Latest Server related questions

Setup: server (HTTP server on 80) on 192.168.1.20, clients on 192.168.1.17, 192.168.1.18

Client 192.168.1.17 can connect to the server fine (Wireshark capture on the client side attached)

1   0.000000    192.168.1.17    192.168.1.20    TCP 78  62275 → 80 [SYN] Seq=0 Win=65535 Len=0 MSS=1460 WS=64 TSval=2874634337 TSecr=0 SACK_PERM
2   0.001393    192.168.1.20    192.168.1.17    TCP 74  80 → 62275  ...

I have an interesting use case where my hosting providers (Heroku) DNS has intermittent issues resolving a certain subdomain.

They have an option that allows you to insert a custom resolver as the primary lookup mechanism and then any failed requests will fallback to their DNS.

How might I setup a bind9 server to forward requests to 8.8.8.8 for one subdomain only? And all other requests need to fail ...

My configuration goal is to forward / redirect a message going to a mailbox to an external site (its an email capture setup).

I was using forwarding, which is straight forward but includes the original "To" address in the recipients, and the email capture thinks its part of the group. Reply-alls to the messages it sends doubles and then triples the number of active cases.

Then I found that "Redirec ...

When I try to build the following Dockerfile

FROM debian:bullseye

RUN set -eux; \
    apt update; \
    apt install -y --no-install-recommends ca-certificates;

RUN set -eux; \
    echo "deb https://nginx.org/packages/mainline/debian/ bullseye nginx" >> /etc/apt/sources.list.d/nginx.list;

RUN set -eux; \
    apt update;

I get the error:

#0 1.077 Err:4 https://nginx.org/packages/mainline/d ...

I have a need to copy a complex dataset (around 4 PB total, hundreds of millions of files) via Rclone copy, for some customers (each of them own around 100TB out of the 6PB) - to a bunch of disks via potentially the sftp protocol. Electing not to go to commercial cloud to skip the potential network as well as egrees/object rate limiting. We have a server with a 10gbs connection, doing an rclone copy (ou ...

I plan to travel to a distant location and access a high performance computing system (located at where I currently am) while I have arrived at my destination then. However, I am worried about the internet latency of remote access causing problems in data transmission, so I hope to find a way to assess the internet latency of remotely accessing the system while I am still here to see if the latency is t ...

Heyho,

so, while experimenting with setting up my own webserver on a Raspberry Pi, I've come up with something that should be quite simple in my opinion, but seems to be quite hard (or I can't find the right explanation):

On this server, I am working on projects with a few more people, and now that I got Apache to run, of course I also want to use my webdev skills to get a website or two online ther ...

I'm dealing with a virtual server that keeps maxing out the C: drive due to the Users directory. The Users directory has well over 2,000 Users, each taking up ~70MB of space, but when I look in an individual User directory I find that the total space allocation (sum of all directories in the screenshot below) should only be around 4MB.

Is this expected behavior for the Users' dir and do I need t ...

I have an Isilon mount that's mounted as NFSv3 on RHEL. There are some Active Directory groups that are used in access lists. I have a folder where those ACLs are applied. When I open the folder properties in Windows and go to Security tab, I can see those groups, with appropriate permissions. As a non-root user without access to Isilon itself, is there a way to view those groups from within a Linux cli ...

I am currently trying to build a little lab for testing purposes:

I have a Linux Host-System (currently Arch-Based)deploying 2 vms, abridge with an assigned NIC and a CISCO Router that is directly linked to the NIC that is enslaved to the bridge.

The VMs and the Host-System can ping each other via IPv6 and via IPv4, the router is only pingable via IPv6, and I am not sure why.

The Router has the address ...

The Amazon CloudWatch datasource allows the specification of filters like ec2_instance_attributes that allow the retrieval of information about EC2 instances. I couldn't find the same for EBS volumes or other resources.

Is there a way to retrieve parameters about AWS resources so they can be added to a panel?

I have a server which is being tested and not yet ready for public access, hence general traffic is blocked by ufw.

I am trying to add some Google IP address ranges in the allowed rules which need to be on top of the other rules.

All the IPv4 addresses have been added fine, but when I try something like

sudo ufw insert 1 allow from 2c0f:fb50::/32 comment 'Google'

I get ERROR: Invalid position '1' ...

I used to have my website running on a physical Windows Server 2016 machine with IIS 10 which accessed its data files on an old Netgear NAS. I have since replaced the NAS with a Synology RS815+ running DSM 6.2.4-25556 Update 6 and virtualized the web server, with the intention of also running the website off of a NAS share. Just as what automatically happens with inetpub\wwwroot, I need to enable read ...

I have cretaed an instance using terraform code and also its key pair for windows. To get the admin password I clicked on the below decrypt button and getting as invalid decrypt key. Please suggest how to fix it.

Decrypt key error

# Create an S3 bucket
resource "aws_s3_bucket" "my_bucket" {
  bucket = "my-ssh-keys-bucket"  # Replace with your desired bucket name
}

# Upload the public key to the S3  ...

I pasted below the existing mod_rewrite section of the .htaccess of my Magento site.

I need to modify it to implement a short URL scheme that would redirect all requests like mysite.com/-jk7ASD63 (all short URLs starting with a dash) to mysite.com/cartroute/cartlink?shortcode=jk7ASD63 (long URLs with dash removed).

I believe this is the right line to add (I tested it here https://htaccess.madewit ...

I have an old Win2012 print server which serves printers to users. I'm adding a new Win2019 print server to the domain in order to migrate printers from the old print server to the newer one, and eventually decomm the old server.

I've exported the printers from the old server and imported them to new server sucecssfully, and I see them in the new print server's Print Management app. I have right- ...

This doesn't work

CREATE ROLE "role-one" LOGIN;
CREATE ROLE "other_role" LOGIN WITH "role-one";

I get this error

ERROR:  unrecognized role option "role-one"
LINE 1: CREATE ROLE "other_role" WITH "role-one";

What am I doing wrong? I can't find examples online that make it clear to me what the syntax is. From what I have seen this should work.

How do I create a new role with LOGIN and add it to another r ...

I'm provisioning some development EC2 instances running Windows Server, with SQL Server installed. I use a custom Amazon Machine Image with the configuration we need, but as part of the provisioning process, I run a userData script on each machine that sets some values specific to that user, including a random password for certain applications. Part of the script does this for SQL Server, following

I have a sonicwall tz500 that I need to forward all SSH connections it receives to some other external IP address. Is that possible? If so, how?

NetSetupSvc is a helper service for installing network drivers and managing low-level network settings. It is trigger-started via RPC and automatically stops after 3 seconds. During normal operation this service is never used. In my case it seems to only be triggered by backup and monitoring software.

On all HPE ProLiant servers I checked, I've noticed that the System log records the service star ...

I'm currently facing an issue where one of my Kubernetes nodes keeps experiencing DiskPressure, leading to pod evictions and disruption of services. Despite our best efforts, we are struggling to identify the root cause of this problem. I'm seeking guidance on how to analyze and debug the issue effectively.

Here's the background information and steps we have taken so far:

• Kubernetes Version: 1.24 ...

I have installed Tomcat 11.0.0-M6 and I get this error message every time I want to start it for the first time:

Error: LinkageError occurred while loading main class org.apache.catalina.startup.Bootstrap java.lang.UnsupportedClassVersionError: org/apache/catalina/startup/Bootstrap has been compiled by a more recent version of the Java Runtime (class file version 61.0), this version of the Java Runti ...

We have upgraded our Kubernetes version from v1.24 to v1.25. We have used kubespray (version v1.2.21) for cluster creation. The cluster is upgraded successfully to v1.25. But once we deploy pods, not able to connect to outside networks like google.com from Kubernetes pods. It is throwing the below error.

user@vm-util-mtm-wes-k8-upgrade-rnd:~$ kubectl exec -i -t dnsutils – nslookup google.com
Serv ...

Does google cloud dns support auto renewing wild cards and also, geographic location responses.

How does google CDN map the request to the origin and is there a limit on the number of domains we can use.

Currently 2.86-1.1ubuntu0.3 is running on ubuntu 22.04.

I used

listen-address=127.0.0.1
listen-address=[public-ip-1]
listen-address=[public-ip-2]
port=53

But dnsmasq binds on all IPs:

netstat -tulpn | grep dnsmasq
tcp        0      0 0.0.0.0:53              0.0.0.0:*               LISTEN      3641/dnsmasq
tcp6       0      0 :::53                   :::*                    LISTEN      3641/dnsmasq
ud ...

For Gitlab ci/cd I have the following infrastructure: There is a Gitlab instance, which is connected to a kubernetes cluster(crio engine), via a gitlab kubernetes runner.

When there is a commit, the runner picks up the job and runs it in a kubernetes pod. The first task for each project is to build a container and push it to a container registry, for later use.

The problem I have, is that when buildah  ...

My scripts to sign file via API was working properly fine when my previous server setup was Ubuntu 20.04 and openssl version is 1.1.1b.

But after upgrade, I am getting this issue. Client environment is same before and after the server upgrade.

Now
Current Server Env :

    Ubuntu 22..04  
    Openssl 3.0.2  
    Apache 2.4.52  
    SSL x509 certificate is installed on the Apache Server 

Client Env:

Kernel Version 11.2 -- “Fatal double fault” error panic Kernel Version 11.4 -- “Fatal double fault” error panic Kernel Version 12.4 -- “Fatal double fault” error panic Kernel version 13.0 -- “Fatal double fault” error panic

I have tried BIOS reset to factory settings like enabling speed steps and all but still no success. Happy to take any suggestion to try if any

How to configure a prometheus installation of openshift to include the labels of node role in the exporter?

We want to alert based on cpu requests only on worker nodes

namespace_cpu:kube_pod_container_resource_requests:sum{kubernetes_node_role=~"worker"}

gives no datapoints and

namespace_cpu:kube_pod_container_resource_requests:sum 

Element Value
namespace_cpu:kube_pod_container_resource_requests:sum{n ...

I use a PDNS system with a recursor. I noticed that some (maybe) not well configured docker containers forwards to the PDNS recursor some query without suffix (not fully qualified host name). The recursor fowards these queries to the root servers.

How I can avoid this? I think there are two possible solutions:

1. Avoid pdns recursor to foward query withoud suffix
2. Configure PDNS to add a default zone-suffi ...