Latest Server related questions

We want to know what algorithm the Docker mesh uses to route requests to containers. Here's why:

We deploy our applications to self-hosted docker swarms. We use the docker routing mesh to direct traffic to the individual nodes, like this:

• internet ->
• firewall ->
• load director (nginx) ->
• nginx "least connection" routing to three swarm managers ->
• docker mesh ->
• Any of the six app con ...

I'm trying to get Ansible EC2 to provision instances that require IMDSV2.

Through the aws ec2 run-instances I'm able to do it by adding --metadata-options "HttpEndpoint=enabled,HttpTokens=required" to my command.

I'm not seeing a matching option in the Ansible EC2 module?

I'm sure I'm missing something basic.

I'm trying to setup a kubernetes dashboard in a test environment on AWS. I am able use the token from one of the default service accounts to login to the dashboard only to get all kinds of errors.

This is after I gave the account cluster admin role

Because the kubernetes dashboard and the cluster in different namespaces (kubernetes-dashboard vs kube-system), I thought that was the issue. However ...

We're using Bluemedora BindPlane to send on-prem utilization metrics to GCP.

In so doing, we're trying to create a GCP monitoring alert that will alert us if the CPU % for a server goes and stays above 95% for 15 minutes.

But we're getting an alert incident for each core.

Is anyone familiar enough with MQL such that they could offer how I could restructure the below such that I obtain an average across ...

I need to restrict connections to an openssh server to only three or four IP addresses. I know I can, on the CentOS 7 and Oracle Linux boxes, use firewalld or TCP wrappers. However, some of the servers on the network do not support firewalld or have a build of openssh that doesn't include libwrap.so. Those need an ssh solution.

I've tried different variations such as these but, so far, I either ...

So i'm currently using vzdump with the parameter --mode stop. In the description it says that the VM gets shut down before the actual backup starts and after the backup has been started the VM gets started again - if it has been running before. Does vzdump create a temporary seperate disk file of which the VM gets booted or how is it possible that the VM immediately starts again even though the backup p ...

I have an application load balancer that is redirecting the traffic by host to the target group

Listener HTTP:

redirect host -> something#.dns.com -> HTTPS

Listener HTTPS:

something.dns.com -> targetGroup1

something2.dns.com -> targetGroup2

something3.dns.com -> targetGroup3

The ALB have 2 subnets, 1 public and 1 private all my targets are on the private subnet.

the problem goes with this ...

I have an apache/passenger server that run rails apps, and this error is displayed when I try to run passenger-status :

passenger-status
ERROR: Phusion Passenger(R) doesn't seem to be running. If you are sure that it is running, then the causes of this problem could be:

1. You customized the instance registry directory using Apache's PassengerInstanceRegistryDir option, Nginx's passenger_instance_ ...

I have been having this issue for weeks. I have no idea where to look next. I have cleaned, flushed, restarted MySQL service, rebooted the Ubuntu server. What can cause this WARNING and the user to not show in the user table? I've also tried to DROP user and get 0 rows affected as a result. This is frustrating beyond belief! Where else is user info stored in the Schema and how can I purge it?

I am getting lot of SVCB (type 65) queries from my clients. On further digging , i figure out that few clients (like apple iOS 14) uses this RR heavily.

sample query of SVCB (type 65) is as follows -

dig gsp85-ssl.ls.apple.com -t type65 @1.10.10.10

; <<>> DiG  <<>> gsp85-ssl.ls.apple.com -t type65 @1.10.10.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- o ...

What exactly is the use case of 198.18.0.0/15 segment

As per whois records, this segment is reserved as depicting below -

NetRange:   198.18.0.0 - 198.19.255.255
CIDR:   198.18.0.0/15
NetName:    SPECIAL-IPV4-BENCHMARK-TESTING-IANA-RESERVED

Can i use this segment like the way i use 10/8 as private one in my enterprise network or is this segment for any other special purpose ?

I cannot wrap my head around the following problem. Verifying the certificates of the server with openssl fails, the chain is imcomplete.

Disclaimer: I am not an admin and did not work much with certificates yet.

Verifiy with OpenSSL

$ openssl verify -CAfile /etc/letsencrypt/live/co2-avatar.com/fullchain.pem  /etc/letsencrypt/live/co2-avatar.com/cert.pem

# /etc/letsencrypt/live/co2-avatar.com/cert.pem: ...

I've been trying to setup a transparent L2 Linux bridging firewall using a Linux bridge in combination with the bridge-nf-call-iptables, bridge-nf-filter-vlan-tagged and bridge-nf-filter-pppoe-tagged system variables.

My configuration:

Bridge:

brctl addif br0 enp1s0
brctl addif br0 enp2s0
ifconfig enp1s0 up
ifconfig enp2s0 up
ifconfig br0 up

Bridge-nf:

/proc/sys/net/bridge/bridge-nf-call-iptables >  ...

I have installed consul on default namespace using helm.

helm install -f config.yaml consul hashicorp/consul --version "0.32.1"

I tried uninstall of consul using

helm delete consul

And installing again using.

kubectl create namespace consul
helm install -f config.yaml consul hashicorp/consul --version "0.32.1" --namespace consul

Now, getting error as below.

I followed this approach

After forcibly rebooting my OpenStack compute & block storage node, it no longer boots; how can I fix this or recover its data?

Gave up waiting for root file system device. common problems:
 -Boot args (cat /proc/cmdline)
  - check rootdelay= (did the system wait long enough?)
 - Missing modules (cat /proc/modules; ls /dev)
ALERT! /dev/mapper/ubuntu--vg-ubuntu--lv does not exist. Dropping to a  ...