[Freedombox-discuss] firewalld update
permondes - sagen
sagen at permondes.de
Fri Sep 14 17:36:56 BST 2018
Hi Joseph,
most functions are working now - and I have no idea why. DefaultZone is
set to the packagers value "public", but this should have no influence
as the packages have defined zones.I realized I have to access the box
now with "freedombox" in the browser instead of "freedombox.local". I
do not know which update caused that change.
The only thing not working is Quassel. In QuasselDroid it got stuck at
"SSL handshake" and on the desktop it just would not work.I deactivated
it in Plinth, then removed and purged it with apt (in order to get rid
of the conf files). Now I am trying to re-install it with apt which
terminates with
> Generating SSL certificate as /var/lib/quassel/quasselCert.pem ...
> su: Berechtigung verweigert
The last phrase means "access denied". This reminds me of the initial
issue with getting stuck at "SSL handshake". That's where I am now.
Dietmar
Am Freitag, den 14.09.2018, 12:02 +0000 schrieb Joseph Nuthalapati:
> Dietmar,
>
> I have upgraded firewalld on FreedomBox testing and chose to keep
> FreedomBox's configuration instead of the package maintainer's
> version. The upgrade seems to have gone through without issues.
>
> The diff as you said is changing the default zone from external
> to public and adding the line "FirewallBackend=iptables" to the
> file.
>
> root at FreedomBox /etc/firewalld # diff firewalld.conf
> firewalld.conf.dpkg-dist 6c6
> < DefaultZone=external
> ---
> > DefaultZone=public
>
> 57a58,64
> > # FirewallBackend
> > # Selects the firewall backend implementation.
> > # Choices are:
> > # - nftables (default)
> > # - iptables (iptables, ip6tables, ebtables and ipset)
> > FirewallBackend=iptables
>
> You can try replacing your firewalld.conf file with the previous
> version (see attached) and restart firewalld or a do a system
> reboot.
>
>
> permondes - sagen <sagen at permondes.de> wrote:
> > Gladly sudo works again.
> > What I see now is:- quassel-plinth is newly added to
> > zones/external and ../internal <- strange in firewalld added is
> > the line FirewallBackend=iptables Issue remains that I cannot
> > connect to my Quassel-core (no message in Debian, remains stuck
> > at SSL handshake in the android app)and that freedombox.local
> > cannot be used to access the box; IP-address works. Any ideas?
> > Am Mittwoch, den 12.09.2018, 21:57 +0200 schrieb permondes -
> > sagen:
> > > I had started this topic in Quassel but now I do not have access
> > > to
> > > it any more, so I have to continue on the mailing list.
> > >
> > > What I did was: "apt install firewalld", which changed the
> > > DefaultZone=external to public. There was an error message at the
> > > end
> > > of the install saying the operation (don't know which) was
> > > aborted
> > > before it could be finished. Later-on I changed the settings back
> > > to
> > > external and restarted the box twice.
> > >
> > > Now I have no access through freedombox.local any more, so also
> > > Proxy
> > > does not work. Nor Quassel.
> > > It also says my user name is not any more in the sudoers file. I
> > > can
> > > ssh into the box but do not get sudo access.
> > > Now I am in trouble!!
> > >
> > > Dietmar
> > > _______________________________________________
> > > Freedombox-discuss mailing list
> > > Freedombox-discuss at alioth-lists.debian.net
> > > https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/freedomb
> > > ox-d
> > > iscuss_______________________________________________
> >
> > Freedombox-discuss mailing list
> > Freedombox-discuss at alioth-lists.debian.net
> > https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/freedombox
> > -discuss
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/freedombox-discuss/attachments/20180914/815cf9ea/attachment.html>
More information about the Freedombox-discuss
mailing list