Quantcast
Channel: Untangle Forums
Viewing all 5188 articles
Browse latest View live

WLAN, Guest Network, VPN Client, Selective Tunnelling

July 9, 2015, 10:47 pm
$
0
0
Hi Gang,

I'm planning to use Untangle as part of a setup I'm hoping to accomplish at home. I've drawn a network map here.

My Goals are as folllows:
  1. Wireless LAN with separate Guest Network (My Netgear router standard firmware provides this)
  2. Guest Wireless Network is entirely segregated from home LAN (again, provided by router) - this is for my downstairs neighbors
  3. LAN on one subnet, easy to manage and connect to all devices.
  4. Roku Media streamer device routed over VPN client running on Tangle
  5. Media server also running over same VPN connection (or it could run VPN client locally to save performance on Untangle box)
  6. Chromecast routed over VPN via WLAN
  7. (Bonus Points) Everything managed from Untangle interface - I read in the docs the Wireless AP could be essentially controlled by Untangle?


The donor box for Untangle is an Acer Revo R3610 (Dual Core 1.2GHz Atom, 2GB RAM) - it has on board ethernet and WLAN and I've added a Cisco USB Ethernet adaptor for the WAN interface.

My plan to begin this evening is to have Untangle installed, switch off any unnecessary services for performance (until I opt to add them back in later maybe) then configure the interfaces and OpenVPN Client for VPN connectivity. Then define either which hosts go over the VPN by source LAN IP, or by destination IP/hostname - whatever is possible. If it makes more performance sense non VPN traffic doesn't need to go via the Firewall at all. If that's more fuss than not doing that I'd be inclined not to complicate matters further :)

What I'm seeking from you lovely people is a recommended approach (or advice to not do it, if I'm coming at this from the wrong angle).
Search

Intrusion Prevention help

July 10, 2015, 1:20 am
$
0
0
Dear Team,
I have bought wanfail over plugin and here is my network:

I have 2 ISP and 1 server. From both networks i have port forwarded port 80 to my server.

In intrusion prevention i have a lot of:

robots.txt access
Setup.php access
bad HTTP/1.1 request, Potentially worm attack

They are not blocked by default. As I do not know what this means i decided to ask you.
Is this s real attack and i need to turn blocking on?

Or what dos this mean?

Thank you very much

Cisco ASA Behind Untangle

July 10, 2015, 12:44 pm
$
0
0
Hi All,

So I setup an IPsec tunnel with one of our clients and we had conflicting IP's. Apparently NAT rules do not apply to IPsec tunnels because that is set up as a route. At least that's what I was told from Support.

How hard would it be to setup for example, a Cisco ASA behind Untangle. Give it a public IP and just have everything passed through to it. I would imagine we would have some serious setup in order for this to work. I'm still not convinced it would work though.

Thanks!

Will QoS/Bandwidth Control work with this MPLS network?

July 11, 2015, 12:01 am
$
0
0
We have a multi-site MPLS VPN solution for our sites. Each site is connected to our data-centre with 1Gb and we've got a 200Mbit uplink to the Internet. So effectively, each of our sites (including the DC) has 1Gb of connectivity and 200Mbit of shared Internet connectivity.

Here's a basic diagram.

Blank Network Diagram - New Page.png

I'm trying to figure out how to apply QoS with this setup. What I'd like to do for example is, ensure site-to-DC traffic runs at 1Gb but shape each site's web-access to 40Mbit.

Is this possible? If so, how?
Attached Images

HP 9100 print port strange bvehavior

July 12, 2015, 3:13 pm
$
0
0
Dear Team,
i have 3 nic in untangle. 1 external, 2 internal

internal 1 - Servers
internal 2 - users

When print server in NIC 1 print by port 9100 In NIC 2, printers do not work. I was unable to locate issue :(

SIP phone, file sharing and remote desktop work excellent

Query Event Log

July 14, 2015, 4:33 am
$
0
0
The query event log tab under WEB filter app, is just showing search queries performed on client systems using Internet Explorer, is it possible to get log for all queries including mozila and chrome. as my organisation uses chrome..

File manager on toolbar

July 14, 2015, 10:05 am
$
0
0
I looked around and could not find this so here goes. I need to put a file manager on the tool bar so that I can grab the security certificates I made and save them to a USB drive. I have seen terminal copy methods here but I'd really like to see something visually like a file manager (Dolphin, KDE manager?)that could be turned on and off as needed for these types of events. Hopefully someone can help or has something a noob can follow!

Disk space disappearing after 11.1 upgrade

July 14, 2015, 10:22 am
$
0
0
We upgraded from 10.2 to 11.0 and then 11.1 on Sunday evening. Since the upgrade, the available disk space has dropped dramatically. We have 120GB free on 270GB disk. Now 120GB is plenty of disk space yet, but at the time of the upgrade it was closer to 240GB free. Another day or so like this and the drive will be full.

Any ideas what might be going on, and how to fix it?
Search

Understanding the log errors

July 14, 2015, 10:24 am
$
0
0
Hello,

I'm getting intermittent network cut-outs after untangle has been running for a few days and I see some errors in the logs.... what do they communicate?

System seems to run longer without problems if I shut off the apps in Untangle (web filter, clamav, anti spam, etc)

Nics: Intel and Realtek (ya...i know)
CPU: Pentium G3240
RAM: 8GB

node-5:
WARN Could not parse referer URI 'http://aka.spotxcdn.com/[[IMPORT]]/vox-static.liverail.com/swf/v4/admanager.swf?LR_PUBLISHER_ID=1912&LR_PARTNERS=774766&LR_AUTOPLAY=0&LR_CON' class java.net.URISyntaxException

node-7:
WARN requests is empty, code: 503
and
ERROR java.lang.NullPointerException while reading from client
and
clamc msg socket closed/interrupted: Socket[addr=/127.0.0.1,port=3310,localport=6130], Socket[addr=/127.0.0.1,port=1148,localport=8887]

node-16
Failed SQL query for class com.untangle.node.smtp.SmtpMessageEvent: "INSERT INTO reports.mail_msgs (time_stamp, session_id, client_intf, server_intf, c_client_addr, c_client_port, c_server_addr, c_server_port, s_client_addr, s_client_port, s_server_addr, s_server_port, policy_id, username, msg_id, subject, sender, hostname ) VALUES ( 'private','private','etc' ? )"

Why is there a trailing '?' in the SQL?

Any insight would be appreciated.

Thanks,
Adrian

Upgrading appliance from 9 to 11 - LED display no longer functional

July 14, 2015, 1:06 pm
$
0
0
I've upgraded appliances in the past and the display no longer works, is there a different image I should be using when upgrading an Untangle Appliance?

An error has occurred: Invalid Settings

July 15, 2015, 3:47 am
$
0
0
We are receiving the following message when trying to create a new client in OpenVPN module.

An error has occurred:
Invalid Settings: 172.16.6.0/24 conflicts with address 172.16.5.254/16

This only started happening since we upgraded to the latest version of Untangle

Build: 11.1.0~svn20150430r40162release11.1-1wheezy
Kernel: 3.2.0-4-untangle-amd64

Similar thread with the same issue
http://forums.untangle.com/openvpn/3...ed-11-1-a.html

It has been working perfectly with our current settings prior to the latest update. Any ideas on how to resolve?

Spam Blocker Lite + Exchange

July 15, 2015, 12:32 pm
$
0
0
Prezados, boa tarde.

Estou com dificuldade para configurar o Untangle.

Minha empresa possui seus servidores virtualizado em VMWare.
A rede local opera na faixa 192.168.1.XX.
O servidor de emails tem Windows 2012 Server com Exchange 2010 instalado e está em uma DMZ por VLAN com o IP 192.168.5.XX - MS 255.255.255.248/29 - GW 192.168.5.XX.

Tenho um servidor que é controlador de domínio, DNS e DHCP e o Gateway da rede é um Firewall Cisco sob o IP 192.168.1.XXX.

Instalei o Untangle em uma nova máquina virtual com o IP 192.168.1.248 para acesso à internet.
A rede interna em Transparent Bridge com o IP da DMZ 192.168.5.3

redeUT.JPG

Todos os IPs do Untangle estão 'pingando' normalmente.

Minha dúvida é: não estou conseguindo fazer com que os emails 'de fora' cheguem no meu Untangle.
Fiz o teste na Configuração > Email > Servidor de Saída, enviando um email teste e foi enviado com sucesso.

Em tempo.
Foi feito um teste de telnet por IP na porta 25 e não responde. Responde somente se testado telnet em localhost.

Desde já meu muito obrigado.

Orimar Pereira de França Júnior
Setor Tecnologia da Informação
________________________________________

Companhia Águas de Joinville
http://www.aguasdejoinville.com.br
Attached Images

Bucket Pricing

July 15, 2015, 1:13 pm
$
0
0
I'm bringing this up again because this is becoming a real pain for me. I am on the verge of dumping Untangle for Sophos UTM, as it is about half the price and claims to do much more. (I don't claim to like it more, but my clients won't care...)

I have many sites with 15-20 computers, without multi-WANs and without multi-sites (i.e. no VPN needed). With the current pricing model, there is no way that Untangle competes with any other UTM, as we are forced to purchase many apps we have absolutely no use for, and to buy 50 licenses for a site with only 15 computers! :confused:(and buying individual apps is ridiculous, since the cost of any 3 apps is more than the complete package:lol)

I remember that at some point appliance licensing was unlimited and not IP based. Although the hardware cost was unbelievably expensive, this at least helped for clients that had a BYOD model (i.e. Hospitals that allow patients to use phones and laptops). From my phone call today, appliances now also have an IP limit. So now what am I supposed to do in a hospital or nursing facility? (and bypassing is not an option!)

The licensing model needs to change ASAP or its goodbye Untangle! I would suggest having several packages (filtering, networking, etc.) and fixing the IP allotment bucket to something more reasonable (1-10,11-25,26-50,50-100,100-250 and so on...), reducing the price of individual apps, and removing the IP restriction from hardware devices.

P.S. Sophos UTM is changing their software licensing model to be dependant on the CPU and RAM, so that the UTM is still licensed based on the usage, so while its not technically IP limited, the company still makes more money from larger deployments.

RDP issue

July 15, 2015, 1:35 pm
$
0
0
Hi
I have setup RDP port forward in our untangle firewall and it works just fine for users getting into our terminal server from outside the local network. If I try to use RDP on our internal network and use the external IP address RDP wont work. I also tried our local DMZ with same issue. Im wondering if im missing something to allow me to RDP into our terminal server if im coming from our local network.

Can't RDP from inside Out.

July 16, 2015, 10:38 am
$
0
0
Hey guys,

I'm having a little trouble trying to RDP from inside my network to our server on another city. I can't RDP to any computer here inside the network though.

I've made sure RDP is unblocked on the bypass and filter packet rules. I've reinstalled untangle and I have not installed any apps yet. that makes no sense. Untangle is blocking outgoing RDP connections by default somewhere.

Anyone knows how to solve this?

I'm attaching my WAN and LAN configs.

wan.png

lan.png
Attached Images
Search

Spam Blocker Lite + Exchange.... help me I'm in trouble.

July 16, 2015, 11:48 am
$
0
0
Dears, good morning.

I'm having trouble setting up the Untangle.
My company has its virtualized servers on VMWare.
The local network operates in the range 192.168.1.XX.
The mail server has Windows Server 2012 with Exchange 2010 installed and is in a DMZ for VLAN with IP 192.168.5.XX - MS 255.255.255.248/29 - GW 192.168.5.XX.
I have a server that is a domain controller, DNS and DHCP and Gateway network is a Cisco Firewall under the IP 192.168.1.XXX.
Untangle installed in a new virtual machine with the IP 192.168.1.248 for internet access.
The internal network in Transparent Bridge with the IP 192.168.5.3 DMZ

RedeTI.JPG

All IPs Untangle are 'ping' normally.
My question is: I am not able to receive incomming emails outside my network come in my Untangle.
I auditioned in Settings> Email> Outgoing Server by sending an email test and was sent successfully.

An IP telnet test was done on port 25 and is unresponsive. Responds only if tested in telnet localhost.

Thank you very much.

Orimar Pereira de França Júnior
IT Support.
Attached Images

Allowing only incoming connections from dynamic ip

July 16, 2015, 3:51 pm
$
0
0
I have a situation where a business has 4 office locations. The primary office has a phone server located on their network. Current router is port forwarding traffic to that phone server. Because the ports are forwarded we are receiving a lot of bogus traffic hitting the phone server. I would like to filter this traffic to only the other offices. The three remote offices don't have fixed ip addresses. I am wondering if I could set up a dyndns host name for each office then block all but those host names with the firewall?

I understand that the NAT is going to block all but what is forwarded so I then want the firewall to further filter the wheat from the chafe so to speak.

If you have any other suggestions as to how this could be accomplished please let me know.

Facebook not accessible when HTTPS inspector is active

July 16, 2015, 4:31 pm
$
0
0
HTTPS inspector is causing Facebook apps to fail to connect.

I followed the procedure to download the root certificate all our systems, and they installed properly. We're able to use other HTTPS properties like Gmail with success and logs show they are being inspected.

When I disable HTTPS inspector, the Facebook apps work fine.

HTTPS inspector's event log reports the connection to 31.13.66.6 was abandoned with the detail "Received fatal alert: unknown_ca".

When I enter https://31.13.66.6 and view the certificate I'm told the certificate is invalid, and that

The certificate is only valid for the following names: *.facebook.com, facebook.com, *.fb.com, fb.com, *.fbsbx.com, *.fbcdn.net, *.xx.fbcdn.net, *.xy.fbcdn.net, *.xz.fbcdn.net, *.m.facebook.com, *.messenger.com, messenger.com

I assume it is invalid because it's an IP and not a URL that matches that list?

The event log shows that some of the connections made to Facebook succeed, then some fail and cause this disruption. Is there an Untangle log or other tool that could allow me to see all the traffic associated with a particular device like my iPhone so that I might see the exact chain of events?

From other posts it sounds like some organizations hard code certificates into apps to prevent man-in-the-middle operations. Does this sound like one of those times?

Running licensed 11.1.0~svn20150430r40162release11.1-1wheezy on a U50

NGFW v11.2 beta available!

July 16, 2015, 6:40 pm
$
0
0
The 11.2 beta is now available!

11.2 is one of our biggest releases ever.
Its tons of new stuff, including new reports and new intrusion prevention.
OVA files are now also released for vmware.

The changelog is here:
http://wiki.untangle.com/index.php/11.2_Changelog

NOTE:
If you encounter an issue please review the list of known bugs.
There are many!

The ISOs and IMGs can be downloaded here:

http://download.untangle.com/untangle_1120_x32.iso
http://download.untangle.com/untangle_1120_x64.iso

http://download.untangle.com/untangle_1120_x32.img
http://download.untangle.com/untangle_1120_x64.img

http://download.untangle.com/untangle_1120_x64.ova

Enjoy!

disclaimer: this is an beta. don't use it in production.

Hostname not resolving to main page?

July 16, 2015, 7:09 pm
$
0
0
I just recently did a fresh install from 9.4 to 11.1.0 and for some reason I can't get to my untangle server from outside of the network with a domain name or the IP.

I use dyn.org to handle my IP resolving and untangle is on a static IP not dynamic. When I used 9.4 i used to go to https://server.server.com and my Untangle admin login would load up. There I was able to alter any settings on the server. Since doing the upgrade I can no longer do this. The weird thing is internally I can access the admin page using either the IP or the domain name.

Here's what I have tried so far which all works.

I'm able to ping the untangle server with IP and domain name successfully outside the network.
I'm also able to access my DVR outside the network with domain name or IP. (using a port forward rule)
I'm able to VNC into my computer on the network with domain name or IP. (using a port forward rule)
I'm able to use OpenVPN into the untangle server as well.


Is this just an easy setting I missed so i can remotely manage the untangle server? I'm stumped... and I feel everything is setup accordingly with everything else working as intended... any feedback is appreciated!
Viewing all 5188 articles
Browse latest View live
Search