Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - sambuca

Pages: 1 2 3 [4] 5 6 ... 31
46
Users / Re: No VPN Connection on 10.04
« on: December 12, 2012, 07:25:58 am »
Ok, fair enough.

Just a clarification on the ports, in case anyone reads this later on.
Do not forward port 1701!! Doing so allows bypassing the security of the VPN completely.

In my setup I forwarded ports 500 and 4500, and also enabled "IPSEC passthrough" on the router.

br,
sambuca

47
Users / Re: No VPN Connection on 10.04
« on: December 11, 2012, 03:39:56 pm »
I have used my mobile data carrier for testing, but I can't guarantee that all providers are the same..

I would first see if there is any settings related to VPN in the modem.

br,
sambuca

48
Users / Re: No VPN Connection on 10.04
« on: December 10, 2012, 02:44:27 pm »
I don't do any special setup in LMCE for VPN, the standard setup done through the web-admin is enough.

That said, I did struggle to get my router to cooperate, and imho I think that is were most people have problems too. To support this theory even more, I am unable to get a VPN connection from my office, but from other networks it works fine.

br,
sambuca

49
Installation issues / Re: [SOLVED] IP Camera in 1004
« on: December 10, 2012, 10:14:42 am »
Can someone provide a stack trace for this problem?

br,
sambuca

50
Users / Re: [SOLVED] Events: Stop ringing extension
« on: December 05, 2012, 10:03:36 am »
Another question is whether we should add workarounds and hacks to the wiki. Even if they are clearly marked as such, it's only a matter of time before someone thinks that it is a recommended or supported way of doing things.

I assume that you have added a feature request for this?

br,
sambuca

51
Users / Re: Trigger script with respond to events
« on: November 30, 2012, 08:55:41 pm »
You will find all commands available to you in Advanced -> DCE -> Commands in the web admin. In that list is also the device that implements it (the device the command must be sent to).

In your case you might find what you are looking for with "Spawn Application" in the App_Server device (note that there is one App_Server per computer).

br,
sambuca

52
Users / Re: No VPN Connection on 10.04
« on: November 30, 2012, 08:51:31 pm »
I have experienced that ipsec has stopped a few times - I haven't looked any more at it.

I'm sorry, but I don't know much about xl2tpd in this regard.

br,
sambuca

53
Users / Re: No VPN Connection on 10.04
« on: November 28, 2012, 07:26:28 am »
From auth.log I can see that the ipsec connection has been established. But I see no record of the connection part of xl2tpd/pppd in syslog. Are you sure you have copied enough of the log?

br,
sambuca

54
Users / Re: DAY/NIGHT = Time or 'timeframe'?
« on: November 26, 2012, 12:16:27 pm »
There are events for sunset and sunrise, you can use those instead.

Also see http://wiki.linuxmce.org/index.php/Event_criteria#Time_of_Day.

br,
sambuca

55
Users / Re: No VPN Connection on 10.04
« on: November 24, 2012, 01:13:22 pm »
pw44, from the logs it seem like the ipsec connection has been established succesfully, but there are no record of any xl2tpd activity. Are xl2tdp running?

br,
sambuca

56
Users / Re: No VPN Connection on 10.04
« on: November 06, 2012, 08:20:26 am »
Mine is
Quote
virtual_private=%4:192.168.80.0/24
and it is working, so I don't think that is your problem.

I found I couldn't get a connection to work however until I replaced the !VPNpass1 against my user with a plain text password.  Hope this helps someone make sense of the issues.
What do you mean, "!VPNPass1" seems pretty plain text to me..?

br,
sambuca

57
Users / Re: No VPN Connection on 10.04
« on: November 05, 2012, 12:36:37 pm »
It is the "Can connect to VPN" setting, yes.

br,
sambuca

58
Users / Re: No VPN Connection on 10.04
« on: November 05, 2012, 10:54:03 am »
Just for reference, this is the wiki page that describes VPN in LMCE (http://wiki.linuxmce.org/index.php/VPN). I'm sure most of you have read it already, though.

There are some gotchas in there as well, for instance this
Quote
Note: Currently you need to re-enable the user and change his username after any change to the Network settings page as the files are rewritten

Also, messing around with forwarding network ports without understanding how VPN works can be a big security problem:
Quote
Do NOT forward port 1701 (L2TP), this would have allowed direct access to the L2TP server, bypassing IPSEC entirely and sending all your data unencrypted. The whole idea is that the IPSEC connection encrypts your data from end to end, and on the server end, this data will be passed on to port 1701 internally.
It *is* easier to get a connection when not going through IPSEC, but some devices will happily connect to the L2TP server if the IPSEC fails for some reason.

That said, my biggest hurdle getting VPN set up was to configure other network routers in the path (my broadband router) properly. This was mostly a try-and-fail history until I got the correct setting. Any setting related to IPSEC should be tried in all their possible settings (I had to turn one IPSEC setting off to get mine working). It seems to me that IPSEC is the cause of most problems with this VPN, so that is where I would do my investigations.

And in one case I was unable to get VPN working from one particular network because of the router at that site (or possibly other network limitation at that site).

If you have any concrete questions I can try to answer them.

best regards,
sambuca

59
Developers / Re: Missing template
« on: November 02, 2012, 10:05:29 pm »
You perhaps need to do a sqlCVS update. In the web admin -> Advanced -> sqlCVS -> Update. Check all (at least under DCE), and click next. (You need to have allowed popup windows for this to work.)

See if that helps.

br,
sambuca

60
Users / Re: FreePbx
« on: October 18, 2012, 08:48:37 am »
I use the SPA3102 in 1004 as a phone line (PSTN -> IP adapter). I configured it using the phone lines page in the web admin. You have to select the SPA protocol. What took the most work was to set up the SPA itself.

And for the provider setups, if the setups had been integrated into LinuxMCE, they would probably have been considered when changing the Asterisk setup for 1004. Because they were only in a wiki page, they most probably were not.

br,
sambuca

Pages: 1 2 3 [4] 5 6 ... 31