Not a problem, glad to be of some help.
Not sure if its worth doing the same trick with a lot of the other stuff, taking a step back to reflect and redefine definitions and understanding of feature features and ways of doing things.
Does NethServer have stats on the software/services people use the most?
Some said it was not neededâŠ
Maybe you could be interested in the network map of what I did over the past years at my former job. Almost all machines are NS based.
5 Likes
Thank you all for taking time to respond to this topic, for sure we are gathering very interesting feedback!
Why not? We are open to all possibilities. 
This would be a big change, but I do not know if the swithc would bring us some real benefits.
Still, we have 15 (20?) years of experience on RPM-based distribution and I would like to not through them into the trash bin.
Of course, but on a home firewall you usually do not need some advanced stuff like source natting, hair pinning, multi wan or advanced traffic shaping.
Maybe NethServer 8 could have a very simple firewall for local services and not acting as a firewall/gateway, which could be implemented on a different base.
We totally agree on this, I think this is one of the strongest point.
But in general, I do not think it make a real difference if you are installing NS on a Proxmox machine or on bare metal. The important thing is that you can choose to keep your data on premise.
I do not know, but Iâm still using many providers with free IPv4 addresses
If the development of NS 8 will be delayed, we could even think about adding IPv6 on NS 7.
But only the community is asking for IPv6, there is no business interest on it: itâs not easy to invest many resources on such implementation without a real profit.
I think we already have tones of feature request inside the forum and we already cherry picked the most asked ones. Of course, feel free to propose new ones!
@alefattorini what do you think? Is a survey a good way to gather other feedback on this topic?
I agree: I see NS 8 running mostly on VMs and not the way around.
Yes, but a central configuration usually requires a dedicated system with some highly special configuration. So In my view, the central system would be Dartagnan which could configure multiple NS instances.
You can already do it: itâs just a couple API call inside a cron job to remove them when not needed any more. 
We already have it, see Dartagnan 
.
I strongly believe that the multi-tenant is not a priority for NS, but it doesnât mean we want to block this possible evolution. I see the multi-tenant more like as multiple instances of a single-tenant as James explained very well 
Iâm very interested on it. Would you like to do some examples? In your opinion, where should we focus to provide security for IOT devices?
I like the idea, it could be easier with a container approach!
Yes and no. We have a lot of statistics from our Enterprise installations but not from Community.
But since Enterprise installations should outnumber the Community ones, we could take some data-driven decisions. Still, requirements from community are often much different from business ones.
6 Likes
So that leaves âthat otherâ rpm-based distro: OpenSuSE? Or do you have something else in mind? However, there is no Open/free/libre version of SLES so it will complicate things for a server distro.
Zooming in on options this really will be a major thing to decide and not to be taken lightly. In fact, there are not that many distributions that actually focus on server roles, especially in the rpm-based family.
You are thinking about a dockerized pi-hole?
1 Like
Depends how youâre counting. If you count all the way back to the days of e-smith, the oldest release DistroWatch lists is 4.1.2, released 30 March 2001. I know I was using 3.something, which would push it back to at least some time in 2000. I assume there were 1.x and 2.x releases as well, but I canât say I clearly remember those.
I donât think changing to .deb packaging would necessarily be an awful thing, but I canât believe you still canât do apt install https://url.
2 Likes
Well, in this case, my siggestion was more on the EMail app.
Sharing the same Ldap instance etc is not a problem. but the email domains should have a way to seprate them somehow.
where i can create an email address for a new separate domain, and chose who will have ability to login, without having an alias of the parent email address.
WHy do you believe so. there are instances where someone uses the community because at the time, they can afford the enterprise, or alternatively, because the people they are deploying to are paying less than the enterprise support charges.
This does not mean that the use cases are different. it is just they have been necessitated to use the community version, until they can upgrade.
1 Like
At this time, my primary use of NS is to create and manage a
- Local Samba 4 Active Directory Domain Controller (100 users)
- Our NAS / synology uses the authentication provided by NS / AD and so far it works wonders.
- Zabbix (I am in the process of learning)
Iâll keep it simple, but it is the lack of organization in my network that is the main reason for not activating and using more services in NS.
1 Like
Thatâs a good idea, just added to my list.
In short terms: The same NethServer 7 with new software!!! y listo muchachones!!! thatâs all folks!!!
4 Likes
I totally agree with this.
There are enough companies who donât like a cloud version.
I donât think, that nobody is at the office at the future.
You are right, only running containers is not the right way, but additional running several containers with several applications could be a very flexible All-In-One Server Solution.
Yes please do it.
Yes and No. I would prefer to run several servers for some roles, explicitly firewall and IPS and Proxy on the same mashine, but ad on another as local virtualized servers.
Itâs not the time if we donât know in which direction we want to go, but like others said here, we need IPV6.
If we can get such important features in Version 7, I think we can wait.
It should also be a strong firewall.
I donât know.
1 Like
Is going to be cockpit based?
This could be an idea.
Not really, but Iâm not excluding it 
I agree on this!
Who knows 
As a new contributor and someone who is searching for the ideal SME solution for New Zealand clients, I would like to encourage your development work. You have many things just right. Itâs a clean fast and easy to maintain environment.
Microsoft removed ISA Firewall from their SBS platform years ago because the general belief was that this does not belong on the same machine as the Domain Controller, or any other internal server for that matter. I agree. PFsense on a machine at the edge of the network serves me well.
For everything else, most certainly. The weakness I see is still the Exchange replacement. In my search for the best solution I am leaning to NethServer as AD Controller but having to run Windows Server 2019 with Exchange Server 2019 as a member server just to handle mail well. For me, THAT is where the focus needs to be.
NethServer is touted as a SBS replacement. Do that well, drop the firewall.
2 Likes
Hello Graham
For one client, a doctors practice, Iâm using virtualization on Proxmox, NethServer is running as AD, File, Print, NextCloud, Zabbix Monitoring.
The doctors application is running on a Windows 2019 Server, virtualized.
Exchange functionality is provided here with a Linux LXC (Linux Container) with 6 GB RAM allocated and running Kerio, a full replacment for Exchange, including Web-Access.
Besides the not very open source PFsense, you might want to have a look at OPNsense, a (better) fork of PFsense. PFsenses mentality is $$$, not open source. OPNsense has a more modern GUI and includes more than you expect! I wouldnât touch PFsense with a long pole!
I do not use the built in firewall for my clients (Almost all use OPNsense), but two friends have it running as home server, one uses the NethServer firewall. His real firewall died somewhere between Xmas and New Year 1.5 years ago, and getting replacements in that period was difficult. So a quick help to allow Internet at home has stayed and still works.
BTW, all my other clients use NethServer as SBS replacement, WITH Mail, Calendar, Adressbooks and more!
Most of my clients do not want âCloudâ, indeed for certain businesses (financial) itâs illegal in Switzerland.
My 2 cents
Andy
2 Likes
Reading this kind of comments gives only one resolution: I have four years to retire all NethServer 7 systems and transfer their workload back to CentOS 8 servers running same services individually. There are more and more SME companies willing to do some investing on PRIVATE IT infra after they have learnetd Corporate Dominance issues during COVID-19.
I have a choise; most of the SME do not have. I just put more servers in our private cloud and go back to services model as it was before. I have been with Linux and open source since 1996 and running our family business exclusively on RedHat, CentOS and Fedora since 2000 ( the year last Windog server was retired and converted to Scientific Linux [at that time] )
Going along the Debian way is the easy way to give up for Windows converts.
Sad, sad, sadâŠ
âŠaddition:
Trying to be monolithic on-sever-for-everything is the old Window$ way. Take the steps on Linux/Unix and master one segment exeptionally well. OPNsense for office and IPFire are better Firewalls and designed to do just that. Nethserve should be SME businesses SBS first and if possible SME web application platform second.
2 Likes
This thread makes me rebember the magic black guy Natking Coll with this famous song:
Siempre que te pregunto
Que cuĂĄndo cĂłmo y dĂłnde
TĂș siempre me respondes
QuizĂĄs, quizĂĄs, quizĂĄsA sĂ pasan los dĂas
Y yo desesperado
Y tĂș, tĂș, tĂș, contestando
QuizĂĄs, quizĂĄs, quizĂĄs,EstĂĄs perdiendo el tiempo
Pensando, pensando
Por lo que mĂĄs tĂș quieras
Hasta cuando, hasta cuandoY asĂ pasan los dĂas
Y yo desesperado
Y tĂș, tĂș contestando
QuizĂĄs, quizĂĄs, quizĂĄs
The link for the video: https://youtu.be/rDGgUGBD-90
1 Like