This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Wanted Features, And some Questions...

Hello boys and girls!

I’m a home user of astaro. And I have been using it since version 3 and looked some at version 2.
I liked it and my father was mighty impressed about it and decided to buy it for the company his working for.
It became an Enterprise license with 250ip's with virus scan.

First of all I would like to take the opportunity to thank you for an excellent work with this software. IT'S GREAT!!!

However when I configured my fathers firewall at the office I found some questions and features I would be delighted
to have answered and implemented.
Hopefully you can implement a few of them and you can make an excellent product even more excellent  [;)]

The things I wonder about:

1:  Does Astaro have "Bayesian Learning" or any other type in its spam protection?
2:  If YES, is the database included in the backup?

The features I want:

1:  If the answer to the first question above was "NO", can "Bayesian Learning"
or something like that be implemented?  (Very wanted feature)

1,5:  As a following question, can you make a feature where the users
who get a "SPAM" marked mail will be able to send it back to the Firewall
(With special e-mail address's for example SPAM/NOSPAM) and then the server
will process these addresses once a day. And then add/remove them to or from
the Bayesian database?  (Very wanted feature)

I have seen it implemented in this document "lawmonkey.org/anti-spam.html"

2:  Can you add an option that allows a comment row in the packet filter section?  (Very wanted feature)
3:  A more specific ICMP part, so you can block "ping" on the external interface and not the Internal and so on.
4:  User defined alerts, like when a port is connected. That then will be sent to an email address.
5:  Time trigged rules, e.g. rule one will apply at 12:00.
6:  Extend the GUI of the DNS-proxy so you can use it as a "real" dnsserver.
Adding zones and records and so on.  (Very wanted feature)
7:  SMP support (Hyper-Threading) (We use an Dell 2650 with a Xeon and we want to get the most out of the machine)  [;)]
8:  Self defined "reject messages" for spam, virus etc from the SMTP-proxy.  (Very wanted feature)
9:  Control inbound access to the PPTP-Roadwarrior by IP-address.
10:  Force the SMTP-Proxy to only listen to a specific IP-address.

That’s all folks, Hope I came with some good suggestions for you.
And keep up the good work!!! :-)

PS: Some feedback to your HCL, Dell 2650 works fine although the Network Interfaces ended up to be unknown in the WebAdmin GUI (Although they were recognized to be broadcom nic's during the installation).

This is how it looks,
[unknown vendor / unknown chipset]
irq=28   mac=00:06:5B:FD:C4:CB   type=eth

This thread was automatically locked due to age.

Parents

0 tom_01 over 22 years ago

[ QUOTE ]
Does Astaro have "Bayesian Learning" or any other type in its spam protection?

[/ QUOTE ]

The next Up2Date has SpamAssassin 2.55, that has a self-learning bayesian component. It does not require user interaction, so it is easy to implement. We do not currently plan to put in a bayesian component that requires user feedback.

[ QUOTE ]
If YES, is the database included in the backup?

[/ QUOTE ]

No, it would be too big.

[ QUOTE ]
Can you add an option that allows a comment row in the packet filter section?  (Very wanted feature)

[/ QUOTE ]

This is on the roadmap for the next version. No guarantee however.

[ QUOTE ]
A more specific ICMP part, so you can block "ping" on the external interface and not the Internal and so on.

[/ QUOTE ]

Noted [:)]

[ QUOTE ]
User defined alerts, like when a port is connected. That then will be sent to an email address.

[/ QUOTE ]

Not quite sure what you mean here [:)] A port local to the firewall?

[ QUOTE ]
Time trigged rules, e.g. rule one will apply at 12:00.

[/ QUOTE ]

Also on the roadmap. And also no guarantees. [:)]

[ QUOTE ]
Extend the GUI of the DNS-proxy so you can use it as a "real" dnsserver.
Adding zones and records and so on.  (Very wanted feature)

[/ QUOTE ]

Most possibly not. This is the job of a dedicated DNS server since the configuration can be very complex.

[ QUOTE ]
SMP support (Hyper-Threading) (We use an Dell 2650 with a Xeon and we want to get the most out of the machine)  [;)]

[/ QUOTE ]

Also in the pipeline.

[ QUOTE ]
Self defined "reject messages" for spam, virus etc from the SMTP-proxy.  (Very wanted feature)

[/ QUOTE ]

This can be achived by editing /var/chroot-smtp/etc/exim.conf-default.

[ QUOTE ]

9:  Control inbound access to the PPTP-Roadwarrior by IP-address.
10:  Force the SMTP-Proxy to only listen to a specific IP-address.

[/ QUOTE ]

Both noted. [:)]
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 tom_01 over 22 years ago

[ QUOTE ]
Does Astaro have "Bayesian Learning" or any other type in its spam protection?

[/ QUOTE ]

The next Up2Date has SpamAssassin 2.55, that has a self-learning bayesian component. It does not require user interaction, so it is easy to implement. We do not currently plan to put in a bayesian component that requires user feedback.

[ QUOTE ]
If YES, is the database included in the backup?

[/ QUOTE ]

No, it would be too big.

[ QUOTE ]
Can you add an option that allows a comment row in the packet filter section?  (Very wanted feature)

[/ QUOTE ]

This is on the roadmap for the next version. No guarantee however.

[ QUOTE ]
A more specific ICMP part, so you can block "ping" on the external interface and not the Internal and so on.

[/ QUOTE ]

Noted [:)]

[ QUOTE ]
User defined alerts, like when a port is connected. That then will be sent to an email address.

[/ QUOTE ]

Not quite sure what you mean here [:)] A port local to the firewall?

[ QUOTE ]
Time trigged rules, e.g. rule one will apply at 12:00.

[/ QUOTE ]

Also on the roadmap. And also no guarantees. [:)]

[ QUOTE ]
Extend the GUI of the DNS-proxy so you can use it as a "real" dnsserver.
Adding zones and records and so on.  (Very wanted feature)

[/ QUOTE ]

Most possibly not. This is the job of a dedicated DNS server since the configuration can be very complex.

[ QUOTE ]
SMP support (Hyper-Threading) (We use an Dell 2650 with a Xeon and we want to get the most out of the machine)  [;)]

[/ QUOTE ]

Also in the pipeline.

[ QUOTE ]
Self defined "reject messages" for spam, virus etc from the SMTP-proxy.  (Very wanted feature)

[/ QUOTE ]

This can be achived by editing /var/chroot-smtp/etc/exim.conf-default.

[ QUOTE ]

9:  Control inbound access to the PPTP-Roadwarrior by IP-address.
10:  Force the SMTP-Proxy to only listen to a specific IP-address.

[/ QUOTE ]

Both noted. [:)]
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 Frank_H over 22 years ago in reply to tom_01

Thanks for the fast reply,

What i meant was that when someone tries to access port 1723 for instance the administrator would get an email. So you could keep track of how is accessing different resources.
Cancel
Vote Up 0 Vote Down

Cancel
0 Frank_H over 22 years ago in reply to tom_01

Got some more questions then [;)]

Now since the bayesian db will be implemented (BIG  [:)]n the new one.

So it doesn't have to leare all those thinks again.

Next:
"This can be achived by editing /var/chroot-smtp/etc/exim.conf-default."

Thanks, I will try it out [:)]
Althow the thing is that my father might want to change it some time and he aint the guy that likes to "hack" in the console to do changes. Even if i describe it for him. So a simple GUI part would be real nice

But if it's not on the "roadmap" this will do just fine [:)]

By the way when do you plan on releasing the next up2date?
Cancel
Vote Up 0 Vote Down

Cancel