Re: [CentOS] bad udp cksum
I have seen such and issue but it depends on the environment structure. I have seen it mostly on VM's and it was resolved. The hardware and software details of the setup might help to understand what's causing it. Eliezer Eliezer Croitoru Linux System Administrator Mobile: +972-5-28704261 Email: elie...@ngtech.co.il -Original Message- From: CentOS [mailto:centos-boun...@centos.org] On Behalf Of Laszlo Danielisz Sent: Thursday, August 9, 2018 9:53 PM To: centos@centos.org Subject: [CentOS] bad udp cksum Hi, Recently I'm noticing an interesting issue. My CentOS servers are trying to send logs to a logging server via 514/udp, however I'm not receiving anything. I did the following on CentOS *tcpdump -vvv -nn udp -i esn160 port 514* In another session on the same server: *nc syslog-server -u 514* tcpdump started to show me messages like: *[bad udp cksum 0x3ce9 -> 0xb0f5!] SYSLOG, length: 172* After some research I disabled TCO (ethtool -K ens160 tx off rx off), now tcpdump shows: *[udp sum ok] [|syslog]* And I'm also receiving the logs. Yay! I have the same issue on multiple servers with CentOS versions 7.3.1611, 7.4.1708 & 7.5.1804. I'm having the issue no matter if it is a physical or virtual server (they also use different hardware and NIC's) Of course I could run ethtool every time a server starts but I think there should be a better solution. Also I enjoy having TCO giving some rest to the CPUs. Did anyone find a solution for this? Thanks! Laszlo ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] VNC into CentOS 7.4
This is a question should be asked about any VMware system and not just vmplayer. This issue exists on any version with the combination of either RDP or VNC for a very long time when using they GUI such as vsphere client. Eliezer Eliezer Croitoru Linux System Administrator Mobile: +972-5-28704261 Email: elie...@ngtech.co.il -Original Message- From: CentOS [mailto:centos-boun...@centos.org] On Behalf Of Jerry Geis Sent: Monday, September 25, 2017 21:52 To: CentOS mailing list <centos@centos.org> Subject: [CentOS] VNC into CentOS 7.4 When I VNC into 7.4 everything is fine until I run vmplayer (VMware). The vmplayer runs but when I type on the console for vmplayer which is also running a centos image I get multiple key presses - sometimes. Its not everytime - but enough to be annoying. How do I take care of that ? Jerry ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS nDPI kmod avaliable for testing
I have been working for quite some time building nDPI iptables module from vel21ripn for many Linux distributions and I just finished couple basic tests on the module for CentOS 7 and I am quite satisfied. I am looking for other CentOS 7 admins who will want to test this iptables module. More details are at: https://github.com/vel21ripn/nDPI/issues/18 Thanks, Eliezer Eliezer Croitoru Linux System Administrator Mobile: +972-5-28704261 Email: elie...@ngtech.co.il ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ALPN and Http/2, CentOS 7.4
What do you need to serve? Would you think about using Caddy(https://caddyserver.com/) ? It can use the fastcgi interface for php and other related levels of code. Eliezer Eliezer Croitoru Linux System Administrator Mobile: +972-5-28704261 Email: elie...@ngtech.co.il -Original Message- From: CentOS [mailto:centos-boun...@centos.org] On Behalf Of SternData Sent: Sunday, August 27, 2017 02:05 To: CentOS mailing list <centos@centos.org> Subject: [CentOS] ALPN and Http/2, CentOS 7.4 Now that 7.4 CR has delivered OpenSSL 1.0.2, I should be able to serve http/2 pages to Chrome, but I still see messages that ALPN is not enabled. OpenSSL 1.0.2 is installed: $ rpm -qa |grep openssl openssl-libs-1.0.2k-8.el7.x86_64 openssl-1.0.2k-8.el7.x86_64 But https://tools.keycdn.com/http2-test says "www.stevenstern.me" supports http 2 but ALPN is not supported. Ideas? Does anything need to be explicitly enabled for ALPN? As I mentioned, the http2 stuff seems to be working. -- -- Steve ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS6, IP6tables, Routing, TPROXY (squid34 epel package)
What happens if you remove the iptables rules: -A PREROUTING -i br0 -p tcp -m socket -j DIVERT -A PREROUTING -i br0 -p tcp -d 2a02:1788:2fd::b2ff:5302 --dport 80 -j TPROXY --tproxy-mark 0x1/0x1 --on-port 3129 Is the client able to access this ipv6 address? Eliezer Eliezer Croitoru Linux System Administrator Mobile: +972-5-28704261 Email: elie...@ngtech.co.il -Original Message- From: CentOS [mailto:centos-boun...@centos.org] On Behalf Of Walter H. Sent: Tuesday, August 8, 2017 21:35 To: CentOS mailing list <centos@centos.org> Subject: [CentOS] CentOS6, IP6tables, Routing, TPROXY (squid34 epel package) Hello, how do achieve this: how must files /etc/sysconfig/network-scripts/ look like to be the same as entering the following two commands ... ip -f inet6 rule add fwmark 1 lookup 100 ip -f inet6 route add local ::/0 dev lo table 100 is there the localhost device lo correct, or does it have to be br0? e.g. a file route-br0 with 192.168.1.0/24 via 10.10.10.1 dev br0 does the routing to the segment 192.168.1.0/24 via 10.10.10.1 /etc/sysconfig/ip6tables *mangle :PREROUTING ACCEPT [0:0] :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [0:0] :POSTROUTING ACCEPT [0:0] -N DIVERT -A DIVERT -j MARK --set-mark 1 -A DIVERT -j ACCEPT -A PREROUTING -i br0 -p tcp -m socket -j DIVERT -A PREROUTING -i br0 -p tcp -d 2a02:1788:2fd::b2ff:5302 --dport 80 -j TPROXY --tproxy-mark 0x1/0x1 --on-port 3129 COMMIT *filter :INPUT DROP [0:0] :FORWARD DROP [0:0] :OUTPUT DROP [0:0] -A INPUT -i br0 -m tcp -p tcp --dport 22 -m state --state NEW -j ACCEPT -A INPUT -i br0 -m tcp -p tcp --dport 80 -m state --state NEW -j ACCEPT -A INPUT -i br0 -m tcp -p tcp --dport 443 -m state --state NEW -j ACCEPT -A INPUT -i br0 -m tcp -p tcp --dport 3129 -m state --state NEW -j ACCEPT the goal should be, that for specific IPv6 hosts (destination), the packets are redirected through the proxy running on the router box, other destinations should be just forwarded without proxy ... LAN port = br0 (dual stack), HE tunnel port = sit1 (ipv6 only), WAN port = eth1 (ipv4 only) Thanks, Walter ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Errors on an SSD drive
I have yet to see a SSD read\write error which wasn't related to disk issues like a bad sector but the controller might have an issue with the drive. To verify it you will need to burn some read\write IOPS of the drive but if it's under warranty then it's better to verify it now then later. Eliezer Eliezer Croitoru Linux System Administrator Mobile: +972-5-28704261 Email: elie...@ngtech.co.il -Original Message- From: CentOS [mailto:centos-boun...@centos.org] On Behalf Of Robert Moskowitz Sent: Wednesday, August 9, 2017 17:03 To: CentOS mailing list <centos@centos.org> Subject: [CentOS] Errors on an SSD drive I am building a new system using an Kingston 240GB SSD drive I pulled from my notebook (when I had to upgrade to a 500GB SSD drive). Centos install went fine and ran for a couple days then got errors on the console. Here is an example: [168176.995064] sd 0:0:0:0: [sda] tag#14 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168177.004050] sd 0:0:0:0: [sda] tag#14 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168177.011615] blk_update_request: I/O error, dev sda, sector 17066160 [168487.534510] sd 0:0:0:0: [sda] tag#17 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168487.543576] sd 0:0:0:0: [sda] tag#17 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168487.551206] blk_update_request: I/O error, dev sda, sector 17066160 [168787.813941] sd 0:0:0:0: [sda] tag#20 FAILED Result: hostbyte=DID_BAD_TARGET driverbyte=DRIVER_OK [168787.822951] sd 0:0:0:0: [sda] tag#20 CDB: Read(10) 28 00 01 04 68 b0 00 00 08 00 [168787.830544] blk_update_request: I/O error, dev sda, sector 17066160 Eventually, I could not do anything on the system. Not even a 'reboot'. I had to do a cold power cycle to bring things back. Is there anything to do about this or trash the drive and start anew? Thanks ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 7.3 and e1000e
What I did on couple of my CentOS boxes is: - use a bridge which is connected to the specific nic(will always look as up after boot) - Run a cron script that checks if the nic state is "NO-CARRIER" or other weird situations like no IP address and try to run ifdown X-nic and then ifup X-nic. Depends on the hardware and situation you might need to choose what fits youe environment as a solution instead of fixing the whole CentOS distro. All The Bests, Eliezer ---- Eliezer Croitoru Linux System Administrator Mobile: +972-5-28704261 Email: elie...@ngtech.co.il -Original Message- From: CentOS [mailto:centos-boun...@centos.org] On Behalf Of Jerry Geis Sent: Saturday, July 8, 2017 05:00 To: CentOS mailing list <centos@centos.org> Subject: [CentOS] CentOS 7.3 and e1000e Hi All - I have a box running the above. Power was lost long enough that UPS did not work. When power came back on the C7 box boots way faster than the switch and resulted in no network. power cycling the C7 box resulted in network. This even happened a second time. The only way to get the box back was to power cycle. the box is remote and no keyboard and mouse connected. Any thoughts on why the e1000e would not talk to the switch ? The switch is an unmanaged linksys - could not get the model. It auto negotiates to 1G/full. Thanks, for any thoughts. Jerry ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I want to connect to a l2tp server from centos.
Thanks! Eliezer Eliezer Croitoru Linux System Administrator Mobile: +972-5-28704261 Email: elie...@ngtech.co.il -Original Message- From: centos-boun...@centos.org [mailto:centos-boun...@centos.org] On Behalf Of Gordon Messmer Sent: Monday, September 21, 2015 9:46 PM To: CentOS mailing list <centos@centos.org> Subject: Re: [CentOS] I want to connect to a l2tp server from centos. On 09/20/2015 05:50 PM, Eliezer Croitoru wrote: > I do not have any security issue in this network. > I need to connect to a remote network on a secure network. > The options are pptp or l2tp(no ipsec encryption) so I do want to use > l2tp like in (lac\lns) and I am looking for a client for CentOS. The client is "xl2tpd", and you can find it in EPEL. Client setup is described here: http://www.xinotes.net/notes/note/1524/ ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Reliable way of having both LAN and WIFI on headless box
You could say the same thing about computers in general: I hate them, they automated many tasks in life and took many jobs out of the market!. Eliezer Eliezer Croitoru Linux System Administrator Mobile: +972-5-28704261 Email: elie...@ngtech.co.il -Original Message- From: CentOS [mailto:centos-boun...@centos.org] On Behalf Of Gary Stainburn Sent: Monday, January 16, 2017 11:34 AM To: centos@centos.org Subject: Re: [CentOS] Reliable way of having both LAN and WIFI on headless box On Friday 13 January 2017 12:40:33 Gianluca Cecchi wrote: > On Fri, Jan 13, 2017 at 12:33 PM, Gary Stainburn <g...@ringways.co.uk> > > wrote: > > Also, it was suggested that I use nmcli in a cronjob to re-activate > > it if it drops. I can check to see if it's still active by > > 'grep'ing the IP address, but I don't know the nmcli to re-activate > > an existing WIFI connection. > > > > Can anyone help here too, just in case I can't fix the real problem > > I have a wireless connection named "AndroidAP-notepro" > > So I can run > > # nmcli con show --active | grep AndroidAP-notepro AndroidAP-notepro > 62d0fc1f-91b8-4c07-baf0-323cf1c108d1 802-11-wireless > wlp3s0 > # > > You can check exit code and number of lines. > If number of lines is 0, it means the connection is not active and you > can try to activate it and get exit code of the command > > # nmcli con up AndroidAP-notepro > > Also, it could be useful to know what value you have for > "connection.autoconnect" for this connection. > If it is yes, in theory it should automatically reactivate when it > returns available. > > In my case my AndroidAP-notepro connection is to be manually activated > and in fact I have > > # nmcli con show AndroidAP-notepro | grep connection.autoconnect: > connection.autoconnect: no > # > > In case you also have autoconnect set to no, If you don't have a gui > you should be able to set it up with > > # nmcli con mod AndroidAP-notepro connection.autoconnect yes > > HIH, > Gianluca Hi Gianluca Thanks for this. I will put this into a cron job to bring the link back up if it drops. However, as you can see it shouldn't ne needed. One more reason I hate NetworkManager [root@lcomp2 ~]# nmcli con show RW-WIFI |grep connection.autoconnect connection.autoconnect: yes connection.autoconnect-priority:0 connection.autoconnect-slaves: -1 (default) [root@lcomp2 ~]# Gary ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Reliable way of having both LAN and WIFI on headless box
NetworkManger should work pretty nice and good as required. Just run the right cronjob every minute to make sure the connection is up or down and find out if it's possible to reconnect. NetworkManager is kind of does all you need automatically so you should not do anything unless there is a technical issue. Eliezer Eliezer Croitoru Linux System Administrator Mobile: +972-5-28704261 Email: elie...@ngtech.co.il -Original Message- From: CentOS [mailto:centos-boun...@centos.org] On Behalf Of Gary Stainburn Sent: Tuesday, January 10, 2017 11:25 AM To: CentOS mailing list <centos@centos.org> Subject: Re: [CentOS] Reliable way of having both LAN and WIFI on headless box On Tuesday 10 January 2017 08:53:17 John R Pierce wrote: > On 1/9/2017 7:11 PM, fred roller wrote: > > On Mon, Jan 9, 2017 at 12:04 PM, Frank > > Cox<thea...@melvilletheatre.com> > > > > wrote: > >> That sounds like a weak signal from your wifi transmitter. > > > > Or signal interference. Where is the antennae located on the server? > > Ran into signal issues with antennae which were tucked behind the > > server before. > > indeed, the back of a desktop or server system, sitting on the floor > (or in a rack) surrounded by piles of cables, is the worst possible > place for a 2.4GHz or 5.7GHz antenna The server is in a rack, but the dongle is plugged in the front and is 5m from the HP Procurv AP that covers the whole of the first floor. A key point I thought I had included in the OP is that this is mostly a problem on startup. It does sometimes drop off during use, but mainly the problem is not being able to activate it on startup. I am a traditionalist and long for the days before NetworkManager when networks were much simpler to admin, and much more stable. Is it possible to remove NetworkManager and go back to the good old days, and still have WIFI work properly? ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS-virt] I would like to verify what are the available options for RAM storage.
Hey All, I am not sure what the status of the current technology in the market and was wondering if it would be fine to ask specifically here. I am using KVM for a time now and it's great but I have couple doubts. When I am running a test on a specific VM it's mostly on 10k SPINNING disks and they seem to survive like forever now(years...). But I need to run tests on RAM only. Until now what I did was to create a tmpfs, shutdown the VM, move the disk image to the tmpfs, change the disk location on the VM settings and then turn the machine on again when it's on RAM(I cannot 100% control swap since it's the kernel doings..). I am considering what to do next and the options are: - automate the process of migration from one storage to another - buy more ram - buy a very fast SSD? - a combination of RAM + SSD(SWAP) But I do not know exactly what to do. Every choice have it's price and it's unclear to me if OVIRT is the same as RHEV an if not then is this function available there? Eliezer ___ CentOS-virt mailing list CentOS-virt@centos.org https://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS] Run Now no longer works in Messages Filters of Thunderbird 38.6
Did you had the chance to verify what is the selection of the "run selected fukter(s) on:" if it states "choose a folder" then it's a good reason to not be able to use the "run now". It's a degradation from my point of view. Eliezer On 06/03/2016 21:52, Bernard Lheureux wrote: Hi all, Since the last update of Thunderbird to 38.6, the button 'Run Now' of the 'Mail Filters' option is no longer effective and appears always grayed in my CentOS 7... Anybody has the same behavior ? ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Squid as interception HTTPS proxy under CentOS 7
Hey There, I think it would be better asked at squid-users list: - http://www.squid-cache.org/Support/mailing-lists.html#squid-users - squid-us...@lists.squid-cache.org Eliezer Croitoru On 04/02/2016 15:24, C. L. Martinez wrote: Hi all, I am trying to configure squid as a interception HTTPS proxy under CentOS 7. At every https request, I am receiving a certificate error. My current config for squid is: # My localnet acl localnet src 172.22.55.0/28 acl localnet src 172.22.58.0/29 acl SSL_ports port 443 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT # # Recommended minimum Access Permission configuration: # # Deny requests to certain unsafe ports http_access deny !Safe_ports # Deny CONNECT to other than secure SSL ports http_access deny CONNECT !SSL_ports # Only allow cachemgr access from localhost http_access allow localhost manager http_access deny manager # We strongly recommend the following be uncommented to protect innocent # web applications running on the proxy server who think the only # one who can access services on "localhost" is a local user #http_access deny to_localhost # # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS # # Example rule allowing access from your local networks. # Adapt localnet in the ACL section to list your (internal) IP networks # from where browsing should be allowed http_access allow localnet http_access allow localhost # And finally deny all other access to this proxy http_access deny all # Squid normally listens to port 3128 #http_port 3128 # Uncomment and adjust the following to add a disk cache directory. #cache_dir ufs /var/spool/squid 100 16 256 # Leave coredumps in the first cache dir coredump_dir /var/spool/squid # # Add any of your own refresh_pattern entries above these. # refresh_pattern ^ftp: 144020% 10080 refresh_pattern ^gopher:14400% 1440 refresh_pattern -i (/cgi-bin/|\?) 0 0% 0 refresh_pattern . 0 20% 4320 # My custom configuration http_port 8079 http_port 8080 intercept https_port 8081 ssl-bump intercept generate-host-certificates=on dynamic_cert_mem_cache_size=4MB key=/etc/squid/custom.private cert=/etc/squid/custom.cert # Anonymous proxy forwarded_for off request_header_access Allow allow all request_header_access Authorization allow all request_header_access WWW-Authenticate allow all request_header_access Proxy-Authorization allow all request_header_access Proxy-Authenticate allow all request_header_access Cache-Control allow all request_header_access Content-Encoding allow all request_header_access Content-Length allow all request_header_access Content-Type allow all request_header_access Date allow all request_header_access Expires allow all request_header_access Host allow all request_header_access If-Modified-Since allow all request_header_access Last-Modified allow all request_header_access Location allow all request_header_access Pragma allow all request_header_access Accept allow all request_header_access Accept-Charset allow all request_header_access Accept-Encoding allow all request_header_access Accept-Language allow all request_header_access Content-Language allow all request_header_access Mime-Version allow all request_header_access Retry-After allow all request_header_access Title allow all request_header_access Connection allow all request_header_access Proxy-Connection allow all request_header_access User-Agent allow all request_header_access Cookie allow all request_header_access All deny all # SSL Bump Config always_direct allow all ssl_bump server-first all sslproxy_cert_error deny all sslproxy_flags DONT_VERIFY_PEER I have tried disabling "sslproxy_cert_error" and "sslproxy_flags" directives, without luck. Any ideas about what am I doing wrong? Thanks. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] snat packet going out a bridge
On 20/01/2016 19:55, Steve Clark wrote: So I want traffic coming in eth5 with 10.10.0.x addresses to be source natted to 192.168.100.3. But my iptables nat statement never gets hit. Chain POSTROUTING (policy ACCEPT 172 packets, 31384 bytes) pkts bytes target prot opt in out source destination 0 0 SNAT all -- * xbrdg0 0.0.0.0/0 0.0.0.0 to:192.168.100.3 29 1933 MASQUERADE all -- * tun+ 0.0.0.0/0 0.0.0.0/0 # ping -I 10.10.0.1 8.8.8.8 First you should try to match without SNAT at all with a simple log target and see if it matches. I would start with: iptables -t nat -I POSTROUTING -s 10.0.0.1 -o xbrdg0 -j LOG --log-prefix "Should-SNAT: " --log-level 4 And then: iptables -t nat -I POSTROUTING -s 10.0.0.1 -o xbrdg0 -j SNAT --to-source 192.168.100.3 And see what happens. Also there might be something about this bridge settings and it maybe needs the "-o eth1" but it would be a bit weird. Eliezer ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] routing with 2 public ips
On 30/12/2015 18:37, Joey wrote: Hello, i follow your discussion. The first 2 posts using multiple default routes solve my problem perfect. Thank you all. J Thanks for clearing it out Joey! ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] routing with 2 public ips
On 30/12/2015 10:22, Paul R. Ganci wrote: On 12/30/2015 12:44 AM, Eliezer Croitoru wrote: "I want that the request of incoming traffic dont use the default gateway. Incoming traffic sould be answered using the gateway of the incoming device " I'm sorry but I have been following this thread for a while and everything that Gordon (and I mentioned in my first post) is accurate. This is a routing problem not a NATing problem. Even if it can be handled via NATing (which I serious doubt) it would require ridiculous server resources which are not necessary. Please look at our links carefully, This problem is simply handled by proper routing rules. Whether those are implemented via my suggested generic linux rules or via the Redhat specific rules Gordon suggested that is the proper way to handle the problem. I too am puzzled by what you are trying to do here otherwise. And just for the record I have a server with two interfaces on the same broadcast network and did exactly what I showed in the link I sent and got exactly what I wanted. From this single sentence you seem to want to do what either Gordon or I suggested in the links we sent. Why do you insist on playing with iptables when that is not the proper tool for this job? I do not insist on anything else then there are missing things in the picture... it is that simple nothing more then that. If the thread poster will bother to clear the picture then I will be able to understand. I do not want anything and I do not need anything for me, my servers and routing works just great but the thread started by someone which is not here anymore so if everything works for me and if everything works for you and Gordon I really do not think any more time or words should be invested in something that is unclear at-least to me. Eliezer ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] routing with 2 public ips
On 28/12/2015 22:47, Gordon Messmer wrote: Can you explain what you mean? Not only am I not assuming that, I can hardly conceive of any situation in which a host will receive traffic for its own gateway. ... Basic 1:1 NAT ... you have two gateways while you have two ip addresses or one on the interface. Just to illustrate the issue: AWS instance with two interfaces which have two ip addresses NATTED to them by AWS front tier using some kind of virtual gateway. Eliezer * Now I am sure that you didn't understood the situation\network as I am! ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] routing with 2 public ips
I may not understood\interpreted the scenario pretty well. I will try again: "i have a server with 2 public ips on 2 devices." He has two servers or two gateways or both?? "I want that the request of incoming traffic dont use the default gateway. Incoming traffic sould be answered using the gateway of the incoming device " How to interpret this sentence??? The scenario I can think of is that these servers have more then one gateway and in this case it's really unclear to me if the gateways are serving the same networks or not. From what I understood in this situation he wants to prevent a reverse path routing or in another words he wants the connection that comes from some host and gateway(which is unknown) to be returned\continued using this same gateway. So it's really unclear(to me) if it's routing includes two gateways for the same network and some routing protocol that allows that or another option. In any case since he spoke about "incoming" traffic which to my basic and simple understanding means the whole Internet he cannot use basic routing settings to do that *unless* he can predict that all incoming traffic is going to be from a specific gateway. Again I understood that he doesn't know which gateway the traffic will come from but he wants to preserve the reverse path to them. If he will bother to clear it out I will continue to respond and if not... well it's clear that there are couple possibilities to the scenario and I was referring to a specific one. So in any case I will add that in the past the linux kernel implemented a routing cache which was removed somewhere in the 3.X versions and while it existed it was so that if someone was contacting a server that had this kernel the routing cache was causing a weird scenario which the kernel would route traffic using the same gateway as long as the cache entry exists. However in the kernels which this cache was removed a Packet By Packet routing decision is being made and unless you can know who are all your clients you cannot predict their routing path using a simple static linux routing setup and you would be required to choose some other alternative. --- I don't know really who Dr Robert Anthony is but his words are true only for specific and understood scenarios which I can understand and interpret. The situation is that I still do not understand it and I tried to answer a specific scenario which I think applies to couple of them. All The Bests, Eliezer On 29/12/2015 22:39, Gordon Messmer wrote: Now, if you had a host with just one address that was behind two different NAT routers, then that would be a configuration that might require marking connections based on the MAC address of incoming packets, and applying rules based on those marks. However, such a configuration is broken in several different ways, and connection marking just digs that hole deeper. Don't do this. At some point, I'd remind you of the advice of Dr Robert Anthony: "“If you find a good solution and become attached to it, the solution may become your next problem." ___ ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] routing with 2 public ips
I still do not understand something. The thread started with: i have a server with 2 public ips on 2 devices. I want that the request of incoming traffic dont use the default gateway. Incoming traffic sould be answered using the gateway of the incoming device Could i realize this with firewalld? Or directly iptables? ##END OF QUOTE Which means he has 1 server with two gateway devices which each has it's own broadcast space\network. It's not clear to me if there are two gateways in the same broadcast\network or not. if it's on the same network then he must have some routing rules and the issue is not about a specific src address but about a connection.. Now with both of these devices there he has an issue. He sure needs to use basic routing skills to make it work using some metrics if he wants a static routing setup... but when it becomes almost asymmetric it is possible to have a "reverse-path" routing situation which is because the server has two default gateways and not one. For this situation he cannot utilize the source address but only the source mac address unless these 2 devices are some sort reverse proxies which in this case do not require any routing settings at all and not even a default gateway or direct Internet access. So from what I understood he will need to do some connection marking by the MAC address if these two devices are two routers which does NAT. Eliezer On 28/12/2015 09:22, Gordon Messmer wrote: No, but you don't have to. In the scenario presented, two links with two IP addresses in different broadcast domains, traffic that is sent in response to requests received on the second link/IP address will have the second IP address in the source address field. You can use that as the rule. Remember that Ethernet and IP are separate technologies. You can make routing policies entirely in the IP layer without mixing in Ethernet stuff like MAC addresses. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] routing with 2 public ips
On 27/12/2015 22:49, Gordon Messmer wrote: While that's true, you still have to select the default route using "ip rule". And since you can do that using the source address for outgoing packets, there's no reason to mark them. It's completely redundant. Can you match the MAC address?? in ip rule? If so it's much simpler then I was estimating. Eliezer ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] routing with 2 public ips
This is half true. Depends on the application or the way that the network traffic is flowing you could use some iptables rules to mark a connection for example by the source MAC address per new connections which would be a specific router and by that mark the connection, then in the routing level decide which default gateway to use for this specific connection. You can take a look at an example that I wrote and modify it to use a MAC address match instead of NFQUEUE at: http://wiki.squid-cache.org/EliezerCroitoru/Drafts/MwanLB#iptables_rules_example The idea is that you mark a new connection from a specific router with a unique mark and then restore the connection mark to force a specific routing table on this mark(IE connection) Hope it Helps, Eliezer On 25/12/2015 22:28, Paul R. Ganci wrote: On 12/25/2015 12:44 PM, Joey wrote: i have a server with 2 public ips on 2 devices. I want that the request of incoming traffic dont use the default gateway. Incoming traffic sould be answered using the gateway of the incoming device Could i realize this with firewalld? Or directly iptables? No you can not do that via firewalld or iptables. The problem is you have to tell the packets to go out the proper interface which must be done via routing tables. For that purpose you need ip route. I suggest you take a look at https://kindlund.wordpress.com/2007/11/19/configuring-multiple-default-routes-in-linux/ This link provides a very thorough description of what must be done. Just a warning is that you will want your routing tables to be maintained across system boots. I put my routes for my bridged interfaces into: /etc/sysconfig/network-scripts/route-br1 /etc/sysconfig/network-scripts/route-br2 You can put your routes into similar files... just replace the br1/br2 with your appropriate interface names. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] MariaDB 10.X Master-Slave Replication
Try: maria-disc...@lists.launchpad.net They should have a very clear answer. Also have you tried this: https://mariadb.com/kb/en/+search/?q=replication=1=kb=Search https://mariadb.com/kb/en/mariadb/setting-up-replication/ All The Bests, Eliezer On 12/11/2015 13:09, melkor.kp wrote: Hi, I am configuring master-slave replication in a MariaDB 10.X over Centos 7.1 and I am having some troubles. When I configure the slave I use the following directies in my.cnf: ... master-host = 192.168.122.2 master-user = slave_user master-password = qwerty master-connect-retry= 60 ... But is seems that the daemon doesn't like them and it refuses to start. Does anybody know if those directives have been removed on that version? Setting up them with the following mysql commands inside works. mysql> slave stop; mysql> CHANGE MASTER TO MASTER_HOST='*192.168.122.2*', MASTER_USER='*slave_user*', MASTER_PASSWORD='*qwerty*', MASTER_LOG_FILE='*mysql-bin.03*', MASTER_LOG_POS=*11128001*; mysql> slave start; mysql> show slave status\G; Cheers, Roberto Nebot ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-virt] kvm-qemu-ev in testing
May I ask what is the difference between the kvm-qemu package from Base CentOS 7 repo? Thanks, Eliezer On 08/10/2015 02:07, Karanbir Singh wrote: hi, kvm-qemu-ev from virt7-kvm-common-release is now signed and available on buildlogs.centos.org for testing, the corresponding release file is available in the centos/7/extras/ location on buildlogs as well. Once we have some testing, we can push and announce via mirror.centos.org for wider adoption. Regards, ___ CentOS-virt mailing list CentOS-virt@centos.org https://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS] Setting up BackupPC on CentOS-7
I am interested in understanding the thing with BackupPC. What does it have compared to basic rsync? - It has a webui Is it like a central backup server? if so, how it works with windows clients(if it is?) Just want to make sure.. I understood right. Why did you choose this over other software? Thanks, Eliezer On 20/09/2015 16:51, Timothy Murphy wrote: I'd be interested in any corrections or comments on the following instructions (basically for myself): We assume that BackupPC has been installed: sudo yum install BackupPC 1. BackupPC must be run by the user backuppc. Accordingly the lines User apache Group apache in /etc/httpd/conf/httpd.conf should be changed to User backuppc Group backuppc 2. The user backuppc must be able to ssh to root (to run rsync), since only root can access all the files on the system. This is slightly complicated because backuppc has no default shell. $ su Passwd: # su -s /bin/sh backuppc sh-4.1$ cd sh-4.1$ ssh-keygen Generating public/private rsa key pair. sh-4.1$ cd .ssh sh-4.1$ cp id_rsa.pub /tmp sh-4.1$ exit # cd # ls .ssh If .ssh exists and contains id_rsa and id_rsa.pub ignore the next command # ssh-keygen Generating public/private rsa key pair. # cd .ssh # cat /tmp/id_rsa.pub >> authorized_keys # su -s /bin/sh backuppc sh-4.1$ ssh -l root helen helen is the name of my server - substitute the correct name or IP address # exit sh-4.1$ exit # 3. We must setup the graphic interface to BackupPC, since it is more or less impossible to administer BackupPC otherwise. I want to configure BackupPC from my laptop. My laptop and server are on the same network 192.168.2.0 # vi /etc/httpd/conf.d/BackupPC.conf Firstly, after the line allow from 127.0.0.1 add allow from 192.168.2.0/255.255.255.0 (giving the IP address of your network in place of 192.168.2.0). Secondly, change the line Require local to Require ip 192.168.2.0/255.255.255.0 127.0.0.1 4. Give backuppc and yourself passwords to access BackupPC # htpasswd -c /etc/BackupPC/apache.users backuppc Password: # htpasswd -c /etc/BackupPC/apache.users yourusername Password: # exit 5. Ensure that all BackupPC files are owned by backuppc.apache # chown -R backuppc.apache /etc/BackupPC /etc/httpd/conf.d/BackupPC.conf /var/lib/BackupPC 6. Restart BackupPC and apache # systemctl restart backuppc # systemctl restart httpd 7. Now see if you can access BackupPC on your server: Browse to http://localhost/backuppc If this succeeds give username backuppc and the password you chose for yourself above 8. Now try the same on your laptop: Browse to http://helen/backuppc (substituting your server's name or IP address for "helen"). Again give username backuppc and the password you chose for yourself above. 9. Returning to the server, # cd /etc/BackupPC # vi hosts I appended the line helen 0 backuppc to this file - you can choose any name here in place of helen it does not have to be the name of your server. 10. Now browse again to BackupPC, on laptop or server. Where it says "Select a host" give the name you just chose. Click on "Edit Config" and then on "Xfer" and in the RsyncShareName line add the directory or directories on your server that you want to backup, and then click on Save. (I chose /Photos, /common/tim and /var/www, but of course this is entirely up to you.) Click on "helen Home" (substituting the name you chose above), and press "Start full backup". ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I want to connect to a l2tp server from centos.
Hey Gordon, I do not have any security issue in this network. I need to connect to a remote network on a secure network. The options are pptp or l2tp(no ipsec encryption) so I do want to use l2tp like in (lac\lns) and I am looking for a client for CentOS. Note that it works in ubuntu so it is possible to achieve the same with CentOS but I do not know what is behind the gui that initiates the connection for l2tp. With pptp I have no issue and I have a connection which works a lot of time. Thanks, Eliezer On 18/09/2015 03:57, Gordon Messmer wrote: On 09/17/2015 04:47 PM, Eliezer Croitoru wrote: If someone used l2tp the same way I want to use on CentOS 7 please give me some advice. l2tp, by itself, offers no encryption. Notably, that means that your password is going to cross the network in clear text. Bare l2tp is the VPN equivalent of telnet. I really strongly recommend that you reconsider. ipsec, by itself, is a much better and easier way to achieve your goal. It will require less setup, and offer better security. There's no down side; ipsec is clearly a better choice for connecting two systems over an unsecured network. l2tp is typically used in conjunction with ipsec, for mobile clients. The reason is that l2tp integrates with external authentication (RADIUS, LDAP, Active Directory, etc) better than ipsec alone does. That's great when you have a group of users that you want to have individual authentication keys, but it's not a good fit for connecting one server to another. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Setting up BackupPC on CentOS-7
On 21/09/2015 04:10, John R Pierce wrote: On 9/20/2015 6:00 PM, Eliezer Croitoru wrote: I am interested in understanding the thing with BackupPC. What does it have compared to basic rsync? its a full blown backup service for any number of client hosts, it maintains a pool of full and incremental backups going back as far as you care, and this pool is fully dedupped to reduce its size. it uses rsync to fetch files from the target machines when making a new backup. the webui can be used to browse these backups and restore any portion of any backed up file system to any point at which there's a backup. the 'windows agent' is a stripped down installation of rsyncd from cygwin. Thanks! I wasn't sure how it would fetch from a windows machine. Eliezer ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I want to connect to a l2tp server from centos.
OK So i took the time and finally built a RPM for the softether vpn server and client. I have not tested them for usage but I found out that only the server side can work with multiple protocols while the client side works only with one protocol. The actual protocol is called "ethernet overl HTTPS". More info on the product: http://www.softether.org/ The gui is only for windows as far as I could understand. So no l2tp client there but aleast a nice VPN service. SRPM can be found here: http://ngtech.co.il/rpm/centos/7/SRPMS/softethervpn-4.18.9570-2.el7.centos.src.rpm The repo is here(also latest squid-cache repo): http://ngtech.co.il/rpm/centos/7/x86_64/ Eliezer On 18/09/2015 04:33, Eliezer Croitoru wrote: Hey John, I do not require encryption at all, it's a secure and internal channel but it requires me to connect via either pptp or l2tp. This is the reason I am asking. I had the chance of finding the SoftEther Project which gives a lot in terms of VPN Client and Server. At: http://www.softether-download.com/en.aspx But yet to try it. Also they have all sorts of beta versions but not something they call stable in their downloads. I think I will try to use their product if I will not find an example on how to use l2tp without ipsec encryption. Thanks, Eliezer On 18/09/2015 03:00, John R Pierce wrote: On 9/17/2015 4:47 PM, Eliezer Croitoru wrote: I have a server currently connecting to a pptp remote server. This server(lns\lac) has the option for pptp connections and l2tp connections. The l2tp connections are not using ipsec encryption at all. PPTP doesn't use ipsec either, it uses its own MPPE encryption based on RC4, which is considered insecure as of years ago. L2TP is normally used within another encrypted transport. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I want to connect to a l2tp server from centos.
Hey John, I do not require encryption at all, it's a secure and internal channel but it requires me to connect via either pptp or l2tp. This is the reason I am asking. I had the chance of finding the SoftEther Project which gives a lot in terms of VPN Client and Server. At: http://www.softether-download.com/en.aspx But yet to try it. Also they have all sorts of beta versions but not something they call stable in their downloads. I think I will try to use their product if I will not find an example on how to use l2tp without ipsec encryption. Thanks, Eliezer On 18/09/2015 03:00, John R Pierce wrote: On 9/17/2015 4:47 PM, Eliezer Croitoru wrote: I have a server currently connecting to a pptp remote server. This server(lns\lac) has the option for pptp connections and l2tp connections. The l2tp connections are not using ipsec encryption at all. PPTP doesn't use ipsec either, it uses its own MPPE encryption based on RC4, which is considered insecure as of years ago. L2TP is normally used within another encrypted transport. ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
[CentOS] I want to connect to a l2tp server from centos.
I have a server currently connecting to a pptp remote server. This server(lns\lac) has the option for pptp connections and l2tp connections. The l2tp connections are not using ipsec encryption at all. I have seen couple guides\tutorials on the internet: - https://raymii.org/s/tutorials/IPSEC_L2TP_vpn_on_CentOS_-_Red_Hat_Enterprise_Linux_or_Scientific_-_Linux_6.html - https://wiki.archlinux.org/index.php/L2TP/IPsec_VPN_client_setup But all the guides that I have found are using ipsec with "secret". On ubuntu there is a gui applet that helps setting these kind of connections up but I am working with a CentOS server and not Ubuntu desktop. If someone used l2tp the same way I want to use on CentOS 7 please give me some advice. If you have a guide which might help me I will be more then happy to see this one. Thanks, Eliezer ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-virt] Report on Xen-4.6rc2 from virt7-xen-46-candidate
Hey, What do you mean by doesn't do forking? It allows forking processes if the application can do that. It doesn't fork them by default but ,is it really needed? If xenstored is testing to be run under systemd and not forks itself because of it, that's another thing. Eliezer On 09/09/2015 12:40, George Dunlap wrote: I think because systemd doesn't do forking, that it doesn't need a pidfile. In fact, if xenstored detects that it's running under systemd, it will actually ignore the --pid-file directive. -George ___ CentOS-virt mailing list CentOS-virt@centos.org https://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS-virt] Report on Xen-4.6rc2 from virt7-xen-46-candidate
Sounds pretty much like this is the reality. I have not tested xen yet but I wanted to use it in comparison to KVM. I am working with KVM for quite a while and very happy with it. I have seen that couple xen machines with the same specs as mine has better performance. Eliezer On 09/09/2015 17:02, George Dunlap wrote: So what I meant was, "xenstored is designed not to do its own forking under systemd". -George ___ CentOS-virt mailing list CentOS-virt@centos.org https://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS] Squid on CentOS 7: few questions
Hey Niki, On 07/03/2015 08:37, Niki Kovacs wrote: The LAN server here already has Iptables configured to redirect HTTP traffic to 3128 transparently. Which doesn't actually good. You should route traffic to the proxy and on the proxy redirect into a intercept port which should be defined. If it works for you on port 3128 somethings are very wrong in your setup. All The Bests, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 7.0 and mismatched swap file
Thanks Chris for the detailed response! I couldn't understand the complex sentence about XFS and was almost convinced that XFS might offer a new way to spread across multiple disks. And in this case it's mainly me and not you. Now I understand how a md linear/concat array can be exploited with XFS! Not related directly but given that XFS has commercial support, it can be an advantage over other file systems which are built to handle lots of small files but might not have commercial support. Eliezer On 16/02/2015 19:21, Chris Murphy wrote: So contrary to popular opinion on XFS being mainly useful for large files, it's actually quite useful for concurrent read write workflows of small files on a many disk linear/concat arrangement. This extends to using raid1 + linear instead of raid10 if some redundancy is desired. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 7.0 and mismatched swap file
On 16/02/2015 22:29, Chris Murphy wrote: The other plus is that growing linear arrays is cake. They just get added to the end of the concat, and xfs_growfs is used. Takes less than a minute. Whereas md raid0 grow means converting to raid4, then adding the device, then converting back to raid0. And further, linear grow can be any size drive, whereas clearly with raid0 the drive sizes must all be the same. Nice! I have been learning about md arrays and have seen the details about growing operation but it's another aspect which I wasn't thinking about at first. For now I am not planning any storage but it might come handy later on. Thanks, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 7.0 and mismatched swap file
On 16/02/2015 10:04, Chris Murphy wrote: This is a recent benchmarking using Postmark which supposedly simulates mail servers. XFS stacks up a bit better than ext4. http://www.phoronix.com/scan.php?page=articleitem=linux-3.19-ssd-fsnum=3 A neat trick for big busy mail servers that comes up on linux-raid@ and the XFS list from time to time, is using md linear/concat to put together the physical drives into a single logical block device, and then format it XFS. XFS will create multiple AG's across all of those devices, and do parallel writes across all of them. It's often quite a bit better performing than raid0 specifically because of the many thousands of small files in many directories workload. Hey Chris, I am unsure I understand what you wrote. XFS will create multiple AG's across all of those devices, Are you comparing md linear/concat to md raid0? and that the upper level XFS will run on top them? (Just to make sure I understood what you have written.) Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 7.0 and mismatched swap file
Hey Gregory, I assume you have the issue with a swap partition which is harder to modify then a swap file. You can always add\use another swap file instead of a partition. This article describes what you will need\want: http://www.cyberciti.biz/faq/linux-add-a-swap-file-howto/ and just another one for more info: http://www.rackspace.com/knowledge_center/article/create-a-linux-swap-file Eliezer On 15/02/2015 19:42, Gregory P. Ennis wrote: I am using the default xfs file system on the other partitions. Is there a way to expand the swap file? If not, then is this problem sufficiently bad enough for me to start over with a new install. I do not want to start over unless I need to. Thanks for you help !!! Greg Ennis ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: Bittorrent clients
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Just wondering to myself: What made you switch from Windows 7 to CentOS 6.6? Eliezer On 12/28/2014 10:36 AM, Sorin Srbu wrote: Hi all, Just switched my home computer from Windows 7 to CentOS 6.6 and I'm having a slight bit of trouble with the bittorrent-clients. * Transmission is fine but lacks a bit in features. * Vuze is my preferred bt-client but gives me horrendous gfx-artifacts, like not showing the torrent name (it's white text on a white background or some such...). * Deluge is better, and what I'm using now, but I'm having trouble finding a repo that has the updated versions available for install with yum. I installed v1.3.5 a few days ago and already it's telling me that version is way outdated. Would anybody have any hints as to how and where to get the latest Deluge for CentOS? Or maybe even suggest a better torrent-client? All I'm getting from the Deluge site is some kind of source packages that is of no use for me. 8-/ Thanks in advance for any hints, tips and tricks. -- /Sorin ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQEcBAEBAgAGBQJUoCDqAAoJENxnfXtQ8ZQUIH0H/1a2bQjt6L+d9HG6xGo3FrOF GdJl3eanMGUYkjAca9NVQjC0NnyOSVIOPjZdmYwESckA4Z7DSy1TB6frRCUs66Da FRziOUoum4qJyansy8B3JCken/ZCy8dXm6sjAN5jOESzgBY0DJuWEclJd6vOozod 24F4+gj9lUucWa2G0sqOaOwxDUZtwIcaxN741+zxLMxfGJjJnuA12+x72p6Z3+Kg Rj2uSQPcUZFzE5bSbPB88mjMhJuHGZfNRq5Xntvb1uQ/tLVS+Y1+tA3jeYA6vUKW DQQnz6/vz+zIU9+e/7nqOx9BitQ7Jfq0YEQflZAiFzcYxTtwIoUBJyn6U0I6Koc= =pnpD -END PGP SIGNATURE- ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 7 not installable using KVM-over-IP System
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 How exactly the KVM over IP is related to the CentOS installation? The KVM should only show you the screen and access keyboard or\and mouse. What usb port are you using for the netinstall iso? Eliezer On 11/19/2014 10:51 PM, Dennis Jacobfeuerborn wrote: Hi, I just tried to install CentOS 7 using a Lantronix Spider KVM-over-IP System and its virtual media feature and to my surprise this did not work. The installation using the netinstall iso seems to work for a while (I see some dracut boot messages) but when the first stage of the boot is finished I get dropped into an emergency shell with the error message that /dev/root does not exist. I tried this on a Supermicro system and a gen-8 HP ProLiant Server both with the same result. Using CentOS 6 instead worked fine and I could install the Systems without issues. Any idea what the problem could be? Given that the iso is passed through as a USB storage device I'm not sure what the problem could be. Regards, Dennis ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQEcBAEBAgAGBQJUcbvrAAoJENxnfXtQ8ZQURWUH+wdxJRLplvTtX+lUpUtM5sZQ MuXbt0lMqrZQ5sPhOYteGYSDTNE5N7S4kWFimLrW3VJBK5nNI50qJUGQbQbMSk14 5X9wsHk18fCzsUvRznFDTlgYSsvPXLC01NLr/hzKh6ypYM0YQyUR8GXh+lzezYSd csWiGvkI1nxYtAX1AGSivPUSLD35yDwiEZFhKdq1J/UU/CkSBCj2hB6CoPS+XX2Y ovY3ebrEClwA0GP4TINtnT92O9jn3gCW4hTGSWxAKe7el/fBuov1PmZXHQqgv7qk LeNXFyolM/HAbIHwx0Rapj8uej+sUVehEc63EUSxZlaS/+eySt+BYRt00qW1Xiw= =MGFs -END PGP SIGNATURE- ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] automated smtp server check
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 It could be done using a crontab job and it's very efficient sometimes to use only a crontab job instead of nagios. You can use the precompiled nagios scripts for the task. Unless you have constrains on the OS allowed languages and packages, which then should be evaluated more deeply to meet your needs which might be missing. So: - - Nagios scripts as crontab job - - Other tcp level scripts as a crontab job - - fully fledged nagios - - other relevant solutions in your scope Eliezer On 11/04/2014 09:36 PM, Frank Cox wrote: I would like to set up a cron job to automatically check whether my mailserver and webserver are up, and tell me if they're not. -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQEcBAEBAgAGBQJUWehzAAoJENxnfXtQ8ZQUaIEH/AtTmVDT7XN7uiFHSvPQRyEI Azb2L+RSMbvRq+n8yBx52D04F6A0YvRGYzA2/4i6ZK8ai3PV9DN1Y8IRim8PvNbf UvvQAVA4XvKT/nDSQJHP7GldcUS0WBPTm4BP/MAl1QYM5CPhc5FoP9+UhUgELxoj ZMzE58T+3XtzpQ5jeGELv9Oratz/zCIi+ysCdoJmoBgBd5Zg3Rfq53UGCxlKK6QB pfAYR0wfKn4O5Yo+EHTHlDHM+PIUzqdEKPtCWWigPhGAiLyrbMXHLL+PM3Tw2wZ8 82She07GAmyqyAkwBvi92z74fedMyjFEcgodEk0PbZpRN6JsWSmF0sxwcy4RZiA= =yLLM -END PGP SIGNATURE- ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Problem with WRT54GL router
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Can you describe from 0 what the network looks like? What are you using the WRT54GL for? as a AP? as a ROUTER? What device is the PPPOE connection initiator? Did you tried to use static IP address instead of dhcp? Can you access the device interface? What actually the DD-WRT gives you that the basic firmware do not?(a side question) Thanks, Eliezer On 09/17/2014 08:49 PM, Timothy Murphy wrote: I have a curious problem with an old WRT54GL router, which I use as a WiFi access point on my LAN: Internet-ADSL modem-CentOS-7 computer-WRT54GL router The router has always had a slight problem of losing connection every so often - it used to be every couple of days, but recently it has become much more often. My cure was always to disconnect the power from the router for 10 seconds or so, and then re-connect it. -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQEcBAEBAgAGBQJUNERwAAoJENxnfXtQ8ZQU+w8IAIkPrug42il2YqFcXjpy8RlW oOpqSOss0PKMp9w6Q/PiFzxFbOVRuy6mrlhxPijkE+j6gyWF8VD4KdfsreYFyBZR 04fLnGsXeR2Ysv3+KL7jg+AUbNFGhd1vxw4Bmch3yJk8NRW5z9QztmmeejAV2Oqg lFcDpdH9qm7Y5Z4tuR05Rxrgy0BHDyQDVI+OUVoYEWow2f7X5NFyEkKUQvCdAvo8 xCq7C3OqPMRx8fyhamT/Xgpx4T1Cdf3/G4pqBAWkJX5JMXDNjmTiskhTCva0LqLr 4txwVPHJpBMqZyLFPk42Gp7OeuhR9Mt9KlPyhs/kdFLNaxJtcI7w80Z4Yc4U4HI= =w+TI -END PGP SIGNATURE- ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Problem with WRT54GL router
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Then now I am a bit confused. You wrote that the router has a slight problem. The router can be the CentOS machine or the WRT54GL, choose please If you can access the WRT54GL device web page the issue is in another level. Where do you have the issue?? - - on machines behind the WRT54GL? - - on the CentOS server? What ping has to say about the status of the connection between the WIFI clients and the server? and the WRT54GL? (I was reading the first post and didn't got it yet) Since the three dhcpd\network\shorewall do resolve the issues it can be more then one problem. You can get the output of: iptables-save ip link ip addr dmesg I would also look at the basic system logs to see if there are any hints about the issue. I had a similar issue with a CentOS 6 not long ago and the NIC was going up and down. When I replaced to newer kernel it got fixed. (tested couple times over a very long period) What nic are you using there? Is there any switch over there between the WRT54GL and the Server? Thanks, Eliezer On 10/08/2014 02:19 AM, Timothy Murphy wrote: Eliezer Croitoru wrote: Can you describe from 0 what the network looks like? What are you using the WRT54GL for? as a AP? as a ROUTER? As an Access Point: Internet - Modem - CentOS-7 server - WRT54GL Did you tried to use static IP address instead of dhcp? Dhcp is running on the server, not the WRT56GL. Can you access the device interface? I'm not quite sure what you mean by the device interface. I can access the WRT54GL's web-page, and modify it if I wish. What actually the DD-WRT gives you that the basic firmware do not?(a side question) I've no idea; the router was already running dd-wrt when I acquired it. -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQEcBAEBAgAGBQJUNHq+AAoJENxnfXtQ8ZQUcHQH/0hwB2aNltJciuxhUn9JdUC9 qYkzGp223aRFybcjBI+QP6qYjXEbMG0cueOsyEOVsCOzHRLjSMpLObFLrAcAfxal 2wJM2QBU0rImMYiV+1mGsMPpcKqujkmRoq1jYRVbOTmg7lEAN+8IOLYra+zbEOAa SwcgNudxkfoMknzPDPL/K+Wh0vH3Qut3hTNxxabWPdkCL6AZMuVOzcozCIXmqFMn FrbLZdVXL7rag8BurB2e2ynwHObxCr40V+G/ksnbY13HcrtjTeY0yfn5Xw3+smRi rgLfJMe56RGuSGXEGWgbtNyGijRy2SkvPNzWgHwS2N2iwEGfiw3A/kdDSWpT0Ao= =JYMB -END PGP SIGNATURE- ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Renaming NIC name in CentOS 7
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hey Mark, You can use ip tools to do the trick. For Ubuntu I wrote this upstart script that helps with it without touching udev. You can see it here: http://www1.ngtech.co.il/paste/1175/ You can run this function at runtime and it will change the interface name. On CentOS you will need to find the right spot in boot to apply this link. Before NetworkManager and after udev. All The Bests, Eliezer On 10/03/2014 04:12 PM, Richer, Mark (CIV) wrote: All, I am trying to understand better how you give an interface a more descriptive name and get it all working without a reboot, if possible. We have 1G and 10G interfaces, and I’m trying to use names like 1G-internal, 1G-external, 10G-private, etc. When I boot up, it’s all fine, but if I add one I’m not sure if there is a way to avoid the reboot? For example, I added the 10G interface names this week. Specifically, is there a way to change the network interface name you see in ifconfig and nmcli connection without rebooting CentOS 7? I changed the name in network-scripts. I tried to restart NetworkManager. I brought down the interface and tried to rename the file and bring it up again, but it still retains the previous run-time setting associated with the same UUID in the file. Also I find that on all but one of the server on which I did this, I can restart NetworkManager, but network.service is failing to restart. Do I want both active? And if yes, is this indicative of a problem related to changing the interfaces that goes away (only) by rebooting? For some reason, after doing this on several systems, on only one I can restart network.service, but it also still shows the old interface name. thanks, Mark MARK H RICHER, MS CS NPS-NCR Digital Forensics Lab IT Manager Computer Science Department Naval Postgraduate School - National Capital Region (NCR) 900 N Glebe Rd, Rm 5-182, Arlington, VA 22203 571.858.3254 (o) 571.303.9498 (m) mhric...@nps.edumailto:mhric...@nps.edu ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQEcBAEBAgAGBQJUMVMdAAoJENxnfXtQ8ZQUqL8H+wU+CSfoH6gAjJQUN2QaDO8t Rc+/zY2aAvP7vJ1rZtiEdt4he+wRWYCsV7olb2wq2/G+i+8FT14huRpYVufyMwLR VpN/sknu1KNc5fuIY6MTGYUoGDgcgCe3zy77e4cqo5IvPUNyPNfh2+X5H5xwfYaq pvQi6za9U2Gnlj3D65pCwI5svBWbPVNkdQO83xXNlyBhKqEqV1utqG4G5uiOusoM 6EIZZ9lNlLO/3PqUkg6d77HTowsT73qOmAa4KT46iZ1mnB/pibwglt8rxpAieDOD 3G3QScjuOje3EXdnBE6oJ90h6I645X12sAdEOSTITsgdfjAEZiNTIPil6ZaEzrw= =YSN7 -END PGP SIGNATURE- ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-virt] Issues with Ubuntu 14 as a guest VM, and network throughput..
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 09/30/2014 01:50 AM, Howard Leadmon wrote: Has anyone run into this, or have any idea, or know of any tunable changes I can make that would make the VM play nice with the newer recommended kernel? I was actually stunned changing kernels made the diff between getting hundreds of megs of throughput on the host, to getting a meg or two if lucky, with constant pauses.At the same time, my other CentOS and FBSD VM's seem to run fine, but then again CentOS sticks with an older kernel it seems. There is an open bug regarding the hypervisor low performance in 14.04. This is probably a kernel issue and they had a patch for it as far as I can remember hat tested the issue. You can try to contact the mailing list of ubuntu servers and lookup the bug at the bugzilla. Eliezer -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQEcBAEBAgAGBQJUKtbGAAoJENxnfXtQ8ZQUToIH/2rTY0B/x45eOUxlp30S77H/ VKqebsAZWPM5zcP9SDWYWsLssRHzbmXxZJ5DmIU/wMLJai5wKF2bl0gGWoB6e44i VO1n0L2d5dgyqOh/2ll6oyg3tqbIsPs+Un4WWJYj3EOjHPmLpDiM5bTQeZeu46x4 mM+dlqCyqWUo4Hk/gglLmI4x+/htKW+sxBcF6Wv58pPd89AWmoQSEqcNBkLcptMn pcm5px3Jp/meaovMu8IfiDdYY3K1iC6XjTC6frvTC8RqqSDom3sM4E1jUaZwtgOn lf8qI4KrFrUqHa35KhC0CdyRFxSbCUAw4KODWjy4FydEBE907hkfP6TTQQqHuq4= =vjfP -END PGP SIGNATURE- ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS] Spacewalk? Local repo? Cache?
Hey Chris, If you are up for the challenge you can try a hybrid of squid + local repo. Local repo is based upon the basic nature of rsync which copies everything. You can write a script that will filter a list of urls of mirrors and will prepare a fetch list of files which will be fetched only the *rpm* from one of of couple mirrors into local repo. For each file it has in the cache it will first verify if the file exists in the local repo and if it is then it can redirect the client (transparently or with 302 redirection) into the local server. You can use do something similar with nginx to store the file permanently like in the idea of: https://code.google.com/p/youtube-cache/source/browse/#svn%2Ftrunk%2Fnginx The main issue would be the rpms while the packages sql\xml and other repo related stuff should be handled only by squid caching. Email me if it's was interesting to hear about the idea. Eliezer On 09/29/2014 09:19 PM, Les Mikesell wrote: I don't think there is a way to do it that doesn't take more human effort than it is worth unless you have limited internet access. It is basically designed not to work. A simple squid proxy with the file size bumped up will work with no extra attention (and be useful for all your internet accesses), but the first dozen or so runs are probably going to pick different mirror URLs instead of reusing the copy you have already cached. You can change the repo mirrorlist entry to a fixed system - but then your updates will break if it is down. Or you can mirror a bunch of stuff you'll never need into your own repo. Or set up some special-case thing that only works for Centos - or maybe even just one version of Centos. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Weird output of system load
On 09/11/2014 09:54 AM, Mingfei Hua wrote: ll, One server of mine running CentOS 6.3. The load is very high, but few process in running or blocked. Followed is the output of /proc/stat, /proc/loadavg and top And what?? You are not giving any relevatn information about what machine what are the wanted results nor what this server purpose is.. It will be considered pretty OK for some services to be like that. Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Amavisd-new delivers spam emails
I think amavisd-new mailing list is the better place for that. Eliezer On 09/11/2014 11:38 AM, Jussi Hirvi wrote: I tried to go through documentation, but did not find the reason. Has anybody else had the same problem? # amavisd -V amavisd-new-2.8.0 (20120630) - Jussi ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 7 RAID tutorial?
On 09/10/2014 02:33 AM, Digimer wrote: The problem with ZFS on linux is license related more than technical. It exists for ubutnu so I can use it from a ppa for testing. I would like to understand more about this license issue. If you can sound me with more about it will help me understand the issue. Thanks, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 7 RAID tutorial?
On 09/11/2014 01:27 AM, Digimer wrote: On 10/09/14 05:35 PM, Eliezer Croitoru wrote: On 09/10/2014 02:33 AM, Digimer wrote: The problem with ZFS on linux is license related more than technical. It exists for ubutnu so I can use it from a ppa for testing. I would like to understand more about this license issue. If you can sound me with more about it will help me understand the issue. Thanks, Eliezer http://zfsonlinux.org/faq.html#WhatAboutTheLicensingIssue https://en.wikipedia.org/wiki/ZFS#Linux Thanks! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos 7 RAID tutorial?
On 09/08/2014 10:00 PM, Andrew Holway wrote: +1 Try ZFS http://zfsonlinux.org/ How stable is it on linux? Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Could not resolve host: mirror.centos.org
On 09/07/2014 10:22 PM, Александр Кириллов wrote: This is an ipv6-enabled system and that's probably why yum tries to get an ipv6 address first for mirror.centos.org and fails miserably. For whatever reason I do not get an authoritative negative response for query from upstream servers. Well an easy fix is to hardcode an ipv4 address for mirror.centos.org in /etc/hosts and forget it. I suspect miconfiguration on centos.org side as scl is the only repo which gives me troubles but don't have the time to dig into this. According to this man pages: http://man7.org/linux/man-pages/man5/yum.conf.5.html It seems like yum.conf have a specific config like that: ip_resolve Determines how yum resolves host names. `4' or `IPv4': resolve to IPv4 addresses only. `6' or `IPv6': resolve to IPv6 addresses only. Is it helping you? Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Questoin on iptables
On 07/15/2014 11:09 AM, Alexander Dalloz wrote: Running without the pipe construct because awk can do that all by itself (reading the source file and inverse greping): while read ipblock do $IPTABLES -A Spamhaus -s $ipblock -j DROP done (awk '!/^;/ { print $1 }' $FILE) Alexander Thanks Alexander, Indeed you are right it can be done and with very big files it will mean a lot. Also he might consider to use ipset instead of basic iptables to make the lookup a bit faster but it should be ok as it is. Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Questoin on iptables
On 07/15/2014 12:45 AM, Alexander Dalloz wrote: It means that your script is not correct[1] and by error tries to load a helper module which does not exist. So fix your script. [1] cat | grep | awk constructs are far from being elegant. Alexander I think that these are not too bad.. And you can use xargs instead of a for loop. If you have another suggestion you can throw the one-liner here. Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Cemtos 7 : Systemd alternatives ?
I am sure now do not understand the bug end line. From Fedora 17 they modprobe.d moved from /etc to /var/lib ? if so why not just use a symlink from /etc to /var/lib if someone needs it there for any reason what so ever?? Eliezer On 07/08/2014 09:12 PM, Ned Slider wrote: Well, I stand corrected! I was just running though the issue for a reply here, and what was broken in the rhel7rc is now fixed and indeed working as documented. My issue looked like a regression of this bug: https://bugzilla.redhat.com/show_bug.cgi?id=873220 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS-virt] I have a question regarding the virtual scsi adapter.
I have a very old system which has a self compiled kernel. It' supports sata and megaraid but not LSI SCSI or BUSLOGIC scsi. I am not sure what SCSI adapter is being used on CentOS KVM host and there for what kernel options to enable in the new compiled kernel. I have tried to add LSI logic and it seems like still not recognizing the SCSI device. I have another kernel that do work but it was build with lots of modules and I am not sure which one of them is the appropriate one. The linux kernel version of the guest is 2.6.19. If someone has a .config file that has all the needed modules complied in the kernel I will be happy to see it. Thanks, Eliezer ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS] corruption of in-memory data detected (xfs)
I had similar issue: A nfs server with XFS as the FS for backup of a very large system. I have a 2TB raid-1 volume and I started rsync the backup and then somewhere I got this issue. There were lots of files there and the system has 8GB of ram and CentOS 6.5 64bit. I didn't bother to look at the issue due to the fact that ReiserFS was just OK with it without any issues. I never new about the inode64 option, is it only on the mount options or also on the mkfs.xfs command? Also in a case I want to test it again what would be a recommendation to not crash the system when there is lot's of memory in use? Thanks, Eliezer On 07/01/2014 11:57 AM, Alexandru Cardaniuc wrote: Hi All, I am having an issue with an XFS filesystem shutting down under high load with very many small files. Basically, I have around 3.5 - 4 million files on this filesystem. New files are being written to the FS all the time, until I get to 9-11 mln small files (35k on average). at some point I get the following in dmesg: [2870477.695512] Filesystem sda5: XFS internal error xfs_trans_cancel at line 1138 of file fs/xfs/xfs_trans.c. Caller 0x8826bb7d [2870477.695558] [2870477.695559] Call Trace: [2870477.695611] [88262c28] :xfs:xfs_trans_cancel+0x5b/0xfe [2870477.695643] [8826bb7d] :xfs:xfs_mkdir+0x57c/0x5d7 [2870477.695673] [8822f3f8] :xfs:xfs_attr_get+0xbf/0xd2 [2870477.695707] [88273326] :xfs:xfs_vn_mknod+0x1e1/0x3bb [2870477.695726] [80264929] _spin_lock_irqsave+0x9/0x14 [2870477.695736] [802230e6] __up_read+0x19/0x7f [2870477.695764] [8824f8f4] :xfs:xfs_iunlock+0x57/0x79 [2870477.695776] [80264929] _spin_lock_irqsave+0x9/0x14 [2870477.695784] [802230e6] __up_read+0x19/0x7f [2870477.695791] [80209f4c] __d_lookup+0xb0/0xff [2870477.695803] [8020cd4a] _atomic_dec_and_lock+0x39/0x57 [2870477.695814] [8022d6db] mntput_no_expire+0x19/0x89 [2870477.695829] [80264929] _spin_lock_irqsave+0x9/0x14 [2870477.695837] [802230e6] __up_read+0x19/0x7f [2870477.695861] [8824f8f4] :xfs:xfs_iunlock+0x57/0x79 [2870477.695887] [882680af] :xfs:xfs_access+0x3d/0x46 [2870477.695899] [80264929] _spin_lock_irqsave+0x9/0x14 [2870477.695923] [802df4a3] vfs_mkdir+0xe3/0x152 [2870477.695933] [802dfa79] sys_mkdirat+0xa3/0xe4 [2870477.695953] [80260295] tracesys+0x47/0xb6 [2870477.695963] [802602f9] tracesys+0xab/0xb6 [2870477.695977] [2870477.695985] xfs_force_shutdown(sda5,0x8) called from line 1139 of file fs/xfs/xfs_trans.c. Return address = 0x88262c46 [2870477.696452] Filesystem sda5: Corruption of in-memory data detected. Shutting down filesystem: sda5 [2870477.696464] Please umount the filesystem, and rectify the problem(s) # ls -l /store ls: /store: Input/output error ?- 0 root root 0 Jan 1 1970 /store Filesystems is ~1T in size # df -hT /store FilesystemTypeSize Used Avail Use% Mounted on /dev/sda5 xfs910G 142G 769G 16% /store Using CentOS 5.9 with kernel 2.6.18-348.el5xen The filesystem is in a virtual machine (Xen) and on top of LVM. Filesystem was created using mkfs.xfs defaults with xfsprogs-2.9.4-1.el5.centos (that's the one that comes with CentOS 5.x by default.) These are the defaults with which the filesystem was created: # xfs_info /store meta-data=/dev/sda5 isize=256agcount=32, agsize=7454720 blks = sectsz=512 attr=0 data = bsize=4096 blocks=238551040, imaxpct=25 = sunit=0 swidth=0 blks, unwritten=1 naming =version 2 bsize=4096 log =internal bsize=4096 blocks=32768, version=1 = sectsz=512 sunit=0 blks, lazy-count=0 realtime =none extsz=4096 blocks=0, rtextents=0 The problem is reproducible and I don't think it's hardware related. The problem was reproduced on multiple servers of the same type. So, I doubt it's a memory issue or something like that. Is that a known issue? If it is then what's the fix? I went through the kernel updates for CentOS 5.10 (newer kernel), but didn't see any xfs related fixes since CentOS 5.9 Any help will be greatly appreciated... ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] GUI Question
init 5?? Eliezer On 06/30/2014 11:05 AM, Deno Sayangda Dangpaliw wrote: Hi, There's something weird happening to my CentOS VMs, cannot switch back to GUI. Black screen with a single underscore character at top left of the screen. Ok so I have ESXI 5.1 host, with 3 VM all running CentOS. I rebooted the esxi host yesterday for a power maintenance. All went well... until I switched console on the vms. I was able to login using the GUI, then I pressed Alt F5, then I was sent to the text console... I usually do this to save energy. I did the same for all the Centos vm... now I wanted to switch back to GUI but I can't. I even pressed all the keys from F1 to F12 but were not able to get back to the GUI for all the VMs. Can you please advise where Im missing? Regards, Deno ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to remove LVM Physical Volume from Volume Group?
On 06/24/2014 11:45 PM, Ljubomir Ljubojevic wrote: It turned out that new partition, sdc5 is smaller then sdd7, so pvmove failed. But then I checked the LVM GUI and solved the problem. I opened Physical volumes, chose sdd7 and clicked on Migrate Extents. which offered to redistribute all of the Extents automatically to the rest of the PV's. At the moment I am waiting for migration to complete, but then removal of PV should be simple. I think I will use wonderful LVM GUI again, and I will not allow anyone to tell me how DE/GUI on a server is bad thing.;) There are lots of rumors regarding the existence of a GUI. Sometimes it's a bit weird to use very low level tools when you have tools that will give you much more power in your hands. But again some prefer to know what they do in the lowest levels and others just want to do the thing while they know it works and was designed to work. When the two collide ( works vs power) lots prefer to have only works (what seems to be a very bad assumption). Many times you don't need GUI for servers to operate and sometimes the existence of a GUI slow the server down and lowering the performance of the system. So taking couple things into account most admins agree that a GUI should not be needed when you know how to operate the machine using the CLI tools. If you feel the need to use GUI tools have it your way and have a nice smile to your CLI friends which struggle every once in a while how to do things in a way they prefer and note that not all admins are alike. (I am still looking for a GUI utils to operate GlusterFS which seems to be there in RH storage systems) Regards, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Thunderbird bug, anyone else have seen it?
On 06/19/2014 02:38 PM, Johnny Hughes wrote: This is defiantly a problem in EL6. I looked in gvfs and there is no said fix that I can find. It seems someone patched it, but it has not made it into the distro yet. Red Hat could do that for an individual customer as part of a support case. So an upstream bug on the Red Hat bugzilla could help. I am looking for the patch.. I will post on it in the thunderbird bugzilla as a starter. Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Thunderbird bug, anyone else have seen it?
OK then it seems like it should be filed in the bugzilla later. Thanks, Eliezer On 06/17/2014 06:20 PM, m.r...@5-cent.us wrote: Lamar Owen wrote: On 06/15/2014 06:33 PM, Eliezer Croitoru wrote: Before I file a bug, anyone else is having the same issue? anyone has the patch from the bug-report? I see this bug occasionally, most recently being a couple of days ago. I see it most days. It's annoying. Glad to know that it's listed as a bug; anyone know if it's actually been assigned? mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] iptables question
On 06/17/2014 01:11 AM, John R Pierce wrote: On 6/16/2014 2:58 PM, Chuck Campbell wrote: Chain INPUT (policy ACCEPT) target prot opt source destination fail2ban-VSFTPD tcp -- anywhere anywheretcp dpt:ftp fail2ban-SSH tcp -- anywhere anywheretcp dpt:ssh RH-Firewall-1-INPUT all -- anywhere anywhere DROP all -- 116.10.191.0/24 anywhere DROP all -- 183.136.220.0/24 anywhere DROP all -- 183.136.221.0/24 anywhere DROP all -- 183.136.222.0/24 anywhere DROP all -- 183.136.223.0/24 anywhere DROP all -- 122.224.11.0/24 anywhere DROP all -- 219.138.0.0/16 anywhere How did you added these rules? using manual command line tools or automatically by fail2ban? Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] iptables question
On 06/17/2014 01:46 AM, Bret Taylor wrote: Get rid of fail2ban, it's not needed. Just write a proper firewall. Are you series?? There are applications that fail2ban offers them things which others just can't.. If you can email me the ip for your servers and also the root password and allow me in your INPUT all over the place I will leave you a message in the server.(hope you understand jokes) All The Bests, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Thunderbird bug, anyone else have seen it?
https://bugzilla.mozilla.org/show_bug.cgi?id=541130 The bug I see is using thunderbird 24.6 which is the latest update on centos 6.5. The issue is that every time I open an email with some + somewhere in the source (which I didn't traced yet) I get annoying message: An error occurred while loading or saving configuration information for thunderbird. Some of your configuration settings may not work properly. =In the details section I get: Bad key or directory name: /desktop/gnome/url-handlers/EDH+CAMELLIA/command: `+' is an invalid character in key/directory names Bad key or directory name: /desktop/gnome/url-handlers/EDH+CAMELLIA/command: `+' is an invalid character in key/directory names Bad key or directory name: /desktop/gnome/url-handlers/EDH+aRSA/command: `+' is an invalid character in key/directory names Bad key or directory name: /desktop/gnome/url-handlers/EDH+aRSA/command: `+' is an invalid character in key/directory names Bad key or directory name: /desktop/gnome/url-handlers/EECDH+aRSA+AESGCM/command: `+' is an invalid character in key/directory names Bad key or directory name: /desktop/gnome/url-handlers/EECDH+aRSA+AESGCM/command: `+' is an invalid character in key/directory names Bad key or directory name: /desktop/gnome/url-handlers/EECDH+aRSA+SHA384/command: `+' is an invalid character in key/directory names Bad key or directory name: /desktop/gnome/url-handlers/EECDH+aRSA+SHA384/command: `+' is an invalid character in key/directory names Bad key or directory name: /desktop/gnome/url-handlers/EECDH+aRSA+SHA256/command: `+' is an invalid character in key/directory names Bad key or directory name: /desktop/gnome/url-handlers/EECDH+aRSA+SHA256/command: `+' is an invalid character in key/directory names ##end By the last message of the bug-report I understand that RH released a bug-fix\patch that should help with the issue. Before I file a bug, anyone else is having the same issue? anyone has the patch from the bug-report? Thanks, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] squid proxy, https and apple store - SOLVED
Take a look at: http://wiki.squid-cache.org/KnowledgeBase/RedHat Eliezer On 06/12/2014 09:38 AM, Götz Reinicke - IT Koordinator wrote: Hi, I checked the old config again and cant find any misconfiguration and did not get any more feedback. On a centos 6.x system I installed as suggested squid3 (squid-3.1.19) fromhttp://people.redhat.com/jskala/squid/ using my squid2 config. No problems so far and I can access the Apple app store with the Apple app store app within OS X. Problem solved! Thanks very much for that hint . Regards . Götz ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] [Gluster-users] performance due to network?
Just wondering if you had the chance of testing the network speed with iperf from host to host yet? This is like the first thing to do while doing a full debug upside-down. No matter what disks you have but note that each and one of them has a maximum IOps limit which sometimes you can hit in a way. as already suggested by others in the past you can use a binary search dividing the issue one part at a time network.. disk.. controller.. driver.. software(since the software is proven to work). Eliezer On 06/12/2014 11:40 PM, Aronesty, Erik wrote: I suspect I'm having performance issues because of network speeds. /Supposedly/ I have 10gbit connections on all my NAS devices, however, it seems to me that the fastest I can write is 1Gbit. When I'm copying very large files, etc, I see 'D' as the cp waits to I/O, but when I go the gluster servers, I don't see glusterfsd waiting (D) to write to the bricks themselves. I have 4 nodes, each with 10Gbit connection, each has 2 Areca RAID controllers with 12 disk raid5, and the 2 controllers stripped into 1 large volume. Pretty sure there's plenty of i/o left on the bricks themselves. Is it possible that one big file isn't the right test… should I try 20 big files, and see how saturated my network can get? Erik Aronesty Senior Bioinformatics Architect *EA | Quintiles **/Genomic Services/**//* 4820 Emperor Boulevard Durham, NC 27703 USA Office: + 919.287.4011 erik.arone...@quintiles.com mailto:kmicha...@expressionanalysis.com www.quintiles.com http://www.quintiles.com/ www.expressionanalysis.com http://www.expressionanalysis.com/ cid:image001.jpg@01CDEF4B.84C3E9F0 https://www.twitter.com/simulxcid:image002.jpg@01CDEF4B.84C3E9F0 http://www.facebook.com/aronestycid:image003.jpg@01CDEF4B.84C3E9F0 http://www.linkedin.com/in/earonesty ___ Gluster-users mailing list gluster-us...@gluster.org http://supercolony.gluster.org/mailman/listinfo/gluster-users ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS-virt] Windows 7 on a centos kvm host pauses after the installation reboot.
Hey James, I do not have any optical device associated with the VM. What I tried and worked was to update the OS and also the kernel. Since I did an update from 2.6.X base repo kernel to elrepo lt kernel and Centos basic updates and then a reboot it was all resolved. I do not know the reason but it seems like the updated system solved the issue. Thanks, Eliezer On 06/09/2014 04:41 PM, James B. Byrne wrote: 1. Is there a CD/DVD drive associated with the VM? 2. If so, do you have a readable optical disk in the drive when starting the Windows7 guest? If the answer to 1 is yes and to 2 is no and your guest configuration file shows this: 30 disk type='block' device='cdrom' 31 driver name='qemu' type='raw'/ 32 source dev='/dev/sr0'/ 33 target dev='hdc' bus='ide'/ 34 readonly/ 35 address type='drive' controller='0' bus='1' target='0' unit='0'/ 36 /disk then remove the line 'source dev='/dev/sr0'/' and try again. HTH. -- *** E-Mail is NOT a SECURE channel *** James B. Byrne mailto:byrn...@harte-lyne.ca Harte Lyne Limited http://www.harte-lyne.ca 9 Brockley Drive vox: +1 905 561 1241 Hamilton, Ontario fax: +1 905 561 0757 Canada L8E 3C3 ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
Re: [CentOS] EFI and RAID questions
Hey there, And why not use HW raid and use monitoring tools for it? What raid card are you using that cannot be monitored? Eliezer On 05/10/2014 07:36 PM, CS_DBA wrote: Hi All; I have a new server we're setting up that supports EFI or Legacy in the bios I am a solid database guy but my SA skills are limited to what I need to get by 1) I used EFI because I wanted to create a raid 10 array with 6 4TB drives and apparently I cannot setup gpt partitions via parted in legacy mode (at least that's what I've read - is this true?) 2) I installed the OS on 2 500GB drives, I used to do all my installs with software RAID (mirrored) without LVM as follows: - create 2 raid partitions (one on each drive) for swap, /boot and / - create a raid1 device for each set of partitions above The installer would not let me proceed without a /boot/efi partition I tried to create a raid partition on each drive for this and create a /boot/efi raid disk but when I doit this way in the installer I no longer see the EFI SYSTEM Partition as an option for the filesystem type so this did not work either. I ended up doing hardware raid for the OS drives and software raid for the 6 4TB data drives. It works but I prefer to do software raid for everything so we ca have standard methods of monitoring for bad drives. Is there a way to setup software raid with EFI? Do I need to add a /boot/efi partition only to one of the 2 OS drives? If so how do I recover if we loose the drive with the /boot/efi partition? Is it required to use LVM to do this? Thanks in advance ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] The letter ש or a button in hebrew is by default dosn't write the requested letter.
On 03/27/2014 01:31 PM, John Doe wrote: Maybe try: http://physics.technion.ac.il/~ym/keyboard.html JD The issue was that I am using vnc and once the remote server has hebrew and the local machine has a language like hebrew and not the default en keyboard it's like using alternative keyboard. Thanks, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] The letter ש or a button in hebrew is by default dosn't write the requested letter.
I have been running CentOS and I have found out that there is a key that is not defined well. The a or ש which actually causes by a button press to a sing which is called new shekel or Shekel Chadash which is two letters together. What can I do to fix it? maybe someone have seen this in the past? Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] died again
Well just a note that sometimes CPU and other parts overload can cause a similar effect while newer software might offer better stability based on some sensors in the MB. All The Bests, Eliezer On 11/25/2013 07:45 AM, Michael Hennebry wrote: CentOS 6.4 died on me again. Didn't leave any traces that I could find. The screen just suddenly went black. Couldn't switch to another virtual terminal. Pushing the reset button worked. Didn't have to power off this time. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] died again
Well a RX3xx is a very good one. Hope you will have luck with it! If you have questions feel free to post them! CD and floppy are old and indeed needed in many cases but I have machines which doesn't have these at all in to the favor of USB :\ Eliezer On 22/01/14 20:15, Michael Hennebry wrote: The new one is still installed. Installing it was mechanically difficult. I won't put the other one back without cause. Cause would be expecting it to work. The new one is a PSU RAIDMAX | RX-380K 380W RT. All all voltages it will produce at least as much current as its predecessor. That said, it has fewer connectors. I had to leave off my CD and floppy drives. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] died again
On 22/01/14 03:00, Michael Hennebry wrote: 'Twasn't the PSU. I replaced it and got the same symptoms. Pardon me. I need to go kill something. Hey Michael, Don't run to kill something.. it will not help but it will... There are issues related to hardware which not everyone has the tools to identify. It is one of the fundamentals that you cannot always able to do what others can.. This is a fact of life which we cannot resist. We are obligated to first make sure one thing or another in our level was checked and verified but still nothing happens. What PSU is it the new one? Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] died again
On 16/01/14 00:26, John R Pierce wrote: there's a tab you depress, then those connectors should come out with just a few pounds of force. Unless it was overheated or the human do not have enough force in his hand or tools to pull it out. Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I want to ask about some Kernel level operations.
Hey Markus, On 04/01/14 18:37, Markus Falb wrote: An example: imagine a Makefile with a clean target $BUILDDIR=something clean: rm -rf $BUILDDIR/* a bug in the configure script could lead to an empty $BUILDDIR in the Makefile. What do you think happens when you type # make clean A script runs and do all sort of things on the way.. for example: makefile ##start install: echo Listing the dev directory with couple nice things in it ls -lh /dev/ clean: echo I would like to remove the dev directory but it seems pointless to me rm -rI /dev/* ##end Will help me understand the meaning of this file. what can we do in order to prevent such actions? Would selinux would help in this specific case? usually I remember that chroot should help to prevent an issue with it. Thanks, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I want to ask about some Kernel level operations.
On 05/01/14 19:32, Markus Falb wrote: Would selinux would help in this specific case? Please remember that my example was not about removing/dev/* but about removing /* , so why just not building as root? Well I am building as root when I understand it is safe to do so. usually I remember that chroot should help to prevent an issue with it. Hm, where to draw the line between prevention and mitigation? Anyways, do not build on the target machine, e.g. your production server. OK. It does not really matter in many cases if your development environment is separated by a chroot or a virtual machine or a whole physical machine. OK Use software versioning software Make Backups Be prepared to recreate your development environment. OK Even if you easily can recreate the development environment, maybe diagnosis plus recreation takes still more work than not building as root in the first time. This is the basic argument. I encourage to not build as root since it is better to be safe and steady then fast and reckless. Anyways, looking at the Subject of this thread I have no clue what you are after. Even root can not do kernel level operations. Only the kernel can do that, can't it? There are patches for the kernel to allow user-land almost direct access to the kernel resources. In the above case it is better to understand first that there is a possibility in this level. The kernel can be patched to send into the\an user-land software data. I do remember that it was done for iptables extensions. I am sure it is not recommended and it is not the best way to operate a system at all. Eliezer -- Markus ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I want to ask about some Kernel level operations.
Hey, I am still not sure if it's Harald or Reindl as first name. Now for the matter in hands: I am building the software mostly manually if I can! The problem is that most software developers tend to build their software in a very good way. The kernel developers for example of a remarkable software is a very strict environment. If I cannot build the kernel as root user it is better to not build it at all from my aspect. The RPMBUILD tools and other automation tools is suppose to help distributing and test the code. Once it has passed these tests why would I need to build them as a non-root user? We all humans and we do tend to maybe miss here and there something but don't let these MOCKs and RPMbuilds to just *vaporise* the basic efforts which the developers invested. I would say something like that: Building as root user\s level is not recommended due to couple incidents in the past. All The Bests, Eliezer On 05/01/14 17:16, Reindl Harald wrote: DO NOT BUILD AS ROOT AND USE MOCK/RPMBUILD what is your problem as you statet even in the original post that you know that it is not recommended to build as root but you insist in doing so? *what* do you want to achieve with this thread? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I want to ask about some Kernel level operations.
I am obligated to say: How would you expect a 100MB of code to be mocked? What would be a clean buildroot for? If somebody wrote the software and decides what and how to install he should at least be familiar with the basic structure of the OS unless it's not possible to find somebody that actually knows the structure of the OS. Eliezer On 02/01/14 16:21, Johnny Hughes wrote: If we are talking CentOS / Red Hat / Fedora type packages then most of the time nowadays those SRPMs should be built inside of mock anyway to get a clean buildroot. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I want to ask about some Kernel level operations.
On 03/01/14 01:42, Reindl Harald wrote: so hire somebody Looking for a recommendation for one.. Please also add the price for learning from him. Thanks, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I want to ask about some Kernel level operations.
Hey Michael, On 03/01/14 02:11, Michael Lampe wrote: Eliezer wrote: What would be a clean buildroot for? Well, only God himself did the initial creative work just once -- after that, He let things go, because it was already to complicated even for Him -- or perfect. Anyway, because He had not planned doing it again and reiterate, we now have theology and the subject of theodicy. And remember: even the pope uses 'sudo' when he speaks 'ex cathedra'. So wtf are you asking for?? I have couple things but the main issue is that couple nice guys said something about CentOS. What I am trying is to learn from the bests!! and all the time. I see them at work I see them here and I see them on TV. I also tried to meet some of them but god have prevented me from meeting them by default. I will not complain on it.. I have tried my bests at building some RPMs and by reading couple books about RPM and other levels. One of the greatest things I have seen until now is: http://vimeo.com/70019064 Which can describe the needed muscles and brains to build a RPM. Thanks, Eliezer -Michael ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos-compatible motherboards
On 26/12/13 06:05, John R Pierce wrote: that listing is nearly useless for this.it doesn't contain motherboards, it contains complete brand name systems that were submitted for paid testing. What is so bad for paid testings? If it was tested for a reasonable usage it's fine. If you have a specific benchmark in your hands share it and there are plenty of nice and well known guys out in the world who would be happy to test it just for you to make sure your tests are OK. It seems reasonable that some bugs or what ever you call them will exist on any piece of software but once you test it enough and put more human resources in them it costs money or at least something equal. Do you have something in mind? If so please post it and some nice guys around the world will test it for you in a short time. Regards, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos-compatible motherboards
On 01/01/14 23:09, John R Pierce wrote: my point is, the coverage of that hardware listing on the redhat site is woefully inadequate for the needs of the OP. NO motherboards or chipsets are listed, just complete systems, mostly servers. Even the HP DL160gen8 servers I just bought for my lab at work aren't listed. The basic assumption is that server hardware won't be changed every second to allow actual systems to work and be designed. It would be ridiculously absurd to assume that the desktop hardware is compared to servers. These servers and desktops have datasheets and basic specifications. The manufacturers do tests mainly to fit their client needs. It is expected for a specific chip-set to be similar on each and every one of the machines it's on. If there is someone that changes the scope of the hardware out of the specifications such as over-clocking or over-usage or any other way of abusing' the hardware it is expected to not work properly or for all the protection mechanisms to not work accordingly. Lets take for a second Linux as a human. Linux Desktop is a very intensive Desktop which is not like most the users in the world that sits in a office. It is very hard for many to meet Linux Desktop needs and demands. For example. Cisco servers do apply to even meet the demands of a Linux server in the form of: http://www.cisco.com/en/US/products/ps11583/ I am not sure for example that a company xyz that is not listed in RH Certification doesn't have the same chipset as the Cisco servers. It doesn't even matter... This product for example: http://b2b.gigabyte.com/products/product-page.aspx?pid=4157#sp Have basic specifications. In amazon there is a price for this specific hardware while there is an option it cannot even be delivered to your place. Sometimes there is an option in the shape of a desktop in the local store while the server is tempting. In a case that the Linux Desktop is not demanding that much from the hardware it can be satisfied with simple specifications. Another example is: AMD Opteron™ 6300 Series which is 64 bit compatible and should not have any issues with the kernel. I am almost sure that DDR3 memory is compatible with Linux Desktop pretty easily. Now to leave all the other parts aside such as PSU and some others... Once a PC or a SERVER was tested by someone it means that it should work unless was damaged in any way. Indeed the HP DL160gen8 might not be in the list.. I am sure that a Xeon CPU from the E5-2600 product family should work and meet Linux Desktop and Server. I want to verify something: How long would it take to decide that a hardware is compatible with a software, will it be before it will overheat or after? Thanks, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos-compatible motherboards
On 02/01/14 00:13, John R Pierce wrote: I'm glad you're so sure (and yes in fact, it did work...), but my original point remains, thehttp://hardware.redhat.com listings are nearly useless. For who? Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos-compatible motherboards
On 02/01/14 01:19, John R Pierce wrote: for the original poster, who was asking on this thread which motherboards would work, as the hardware.redhat.com site doesn't list motherboards. and useless for me, when they don't include the major brand server models I might be considering for work. Just to make sure I understand the question again: PC and Servers hardware is suppose to be BIOS compatible? In a case that these do comply and Linux is not supporting BIOS it's another story. In the case that Linux do work with all BIOS systems by compiling it once I will consider myself living in the age of about 2 Millions years from now.(not about Linux but about human levels) Any Basic Input Output System requires testing once in a while! Any BIOS design should be compatible to run all software that is based on BIOS. Since not all hardware is made from the same piece of hardware it is assumed that some might not be compatible with Linux. My basic assumption is that if the manufacturer of the MB specifies that it's Linux Compatible it will be supported by somebody around the place you will buy the part from. There are places around the world which still use Windows 98 since it just works for them. The PC brands I know are: Packard-Bell, Gateway, Toshiba, HP, IBM, ASUS, INTEL, AMD, Biostar, GigaByte, IOMEGA, FUJITSU. I remember that I am missing some others but these are known to me for a working desktop for years. I also have seen lots of Custom Made\Compiled PC's which you cannot just brand them or even say Chipset X or else. IBM big servers for example do not work with any Linux version out of the box since it needs patches and Customization. How will you use Linux OS on a 512k CPUs for example? Every CPU and Chipset around the world was Customed made or designed by someone... A nice linux version I do like is Finnix which tends to work as a BIOS OS.(GUI is not BIOS). I would recommend on a specific hardware if really needed.. Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] I want to ask about some Kernel level operations.
I want to make sure that while compiling as root nothing will break down inside the machine. I want to compile software on a Xeon SERVER. The basic issue is that there is a recommendation to not compile it as a root user. I have compiled software as a root user more then once and I am not sure why would there is a need to run it as non-root user? I have taken a look at the /proc/ FS but I do not see anything that can harm anything yet. From my aspect it's just background of electricity noise. I will be happy to hear from experience of others about it. Thanks, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I want to ask about some Kernel level operations.
Hey John, Thanks! On 02/01/14 02:14, John R Pierce wrote: Its the principle of least privilege. You don't need to be root to compile software, or to test software in a local directory, you only need root privileges to install it to a system directory. When you're developing, building, testing software, there's a very good chance of something going wrong, so if you are running as a non-root user, the potential damages are minimized. OK so as long as I can understand the meaning of compiling as non-root user is to be careful with your system. I would say that my conclusion is that if there is a very big system it is better to let the root user which understand the meaning of this system and to operate it. A simple testing machine which has error correction mechanism in it should be OK. I can see couple issues from my mind and vision but it seems like most software in CentOS will be safe to be compiled as root user.(I am testing a tiny simple piece of software) To corrupt a system in a level which it cannot be recognized that you have changed it you must be something like GOD or something in the same level. Thanks Again, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Centos-compatible motherboards
The BIOS is what the hardware is based upon and the testing of a Mother-Board should be started at the BIOS level. The Basic Input Output for today hardware is basically based on USB even for many servers. There are cases which you see a system that CentOS6 was not designed to work with. Not just that but in the level that the engineers designed this MB or it's chips to work with a specific OS or with a specific set of tools. There are other Operation Systems around the work which are not MS or Linux or FreeBSD or Unix. There are custom OS's that do allow other operations and other levels then these. No I do not see them every day but the reason that the Manufacturer is maintaining the Compatibility lists is to let the Desktop or Server Distributer the Benefit of understanding that this piece of software was designed to work with this specific cases. In the case that there is a mismatch between the list and reality the human mind comes in handy. I do really like to buy in stores I know the owner or at-least have good name. The main issue is that one is expecting a set of results while the others do not. When a 200Mhz server was running fine with a Linux kernel it ran fine.. Some people just don't understand what 2.2 Ghz is and what level of complexity we are talking about. (Another squid was compiled safely) How do we test ECC memory? Eliezer On 02/01/14 02:06, John R Pierce wrote: huh? the BIOS is nearly irrelevant, its code is used for phase 0 bootstrap only, and other than the ACPI tables that are used to provide info about power management capabilities. the rest of the BIOS went the way of MSDOS. whats important know is whether or not the RHEL6 package, and by implication, CentOS6, has out of the box support for all the core IO devices on the system, its network and storage controllers for a server, and also audio and graphics for a workstation. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] died again
What Refurbished means? The hardware by itself looks nice but it might be a noisy machine. HP support only windows Vista for this machine and I do not know what bios and CHIPS it was built upon yet. If it has the parts that this review claims: http://reviews.cnet.com/desktops/hp-compaq-business-dc7800/4507-3118_7-32598385.html Then this is the official compatibility the chipset has: http://www.intel.com/p/en_US/support/category/graphics/q35/cmptbl I have not used yet a q35 based machine but it seems like kvm is using\planing this chipset design as an emulated layer in kvm: http://www.linux-kvm.org/wiki/images/0/06/2012-forum-Q35.pdf So the basic assumption is that it was used by a client and then was replaced by newer desktop to prevent something or just to move forward. Compared to the +3800X2 I think E6750 requires more Power but it has VT-x support. Due to 2.33 I assume it's not the E6750 but maybe E6550. And as long you do not expect it to lift your desktop to the air it should be a good machine. Compared to INTEL ATOM it is rated for 65w which most ATOM are about 15w. Basic EMAIL(not 40k emails) and basic browsing(not too much concurrently open tabs) should run simultaneously by default. If you can buy the 4GB as a package it will give you more air to breath while comparing it to the old machine. The HDD state is irrelevant as I understand. The basic issue with this machine is that in my part of the world I cannot get replacement parts for it. If you can try to ask in nearby small stores what MB they do have and what parts are the basic ones today you will know what to expect. Eliezer On 05/12/13 22:02, Michael Hennebry wrote: I'm considering the beast listed here, especially if my current beast dies: http://www.newegg.com/Product/Product.aspx?Item=N82E16883250296cm_sp=DailyDeal-_-83-250-296-_-Product I note that it has an Intel Core 2 Duo and 2G of RAM. It has those in common with a lot of cheap PC's I've seen. Are there gotchas here that I should know about? I'm already aware that Core 2 is on Intel's discontiued list. My current beast has Pentium 4 with 4G of RAM. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] died again
Hey Michael, The TPM can be an issue but once you install the OS(LINUX) on DISK(maybe on another machine) it should fly by default. What is the meaning of Trusted by HP\COMPAQ? I do not know yet. From what I understand a Refurbished means Used and was used in a company\office the last time before being tested in lab. gotchas with RAM ? like what? If it's a RAM that can take your workload for more then a week it is basically fine. Only when you see weird stuff happening on the desktop you do understand that there is something wrong. You can do the same like in servers that each and every boot do a full slow memory tests with the only difference: it do not have any ECC check at all. Do you run compiling jobs on this machine and\or plain Coding ? others? Eliezer On 07/12/13 09:09, Michael Hennebry wrote: On Sat, 7 Dec 2013, Eliezer Croitoru wrote: What Refurbished means? newegg: Refurbished products have been tested to ensure compliance with original manufacturer specifications, and MAY include a limited manufacturer warranty - see the item's product page for details. The hardware by itself looks nice but it might be a noisy machine. HP support only windows Vista for this machine and I do not know what bios and CHIPS it was built upon yet. If it has the parts that this review claims: http://reviews.cnet.com/desktops/hp-compaq-business-dc7800/4507-3118_7-32598385.html I noticed the TPM 1.2 . Am I going have to start dealing with the trusted computing crap when I get another computer? Also, I just noticed that the seller's answer to a question suggests that the power supply is borderline. Due to 2.33 I assume it's not the E6750 but maybe E6550. And as long you do not expect it to lift your desktop to the air it should be a good machine. So no gotchas with Core 2 Duo and 2G of RAM. Compared to INTEL ATOM it is rated for 65w which most ATOM are about 15w. Basic EMAIL(not 40k emails) and basic browsing(not too much concurrently open tabs) should run simultaneously by default. Development work. If you can buy the 4GB as a package it will give you more air to breath while comparing it to the old machine. On 05/12/13 22:02, Michael Hennebry wrote: I'm considering the beast listed here, especially if my current beast dies: http://www.newegg.com/Product/Product.aspx?Item=N82E16883250296cm_sp=DailyDeal-_-83-250-296-_-Product I note that it has an Intel Core 2 Duo and 2G of RAM. It has those in common with a lot of cheap PC's I've seen. Are there gotchas here that I should know about? I'm already aware that Core 2 is on Intel's discontiued list. My current beast has Pentium 4 with 4G of RAM. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] died again
Hey there, He has a 3.2 Ghz CPU which is much more then this 3800 but the only thing that the 3800+ is good is that it has 2 cores but still same low share ram ( I had one of these in the past). Eliezer On 28/11/13 12:29, John R Pierce wrote: On 11/26/2013 3:58 PM, Michael Hennebry wrote: $300 desktops? Where? how about under $100 for a complete desktop? http://www.newegg.com/Special/ShellShocker.aspx?nm_mc=EMC-SD112013cm_mmc=EMC-SD112013-_-SD112813-_-item-_-83-155-932et_cid=3212et_rid=117069 you'll need to subscribe to newegg's shellshocker list before you can order it, and this deal is only 'visible' and valid from 3-6pm PST tomorrow (Thanksgiving Day), its a refurb Dell OptiPlex GX740 stripped model, miditower with an AMD Athlon 64 X2 3800+ dual core 2Ghz, 2GB ram, 80GB HD, keyboard, mouse. For $95 (after a $10 mail-in-rebate). I'd want to add at least 4GB more memory (it will take max 4 x 2GB == 8GB DDR2 dimms... I suspect it comes with 2 x 1GB), and my existing SATA disks (it has 4 SATA ports). ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] died again
Hey Michael, I would try to check it up from bottom up and note that each time it fails you may have an error popping out later. The first thing is to check voltage in the BIOS. Then if it's by percentage 12V should be between 11.9 to 12.1 when these are quite not the best thing to have if possible. Also take a look at the 3V and 5V to make sure that all the voltage in the machine is in the acceptable percentage which should be about 1-3% off the 12.0 3.0 5.0 ( It should be there in the BIOS) The next step is to verify that the memory is not in high performance settings which can be high voltage or unverified settings. Most D865GBFL should work with most memory chips and cards out of the box. I do not remember if these boards do have memory settings in jumpers but since it's a P4 I would assume it's possible to see those (not yet finished to read the whole 142 pdf). Try to adjust the agp Aperture size to lower then 64MB (16). In the Hardware monitoring try to see what is the CPU heat which should be up to 70C but in some cases will show 90C+ but it's due to sensor failure. The next step will be to restore the bios defaults settings and disabling the 1.44 (unless you have one). This is the BIOS level I can think about from the product guide side. The next step is to make sure you have backups for what you need (just as a regular basis task that should be done) Also don't be tempted to replace this beast with a ARM\ATOM or any other suggestion that might not understand what a 3.2 P4 can do that the BEST ATOM cpu cannot. I do not know where you live at and there-for the price can vary from one place to another and which can be over 200$ and over 300$. This machine is not described as Linux compatible by INTEL and which can or cannot be a reason for anything and the change of Plug And Play flag in the bios might help to solve some problems\issues. It is possible that the power supply was a bit loaded using two disk devices and which can cause some system freezes when a high load is there on it for a long period of time. To make sure that the power supply is there and working properly not harming any hardware you should open the case (if it's an easy to open one) while it's off the network grid and make sure that all capacitors are in a good shape. This is a point which you should understand this beast is old and since it works on 3.2 Ghz some parts might have gotten old but not necessarily needs to be replaced. In a case you are replacing anything you should take couple parts together: CPU RAM Power Supply. Fans. Sometimes it can sound a drastic change but it is recommended since there are couple unknowns in the picture which I would prefer to not discover as a fact. I am almost sure that this CPU is a 32bit and if you don't need(like many) the fancy GRAPHICS and some additions that was added to the latest and shiny releases of Fedora then 14 is just fine. On the next fedora release I would like to hear from someone there how many times in 5 years he replaced his chairs or his drill for example. (I assume it was not done 5 times over all these 5 years) You can look up on the software level 4-5 times but still each time the machine got stuck some information was not written to the FS and it happens while sometime causes a problem to read a file. The basic badblocks tool can help you discover if there is a problem with the software accessing any of the drives. Note that it happens that access to a DISK can be because of a cable sometimes. In a case you want to make sure that the problem is in another level then the DISK you can try to work with a LIVE dvd\cd not touching any DISK IO while working on the PC.(this machine do not have USB boot support the last time I checked). I do hope it will help you to find the right path with your PC. Regards, Eliezer On 25/11/13 18:58, Michael Hennebry wrote: The computer is a DakTEch Freedom 4 P4 DDR System. The system board is a D865GBFL w/LAN,audio video Processor Intel Pentium 4 3.2 Ghz 800FSB I got it in 2006. I switched to CentOS because Fedora will not install on it any more. Fedora 14 is the last I was able to install. Installation has almost always been a tremendous hassle for me, so I've usually not gone with the latest and greatest until my current nears EOL. I've read that a kernel bug is the reason that I could not install F16. Supposedly it had been fixed by F17, but no go. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 2 routes 1 destinations
On 11/15/2013 01:00 PM, Andrew Holway wrote: You should be careful of doing any kind of network latency sensitive work with providers such as OVH. The latency of their networks can be very unstable. You can end up in a flip flopping state very easily. What is this OVH ? Can someone give me a link? Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] 2 routes 1 destinations
It is only a matter of metric latency from and to the data-center that matters.. There are many clients that will like their options. For clients around Europe and their globally fiber-optic channels it might worth. If you are from for example japan or AUS I am not that your clients RTT will be well tuned for usage with their infrastructure. When and if you have a testing period of the service It is possible to ask for answers about the basic Network and service performance which seems reasonable to me as an ISP and as a DATACENTER. I would try to test them while paying them a bit and to see if they can commit them-self to your demands in a reasonable period of time. Eliezer On 11/16/2013 11:53 PM, Robin Polak wrote: On Sat, Nov 16, 2013 at 4:49 PM, Eliezer Croitoru elie...@ngtech.co.ilwrote: On 11/15/2013 01:00 PM, Andrew Holway wrote: You should be careful of doing any kind of network latency sensitive work with providers such as OVH. The latency of their networks can be very unstable. You can end up in a flip flopping state very easily. What is this OVH ? Can someone give me a link? Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos http://www.ovh.co.uk/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Enterprise Class Hard Drive - Scam Warning
Hey Levi, This is another angle that you are talking about. I would not worry about it that much if it is seald with the manufacturer stamp on it. what whould be done on the drive?? somebody transfered some data? these counters are there for a reason and I would want the manufactrer to do couple tests and if the seal means that all tests was done on the motor\engine and the electronic board (which are compiled from couple parts\places) I would want them to test the whole drive for me to make sure that the screw is not loose and the hardware can run a full run and is not failing at all. If the testing tools are acurate enoguh to prevent the need for a *RUN* test I do not mind leaving the drive assembled as is and thats it. The drive pin\head should be docked and locked the wole time of delivery of the drive etc.. I am still wating for WD or SEAGATE representetive of them to describe for me the details of how a how a drive was made from 0 to 100. Eliezer On 10/07/2013 09:24 AM, Birta Levente wrote: On 07/10/2013 00:49, Eliezer Croitoru wrote: On 10/05/2013 02:57 AM, Peter wrote: On 10/05/2013 11:39 AM, Eliezer Croitoru wrote: Hey, I was wondering about enterprise class drives: Do you really expect the drive to be shipped to you before even a basic validation test? Hello, I think any test should nothing to do with these counters. If I buy a new hard drive I expect to have counters on zero. Because the tests is made (or should be) by manufacturer after test they can be set these counters to zero. Levi I would expect 24 or maybe 48 hours for a burn-in, but not 87 days. OK so it is clear now that a new driver should be tested but not be *used* :D Eliezer Peter ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Enterprise Class Hard Drive - Scam Warning
On 10/05/2013 02:57 AM, Peter wrote: On 10/05/2013 11:39 AM, Eliezer Croitoru wrote: Hey, I was wondering about enterprise class drives: Do you really expect the drive to be shipped to you before even a basic validation test? I would expect 24 or maybe 48 hours for a burn-in, but not 87 days. OK so it is clear now that a new driver should be tested but not be *used* :D Eliezer Peter ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Enterprise Class Hard Drive - Scam Warning
Hey, I was wondering about enterprise class drives: Do you really expect the drive to be shipped to you before even a basic validation test? Do you understand that a basic spindown to the car is needed to make sure that all the parts are fine and the car actually works?? I would try to imagine myself this: Hmm OK this is your new car bam: Hoo we forgot to start the engine and make sure that you have a bit of gas to make it to the next gas station hoo and sorry this is the first time we turn the switch on since the assembly of the car so feel free to test it for us.. Eliezer On 10/02/2013 07:24 PM, Steve Brooks wrote: Hi All, I know many of us here manage RAID on our Centos based servers so this may be of interest to us all. I ordered three new Enterprise hard drives this month from a well known UK online retailer. The drives arrived as new in their anti-static packaging. Before using one of the drives in a mission critical hardware raid I checked the SMART attributes and was amazed at what I saw; see a few of the attributes listed below 1 Raw_Read_Error_Rate 0x002f 200 200 051Pre-fail - 2600 9 Power_On_Hours 0x0032 098 097 000Old_age - 2106 12 Power_Cycle_Count 0x0032 100 100 000Old_age - 80 198 Offline_Uncorrectable 0x0030 196 196 000Old_age -398 200 Multi_Zone_Error_Rate 0x0008 180 180 000Old_age - 4077 So for a brand new packaged drive this was a bit of a surprise. 2106 power on hours, obviously should be zero for a new drive and 398 Offline_Uncorrectable sectors this is a well used and faulty drive. I contacted the (very well known) manufacturer of the drive and asked for information on the serial number. I was told the serial number of the drive was region specific to the USA and should not even be in the UK. I opened and tested the second and third drives with similar results. I was told two of the drives had already been returned under warranty and replaced with new drives. Wow... I was also told by the online retailer this is known as a grey import and is not that uncommon.. So it may be a good policy to check the SMART attributes of drives before deployment! Cheers, Steve ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: laptop recommendations for CentOS6
Hey there, CentOS is using what kernel? 2.x?? which was not designed to work with newer hardware but Fedora works fine with it. If you need specific functions like EMAIL WEB etc take a look at the latest stable Fedora and go back one version and test it. I am using Fedora(18) on a very old MSI (5 years or more) and it works nice but not as fast as newer basic desktop corei3. I assume that Fedora will work on basic laptop chipsets. they do have compatibly list: http://wiki.centos.org/AdditionalResources/HardwareList http://fedoraproject.org/wiki/HCL/Machines/Laptops if you can know what is the chipset on each card like atheros broadcom intel nvidia ati etc you can make sure that the OS will work with it. my desktop has a ATI card so it's suppose to be compatible with Fedora. Did you considered other OS for the machine? Eliezer On 08/16/2013 07:06 PM, carlopmart wrote: Hi all, First of all, sorry for the OT. I need to buy a new laptop for my work. My prerequisites are: - RAM: 6/8 GiB (preferably 8 GiB) - Processor: Core i7 - Disk: up to 500 GiB for SATA, 128 GiB for SSD. - Graphics card: Intel HD (I really hate to use Nvidia or ATI Radeon graphics cards). The most important tasks will be: - Surf the web :) - Read email - And the Most important task: I need to install complete virtual test labs on it using KVM, Xen and VMware suites to run several different types of OSes: RHEL, CentOS, OEL, Solaris-like, BSD, Windows 2012/2008 R2, etc. Any suggestions?? My first choice will be Toshiba or Lenovo laptops and of course it needs to be 100% compatible with CentOS6 (or almost at 95%). Thanks. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: laptop recommendations for CentOS6
On 08/17/2013 04:08 PM, Ljubomir Ljubojevic wrote: I recently bought Samsung NP350E5x-A04HR that is all Intel with with traditional Fn function (some manufacturers reverse the Fn action so you get F1-F12 WITH Fn, and play/pause/wireless/etc are used WITHOUT Fn key) with current problem that volume key goes haywire when pressed several times and freezes screen. Only thing that it failed to recognize is Card Reader, it looks like some bus is not recognized. and how many VMs are you running on this machine exactly? 1? On my laptop it works nicely with more then 5 online linux machines. try kvm and then VMWARE and then VIRTUALBOX and see what is the supported OS and I assume XEN is a nice example of how it works on your machine... Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] OT: laptop recommendations for CentOS6
On 08/17/2013 05:14 PM, Ljubomir Ljubojevic wrote: On 08/17/2013 03:23 PM, Eliezer Croitoru wrote: On 08/17/2013 04:08 PM, Ljubomir Ljubojevic wrote: I recently bought Samsung NP350E5x-A04HR that is all Intel with with traditional Fn function (some manufacturers reverse the Fn action so you get F1-F12 WITH Fn, and play/pause/wireless/etc are used WITHOUT Fn key) with current problem that volume key goes haywire when pressed several times and freezes screen. Only thing that it failed to recognize is Card Reader, it looks like some bus is not recognized. and how many VMs are you running on this machine exactly? 1? On my laptop it works nicely with more then 5 online linux machines. try kvm and then VMWARE and then VIRTUALBOX and see what is the supported OS and I assume XEN is a nice example of how it works on your machine... Is there are a reason why KVM, Xen , VMWARE and Virtualbox does not run on CentOS??? * KVM works if CPU supports it. * Xen has it's on project on CentOS 6: http://blog.xen.org/index.php/2013/06/20/welcome-to-the-xen4centos6-project-first-release/ * VMWare says it supports it: https://www.vmware.com/resources/compatibility/detail.php?deviceCategory=softwaretestConfig=17productid=17363releaseid=217supRel=217,deviceCategory=softwareoperatingSystems=27testConfigurations=17osFamily=2page=1display_interval=10sortColumn=PartnersortOrder=AsctestConfig=17 * VirtualBox works I am personally not aware of such problem. Please enlighten me. Indeed you are right about it and it should work but not every cpu do the same with the same VM engine. if you do have all of them running I am sure you can tell the client or anyone in the world that it works. Else.. you can just tell him it's supported by the vendor or the product team\list etc in a case He will have some troubles running it. Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] What FileSystems for large stores and very very large stores?
Thanks! This was very helpful and I am testing something and writing on the dovecot mailing list about it. Eliezer On 08/07/2013 09:42 PM, Matti Aarnio wrote: On 08/07/2013 03:58 AM, Eliezer Croitoru wrote: OK so back to the issue in hands. The issue is that I have a mail storage for more then 65k users per domain and the ext4 doesn't support this size of directory list. The reiser FS indeed fits for the purpose but ext4 doesn't even start to scratch it. Now the real question is that: What FS will you use for dovecot backhand to store a domain with more then 65k users? Eliezer It was back in 1995 when I had this kind of problem with about 0.05 M accounts, and our solution was used until at least 0.5 M accounts, when I left the company. The filesystem in question back then degraded severely in performance when there were more than about 200 files in a directory. We ended up cooking our own way using FNV-1a hash, but Dovecot has something similar natively: http://wiki2.dovecot.org/MailLocation The Directory hashing is the interesting part, although that explanation does look like needing a complete rewrite. Having lots of file names in directory will likely mean that a) your directory file is actually grown over time in small extents spanning all over the disk space and b) thus its reading becomes very inefficient. Having a hashed subdirectory structure will mean that a 4kB file system block size will likely not overflow , or at most have only a few extend blocks, and their reading will not be _that_ much slower. Best Regards, Matti Aarnio ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Cisco DPC3825 - Web Server
How exactly is the Cisco related to the CentOS server?? If ssh works then you should get the same result unless the device is loaded and not fit for the job!! How do you setup this cisco device?? by CLI or other methods? try this: http://www.cisco.com/web/consumer/support/modem_DPC3825.html#~user-guides in case you passed this we can try to help you more. Eliezer On 08/09/2013 12:46 AM, Fidel Dominguez wrote: Friends I have the following Cisco DPC3825. Enter the settings and put in the DMZ web server that I have, but when I try to access it from another network I get the error code 504, which is the gateway problem. I can access the server via ssh without problems. Research on google for 3 days and can not find the solution to my problem. This router is different compared to the ones I had. The IP to access my router via web from the local network is 192.168.100.1, and the IP of the server I put in the DMZ is 192.168.0.17. No other information could you provide to clarify my problem. Sincerely Fidel Dominguez ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] What FileSystems for large stores and very very large stores?
OK so back to the issue in hands. The issue is that I have a mail storage for more then 65k users per domain and the ext4 doesn't support this size of directory list. The reiser FS indeed fits for the purpose but ext4 doesn't even start to scratch it. Now the real question is that: What FS will you use for dovecot backhand to store a domain with more then 65k users? Eliezer On 07/05/2013 04:45 PM, Eliezer Croitoru wrote: I was learning about the different FS exists. I was working on systems that ReiserFS was the star but since there is no longer support from the creator there are other consolidations to be done. I want to ask about couple FS options. EXT4 which is amazing for one node but for more it's another story. I have heard about GFS2 and GlusterFS and read the docs and official materials from RH on them. In the RH docs it states the EXT4 limit files per directory is 65k and I had a directory which was pretty loaded with files and I am unsure exactly what was the size but I am almost sure it was larger the 65k files per directory. I was considering using GlusterFS for a very large storage system with NFS front. I am still unsure EXT4 should or shouldn't be able to handle more then 16TB since the linux kernel ext4 docs at: https://www.kernel.org/doc/Documentation/filesystems/ext4.txt in section 2.1 it states: * ability to use filesystems 16TB (e2fsprogs support not available yet). so can I use it or not?? if there are no tools to handle this size then I cannot trust it. I want to create a storage with more then 16TB based on GlusterFS since it allows me to use 2-3 rings FS which will allow me to put the storage in a form of: 1 client - HA NFS servers - GlusterFS cluster. it seems to more that GlusterFS is a better choice then Swift since RH do provide support for it. Every response will be appreciated. Thanks, Eliezer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos