From: technomaNge on
John Stubbings asked:

> How did you get on with Untangle?

Not so good. See below.

UNTANGLE FAIL

FAIL #1
Burn Untangle 5.30 CD
Will install on Compaq Proliant, 1280 Mb ram, dual 1.4 GHz cpus,
2 each 18 gig SCSI in raid 1 configuration, 2 nics on board.

Day 1, 11 am.
1.Boot CD, install fussed about 18 gig drive, wants 20 gig, but
installed anyway.

2.Graceful shutdown. Reboot, from hard drive. Got splash screen then
dropped to BusyBox shell giving message: /sbin/sh: can't access tty:
job control turned off (initramfs).
Had lots of disk activity, pulled one drive while running.

3.Reboot by control-alt-delete. Bios configure for 1 drive, raid 0.

4.Boot from CD. Install again. Same disk space warning, but installed.

5.Boot from hard drive. Same problem and message.

6.Reboot with control-alt-delete. Select �Hardware workaround� from
splash screen. Got BusyBox shell showing lots of progress, then:
begin: waiting for root file system ... ...
/sbin/sh: cant access tty: job control turned off (initramfs)

7.Shutdown by Big Red Switch

8.Now 11.50 am. Powered up and went to lunch.

9.Now 1.20 pm. Found unit at BusyBox shell with previous error displayed.

10.Reboot with control-alt-delete. Go into bios, change selected OS
from Windows NT to Linux.

11.Exited bios and completed boot. Got same error message about initramfs.

12.Reboot by Big Red Switch. Install untangle again. Got hard drive
space complaint but installed anyway. Graceful shutdown.

13.Reboot, got same BusyBox error. Shutdown by Big Red Switch.

14.Pulled original SCSI drive. Installed different 18 gig SCSI in next
slot over.

15.Reboot OK, install OK. Graceful shutdown.

16.Reboot, got same error. Shutdown by Big Red Switch.

17.End at 3 pm.



FAIL #2
Use same Untangle 5.30 CD
Installing on Dell 650 Poweredge, 2.4 gig cpu, 3072 Mb ram, 20 gig IDE
drive.

Day 1, 2.30 pm
1.Install complained about 20 gig drive, installed OK, graceful shutdown.

2.Removed CD, boot. Get to server setup wizard, set timezone, set admin
password. Write it down for accuracy.

3.Determined which nic is external, which is internal, set hostname,
perform connectivity test, set unit as router, not as transparent bridge.

4.Finish server setup wizard, get to login screen, login successful.

5.Select library tab, install firewall app. Get message that I can't
install anything until I download all possible updates. Tell it OK to
download updates. It says it will force a shutdown of the Untangle
program as part of the update, but I should login again later.

6.Watch download screen, see transfers occur. Unit bails out to
Untangle main screen. Wait 20 minutes the click on restart. Unit does
graceful shutdown and reboots.

7.Launch client, get login screen. Old password does not work. Kill
login window, open terminal. Terminal asks for login using new
password. Tell it old password twice and it accepts.

8.Click on launch client, get login screen. Attempt login using password
that was entered into terminal. No joy. Gives message �version
mismatch, try restarting.�

9.Close login window. Graceful shutdown at 1600 hours.



Day 2, 1515 hours.
1.Boot from CD, install again.

2.Graceful shutdown, reboot. Go thru setup wizard. Assign password,
write it down for accuracy. Set other stuff mentioned above, complete
wizard.

3.Launch client, get login screen. Enter password and login successful.

4.Select library tab, select firewall app. Get upgrade screen �You must
perform all possible upgrades before downloading from the library.�
Click OK. Get upgrade window containing message � We may close and
restart the Untangle server, but you can login after it is done.� Click
continue button. Says it is downloading 40 files. Got warning:
�Do not manually shutdown or restart the Untangle server while it is
upgrading!�
Clicked OK. Turned monitor off. I'm gonna let this puppy
upgrade/install/change until
tomorrow. Time is 1610 hours.

Day 3, 9am.

1.Click launch client, get login screen

2.Unit rejects password, says �version mismatch, try restarting.�

3.Graceful shutdown and reboot.

4.Attempt login, rejects password, says version mismatch.

5.Pull AC plug.

6.Clock out for early lunch at nearby bar.


Results:
Untangle 2
technomaNge 0

Please don't tell me how to fix it, I'm over trying.

Gonna start on some other firewalls, but I suspect I just don't
know enough Linux to do any better...

I'll report on those too if any one is interested.


technomaNge
--
Because I have mangy luck with technology.
From: John Stubbings on

On Thu, 20 Nov 2008 21:13:49 -0600, technomaNge wrote:

>
> Please don't tell me how to fix it, I'm over trying.

Oh dear..

Actually I had the same issue with the password, but I just fixed it, but
for the life of me I can't remember how. I just assumed it was me doing
something wrong. I've only installed it on a VM. Apart from the password
thing it seems to work fine, but one user sitting behind it is hardly a
test.

>
> Gonna start on some other firewalls, but I suspect I just don't
> know enough Linux to do any better...
>
> I'll report on those too if any one is interested.
>

I'm interested. Especially if you find something like Untangle which is
much more than a simple firewall.



From: technomaNge on
John Stubbings wrote:
> On Thu, 20 Nov 2008 21:13:49 -0600, technomaNge wrote:
>
>> Please don't tell me how to fix it, I'm over trying.
>
> Oh dear..
>
> Actually I had the same issue with the password, but I just fixed it, but
> for the life of me I can't remember how. I just assumed it was me doing
> something wrong. I've only installed it on a VM. Apart from the password
> thing it seems to work fine, but one user sitting behind it is hardly a
> test.

>>
>> I'll report on those too if any one is interested.
>>
>
> I'm interested. Especially if you find something like Untangle which is
> much more than a simple firewall.
>

I've currently got my eye on ClarkConnect Community edition.

My biggest problem is I need a GUI if the program is complicated.
I can handle a command line if it is simple. I used Freesco
at home for years, but like you said, that is not much of a test.

All I want to do is block Albania, China, France, etc. before they
hit our mail server. I don't need QOS, FTP, www server, etc. (yet).


technomaNge
--
Untangle 2
technomaNge 0
From: John Stubbings on

On Fri, 21 Nov 2008 18:15:54 -0600, technomaNge wrote:

> John Stubbings wrote:
>> On Thu, 20 Nov 2008 21:13:49 -0600, technomaNge wrote:
>>
>>> Please don't tell me how to fix it, I'm over trying.
>>
>> Oh dear..
>>
>> Actually I had the same issue with the password, but I just fixed it, but
>> for the life of me I can't remember how. I just assumed it was me doing
>> something wrong. I've only installed it on a VM. Apart from the password
>> thing it seems to work fine, but one user sitting behind it is hardly a
>> test.
>
>>>
>>> I'll report on those too if any one is interested.
>>>
>>
>> I'm interested. Especially if you find something like Untangle which is
>> much more than a simple firewall.
>>
>
> I've currently got my eye on ClarkConnect Community edition.


ClarkConnect has a good reputation. I've never used it. Looking at it again
I probably discounted it because the free version has a limit of 10 users.


>
> My biggest problem is I need a GUI if the program is complicated.
> I can handle a command line if it is simple. I used Freesco
> at home for years, but like you said, that is not much of a test.
>
> All I want to do is block Albania, China, France, etc. before they
> hit our mail server. I don't need QOS, FTP, www server, etc. (yet).
>


What mail server are you using? I seem to remember SpamAssassin can do
this. Although I've only ever run it on Linux.

see http://wiki.apache.org/spamassassin/UsingOnWindows








From: technomaNge on
John Stubbings wrote:

> What mail server are you using? I seem to remember SpamAssassin can do
> this. Although I've only ever run it on Linux.


My best recollection of the conversation with the outsider we hired to
do IT that is beyond my meager capabilities is:

Fedora core OS, sendmail, and Scalix for Outlook.

I recently had him set mail so that it does not send bounce messages to
invalid addresses. Our email addresses are apparently on the latest
edition "10 million addresses you can use in your spam reply-to field".

I've gotten tired of deleting all the bounces from postmasters too
clueless to kill misaddressed mail.

All misaddresses mail goes into the bitbucket, with no response.
If other postmasters would do this, net traffic would drop a lot.

I'll look into the filtering you mentioned, but I prefer
something I can manage without help.


technomaNge
--
Untangle 2
technomaNge 0