Tag Archives: Open Source

Vyatta Blocking Email Download of Attachments

I check my site logs pretty often to find out how people are arriving at this blog and have seen an increase in traffic that points to an exchange I had with a visitor about Vyatta blocking email attachment downloads.  I wanted to post this quick entry so that people looking for a quick fix could get to this without running through the complete conversation on the other post: http://d3planet.com/rtfb/2009/11/02/vyatta-firewall-basics-and-configuration/

Here’s the quick and dirty solution:

Problem:  Vyatta is blocking download of email attachments.  This solution only applies if your implementation is using the web proxy and squidguard URL filtering.

Solution:  Use the following command to get Vyatta to allow IP addresses to be called directly.

set service webproxy url-filtering squidguard allow-ipaddr-url

or

set service webproxy url-filtering squidguard rule XX allow-ipaddr-url

Keep reading for more info on the issue…

Continue reading Vyatta Blocking Email Download of Attachments

Create a Router with Front Firewall using Vyatta on VMware Workstation

Vyatta is a powerful enterprise class software router that has some really incredible features.  It has a CLI (command line interface) as well as a web interface.  I’ve gotten a few requests about configuring it as a front system but until now have only really worked with Vyatta as a pure routing appliance internal to my network.  It has been my traffic cop between my lab subnet, user subnet, and server subnet but now I’ll try to configure it as a front end based on an exchange I had on another thread.

This should be able to give you some examples with getting started using Vyatta as a front firewall.

If you don’t have the software, you can download a free version, called Vyatta Core, from Vyatta’s website.  You have to register, but don’t worry, they won’t spam you and they have extensive documentation on the product that you can pull down after registering.  It’s an excellent resource to learn and practice your routing skills, especially since you can stand up the product on random hardware or in a virtual machine.  Vyatta even has downloads specific to VMware implementations.  Check it out and come back if you’re interested in seeing this post through.  http://www.vyatta.com.

And now for the good part.

Continue reading Create a Router with Front Firewall using Vyatta on VMware Workstation

Vyatta Firewall Basics and Configuration

For a post that is a little more advanced, try this one: Create a Router With Front Firewall Using Vyatta on VMware Workstation.

Otherwise… read on. 🙂

A few weeks ago, I installed Vyatta Open Source as a router internal to my network to see how it handled traffic between multiple subnets.  To put it plainly, it worked like a champ!  I put the router in place, assigned IP addresses to the NICs (network interface cards), and let the system do its thing.  It now connects traffic between my physical network, my production virtual network, and my virtual lab running on ESX 3.5.  I can easily manage most firewalls and routers that have a GUI but Vyatta presented a new challenge to me.  In the case of this system, for some tasks it’s a lot easier to use the command line interface (CLI).

So without further ado, here’s the basics of Vyatta’s firewall.

console001

Keep reading…

Continue reading Vyatta Firewall Basics and Configuration

Vyatta Community Edition, Open Source Router

I’ve been running multiple subnets in my lab, and been dealing with the pain of having to VPN into each separate subnet when needing to make a change, test something, or deploy something.  It’s been a learning experience and I’ve configured both OpenVPN and ISA Server 2006 VPN’s and successfully bounced around the various networks as necessary, but it’s been a real pain to have to VPN into one network, grab files, and then VPN into a different network to test and deploy those files, as an example.  So I began a hunt for an open source router that would give me more control than Untangle, which is an excellent open source routing and firewall tool.  Simply put, I wanted finer grained control than Untangle is designed to supply. As an example, I wanted to be able to filter network traffic based on mac addresses instead of IP addresses.

In my search, I came across Vyatta, which is an open source networking package that likes to compare itself to Cisco in functionality and control.  I decided to check out their site and found that they offer a free ‘Community Edition’.  I looked at the features of the community edition, then checked the VMware Appliances site and found that Vyatta has a pre-built VMware appliance.  NICE!  I filled out a short registration form, downloaded the appliance and all the documentation, which is thick to say the least, and fired up the appliance in VMware Workstation.

console001

Continue reading Vyatta Community Edition, Open Source Router

Groundwork Open Source Monitoring

 GWOS001A few years ago, I wanted to try out a free network and system monitoring package so I decided to download and try to setup Nagios.  Since I’m no Linux guru, though working with Linux has started to change lately, it took me quite a while to get Nagios setup and configured.  After doing so, I finally realized that I had to manually edit text files on the environment, Linux, to configure host monitoring.  What a monumental pain!  Learning to use VI, then realizing that nano is much easier to use, but still, it took over an hour for me to figure out how to setup monitoring of a single host.  As I’ve been running VMware virtualization for years now, setting up and tearing down servers is almost part of my daily life.  Configuring monitoring of these servers immediately became a burden I wasn’t willing to undertake.

Then I discovered Groundwork Open Source (GWOS).  What a cool package!  Not to mention, they have a virtual appliance already setup and configured for free (the community edition).

Continue reading Groundwork Open Source Monitoring

Turnkey Linux WordPress Appliance

Just a few days ago, after checking out what my friend Bobby Shea had done with his blog, decided to create a new blog.  More for the fun and personal stuff than this tech one.  http://stuff.d3planet.com http://d3planet.com/clement/.

Anyway, I always enjoy playing with new technology, especially if something is plug-and-play, so I decided to download the Turnkey Linux WordPress Appliance.  It really pretty cool.  I created a new VM in my lab, gave it 256MB of RAM, 10GB of HD storage space, mounted the ISO, and fired up the VM.

The installation was honestly one of the easiest ever.  I was challenged for new passwords a few times, and the installation complete with me looking at a console screen with a bunch of sites on the server, 1 for the blog, and others for management.  I added the necessary DNS entries, created a firewall rule in ISA Server and hit it.  Talk about a pretty seemless process, I was really impressed with the appliance and the fact that it behaved as documented.  As any tech professional can attest, that’s not always guaranteed.  Hell as any general user can attest. lol.

Anyway, I wanted to upgrade the environment to the latest version of WordPress, so I went to the wordpress site, downloaded the bits, and started following their 3-step guide to upgrading.  I just knew I would run into trouble there, but I did not.  At least not much trouble.  I don’t claim to know much about Linux, or WordPress for that matter, so I fiddled around with the admin panels until I was significantly aware of the fact that I was going to have to upgrade manually.  I fired up Veeam’s FastSCP, knowing that it can handle file transfers into linux environments, and started following the 3-steps to upgrade.  Delete this, copy that, replace that, backup this.  Next thing I know, upgrade complete, no beats skipped.

Then, deciding to push my luck, I decided to install some plugins, widgets, and themes.  Again, no issue.  Not sure what I was expecting, but I know I wasn’t expecting things to go so smoothly.

Next push, decided to download the WordPress iPhone app.  Again, no issue.  Don’t get me wrong, I love Microsoft and MOSS, but wow, a blog up and running and ready for posting from scratch within the span of a few hours, self-hosted? Hmm.

Guess I’ll end this by saying, WORDPRESS ROCKS!  It’s not nearly as deep as a MOSS environment, but that does keep it simple for just what you’d expect out of the product.

WordPress Appliance Turnkey Linux Software Appliances

Network Security Appliance for Free: Untangle

About a year ago a good friend, Bobby Shea, introduced me to Untangle.  I finally got around to implementing it on my network and I’ve found it to be an amazing system.

Untangle is an open source scaled down Linux implementation that can turn your old throw away PCs into commercial grade network appliances.  Why spend several hundred to several thousand dollars, when chances are that you’ve got the requisite hardware just sitting around gathering dust.  You’ll likely have to add a NIC or two, but otherwise, that’s it!  Oh, and it can even be virtualized.

Continue reading Network Security Appliance for Free: Untangle

Windows Live Writer + CKS EBE

I was reading a post on Gav’s Blog by the same title as this one and noticed that he wrote a section about having categories set.

It appears that within Live Writer, you can blog until your heart’s content, but when you set multiple categories, you can’t publish, and when you set 1 category, it doesn’t stick.  I’ve done a little digging, and I can elaborate a little on the behavior.

When setting multiple categories within Live Writer, yes the publishing fails.

When setting a single category, publishing succeeds, but the category doesn’t show up in any of your public views.  However, if you go to the SharePoint list, you will see that the category IS indeed associated with the blog post, however when the page renders, it is failing to show up.  See the screenshots below.  Another odd part of this behavior is that from this list view, the categories that I have set up for the other posts aren’t showing up.  Odd behavior!

Continue reading Windows Live Writer + CKS EBE