Home / user-63694

nsg's questions

Martin Hope
nsg
Asked: 2011-07-05 05:41:18 +0800 CST
  • 1

I need some assistance to create a set of iptable rules to route and restrict usage between interfaces in a bridge (br0).

# brctl show
bridge name bridge id               STP enabled     interfaces
br0           8000.002590387da2     no              eth0
                                                    vnet0
                                                    vnet1

I have enabled net.bridge.bridge-nf-call-ip6tables and net.bridge.bridge-nf-call-iptables (for a description of what i need, see: Firewall on a KVM host, prevent access to VM:s).

I'm not skilled at iptables hacking and need some help, or a point in the right direction. Right now I'm not even sure in what table/chain I'm suppose to work against.

networking bridge iptables
Martin Hope
nsg
Asked: 2011-07-05 01:46:57 +0800 CST
  • 1

I have a Linux machine running KVM with several VM:s, all have public IP:s. For the time being I have everything routed through a bridge (br0) and this works well.

I also need a firewall on the host to restrict access to both the host and the VM:s, I guess we are talking about routing and iptables? I'm not that experienced with iptables/bridging/network stuff and need a point in the right direction.

Any recommendations?

Host: Ubuntu server 11.04, VM: Mixed, Linux and Windows

firewall ubuntu networking kvm-virtualization iptables
Martin Hope
nsg
Asked: 2011-03-20 12:50:57 +0800 CST
  • 2

I'm a little confused. I have a download directory that I want to remove all files older then 30 days with tmpreaper. Just one problem, the directory in question is a separate partition with a lost+found directory, of course I need to keep it so I added --protect 'lost+found', the problem is that tmpreaper outputs:

error: chdir() to directory 'lost+found' (inode 11) failed: Permission denied
(PID 30604) Back from recursing down `lost+found'.
Entry matching `--protect' pattern skipped. `lost+found'

I have tried with other pattern like lost* and so on... I'm running tmpreaper as a non-root user because there is no reason for superuser privileges because I own all files (except lost+found).

Are I'm forced to run tmpreaper as root? Or are my shell-skills not as good as I thought? I guess the problem is:

tmpreaper  will  chdir(2) into each of the directories you've 
specified for cleanup, and check for files matching the 
<shell_pattern> there.  It then builds a list of them,  and
uses that to protect them from removal.

Any thought and/or advice?

The command I'm trying to run is something like

$ /usr/sbin/tmpreaper -t --protect 'lost+found' 30d /mydir 1> /dev/null
error: chdir() to directory `lost+found' (inode 11) failed: Permission denied

Edit:

Redmumba noticed that the return code is still zero, and the files are removed. I must have had some other issues before because nothing was removed when I wrote this post. Anyway it's working now, Thanks.

linux tmpwatch
Martin Hope
nsg
Asked: 2010-12-16 07:13:29 +0800 CST
  • 0

Linux, Ubuntu 10.04.1 LTS

I have a (quite old) server (Dell PowerEdge 1650) with two CPUs. I have used it for over a year without any problems.

One week ago the server crashed, I was unable to find any errors in any logs, i rebooted and everything seemed to work well. Two hours later when i had upgraded the OS i noticed that I could only see one CPU.

$ cat /proc/cpuinfo | grep processor

processor : 0

I rebooted several times, and once, only once the system found two CPUs.

What do you think? Are we talking about broken software or hardware? I can't see anything wrong during boot, BIOS shows what i have "Two 1266 MHz Processors".

One theory is that one CPU is dead, but if that was the case shouldn't BIOS complain? The server was moved two weeks ago, maybe one CPU is not correctly connected to the socket?

I have no idea where to begin to debug this, any ideas?

central-processing-unit linux ubuntu dell-poweredge