Latest Server related questions

I have a magento2 store(with 10609 products) running on an ec2 instance(ubuntu 20.04, 16core and 32GB ram). It is a shared server with staging and live on the same instance.

A few days ago, I got an update from amazon saying high cpu usage. when i tracked down Php-fpm logs, slow logs and access logs i observed that there were sudden purging events in the access logs. when i saw PHP-fpm logs it no ...

I have just upgraded to Rocky Linux 9 and haven't been able to set the nic bond Transmit Hash Policy to 1. I'm using NetworlManager rather than the ifcfg files which is used by default in EL9.

I have tried the following steps: #sysctl -w net.ipv4.fib_multipath_hash_policy=1 #cat /proc/net/bonding/nm-bond | grep Hash Transmit Hash Policy: layer2 (0)

Also: #echo 1 > /proc/sys/net/ipv4/fib_multipath ...

kubernetes stopped working after host network IP change, then tried to re-initialize kubernetes but getting below error:

Error:

[wait-control-plane] Waiting for the kubelet to boot up the control plane as static Pods from directory "/etc/kubernetes/manifests". This can take up to 4m0s [kubelet-check] Initial timeout of 40s passed.

    Unfortunately, an error has occurred:
            timed out waiting fo ...

i used bind 9.18.1 on Ubuntu 22.04.1. Some clients have an error while answering their queries. 53 port is open.Already most of the time it returns queries successfully

in query-errors.log ;

05-Jan-2023 11:49:30.517 query-errors: info: client @0x7fc9c414eb08 192.168.a.b#56431 (armmf.adobe.com): view intranet: query failed (timed out) for armmf.adobe.com/IN/A at query.c:7649
05-Jan-2023 11:49:30.745 qu ...

I have an internally hosted DNS resolver via Core DNS running on my network. Everything is great aside from one thing, which is I cannot load my apex domain when connected over VPN. The reasoning is because the zonefile maps my domain name to the internal IP of NGINX which has a ton of subdomain entries for my domain.

• thing1.example.com <- works
• thing2.example.com <- works
• example.com <- do ...

I'm in the next situation. My server is an Ubuntu 22 and I use Plesk to manage it. I installed Wildfly 27 final, and I followed this tutorial. I didn't have any issues installing it, my problem is I need to access the admin console using port 9990, but when I access MyIP:9990 it takes too much and sends the message 'timed out'. I'm not an expert about connections and ports so I need a bit of help, I'm st ...

I have set up openstack yoga installation and configure the networks exactly as mentioned in tutorials as mentioend in here https://docs.openstack.org/install-guide/launch-instance-networks-provider.html

I have tried to follow cirros test launch instance following https://docs.openstack.org/install-guide/launch-instance-provider.html however i cannot seem to ping the instance ip or ssh to it.

on  ...

I have a small server at Strato. There your can access your server using it's IP, and using a subdomain of stratoserver.net, e.g. h1234567.stratoserver.net. I want to get an SSL certificate for it (From LetsEncrypt or ZeroSSL or something else free), but from what I read most providers don't accept IP adresses. Is there a problem/can I use the h1234567.stratoserver.net as the domain name?

I followed this example "Best way to redirect all HTTP to HTTPS in IIS" for redirecting to https and it worked great.

I just have one website that is the exception. It has a few non-https map references that prevent the site from loading correctly under https. For now, until the site is updated, I have to use http.

Am I correct in assuming I'll have to create a condition to do this in the current rul ...

After reading rclone's documentation I can see you add a remote like this

#normal space
[my-first-space]
type = s3
env_auth = false
access_key_id = XXXXXXXX
secret_access_key = XXXXXXXX
endpoint = fr1.digitaloceanspaces.com
acl = public-read

I want to move files between remotes, for that I need another conf block:

I create a rclone.conf file inside my user's home

1. Can I just add the other one below  ...

I've followed closely the manual on NGINX blog. This works flawlessly on my machine, with an AMD Ryzen PRO 4750G. The output for a 5GB file using curl on https://localhost is twice as fast with kTLS, which is neat.

I've duplicated the same configuration options on my server that has a much less powerful CPU (Intel Atom D2550), but the system doesn't want to use kTLS, there is nothing in the debug  ...

I have 2 hosts (h1 and h2) where h2 takes over services if h1 fails. The hostnames are unique, they have different MAC addresses, and each has one unique IP and one shared IP (moved between hosts on failover).

Is it possible to share SSL certificates between the hosts? That way up/downstream devices that look for TLS protected services think they are connecting to the same host as before (pre-f ...

I'm setting up an AWS account with several users. Each of these users has policies attached that restrict their access to specific S3 buckets/objects and the EC2 instance types / Autoscaling Groups they can launch.

Users can launch multiple on-demand / spot instances at any given time. I want to make sure that the instances that a specific user launches have the same permissions or restrictions a ...

I need to clarify the process of pointing a web domain to a running ASP.NET application on a raspberry pi. The application is developed and ready, and the website is up and running. I have researched multiple posts and can't find anything wrong with my proxy redirect.

1. Is dotnet blocking the recieved redirect in someway by locking out any external visitors from the application?
2. Since there are mul ...

launching my first vm after depoloying openstack ansible.

Build of instance 7a91b5e8-23cc-4ec3-9178-aada6a302a4a aborted: Image 272e3979-c387-4651-84e5-1adcdebfa955 is unacceptable: Image has no associated data

Traceback (most recent call last): File "/openstack/venvs/nova-25.2.0/lib/python3.10/site-packages/nova/compute/manager.py", line 2489, in _build_and_run_instance self.driver.spawn(context, i ...

I am using aws-cli v2 to get the --query output from AWS Describe-volumes. In this, I am trying to get the volume id, size, Instance ID, state. Instance ID is nested in the AWS Describe-volumes.

Source :

{
    "Volumes": [
        {
            "Attachments": [
                {
                    "AttachTime": "2017-11-21T16:12:57+00:00",
                    "Device": "/dev/sda1",
                    ...

I am using Gmail SMTP with wordpress to send mail with my custom domain ([email protected]). Emails are successfully sent but always land in spam folder in every webmail provider (Eg, Gmail, Rediffmail, Yahoo, Outlook, etc)

Gmail SMTP server address: smtp.gmail.com
Gmail SMTP name: Your full name
Gmail SMTP username: Your full Gmail address (e.g. [email protected])
Gmail SMTP password: The password that you us ...

I am starting using Terraform and imported my current infrastructure from Azure using aztfy (im starting to think that was a bad idea...)

Now I have all my resources in in single main.tf file... security group, network, disk, instance...

I would like to start the project with good pratice, but there is many informations on internet and i am a bit lost.

I would like to manage multiple cloud provider in  ...

I have tried to configure Apache virtual hosts to respond to connections on all of my network interfaces (external, private, loopback) on port 8080, but to no luck. Here's what I have done so far on my MacOS Monterey:

1. Made sure the virtual host module is enabled in httpd.conf by uncommenting the #

2. Read and followed the official Apache documentation https://httpd.apache.org/docs/2.4/vhosts/ on vir ...

g'day all.. in a spot of bother and a starter of ten for someone. I have placed a simple bash shell script into the root of "/etc/profile.d" and without fail, the script executes 3 times within nanoseconds.

To diagnosis this, made a separate bash shell script within "/etc/profile.d" with the following syntax below, and all three email results are identical.

I can reproduce this anomaly on over 15 id ...

I would like to be able to replicate a site built in an existing, working EC2 Linux 2 AMI image in a manner that does not require re-provisioning of https certificates when spinning up a saved AMI on a different address. The web server is stock httpd (Apache2). It has a certbot certificate for use on data1.mydomain1.com. I want TLS to work when I spin up the saved AMI on data2.mydomain.com (or data3...  ...

Good morning everyone,

the goal I'm trying to achieve is to connect an Openshift cluster, via IPsec VPN with preshared key, to an on premise network (the img attached is a simplification of the infrastructure to be achieved).

I tried following this guide provided by IBM: https://cloud.ibm.com/docs/openshift?topic=openshift-vpn

The advice they give is to use Strongswan's helm chart. I was able to e ...

I am facing a rather odd issue with my web server. The server is configured with Ubuntu 20.04, Nginx v1.22.1, PHP 8.0, and MariaDB to host my WordPress website.

The issue is, the server is not sending any Etags or last-modified response headers for HTML pages, leading the browser to always get a 200 OK response, and never 304 Not Modified. I have configured browser caching with the ngx_http_headers_modul ...

Unless I am asking the question incorrectly or using the incorrect terminology, there seems to be no information on how to setup Route53 to delegate a DNS zone to an EC2 instance. Or maybe it's just impossible?

The use case is simple. Due to very specific requirements I must host a private DNS zone with BIND on an EC2 instance. However I would like all the other stuff in my VPC to resolve host ...

I'm configuring Azure Cloud Service (extended support). Part of the requirements is to apply certain IP security rules, e.g. RDP only from a whitelist of addresses, and some others. With individual VMs, I have used network security groups in the past, however this doesn't seem to work for the cloud service (extended support).

Specifically, I associated a network security group with the subnet in ...

I was able to employ sysbox for our Linux-based Docker host to enable secure DIND (Docker IN Docker) for our CI/CD pipelines (specifically ones that need to build or start other containers).

However, I can't find a way to do something similar for our Windows Server-based Docker host. Right now my best approach is to share the host's Docker pipe with selected containers (the "DOOD" approach, Docker  ...

We have installed OpenVpn community editon (v2.5.8) in windows server 2019, having multiple VMs running in Intranet (10.0.0.0/24). I want my vpn clients (10.8.0.0/24) to communicate with VMs and VMs can communicate with vpn clients, as described in below image :

Network Diagram

server config as :

dev tun
topology subnet
server 10.8.0.0 255.255.255.0
ifconfig-pool-persist ipp.txt
client-to-client
push " ...

I have an Apache reverse proxy set up and my backend service is configured on a specific static ServiceUri="site.com". I would like requests coming for multiple domains a.site.com/data, b.site.com/data etc. to be forwarded to my backend service. The problem is that my service does not recognize a.site.com/data as valid. Only site.com/data is served. I cannot change the backend to be flexible enough ...

I'm trying to copy data from psql via a bash script now I'm stuck with a loop my bash script is as following:

#!/bin/bash
DATEBEGIN=2016-03-01
DATEEND=2016-03-31
DATEMONTH=2016-03

echo "Copy data to /mnt/bigstorage/samples-$DATEMONTH.csv file, please wait..."

psql postgresql://XXX:XXX@localhost/XXX << EOF
       COPY (SELECT  *
FROM    sample
WHERE   timestamp >= '$DATEBEGIN' AND
        ...

I am running a VM at hetzner (named gateway in the diagram below) that is used as a wireguard server. I hand out public IPv6 addresses via wireguard to clients. It is possible to ping all systems from every other system. I can ssh into both the gateway and the server from outside of my VPN, however I cannot ssh from the server to the gateway (or the other way around) and I cannot access any other servic ...