Header Shadow Image

Archive for the 'NIX Posts' Category

OpenWRT: Disable invalid default gateway selection

It indeed happened that the default GW provided on various network interfaces was the router that we do not want to be the GW.  In our case the OpenWRT Raspberry Pi 2 became the GW for any hosts dynamically getting an IP.  So all requests, were sent via the Raspberry Pi 2, which is not […]

OpenWRT: Resolving the /etc/resolv.conf lack of proper DNS resolution.

OpenWRT links /etc/resolv.conf to /tmp/resolv.conf and only adjust entries in /tmp/resov.conf if $localuse is enabled in the UI: The above entered as text, is: DHCP and DNS -> [General Settings] -> [Local domain] : openwrt.mds.xyz mds.xyz nix.mds.xyz mws.mds.xyz DHCP and DNS -> [General Settings] -> Allow localhost : Yes DHCP and DNS -> [General Settings] -> Local Service […]

Your connection is not private: Trusting your own LAB SelfSigned Certificates in Kaspersky, Windows and Chrome

This use case scenario is aimed at those folks who are developing on their local environment and need to trust a set of certificates. This is so they are not always prompted for verification to a domain they know is already trusted and safe.  Despite that site having self signed certificates as is the case […]

Adjusting Memory in Atlassian Confluence

Adjusted the bolded lines for optimum startup and performance: # pwd ?/atlas/atlassian/confluence/bin # cat setenv.sh # Set the JVM arguments used to start Confluence. # For a description of the vm options of jdk 8, see: # http://www.oracle.com/technetwork/java/javase/tech/vmoptions-jsp-140102.html # For a description of the vm options of jdk 11, see: # https://docs.oracle.com/en/java/javase/11/tools/java.html CATALINA_OPTS="-XX:+IgnoreUnrecognizedVMOptions ${CATALINA_OPTS}" CATALINA_OPTS="-XX:-PrintGCDetails […]

ERR – dse_check_file – The backup file /etc/dirsrv/slapd-NIX-MDS-XYZ/dse.ldif.bak has zero length, refusing to restore it.

Recover the backup from the OK copy, literally: /etc/dirsrv/slapd-NIX-MDS-XYZ# ls -altri total 1904      2076 -rw——-. 1 dirsrv root   197845 May 24  2020 dse.ldif.ipa.b22658eb606be0d2    249372 -rw-r–r–. 1 dirsrv root   197954 May 24  2020 dse.ldif.modified.out    130281 -rw——-. 1 dirsrv dirsrv 197835 Mar  7 15:50 dse.ldif.startOK    456855 -rw——-. 1 dirsrv dirsrv […]

OpenVpn: Can’t browse web when connected and VPN is active.

Configured your OpenVPN, however now you can't browse the web when connected?  Turns out the following NAT rule was missing from the F/W configuration on the OpenVPN router: iptables -t nat -I POSTROUTING -s -j SNAT –to $(nvram get wan_ipaddr) Our VPN subnet is but no rule existed to route traffic to the […]

OpenShift w/ Kubernetes Setup: Installing using the UPI Method

Building an OpenShift Kubernetes Cluster. Method used here will be the UPI installation method.  Start off by loading the official page from RedHat: Before you begin, ensure the following files are downloaded off the RedHat OpenShift pages (see links in the above document): /root/openshift # ls -altri total 439680 201572861 -rw-r–r–.  1 root     […]

Firewalld. Add VLAN’s to allowed trusted / public zone rules.

Short list of commands for adding VLAN's to trusted zones: firewall-cmd –zone=trusted –add-source= firewall-cmd –zone=trusted –add-source= firewall-cmd –zone=trusted –add-source= firewall-cmd –zone=trusted –add-source= firewall-cmd –zone=trusted –add-source= cat /etc/firewalld/zones/public.xml firewall-cmd –runtime-to-permanent cat /etc/firewalld/zones/public.xml Result of this is: cat /etc/firewalld/zones/trusted.xml <?xml version="1.0" encoding="utf-8"?> <zone target="ACCEPT">   <short>Trusted</short>   <description>All network connections are accepted.</description>   <source address=""/>   <source […]

ImportError: cannot import name ‘setup’

Getting this? [root@rmq01 ~]# pip3 install –user git+https://github.com/powerline/powerline.git@master WARNING: Running pip install with root privileges is generally not a good idea. Try `pip3 install –user` instead. Collecting git+https://github.com/powerline/powerline.git@master   Cloning https://github.com/powerline/powerline.git (to master) to /tmp/pip-i_onc12r-build     Complete output from command python setup.py egg_info:     Traceback (most recent call last):       File […]

User is not allowed to run sudo on server.  This incident will be reported.

Receiving the following when using FreeIPA to manage sudo rules? -sh-4.2$ sudo su – [sudo] password for tom@mds.xyz:  tom@mds.xyz is not allowed to run sudo on idmipa04.  This incident will be reported. -sh-4.2$ On a working node: # ipa-compat-manage status Directory Manager password:  Plugin Enabled and on a non-working node: # ipa-compat-manage status Directory Manager […]

  Copyright © 2003 - 2013 Tom Kacperski (microdevsys.com). All rights reserved.

Creative Commons License
This work is licensed under a Creative Commons Attribution 3.0 Unported License