Latest Server related questions

I have a KVM based Debian 11 (bullseye) VPS with internet access on eth0 network adapter. The public IP has been assigned by DHCP. The IPs and Routes are as what follows:

ifconfig and iptable BEFORE adding new interface

Note: Due to hide my server IP, the public IP is masked in the images.

Now, I created a dummy network interface named eth1 and assigned a private IP address (10.200.100.50):

modprobe dumm ...

Hi trying to configure conversations android app to make calls through ejabberd, when i debug using adb i get this error in the log returned: "Access denied by service policy". Looks like some permission issue on ejabberd allowing clients access to the built in stun/turn server. please help what i need to tweak.

For some reason, QD2 seems to be the best in terms of raw IOPS...

After seeing an interesting article comparing a couple different drives for SLOG usage, I got curious about the performance of my own system at different queue depths.

The system comprises an i9-13900K, 128GB DDR5-4800 system mem and two Samsung 980 PROs as single mirrored Vdev. The test is running FIO in the following config in a conta ...

In contrast to consumer grade PSUs, server PSUs sometimes come without cables. From what I gather, these are usually of the redundant variety or so called "1+1" configuration. I wander if there is a generic name for the component inside the servers into which these PSUs slot into.

I have seen different types of connectors, both more modern ones (gold finger) that look like a PCIe connector and ol ...

Any VM created in Azure is given a D drive; a temporary storage drive attached to the hypervisor; which gives better performance than the data disks as it's closer to the VM's compute resources. This comes at the cost of the contents not being persisted should the VM be deallocated / move to different host.

When you use Azure Migrate to move a VM from a non-Azure solution (e.g. an on-premise vm ...

I've set up an Apache server on Ubuntu 20.04

The site loads fine when I load the home page first (https://leadzilla.ai) and after that when I click on the pricing button and it takes me to https://leadzilla.ai/pricing and the that page loads fine as well.

But when I go directly to https://leadzilla.ai/pricing in the browser, I get a 404

Here is what I have in /etc/apache2/sites-available/leadzilla.a ...

I have successfully performed a VIP swap on a pair of Azure cloud services (extended support) that had Reserved IP addresses (static, although I don't think it matters).

Now I can Update (by uploading a new package) neither of them, although it had worked like a charm before the swap. In fact, I can't even complete the deployment (update) configuration form because of an error displayed for the P ...

I am trying to create iptables rules to redirect all traffic destined for port 1986 to port 9 to provoke a “connection refused” using the following rule:

iptables -t nat -I PREROUTING -p tcp -m tcp --dport 1986 -j DNAT --to-destination :9

This works great for new connections, but the problem is that established connections seem to skip this rule and are not refused.

I have tried adding a NOTRACK

I am running an Ubuntu 20.04 LEMP (Linux, Nginx, MariaDb, PHP) email/web server. I am also doing some nmap vulnerability tests form my MacOS Client machine. On MacOS, I am using Oh My Zsh! with the nmap plugin enabled. To do some vulnerability tests on my Ubuntu Server from my MacOS client machine, I issued the command:

nmap_check_for_vulns my.server.ip.address

which is an alias command for

nmap  ...

in the newly installed exchange 2019 I'm facing a problem, employees that send mails to outside with IMAP are getting this error in their inbox:

Server error: '550 5.7.54 SMTP; Unable to relay recipient in non-accepted domain'

the receive connector is the default connector and the domain that users are created is different than the email domain, here is the log I found the log

the xxxx.com is the rea ...

Earlier this week, we host a live virtual event on our organization's website that had higher-than-expected attendance. We had several complaints from users saying they either couldn't get into the event or couldn't click on links we were pushing in the chat because of 502 Gateway errors.

I am trying to determine what exactly went wrong to see if we need to move our AWS EC2 instance up a tier or  ...

I am running an Ubuntu 20.04 LEMP (Linux, Nginx, MariaDb, PHP) webserver. I am also doing some nmap vulnerability tests form my MacOS Client machine. On MacOS, I am using Oh My Zsh! with the nmap plugin enabled. To do some vulnerability tests on my Ubuntu Server from my MacOS client machine, I issued the command:

nmap_check_for_vulns my.server.ip.address

which is an alias command for

nmap --script=v ...

I'm trying to use Freeradius 3.0.20 on Ubuntu. I use the users file to authenticate wireless users and that's working just fine. (This is a home system, not at work).

For the moment I have a couple of new users for whom I have created a new SSID (Cisco aironet controller and access points).

I would like to allow the new users to connect ONLY to the new SSID.

So let's call the old SSID SSID1 and the new ...

Summary: I've got a domain hosted with Cloudflare that works for the root, but not any subdomains. Instead, subdomains return a Cloudflare Error 1016 - Origin DNS Error.

Detail: I have several domains hosted with cloudflare. Most of them are simple and only have a root URL (e.g., acme.com). For these, there are only two DNS records (other than NS records):

An A record for "@" that points to an IP address, ...

I have Windows Server 2022 in its latest version 21H2. I installed a Domain Name System server + Active Directory Domain Services on the server and promoted it to a domain controller.

After the automatic restart of the server, a black screen with a rotating wheel will appear and this state will remain forever.

The server is virtualized using the type-1 hypervisor Proxmox Virtual Environment. I use R ...

I am trying to use fail2ban in a docker-container to block incoming connections to my nextcloud (also running in a docker container). However I only can get fail2ban to change the iptables of its own container and not the one of the docker host.

My current setup looks like this:

docker-compose

  app:
    image: nextcloud:latest
    container_name: nextcloud_app
    restart: always
    ports:
     ...

I have found these codes on www to create a proxy for a software:

sysctl net.ipv4.ip_forward=1
sysctl -w net.ipv4.ip_forward=1
iptables -t nat -A POSTROUTING -j MASQUERADE
iptables -t nat -A PREROUTING -p udp --dport 2442 -j DNAT --to-destination some.ip.address:some.port

The 2442 is the port that I use to connect the software. The some.ip.address:some.port is destination's ip address and port. After  ...

I installed clamav-daemon on Debian 11 and when I try to start it, it doesn't create the LocalSocket /var/run/clamd.ctl.

LocalSocket in my /etc/clamav/clamd.conf:

LocalSocket /var/run/clamav/clamd.ctl

systemctl status clamav-daemon.service brings:

● clamav-daemon.service - Clam AntiVirus userspace daemon
     Loaded: loaded (/lib/systemd/system/clamav-daemon.service; enabled; vendor preset: enabled ...

I'm testing a fastapi http server on Windows 11 running on 127.0.0.1:8000. In another terminal, a request is sent to the server on 127.0.0.1:8000. The result is a Bad Request and the server says it happened on 127.0.0.1:50340. The port number changed from 8000 to 50340. Re-running the query again will change the port to a different number again. Details are in the outputs:

The Server output is:

INFO:  ...

Is it possible to set the WinHTTP proxy using a PAC file? Currently, our org sets the following registry key to point to a PAC file... can this be used for WinHTTP as well? If so, what commands are needed?

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings]
"AutoConfigURL" = URL TO PAC FILE

Thanks in advance for the help.

I'm trying to migrate a 3 node zookeeper ensemble from VMs to a kubernetes cluster without downtime.

I know there are a lot of blog posts and other articles on how to migrate zookeeper without downtime VMs to VMs to bare mettal to Vms etc. but couldn't find one which migrates w/o downtime to k8s.

This is the config on all zk nodes (zoo.cfg):

autopurge.purgeInterval=1
initLimit=10
syncLimit=5
autopurge ...

I have 2 Openwrt routers one is on front, another is on the back.

Back router's WAN connected to LAN of front router and have it's own subnet. Back router WAN DNS configured to a front router.

Front router has several local DNS records in hostnames, but it doesn't resolve them for a back router.

Windows computer connected to a front router directly resolves those hostnames no problem.

Why front router do  ...

'Amazon EFS now supports AWS VPN', but that was published 23 October 2018; Client VPN was announced on 19 December that year, so 'AWS VPN' referred to what is in current docs usually called 'AWS Site-to-Site VPN'.

Can an EFS filesystem be mounted on a development machine, connected to a Client VPN endpoint?

When i try to tailoring this datastream file, i get following error:

Opened file '/Applications/scap-workbench.app/Contents/Resources/ssg/ssg-rhel7-ds.xml'.

Error while opening file.

There was a problem with ScanningSession! Failed to reload session. OpenSCAP error message: Could not extract scap_org.open-scap_cref_ssg-rhel7-xccdf-1.2.xml with all dependencies from datastream. [ds_sds_session.c:211]

I have nginx upstream with multiple backends. I use pre_tasks in playbook for disabling backends in the upstream config during deployment:

- name: Deploy
  hosts: '{{ list_hosts }}'
  serial: 4

  pre_tasks:

  - name: Disable hosts in nginx upstream
    replace:
      path: /etc/nginx/conf.d/upstream.conf
      regexp: '^        server {{ LAN }}:'
      line: '        #server {{ LAN }}:5001;'
    delegat ...

OS: Oracle Linux 8.7 vCenter: 7.0.3 build 20051473 hypervisor: VMware ESXi, 7.0.3, 19193900 ansible-playbook [core 2.13.5] python version = 3.8.10 (default, Nov 14 2022, 12:59:47) [GCC 9.4.0] jinja version = 3.1.2 libyaml = True

I'm deploying a VM from a template using the following Ansible task:

- name: Create a new virtual machine {{ hostname }} on vCenter {{ vcenter_hostname }} from template {{ sou ...

OS: macOS Mojave 10.14.6
HTTP Server: Apache 2.4.55

When trying to restart apache server, I get "Address already in use..." message. Hm, so there must be a process that listens to that port, right? With this line (from elsewhere) in Terminal to see what's up:

ps auxw | grep  httpd

it gives

_www              1317   0.0  0.1  4361716   7452   ??  S    12:39AM   0:00.10 /usr/sbin/httpd -D FOREGROUN ...

I'm using a raspberry pi with apache2 to manage my websites. I have multiple docker images running on different ports. I want to redirect (without url changes) scanner.raspberry.local to localhost:1234. To do so, I've followed these two posts :

• post #1
• post #2

In the end, I only have one virtualhost working (the first one). Here is my config :

# Home page : working properly
<VirtualHost *:80 ...

I have created a load balancer pointing at my api instances. I got an automatically generated url which looks something like this: xxx-xx-xxxxxxxxxx.us-east-2.elb.amazonaws.com I want to connect it to my own domain name via cname, but before doing this, I wanted to make sure that the url will always stay the same, unless I delete the lb of course. Thanks for the kind help.

just a quick question. I have a php webapp that sets a session cookie with values for username, isAdmin, etc. Is there any way that I could extract that information in the nginx config file?

log_format custom ' "TEST: $cookie_PHPSESSID"';

This will give me the session ID of the cookie but I need its content and I cant find any way to retrieve it.

Using a permanent cookie would work but is a bad idea beca ...