Koozali.org formerly Contribs.org

Recent Posts

Pages: [1] 2 3 ... 10
1
SME 9.x Contribs / Re: Cannot connect with openvpn
« Last post by ReetP on Today at 12:06:02 PM »
I think you are mixing things up here. PHPKi is not related to the the setup & operation of OpenVpn.

OpenVPN will use certificates created by PHPKi, but they could be created by PHPKi on a totally different server.

First, I think if you are running openvpn-s2s it stores details in a DB configuration entry.

Try:

Code: [Select]
db configuration show openvpn-s2s
The web panel then creates templates in /etc/openvpn/s2s from those settings.

You should be able to delete those entries with the openvpn-s2s web panel and then add new certificates.

The updated PHPKi is in my Test repo.

It seems to work without issues but I was concerned about trashing exiting installations so have not generally released it.

It should backup existing certificates if it finds them.

You can get it here and then:

https://www.reetspetit.com/smetest/6/x86_64/phpki-0.83-8.el6.sme.noarch.rpm

Code: [Select]
yum localinstall phpki-0.83-8.el6.sme.noarch.rpm
When it is first installed it should ask you about creating a new CA etc.
2
SME 9.x Contribs / Re: Cannot connect with openvpn
« Last post by crazybob on Yesterday at 09:22:07 PM »
I looked at the things you suggested, and I'm going to do more digging on those items.
there is a router made for AT&T for the server I am trying to connect to, and I have set the port forwarding to the server. I also have an shh port pointing to the server, and it functions properly.

When I removed phpki, I deleted the certs that were in /opt/phpki, but the information was still in the certificate entry blocks in the openvpn menu, adn I was using a computer and browser that had never been connected to that server before.

What is the version of phpki that you are referring to, and where can I find it?
Thank you for the input.
4
SME Server 9.x / Re: Block spear phishing using spoofed email addresses
« Last post by bunkobugsy on October 20, 2020, 03:40:06 PM »
Till then:
www.securiteinfo.com/services/anti-spam-anti-virus/improve-detection-rate-of-zero-day-malwares-for-clamav.shtml?lg=en
ClamAV even with free securiteinfo bases barely ever cathes anything.
Currently on 1 week trial of 0day bases, pro account worth every penny :)
Tested another linux qmail antivirus, server became unresponsive.
5
SME Server 9.x / Re: Block spear phishing using spoofed email addresses
« Last post by ReetP on October 20, 2020, 10:29:09 AM »
Best idea of all is to can email ;-)

Can't wait for the day it is consigned to the same bin that Fax was..... !
6
SME 9.x Contribs / Re: Cannot connect with openvpn
« Last post by ReetP on October 20, 2020, 10:25:59 AM »
I completely removed phpki. and removed the entries in/opt
I reinstalled phpki per the instructions in the contribs.

I now get read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054), and it stalls.

I have installed this on about 6 or seven servers without a problem. I follow the instructions exactly.

Always do a quick search for our error on the interwebs eg:

https://serverfault.com/questions/544285/why-connection-reset-by-peer-when-im-trying-to-connect-to-server-in-openvpn

https://sourceforge.net/p/openvpn/mailman/message/24828114/

https://github.com/Nyr/openvpn-install/issues/182

Quote
most likely a firewall issue...

What else do you have between your clients and your server? Router etc?

If your other servers are OK then this one should be if you set it up correctly.

Note with the updated PHPKi I have it running on one of my servers so I know it works if you set it up correctly.
7
SME Server 9.x / Re: Block spear phishing using spoofed email addresses
« Last post by bunkobugsy on October 19, 2020, 10:44:42 AM »
Another ideea is to blacklist every TLD from geoip badcountries list in WBL panel: ^.*@.*\.tld$
Just in case they are spamming from servers located in other countries (I've had a few cases).
8
SME Server 10.x / Re: Koozali SME v10 Contribs
« Last post by brianr on October 19, 2020, 07:05:30 AM »
Going gangbusters there Brian, kudus to you  :D

Its fun in a sort of masochistic way!!
9
SME 9.x Contribs / Re: Cannot connect with openvpn
« Last post by crazybob on October 19, 2020, 02:20:36 AM »
I completely removed phpki. and removed the entries in/opt
I reinstalled phpki per the instructions in the contribs.

I now get read UDPv4: Connection reset by peer (WSAECONNRESET) (code=10054), and it stalls.

I have installed this on about 6 or seven servers without a problem. I follow the instructions exactly.
10
SME Server 10.x / Re: Koozali SME v10 Contribs
« Last post by TerryF on October 18, 2020, 10:59:56 AM »
Going gangbusters there Brian, kudus to you  :D
Pages: [1] 2 3 ... 10