We should create an announce that would highlight difference between 7.4 and 75
The NethServer subscription module is available by default in new installations
A new email server and filter alternative based on Rspamd has been released and is now available from software center. What’s new? New antispam engine, DKIM signature, Greylist threshold, Rspamd web UI.
Welcome Icaro Hotspot!
Recently, here in Nethesis, we have spent some time working on a new open source project. It’s called
Icaro HotSpot
The project is still in alpha, but it can be already be used for basic tasks (and for testing of course
TLS security can be improved easily.
Essential shared folder priviliges are now manageable via the web interface.
opened 03:13PM - 24 Apr 18 UTC
closed 12:21PM - 27 Apr 18 UTC
verified
The user should be able to add system log files inside the data backup. This beh… avior is useful when the sysadmin must complain to strict rules about log retention policy.
Requested changes:
- logs should not be added by default to data backup
- add an option to automatically add all logs inside the data backup
opened 11:44AM - 03 Apr 18 UTC
closed 02:53PM - 09 Apr 18 UTC
verified
Include [Mattermost Team Edition](https://about.mattermost.com/features/) as new… module.
## Basic features
- [x] PostgreSQL 9.4
- [x] Dedicated virtualhost for Apache compliant with TLS policy
- [x] Automatic SMTP configuration with following options:
- SMTPServer: localhost
- SMTPPort: 25
- FeedbackEmail: `no-reply@<domain>`
- FeedbackName: `Mattermost <domain>`
- FeedbackOrganization: `<Organization>`
- InviteSalt: auto-generated
- [x] Push notifications enabled by default (https://docs.mattermost.com/overview/faq.html#mobile-applications)
- [x] Basic UI for Server Manager
- [x] Data saved inside `/var/lib/nethserver/`
## Authentication
The Team Edition doesn't provide LDAP/AD integration: users can be created by hand or using Mattermost CLI.
- [x] Build a simplified tool to allow bulk user creation
opened 02:21PM - 19 Dec 17 UTC
closed 02:29PM - 12 Jan 18 UTC
verified
# Description
NethServer HotSync aims to reduce downtime in case of failure. … Normally, when a hardware damage occurs, the time needed to restore service is:
- fix/buy another server: from 4h to 2 days
- install OS: 30 minutes
- restore backup: from 10 minutes to 8 hours
In summary, users are able to start working again with data from the night before failure after a few hours/days. Using hotsync, time 1 and 3 are 0, 2 is 5 minutes (time to activate spare server). Users are able to start working again in few minutes, using data from a few minutes before the crash.
# Requirements
Two server machines are needed:
- MASTER: active server on production
- SLAVE: warm backup server
# How it works
**MASTER** machine is the currently production server and it makes a backup in the **SLAVE** machine every *"n"* minutes. When a crash occurs on the master, slave becomes active taking the same IP address of the master. Doing so the downtime is minimal, only the time to launch some commands on the SLAVE.
implementation now uses FireQOS, current configuration is automatically migrated.
opened 10:39AM - 07 May 18 UTC
closed 02:19PM - 16 May 18 UTC
verified
## Goal
Improve current QoS implementation for better incoming and outgoing b… andwidth control.
The new implementation should at least have the same features of the old one.
A commonly requested feature is also to limit and reserve the bandwith for specific host or protocol, examples:
- 1Mb/s reserved for SIP protocol
- 10Mb/s maximum speed for HTTP downloads
## Changes
- [x] Replace Shorewall `Simple` traffic shaping with external script
- [x] Use FireQOS to create QoS rules
- [x] ~Create a default set of rules for commonly used TCP TOS~
- [x] Migrate old configuration to the new one
- [x] ~Disable ethernet offloading for red interfaces where QoS is enabled~
- [x] Preserve support for nDPI markers
- [x] Push new translations to Transifex
- [x] Expand traffic shaping chapter inside the manual
### Extra features
- [x] Custom class creation with UI
- [x] ~~Reserve bandwidth for VoIP~~
- [x] ADSL optimizations (only from the shell)
## Debug tools
Install netdata
```
yum install https://github.com/firehol/packages/releases/download/2017-10-14-1440/netdata-1.7.0-1.el6.x86_64.rpm
sed -i 's/localhost/0.0.0.0/' /etc/netdata/netdata.conf
systemctl start netdata
systemctl enable netdata
config set fw_netdata service access private status enabled TCPPort 19999
signal-event firewall-adjust
```
Access: `http://<servername>:19999/`
## References
QoS scripts:
- https://github.com/firehol/firehol/wiki/FireQOS
- https://github.com/hkbakke/tc-gen (alternative to FireQOS)
FireQOS:
- FireQOS RPMS: https://github.com/firehol/packages/releases
- FireQOS tutorial: https://github.com/firehol/firehol/wiki/FireQOS-Tutorial
TOS:
- https://en.wikipedia.org/wiki/Type_of_service
- https://www.savvius.com/networking-glossary/tcp_ip_overview/ip/ip_tos/
- https://www.tucny.com/Home/dscp-tos
- http://www.rhyshaden.com/ipdgram.htm
Community:
- https://community.nethserver.org/t/nethserver-vs-pfsense-qos/8580/18
1 Like