Re: [PacketFence-users] 4.1 upgrade

Fri, 13 Dec 2013 11:09:06 -0800 

Andrew,

Thank you for let us know

James

James Rouzier
[email protected] :: +1.514.755.3630  ::  http://www.inverse.ca
Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence 
(http://www.packetfence.org)

On 12/13/2013, 10:00 AM, Andrew Lukasiak wrote:

Hi James,
I just would like to confirm that snort is working fine now on Ubuntu as well. 

Thank you.

Andrew


On 13-12-13 09:47 AM, Palmer, Tim wrote:

James,
That seems to do the trick -- pfcmd, ps, httpd.admin and var/run all agree snort is running.
So, just so I'm clear, at the moment getting snort to start and be noticed as started properly, there are currently two patches and one chmod required. 

Back to pacemaker...

Thanks,

Tim


From: James Rouzier <[email protected] <mailto:[email protected]>>
Reply-To: <[email protected] <mailto:[email protected]>> 
Date: Thu, 12 Dec 2013 18:05:21 -0500
To: <[email protected] <mailto:[email protected]>> 
Subject: Re: [PacketFence-users] 4.1 upgrade

Tim,

Yup you are right it was a permission issue.

You can patch your install with the following.

cd /usr/local/pf
chmod g+ws var/run
curl https://github.com/inverse-inc/packetfence/commit/1ec76da2ab76aeafcf55afe0d396dfc1ef57684a.diff > pf2.diff 
patch -p1 < pf2.diff

./bin/pfcmd service snort restart
./bin/pfcmd service httpd.admin restart

After this everything should be good.
Please let me know if everything is working.
Thanks

James Rouzier
[email protected]  :: +1.514.755.3630  ::http://www.inverse.ca
Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence 
(http://www.packetfence.org)
On 12/12/2013, 3:57 PM, Palmer, Tim wrote:

James,

Excellent, sir
Applied to two test centos 6.5 boxes -- one is a new install, the other is upgraded from 4.0.6 (which was upgraded from 4.0.5) 

Same results on both.
Pfcmd service pf status, ps and ls var/run/snort* all agree snort is running 
Web interface sees it as stopped.

Permissions/ownership?
Ls -l /usr/local/pf/var/run/snort*
-rw------- 1 root root 5 Dec 12 15:52 /usr/local/pf/var/run/snort_eth1.pid -rw------- 1 root root 0 Dec 12 15:52 /usr/local/pf/var/run/snort_eth1.pid.lck 


Thanks!

tim

From: James Rouzier <[email protected] <mailto:[email protected]>>
Reply-To: <[email protected] <mailto:[email protected]>> 
Date: Thu, 12 Dec 2013 15:09:50 -0500
To: <[email protected] <mailto:[email protected]>> 
Subject: Re: [PacketFence-users] 4.1 upgrade

Tim,

There is a bug with snort & suricata starting.

You can patch your install with the following.

cd /usr/local/pf
curl https://github.com/inverse-inc/packetfence/compare/packetfence-4.1.0...9c0899990e486281472e366576fcba101563b876.diff > pf.diff 
patch -p1 < pf.diff

James Rouzier
[email protected]  :: +1.514.755.3630  ::http://www.inverse.ca
Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence 
(http://www.packetfence.org)
On 12/12/2013, 11:43 AM, Palmer, Tim wrote:

James,

Excellent
Yes, I did see the note about memcached in the notes, and yes I forgot to remove from chkconfig. Solved 

[root@pf-test conf]# grep '^snort' /usr/local/pf/conf/pf.conf
[root@pf-test conf]#

So, nothing.

tim

From: James Rouzier <[email protected] <mailto:[email protected]>>
Reply-To: <[email protected] <mailto:[email protected]>> 
Date: Thu, 12 Dec 2013 11:34:09 -0500
To: <[email protected] <mailto:[email protected]>> 
Subject: Re: [PacketFence-users] 4.1 upgrade

Tim,

Memcached should not be managed by the system any more.

Do the following
service memcached stop
killall memcached #for good measure
chkconfig --del memcached

/usr/local/pf/bin/pfcmd service memcached start


For the detection issue can you show me the following.
grep '^snort' /usr/local/pf/conf/pf.conf


Let me know if this helps.

Thanks

James Rouzier
[email protected]  :: +1.514.755.3630  ::http://www.inverse.ca
Inverse inc. :: Leaders behind SOGo (http://www.sogo.nu) and PacketFence 
(http://www.packetfence.org)
On 12/12/2013, 11:09 AM, Palmer, Tim wrote:
After getting past the Linux::FD issue, which I suspect is my own yum problem somehow, my upgrade seems to be in decent shape (yes, you really must run the db schema update if you want access to anything). 

However, having detect enable issues.

  * Snort was starting fine on 4.0.6_2
  * Detection is enabled
      o [root@pf-test pf]# grep '^detect' conf/pf.conf
      o detection=enabled
  * An interface is set as monitor
      o grep '^type=mon' conf/pf.conf
      o type=monitor
  * Web interface Status:Services doesn't show snort at all
  * bin/pfcmd service pf status agrees
      o snort|0|0
So, apparently I have detection disabled, but I think I have it enabled. Hints? 

Also, memcached dies immediately.
And apparently I don't understand changes in the portal profiles, as none of my Internal Users Sources aren't being checked. I still have more to check before worrying too much about this. 

A fine day to you,

Tim


------------------------------------------------------------------------------
Rapidly troubleshoot problems before they affect your business. Most IT
organizations don't have a clear picture of how application performance
affects their revenue. With AppDynamics, you get 100% visibility into your 
Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro!
http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk


_______________________________________________
PacketFence-users mailing list
[email protected]https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------ Rapidly troubleshoot problems before they affect your business. Most IT organizations don't have a clear picture of how application performance affects their revenue. With AppDynamics, you get 100% visibility into your Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro! http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk_______________________________________________ PacketFence-users mailing list [email protected] <mailto:[email protected]> https://lists.sourceforge.net/lists/listinfo/packetfence-users 


------------------------------------------------------------------------------
Rapidly troubleshoot problems before they affect your business. Most IT
organizations don't have a clear picture of how application performance
affects their revenue. With AppDynamics, you get 100% visibility into your 
Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro!
http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk


_______________________________________________
PacketFence-users mailing list
[email protected]https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------ Rapidly troubleshoot problems before they affect your business. Most IT organizations don't have a clear picture of how application performance affects their revenue. With AppDynamics, you get 100% visibility into your Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro! http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk_______________________________________________ PacketFence-users mailing list [email protected] <mailto:[email protected]> https://lists.sourceforge.net/lists/listinfo/packetfence-users 


------------------------------------------------------------------------------
Rapidly troubleshoot problems before they affect your business. Most IT
organizations don't have a clear picture of how application performance
affects their revenue. With AppDynamics, you get 100% visibility into your 
Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro!
http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk


_______________________________________________
PacketFence-users mailing list
[email protected]https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------ Rapidly troubleshoot problems before they affect your business. Most IT organizations don't have a clear picture of how application performance affects their revenue. With AppDynamics, you get 100% visibility into your Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro! http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk_______________________________________________ PacketFence-users mailing list [email protected] <mailto:[email protected]> https://lists.sourceforge.net/lists/listinfo/packetfence-users 


------------------------------------------------------------------------------
Rapidly troubleshoot problems before they affect your business. Most IT
organizations don't have a clear picture of how application performance
affects their revenue. With AppDynamics, you get 100% visibility into your
Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro!
http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk


_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users




------------------------------------------------------------------------------
Rapidly troubleshoot problems before they affect your business. Most IT
organizations don't have a clear picture of how application performance
affects their revenue. With AppDynamics, you get 100% visibility into your
Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro!
http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk


_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users



------------------------------------------------------------------------------
Rapidly troubleshoot problems before they affect your business. Most IT 
organizations don't have a clear picture of how application performance 
affects their revenue. With AppDynamics, you get 100% visibility into your 
Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro!
http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users

Reply via email to