Re: [Efw-user] Browsing slow timeout
It reminds me the issue with Endian 2.5.1 had with HTTP Proxy enabled and Contentfilter. Basically a badly configured Dansguardian causes the slow internet connection and timeouts. A restart of Endian usually fixes the problem until the next time you reach the very low default values in Dansguardian and the problem occurs again. Some people at the time downgraded one version where this problem did not exist. I have not personally tested it on later versions except 2.5.1 so I cannot have an opinion On 22/04/2014 13:29, ANIS El Achèche wrote: Hey Guys! I have some navigation problems, and can't find out if it's a DNS problem from my ISP or it's a problem caused by EFW. So I'm running efw as my GW, the Internet is stable and every thing is OK, there is just one problem, during the navigation I have RANDOM load slow.. The web page stay loading and loading until I have This web page is not available.. I thinked that it is a DNS problem so I changed my DNS servers to use new ones.. But I have the same issue.. I'm running efw 2.5.1 community version. Thx in advance. -- Start Your Social Network Today - Download eXo Platform Build your Enterprise Intranet with eXo Platform Software Java Based Open Source Intranet - Social, Extensible, Cloud Ready Get Started Now And Turn Your Intranet Into A Collaboration Platform http://p.sf.net/sfu/ExoPlatform ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Start Your Social Network Today - Download eXo Platform Build your Enterprise Intranet with eXo Platform Software Java Based Open Source Intranet - Social, Extensible, Cloud Ready Get Started Now And Turn Your Intranet Into A Collaboration Platform http://p.sf.net/sfu/ExoPlatform___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] RES: RES: Is policy routing available inthecommunityedition?
Thank you! It worked just like you said. However there appeared a couple problems when these policies are activated and the output from the debug looks strange. Is it ok with if I send it to your private email and not on the mailling list? Thanks Stef - Original Message - From: Zola To: efw-user@lists.sourceforge.net Sent: Tuesday, March 10, 2009 11:05 PM Subject: Re: [Efw-user] RES: RES: Is policy routing available inthecommunityedition? i think these rule are correct. on,10.200.10.0/24,0.0.0.0/0,UPLINK:ADSL, via ADSL from GREEN,,, on,192.168.100.0/24,0.0.0.0/0,UPLINK:main via main from DMZ,,, apply rules, and test it by traceroute or something else. if not working check debug messages, and send output in email.. /usr/local/bin/setpolicyrouting.py --debug Z. 2009/3/10 Stefanos E. Tsorakis ad...@fit.ac.cy First of all thanks for the reply. Now let me see if I got this correct: I have a Green network 10.200.10.0/24 I have an Orange network 192.168.100.0/24 I have a T1 and an ADSL. I want to setup policy routing so that all traffic from Green goes out from ADSL for all ports and all traffic for all ports to/from Orange goes out from T1. How would the config file look like? on,10.200.10.0/24,0.0.0.0/0,UPLINK:ADSL, via ADSL from ? on,192.168.100.0.24,0.0.0.0/0,UPLINK:main via main from ? Can anybody give a hint how to complete these rules? thanks stef - Original Message - From: Zola To: efw-user@lists.sourceforge.net Sent: Tuesday, March 10, 2009 1:25 AM Subject: Re: [Efw-user] RES: RES: Is policy routing available in thecommunityedition? so first, thanks endian developers to create script for this :) -create file in /var/efw/routing/ file name: config EXAMPLE /var/efw/routing/config: on,192.168.1.101,0.0.0.0/0,UPLINK:uplink1,https via backupline from 1.101,,tcp,443 on,192.168.1.101,0.0.0.0/0,UPLINK:main,ssh via main from 1.101,,tcp,22 --- rule schema look like: 'enabled', 'src_ip', 'dst_ip', 'gateway', 'remark', 'dscp', 'proto', 'dst_port', 'mac', 'log', 'src_dev', 'use_backup' i dont know what means dscp(maybe qos?) and i dont try mac or src_dev options. if you have experience in phyton check this file for more details how work: /usr/local/bin/setpolicyrouting.py this is a default values if you not define something: enabled = 'on' src_ip = '0/0' dst_ip = '0/0' gateway = '' remark = '' dscp = 0 proto = '' dst_port = '' mac = '' log = 'off' src_dev = '' use_backup = '' AFTER you edit config file apply your settings this command: /usr/local/bin/setpolicyrouting.py --debug --debug optional, just show what rules applied exactly. Z. 2009/3/9 Marco Aurélio maure...@spin.com.br OK. Thank you. I am sure it will help many people like me. []´s Marco Aurelio De: Zola [mailto:jz...@freemail.hu] Enviada em: domingo, 8 de março de 2009 20:05 Para: efw-u...@lists.sourceforgenet Assunto: Re: [Efw-user] RES: Is policy routing available in the communityedition? hi yeh its possible, tomorrow if i have some time i will write how to do this. Z. 2009/3/8 Marco Aurélio maure...@spin.com.br I also have this problem and I saw only the commercial version there is this possibility. Is there a possibility to configure routing policy by command line or configuration file? Can anyone help this? Thanks Marco Aurelio -- De: Stefanos E. Tsorakis [mailto:ad...@fit.ac.cy] Enviada em: quarta-feira, 4 de março de 2009 17:20 Para: efw-user@lists.sourceforge.net Assunto: [Efw-user] Is policy routing available in the community edition? Is policy routing available in the community edition or is it just missing from the GUI? In any case does anyone have any idea how to configure all traffic from green to come out from a specific uplink? Thanks, stef -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee
Re: [Efw-user] RES: RES: Is policy routing available in thecommunityedition?
First of all thanks for the reply. Now let me see if I got this correct: I have a Green network 10.200.10.0/24 I have an Orange network 192.168.100.0/24 I have a T1 and an ADSL. I want to setup policy routing so that all traffic from Green goes out from ADSL for all ports and all traffic for all ports to/from Orange goes out from T1. How would the config file look like? on,10.200.10.0/24,0.0.0.0/0,UPLINK:ADSL, via ADSL from ? on,192.168.100.0.24,0.0.0.0/0,UPLINK:main via main from ? Can anybody give a hint how to complete these rules? thanks stef - Original Message - From: Zola To: efw-user@lists.sourceforge.net Sent: Tuesday, March 10, 2009 1:25 AM Subject: Re: [Efw-user] RES: RES: Is policy routing available in thecommunityedition? so first, thanks endian developers to create script for this :) -create file in /var/efw/routing/ file name: config EXAMPLE /var/efw/routing/config: on,192.168.1.101,0.0.0.0/0,UPLINK:uplink1,https via backupline from 1.101,,tcp,443 on,192.168.1.101,0.0.0.0/0,UPLINK:main,ssh via main from 1.101,,tcp,22 --- rule schema look like: 'enabled', 'src_ip', 'dst_ip', 'gateway', 'remark', 'dscp', 'proto', 'dst_port', 'mac', 'log', 'src_dev', 'use_backup' i dont know what means dscp(maybe qos?) and i dont try mac or src_dev options. if you have experience in phyton check this file for more details how work: /usr/local/bin/setpolicyrouting.py this is a default values if you not define something: enabled = 'on' src_ip = '0/0' dst_ip = '0/0' gateway = '' remark = '' dscp = 0 proto = '' dst_port = '' mac = '' log = 'off' src_dev = '' use_backup = '' AFTER you edit config file apply your settings this command: /usr/local/bin/setpolicyrouting.py --debug --debug optional, just show what rules applied exactly. Z. 2009/3/9 Marco Aurélio maure...@spin.com.br OK. Thank you. I am sure it will help many people like me. []´s Marco Aurelio De: Zola [mailto:jz...@freemail.hu] Enviada em: domingo, 8 de março de 2009 20:05 Para: efw-u...@lists.sourceforgenet Assunto: Re: [Efw-user] RES: Is policy routing available in the communityedition? hi yeh its possible, tomorrow if i have some time i will write how to do this. Z. 2009/3/8 Marco Aurélio maure...@spin.com.br I also have this problem and I saw only the commercial version there is this possibility. Is there a possibility to configure routing policy by command line or configuration file? Can anyone help this? Thanks Marco Aurelio -- De: Stefanos E. Tsorakis [mailto:ad...@fit.ac.cy] Enviada em: quarta-feira, 4 de março de 2009 17:20 Para: efw-user@lists.sourceforge.net Assunto: [Efw-user] Is policy routing available in the community edition? Is policy routing available in the community edition or is it just missing from the GUI? In any case does anyone have any idea how to configure all traffic from green to come out from a specific uplink? Thanks, stef -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H ___ Efw-user mailing list efw-u...@lists.sourceforgenet https://lists.sourceforge.net/lists/listinfo/efw-user -- -- -- ___ Efw-user mailing list
[Efw-user] Policy routing and multiple interfaces
Hi all, I got 2 WAN links and 2 red interfaces on my endian box. One is a T1 and the other an ADSL connection. How can I route all traffic to/from Orange through the T1 and all traffic to/from Green through the ADSL line? The endian is replacing a Watchguard Firebox 700 and the way it was done until now was that the Red interface had another virtual interface. eth0 and eth0:0 with IP addresses 172.xxx.xxx.2 and 172.xxx.xxx.4 respectively and the Cisco router where both WAN links where sitting until now was routing traffic based on the IP they were seemingly coming from. All traffic from Green seemed to be coming from 172.xxx.xxx.4 and all other traffic from 172.xxx.xxx.2 Is it possible to setup a virtual interface in endian and if yes how to set it up so that all traffic coming from the Green to come out with 172.xxx.xxx.4 Thanks, Stef-- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Policy routing and multiple interfaces
Just read my post again I am describing 2 things and basically I am wondering if any of them is possible and how. Sorry for the bad syntax long day... - Original Message - From: Stefanos E. Tsorakis To: efw-user@lists.sourceforge.net Sent: Wednesday, February 25, 2009 11:57 PM Subject: [Efw-user] Policy routing and multiple interfaces Hi all, I got 2 WAN links and 2 red interfaces on my endian box. One is a T1 and the other an ADSL connection. How can I route all traffic to/from Orange through the T1 and all traffic to/from Green through the ADSL line? The endian is replacing a Watchguard Firebox 700 and the way it was done until now was that the Red interface had another virtual interface. eth0 and eth0:0 with IP addresses 172.xxx.xxx.2 and 172.xxx.xxx.4 respectively and the Cisco router where both WAN links where sitting until now was routing traffic based on the IP they were seemingly coming from. All traffic from Green seemed to be coming from 172.xxx.xxx.4 and all other traffic from 172.xxx.xxx.2 Is it possible to setup a virtual interface in endian and if yes how to set it up so that all traffic coming from the Green to come out with 172.xxx.xxx.4 Thanks, Stef -- -- Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA -OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise -Strategies to boost innovation and cut costs with open source participation -Receive a $600 discount off the registration fee with the source code: SFAD http://p.sf.net/sfu/XcvMzF8H___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
