[CentOS-virt] Virtual NICs on a Xen VM
Currently, I've got a Centos 5.8 host that I began playing with Xen virtual machines. It's a sandbox sort of server where I try and learn all of this virtualization stuff. In the future, I'll more than likely swith to Centos 6 and kvm, but for now, it's xen. Searching google and the list, I can't find an explanation of how to add a second virtual NIC to a running VM when I only have one real NIC on the server. For the most part, in my searches it appears that I need a real second NIC on the server to do this. I can find a few examples, but each sort of implies it a one-to-one minimum of real hardware to virtual hardware. So what I'm asking is Is it possible to create a xen VM that has two virtual ethernet interfaces on a host that has only one real NIC? I'd like to simulate a server that I can make a firewall out of and to do that would mean I need an internal and external interface. I'm attempting to create a set of firewalls in a highly available environment to test with. So far, most of the docs I find are for more complex people than I. There's concepts like virtual switches and the like that are creeping into the reading, so the more I read, the more overwhelmed I am. Did I mention I'm still just starting to explore virtualization? If someone can provide me with a possible yes-no answer and maybe a link to documentation that might explain the way, I'll gladly do all my own grunt work. Thanks for any and all help. steve campbell ___ CentOS-virt mailing list CentOS-virt@centos.org http://lists.centos.org/mailman/listinfo/centos-virt
[CentOS-es] Problema recepción y envío con Postfix
Buenas tardes amigos, una ayuda con el siguiente problema: Desde hace un mes, más o menos, estoy teniendo el siguiente problema con el envió y recepción de correos por medio de Postfix (version 2.2.8), el mensaje es el siguiente: Este mensaje me envía el servidor tanto para correos entrantes como para salientes, por lo tanto no les llegan a mis usuarios cuando les envían y tampoco les llegan a otras direcciones de correo cuando cuando mis usuarios envían. Los correos que he revisado no contienen datos adjuntos ni ninguna alguna característica rara, y no pasa todo el tiempo es esporádico. Si el usuario vuelve a enviar, este sale y si se le pide al usuario externo que nos vuelva a enviar el correo este llega. He revisado durante algún tiempo en los log' s, las configuraciones pero no tengo ni idea donde más buscar. El servidor no ha sido actualizado ni se han cambiado las configuraciones razón por la cual no puedo decir que es a causa de un cambio este empeso a funcionar mal. Cualquier ayuda les agradezco. Saludos, Mensaje original Asunto: Virus Detectado Fecha: Wed, 27 Jun 2012 15:21:32 -0500 De: MailScanner postmas...@mail.malima.com.ec Para: postmas...@mail.malima.com.ec Se descubrió que los siguientes mensajes tenían: Virus Detectado Sender: operg...@panatlantic.com IP Address: 186.5.26.146 Recipient: jua...@malima.com.ec Subject: Leído: FACTURA OPTIMUS VUELO MIERCOLES QUITO MessageID: 593E810B857F.90F98 Quarantine: Informe: Ataque de denegación de servicio en el mensaje! Los encabezados completos son: Received: from ns1.panatlantic.com (www.panatlantic.com [186.5.26.146]) by mail.malima.com.ec (Postfix) with ESMTP id 593E810B857F for jua...@malima.com.ec; Wed, 27 Jun 2012 15:10:00 -0500 (ECT) Received: from oper14gye (pc007014.panatlantic.com [192.168.7.14]) by ns1.panatlantic.com (8.13.8/8.13.8) with ESMTP id q5RKUlVT013473 for jua...@malima.com.ec; Wed, 27 Jun 2012 15:30:47 -0500 From: Operaciones GYE operg...@panatlantic.com To: 'Juan Pablo Quizhpi' jua...@malima.com.ec In-Reply-To: !!AAAYAB5nUp/iuAFJg0rCbcwTx7zCgAAAEPfnx1JyS5pKroOJjZeBrk4BAA==@malima.com.ec Subject: =?Windows-1252?Q?Le=EDdo:_FACTURA_OPTIMUS_VUELO_MIERCOLES_QUITO?= Date: Wed, 27 Jun 2012 15:41:37 -0500 Message-ID: 001c01cd54a5$3f578610$be069230$@com MIME-Version: 1.0 Content-Type: multipart/report; report-type=disposition-notification; boundary==_NextPart_000_001D_01CD547B.56817E10 X-Mailer: Microsoft Office Outlook 12.0 Thread-Index: Ac1Ul8/+aylRiEPqT46duY0JFwzuzQABkRngAAHEr4o= X-MyCompany-MailScanner-Information: Please contact the ISP for more information X-MyCompany-MailScanner-ID: q5RKUlVT013473 X-MyCompany-MailScanner: Found to be clean X-MyCompany-MailScanner-From: operg...@panatlantic.com X-Spam-Status: No -- MailScanner Email Virus Scanner www.mailscanner.info -- Este mensaje ha sido analizado por MailScanner en busca de virus y otros contenidos peligrosos, y se considera que está limpio. For all your IT requirements visit: http://www.transtec.co.uk -- Este mensaje ha sido analizado por MailScanner en busca de virus y otros contenidos peligrosos, y se considera que está limpio. For all your IT requirements visit: http://www.transtec.co.uk ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Problema recepción y envío con Postfix
On 06/28/2012 08:45 AM, Henry Sanchez Mora wrote: Buenas tardes amigos, una ayuda con el siguiente problema: ok, el mensaje lo está emitiendo el mailscanner... por lo que veo tú usas postfix (casi nadie que usa postfix usa mailscanner) y el otro extremo usa sendmail (por los números de versión que ví)... el otro extremo parece tener mailscanner. este mensaje es emitido por mailscanner, no está en tus manso resolverlo sino colaborar en el porqué.. seguramente el sysadmin remoto, con tus indicaciones podría mirar en los logs del sendmail y ver qué razón adicional da el mailscanner sobre este mensaje http://dev.dartmouth.edu/svn/softdev/email/MailScanner.conf/trunk/reports/es/languages.conf saludos epe Desde hace un mes, más o menos, estoy teniendo el siguiente problema con el envió y recepción de correos por medio de Postfix (version 2.2.8), el mensaje es el siguiente: Este mensaje me envía el servidor tanto para correos entrantes como para salientes, por lo tanto no les llegan a mis usuarios cuando les envían y tampoco les llegan a otras direcciones de correo cuando cuando mis usuarios envían. Los correos que he revisado no contienen datos adjuntos ni ninguna alguna característica rara, y no pasa todo el tiempo es esporádico. Si el usuario vuelve a enviar, este sale y si se le pide al usuario externo que nos vuelva a enviar el correo este llega. He revisado durante algún tiempo en los log' s, las configuraciones pero no tengo ni idea donde más buscar. El servidor no ha sido actualizado ni se han cambiado las configuraciones razón por la cual no puedo decir que es a causa de un cambio este empeso a funcionar mal. Cualquier ayuda les agradezco. Saludos, Mensaje original Asunto: Virus Detectado Fecha:Wed, 27 Jun 2012 15:21:32 -0500 De: MailScanner postmas...@mail.malima.com.ec Para: postmas...@mail.malima.com.ec Se descubrió que los siguientes mensajes tenían: Virus Detectado Sender: operg...@panatlantic.com IP Address: 186.5.26.146 Recipient: jua...@malima.com.ec Subject: Leído: FACTURA OPTIMUS VUELO MIERCOLES QUITO MessageID: 593E810B857F.90F98 Quarantine: Informe: Ataque de denegación de servicio en el mensaje! Los encabezados completos son: Received: from ns1.panatlantic.com (www.panatlantic.com [186.5.26.146]) by mail.malima.com.ec (Postfix) with ESMTP id 593E810B857F for jua...@malima.com.ec; Wed, 27 Jun 2012 15:10:00 -0500 (ECT) Received: from oper14gye (pc007014.panatlantic.com [192.168.7.14]) by ns1.panatlantic.com (8.13.8/8.13.8) with ESMTP id q5RKUlVT013473 for jua...@malima.com.ec; Wed, 27 Jun 2012 15:30:47 -0500 From: Operaciones GYE operg...@panatlantic.com To: 'Juan Pablo Quizhpi' jua...@malima.com.ec In-Reply-To: !!AAAYAB5nUp/iuAFJg0rCbcwTx7zCgAAAEPfnx1JyS5pKroOJjZeBrk4BAA==@malima.com.ec Subject: =?Windows-1252?Q?Le=EDdo:_FACTURA_OPTIMUS_VUELO_MIERCOLES_QUITO?= Date: Wed, 27 Jun 2012 15:41:37 -0500 Message-ID: 001c01cd54a5$3f578610$be069230$@com MIME-Version: 1.0 Content-Type: multipart/report; report-type=disposition-notification; boundary==_NextPart_000_001D_01CD547B.56817E10 X-Mailer: Microsoft Office Outlook 12.0 Thread-Index: Ac1Ul8/+aylRiEPqT46duY0JFwzuzQABkRngAAHEr4o= X-MyCompany-MailScanner-Information: Please contact the ISP for more information X-MyCompany-MailScanner-ID: q5RKUlVT013473 X-MyCompany-MailScanner: Found to be clean X-MyCompany-MailScanner-From: operg...@panatlantic.com X-Spam-Status: No ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Problema recepción y envío con Postfix
Ok, Gracias. Que me sugieren para remplazar el MailScanner, que otro aplicativo podría utilizar. Es decir cual es lo más recomendado de aplicativo de: antivirus para correo y web, así como para el manejo del SPAM, que trabaje muy estrechamente con Postfix. Saludos, El 28/06/2012 9:04, Ernesto Pérez Estévez escribió: On 06/28/2012 08:45 AM, Henry Sanchez Mora wrote: Buenas tardes amigos, una ayuda con el siguiente problema: ok, el mensaje lo está emitiendo el mailscanner... por lo que veo tú usas postfix (casi nadie que usa postfix usa mailscanner) y el otro extremo usa sendmail (por los números de versión que ví)... el otro extremo parece tener mailscanner. este mensaje es emitido por mailscanner, no está en tus manso resolverlo sino colaborar en el porqué.. seguramente el sysadmin remoto, con tus indicaciones podría mirar en los logs del sendmail y ver qué razón adicional da el mailscanner sobre este mensaje http://dev.dartmouth.edu/svn/softdev/email/MailScanner.conf/trunk/reports/es/languages.conf saludos epe Desde hace un mes, más o menos, estoy teniendo el siguiente problema con el envió y recepción de correos por medio de Postfix (version 2.2.8), el mensaje es el siguiente: Este mensaje me envía el servidor tanto para correos entrantes como para salientes, por lo tanto no les llegan a mis usuarios cuando les envían y tampoco les llegan a otras direcciones de correo cuando cuando mis usuarios envían. Los correos que he revisado no contienen datos adjuntos ni ninguna alguna característica rara, y no pasa todo el tiempo es esporádico. Si el usuario vuelve a enviar, este sale y si se le pide al usuario externo que nos vuelva a enviar el correo este llega. He revisado durante algún tiempo en los log' s, las configuraciones pero no tengo ni idea donde más buscar. El servidor no ha sido actualizado ni se han cambiado las configuraciones razón por la cual no puedo decir que es a causa de un cambio este empeso a funcionar mal. Cualquier ayuda les agradezco. Saludos, Mensaje original Asunto: Virus Detectado Fecha: Wed, 27 Jun 2012 15:21:32 -0500 De: MailScanner postmas...@mail.malima.com.ec Para:postmas...@mail.malima.com.ec Se descubrió que los siguientes mensajes tenían: Virus Detectado Sender: operg...@panatlantic.com IP Address: 186.5.26.146 Recipient: jua...@malima.com.ec Subject: Leído: FACTURA OPTIMUS VUELO MIERCOLES QUITO MessageID: 593E810B857F.90F98 Quarantine: Informe: Ataque de denegación de servicio en el mensaje! Los encabezados completos son: Received: from ns1.panatlantic.com (www.panatlantic.com [186.5.26.146]) by mail.malima.com.ec (Postfix) with ESMTP id 593E810B857F for jua...@malima.com.ec; Wed, 27 Jun 2012 15:10:00 -0500 (ECT) Received: from oper14gye (pc007014.panatlantic.com [192.168.7.14]) by ns1.panatlantic.com (8.13.8/8.13.8) with ESMTP id q5RKUlVT013473 for jua...@malima.com.ec; Wed, 27 Jun 2012 15:30:47 -0500 From: Operaciones GYE operg...@panatlantic.com To: 'Juan Pablo Quizhpi' jua...@malima.com.ec In-Reply-To: !!AAAYAB5nUp/iuAFJg0rCbcwTx7zCgAAAEPfnx1JyS5pKroOJjZeBrk4BAA==@malima.com.ec Subject: =?Windows-1252?Q?Le=EDdo:_FACTURA_OPTIMUS_VUELO_MIERCOLES_QUITO?= Date: Wed, 27 Jun 2012 15:41:37 -0500 Message-ID: 001c01cd54a5$3f578610$be069230$@com MIME-Version: 1.0 Content-Type: multipart/report; report-type=disposition-notification; boundary==_NextPart_000_001D_01CD547B.56817E10 X-Mailer: Microsoft Office Outlook 12.0 Thread-Index: Ac1Ul8/+aylRiEPqT46duY0JFwzuzQABkRngAAHEr4o= X-MyCompany-MailScanner-Information: Please contact the ISP for more information X-MyCompany-MailScanner-ID: q5RKUlVT013473 X-MyCompany-MailScanner: Found to be clean X-MyCompany-MailScanner-From: operg...@panatlantic.com X-Spam-Status: No ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es -- Este mensaje ha sido analizado por MailScanner en busca de virus y otros contenidos peligrosos, y se considera que está limpio. For all your IT requirements visit: http://www.transtec.co.uk ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Problema recepción y envío con Postfix
On 06/28/2012 12:07 PM, Henry Sanchez Mora wrote: Ok, Gracias. Que me sugieren para remplazar el MailScanner, que otro aplicativo podría utilizar. Es decir cual es lo más recomendado de aplicativo de: antivirus para correo y web, así como para el manejo del SPAM, que trabaje muy es decir, el mailscanner sí es tuyo? no es del sistema remoto? qué versión tienes? quizá actualizarlo te ayude? al igual que actualizar clamav. mira la variable que te dí del mailscanner creo que se llama DOSattack es la que provoca este mensaje. estrechamente con Postfix. Saludos, El 28/06/2012 9:04, Ernesto Pérez Estévez escribió: On 06/28/2012 08:45 AM, Henry Sanchez Mora wrote: Buenas tardes amigos, una ayuda con el siguiente problema: ok, el mensaje lo está emitiendo el mailscanner... por lo que veo tú usas postfix (casi nadie que usa postfix usa mailscanner) y el otro extremo usa sendmail (por los números de versión que ví)... el otro extremo parece tener mailscanner. este mensaje es emitido por mailscanner, no está en tus manso resolverlo sino colaborar en el porqué.. seguramente el sysadmin remoto, con tus indicaciones podría mirar en los logs del sendmail y ver qué razón adicional da el mailscanner sobre este mensaje http://dev.dartmouth.edu/svn/softdev/email/MailScanner.conf/trunk/reports/es/languages.conf saludos epe Desde hace un mes, más o menos, estoy teniendo el siguiente problema con el envió y recepción de correos por medio de Postfix (version 2.2.8), el mensaje es el siguiente: Este mensaje me envía el servidor tanto para correos entrantes como para salientes, por lo tanto no les llegan a mis usuarios cuando les envían y tampoco les llegan a otras direcciones de correo cuando cuando mis usuarios envían. Los correos que he revisado no contienen datos adjuntos ni ninguna alguna característica rara, y no pasa todo el tiempo es esporádico. Si el usuario vuelve a enviar, este sale y si se le pide al usuario externo que nos vuelva a enviar el correo este llega. He revisado durante algún tiempo en los log' s, las configuraciones pero no tengo ni idea donde más buscar. El servidor no ha sido actualizado ni se han cambiado las configuraciones razón por la cual no puedo decir que es a causa de un cambio este empeso a funcionar mal. Cualquier ayuda les agradezco. Saludos, Mensaje original Asunto: Virus Detectado Fecha: Wed, 27 Jun 2012 15:21:32 -0500 De: MailScanner postmas...@mail.malima.com.ec Para: postmas...@mail.malima.com.ec Se descubrió que los siguientes mensajes tenían: Virus Detectado Sender: operg...@panatlantic.com IP Address: 186.5.26.146 Recipient: jua...@malima.com.ec Subject: Leído: FACTURA OPTIMUS VUELO MIERCOLES QUITO MessageID: 593E810B857F.90F98 Quarantine: Informe: Ataque de denegación de servicio en el mensaje! Los encabezados completos son: Received: from ns1.panatlantic.com (www.panatlantic.com [186.5.26.146]) by mail.malima.com.ec (Postfix) with ESMTP id 593E810B857F for jua...@malima.com.ec; Wed, 27 Jun 2012 15:10:00 -0500 (ECT) Received: from oper14gye (pc007014.panatlantic.com [192.168.7.14]) by ns1.panatlantic.com (8.13.8/8.13.8) with ESMTP id q5RKUlVT013473 for jua...@malima.com.ec; Wed, 27 Jun 2012 15:30:47 -0500 From: Operaciones GYE operg...@panatlantic.com To: 'Juan Pablo Quizhpi' jua...@malima.com.ec In-Reply-To: !!AAAYAB5nUp/iuAFJg0rCbcwTx7zCgAAAEPfnx1JyS5pKroOJjZeBrk4BAA==@malima.com.ec Subject: =?Windows-1252?Q?Le=EDdo:_FACTURA_OPTIMUS_VUELO_MIERCOLES_QUITO?= Date: Wed, 27 Jun 2012 15:41:37 -0500 Message-ID: 001c01cd54a5$3f578610$be069230$@com MIME-Version: 1.0 Content-Type: multipart/report; report-type=disposition-notification; boundary==_NextPart_000_001D_01CD547B.56817E10 X-Mailer: Microsoft Office Outlook 12.0 Thread-Index: Ac1Ul8/+aylRiEPqT46duY0JFwzuzQABkRngAAHEr4o= X-MyCompany-MailScanner-Information: Please contact the ISP for more information X-MyCompany-MailScanner-ID: q5RKUlVT013473 X-MyCompany-MailScanner: Found to be clean X-MyCompany-MailScanner-From: operg...@panatlantic.com X-Spam-Status: No ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] (sin asunto)
2012/6/28 Gabriel gabrielbuen...@yahoo.com.ar http://www.malteseclock.com/tukvzg.html ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es Por favor administradores/moderadores de la lista no mas de esto!. -- Carlos R!. ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
[CentOS-es] Problema Servidor PPTP
Saludos listeros, estoy montando un server pptp bajo CentOS 5.6 y no logro conectarme al mismo, aparentemente el servicio pptpd esta corriendo y la PC bajo Windows me dice que no logra contactar al servidor VPN, mi configuración es la siguiente: CentOS release 5.6 (Final) Kernel 2.6.18-238.el5 on an i686 [root@quad etc]# uname -r 2.6.18-238.el5 [root@quad ~]# modprobe ppp-compress-18 [root@quad ~]# [root@quad ~]# cat /etc/ppp/options.pptpd |grep -v ^$ |grep -v ^# name pptpd refuse-pap refuse-chap refuse-mschap require-mschap-v2 require-mppe-128 proxyarp lock nobsdcomp novj novjccomp nologfd [root@quad ~]# cat /etc/pptpd.conf |grep -v ^$ |grep -v ^# ppp /usr/sbin/pppd option /etc/ppp/options.pptpd logwtmp localip 192.168.137.150 remoteip 192.168.137.151-160 /etc/ppp/chap-secrets bajo el sgte formato: # client server secret IP addresses uservpn pptpdpassword* [root@quad etc]# sysctl -p net.ipv4.ip_forward = 1 Despues defino los niveles de corrida: chkconfig --level 35 pptpd on service pptpd start Cuando inicio el pptpd me percato que no me responde OK, sino que se queda sin cursor como esperando la respuesta, si doy un Ctrl+C se interrumpe el arranque del mismo, pero si me desconecto de la consola o abro otro terminal me dice que esta corriendo el servicio. No tengo iptables corriendo ni otro firewall. Trate de configurar usando el Webmin pues todo esto lo hice por consola y me ocurre lo mismo, pensando tenía algo mal, alguna idea de donde este el problema? en la internet varios usuarios usan la misma configuración que yo y dicen le funciona, he instalado 2 servidores diferentes usando la misma configuración y me reporta el mismo error. -- Saludos. Este mensaje ha sido enviado mediante el servicio de correo electronico que ofrece la Federacion de Radioaficionados de Cuba a sus miembros para respaldar el cumplimiento de los objetivos de la organizacion y su politica informativa. La persona que envia este correo asume el compromiso de usar el servicio a tales fines y cumplir con las regulaciones establecidas. ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Problema Servidor PPTP
No es dificil, Algo esta mal por ahi, dime que te dice el dmesg. o hasle un # tail -f /var/log/messages El 28 de junio de 2012 16:54, Angel Manuel Delgado Echezarreta cl8...@frcuba.co.cu escribió: Saludos listeros, estoy montando un server pptp bajo CentOS 5.6 y no logro conectarme al mismo, aparentemente el servicio pptpd esta corriendo y la PC bajo Windows me dice que no logra contactar al servidor VPN, mi configuración es la siguiente: CentOS release 5.6 (Final) Kernel 2.6.18-238.el5 on an i686 [root@quad etc]# uname -r 2.6.18-238.el5 [root@quad ~]# modprobe ppp-compress-18 [root@quad ~]# [root@quad ~]# cat /etc/ppp/options.pptpd |grep -v ^$ |grep -v ^# name pptpd refuse-pap refuse-chap refuse-mschap require-mschap-v2 require-mppe-128 proxyarp lock nobsdcomp novj novjccomp nologfd [root@quad ~]# cat /etc/pptpd.conf |grep -v ^$ |grep -v ^# ppp /usr/sbin/pppd option /etc/ppp/options.pptpd logwtmp localip 192.168.137.150 remoteip 192.168.137.151-160 /etc/ppp/chap-secrets bajo el sgte formato: # client server secret IP addresses uservpn pptpdpassword* [root@quad etc]# sysctl -p net.ipv4.ip_forward = 1 Despues defino los niveles de corrida: chkconfig --level 35 pptpd on service pptpd start Cuando inicio el pptpd me percato que no me responde OK, sino que se queda sin cursor como esperando la respuesta, si doy un Ctrl+C se interrumpe el arranque del mismo, pero si me desconecto de la consola o abro otro terminal me dice que esta corriendo el servicio. No tengo iptables corriendo ni otro firewall. Trate de configurar usando el Webmin pues todo esto lo hice por consola y me ocurre lo mismo, pensando tenía algo mal, alguna idea de donde este el problema? en la internet varios usuarios usan la misma configuración que yo y dicen le funciona, he instalado 2 servidores diferentes usando la misma configuración y me reporta el mismo error. -- Saludos. Este mensaje ha sido enviado mediante el servicio de correo electronico que ofrece la Federacion de Radioaficionados de Cuba a sus miembros para respaldar el cumplimiento de los objetivos de la organizacion y su politica informativa. La persona que envia este correo asume el compromiso de usar el servicio a tales fines y cumplir con las regulaciones establecidas. ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es -- Atentamente Andrés Genovez Tobar / Supervisor Tecnico Elastix ECE - Linux LPI-1 - Novell CLA - Apple ACMT - Mikrotik MTCNA http://www.puntonet.ec ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] (sin asunto)
On 06/28/2012 03:45 PM, Carlos Restrepo wrote: 2012/6/28 Gabriel gabrielbuen...@yahoo.com.ar http://www.malteseclock.com/tukvzg.html ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es Por favor administradores/moderadores de la lista no mas de esto!. claro, tienes alguna sugerencia para que no ocurra? sin que vengan las quejas de que la lista está siendo moderada? ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
[CentOS] Strange du/df behaviour.
Hi all. I have currently a server: cat /etc/redhat-release CentOS release 5.7 (Final) uname -a Linux host.domain.com 2.6.18-274.18.1.el5 #1 SMP Thu Feb 9 12:45:44 EST 2012 x86_64 x86_64 x86_64 GNU/Linux I have there a filesystem mounted: /dev/vg0/paczki /home/paczki-workdir ext4 defaults,noatime 0 0 on which df gives strange output: LANG=C df -h /home/paczki-workdir;sleep 3;df -h /home/paczki-workdir FilesystemSize Used Avail Use% Mounted on /dev/mapper/vg0-paczki 1008G 268G 690G 28% /home/paczki-workdir System plików rozm. użyte dost. %uż. zamont. na /dev/mapper/vg0-paczki 1008G 155G 803G 17% /home/paczki-workdir du -sk /home/paczki-workdir;sleep 3;du -sk /home/paczki-workdir 48426364/home/paczki-workdir 48428980/home/paczki-workdir du -sh /home/paczki-workdir;sleep 3;du -sh /home/paczki-workdir 47G /home/paczki-workdir 47G /home/paczki-workdir Currently there is only one process writing to the filesystem: root 27945 27918 3 09:16 ?00:01:44 tar --exclude=*/Maildir/.Spam/cur/* --exclude=*/Maildir/.Spam/new/* --use-compress-program /usr/bin/pigz -cf /home/paczki-workdir/abaksa-mail-20120628-0413.tgz and it writes so much data: du -sh /home/paczki-workdir/abaksa-mail-20120628-0413.tgz;sleep 3;du -sh /home/paczki-workdir/abaksa-mail-20120628-0413.tgz 13G /home/paczki-workdir/abaksa-mail-20120628-0413.tgz 13G /home/paczki-workdir/abaksa-mail-20120628-0413.tgz du -sk /home/paczki-workdir/abaksa-mail-20120628-0413.tgz;sleep 3;du -sk /home/paczki-workdir/abaksa-mail-20120628-0413.tgz 13410988/home/paczki-workdir/abaksa-mail-20120628-0413.tgz 13425040/home/paczki-workdir/abaksa-mail-20120628-0413.tgz I've also noticed that when nothing writes to this filesystem than df output also varies over short time periods. When I've updated the kernel and restarted the host for few hours df was showing ok info. There is no info about problems in /var/log/messages and dmesg. Additional info: vgdisplay -v vg0 Using volume group(s) on command line Finding volume group vg0 --- Volume group --- VG Name vg0 System ID Formatlvm2 Metadata Areas1 Metadata Sequence No 7 VG Access read/write VG Status resizable MAX LV0 Cur LV2 Open LV 2 Max PV0 Cur PV1 Act PV1 VG Size 3,64 TB PE Size 4,00 MB Total PE 953863 Alloc PE / Size 786432 / 3,00 TB Free PE / Size 167431 / 654,03 GB VG UUID wRjDqu-TUlW-7YH2-j6xl-nuc1-EczW-D2CAOK --- Logical volume --- LV Name/dev/vg0/paczki VG Namevg0 LV UUID0EyRjA-p90A-bfX6-1zEA-eMba-5Hn5-jc9slo LV Write Accessread/write LV Status available # open 1 LV Size1,00 TB Current LE 262144 Segments 1 Allocation inherit Read ahead sectors auto - currently set to 512 Block device 253:0 --- Logical volume --- LV Name/dev/vg0/msklon5 VG Namevg0 LV UUID8nlU4T-Qozl-bPnr-JOmh-g9Pi-cabs-J7yI7V LV Write Accessread/write LV Status available # open 1 LV Size2,00 TB Current LE 524288 Segments 1 Allocation inherit Read ahead sectors auto - currently set to 512 Block device 253:1 --- Physical volumes --- PV Name /dev/md0 PV UUID hly53e-wbbR-5xLo-3P4k-U4xt-8XeR-W0YCul PV Status allocatable Total PE / Free PE953863 / 167431 mdadm --detail /dev/md0 /dev/md0: Version : 0.90 Creation Time : Wed Apr 11 10:37:04 2012 Raid Level : raid10 Array Size : 3907023872 (3726.03 GiB 4000.79 GB) Used Dev Size : 1953511936 (1863.01 GiB 2000.40 GB) Raid Devices : 4 Total Devices : 4 Preferred Minor : 0 Persistence : Superblock is persistent Update Time : Thu Jun 28 10:17:04 2012 State : active Active Devices : 4 Working Devices : 4 Failed Devices : 0 Spare Devices : 0 Layout : near=2 Chunk Size : 64K UUID : 423fd5cf:beedc018:915808f0:8ec673de Events : 0.845339 Number Major Minor RaidDevice State 0 8 170 active sync /dev/sdb1 1 8 331 active sync /dev/sdc1 2 8 492 active sync /dev/sdd1 3 8 653 active sync /dev/sde1 Any clues why du shows wrong and floating info? Best regards, Rafal Radecki. ___ CentOS mailing list CentOS
Re: [CentOS] Strange du/df behaviour.
Update: Any clues why df shows wrong and floating info? 2012/6/28 Rafał Radecki radecki.ra...@gmail.com: Hi all. I have currently a server: cat /etc/redhat-release CentOS release 5.7 (Final) uname -a Linux host.domain.com 2.6.18-274.18.1.el5 #1 SMP Thu Feb 9 12:45:44 EST 2012 x86_64 x86_64 x86_64 GNU/Linux I have there a filesystem mounted: /dev/vg0/paczki /home/paczki-workdir ext4 defaults,noatime 0 0 on which df gives strange output: LANG=C df -h /home/paczki-workdir;sleep 3;df -h /home/paczki-workdir Filesystem Size Used Avail Use% Mounted on /dev/mapper/vg0-paczki 1008G 268G 690G 28% /home/paczki-workdir System plików rozm. użyte dost. %uż. zamont. na /dev/mapper/vg0-paczki 1008G 155G 803G 17% /home/paczki-workdir du -sk /home/paczki-workdir;sleep 3;du -sk /home/paczki-workdir 48426364 /home/paczki-workdir 48428980 /home/paczki-workdir du -sh /home/paczki-workdir;sleep 3;du -sh /home/paczki-workdir 47G /home/paczki-workdir 47G /home/paczki-workdir Currently there is only one process writing to the filesystem: root 27945 27918 3 09:16 ? 00:01:44 tar --exclude=*/Maildir/.Spam/cur/* --exclude=*/Maildir/.Spam/new/* --use-compress-program /usr/bin/pigz -cf /home/paczki-workdir/abaksa-mail-20120628-0413.tgz and it writes so much data: du -sh /home/paczki-workdir/abaksa-mail-20120628-0413.tgz;sleep 3;du -sh /home/paczki-workdir/abaksa-mail-20120628-0413.tgz 13G /home/paczki-workdir/abaksa-mail-20120628-0413.tgz 13G /home/paczki-workdir/abaksa-mail-20120628-0413.tgz du -sk /home/paczki-workdir/abaksa-mail-20120628-0413.tgz;sleep 3;du -sk /home/paczki-workdir/abaksa-mail-20120628-0413.tgz 13410988 /home/paczki-workdir/abaksa-mail-20120628-0413.tgz 13425040 /home/paczki-workdir/abaksa-mail-20120628-0413.tgz I've also noticed that when nothing writes to this filesystem than df output also varies over short time periods. When I've updated the kernel and restarted the host for few hours df was showing ok info. There is no info about problems in /var/log/messages and dmesg. Additional info: vgdisplay -v vg0 Using volume group(s) on command line Finding volume group vg0 --- Volume group --- VG Name vg0 System ID Format lvm2 Metadata Areas 1 Metadata Sequence No 7 VG Access read/write VG Status resizable MAX LV 0 Cur LV 2 Open LV 2 Max PV 0 Cur PV 1 Act PV 1 VG Size 3,64 TB PE Size 4,00 MB Total PE 953863 Alloc PE / Size 786432 / 3,00 TB Free PE / Size 167431 / 654,03 GB VG UUID wRjDqu-TUlW-7YH2-j6xl-nuc1-EczW-D2CAOK --- Logical volume --- LV Name /dev/vg0/paczki VG Name vg0 LV UUID 0EyRjA-p90A-bfX6-1zEA-eMba-5Hn5-jc9slo LV Write Access read/write LV Status available # open 1 LV Size 1,00 TB Current LE 262144 Segments 1 Allocation inherit Read ahead sectors auto - currently set to 512 Block device 253:0 --- Logical volume --- LV Name /dev/vg0/msklon5 VG Name vg0 LV UUID 8nlU4T-Qozl-bPnr-JOmh-g9Pi-cabs-J7yI7V LV Write Access read/write LV Status available # open 1 LV Size 2,00 TB Current LE 524288 Segments 1 Allocation inherit Read ahead sectors auto - currently set to 512 Block device 253:1 --- Physical volumes --- PV Name /dev/md0 PV UUID hly53e-wbbR-5xLo-3P4k-U4xt-8XeR-W0YCul PV Status allocatable Total PE / Free PE 953863 / 167431 mdadm --detail /dev/md0 /dev/md0: Version : 0.90 Creation Time : Wed Apr 11 10:37:04 2012 Raid Level : raid10 Array Size : 3907023872 (3726.03 GiB 4000.79 GB) Used Dev Size : 1953511936 (1863.01 GiB 2000.40 GB) Raid Devices : 4 Total Devices : 4 Preferred Minor : 0 Persistence : Superblock is persistent Update Time : Thu Jun 28 10:17:04 2012 State : active Active Devices : 4 Working Devices : 4 Failed Devices : 0 Spare Devices : 0 Layout : near=2 Chunk Size : 64K UUID : 423fd5cf:beedc018:915808f0:8ec673de Events : 0.845339 Number Major Minor RaidDevice State 0 8 17 0 active sync /dev/sdb1 1 8 33 1 active sync /dev/sdc1 2 8 49 2 active sync /dev/sdd1 3 8 65 3 active sync /dev/sde1
Re: [CentOS] Strange du/df behaviour.
Dne 28.6.2012 10:26, Rafał Radecki napsal(a): Update: Any clues why df shows wrong and floating info? Reserved space for root? See man dumpe2fs and tune2fs. DH ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Strange du/df behaviour.
Hello Rafal, On Thu, 2012-06-28 at 10:25 +0200, Rafał Radecki wrote: Currently there is only one process writing to the filesystem: root 27945 27918 3 09:16 ?00:01:44 tar --exclude=*/Maildir/.Spam/cur/* --exclude=*/Maildir/.Spam/new/* --use-compress-program /usr/bin/pigz -cf /home/paczki-workdir/abaksa-mail-20120628-0413.tgz I don't see a path in that command. What is piping into tar? du -sk /home/paczki-workdir/abaksa-mail-20120628-0413.tgz;sleep 3;du -sk /home/paczki-workdir/abaksa-mail-20120628-0413.tgz 13410988/home/paczki-workdir/abaksa-mail-20120628-0413.tgz 13425040/home/paczki-workdir/abaksa-mail-20120628-0413.tgz So the above process is writing to that tarball and it increases in size over time. Guess the programme piping into tar is still producing data. Regards, Leonard. -- mount -t life -o ro /dev/dna /genetic/research ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] NIS expiration of passwords
Dear all, I have a NIS server which shares a database of users between some computers (nodes exactly) and I would like that, on the first login, the user changes its password. So, on the NIS server I have made: chage -d 0 USER Then: # cd /var/yp # make On the NIS server I have: chage -l USER Last password change: password must be changed Password expires: password must be changed Password inactive : password must be changed Account expires : never Minimum number of days between password change : 0 Maximum number of days between password change : 9 Number of days of warning before password expires : 7 I would believe this information is shared from the server to the other computers but here users still can connect (via SSH). If I try to get the information on the user connected I have: # chage -l USER user 'USER' does not exist in /etc/passwd This looks normal as there is no user there but then I do not know how to enable the expiration information through NIS. Do someone has an idea? Thanks, Fabien ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to handel smtp to public servers - done
For the last five years I have been running a captive portal gateway I developed at a number of airports to manage free wireless. There are more that 25K connection each day, and port 25 is blocked for every one of them. Yes we get complaints, but not often, one every two or three months or so. Before we blocked port 25 we had to go to spamhaus.org once a month, or so, to request removal of one of more of the gateway's IP addresses from their black lists. Emmett On 06/27/2012 09:04 PM, Emmanuel Noobadmin wrote: On 6/27/12, Götz Reinicke goetz.reini...@filmakademie.de wrote: Long story short: I advised the use of port 587 two hours ago. FYI since than I had 169 outgoing connections to port 20 and 1 to 587. :) Seriously, just force them. I got so tired of one particular app/mail server that keep getting blacklisted because of lazy client admin and users, I sent them a notice that for emergency security reasons, emails will only be accepted on port 587. Gave them one hour, then closed 25. Understandably people screamed for about another hour or so but all of them ended up on 587 by the end of the day ;) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] CentOS 5.8 crash/freeze running VMware
Hi -- I have a server running CentOS 5.8. It has a 6-core AMD processor, 16Gb memory, and a RAID 5 file system. It serves as both a file server and to run several VMware virtual machines. The guest machines run Windows 7 and various versions of Linux. The system is running the latest version of VMware Workstation. Until recently, I started VMs using the VMware Workstation GUI. The system has been very stable and seldom crashes. Recently, I set up an init script to start several VMs at boot time using the vmrun command. This appeared to work correctly, but the system has become unstable, freezing at various times. When the system freezes, there is no console response and it does not respond to a ping. There is nothing in syslog to indicate any error. The script started 8 VMs. I've cut back to now running 4 VMs and the system appears stable. Is there some relation between the number of cores and the number of VMs one can run? Is there something else which might cause the system to crash when running multiple VMs? Any suggestions to identify why the system crashed? -- Michael Eagerea...@eagercon.com 1960 Park Blvd., Palo Alto, CA 94306 650-325-8077 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] How to configure time on virtual clients using KVM?
I use a CentOS5.8 server with KVM. I have several virtual machines running on it. When I reboot the server (takes 10 minutes) all VMs are saved and correctly restored. The time on the clients is however of by 10 minutes. nptd is running on the clients and that is able to correct this big mismatch. But what I don't understand is that the host does not seem to help the client with it's timekeeping. On a fedora16 machine I can tell that kvm-clock is being used: cat /sys/devices/system/clocksource/clocksource0/available_clocksource kvm-clock tsc acpi_pm cat /sys/devices/system/clocksource/clocksource0/current_clocksource kvm-clock One the centos5 client I can think I see the same: dmesg|grep time.c time.c: Using 1.193182 MHz WALL KVM GTOD KVM timer. If I suspend a client, I see the time is correct just after resume. If I save and restore the time is left at the saved time: ssh valk5 date;virsh save valk5 /var/lib/libvirt/images/save ;sleep 60;virsh restore /var/lib/libvirt/images/save;ssh valk5 date;date Thu Jun 28 18:37:59 CEST 2012 Domain valk5 saved to /var/lib/libvirt/images/save Domain restored from /var/lib/libvirt/images/save Thu Jun 28 18:40:00 CEST 2012 Thu Jun 28 18:41:07 CEST 2012 So my question is, is this intended behaviour? Is there something I can change to kick the time during a restore? A second related question is what happens after a live migrate. I can migrate the VMs to a different machine, but that machine has slightly different specs. I notice that the clock speed is really off (minutes per hour need to be corrected after a live migrate). I guess the client gets a differt CPU clock on the other host. Is there a way to update the client without a reboot? A reboot helps, so I guess some timer calibration takes place then. But that defeats the purpose of a live migrate. Theo ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Optimizing grep, sort, uniq for speed
This snippet of code pulls an array of hostnames from some log files. It has to parse around 3GB of log files, so I'm keen on making it as efficient as possible. Can you think of any way to optimize this to run faster? HOSTS=() for host in $(grep -h -o [-\.0-9a-z][-\.0-9a-z]*.com ${TMPDIR}/* | sort | uniq); do HOSTS+=($host) done ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Optimizing grep, sort, uniq for speed
Sean Carolan wrote: This snippet of code pulls an array of hostnames from some log files. It has to parse around 3GB of log files, so I'm keen on making it as efficient as possible. Can you think of any way to optimize this to run faster? HOSTS=() for host in $(grep -h -o [-\.0-9a-z][-\.0-9a-z]*.com ${TMPDIR}/* | sort | uniq); do HOSTS+=($host) done For one, do the sort in one step: sort -u. For another, are the hostnames always the same field? For example, if they're all /var/log/messages, I'd do awk '{print $4;}' | sort -u mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Optimizing grep, sort, uniq for speed
On 06/28/2012 12:15 PM, Gordon Messmer wrote: You have two major performance problems in this script. First, UTF-8 processing is slow. Second, wildcards are EXTREMELY SLOW! Naturally, you should test both on your own data. I'm amused to admit that I tested my own advice against my mail log and got more improvement from the LANG setting than the string prefix. The combination of the two reduced the amount of time to run your your pattern against my mail logs by about 90%. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Optimizing grep, sort, uniq for speed
Sean Carolan wrote: Thank you Mark and Gordon. Since the hostnames I needed to collect are in the same field, at least in the lines of the file that are important. I ended up using suggestions from both of you, the code is like this now. The egrep is there to make sure whatever is in the 9th field looks like a domain name. for host in $(awk '{ print $9 }' ${TMPDIR}/* | egrep [-\.0-9a-z][-\.0-9a-z]*.com | sort -u); do HOSTS+=($host) done *sigh* awk is not cut. What you want is awk '{if (/[-\.0-9a-z][-\.0-9a-z]*.com/) { print $9;}}' | sort -u No grep needed; awk looks for what you want *first* this way. mark, who learned awk in the very early nineties, writing 100-200 line awk scripts ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Optimizing grep, sort, uniq for speed
*sigh* awk is not cut. What you want is awk '{if (/[-\.0-9a-z][-\.0-9a-z]*.com/) { print $9;}}' | sort -u No grep needed; awk looks for what you want *first* this way. Thanks, Mark. This is cleaner code but it benchmarked slower than awk then grep. real3m35.550s user2m7.186s sys 0m27.793s I'll run it a few more times to make sure that it wasn't some other process slowing it down. I really need to brush up some more on my awk skills! ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Optimizing grep, sort, uniq for speed
On Thu, Jun 28, 2012 at 01:30:33PM -0500, Sean Carolan wrote: This snippet of code pulls an array of hostnames from some log files. It has to parse around 3GB of log files, so I'm keen on making it as efficient as possible. Can you think of any way to optimize this to run faster? If the key phrase is *as efficient as possible*, then I would say you want a compiled pattern search. Lex is the tool for this, and for this job is not hard. Lex will generate a specific scanner(*) in C or C++ (depending on what flavor of lex you use). It will probably be table-based. Grep and awk, in contrast, generate scanners on the fly, and specifying complicated regular expressions is somewhat clumsier in grep and awk. (*) strictly speaking, you are *scanning* not *parsing*. Parsing involves a grammar, and there's no grammar here. If it develops that these domain names are context sensitive, then you will need a grammar. The suggestions of others -- setting LANG, cutting a specific field, and so on, are all very valuable, and may be *practically* more valuable than writing a scanner with lex, or could be used in conjunction with a proper scanner. Note that lex will allow you to use a much better definition for domain name -- such as more than one suffix, names of arbitrary complexity, names that may violate RFC, numeric type names, case sensitivity, names that match certain special templates, like *.cn or goog*.* and so on. If you are unfamiliar with lex, note that it is the front end for many a compiler. BTW, you could easily incorporate a sorting function in lex that would eliminate the need for an external sort. This might be done in awk, too, but in lex it would be more natural. You simply would not enter duplicates in the tree. When the run is over, traverse the tree and out come the unique hostnames. I'm assuming you'll have many collisions. (You could even keep a count of collisions, if you're interested in which hosts are popular.) Consider btree(3) for this or hash(3). Dave -- Programming is tedious, but it is still fun after all these years. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Optimizing grep, sort, uniq for speed
Woodchuck wrote: On Thu, Jun 28, 2012 at 01:30:33PM -0500, Sean Carolan wrote: This snippet of code pulls an array of hostnames from some log files. It has to parse around 3GB of log files, so I'm keen on making it as efficient as possible. Can you think of any way to optimize this to run faster? If the key phrase is *as efficient as possible*, then I would say you want a compiled pattern search. Lex is the tool for this, and That, to me, would be a Big Deal. snip BTW, you could easily incorporate a sorting function in lex that would eliminate the need for an external sort. This might be done in awk, too, but in lex it would be more natural. You simply would not snip Hello, mark, wake up. Of course, there's an even easier way, just using awk: awk '{if (/[-\.0-9a-z][-\.0-9a-z]*.com/) { hostarray[$9] = 1;}} END { for (i in hostarray ) { print i;}}' This dumps it into an associative array - that's one whose indices are a string - so it will by default be in order. mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] NIS expiration of passwords
On Thu, Jun 28, 2012 at 7:23 AM, Fabien Archambault fabien.archamba...@univ-amu.fr wrote: Dear all, I have a NIS server which shares a database of users between some computers (nodes exactly) and I would like that, on the first login, the user changes its password. So, on the NIS server I have made: chage -d 0 USER Then: # cd /var/yp # make On the NIS server I have: chage -l USER Last password change: password must be changed Password expires: password must be changed Password inactive : password must be changed Account expires : never Minimum number of days between password change : 0 Maximum number of days between password change : 9 Number of days of warning before password expires : 7 I would believe this information is shared from the server to the other computers but here users still can connect (via SSH). If I try to get the information on the user connected I have: # chage -l USER user 'USER' does not exist in /etc/passwd This looks normal as there is no user there but then I do not know how to enable the expiration information through NIS. Do someone has an idea? You can't. NIS on linux does not support password aging. Thanks, Fabien ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- -MichaelC ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Optimizing grep, sort, uniq for speed
*sigh* awk is not cut. What you want is awk '{if (/[-\.0-9a-z][-\.0-9a-z]*.com/) { print $9;}}' | sort -u I ended up using this construct in my code; this one fetches out servers that are having issues checking in with puppet: awk '{if (/Could not find default node or by name with/) { print substr($15, 2, length($15)-2);}}' ${TMPDIR}/* | sort -u Thanks again, your knowledge and helpfulness is much appreciated. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to handel smtp to public servers
On 27/06/12 18:23, Götz Reinicke wrote: I like to know which private computer sends lot of mail. :) You could get your firewall ACCEPT but LOG the outgoing 25 from anything but your mailhub. Have often wondered whether a transparent mail-proxy could be set up, similar to a transparent web-proxy, with your firewall catching all port 80 and redirecting to 8080 on your squid server. Never got around to seeing whether this was possible ... ... then again I agree with the others, blocking outgoing port 25 is the better idea, but only if it is not going to get you fired. Cheers, Kal -- Kahlil (Kal) Hodgson GPG: C9A02289 Head of Technology (m) +61 (0) 4 2573 0382 DealMax Pty Ltd(w) +61 (0) 3 9008 5281 Suite 1415 401 Docklands Drive Docklands VIC 3008 Australia All parts should go together without forcing. You must remember that the parts you are reassembling were disassembled by you. Therefore, if you can't get them together again, there must be a reason. By all means, do not use a hammer. -- IBM maintenance manual, 1925 ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] CentOS 5.8 crash/freeze running VMware
On 06/28/2012 12:45 PM, Michael Eager wrote: Hi -- I have a server running CentOS 5.8. It has a 6-core AMD processor, 16Gb memory, and a RAID 5 file system. It serves as both a file server and to run several VMware virtual machines. The guest machines run Windows 7 and various versions of Linux. The system is running the latest version of VMware Workstation. Until recently, I started VMs using the VMware Workstation GUI. The system has been very stable and seldom crashes. Recently, I set up an init script to start several VMs at boot time using the vmrun command. This appeared to work correctly, but the system has become unstable, freezing at various times. When the system freezes, there is no console response and it does not respond to a ping. There is nothing in syslog to indicate any error. The script started 8 VMs. I've cut back to now running 4 VMs and the system appears stable. Is there some relation between the number of cores and the number of VMs one can run? Is there something else which might cause the system to crash when running multiple VMs? Any suggestions to identify why the system crashed? Are you staggering the startups of the VMs? The server may be choking trying to boot 8 machines at once. I suggest starting a VM every 30-60 seconds, so that you aren't trying to boot all 8 at once. Don't know if it will help, but it might. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Universal server hardware platform - which to choose?
On Tue, Jun 26, 2012 at 03:03:23PM -0400, Steve Thompson wrote: On Tue, 26 Jun 2012, m.r...@5-cent.us wrote: We've had a number of servers fail, and it *seems* to be related to the motherboard. I too have had bad experiences with SuperMicro motherboards; never had one last more than three years. The problem with supermicro is that the end user assembles them; If you use ESD protection, this is fine. If you dont? go buy a dell or something. The big problem is that many of the smaller assembly houses also don't believe ESD is a big deal. If there is carpet on the workshop floor? run. If you see techs working without a wrist strap? walk. I've assembled hundreds of supermicro servers with and without ESD protection, and the behavior is fairly reproducable. Yeah, the problems don't always show up right away? but they come. I remember when I first figured this out; we had been having about 1 in 3 of our supermicro servers not pass burn-in. Then, in production, we'd lose things like RAID cards and ethernet ports all the time. I'd spend days swapping out parts and RMAing stuff, just to get one server built. I mean, I didn't really believe that the factory was sending me broken shit, and there was noticable static in the office. (I always 'took the power supply pledge' before touching anything) Anyhow, I read a study by adaptec (we were using adaptec hardware raid in everything, and they were failing like crazy) saying that nearly all customer RMAs, upon inspection, were due to esd damage. Well, the boss ended up ordering something like 70 servers (rather than the three every two weeks he was ordering before) - I talked him into letting me blow $200 on ESD protection, just to see if that was the problem, and instead of having 1 out of 3 die as before? all of them passed burn-in on the first try. Properly assembled supermicro kit (both AMD and Intel) is just as good as the dell stuff. I have one server that's been chugging away for something like ten years now. (I need to get rid of it; Dual socket 604 xeons. It's a space heater, and it doesn't get me much by way of compute power. I've got all customers off of it, but my own personal vps? I haven't had time.) But yeah, you've gotta get someone to assemble it that gives a shit. I mean, me? I know that it's my pager that is going off at 4am if something breaks. It's me that's going to have to fumble around with spares. I give a shit. As it is, I'd rather assemble my own servers, than trust someone for whom a down hardware is not that big of a deal to assemble my stuff. Assembling a superserver, if you don't fuck it up, takes about five minutes. Burn in is trivial when they pass... and when they don't pass, which is extremely rare, I know I screwed something up. On the other hand... I have a very low opinion of dell support (granted, I'm pretty hard to please in that department.) but from what I've seen? all the big names ship okay stuff from the factory. They have proper esd precautions in the factory. So yeah; if you aren't willing to go with the table mat, the wrist strap, and the monitor, well, order the server from dell and don't open it. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Universal server hardware platform - which to choose?
On Thu, Jun 28, 2012 at 09:57:33PM -0700, John R Pierce wrote: On 06/28/12 8:56 PM, Luke S. Crawford wrote: The problem with supermicro is that the end user assembles them; If you use ESD protection, this is fine. If you dont? go buy a dell or something. well, the SM kit I've bought was built and integrated by a major name systems integrator. they were sold as complete solutions under this vendors' label, and supported by said vendor. really, I'd say its all in the VAR and your service contract with them. very few VARs do the level of systems testing that HP or IBM or Dell or whatever do... If you really really want to be your own systems integrator, then do extensive burnin on new systems, and stock spare parts. I agree. Except that you don't need to do all, or even most of the work that a systems integrator does. For me, the hard part of being a systems integrator is the sales and negotiation bullshit. That's why I don't build systems for other people. On top of that, you have to deal with your customers opening them up, without ESD protection, and adding garbage, or customers blaming OS bugs on you. If you only build for yourself, you don't have to worry about that sort of thing. I mean,you still have to figure out if it's hardware or the OS, but at least you get to choose the OS. But yes. stock spares. I try to make sure I always have one server (minus disks) ready to go; If I get a hardware problem (I can usually tell remotely) I put it in the van before I head down to the data center; If I can't figure things out quickly on-site, I take the hard drives out of the bad hardware, put them in the spare box, boot, and go. (Of course, I also have spares of other parts; but if something in production is down, you don't want to sit there farting around trying to figure out which DIMM is bad while the pager is exploding. Swap the whole thing and screw with it back at the shop after you have cleaned up the support queue.) (if you use hardware raid, this becomes... more complicated. Test your procedure first.) From what I've seen? the difference between no negotiation and the best possible negotiation, when you buy whole servers? is often 50% of the total price. Sometimes more. When buying parts? it's 5%, if that. (we're talking in the 1-5 server quantity here. I'm sure things change if you are buying hundreds or thousands at once and you are saavy. I've never seen a saavy entity negotiate for hundreds or thousands of servers or parts for same.) That, and to negotiate well, you need to have all of the knowledge you'd need to buy the parts to build your own server. Either way, unless you are prepared to just pay full price, you need to keep up with hardware and the relitive costs. Heck, I'll do all the assembly and burn in work, and keep spares around, just to avoid the negotiation bullshit. For me? it's far easier. And if you ask me? dealing with broken hardware is downright relaxing compared with trying to convince some goddamn monkey that the reboot that happened last night was really a hardware issue, and yes, it came back up, but it still needs to get fixed. But it works now, right? (sorry... I just remember some extremely frustrating experiences dealing with dell's verson of Mordak. And I was getting paid by the hour, so if corporations had feelings, the company hiring me would really have felt worse.) But that has as much to do with who I am and what skills I have as anything else. If I were an extrovert, I'd probably find 'educating' tech support to be less of a hellish experience. And, of course, on all but the super expensive plans, if it's not acceptable to be down all weekend for a hardware failure on friday night, well, you still need those spares. (Of course, if I only had one or two servers, it'd probably make sense to just pay twice the price and be done with it. But nearly all of my net worth is tied up in server hardware, so I can't walk away from that 50%.) But yeah, my point is just that if you build the hardware yourself, you only have to do a small subset of the 'systems intigrator' work. Yeah, it's a lot more technical work than just firing the money cannon at dell or HP, but it's a lot less social work than trying to get a reasonable deal, or trying to get reasonable service out of dell or HP. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos