Latest Server related questions

I bought a domain name "hhexperi.xyz", and want to use my own server "ns1.hhexperi.xyz" as the authoritative nameserver of the domain. But after I configured the local BIND file, the "dig +trace hhexperi.xyz" shows that the address of "ns1.hhexperi.xyz" cannot be found. The output is as below:

;; Received 696 bytes from 198.41.0.4#53(a.root-servers.net) in 55 ms
hhexperi.xyz.           3600    IN   ...

I decided to use wireguard as my VPN. Set up VPN server on VM machine.

VPN Server (10.13.13.1) <-> VPN Androind Client(10.13.13.6) VPN Server (10.13.13.1) <- VPN Widnows Client (10.13.13.12)

Connection between Android works and can ping Server from android and android from server.

Connection between Windows and Server works partialy because from Client I can ping Server, but from Server I can  ...

I am runnging ubuntu server and I am unable to launch virtual machines, Initially it said permission denied but now it is also saying error: Failed to destroy domain 'esxi03' error: Requested operation is not valid: domain is not running ERROR Error validating install location: Could not find an installable distribution at URL '/home/christian/ISO' The location must be the root directory of an ins ...

I have the following cron task. Expected behavior is that every output (standard output and standard error output) of this task will be redirected to /dev/null. Unfortunately this doesn't work. Emails with errors are still sent.

7-57/10 * * * * wget -O - https://some.url.com/path/file.php?key=somerandomkey&folder=dwg >/dev/null 2>&1

If I've already created a registry entry on 2 test servers, when I roll it out to the rest of the estate via Group Policy , do I choose "Update" or "Create"?

I am trying to filter out the list of VMs with specific tags. The sample playbook is as follows :

 - hosts: localhost
   gather_facts: false
   become: false
   vars:
      vcenter_hostname: vcenter3423
      vcenter_username: center\user4325
      vcenter_password: L0gM3In4325
   tasks:
     - name: Gather all registered virtual machines
       community.vmware.vmware_vm_info:
         hostname: '{ ...

I have two computers, Orin and NUC, which are connected via ethernet cable directly. NUC is connected to a router with internet via WiFi (for completeness, not relevant to problem, I hope), and is providing network access to Orin via the following lines in a sourced file:

sudo nmcli c up id orin ifname enp88s0
sudo iptables -t nat -A POSTROUTING -o enp88s0 -j MASQUERADE

While the Orin's networking was ...

I have some question about connect using RDP with Windows EC2. I create two EC2 instances: one is Windows 2016 platform, and the other one is Arch Linux. I also create one VPC with allow any connection.

I believe that the VPC is correct because of successful connection to Arch Linux. But why I couldn't RDP to the Windows EC2?

Anyone has any idea?

I can get the screenshot of monitor and trouble shooting ...

In Ceph, the command rados --pgid <pgid> ls allows you to list all the rados objects that are stored in a specific placement group. My question is: is there a command that does the reverse? So, is it possible, given a specific rados object name, to determine the placement group that object is stored in? I did not find any such command in the rados man page.

Several sources state that the formula  ...

I am trying to figure out meaning in a nfdump output, but I cannot seem to find any sources for this. For now I am mostly trying to understand what some of the categories mean.

What I have is a basic output with the following fields: Date first seen Event XEvent Proto Src IP Addr:Port Dst IP Addr:Port X-Src IP Addr:Port X-Dst IP Addr:Port In Byte Out Byte

In all entries of the output the "Event" is  ...

I just installed squid proxy server on Linux. I am now configurating squid .

I have a set of ip defined for intranet. Internet are those that is not intranet.

If destination is to internet, I want the squid to forward to another proxy which has authetication with login and password.

If destination is intranet , it won't forward to other proxy.

If the destination is to intranet or internet, I want to go th ...

We have PowerMTA v5.5r1 installed on Ubuntu 22.04 server. When I tried to telnet localhost with 25 port I am unable to see 250-STARTTLS option.

Please help which parameter or configuration needs to update?

In /etc/pmta/config file there are multiple entries however I want to check is STARTTLS is enabled for my localhost. The 12.12.12.12 is my localhost ip.

<source 12.12.12.12>
    always-allow-rela ...

I'm using bind9 DNS server. I used to block websites using their domain name in RPZ zone file such as:

malicious.example CNAME .

But, I need to block IP rather than domain such as: 192.0.2.4 CNAME .

How can I do this? Or, is the above example (192.0.2.4 CNAME .) correct?

https://docs.aws.amazon.com/sdk-for-javascript/v2/developer-guide/s3-example-photos-view.html

Im reading this tutorial for creating a S3 bucket from a browser.

Could anyone please tell me where Remove public access granted through public ACLs corresponds to?

also are my settings correct?

I decided to take on a journey of containerization and learn more how containers work under the hood to gain more confidence and become a more proficient programmer. I am trying to run a simple nginx container in runc but I am stuck. I looked at the official documentation but there is not much details, I also googled it but didn't find any details so feel I need more guidance.

I have created an OCI bund ...

I'm having troubles using iptables with my Debian 11 VMs. So, I got two Debian 11 servers and I want "Server1" to allow Internet connection through it so "Server2" can have Internet as well. Server1 has two network adapters one on bridge and another one on internal network so it can communicate with LAN to Server2. Server2 only have one and it's internal network.

Server1 and Server2 can see and p ...

Description: Ubuntu 22.04.1 LTS Release: 22.04

neutron-linuxbridge-agent: Installed: 2:20.2.0-0ubuntu1

neutron-linuxbridge-agent keeps going down and after checking /var/log/neutron/neutron-linuxbridge-agent.log I found this :

2023-03-12 15:52:49.414 33866 CRITICAL neutron [-] Unhandled error: neutron.privileged.agent.linux.ip_lib.InterfaceOperationNotSupported: Operation not supported on interfa ...

We have a web application that is used internally that displays highly confidential images.

Microsoft Edge has started displaying a button on the images that launches Visual Search, and Chrome has a context menu function that launches a Google Lens image search.

Presumably, both these involve sending the image to Microsoft/Google, and the ease of access of these functions makes it tempting for users ...

Today I tried to move my OpenVPN server installation from one machine to another. Both of them are Arch Linux, I copied configs from one to another. But on a new machine I encountered this while starting OpenVPN visa systemd service

Mar 12 17:20:36 hz-vm-flwn-1 openvpn[2042]: capng_change_id('nobody','nobody') failed retaining capabilities: -9: Operation not permitted (errno=1)
Mar 12 17:20:36 hz-v ...

Due to cephs poor performance on NVME i'm experimenting with OCFS2 on DBRD again.

DBRD appears to initially have been built around the idea notifying an application of a hardware failure, and the application taking appropriate steps to move access to a new primary. This is not a useful pattern for our case.

DRBD 9 mentions a way based on quorums:

https://linbit.com/drbd-user-guide/drbd-guide-9_0-en/#s-con ...

Background

I want to set up a local Ionic and Supabase environment to test third party integrations such as payment providers using Supabase Edge Functions. I noticed 1 ngrok tunnel wouldn't suffice, because i need both a redirect url and webhook url to test the payment integration.

My thought was that i would like to spin up an ngrok tunnel and an nginx load balancer to redirect to my Ionic App a ...

I'm trying to add HA capabilities to our gateway to reach the IPv6 Internet by tunneling over existing IPv4 connection.

I've been tweaking keepalived configuration for some time now and reached a point I haven't been able to pass.

Found here someone who has exactly the same problem I have. The track_script is executed before the tunnel is up, so the master node goes into a FAULT state.

Has anybody ...

I have deployed OpenStack Yoga with OVN. Its a multi node HA setup.

On OpenStack, I am testing Keepalived. Two Rocky Linux 8.7 instances were created, and Keepalived and Apache were installed for testing.

VIP: 192.168.2.53

The issue is that the node where VIP is mapped is the only one to respond. The second node did not respond to the second request. Seems some thing blocking. Check the below curl outp ...

There's this canonical question, but it essentially comes down to "it's not allowed by the RFCs." I don't think that's helpful. What I'd like to know is what exactly breaks and how?

Let's say there's one DNS server with a CNAME record at an apex. What are the practical consequences of this? There must be something other than "this behavior doesn't conform to the RFCs"?

For example, some mail servers  ...

I have done a few Postfix / Dovecot / MySQL installations all working without issue. I'm trying to build a minimal Postfix Dovecot server without a DB. Currently I have Auth working with Dovecot passwd-file. I can connect with IMAP and all folders are created on the server, so I know my IMAP setup id correct.

Postfix

smtpd_sasl_type = dovecot
virtual_transport = dovecot

Dovecot

doveadm user user@exa ...

I have a domain, flossnet.co.za which is pointing to a VPS at Contabo with nameservers ns1.flossnet.co.za and ns2.flossnet.co.za

I have created a subdomain, courses.flossnet.co.za which points to a VPS at A2 Hosting.

I have added in the web hosting control panel for courses.flossnet.co.za, the nameservers ns1.flossnet.co.za and ns2.flossnet.co.za

However, when checking the nameservers for courses.floss ...

I have a little question. I already found a solution, but I want to know the reason for the error. So, I have a main config file (nginx.conf) that includes vhost configs.
Example hierarchical tree:

├── nginx.conf
├── sites_enabled
│   ├── sub.mydomain.com
│   └── sub2.mydomain.com

For including vhosts, I use this line:

include /etc/nginx/sites_enabled/*;

I use two dif ...

Hi mariadb consumes a lot of cpu. The settings are here. Server features CPU 6 cores/ 12 threads @ 3.4 GHz (4.8 GHz)

RAM 32GB DDR4 • ECC Server Grade

Disk Drive 2 x 480GB SSD SATA Software RAID

[client-server]

#
# include *.cnf from the config directory
#
!includedir /etc/my.cnf.d

[mysqld]
datadir=/var/lib/mysql
socket=/var/lib/mysql/mysql.sock

key_buffer_size = 32M  # from 23G whoa, likely an accid ...

I changed from a certificate with multiple explicitly defined subdomains to a wildcard certificate. For this to work, the DNS-01 challenge needs to be solved. I have a very basic unbound DNS server running (authoritative). The unbound server is on the same machine where certbot and an nginx webserver resides.

With the following command I could successfully create and authorize a wildcard certific ...

I am thinking about transferring my domain to STRATO (https://www.strato.de/). I have my own / external DNS server which I want to use as an authoritative DNS server. Sadly, the help pages do not specifically say if you can change the authoritative DNS address of the domain from their own DNS (which only supports a limited set of DNS records) to another external one.

Can someone who knows the STRA ...