von_Schlieffen

Forum Replies Created

Viewing 15 posts - 1 through 15 (of 36 total)
  • Author
    Posts
  • in reply to: Allow netflix on http proxy. #54225

    Another solution to resolve your problem :

    Put a rule on HTTP Proxy : “Do not capture request”

    Interface : your Wifi Interface
    Source : leave blank
    Destination : 108.175.32.0-108.175.47.254

    It’s the ip range of Netfix servers.

    Hope this help.

    in reply to: Allow netflix on http proxy. #54224

    Hello,

    First of all put a fixed IP with DHCP seciton and Mac address for your TV. Restart your tv and verify IP assigned.

    2th put a rule on HTTP proxy section put a rule :
    source interface from you wifi lan
    source IP : Ip assigned to your TV.
    Destination IP leaves blank.
    Clic on save button.

    All traffic for your tv doesn’t be filtered by proxy.
    I have same problem with Windows 10 update. They can not be run under proxy.

    Hope this help.

    in reply to: Strange behaviour after Auto Updadate of Bugfix 23320 #53841

    same problem, need to reboot twice to get Zeroshell working again.

    But package “23321 BUG FIX #01 – Net Balancer and VPN Failover” didn’t display as installed. If I try to install package “23320 BUG FIX #00 – Net Balancer and VPN Failover”, program display an error message that explain 23321 is installed.

    Kind regards.

    in reply to: Bug Zerotruth 3.0 #53652

    Truthahn,

    I found the problem.
    Registration code number was not displayed. I delete it and recreate it and now, I receive updates again.

    Today, I made a new donation for you as promise in the past.

    Thanks for your help.

    in reply to: Bug Zerotruth 3.0 #53651

    Sorry,

    No update available…

    in reply to: Bug Zerotruth 3.0 #53649

    Truthahn,

    I don’t know how you make this list but here is my files list :

    -rwxr-xr-x 1 root root 19496 Dec 12 09:20 adduser.sh
    -rwxr-xr-x 1 root root 17071 Dec 12 09:20 addusers.sh
    -rwxr-xr-x 1 root root 19541 Dec 12 09:20 addusersfile.sh
    -rwxr-xr-x 1 root root 5439 Dec 12 09:20 adduserstickets.sh
    -rwxr-xr-x 1 root root 4551 Dec 12 09:20 adminlog.sh
    drwxr-xr-x 3 root root 4096 Dec 12 09:20 bin
    -rwxr-xr-x 1 root root 1017 Dec 12 09:20 blockedhosts.sh
    -rwxr-xr-x 1 root root 10525 Dec 12 09:20 chargepaypal.sh
    -rwxr-xr-x 1 root root 7607 Dec 12 09:20 chargepaypalin.sh
    -rwxrwxr-x 1 root root 33720 Dec 12 09:20 classes.sh
    drwxr-xr-x 6 root root 4096 Jan 16 15:24 conf
    -rwxr-xr-x 1 root root 302959 Dec 12 09:20 config.sh
    -rwxr-xr-x 1 root root 2007 Dec 12 09:20 controlpp.sh
    -rwxr-xr-x 1 root root 930 Dec 12 09:20 data_cpu.sh
    -rwxr-xr-x 1 root root 1155 Dec 12 09:20 data_down.sh
    -rwxr-xr-x 1 root root 992 Dec 12 09:20 data_if.sh
    -rwxr-xr-x 1 root root 1057 Dec 12 09:20 data_mem.sh
    drwxrwxr-x 2 root root 4096 Dec 12 09:20 deleted
    -rwxr-xr-x 1 root root 12039 Dec 12 09:20 details.sh
    -rwxr-xr-x 1 root root 10727 Dec 12 09:20 detailscon.sh
    -rwxr-xr-x 1 root root 12598 Dec 12 09:20 detailsol.sh
    -rwxr-xr-x 1 root root 11241 Dec 12 09:20 detailsolcon.sh
    -rwxr-xr-x 1 root root 8144 Dec 12 09:20 email.sh
    -rwxr-xr-x 1 root root 3283 Dec 12 09:20 enablepopup.sh
    drwxrwxr-x 2 root root 4096 Dec 12 09:20 exec
    drwxr-xr-x 2 root root 4096 Dec 12 09:20 expired
    -rwxr-xr-x 1 root root 11148 Dec 12 09:20 footer.sh
    -rwxr-xr-x 1 root root 10251 Dec 12 09:20 forgot.sh
    -rwxr-xr-x 1 root root 8955 Dec 12 09:20 forgotasterisk.sh
    -rwxrwxr-x 1 root root 50355 Dec 12 09:20 functions.sh
    drwxr-xr-x 2 root root 4096 Dec 12 09:20 include
    -rwxr-xr-x 1 root root 23560 Dec 12 09:20 index.sh
    drwxr-xr-x 8 root root 4096 Dec 12 09:20 language
    drwxr-xr-x 3 root root 4096 Dec 13 12:07 lib
    -rwxr-xr-x 1 root root 2961 Dec 12 09:20 likefb.sh
    drwxrwxrwx 7 root root 4096 Dec 12 09:20 log
    -rwxr-xr-x 1 root root 6804 Dec 12 09:20 loginerror.sh
    -rwxr-xr-x 1 root root 7081 Dec 12 09:20 main.sh
    drwxrwxr-x 11 root root 4096 Dec 12 09:20 proxy
    -rwxr-xr-x 1 root root 2751 Dec 12 09:20 qrcontrol.sh
    -rw-r–r– 1 root root 242 Dec 12 09:20 redirect.html
    -rw-r–r– 1 root root 233 Dec 12 09:20 redirectbk.html
    -rw-r–r– 1 root root 254 Dec 12 09:20 redirectfb.html
    -rw-r–r– 1 root root 212 Dec 12 09:20 redirectfile.html
    -rw-r–r– 1 root root 263 Dec 12 09:20 redirectimglogin.html
    -rw-r–r– 1 root root 241 Dec 12 09:20 redirectlogo.html
    -rw-r–r– 1 root root 247 Dec 12 09:20 redirectpopup.html
    -rw-r–r– 1 root root 255 Dec 12 09:20 redirectwg.html
    -rwxr-xr-x 1 root root 25010 Dec 12 09:20 register.sh
    -rwxr-xr-x 1 root root 24710 Dec 12 09:20 registerasterisk.sh
    -rwxr-xr-x 1 root root 12735 Dec 12 09:20 registerfree.sh
    -rwxr-xr-x 1 root root 9035 Dec 12 09:20 remotecp.sh
    -rwxr-xr-x 1 root root 8856 Dec 12 09:20 repass.sh
    drwxr-xr-x 2 root root 4096 Dec 12 09:20 restorebk
    drwxr-xr-x 2 root root 4096 Dec 12 09:20 scripts
    -rwxr-xr-x 1 root root 38079 Dec 12 09:20 search.sh
    -rwxr-xr-x 1 root root 1426 Dec 12 09:20 shaperdown.sh
    -rwxr-xr-x 1 root root 1413 Dec 12 09:20 shaperdownu.sh
    -rwxr-xr-x 1 root root 1512 Dec 12 09:20 shaperup.sh
    -rwxr-xr-x 1 root root 1574 Dec 12 09:20 shaperupu.sh
    drwxr-xr-x 3 root root 4096 Dec 12 09:20 share
    -rwxr-xr-x 1 root root 3906 Dec 12 09:20 showinfo.sh
    -rwxr-xr-x 1 root root 8451 Dec 12 09:20 sms.sh
    drwxrwxrwx 3 root root 4096 Jan 16 00:01 tmp
    -rwxr-xr-x 1 root root 1644 Dec 12 09:20 unlockasterisk.sh
    -rwxr-xr-x 1 root root 23598 Dec 12 09:20 updateuser.sh
    -rwxr-xr-x 1 root root 5394 Dec 12 09:20 userlog.sh
    -rwxr-xr-x 1 root apache 11980 Jan 14 17:00 users.sh
    -rwxr-xr-x 1 root root 1390 Dec 12 09:20 usershaperdown.sh
    -rwxr-xr-x 1 root root 1461 Dec 12 09:20 usershaperup.sh
    -rwxr-xr-x 1 root root 7137 Dec 12 09:20 userswait.sh
    -rwxr-xr-x 1 root root 938 Dec 12 09:20 viewkey.sh

    in reply to: Bug Zerotruth 3.0 #53646

    Truthahn,

    I have 2 sites :
    – the first at my office is running for professional access.
    – the second is at home to make some tests.

    No one is updating since version 3.0.

    I have make subscription to have this updates by you with two differents codes.

    kind regards.

    in reply to: Bug Zerotruth 3.0 #53644

    Yes I have changed this file to make a little change inside to get user name starting all with a “z” and validity for 100 to 1 instead of 1 to 100 for user in charge of register users, have this at first choice.

    I try to put your distribution file instead of my changed file (same timestamp) and I didn’t get any update too.

    This no update from I have installed version 3.0. Did you publish update since december ?

    Thanks for your help.

    in reply to: Bug Zerotruth 3.0 #53642

    Always same message : “No update available”.

    Kind regards.

    in reply to: Bug Zerotruth 3.0 #53640

    Truthahn,

    For a while now, I didn’t have any more update available in “Config / update” since version 3.0.

    Need I want to wait for this patch ?

    Kind regards.

    in reply to: DNS #53607

    Redfive,

    You are the best !
    I have delete free DNS service.
    Add the 2 rules you give me.

    And tataam : It’s pretty fine now !

    They use nbscan program to find trough port 53 system behind Zeroshell.

    nbscan -f -p 53 192.168.2.0/24 by example.

    Before change it, all systems was able to be see by this utilitie.
    After change, nothing displayed.

    And captive portable still running fine !

    Thanks for your help.

    in reply to: DNS #53605

    Thanks for your response.

    With this config I get problem. My authenticated users need access through a firewall on DMZ to they VDI machines (VMWare Windows 7 machines). This is on a part of our internal network. They need access to machines on DMZ.

    My only problem is how to limit DNS to current Zeroshell server to avoid creating a DNS tunneling relevate by auditor.

    So how delete “Free service DNS” and remplace it with firewall rules to limit DNS request to Zeroshell and limit it at this server.

    This is the only point they found on Zeroshell.

    Thanks for your help.

    in reply to: DNS #53603

    Network topology is simple :

    ETH0 is Wifi network
    ETH1 is DMZ network natting is enabled on this interface.

    Default policies is Allow.

    I’m using captive portal for user authentication.

    in reply to: DNS #53601

    I’m running Zeroshell 3.2.1.
    They are used Nmap Security Scanner. They let me saw breaking in Wifi.

    I make a wifi network like 192.168.192.0/26 DHCP & DNS on Zeroshell machine. Use DNS a free open service (UDP 53) and DHCP/Bootp (UDP 67) like in your example configuration.

    Firewall rules is very simple :

    Forward : (51..64 is my wifi access points)

    1 ETH00 * ACCEPT all opt — in ETH00 out * 0.0.0.0/0 -> 192.168.2.0/24 source IP range 192.168.192.51-192.168.192.64 no
    2 ETH00 * ACCEPT all opt — in ETH00 out * 0.0.0.0/0 -> 172.16.0.0/20 source IP range 192.168.192.51-192.168.192.64 no
    3 ETH00 * ACCEPT all opt — in ETH00 out * 0.0.0.0/0 -> 0.0.0.0/0 source IP range 192.168.192.51-192.168.192.64 TIME from 00:00:00 to 23:45:00

    Input :

    1 ETH01 * ACCEPT all opt — in ETH01 out * 0.0.0.0/0 -> 0.0.0.0/0 no
    2 ETH00 * ACCEPT all opt — in ETH00 out * 0.0.0.0/0 -> 0.0.0.0/0 source IP range 192.168.192.51-192.168.192.64 no
    3 ETH00 * ACCEPT all opt — in ETH00 out * 0.0.0.0/0 -> 0.0.0.0/0 TIME from 07:00:00 to 20:00:00 on Mon,Tue,Wed,Thu,Fri no
    4 ETH00 * DROP all opt — in ETH00 out * 0.0.0.0/0 -> 0.0.0.0/0

    Output :

    1 * * ACCEPT all opt — in * out * 0.0.0.0/0 -> 0.0.0.0/0 destination IP range 192.168.192.51-192.168.192.64 no
    2 * * ACCEPT all opt — in * out * 0.0.0.0/0 -> 192.168.192.0/22 TIME from 07:00:00 to 20:00:00 on Mon,Tue,Wed,Thu,Fri no
    3 * * DROP all opt — in * out * 0.0.0.0/0 -> 192.168.192.0/22

    This rules are made to avoid wifi after 8:00 PM and before 7:00 AM.
    Between 11:45 PM and 12:00 PM traffic is disabled for Wifi access points to force a reset.

    If you want I can send you my config.

    Kind regards.

    in reply to: iPad with iOS 8 #53502

    Hello,

    I found the problem.

    On my DHCP server I give bad “Local Domain” : “local.wifi” instead of “wifi.local”.
    It seems that redirection with IOS 8.x didn’t run if this “Local Domain” wrong.

Viewing 15 posts - 1 through 15 (of 36 total)