Latest Server related questions

I'm facing a problem I don't know how to fix. I was trying to reduce size of a qcow2 file and I made a backup copy of the original file. After some problems with the reduced qcow2 file I decided to roll back to the backup I made and I discovered the backup doesn't work.

Here is a screen shot of the problem:

ls /dev shows no disks attached to the system which is the root of the problem. The virtual mach ...

My use case requires nginx to rewrite the target url, converting the last segment of the request uri to the target service port which is accessed by a wireguard vpn. This next config version works fine. That is, my backend hosted app is published ok, but the auth_request directive is ignored =>

  location /publish {
    auth_request /auth;

    rewrite ^/publish/([0-9]+) http://10.11.2.3:$1;
    ...

By default Linux creates a qdisc mq. I am configuring it on my computer to change some parameters but I found that there are 2 qdiscs that seem to be the same: mq and multiq.

I can't find any documentation on what the differences are between them to know which one to use.

The only thing I have been able to verify is that mq detects 2 transmission channels while multiq detects 8 for the same device.

Summary

I'm attempting to extend partition with LVM on it and its failing... All Googles and Bings have failed so unsure where the issue lies. Here is what's happened so far.

This is a virtual server that was given 8GB of Storage. It hit its cap after the application was applied (and ran out of space during updates and downloads). It only required 4GB more, so applied 4GB (VirtIO). This was detected by ...

I'm running Fail2ban on a Raspberry Pi 3 with Buster. Fail2ban version v0.10.2. One applicaton on it is running a simple python HTTP server script.

I'm trying to match this kind of record from the log file:

Dec 4 07:50:00 Pi-New HTTP_Server[585]: 123.456.789.123 - - [04/Dec/2022 07:50:00] code 400, message Bad request version ('\xc0\x13\xc0')

I have tried numerous regex lines. These are the l ...

We are using GCP load balancer non-Classic HTTPS. We have two instance groups, one in Central and one in East. Right now it is sending all incoming traffic to only the nearest instance group. We actually want to turn off geo loadbalancing and just round-robbin the traffic across ALL instance groups.

How do we actually do that? This is not obvious from UI and documentation

Broad problem: access cups spool data as common user

In a store, at the sales desk, we have a software that generates bills as PDF files, which the cashier prints for the customers. I do not have access to the database where these PDF files are generated. However, I have written a parsing script (using pdftotext and awk) to convert them to .csv, which I can then use to collate per each products delivery  ...

I have a debian 11 server running samba and is hosting a share of a drive that's mounted in fstab. I have added "acl" to the fstab and installed acl in the samba config.

To be clear: my end goal is a samba share of a specific network drive that automatically mounts via group policy whenever a user logs in. On the linux side, there are servers running with information output to this drive under th ...

I bought a new APC SMT1000C 1000VA UPS, which has the smart card interface on the back. I was planning to reuse my old AP9606 network card, but I discovered that APC has modified the slot to block the old cards. See photos below, new card has 2 vertical cutouts, while old card has no cutouts.

The size of the card and connector look identical, but the new UPS' have 2 meta bars which prevent old  ...

I am just wondering to know how should I create a docker file for a Flutter app then deploy it on a Kubernetes cluster?

I found the following Dockerfile and server.sh script from this website but I am not sure if this a correct way of doing it?

# Install Operating system and dependencies
FROM ubuntu:22.04

RUN apt-get update 
RUN apt-get install -y curl git wget unzip libgconf-2-4 gdb libstdc++6 libg ...

I'm wondering which should i choose and how to configure this........

I will be running a django web app of "Hello World" no db no any other requirements than the "django" and "gunicorn", i did one on App Engine Flexible but the cost i got the next day scare me $2.60 i deleted it even thou i didn't even use at all or confirm whether working or not lol, i created another one this time following th ...

I have installed istio in my k8s cluster, and labeled my desired namespace with

istio-injection=enabled

However, when I install a pod, it doesn't inject the sidecar.

I followed the instructions on this page: https://istio.io/latest/docs/ops/common-problems/injection/#automatic-sidecar-injection-fails-if-the-kubernetes-api-server-has-proxy-settings

and I see that my webhook namespaceSelectors are inc ...

I have my dnsmasq config setup like:

no-resolv
address=/domain1.test/127.0.0.1
address=/domain2.test/127.0.0.1
port=53

And my system fails to resolve domain1.test but, domain2.test works fine. The only difference is domain2.test is a HTTP server that runs on port 80 and domain1.test is also a HTTP server but, it runs on port 81.

How can I resolve domain1.test locally to 127.0.0.1:81?

I have created an nodejs app and i want my customer to be able to dynamic create an instance of my app with automatic deployement on subdomains for example ‘customer1.mydomain.com’.

I know i can create vhost with node vhost package and nginx but i don’t know how dynamically create instance of my app.

How can I Achieve that ?

Bonus : i would like the app will be destroy after 1 hour for example. ...

I have a certificate managed by cert-manager, on a Kubernetes cluster. It used to be renewed/validated via a HTTP01 ACME challenge but, because of security constraints (a firewall), that's not possible any more. I have to switch to a DNS01 ACME challenge (Cloudflare).

I think I have to change the Issuer from letsencrypt-prod to letsencrypt-prod-cloudflare which I created for this... but I can't. I tr ...

in my nginx.conf I would like to pass the request depending on the requested url to a specific server infrastructure.

Everything works great apart from the $host variable. I get error "nginx: [emerg] unknown "host" variable"

From my understanding is $host a regular variable and I dont have to declare it first.. in fact its used in the http directive above without problems:

http {
    ...
    fastcgi_cach ...

I have 2 network interfaces: ens4 ( 10.142.0.0/24 ) & ens5 ( 10.10.0.0/24 ) on Google compute engine VPC.

Having two default routes added in Ubuntu such that traffic from one can go to one and two goes to two using following script

sudo ifconfig ens5 10.10.0.7 netmask 255.255.255.255 broadcast 10.10.0.7 mtu 1430
echo "1 rt1" | sudo tee -a /etc/iproute2/rt_tables
sudo ip route add 10.10.0.1 src 10. ...

Good morning, Last week, the heatsink of our LSI9271-8i Raid card dropped off from the card and the card is dead. It is an 8 disk x 10TB (Slot7 is hot spare) RAID6.

Well, we have another LSI9271-8i, same model as dead card. When we first attached the alive card, this was the result: https://i.stack.imgur.com/86C7Q.jpg After a Firmware upgrade to match the FW version of the dead card, this is my current s ...

I had a ZFS pool with 2 disks mirrored on Ubuntu 20.04.5. After a reboot, my pool has disappeared.

# zpool list
no pools available

It seems like I could just import it back.

# zpool import
   pool: tank
     id: 3813754442158920310
  state: ONLINE
 status: Some supported features are not enabled on the pool.
 action: The pool can be imported using its name or numeric identifier, though
    some f ...

I'm attempting to setup a small mail server with Postfix, Dovecot, and MySQL (MariaDB) on Debian. I've also configured SSL with Let's Encrypt.

So far I haven't setup rDNS, DKIM, DMARC, SPF, etc. - which I will still attempt later -, but sending e-mails with the mail command already works great. They don't end up in spam or get rejected.

Receiving mail doesn't work! Here's the error message from / ...

I wanted some extra security on my Owncloud, so I've configured it to run behind a cloudflare tunnel.

I've configured the tunnel with an email rule. (i.e. allow [email protected]). The web interface works fine: I navigate to example.com/owncloud, cloudflare returns an authentication page, I enter an email, cloudflare emails me a code, I log into cloudflare, cloudflare returns my owncloud instance ...

I have set up a managed instance group to operate an authoritative DNS service.

How can I expose the entire instance group to the internet, on both TCP and UDP port 53, and on both IPv4 and IPv6?

I would like to have a single static IPv4 and IPv6 address per region and MIG, with the load balancing, auto scaling, and auto healing happening behind the scenes.

So far I've looked into the layer 3 load bala ...

so this is my current setup of openvpn+stunnel

user>>internal-server-A(as stunnel client)>>main-out-of-country-server(running openvpn and stunnel as server)

it worked fine in a restricted country for a while. but now tcp and udp connection from server A to server B is blocked. with netcat command i noticed its only blocked from server A ip but i can make a connection from server B to A.

I have set up and installed kubernetes 1.23.0 on Ubuntu 20 I have noticed the following problem

Readiness probe failed: Get "https://192.167.230.20:8443/healthz": dial tcp 192.167.230.20:8443: connect: connection refused

I can curl this insecurly

curl https://192.167.230.20:8443/healthz -k
OK

How can i make the pods to behave same way or how do i fix this problem?

Can we use Oracle GoldenGate to sync data between different versions of Oracle ?

Our source database is 11.2.0.4 and target is 19.0.0.0

We've been having the issue where a domain user in the builtin\Administrators group, does not have the same access as Administrator, but only on fresh builds of server 2022. Servers that we upgraded from either 2008 or 2012 to 2022 do not have this issue.

UAC is enabled on the upgrade servers and the two below local policies are set as default

User Account Control: Admin Approval Mode for the built ...

I'm running two mailservers for one domain. One of them is a Microsoft Exchange server that holds a few mail accounts - and a Postfix one hosted on my Linux server to which mails are relayed from Exchange, if the recipient doesn't exist there.

I would like to use reject_authenticated_sender_login_mismatch on my Postfix server. I want to make sure, that no one sends emails from adresses that they don't o ...

Background

I need to replace an existing certificate on a host named h1.vx.mydomain.net (not the real domain obviously).

The existing certificate says it was issued by a chain of CAs that I do not recognize. The CAs are clearly third-party CA organizations. The certificate was definitely not generated as a self-signed certificate. It also was not generated using an internal public key infrastruc ...

I have a server where NGINX is running as a reverse proxy. My configuration works fine when I leave ports 80 and 443 open on my router. When I only keep 443 on it, I have "Connection timed out" errors. It happens on Chrome, Firefox and Safari so I believe It is not linked to browser configuration.

Here my reverse proxy configuration (very simple as you can see):

events {}

http {
    server {
         ...

A common "gotcha" with computers can happen when power gets cut to the computer without warning. Because the system loses power suddenly, it doesn't have a chance to flush cached filesystem data to disk, which means that some recently-"written" user-data might not be present on the disk the next time the system is powered back on.

Journalling filesystems help mitigate this (i.e. they usually pre ...