headers
A S | 1 Feb 2010 07:01
Picon
Favicon

Configure VTech IP8100-2 with Endian Firewall 2.3

I have my EFW 2.3 and i need to configure my broadband phone from VTech Phones Model IP8100-2

My hardware are:

EFW machine with 2 network cards.
"1 network card for the LAN Router 2wire Telmex-Telnor Model: 2701HG-7 in mode bridge."
"1 network card for the WAN Router Thomson Model: TG585v7 Telmex-Telnor my connection are PPPoE"

If i connect direct my phone VTech directly to the 2wire its not get the status online.

If i connect direct my phone VTeck directly to the Router Thomson i get status online because i did are not using the Endian Firewall Machine and the DCHP connection are doing my Router Thomson.

I want to get online if i connect like this:

My PC and the Broadband Phone IP 81002 connect to the Router 2wire in mode bridge to the EFW and the EFW to the Router Thomson to get the Internet.

Can you help me please?

Thanks in advance!



Atentamente:
Alejandro Serrano Betancourt
Teléfono: 044 (664) 3065845
 
 



------------------------------------------------------------------------------
The Planet: dedicated and managed hosting, cloud storage, colocation
Stay online with enterprise data centers and the best network in the business
Choose flexible plans and management services without long-term contracts
Personal 24x7 support from experience hosting pros just a phone call away.
http://p.sf.net/sfu/theplanet-com
_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 0 comments |
headers
Ali Sogukpinar | 1 Feb 2010 12:09
Picon

Upgrading from v2.2 to v2.3

Hi,

I have seen that couple of emails asking what needs to be done for upgrading from v2.2 to v2.3.
There was no solution for this question yet and I couldn't find any documentation either.

In stead up upgrading my firewall I tried in between solution. I did a fresh v2.3 installation and import my latest backup from v2.2.

Unfortunately it didn't work completely. After importing my latest backup, when I tired to access the web interface I received a server error(500). It turned out that in the /var/efw folder instead of header23.pl I have header.pl file. When I created header23.pl as  a symbolic link to header.pl file. Server error is fixed.

After this fix it looked like that system is working.  But after further investigation I realized that I can not open up IPS rules pages, I can not open some of the spam filter pages.  So it wasn't working as I hoped.

Is v2.3 able to restore the backups from v2.2?   Is it supported?


--
Ali Soğukpınar
http://www.digitalpains.net
http://www.twitter.com/arsogukpinar

------------------------------------------------------------------------------
The Planet: dedicated and managed hosting, cloud storage, colocation
Stay online with enterprise data centers and the best network in the business
Choose flexible plans and management services without long-term contracts
Personal 24x7 support from experience hosting pros just a phone call away.
http://p.sf.net/sfu/theplanet-com
_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 0 comments |
headers
Elmar Natter | 3 Feb 2010 11:06
Picon

Custom Perl Script for Re-Connect

Hello!

I wan't to mod my Endian Box due to the fact, that EFW 2.3 has no more
dial user and in my network some users were privleged as dial user,
means they could on reconnect the Red Connection, nothing more,
nothing less.

So EFW 2.3 has no longer this possibility. I posted some time ago if
this will be implemented again, but got no response. So I got the idea
to write a small perl script doing the following commands via Perl
(these ist the bash version originally invented by Vassilis, so I want
to use them with system command:

/etc/rc.d/uplinks stop main
sleep 90
/usr/local/bin/setddns.pl
sleep 30
/usr/local/bin/setddns.pl

So I tried to to write a perl script in /home/httpd/html to bypass the
htacces protection, but everything I put in there doesn't work. Even a
simple script with only a print in it, ends up with server failures.
I've write Perl-Scripts before, but on the efw they behave different.
Someone able to write a perl wich can do this?

Regards from germany

Elmar Natter

------------------------------------------------------------------------------
The Planet: dedicated and managed hosting, cloud storage, colocation
Stay online with enterprise data centers and the best network in the business
Choose flexible plans and management services without long-term contracts
Personal 24x7 support from experience hosting pros just a phone call away.
http://p.sf.net/sfu/theplanet-com
Permalink | Reply | 0 comments |
headers
Luca Giovenzana | 3 Feb 2010 11:51
Gravatar

Re: Transparent Proxy bypass by MAC address not working

Can you please check if you see the rule by running this command?

root <at> kenny:~ # iptables -t nat -nvL PROXIES
Chain PROXIES (1 references)
 pkts bytes target     prot opt in     out     source
destination         
    0     0 RETURN     tcp  --  *      *       0.0.0.0/0
0.0.0.0/0           tcp dpt:80 MAC 00:17:F2:F0:9A:1D 
    0     0 RETURN     tcp  --  *      *       192.168.0.99
0.0.0.0/0           tcp dpt:80 

In case you don't have the rule or it doesn't indeed work please open a
bug report on bugs.endian.com

Notice that the firewall should be connected to the host without any
routers in the middle.

Regards,
Luca

> Date: Tue, 26 Jan 2010 07:23:57 +0200
> From: Steven Sher <StevenS@...>
> Subject: Re: [Efw-user] Transparent Proxy bypass by MAC address not
> 	working
> To: "efw-user@..." <efw-user@...>
> Message-ID:
> 	<C1D401ED5724CC409EF921B41DB729C929C8A51396@...>
> Content-Type: text/plain; charset="windows-1252"
> 
> I found the solution, you can allow or block by MAC address under the policy rules section which works fine.
> 
> From: Steven Sher [mailto:StevenS@...]
> Sent: 22 January 2010 12:21 PM
> To: efw-user@...
> Subject: [Efw-user] Transparent Proxy bypass by MAC address not working
> 
> I am having issues with the transparent proxy in Endian 2.3 the bypass the proxy option from source using
MAC address does not work.  By IP works fine, is there a file I can manually edit to get the MAC address
filtering to work?
> 
> Thanks
> Steve

-- 
:: e n d i a n
:: open source - open minds

:: luca giovenzana
:: phone +39 0471 631763  :: gpg key id 3B741128
:: http://www.endian.com  :: luca (AT) endian.com

------------------------------------------------------------------------------
The Planet: dedicated and managed hosting, cloud storage, colocation
Stay online with enterprise data centers and the best network in the business
Choose flexible plans and management services without long-term contracts
Personal 24x7 support from experience hosting pros just a phone call away.
http://p.sf.net/sfu/theplanet-com
_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 0 comments |
headers
Andres Gonzalez | 5 Feb 2010 15:29
Picon

OpenVPN Client LAN Address

Hi,

It's possible to assign to the VPN (openvpn) clients a IP address range different from the Green interface range ?

Regards.
Andres


------------------------------------------------------------------------------
The Planet: dedicated and managed hosting, cloud storage, colocation
Stay online with enterprise data centers and the best network in the business
Choose flexible plans and management services without long-term contracts
Personal 24x7 support from experience hosting pros just a phone call away.
http://p.sf.net/sfu/theplanet-com
_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 0 comments |
headers
Marco Gabriel | 8 Feb 2010 17:53
Picon
Favicon

UMTS Stick

Hi,

does anyone know an 3G/UMTS USB Stick that works with the Endian 2.3 
Community Version?

Thanks,
Marco

------------------------------------------------------------------------------
The Planet: dedicated and managed hosting, cloud storage, colocation
Stay online with enterprise data centers and the best network in the business
Choose flexible plans and management services without long-term contracts
Personal 24x7 support from experience hosting pros just a phone call away.
http://p.sf.net/sfu/theplanet-com
Permalink | Reply | 0 comments |
headers
Gustavo Castro Admon Sistemas | 8 Feb 2010 18:49
Picon
Favicon

Question

Hi, Good evenings it wanted to know if there is the possibility of connecting an I-phone to VPN to the endian

 

 

Gustavo Adolfo Castro Torres                     

Coordinador  Administrativo y de Sistemas

Nurueña S.A.

sistemas-uZsidaRlO/FhtNCalSJwRw@public.gmane.org

http://www.fenusa.com.co

Teléfono: 3607899 ext 207

Celular : 320 3 48 95 75

 

------------------------------------------------------------------------------
The Planet: dedicated and managed hosting, cloud storage, colocation
Stay online with enterprise data centers and the best network in the business
Choose flexible plans and management services without long-term contracts
Personal 24x7 support from experience hosting pros just a phone call away.
http://p.sf.net/sfu/theplanet-com
_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 5 comments |
headers
Matthew W. Ross | 8 Feb 2010 20:07
Favicon

Re: Question

I am also interested in knowing if it is possible/supported to do this.

--Matt Ross
Ephrata School District

----- Original Message -----
From: Gustavo Castro Admon Sistemas
[mailto:sistemas@...]
To: efw-user@...
Sent:
Mon, 08 Feb 2010 09:49:46 -0800
Subject: [Efw-user] Question

>  
> 
> Hi, Good evenings it wanted to know if there is the possibility of
> connecting an I-phone to VPN to the endian
> 
>  
> 
>  
> 
> Gustavo Adolfo Castro Torres                      
> 
> Coordinador  Administrativo y de Sistemas
> 
> Nurueña S.A.
> 
> sistemas@...
> 
>  <http://www.fenusa.com.co/> http://www.fenusa.com.co
> 
> Teléfono: 3607899 ext 207
> 
> Celular : 320 3 48 95 75
> 
>  
> 
> 

------------------------------------------------------------------------------
The Planet: dedicated and managed hosting, cloud storage, colocation
Stay online with enterprise data centers and the best network in the business
Choose flexible plans and management services without long-term contracts
Personal 24x7 support from experience hosting pros just a phone call away.
http://p.sf.net/sfu/theplanet-com
Permalink | Reply | 1 comment |
headers
compdoc | 8 Feb 2010 20:30
Favicon

Re: Question

>From: Gustavo Castro Admon Sistemas [mailto:sistemas-uZsidaRlO/FhtNCalSJwRw@public.gmane.org]
>Sent: Monday, February 08, 2010 10:50 AM
>To: efw-user-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org
>Subject: [Efw-user] Question

>

 

>Hi, Good evenings it wanted to know if there is the possibility of connecting an I-phone to VPN to the endian

 

I've only helped a customer connect his iPhone to the company server to send/receive emails, so I don’t know enough, and have to ask for what would you use a lan connection for?

 

In any case, I doubt you could use the openvpn service unless there's an openvpn client made for the iPhone. That leaves IPSec connections... 

------------------------------------------------------------------------------
The Planet: dedicated and managed hosting, cloud storage, colocation
Stay online with enterprise data centers and the best network in the business
Choose flexible plans and management services without long-term contracts
Personal 24x7 support from experience hosting pros just a phone call away.
http://p.sf.net/sfu/theplanet-com
_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 1 comment |
headers
Satish Alwani | 8 Feb 2010 20:09

Re: Question

dues the iphone support ipsec if so your in luck. not to rub out in but I am glad I got the android instead
-- 
Satish Alwani

"Matthew W. Ross" <mross <at> ephrataschools.org> wrote:

>I am also interested in knowing if it is possible/supported to do this.
>
>
>--Matt Ross
>Ephrata School District
>
>
>----- Original Message -----
>From: Gustavo Castro Admon Sistemas
>[mailto:sistemas <at> fenusa.com.co]
>To: efw-user <at> lists.sourceforge.net
>Sent:
>Mon, 08 Feb 2010 09:49:46 -0800
>Subject: [Efw-user] Question
>
>
>>  
>> 
>> Hi, Good evenings it wanted to know if there is the possibility of
>> connecting an I-phone to VPN to the endian
>> 
>>  
>> 
>>  
>> 
>> Gustavo Adolfo Castro Torres                      
>> 
>> Coordinador  Administrativo y de Sistemas
>> 
>> Nurueña S.A.
>> 
>> sistemas <at> fenusa.com.co
>> 
>>  <http://www.fenusa.com.co/> http://www.fenusa.com.co
>> 
>> Teléfono: 3607899 ext 207
>> 
>> Celular : 320 3 48 95 75
>> 
>>  
>> 
>> 
>
>------------------------------------------------------------------------------
>The Planet: dedicated and managed hosting, cloud storage, colocation
>Stay online with enterprise data centers and the best network in the business
>Choose flexible plans and management services without long-term contracts
>Personal 24x7 support from experience hosting pros just a phone call away.
>http://p.sf.net/sfu/theplanet-com
>_______________________________________________
>Efw-user mailing list
>Efw-user <at> lists.sourceforge.net
>https://lists.sourceforge.net/lists/listinfo/efw-user

------------------------------------------------------------------------------
The Planet: dedicated and managed hosting, cloud storage, colocation
Stay online with enterprise data centers and the best network in the business
Choose flexible plans and management services without long-term contracts
Personal 24x7 support from experience hosting pros just a phone call away.
http://p.sf.net/sfu/theplanet-com
_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 0 comments |

Gmane