Join Log in

Latest Server related questions

Score: 0
realnsleo avatar
Possible to create an AWS API Gateway to Route all requests to Classic Load Balancer?
uz flag
realnsleo

I have a questions (hopefully not dumb). I am the IT guy of a business hosting various applications with AWS and we currently have a Classic Load Balancer sitting in front of 2 to 3 EC2 instances which handle all our web traffic. It's a pretty straight forward configuration. In the past 13 hours, we are being hit with what we believe is malicious activity. A single person (I think) is trying to send mor ...

Server load-balancing ip-blocking amazon-web-services rate-limiting amazon-api-gateway
Score: 0
iSCSI separation from Ethernet via VLAN
in flag
Ray

I've set up a small cluster of a few servers along with a SAN. The servers are running Ubuntu 20.04 LTS.

Using instructions provided by the vendor (I can't find where I read it before), they suggested that the iSCSI connections between the SAN and the servers should be (or maybe it was "must be"?) separated from any ethernet traffic. Because of this, I've configured two VLANs on our switch -- o ...

Server iscsi storage-area-network vlan ocfs2 ubuntu-20.04
Score: 0
MeMow avatar
Windows session using smart card is immediately locked out when I open Chrome browser
it flag
MeMow

I have an issue with Google Chrome, ever since update above version 86, the windows session is locked out when i open the browser. That is only when i use smart card authentication. I'm guessing it has something to do with the 2fa mechanism.

Has anyone else facef such issue and is there a workaround on Chrome side? certificate authority that has signed the smart card certs is already trusted and ...

Server windows google-chrome smartcard session
Score: 1
fremon avatar
How to configure a hypervisor such that a KVM/QEMU virtual machine can reach hosts connected to the same trunk bridge?
au flag
fremon

1 Problem

My goal is that all LAN traffic is routed through a virtual machine (VM) acting as a router and firewall. Other VMs on the same hypervisor should also be routed through the firewall VM. See the following network sketch. Physical hosts connected to the trunk bridge can ping each other successfully, but VMs could not be reached yet.

2 Details

Network configuration on the hypervisor:

# =======
 ...
Server vlan bridge libvirt linux-networking kvm-virtualization
Score: 0
How could a request be dropped when sending a request to NodeJS?
in flag
tunesmith

I have an AWS ALB that load balances requests round-robin to four servers.

Each server uses pm2 to round-robin those requests to six CPUs.

NodeJS processes (react NextJS) are running on each of those six CPUs, served by Express.js. One of the first things they do is log the incoming request. (They are not fronted by a web server like apache or nginx, it goes straight to Express.js.)

Usually every singl ...

Server linux load-balancing node.js
Score: 0
Dmitry avatar
Managing and review of firewall rules
jp flag
Dmitry

I have 2 questions on best practices for managing and reviweing of firewall rules.

Our company uses PaaS from a hosting provider, they are managing firewalls (Fortigate). We need to know which rules we have and organize the process of firewall rule changes. Obviously the firewall is shared and we will not have access to it's UI.

The problem of ordering the rules: As of now we have a google sheet for or ...

Server firewall configuration-management fortigate
Score: 0
How to use Azure DNS server to set local CNAME?
pk flag
eos

As you can't set CNAMES using local hosts file, I needed to setup a simple hosted DNS server we can point at so our team can see a beta version of our system which happens to be on AEM CMS which uses fastly and requires CNAMES to access.

I tried setting up an Azure "DNS Zone" then I added a "record set" of "mytargetdomain.com" with a CNAME of cdn.adobeaemcloud.com, and one for "www.mytargetdomain ...

Server domain-name-system azure
Score: 0
andreas.teich avatar
Not able to access kubernetes dashboard
tr flag
andreas.teich

After a successful setup of a high available Kubernetes Cluster using kubeadm, I'm not able to access the kubernetes dashboard web ui.

First of all, let me explain the current cluster topology: within my local network, there are three different bare metal servers running, where each of them hosts a master and worker node. One of those machines runs a nginx load balancer as well.

After the setup, I copied  ...

Server kubernetes
Score: 0
Teehnti avatar
Windows share requires authentication only when accessed locally
ng flag
Teehnti

I have a Windows server (Server_1, 192.168.1.1) that has a network share (filesshare). The share permissions are "Full control" for "Everyone". This server also has a CNAME (file_server_alias). Any other machine on the network can access this share using any of the following UNC paths:

\\Server_1\fileshare

\\192.168.1.1\fileshare

\\file_server_alias\fileshare

This is all expected and working fine. ...

Server authentication network-share
Score: 1
Shresthi Garg avatar
Does CRI-O support live upgrade without restarting containers?
cn flag
Shresthi Garg

I have an on-prem kubeadm created Kubernetes cluster running on Ubuntu 18.04. I have installed cri-o as container runtime. Since, it is claimed by CRI-O that it supports zero downtime during live upgrades, as it doesn't restart the containers when the CRI-O service is restarted.

In my cluster, when I restart cri-o service (systemctl restart crio), all the containers are restarted. Is there any sp ...

Server kubernetes kubeadm
Score: 1
Wireguard Destination Host Unreachable on internal network
ec flag
cclloyd

I'm setting up Wireguard to tunnel from a cloud VM to our internal network. The local server is using the Wireguard plugin for OPNSense.

OPNSense acts as firewall, dhcp, etc.
The cloud VM is not behind any firewall or anything.

Server:

interface: wg0
  public key: redacted
  private key: (hidden)
  listening port: 42001

peer: redacted
  endpoint: CLOUD_VM_PUBLIC_IP:42001
  allowed ips: 10.0.1.42/ ...
Server wireguard opnsense
Score: 0
Will Roberts avatar
RHEL 7 in Hyper-V with Proper NAT Configuration Issues
gf flag
Will Roberts

I have a RHEL7 VM running on Hyper-V. In my VM, I have a web-based program the I need to access over port 11000. In the VM, the software is configured and is accessible by https://0.0.0.0:11000.

I've tried setting up an external v-switch and internal v-switch, both have not been successful as I cannot even ping the virtual switch from within the VM. I am trying to configure this using a NAT Switch. ...

Server redhat nat hyper-v iptables libvirt
Score: 0
TOOTAi avatar
wireguard ipv6 between 2 (or more) sites
vu flag
TOOTAi

I want to connect our office to servers with VMs in DC using wireguard and ipv6 ULA addresses.

The office ULA is FD58:1234:beef:cafe::/64. I want to use the same range for server + VMs in DC. Connection between both points is done using IPv4 public address of each end. Works great, tunnel is open, one site is FD58:1234:beef:cafe:fade::12/96 -router1 office- the other one FD58:1234:beef:cafe:fade ...

Server linux vpn wireguard
Score: 0
Max Muster avatar
how to stop a service who crashed to spam all terminals
se flag
Max Muster

when a category of failures called "fatal" happen the service spam all terminals with the failure message every second. This is very annoying and disturbed the work on the server.

in the past this was only for kernel critical things, but today even postfix alerts "fatal" because a spam mail does not reach the victim ..

fatal: file /etc/postfix/main.cf: parameter myhostname: bad parameter value: <yo ...
Server alerting
Score: 0
faultintolerant avatar
How to validate mariadb/mysqld configuration options while it is running
ar flag
faultintolerant

Is there a way to validate mysql.cnf files while mysqld is running?
If I run mysqld --validate-config, it just hangs, because there is already one running.
mysqld is scheduled to restart at 3am every morning and I want to be able to tweak the settings without worrying that a typo will kill mysql until I wake up and check the next morning.

Server mysql configuration

The Stunning Power of Questions

Much of an executive’s workday is spent asking others for information—requesting status updates from a team leader, for example, or questioning a counterpart in a tense negotiation. Yet unlike professionals such as litigators, journalists, and doctors, who are taught how to ask questions as an essential part of their training, few executives think of questioning as a skill that can be honed—or consider how their own answers to questions could make conversations more productive.

That’s a missed opportunity. Questioning is a uniquely powerful tool for unlocking value in organizations: It spurs learning and the exchange of ideas, it fuels innovation and performance improvement, it builds rapport and trust among team members. And it can mitigate business risk by uncovering unforeseen pitfalls and hazards.

For some people, questioning comes easily. Their natural inquisitiveness, emotional intelligence, and ability to read people put the ideal question on the tip of their tongue. But most of us don’t ask enough questions, nor do we pose our inquiries in an optimal way.

The good news is that by asking questions, we naturally improve our emotional intelligence, which in turn makes us better questioners—a virtuous cycle. In this article, we draw on insights from behavioral science research to explore how the way we frame questions and choose to answer our counterparts can influence the outcome of conversations. We offer guidance for choosing the best type, tone, sequence, and framing of questions and for deciding what and how much information to share to reap the most benefit from our interactions, not just for ourselves but for our organizations.