Latest Server related questions

To run docker with the reverse proxy Traefik v2 on a Synology NAS, I need to be able to use port 80 and 443 on the host system. The Operation System of the NAS DSM uses its own reverse proxy, nginx, which thries to occupy the ports on its own. Under DSM 6.2 I could change the port 80 and 443 by using a boot script (change-ports.sh), like described here, so that the ports went free and could be used by d ...

I have created two directory for new build linux server & each directory is 200GB in size and will be used for DB . security team did scan they found vulnerability as " No nodev option set to directory". I tried with ""mount -o remount,nodev /mountpoint"" but nodev is not being added in /etc/fstab .

Is it good to add nodev option to DB folder and how I can do this ??

Will unmount the director ...

I have the following nginx configuration:

server {

    listen: 8080;
 
    location / {
        proxy_pass           https://somehost.abc.xyz;
        proxy_redirect       off;
        proxy_set_header     Host somehost.abc.xyz;
        proxy_set_header     food pizza;
    }

}

When i hit the proxy i get the following error:

connect() failed (111: Connection refused) while connecting to upstream, cli ...

What are the possible options to extend a 1U / 2U server with a GPU?

e.g. I am searching for a solution how to add a GTX 1650 into the server. The GPU is usually 2 slots width and therefore often not fitting into a 1U/2U server

for what usage?

• i want to do a directIO passthrough to a virtualized OS to have a "native" access to a GPU. E.g. for video or GPU intensive renderings (blender, Davinci an ...

So my current setup is the following: I am using docker (rootless install) and want to use Cryptpad (which uses Node.js) with Nginx as a reverse Proxy (disclaimer: I never worked with Nginx before). Cryptpad and Nginx both are running in separate containers. To serve the static files, I created a volume where all static files from Cryptpad resides in and which is mounted in the Nginx-Container (r ...

Trying to do a web interface IPtables management.

Created a file test.php

$output = shell_exec('sudo bash /usr/bin/iptables.sh 2>&1');
echo $output;

Gave /usr/bin/iptables.sh NOPASSWD so I can execute the file with sudo through apache without using a password

sudo iptables -L

sudoers file :

apache ALL=(root) NOPASSWD: /usr/bin/iptables.sh

But I am still getting error

We trust you have r ...

I have a bash script

#!/bin/bash
scp -r some_directory remote_host:~

which I made executable with chmod u+x. The remote_host has been defined in my .ssh/config as follows:

Host remote_host
HostName ec2-x-xxx-xx-xxx.eu-central-1.compute.amazonaws.com
User ubuntu
IdentityFile ~/path_to_pem_file/pem_file.pem
IdentitiesOnly yes

when I call scp -r some_directory remote_host:~ or ssh remote_host it works w ...

From what I read here ECS capacity providers should (generally) prevent tasks immediately failing on resource limits by putting them in a "Provisioning" state and spinning up a new EC2 instance

This means, for example, if you call the RunTask API and the tasks don’t get placed on an instance because of insufficient resources (meaning no active instances had sufficient memory, vCPUs, ports, ENIs, and ...

I just set up a server with Asterisk set up but when I try to make a VoIP call the line automatically drops...

I use CommPeak as a SIP provider and Bria for the interface

Here's my sip.conf:

[general]
allowguest=no
context=default
bindport=5060
dtmfmode=rfc2833
disallow=all
allow=alaw
allow=ulaw
allow=gsm
allow=g723
allow=g726
allow=speex

; replace INBOUND_SIP_USERNAME and INBOUND_SIP_PASSWORD
; with yo ...

I couldn't find a clear question or answer, although GCP Load Balancer: cannot delete "match all" under "Host and path rules" and Can I make Apache drop a connection when matching a URL? are close, so maybe it's a stupid question . I have read https://cloud.google.com/load-balancing/docs/url-map.

Say I have a rule for domain1.com => URL redirect, another rule domain2.com => static backend bucket ...

I build my webdav server this way:

apt-get install nginx-full
vim /etc/nginx/conf.d/webdav.conf
server {
    listen 80;
    listen [::]:80;
    server_name vps_ip;
    auth_basic              realm_name;
    auth_basic_user_file    /etc/nginx/.credentials.list;
    dav_methods     PUT DELETE MKCOL COPY MOVE;
    dav_ext_methods PROPFIND OPTIONS;
    dav_access      user:rw group:rw all:r;
    clien ...

So lets say I host something like netdata dash board on port 6000.

Then I nginx reverse proxy it to the subdomain netdata.domain.com

While basic auth is applied at the nginx.conf to allow site wide protection.

My question is, since my connection to netdata.domain.com is http instead of https, my data is not encrypted. So won't logging into to nginx basic auth under this connection basically expose the  ...

I want to analyze my Debian 9 server's network workload to detect some possible network overloads.

The main metrics I need to analyze are:

• CPS (connections per second)
• Throughput

Is there a way to obtain these metrics from within Linux?
I thought that CPS metric could be somehow obtained through conntrack NEW connections events but not sure that this would be the most proper way..

Sorry if obviou ...

Trying to change address pool given by L2TP connection on Mikrotik. What I have now:
192.168.240.1/23 - local network
192.168.250.1/23 - l2tp address pool, added to IP-Addresses, IP-Pool, Firewall-NAT connection accept.
CMAK-created connection on a Windows 10 machine with routes.txt inside. At this point everything works well.

Now I'm trying to change the 250 pool to 230, so I'm changing it in IP-Address ...

I want to edit the parts marked in the photo using appcmd.exe or another comman-line method.