NEW KODAK i700 Series Scanners deliver under ANY circumstances! Your production scanning environment may not be a perfect world - but thanks to Kodak, there's a perfect scanner to get the job done! With the NEW KODAK i700 Series Scanner you'll get full speed at 300 dpi even with all image processing features enabled. http://p.sf.net/sfu/kodak-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] RES: Any word on the EFW 2.3?
Efw has a few problems that way - it’s a nice firewall, but it seems few ppl are working on it, it runs on an OS that doesn’t support upstream updates, and it's even difficult to know what OS it actually is in terms of wanting to install drivers or utils. Guess that might make it more secure, but it seems difficult for some ppl. If it runs as-is on your hardware, and has everything you need, it’s great... -Original Message- From: Bill Pye [mailto:bill@phoenix-systems.co.uk] Sent: Friday, May 01, 2009 9:13 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] RES: Any word on the EFW 2.3? - Marco Aurélio maure...@spin.com.br wrote: And is there any estimate date for the launch of version 2.3? I guess that might depend on how long it takes to fix the last 31% of bugs listed on the roadmap: http://bugs.endian.it/roadmap_page.php which (to my intrained eye) seems to slowly keep growing. Perhaps somone from Endian could chime in with a more definite timeline for completion of that release. Regards Bill -- Register Now Save for Velocity, the Web Performance Operations Conference from O'Reilly Media. Velocity features a full day of expert-led, hands-on workshops and two days of sessions from industry leaders in dedicated Performance Operations tracks. Use code vel09scf and Save an extra 15% before 5/3. http://p.sf.net/sfu/velocityconf ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] POP SMTP
I use this: TCP Uplink ANY : 110(POP3) 192.168.186.2 : 110(POP3) TCP Uplink ANY : 443(HTTPS) 192.168.186.2 : 443(HTTPS) TCP Uplink ANY : 25 192.168.186.2 : 25(SMTP) TCP Uplink ANY : 80(HTTP) 192.168.186.2 : 80(HTTP) Etc.. So yours looks fine. It does sound like your ISP might be blocking mail ports, unless 192.168.1.2 is not the internal mail server... It's easy to test with telnet. If you telnet from outside your lan to your public IP address on port 25, the mail server should give you a response. Like this: telnet xxx.yyy.zzz.xxx 25 They rarely block port 110, but it can happen. Because of spam and open relays, your mail server might be requiring authentication for pop accounts. If your ISP does block port 25, you can get around it by paying a small amount for a service that sends to another port, like 2525, etc. -- Stay on top of everything new and different, both inside and around Java (TM) technology - register by April 22, and save $200 on the JavaOne (SM) conference, June 2-5, 2009, San Francisco. 300 plus technical and hands-on sessions. Register today. Use priority code J9JMT32. http://p.sf.net/sfu/p ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Block file by name in SMTP
According to: http://www.virscan.org/report/bf59c287a83acd32583578a14de2d3 f2.html Not many scanners are finding that one. Can Kaspersky be run on efw? From: lane.ben...@southernpiping.com [mailto:lane.ben...@southernpiping.com] Sent: Thursday, April 09, 2009 8:57 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Block file by name in SMTP I am running EFW2.1.2 and ClamAV is not stopping the latest virus threat. It is coming in as an email file attachment named detailspdf.zip. Is there a way to block file attachments by name? Thanks, Lane Beneke Wilson, NC, USA P.S.: Mike Tremaine; Thanks for keeping our ClamAV installs up to date. Your work is appreciated. -- This SF.net email is sponsored by: High Quality Requirements in a Collaborative Environment. Download a free trial of Rational Requirements Composer Now! http://p.sf.net/sfu/www-ibm-com___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Total Crash
Edit the template file at /etc/clamav/clamd.conf.tmpl to disable DetectBrokenExecutables. Change it to no, I think, or comment out the line with a # since it is disabled by default. I don't remember the command to expand the template, but I think rebooting will cause it to expand to replace /etc/clamav/clamd.conf Don't edit /etc/clamav/clamd.conf directly because the next time the template is loaded, it will replace clamd.conf, but do look at /etc/clamav/clamd.conf to see if your changes show up... Hope this helps... From: Johann Scheiber [mailto:jo.schei...@sitco.at] Sent: Thursday, April 02, 2009 10:48 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Total Crash Thank you for your reply, but I believe that the broken executable detection is definitely turned ON by default in EFW cause those entries can be found in the log on every installation from the beginning on clamd[3821]: Detection of broken executables enabled I have never changed anything except turning the ClamAV service on. The size of the hard drive is 20GB witch really should be enough. On another EFW I installed a 10GB large one and this EFW works fine since 6 month without causing any troubles. The usage of /dev/hda4 is 4% in this case, but the same services are running there with identical log configuration ! By the way, is there any possibility to clear the log manually? __ Information from ESET NOD32 Antivirus, version of virus signature database 3984 (20090402) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Snort CPU load limits download speed
I maintain about 6 efw firewalls, and they like ram. For smaller numbers of users, I give it 768 Megs, and for about 30 users with heavy usage, including day-long openvpn sessions, (but limited to a 7 Mbit link) it wants at least 1 Gig. Ram is often used to cache lookups, etc., so the more the better. What sort of disk I/O is happening when it's at full speed? The largest efw firewall (the one with 30 users) runs in a xenserver vm. It has 1 Gig ram, and two cpus assigned. Snort is enabled on Red. The cpu usage shows both cpus tend to be used evenly, and can peak to 80% usage, but normally runs 10% or less throughout the day. Disk I/O isn't measurable. I have to say, pumping 30mbps through a port, while scanning the data for virus, spam, intrusion, etc. and keeping the natting straight, all while providing services like DHCP, etc, is no small feat for any router. That's a lot of data and a lot of scanning. I don't think 2 cpus are a lot for a router, and in your case, I'd think that's the minimum. Also, it needs to buffer all that data somewhere while its being scanned. Give it a lot more ram. There is also the possibility it's not liking the vm's hardware. Network cards in particular, but not necessarily limited to that. Even the way you've set up vmware's networking might not be optimal. If you want to be successful at making a VM like this work, you need to get to know the OS running natively on a decent cpu. Got a spare pc you can play with? It's the only way to judge any OS, and to judge if there's a problem with the vm. I find that OSes run faster on xenserver... From: Bart Heinsius [mailto:bheins...@gmail.com] Sent: Monday, March 30, 2009 2:20 PM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Snort CPU load limits download speed Snort is almost maxing out your processor here. You aren't swapping, but there is not enough processor time left to go much higher. You said this is a virtual machine. Can you add more processor and see if it improves? Add more processor? Like assigning 2 processors to Endian? Sounds like a lot for a router. I would think that one of the four cores in my Dell R200 Quad Core X3230, 2.66GHz/2x4M 1066FSB is enough for a 30mbps link. Or are there parameters that prevent the VM from getting the max CPU? -Bart __ Information from ESET NOD32 Antivirus, version of virus signature database 3975 (20090330) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Openvpn
The cert file is downloaded from the vpn page of efw. Did you install openvpn gui for windows? http://openvpn.se/ The cert files are placed in: C:\Program Files\OpenVPN\config I have a sample config file if you need one... -Original Message- From: NightLord [mailto:steph...@parenton.com] Sent: Saturday, March 28, 2009 1:05 PM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Openvpn Hello everyone, I'm about to connect 2 laptop to a network protected by efw... I want the 2 pcs to be outside as if they were inside... So i try to set a VPN up. The 2 laptops are running XP, and so i'm installing open VPN on both of these laptop.. So far so good.. But i have a small problem with the cert files... I don't know yet where efw cert files are.. In the mean time, i have created cert files with openVPN and want to put them on efw so the two laptop can connect using these cert files... Can somebody point me the right place to put them and if needed the changes to make on efw... (i've created 2 open vpn client on efw) Best regards Stephane -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user __ Information from ESET NOD32 Antivirus, version of virus signature database 3970 (20090327) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Snort CPU load limits download speed
That's a very small amount of ram. Is it using any swap? I have snort enabled on a couple of efw servers and I never hear from it - no warnings, info, etc. Maybe I'm not important enough to hack... -Original Message- From: Bart Heinsius [mailto:bheins...@gmail.com] Sent: Friday, March 27, 2009 3:25 PM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Snort CPU load limits download speed Hi, I have a 30mbps symmetric internet link attached to the red interface of my Endian 2.2RC3 firewall running in a Xen VM on a Dell R200 Quad Core X3230, 2.66GHz/2x4M 1066FSB. The Endian VM has 1 processor and 128MB memory allocated. I noticed that my download speed is around 20mbps max instead of the 30mbps the link provides. On the Endian machine I see that snort takes nearly 100% when downloading. When I disable snort the CPU load is back to 0 and my download speed is back to 30mbps. Is it normal for snort to use that much CPU? Is there a way to reduce the amount of CPU snort uses? Do I need snort? -Bart -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] problem connecting green and red
Completely stable. There's only unstable hardware configurations... From: Jamal ht [mailto:jamala...@hotmail.fr] Sent: Sunday, March 22, 2009 12:23 AM To: endian firewall Subject: Re: [Efw-user] problem connecting green and red Hi shaun, and thank you for your quick reply. the configuration that i made work perfect the next day i dont khow why :) my green interface, blue interface. And saved my configuration and start to work with the web proxy. that one too worked perfect. After a moment my blue interface could not connect to the internet, and my green interface can still work. And later i try to deselect on the firewall the outgoing http green to red. And i can still connect to the internet :(. My question is endian firewall community rc3 STABLE ??? enough to play with -- Apps built with the Adobe(R) Flex(R) framework and Flex Builder(TM) are powering Web 2.0 with engaging, cross-platform capabilities. Quickly and easily build your RIAs with Flex Builder, the Eclipse(TM)based development software that enables intelligent coding and step-through debugging. Download the free 60 day trial. http://p.sf.net/sfu/www-adobe-com___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] BOOT PROBLEM
Sounds like a problem with nero. Try http://www.imgburn.com/ -Original Message- From: apm1 [mailto:angelp...@gmail.com] Sent: Wednesday, March 18, 2009 7:53 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] BOOT PROBLEM Hi, I'm trying to install 2.2 rc3 version, I downloaded this iso, EFW-COMMUNITY-2.2-rc3-200810071617 and burned it using Nero; when I boot the cd from different PCs or vmware server, it starts an old caldera dr-dos OS, and I'm not able to install it. What I have done wrong? Regards -- Apps built with the Adobe(R) Flex(R) framework and Flex Builder(TM) are powering Web 2.0 with engaging, cross-platform capabilities. Quickly and easily build your RIAs with Flex Builder, the Eclipse(TM)based development software that enables intelligent coding and step-through debugging. Download the free 60 day trial. http://p.sf.net/sfu/www-adobe-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Gw2Gw OpenVPN disconnects overnight
What sort of broadband connection is it? -Original Message- From: Scott Silva [mailto:ssi...@sgvwater.com] Sent: Friday, March 06, 2009 4:22 PM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Gw2Gw OpenVPN disconnects overnight on 3-6-2009 7:14 AM defrag4 spake the following: I have a Gw2Gw Endian VPN setup; both sides are Endian. They are setup using OpenVPN. This works great throughout the day but when I come back in the morning I have to kill the connection and reconnect it via the firewall. Once it reconnects it works fine. In the mornning, it shows the connection as active when I check it but I cannot access anything on the other side of the FW. Anyone have any ideas? -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Gw2Gw OpenVPN disconnects overnight
Do both sides of the vpn use static ip addresses? What versions of efw? I have several efw firewalls linked in a hub arrangement, server to server, with all servers being located either across the state, or out of state. They rarely lose connection, but since most are running v2.1.2 and using the virus scanners, they do tend to require rebooting every few weeks. v2.2rc3 doesn't have that problem. Unless you've installed some additional software or service that wasn't included with efw, it might be best to start looking at your red connections first - routers, modems, or anything that's in between the two ewf boxes. -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] A question regarding QOS
Never actually needed qos, but I can throw you some ideas. All traffic has to pass through whatever device is going to prioritize the packets. This can be either a network switch with qos, or a router with qos. Efw doesn't include it, so I wouldn't suggest installing something unless you know how and have the time. You can run efw along with another router like m0n0wall, (or any of the many distros out there) and run them both at the same time on your xenserver. You'd set the m0n0wall's lan port as the lan's gateway for your users. Then connect the m0n0wall's wan port to your efw's lan port, and then connect the ewf's wan port to your broadband. It would require setting up things, like forwarding ports inward from the efw to the m0n0wall, then forward the ports in the m0n0wall to the final IP address. broadband modem-efw-m0n0wall-lan If it's a really busy connection, you might need a dual-core or more host. __ Information from ESET NOD32 Antivirus, version of virus signature database 3897 (20090228) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] A question regarding QOS
I keep hearing the name nagios. Can you tell me if it's able to tell if your voip trunk is registered? __ Information from ESET NOD32 Antivirus, version of virus signature database 3895 (20090227) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian Firewall under VMWare Server
Well, wireless usually means theres a WAP/router involved. If it is a router, are you trying to use the same subnet for your wireless clients that you use on the wired lan? They have to be in a different subnet range, or the router cant route... __ Information from ESET NOD32 Antivirus, version of virus signature database 3886 (20090224) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian Community Firewall 2.2 RC3 Installation Crashed
How much ram and how large is the drive partition? -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian Community Firewall 2.2 RC3 Installation Crashed
Im fairly sure that efw is a 32-bit OS, and 4 gigs is the maximum amount it can address. (in theory) In reality, they actually use somewhat less than 4, unless they use a technology like PAE which some people think is too slow. This is true of both Windows and Linux-based 32-bit OSes. So I'm guessing that the amount of ram isn’t an issue. One thorn in the side of linux is its lack of driver support for the many, many brands of raid controllers out there. Some manufacturers provide drivers, but if they aren’t included in the OS you're trying to use, you'd have to compile the drivers, etc. and I personally don’t feel it's worth the effort. I buy raid controllers like 3ware that are known to work with many versions of *nix because the drivers are included. In any case, this is probably also not the issue, because the worse that should happen is that it won't see your controller or the drives attached to it. That shouldn’t make it crash... Sometimes, a bios setting is wrong, causing the OS to load into non-standard areas of memory, or to have problems with ACPI or AHCI, shadow settings for the video card, and things of that nature. If you or someone has been in the bios playing with settings, you might try loading fail-safe defaults, if that’s an option, or just loading the plain defaults. And if that doesn't help, that leaves you with the other main components of your server – the 4 cores and the motherboard's chipset. If thats the cause of the crash, it looks like efw isn’t going to run on that hardware natively. However, there is one option you might consider. Citrix makes a product called xenserver, which is a virtual machine OS, something like VMware. They have a free-to-use version, with only community support, and pay—for versions with full support. I use the free version, and run efw as a client. Xenserver has a windows-based client that allows you to backup/copy a client OS and also import them. So you could have more than one copy of efw running, along with ant other OS you'd like. I have Windows 2003 Server 64bit running quite happily alongside linux OSes on the same hardware. To install efw, you'd give efw 1 or 2 cpus, and say 2 gigs of ram, and xenserver gives efw standard-looking hardware to run on. If you had two copies of efw running, you could do things like setting the gateway of some of your users to one copy, and some of the users to the other, so that you'd have less of a bottleneck to the internet. -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian Community Firewall 2.2 RC3 Installation Crashed
Well, I think it’s the choice of hardware that’s making things difficult. For most linux firewalls out there, you'd be better off with a single or dual core cpu. Some older computer that you may have sitting on some shelf unused.. -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian Firewall Backup
One interesting thing I found on google: errors -- the total number of receiver or transmitter errors. dropped -- the total number of packets dropped due to lack of resources. overrun -- the total number of receiver overruns resulting in dropped packets. As a rule, if the interface is overrun, it means serious problems in the kernel or that your machine is too slow for this interface. What CPU are you running, and how much ram? __ Information from ESET NOD32 Antivirus, version of virus signature database 3823 (20090203) __ The message was checked by ESET NOD32 Antivirus. http://www.eset.com -- Create and Deploy Rich Internet Apps outside the browser with Adobe(R)AIR(TM) software. With Adobe AIR, Ajax developers can use existing skills and code to build responsive, highly engaging applications that combine the power of local resources and data with the reach of the web. Download the Adobe AIR SDK and Ajax docs to start building applications today-http://p.sf.net/sfu/adobe-com ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] EFW 2.1.2 and updates from stellarcore.net
Those updates delete a few critical files, as has been posted. Buy they are easily replaced -Original Message- From: Mike Knisely [mailto:mknis...@mtbt.com] Sent: Monday, January 26, 2009 9:15 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] EFW 2.1.2 and updates from stellarcore.net Oh... forgot to add the --force as there is a dependency error on libclamav.so.3 as noted in a previous thread. I built out a lab Endian box and am testing it now, I'll report back. Mike Knisely From: Mike Knisely [mailto:mknis...@mtbt.com] Sent: Mon 1/26/2009 09:34 To: efw-user@lists.sourceforge.net Subject: [Efw-user] EFW 2.1.2 and updates from stellarcore.net I am looking to update some older Endians with .RPMs from stellarcoare.net; however, I'm unsure as to which should be applied. I see that there are both source and binary for many of the packages and understand the difference there. I also see that there are multiple versions of some packages, and assume that I should simply apply the most recent version. My questions are these: Is there a place that documents the expected result of each of these updates? Are there any known issues with any of these updates? Do there need to be any pre or post install tasks completed when upgrading to these packages? From what I'm seeing I'm thinking of installing as follows: rpm -Uvh \ http://www.stellarcore.net/downloads/efw2-updates/clamav-0.9 4.2-0.endian5.i386.rpm \ http://www.stellarcore.net/downloads/efw2-updates/clamav-db- 0.94.2-0.endian5.i386.rpm \ http://www.stellarcore.net/downloads/efw2-updates/dnsmasq-2. 45-0.endian0.i386.rpm \ http://www.stellarcore.net/downloads/efw2-updates/efw-clamav -1.1.19-0.endian0.i386.rpm \ http://www.stellarcore.net/downloads/efw2-updates/havp-0.89- 1.endian8.i386.rpm \ http://www.stellarcore.net/downloads/efw2-updates/perl-Mail- Clamav-0.20-1.endian0.i386.rpm \ http://www.stellarcore.net/downloads/efw2-updates/perl-Mail- Clamav-extras-0.20-1.endian0.i386.rpm \ http://www.stellarcore.net/downloads/efw2-updates/perl-Mail- SpamAssassin-3.1.9-1.endian4.i386.rpm \ http://www.stellarcore.net/downloads/efw2-updates/perl-Mail- SpamAssassin-extras-3.1.9-1.endian4.i386.rpm \ http://www.stellarcore.net/downloads/efw2-updates/tzdata-200 7c-1.el4.noarch.rpm \ Admittedly though, mostly I'm just blinding grabbing the most recent version listed and running with it. Thoughts? Mike Knisely -- This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Endian FW VPN to Fortigate 100A
You have two different subnets on each end? What traffic should be going other the VPN? Can you ping ip addresses on each end? -Original Message- From: Simon [mailto:grem...@gmail.com] Sent: Wednesday, January 21, 2009 6:47 PM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Endian FW VPN to Fortigate 100A Hi There, We have a Endian 2.2rc3 running on our VDSL connection here in our office. We are using Endain for ppp. We also have a Fortigate 100A firewall at our remote datacentre.. i have been trying to setup a VPN from our office to our data centre and have got to the point where both firewalls report the VPN as up and active... but there is no traffic going over the VPN. My question is, is there any thing else on the Endian end that you need to enable? Like a routing rule or something like that? Thanks Simon -- This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Clamav 0.94 + Havp .89 and an blacklist updater
Although it works well and is stable, installing these updates on 2.1x deletes critical files which have to be restored, so it's likely to do the same with 2.2x. 2.2x is running fine without the update, so I think I'll wait until the final release... -Original Message- From: wharfratjoe [mailto:wharfrat...@gmail.com] Sent: Tuesday, January 13, 2009 10:15 PM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Clamav 0.94 + Havp .89 and an blacklist updater Has anyone tried running this on 2.2RC3 yet? Mike Tremaine wrote: Thought I'd mention that ClamAV 0.94 and Havp 0.89 [which is built against 0.94] are posted for Endian 2.0 Also I post a bash script that can be used to update they blacklists http://www.stellarcore.net/downloads/efw2-development/update _blacklists.sh The idea is to copy this to say /etc/cron.weekly or some other location say /usr/local/sbin/ and then make your own cron entry for it. You might want to edit /var/efw/langs/en/efw-dansguardian.pl to add the new categories that show up [specifically Suspect will not print out in the web interface] Mine looks like this now # black lists 'ads' = 'Ads', 'aggressive' = 'Aggressive', 'audio-video' = 'Audio and Video', 'custom' = 'Custom', 'drugs' = 'Drugs', 'gambling' = 'Gambling', 'hacking' = 'Cracking', 'mail' = 'Mail', 'porn' = 'Pornography', 'proxy' = 'Anonymous Web Proxies', 'redirector' = 'Redirector', 'spyware' = 'Spyware', 'suspect' = 'Suspect', 'violence' = 'Violence', 'warez' = 'Warez', The first time you should run this by hand and expect a long delay as the URLs and Domains get processed. Do this sometime when you firewall is not busy. Enjoy... -Mike - This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100url=/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- View this message in context: http://www.nabble.com/Clamav-0.94-%2B-Havp-.89-and-an-blackl ist-updater-tp19595482p21450232.html Sent from the efw-user mailing list archive at Nabble.com. -- This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] compared bandwidth efw/ipcop
I have a few efw firewalls installed for customers - versions 2.1 and 2.2, and they all test at full bandwidth of the customer's DSL lines. Up to 6 MB/s in one case. -Original Message- From: NightLord [mailto:steph...@parenton.com] Sent: Sunday, January 11, 2009 3:46 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] compared bandwidth efw/ipcop NightLord a écrit : Hi everyone... This i s a bit strange... last time i was questionning about snort, and today i'm questionning myself about efw... I've re-installed ipcop on my hardware and found that i was able to download at full speed (ie 1.6 MB - 12.Mbits/s)... I switched bak to ipcop 2.2rc3 and found my max download were back to /_200/250 MB_/ (kB to be read !)... What can be so greedy for efw so he cannot go for more than this download rate... what can set a limit ? the conf is the same on the 2 installation (no proxy, no out firewalling, 1 orange and a couple of port forwarding) I came back to ipcop and here we are, again 1.6 MB compared to 250 KB (and not MB as written above... my mistake ! i wish i have a 250 MB band :-) ) The hardware has not changed, the services are the same i don't need content filtering so i think i'll stick to ipcop for the moment, but i'd like to understand what's the problem (if problem it is) Stéphane -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Check out the new SourceForge.net Marketplace. It is the best place to buy or sell services for just about anything Open Source. http://p.sf.net/sfu/Xq1LFB ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Snort between 90 and 99%
Ive sometimes seen this happen with other services when the firewall can't locate an update server. If you log onto the efw box with a terminal, can you ping outside locations like www.google.com? -- ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Relaying email from outside source
By forwarding 25 to the internal mail server, you bypass the proxy for incoming mail, so, and it's my understanding, the SMTP proxy is only for outgoing mail. This would filter your internal mail server and any internal clients trying to retrieve mail from some external mail server. I just never felt that was needed in any situations for me or my customers... -Original Message- From: Ifan Jones [mailto:i...@anheddau.co.uk] Sent: Tuesday, December 16, 2008 5:52 AM To: efw-user@lists.sourceforge.net Subject: Re: [Efw-user] Relaying email from outside source Hi compdoc Yes I do have the SMTP proxy enabled, hence why i tested by converting another port to port 25 internally. IMAP is also up and running on the internal mailserver I'll go through all those settings on the advnaced menu and eliminate! Regards Ifan compdoc wrote: Im guessing you have the SMTP proxy enabled? I don't use it myself. On the SMTP page, theres an Advanced tab with many options like reject non-FQDN sender, and reject non-FQDN recipient. Do you think those settings are interfering? Also in Advanced settings, theres an IMAP server for SMTP authentication. Is that what you enabled? IMAP works differently... I recently switched a customer from SBS 2000 to SBS 2003, and external clients had to enable Secure password authentication (SPA) to get it working for them. This is controlled by options on the SMTP virtual server in Exchange. Before that, passwords were sent in clear text. I have port 2525 forwarded to port 25 on the server for external users, only because I have a linux box filtering spam and viruses for the Exchange server. 2525 is needed to bypass the spam box, because port 25 is forwarded to it, which then sends processed mail to port 25 on the exchange box. I other words, the spam box sits in front of the Exchange box. Otherwise, I'd only need to forward port 25 to the server, because everything happens on that port. -Original Message- From: Ifan Jones [mailto:i...@anheddau.co.uk] Sent: Monday, December 15, 2008 5:53 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Relaying email from outside source Hi All My setup INTERNET - EFW/MODEM - GREEN - LANSWITCH I would like external users to relay email through - authentication has been enabled on th einternal mailserver. I have tried this two ways Method 1. Proxy - SMTP - Advanced settings Enabled this feature and inserted my internal mailserver's IP address, whilst trying to send from outside, you can see the login ok on the internal mailserver, but when it gets to EFW - I get SASL Authentication failed Method 2. Reading up on what others have done - I chose a random port, let's say 12525, and forwarded it to the internal mailserver, now on the external clients - I setup this port for the SMTP server and switched on authentication - delivering email to internal addresses works juts fine, but on outbound, I get a relay access denied on EFW - any tips? Regards Ifan -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://20 09.visitmix.com/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://20 09.visitmix.com/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Ifan Jones ICT Coordinator / Cyd-lynnydd GCT Ffôn / Telephone - 01248 675 910 Ffacs / Fax - 01248 670 280 E-Bost / E-Mail - i...@anheddau.co.uk Wefán / Website - www.anheddau.co.uk Cyfeiriad post / Postal address - Anheddau Cyf, 6 Llys Britannia, Parc menai, Bangor, Gwynedd, LL57 4BN Mae Anheddau Cyf yn gwmni Cyfyngedig dan Warant rhif 2380151 ac yn Elusen Gofrestredig rhif 701697 Anheddau Cyf. is a Company Limited by Guarantee number 2380151 and a Registered Charity number 701697 Nodyn Diarddel / Disclaimer - http://www.anheddau.co.uk/disclaimer.htm -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http
Re: [Efw-user] Relaying email from outside source
Im guessing you have the SMTP proxy enabled? I don't use it myself. On the SMTP page, theres an Advanced tab with many options like reject non-FQDN sender, and reject non-FQDN recipient. Do you think those settings are interfering? Also in Advanced settings, theres an IMAP server for SMTP authentication. Is that what you enabled? IMAP works differently... I recently switched a customer from SBS 2000 to SBS 2003, and external clients had to enable Secure password authentication (SPA) to get it working for them. This is controlled by options on the SMTP virtual server in Exchange. Before that, passwords were sent in clear text. I have port 2525 forwarded to port 25 on the server for external users, only because I have a linux box filtering spam and viruses for the Exchange server. 2525 is needed to bypass the spam box, because port 25 is forwarded to it, which then sends processed mail to port 25 on the exchange box. I other words, the spam box sits in front of the Exchange box. Otherwise, I'd only need to forward port 25 to the server, because everything happens on that port. -Original Message- From: Ifan Jones [mailto:i...@anheddau.co.uk] Sent: Monday, December 15, 2008 5:53 AM To: efw-user@lists.sourceforge.net Subject: [Efw-user] Relaying email from outside source Hi All My setup INTERNET - EFW/MODEM - GREEN - LANSWITCH I would like external users to relay email through - authentication has been enabled on th einternal mailserver. I have tried this two ways Method 1. Proxy - SMTP - Advanced settings Enabled this feature and inserted my internal mailserver's IP address, whilst trying to send from outside, you can see the login ok on the internal mailserver, but when it gets to EFW - I get SASL Authentication failed Method 2. Reading up on what others have done - I chose a random port, let's say 12525, and forwarded it to the internal mailserver, now on the external clients - I setup this port for the SMTP server and switched on authentication - delivering email to internal addresses works juts fine, but on outbound, I get a relay access denied on EFW - any tips? Regards Ifan -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://20 09.visitmix.com/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
