serverfault.com

I hope that someone can help me because it's very complicated/messy. I'll explain the situation. I have the 2 locations: SiteA and SiteB. They are connected in VXLAN over IPSEC between them with 2 OPNSense firewalls. The network they share is 192.168.180.0/24 I set MTU to 1400 on 6 Proxmox servers in the 2 locations (3 in SiteA and 3 in SiteB) and MTU to 1400 on the OPNSense interfaces (both the VXLAN and the LAN interface on 192.168.180.0/24). On OPNSense I also made some firewall normalization rules on the VXLAN and LAN interface to bring the mss to 1250. I did various tests with iperf and with transfer scp creating 2 LXC containers, one in SiteA 192.168.180.150 and one in SiteB 192.168.180.151. With iperf the performance is 400MB/s. If I do a scp between the 2 containers the speed is good. The problem is this: I am at home with my notebook (I have a Fiber connection 2.5Gbps) I use OpenVPN to connect on the OPNSense of SiteA and I made so

Proxmox server connection problem Hello, I have a proxmox server with 3 vm to simplify: Reverse proxy nginx (www.exemple.com and dev.exemple.com) Apache 2 + php (www.exemple.com) Apache 2 + php (dev.exemple.com) The proxmox server is configured with a NAT to route connections from ports 80 and 443 to the reverse proxy. Then the reverse proxy dispatches the requests to the apache backends. I have a problem with the requests between the servers. I would like to use the prestashop migration pro module. But the connection is not made between the two sites. After investigation it appears that the vm as well as the proxmox server cannot access https://www.exemple.com/modules/migrationproser

I have interfaces one ehternet and one wifi. I want to make sure when I try to ssh into the server it uses ethernet instead of wifi. I have setup routes manually to partition the network, to use ethernet for internal sites and internet via wifi. So I need default route to preferably use wifi. Problem is I cannot ssh into the server when both interfaces are connected unless I give priority to default route to use ethernet as well. Since ssh uses internal ehternet network when not connected to wifi I can ssh properly.

I have a printer that has suddenly become inaccessible, and I can no longer connect to it. Suspecting DHCP, I configured it for a static IP address, so I know both the IP address and the MAC address. Whenever I ping the IP address, on my Windows box, I get a Destination Host Unreachable. I did a Ping from my OpnSense router, and got successful response. Then I did a Ping from my Windows box, and it returned host unreachable. At the same time, the OpnSense box started returning host unreachable too. Both machines and the printer are plugged into ethernet ports on the same network switch. While it's possible that the JetDirect card is failing, that seems unlikely. When I do an arp -a on the OpnSense box, I see neither the mac address nor the IP address listed. How do I confirm that the printer network interface is accessible on the network, and what should I consider when trying to work out w

I'm trying to build .NET core 8 application with option DOTNET_NUGET_SIGNATURE_VERIFICATION set to true. I'm building in OpenShift S2I and using private NuGet repo (Artifactory). If DOTNET_NUGET_SIGNATURE_VERIFICATION=true build takes about 3,5 hours. If DOTNET_NUGET_SIGNATURE_VERIFICATION=false build takes about 3 minutes. I found article https://devblogs.microsoft.com/nuget/the-nuget-org-repository-signing-certificate-will-be-updated-as-soon-as-april-8th-2024/ mentioning that I need to set-up finger print to trusted signer, which I did, but it did not help. In build logs I can see warnings NU3018 and errors NU3034. NU3018 The revocation function was unable to check revocation because the revocation server could not be reached. RevocationStatusUnknown: unable to get certificate CRL NU

I have a Windows Server 2012 instance running at an ISP for an application needed for our business. In Event Viewer, I see attempts in the security logs of type 4625, which is a failed logon. Also, the "WorkstationName" field value changes often. The XML of the event below: I can help myself around pc's but I am unsure as to how to stop this. It's clear that it is attempting to brute-force hack, but it is not originating from an IP address? Is the attack coming from a workstation within the ISP itself? Is there any way that I can block such attempts? - <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event"> - <System> <Provider Name="Microsoft-Windows-Security-Auditing" Guid="{4783962C-5672-4994-E3BA-3E3B0326720D}" /> <EventID>4625</EventID> <Version>0</Version> <Level>0</Level> <Task>12544</Task> <Opcode>0</Opcode>

I have an aging mailserver....it simply runs courier postfix and smtp. It is a KVM VM and has two drives, one for os and one for data. I have a very full data drive (reports 100% full even though the used and available have a spread of about 24GB). I am not sure why or what is eating up space and then releasing it. A top shows mostly just postfix's imapd doing stuff. I cannot get iotop on this machine. So I figured to start freeing up space in users mailboxes on the server I would do a du -h -d1 to try to get who the biggest offenders are. Well, this command runs SLOW slower than it has ever. So since it ran slow, I figured I would issue a screen command of: du -h -d1 > mailboxsizes.txt So I could come to it in the morning and see the usages. It wrote out about 6 mailboxes, largest one being 2.2GB and then nothing. So came to the actual machine to see what the command was doing if it was still running and saw this: [root@xmail]# du -h -

I'm replacing my Ubuntu 22.04 mail server with a new 24.04 one. I've gone through the entire setup with no issues until . . . I install SpamAssassin but it won't start. More specifically, It can't find the startup file. I've scoured the inter-webs but haven't found anything useful. Has anyone seen anything like this or better yet know how to resolve? I found one other person with the exact question I have but no replies so far. When I try to start the new installation (Ubuntu 24.04): xxxx@xxxxxxx:/etc# systemctl start spamassassin Failed to start spamassassin.service: Unit spamassassin.service not found. What I see on my existing Ubuntu 22.04: xxxx@xxxxxxx:~$ systemctl status spamassassin ● spamassassin.service - Perl-based spam filter using text analysis Loaded: loaded (/lib/syste

I've just created a new RAID 5 array in in Debian with mdadm: mdadm --create --verbose /dev/md0 --level=5 --raid-devices=10 /dev/sd[bcdefghijk] & mkfs.ext4 /dev/md0 and im confused as to why its in a degraded state and needs to resync the hot spare? mdadm -D /dev/md0 /dev/md0: Version : 1.2 Creation Time : Thu Nov 21 00:30:50 2024 Raid Level : raid5 Array Size : 87896742912 (81.86 TiB 90.01 TB) Used Dev Size : 9766304768 (9.10 TiB 10.00 TB) Raid Devices : 10 Total Devices : 10 Persistence : Superblock is persistent Intent Bitmap : Internal Update Time : Thu Nov 21 00:39:23 2024 State : clean, degraded, recovering Active Devices : 9 Working Devices : 10 Failed Devices : 0 Spare Devices : 1 Layout : left-symmetric Chunk Size : 512K Consistency Policy : bitmap Rebuild Status : 0% complete

#!/bin/bash SERVER_LIST=/path/to/servers.txt while read REMOTE_SERVER do ssh $REMOTE_SERVER "do_something_cool" done < $SERVER_LIST what happens when one of the servers is down in this code? i have been using hss to start apps in 25 remote computers, but i just ran into one being down and then hss looking for that host and it never moves on. so it's not optimal if one of my computers is offline. will the above code move one to the next host in the server list if it comes across one that's offline? or is there an adjustment to make to this code to achieve that?