nfldwifi

Forum Replies Created

Viewing 9 posts - 1 through 9 (of 9 total)
  • Author
    Posts
  • in reply to: How to Uninstall SNORT? #49078
    nfldwifi
    Member

    @JC wrote:

    what does the block page say? HAVP? check blacklist button
    do u use dansguardian?
    did u perhaps block certain protocols?

    only some thoughts.
    personally i run off the cd and make occasional backups of my db, that way if the machine i am using dies it is only a few moments to get the replacement runnin correctly.

    We are running the system off a USB drive. We are not using Dansgaurd. The only thing we are really running is hte QoS and l7 filtering for P2P services.

    We are getting no error messages on a couple of the sites, just a blank page. Bypass the ZC box and all is well.

    in reply to: How to Uninstall SNORT? #49074
    nfldwifi
    Member

    So we got it uninstalled, and rebooted the server. We are still having some browsing issues. All of a sudden we cannot browse certain web sites. Bypass the ZC server and we can browse those sites no problem.

    What should we be looking into?

    in reply to: Issues Installing ZeroShell to HDD or USB Drive #49049
    nfldwifi
    Member

    @ppalias wrote:

    If the flash controller is good you won’t have any issues. The flash is read when you boot and when a log is written, which you could disable to save the disk.

    We do have an HDD in this box as well, is there a way to make all the logs write to the HDD? Ihave not looked into this yet.

    in reply to: Zeroshell in Bridge Mode #49027
    nfldwifi
    Member

    @ppalias wrote:

    @nfldwifi wrote:

    @ppalias wrote:

    Azureus and uTorrent are clients of the Bittorrent protocol which you already have included, so no worries, your setup is fine. Just make sure you apply it on the correct WAN interface on the outgoing flow.

    I have it applied to the outgoing and incoming connections for the bridge. I beleive that is what the guide has instructed to do.

    We have a quad core box, 2.4GHz with 4 gigs of ram and gig ethernet connections. What type of bandwidth should we expect to be able to push through this box? WE have a 60meg up and down fiber connection, with roughly 320 users (no idea how many concurrent) that will be behind this box. Will this set up handle this? I have read where it should do just fine, just seeing what you thought.

    I don’t use a bridge, but the principal is to apply QoS filtering on the outgoing flow of the wan interface.

    ppalias,

    That is what essentially what we have done. We applied the QoS settings to the inbound and outbound connections. Or is applying the filtering to the inbound redunant and not needed?

    These are the instructions we followed from the ZC documentation file “•QoS and Traffic Shaping in Transparent Bridge mode”

    Adding QoS classes to the bridged interfaces
    Now it is the moment to assign the QoS classes created in the previous steps to the network interfaces whose outgoing traffic you want to control.

    The steps to be performed to assign the QoS classes to the interfaces are the following ones:
    •From [QoS]->[Interface Manager] click the button [Add Class] related to the ETH00 interface. From the dialog window that appears (look at the figure) click the button [Add] for the VOIP, P2P, SHELL and BULK QoS classes;
    •Add the same classes to the ETH01 interface with the same procedure of the previous step;
    •Enable the Quality of Service for ETH00 and ETH01 by clicking on the related flags “On”;
    •Save the changes by clicking on the button [Activate last Changes].
    Note that you have activated the QoS directly on the members (ETH00,ETH01) of the bridge and not on the BRIDGE00.

    At this point the QoS is working on the bridge, but all traffic is outgoing from the DEFAULT class because you haven’t classified the traffic yet. In the next steps we will do that.

    in reply to: Issues Installing ZeroShell to HDD or USB Drive #49047
    nfldwifi
    Member

    Ok….So after even more tests, looks like ZC is not compatible with our SATA controller, or our HD is too large? I installed the system on a 1GB flash drive, and all is well.

    So, hmm. Any issues with running this system off a flash drive? it doesn’t slow down performance does it? I am guessing not. The only time the system uses or loads from the USB drive is when we reboot the system, correct?

    in reply to: Issues Installing ZeroShell to HDD or USB Drive #49046
    nfldwifi
    Member

    Talk about a case of the “Mondays” and it’s only Saturday. I see the error of my ways, the disk was formatted for FAT. We formatted our disk to RAW, and now it copied like a champ.

    Upon boot from the HDD (Western Digital 230GB HDD) we are getting the following error.

    kernel panic not syncing vfs unable to mount root fs on unknown-block 1,2

    By doing a quick search, not really finding anything that is pointing me in the right direction. Thoughts?

    in reply to: Zeroshell in Bridge Mode #49024
    nfldwifi
    Member

    @ppalias wrote:

    Azureus and uTorrent are clients of the Bittorrent protocol which you already have included, so no worries, your setup is fine. Just make sure you apply it on the correct WAN interface on the outgoing flow.

    I have it applied to the outgoing and incoming connections for the bridge. I beleive that is what the guide has instructed to do.

    We have a quad core box, 2.4GHz with 4 gigs of ram and gig ethernet connections. What type of bandwidth should we expect to be able to push through this box? WE have a 60meg up and down fiber connection, with roughly 320 users (no idea how many concurrent) that will be behind this box. Will this set up handle this? I have read where it should do just fine, just seeing what you thought.

    in reply to: Zeroshell in Bridge Mode #49021
    nfldwifi
    Member

    @ppalias wrote:

    Yes I am afraid you will have to…

    Ok, no worries. ppalias see my two new attachments.

    On this screen shot, we show the P2P applications we are going to l7 filter.

    I notice some of the more popular ones are not an option to choose from. For example, uTorrent isn’t an option to choose from, Azureus also isn’t one to choose from. How do we go about updating this list so the l7 filters know what to look for?

    Also, see this screen shot.

    Are these settings correct?

    I appreciate your help and input. BTW ZeroShell is an amazing application. Great support and very stable build. Loving it.

    in reply to: Zeroshell in Bridge Mode #49019
    nfldwifi
    Member

    @ppalias wrote:

    There is not route issue on Bridge mode. Bridge is in layer 2 while routing is in L3. Check if there is a loop in your network and ZS’ spanning tree has blocked a port.

    I figured out the issue. All traffic is being classified as P2P which is limited to 2kbps. Under QoS>Class Manager we have Class: P2P, Description: file sharing peer to peer. Then if you go to QoS>Classifier, we have:

    MARK all opt — in * out * 0.0.0.0/0 -> 0.0.0.0/0 MARK set 0xb
    Class: p2p

    Target Class we have P2P selected. In the tutorial on setting up the rule for sniffing out the P2P traffic there were on/off buttons to select the L7 traffic you wanted to look for. We don’t seem to have that in our Zeroshell. See screen shot.

    Do we manually have to add each one of the P2P applications from the L7 drop down list? That seems very teadious…..

Viewing 9 posts - 1 through 9 (of 9 total)