i have problem like this
this is my iptables rules

sysctl net.ipv4.ip_forward=1
iptables -t nat -A PREROUTING -p tcp --dport 22 -j DNAT --to-destination (( my first server ))
iptables -t nat -A PREROUTING -j DNAT --to-destination (( my second server ))
iptables -t nat -A POSTROUTING -j MASQUERADE

i want to change these rules to nftables what should i do ?

also i always add these to nano /etc/rc.local ...

I have a mapped network drive and backup folder inside it.

O:\Backup

But I can't share this folder like \\localhost\backup

Is there a way to share a folder in a mapped drive?

Consider I have docker-subdomain.mydomain.com pointing to a website in a Docker container, and host-subdomain.mydomain.com pointing to a website in the Host itself. Both these websites are in the same Host and IP address.

When the PHP code of the docker-subdomain.mydomain.com inside Docker makes a curl call to host-subdomain.mydomain.com, and that host-subdomain.mydomain.com logs the IP address of  ...

Im having trouble debugging why my nodeJS webapp gets killed by the OOM killer in Debian 11. Im working on a small VPS (VMware ESX 7.0.3 build-21313628) by IONOS with single core 1GHz cpu, 512MB RAM, 1,9GB swap and 10GB SSD.

The webapp runs with pm2 and nginx as a reverse proxy, im using certbot systemd timer for automatic SSL renewals.

The issue which occurs is the following: The VPS gets unrespons ...

I bought a vps in Contabo, using ubuntu22, installed apache2, php, mariadb.Sometimes the apache2 uses all of my memory. Literally all. At idle, not really anything was running.

A php process was running in the picture but right after this happened I stopped it and restarted apache2 and the memory again got to 8gb in just like 10sec. So I think it is not related to the problem, I used this php script on ...

I want to create a certificate store file in pkcs12 format to use in thunderbird for s/mime signing and encrypting. I already run a mail and web server that use certificates signed by a CA certificate that I have created. I want to sign the mail user's cert with that same CA.

I loosely followed this guide but adjusted my steps to fit my setup.

The CA cert is in PEM format.

I create the p12 certificat ...

I have installed pfSense as a KVM guest in a Debian 11 host using libvirt. The host has two interfaces. One is attached to the VM using macVLAN driver, and serves as pfSense's WAN interface. The other is attached to a linux bridge, and serves the LAN (thus the linux bridge has three ports: the actual physical NIC, a tap interface for VM, and one for the host).

Everything works fine at first. Howe ...

I have a systemd service. No logs appear from it despite my best efforts. This is the service file:

[Unit]
Description=Load Balancer

[Service]
WorkingDirectory=/home/lb
ExecStart=/usr/lib/jvm/jdk-20/bin/java --enable-preview -jar /home/lb/app.jar
User=lb
Type=simple
Restart=on-failure
RestartSec=10

[Install]
WantedBy=multi-user.target

I've also tried adding

StandardOutput=journal
StandardError= ...

I'm running a Linux VM that needs to access files on Windows machines. For that I have a bunch of CIFS mounts in /etc/fstab that work fine. Idiotically the Windows machines have free-running system clocks not synced to anything, so I also want to know their respective local times. I'm using "net -I xxx.xxx.xxx.xxx time" for that. Every now and then I'll get "Protocol negotiation failed: ERRDOS:ERRnomem" ...

I cannot find gnumeric/ssconvert package for Amazon Linux 2 (using yum).

I tried to compile the source code with error. Is there any easier way to install it?

Compile Error

[ec2-user@ip-172-31-6-34 gnumeric-1.12.55]$ ./configure --prefix=/usr
checking for a BSD-compatible install... /usr/bin/install -c
checking whether build environment is sane... yes
checking for a race-free mkdir -p... /usr/bin/ ...

I have https://www.example.com/page-name/?utm_source=dlvr.it&utm_medium=twitter

I have added the following code in the .htaccess file and redirected it to https://www.example.com/page-name/.

RewriteEngine On
RewriteCond %{QUERY_STRING} ^(utm_source) [NC]
RewriteCond %{REQUEST_URI} ^/$ [OR]
RewriteCond %{REQUEST_URI} ^(.*)$ [NC]
RewriteRule ^ %{REQUEST_URI}? [L,R=301]

But the multilingual page is  ...

I have two eks cluster added in kubernetes federation , I am able to deploy pod on each cluster by adding labels in deployment for each cluster , but I am not able to do the same randomly , if I run the deployment it should be able to deploy pods of any one cluster randomly without adding any labels

I am sharing the crd file

apiVersion: types.kubefed.io/v1beta1
kind: Placement
metadata:
  name: random ...

Under Openssh for Windows, is there a way to specify an exec string for powershell with embedded quotes? It's made complex by the fact that a multiword command must be quoted, and I can't figure out a way to escape the embedded quotes. I've tried the following arguments to Match ... Exec:

# This gives error ${CMDVAR} is not recognized
"powershell -command ${CMDVAR}"

# This executes the script bu ...

I'm trying to mount a CIFS share from a storage array on a Centos7 machine, and I'm failing miserably.

sudo mount -t cifs -o vers=2.1,user=domain/myuser //storagearray/Server_Backups  /tmp/dbshare/

[sudo] password for myuser:
Password for domain/myuser@//storagearray/Server_Backups:  ***********
mount error(22): Invalid argument
Refer to the mount.cifs(8) manual page (e.g. man mount.cifs)

I've increa ...

I have an older HP Z440 tower with 4x8GB ECC DDR4, running Proxmox VE 6.4. Recently, it started showing MCE errors every few seconds. I installed rasdaemon and can see that they are memory read errors. However, edac-util doesn't show any sign of problems. Memtest passed, but I understand that's normal for correctable errors.

There is only one socket, and the DIMMs are installed in slots 1, 3, 6,  ...

I have a Google VM micro instance running Ubuntu 20.04. Last week on this VM, I set up a systemd service that runs a python script. I created the service file (say my_fancy_service.service) as /lib/systemd/system/my_fancy_service.service and inside this service file, it calls /usr/bin/python3 /usr/local/bin/my_fancy_service.py. Everything works fine as expected.

But today I came back to this serv ...

I created an RDS database instance using the AWS user interface, and I made sure that the "Backup replication" feature was enabled and I specified the ARN for a symmetric multi-region KMS key that I created for "encrypt and decrypt" usage. The database creation seemed to go successfully.

To my surprise, when I tried to modify the RDS instance, the "Enable replication in another AWS Region" box wa ...

I would like to exclude from access.log access to some php scripts. To do this, I did the following:

 location ~ ^/lib/exe/(jquery|taskrunner|css|js)\.php$ {
        access_log off; 
        #access_log /var/log/nginx/test_access.log;
        try_files /dev/null/1 @processphp;
    }   

    location ~ \.php$ {
        try_files /dev/null/1 @processphp;
    }   

    location @processphp {
        i ...

My goal here is to be able to use the service principal of an Enterprise Application in source tenant to authenticate towards/connect to destination tenants as Global Administrator.

In source tenant I have added an Enterprise Application. I am able to successfully connect to this tenant with this EA service principal using Connect-AzAccount (providing secret in Credential parameter).

Connect-AzAccoun ...

I have a Supermicro X9SRL-F motherboard on which the IPMI isn't working properly. When I got the board I went into the BIOS and changed the IP address to static and it shows as 192.168.x.y. The IP address is pingable but I cannot point a browser to it. IPMIView 2.21.0 detects it and I can add it to the list of devices, but I cannot conect to it that way either.

I was able to flash the firmware wi ...

I noticed AWS Lambda causes S3 tier 1 and 2 requests. Do these cost anything after 12 months free tier expires?

Specifically:

• Create new AWS Lambda function in AWS console causes 1 tier 1 S3 request
  • Amazon Simple Storage Service Requests-Tier1: $x per request - PUT, COPY, POST, or LIST requests: 1 Request
• Delete AWS Lambda function in AWS console causes 1 tier 2 S3 request
  • Amazon Simple Storage  ...

I want to ask can I setup for example LAMP with all domains and Bind9 on the same machine ?

If yes, ok.

Now I have one .com domain for example : site.com

Now I want to understand the steps to do to have in the end this:

ns1.site.com

ns2.site.com

In particularly I need yours help to understand a logic to setup all this software.

Thanks

Invoking caddy run against the Caddyfile:

http://localhost
header ETag forcedValue
file_server

I expect curl -v http://localhost/Caddyfile to show a response with the ETag forcedValue.

Instead, a generated tag based on the Caddyfile's mtime and size is returned.

Things attempted:

• order header before file_server / order header after file_server
• tested whether header -ETag can remove the etag al ...

I'm testing a connection between two VM instances in the same subnet. The VPC has enabled dual stack with internal IPv6 addresses and both VMs received a IPv6 Unique Local Address. The VMs cannot ping eachother via ICMPv6 while it works with ICMPv4.

I've added the following firewall rules to be sure that nothing gets denied.

I have a Linux PC (ubuntu 22.04) with a network layout as below:

Internet <-> Router <-> PC <-> edge device <-> Switch <-> APs <-> devices

And with two Lan interfaces as below:

• eno1: Connected to the internet (directly connected to the router), gets IP: 192.168.1.165 from the router (DHCP)
• enx3c: connected to an edge device and that edge device is connected to a sw ...

I have installed strongswan site-to-site vpn,thats working fine. On server I have configured iptables with this commans iptables -t nat -A POSTROUTING -s 10.9.141.0/24 -d 10.10.27.0/24 -j MASQUERADE.

Is another way to set up this without masquarade?

I want use routing between network1 and network2 for monitoring of running clients by ip.

Thank you

Using this as a reference and this previous post, I attempted at creating a iptable packet processing flowchart when docker containers on the bridge network are considered. The flowchart is shown below

I had omitted some of the tables to keep the flowchart more concise. For example, I understand that before the first routing decision, a packet technically also passes through mangle and nat.

Howeve ...

Summary

I'm having trouble getting a certificate issued by Let's Encrypt R3 to work on SQL Server 2019. When using the certificate for SSL but not trusting the server certificate explicitly (In SSMS, I check "Encrypt connection" but not "Trust server certificate"), all authentication fails with the following error message:

A connection was successfully established with the server, but then an error occur ...

I have a problem with my installation of proxmox... until yesterday everything was working correctly and today a website that I had hosted there has stopped working, the problem is the following:

I have the proxmox with 1 public ip... and I configured the iptables to redirect the traffic except port 22 and 8006 of the proxmox to the ip 192.168.10.100 (Container with CPanel) now well... until yest ...

I am trying to connect to my Cloud66 server via

cx ssh -s 'My First Server' -e staging chimpanzee

And I am receiving exit status 255.

I tried to connect via ssh:

ssh [email protected] -i ~/.ssh/id_rsa -o UserKnownHostsFile=/dev/null -o CheckHostIP=no -o StrictHostKeyChecking=no -o LogLevel=VERBOSE -o IdentitiesOnly=yes -A -p 22

And I receive Permission denied (publickey). ...