Latest Server related questions

I have an azure windows VM which was recently moved to another subnet. Hence new IP address was assigned to that VM. I have an issue now that the nslookup results still points to the old IP address.

C:\Users\xx>nslookup hostname.domainname
Server:  UnKnown
Address:  10.xx.xx.xx

Non-authoritative answer:
Name:    hostname.domainname
Address:  <old IP address>

How to resolve this

tl;dr given a Wireguard client and server with different MTU values, which value is used?

Given a Wireguard "client" with configuration file

[Interface]
MTU = 1440
...

and a Wireguard "server" with configuration file

[Interface]
MTU = 1420
...

which MTU value is used? In other words, is there a negotiation between them for a common MTU value?
Or does each side use exactly the MTU value it is giv ...

I am attempting to do a content search through Exchange on O365 to return mail between [email protected] and anyone at outsidedomain.com

I thought that this should work in the KQL:

(ParticipantDomains:outsidedomain.com) AND ((Sender:[email protected]) OR (Recipients:[email protected]))

However, this seems to include all mail to/from [email protected]

• No matter who it is sent from/to
• Also if [email protected] ...

I am trying to sync a Ubuntu 20.04 client to a Windows AD time server. But time will never sync. Here is what I know so far:

• Windows server is listening on port 123 for NTP, and replies to requests.
• I am using timedatectl. systemd-timesyncd.service is running.
• Tried to reboot the ubuntu client and AD server
• Make sure ufw was disabled, iptables does not appear to have any entries blocking anything, and i ...

Setup

Have a set of device(s) that will be placed on various networks with various IP designations. The device does backend stuff and provides 2 "services" to the user: a create react app user interface (at x.x.x.x:5000) for the novice user and a restAPI interface (at x.x.x.x:8000/docs) for the more knowledgeable.

Currently we (or the user) simply determines the IP address and adds a port to get to t ...

I'm working on an initiative to replace some PDUs in my company's datacenter with Smart PDUs, however it will be a few weeks before the new units are in. In the meantime, we've got to rack two new appliances and we're slightly concerned about the power draw in the rack's PDUs. We want to stay under 80% of our 30 amp capacity, unfortunately until we get smarter PDUs we don't have a way of checking power  ...

Using Terraform, I want to build an infrastructure that consists of an external load balancer (LB) and a MIG with 3 VMs. Each VM within the MIG should run a server that listens on 80. Furthermore, I would like to set up health checks for the MIG. Additionally, I want to have an extra VM within the subnet so that I can ssh onto it and check out if the connection to the VMs within the MIG can be establ ...

I have a situation where a rhel server becomes inaccessible using AD accounts but lets a local account to login. We are using a PAM tool that serves as our AD broker that enables us to login with AD credentials and enforces MFA. The issue is intermittent and just randomly appear every now and then and throws an error message saying "Remote side unexpectedly closed network connection" when we try to logi ...

I have a Windows 10 computer that is running software that I cannot service'ize. My problem is that I have followed every known process for disabling, discontinuing, or stopping Windows from auto updating/rebooting. None of them actually work. I've used policies, disabled the WU service, forced it to use disabled users with invalid creds, nothing works. Eventually, I will log in to find that I have the  ...

Elastic Beanstalk is telling me that my root file system is 96% full. When I SSH into the EC2 instance and run df, I can see that my root file system is 7.95GB/8GB used:

Filesystem     1K-blocks    Used Available Use% Mounted on
devtmpfs         1980524       0   1980524   0% /dev
tmpfs            1988500       0   1988500   0% /dev/shm
tmpfs            1988500   33180   1955320   2% /run
tmpfs            ...

A Debian Bullseye server is using almost 100% RAM quantity (7.65G / 7.79 G):

But there are no processes with more than 0.0% memory usage

DEV root@postgres2 ~# free -h
              total        used        free      shared  buff/cache   available
Mem:          7.8Gi       7.7Gi       100Mi       0.0Ki        42Mi        39Mi
Swap:          14Gi       767Mi        14Gi

DEV root@postgres2 ~# ps -eo p ...

I've been working on this project where my goal is to manage installs and updates on a park of Ubuntu nodes using Ansible.

What is the issue ?

If I want to connect to other nodes using Ansible, I need SSH access to them. Which means I need to share my pub_key. I would like to automate that process for a brand new workstation setup.

What did I try so far ?

I've thought about shifting the initial .is ...

I'm sorry for the noob question.

Is there a way to check the kubernetes desired state file?

I'm looking for something similar to terraform state list that exists in Terraform.

I have a SaaS application where the front-end marketing website is developed using a WordPress website while the main SaaS product is developed in .NET Core technology. In our case, both of these websites had different domain names. (www.example.com and app.example.com).

Now recently we have got a couple of people who are interested in white-labeling our product. So for all of them, we want to hos ...

I have an issue trying to do a kinit on ubuntu 22.04 with a user that has the "This account supports Kerberos AES 256 bit encryption" checkmark set.

I can kinit without issues to a user that does not have this checkmark set just fine, and weirdly enough, klist shows AES256 as encryption type even for this user:

~ % klist -e
Ticketzwischenspeicher: FILE:/...
Standard-Principal: user1@REALM...

Valid st ...

I would like to remotely activate a logon script to computers (Win10 and 11) not connected to a domain.

I can already remotely deploy software/script/files as admin, for example: I can deploy a logon.bat in C:\WINDOWS\System32\GroupPolicy\User\Scripts\Logon or C:\Windows\System32\Repl\Import\Scripts or run commands/install sw.

I know that there are a local group policy to do so and also that is possibil ...

i made this script for IPTABLES without state. I need to block any output connection except SSH, DNS, ICMP and Ubuntu Repositories

#! /bin/bash
#Objetivo del script:
#Descartar paquetes  excepto ssh y DNS
#FIREWALL DE HOST SIN ESTADO Servidor
#Cleanup Rules
iptables -t filter -P INPUT DROP
iptables -t filter -P OUTPUT DROP
iptables -t filter -P FORWARD DROP
#allow loopback
iptables -A INPUT -i lo - ...

I have an AWS ECS Service with 2 REPLICA tasks in it. When I manually stop one of the tasks, the new one is created in almost exactly 5 minutes. Similar 5 minute timeout happens when one or more tasks get stopped due to a failure.

here is cloudformation definition of my service:

ServiceFrontend:
    Type: AWS::ECS::Service
    DependsOn:
        - LoadBalancerRule
    Properties:
        ServiceName:  ...

Hello all This action happened every time at 06:00 AM on SharePoint Search Server and I dont know why this event happened by SP.Farm domain user (Administrator user on the server). Anyone can tell me why this action happened on the system?

Event description:-

A member was added to a security-enabled local group <13>Jan 07 06:11:06 DOMAIN_SPSEARCH AgentDevice=WindowsLog AgentLogFile=Security  ...

Steps to reproduce: kuberhealthy runs a deployment check regularly While the deployment seems to complete it fails to report the status on kuberhealthy service

$ k get events -nkuberhealthy | grep deployment | tail
12m         Normal    ScalingReplicaSet        deployment/deployment-deployment                      Scaled down replica set deployment-deployment-XXX to 2
12m         Normal    ScalingR ...

My website sends mails to users. This has been working wonderfully for years. But since a year or so, gmail blocks mails in the following scenario: A user has the email [email protected]. That email is automatically forwarded to a gmail address, so there is probably not a mailbox installed but just an automatic forwarding.

In that scenario, gmail will block the email with the error:

   host ...

rem par str how to remove few strings

I need to remove rem, par, str from the whole line

We are setting up an branch office which has couple of apps and DB servers, and RODC for authentication. we need to configure SQL always on cluster in that branch office. I have done it for RWDC but never done this set up in RODC Environment. I have an article how to setup failover cluster in RODC Environment ( https://techcommunity.microsoft.com/t5/failover-clustering/how-to-setup-a-failover ...

I'm trying to connect to a Windows Server 2019 via SSH for me to deploy my web app with GitLab CI/CD pipeline, so I installed OpenSSH server on it, and everything works fine if I logon using password authentication.

However, if I start the service through Start-service sshd from Powershell or using GUI like services.msc, I am not able to connect, the connection closed with debug3: recv - from CB ERROR:10 ...

I have two VPSs and I'm trying to make a two-step VPN connection as follows:

[start] >> Client <-> OpenVPN on Server A <-> Proxy (ex: SQUID) on Server B <-> Internet

So far:

1. I set up the OpenVPN server correctly on an interface named tun0 and there is no trouble in connection between the Client and the Server A.

2. I configured a squid transparent proxy server which can handle

I had a ZFS pool named data with 3 disks. Two disks were attached to the raidz by ID, but the third one was attached by volume (sda). I physically removed the sda device because I wanted to attach it by name. But when I rebooted, the pool is no longer available.

The two disk-by-id drives still show as ONLINE, but the pool can't be imported and gives "cannot import 'data': I/O error"

I'm running Ubuntu S ...

I have a WebSocket server-side application fronted by an Nginx reverse proxy and all is working great. The WS app runs in a container as does Nginx, and both then work together as a service.

Now I'm considering the scale-up rules for the WS app, which are more-or-less straight forward. But I'm curious about whether or not I'll need to also scale-up the Nginx portion of the service. Connections wi ...

I am trying to figure out how to write a ModSecurity rule that would block the IP from the server for a period of time when that IP is generating a certain amount of 403 errors, and I am struggling with writing the rule. Does anyone have any ideas of what this rule would look like?  

I recently bought a simple RAID controller card (LSI-9210-8i), and flashed it to IT mode. I also bought a single SAS drive of 3TB. I formatted the drive in the LSI Card's BIOS, and have checked the drive in MEGARAID, and it is reading as "Unconfigured (Good)". I am able to see the drive once I boot into Windows Server 2022, but upon trying to clean the disk with DISKPART or the disk utility, I get an I/ ...

i need to set well my Postfix server. I realized that it is possible to send mails by changing the sender label in my client. Mail was arrived with other sender!!!

how can I configure it to avoid this sending with the name of another?

Thanks.