Join Log in

Latest Server related questions

Score: 0
Alexander Guyer avatar
Best way to enable DDoS protection on many individual GCP compute instances without load balancing?
ph flag
Alexander Guyer

I've been scouring through the Google Cloud Armor docs for information about DDoS protection of a GCP compute VM instance. From what I've found, Google Cloud Armor Managed Protection provides traditional DDoS protection (perhaps layer 3 and layer 4), and it must be attached to a load balancer. Additionally, Google Cloud Armor Adaptive Protection provides layer 7 protection via machine-learning-based anoma ...

Server virtual-machines load-balancing ddos google-compute-engine google-cloud-platform
Score: 0
are there popular vps orchestration tools similar to kubernetes but for non-container environments?
gi flag
John

I'm in the process of learning kubernetes and docker swarm. I really appreciate how you can create several servers as work nodes and cluster/swarm them together. Then use commands like kubectl get pods or docker ps -a to see all pods/containers across all services connected to the same cluster/swarm.

This got me wondering if:

  1. Is it a popular to run database and node js apps across VPS instances ...
Server vps operations-orchestration
Score: 0
Python 123 avatar
Postfix mail server not sending email
fr flag
Python 123

I had a postfix server that I had to restore from a backup and deploy onto a new server. Using the new server, the domain name is not allowing me to send email. I am able to receive emails but sending them just never delivers them to the receiver. How can I troubleshoot and solve this issue? Thanks!

Server domain-name-system email linux ubuntu postfix
Score: 0
Renuka Manavalan avatar
systemd fails to restart even after calling reset-failed
cn flag
Renuka Manavalan

We have a need for restarting a service frequently in certain special scenarios. So when it fails with start-limit, the suggested solution is to call "reset-failed". What we found is that, even after calling reset-failed, the immediate subsequent start do fail with start limit. The only work around is to introduce a pause of 6 seconds (sleep 6) before calling start, if previous has failed.

For te ...

Server linux debian service systemd systemctl
Score: 0
IAM Profile allows create VPC IPV6 Subnet in some regions. Why does it fail in other regions?
br flag
glenschler

In a test environment to mockup a larger issue, I have an IAM user with a directly attached IAM profile. I have also tried with the profile attached to an IAM Role which the IAM user has assumed.

The profile allows CloudFormation to create a VPC with IPv6CidrBlock and IPv6Cidr subnet. This cloud stack always is created fine in us-east-1 and some other regions. Upon further testing other regions a ...

Server amazon-iam aws-vpc
Score: 0
Make special query log for a certain zone bind9
in flag
Muhammad Ikhwan Perwira

How do I make special query log file from a certain zone.

While my current log config is

logging {
        channel query_logging {
                file "/var/log/named/query.log" versions 5>
                //severity debug 1;
                print-time yes;
                //print-severity yes;
                //print-category yes;
        };

        category queries {
                query_loggi ...
Server domain-name-system bind logging
Score: 0
Sergey Ponomarev avatar
Lighttpd Execute ./cgi-bin/index.cgi if exists in the folder
us flag
Sergey Ponomarev

BusyBox httpd executes the ./cgi-bin/index.cgi if it exists. This is similar to index.php but with the /cgi-bin/ folder. So for example I have the structure:

/api/
  cgi-bin/index.cgi
/blog/
  cgi-bin/index.cgi
  /rss/
    cgi-bin/index.cgi

So when request are going to http://example.com/api/ they are actually handled by the /www/api/cgi-bin/index.cgi script. When requested http://example.com/blog/ ...

Server lighttpd
Score: 0
Gilberto Martins avatar
Large number of RST/ACK packages from my Ruby on Rails server
cn flag
Gilberto Martins

I have a Rails server (ROR) behind my Firewall (FWL). ROR must constantly send information to Digital Ocean Spaces (DOS). Note that ROR is not in Digital Ocean datacenter.

ROR <--> FWL <--> Internet <--> DOS

My firewall has the following rule:

# Only register invalid FORWARD packages
${IPT} -A FORWARD -m conntrack --ctstate INVALID -j LOG --log-level alert --log-prefix 'DROP FOR ...
Server iptables connection syn
Score: 0
MadHatter avatar
vsFTP not following linux groups for writing
fr flag
MadHatter

vsFTP seems to not obey Linux (Ubuntu 16) groups for write permission.
I have 2 user accounts: "ftp_user", "ftpuser". Both are in "ftp" group. Both accounts are chroot, there home directories are /ftp. Neither has shell access.

/ftp
   ./folder1
   ./folder2
   ..
   ...

directory: drwxrwxrwx+ nobody ftp ftp
sub-directory: drwxrwxrwx+ ftp_user ftp folder1

Issue at hand:
only ftp_user c ...

Server vsftpd
Score: 0
Azure VM Domain Verification
ke flag
user960567

I have an Azure VM let's say myvm.cloudapp.azure.com. It is accessible using http://myvm.cloudapp.azure.com . Now I wanna make it secure https://myvm.cloudapp.azure.com. I have added certificate App Service Certificate, now I need Domain Verification.

enter image description here

How can I verify the domain?

Server virtual-machines azure
Score: 0
Domain Controller Communication Timeout Limit
cn flag
JukEboX

THE DOMAIN

I have a domain setup with a parent/child schema. All servers are Microsoft Windows 2019 Standard. There are 2 top level DCs and the 2 child domains each have their own 2 DCs. The issue I am having happens maybe once a month when we do testing. We have encryption software on the computer whereas we forget to set the autologon flag during patching some times and the computer stops pre OS b ...

Server active-directory domain-controller windows-server-2019
Score: 0
Route all traffic to docker except tun0
in flag
East Activist

I want to connect to a primary VPN (tun0) and use secondary vpn (docker) over it. How can route my host traffic to docker except primary VPN (tun0) traffic

I can't use vpn-chain instead of docker, the secondary VPN is Lokinet. Primary VPN however is an OpenVPN profile with static IP remote server address

Current route output:

$ route 
Kernel IP routing table
Destination     Gateway         Genmask  ...
Server docker
Score: 0
custom tinc setup in pfsense withut webgui
vn flag
Peter

I have a running a tinc VPN (Layer3, Mode=router) with dozents of hosts, most with multiple IPs and Subnets. Currently all running Linux and the hosts-files are synchronized by rsync (StrictSubnets=yes). Works fine.

Now I like to add a pfsense host in this mesh. I installed the tinc package on pfsense, but in the webgui I am not able to configure this correctly. It looks like the gui is made only ...

Server pfsense tinc
Score: 0
pvdisplay does not show the one lvm volume
il flag
Yoganandhan Ganesan

Need your help for finding the one volume. i need to migrate the particular volume , but i am not able to get that particular volume. it was mounted on filesystem. but when we check the pvdisplay command, it does not show.

the LUN(wwn) has configured in multipath -

[root@server1 ~]# multipath -ll 360002ac00000fsdfwee00012c6d

azure_mig (360002ac00000fsdfwee00012c6d) dm-79 3PARdata,VV
size=400G feature ...
Server lvm
Score: 0
Determining if varnish config changes are needed after adding 3 new cookies
mx flag
online 
# Keep all these cookie
if (req.http.Cookie) {
  set req.http.Cookie = ";" + req.http.Cookie;
  set req.http.Cookie = regsuball(req.http.Cookie, "; +", ";");
  set req.http.Cookie = regsuball(req.http.Cookie, ";(location|usertype|viewed-products)=", "; \1=");
  set req.http.Cookie = regsuball(req.http.Cookie, ";[^ ][^;]*", "");
  set req.http.Cookie = regsuball(req.http.Cookie, "^[; ]+|[; ]+$", "");

  if ...
Server varnish
Score: 0
Unable to connect to Lightsail, is there a way to fix it?
bq flag
sebelk

After configuring and rebooting a Debian 10 with internal ip address as static I cannot connect with it.

The only strange thing that I've found was:

enter image description here

The internal ip address was 172.26.5.8/20

I cannot reach in anyway but if I ping even not responding, there is an entry in cache arp:

enter image description here

I wonder if there is a way to fix it or if there is an alternative way of reaching the instance.

Server ip-routing linux-networking amazon-lightsail

The Stunning Power of Questions

Much of an executive’s workday is spent asking others for information—requesting status updates from a team leader, for example, or questioning a counterpart in a tense negotiation. Yet unlike professionals such as litigators, journalists, and doctors, who are taught how to ask questions as an essential part of their training, few executives think of questioning as a skill that can be honed—or consider how their own answers to questions could make conversations more productive.

That’s a missed opportunity. Questioning is a uniquely powerful tool for unlocking value in organizations: It spurs learning and the exchange of ideas, it fuels innovation and performance improvement, it builds rapport and trust among team members. And it can mitigate business risk by uncovering unforeseen pitfalls and hazards.

For some people, questioning comes easily. Their natural inquisitiveness, emotional intelligence, and ability to read people put the ideal question on the tip of their tongue. But most of us don’t ask enough questions, nor do we pose our inquiries in an optimal way.

The good news is that by asking questions, we naturally improve our emotional intelligence, which in turn makes us better questioners—a virtuous cycle. In this article, we draw on insights from behavioral science research to explore how the way we frame questions and choose to answer our counterparts can influence the outcome of conversations. We offer guidance for choosing the best type, tone, sequence, and framing of questions and for deciding what and how much information to share to reap the most benefit from our interactions, not just for ourselves but for our organizations.