Re: [CentOS-docs] Wiki Access Request for Java How To's
On Fri, 2009-04-24 at 12:25 -0700, Sean Gilligan wrote: ... I noticed this wiki page (http://wiki.centos.org/HowTos/CreateLocalMirror) was recently added. I believe using Cobbler is a valid alternative approach for this, right? Please feel free to add a Cobbler summary and/or pointers to the above page in the alternatives section which already includes mrepo, lftp, and reposync. Phil ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] Wiki Access Request for Java How To's
Phil Schaffner wrote: On Fri, 2009-04-24 at 12:25 -0700, Sean Gilligan wrote: ... I noticed this wiki page (http://wiki.centos.org/HowTos/CreateLocalMirror) was recently added. I believe using Cobbler is a valid alternative approach for this, right? Please feel free to add a Cobbler summary and/or pointers to the above page in the alternatives section which already includes mrepo, lftp, and reposync. Phil I'm still waiting for write-access to the Wiki. -- Sean ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] contrib repository not mentioned on AdditionalResources/Repositories
On 25/04/2009, Sean Gilligan s...@msgilligan.com wrote: The 'contrib' repository is mentioned on FAQ/General #13: http://wiki.centos.org/FAQ/General#head-92ba307b036080a16dbffa44486cde25c081fcca but not on the AdditionalResources/Repositories page: http://wiki.centos.org/AdditionalResources/Repositories Thanks Sean. Now mentioned. Alan. ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] How do I find xyz.rpm for CentOS?
Post this in the general centos list next time. On Sat, 2009-04-25 at 10:33 -0700, Sean Gilligan wrote: My next question is: How do I find out if a particular package is available in one of the repositories? yum search package_name --enablerepo=*\repo_name FAQ/General #8 is Where can I get package XyZ.rpm for CentOS? and it links to the Repositories page. What I'm looking for is links to directories of each repository or (better still) a unified directory and/or search utility. Of course, I'm willing to help update pages once I get wiki write access -- Sean Alan Bartlett wrote: On 25/04/2009, Sean Gilligan s...@msgilligan.com wrote: The 'contrib' repository is mentioned on FAQ/General #13: http://wiki.centos.org/FAQ/General#head-92ba307b036080a16dbffa44486cde25c081fcca but not on the AdditionalResources/Repositories page: http://wiki.centos.org/AdditionalResources/Repositories Thanks Sean. Now mentioned. Alan. ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
[CentOS-docs] How do I find xyz.rpm for CentOS?
My next question is: How do I find out if a particular package is available in one of the repositories? FAQ/General #8 is Where can I get package XyZ.rpm for CentOS? and it links to the Repositories page. What I'm looking for is links to directories of each repository or (better still) a unified directory and/or search utility. Of course, I'm willing to help update pages once I get wiki write access -- Sean Alan Bartlett wrote: On 25/04/2009, Sean Gilligan s...@msgilligan.com wrote: The 'contrib' repository is mentioned on FAQ/General #13: http://wiki.centos.org/FAQ/General#head-92ba307b036080a16dbffa44486cde25c081fcca but not on the AdditionalResources/Repositories page: http://wiki.centos.org/AdditionalResources/Repositories Thanks Sean. Now mentioned. Alan. ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] How do I find xyz.rpm for CentOS?
On 25/04/2009, Sean Gilligan s...@msgilligan.com wrote: snip Of course, I'm willing to help update pages once I get wiki write access That will be for to Ralph to attend to -- in due course. Please remember to abide by the CentOS m/l rules -- in particular no top posting, use bottom posting only and to trim your response / reply of all extraneous material. Alan. ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
Re: [CentOS-docs] How do I find xyz.rpm for CentOS?
JohnS wrote: Post this in the general centos list next time. Sorry. I'm new to CentOS and I'm trying to learn things through the docs and I would really like to help improve them as I learn. I'll post actual questions to the general list, but when I get answers I'll try to improve the documentation either directly or by posting on this list. yum search package_name --enablerepo=*\repo_name Thanks, I didn't know about the --enablerepo option to yum. -- Sean ___ CentOS-docs mailing list CentOS-docs@centos.org http://lists.centos.org/mailman/listinfo/centos-docs
[CentOS-es] Apache y ServerName
Hola a todos de nuevo, tengo una duda con apache. Tengo un servidor centos 5.3 que actua como servidor DNS con bind9 y servidor web con apache 2.2. el servidor DNS funciona perfectamente tanto de forma directa como inversa resolviendo los nombres e ips de la red local e internet, tanto desde el servidor como desde clientes. La ip del servidor es 192.168.1.201, y responde a varios registros (vcos.ardn.net el NS, y dos CNAME dns1.ardn.net y www.ardn.net). Al final os pongo el contenido de la zona, para que veáis como lo defino, por si no queda claro. El servidor web está instalado, y puedo acceder a él desde cualquier máquina de la red. el problema que tengo es que sólo quiero que puedan acceder escribiendo en la barra de dirección www.ardn.net y ahora mismo pueden acceder escribiendo también dns1.ardn.net o vcos.ardn.net. Como los tres registros tiene la misma IP (dos son alias de vcos.ardn.net), no puedo utilizar la directiva Listen del httpd.conf pues seguiría respondiendo el servidor web a las peticiones de los tres nombres. Lo he intentado con ServerName www.ardn.net, pensando que así sólo respondería a ese dominio, pero no ha sido así y puedo seguir accediendo escribiendo cualquiera de los otros dos nombres. ¿Alguna idea? $ORIGIN ardn.net. $TTL86400 @ IN SOA vcos.ardn.net. root.ardn.net. ( 2009042303 ; Serial 28800 ;Refresh 14400 ;Retry 360 ;Expire 86400 ) ;Minimum IN NS vcos.ardn.net. ;SERVIDORES ; IN MX 10 mail.ardn.net. ;servidor correo vcosIN A 192.168.1.201 ; Centos vos IN A 192.168.1.202 ; OpenSolaris vdebIN A 192.168.1.203 ; Debian vslack IN A 192.168.1.204 ; Slackware vbsdIN A 192.168.1.205 ; FreeBSD vws2008 IN A 192.168.1.206 ; Windows Server 2008 dns1IN CNAME vcos www IN CNAME vcos ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] configurar cliente tonto centos
Hola a todos después de unos días probando y mirando cosas al final me decidi por usar el XDMCP y en el Gnome inié la sesion en el servidor remoto con el GDM. Lo que necesitaba era ejecutar una aplicacion que hicieron para Gnome y desde varios equipos remotos tenia que ejetuar dicha aplicación en el servidor. Ahora las dudas que tengo, es en el tema de rendimito y consumo de red, es decir, ahora mismo tengo probando en 10 equipos trabajando duramente, lo que sucede (supongo que será normal) que muchas veces se relentizan bastante, lo que quiero hacer ahora es monitorizar a los usuarios y la red para ver bien lo que sucede. Ya les seguiré contando. Un saludo. El día 13 de abril de 2009 13:51, Eduardo Grosclaude eduardo.groscla...@gmail.com escribió: 2009/4/11 alberto Crego albertocr...@gmail.com: con el ltsp, se pueden exportar sesiones de gnome de un servidor a un equipo cliente? el tema es que tengo que buscar la forma de como hacerlo sin que me consuma mucho ancho de banda de la red, ni recursos del server, aun no se como hacerlo mejor, de la forma A, que es mediante un cliente ligero, o la opcion B, instalando en centos en el equipo cliente y ejecutar una sesion de gnome de servidor en el cliente (que eso no se si se puede hacer). La respuesta tendrá que ver con cuánta funcionalidad necesitas exactamente: si te basta con correr un proceso en forma remota o si necesitas una sesión completa de desktop remoto. En el primer caso, te puede bastar una sesión ssh del cliente al servidor, que ejecute el proceso remoto que quieres. Para esto basta con que el cliente corra un servidor X, sin gestor de escritorio ni de ventanas. Este script puede dar una idea de lo que se necesita hacer: #!/bin/bash SERVER=192.168.0.1 USUARIO=pepe PROGRAMA=system-config-users X :1 sleep 3 DISPLAY=localhost:1 ssh $usua...@$server $PROGRAMA Para poder hacer esto sin que la sesión ssh pida password, puedes estudiar cómo editar el archivo .ssh/authorized_keys del usuario en el servidor agregándole la clave pública del cliente. En el segundo caso (sesión remota completa), hay varias formas de hacerlo, con diferentes requerimientos de recursos. XDMCP es la forma nativa en Unix de obtener sesiones remotas a través de XWindow. Hay alternativas más modernas y según he escuchado más eficientes, como FreeNX. RDP (Remote Desktop) es una solución muy buena, en el sentido de que la experiencia de usuario es muy parecida a ejecutar la interfaz en forma local, y a veces la supera. Tiene la ventaja de poder aprovechar servidores Windows. Otra familia de soluciones corresponde a VNC (que serviría para compartir un mismo escritorio entre varios clientes, pero no parece ser tu caso). Tambíen quería saber si existe alguna forma en gnome de que una vez que inicie la sesion se le abra el programa unicamente y no pueda ejecutar otro programa. Puedes hacerlo modificando la estructura de menús y editando la configuración de arranque automático de la sesión, pero así posiblemente sigan quedando algunas vías de escape para los usuarios que tengan algo de conocimiento. Me parece más seguro empezar por no levantar procesos innecesarios en lugar de poner restricciones a la interfaz de usuario: si no quieres que use nada del Gnome, pues no lo actives. Creo que tus requerimientos se parecen más a los de cliente liviano que a los de sesión local retocada. Puedes crear un cliente liviano a partir de una distribución multipropósito como CentOS, modificando el inicio del sistema (editando inittab). Puedes hacerte un runlevel propio, que solamente dispare los procesos que necesitas. Por ejemplo, el servidor X y la sesión ssh al servidor invocando el programa en forma remota, como lo hace el script adjunto. Si no quieres que se pueda acceder a consolas de texto, las desactivas para ese runlevel. Para probarlo sin romper el sistema en funcionamiento puedes editar la línea GRUB del kernel indicando el número de nivel que quieres correr. Cuando lo tienes depurado, fijas el runlevel default y si es necesario eliminas los demás (esto no tiene retorno, salvo que bootees con un disco de rescate). Otra solución muy fácil, y ya empaquetada, es la distribución Thinstation, que te creará un cliente liviano de cualquiera de estos protocolos (o de todos ellos juntos), y es configurable hasta la náusea. Tiene la posibilidad de especificar directamente la aplicación que se va a correr en el servidor. La palabra clave para buscar más sobre este modo de funcionamiento es kiosk. Saludos -- Eduardo Grosclaude Universidad Nacional del Comahue Neuquen, Argentina ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Apache y ServerName
AraDaen escribió: Hola a todos de nuevo, tengo una duda con apache. Tengo un servidor centos 5.3 que actua como servidor DNS con bind9 y servidor web con apache 2.2. el servidor DNS funciona perfectamente tanto de forma directa como inversa resolviendo los nombres e ips de la red local e internet, tanto desde el servidor como desde clientes. La ip del servidor es 192.168.1.201, y responde a varios registros (vcos.ardn.net el NS, y dos CNAME dns1.ardn.net y www.ardn.net). Al final os pongo el contenido de la zona, para que veáis como lo defino, por si no queda claro. El servidor web está instalado, y puedo acceder a él desde cualquier máquina de la red. el problema que tengo es que sólo quiero que puedan acceder escribiendo en la barra de dirección www.ardn.net y ahora mismo pueden acceder escribiendo también dns1.ardn.net o vcos.ardn.net. Como los tres registros tiene la misma IP (dos son alias de vcos.ardn.net), no puedo utilizar la directiva Listen del httpd.conf pues seguiría respondiendo el servidor web a las peticiones de los tres nombres. Lo he intentado con ServerName www.ardn.net, pensando que así sólo respondería a ese dominio, pero no ha sido así y puedo seguir accediendo escribiendo cualquiera de los otros dos nombres. ¿Alguna idea? $ORIGIN ardn.net. $TTL86400 @ IN SOA vcos.ardn.net. root.ardn.net. ( 2009042303 ; Serial 28800 ;Refresh 14400 ;Retry 360 ;Expire 86400 ) ;Minimum IN NS vcos.ardn.net. ;SERVIDORES ; IN MX 10 mail.ardn.net. ;servidor correo vcosIN A 192.168.1.201 ; Centos vos IN A 192.168.1.202 ; OpenSolaris vdebIN A 192.168.1.203 ; Debian vslack IN A 192.168.1.204 ; Slackware vbsdIN A 192.168.1.205 ; FreeBSD vws2008 IN A 192.168.1.206 ; Windows Server 2008 dns1IN CNAME vcos www IN CNAME vcos ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es Hola, asi de primeras se me ocurre que podrias crearte un virtualhost para www.ardn.net (con los parametros de tu site) y otro para default en este ultimo solo una web html indicando que no esta accediendo correctamente. No se si te sirve esto. Saludos. ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Apache y ServerName
Manolo escribió: AraDaen escribió: Hola a todos de nuevo, tengo una duda con apache. Tengo un servidor centos 5.3 que actua como servidor DNS con bind9 y servidor web con apache 2.2. el servidor DNS funciona perfectamente tanto de forma directa como inversa resolviendo los nombres e ips de la red local e internet, tanto desde el servidor como desde clientes. La ip del servidor es 192.168.1.201, y responde a varios registros (vcos.ardn.net el NS, y dos CNAME dns1.ardn.net y www.ardn.net). Al final os pongo el contenido de la zona, para que veáis como lo defino, por si no queda claro. El servidor web está instalado, y puedo acceder a él desde cualquier máquina de la red. el problema que tengo es que sólo quiero que puedan acceder escribiendo en la barra de dirección www.ardn.net y ahora mismo pueden acceder escribiendo también dns1.ardn.net o vcos.ardn.net. Como los tres registros tiene la misma IP (dos son alias de vcos.ardn.net), no puedo utilizar la directiva Listen del httpd.conf pues seguiría respondiendo el servidor web a las peticiones de los tres nombres. Lo he intentado con ServerName www.ardn.net, pensando que así sólo respondería a ese dominio, pero no ha sido así y puedo seguir accediendo escribiendo cualquiera de los otros dos nombres. ¿Alguna idea? $ORIGIN ardn.net. $TTL86400 @ IN SOA vcos.ardn.net. root.ardn.net. ( 2009042303 ; Serial 28800 ;Refresh 14400 ;Retry 360 ;Expire 86400 ) ;Minimum IN NS vcos.ardn.net. ;SERVIDORES ; IN MX 10 mail.ardn.net. ;servidor correo vcosIN A 192.168.1.201 ; Centos vos IN A 192.168.1.202 ; OpenSolaris vdebIN A 192.168.1.203 ; Debian vslack IN A 192.168.1.204 ; Slackware vbsdIN A 192.168.1.205 ; FreeBSD vws2008 IN A 192.168.1.206 ; Windows Server 2008 dns1IN CNAME vcos www IN CNAME vcos ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es Hola, asi de primeras se me ocurre que podrias crearte un virtualhost para www.ardn.net (con los parametros de tu site) y otro para default en este ultimo solo una web html indicando que no esta accediendo correctamente. No se si te sirve esto. Saludos. ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es Hola Manolo, Gracias por contestar :) Sip, eso es una opción, aunque el servidor web seguiría respondiendo a las peticiones vcos.ardn.net y dns.ardn.net, y la idea es que no se sepa fácilmente que detrás de esos casos hay un servidor web también. No se si la opción pasa por añadir mas ips al sistema, y asignar a cada registro una ip. Pensaba que igual alguien tenía otra opción más sencilla. Gracias de nuevo Manolo ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] configurar cliente tonto centos
En cuanto a LTSP: http://k12ltsp.org/mediawiki/index.php/Main_Page Me va de cine. Es una CentOS en toda regla, preinstalada y preconfigurada para correr LTSP. Lo estoy utilizando en educación, aunque todavía no ha hecho nadie mucho uso de sus funciones LTSP, que te las deja listas para arrancar clientes gráficos vía red. Por otra parte, como PDC Samba, firewall con iptables, servidor de correo, servidor web (Joomla, Moodle, etc.), servidor mysql, etc ... de maravilla. Saludos, Arturo. El 25 de abril de 2009 15:36, alberto Crego albertocr...@gmail.comescribió: Hola a todos después de unos días probando y mirando cosas al final me decidi por usar el XDMCP y en el Gnome inié la sesion en el servidor remoto con el GDM. Lo que necesitaba era ejecutar una aplicacion que hicieron para Gnome y desde varios equipos remotos tenia que ejetuar dicha aplicación en el servidor. Ahora las dudas que tengo, es en el tema de rendimito y consumo de red, es decir, ahora mismo tengo probando en 10 equipos trabajando duramente, lo que sucede (supongo que será normal) que muchas veces se relentizan bastante, lo que quiero hacer ahora es monitorizar a los usuarios y la red para ver bien lo que sucede. Ya les seguiré contando. Un saludo. El día 13 de abril de 2009 13:51, Eduardo Grosclaude eduardo.groscla...@gmail.com escribió: 2009/4/11 alberto Crego albertocr...@gmail.com: con el ltsp, se pueden exportar sesiones de gnome de un servidor a un equipo cliente? el tema es que tengo que buscar la forma de como hacerlo sin que me consuma mucho ancho de banda de la red, ni recursos del server, aun no se como hacerlo mejor, de la forma A, que es mediante un cliente ligero, o la opcion B, instalando en centos en el equipo cliente y ejecutar una sesion de gnome de servidor en el cliente (que eso no se si se puede hacer). La respuesta tendrá que ver con cuánta funcionalidad necesitas exactamente: si te basta con correr un proceso en forma remota o si necesitas una sesión completa de desktop remoto. En el primer caso, te puede bastar una sesión ssh del cliente al servidor, que ejecute el proceso remoto que quieres. Para esto basta con que el cliente corra un servidor X, sin gestor de escritorio ni de ventanas. Este script puede dar una idea de lo que se necesita hacer: #!/bin/bash SERVER=192.168.0.1 USUARIO=pepe PROGRAMA=system-config-users X :1 sleep 3 DISPLAY=localhost:1 ssh $usua...@$server $PROGRAMA Para poder hacer esto sin que la sesión ssh pida password, puedes estudiar cómo editar el archivo .ssh/authorized_keys del usuario en el servidor agregándole la clave pública del cliente. En el segundo caso (sesión remota completa), hay varias formas de hacerlo, con diferentes requerimientos de recursos. XDMCP es la forma nativa en Unix de obtener sesiones remotas a través de XWindow. Hay alternativas más modernas y según he escuchado más eficientes, como FreeNX. RDP (Remote Desktop) es una solución muy buena, en el sentido de que la experiencia de usuario es muy parecida a ejecutar la interfaz en forma local, y a veces la supera. Tiene la ventaja de poder aprovechar servidores Windows. Otra familia de soluciones corresponde a VNC (que serviría para compartir un mismo escritorio entre varios clientes, pero no parece ser tu caso). Tambíen quería saber si existe alguna forma en gnome de que una vez que inicie la sesion se le abra el programa unicamente y no pueda ejecutar otro programa. Puedes hacerlo modificando la estructura de menús y editando la configuración de arranque automático de la sesión, pero así posiblemente sigan quedando algunas vías de escape para los usuarios que tengan algo de conocimiento. Me parece más seguro empezar por no levantar procesos innecesarios en lugar de poner restricciones a la interfaz de usuario: si no quieres que use nada del Gnome, pues no lo actives. Creo que tus requerimientos se parecen más a los de cliente liviano que a los de sesión local retocada. Puedes crear un cliente liviano a partir de una distribución multipropósito como CentOS, modificando el inicio del sistema (editando inittab). Puedes hacerte un runlevel propio, que solamente dispare los procesos que necesitas. Por ejemplo, el servidor X y la sesión ssh al servidor invocando el programa en forma remota, como lo hace el script adjunto. Si no quieres que se pueda acceder a consolas de texto, las desactivas para ese runlevel. Para probarlo sin romper el sistema en funcionamiento puedes editar la línea GRUB del kernel indicando el número de nivel que quieres correr. Cuando lo tienes depurado, fijas el runlevel default y si es necesario eliminas los demás (esto no tiene retorno, salvo que bootees con un disco de rescate). Otra solución muy fácil, y ya empaquetada, es la distribución Thinstation, que te creará un cliente liviano de cualquiera de estos protocolos (o de todos
Re: [CentOS-es] Cómo crear Alias de un equipo exte rno
en el fichero de zona de tu red agregas. ft1 CNAME www1.example2.com. Yoinier. Recuerda, requieres bind. Sí, pero no me funciona. :) Lo que quiero hacer es lo siguiente: Supongamos que tenemos el host... em ... smtp.gmail.com, por poner un ejemplo, el cual cuando hago un DIG me muestra lo siguiente: ; DiG 9.2.4 smtp.gmail.com ;; global options: printcmd ;; Got answer: ;; -HEADER- opcode: QUERY, status: NOERROR, id: 21229 ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 7, ADDITIONAL: 7 ;; QUESTION SECTION: ;smtp.gmail.com.IN A ;; ANSWER SECTION: smtp.gmail.com. 300 IN CNAME gmail-smtp-msa.l.google.com. gmail-smtp-msa.l.google.com. 300 IN A 74.125.93.109 gmail-smtp-msa.l.google.com. 300 IN A 74.125.93.111 ;; AUTHORITY SECTION: l.google.com. 4644IN NS b.l.google.com. l.google.com. 4644IN NS c.l.google.com. l.google.com. 4644IN NS d.l.google.com. l.google.com. 4644IN NS e.l.google.com. l.google.com. 4644IN NS f.l.google.com. l.google.com. 4644IN NS g.l.google.com. l.google.com. 4644IN NS a.l.google.com. ;; ADDITIONAL SECTION: a.l.google.com. 14459 IN A 209.85.139.9 b.l.google.com. 14459 IN A 74.125.45.9 c.l.google.com. 14459 IN A 64.233.161.9 d.l.google.com. 14550 IN A 74.125.77.9 e.l.google.com. 14515 IN A 209.85.137.9 f.l.google.com. 14459 IN A 72.14.235.9 g.l.google.com. 14510 IN A 74.125.95.9 Esto indica que smtp.gmail.com tiene 2 IPs: 74.125.93.109 y 74.125.93.111, pero tengo entendido que estas varían con el tiempo. Entonces lo que quiero hacer es crear distintos aliases en mi servidor para el host smtp.gmail.com, pero sin utilizar las IPs, sino los nombres; o sea, esto: smtp1.gmail.com smtp.gmail.com smtp2.gmail.com smtp.gmail.com smtp3.gmail.com smtp.gmail.com smtp4.gmail.com smtp.gmail.com smtp5.gmail.com smtp.gmail.com Para así tener una completa sincronización con el nombre real aunque cambien las IPs. Puse el ejemplo con un alias de servidor de correo porque es más ilustrativo (para que tomen la idea) que un alias de virtualhost. El jue, 23-04-2009 a las 08:48 -0400, Héctor Suárez Planas escribió: Saludos, hermanos. Tengo una pregunta: ¿cómo puedo hacer un alias de un equipo externo en mi red? Me explico, supongamos que mi red tiene el dominio example.com y mi equipo es maq1.example.com (claro, con mi DNS y todo funcionando OK), pero yo quiero tener un alias del equipo ft1.example2.com que está ubicado en Internet que sea www1.example2.com en mi red de manera que cuando yo le de ping a ese equipo remoto me responda con su IP correspondiente. O sea, yo lo que quiero es tener un alias del equipo, no un par (otronombre, IP), debido a que si el equipo remoto cambia la IP voy a estar esclavizado siempre actualizando el IP del alias. No sé si me hago entender. Gracias de antemano. --- Red Telematica de Salud - Cuba CNICM - Infomed ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es --- Red Telematica de Salud - Cuba CNICM - Infomed ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es --- Red Telematica de Salud - Cuba CNICM - Infomed ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] consulta de iptables
Por lo que estoy observando no tienes ninguna regla para cuando hay una peticion de nueva conexion. Deberias tener una regla de la siguiente manera $IPTABLES -A FORWARD -o $IF_WAN -m state --state NEW -j ACCEPT Walter Cervini movil: 0424-1543350 Pin: 20911CF3 Sent from Caracas, Venezuela 2009/4/23 Freddy Angulo samilo...@yahoo.com hola listeros tengo necesito de su ayuda, tengo un firewall con iptables en centos 5. he creado interfaces virtuales para los servicios que manejamos dentro de la empresa. eth0 wan_lan eth0:1 mail eth0:2 wan_lan2 cuando pongo a toda la red por solo un interface salen a internet estando en DROP, pero cuando coloco a la misma lan por la interface virtual no sale a internet, pero si la coloco en ACCEPT navegan sin ningun problema. ### les coloco el postruting quwe realizo, saben si necesito cargar algun modulo adicional o crear algun ruta, gracias por su ayuda. echo 1 /proc/sys/net/ipv4/ip_forward /sbin/modprobe ip_tables /sbin/modprobe ip_conntrack /sbin/modprobe iptable_filter /sbin/modprobe iptable_mangle /sbin/modprobe iptable_nat /sbin/modprobe ipt_LOG /sbin/modprobe ipt_limit /sbin/modprobe ipt_state /sbin/modprobe ipt_REDIRECT $IPTABLES -A FORWARD -i $IF_WAN -d $LAN_CALL -o $IF_LAN -m state --state ESTABLISHED,RELATED -j ACCEPT $IPTABLES -t nat -A POSTROUTING -s $LAN_CALL -o $IF_WAN -j SNAT --to-source $IP_WAN_LAN $IPTABLES -A FORWARD -i $IF_WAN -d $LAN_WIFI -o $IF_WIFI -m state --state ESTABLISHED,RELATED -j ACCEPT $IPTABLES -t nat -A POSTROUTING -s 10.20.0.0/27 -o $IF_WAN -j SNAT --to-source $IP_WAN_LAN_2 -- ¡Obtén la mejor experiencia en la web! Descarga gratis el nuevo Internet Explorer 8 http://downloads.yahoo.com/ieak8/?l=e1 ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Bonding + bridge + maquina virtual.
Buenos Dias Mario Por lo general cuando usas maquinas virtuales con VirtualBox y poder acceder a las maquinas virtuales desde la maquina anfitrion necesitar usar una interface puente o bridge, posterior a esto debes crear una interface tunel y esta interface la asocias al bridge sin ip. Y en la maquina virtual asignas la ip que pertenezca a la misma red del Bridge. Puedes tener tantas interfaces bridge como desees y del mismo modo interfaces tunel. Para crear una interface bridge: brctl addbr [nombre de la Interface] ejemplo: brctl addbr br0 brctl addbr br1 ifconfig br0 192.168.100.1/24 up ifconfig br1 192.168.200.1/24 up ya en este punto tus interfaces puentes estan creada y lenvantadas. ahora creamos las interfaces tuneles, para esto debes tener el modulo tun cargado modprobe tun creando las interfaces de tunnel tunctl -u [Usuario] -d [nobre que quieres poner a la interface] ejemplo: tunclt -u mario -d tun0 tunctl -u mario -d tun1 a estas interfaces no le asignas ip los haces a traves de la maquina virtual luego agregamos las interfaces que manejara el puente o bridge brctl addif br0 tun0 brctl addif br1 tun1 hasta aqui todo esta configurado, ahora antes de iniciar la maquina virtual tienes que configurar la maquina virtual con interfaces del tipo BridgeNetwork para VB 2.2 o interface anfitrio para versiones anteriores y el nombre de la interfaz es algunas de los tuneles creados. Recuerda la ip de la maquina virtual debera pertenecer a la red creada en el bridge. posterior a esto inicias tu maquina virtual y desde la maquina anfitrion intenta hacer un ping a la ip asignada a la maquina virtual. Intenta y me comentas. Walter Cervini movil: 0424-1543350 Pin: 20911CF3 Sent from Caracas, Venezuela 2009/4/24 Mario Ganga mario.ga...@gmail.com Hola. Estimados tengo un server en centos 5.3 con bonding y tengo una maquina virtual en virtual box win2003 (en el mismo server), la idea es balancear la carga de red de la VM, el problema es que cuando trato de setearle el bond0 como interfaz anfitrion arroja un error de que no reconoce la trajeta de red y no se inicia la VM, estube averiguando en internet y me parece que tengo que hacer un bridge con bridge-utils para que la maquina virtual reconozca el bonding. Ahora tengo algunas preguntas ojala me puedan ayudar: ¿Se puede hacer un link , por decirlo de alguna manera, entre un el bond0 y un bidge, si se puede me pueden guiar como hacerlo por favor? ¿Es factible que bonding de centos haga balanceo de la carga de red de mi maquina virtual? ¿Sera mejor deshacer el bonding y configurar dos tarjetas de red como conexion puente directamente en la win 2003 virtual tomando en cuenta que quiero balancear la carga de red? Espero me puedan ayudar o recomendar cual es la mejor forma de hacerlo, recurro a la lista ya que en el foro de virtual box, no me han respondido. Atento a sus comentarios me despido. Atte. Mario Ganga Castro. ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS] centos firewall?
[r...@server1 bin]# man iptables No manual entry for iptables [r...@server1 bin]# man ipchains No manual entry for ipchains [r...@server1 bin]# So is there something wrong with what they set me up with? seems as though you need to install iptables package [r...@server1 /]# uname -a Linux Server1 2.6.24-23-xen #1 SMP Mon Jan 26 03:09:12 UTC 2009 x86_64 x86_64 x86_64 GNU/Linux But if iptables is not installed, how is port 5900 being blocked? maybe the xen host is blocking them. Maybe upstream router is blocking. why not just use freenx and run everything through ssh port which clearly isn't blocked? It's faster and better anyway. Craig Or you can use X11Forwarding sshd option. To use it you shoud put X11Forwarding yes option to/etc/ssh/sshd_config on server side, and use ssh -X usern...@server command on client side to connect to the server. After it all GUI program wich you will start on ssh-shell will display on client computer. (This all work if your client computer is based on *nix system such is Linux, if you have MS Windows on client computer you must use the xming+putty software to do this) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos firewall?
On Sat, Apr 25, 2009 at 08:37:45AM +0400, Mintairov Mihail wrote: !DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.0 TRANSITIONAL//EN HTML Please don't post html in this mailing list. -- Tru Huynh (mirrors, CentOS-3 i386/x86_64 Package Maintenance) http://pgp.mit.edu:11371/pks/lookup?op=getsearch=0xBEFA581B pgps5cRqr76P2.pgp Description: PGP signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos firewall?
On Fri, Apr 24, 2009 at 04:33:20PM -0700, Jason Todd Slack-Moehrle wrote: [r...@server1 /]# uname -a Linux Server1 2.6.24-23-xen #1 SMP Mon Jan 26 03:09:12 UTC 2009 x86_64 x86_64 x86_64 GNU/Linux Ask your hoster, this is definitely NOT a CentOS provided kernel. Who knows what else has been changed on your distribution, but this is no longer CentOS. see http://wiki.centos.org/irc_centos_request Tru -- Tru Huynh (mirrors, CentOS-3 i386/x86_64 Package Maintenance) http://pgp.mit.edu:11371/pks/lookup?op=getsearch=0xBEFA581B pgpjZlxOltqel.pgp Description: PGP signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos firewall?
On Friday 24 April 2009 18:51, Jason Todd Slack-Moehrle wrote: How do I add 5900 to the centos firewall? How do I edit the conf file? I don't know your knowledge so Lets go through this step by step. Commands will be between []. Examples will be between ''. You are looking to see why port 5900 is blocked. Are you sure something is listening on this port? Check to see if port 5900 is listening with the following: [lsof -i] If that port is not listed or if the service is listening on another port you should see this now. If not then start the service and try to connect again. Still having issues connecting then we should check the firewall. First lets see if the firewall is up: [service iptables status] If the firewall is up this should give you a list of all the rules present. If the firewall is not running it will state firewall is not running. If the firewall is not running, vcn is running and you still cannot connect the problem is outside your control and you will have to talke with your service provider. Even if the firewall is running the service provider can still be blocking the port so after ensureing/configuring the below and you are still unable to connect you need to contact the service provider and question them. If the firewall is running you now have to figure out how it is being started. Some people use the default method (myself included) and some use scripts (which I believe is because they do not know how or understand how to configure the default setup). First let us check in what run level the system is started. [grep id: /etc/inittab] You should see something like 'id:3:initdefault:' This is run level 3 and all my startup scripts are going to start from '/etc/rc.d/rc3.d'. Look in this directory for anything that might be iptables or firewall related. As stated above some time a script other then the default is used to start the firewall. Do you see anything other then iptables? Scripts starting with a 'K' are not run and those with an 'S' are. We should also check rc.local to ensure there is nothing being started there that might over ride firewall if it is started in 'rc3.d'. If you have determined that the firewall is being started the default way and it is up and running then /etc/sysconfig/iptables is the file you have to look at and edit. If the firewall is being started using another method then you are going to have to look at that script to determine how to correct/update that script. You can edit the file with 'vim' or 'vi', depending on what is installed on your system, from the command line. Here is a link to a very good IPTABLES Tutorial. http://iptables.rlworkman.net/chunkyhtml/index.html -- Regards Robert Linux User #296285 http://counter.li.org ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] MP4
Hi, How do get to view MP4 video streams? -- Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] MP4
You can open the stream in a program called VLC. --Original Message-- From: cen...@911networks.com Sender: centos-boun...@centos.org To: CentOS Mailing list ReplyTo: CentOS Mailing list Subject: [CentOS] MP4 Sent: Apr 25, 2009 11:27 Hi, How do get to view MP4 video streams? -- Thanks ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos Sent from my Verizon Wireless BlackBerry ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos firewall?
Jason Todd Slack-Moehrle wrote on Fri, 24 Apr 2009 16:20:24 -0700: There is something fundamental that I am missing and having never used CentOS is probably not helping. I think the point is that you are *not* on CentOS. Your system is *derived* from CentOS. You should contact your hoster. Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos firewall?
Jason Todd Slack-Moehrle wrote on Fri, 24 Apr 2009 15:51:13 -0700: I only have SSH ability at this point... That's good enough. If you are not comfortable with managing the system from the command line then use Webmin. Some think that is unsafe, but it is surely several degrees safer than using blank VNC over the net. Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] centos firewall?
Jason Todd Slack-Moehrle wrote on Fri, 24 Apr 2009 16:04:23 -0700: and looking for /etc/sysconfig/iptables you have to install iptables. Then you get iptables-config. The file you mention is created when you save the state of iptables with service iptables save. And the rules are loaded from it on next startup. For that there have to be rules added to iptables (via command-line, not added to the file), of course! Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Problems eith yum (wrong releasever)
After installing clean Centos 5.3 and updating with yum update yum starts to fail. I get the following error message YumRepo Error: All mirror URLs are not using ftp, http[s] or file. Eg. 7 is not a valid release or hasnt been released yet/ removing mirrorlist with no valid mirrors: //var/cache/yum/base/mirrorlist.txt It looks like the $releasever variable has value 7. Why does this happen and how do I fix this? Thanks, Sami ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Problems eith yum (wrong releasever)
2009/4/26 Sam Piippo sampii...@gmail.com After installing clean Centos 5.3 and updating with yum update yum starts to fail. I get the following error message YumRepo Error: All mirror URLs are not using ftp, http[s] or file. Eg. 7 is not a valid release or hasnt been released yet/ removing mirrorlist with no valid mirrors: //var/cache/yum/base/mirrorlist.txt It looks like the $releasever variable has value 7. Why does this happen and how do I fix this? Check that distroverpkg in /etc/yum.conf is redhat-release, if it is, check that centos-release is the only package providing redhat-release by running rpm -q --whatprovides redhat-release, you should see centos-release-5-3.el5.centos.1 which shows a single package and the version is 5, this is what yum uses to determine releasever... Do you have another package installed that also provides redhat-release? d ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Problems eith yum (wrong releasever)
Thanks for the comments. I had /var directory that contained files from an old Fedora 7 installation and I think that yum did read the $release variable, as well as package information, from some file in /var. I fixed the problem the easy way and reinstalled the whole system (with having a clean /var directory). Now everything works perfectly. I should had figured this out before posting to the mailing-list, sorry. Sami On Sat, Apr 25, 2009 at 8:10 PM, D Tucny d...@tucny.com wrote: 2009/4/26 Sam Piippo sampii...@gmail.com After installing clean Centos 5.3 and updating with yum update yum starts to fail. I get the following error message YumRepo Error: All mirror URLs are not using ftp, http[s] or file. Eg. 7 is not a valid release or hasnt been released yet/ removing mirrorlist with no valid mirrors: //var/cache/yum/base/mirrorlist.txt It looks like the $releasever variable has value 7. Why does this happen and how do I fix this? Check that distroverpkg in /etc/yum.conf is redhat-release, if it is, check that centos-release is the only package providing redhat-release by running rpm -q --whatprovides redhat-release, you should see centos-release-5-3.el5.centos.1 which shows a single package and the version is 5, this is what yum uses to determine releasever... Do you have another package installed that also provides redhat-release? d ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] eth0 killed when adding virtual interface and multiple NICs are present
I have a strange problem on one machine where eth0 gets killed when I add a virtual interface. It's got something to do with the NIC ordering or with the xen network script having a problem with multiple NICs and virtual interfaces. I could need some help/comments on this. Some history: I added a NIC (chip identifies as Realtek Semiconductor Co., Ltd. RTL8111/8168B PCI Express Gigabit Ethernet) to a Dell R200 server. CentOS 5.3 with Xen 3.3.1 (gitco repo). eth0 and eth1 are the built-in NICs, this is then eth2 (or it should be). Works. Everything is fine until I add a virtual interface to eth0 and reboot. I can add eth0:1 at runtime just fine. But if I let it stay in network-scripts and boot the whole eth0 is killed (doesn't show up in ifconfig and doesn't work). A network restart brings it up as if nothing is wrong. I first thought it might have something to do with the fact that eth0 is actually a bridge on Xen 3.2 and tried the same config on another machine and there it works. It's not the exact same xen version, not 64bit and it's got only 1 NIC. So there are differences, but it seems to rule out the bridge as a cause. I then checked the logs more thoroughly and found that CentOS changes the NIC initialization order at boot-time. Without the third NIC it's eth0=NIC1 and eth1=NIC2 (as shown on the chassis). But with the third NIC it's most often that one that goes first. Here's a typical excerpt from messages. tigon/tg3 is the driver for the internal NICs which normally were on eth0 and eth1. Apr 25 19:00:59 c4 kernel: eth0: RTL8168b/8111b at 0xc2022000, 00:21:27:c9:d1:f5, XID 3800 IRQ 16 Apr 25 19:00:59 c4 kernel: eth1: Tigon3 [partno(BCM95721) rev 4201 PHY (5750)] (PCI Express) 10/100/1000Base-T Ethernet 00:1e:c9:fe:fb:ab Apr 25 19:00:59 c4 kernel: eth1: RXcsums[1] LinkChgREG[0] MIirq[0] ASF[1] WireSpeed[1] TSOcap[1] Apr 25 19:00:59 c4 kernel: eth1: dma_rwctrl[7618] dma_mask[64-bit] Apr 25 19:00:59 c4 kernel: eth2: Tigon3 [partno(BCM95721) rev 4201 PHY (5750)] (PCI Express) 10/100/1000Base-T Ethernet 00:1e:c9:fe:fb:ac Apr 25 19:00:59 c4 kernel: eth2: RXcsums[1] LinkChgREG[0] MIirq[0] ASF[1] WireSpeed[1] TSOcap[1] Apr 25 19:00:59 c4 kernel: eth2: dma_rwctrl[7618] dma_mask[64-bit] Apr 25 19:00:59 c4 kernel: tg3: eth0: Link is up at 1000 Mbps, full duplex. Apr 25 19:00:59 c4 kernel: tg3: eth0: Flow control is on for TX and on for RX. Apr 25 19:00:59 c4 kernel: r8169: eth2: link up Apr 25 19:00:59 c4 kernel: r8169: eth2: link up Apr 25 19:01:01 c4 ntpd[2461]: Listening on interface eth2, 192.168.2.4#123 Enabled Apr 25 19:01:01 c4 ntpd[2461]: Listening on interface eth0, 192.168.1.24#123 Enabled Apr 25 19:01:01 c4 ntpd[2461]: Listening on interface eth1, 192.168.2.3#123 Enabled Apr 25 19:01:08 c4 uxmon: c4.net: started monitoring: lo eth2 eth0 eth1 Apr 25 19:01:18 c4 kernel: tg3: peth0: Link is up at 1000 Mbps, full duplex. Apr 25 19:01:18 c4 kernel: tg3: peth0: Flow control is on for TX and on for RX. Apr 25 19:01:18 c4 kernel: device peth0 entered promiscuous mode Apr 25 19:01:18 c4 kernel: type=1700 audit(1240678878.244:3): dev=peth0 prom=256 old_prom=0 auid=4294967295 ses=4294967295 Apr 25 19:01:18 c4 kernel: eth0: topology change detected, propagating Apr 25 19:01:18 c4 kernel: eth0: port 1(peth0) entering forwarding state Repeated booting sometimes gives me a different order, e.g. the two tigon come first, but this is rare. Well, it seems this wasn't a problem until I added a virtual interface to eth0. When the eth interfaces are brought up the system seems to reenumerate the eth numbering according to the HWADDR matches and thus eth0=NIC1 and so on. As soon as I add a virtual interface to eth0 this breaks and all of eth0 is killed. At least that's what I figure. So, the next obvious question is: How can I set a fixed order, so that NIC1 is always brought up first as eth0? I'm not sure if this would fix it, though. I have done too few reboots yet, but it seems that at least once I got the correct initialization order but eth0 got killed, anyway. So, it might not be the order but still something in the Xen script which happens only when multiple NICs are present and a virtual interface is added. Any thoughts so far? Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] eth0 killed when adding virtual interface and multiple NICs are present
On Sat, 2009-04-25 at 20:33 +0200, Kai Schaetzl wrote: I have a strange problem on one machine where eth0 gets killed when I add a virtual interface. It's got something to do with the NIC ordering or with the xen network script having a problem with multiple NICs and virtual interfaces. I could need some help/comments on this. Some history: I added a NIC (chip identifies as Realtek Semiconductor Co., Ltd. RTL8111/8168B PCI Express Gigabit Ethernet) to a Dell R200 server. CentOS 5.3 with Xen 3.3.1 (gitco repo). see this: http://linux.dell.com/files/whitepapers/nic-enum-whitepaper-v3.pdf This is a known issue with all Poweredge Servers. It will give you an explanation and workaround for it. JohnStanley ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repository for mod_security
Bowie Bailey napsal(a): I want to add mod_security to my Apache server running CentOS 5.3 and am trying to find a repository to get it from. I found it in EPEL, but they have version 2.1.7, which is over a year old according to what I found on the modsecurity.org website. Is there a repository which is keeping this up to date? Or should I just build it from source? Within my repos: http://fs12.vsb.cz/hrb33/el5/hrb/stable/i386/repoview/ http://fs12.vsb.cz/hrb33/el5/hrb/stable/x86_64/repoview/ http://fs12.vsb.cz/hrb33/el4/hrb/stable/i386/repoview/ http://fs12.vsb.cz/hrb33/el4/hrb/stable/x86_64/repoview/ I can rebuild the latest one. David Hrbáč ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] eth0 killed when adding virtual interface and multiple NICs are present
JohnS wrote: On Sat, 2009-04-25 at 20:33 +0200, Kai Schaetzl wrote: I have a strange problem on one machine where eth0 gets killed when I add a virtual interface. It's got something to do with the NIC ordering or with the xen network script having a problem with multiple NICs and virtual interfaces. I could need some help/comments on this. Some history: I added a NIC (chip identifies as Realtek Semiconductor Co., Ltd. RTL8111/8168B PCI Express Gigabit Ethernet) to a Dell R200 server. CentOS 5.3 with Xen 3.3.1 (gitco repo). see this: http://linux.dell.com/files/whitepapers/nic-enum-whitepaper-v3.pdf This is a known issue with all Poweredge Servers. It will give you an explanation and workaround for it. I don't think there is anything unique to Dells about this. The kernel essentially randomizes device naming on everything. Dell just took the trouble to document it. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] eth0 killed when adding virtual interface and multiple NICs are present
On Sat, 2009-04-25 at 14:52 -0500, Les Mikesell wrote: JohnS wrote: On Sat, 2009-04-25 at 20:33 +0200, Kai Schaetzl wrote: I have a strange problem on one machine where eth0 gets killed when I add a virtual interface. It's got something to do with the NIC ordering or with the xen network script having a problem with multiple NICs and virtual interfaces. I could need some help/comments on this. Some history: I added a NIC (chip identifies as Realtek Semiconductor Co., Ltd. RTL8111/8168B PCI Express Gigabit Ethernet) to a Dell R200 server. CentOS 5.3 with Xen 3.3.1 (gitco repo). see this: http://linux.dell.com/files/whitepapers/nic-enum-whitepaper-v3.pdf This is a known issue with all Poweredge Servers. It will give you an explanation and workaround for it. I don't think there is anything unique to Dells about this. The kernel essentially randomizes device naming on everything. Dell just took the trouble to document it. From what I understand this was only with dell hardware that this was happening and they submitted a patch to red hat. Also it is the only hardware I have encountered with the problem also. There could be others. What's more is Kai says he's running 5.3 but the fix should be in that kernel. What I do wonder is if when the centos kernel was built, was it included? Maybe the CentOS Kernel builder could let us know? 2.6.19-rc3 and higher are supposed to have the fix? It is however a strange thing when you encounter it. I pulled my hair for a long time. Last thing is he has this problem on a R200 and from memory those were not a problem. Could be this is something new? He could check for a BIOS Revision if there is one. JohnStanley ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] df -h shows system at 100% used, but there is space left
Dnk wrote on Fri, 24 Apr 2009 10:04:38 -0700: What does that command do exactly? what about using man? Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] eth0 killed when adding virtual interface and multiple NICs are present
On Sat, 2009-04-25 at 14:52 -0500, Les Mikesell wrote: JohnS wrote: On Sat, 2009-04-25 at 20:33 +0200, Kai Schaetzl wrote: I have a strange problem on one machine where eth0 gets killed when I add a virtual interface. It's got something to do with the NIC ordering or with the xen network script having a problem with multiple NICs and virtual interfaces. I could need some help/comments on this. Some history: I added a NIC (chip identifies as Realtek Semiconductor Co., Ltd. RTL8111/8168B PCI Express Gigabit Ethernet) to a Dell R200 server. CentOS 5.3 with Xen 3.3.1 (gitco repo). see this: http://linux.dell.com/files/whitepapers/nic-enum-whitepaper-v3.pdf This is a known issue with all Poweredge Servers. It will give you an explanation and workaround for it. I don't think there is anything unique to Dells about this. The kernel essentially randomizes device naming on everything. Dell just took the trouble to document it. --- Also: https://bugzilla.redhat.com/show_bug.cgi?id=491432 Seems to apply to Kais case. You *must* specify the HWADDR field in the ifcfg-* files in order to have persistent ethernet naming. Was the way I done it on dell hardware and it states that on the Bug Report. JohnStanley ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] eth0 killed when adding virtual interface and multiple NICs are present
JohnS wrote: On Sat, 2009-04-25 at 14:52 -0500, Les Mikesell wrote: JohnS wrote: On Sat, 2009-04-25 at 20:33 +0200, Kai Schaetzl wrote: I have a strange problem on one machine where eth0 gets killed when I add a virtual interface. It's got something to do with the NIC ordering or with the xen network script having a problem with multiple NICs and virtual interfaces. I could need some help/comments on this. Some history: I added a NIC (chip identifies as Realtek Semiconductor Co., Ltd. RTL8111/8168B PCI Express Gigabit Ethernet) to a Dell R200 server. CentOS 5.3 with Xen 3.3.1 (gitco repo). see this: http://linux.dell.com/files/whitepapers/nic-enum-whitepaper-v3.pdf This is a known issue with all Poweredge Servers. It will give you an explanation and workaround for it. I don't think there is anything unique to Dells about this. The kernel essentially randomizes device naming on everything. Dell just took the trouble to document it. --- Also: https://bugzilla.redhat.com/show_bug.cgi?id=491432 Seems to apply to Kais case. You *must* specify the HWADDR field in the ifcfg-* files in order to have persistent ethernet naming. Was the way I done it on dell hardware and it states that on the Bug Report. I've had my ifcfg-* files renamed to ifcfg-*.bak files and ignored completely when moving drives, even among identical hardware. It's no fun when shipping to remote locations where the on-site people don't know much about linux. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] df -h shows system at 100% used, but there is space left
On 25-Apr-09, at 1:31 PM, Kai Schaetzl mailli...@conactive.com wrote: Dnk wrote on Fri, 24 Apr 2009 10:04:38 -0700: What does that command do exactly? what about using man? Kai -- Been there, done that since I had gotten back to a Linux box. :-) I was out and about when I read your reply and got curious. Thanks in advance. D ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Olivier Castien/Roncq/Infofrance/FRA/TZG est absent.
Je serai absent(e) à partir du 25/04/2009 de retour le 04/05/2009. Je répondrai à votre message dès mon retour. En cas d'urgence, vous pouvez contacter l'équipe technique d'infofrance. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] eth0 killed when adding virtual interface and multiple NICs are present
At Sat, 25 Apr 2009 16:32:06 -0400 CentOS mailing list centos@centos.org wrote: On Sat, 2009-04-25 at 14:52 -0500, Les Mikesell wrote: JohnS wrote: On Sat, 2009-04-25 at 20:33 +0200, Kai Schaetzl wrote: I have a strange problem on one machine where eth0 gets killed when I add a virtual interface. It's got something to do with the NIC ordering or with the xen network script having a problem with multiple NICs and virtual interfaces. I could need some help/comments on this. Some history: I added a NIC (chip identifies as Realtek Semiconductor Co., Ltd. RTL8111/8168B PCI Express Gigabit Ethernet) to a Dell R200 server. CentOS 5.3 with Xen 3.3.1 (gitco repo). see this: http://linux.dell.com/files/whitepapers/nic-enum-whitepaper-v3.pdf This is a known issue with all Poweredge Servers. It will give you an explanation and workaround for it. I don't think there is anything unique to Dells about this. The kernel essentially randomizes device naming on everything. Dell just took the trouble to document it. --- Also: https://bugzilla.redhat.com/show_bug.cgi?id=491432 Seems to apply to Kais case. You *must* specify the HWADDR field in the ifcfg-* files in order to have persistent ethernet naming. Was the way I done it on dell hardware and it states that on the Bug Report. On ALL RedHat flavored distros (even eith 2.4 kernels), I *always* specificed the HWADDR field in the ifcfg-* files. I *think* the RedHat installers generally always set this field during installation as well. At least as early as RH 7.mumble or RH 9, which would be when I first was dealing with machines with more than one NIC. JohnStanley ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Robert Heller -- 978-544-6933 Deepwoods Software-- Download the Model Railroad System http://www.deepsoft.com/ -- Binaries for Linux and MS-Windows hel...@deepsoft.com -- http://www.deepsoft.com/ModelRailroadSystem/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Antivirus for CentOS? (yuck!)
On 4/24/09 8:05 AM, NM n...@altiva.fr wrote: On Thu, 23 Apr 2009 18:10:38 -0400, Ross Walker wrote: How about running it as the untrusted user 'clamav'? How's that user going to check anything that's not o+r? How about selinux? You could make a context that allows clamav read rights to everything, and write to none. You could even develop your own PCI compliant selinux security framework that can be applied to all PCI hosts. I know there is a lot of boilerplate regulation out there, I have my fair share to deal with myself. Often hidden in the BS there is a good intention it just requires a little give and take. Give in to a little BS here to get a little break on the BS there. What the consultant should be working off of is an accurate risk assessment of the OS and the applications installed on it, not some dumb checklist. Yeah, well, problem is, you don't get to choose who's going to assess you. Well you can either go with the compliance flow, or you can let the compliance flow take you kicking and screaming. Either way your regulated now and there isn't anything you can do about it. It's the world we live in today I'm afraid. If you don't like the way the consultant is doing things, then after this cycle is complete, take control of the process. Do your own risk assessments on the hardware and software and develop your own PCI compliant controls that more accurately reflects the true threats and vulnerabilities of your environment instead of the perceived threats and vulnerabilities being used now. Having your own regular in-house risk assessment performed can only help you in both developing and supporting your decisions for which controls are applied to which systems. And even if you need a token install of anti-virus everywhere to appease the regulator gods, it isn't the end of the world. If your risk analysis of the software determines it poses a great enough risk, you can impose controls on it like I mentioned above. -Ross ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Olivier Castien/Roncq/Infofrance/FRA/TZG est absent.
2009/4/25 olivier_cast...@zieglergroup.com: Je serai absent(e) à partir du 25/04/2009 de retour le 04/05/2009. Je répondrai à votre message dès mon retour. En cas d'urgence, vous pouvez contacter l'équipe technique d'infofrance. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos This is a message from his Vacation Responder. He will be back on the 4th of May 2009. Can the list administrator remove or disable him from the mailing list? (I can read Spanish, but this is French) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] eth0 killed when adding virtual interface and multiple NICs are present
JohnS wrote on Sat, 25 Apr 2009 16:32:06 -0400: You *must* specify the HWADDR field in the ifcfg-* files in order to have persistent ethernet naming. And that is what I always do. Never done it another way. You may have overlooked that part in my message where I state that it works without a problem despite this juggling around until I add a virtual interface to eth0. I'll try tomorrow adding HWADDR to eth0:1 as well, but I think this will fail. I guess I will have to turn off in the BIOS or remove eth2 and maybe eth1 as well tomorrow and run some more tests with just one adapter and then add to it. I hope I can switch off eth2 in the BIOS somehow. I would hate to remove it as it is below the SAS adapter and the many SATA cables. Thanks for the answers so far. At least confirms that the simple juggling around of the main network interfaces is normal and to be expected. Kai -- Kai Schätzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Minimal kickstart.cfg requested
On Fri, 24 Apr 2009 20:48:43 -0500, Daniel_Curry wrote I'm looking at building about a dozen CentOS VM's for a project. I have a desire to use kickstart for this coupled with PXE. I'm looking for a minimal ks.cfg file specifically, I want the bare minimum of software that is needed for a system to function. I will need sshd and yum as the only 'services or applications' on top of the OS. Does anyone have an example I can work with, or suggestions on getting to this minimal configuration? I'm just looking to save some time, rather than re-inventing what may and probably is already out there. If you find such a thing, please post to the list. You're not the only one who could use something like that, as the installer and its defaults make it almost impossible to do consistent installations. Thanks, --Bill ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Minimal kickstart.cfg requested
On Fri, 24 Apr 2009, daniel_cu...@dell.com wrote: Hello, all. I'm looking at building about a dozen CentOS VM's for a project. I have a desire to use kickstart for this coupled with PXE. I'm looking for a minimal ks.cfg file specifically, I want the bare minimum of software that is needed for a system to function. I will need sshd and yum as the only 'services or applications' on top of the OS. Does anyone have an example I can work with, or suggestions on getting to this minimal configuration? I'm just looking to save some time, rather than re-inventing what may and probably is already out there. I assume that you are looking for all of the packages that can be removed from an install that just has @core and @virtualization specified for the package groups that you want installed? -- James A. Peltier Systems Analyst (FASNet), VIVARIUM Technical Director Simon Fraser University - Burnaby Campus Phone : 778-782-6573 Fax : 778-782-3045 E-Mail : jpelt...@sfu.ca Website : http://www.fas.sfu.ca | http://vivarium.cs.sfu.ca http://blogs.sfu.ca/people/jpeltier MSN : subatomic_s...@hotmail.com The point of the HPC scheduler is to keep everyone equally unhappy. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Minimal kickstart.cfg requested
One way to do this would be to use %packages --nobase. This is an extremely stripped down install, that is still functional (well it boots). You will need to add packages to it, especially since yum and ssh aren't included. Many other utilities will be missing as well, hopefully this link will get you closer to what you want. http://openrent.blogspot.com/2005/11/ultra-minimal-kickstart.html -- Eric On Fri, Apr 24, 2009 at 9:48 PM, daniel_cu...@dell.com wrote: Hello, all. I'm looking at building about a dozen CentOS VM's for a project. I have a desire to use kickstart for this coupled with PXE. I'm looking for a minimal ks.cfg file specifically, I want the bare minimum of software that is needed for a system to function. I will need sshd and yum as the only 'services or applications' on top of the OS. Does anyone have an example I can work with, or suggestions on getting to this minimal configuration? I'm just looking to save some time, rather than re-inventing what may and probably is already out there. Thanks Daniel ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] df -h shows system at 100% used, but there is space left
The amount shown under Avail does not include the reserve, even if it is set. If the reserve is used, then avail (and Use%) become a negative value. For example it might say -2.5GB Available. The Size does include the reserve however. I agree with Jake that this is due to it rounding 99.5% used to a whole number. -- Eric On Fri, Apr 24, 2009 at 2:25 PM, Robert Heller hel...@deepsoft.com wrote: At Fri, 24 Apr 2009 09:43:57 -0700 CentOS mailing list centos@centos.org wrote: Has anyone seen output like this before? Notice on my /dev/md0 That it reports 100% used, but also 5.3 Gb available. What would cause this? # df -h Filesystem Size Used Avail Use% Mounted on /dev/sda2 71G 1.6G 66G 3% / /dev/sda1 99M 22M 73M 23% /boot tmpfs 506M 0 506M 0% /dev/shm /dev/md0 903G 851G 5.3G 100% /home Thanks in advance! There is a 'reserve' of space, that only root can write to. In the case of /dev/md0 above, normal users will get a 'no space left on device' error trying to write files. root, however, can still manage to write another 5.3 gig before encountering this error. It only shows up as so large because the reserve space is a *percentage* of the total file system, and /dev/md0 is a huge file system. d ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Robert Heller -- 978-544-6933 Deepwoods Software -- Download the Model Railroad System http://www.deepsoft.com/ -- Binaries for Linux and MS-Windows hel...@deepsoft.com -- http://www.deepsoft.com/ModelRailroadSystem/ ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos