Latest Server related questions

Score: 1
Dennis avatar
Cannot connect to Samba share via VPN
pl flag

I have a Wireguard site-to-site VPN that connects successfully.

  • I can ping the remote Samba server using it's IP address 192.168.30.1
  • I cannot access a share over the VPN tunnel using its IP address \\192.168.30.1\disk

Some background;

  • Two ASUS routers configured with a wireguard site to site VPN.
  • router A; the VPN server has 192.168.30.1
  • router B; the VPN client has 192.168.20.1
  • Router A has a share ...
Score: 1
Julien avatar
mysql NDB backup fail
ru flag

I'm trying to abort a backup on a NDB cluster like this:

ndb_mgm> abort backup 2304081512
Abort of backup 2304081512 ordered

But there is no change, the backup seems to be stalled :

ndb_mgm> all report backup
Node 2: Backup not started
Node 3: Local backup status: backup 2304081512 started from node 12
 #Records: 1950 #LogRecords: 8705
 Data: 635312 bytes Log: 2676612 bytes
Node 4: Local ba ...
Score: 0
Dejan Milosevic avatar
Direct Server Return software and configuration for mesh network of raspbery pi servers
cn flag

I don't know much about DSR technology but as I am aware both load balancer and servers need to be behind same router because of virtual IP addresses.

I need solution to have cloud-based geo-based load balancers which will receive request with some geoDNS service but i want them to just be transparent proxy with some software which will be used as discovery for mesh network of active raspberry pi ...

Score: 0
Ron avatar
How do I measure the bandwidth of SSH tunnel VPN?
us flag
Ron

I use dropbear for SSH tunneling, and I use this method as a VPN. Is there a way to find how much bandwidth that I have used per SSH account?

Score: 0
Adrian avatar
Cannot SSH to Google Cloud Platform Compute Engine anymore
ng flag

I have a similar problem as outlined here: Cant access GCP Compute Engine

Yesterday I lost access to my GCP server. I thought Google was having issues but almost 40 hrs later I'm thinking their issues would be resolved by now.

I've tried:

  • From home & work and both access attempts fail (SSH in-browser fails & Putty).
  • Both Connection via Cloud Identity-Aware Proxy Failed & without IAP failed ...
Score: 0
Zenith2k3 avatar
specified network name is no longer available - admin shares
id flag

I have a win2k12r2 SharePoint server, I cannot access its admin shares c$ admin$.

SMB 1.0/CIFS installed, SMB2 enabled Can ping, and resolve hostname UDP ports 137 not open and 138 not, and TCP ports 139 open and 445 open. this is the same result as for our other servers with accessible admin shares. UAC enabled (tried disabling)

this was all working until recently after these patches were installe ...

Score: 1
Budianto IP avatar
Why was I unable to rebuild jobs?
cn flag

I have a jenkins server which jenkins was upgraded from version 2.220 to 2.387.1, all plugins have been upgraded.

When I rebuilt jobs, it gave me these output:

Started by user abc
Running as SYSTEM
Building in workspace /var/lib/jenkins/workspace/DEF_GW_ENROLL_USER_PREPROD
[DEF_GW_ENROLL_USER_PREPROD] $ /bin/bash -x /tmp/jenkins81696621479514690.sh
+ export SSH_CONF=/var/lib/jenkins/.ssh/config/ssh_co ...
Score: 0
klog avatar
Communicating with VM on remote host (How to configure routing)
gl flag

I am running an Ubuntu 20.04 LTS Focal Server and am tying to stand up VMs on the server using Multipass. I am able to successfully launch VMs and can ssh to them from the server. However I am unable to establish an ssh session from my laptop and presumably any other traffic.

I followed this post, but haven't picked out any details that will help me yet. Here are some pertinent details I've alrea ...

Score: 0
Andreas avatar
IPsec access from multiple local Networks over a single IP Address
mo flag

I have to connect our company network with the network of a customer to access some of their resources. The IT department of the customer defined a IPsec VPN in tunnel mode with two phase 2 configuration for two different subnets on their side. For both phase 2 configuration they defined a single address as our local network, because the customer needs no access to our side.

Local Network Remote N ...
Score: 2
Drop ALL the TCP connections (ESTABLISHED,RELATED) in Ubuntu

I'm facing a few hosts sending a flood of requests to my webserver (NGINX). I'm trying to block them via iptables, with ipset and a good old DROP rule.

The rule is effective against NEW connections, but as soon as the kiddies can come in and set up an ESTABLISHED or RELATED connection, my DROP rule fails because my firewall also has a iptables -A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCE ...

Score: 0
grihm1 avatar
Multihomed server
ec flag

I have a server with 4 nic cards. I configured them to be on the same network. Ex: 10.10.1,1, 10.10.1.3, 10.10.1.5, 10.10.1.7. Will I need to configure a default gateway on all? Meaning, if I have set the default gateway on 10.10.1.1 to 10.10.1.1 do I have to set the other nics to the same or leave them blank?

Score: 1
Rietty avatar
Redirecting specific subdomain with NGINX to point to a different website while using SSL
ky flag

I have the following NGINX configuration:

# HTTP Redirect
server {
    listen 80 default_server;
    listen [::]:80 default_server;
    server_name _;
    return 301 https://$host$request_uri;
}

# HTTPS Server
server {
    # Port to listen on, can also be set in IP:PORT format
    listen  443 ssl;

    ssl_certificate      bitnami/certs/server.crt;
    ssl_certificate_key  bitnami/certs/server.key ...
Score: 0
Hasnain avatar
Unable to change "on host maintenance" option for an instance template on GCP
ni flag

I've been using instance templates for Instance Groups, and I never had to go to "Advanced Options" because everything was working as expected. But today, while creating a new instance group with a template it started throwing the following error:

" Operation type [compute.instanceGroupManagers.insert] failed with message "Instances with guest accelerators do not support live migration." "

which upon  ...

Score: 0
sal42 avatar
Hosting a Java website using tomcat on a Google Domain
sz flag

First off I would like to apologize as I am a noob to this. I have have been trying to figure out how to get a website to be able to be accessed publicly with Google Domain. I made the website with Java being locally hosted on my raspberry pi with tomcat. I can access the tomcat server home page by going to the private address at 192.168.1.29:8080 but not localhost:8080 for some reason not sure if this  ...

Score: 0
David avatar
ping fails when bond0 switches slaves, ip stays the same
gb flag

setup is fresh debian 11

Bonded connection (bond0) is created using all nmcli commands

sudo nmcli con add type bond con-name bondcon ifname bond0 mode active-backup +bond.options "primary=eth0,fail_over_mac=none,miimon=500,primary_reselect=always,updelay=200"

bond mode is active-backup Slave connections are added for Ethernet (bond-eth) and wifi (ssidname) nmcli con add type ethernet con-name bond-eth s ...

Score: 0
Tim avatar
apache remove wget for better security
za flag
Tim

Im no expert at IT or apache but I have used linux for years. Ive done my best to harden/secure my server online which I use for a mobile app which needs to serve up its content etc.

Ive noticed some attempts at hacking my Apache 2.4.57 server (apparently?) using wget and log4j today. I do not have tomcat, just a simple httpd running php.

Here's a log entry. (Ive changed the IP ADDRESS info in the log e ...

Score: 0
Storm avatar
How to make an regex in Fail2ban with ip:port
yt flag

First of all, English is not mu native language, so if I make a mistake don't shoot me. :) Here's my problem: when I use every thing works fine, as soon as there is a port number or a comma direct after the IP-address is involved, it never has a match.

Here is a snippit from the logfile:

[08/Apr/2023 17:48:27] SMTP Spam attack detected from 91.223.169.83:60616, client sent data before SMTP greeting ...

Score: 0
Savvy avatar
Redirect route to a totally new one with same domain Nginx
cn flag

The website with this route Domain.tld/faq.php=?lang=en&id=121 need to redirect to Domain.tld/some/121?lang=en not only id=121 but any id with the old route to be redirected to the new route.

Thanks,

Score: 0
데미도브아르첨 avatar
Why if you down one of the interfaces(active) used in a bond(active-backup mode) the connection to the server is lost?
kg flag

Tried to configure bonding on Oracle8.7 The only problem is, trying to test it out if it works fine or not, found a little problem when you shutdown active interfaces used in the bond the connection to the server is lost. It does show that the secondary interface turns active, but thats it.. you can't ping the server.. you cant ping anything from it.. nothing.. But if you physically unplug the cable of  ...

Score: 1
Ashraf Sayed Gomaa avatar
how to setup 4 drives on hetzner servers, every two are mirror
in flag

I've a new dedicated server from hetzner, will install cPanel on it.

  • 2x HDD SATA 6,0 TB Enterprise
  • 2x SSD M.2 NVMe 512 GB
  • OS is AlmaLinux v8.7.0

how can I set up the installimage so the OS be on the NVMe, and the cPanel home directory on the SATA?

installimage:

PART swap swap 32G

PART /boot ext3 1024M

PART / ext4 all

disks:

  • Disk /dev/nvme0n1: 512 GB (=> 476 GiB)
  • Disk /dev/nvme1n1: 512 GB (=> 476 ...
Score: 0
pawikoski avatar
I can't add any rule to iptables / iptables not saving
ci flag

I want to forward tcp and udp traffic from wireguard ip address (10.66.66.2) to 0.0.0.0, but iptables doesn't want to cooperate.

OS is Oracle Linux 8, I use yum as package manager. Firewall.d is disabled.

iptables -S gives completely different output than cat /etc/iptables/rules

I want to apply few rules like this sudo iptables -t nat -A PREROUTING -p tcp -d 10.66.66.2 --dport 27015 -j DNAT --to-dest ...

Score: 0
Paul avatar
How do I configure netplan in Ubuntu 22.04 with dynamic IPv4 and static IPv6?
cn flag

With Ubuntu 22.04, the gateway option is deprecated and nearly every example I find for configuring netplan with static IPv6 uses gateway.

My ISP's default /etc/netplan/01-netcfg.yaml only includes dynamic IPv4 and they do not provide DHCP support for IPv6, but they do provide support for static IPv6.

What do I add to the configuration to support IPv6?

$ cat /etc/netplan/01-netcfg.yaml
network:
  versi ...
Score: 0
Werewolf Lord avatar
Errors importing JSON file to MySQL using mysqlsh Util.import_json
cn flag

I am having errors in attempting to import a file into MySQL (8.0.32-0ubuntu0.22.04.2) using:

mysqlsh mysqluser@localhost/jsondb --import /path/to/file.json

If the file is in, say, my home directory, regardless of what I do,

mysqlsh mysqluser@localhost/jsondb --import /home/myuser/file.json

I get:

Importing from file "/home/myuser/file.json" to collection `jsondb`.`file` in MySQL Server at loca ...
Score: 0
BoringPanda avatar
Nginx cannot find backend service which is running
je flag

I am setting up an nginx webserver for an application with web frontend and a flask backend, each running in a docker container. The following is my nginx configuration:

events{}
http{
client_max_body_size 50M;
   server {
    listen 80;

    location /api {
        proxy_pass http://0.0.0.0:5000;
    }

    location / {
        root /var/www/;
        try_files $uri /index.html;
    }
  }
}

I can acc ...

Score: 1
Michael T avatar
Fail2ban ban action error on debian
in flag

I'm not sure where to start looking for the issue here This is on debian 11 (using nftables)

It seems like the nft add set ... command is failing

nft add set inet f2b-table addr-set-wordpress \{ type ipv4_addr\; \}

My jail.local

[DEFAULT]
# configure nftables
banaction = nftables
chain = input

[sshd]
enabled = true
port = 1984
banaction = nftables[type=multiport]
maxretry = 3
bantime = 600
findtime = ...
Score: 0
907VigiL avatar
unable to find django error when running django app through apache2
ro flag

I am trying to get a django app running on a apache2 server both on a raspberry pi for a project of mine. The appache server is running but I can't pull up the web page as I just get an "Internal Server Error" //Log files

[Fri Apr 07 19:28:44.334749 2023] [wsgi:error] [pid 24119:tid 1965745152] [remote 192.168.50.249:54720] mod_wsgi (pid=24119): Failed to exec Python script file '/home/pi/greenhous ...
Score: 0
Trying to install Horde with php8.0/php7.4
in flag

AlmaLinux 9, LAMP up-to-date.
Acouple of weeks ago I tried to install Horde webmail but I gave up after “install failed”.
That time I followed pre requisites ++.
Now I am trying it again. I created a virtual server mail.domain.com I simply followed Quick Install.
I have installed php 8.0 from scratch and some days ago php 7.4.
For mail.domain.com I selected php 7.4
Running pear install -a -B h ...

Score: 0
Eloïse avatar
Apache 2.4 ErrorDocument 401 breaks basic authentification
sl flag

I got an issue with the basic authentication, when I add ErrorDocument 401 /var/www/rainbow/static/401.html you can click on cancel on auth prompt and you got access without auth .

Here is my site conf :

<VirtualHost *:443>
    Protocols h2 http/1.1
    ServerName XXX.app
    ServerAlias XXX.app

    <FilesMatch "\.(ico|pdf|flv|jpg|jpeg|png|gif|js|css|swf|svg)$">
        Header set Cache-C ...
Score: 1
Vojtech Kane avatar
nginx: make internal redirect to a different `location` block
cn flag

try_files' signature is try_files file ... uri;, so one usually uses it to perform tasks like serve file1 if it exists otherwise serve file2 if it exists otherwise pass the decision to a different location block (the one for the mentioned uri).

Can I somehow use the last part only? That means, do not try to serve any files, just pass the request to a different location block. The simple idea of not men ...

Score: 0
focaccio avatar
using /usr/bin/script to record sessions, but readable .txt
bf flag

How can I get the /usr/bin/script files to be "readable" .txt ?

For example I'm recording sessions like:

script "/path/`date "+%y%m%d-%H%M%S-term-session.txt"`"

When I "more" the files they come back as "binary" and have "extra" characters that make them less user friendly.

Thanks, Greg

The Stunning Power of Questions

Much of an executive’s workday is spent asking others for information—requesting status updates from a team leader, for example, or questioning a counterpart in a tense negotiation. Yet unlike professionals such as litigators, journalists, and doctors, who are taught how to ask questions as an essential part of their training, few executives think of questioning as a skill that can be honed—or consider how their own answers to questions could make conversations more productive.

That’s a missed opportunity. Questioning is a uniquely powerful tool for unlocking value in organizations: It spurs learning and the exchange of ideas, it fuels innovation and performance improvement, it builds rapport and trust among team members. And it can mitigate business risk by uncovering unforeseen pitfalls and hazards.

For some people, questioning comes easily. Their natural inquisitiveness, emotional intelligence, and ability to read people put the ideal question on the tip of their tongue. But most of us don’t ask enough questions, nor do we pose our inquiries in an optimal way.

The good news is that by asking questions, we naturally improve our emotional intelligence, which in turn makes us better questioners—a virtuous cycle. In this article, we draw on insights from behavioral science research to explore how the way we frame questions and choose to answer our counterparts can influence the outcome of conversations. We offer guidance for choosing the best type, tone, sequence, and framing of questions and for deciding what and how much information to share to reap the most benefit from our interactions, not just for ourselves but for our organizations.