Latest Server related questions

Hi I am using docker to mount nginx and a PHP-fpm using Falcon as a framework and react as the front end

`upstream fastcgi_backend {
server bfy-%APP_VERSION_UID%_buildify-php-fpm_1:90%FPM_PORT_PREFIX%;
}

server {
# Port 80 will require Nginx to be started with root permissions
# Depending on how you install Nginx to use port 80 you will need
# to start the server with `sudo` ports about 1000 do no ...

From my understanding, in the pod security admission(PSA), there is no customization feature. We can only select one of the security levels (privileged, baseline or restricted)

Now, there is a pod which uses capability CAP_NET_ADMIN only. But, as you know, the 'baseline' level of PSA doesn't include CAP_NET_ADMIN. As a result, should this pod be created with 'privileged' level? Is my understandin ...

I have a few PHP apps running on IIS 10.

I set each app the right PHP version for it, and it works correctly, and the Loaded Configuration File shows the right path for each, however, only the apps using one of the PHP versions have value in the Configuration File (php.ini) Path when using phpinfo() (And it's not correct because the actual file is loaded from somewhere else, as defined by the PHPRC

I have a domain named xyz.com. Custom domain has the domain in it. It is registered outside AWS and Name Server is pointed to AWS Custom Domain in Lightsail. Here is the setup for it.

1. Lightsail container hosts NextJS.
2. AWS Cloudfront CDN in Lightsail points to Lightsail container. AWS ACM has certificate for 'xyz.com' and www.xyz.com and is assigned to it.
3. Custom domain has A record entry for @.xyz.co ...

I am trying to deploy kubernetes (kubeadm cluster) on ARM64 based Ubuntu 20.04 virtual machine.

I am getting the follwoing error when deploying kubeadm:

xxx@controller01:~$ sudo mkdir -p /etc/apt/keyrings/
xxx@controller01:~$ curl -fsSL https://packages.cloud.google.com/apt/doc/apt-key.gpg | sudo gpg --dearmor -o /etc/apt/keyrings/kubernetes-archive-keyring.gpg
xxx@controller01:~$ echo "deb [signed-by ...

I'm not sure when it started, but I believe it wasn't always the case.

Dell R550 Server 2019 Standard with Hyper-V in a Cluster, 2 node. 2 x Intel Xeon Silver 4309Y 8C/16T, so in Windows it shows with 16C/32T. Started making new Server 2019 Standard guest VMs, and things seemed to operate normally. Copied over and imported some Server 2012 R2 VMs (v5.0) in-place, from Server 2012 and 2012 R2, and ...

We have a PowerMTA server that receives incoming e-mail. and forward it to external SMTP server that's not running PowerMTA i tried to do it using port 587 and port 25 both working fine and emails forwarded successfully but with port 465 its not working

Problem: (No Internet & No DHCP)

I cannot seem to get my VM's to connect to the internet nor am I able to setup a DHCP server to automatically assign IPs to them.

Introduction/PSA for dupes: I've seen several articles, videos and questions here on exchange with regards to network best practices with Proxmox. However, over a few days, 11 server reinstalls and frustration I'm unable to get results with  ...

Hi I am trying to connect machine A (10.102.44.7) in a local network to machine B (10.102.44.13). Machine B is the one that acts as the gateway to the public network.

I want to forward the traffic from A 10.102.44.7:4000 to Machine B 102.44.13, Machine B to connect to remote server C on the internet,and machine B to deliver the response from C to A.

After reading for a while, I manage to gather some ...

I have Ubuntu 22.04 on both the client and server. I have set PermitTunnel yes in sshd_config in both the client (I might not need it on the client) and the server. I have also set Tunnel yes and TunnelDevice any:any in the ssh_config in both the client and the server (I might not need it in the server), and ensured that the server is restarted after the configuration has been applied. I have setup ...

I had to change server cert for Tomcat and that's all what I've done. Now all of a sudden it redirects browsers from 443 to 80:

% wget https://example.com/example
--2023-06-04 19:56:35--  https://example.com/example
Resolving example.com (example.com)... 1.2.3.4
Connecting to example.com (example.com)|1.2.3.4|:443... connected.
HTTP request sent, awaiting response... 302 Found
Location: http://exam ...

My very old server only has BIOS, no UEFI, and the boot order routine aborts booting when it encounters a drive larger than 2TB. The boot order is: CDs, HDDs, USBs, network. I cannot change the boot order because I don't know the BIOS password.

How can I install grub to a CD-R or CD-RW?

All of my HDD bays are taken by 4TB drives and I'm not changing that.

I have been using a sparse bundle on an external RAID for my Time Machine backup for macOS.

However, I have just noticed that it has not been backing up since a recent update to Ventura. I can't recall what the update was to be honest!

So I tried to recall how I did this initially a year or so ago, and it involved sudo tmutil setdestination/inheritbackup...not actually sure.

In any event, I now cann ...

I've installed winexe on my linux machine. I want to use it to execute some script on a Windows Servre 2012. It doesn't work, the error is NT_STATUS_LOGON_FAILURE.

I've followed this guide to install winexe: https://www.aldeid.com/wiki/Winexe

I've enabled SMBv1 and SMBv2 on Windows Server. The script I'm trying to execute is:

./bin/winexe -U administrator%pwd4administrator //serverip "cmd.exe" I've do ...

I have a Supermicro A3SPI-8C-LN6PF board which features an embedded Intel Atom C5325 CPU running Proxmox (Debian 11.6, Kernel 6.2.11). dmesg is reporting intel_pstate: CPU model not supported and I'm wondering what could be the reason. I also noticed that the CPU package power draw is around ~21W when idling (scaling_governor=ondemand, all cores at 800 MHz) which seems a bit high? More interestingly the ...

This is my nginx sites available folder on a digital ocean Ubuntu v22 VPS:

server{   server_name 139.59.62.131 animeanyway.me;

      location / {
        proxy_pass http://localhost:3000;
        proxy_http_version 1.1;
        proxy_set_header Upgrade $http_upgrade;
        proxy_set_header Connection 'upgrade';
        proxy_set_header Host $host;
        proxy_cache_bypass $http_upgrade;
    }
 ...

Recently upgraded to Debian 11 bullseye, and our Docker swarm nodes had trouble talking to each other, and started dropping some connections.

After much Google-ing, we stumbled on these threads:

• https://github.com/moby/moby/issues/41775
• https://bugzilla.redhat.com/show_bug.cgi?id=1987108

And specifically this command, which fixed the issue:

ethtool -K <interface> tx-checksum-ip-generic off ...

I have stumbled upon a peculiar issue with Iptables. I am not seeking a solution to a problem, but an explanation of some strange behaviour of iptables.

My platform is Ubuntu 22.04.2 LTS with 5.19.0-43-generic kernel, using a wireless interface "wlp1s0" (Intel Wi-Fi 6 AX200 M.2) managed by NetworkManager.

While trying to optimize my laptop iptables configuration for existence on insecure networks l ...

K8S need to use private repo by default

I'm currently trying to use Nexus Repo by default for Kubernetes. But I have 2 problems. The first one is that if I don't specify the repository, it will directly search on docker.io, despite the fact that I've specified. Also my K8S is using containerd.

/etc/containerd/config.toml

[plugins."io.containerd.grpc.v1.cri".registry.mirrors."docker.io"]
endpoint = ["http ...

Rook Problem | PVC

Currently, Rook doesn't seem to be working properly, but it's important to note that I only have one Master and one worker, which is intended for testing purposes.

Here are the steps I followed:

kubectl create -f crds.yaml -f common.yaml -f operator.yaml
kubectl create -f cluster.yaml

│ NAMESPACE↑     NAME                                               PF   READY  RESTARTS STAT ...

Ubuntu 18.04 cannot ping or nslookup outside the LAN.

When I do nslookup www.google.comit hangs for a while and returns ;; connection timed out; no servers could be reachedI cannot ping www.google.com but I can ping 10.100.10.1, my gateway. The server is using netplan. When I do a netplan apply, I don't get errors. Here is my netplan config file.

network:
  version: 2
  ethernets:
          ens160:
      ...

I am using multiple Compute Engine Instances and randomly sometimes they seem to be loosing network access. Nothing changed, the certain instance in this case was running about 80 days without any error.

In /var/log/syslog the following erros appear:

Jun  2 17:15:11 alpha google_guest_agent[451]: ERROR main.go:178 Error watching metadata: Get "http://169.254.169.254/computeMetadata/v1//?recursive=true ...

Given an EC2 instance spun up in AWS, does AWS provide a stable, predictable, DNS name that resolves to both the public IPv4 and public IPv6 addresses of that instance?

If so, where can I find this name, and how do I turn this name on?

Stable means that name will not change if the instance is stopped. This rules out the classic IPv4 DNS names that contained the randomly assigned IPv4 address.

Public me ...

I'm running a self hosted RKE2 (rancher) kubernetes cluster (1.27) and longhorn (1.4.2) and I need some help for the correct configuration. I'm deploying some database stuff via helm, like mongoDB, redis, postgres and minio. Every database ca be deployed by it's own without a problem. But if I try to run every helm chart, randomly some deployment fail with an attachement error of the PVC:

AttachVol ...

we are using Cloudmin under CentOS 7.9. to manage Xen virtual machines that use LVM. It's all backed up once a week (via Cloudmin's built-in backup system, which I think just uses dd). Last week I noticed one thing: on one system, I deleted 150GB of data, but the backup remained 300GB, as if I had not deleted anything. Who has experienced this?

My journald log contains lots of messages of this kind:

Jun 03 11:38:37 test1 systemd[225427]: pam_unix(systemd-user:session): session opened for user user(uid=1000) by (uid=0)
Jun 03 11:38:37 test1 systemd[225427]: Queued start job for default target Main User Target.
Jun 03 11:38:37 test1 systemd[225427]: Reached target Paths.
Jun 03 11:38:37 test1 systemd[225427]: Reached target Sockets.
Jun 03  ...

I want to load-balance two dedicated linux servers, I'm planning to do that using round robin DNS, but I can't find a way to synchronize the servers to be identical. The servers are running a perl script (minimum change) and I think it's possible to synchronize that with a simple bash script of rsync on a cron job. But the problem is that script depends on a mariadb database that changes a lot and I don ...

I have a ZFS dataset that exists in /proc/mounts and in /etc/mtab, but the folder doesn't exist in the filesystem, zfs umount reports the dataset doesn't exist, and zfs mount reports that the dataset is already mounted.

This is on RHEL 8.8 (fully updated) running zfs dkms 2.1.11-1

Is it possible to umount this dataset without rebooting the server? How would I even begin to troubleshoot this sort o ...

I already know how to do xfs meta data backup. To repair the xfs file system, only the xfs_repair -L lv command is available. I will move the abnormal Inodes to the lost+found directory after I want to perform the repair. Would you like to ask if there is any way to use lost+found backup for data combing to reduce the amount of lost data? Or are there better ways to reduce data loss?

I have a LAN subnet 192.168.10.0/24 connected to my CCR-1036. this router acts as DHCP server and Hotspot for users to access internet, a third party accounting server (172.17.1.0/30) is connected to this CCR-1036 router as well. The router is behind a FortiGate firewall (192.168.100.0/30) and the firewall is connected to ISP, firewall has a connection on the other side to ESX-i server(192.168.13.0/24 f ...