NethServer Version: 7.3 Module: Web Content Filter
Unable to access this module configuration. I tried removing and reinstalling the package, nothing. Tried Restoring to a configuration when it was working great. and still cannot access. There is nothing on the documentation about how to delete/clean/reset/reload the content filter settings. Any ideas friends?
I decided to start from scratch with Nethserver 7.4 and just configured:
AD
Firewall Rules
Firewall Objects
OpenVpn Roadwarrior
Static Routes
Network Interfaces
and even without configuring Content Filter it takes a long time to load. There’s no squid log yet.
The original problem was no access to content filter module and now it’s slow access? Or does it take a long time to load a website from a client? Do you have enough RAM?
What if you open the Content Filter Module immediately after installing? Maybe one of the other settings “slows down” the Content Filter…
The original problem was a timeout trying to access https://x.x.x.x:980/en-US/ContentFilter, since the reinstall it’s a long time to finally access it and longer or timeouts trying to configure profiles. I have 0.9/8GB of free RAM. I’d like to find out which setting/module is slowing down the content filter.
sorry, I will get you those conf details in the morning, do you think it’s normal I have 0.8 gb of ram free after these modules are active? I think it will get messy once some 50 something users start connecting to the proxy.
OK, it’s not the RAM. In web UI you have a log viewer. Please check your logs for errors. You may try to undo your settings or start install from scratch and setup content filter first to see if it works without other settings.
Dec 3 03:33:18 Nethserver kernel: pcieport 0000:00:1c.0: AER: Corrected error received: id=00e0
Dec 3 03:33:18 Nethserver kernel: pcieport 0000:00:1c.0: PCIe Bus Error: severity=Corrected, type=Data Link Layer, id=00e0(Receiver ID)
Dec 3 03:33:18 Nethserver kernel: pcieport 0000:00:1c.0: device [8086:a115] error status/mask=00000040/00002000
Dec 3 03:33:18 Nethserver kernel: pcieport 0000:00:1c.0: [ 6] Bad TLP
Dec 3 03:33:19 Nethserver kernel: pcieport 0000:00:1c.0: AER: Corrected error received: id=00e0
Dec 3 03:33:19 Nethserver kernel: pcieport 0000:00:1c.0: PCIe Bus Error: severity=Corrected, type=Data Link Layer, id=00e0(Receiver ID)
Dec 3 03:33:19 Nethserver kernel: pcieport 0000:00:1c.0: device [8086:a115] error status/mask=00000040/00002000
Dec 3 03:33:19 Nethserver kernel: pcieport 0000:00:1c.0: [ 6] Bad TLP
Dec 3 03:33:21 Nethserver kernel: pcieport 0000:00:1c.0: AER: Corrected error received: id=00e0
Dec 3 03:33:21 Nethserver kernel: pcieport 0000:00:1c.0: PCIe Bus Error: severity=Corrected, type=Data Link Layer, id=00e0(Receiver ID)
Dec 3 03:33:21 Nethserver kernel: pcieport 0000:00:1c.0: device [8086:a115] error status/mask=00000040/00002000
Dec 3 03:33:21 Nethserver kernel: pcieport 0000:00:1c.0: [ 6] Bad TLP
Dec 3 03:33:30 Nethserver kernel: pcieport 0000:00:1c.0: AER: Corrected error received: id=00e0
Dec 3 03:33:30 Nethserver kernel: pcieport 0000:00:1c.0: PCIe Bus Error: severity=Corrected, type=Data Link Layer, id=00e0(Receiver ID)
Dec 3 03:33:30 Nethserver kernel: pcieport 0000:00:1c.0: device [8086:a115] error status/mask=00000040/00002000
The issue is absolutely related to the Active Directory connection. on the “Users and Groups” Module it would display the Groups tab empty and as soon as I removed the AD in the “Account Provider” Tab, the Content Filter responded well.
I tried it now: I installed a Windows Server 2016 in a VM, updated, setup static IP + AD + DNS, created AD winuser and joined from a Nethserver via GUI. I did unbind and rejoin without problems.
Join:
Domain Accounts:
NetBIOS domain name: TEST
LDAP server: 192.168.1.121
LDAP server name: winserver16.test.local
Realm: TEST.LOCAL
Bind Path: dc=TEST,dc=LOCAL
LDAP port: 389
Server time: Sun, 03 Dec 2017 23:00:30 CET
KDC server: 192.168.1.121
Server time offset: 0
Last machine account password change: Sun, 03 Dec 2017 22:59:56 CET
Join is OK
whenCreated: 20171203213808.0Z
whenChanged: 20171203215956.0Z
name: TESTSERVER
lastLogon: 131568120308639667
pwdLastSet: 131568119964261922
objectSid: S-1-5-21-1273278945-113475351-913748943-1104
accountExpires: 9223372036854775807
sAMAccountName: TESTSERVER$
dNSHostName: testserver.test.local
servicePrincipalName: HOST/testserver.test.local
servicePrincipalName: HOST/TESTSERVER
Fixed! After I changed the pcie network card to the x16 bus I no longer receive the errors.
and the Domain issue was because Nethserver was using it’s local dnsmasq server to resolve the DC since in this new setup I didn’t setup the Network DNS yet, and the Diagnostic nslookup was correct now and the Group list populated correctly and the Content Filter has no issues now. Thanks for all the help Markuz.