From the comments in the script:
“Created this script after I had several misconfigurations across many servers – this will
use values from the config files for testing – a wrapper for fail2ban-regex and eliminating
late-night, low-on-caffeine human errors in testing your config. Could also be used: after an
update to verify the configuration, run weekly cron, create a fail2ban report..”
Script is here: http://mochabomb.com/software/fail2ban-check.txt
I made some changes to a VBD based Xen server – here’s what not to do:
xm console server I did not see that prompt – needed to use the vnc/gui to see this – entered it and got closersystem-config-network – eg; eth0 was actually saved as "eth0 " – that extra space messed up starting of "eth0" and other network devices. I will bugzilla this one.Network trouble: www.linuxfromscratch.org/pipermail/lfs-support/2003-December/021076.html
solution: cd /etc; find . -print | grep ifcfg – delete any that are easily replaced – I removed all but the primary IP interface.
Mounting xen vbd img files:
http://www.brandonhutchinson.com/Mounting_a_Linux_LVM_volume.html
http://www.novell.com/coolsolutions/tip/19568.html
Now if anyone share how to effectively mount Linux LVM from a server.img file that looks like – I can mount the ext3 boot partition, but not the Linux LVM using lomount or other techniques:
[root@server vm]# fdisk -l /dev/loop0
Disk /dev/loop0: 16.7 GB, 16777216000 bytes
255 heads, 63 sectors/track, 2039 cylinders
Units = cylinders of 16065 * 512 = 8225280 bytes
Device Boot Start End Blocks Id System
/dev/loop0p1 * 1 13 104391 83 Linux
/dev/loop0p2 14 2039 16273845 8e Linux LVMas Lundberg would say “That would be great”
From a Drupal install, got a blank page when logging in….
[Mon Nov 05 13:20:36 2007] [error] [client 71.139.36.123] PHP Fatal error:
Allowed memory size of 16777216 bytes exhausted (tried to allocate 92160 bytes) in
/home/someuser/public_html/modules/event/event_timezones.inc on line 331, referer: http://example.com/
Up the memory in php.ini a few MB, restart httpd and all was working..
Yeah, its 5am – got clients that rely on me to get things done…
DNS: Best free tool to use: http://www.dns.lu/en/EN-LUTestNoms.php
If seeing “not advertising as nameserver”, that means in the zone file that server is not listed:
mochabomb.com. IN NS ns1.mochabomb.com. mochabomb.com. IN NS ns2.mochabomb.com. mochabomb.com. IN NS ns4.mochabomb.com.
.. for the server it resides on – and that record can be a slave record, just need to add all slaves in the master DNS server so that the slave server advertizes itself as an authority….
In /etc/named.conf is where a zone is set as master or slave. A slave can be authoritative if its name is listed/resolved by the master record.
Quick NFS Setup Notes:
Server with files to be shared:
# service portmap start; service nfslock start; service nfs start
# echo " /home/sharedfiles (ro,sync) >> /etc/exports
Server that accesses these files
Edit /etc/vfstab
server:/share/adir /opt/adir nfs ro,sync 0 0
Add a macro.NFS to /etc/shorewall:
###############################################################################
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER/
# PORT PORT(S) DEST LIMIT GROUP
PARAM - - udp 111,2049
PARAM - - tcp 111,2049
PARAM - - udp 4000:4003
PARAM - - tcp 4000:4003
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
© 2010 Mochabomb · Proudly powered by WordPress & Green Park 2 by Cordobo.
Valid XHTML 1.0 Transitional | Valid CSS 3
Mochabomb is Digg proof thanks to caching by WP Super Cache