we’ve run out of the office space in one of the locations. in short term it was not possible to find a suitable and large enough place to rent so we had to split and relocate some of the staff to another building few kilometers away. it’s possible that we’ll shuffle people and servers between …
Continue reading ‘bridging lan segments across untrusted links’ »
at work i’m using mysql replication quite extensively. first it was a straightforward one-way replication that has been rock-solid for us since 2009. in 2012, for another type of data, we’ve started using master-master setup. initially the servers were in different European countries, eventually the secondary site was moved to North America while primary one …
Continue reading ‘multi-master mysql replication with servers on 3 different continents’ »
idrac gives you “RED006: Unable to download Update Package” and plenty of headaches during updates? it happened to me while jumping over few updates and going straight from 2.41.40.40 to 2.52.52.52. no amount of racadm racreset would help. upgrading first to 2.50.50.50 and only then to 2.52.52.52 did the trick for me.
i’ve run into an issue where windows 10 desktop could not anymore access a simple samba share on a linux server; that linux server did not have any type of authorization put in place. Windows would randomly give errors ” might not have permission to use this network resource” or “Windows cannot access \\Server\ShareYou do …
i’ve been running a set of production MySQL databases on BTRFS since April 2016. BTRFS is not exactly known for its stellar performance when hosting databases or images of virtual machines due to its COW nature. why would i do it then? to have data snapshots and be able to ‘go back in time’ quickly …
few weeks ago i’ve done a general firmware upgrade of 2 identical Dell Poweredge r620 servers. a while later i’ve noticed that one of them had really sluggish performances. i’ve noticed that /proc/cpuinfo has shown CPU frequencies of hundreds of MHz rather than thousands. cat /proc/cpuinfo |grep MHz gave me 16 rows of values between …
Continue reading ‘E5-2643 in r620 stuck at a very low cpu frequency’ »
lxc containers no longer start after i’ve upgraded debian stretch server from 4.12 kernel from stretch-backports repository to 4.13 also from backports. symptoms in /var/log/syslog: that was resolved by creating /etc/systemd/network/99-default.link with: via this comment. then there was nothing interesting in syslog but the lxc guest still would not start – lxc-start -F -n serverName …
i use ghettoVCB to take backups of vmware esxi 6.5 vms. data is copied to a nfs share hosted on Debian Linux. for over a year i used btrfs partition as an underlying datastore for the nfs share. and i just could not get it to work for backups which size larger than available RAM …
Continue reading ‘btrfs and nfs dont play nicely together’ »
i’ve moved a linux router from 9yo physical box to a vm running under esxi 6.5. it’s a designated master in pair of master / slave managed by ucarp. it took me a while to figure out why it was not working – why didn’t the slave ‘see’ the master machine? as it turned out …
after upgrade to debian stretch i had to add the following firewall entries: for the FTP servers: for the nat-routers between FTP servers and FTP clients: for the FTP clients: related articles: https://home.regit.org/netfilter-en/secure-use-of-helpers/
on 2017-10-12 i’ve done a routine apt-get update; apt-get upgrade on a debian stretch vm that, among other services, runs opendkim service that adds a digital signature in the headers of the outgoing mails. during the update i was asked weather to keep or replace the /etc/opendkim.conf; as usual in such cases i’ve answered no …
Continue reading ‘opendkim failing to start after recent routine debian update’ »
i use this setup for few lxc servers. bonding provides me layer2 failover based on arp probes [ so it’ll work even if switch link stays up yet forwarding fails the mechanism will kick in ]. this is continuation of an earlier post, this time under debian stretch
i’ve installed debian stretch on an old dell poweredge 2950. after booting it i saw grub, few lines from kernel and then green screen with “out of range”: reboot, on the grub menu select “*Debian GNU/Linux”, press e, hilight a line with linux /boot/vmlinuz-4.9.0-3-amd64 root=/dev/sda1 ro quiet, add there vga=normal fb=false nomodeset and press ctrl+x …
Continue reading ‘“out of range” on drac console when booting debian stretch’ »
for the past year number of commits in my favorite open source text-search server – the sphinxsearch project – has dropped to nearly 0. looks like in the meanwhile some of the old contributors moved to another project – manticoresearch. the website of the new project features two prominent supporters – craigslist and boardreader. fingers …
Continue reading ‘sphinxsearch reborn as manticoresearch?’ »
today i’ve learned that disabling trackback in wordpress’s settings > discussion [ ] Allow link notifications from other blogs (pingbacks and trackbacks) on new articles is not enough. your old posts, created before the date when this check-box was un-ticked, will still allow trackback which might be spammy. solution? adjust the trackback setting on per-post …
we’ve set up a new build server using Windows Server 2016 running under ESXi 6.5. few days later devs came back with a complain: full svn checkout time varies a lot – it takes between 1 and 8 minutes. steps taken that hopefully resolved the issue: disable the icon cache of tortoise svn, then eventually …
Continue reading ‘varying svn checkout times under virtualized windows server 2016’ »
my colleagues got into an unpleasant situation where one of two dedicated servers, running vmware esxi 6.0, rented from a datacenter lost its network connectivity. the datacenter/internet-facing interface is down, hours later, during regular working day, the hosting provider did not react and resolve the problem. maybe the network card died, maybe switch port misbehaves …
Continue reading ‘bridging two physical interfaces of esxi server’ »
at work we’re using happily ghettoVCB.sh to back up and restore VMWare ESXi VMs. since a few weeks we’ve started to experience occasional failures of backups, only for one – larger VMs. in the logs produced in /tmp/ghettoVCB-2017-04-xxx.log we got: or after some head scratching, watching at iostat -x 1 and ifstat -b 1 -i …
Continue reading ‘ghettoVCB failing randomly on larger VMs’ »
i had to expose some web-based application hosted on a windows server to the internet. i don’t put too much trust in the developers of that particular application so i did not want to make it reachable from the public internet. while i could not use ip address based whitelist i could count on the …
Continue reading ‘simplistic gatekeeper limiting access to apache2-based proxy’ »
i needed to write a .bat script for windows to upload a log file. quick and nasty hack.. on the sending end: looks straightforward, worked when i tested; but failed to upload in the production setup. on the http server/PHP i was getting: turned out that the log file was growing. curl at the beginning …
Continue reading ‘posting a file from command line with CURL’ »