Latest Server related questions

I need to connect to a VPN, but I am not an expert on the subject at all, so if anyone can help me, I would appreciate it.

I was given the following data, telling me that this info is for a "Cisco config in native mode". I am going to paste literally the words in the email:

• Dedicated public IP: it shows an IP which ends on 9. I don't really know what is this for...
• Remote: it shows a domain name. If  ...

I want to install multiple applications on my web server. For most of them, using PostgreSQL is possible or the only option. But in one of them's installation guide, only MariaDB is mentioned. If I create a PostgreSQL database, will it work on the software that only talks about MariaDB too?

We are seeing rather high interrupt and context switch counts on our Nomad clients:

# vmstat 1
procs -----------memory---------- ---swap-- -----io---- -system-- ------cpu----- r  b   swpd   free   buff  cache   si   so    bi    bo   in   cs us sy id wa st
6  0      0 317479392   4168 104093176    0    0     0     0 145232 306836 11  4 84  0  0

The average of ~150k in/s and ~300k cs/s are not spikes bu ...

My company has a few node/express apps that I would like to get some sort of monitoring set up for. Currently, they are all being run with PM2 in cluster mode, then using Nginx as a reverse proxy/webserver.

I would assume that PM2 Plus would give more application-specific stats, such as memory usage, logs, etc. while Nginx Plus would give more of the web server stats like number of connections, l ...

I have a problem updating Centos 8 systems due to repositories. This is my task and it works on Red Hat and Almalinux:

- name: Install the latest version of yum-utils
  become: yes
  become_method: sudo
  yum:
    name: yum-utils
    state: latest
    update_cache: yes

When I run the Playbook, I get this result:

"Failed to download metadata for repo 'AppStream': Cannot download repomd.xml: Cannot ...

I'm trying to find out if it's possible to run a Windows Server with one GPU which is shared between all RDP clients so that people could

• create a session on the server
• start some program with a UI which needs GPU acceleration
• disconnect afterwards while the program stays running and gets full acceleration
• later reconnect to the session

Maybe that's an unusual use case because most things i can find ...

How can the following Apache config snippet be translated to nginx?

<Directory "/usr/local/var/www/client2">
  SSLOptions +StdEnvVars +ExportCertData
  SSLVerifyClient require
  SSLVerifyDepth 2

  <RequireAll>
    Require expr %{SSL_CLIENT_S_DN_O} == 'My Company'
  </RequireAll>
</Directory>

More specifically:

• Is there an equivalent of Require expr under nginx?
• How can the ...

Can I restrict ssh login access to my HP Switch 5700, 5800 series using active directory groups?

ldap is working fine when the search-base-dn is using an OrganisationUnit.

search-base-dn OU=privilegedUser,OU=User,DC=company,DC=com

Using a global group with typ security is not working.

search-base-dn CN=switch-admins,OU=groups,OU=User,DC=company,DC=com

Syntax:

system-view
ldap server domain_name
search-b ...

The root certificate of the DFN-PKI "T-TeleSec GlobalRoot Class 2" is not activated in the Windows certificate store for the certificate purpose "code signing".

I can activate it with certmgr.msc in [Trusted Root Certificates Authorities] > [Certificates] > RMB on "T-TeleSec GlobalRoot Class 2" > [Select role code-signing].

I have some 50+ PCs where this setting is required. In Group Pol ...

I'm trying to add user with following cmd in debian machine.

adduser --disabled-login --shell '/bin/pre_cli_script.sh' --gecos GECOS 'aa1' > /dev/null && usermod -G 'kashya' 'aa1' && usermod -p '$6$kashya$QopvxfLtcOLSimw5IkW7hgafEIEiVKoyENQsr0/lqtqjzgPfghXqs.eTUFM3M/5dJKzGwbnlptS93cJqDx5930' 'aa1' && chown -R 'aa1':'aa1' '/home/aa1' && chmod -R o-rwx '/home/aa1'

we are using (Ubuntu 20.04 / Squid server / running on Azure) we are getting bellow error,

SendEcho ERROR: sending to ICMPv6 packet to [2a06:98c1:3121::7]: (101) Network is unreachable

We are not using IPv6, IPv6 already disable in network file. iptables and firewall already disabled

Can you please help to advise for resolve this issue...

Regards-Dinesh Taiwal

I try to create a brute force protection with fail2ban. With the fail2ban test, it matches the logs I wanna match but with my test brute forcing the site with 7+ failed logins, it does not ban my ip address.

filter:

[Definition]
failregex = <HOST>:.*"POST /login.*" 200 .*$
ignoreregex =

jail:

[shop-brute-force]
enabled  = true
filter   = shop-brute-force
logpath  = /etc/exampleorg/shop/log/acc ...

for the last few days I have been trying to setup traffic shaping and artificial latency in a local network. Currently I have an Ubuntu 20.04 PC with 2 NICs, where one is connected to the company network and the other shares the connection with an arbitrary number of clients(all with static IPs) through a switch. Currently I have gotten as far as successfully sharing the connection with the clients, int ...

A program I use generates some TCP connections using raw packets mode. Let's say that I executed those two commands:

/sbin/iptables -A INPUT -s 8.0.0.0/8 -j DROP
/sbin/iptables -A OUTPUT -d 8.0.0.0/8 -j DROP

Is it safe to assume that no packets will be sent to that network?