Latest Server related questions

Odd situation but I'm trying to get something that works with certain products. Here are the components in this scenario:

• Virtual Machine in cloud, connected to a SonicWall gateway ("Cloud Gateway")
• Local gateway at customer office with full gateway capabilities ("Local Gateway")
• Odd gateway at customer office ("Odd Gateway") that uses technology similar to ZeroTier to connect any devices on its single ...

I'm struggling in regards of a proper practice for server setup for LDAP/AD authentication and NTP. I was thinking if asking two separate questions will be better but I think being a common problem here for two types of services would be a good reason to ask.

So, I have three domain controllers:

• dc1.test.internal (on 192.168.0.2/24)
• dc2.test.internal (on 192.168.0.3/24)
• dc3.test.internal (on 192.168.0.4/ ...

I'm running a CGI application on an Apache instance, and lately I've been noticing errors like the following, which appear to be causing some issues:

ERR012: Unable to create temporary file "/var/tmp/023711.000001.tmp": File exists

(This is the application in question, in case it's relevant: HTMLDOC)

Upon investigating the issue, I found that /var/tmp/systemd-private-*-httpd.service-*/ is filled with ten ...

Case 1: predictable offset port translation

If I want to simulate a NAT that maps the internal IP to a constant external address and maps the port to (port+offset), how would I do this using iptables?

e.g., :

First mapping: internal: "0.0.0.0:2000" external: "external:3000"

Second mapping: internal: "0.0.0.0:2001" external: "external:3001"

Here, the offset is 1000.

Case 2: predictable non-offset based p ...

If I forward the port from the server to my localhost (I used my web server on apache on my other virtual machine as the server for forwarding), then everything turns out without problems.

ssh -L 801:192.168.0.115:80 [email protected]

But when trying to grant access to other network members, an error occurs

ssh -L 192.168.0.115:801:192.168.0.115:80 [email protected]

bind [192.168.0.115]:80 ...

I would like to hear your suggestion on why space is not released after files deletion. Jira application uses nfs volume as shared jira home. 12 gb indexes snapshot is created per hour (oldest one is deleted and newest one is created) and the storage usage only increases. I have checked process that holds deleted files (lsof +L1), open processes, nothing is found related to the issue. du -sh resul ...

I have been building VM's on my fedora 37 server for a while, when I suddenly started running out of disc space. So, I looked in the filesystem and saw that the new VM's had their discs built at /var/lib/libvirt/images, so I made /var/lib/libvirt/images a symlink to a new partition which I had created, which has a lot more space. Now, however, when I virt-install a new VM, it gets stuck in the console ...

I have a config.hcl file that I used to configure my vault instance. In the UI, I enabled Vault Usage Metrics, which I can see now enabled at sys/internal/counters/config but I don't see anything related to that in the config.hcl file, so I suppose it's not something that is written back to the configuration file?

If that's the case, and since I'm using the raft backend, if I create a snapshot, is that  ...

After upgrading ubuntu to 22.04 from 18.04 (was planning on upgrading to 20.04 but somehow I ended up with 22.04) I'm not able to start mysql server. The error is as follows:

[ERROR] [MY-000077] [Server] /usr/sbin/mysqld: Error while setting value 'ERROR_FOR_DIVISION_BY_ZERO,NO_AUTO_CREATE_USER,NO_ENGINE_SUBSTITUTION' to 'sql_mode'

Ive tried adding this to /etc/mysql/.my.cnf to set the sql_mode,  ...

I am trying to enroll MAC OS devices to Intune. I have everything set up, the Macbook shows up in my enrollment program token, and I am able to start the process to install the enrollment profile, but then it asks for credentials from Apple School Manager. I am using the same credentials as used for everything else, and I even tried to use other admin credentials but none works. I put in the credentials ...

I am new to OpenSCAP and I was wondering if OpenSCAP has a feature to add comments one could insert to XCCDF scan findings that could be updated and be viewed in reports? Is it also possible to add the comments from the command line interface?

Thanks in advance!

Hi I have the following connector in my apache tomcat server in the file server.xml:

 <Connector port="8443" protocol="HTTP/1.1"
               connectionTimeout="20000"
               redirectPort="8443"
               secure="true"
               SSLEnabled="true"
               scheme="https"
               keystoreFile="/opt/tomcat/resources/keystore.jks"
               keystorePass="secret"
       ...

Building PHP from source on macOS (Ventura) I've installed ICU in a non-standard location and built the intl extension as a shared library.

I can run this by setting my non-standard location with an environment variable DYLD_FALLBACK_LIBRARY_PATH=/usr/local/php80/lib (Same technique as per the documented trick using LD_LIBRARY_PATH). However, I don't want to use environment variables. I won't muddy the ...

While trying to catch some edge cases i've noticed the difference in recording empty values. Here is my example: Nginx Log format part: RCODE: $status | UPS: [$server_addr:$server_port|$server_name|$proxy_host|$upstream_addr|$upstream_status|$upstream_header_time]

produces the record (pay attention to $server_name - it's underscore '_' and not hyphen '-'):

RCODE: 404 | UPS: [10.100.58.2:443|_|-|-|-|-]

I'm running a typical LEMP stack where I have multiple PHP-FPM pools, one for each site that's on a Rocky Linux 8 VPS. Occasionally, some rogue process on one of the sites will cause a huge CPU spike and slow everything else down. I've tried limiting CPU usage per user with cgroups, but it appears it won't work due to the way that PHP-FPM processes are forked. Is there a way to limit CPU usage per FP ...

What are the differences in flow changes for HTTP 1.1 and HTTP 2.0 for Spring Boot applications ?

I whant to limit bandwith of clients from network behind my linux based NAT gateway. My clints is connected via wifi or directly via ethernet to router and receiving their IP address from DHCP. I want to limit bandwith near 3Mb per Client IP. Now I has setup tc qdisc limiter for network interface and this summury bandwith limit for all clients. How to limit per IP? Create class and filter for each IP ...

I'm using LWIP v2.1.3 with TI F28388D Controller. I'm using LWIP as TCP server only mostly in ping-pong mechanism like :

A windows client(host PC typically) will be connected to multiple servers like this and will continuously have above transactions.

I'm able to connect and exchange data with multiple servers from single cl ...

we have backup server with rhel version 7.2

server is VM machine , and OS disk is VMDK disk

disk used space is around - 50% , and from smartctl we not see problem

as we can see from follwing details the disk util is very high sometimes even reached 100% we can see also high pressure from reading side

regarding the util values , we think disk cant be helthy for a long time when util is around 90%-100 ...

Using nginx, im trying to set an endpoint for /test to redirect to a docker container i have running on the network on port 5000

I gets the the page correctly, however is unable to load the necessary assets for the page. Looking in the error log, it is looking in the wrong directory for the assets.

my current config:

server{
    server_name domain;
    listen 90;
    access_log /etc/nginx/conf.d/access.l ...

I am trying to consolidate all log analytics workspaces in multiple subscriptions. How do I collect all data sources feeding into the workspace including the legacy connectors ? I have tried Get-AzOperationalInsightsWorkspace, but it is not comprehensive.

Kubernetes plugin is not creating any containers in the cluster even the test connection is successful in jenkins, how to fix that?

My jenkins log:

Running from: /usr/share/jenkins/jenkins.war
2023-03-23 02:02:43.441+0000 [id=1] INFO    winstone.Logger#logInternal: Beginning extraction from war file
2023-03-23 02:02:45.158+0000 [id=1] WARNING o.e.j.s.handler.ContextHandler#setContextPath: Empty contex ...

I have an OpenVPN server spinned up on a different location and it works fine. I am connecting to it using my linux machine using sudo openvpn /etc/openvpn/client/client.conf and it connects to the VPN correctly. What I want is, when I connect to the VPN it creates a new interface named tun0 with a random inet like 10.8.0.1 is there any way to assign a specific inet on the client machine when connecting  ...

Windows DHCP, FortiGate relay. No rule that allows for direct renew from PC -> DHCP serwer that gave the IP. 20 minutes expiration timer, 10 for renew, 17.30 for rebind.

What happens:

• After 10 minutes I see that renew process goes off 3x times in a row. PC asks its dhcp serwer, gets a deny because no rule is active for direct communication.

• Than it uses broadcast to do the renew, and it succeeds (rel ...

I am using WildFly25, and have it running with default settings.

Server console

WildFly Full 25.0.0.Final (WildFly Core 17.0.1.Final) started in 3938ms - Started 308 of 547 services (338 services are lazy, passive or on-demand)
Http management interface listening on http://127.0.0.1:9990/management
Admin console listening on http://127.0.0.1:9990

I want to update the config, so it runs using SSL/T ...

G'day!

I have IAM Authentication turned on for my RDS databases.

I can successfully connect using an authorised role and am denied when using an unauthorised role.

However, I have a role that I would like to be able to connect to some databases but not others and I'd like to avoid having to list the databases explicitly in the IAM Policy.

The policy already restricts several rds:? Actions using a

I used the Media Creation Tool for Windows 10 downloaded from here to create a Windows 10 22H2 image. Then I proceeded to install the image by running setup.exe with the following command line switches:

setup.exe /Quiet /NoReboot /Auto Upgrade

After that I realized that the upgrade has removed Windows Remote Management Settings (and who knows what else) from my PC. For e.g. WinRM was configured to r ...

I have a cluster running 2 deployments and an ingress (caddy). One of my deployments is working fine, its a golang image listening on 80. The other deployment is a php-fpm image listening on 9000, when I make any request to the php-fpm domain, it responds with 502.

php-fpm deployment and service:

apiVersion: apps/v1
kind: Deployment
metadata:
  name: main-api-deployment
  labels:
    app: main-ap ...

I want to map

https://www.example.com/Something/SomethingElse/

to

https://www.example.com/index.php?/Something/SomethingElse/

So far I understood that I need the location directive in nginx and use the try_files inside, something like this:

location ~ *???* {
  try_files $uri $uri/ /index.php?$1;
}

Now, the question is: how do I write the regular expression *???* to split URL, so I get the /Something/S ...

Currently I have a setup with 1 physical NIC with a public IP address, a standard docker environment and a GRE tunnel & bridge. If I run a container on a port, lets say 80, I'll be able to connect directly to the container via the public IP address.

However when attempting to connect via the GRE tunnel the traffic is routed back to the default route.

An attempted connection via the tunnel:

00:52:43.8 ...