Hi guys,

We have just added a new feature to our traffic shaping module: layer 7 filter.

We are using l7 filter to mark network packets based on its content. This is pretty useful for those of you who are in the need of throttling traffic that can use different ports. Shaping p2p traffic is much easier with this new feature.

We are using the kernel space version of l7-filter at the moment. We plan to switch to the user space version in a few months.

This version of l7-filter needs a patched kernel and patched iptables. But don’t worry just follow the steps below if you want to test it:

To install these packages add the following lines to your /etc/apt/sources.list file:

deb http://ebox-platform.com/testing/packages/l7kernel ./
deb http://ppa.launchpad.net/ebox-unstable/ubuntu hardy main


Once you have added the apt sources run:

apt-get update


First of all, we need to install the pactched kernel by running:

sudo apt-get install linux-image-2.6.24-19-l7filter


Now you will have to reboot to be able to use the new kernel.

If you manage to boot with the new kernel, the next step is installing the patched iptables package and ebox-l7-protocols:


sudo apt-get install ebox-l7-protocols iptables


If everything goes ok, you will be able to access and configure eBox through the web interface.

Note that the eBox traffic shaping module is meant to be used when your machine is acting as gateway, and you can shape on internal interfaces for ingress shaping and on external interfaces for egress shaping.

Don’t forget you will have to enable the firewall and add rules to accept traffic from your internal networks to internet.

Enjoy

Hi fellow eBox users!

Your favourite development team proudly presents the availability of
eBox platform 0.12. This release brings a lot of bug fixes to increase the
stability and reliability that we all expect from such a product. However,
you will find more than bug fixes in this release. We have made some changes
to the UI of several modules: mail, maifilter and openVPN. We have worked on
reducing the memory footprint and increasing the performance, and much
more. As usual you can take a deeper look at the change log below.

The packages are available in our development branch in launchpad, although
they will make it to our stable branch after we get some feedback from our
users -yes, that’s you, and you too. Let’s cut to the chase, to install
these packages you will have to add this apt source:

deb http://ppa.launchpad.net/ebox-unstable/ubuntu hardy main

For those of you who love bleeding edge stuff, I have great news. We already
have working packages of eBox for Intrepid. If you are up for it, just add this
source to your Intrepid installation:

deb http://ppa.launchpad.net/ebox-unstable/ubuntu intrepid main

Change log eBox platform 0.12
dhcp

• Make default and max leasing time mandatory fields
• Add help filed to model
• Make custom_ns field required
• Bugfix: Mark managers as changed every time they ask to change from/to static method because some models may appear/disappear because of modifying configuration method in interfaces

dns

• Use the new EBox::Model::Row api
• Load module capability in pre-start just like the bind9 init script does
• Don’t add static entry `ns` to localhost if user has defined another IP address for the `ns` name

ebox

• Bugfix: Don’t assume timecol is ‘timestamp’ but defined by module developer. This allows eBoxto purge some logs tables again
• Add page titles to models
• Set default values when not given in `add` method in models
• Add method to manage page size in model
• Add hidden field to help with Ajax request and automated testing with ANSTE
• Bugfix: cast sql types to filter fields in logs
• Bugfix: Restricted resources are back again to make RSS access policy work again
• Workaround bogus mason warnings
• Make postinst script less verbose
• Disable keepalive in eBox apache
• Do not run a startup script in eBox apache
• Set default purge time for logs stored in eBox db to 1 week
• Disable LogAdmin actions in `ebox-global-action` until LogAdmin feature is completely done

firewall

• Use the new EBox::Model::Row api
• Add help field to firewall models
• Bugfix. Use exit and not return in dchp-firewall external script
• Bugfix. Use #DEBHELPER# properly to be able to flush the firewall rules when the package is uninstalled
• Add support for ESP protocol

jabber

• Bugfix: Fix SSL PEM file path in c2s.xml template
• Use eBox OID number in LDAP schemas

mail

• Bugfix: Checkbox for unlimited size is unchecked, the field mentioned, i.e. Size (MB) is activated.
• Use the new MVC framework
• Add postfix to sasl group instead of dpkg-stateoverriding stuff
• Update INSTALL doc
• Use eBox OID number in LDAP schemas

mailfilter

• Use eBox OID number in LDAP schemas

network

• Use new EBox::Model::Row api
• Add help to model fields
• Remove default option auotmatically if another router is set as default

objects

• Use the new EBox::Model::Row API
• Added pageTitle to Objects model
• Add help to Objects model

openvpn

• Adapt ebox-openvpn to MVC framework
• Bugfix: Enforcing RIPv2 to always authenticate when using eBox tunnels

printers

• Bugfix: Create the `job` table when installing.

samba

• Add help to model fields
• Fix typo in defaultEnabledValue. Now shares are enabled by default.
• Fix typo in administrator label
• Mark shares strings to translate
• Use eBox OID number in LDAP schemas
• Do not use shares that don’t have permission for any user or group
• Remove deprecated printer admin configuration key in smb.conf.mas
• Enable dns proxy in smb.conf.mas

services

• Use the new EBox::Model::Row API
• Add help to fields in service model
• Increase some field length
• Add support for ESP protocol

squid

• Use the new EBox::Model::Row api
• Add field help to models
• Fix titles within tabs
• Set deny as default policy

trafficshaping

• Add field help to model

usersandgroups

• Use the new EBox::Model::Row api
• Check if there is any added user and show a message in case there isn’t any.
• Restore users reading from ldiff and adding them through eBox API
• Set password-hash in slapd.conf to make password changes from samba sync the user password

webserver

• Add help field to webserver model
• Bugfix. Do not add a dns domain if the virtual host is just a host name with no domain

eBox Platform was started in 2004 by Warp Networks as an R&D project to develop an open source platform to ease the administration of corporate networks. Four years later and after a lot of effort and funds invested in its development, eBox has reached an interesting position with a solid commercial use and an increasing demand of professional services around it.

That is the reason why in February 2008 the founders of Warp decided it was the right moment to separate eBox from the parent company and let it reach its full potential. So, eBox Technologies S.L. was founded as a spin-off from Warp, backed by a group of investors and focused solely on developing eBox and providing commercial services around it.