Profile Details

Toggle Sidebar
Recent updates
  • Nick Howitt wrote:

    .... I can see nothing is maintaining the LAN/WAN parameters in /etc/sysconfig/miniupnpd which means it is using an incorrect start up.....


    needs a little setup in config, but that is up to the user to get to run correctly. i agree if it was in the app store it would need what ur talking about.

    i set the ext network card and the listening ip...

    # WAN network interface
    ext_ifname=eth1

    # if the WAN interface has several IP addresses, you
    # can specify the one to use below
    #ext_ip=

    # LAN network interfaces IPs / networks
    # there can be multiple listening ips for SSDP traffic.
    # should be under the form nnn.nnn.nnn.nnn/nn
    # HTTP is available on all interfaces
    # When MULTIPLE_EXTERNAL_IP is enabled, the external ip
    # address associated with the subnet follows. for example :
    # listening_ip=192.168.0.1/24 88.22.44.13
    listening_ip=192.168.0.1/24

    # port for HTTP (descriptions and SOAP) traffic. set 0 for autoselect.
    port=0

    # path to the unix socket used to communicate with MiniSSDPd
    # If running, MiniSSDPd will manage M-SEARCH answering.
    # default is /var/run/minissdpd.sock
    #minissdpdsocket=/var/run/minissdpd.sock

    # enable NAT-PMP support (default is no)
    enable_natpmp=yes

    # enable UPNP support (default is yes)
    enable_upnp=yes

    # chain names for netfilter (not used for pf or ipf).
    # default is MINIUPNPD for both
    #upnp_forward_chain=forwardUPnP
    #upnp_nat_chain=UPnP

    # lease file location
    lease_file=/var/lib/miniupnpd/upnp.leases

    # bitrates reported by daemon in bits per second
    bitrate_up=1000000
    bitrate_down=10000000

    # "secure" mode : when enabled, UPnP client are allowed to add mappings only
    # to their IP.
    secure_mode=yes
    #secure_mode=no

    # default presentation url is http address on port 80
    # If set to an empty string, no presentationURL element will appear
    # in the XML description of the device, which prevents MS Windows
    # from displaying an icon in the "Network Connections" panel.
    #presentation_url=http://www.mylan/index.php

    # report system uptime instead of daemon uptime
    system_uptime=yes

    # notify interval in seconds. default is 30 seconds.
    #notify_interval=240
    notify_interval=60

    # unused rules cleaning.
    # never remove any rule before this threshold for the number
    # of redirections is exceeded. default to 20
    #clean_ruleset_threshold=10
    # clean process work interval in seconds. default to 0 (disabled).
    # a 600 seconds (10 minutes) interval makes sense
    clean_ruleset_interval=3600

    # log packets in pf
    #packet_log=no

    # ALTQ queue in pf
    # filter rules must be used for this to be used.
    # compile with PF_ENABLE_FILTER_RULES (see config.h file)
    #queue=queue_name1

    # tag name in pf
    #tag=tag_name1

    # make filter rules in pf quick or not. default is yes
    # active when compiled with PF_ENABLE_FILTER_RULES (see config.h file)
    #quickrules=no

    # uuid : generate your own with "make genuuid"
    uuid=d7d234be-a2e6-4183-a012-3424f3e56cc8e

    # serial and model number the daemon will report to clients
    # in its XML description
    serial=06341963
    model_number=2

    # UPnP permission rules
    # (allow|deny) (external port range) ip/mask (internal port range)
    # A port range is <min port>-<max port> or <port> if there is only
    # one port in the range.
    # ip/mask format must be nn.nn.nn.nn/nn
    # it is advised to only allow redirection of port above 1024
    # and to finish the rule set with "deny 0-65535 0.0.0.0/0 0-65535"
    allow 0-65535 192.168.0.0/16 0-65535
    allow 0-65535 10.0.0.0/8 0-65535
    allow 0-65535 172.16.0.0/12 0-65535
    deny 0-65535 0.0.0.0/0 0-65535

  • i had miniupnpd installed two days ago and it worked perfect. i think i got it off tim burgess site or fast update mirror.

    peter baldwin was maintaining it:
    https://github.com/clearos/miniupnpd/commits/master

    ref thread: https://www.clearos.com/clearfoundation/social/community/clearos-module-miniupnp-daemon#reply-97731

  • ldap kept hijacking my password so i gave up and reloaded clearos. i set to mount my Raid6 array @ /var/flexshare and setup flexshares, users and groups. all is working all i need to find is miniupnpd. good idea to do an include for user specific smb.conf settings.

  • thanks tony, but i already gave up and reloaded clearos. if i run into this again, I see bind_pw; perhaps that was the password i needed.

  • Where can i find miniupnpd for ClearOS 7.4?

    I've reinstalled ClearOS and am looking for miniupnpd, can't find it. I can't seem to search the 7.x fast updates repo (download3.clearsdn.com).

    i've tried list, it comes back no matching packages.
    # yum list enablerepo=* miniupnpd

  • Marcel van Leeuwen wrote:

    Hi, can't you access non of the network shares? So home directory and flexshares?

    You indeed have to create a user in system -> accounts -> users and add that user to a group. With the credentials you created on ClearOS you can login on your network share with you Windows client.

    My "flexshare.conf" looks really different.



    Did you edited flexshare.conf manually?


    I don't understand flexshare and have not used it, does it tie into samba in someway?

  • if i create a user with useradd how can i get the dashboard/gui to recognize the user i created. now i can't add user to groups, "usermod -aG group1,group2 user".

  • i created a user in system accounts, but after a week the password was changed and i no longer could access shares and if i tried to change it with with command shell it asked for the ldap password. so i deleted it and added it with useradd and set password and now it works. why would ldap take over a user???

  • How to create user accounts - simple server

    I'm on windows 10 trying to login to my samba user share and it will not recognize my password.

    On Windows 10 i've been using Microsoft accounts (not local account), so i've changed my User Name in windows 10 to EricA; i'm using user Eric on windows 7 with a different password so i created a new user erica. So i have two users, eric and erica (system - accounts - user).

    Is this the proper way to create samba users/passwords by just creating a clearos user?

    last week this work, this week after rebooting my clearos server it doesn't work.

    i can't add a user/password as it already exists...
    # smbpasswd -a erica"
    ldapsam_getsampwnam: Duplicate entries for this user [erica] Failing. count=2
    ldapsam_add_sam_account: User 'erica' already in the base, with samba attributes
    Failed to add entry for user erica.



    smb.conf:
    [global]
    ntlm auth = yes
    winbind expand groups = 1
    unix password sync = Yes
    # General
    netbios name = Orion
    workgroup = IRKSHOUSE
    server string = ClearOS Samba Server
    security = user

    # Logging
    log level = 1
    log file = /var/log/samba/%L-%m
    max log size = 0
    utmp = Yes

    # Network
    bind interfaces only = No
    interfaces = lo enp7s0

    # Printing
    printcap name = /etc/printcap
    load printers = Yes

    # Security settings
    guest account = guest
    #restrict anonymous = 2

    # WINS
    wins support = Yes
    wins server =

    # PDC/BDC
    domain logons = Yes
    add machine script = /usr/sbin/samba-add-machine "%u"
    logon drive = U:
    logon script = logon.cmd
    logon path =
    logon home = \\%L\%U

    # Winbind
    idmap config * : backend = ldap
    idmap config * : range = 20000000-29999999
    winbind enum users = Yes
    winbind enum groups = Yes
    winbind offline logon = false
    winbind use default domain = true
    winbind separator = +
    template homedir = /home/%U
    template shell = /sbin/nologin

    # Other
    preferred master = Yes
    domain master = Yes
    passwd program = /usr/sbin/userpasswd %u
    passwd chat = *password:* %n\n *password:* %n\n *successfully.*
    passwd chat timeout = 10
    username map = /etc/samba/smbusers
    wide links = No
    allow trusted domains = No

    # LDAP settings
    include = /etc/samba/smb.ldap.conf

    # Winbind LDAP settings
    include = /etc/samba/smb.winbind.conf

    #============================ Share Definitions ==============================

    # Flexshare
    # include = /etc/samba/flexshare.conf

    [homes]
    comment = Home Directories
    path = /home/%U
    valid users = %D\%S, %D+%S, %S
    read only = No
    browseable = No
    available = Yes

    [Irk]
    comment = Erics personal folder
    path = /media/Raid6/shares/Eric
    valid users = eric erica
    read only = No
    browseable = yes
    available = Yes

    [Movies]
    comment = Movie and TV shows
    path = /media/Raid6/Movies
    valid users = eric erica
    read only = No
    browseable = yes
    available = Yes

    [Music Cache]
    comment = audio mps's
    path = /media/Raid6/shares/Music Cache
    valid users = eric erica
    read only = No
    browseable = yes
    available = Yes

    [Flac]
    comment = lossless audio files
    path = /media/Raid6/shares/Flac
    valid users = eric erica
    read only = No
    browseable = Yes
    available = Yes

    [printers]
    comment = Print Spool
    path = /var/spool/samba
    printing = cups
    cups options = raw
    use client driver = Yes
    printable = Yes
    read only = No
    browseable = No
    available = No

    [print$]
    comment = Printer Drivers
    path = /var/samba/drivers
    read only = No
    browseable = No
    available = No

    [netlogon]
    comment = Network Logon Service
    path = /var/samba/netlogon
    read only = No
    locking = No
    browseable = No
    available = No

    [profiles]
    comment = Profile Share
    path = /var/samba/profiles
    read only = No
    profile acls = Yes
    browseable = No
    available = No
    force group = domain_users
    force directory mode = 02775