Latest Server related questions

I have OpenVPN server running on an Ubuntu machine hosted on AWS that routes to our internal network also hosted on AWS. I have no problem with TunnelBlink, but for OpenVPN on Windows, fail to fetch any resource.

I checked the DNS, no problems there. nslookup no problem.

When I try to do a traceroute, both start first hop from server gateway and timeout from there.

I have check the server logs and both ...

Not really sure whether to ask this here or at dba.stackexchange.com but I figured here might be more appropriate since it's a server config issue.

I have a brand new MariaDB 10.6.5 install on Ubuntu 20.04

I've used MariaDB's own repositories that can be found at this URL - https://mariadb.org/download/?t=repo-config&d=20.04+%22focal%22&v=10.6&r_m=one

Following the instructions from the link a ...

I am building a master-master replication with two servers which are talking to each other by local lan.

I have:

Server 1:

mysql -uroot -p
change replication source to source_host='192.168.1.3',
source_user='repl_user', SOURCE_PASSWORD='xxxxxxxxxxx',
source_log_file='mysql-bin.xxxxxx', source_log_pos=xxx, source_ssl=0;
start replica;

The user exists with correct privileges and log file + log pos a ...

I have kept vbscript with just messagebox in mdt after validate section and it got executed.

Similarly I kept another vbscript after that calling an API and able to retrieve the result from it also.

Is there anyway to exit the complete task sequence based on the value of this api result?

If possible to set an exact message there also like we wantedly exited the MDT.

My script.

Option Explicit
MsgBox( ...

I am running an Ubuntu 20.04 LEMP server with wordpress installed on it. I am using the nginx.org repository for nginx, but I compiled the cache-purge module (ngx_http_cache_purge_module.so) from source with my current nginx.org installation. However, I don't know how to automatically purge the cache using this module.

1. Is this recompiled module now compatible with my nginx.org installation (i used ...

I am in the process of setting up a mirrored storage system for our Business.

We don't have the budget for prebuilds so I am trying to do what I can to get the best bang for our buck. Here is our hardware breakdown:

San1 and San2 Windows Server 2019

SUPERMICRO MBD-H11SSL-I Amd Epyc 7251 8 core CPU

64GB RAM 8GB x8

SSD for OS 500GB

LSI 9380-8i8e

Intel 10G nic, 4 port - Iscsi network

Intel 25G nic, 2 po ...

Does anyone know how to get this exact information through the command line/ipmitool vice this page.

Can't seem to locate it... I'm even trying to scrape the page (but that is a whole struggle of a lesson itself)...

any, even wild, ideas would be helpful... (hopefully it wasn't staring me in the face)

tldr

Via mTLS, I'm trying to find a way of issuing a client cert that only grants that client to access a specific subdomain. I have a suspicion that this isn't possible, but I'm not certain.

What I'm trying to accomplish

Let's say I have a server listening to anything routed to *.foo.flar.com

Each customer is assigned their own subdomain that satisfies the wildcard in the server's address.

For exampl ...

Recently configured SSL on Apache 2.4/Ubuntu 20.04 hosted on Oracle Cloud and have been getting connection refused for https/port 443.

External device:

$ curl simpliassure.com:443
curl: (7) Failed to connect to simpliassure.com port 443: Connection refused

$ curl simpliassure.com
(normal html content loads)

$ nmap -p 443 132.145.100.143
Host is up (0.024s latency).
PORT    STATE  SERVICE
443/tcp clo ...

I read that a * means a packet loss in the tracert output. I ran the same command on the same IP 3 times and can consistently see a * on the same hop.

C:\Users\jpnin>tracert sea.valve.net

Tracing route to sea.valve.net [205.196.6.129]
over a maximum of 30 hops:

  1     1 ms     1 ms     1 ms  dlinkrouter.Dlink [192.168.0.1]
  2     4 ms     2 ms     4 ms  10.226.0.1
  3   451 ms   742 ms   69 ...

I'm trying to follow instructions on lastpass site new integration with google workspace's SSO. Everything works fine until I get to a stage when I'm supposed to add credentials for an Android client.

After I follow the instructions I encounter an error (see attached screenshot).We don't have that android app credential set-up anywhere. I was with lastpass support for over an hour, but now it is  ...

Here is my password-auth file:

auth        required       pam_faillock.so preauth silent deny=5 unlock_time=900
auth        required       pam_faillock.so authfail deny=5 unlock_time=900
auth        include        password-auth-ac

account     include        password-auth-ac

password    include        password-auth-ac

session     required       pam_tty_audit.so disable=* enable=root
session     o ...

I'm using cloudflare as nameserver and the A record is proxied. Consider I have domain foo.example.com

How do i know if someone digged my domain?

I expect I got any info like:

• whom dig it (what IP)
• what subdomain they digged
• when they digged it

So currently have a WireGuard network.

Lets say; I have BoxA on 10.55.0.2 in one location, access via SSH. I have BoxB on 10.55.0.10 in another location trapped behind a double NAT, ssh is accessed using ssh-agent via 10.55.0.2.

Im looking for a way to configure a device to access the VPN configuration so to appear to be from the 10.55.0.10 network. I would like to access hardware on the 192.168.x.x ...

I'm trying to set up a dnat closed network with UFW running on the gateway (Ubuntu 20.04.2). I have the following rules:

-A PREROUTING -i enp0s5 -p tcp --dport 443 -d 192.168.1.1 -j DNAT --to-destination x.x.x.x:443
-A ufw-before-forward -i enp0s5 -p tcp -d x.x.x.x --dport 443 -j ACCEPT
-A ufw-before-forward -i enp0s5 -j DROP

I can curl https://192.168.1.1 and that connects successfully to x.x.x ...

I try to insert lines of code (shell script) with Ansible blockinfile module.

name: Customized prompt
blockinfile:
path: /etc/profile.d/customized_prompt.sh
create: yes
block: |

#!/bin/bash

# customized prompt normal user and root

if (( "$(id -u)" == "1000" ))
then
    PS1="[\u@\H \w]$ "
elif (( "$(id -u)" == "0" ))
then
    PS1="[\u@\H \w]# "
fi

I have this Ansible error

[admin@srvansible /e ...