Ubuntu Servers :: Server For Internet Logging And Filtering
Jun 16, 2010
I'm in charge of a church computer lab which is open to children ages 6 to 16 for about 3 hours a week. We try to have adult supervision but don't have 100% coverage.
The lab has a maximum of 8 computers, a mixture of MACs, Windows XP, and Linux machines, depending on their state of repair.
The church's current internet connection is Verizon residential speed DSL to a 4 port wired plus wireless router in a locked office which also houses our Windows XP office computer and is adjacent to our locked pastor's office.
Internet access for the lab is by a single CAT5 cable passing through a small hole in a wall to a network switch on the other side. All of the lab computers are connected to the switch by CAT5 cable.
I would like to add a server in the locked office to log internet usage and block access to certain websites as needed. I think logging internet activity will be a good antidote in case one of the older ones wants to try to get sneaky and cover their tracks.
I envision building a computer from donated parts, including 2 NICs.
I have never done things from the server end, but think the server edition of Ubuntu would be a good starting point.
My goal is to be able to manage internet access with an easy to use GUI system so I could teach the basics to a couple of youth leaders to use it when I'm not there.
View 3 Replies
ADVERTISEMENT
Aug 2, 2010
I want filter some sites on my network by squid .
My Distribution is suse server 11 squid 2.7
View 2 Replies
View Related
Oct 27, 2010
I have recently configured sshd_config to have chrooted SFTP service. I'm using SFTP internal-sftp config. However now I have to figure out how to log file transfers happening using the SFTP service. I'm using the Ubuntu Server 10.04 (64bit)
View 3 Replies
View Related
Mar 10, 2011
I'm guessing its possible but I can't seem to find any documentation on how to do this.I've tried playing with entries at the top of my syslog.conf file like:
*.* @172.20.10.1 # 1 server, works file
*.* @172.20.10.1,172.20.20.11 # doesn't work
*.* @172.20.10.1 172.20.20.11 # nor this
*.* @172.20.10.1,@172.20.20.11 # nor this
*.* @172.20.10.1 @172.20.20.11 # nor this
View 3 Replies
View Related
Feb 14, 2011
turn up the level of logging that my DHCP Server is writing to SYSLOG?I can't seem to find a syslog.conf file to edit.
View 1 Replies
View Related
Jun 8, 2010
how to set up a simple rule on the server side so emails with a certain subject just go into that user's .Trash. Right now my users will get roughly 25,000 of the same email from our corporate offices and it is destroying their email clients. I believe the mail setup is postfix and courier with virtual users. I tried googling this up but I couldn't find much current or ubuntu-specific information.
View 3 Replies
View Related
Jan 14, 2011
is this possible on 2 Linux boxes will act as a INTERNET Firewall + Filtering: 1st PC = CENTOS 5.5 functions as a firewall using iptables with two NICS 1=ETH0 connected to internet with a public ip and 1=ETH1 with ip address of 10.0.0.1 connected to the 2nd PC Centos 5.5 with squid/dansguardian with ip address of 10.0.0.2
2nd PC = Centos 5.5 functions as a squid + dansguardian internet filtering with 2 NICS 1=ETH0 with ip address of 10.0.0.2 connected to the ETH1 of the 1st PC with ip address of 10.0.0.1 and 2nd ETH1=connected to LAN (172.16.1.0/24)
does this make sense? this might be confusing but I just want to try this, to protect incoming ssh from our previous Sys admins who intended to enter the LAN 172.16.1.0/24 network. And also to confuse them that they have to pass through 10.0.0.1 - 2.
View 3 Replies
View Related
Feb 3, 2010
I have made linux raid array, named it md1 and it can be found under /dev/md1. I have created single partition (whole disk) of type LVM (8e) and it can be found under /dev/md1/md1p1.
When I run: pvcreate /dev/md1/md1p1
I get this message: Device /dev/md1/md1p1 not found (or ignored by filtering).
But if I run pvcreate /dev/md1
Everything went OK. I can create volume group and logical groups after that.
I haven't found anything specifically on net, except that partition for LVM to work should be of type 8e. Does this doesn't have to be true when we use whole disk as a VG? Should I expect any problems since this is going to be iSCSI target disk?
View 1 Replies
View Related
Feb 4, 2010
I have a mail server (dovecot+postfix) on Centos with amavis/clamav installed and working. It correctly identifies spam as such and puts it in the headers. I want it to move those suspected spam messages into a spam folder. I do have this working on an older debian server that I didn't setup. If someone could point me in the direction if where that config might be. I can't find it in any of the mail config files.Could there be a seperate package doing this?
View 3 Replies
View Related
Jun 2, 2010
I need to implement a form of filtering. Current topology is like so:
Internet -> Smoothwall -> MS Exchange server (w/ OWA) -> Clients
So I need to enable transparent spam filtering on the smoothwall system, which is a full fledged Linux system. There are no 'free' modules available for smoothwall that enable spam filtering. And due to the monetary constraints of the project I'm working on, something free is required.
I don't have any experience with this - I've done a couple of searches and came up with "SpamAssasin", but I can't find any relevant guides that allow transparent scanning - they all assume the mail is stored on THAT server.
So I'm here to ask the more experienced people what sort of packages will enable this functionality? Would like something that has a WebUI, but that's not absolutely necessary.
View 4 Replies
View Related
Apr 28, 2010
Ubuntu lts server distro using on remote machine. i have remote site where internet access given via squid proxy. so when we enter in browser it start working internet fine. but on command line(bash shell prompt terminal) like wget,ping,nslookup,traceroute etc these commands does not work.
View 3 Replies
View Related
Dec 16, 2010
my laptop seems to have a bad HDD, and I was thinking of trying to make it a "thin client." However since it is a laptop obviously I want to take it places. Is it possible to make a terminal server and "thin client" connect through the internet and not just LAN?The reason I quote thin client is because in my mind I am still going to need to use some HDD so I can connect to the internet and find my server.
To make things easier to read refer to the above as "question 1" and the velow as "question2" Thank you. And sorry for the inconvience. These topics I felt were to similar to make separate topics.I also have another question, the files I have on my server can be accessed by anyone on the network(added a second HDD and network shared it) how can I make it so that the LAN clients have to "login" (or it uses their computers login info to send them to only their files? And if that is possible can we expand it to allow me to use those logins through the internet?
View 1 Replies
View Related
Jan 13, 2011
How to organize in one server the Internet from two providers (ADSL) ?
View 1 Replies
View Related
Feb 20, 2011
I have an Actiontec GT724WGR and I am having problems with my Ubuntu server. I set up a subdomain on freedns.afraid.org with my main computer's external ip. However whenever I use the link that was made it goes to my router configuration page instead of onto my server. I have already set up a static ip for my server enabled DMZ hosting and under port forwarding applied every single rule that applied to servers.
View 2 Replies
View Related
Jul 29, 2011
I am Install Ubuntu Server 10.04LTS and install 3 LAN Card. 1st & 2nd LAN are use ISP1 & ISP2 with public static IP and 3rd LAN connect with Local Switch. How to configure this server as Load Balancing Internet and configure Proxy Server with user authentication and user wise site blocking.
View 1 Replies
View Related
Dec 8, 2010
We have an Asterisk machine that we suspect periodically loses internet connectivity, causing all calls to drop. First, would this sort of thing be logged anywhere out of the box? I haven't noticed anything in /var/log, but that doesn't mean it's not there. If this is not typically logged, how I might go about logging it? I'm currently running a bash script from cron every 5 or 10 minutes which pings Google and writes success or failure messages to a log file. This works fine for extended outages, but if the internet connection drops and comes back between cron runs, it won't be caught.
View 4 Replies
View Related
Jul 14, 2011
I am trying to set up a DHCP server for a network that does not go on the Internet using fedora 14. I have tried several site and every one I look at has a different dhcpd.conf file. I have tried many and every time I try to start the service they fail. Like I said it does not go on the Internet. No matter what I do when I try to start the dhcpd service it fails code...
View 2 Replies
View Related
Mar 14, 2010
I just finished setting up my small server, however I realized that no one can connect to it from the outside. The reason being is that my router is assigning internal ip's and dyndns is linked to that. I need port 80 for the Apache server, but if I have the router forward that port to my particular ip, won't it screw with everyone else's internet too?
View 5 Replies
View Related
Sep 26, 2010
i can't get into shares without logging in as a user - this is the same for windows and linux
this same error im having on 2 different computers across 2 different networks - i can fully modify both
BOTH LOCALTIONS: the error is - failed to mount windows share (im so sick of this error ) the log says -
Quote:
robert@WATTSRV:~$ tail /var/log/samba/log.lr-uber
[2010/09/26 13:52:37, 0] smbd/service.c:988(make_connection_snum)
canonicalize_connect_path failed for service software, path /media/Elements/software
[Code].....
View 9 Replies
View Related
Oct 26, 2010
I'm trying to enable MySQL's General Query Log.
I'm running version 5.0.51a of MySQL on Ubuntu 8.04 64-bit server.
The MySQL documentation found here [url] says to "start mysqld with the --log[=file_name] or -l [file_name] option".
But when I issue the following command:
Code:
I get the following error message:
Code:
How to enable MySQL logging since the above is not working?
View 2 Replies
View Related
Apr 18, 2011
I currently have a personal use server setup in my home and would like to be able to send emails from my domain name.
At&t blocks the standard ports used so some form of forwarding would have to be used. I've looked at other guides and followed them to the key but it appears I'm always missing something.
So my question here is could anyone write a detailed guide from start to finish on how to install a postfix server behind an at&t connection complete with MX record and firewall configuration information?
View 4 Replies
View Related
Jan 29, 2010
I need to centralize the logging of several machine on one machine with syslog-ng.I'm currently using fail2ban for security enhancement and logwatch for log reports, which are based on file log on each machine. is it possible to keep local logging for fail2ban and logwatch (logwatch can be dropped, but not fail2ban). One other need is to move old logs to a ftp site for archiving, as in france we have to keep one year of logs.
Another thing I've seen, is that logging goes to a MySQL database instead of the filesystem which allow to have some nice feature as web frontend, search capabilities.how is it compatible with the ftp save?
View 7 Replies
View Related
Aug 20, 2010
Using a fresh Ubuntu server install, i setup UFW :
[Code]..
When connecting from external box to this server on port 25, the connection is properly blocked by UFW but i can't find any UFW log (/var/log/kern.log, /var/log/messages, /var/log/ufw.log ...). I'm using default rsyslog.
View 1 Replies
View Related
Jul 5, 2011
I'm using Ubuntu 10.04 64 bit Server Edition here. I'm running Apache as a web server. I just found that Apache is not logging to access.log and error.log anymore.
But the service is running well. Log parameter at /etc/apache2/apache2.conf seems to be OK. Here's the line :
ErrorLog /var/log/apache2/error.log
LogLevel warn
CustomLog /var/log/apache2/other_vhosts_access.log vhost_combined
I already tried restart the server, but no luck. Is there any place should I check?
View 2 Replies
View Related
Jan 29, 2011
There's a way to login directly using rdesktop, instead of logging locally using the gnome session manager? Like, starting x, then typing a user and pass to login direct in a Windows server?
View 8 Replies
View Related
Jan 5, 2010
i have installed apache and php in my fedora 11 system and httpd works fine except that it doesnt have internet connection for example rapileech doesnt work it says "cannot connect via port 80" and if i put an rss feed collector in a website it doesnt work but everything else works fine , also when i put the same file in a shared web host it works fine
View 3 Replies
View Related
Jan 7, 2010
I'm installing a server to act as a firewall between a local network and internet. I've installed Firestarter becaused it worked straitgh away (it seems that FS is configuring the routing as well). I've tried to remove it, and then I lost the access from LAN to Internet. (I don't know why -perhaps the routing is disabled then- , so I prefer to keep it).
The problem is that Webmin Bandwidth Monitor (bandwidthd) is not logging anything when FS is active. Does someone has an idea on how I could make it work? I've tried cacti and some other stuff, but it is far too complicated for me.
View 2 Replies
View Related
Jul 22, 2010
After reading this pdf on top 5 things to log for security, ive decided to attempt this for my webserver. how i might setup some logging systems to do these tasks. Basic things i need to be able to do: Record things like password attempts on htaccess files, from what IP address, and how many attempts there were. Any useful links anyone can think of to get me started? Im a student programmer at university so any programming i should be able to cope fine.
View 2 Replies
View Related
Jun 22, 2009
I am currently working on a project related to packet sniffing which has been implemented using the concept of raw sockets. I am using C language.I am able to decode the following details from the packets received from a local network,like:
source and Destination Mac Address
source and Destination IP Address
source and Destination port no
But I am having trouble in decoding the domain name when an user in the local network is logging onto internet.For eg. if a user in the local network is trying to log on to web using his browser say if he has logged on to url then from the packet I need to get the following details
source Mac Address from which user had logged on
source IP Address from which user had logged on
domain name
View 1 Replies
View Related
May 18, 2010
we need to log web access of a certain set of users for analysis. We decided to setup a proxy server which just logs all the requests but does not do anything else like caching/access control etc.All users will be using a fixed set of computers and hence we can redirect their requests to the proxy. I came across Squid, but found it to be too heavy for our requirements. Is there any other proxy-server software that is good enough for what we want or is Squid the only way?
View 1 Replies
View Related
