I have old appliances that either do not support TLS or only support TLS 1.0.
Can Nginx translate between these incompatible devices using only HTTP or TLS 1.0 and endpoints that use TLS 1.3?
I need the mpt2sas drivers to get Centos8 to work with my servers. Thanks to them using the rhel nutered kernel the device id's have been removed and wont load with out using a dd disk. I have both maas and openstack ironic/image service for openstack. In order to get those drivers back on the images that those 2 systems build/upload as far as I can tell I need either a custom vanilla rpm with the proper drivers or to find a way to get those build systems to pull the dd disk in during build time.
I am not sure which option would be more realistic to accomplish. maas has the ks boot dd option which i was not able to get to work when using packer-maas I haven't had much experience with packer or ks so it may be something I did wrong.
The other option I had no issues making the kernel but am at a loss on how to build the rpm of it as all the instructions I have found were from the 2.6 kernel era. I was expecting to have to use a local rpm repo to mirror the centos8 repo and make my vanilla kernel be listed as the latest of the kernel series.
Any suggestions on how to make this work would be greatly appreciated.
I now have two different sizes of emac's power supplies and both have 2 extra pairs of wires, Red and black as well as yellow and black. On the model above they both have 2pin push connectors with wings slimier to a 3 pin fan header on the other one on pair is like that while the other has a different kind of rounded connector. I have never been able to find a manual to explain what they are. the only thing I could think of was indicator lights for if a power supply went bad.
I have set up the catalyst and tested with standard bonding to work normally. bond+bridge had no issues. I then recreated using openvswitch and set bond0 to balance-tcp the 2ndary port is now always down unless the primary is unplugged. I verified STP is not running on the etherchannel.
Any thoughts why it would be down?
---- bond0 ----
status: active negotiated
sys_id: 00:25:90:87:97:9c
sys_priority: 65534
aggregation key: 2
lacp_time: fast
slave: enp4s0: current attached port_id: 3 port_priority: 65535 may_enable: true
actor sys_id: 00:25:90:87:97:9c
actor sys_priority: 65534
actor port_id: 3
actor port_priority: 65535
actor key: 2
actor state: activity timeout aggregation synchronized collecting distributing
partner sys_id: 00:08:7c:27:3c:00
partner sys_priority: 32768
partner port_id: 2057
partner port_priority: 32768
partner key: 1
partner state: activity timeout aggregation synchronized collecting distributing
slave: enp5s0: current detached port_id: 2 port_priority: 65535 may_enable: false
actor sys_id: 00:25:90:87:97:9c
actor sys_priority: 65534
actor port_id: 2
actor port_priority: 65535
actor key: 2
actor state: activity timeout aggregation
partner sys_id: 00:08:7c:27:3c:00
partner sys_priority: 32768
partner port_id: 2061
partner port_priority: 32768
partner key: 4097
I installed the latest fail2ban from centos/epel I have added the ssh enabled option in jail.local. I have tried with action and banaction = firewallcmd-ipset neither made any difference. iptables-multi was originally in the config and I changed that after i noticed it wasnt banning. I have tried listing iptables rules as well as firewall-cmd --list-all-zones and nothing is listed. also the ban log has a couple of already banned messages in it.
NOTICE [sshd] 61.174.51.204 already banned
I have been looking around and found the information confusing as best. Is there a way to have a server "recieve" the /64 ipv6 block from the isp and then use dhcp or something to assign it out to the local machines so that
1) dns entries are correct for ipv6 addresses? Im sure a script needs to be written so that the external dns host for the domain can be updated as the ns for the local domain shifts around.
2) internal machines can be assigned addresses in a logical manner as well as management from a server can be done. I understand that the addresses will/can change due to isp. I am trying to find a way for those dynamic addresses to be managed/assigned in a straightforward manner
I am running a freeipa server in centos 7 that I hope to be able to have the dns properly updated from/through. but if there is a better tool out there that I can find a way to integrate in to freeipa that would work as well.
I just did a fresh centos7 and fedora 20 install on 2 systems. I have several current systems running on the network and can connect to an existing nfs share no problems. when any system triest to connect to the centos7 for rpc or nfs they get rpc errors. "mount.nfs4: mount(2): No route to host" for example. list rpc on the server and it lists all services remotely and it errors. other applications have no issues connecting to the centos7 system.
I have verified it has all packages installed needed for nfs and the services state they are started with pids. rpcbind does not visibally list as being bound to localhost. I can mount the drive locally no issues. If I do showmount -e = "clnt_create: RPC: Program not registered" on both centos7 and fedora 20. I have flushed all firewall rules and set selinux to permissive.
Any thoughts would be greatly appriciated.
I am trying to get my ipa certificate signed by openca and its getting rejected due to hostname.
The following hostnames were rejected because the system couldn't link them to your
account, if they are valid please verify the domains against your account.
Rejected: Certificate Authority
does any one know how to either generate the certificates manually so all the information can be included or if there is some setting I am missing that is causing this error on the initial install of the ipa server.
host is centos 6.3 I have installed ipa-server with dns
I have a openvz server that has 2 nics I need 1 for ethernet and the other explisitly for nfs traffic.
eth0 goes to the lan/internet currently doesnt have ipv6 but will be getting a static ip soon. eth1 is the private nfs lan ipv6 is optonal for now.
venet0-00 is up on boot, it doesnt seem to be used though.
veth1.0 goes up when I turn a CT on. neither have ipv4 addresses and I havent been able to match up what the docs and this system to enable trafic on eth1.
on the CT side it shows as venet venet0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 -00 inet addr:127.0.0.1 P-t-P:127.0.0.1 Bcast:0.0.0.0 Mask:255.255.255. 255
venet0:0 Link encap:UNSPEC HWaddr 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 -00 inet addr:10.1.11.254 P-t-P:10.1.11.254 Bcast:10.1.11.254 Mask:255.255 .255.255 UP BROADCAST POINTOPOINT RUNNING NOARP MTU:1500 Metric:1
I would appriciate help sorting it out. OpenVZ multiple networks on CTs is basically what I want to do but im missing either how to create venet1 if its needed, or how they routed the trafic from the 2nd nic to the 2nd CT device
I had been copying data from my pool so that I could rebuild it with a different version so that I could go away from solaris 11 and to one that is portable between freebsd/openindia etc. it was copying at 20mb a sec the other day which is about all my desktop drive can handle writing from the network. suddently lastnight it went down to 1.4mb i ran zpool status today and got this.
pool: store
state: ONLINE
status: One or more devices has experienced an unrecoverable error. An
attempt was made to correct the error. Applications are unaffected.
action: Determine if the device needs to be replaced, and clear the errors
using 'zpool clear' or replace the device with 'zpool replace'.
see: http://www.sun.com/msg/ZFS-8000-9P
scan: none requested
config:
NAME STATE READ WRITE CKSUM
store ONLINE 0 0 0
raidz1-0 ONLINE 0 0 0
c8t3d0p0 ONLINE 0 0 2
c8t4d0p0 ONLINE 0 0 10
c8t2d0p0 ONLINE 0 0 0
it is currently a 3 x1tb drive array. what tools would best be used to determine what the error was and which drive is failing.
per the admin doc
The second section of the configuration output displays error statistics. These errors are divided into three categories:
READ – I/O errors occurred while issuing a read request.
WRITE – I/O errors occurred while issuing a write request.
CKSUM – Checksum errors. The device returned corrupted data as the result of a read request.
it was saying low counts could be any thing from a power flux to a disk event but gave no suggestions as to what tools to check and determine with.
I have been trying to wrap my head around this one. I have not seen a decent yes/no or how answer yet.
I have a solaris 11 zfs server I want to host 2 or 3 vm's on it and have them use a loop network to connect to nfs on the solaris box for main storage.
It appears that the xen xVM componants are installed on the system and I would be able to host from there but xvm-gui and xvm packages seems to be empty, no files in it but virt-manager and xvmstore do. the oracle vm server seems to be a bare metal solution. I am starting down the virtualbox road but would rather use xen.
Any Documentation on how its setup on 11 express or a difinitive yes/no is appriciated.