Latest Server related questions

I have been trying to troubleshoot a weird issue I am having with logwatch and exim. I have logwatch setup so send via another exim smarthost.

If I send a test message via GNU mail. It gets through fine.

If I sent a logwatch email, it fails. I narrowed it down to the fact that the return path is missing when sending using logwatch. I can easily fix the issue by replacing exim with sendmail. But a f ...

I have the following routes pushed into my edge router

192.0.10.0/32      via 192.168.166.110 on br166 [master01 22:53:55] * (100) [AS64514?]
                   via 192.168.166.116 on br166 [worker_03 22:53:55] (100) [AS64514?]
                   via 192.168.166.114 on br166 [worker_01 22:53:55] (100) [AS64514?]
                   via 192.168.166.115 on br166 [worker_02 22:53:55] (100) [AS64514?]

I have a problem, I've two virtual machines, but the problem is that when I turn on the second VM I lost the connection on the first one and vice versa.

Here is the bridge netplan configuration on the host server :

network:
  version: 2
  renderer: networkd
  ethernets:
    enp1s0f0:
      dhcp4: no
      dhcp6: no
  bridges:
    viifbr0:
      addresses:
        - 135.xxx.159.xx/24
        - 2001:xxx ...

GCP VM with 99,8% full disk has not resized its file system after increasing the disk capacity in google console.

I have a small VM on GCP based on public image ubuntu-2004-focal-v20220419. There was a 10GB disk with root partition and file system. Some logs occupied 99,8% of the disk capacity. I am able ssh the VM because GCP can still copy ssh keys to it, but to detect a heavy folder I had to use a ...

I want to enable an SSL certificate in MySQL Server for some users.

I tried following this tutorial - the one that is below Best Answer.

I installed OpenSSL, created all certificates and edited the my.ini. Then, after running SHOW global variables like '%ssl%'; I have the following result:

How to update the IAM policy below so that the IAM role, arn:aws:iam::7574333677569:role/dev-abc-webserver, also have permissions?

{
    "Version": "2012-10-17",
    "Id": "Policy1517260196123",
    "Statement": [
        {
            "Sid": "Stmt1432661968133",
            "Effect": "Allow",
            "Principal": {
                "AWS": "*"
            },
            "Action": "s3:*",
            "R ...

I'm thinking about doing some online projects as a Developer/IT Technician, and I have some concerns regarding security.

I'm unable to host my servers locally for my project and I thought why not to host the servers in datacenters using hosters like Hetzner. My plans are also hosting an active directory server on one of these servers and join the others to that domain to have a better management  ...

sorry if my question is too long.

I have 4 PowerDNS servers, as below with sample IPs. ns1.example.com 1.1.1.1 ns2.example.com 2.2.2.2 rec1.example.com 3.3.3.3 rec2.example.com 4.4.4.4

in my network, ns1 & ns2 are authoritative servers that have some zones and reverse_zones. and rec1 & rec2 are recursor DNS servers. I have configured rec1&rec2 to ask for my own zones from ns1&ns2 wit ...

I'm trying to use VirtualBox to set up an Ubuntu Linux VM to emulate the server I'm developing for. The server has three network interfaces.

On the server, there is a web page hosted by ng and an instance of Mosquitto. We want these to be available from one interface, the management interface, but not the other two. We use a VRF to isolate the management interface.

The VirtualBox adapters are  ...

We are running into a weird issue while cloning a repo from Azure DevOps at a client.

Error: RPC failed; curl 56 Failure when receiving data from the peer

So far we tried;

  git config settings - SSLbackedn, sslVerify, postBuffer, proxy.
  We also tried being on client's VPN and without VPN. (just fyi - we received machines from client, that is where we are currently working and having issues)

Ple ...

I'm setting up a one-click deploy of an environment for some webservices, in which Terraform is used to deploy the infrastructure and then run Helm to populate it. The Terraform step is working fine and I can see the Kubernetes cluster created in Azure, but the Helm deploy is failing.

I'm using the Hashicorp Helm provider, and the config in providers.tf looks like this:

provider "helm" {
  reposito ...

I have several services I'm placing behind an NGINX reverse proxy, which was simple enough to setup, but I've run into a problem with websockets. A single endpoint is simple enough to specify with a location that includes

   proxy_set_header Upgrade $http_upgrade;
   proxy_set_header Connection "upgrade";

The problem is that there are many endpoints with websockets. And we keep finding new things that ...

Is it possible to use racadm to change iDRAC config from the default dedicated port to one of the server's main NIC/LOM ports?

There is relatively little in the documentation beyond configuring the network settings (ip/subnet/gateway), which is done with:

racadm setniccfg -s $ipaddress $subnetmask $gateway

I am able to view the full network config (as well as which port the iDRAC is configured to use ...

We currently have a Classic VM whose IP is directed by the DNS subdomains app.mydomain.com and api.mydomain.com. The IIS server has configured the sites app.mydomain.com and api.mydomain.com. Any user in the internet can visit both sites.

The goal is to migrate to another VM, basically creating a replica, creating two DNS subdomains app2.mydomain.com and api2.mydomain.com pointing to the new VM's I ...

I have a remote server with one network interface, which has a public IP address (enp5s0). I've created an isolated network as follows:

<network>
  <name>LAN-bridge</name>
  <uuid>64XXXXXXXXXXXXXXXXXXXXXXXX</uuid>
  <bridge name="lanbrdige" stp="on" delay="0"/>
  <mac address="52:54:00:XX:XX:XX"/>
  <domain name="LAN-bridge"/>
  <ip address="192.16 ...

I need to run pg_dump from a Node.js docker image (node:16-buster) to a postgres 13.6 docker image. The problem is that for Buster version the only package available for postgresql-client is 11 and I get this messages when trying to run pg:dump.

pg_dump: server version: 13.6; pg_dump version: 11.15 (Debian 11.18-0+deb10u1)
pg_dump: aborting because of server version mismatch

How can I install postgres ...

I'm trying to redirect with 301 some https calls with some proxy forward. The idea is not to go through the proxy, but to return a 301 redirect with the new location. I've got two cases:

https://example.com/dummy/copy/this/path -> https://another.com/other/copy/this/path

So when I call a curl

https_proxy=myforwardproxy:8080 curl https://example.com/dummy/copy/this/path

It should return a redirect ...

I'm having a recurrent issue with custom .deb packages and their triggers. We have made some "meta packets" for our deploys to force & check some configurations. The idea is to keep many servers with the "same" config without needing to check manually on each update. Let's call them as an example: grafana-conf and elasticsearch-conf.

In order to execute the reconfiguration scripts when the "child p ...

I have the following ingress for my namespace on Kubernetes with paths /api/1.0/ redirecting to my old-service and the rest redirecting to the new. Before deprecating & deleting my old-service I would like Nginx to respond with an HTTP 426 redirect error code only on the /api/1.0/ paths.

How can I do this ?

apiVersion: networking.k8s.io/v1
kind: Ingress
metadata:
  name: xxx-ingress
  namespace: xxx ...

Azure Defender on Azure has two policies for Azure Function authentication that I'm not able to implement from other azure resources that support http calls.

• Function apps should have Client Certificates (Incoming client certificates) enabled
• Function apps should have authentication enabled

On Azure Datafactory if I choose authentication as system managed identity and I try to pass a certificate o ...

After setting up login via Azure AD in AWX, we find that people from other organizations are able to log in, too.

After creating an organization map according to https://docs.ansible.com/ansible-tower/latest/html/administration/social_auth.html#organization-and-team-mapping they don't get assigned to any organization or team anymore, but they're still able to see the list of users.

How can I complete ...

We've got a number of Crucial drives in Dell r630 servers with PERC 730P Mini RAID controllers that need their firmware updating as they're still on version M3CR032 with the known issues.

The servers aren't live so there is always the option of taking them out of the server, plugging them into a another one with direct SATA connections and flashing them that way. But I just wondered if there's a  ...

The title of the post has it all. The first steps to migrate from CentOS 7 to Rocky Linux 8 fail (in my eyes) because of module RPMs.

If something is installed the traditional way via dnf, dnf notices if a dependency is only available as a modular RPM and activates the the app stream of the module to install other dependencies in the correct version.

For automatic installation of a customized distributi ...

I have been facing problem while Scheduling my query to get daily update. Every time after scheduling my query when I click on saving that query "schedule query error" appears, after searching for all the possibilities for this, I found below mentioned points which have followed.

1. Big Query Data Transfer - I have enabled
2. BQ Admin permission requires - BI Admin permission given.

Request your kind su ...

Im running a e-commerce/LMS wordpress site with a 2 Core cpu ,4G Ram and 4Gswap ,100G disk space server with CentOS web admin panel.

today after getting serveral http 502 report from clients suddeny I noticed there was 14 php file executed 2 on index.php (nginx) and 12 on my wordfence wflogs php files (php-fpm) using this command watch -n1 "lsof | grep '\.php'".

After restarting both nginx and p ...

I have a particular drive that is failing (/dev/sdb)

I need to replace the failed drive but I am not sure which it is... I should have documented what drives were in what slots and what their devs were but I did not and it will be very troublesome should I need to shut it down.

I am running proxmox on the metal and the drive is part of a ZFS Pool. I would ideally have a command to make a particul ...

I have an VPN server on Server B port 442

before I Forwarded a different Port to my Server B using firewalld and worked nice , now I want to migrate to UFW for some reasons,

I tried before.rules with

*nat
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
-A PREROUTING -i eth0 -p tcp --dport 448 -j DNAT --to-destination {Server-B_IP}:443
-A POSTROUTING -s 192.168.1.0/24 -o eth0 -j MASQUERADE
COMMIT

Code:

            - name: Set category info as fact
              set_fact:
                category_info: "{{ category_info|default([]) + [ {
                  'category_name': item | json_query('category_name'),
                  'category_description': item | json_query('category_description'),
                  'category_cardinality': item | json_query('category_cardinality'),
                  ...

I'm fairly new to Ansible and VMware. I've created a playbook to gather inventory info about all the VM's in a Vcenter instance and it works fine, but I want the inventory output to include more than just the VM names. This is the playbook I have below.

---
plugin: community.vmware.vmware_vm_inventory
strict: False
hostname: 192.168.1.1
username: fake
password: name
validate_certs: False
with_tags: ...

How should iptables on the host be configured to allow rtsp:// traffic from a KVM guest that initiated the connection via a NAT network interface?

It doesn't appear to be a simple mapping. I don't know what port the guest uses when it opens the connection to the rtsp stream. It could be random. For example, the kvm guest may use port 48000 when it tries to connect to a rtsp stream running on port 3011 ...