UDP packets sent from specific source port, with public source IP address do not reach specific destination port of the public destination IP address. changing any of the parameters [ usually source port ] – fixes the issue. i’ve observed this phenomenon multiple times for long-running OpenVPN and Wireguard VPNs encapsulating encrypted traffic in UDP …
Continue reading ‘black hole, somewhere in the internet, swallowing UDP packets’ »
i’ve spent most of the last week investigating spooky HTTP request that we’ve found in access logs of few production servers. very likely that traffic was replayed by mail content scanners used by messagelabs and mimecast.
UPC turns your cable modem into WiFi hot-spot available for others. outrageous! and i’ve been using it for quite a while – it generally works. below – how to connect OpenWRT or Mikrotik to such connection.
recently we needed to expand storage space available on one of our servers. originally it was using RAID10 on 4 4TBSSD drives handled by Dell’s PERC h730p controller, we wanted to add 2 more 4TB drives and go from 8 to 12TB array. we’ve decided to be brave and use RAID10 -> RAID10 array expansion. …
recently i woke up to this: “Hi, some of our employees are using your application. This morning they have received an upgrade notification (in yellow banner) to get the latest version of your app. Our anti-virus/malware has triggered on your module called “somefile.exe” detected at risk being a “Trojan.Gen.MBT “. below few resources that i’ve …
Continue reading ‘fighting a false-positive flagging by multiple antivirus vendors’ »
i’ve bricked a cheap home router. i’ve installed a beta of dd-wrt firmware which did not work. raspberry pi gave me serial connection to it.
we’ve run out of the office space in one of the locations. in short term it was not possible to find a suitable and large enough place to rent so we had to split and relocate some of the staff to another building few kilometers away. it’s possible that we’ll shuffle people and servers between …
Continue reading ‘bridging lan segments across untrusted links’ »
at work i’m using mysql replication quite extensively. first it was a straightforward one-way replication that has been rock-solid for us since 2009. in 2012, for another type of data, we’ve started using master-master setup. initially the servers were in different European countries, eventually the secondary site was moved to North America while primary one …
Continue reading ‘multi-master mysql replication with servers on 3 different continents’ »
i’ve been running a set of production MySQL databases on BTRFS since April 2016. BTRFS is not exactly known for its stellar performance when hosting databases or images of virtual machines due to its COW nature. why would i do it then? to have data snapshots and be able to ‘go back in time’ quickly …
i use this setup for few lxc servers. bonding provides me layer2 failover based on arp probes [ so it’ll work even if switch link stays up yet forwarding fails the mechanism will kick in ]. this is continuation of an earlier post, this time under debian stretch
my colleagues got into an unpleasant situation where one of two dedicated servers, running vmware esxi 6.0, rented from a datacenter lost its network connectivity. the datacenter/internet-facing interface is down, hours later, during regular working day, the hosting provider did not react and resolve the problem. maybe the network card died, maybe switch port misbehaves …
Continue reading ‘bridging two physical interfaces of esxi server’ »
at work we’re using happily ghettoVCB.sh to back up and restore VMWare ESXi VMs. since a few weeks we’ve started to experience occasional failures of backups, only for one – larger VMs. in the logs produced in /tmp/ghettoVCB-2017-04-xxx.log we got: or after some head scratching, watching at iostat -x 1 and ifstat -b 1 -i …
Continue reading ‘ghettoVCB failing randomly on larger VMs’ »
i had to expose some web-based application hosted on a windows server to the internet. i don’t put too much trust in the developers of that particular application so i did not want to make it reachable from the public internet. while i could not use ip address based whitelist i could count on the …
Continue reading ‘simplistic gatekeeper limiting access to apache2-based proxy’ »
i was in HK again; just for a week, but there was enough time during the weekend to hike again in the wildness. High Junk Peak at first i did not enjoy this route at all – just after living the last buildings behind: there was ~25 min of walking up the narrow concrete stairs …
once in a while we get e-mails with spoofed sender’s address claiming to come from @ourorg.com. this can fool some of our users; outlook displaying an image of sender solely based on the From: field does not help here. some of those messages have different Return-Path pointing to @someotherscammy.site, other have it also pointing to …
i’ve spent two weeks traveling around Tenerifa with my parents. we’ve seen a bit of the commercial-heavy south near Los Cristianos, rocky west coast in Los Gigantes, semi-rural areas of Icod de Vinos, a bit of Puerto de la Cruz and post-volcanic Teide and Puerto de Guimar. our hiking routes – below.
i’ve made a mistake of buying an audiobook from audible.com. before doing it i’ve briefly checked if the file will be provided in mp3; according to audible.com/sh yes. in reality – no.
i’m taking backups of vmware esxi vms weekly using ghettovcb. it has been working greatly for many years. once in a while i need to recover a particular file from particular backup. there’s quicker way than just restoring the whole vm!
i’ve spent nearly two weeks traveling around Albania. i’ve started and ended the journey on a Greek island – Corfu [ i could not find any reasonably-priced flight from Berlin to Tirana ] and from there travelled with a ferry to Sarandë.
i’ve ‘convinced’ my samba running under debian wheezy/jessie to provide me access audit logs without being too verbose. here’s how.