headers
Andres Gonzalez | 4 Apr 2011 19:29
Picon

EFW 2.4.1 - dyndns not updating

Hello,

I have installed EFW 2.4.1 and I need to setup a dyndns account but it's not working.
I found that there's a bug (http://bugs.endian.com/view.php?id=3307), but is still not working.

Any idea ?

Regards.


--
AGD

------------------------------------------------------------------------------
Create and publish websites with WebMatrix
Use the most popular FREE web apps or write code yourself; 
WebMatrix provides all the features you need to develop and 
publish your website. http://p.sf.net/sfu/ms-webmatrix-sf

_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 2 comments |
headers
Matt Hayes | 5 Apr 2011 15:09
Favicon
Gravatar

Re: EFW 2.4.1 - dyndns not updating

On 4/4/2011 1:29 PM, Andres Gonzalez wrote:
> Hello,
> 
> I have installed EFW 2.4.1 and I need to setup a dyndns account but it's
> not working.
> I found that there's a bug (http://bugs.endian.com/view.php?id=3307),
> but is still not working.
> 
> Any idea ?
> 
> Regards.
> 
> 
> -- 
> AGD
> 
> 
> 

Did you run through the procedure towards the end of that bug to make
changes to the .pl script and see if that helped?

-Matt

------------------------------------------------------------------------------
Xperia(TM) PLAY
It's a major breakthrough. An authentic gaming
smartphone on the nation's most reliable network.
And it wants your games.
http://p.sf.net/sfu/verizon-sfdev
Permalink | Reply | 1 comment |
headers
Andres Gonzalez | 5 Apr 2011 16:13
Picon

Re: EFW 2.4.1 - dyndns not updating

Hi, yes what I did is: 


Please replace the following if statment (file /usr/local/bin/setddns.pl.):

if ($settings{'SERVICE'} = 'zoneedit')
  {$serverdir = '-s'; $serveradd = 'dynamic.zoneedit.com';}
else
  {$serverdir = ''; $serveradd = '';}

with this one:

if ($settings{'SERVICE'} eq 'zoneedit')
  {$serverdir = '-s'; $serveradd = 'dynamic.zoneedit.com';}
else
  {$serverdir = ''; $serveradd = '';}





On Tue, Apr 5, 2011 at 10:09 AM, Matt Hayes <dominian-iKl/T899NTQ6CF8JSqqIdg@public.gmane.org> wrote:
On 4/4/2011 1:29 PM, Andres Gonzalez wrote:
> Hello,
>
> I have installed EFW 2.4.1 and I need to setup a dyndns account but it's
> not working.
> I found that there's a bug (http://bugs.endian.com/view.php?id=3307),
> but is still not working.
>
> Any idea ?
>
> Regards.
>
>
> --
> AGD
>
>
>

Did you run through the procedure towards the end of that bug to make
changes to the .pl script and see if that helped?

-Matt

------------------------------------------------------------------------------
Xperia(TM) PLAY
It's a major breakthrough. An authentic gaming
smartphone on the nation's most reliable network.
And it wants your games.
http://p.sf.net/sfu/verizon-sfdev
_______________________________________________
Efw-user mailing list
Efw-user-5NWGOfrQmneRv+LV9MX5ug@public.gmane.orge.net
https://lists.sourceforge.net/lists/listinfo/efw-user



--
AGD
------------------------------------------------------------------------------
Xperia(TM) PLAY
It's a major breakthrough. An authentic gaming
smartphone on the nation's most reliable network.
And it wants your games.
http://p.sf.net/sfu/verizon-sfdev
_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 0 comments |
headers
Jaroslaw Zdrzalek | 5 Apr 2011 16:29
Picon

authenticated users on smtp proxy: SPAM

hi there,

I have an issue on Endian Firewall Appliance release 2.4-0 (Deployset #0) full patched.
While accessing smtp service from outside clients gets classified as SPAM.

Most of the score is due to firewall is ignoring authenticated client.
I also took a look into main.cf. There is no statment about exemptions for
sasl authenticated clients.

smtpd_sasl_auth_enable=yes
smtpd_client_restrictions=permit_sasl_authenticated

amavisd.conf is also missing bypass rules for sasl authenticated clients.

A similar issue is closed on release of 2.2: http://bugs.endian.com/view.php?id=273

Example of an authenticated uses email, who is not a spammer:

Pkte Regelname              Beschreibung
---- ---------------------- --------------------------------------------------
 0.0 FSL_HELO_NON_FQDN_1    FSL_HELO_NON_FQDN_1
 0.2 MULTIPART_ALTERNATIVE  Multipart/Alternative
 2.0 RCVD_NONFQDN_HELO      Received: a non FQDN HELO
 3.3 RCVD_IN_PBL            RBL: Received via a relay in Spamhaus PBL
                            [95.118.55.238 listed in zen.spamhaus.org]
 1.4 RCVD_IN_BRBL_LASTEXT   RBL: RCVD_IN_BRBL_LASTEXT
                            [95.118.55.238 listed in bb.barracudacentral.org]
 1.3 RCVD_IN_RP_RNBL        RBL: Relay in RNBL,
                            https://senderscore.org/blacklistlookup/
                            [95.118.55.238 listed in bl.score.senderscore.com]
 0.0 HTML_MESSAGE           BODY: Nachricht enthält HTML
 0.8 BAYES_50               BODY: Spamwahrscheinlichkeit nach Bayes-Test: 40-60%
                            [score: 0.4025]
 0.0 HELO_NO_DOMAIN         Relay reports its domain incorrectly
 1.5 RDNS_DYNAMIC3          Delivered to trusted network by host with
                            dynamic-looking rDNS
 2.8 DOS_OUTLOOK_TO_MX      Delivered direct to MX with Outlook headers
-0.3 AWL                    AWL: From: address is in the auto white-list

Regards
JZdrzalek

------------------------------------------------------------------------------
Xperia(TM) PLAY
It's a major breakthrough. An authentic gaming
smartphone on the nation's most reliable network.
And it wants your games.
http://p.sf.net/sfu/verizon-sfdev
_______________________________________________
Efw-user mailing list
Efw-user <at> lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 0 comments |
headers
Cesar Falcon - GRUPO VIVARGO SAC | 19 Apr 2011 01:31
Picon

Problems try to block https pages with transparent proxy

Hi everyone, I have a problem with my Endian firewall,

transparent proxy mode can’t blocks https://www.facebook.com, no method works, content filter works only with http protocol, anyone has a solution??

 

Thanks in advance for your help

Cesar Falcon

------------------------------------------------------------------------------
Benefiting from Server Virtualization: Beyond Initial Workload 
Consolidation -- Increasing the use of server virtualization is a top
priority.Virtualization can reduce costs, simplify management, and improve 
application availability and disaster protection. Learn more about boosting 
the value of server virtualization. http://p.sf.net/sfu/vmware-sfdev2dev
_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 2 comments |
headers
Necip Celepci | 19 Apr 2011 07:29
Picon
Favicon

Re: Problems try to block https pages with transparent proxy

you have too block 443 port.

--- On Mon, 4/18/11, Cesar Falcon - GRUPO VIVARGO SAC <cfalcon-nN6S+2Ueq1/owKkBSvOlow@public.gmane.orgpe> wrote:

From: Cesar Falcon - GRUPO VIVARGO SAC <cfalcon <at> vivargo.com.pe>
Subject: [Efw-user] Problems try to block https pages with transparent proxy
To: efw-user-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org
Date: Monday, April 18, 2011, 4:31 PM

Hi everyone, I have a problem with my Endian firewall,

transparent proxy mode can’t blocks https://www.facebook.com, no method works, content filter works only with http protocol, anyone has a solution??

 

Thanks in advance for your help

Cesar Falcon
-----Inline Attachment Follows-----

------------------------------------------------------------------------------
Benefiting from Server Virtualization: Beyond Initial Workload
Consolidation -- Increasing the use of server virtualization is a top
priority.Virtualization can reduce costs, simplify management, and improve
application availability and disaster protection. Learn more about boosting
the value of server virtualization. http://p.sf.net/sfu/vmware-sfdev2dev

-----Inline Attachment Follows-----

_______________________________________________
Efw-user mailing list
Efw-user-5NWGOfrQmneRv+LV9MX5uipxlwaOVQ5f@public.gmane.org
https://lists.sourceforge.net/lists/listinfo/efw-user
------------------------------------------------------------------------------
Benefiting from Server Virtualization: Beyond Initial Workload 
Consolidation -- Increasing the use of server virtualization is a top
priority.Virtualization can reduce costs, simplify management, and improve 
application availability and disaster protection. Learn more about boosting 
the value of server virtualization. http://p.sf.net/sfu/vmware-sfdev2dev
_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 1 comment |
headers
Andres Gonzalez | 27 Apr 2011 20:29
Picon

Block Team Viewer

Hi, It's possible to block TeamViewer access from Internet to a desktop ?

Best Regards!


------------------------------------------------------------------------------
WhatsUp Gold - Download Free Network Management Software
The most intuitive, comprehensive, and cost-effective network 
management toolset available today.  Delivers lowest initial 
acquisition cost and overall TCO of any competing solution.
http://p.sf.net/sfu/whatsupgold-sd
_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 1 comment |
headers
Jason Oglesby | 27 Apr 2011 21:11
Picon

Re: Block Team Viewer

You should be able to block via port, or hostname.
Start the application and do a netstat and see what ports its
listening on... if you are in windows, use TCPView (free from
microsoft) and it will show you the listening ports, the hosts its
talking to (on the team viewer side) and you should be able to
block/blacklist from the info gathered in TCPView.

Let me know if you don't get it fixed!

On Wed, Apr 27, 2011 at 1:29 PM, Andres Gonzalez <tuchoz@...> wrote:
> Hi, It's possible to block TeamViewer access from Internet to a desktop ?
>
> Best Regards!
>
>
>
> ------------------------------------------------------------------------------
> WhatsUp Gold - Download Free Network Management Software
> The most intuitive, comprehensive, and cost-effective network
> management toolset available today.  Delivers lowest initial
> acquisition cost and overall TCO of any competing solution.
> http://p.sf.net/sfu/whatsupgold-sd
> _______________________________________________
> Efw-user mailing list
> Efw-user@...
> https://lists.sourceforge.net/lists/listinfo/efw-user
>
>

------------------------------------------------------------------------------
WhatsUp Gold - Download Free Network Management Software
The most intuitive, comprehensive, and cost-effective network 
management toolset available today.  Delivers lowest initial 
acquisition cost and overall TCO of any competing solution.
http://p.sf.net/sfu/whatsupgold-sd
Permalink | Reply | 0 comments |
headers
Eric Bouche | 29 Apr 2011 17:59
Picon
Favicon

Problem with active directory authentification

Hi,

 

I’m testing “Endian Firewall Community release 2.4.1” in a lab with Windows 2008 AD.

 

I have a problem with the proxy authentication. The username / password are always refused.

 

I have setup another machine under CentOS 5.6 and the authentication working successful (basic and NTLM).

 

I have compared many configuration file and the problem still.

 

One the working server:

[root <at> squid ~]# wbinfo -a "endian\eric"%eric

plaintext password authentication succeeded

challenge/response password authentication succeeded

[root <at> squid ~]# wbinfo -a eric%eric

plaintext password authentication failed

Could not authenticate user eric%eric with plaintext password

challenge/response password authentication succeeded

 

One the Endianfw :

root <at> efw:~ # wbinfo -a "endian+eric"%eric

plaintext password authentication succeeded

challenge/response password authentication succeeded

root <at> efw:~ # wbinfo -a eric%eric

plaintext password authentication succeeded

challenge/response password authentication succeeded

root <at> efw:~ # wbinfo -a "endian\eric"%eric

plaintext password authentication failed

Could not authenticate user endian\eric%eric with plaintext password

challenge/response password authentication failed

error code was NT_STATUS_NO_SUCH_USER (0xc0000064)

error messsage was: No such user

Could not authenticate user endian\eric with challenge/response

 

I’ve tried to use the “winbind serparator” but nothing do. I think the problem is how NT domain names and user names are combined.

 

Any idea ?

 

Regards,

 

--

Eric

 

------------------------------------------------------------------------------
WhatsUp Gold - Download Free Network Management Software
The most intuitive, comprehensive, and cost-effective network 
management toolset available today.  Delivers lowest initial 
acquisition cost and overall TCO of any competing solution.
http://p.sf.net/sfu/whatsupgold-sd
_______________________________________________
Efw-user mailing list
Efw-user@...
https://lists.sourceforge.net/lists/listinfo/efw-user
Permalink | Reply | 0 comments |

Gmane