Latest Server related questions

How can I filter the nocache block or free block using ad-hoc command? I tried ansible centos1 -m setup -a 'filter=ansible_memory_mb.nocache' but doesn't filter it out.

ansible centos1 -m setup -a 'filter=ansible_memory_mb'
centos1 | SUCCESS => {
    "ansible_facts": {
        "ansible_memory_mb": {
            "nocache": {
                "free": 11808,
                "used": 926
            }, ...

I have created a pfSense firewall instance on Azure VNet and configured port forwarding so that pfSense should monitor all the traffic of VM.

I have blocked all the WAN traffic on the firewall, but when I'm trying to go to www.google.com. Google page is opening.

Can anyone please help me understand how to block all WAN traffic on pfSense, or apply the default-deny policy?

For reference, I've provided the ...

I'm trying to write an ACL rule for haproxy. I want it to be true for paths that contain two or more forward slashes. Ie:

/ -> false
/test -> false
/test/test -> true

Is there a way of doing this without resorting to regexes?

I'm developing some application that shall monitor some data in real time. The application shall collect data from the network, parse the relevant packets from my protocol and store it to the database.

When I start the application - everything seems to be OK, but then lags are starting to appear few seconds after that.

Checking my database, it seems that some data is not saved while others does stor ...

We are migrating mail from one of our domains to the exchange (123123.com). We created users in AD, created mailboxes for them and copied mail from Google there. Also the domain was added to accepted.

Now other users of other domains from the exchange are trying to write a letter to the addresses of the domain that we are migrating. The exchange puts the received letter to itself, but I need it t ...

I have a self signed CA that I have been using for several years. Certs that I sign/issue these days for our LAN are now getting warnings in Chrome due to "Weak Key". Is there a straightforward way with openssl to replace or upgrade the Root CA Key to use stronger crypto to avoid the "Not Secure" Chrome designation on signed certs?

So i have managed to setup an OpenVPN VPS. My public clientside IP is static.

For an abundance of security I'd like to automate a firewall blocking all traffic when the VPN client isn't connected. When client connects, traffic can flow so open up firewall.... Almost like a soft shutdown except purely a drop all unless from clientside static IP.

Any ideas how to implement this? I understand that I ca ...

When it comes to web server security, I am a paranoid person.

On DigitalOcean, I'm running a server. They refer to it as a Droplet. Cloudflare is my DNS provider, and Cloudflare proxies and protects my server from DDoS attacks.

However, I tried to search my domain on ZoomEye.org's cybersecurity search engine, it found my Origin IP address. According to researchers, hackers just need to know the Orig ...

I want to know when task definition revisions have been made.
When I run this command

aws ecs describe-task-definition --region us-east-1 --task-definition my_task_definition

it gives me the latest revision (in my case #5) and gives me when and who made it ("registeredAt", "registeredBy").

{
    "taskDefinition": {
        "taskDefinitionArn": "arn:aws:ecs:us-east-1:{account_number}:task-definition/ ...

i'm trying to figure out what would be the best aproach to get an external server into my local domain.

the external server is directly connected to the internet, no hardware-firewall the internal server is behind a hardware-filewall (and of course there is nat)

i'm aware of thats it not a supported scenario by microsoft, but t should be possible, question is what would be the best

currently i could th ...

I have a docker Mysql running in a Linode using the following dockerfile:

version: '3'
services:
  mysql8:
    image: mysql:8.0.23
    command: --default-authentication-plugin=mysql_native_password
    container_name: mysql8
    cap_add:
      - SYS_NICE
    environment:
      MYSQL_ROOT_PASSWORD: rambo
    volumes:
      - /opt/mysql/data:/var/lib/mysql
    ports:
      - 3306:3306

I can connect by:  ...

I recently migrated my working deployment from a small node group to a large one using this guide. Everything seems to be working fine, however the Google load balancer which is set up in front of my GKE cluster cannot seem to be fully updated to point to the new instance group.

I have configured all backends to the new node pool perfectly fine, however 2 out of the 3 backends have lost the correct por ...

It seems theoretically possible for me to ssh to my instance in OpenStack through credentials and instance id/network IP(Not floating IP) etc. Is it possible, am I missing something? Is it simply a feature not yet supported?

I need help with some deeper networking stuff. Hopefully somebody can help me or at least push me to the right direction.

At the moment I have a two node bare metal (VPS) kubernetes cluster setup with microk8s. Testingwith website deployments work great, routing based on ingress :-)

But now I want do deploy other services that are accessable by ports. I don't want to use NodePort, as the used ports  ...

I have an Ubuntu 20.04 server that I have successfully joined to my domain using realm, US.EXAMPLE.COM.

The way our AD is structured is that all machines are joined to the child domain for their region and all users are setup in the parent domain, EXAMPLE.COM. With full trust, etc, of course.

I can successfully look up users in the US.EXAMPLE.COM domain with id or getent passwd, but cannot look up a ...