Re: [CentOS] openvpn + bridge utils in CentOS 6
thank you very much for your follow up. wish to get good news from you soon. On Sat, Nov 5, 2011 at 12:26 AM, Минтаиров Михаил wrote: > > > 28.09.2011, 04:58, "唐建伟" : > Hello, I didn't find what to answer to you mounth ago. But now I also have > an installation of centos 6 (at past I used centos 5.7) , and I have the > same problems as you. First of all, did you find any solutions? > > I only found that the problem is in br0 device. I can't guess why but it > not recive ARP REPLY packets. > > tcpdump on all devices (tap0, eth1, br0) give me the same: > > 20:12:22.012270 ARP, Request who-has 192.168.11.3 tell 192.168.11.33, > length 28 > 20:12:23.027897 ARP, Request who-has 192.168.11.3 tell 192.168.11.33, > length 28 > 20:12:24.027951 ARP, Request who-has 192.168.11.3 tell 192.168.11.33, > length 28 > //192.158.11.33 is remoute PC ip-address, and 192.168.11.3 is one of my > local hosts// > > and no APR REPLY. > > Intresting that on other hand I have the same configs files on Centos 5.7. > and everything work perfectly. > > > > no, i removed the commands you mentioned, but it still doesn't work. > > > > Best Regards > > Tang Jianwei > > > > On Tue, Sep 27, 2011 at 6:01 PM, Минтаиров Михаил >wrote: > > > >> I can't remember a reason, but at one moment I stop to use "openvpn > >> --mktun --dev [dev name]" command. May be it's becouse openvpn create > tap0 > >> by it self. So try to comment this lines: > >> > >> for t in $tap; do > >> openvpn --mktun --dev $t > >> done > >> > >> then restart a network, after then start openvpn and after it start > bridge > >> script > >>> openvpn configure file > >>> > >>> *port 1194 > >>> proto udp > >>> dev tap0 > >>> ca ca.crt > >>> cert VPN_Server.crt > >>> key VPN_Server.key # This file should be kept secret > >>> dh dh1024.pem > >>> server-bridge 192.168.119.1 255.255.255.0 192.168.119.221 > 192.168.119.225 > >>> keepalive 10 120 > >>> comp-lzo > >>> user nobody > >>> group nobody > >>> persist-key > >>> persist-tun > >>> status openvpn-status.log > >>> log-append /var/log/openvpn.log > >>> verb 3 > >>> mute 20 > >>> * > >>> > >>> the script for bring up the bridge > >>> *# Define Bridge Interface > >>> br="br0" > >>> > >>> # Define list of TAP interfaces to be bridged, > >>> # for example tap="tap0 tap1 tap2". > >>> tap="tap0" > >>> > >>> # Define physical ethernet interface to be bridged > >>> # with TAP interface(s) above. > >>> eth="eth1" > >>> eth_ip="192.168.119.1" > >>> eth_netmask="255.255.255.0" > >>> eth_broadcast="192.168.119.255" > >>> > >>> for t in $tap; do > >>> openvpn --mktun --dev $t > >>> done > >>> > >>> brctl addbr $br > >>> brctl addif $br $eth > >>> > >>> for t in $tap; do > >>> brctl addif $br $t > >>> done > >>> > >>> for t in $tap; do > >>> ifconfig $t 0.0.0.0 promisc up > >>> done > >>> > >>> ifconfig $eth 0.0.0.0 promisc up > >>> > >>> ifconfig $br $eth_ip netmask $eth_netmask broadcast $eth_broadcast* > >>> > >>> On Tue, Sep 27, 2011 at 5:20 PM, Минтаиров Михаил < > mikxal...@yandex.ru > >>> wrote: > Hm... It's very hard to guess without config files. Can you post > your > server and client openvpn configs... and also can your show a br0 > >> creation > commands? > > 27.09.2011, 12:01, "唐建伟" : > > Hi > > > > no, i don't think so. anyway, i can and only can the vpn server > from > >> the > > remote hosts. > > > > Best Regards > > Tang Jianwei > > > > On Tue, Sep 27, 2011 at 3:59 PM, Минтаиров Михаил < > >> mikxal...@yandex.ru > > wrote: > >>So, something stop packets from remote hosts. May be firewall on > >> remote > >>PC...? and can you run tcpdump on same remote host, to check that > >> it's > tap0 > >>device. > >> > >>27.09.2011, 11:06, "唐建伟" : > >>>Hi > >>> > >>>the routing table in the remote hosts are OK. "tcpdump -n -i > >> [device > >>name]" > >>>cannot capture any packages from remote. no mater br0 nor tap0. > >>> > >>>Best Regards > >>>Tang Jianwei > >>> > >>>On Tue, Sep 27, 2011 at 2:44 PM, Минтаиров Михаил < > mikxal...@yandex.ru > >>> wrote: > 27.09.2011, 09:52, "唐建伟" : > > Hi all, > > > > I just intalled openvpn + bridge in CentOS 6, but i get > strange > >>problems: > > the remote PCs cannot get the local PCs' MACs and also, the > >> local > PCs > > cannot get the remote PCs' MACs > > > > but when i run "brctl showmacs br0" it will list all the > MACs > >> and > >>also " > > brctl show" will show that all the correct adapters are in > br0 > > > > SELinux disabled > > > > any ideas? > First of all you should check routing table of remote hosts. > If > >>
Re: [CentOS] School cloud solution
On Sun, Nov 6, 2011 at 12:57 PM, Daniel Bird wrote: > On 06/11/2011 00:49, Ljubomir Ljubojevic wrote: > > Look into google 'apps' (which is really corporatized google > > > documents). you edit your documents via your web browser, everything > > > is hosted in googles cloud so its accessible everywhere. It supports > > > written 'word' style documents, spreadsheets, presentations (powerpoint > > > like) and a few other types. > > > > > > yes, it costs money per person per year (up to 25 users are free), but > > > I'd have to assume there's an educational discount. > > > > Google apps for Education is free* > http://www.google.com/apps/intl/en/edu/ > > *in the UK at least; and "free" depends on your POV. > > D > ___ > CentOS mailing list > CentOS@centos.org > http://lists.centos.org/mailman/listinfo/centos > My College at Texas A&M University is also looking for such capability. The issue we ran into is that Texas laws restrict where data can be stored for use by state funded institutions. Ensuring data stays in Texas is nearly impossible with "cloud" services, but apparently Google is willing to make that happen. They have told my University that they will offer their services for free. I would definitely look into it. I don't know the specifics of how it's implemented, but I doubt they would require gmail accounts, because we are looking to do it for our faculty/staff and we already discourage use of Google services for work related material. They will likely integrate it into whatever you already use. Unfortunately there aren't a lot of great open source solutions out there for "cloud storage" that can compete with Google or others. Besides what's already been mentioned there is Sparkleshare, http://sparkleshare.org/ . I use it personally on Linux and OS X with ease, but the Windows portion is still in beta. Another my organization attempted was iFolder, http://www.kablink.org/ifolder. One I haven't worked with yet, but have seen is http://owncloud.org/. - Trey ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6: php-eaccelerator
On 11/06/2011 06:59 PM, Reindl Harald wrote: > > > Am 06.11.2011 18:35, schrieb Dennis Jacobfeuerborn: >>> so as long as i use eaccelerator on> 20 production servers since >>> years and the only CentOS test-system is broken i see no reason >>> to play with apc around because i do not like to switch for >>> one single customer to a extension we are not using in prodcution >>> nor is tehre any reason to suddenly switch to APC >> >> That's the point. Right now you don't have to "suddenly" switch but can >> install APC on a machine or two and get familiar with it. >> >> I just prefer to choose my deployed tech proactively and don't like to wait >> for a project to be terminated forcing a switch on me. > > well, i tested apc some minutes ago on CentOS AND Fedora 15 > > CentOS 6: php-pecl-apc-3.1.3p1-1.2.el6.1.x86_64 > Fedora 15: php-pecl-apc-3.1.9-4.fc15.2006.rh.x86_64 > > on CentOS i had to rewrite a script which relies on serialized objects > in session it told me $db is unknown and i hd to place a require at > the top of the script > > on Fedora 15 it seems to work like a charme without touching any script > > so i would love to get the CentOS version updated For anything php related I use the repository of Remi Collet: http://rpms.famillecollet.com/ (Remi is also responsible for the php packages in Fedora) The repo contains a current php-pecl-apc and a php-eaccelerator package that may fix your original issue. Regards, Dennis ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6: php-eaccelerator
Am 06.11.2011 20:40, schrieb Rainer Duffner: > > Am 06.11.2011 um 05:01 schrieb Reindl Harald: > >> has anybody ever got eaccelerator working with open_basedir on CentOS? >> https://bugzilla.redhat.com/show_bug.cgi?id=751569 >> >> i wonder that the last build is more than a yaer ago and nobody hitted until >> now >> or nobody is secring his vhsost and so did not take notice about it >> http://koji.fedoraproject.org/koji/buildinfo?buildID=181336 >> > > > open_basedir kills the realpath_cache i know but this has nothing to do with a bytecode-cache > If you need security and performance, use php-fpm, which can do a full chroot uninteresting, not practicable in a running env with > 500 webspaces and agin: has nothing to do with the benefits of a byte-code cache and the fact that php-eaccelerator is only broken in centos signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6: php-eaccelerator
Am 06.11.2011 um 05:01 schrieb Reindl Harald: > has anybody ever got eaccelerator working with open_basedir on CentOS? > https://bugzilla.redhat.com/show_bug.cgi?id=751569 > > i wonder that the last build is more than a yaer ago and nobody hitted until > now > or nobody is secring his vhsost and so did not take notice about it > http://koji.fedoraproject.org/koji/buildinfo?buildID=181336 > open_basedir kills the realpath_cache. If you need security and performance, use php-fpm, which can do a full chroot. Rainer ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] VSFTPD passive mode is not working
Yes; it was an issue with Linux kernel 2.6.18-274.*.el5.centos.plus ; so I switched back to Linux kernel 2.6.18-238.19.1.el5.centos.plus and it's working now. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] School cloud solution
On 06/11/2011 00:49, Ljubomir Ljubojevic wrote: > Look into google 'apps' (which is really corporatized google > > documents). you edit your documents via your web browser, everything > > is hosted in googles cloud so its accessible everywhere. It supports > > written 'word' style documents, spreadsheets, presentations (powerpoint > > like) and a few other types. > > > > yes, it costs money per person per year (up to 25 users are free), but > > I'd have to assume there's an educational discount. > > Google apps for Education is free* http://www.google.com/apps/intl/en/edu/ *in the UK at least; and "free" depends on your POV. D ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] School cloud solution
On Sat, Nov 5, 2011 at 7:34 PM, Doug Coats wrote: > This really isn't a CentOS specific queation but that is our server OS of > choice. > > I manage a student file server and i would like to add cloud access to it. > Basically i would like our students to have access to the same files at home > that they have at school. This would allow them to start an asignment at > home, finish it at school, and print it off without having to worry about > losing their usb drive. I want it housed on our servers for backups and ease > of access for our teachers when necessary. If you really want the same access from outside, you could use openvpn or pptp, but then you have to support a whole assortment of network login issues from machines you don't control. > I have looked at Moodle but it has way to many layers that we are not > interested in. I would like something like squirrel mail. A simple web login > that then gives you access to your samba managed files. > SME server would have something like this built in. > I have repeatedly searched for such capabilities but i have not found any > that fit what i outlined above. Is there such a program out there? GUI wrappers over scp/sftp should work (winscp, fugu, etc.) should work if you open ssh. Even normal ftp via browser access should work. For something slightly fancier, you could use the file manager module from usermin, but it is java so it has a slow startup when you have to download the applet. It does seem odd that there is no common user-mode http server to access your own files. Does the "ubuntu one" service require ubuntu? -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6: php-eaccelerator
Am 06.11.2011 18:35, schrieb Dennis Jacobfeuerborn: >> so as long as i use eaccelerator on> 20 production servers since >> years and the only CentOS test-system is broken i see no reason >> to play with apc around because i do not like to switch for >> one single customer to a extension we are not using in prodcution >> nor is tehre any reason to suddenly switch to APC > > That's the point. Right now you don't have to "suddenly" switch but can > install APC on a machine or two and get familiar with it. > > I just prefer to choose my deployed tech proactively and don't like to wait > for a project to be terminated forcing a switch on me. well, i tested apc some minutes ago on CentOS AND Fedora 15 CentOS 6: php-pecl-apc-3.1.3p1-1.2.el6.1.x86_64 Fedora 15: php-pecl-apc-3.1.9-4.fc15.2006.rh.x86_64 on CentOS i had to rewrite a script which relies on serialized objects in session it told me $db is unknown and i hd to place a require at the top of the script on Fedora 15 it seems to work like a charme without touching any script so i would love to get the CentOS version updated signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6: php-eaccelerator
On 11/06/2011 05:08 PM, Reindl Harald wrote: > Am 06.11.2011 14:27, schrieb Dennis Jacobfeuerborn: >> On 11/06/2011 05:01 AM, Reindl Harald wrote: >>> has anybody ever got eaccelerator working with open_basedir on CentOS? >>> https://bugzilla.redhat.com/show_bug.cgi?id=751569 >>> >>> i wonder that the last build is more than a yaer ago and nobody hitted >>> until now >>> or nobody is secring his vhsost and so did not take notice about it >>> http://koji.fedoraproject.org/koji/buildinfo?buildID=181336 >> >> People should really stop relying on php-eaccelerator and move on. Right >> now going to the projects website just show a default installation apache >> page and there seems to be no development taking place other than clunky >> patches to make it survive the latest php changes. >> Given that APC is basically the official bytecode cache now and will >> probably be soon merged into the php core I'm not sure why people are still >> bothering with dead projects. > > eaccelerator works fine with PHP 5.3 > > it works fine with Fedora since F9 until F15 here in production > php-eaccelerator-0.9.6.1-20.fc15.20111029.rh.x86_64 > > before PHP 5.3 i thought also it is dead because upstream > did not show progress until suddenly a perfectly working > version was ready for download > > so as long as i use eaccelerator on> 20 production servers since > years and the only CentOS test-system is broken i see no reason > to play with apc around because i do not like to switch for > one single customer to a extension we are not using in prodcution > nor is tehre any reason to suddenly switch to APC That's the point. Right now you don't have to "suddenly" switch but can install APC on a machine or two and get familiar with it. I just prefer to choose my deployed tech proactively and don't like to wait for a project to be terminated forcing a switch on me. Regards, Dennis ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] School cloud solution
On 11/05/2011 09:43 PM, Doug Coats wrote: I understand what google docs offers but it comes with the need for an email address that i can not make students have, the inability for me to control who has access to which files, and no way to get teachers access without each student configuring that on their own. My teachers have enough to worry about. They will not use a solution that is more difficult then what we already use. Any solution has to be a clear upgrade with advantages for it to be adopted. Sent from my ASUS Eee Pad How about OpenGoo, AKA Feng Office? (http://sourceforge.net/projects/opengoo/) It purports to provide a Google Docs-like experience but can be self-hosted. The community edition might give you a lot of what you want. YMMV! -- Jay Leafey - jay.lea...@mindless.com Memphis, TN ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] School cloud solution
On 11/06/11 5:00 AM, Doug Coats wrote: > That is exactly the search criteria i needed! I had never seen the term > before or at least didnt remember it. Thanks! document management systems almost always require that files be checked out and checked back in, much like a source code control system but usually a lot less automatic -- john r pierceN 37, W 122 santa cruz ca mid-left coast ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6: php-eaccelerator
Am 06.11.2011 14:27, schrieb Dennis Jacobfeuerborn: > On 11/06/2011 05:01 AM, Reindl Harald wrote: >> has anybody ever got eaccelerator working with open_basedir on CentOS? >> https://bugzilla.redhat.com/show_bug.cgi?id=751569 >> >> i wonder that the last build is more than a yaer ago and nobody hitted until >> now >> or nobody is secring his vhsost and so did not take notice about it >> http://koji.fedoraproject.org/koji/buildinfo?buildID=181336 > > People should really stop relying on php-eaccelerator and move on. Right > now going to the projects website just show a default installation apache > page and there seems to be no development taking place other than clunky > patches to make it survive the latest php changes. > Given that APC is basically the official bytecode cache now and will > probably be soon merged into the php core I'm not sure why people are still > bothering with dead projects. eaccelerator works fine with PHP 5.3 it works fine with Fedora since F9 until F15 here in production php-eaccelerator-0.9.6.1-20.fc15.20111029.rh.x86_64 before PHP 5.3 i thought also it is dead because upstream did not show progress until suddenly a perfectly working version was ready for download so as long as i use eaccelerator on > 20 production servers since years and the only CentOS test-system is broken i see no reason to play with apc around because i do not like to switch for one single customer to a extension we are not using in prodcution nor is tehre any reason to suddenly switch to APC signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 6: php-eaccelerator
On 11/06/2011 05:01 AM, Reindl Harald wrote: > has anybody ever got eaccelerator working with open_basedir on CentOS? > https://bugzilla.redhat.com/show_bug.cgi?id=751569 > > i wonder that the last build is more than a yaer ago and nobody hitted until > now > or nobody is secring his vhsost and so did not take notice about it > http://koji.fedoraproject.org/koji/buildinfo?buildID=181336 People should really stop relying on php-eaccelerator and move on. Right now going to the projects website just show a default installation apache page and there seems to be no development taking place other than clunky patches to make it survive the latest php changes. Given that APC is basically the official bytecode cache now and will probably be soon merged into the php core I'm not sure why people are still bothering with dead projects. Regards, Dennis ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] School cloud solution
That is exactly the search criteria i needed! I had never seen the term before or at least didnt remember it. Thanks! Sent from my ASUS Eee Pad Toby Bluhm wrote: >On 11/5/2011 10:43 PM, Doug Coats wrote: >> I understand what google docs offers but it comes with the need for an email >> address that i can not make students have, the inability for me to control >> who has access to which files, and no way to get teachers access without >> each student configuring that on their own. My teachers have enough to >> worry about. They will not use a solution that is more difficult then what >> we already use. Any solution has to be a clear upgrade with advantages for >> it to be adopted. >> Sent from my ASUS Eee Pad >> > > >Try a search for "document management system open source." > >___ >CentOS mailing list >CentOS@centos.org >http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] School cloud solution
I did look at alfresco but, like moodle, it has way more going on then I need. Sent from my ASUS Eee Pad Rajagopal Swaminathan wrote: >Greetings, > >On Sun, Nov 6, 2011 at 8:13 AM, Doug Coats wrote: > >Your own instance of liferay/alfresco community edition exposed to >internet with the usual safegaurds perhaps... > >BTW, taking this example, what exactly are the usual "safeguards" >apart from enabling selinux in permissive mode and enabling firewall >with only http and ssh ports open? > >Some apps behave ugly in selinux enforcing mode. Any pointers? > >TIA > >-- >Regards, > >Rajagopal >___ >CentOS mailing list >CentOS@centos.org >http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] School cloud solution
Greetings, On Sun, Nov 6, 2011 at 8:13 AM, Doug Coats wrote: Your own instance of liferay/alfresco community edition exposed to internet with the usual safegaurds perhaps... BTW, taking this example, what exactly are the usual "safeguards" apart from enabling selinux in permissive mode and enabling firewall with only http and ssh ports open? Some apps behave ugly in selinux enforcing mode. Any pointers? TIA -- Regards, Rajagopal ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
