I have set up a VPN from a Windows 10 client to a Windows 2019 server. After connecting using rasdial <VPN NAME> <USER NAME> <PASSWORD>
I sucessfully issue a net use <DriveLetter>: \\<Server-Name>\<Path>
. However, with the default setting, the client machine has no more ordinary internet access. So I followed https://docs.microsoft.com/en-us/troubleshoot/windows-server/networking/cannot-connect-to-internet-vpn-server, thus I disabled the 'Use default gateway' on the TCP/IP stack of the client's VPN adapter and added a default route with route -p add 10.11.0.0 mask 255.255.255.0 10.11.0.0
. After applying these changes, the internet works fine again on the client machine and it does still connect successfully to the VPN server. But I can't map network drives anymore, net use
yields system error 67 (network name not found). What can I do?
jamacoe's questions
I tried to set up DNSSEC for a .es domain. The nameservers are on Cloudflare and GoDaddy is the registrar. I wasn't able and then a 'GoDaddy Guide' (chat support) told me that DNSSEC would generally not be available for .es domains, see https://www.godaddy.com/help/about-es-domains-5533. But the map from the ISOC shows Spain as fully operational (https://www.internetsociety.org/wp-content/uploads/2021/06/2021-06-14-2021-06-14.png). Now is DNSSEC in Spain available or not? And if, can someone recommend a registrar who provides that functionallity to their customers?
I have a windows guest vm in virtualbox on a linux host. The base vdi and all snapshots are located on a SSD for performance reasons. A snapshot is taken every night and a rsync backup is made to an external USB disk. When the system crashes once in a while, I have corrupted disks as chkdsk shows me. Then I don't know if the SSD or the backup (or both) are corrupted. For that reason I have a script that evaluates a sha256sum of every .vdi after the backup and stores the values in a file. If a file gets corrupted, the time, date and size are still the same but the checksum differs. This way I can identify if and which of the files is corrupted. If the file on the SSD is corrupted and the backup is not, then I want to restore the backup .vdi to the SSD. Now my question is if I can do that. Will the snapshot chain be fully functional after I restored a .vdi that has childs, i.e. is not the 'current state'? Or is virtualbox altering previous (chained) snapshots at any time? I assume that only the 'current state' is altered, no matter, what I do in the guest (chkdsk /r, sfc /scannow, System Updates etc.). Is that correct?
I am trying to create and install a Let's Encrypt SSL certificate using certbot. It's for a subdomain named private.mydomain.de (on a different server than mydomain.de). Certbot aborts with the following messages:
An unexpected error occurred:
AttributeError: 'module' object has no attribute 'TLSSNI01'
Went to https://letsdebug.net/ and checked the domain in question.
http-01 and DNS-01 tests passed, TLS-ALPN-01 fails with these verbose error messages:
IssueFromLetsEncrypt
ERROR
A test authorization for private.mydomain.de to the Let's Encrypt staging service
has revealed issues that may prevent any certificate for this domain being issued.
Connection refused
DEBUG
Challenge update failures for private.mydomain.de in order
https://acme-staging-v02.api.letsencrypt.org/acme/order/<....>/<....>
acme: error code 400 "urn:ietf:params:acme:error:connection":
Connection refused PublicSuffix
RateLimit
DEBUG
1 Certificates contributing to rate limits for this domain
Serial: <serialnr>
NotBefore: 2020-02-02 22:23:22 +0000 UTC
Names: [finance.mydomain.de mydomain.de]
My plan now is to revoke the certificate contributing to the rate limit:
Used https://censys.io/certificates?q=...serialnr and copied the PEM, inserted it at https://tools.letsdebug.net/cert-revoke, completed the DNS challanges and checked with dig. 'Revoke certificate' then aborts with the error:
An error occured
Unfortunately something went wrong during the process. Usually this is
not recoverable - you will need to start from the beginning.
Error: Request failed with status code 400
Tried it again with same outcome, now I am asking here, what can I do?
UPDATE I renamed the server in nginx.conf from 'private.mydomain.de' to 'consult.mydomain.de'. This subdomain has been used previously on this server and has had a certificate before (which was uninstalled by certbot delete --cert-name ...). With this new old name, Certbot ran without problems, created and installed a certificate.
SOLUTION
After having several more issues with Certbot and more research, I found this solution: On the Oracle Cloud Infrastructure (OCI) with Oracle Linux 7, don't use Certbox, but install certbot-auto:
'''
wget https://dl.eff.org/certbot-auto
sudo mv certbot-auto /usr/local/bin/certbot-auto
sudo chown root /usr/local/bin/certbot-auto
sudo chmod 0755 /usr/local/bin/certbot-auto
sudo /usr/local/bin/certbot-auto certonly --standalone
'''
From: https://blogs.oracle.com/developers/free-ssl-certificates-in-the-oracle-cloud-using-certbot-and-lets-encrypt
I was able to create and install all desired certificates.
I have the dns for a domain on GoDaddy and the MX configured for Gmail. All set up ok with spf, dkim and dmarc, and all passes all online tests, beside: intodns.com reports this error for the domain and marks it as severe:
Reverse MX A records (PTR) ERROR: No reverse DNS (PTR) entries. The problem MX records are: 27.4.250.142.in-addr.arpa -> no reverse (PTR) detected You should contact your ISP and ask him to add a PTR record for your ips
I have talked to gsuite tech support and they said I should ask Godaddy. At Godaddy they said they don't support rDNS as it was not required. Now who is responsible to set up this entry for me?