Latest Server related questions

I used kubeadm to deploy a bare-metal cluster with one control plane node and one worker node on the same LAN. After initializing the cluster (kubeadm init on the cp and kubeadm join on the worker node), I installed calico via helm. The calico-node and calico-kube-controllers pods do not reach ready state. However, they seem to be functioning correctly, and if I manually call the commands that the ...

I have been trying to understand how to import my csv file and export of specific adgroup they are added or even they are not added

Import-CSV " C:\Users\user.csv" | ForEach-Object { Get-ADGroupMember $_. sAMAcountName -Properties * |Select sAMAcountName } |Export-CSV "c:\Users\userswithgroup.csv"

I dont really understand why its not working what went wrong.

I have a server (A) which clients connect to it throw internet and its ip is 195.45.10.2 it route trafic to server (B) and its ip is 85.10 20.2 . So now I want to use some thing like dsr to let server b directly send packets to clients. Client send to A and A send to B then B respons to client directly. So it is needed to request packets from A to B have client ip address as source and then response pac ...

I have a playbook which configures Static IP Address and reboots the Server. However, the playbook is resulting in an error. Even the following code also doesn't seems working

    - name: Creating Interface Configuration using JINJA2 Temlate
      template:
        src: templates/interface_config.jinja2
        dest: "/etc/sysconfig/network-scripts/ifcfg-{{ nat_int }}"

    - name: Reboot Server
   ...

I am currently trying to create a flat table in Google Big Query using Google Ads data that has already been pushed into Big Query. My goal is to obtain the gclid from the raw Google Ads data and map it to our CRM so that we can match it with our CRM data. However, I am facing a problem while using the SELECT command to join the clickState table with the campaignBasicState table. I am seeing multiple cl ...

I'm looking to create an NGINX reverse proxy to my WiFi router, and I'm looking to verify the connection. My router uses a self-signed certificate which lists the tplinkwifi.net domain as the Subject Common Name (CN) but doesn't include any Subject Alternative Names (SAN).

I've already tried this with Caddy as well, but support documentation is clear that Caddy will not consider the CommonName. This is pr ...

I have a Ubuntu Server RAID1 M.2 SSD (2 Drives) where 1 Failed, I removed and Replaced with a new one, but its state stays "removed".

I am new to RAID Stuff, Below are my RAID Details:

cat /proc/mdstat

Personalities : [raid1] [linear] [multipath] [raid0] [raid6] [raid5] [raid4] [raid10] md0 : active raid1 nvme1n1p2[0] 1952279552 blocks super 1.2 [2/1] [U_] bitmap: 9/15 pages [36KB], 65536KB chunk

u ...

I have to run 2 different apps on the same domain at the same time. I want to forward all requests to localhost:3000, if url contains /presscenter, if not, default should be my react.js application. I found this one here for apache virtual host:

RewriteEngine On

# Rewrite rule for /presscenter requests
RewriteCond %{REQUEST_URI} ^/presscenter [NC]
RewriteRule ^(.*)$ http://localhost:3000/$1 [P]

 ...

I have setup a WordPress website in AWS Lightsail (uses the Bitnami Wordpress). And I used the bncert-tool using the command sudo /opt/bitnami/bncert-tool to install the SSL.

I have forced www version to be used and and also the SSL was installed for the www and non-www domain using the above tool. DNS was managed within the Lightsail control panel's Domain & DNS section.

Then I decided to move t ...

We have a local k8s(microk8s) cluster installed at our client. We use Azure build pipelines and release pipelines to build and deploy to this cluster using a deployment group, that is, we have installed an Azure Agent on the cluster server that executes kubectl commands defined in the release pipeline.

We would like to go from using release pipelines to instead use regular pipelines together with ...

I am transferring my mail server to a new VPS and it has not been as easy his time. I have changed all the IPs and set Reverse DNS on the new VPS.

I have set the hostname in /etc/postfix/main.cf and made other necessary modifications.

I can send an email to my gmail address but when I send a reply I get error an message saying domain 'mydomain.localdomai' couldn’t be found. I cannot find anywhere  ...

There's a detailed explanation of the setup and my debugging efforts so far, but the main question is at the bottom.

I have a setup like so:

• Machine A has two network interfaces: eth0 (192.168.159.60) and mesh0 (10.255.0.1), where eth0 has a route to 0.0.0.0/0 and mesh0 is a TUN interface being used in a mesh network.
• Machine B has one network interface: mesh0 (10.255.0.2), where mesh0 is also TUN i ...

Complete beginner to networking and im trying to deploy a simple express app on a windows instance of ec2 and I cannot find a single resource that explains the steps I need to take to make it happen without having a ton of technical terms and people getting angry and downvoting (and even removing my question from stack overflow for being too "vague", and while I understand its an open-ended question ...

I created a new domain at netcup.de to host a Nextcloud. But for some reason the domain (cloud.stammkirkias.de) does not seem to be propagated. Has anyone of you has a tip, why? As additional information, my brother created a separate DNS-TXT entry for the domain as he said, since it did not work for some reason with a wildcard for the main domain (which is working) stammkirkias.de.

And I am not  ...

Currently we have a 365 account - 50 users, and 50 local machines with local logins.

According to my reading, 365 can manage configs on these machines and allow to specify which 365 users can log into which local machine.

When reading about how to enroll a machine into 365/Intune, it appears that the only way to get it all setup is with user intervention for a user enrollment scheme. This is off the ...

I have a vanilla wireguard configuration - a cloud VPS running Centos stream is the server, and the clients in question are MacOS and an iOS iphone.

Often when attempting to connect after a long period of not using the VPN, there's no issue and the connection is established immediately.

If I disconnect and then try to reconnect, this is typically when things go wrong. I will either get:

1. Data Sent ...

I have a CentOS 7 with a Boot Partition of 400M as number 1. And after that I have a root Partition of 50G as number 2. What would be the steps to extend the Boot volume with parted or so ?

Kind regards.

On a linux vm inside of an automated codebuild CI/CD Pipeline this command executes as expected:

scp -v -i /path/to/key ./scp_test.txt user@host:$target_dir

However, a similar ssh using the same credentials does not:

ssh -vvv -i /path/to/key user@host "touch ssh_test.txt $target_dir"

The issue does not seem to be with connecting (part of logs is debug1: Connection established), authenticating (scp w ...

after a power failure a raid 6 won’t load in Linux without any disk failure The message while booting is raid restored failed function: numaraid Thanks

In VLSM we usually subnet in descending order from the network with highest number of hosts to the lowest one , but i was reading that "If you allocate subnets in any other order you will not be able to avoid leaving gaps between the subnets."

I tried with simple example and subnetted out of order to understand the meaning of the gap , but i couldn't understand the where the gap is ?

Can someone ple ...

I am trying to setup snooze option for all alarms in my AWS account. To accomplish this I have tried the below terraform code. I kept my account id as dummy value 12345678.

resource "aws_cloudwatch_event_rule" "snooze_alarms_rule" {
  name        = "snooze_alarms_rule"
  description = "Snooze alarms every Sunday from 12:30 PM to 6:30 PM CST"
  schedule_expression = "cron(30 18 ? * SUN *)" # 6:30 PM ...

I am running Ubuntu 20.04 with latest OpenVpn package. First time trying to get a vpn going myself.

Unable to ping any hosts that are currently on the 10.10.0.0 via my windows machine client.

I can ping either direction when ssh'd into any system on that subnet.

UFW is currently disabled.

OpenVPN connects fine, I am however able to ping the openvpn host address of 10.10.3.98.

/proc/sys/net/ipv4/ip_ ...

I am looking to be able to share a single network storage between my fleet of Windows EC2 instances that are used as application webservers running IIS. These instances need to be able to access the drive either by UNC or a mapped drive letter. The instances are created dynamically through autoscaling, so they need to either be preconfigured to already have the connection in the AMI that they are create ...

We are experiencing an odd issue, seemingly related to routing or DNS.

We have a "hub and spoke" topology using Unifi equipment (UDMP's). Each site connects via IPSEC tunnel to an AWS EC2 instance running VyOS to handle core routing between sites and other infrastructure in AWS.

In the past, when we had more of a hybrid topology with some on-prem servers, each site had another IPSEC tunnel connectin ...

My goal is configure a container behave as a router which load balances over a number of VPN connections.

To do this I'm probabilistically marking initiating packets with:

iptables -I PREROUTING -t mangle -j CONNMARK --restore-mark
iptables -A PREROUTING -t mangle -m statistic --mode random --probability .50 -j MARK --set-mark 200 -m mark --mark 0
iptables -A PREROUTING -t mangle -j MARK --set-mark 20 ...

My sendmail server (FreeBSD, compiled against OpenSSL) is refusing to negotiate TLS with one particular set of clients.

Log messages look like this:

sm-mta[92474]: STARTTLS=server, error: accept failed=-1, reason=sslv3 alert bad certificate, SSL_error=1, errno=0, retry=-1, relay=xx.example.com [XX.XX.XX.XX]

Other than these failures, which originate with a well-known ISP's mail infrastructure, e ...

I have a TCP application that uses mutual TLS to authenticate connecting clients.
Because of increased traffic I'd like to clusterize the application and load-balance the nodes with nginx. I already have that working with nginx's stream module, which (to my understanding) acts as a layer 4 balancer.

At this point it seems reasonable to me to drop connection attempts that fail the mTLS verification i ...

I'm using IIS to host my app and I use port 80, on my RDP if I enter the IP address it redirect me to my app but if I use the IP address outside RDP is not working. I checked with XAMPP and is working on same port( not same time) and I can access it outside my RDP. What may be the problem.

my security group

I noticed recently in Office365 Outlook that when a user views their "People" page, if their mailbox has multiple Contacts folders, they don't all appear on that page (there's no "Folders" expandable list.

However, if the same user uses Windows Outlook, the People page does show all contacts folders, and if in Office365 I use "Open another mailbox" then that mailbox's People page has a "Folders"  ...

I'm trying to set up in a Redhat server, 2 services that start a database at startup, and stop it at shutdown, so I have put 2 files under /etc/systemd/system as follows:

shutdown.service:

[Unit]
Description=Shutdown database at shutdown
DefaultDependencies=no
Before=shutdown.target reboot.target halt.target

[Service]
Type=oneshot
ExecStart=/usr/DBA/shutdown.sh
RemainAfterExit=yes

[Install]
Wante ...