ClearFoundation Site Syndication http://www.clearfoundation.com/ Tue, 21 May 2013 11:04:52 -0400 ClearFoundation 1.5.11 http://www.clearfoundation.com/components/com_kunena/template/clearfoundation/images/english/emoticons/rss.gif http://www.clearfoundation.com/ ClearFoundation Site Syndication http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53088/#53088 Dear all, after successfull instalation, i can not update & upgrade my Clear OS (5.2). it is because there is a proxy campus which darming up my connection. This is the basic diagram of network topologi : Internet - proxy campus - lan network - my COS 5.2 - client please help me to solve my problems, in order to i can update & upgrade my server. Thanks, Tue, 21 May 2013 09:12:43 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,27/func,view/id,53087/#53087 Dear all, i have problem with update and upgrade my ClearOS server (version 5.2). There is a proxy campus which darming up my connection. This is the basic diagram : Internet -- Proxy Campus -- Lan Network -- My Server COS 5.2 -- client. after successfull instalaytion, i never update & upgrade this OS because always failed. i have try to use bypass proxy with export http like bypass proxy in Centos Linux Server, but failed too. Please help me. Thanks Tue, 21 May 2013 09:01:35 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53076/#53086 Hello to all. Thanks very much to all who have added input regarding the Clearos 6.4.0 updates. I would like to know if it is possible to bypass the update process in the wizard. Does one need to run the wizard? John you wrote that the Clearos Server needs to be registered before doing updates. How do you do that if you first need to install the updates in the wizard? There seems to be a process in the wizard that one cannot bypass or alter. You need to follow process in the wizard else you cannot process to the next step. Sorry to ask the question but I am now here. Many Thanks Shaun. Tue, 21 May 2013 08:29:05 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53076/#53085 Ok Nick, That did the trick. I will remember this one for future probs with the updates. thanks Tue, 21 May 2013 07:54:14 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52780/limit,10/limitstart,20/#53084 Hi Nick, Let me tell you again that this is not the way I hook up the COS box ... this is how it is setup now ... without the COS box. The COS box is not connected to the LAN ... it has just 1 test client. Before I connect the COS box to the LAN, I change the ip address of the Fritzbox to 192.168.178.1 The weirdest thing just happened. The COS box suddenly works like it should and hands out ip addresses. [code]C:\>ipconfig Windows IP Configuration Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : cpugateway.poweredbyclear.com IP Address. . . . . . . . . . . . : 192.168.1.106 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.1.1 Ethernet adapter Wireless Network Connection: Media State . . . . . . . . . . . : Media disconnected Ethernet adapter TeamViewer VPN: Media State . . . . . . . . . . . : Media disconnected[/code] I suspect that this is just temporary and that it will fail again after a while. Not sure what to do right now, because I was just about to reinstall it. Greetings, John EDIT: I just hooked up the COS box as gateway and everything seems to work like it should. The problem now is that I don't know the cause of the problem so it could return anytime. Tue, 21 May 2013 07:42:34 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53076/#53083 If you are coming from 6.3 and/or have installed extra packages, you may need to do a:[code]yum update --enablerepo=clearos-core[/code]You will potentially have this problem recurring in the future as the minute you need an update from clearos-core, automatic yum updates will break. You will no longer get any updates and get no warning of it. You can enable clearos-core permanently but this carries other risks. Unfortunately the devs appear to be happy with this arrangement. Tue, 21 May 2013 07:25:22 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52780/limit,10/limitstart,20/#53082 Your FritzBox is handing out addresses in the same subnet as ClearOS. This means your eth0 set up is wrong because it is not in the same subnet as the FritzBox LAN. Your eth1 set up is also wrong as it must be in a different subnet to the FritzBox and keep clear of that subnet anyway. Your WAP is not running a DHCP server. It is obtaining an address by DHCP i.e. a DHCP client. If you intend to administer it at all I sugged you give it a fixed IP address outside the ClearOS DHCP range but in its subnet or leave it on DHCP but bind its IP to its MAC address in the ClearOS DHCP server. Tue, 21 May 2013 07:21:07 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52780/limit,10/limitstart,10/#53081 Hi Nick, The box does not properly give out ip addresses, so my next step is to backup the data and do a clean install. Before I will do this I collected the following info: DHCP Server (eth1) http://www.clearfoundation.com/images/fbfiles/images/DHCP.jpg IP Settings (eth1) http://www.clearfoundation.com/images/fbfiles/images/IP.jpg /etc/resolve-peerdns.conf: [code]; generated by /sbin/dhclient-script search fritz.box gateway.lan nameserver 194.109.104.104 nameserver 194.109.9.99 nameserver 194.109.6.66[/code] [code]# arping -I eth1 192.168.1.1 ARPING 192.168.1.1 from 192.168.1.1 eth1 Sent 635 probes (635 broadcast(s)) Received 0 response(s) You have new mail in /var/spool/mail/root[/code] WAP: http://www.clearfoundation.com/images/fbfiles/images/WAP.jpg Fritz box: http://www.clearfoundation.com/images/fbfiles/images/Fritz_box.jpg I don't know if this will solve the problem, but since 6.4 SP1 came out I am willing to give it a try. Greetings, John Tue, 21 May 2013 05:54:20 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53076/#53080 Sorry for stealing your topic, but i have problems with updating to 6.4 too. i got the following error after: yum clean all yum update (last part of the total screen) ---> Package theme-default.noarch 0:6.4.26-1.v6 will be an update ---> Package util-linux-ng.x86_64 0:2.17.2-12.9.el6 will be updated ---> Package util-linux-ng.x86_64 0:2.17.2-12.9.el6_4.3 will be an update --> Finished Dependency Resolution --> Running transaction check ---> Package kernel.x86_64 0:2.6.32-279.19.1.v6 will be erased ---> Package perl.x86_64 4:5.10.1-130.el6_4 will be updated --> Processing Dependency: perl = 4:5.10.1-130.el6_4 for package: perl-CGI-3.51-130.el6_4.x86_64 --> Finished Dependency Resolution Error: Package: perl-CGI-3.51-130.el6_4.x86_64 (@clearos-contribs) Requires: perl = 4:5.10.1-130.el6_4 Removing: 4:perl-5.10.1-130.el6_4.x86_64 (@clearos-core) perl = 4:5.10.1-130.el6_4 Updated By: 4:perl-5.10.1-131.el6_4.x86_64 (clearos-updates) perl = 4:5.10.1-131.el6_4 You could try using --skip-broken to work around the problem You could try running: rpm -Va --nofiles --nodigest Can you tell me whats going wrong or how to resolve this? I can do the yum update --skip-broken; but i think thats not a solution regards Jan-Martin Tue, 21 May 2013 04:19:33 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,27/func,view/id,53041/#53079 Wayne Osborn wrote: Hi JP. You need to setup a time of day ACL and select this rule in your access control rule. Examples shown in the documentation here: http://www.clearcenter.com/support/documentation/user_guide/web_access_control I hope this helps. Let us know how you go. Hi Wayne, I have looked at that supporting documentation before (and while it is not exactly the same) it is similar in functionality. The problem I have, which Guillermo has already alluded to, is that the time of day filter applied either allows or denies a group access to the internet. What we require is access be be allowed all the time, but for a filter to be applied during work hours. It sounds quite simple in theory, but after days of frustration I am still not able to get it configured correctly. Have you setup yours in a similar vein? I am basically at the point where I am willing to have someone teamviewer in and show me how it is done, and I will record the process and post it on here/youtube for posterity. Tue, 21 May 2013 03:49:09 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53076/#53078 Hi Shaun, Please make sure that your box is registered before attempting to update (this will also confirm that you have a working Internet connection from the box). An alternative way to update your box is to give the following commands in PuTTY (http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html): [code]#yum clean all #yum update[/code] There could also be a temporary problem by reaching the update servers. In that case you could best try again at a later time. Greetings, John Tue, 21 May 2013 03:42:14 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53077/#53077 I have setup ClearOS 6.4.0 as a Standalone file Server, can share folders etc. Give users access to folders. Samba works well and all can see the ClearOS 6.4.0 server on the Windows network. What I do is create a network map to the folder so the user can share a folder off the ClearOS 6.4.0 Server. I have tried to create a Domain Controller with the Server but I cannot seem to connect the Windows XP and 7 desktops to the ClearOS 6.4.0 Server. I have read the blogs about changing the registry in Windows 7 so that one can access the system. I have followed the process but I still cannot access the domain. Is there any detailed process I can follow? the documentation on this is very watered down I cannot understand this. As a beginner on ClearOS and not a linux person I am battling with this. Many Thanks Shaun. Tue, 21 May 2013 03:21:47 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53076/#53076 I have downloaded the ClearOS 6.4.0 32 bit version. All went well. Updating the system within the wizard seems to be a problem. I get the "Exception: Errors were encountered while downloading" This is the second time I have installed version 6.4.0 and the first time I had no problem like this. How do I overcome this issue as I cannot get any further with the install. Many Thanks Shaun Tue, 21 May 2013 03:13:34 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,10/func,view/id,53046/#53075 Hi Brian, great news! On both my NAS4Free servers CPU temperature monitoring worked out of the box. I have since lost drive temp readings since upgrading to a Highpoint 2720 SAS card due to pass through issues, but that is being worked on. I look forward to chatting offline with you. Wayne. Mon, 20 May 2013 22:49:49 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53032/#53074 Julien wrote: Wayne Osborn wrote: Good stuff. I was going to suggest checking your fw but though "nah, surely he has already". I dont know about upgrading from such an old version, I am new to ClearOS myself. Backup your config and install 6.4.0 then try to restore your settings. This worked for me, I installed 6.4.0 on a old drive first to test and when I liked it reinstalled to a solid state disk and restored my settings. Perhaps someone else can confirm if this will work for across versions. Thank you Wayne, are you on a commity version ? or a production or home network? Community in a home network. Mon, 20 May 2013 22:44:27 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,18/func,view/id,53022/#53073 Jopelepoop wrote: Is there another way to determin group membership in a logon script? Yes. (http://www.kixtart.org/manual/Functions/InGroup.htm) Mon, 20 May 2013 20:16:30 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,34519/limit,10/limitstart,20/#53072 Baggypants12000 wrote: I'd like to install fail2ban but the clearos-epel repo is missing gamin-python Is it missing for everyone or just me? Hmm, it would appear to be a case of fail2enablerepo=clearos-core Mon, 20 May 2013 19:15:49 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,34519/limit,10/limitstart,20/#53071 I'd like to install fail2ban but the clearos-epel repo is missing gamin-python Is it missing for everyone or just me? Mon, 20 May 2013 18:53:45 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53032/#53070 is there s a different between the 5.2 Ent and the 6.4 commity? Mon, 20 May 2013 17:26:37 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,18/func,view/id,53022/#53069 I googled earlier today and I never came across your method. There were plenty of shell scripts but also there is an IFMEMBER which you can get from M$. Search around. Also check the output of the first part of the command from the command line "net user /DOMAIN your_user_name". Mon, 20 May 2013 17:16:43 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,18/func,view/id,53022/#53068 Just the 4 lines won't work, because the mapping should be done, based on the group someone is in. If i just use the 4 lines, indeed some of the mapping is done, but for some you're asked for credentials. That's not what you want in a logon script. I've been playing some more with the flexshare set-up and this is going better, but the part where the script looks for group membership is going wrong: net user /DOMAIN %username% | find "test" if not errorlevel = 1 ( net use t: \\samba\test /persistent:no ) The first two lines are not working Oh and i thought Clearos 6.4 was using samba 4, but it isn't, it's 3.6.10. Is there another way to determin group membership in a logon script? Mon, 20 May 2013 16:23:13 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53032/#53067 It will certainly not work between 5.x and 6.x. There is no software upgrade path between the two major versions. Mon, 20 May 2013 16:03:26 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53032/#53066 Wayne Osborn wrote: Good stuff. I was going to suggest checking your fw but though "nah, surely he has already". I dont know about upgrading from such an old version, I am new to ClearOS myself. Backup your config and install 6.4.0 then try to restore your settings. This worked for me, I installed 6.4.0 on a old drive first to test and when I liked it reinstalled to a solid state disk and restored my settings. Perhaps someone else can confirm if this will work for across versions. Thank you Wayne, are you on a commity version ? or a production or home network? Mon, 20 May 2013 15:51:54 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53055/#53065 Can I ask if you burned the iso image to the CD or did you just copy the iso file onto the CD? By the way there are a few posts on the forum about how to install from a USB pen. That is how I installed it. Mon, 20 May 2013 15:35:58 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53064/#53064 I am a home user and have installed ClearOS on a puny Intel Atom PC. I only selected content filtering, access restrictions, and DHCP. But it appears clamav is also running. I unchecked the "use anti-virus" in the content filter section, but clamav is still running. Am I safe to disable the clamav startup script in rcX.d without breaking something? Or is there a better way? Also, I do not intend to look at any logs, so I want to disable those. Is there a quick way to shut down all logging? In short, I want the bare minimum to prevent access to objectionable sites. I think the Atom PC can handle this. Mon, 20 May 2013 14:46:29 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,14/func,view/id,53060/#53063 The normal solution is to relay your e-mail through your ISP's SMTP server. Does he provide either non-authenticated or authenticated access? Mon, 20 May 2013 13:50:31 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,10/func,view/id,53046/#53062 Thanks Wayne! Will have to try that. BTW - took your suggestion and fired up NAS4Free. Seeing not much difference in the settings available between it and FreeNAS I decided to check to see what would happen if I pretended that my COS 6.4 Community was Active Directory, and went to the Active Directory section, and entered my COS server and domain information. I was entirely expecting NAS4Free to do the same thing as FreeNAS and give me a bunch of errors about not being able to find the KDC, ie: May 20 10:31:47 atlas notifier: kinit: krb5_get_init_creds: unable to reach any KDC in realm RAYNOR.BIZ May 20 10:31:57 atlas ActiveDirectory: /usr/sbin/service ix-kinit status (above from FreeNAS 8.1.3pl2). However, to my surprise, it WORKED! Not believing it at all, I went back to File->Windows Networking, and immediately saw that sure enough, NAS4Free HAD joined the ClearOS domain. And more surprisingly going to the shell on both ClearOS as well as NAS4Free and doing: "net getdomainsid" and "net getlocalsid" Did return the correct information on BOTH sides! Wow! Amazing! So it looks like NAS4Free is MUCH smarter than FreeNAS, at least when it comes to integrating with ClearOS. Now that said, I haven't fully tested it nor have I setup drive shares yet, so no real test. My attempt to do a NET USE \\ATLAS\IPC$ /user:mylocal.user (ATLAS being the NAS4Free box) failed, it wouldn't authenticate. But as of now, I haven't played with it enough to know if its just my lack of some setup. In fact, I haven't configured LDAP authentication so perhaps that is the issue (not sure how all this works when one is authenticating with both LDAP and CIFS) - so I'll try that - though was expecting not to have to configure LDAP except for local shell usage, but I might not understand fully how LDAP works with Samba in COS. Will try that and see what happens. But that said, this has already gotten me MUCH farther along than I could ever get in the FreeNAS web interface (yes, got a bit farther with some hacks in the shell). So I suspect good things from NAS4Free. That said, I really hate the NAS4Free interface as compared to FreeNAS (latter is MUCH nicer), and appears to be less functionality in many areas (no plugins, etc). But some of the other things I liked were that NAS4Free immediately showed system temperature - which I believe you have to manually setup lmsensors on FreeNAS. So thanks for encouraging me to try. If all goes well, I might just jump on the NAS4Free boat for this. Was looking for something easy without a lot of modification, and perhaps this might get me there. BTW - if you have some time, would love to continue this thread offline. I can PM you my email address. Dodn't want to clog up this forum with off topic info. That said, if I get NAS4Free to work to my satisfaction with ClearOS, I'll start another topic and post my configuration as reference to others. Mon, 20 May 2013 13:47:05 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53055/#53061 Hi Naveen, The only thing I can think of is to make sure that the BIOS is up-2-date and otherwise to reset it to default factory values. But that would not explain why it would not boot on different machines ... How to boot version 6 from USB is mentioned in this post (http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,40/func,view/id,44556/#44556). The only thing left would be to try the 32b version. Good luck, John Mon, 20 May 2013 13:42:58 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,14/func,view/id,53060/#53060 Hello: I have not found any solution to this problem, any suggestion to solve it??? We generally do not accept email from dynamic IP's as they are typically used to deliver unauthenticated SMTP e-mail to an Internet mail server. http://www.spamhaus.org maintains lists of dynamic and residential IP addresses. Regards. Mon, 20 May 2013 13:27:58 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,27/func,view/id,53041/#53059 I have tried in that way, but the problem is that blocks the whole internet access outside the period allowed. I really could like to know if it is possible to just allow the whole internet access during lunch time. Mon, 20 May 2013 12:57:45 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,52444/#53058 Hi, I understand that this app is still Beta, but is there going to be documentation on how to mount Multiple Hard drives and/or network drives? or was this kinda explained already and I need to get a better handle on how drives are mounted and that /storage will work all devices (sigh). Mon, 20 May 2013 12:04:31 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53055/#53057 Yes its a 64bit (atom 525) I can boot from centos cd, fedora ubuntu cd's , Only having problem with clear os 64 bit ( haven't tried 32bit version) Mon, 20 May 2013 11:34:00 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53055/#53056 I assume your system is 64 bit, otherwise you would receive an error. Are you able to boot from other CD bootable media? Mon, 20 May 2013 11:29:30 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,53055/#53055 Hello All, I downloaded the latest community version 6.4.0 iso and burned it on cd ( multiple cd's also download multiple times, md5 verified) I cannot boot from 64 bit iso my machine skips cd and moves on to next boot device, also tried creating bootable linux usb just to see, didn't work, tried on different machines all of them fail, is there anything wrong or am I missing something ? Please help thank you Mon, 20 May 2013 10:58:58 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,51719/limit,10/limitstart,30/#53054 So let me add my 2 cents to the Samba 4 + LDAP in Community edition. At first I didn't see a need for this. However, I've recently seen a LOT of products that previously would integrate with Samba 3, either no longer supporting the old style domain authentication, or having major bugs in this support. Thus it seems like they're only supporting AD style authentication. Even many open source things such as FreeNAS (confirmed with 8.3.1), NAS4Free (reportedly), and even Ubuntu is a bit more trouble than it should be to join a Samba 3 domain in many cases. And of course Windows itself (without making registry changes). So I think I'll have to throw myself behind hoping that some level of Samba 4 + LDAP integration is in the Community edition. Frankly, from the direction of other products, I see Community as now being too difficult for the non super technical user to use when it comes time to integrate with other home use products like FreeNAS or even bought off the shelf NAS boxes. Understand keeping some things for the paid versions, but this one is beginning to seem like fairly basic functionality that should be in all versions. (also note that Zentyal does support AD in the "Free" version - not that I personally plan to move to Zentyal (looked at it, some things I liked, some things I didn't, but didn't seem as stable as COS)) And BTW - regarding Community edition... From my perspective having a strong free "Community edition" does indeed spur sales of the paid versions. While I can't justify ClearOS Professional for my home use, I support several non profits (pro bono) in my spare time and am trying to get funding for them to purchase Professional across multiple sites (they have 47, but my guess is we'll probably start out with 3-5). Were it not for the Community version and using it on a limited basis both at home as well as for some stovepiped installations in these non profits, we probably never would have looked at COS, and went straight to Windows. Mon, 20 May 2013 09:42:40 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,10/func,view/id,53046/#53053 Hi Brian, no I am not running a domain as my system is a simple 3 user home network so I have not tried either. I manage shares access by IP. I should probably change however my work laptop in already connected to the work domain. KISS. I personally did not have great success with jumbo frames as not all cards in my network supported it. AIO in samba makes a huge difference to throughput, in fact I was the one that requested it be added to FreeNAS before the FreeNAS/ NAS4Free split a while back. I get around 450Mbps cifs read/writes with standard MTU and Gb lan. Enabling ZFS prefetch helps (double negative!). Tuning the ARC and kernel memory also help. In NAS4Free with 8BM RAM I have found the following ZFS kernel tunes to work the best. Have tried tuning these? From my kernel loader.conf [code]# ZFS kernel tune vm.kmem_size="6656M" vfs.zfs.arc_min="5120M" vfs.zfs.arc_max="5120M" vfs.zfs.prefetch_disable="0" vfs.zfs.txg.timeout="5" vfs.zfs.vdev.max_pending="10" vfs.zfs.vdev.min_pending="4" vfs.zfs.write_limit_override="1048576000" vfs.zfs.no_write_throttle="0" [/code] Mon, 20 May 2013 09:40:58 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,18/func,view/id,53022/#53052 In the interest of simplicity, why even bother with the test? If you just use the 4 x net use lines then it will work for domain users and just fail for others. Mon, 20 May 2013 09:31:54 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,10/func,view/id,53046/#53051 Hi Wayne, thanks for the reply. Yes, I'm booting from an SD card actually, but essentially the same thing. I may go ahead and try NAS4Free instead. Appears that there are several documented bugs with FreeNAS around CIFS (some of the workarounds led me to thinking I had the LDAP/CIFS issue licked, until a reboot). I don't actually have the FreeNAS in "production" yet, have been toying with it for a couple of months. Thought it should take around an hour or two to get up and running, but due to all the CIFS/LDAP issues, can't ever get it "just right". I'm currently running 4 x 3TB WD Red drives with RAIDZ1. Though since I understand that in this configuration 5 drives is better, and NewEgg has the best price I've seen yet on these drives through today, I might go ahead and purchase the 5th. No data on the drives yet (other than from some test copies). Performance gets MUCH better when turning on Jumbo Frames on FreeNAS, and the switches of course. Major difference. Back to COS integration - have you tried this at all either with FreeNAS or NAS4Free? Regarding Samba authentication level - what are you referring to here? The "Authentication Model" is set to "Local User" as supposedly this doesn't matter if you're using AD or LDAP authentication. I have had to go in and change the smb.conf file to force Domain authentication (or actually you can simply put in the "Auxiliary parameters" section in CIFS config - since these are put in smb.conf after the defaults, they'll override them, even if conflicting things are in the file. Regarding LDAP Password Encryption, I've set this to "exop" which seems to be what ClearOS expects (this part seems to work, ie: getent passwd works fine from FreeNAS, showing everyone in the COS directory). I can also login via SSH to FreeNAS with users in the COS LDAP directory. Its just some of the CIFS stuff is weird. I'll keep playing with it and post a How To if I get it working reliably. This stuff shouldn't be so hard... :-) Unfortunately I never got a response to my queries on the FreeNAS forum a while back, so I decided to try here (I would imagine this is a common configuration people try - COS with FreeNAS). I'll try posting there again as well. Thanks! Mon, 20 May 2013 09:15:09 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,18/func,view/id,53022/#53050 Jopelepoop wrote: @Nick What should happen, when running this command? net user /DOMAIN %username% | find "data" Because when i run it from the prompt, there's no output nor a error message. It should not return anything visible. It returns an errorlevel which is tested for in the next part of your script. You could try temporarily changing your script to:[code]net user /DOMAIN %username% | find "data" if not errorlevel = 1 ( net use m: \\dc02\something1 /persistent:no net use s: \\dc02\data /persistent:no net use o: \\dc02\something2 /persistent:no net use t: \\dc02\something3 /persistent:no echo "mapping attempted" pause )[/code]This should break your script to see any error mesages and if the block was even attempted. If you have a valid user and the block is not attempted then your first line is not working as expected. You could inspect the result of "net user /DOMAIN %username%" but force the user name manually and see what you are getting back. If the cammand does not find the string "data" anywhere then then you have to get that bit working first. Mon, 20 May 2013 08:44:32 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,18/func,view/id,53022/#53049 @Nick What should happen, when running this command? net user /DOMAIN %username% | find "data" Because when i run it from the prompt, there's no output nor a error message. @Wayne When i run this on the new box (the one from post one) i maps fine, i get a new drive letter. When i do this in the vlan, i just set-up, it ask me for a password and then i get a system error 1219. Saying something about mulitple connections etc.... are not allowed. I dunno why it ask me for credentials, because i can logon to the domain, with my user. I think samba doesn't recognize the user..?? Very strange this. Mon, 20 May 2013 08:29:54 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,10/func,view/id,53046/#53048 Hi Brian, I was going to suggest trying NAS4Free instead but it,only supports AD and LDAP also, but it could worth a trial. I assume your USB key booting? Its not a lot of effort to make a NAS4Free usb key, import your ZFS pool and create a few users for testing. Drop your FreeNAS usb key back in and your back. A work around would be to script your hand tweaks and run as a post-init script. I can confirm that ZFS does not suffer the write hole issue and it is an awesome filesystem/volume manager/RAID platform. I am running 6 x 1TB drives in dual parity RAIDZ2 for many years on one NAS, 7 x 750GB drives in single parity RAIDZ1 on another. Saved my ass many times... My RAIDZ2 array gets around 300MB/s read and write. BTW what samba authentication level are you using in FreeNAS? Mon, 20 May 2013 08:11:15 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,18/func,view/id,53022/#53047 What if you type one of the mount lines in A DOS box, do you see any errors? Does the drive connect? If the drive connects ok then as per Nick's post above. Mon, 20 May 2013 08:00:54 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,10/func,view/id,53046/#53046 Anyone been able to get FreeNAS 8.3.1 to successfully authenticate against COS 6.4? I did see some of the earlier posts here on this, but looks like noone ever fully got it to work (and apparently I got a bit farther along myself). Looks like FreeNAS only directly supports ActiveDirectory and LDAP now. However, setting up LDAP and configuring CIFS doesn't really work completely (ie: can't join the domain from the web interface). I can go to the shell and force it to join the COS domain, and then basic share level authenication "works", but file authentication still does not. With some heartache, I can manage to get even the file authentication to work (more from the shell), but upon reboot of the box, it doesn't work until I manually redo this configuration. I'd be happy to post what I've done so far, but am hoping that someone else has had more success. Appears this is a bug in FreeNAS (that has not been addressed in a while apparently), though would believe with AD support on COS all would most likely work (after all, others are using FreeNAS with AD). I'd really like to finally get my NAS up and running on FreeNAS, though am currently considering just moving the drives to my WIndows Server 2012 box (uggh). COS really isn't an option as I want more than just basic RAID 5 (Windows Server Storage Spaces partially solves RAID 5 write hole, ZFS in FreeNAS supposedly completely does). Any help anyone can provide would be greatly appreciated. Mon, 20 May 2013 07:56:46 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,27/func,view/id,53041/#53045 Hi JP. You need to setup a time of day ACL and select this rule in your access control rule. Examples shown in the documentation here: http://www.clearcenter.com/support/documentation/user_guide/web_access_control I hope this helps. Let us know how you go. Mon, 20 May 2013 07:55:59 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53032/#53044 Good stuff. I was going to suggest checking your fw but though "nah, surely he has already". I dont know about upgrading from such an old version, I am new to ClearOS myself. Backup your config and install 6.4.0 then try to restore your settings. This worked for me, I installed 6.4.0 on a old drive first to test and when I liked it reinstalled to a solid state disk and restored my settings. Perhaps someone else can confirm if this will work for across versions. Mon, 20 May 2013 07:45:52 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,18/func,view/id,53022/#53043 Have you checked the net user /DOMAIN %username% | find "data" command is working with your new installation? Mon, 20 May 2013 07:29:02 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,18/func,view/id,53022/#53042 Hi, An update on my problem. I had some spare time and decided to do to a fresh install of 6.4 with a win7 client in vlan. I succesfully joined the domain, logon script runs, i get my home folder (U: drive), but no other drive. Seems there's an issue with samba 4 in CC??? Howto proper set-up drive mapping though a logon script in cc 6.4, can someone point me in the right direction please? And why is there so little to configure for this through the CC webgui? If not configurable why implement samba?? I don't want to use flexshares, but i tried, but also cannot get them mapped to drive letters on the clients. On previous version i could tweak some through webmin, but in 6.4, you cannot find samba in webmin. So i have to do everything manually in the files. Does anyone have a clue? Thnx in advance, Johan Mon, 20 May 2013 06:07:40 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,27/func,view/id,53041/#53041 Hi There, I was hoping someone could be of assistance on a web access control/content filter query I have. I have created a group which should only be able to access facebook during lunch and tea times called SCHEDULEDACCESS. Then in the content Filter I have created a group policy called FILTERED which blocks facebook. My question is, how do I allow the group SCHEDULEDACCESS to access facebook during lunch times? As far as I am aware, the ACL in Web Access Control can only ALLOW/DENY web access, rather than control the FILTER which is applied. Where am I going wrong my implementation of what I would like to achieve? (Users being able to browse anything during lunch, but have the Filter apply to them during office hours?) Regards, JP Mon, 20 May 2013 02:00:25 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,80/#53040 I wonder if the compile has failed. The file you listed is massively larger than the original ClearOS one. Do you have a link to the source? Sun, 19 May 2013 17:09:40 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,80/#53039 insmod gives this error: [root@server ~]# insmod mcs7830.ko insmod: can't read 'mcs7830.ko': No such file or directory uname -r gives the following: 2.6.32-358.6.1.v6.x86_64 Sun, 19 May 2013 15:57:45 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53032/#53038 Dear Wayne, i managed to figure it out, the issue is my internal firewall blocks the eth0 and eth1 go out, its up now, however is it possible to update to 6.4 from the command ? i tried yum update and it comes back with errors, Sun, 19 May 2013 13:08:20 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53032/#53037 Can you ping internet hosts from ClearOS? Sun, 19 May 2013 12:38:27 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53032/#53036 Wayne Osborn wrote: Do you have the ClearOS eth0 config set with a gateway of 192.168.2.254 ? Dear Wayne, yes the eth0 is configured as the next : IP: 192.168.2.100 Subnet : 255.255.255.0 Gateway : 192.168.2.254 thank you Sun, 19 May 2013 11:47:00 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53032/#53035 Do you have the ClearOS eth0 config set with a gateway of 192.168.2.254 ? Sun, 19 May 2013 10:35:39 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,17/func,view/id,52973/#53034 Oké thank you all that worked all together. Frist set The rights en then The owner to apache: apache Sun, 19 May 2013 09:26:14 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,38/func,view/id,53033/#53033 I am using 6.4.0 Community 32 bit. I have experiencing regular problems with the network visualiser report after its been running for a few hours. In all cases I also have the network bandwidth report running in another browser tab, not sure if its related but worth mentioning. My browser is Chrome on Android 4.1.2. Screen capture attached. http://www.clearfoundation.com/images/fbfiles/images/1368970882871.jpg Sun, 19 May 2013 09:26:01 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53032/#53032 i am trying to setup clearos 5.2 EN in Gateway Mode, i have 2 Nics, one is defined as LAN, with static IP. the other is defined as external as well static, Internet -- ISP Router- ClearOS5.2-- Vmware Machines Internet IP 225.333.22.2 ISP Router : 192.168.2.254 ClearOS 5.2 Eth0 = 192.168.2.100 ClearOS 5.2 eth 1= 192.168.3.1 i've configured a Vmware with the ClearOS Lan as getway, i can ping the firewall, i can connect to the firewall with putty and to the webinterface, i can ping the external IP of the ClearOS 192.168.2.100, i can't ping the ISP router from the VM, i can't ping the internet from the vm, what i am doing wrrong! thank you Sun, 19 May 2013 09:13:51 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,21/func,view/id,53004/#53031 Can I suggest the OpenVPN Support Forum (https://forums.openvpn.net/) is more likely to be able to answer your question than here? Sun, 19 May 2013 07:27:05 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,80/#53030 Now I'm getting puzzled. Does "insmod mcs7830.ko" work? Also what is the output of "uname -r"? Sun, 19 May 2013 05:30:57 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,80/#53029 -rw-r--r-- 1 root root 468860 May 14 15:37 /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.ko -rw-r--r-- 1 root root 181 May 14 15:37 /home/downloads/MCS783x_Linux_driver_v1.11/.mcs7830.ko.cmd -rw-r--r-- 1 root root 468860 May 14 15:37 /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.ko.unsigned -rw-r--r-- 1 root root 349 May 14 15:37 /home/downloads/MCS783x_Linux_driver_v1.11/.mcs7830.ko.unsigned.cmd -rwxr--r--. 1 root root 19904 Mar 14 14:09 /lib/modules/2.6.32-358.2.1.v6.x86_64/kernel/drivers et/usb/mcs7830.ko -rwxr--r-- 1 root root 468860 May 19 00:01 /lib/modules/2.6.32-358.6.1.v6.x86_64/kernel/drivers et/usb/mcs7830.ko [root@server images]# Sun, 19 May 2013 03:55:19 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,80/#53028 I'm not worried about the rmmod. It just means the module was not loaded. The insmod is odd. what is the output of:[code]ls -l `locate mcs7830.ko`[/code]Note I have used "backticks" in the command and not single quotes. It is easiest to copy and paste the line. Sun, 19 May 2013 03:53:47 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,80/#53027 I get an error when I do rmmod and insmod [root@server usb]# ifdown eth1 [root@server usb]# rmmod mcs7830 ERROR: Module mcs7830 does not exist in /proc/modules [root@server usb]# depmod -a [root@server usb]# insmod mcs7830 insmod: can't read 'mcs7830': No such file or directory [root@server usb]# ls asix.ko cdc_ether.ko dm9601.ko int51x1.ko mcs7830.ko.bk plusb.ko smsc95xx.ko catc.ko cdc-phonet.ko gl620a.ko kaweth.ko net1080.ko rndis_host.ko usbnet.ko cdc_eem.ko cdc_subset.ko hso.ko mcs7830.ko pegasus.ko rtl8150.ko zaurus.ko [root@server usb]# insmod mcs7830 insmod: can't read 'mcs7830': No such file or directory Sun, 19 May 2013 02:03:36 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,51719/limit,10/limitstart,20/#53026 I don't think it's an issue for Samba4 to only be available in the Professional edition, but it should be included in the most basic Pro version. As for the person who said Samba 4 Directory is not needed for home users.... you obviously don't include the geeks :) I have 2 DC's at home myself - Windows, and I want these over to Samba 4 soon as I can. maybe when the home version of ClearOS comes out it could be an option also, Roaming Profiles / Folder Redirection (User State Virtualisation) is very handy for anyone with multiple PC's at home. Sat, 18 May 2013 23:44:37 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,51824/#53025 So how do you get the Samba 4 option in ClearOS Professional? Sat, 18 May 2013 23:34:00 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,52502/limit,10/limitstart,10/#53024 Thanks Nick. Didn't know that one as well, but that makes sense. I'm having some OpenVPN (and PPTP) issues right now which I didn't have in 5.2, so I'll go back and look at this for my debugging. Sat, 18 May 2013 17:13:05 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,52502/limit,10/limitstart,10/#53023 Thanks Peter! Let me know when you have another version you want me to test. Would be happy to do so. Brian Sat, 18 May 2013 17:11:28 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,18/func,view/id,53022/#53022 Hi, I have a strange situation, i'm in the middle of migrating CC5.2 to 6.4. I have a CC5.2 box running as an SBS, meaning mail, file, web server etc... And it's functioning as a Domain Controller. Several pc's running Win 7 have joined this domain. Now i've set-up a new 6.4 server aside, which should take over all functionality. I have everything up and running on this box without any problem. I have a test system which i joined first to the original domain then remove it and joined the new domain. File share are set-up the same and should be mapped as drives through a logon script. But for some reaseon they wont' be mapped in the script. If i browse the network is can see the share on the server and connect to them. Also i can manually map the drives, but they won't come up throught the script. Example: This is a part of the smb.conf: [data] comment = Data path = /prive/data read only = No browseable = Yes available = Yes guest ok = No directory mask = 775 create mask = 775 valid users = @"%D\data" This is the part of the logon script: net user /DOMAIN %username% | find "data" if not errorlevel = 1 ( net use m: \\dc02\something1 /persistent:no net use s: \\dc02\data /persistent:no net use o: \\dc02\something2 /persistent:no net use t: \\dc02\something3 /persistent:no ) Yes the script is running at startup/login, and the rights are all the same. Sat, 18 May 2013 15:59:36 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,40/func,view/id,53010/#53021 i managed to fix this , for people with the same problem, make sure when you are configuring Clearos as Gateway that your VM or Physique machine has 2 NICs Sat, 18 May 2013 15:52:43 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52645/#53020 Added OpenSUSE 12.3 installer by doing the following: Download OpenSUSE 12.3 Network Installer (212Mb) (http://software.opensuse.org/123/en) Add the following configuration to "pxelinux.cfg/default" or in my case "pxelinux.cfg/os" (replace "#" with the corresponding number): [code]LABEL # MENU LABEL ^#. OpenSUSE 12.3 Installer (13/03/2013) KERNEL opensuse/32b/12.3/boot/i386/loader/linux APPEND initrd=opensuse/32b/12.3/boot/i386/loader/initrd splash=silent showopts root=/dev/ram0 load_ramdisk=1 ramdisk_size=4096 init=linuxrc[/code] I receive the following error message, before continuing to the manual setup: http://www.clearfoundation.com/images/fbfiles/images/opensuse.jpg When I try to finish the setup, the following error message shows: http://www.clearfoundation.com/images/fbfiles/images/opensuse2.jpg Please advice, John Sat, 18 May 2013 12:12:12 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,21/func,view/id,53004/#53019 Seeing as many off the shelf consumer routers have the ability to do exactly what I'm trying to do, I can't believe no one has any ideas.... Sat, 18 May 2013 11:51:20 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,40/func,view/id,53018/#53018 Hey, The addition of the Dropbox App in ClearOS 6 has been great - well done. Has anyone got Selective Sync working? http://www.dropboxwiki.com/Using_Dropbox_CLI#EXCLUDE (http://www.dropboxwiki.com/Using_Dropbox_CLI#EXCLUDE) I have been playing around with the documentation at http://www.dropboxwiki.com/Text_Based_Linux_Install (http://www.dropboxwiki.com/Text_Based_Linux_Install) but it seems that the app implements the Dropbox cli differently to the official Dropbox CLI. Any thoughts? Sat, 18 May 2013 07:06:22 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,80/#53017 So it looks like this module is not compatible. It is the same as I've just got. I suspect you will need your compiled one. Do you have a /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.ko file? If so try copying the /lib/modules/2.6.32-358.6.1.v6.x86_64/kernel/drivers et/usb/mcs7830.ko one to somewhere safe then copying your new one over it. Then reboot or do a:[code]ifdown eth1 rmmod mcs7830 depmod -a insmod mcs7830 ifup eth1[/code] Sat, 18 May 2013 07:04:20 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,27/func,view/id,51401/#53016 In case others get caught out .. the web docs location has changed in the latest version, it would now be /usr/clearos/framework/htdocs Being a newbie to clearos it took me aged to figure that out! Sat, 18 May 2013 06:15:29 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,21/func,view/id,53009/#53015 They are probably both trying to use the same port. You probably can't do anything about ibVPN (a flavour of OpenVPN), so you'll have to change OpenVPN's port. You'll find the port (1194) in /etc/openvpn/clients.conf. Change it to something else, like 1195. You will also need to do the same change in your client's .ovpn file and open the incoming firewall to the new port in ClearOS for udp. Sat, 18 May 2013 03:28:08 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53005/#53014 Thanks Nick. I fought with this for quite a while. Should have asked. Fri, 17 May 2013 23:31:33 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,80/#53013 ok that gives me the following: ' [root@server ~]# modinfo mcs7830 filename: /lib/modules/2.6.32-358.6.1.v6.x86_64/kernel/drivers et/usb/mcs7830.ko license: GPL description: USB to network adapter MCS7830) srcversion: D23BAADAE98D0BE043644EF alias: usb:v0DF6p0021d*dc*dsc*dp*ic*isc*ip* alias: usb:v9710p7730d*dc*dsc*dp*ic*isc*ip* alias: usb:v9710p7830d*dc*dsc*dp*ic*isc*ip* depends: usbnet,mii vermagic: 2.6.32-358.6.1.v6.x86_64 SMP mod_unload modversions I have also noticed that the nic is set to be the external interface, but it drops the internet after only like 5-10 seconds or so, and I have to do a service network restart to get it back, but then its only up for another 5-10 seconds, and it keeps starting over Fri, 17 May 2013 20:44:50 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,7/func,view/id,53008/#53012 Hi Julien, Welcome to ClearOS. First of all ... before posting a question, you should start by searching this forum (and Google, but that goes without saying). Not quiet sure how to answer your question about Exchange and DC, because I don't know what you mean with it. Having a web interface/GUI (or not) should not be the only reason to change firewall. ClearOS 6.4 actually only works with a web interface. The GUI on the box is extremely limited. You can access it from a client with the following URL: [code]https://:81[/code] Another way to access your COS box would be by using WinSCP (http://winscp.net/eng/download.php#download2) & PuTTY (http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html). Make sure you open the right ports for it. Greetings, John Fri, 17 May 2013 20:43:58 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,8/func,view/id,53011/#53011 I noticed on one of my COS 6.4 systems that snort rules were being triggered but the IPs were never blocked, so I investigated snortsam. I'm getting output like so: [code] Error: [/etc/snortsam.conf: 52] Config file '/etc/snortsam.d/webconfig-whitelist.conf' not found or inaccessible! Parsing config file /etc/snortsam.d/system-autowhitelist.conf... Checking for existing state file "/var/db/snortsam.state". Found. Reading state file. Error: Could not bind socket.[/code] I tried several different systems, put them through the paces and got the same results. So I did some forum searches and found I'm not the only one with the problem, but most of the threads were with 6.2 - 6.4. In snortsam.conf, commenting out #include /etc/snortsam.d/clearcenter-whitelist.conf #include /etc/snortsam.d/webconfig-whitelist.conf Still returns: [code]Found. Reading state file. Error: Could not bind socket.[/code] All my COS 6 systems are on 6.4, so all bugfixes should be in. Is there a solution that I've missed? I've gotten mixed reads on it with the reduced rulesets and Peter mentioning that a free IDS might be worse than none (http://http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,8/func,view/id,50). In any case, I'm not proud of myself that I didn't catch this till now. To the COS team, is there an official word on intrusion detection in COS 6.4? Fri, 17 May 2013 19:57:38 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,40/func,view/id,53010/#53010 Hi, i'm having a problem getting ClearOS 5.2 installed on a new VM in ESXI 5.1 Here is my setup ESXI 5.1 - Virtual machine set up as "red hat enterprise linux 5 (32 bit)" - memory 1024mb - 2 CPU's - 1 HD: 20 GB - cd rom - 2 ethernet cards: enhanced vmxnet - SCSI controler: LSI Logic trying to install it as Gateway, after i used my network cridentical it comes with the below error! "There was an error configuring your network interfaces" My Physique router is 192.168.2.254 Vsphere IP 192.168.2.10 ClearOS IP 192.168.2.100 Privat network 192.168.3.100 thank you Fri, 17 May 2013 19:25:18 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,21/func,view/id,53009/#53009 I currently have my clearos box set up as my router/gateway with both the ibvpn and openvpn services installed. One of my servers is connected to ibvpn through clearos. This server is not accessible remotely when I am connected with an openvpn session. When ibvpn is stopped, the server becomes accessible. I don't know if this is a clearos bug or not, but it seems that the routing with both ibvpn and openvpn are kinda funky. The server is completely inaccessible btw, no pings, nothing. Fri, 17 May 2013 17:51:25 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,7/func,view/id,53008/#53008 Dear All, i am new to clearos, i Always used different firewall for years now, however they remove the gui which caused me to stop using it, to make the story short, does the free version clearos support exchange and DC? does it has web interface? thank you Fri, 17 May 2013 17:20:06 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53005/#53007 Perfect! Thanks so much. Fri, 17 May 2013 17:09:36 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53005/#53006 That won't work as you can't stop root from writing to it 'cos he can overrule anyone. The trick is to set the immutable bit "chattr +i filename". Then nothing can change it until the immutable bit is unset again. Fri, 17 May 2013 17:08:28 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,53005/#53005 I've had nic bonding up and running on the server for about 6 months, i've ran into a small issue on reboots. The server write a hardware address of one of the nice to the /etc/sysconfig etwork-scripts/ifcfg-bond0 file. this hoses the reboot as it doesn't come back online on the bonded nics, i have to attach physically to the machine. What is the best method to fix this, just perm the file to RX no write privs? Thanks Fri, 17 May 2013 16:51:21 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,21/func,view/id,53004/#53004 Hi, I'm new to Clear OS. I've been studying for my CCNA, and have been doing networking and computer work professionally for years, but by no means am I an expert in routing. I've got an intermediate level of experience using linux from a command line. I have ClearOS 6.4.0 final setup on a box as a gateway, and it;s working great. I'd like to be able to use Clear OS as an OpenVPN Client so that I can route all internet network traffic through my VPN provider (privateinternetaccess.com). It seems (to my dismay) that the graphical controls within the Clear OS web ui are aimed only at setting up an OpenVPN server (please correct me if I'm wrong). I was able to log in to a console and I was able to establish a tunnel to my provider pretty easily. The problem is that once I connect the VPN tunnel, not only are the clients not able to route traffic over the VPN, but they are unable to route traffic to the internet at all. My question is this, what is the easiest way to route all ml lan traffic through my VPN provider on my Clear OS Gateway? If this isn't a simple process is anyone familiar with a tutorial that I could use? I'll take any help I can get :) Andy Fri, 17 May 2013 16:45:35 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,38/func,view/id,53000/#53003 Somehow fixed it with rpm -e --nodeps perl-5.10.1-130.el6_4.x86_64 Fri, 17 May 2013 16:42:01 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,7/func,view/id,53002/#53002 Hi Everyone, I have a 30 day trial of ClearOS 6.4 Pro and am having an issue setting up the DMZ. I have a mail and a web/FTP/OpenFire server that I would like to sit on the DMZ. I have configured a network card in the ClearOS server for the DMZ role and given it the IP address of 66.79.254.64 subnet: 255.255.255.248 I can setup my OSX laptop (running Apache web server to test) with 66.79.254.65 255.255.255.248 and gateway of 66.79.254.64, set the DMZ firewall to pass port 80 to the laptop's IP and all is well. I can see the apache web server from any computer or phone when I put in the .254.65 IP. I can also get to and browse the internet from the OSX laptop. Disconnect my OSX laptop, connect my working Windows 2003 server also running Apache, give it the same IP that the OSX machine previously had... and... nothing. If I try to ping from the 2003 windows server back to the gateway (254.64), I get "destination specified is invalid" I can't see out to the internet from it either. I'm at a loss as to why it works perfectly with my OSX laptop, but any windows machine I connect can't see squat? I've tried with a test XP machine as well, same error. Thanks for any help or ideas! Aaron Fri, 17 May 2013 16:38:47 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,38/func,view/id,53000/#53001 yum update: rror: Package: perl-CGI-3.51-130.el6_4.x86_64 (@clearos-core) Requires: perl = 4:5.10.1-130.el6_4 Removing: 4:perl-5.10.1-130.el6_4.x86_64 (@clearos-core) perl = 4:5.10.1-130.el6_4 Updated By: 4:perl-5.10.1-131.el6_4.x86_64 (clearos-updates) perl = 4:5.10.1-131.el6_4 Fri, 17 May 2013 16:05:03 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,38/func,view/id,53000/#53000 I doesn't install the updates, it just keeps reloading the same update, yumlog says: May 17 01:19:19 Updated: clearsdn-antimalware-6.1-20130516.0912.noarch ... May 17 03:00:38 Updated: clearsdn-content-filter-6.1-20130516.0915.noarch ... That's it. Any ideas? Fri, 17 May 2013 15:55:18 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,17/func,view/id,51614/#52999 Not sure if you solved this yet. I recently found I had multiple php.ini in /etc/php5/ (not COS 6 box though) I made changes to one and got upset that I continued to get the same error until I found out that when I made the changes to the other php.ini file, everything worked. Maybe you could do a find for php.ini files and see if you have more than one. Fri, 17 May 2013 15:47:26 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52780/limit,10/limitstart,10/#52998 John wrote: So that would be proof that the cause of the problem is the COS box and not any device that runs like to be expected without the COS box. Sorry John, but that is not necessarily a correct conclusion. It could be that you had a valid network configuration, but now with the COS box in the network the configuration is no longer valid. You could possibly have had exactly the same problem inserting any other router with a DHCP server configured on a similar subnet instead of a COS box. Fri, 17 May 2013 15:38:42 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,52997/#52997 Hello Everyone I joined a company last year and in addition to my responsibilities was given the responsibility as the IT Admin. One of things we have in our office is the server with Clear OS on it. I pretty much have no clue about ClearOS apart from using its GUI which is common to most of the other programs/applications. I was the only administrator and everything seemed pretty fine until yesterday when I couldn't access my Shared Drives. I tried to log in to Clear OS but I got a message "Directory is Unavailable" I tried to look for a solution, but the only solution I could find was to access using root as username and the password set while installation, but the problem is I have no clue what the password was during installation. Everything is working fine till a few days back, I have no clue what triggered it. Can someone help this poor chap? BTW I am able to access all those shared drives through my WinSCP. Fri, 17 May 2013 14:19:20 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,17/func,view/id,52973/#52996 Hi Lex, If you access your ClearOS server via SSH you can set the owner with: [code] chown owner:group file/directory example: chown apache:allusers /var/www/html/ [/code] I'm not sure what settings you need to use. You need to google for that information. Fri, 17 May 2013 13:44:57 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,38/func,view/id,52936/#52995 Thanks for the welcome Marcel. Fri, 17 May 2013 13:41:14 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,38/func,view/id,52936/#52994 Hi Wayne Osborn, I do not now if someone already welcomed you but welcome to the Clearfoundation forums. I pinged Peter Balwin for you. I think the dev's are busy with brainstorming how to go with the forums ;) . So i'll hope he answer your post. Fri, 17 May 2013 13:28:07 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,14/func,view/id,52952/#52993 Thanks Tim, The various types are confusing to me. If I loaded community, and then zafrafa-licensed to get three free connectors, what version am I running? I don't remember hearing the phrases SBE or professional before. Thanks, Drew Tim Burgess wrote: For Zarafa community, you can use mysqldump to backup your database (instructions are on the forum). The database is stored within system-mysql which listens on port 3308, database passwords can be found at /var/clearos/system_database/. Attachments by default are stored seperate from the database in /var/lib/zarafa/ See http://www.clearcenter.com/support/documentation/clearos_guides/setting_up_backups_for_zarafa For Zarafa SBE or Professional you can use their 'brick' level mailbox backup, and backup/restore individual mailboxes as you need. Fri, 17 May 2013 13:19:17 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,24/func,view/id,52986/#52992 I can recommend the Ultimate boot cd. It helped me a few times. Fri, 17 May 2013 13:17:59 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52780/limit,10/limitstart,10/#52991 Hi Nick, The first thing I will do is to make sure that the COS box hands out proper ip addresses on a mini LAN (without Internet). In that way I won't have to disconnect the people that use the Internet at that location. If I remember it correctly I was only able to access the box while the client was setup with a static ip. So that would be proof that the cause of the problem is the COS box and not any device that runs like to be expected without the COS box. Next week I have access to that box again and if it doesn't work like it should I will do a clean install. And if that doesn't work, I will replace the whole box for another one ... and if that doesn't work ... I will simply do without COS at that location. I don't care anymore what the reason is why it suddenly failed on me ... I just want it to work like it should ... out of the box. Greetings, John Fri, 17 May 2013 13:11:19 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,24/func,view/id,52986/#52990 Hi Jeff, I can understand the frustration. The only way I know how to properly scan your hardware is with a tool disk like Hiren's (http://www.hiren.info/). I have been testing to boot some of them from PXE, but to scan your COS box you need to burn them on CD/DVD. You can find some of the tooldisks in this post (http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52645/#52645) (including the download links). I must warn you though, because I am not sure if it is possible to scan your motherboard or to test your NIC's properly. Maybe if you Google the brand of your motherboard or NIC's, they offer some sort of way to do that. Something that might also help is to make sure that the slots on your motherboard are dust free. Try not to touch the contact points with your hands, because when they heat up, the fat on your fingers might burn in and cause problems. Otherwise it might be a good idea to do a test run of COS on your other server ... if this solves the problems you have your answer. Good luck, John Fri, 17 May 2013 13:03:56 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,24/func,view/id,52986/#52989 Download the UBCD iso, burn it to a Cd/DVD and boot from it. Run memtest86+ and one of the various CPU stress tests. You may have flaky motherboard (bad capacitors), memory or PSU. These tests will reveal any such issues quickly while rulling out the OS. It is the best way I have found to test your hardware simply. http://www.ultimatebootcd.com I hope this helps Jeff. PM me if you need any assistance. Fri, 17 May 2013 13:02:56 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,38/func,view/id,52936/#52988 Do the devs read the forums? I was expecting a reply by now. The bug tracker page states to use the forum if you feel more comfortable doing so. Ill post these bugs in the tracker tomorrow if no responses. I have discovered a buffer overflow bug with the Network Visualiser report tonight also. Fri, 17 May 2013 12:57:56 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,24/func,view/id,52986/#52987 This is so unreliable that I wont even start using the user email accounts until its been running a least a month without a problem. Let me tell you this is not making friends with the wife and kids Fri, 17 May 2013 12:35:40 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,24/func,view/id,52986/#52986 Is there somewhere or some way to test all of the hardware, including the motherboard (extensively) from within COS or a different installed program? Im still getting issues of no network connectivity. Sometimes its if I reboot the machine from internal network. Sometimes if I reboot from outside the network. Sometimes it will get nutty if it gets even one update. Sometimes Ill get an NCSD (i think thats what it was) failure on detailed bootup. Pull the cord, reboot and its not there. Ive seen where sometimes the light in my switch that goes to eth0 is not lit up. I look on the network card and no light there either. I jiggle it and the light is then off and so on. Im thinking my mother board may be int failure. Ive had a lot of problems with this machine since I moved from 5.2 to 6.3 and upgraded to the static ip. Just cant figure it out. Stormed last night and knocked the power out and took down the server. I was at work. Wife booted it back up and its a no go again. Ive got a much faster Lenovo machine I can swap it with but I want to see if its just a bad piece of hardware first Anyone? Fri, 17 May 2013 12:32:14 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52780/limit,10/limitstart,10/#52985 How is the WAP configured? What is its IP address and what is its DHCP server configured to hand out (IP address range, gateway IP, subnet mask, DNS servers etc)? You should only really ever have one DHCP server on a subnet. Fri, 17 May 2013 11:03:55 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,17/func,view/id,52973/#52984 Hi Lex, What is the exact error message and did you Google it ... ?!? Just to be sure that this isn't a known issue with a ready made solution ... Greetings, John Fri, 17 May 2013 10:22:15 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52780/limit,10/limitstart,10/#52983 Hi Nick, No problem ... I am grateful for the fact that you are trying to help me to solve this problem. We do have a WAP with a build in DHCP in use, but that doesn't change the fact that this device does not create havoc on the LAN without the COS box setup as gateway. I must add that there is a successful Internet connection true the WAP. Actually ... the current ip of the Fritz box is 192.168.1.1. Before I hooked up the COS box in gateway mode, I change the ip of the Fritz box to 192.168.178.1 (original value after a hardware reset). And then I set the ip address of eth1 (of the COS box) to 192.168.1.1. I do this because we have several printers and a NAS that have a static ip in the 192.168.1.0 range and I don't want to change them every time. In other words ... I interchange the DHCP server when I hook up the COS box as gateway. But like I said before ... it used to work for a couple of weeks before these problems started (including the WAP). None the less, I will post the results next week when I am back at that location. John Fri, 17 May 2013 10:15:03 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52780/limit,10/limitstart,10/#52982 Sorry. I misread your DNS from the picture. It does look OK. I wonder if you have a second DHCP server running on your LAN, perhaps disguised as a WAP. Can you run the command:[code]arping -I eth1 192.168.1.1[/code]IIRC, you should not get any reply or if you do it should contain the MAC address of eth1 only (00:02:A5:F7:76:CD). Any other reply says you have a second device with the same IP address and I would guess this has a built in DHCP server. Fri, 17 May 2013 07:22:10 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,17/func,view/id,52973/#52981 Oké that part I fixed but then I still get an error which is properly due to The fact that there is à wrong owner. How schould I set that. Fri, 17 May 2013 01:27:42 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,17/func,view/id,52973/#52980 Hi Lex, The last time I installed Joomla! was on a COS box 5.2 and I installed it in a Flexshare, but that should not make any difference. When I understand your question, it seems that you have a problem with changing the file permissions during the web installation. Did you try to connect to your box with WinSCP (http://winscp.net/eng/download.php) & PuTTY (http://www.putty.org/) ... ?!? Once you are able to do that, you should be able to set the permissions like they should. You will have to Google (https://www.google.nl/search?q=Joomla+2.5+file+permissions&ie=utf-8&oe=utf-8&aq=t&rls=org.mozilla:en-US:official&client=firefox-a#client=firefox-a&hs=U07&hl=nl&rls=org.mozilla:en-US%3Aofficial&sclient=psy-ab&q=joomla+file+permissions+2.5&oq=Joomla+file+permissions&gs_l=serp.1.1.0l4.42434.43014.0.46277.4.4.0.0.0.0.101.363.3j1.4.0...0.0...1c.1.12.psy-ab.OjVyfcIEaug&pbx=1&bav=on.2,or.r_qf.&bvm=bv.46471029,d.d2k&fp=78d63c05a828aa13&biw=1280&bih=885) how to set the permissions like they are supposed to. Good luck, John Thu, 16 May 2013 18:25:28 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,14/func,view/id,52543/#52979 I have the same problem with new installation of 6.4 and latest zarafa. What is the solution? Can someone post it please before I do permanent damage to it please :) Thu, 16 May 2013 17:45:52 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52780/limit,10/limitstart,10/#52978 Any more troubleshooting will have to wait until next week when I am at that location again ... :S The previous DNS (like shown in the picture) was the ip address of the Fritz box (192.168.178.1). Changing it to the 3 DNS servers from my ISP did not solve anything. AFAIK this would only be a temporary change (until the next reboot) anyway. What I forgot to tell you is that it used to work for a couple of weeks until suddenly none of the dynamic clients had an Internet connection anymore. It started a few days after the weekend that the COS box automatically updated from 6.3 to 6.4. Connecting to the COS box from the Internet was still possible. I am seriously thinking about starting all over with a clean install (sounds like a Windoze solution). The fact that I don't know what is causing this is driving me nuts ... . Please advice ... anyone ... John Thu, 16 May 2013 17:43:53 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,52502/limit,10/limitstart,10/#52977 FWIW, Peter Baldwin wrote: I think only the web proxy server uses EXTRALANS right now. Also OpenVPN for the "push route" bit of clients.conf but it's a bit o/t. Thu, 16 May 2013 17:21:13 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,52502/#52976 Hi Brian, Add "Connection Type" of "none" to list - ie: This would allow the ability to have an interface configured, but specify that it should NOT have an IP address. While there are probably many reasons for doing this, the most common one would be for when VLANs are configured, and one does not wish to use the base interface (ie: ethX) untagged. ie: I might wish to specify each VLAN on eth0 as tagged (ie: eth0.1, eth0.2, etc) without having eth0 itself to have an IP. This can be done by having "BOOTPROTO=none" and NOT specifying an IPADDRESS=line (and NETMASK, etc) at all. Good idea -- added to the tracker: http://tracker.clearfoundation.com/view.php?id=1145 (also useful to set IPV6INIT=no and IPV6_AUTOCONF=no, but I don't do this, don't use IPv6 at all myself). I'm sure that will be part of the IPv6 initiative in ClearOS 6. That reminds me, I need to go request my address block from my ISP! Oh, and BTW - if you were to add the ability to stop/start an interface from web config (per my prior suggestions), I would recommend that if the user clicks this on the physical interface (ie: ethX) that also has VLANs configured (ethX.Y), that the app would warn the user that "Stopping or restarting a physical interface will stop or restart all VLANs configured on that interface. It you are accessing this webpage from one of those VLANs, this may disconnect you. Would you like to continue?" Noted! Thu, 16 May 2013 17:13:42 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,52502/#52975 Hi Brian, "Interface" list when adding a VLAN contains VLAN interfaces - If you're already added a VLAN interface, let's say eth0.2, then when you go back to add another VLAN interface, all the rest of the VLAN interfaces you created will appear... Ooops. I searched all the other apps for the get_interfaces API call, but didn't check the app itself! All fixed (including filtering out VLANs when adding virtual interfaces). Message from syslogd That's weird. Deleting a VLAN interface doesn't remove corresponding entry in LANIF in network.conf I was not able to duplicate this issue. I'm guessing the broken VLAN interfaces (eth1.1.1) may have interrupted one of the API calls and it failed to do the cleanup. Would be nice to have EXTRALANS updated when creating a VLAN. BTW - what exactly does EXTRALANS do? Modify iptables? EXTRALANS is needed for routed networks that are not directly configured on the ClearOS system. It's not necessary for VLANs. I think only the web proxy server uses EXTRALANS right now. As mentioned in other thread, having a way to Enable/Disable an interface from this screen would be nice That requires more invasive changes which need to wait for ClearOS 6.5. The VLAN support didn't touch the core network API all that much and it uses a separate add/edit GUI page. In theory, VLAN support can be released as an update to ClearOS 6.4... maybe. Thu, 16 May 2013 16:51:06 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,52974/#52974 Hi All, I just downloaded the latest version 6.4.0 and began installing onto a new blader server I just built. I think it isn't recognizing the motherboard and then going into this Call Trace routine. Motherboard: Asus P8H61-M LX3 R2.0 CPU: Intel Core i5 RAM: Patriot Viper 8GB DDR3 1600 HDD: Western Digital 250GB WD2500AAJS DVD: Asus cheapo $25 drive Can someone please confim that this harware is compatible with the OS? Also, what to do next if it is or isn't. I would greatly appreciate it!! Wolfo Thu, 16 May 2013 16:49:16 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,17/func,view/id,52973/#52973 Can anyone help with The following problem setting up joomla is no problem but when I want to update The problems start. I have to set The rights good for joomla. Can someone help me on Howards to do this. I installed joomla in à virtual webserver in clearos 6.4 using network access as à normal user with rights. Thu, 16 May 2013 16:34:02 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52780/limit,10/limitstart,10/#52972 There are a couple of things I've seen, but for the DHCP server can you do a screen dump of the next page (i.e when you hit "Edit")? Hmm. Looks like there is a change to where DNS servers are stored, so resolv.conf is no use. Presumably this is a 6.4 feature? Anyway, what is the contents of /etc/resolv-peerdns.conf? It looks wrong as you can see from your COS_IP picture. You have no external DNS servers specified. At minimum it should be the Fritz box. If not it should be external servers such as your ISP's, OpenDNS or GoogleDNS. The configuration of the non-working client looks sick. See what happens when you fix the DNS issues first. I can't think why the config is bad. Thu, 16 May 2013 15:29:29 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,40/func,view/id,30195/limit,10/limitstart,670/#52971 @Roland, Thanks for the explanation. i had the problem that mail was not coming in even after a few hours. now it is working... strange @Tim, For some reason i've lost the app-zarafa menu in my webconfig. even with the link i get [code]404 Page Not Found The page you requested was not found.[/code] the app is installed: [code]Setting up Install Process Package 1:app-zarafa-1.2.8-1.v6.noarch already installed and latest version Nothing to do [/code] Could it be due a update of perl as menioned in this section LINK (http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,52945/) Thu, 16 May 2013 15:12:00 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,8/func,view/id,52812/limit,10/limitstart,10/#52970 I would not worry about it too much. I wonder why Android calls home so often? Do you run any security/tracker apps on them? (no need to answer) I think Firefox uses Google for its safe browsing and looking around, so does Android. It would have to call home to get updates. Thu, 16 May 2013 15:05:29 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,8/func,view/id,52812/#52969 Update: Tried the iptables FORWARD command with more luck. It looks like my android devices are calling back to the mothership every few minutes. They each do about 8-10 of [code]May 16 10:31:19 localhost kernel: IN=eth2 OUT=ppp0 SRC=android.device.ip DST=173.194.43.72 LEN=268 TOS=0x00 PREC=0x00 TTL=63 ID=49933 DF PROTO=TCP SPT=45061 DPT=443 WINDOW=229 RES=0x00 ACK PSH URGP=0[/code] every few minutes. So with 3-4 android devices this is happening a lot. Funny thing is my Apple Laptop is also calling back to the Google ship. I'm using Little Snitch and see that this is Firefox, Thunderbird (multiple gmail accts), Busycal (connected to google calendar). I'm getting the feeling that this isn't as serious as I originally thought. Am I mistaken??? Thu, 16 May 2013 10:50:57 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,31/func,view/id,52740/limit,10/limitstart,10/#52968 The current forum is nicely integrated in the Clearfoundation site but I rather have a less polished forum when speeds get better of the forums. Also a irritating thing if you put some output from the command shell in a code box you always have to scroll to see everything. So i'm also looking forward to new forum software. Thu, 16 May 2013 10:48:16 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52780/limit,10/limitstart,10/#52967 Thanks Nick, I was unable to access the COS box with WinSCP / PuTTY / webconfig while using a dynamic ip. Only when changing the clients ip to static, I was able to access the COS box with WinSCP / PuTTY / webconfig. Here are the answers you asked for while connected to the Internet. Internet - (eth0) COS box (eth1) - switch - clients eth0: external DHCP 192.168.178.3 eth1: LAN static 192.168.1.1 1. http://www.clearfoundation.com/images/fbfiles/images/COS_DHCP_small2.jpg 2. http://www.clearfoundation.com/images/fbfiles/images/COS_IP_small2.jpg The DNS servers have been changed to the Internet DNS servers of the ISP. 3. [code]# ifconfig | grep addr eth0 Link encap:Ethernet HWaddr 00:10:4B:0A:1D:AA inet addr:192.168.178.3 Bcast:192.168.178.255 Mask:255.255.255.0 eth1 Link encap:Ethernet HWaddr 00:02:A5:F7:76:CD inet addr:192.168.1.1 Bcast:192.168.1.255 Mask:255.255.255.0 inet addr:127.0.0.1 Mask:255.0.0.0[/code] 4. [code]/etc/resolv.conf: # Please do not edit this file. # See http://www.clearcenter.com/support/documentation/clearos_guides/dns_and_resolver domain cpugateway.poweredbyclear.com nameserver 127.0.0.1[/code] 5. working client: [code]C:\>ipconfig /all Windows IP-configuratie Host-naam . . . . . . . . . . . .: beheer-c9c15e20 Primair DNS-achtervoegsel. . . . .: Knooppunttype: . . . . . . . . . .: onbekend IP-routering ingeschakeld. . . . .: nee WINS-proxy ingeschakeld . . . . . : nee DNS-achtervoegselzoeklijst. . . . : fritz.box Ethernet-adapter LAN-verbinding: Verbindingsspec. DNS-achtervoegsel: fritz.box Beschrijving . . . . . . . . . . .: Broadcom NetXtreme Gigabit Ethernet Fysiek adres. . . . . . . . . . . : 00-19-99-00-71-CB DHCP ingeshakeld. . . . . . . . . : ja Autom. configuratie ingeschakeld. : ja IP-adres. . . . . . . . . . . . . : 192.168.1.127 Subnetmasker. . . . . . . . . . . : 255.255.255.0 Standaardgateway. . . . . . . . . : 192.168.1.1 DHCP-server . . . . . . . . . . . : 192.168.1.1 DNS-servers . . . . . . . . . . . : 192.168.1.1 Lease verkregen . . . . . . . . . : donderdag 16 mei 2013 9:52:17 Lease verlopen . . . . . . . . . : zondag 26 mei 2013 9:52:17[/code] non working client: [code]C:\>ipconfig /all Windows IP Configuration Host Name . . . . . . . . . . . . : server-ec181eb3 Primary Dns Suffix . . . . . . . : Node Type . . . . . . . . . . . . : Hybrid IP Routing Enabled. . . . . . . . : No WINS Proxy Enabled. . . . . . . . : No Ethernet adapter Local Area Connection: Connection-specific DNS Suffix . : Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet Physical Address. . . . . . . . . : 00-30-05-9E-8F-13 Dhcp Enabled. . . . . . . . . . . : Yes Autoconfiguration Enabled . . . . : Yes IP Address. . . . . . . . . . . . : 192.168.1.106 Subnet Mask . . . . . . . . . . . : 255.0.0.0 Default Gateway . . . . . . . . . : DHCP Server . . . . . . . . . . . : 192.168.1.1 Primary WINS Server . . . . . . . : 192.168.1.100 Lease Obtained. . . . . . . . . . : Thursday, May 16, 2013 11:36:58 AM Lease Expires . . . . . . . . . . : Thursday, May 16, 2013 12:36:58 PM Ethernet adapter Wireless Network Connection: Media State . . . . . . . . . . . : Media disconnected Description . . . . . . . . . . . : 22M WLAN PCI Adapter Physical Address. . . . . . . . . : 00-03-2F-11-37-E8 Ethernet adapter TeamViewer VPN: Media State . . . . . . . . . . . : Media disconnected Description . . . . . . . . . . . : TeamViewer VPN Adapter Physical Address. . . . . . . . . : 00-FF-CA-74-92-B9[/code] 6. See 4. Thanks in advance and I hope that this info helps to solve this issue definitely. Greetings, John EDIT: Just a minor detail ... the PXE server works without any problems. AFAIK, this should mean that the DHCP server of the COS box is working. Also, the non working clients sometimes showed an ip address like 192.254.1.### Thu, 16 May 2013 09:48:56 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,8/func,view/id,52812/#52966 173.194.43.87 is Google. Thu, 16 May 2013 09:35:59 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,8/func,view/id,52812/#52965 I'm running the OUTPUT logging. [code]iptables -I OUTPUT -d 173.194.43.0/25 -j LOG[/code] I'm running the proxy server. Access control is off. It is running in transparent mode. So why would the COS server be doing this? Thu, 16 May 2013 09:34:56 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,27/func,view/id,52964/#52964 Hi, I'm installing a CLEAROS Community server for a project at my school. I have some problems with the proxy and i was wondering if I could get help here. My problem is that I want to change the Proxy name because now I have to put in 192.168.1.1 wich is the IP of my server in the proxy adress box. I was wondering if I could change this. Also when I use my server IP in the proxy settings I can't login with the user accounts I have made when it asks for it when opening the web browser. Thanks in advance, Massih. Thu, 16 May 2013 09:33:00 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,8/func,view/id,52812/#52963 The IN flag is the source interface and will be blank if the packet comes from ClearOS. Which chain are you logging that from OUTPUT or FORWARD?. If it is OUTPUT then ClearOS is the source (I'm not sure the statement is true if you have run the proxy in some modes). It looks like a standard browser access - DPT = port 80, with the SYN flag set. I'm blocked at work so I can't try to access the 173.194.43.87 site Thu, 16 May 2013 08:34:31 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,8/func,view/id,52812/#52962 Thanks again, Nick. I've been watching the log for a number of days. I'm not able figure out the source. What I get is: [code]kernel: IN= OUT=ppp0 SRC=my.ppoe.com DST=173.194.43.87 LEN=60 TOS=0x00 PREC=0x00 TTL=64 ID=59807 DF PROTO=TCP SPT=45724 DPT=80 WINDOW=5808 RES=0x00 SYN URGP=0[/code] Unfortunately, this doesn't show the initiating IP address. Is there a way to get more details? I see the IN= portion is blank. I have narrowed it down to my wifi network segment because it stops at midnight and starts again at 6:30am. I had to kill the wifi during those periods or my kids wouldn't sleep. Damn texting going on at all hours of the night and they don't have the sense to turn off the device..... Thu, 16 May 2013 08:23:58 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,31/func,view/id,52740/limit,10/limitstart,10/#52961 Not saying it will be any better...but Kunena forum software was released at v3.0 yesterday! Thu, 16 May 2013 07:58:45 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,31/func,view/id,52740/limit,10/limitstart,10/#52960 I look forward to the new forum as well. The change can't be soon enough. I think lots of us have been dissaisfied with the performance from when it switched from the old CC one. Thu, 16 May 2013 07:14:56 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,70/#52959 It should be "modinfo mcs783 0 " Did you try changing the udev rule? Thu, 16 May 2013 07:08:45 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,31/func,view/id,52740/limit,10/limitstart,10/#52958 Hi Peter, Good to hear this will have a change. I like the forum software vBulletin because is also has a nice layout for tablets. Since a lot of people (including me) uaring using a tablet or a smartphone this looks to me a nice to have feature. Logitech is using this for example. Logitec forum (http://forums.slimdevices.com/) Thu, 16 May 2013 04:37:45 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,27/func,view/id,52777/#52957 any update regards the issue . Thu, 16 May 2013 01:56:55 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,38/func,view/id,52936/#52956 I have the same problem for the Bandwidth viewer graph time I am using Asia-Jakarta time zone and my BW viewer time 7 hour slower than the system time [URL=http://s1216.photobucket.com/user/Wr_Yono/media/Lain2/bwviewertime_zps9ab95584.jpg.html][IMG]http://i1216.photobucket.com/albums/dd376/Wr_Yono/Lain2/bwviewertime_zps9ab95584.jpg[/IMG][/URL] waiting for info how to fix it, thanks Wed, 15 May 2013 23:16:28 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,14/func,view/id,52952/#52955 For Zarafa community, you can use mysqldump to backup your database (instructions are on the forum). The database is stored within system-mysql which listens on port 3308, database passwords can be found at /var/clearos/system_database/. Attachments by default are stored seperate from the database in /var/lib/zarafa/ See http://www.clearcenter.com/support/documentation/clearos_guides/setting_up_backups_for_zarafa For Zarafa SBE or Professional you can use their 'brick' level mailbox backup, and backup/restore individual mailboxes as you need. Wed, 15 May 2013 18:36:19 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,70/#52954 when i run modinfo I get an error [root@server ~]# modinfo mcs783 ERROR: modinfo: could not find module mcs783 in /etc/udev/rules.d/70-persistent-net.rules I see the following rule # USB device 0x9710:0x7832 (usb) SUBSYSTEM=="net", ACTION=="add", DRIVERS=="?*", ATTR=="00:0a:cd:22:58:ec", ATTR=="1", KERNEL=="eth*", NAME="eth1" Wed, 15 May 2013 18:33:27 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,31/func,view/id,52740/limit,10/limitstart,10/#52953 We've had it with the performance of the forums and are now actively looking at alternatives. 400 database queries to load the main forum page is just ridiculous! The blog software is also broken and the URL rewrite engine (sh404SEF) is a horror show. Other bits of ClearFoundation infrastructure are okay (though the translation server is sluggish too): - Translation: http://translate.clearcenter.com - Build system: http://buildsys.clearfoundation.com/ - Issue Tracker: http://tracker.clearfoundation.com/ - SVN/CVS: scm.clearfoundation.com Our mirror system is well designed to get updates out quickly, but it suffers from two weaknesses: - If an update fails high up on the mirror hierarchy, the mirrors further down the line are marked as "offline". This increases the load on the higher mirrors which in turn might get overloaded and taken offline. Aaaaand death spiral. That's exactly what happened a few days ago. - For most mirrors, all you need is rsync and cron. ClearFoundation's mirrors are more complex to configure and it has been hard to convince potential mirror hosts to bit the bullet. Wed, 15 May 2013 16:26:38 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,14/func,view/id,52952/#52952 Friends, I normally mirror my /home, /var/www, and /var/ftp areas as a backup. This of course included my .pst files for Outlook. Now that I am using Zarafa, this is no longer relevant. When can I backup my datastore for Zarafa items? Is there some equivalent to an .ost? Can it be moved to a common area...or would the new Storage Manager be relevant? Any suggestions on other areas I really need to back up? Thanks, Drew Wed, 15 May 2013 15:17:33 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,14/func,view/id,52951/#52951 Friends, I only today started receiving a message that Zarafa was not compatible with my version of office. (2013, 32 bit.) I had not gotten this before, and upon dismissing the message, all appears to work OK. Can I do anything to resolve this? Thanks, Drew VS Wed, 15 May 2013 15:13:42 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,52950/#52950 Hi. I have an old clarkconnect office edition 3.2 mail server running in an office of about 25 users. The time has come to upgrade this box and I have running next to it a brand new system with clearos 6.4 installed on it. I have installed zarafa community edition on it as the replacement groupware for the old system. Email service being critical to these users, my intention is to move over the users gradually to the new system ie: 1 by 1. Would prefer to have a few users down than the whole office if something is not working right with the new system. My dilemma is that I am running two email servers on the same LAN. This is not so much a problem as the old server remains the active MTA for incoming and outgoing mail. The new server uses fetchmail to pull emails from the accounts that are setup on the new server and all outgoing mails forward to the old server for now. The problem is when the users who have been switched to the new server try to email local users who are still on the old server, I get an unknown recipient returned email. One solution I had in mind was to setup all user accounts on the new server and use fetchmail on the old server for pulling locally sent mail from the new server for those users who have not yet been switched. However, the repos for the old server seem no longer to be working and I cannot install cc-fetchmail. Any suggestions on how I can make this transition happen smoothly or resolve the local user not found scenario? Wed, 15 May 2013 14:21:18 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,52945/#52949 Thanks Tim thats fixed it. I do have BackupPC installed Wed, 15 May 2013 14:09:40 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,27/func,view/id,51253/#52948 It sounded very good, but it didn't work, I am looking what else needs to be configured... Wed, 15 May 2013 13:53:11 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,52945/#52947 Looks like the perl package has been updated, but you have an older version from the contribs repo (BackupPC?) [code]yum --enablrepo=clearos-core upgrade perl[/code] Wed, 15 May 2013 13:13:25 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52645/#52946 Added CentOS 6.4 installer by doing the following (official CD instructions (http://www.if-not-true-then-false.com/2011/centos-6-netinstall-network-installation/)): Download CentOS 6.4 Net Install.iso (http://wiki.centos.org/Download)Add the following configuration to "pxelinux.cfg/default" or in my case "pxelinux.cfg/os" (replace "#" with the corresponding number): [code]LABEL # MENU LABEL ^#. CentOS 6.4 32b Installer (06/03/2013) KERNEL centos/32b/6.4/images/pxeboot/vmlinuz APPEND initrd=centos/32b/6.4/images/pxeboot/initrd.img method=http://clearos.lan/flexshare/pxe/centos/32b/6.4/[/code](replace with your server name or ip address & replace the rest of the path to the location of CentOS)Successfully retrieving the install image from your box (with the "method" parameter): http://www.clearfoundation.com/images/fbfiles/images/centos_url3.jpg Start the installation: http://www.clearfoundation.com/images/fbfiles/images/centos.jpg When the install starts writing to disk, the following error message appears: http://www.clearfoundation.com/images/fbfiles/images/centos_error.jpg Please advice, John EDIT: The method has been refined to automatically point to the install image on the COS box. Wed, 15 May 2013 11:05:26 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,52945/#52945 Hi all Just done a yum update and got the following [code] Setting up Update Process Resolving Dependencies --> Running transaction check ---> Package app-base.noarch 1:1.4.36-1.v6 will be updated ---> Package app-base.noarch 1:1.4.37-1.v6 will be an update ---> Package app-base-core.noarch 1:1.4.36-1.v6 will be updated ---> Package app-base-core.noarch 1:1.4.37-1.v6 will be an update ---> Package perl-CGI.x86_64 0:3.51-130.el6_4 will be updated ---> Package perl-CGI.x86_64 0:3.51-131.el6_4 will be an update --> Processing Dependency: perl = 4:5.10.1-131.el6_4 for package: perl-CGI-3.51-131.el6_4.x86_64 ---> Package theme-default.noarch 0:6.4.24-1.v6 will be updated ---> Package theme-default.noarch 0:6.4.26-1.v6 will be an update --> Finished Dependency Resolution Error: Package: perl-CGI-3.51-131.el6_4.x86_64 (contribs) Requires: perl = 4:5.10.1-131.el6_4 Installed: 4:perl-5.10.1-130.el6_4.x86_64 (@clearos-core) perl = 4:5.10.1-130.el6_4 You could try using --skip-broken to work around the problem You could try running: rpm -Va --nofiles --nodigest [/code] Any idea what I need to do? Is this a enable core repo? I am using the community version of 6.4 which was installed as 6.3 and upgraded over time. Thanks Wed, 15 May 2013 09:31:44 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,70/#52944 I'll need to check when I'm home if the decive is supported natively or you can do a "modinfo mcs7830". Check if the output list the 9710:7832 device ID - it won't appear exactly like that but should contain both numerical bits of the string. I thought udev was supposed to look after this type of device. Have a look in /etc/udev/rules.d/70-persistent-net.rules for a rule relating to your NIC (check the MAC address). What does the rule say? Try adding somethng like:[code], RUN+="insmod mcs7832"[/code]to the end of it. You may need to specify the paths to the insmod command and the driver. Alternatively you can do it the dirty way by adding "insmod mcs7832" to /etc/rc.d/rc.local. The command will then run every time you reboot. Again you may need to specify paths. [edit] Can you also do an "updatedb &&locate mcs7830". You may now have more than one version of the module. [/edit] [edit2] Reading more about udev, you'll need to provide a path to the insmod command. Do a "locate insmod" to find it. [/edit2] Wed, 15 May 2013 07:58:10 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52905/#52943 FWIW, iptables rules entered at the command line are lost every time the firewall resarts (which is very useful for debugging). To make them permanent either add them to /etc/clearos/firewall.d/local or use the Custom Firewall module but always test the rule first at the command line first. If you put in a bad rule permanently the firewall can (not will) go into panic mode or into a restart loop. These can be hard to break. Wed, 15 May 2013 07:40:24 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52780/limit,10/limitstart,10/#52942 I would have thought you'd want a static IP of some sort for the ClearOS WAN. Because it is behing a NAT device (the FritzBox), if you ever want to use ClearOS facilities from the internet (webserver, mail server, VPN server etc) you'll need port forwarding rules in the FritzBox so it is best to ensure the IP of the target (i.e. ClearOS WAN) does not change. A static IP (with manual DNS servers) is one way. The other way is if the FritzBox supports some sort of "bind IP to MAC address" in its DHCP server as ClearOS does. Then you can have the ClearOS WAN obtain its IP address by DHCP, but the FritzBox will always hand out the same IP (....... unless you ever change the WAN NIC). Can you: 1 - Do a screen dump of the DHCP set up on your LAN NIC in ClearOS. Make sure it is less than 800*800px to post it 2 - Confirm you have not enabled the DHCP server on the WAN NIC 3 - give the output of "ifconfig | grep addr" 4 - post your /etc/resolv.conf 5 - on a working and non-working Win client give the output of "ipconfig /all". If you want remove all the data fir irrelevant interfaces (Win7 produces a lot or irrelevant stuff) 6 - post the contents /etc/resolv.conf Wed, 15 May 2013 07:35:59 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,26/func,view/id,52830/#52941 Could not retrieve mirrorlist http://mirrorlist.clearfoundation.com/clearos/mirrorlist/clearos-community-contribs-6 error was 14: PYCURL ERROR 6 - "Couldn't resolve host 'mirrorlist.clearfoundation.com'" Error: Cannot find a valid baseurl for repo: clearos-contribs THanks Wed, 15 May 2013 07:03:39 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,31/func,view/id,52740/limit,10/limitstart,10/#52940 and again from the forums... [code] jtablesession::Store Failed DB function failed with error number 1062 Duplicate entry 'qf2dn4i21lrdosm3lhustju1m7' for key 1 SQL=INSERT INTO `jos_session` ( `session_id`,`time`,`username`,`gid`,`guest`,`client_id` ) VALUES ( 'qf2dn4i21lrdosm3lhustju1m7','1368606257','','0','1','0' ) [/code] Wed, 15 May 2013 04:27:27 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,14/func,view/id,52543/#52939 Just thought I would mention that I too was getting this error of Zarafa not stating up with the error mentioned above. This was a fresh install of the VMWARE image of 6.4, with all the updates loaded and Marketplace modules installed. After a bit of mucking around and deleting log files and rebooting etc I found that the issue for me was the default amount of RAM set for the VMware image was 768MB. I bumped this up to 4096Mb and the problem went away, everything now starts up fine. Hope this helps others. Wed, 15 May 2013 03:19:59 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52905/#52938 Getting there! I logged the firewall traffic and found that although I have "webconfig" allowed in the firewall rules via the web interface, I was seeing dropped TCP packets on port 81. I added iptables -I INPUT -p tcp --dport 81 -j ACCEPT and it seems to be working okay, now just to make that firewall exception stick after reboot by changing the /etc/clearos/firewall.d/local file BTW. I also changed that file above with the iptables -I FORWARD -s 192.168.1.0/24 -d 192.168.2.0/24 -j ACCEPT From Nick as I lost it when I rebooted earlier And it worked!!!! Next task to get my 2TB hard drive visible! Wed, 15 May 2013 02:14:41 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52905/#52937 Okay, I was premature! Disabling the firewall on the 192.168.2.140 machine enables me to ping that machine across the network. I am still having no luck accessing the ClearOS box via Webadmin from the 192.168.1.x subnet. I can ping it, just not access it via https on port :81 Access from the 192.168.2.x subnet is okay Wed, 15 May 2013 01:57:48 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,38/func,view/id,52936/#52936 Hi all. I am using 6.4.0 Community. I have my timeszone set for UTC+8 and I note the following show GMT times: 1. Bandwidth viewer graph. 2. Software update log. Are these known bugs? Cheers, Wayne. Tue, 14 May 2013 23:36:04 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,70/#52935 [root@server MCS783x_Linux_driver_v1.11]# lsusb Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub Bus 002 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub Bus 003 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub Bus 004 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub Bus 005 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub Bus 006 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub Bus 007 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub Bus 001 Device 002: ID 9710:7832 MosChip Semiconductor MCS7832 10/100 Mbps Ethernet adapter Bus 001 Device 003: ID 058f:6366 Alcor Micro Corp. Multi Flash Reader Tue, 14 May 2013 17:52:28 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,70/#52934 Going to bed now but I'm not sure why you need to compile the module as it already exists (which is why you managed to load it - the make failed). What is the output of "lsusb"? Tue, 14 May 2013 17:50:45 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,18060/limit,10/limitstart,70/#52933 ok, ive run into a bit of a snag here, im trying to install a roswell USB ethernet adapter which is based off of the MCS783x chipset, ive downloaded and extracted the drivers, and the readme says use make load to dynamically load it when needed or make install to install it to have it load everytime. but when I type make install I get the following error: [root@server MCS783x_Linux_driver_v1.11]# make install sh mosinstall sh: mosinstall: No such file or directory make: *** [install] Error 127 the contents of the directory are: Makefile mcs7830.c mcs7830.h mosinst.c mosuninst.c README ReleaseNotes so I copy mosinst.c to mosinstall and now I run into this issue: [root@server MCS783x_Linux_driver_v1.11]# make install sh mosinstall mosinstall: line 6: syntax error near unexpected token `"mkdir /usr/lib/mos7830"' mosinstall: line 6: `system("mkdir /usr/lib/mos7830");' make: *** [install] Error 2 so I manually create the directory and it gives me the same error, I have clearos-dev 6.3 installed. when I do make load I get this: [root@server MCS783x_Linux_driver_v1.11]# make load modprobe mii insmod mcs7830.ko and I am able to see the NIC in webconfig, but when I reboot, it gets unloaded. What am I doing wrong so I can't install it? I have run make and got the following: [root@server MCS783x_Linux_driver_v1.11]# make make -C /lib/modules/2.6.32-358.6.1.v6.x86_64/build SUBDIRS=/home/downloads/MCS783x_Linux_driver_v1.11 modules; make[1]: Entering directory `/usr/src/kernels/2.6.32-358.6.1.v6.x86_64' CC [M] /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.o /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c: In function âmoschip_unbindâ: /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:408: warning: âreturnâ with a value, in function returning void /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c: In function âmoschip_link_resetâ: /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:432: warning: ISO C90 forbids mixed declarations and code /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:432: warning: unused variable âmodeâ /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c: In function âusbnet_openâ: /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:1971: warning: ISO C90 forbids mixed declarations and code /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c: In function âusbnet_probeâ: /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:2604: warning: assignment from incompatible pointer type /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c: At top level: /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:399: warning: âmoschip_bindâ defined but not used /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:405: warning: âmoschip_unbindâ defined but not used /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:411: warning: âmoschip_rx_fixupâ defined but not used /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:417: warning: âmoschip_tx_fixupâ defined but not used /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:423: warning: âmoschip_statusâ defined but not used /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:428: warning: âmoschip_link_resetâ defined but not used /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:521: warning: âinit_statusâ defined but not used /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:2054: warning: âmoschip_get_wolâ defined but not used /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:2059: warning: âmoschip_set_wolâ defined but not used /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:2064: warning: âmoschip_get_settingsâ defined but not used /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.c:2071: warning: âmoschip_set_settingsâ defined but not used Building modules, stage 2. MODPOST 1 modules CC /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.mod.o LD [M] /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.ko.unsigned NO SIGN [M] /home/downloads/MCS783x_Linux_driver_v1.11/mcs7830.ko make[1]: Leaving directory `/usr/src/kernels/2.6.32-358.6.1.v6.x86_64' any help would be apprecieated, thanks Tue, 14 May 2013 17:39:32 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52905/#52932 Sorted it, it was the firewall on the 192.168.2.140 PC Cheers Grant Tue, 14 May 2013 17:35:57 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,52905/#52931 Nick Thanks for the help, almost there. The static route enabled me to ping the 192.168.2.x ClearOS box, but not get to the PC. I added the firewall rules and checked with the iptables -L that it is in there but no avail, I even added a rule the other way round but still no luck. I can still ping from the PC on 192.168.2.140 to the PC on 192.168.1.1 but not the other way. Any other suggestions? Tue, 14 May 2013 17:29:13 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,21/func,view/id,51062/limit,10/limitstart,10/#52930 It's good to read that RH have done a security verification on the LS code - this suggests that the fork is being taken seriously, and (assuming they are satisfied), that the code is getting close or at 'production ready'. A few more tests and it might be appropriate to look at changing over. David. Tue, 14 May 2013 16:36:21 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,14/func,view/id,52917/#52929 Thanks Nick that line worked! Tue, 14 May 2013 15:33:00 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,14/func,view/id,52917/#52928 Thanks Nick i will give it a quick bash. Tue, 14 May 2013 15:19:23 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,31/func,view/id,52927/#52927 Hi guys, I'm new here. can some one please help me, I accidentally put a local ip address on Gray site and exemption site. I tried deleting it many times but it still on the list. please help. Kind regards...... Tue, 14 May 2013 15:15:19 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,52266/limit,10/limitstart,10/#52926 Hi Brian, I think being able to show the MAC address for each interface would be EXTREMELY helpful, as would (which I didn't mention before) showing the network driver name (ie: "ASIX USB Ehternet Adapter" or "r8169 Gigabit Ethernet driver", etc). This would help one to find out (without dropping to the shell or messing with network cables) which NIC actually got mapped to which device. I added an enhancement request to the tracker: http://tracker.clearfoundation.com/view.php?id=1142 BTW - one question - I haven't looked at this much in COS 6.4, but do we still have to do the EXTRALANS= thing that was required in COS 5.2 to have COS route between LANS? (at the time it was in /etc/system etwork, though looks like now its /etc/clearos etwork.conf). This would also be nice if web admin would ask about and configure for you. Yes, that command line parameter is still around. And yes, adding "static route manager" is on the todo list too! Tue, 14 May 2013 15:05:13 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,7/func,view/id,52925/#52925 I have several 1-to-1 NAT rules for my gateway box. For one of them the button is currently showing "Disable". I click to disable it and the web page updates, but the button does not indicate that anything changed on my firewall (still says Disable). I then tried to Delete that particular 1-to-1 NAT rule, but after the confirmation page displays it says that the rule doesn't exist. I can go to the command line and do #iptables -t nat -L -n -v and see that the rule is in fact present in both the prerouting and post routing chains. I had this problem once before, and I can not find in my notes how I solved it. I searched through postings on this mailing list and could not find a solution. I know I partially resolved it previously by using the command line to delete the iptable rules based on the line numbers listed in the prerouting and postrouting table. So I did that again this time and after listing the NAT table again it shows that the rules have been deleted. The problem I have now is that the 1-to-1 NAT web interface still lists that 1-to-1 NAT rule as being present, and it still says that it doesn't exist (which is true this time) so that it can't delete it. My question is, how do I get the web interface to recognize that the rule is gone and not show it. Since it wasn't properly allowing me to enable/disable that rule, my objective was to delete it, then re-establish it in the web interface. Is there a configuration file somewhere that the web interface is reading that I could edit to eliminate it from displaying, so I can create a new rule? Or is there another alternative for cleaning this up. Thanks. Jeff Tue, 14 May 2013 15:01:00 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,14/func,view/id,52917/#52924 Looking at my configuration, I think you also need to set "smtp_use_tls = yes" in /etc/postfix/main.cf. Tue, 14 May 2013 14:58:27 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,28/func,view/id,25497/#52923 bumping this again. i'd like to see if anything changed in later clear versions that might make this possible. again, just looking to make the WAN interface send a DHCPRELEASE message before shutting that interface, and that interface alone, down. Tue, 14 May 2013 14:34:32 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,40/func,view/id,30195/limit,10/limitstart,670/#52922 May 14 18:45:34 pdebrabander postgrey[13919]: action=greylist, reason=new, client_name=node-mec2.wormly.com, client_address=184.72.226.23, sender=user2@domain.nl, recipient=user1@domain.nl Patrick in the log I see that everything is working as it should. A few words of explanation how the graylist. The server receives mail, it checks whether the sender has already contacted the server. If this is the first contact, the sender gets a message back, for example, for 5 minutes. If this is the SMTP server to "understand" the message and try again in a few minutes. The re-contact the server checks to see if it's been a time set by the graylist, if so, the mail if you do not come back again, saying in a moment. All messages that you showed in the logs are correct and demonstrate proper operation greylist. The problem could be if you send mail from another server and after several attempts and the time elapsed after the greylist correspondence should pass it still blocks. Immediately after launching greylist can actually be a problem of delays in receiving mail, but it's just nowrmalne and related specifications this mechanism. Roland Tue, 14 May 2013 14:17:15 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,21/func,view/id,51062/limit,10/limitstart,10/#52921 It is a security release for configurations not supported by the webconfig (oe=yes or weak ciphers or RSA/x509 authentication) Tue, 14 May 2013 13:21:45 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,40/func,view/id,30195/limit,10/limitstart,670/#52920 Tim, mail is not coming trough when greyfilter is on. greylisting started [code]May 14 18:45:09 pdebrabander postgrey[13919]: Process Backgrounded May 14 18:45:09 pdebrabander postgrey[13919]: 2013/05/14-18:45:09 postgrey (type Net::Server::Multiplex) starting! pid(13919) May 14 18:45:09 pdebrabander postgrey[13919]: Binding to UNIX socket file /var/spool/postfix/postgrey/socket using SOCK_STREAM#012 May 14 18:45:09 pdebrabander postgrey[13919]: Setting gid to "492 492" May 14 18:45:09 pdebrabander postgrey[13919]: Setting uid to "492" May 14 18:45:34 pdebrabander postgrey[13919]: action=greylist, reason=new, client_name=node-mec2.wormly.com, client_address=184.72.226.23, sender=user2@domain.nl, recipient=user1@domain.nl [/code] result from test site https://www.wormly.com/test_smtp_server Resolving hostname... Connecting... SMTP -> FROM SERVER: 220 mail.pdebrabander.nl ESMTP Postfix SMTP -> FROM SERVER: 250-mail.domain.nl 250-PIPELINING 250-SIZE 51200000 250-VRFY 250-ETRN 250-STARTTLS 250-AUTH PLAIN LOGIN 250-AUTH=PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN MAIL FROM: user2@domain.nl SMTP -> FROM SERVER: 250 2.1.0 Ok RCPT TO: user1@domain.nl SMTP -> FROM SERVER: 450 4.2.0 : Recipient address rejected: Greylisted by ClearOS Community, see http://www.clearcenter.com/redirect/greylist/pdebrabander.nl SMTP -> ERROR: RCPT not accepted from server: 450 4.2.0 : Recipient address rejected: Greylisted by ClearOS Community, see http://www.clearcenter.com/redirect/greylist/pdebrabander.nl Message sending failed. greylisting stopped [code]May 14 18:52:13 pdebrabander postgrey[13919]: 2013/05/14-18:52:13 Server closing! May 14 18:52:13 pdebrabander postgrey[13919]: Couldn't unlink "/var/run/postgrey.pid" [Permission denied] [/code] result from test site https://www.wormly.com/test_smtp_server Resolving hostname... Connecting... SMTP -> FROM SERVER: 220 mail.domain.nl ESMTP Postfix SMTP -> FROM SERVER: 250-mail.domain.nl 250-PIPELINING 250-SIZE 51200000 250-VRFY 250-ETRN 250-STARTTLS 250-AUTH PLAIN LOGIN 250-AUTH=PLAIN LOGIN 250-ENHANCEDSTATUSCODES 250-8BITMIME 250 DSN MAIL FROM: user2@domain.nl SMTP -> FROM SERVER: 250 2.1.0 Ok RCPT TO: user1@domain.nl SMTP -> FROM SERVER: 250 2.1.5 Ok Sending Mail Message Body... SMTP -> FROM SERVER: 354 End data with . SMTP -> FROM SERVER: 250 2.0.0 Ok: queued as 846661609AD Message completed successfully. Tue, 14 May 2013 12:56:44 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,39/func,view/id,52487/#52919 Hi Peter, The images can be accessed via the Amazon Launch Wizard. Search for "clearos" or the specific AMI ID to find the launch image. Tue, 14 May 2013 12:49:01 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,37/func,view/id,52477/#52918 I have added a tracker item for this: http://tracker.clearfoundation.com/view.php?id=1141 The vga= line is already kludged in there. Ideally, we would patch the anaconda installer instead of doing a post-install hack. No matter, it's on the TODO list. Tue, 14 May 2013 12:47:39 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,14/func,view/id,52917/#52917 Hi All In the past I successfully setup SMTP authentication on ClearOS 5.2 by following the guide (http://www.clearfoundation.com/docs/howtos/smtp_authentication_to_isp) However, when I do the same process on 6.4, i cannot send mail. If i authenticate on port 25, I then get a bounce back saying, It needs to authenticate on port 587, and when it authenticate on port 587, nothing happens, as if the mail does not send. Have anyone experience this issue with 6.4 yet? Are there any logs that i can have a look at? Would really like to reinstate this feature back ClearOS 6.X and later. :) Thanks Marc Tue, 14 May 2013 12:22:24 -0400 http://www.clearfoundation.com/component/option,com_kunena/Itemid,232/catid,21/func,view/id,51062/limit,10/limitstart,10/#52916 There is a new version of Libreswan package: https://lists.libreswan.org/pipermail/swan-announce/2013/000002.html I will test it and post results here ;) Tue, 14 May 2013 12:11:55 -0400