Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
1
Installation and Upgrades / Re: Firewall not blocking addresses
« on: November 22, 2013, 11:48:42 pm »I did block it in squid, but these aren't http connections.Anyone have any ideas re the above issue?You need to do a lock means SQUID.
2
Installation and Upgrades / Re: Firewall not blocking addresses
« on: November 21, 2013, 07:16:10 am »
Anyone have any ideas re the above issue?
3
Installation and Upgrades / Firewall not blocking addresses
« on: November 19, 2013, 03:04:27 pm »
Need some help here, please - maybe I'm just missing something 
We're getting many connections between users on our network and amazonaws sites. We're trying to block most of these. The one in question is this one (screenshot from iftop):
That address resolves to 54.221.231.21.
We've created a network object called "object_badsites", with that IP as a member (together with another IP that we also want to block). Object setup is:
Then we set up the firewall to block it at every possible point (some rules are overkill, but bear with me..). Firewall rules are:
External networks to Zentyal:
Traffic coming out of Zentyal:
External networks to internal networks:
Internal networks:
Internal networks to Zentyal:
But yet, even with all those rules loaded, we keep seeing traffic get through from/to ec2-54-221-231-21.compute-1.amazonaws.com (as per the first screenshot in my post).
Does anyone have any ideas? Maybe something I set up incorrectly?
We're getting many connections between users on our network and amazonaws sites. We're trying to block most of these. The one in question is this one (screenshot from iftop):
That address resolves to 54.221.231.21.
We've created a network object called "object_badsites", with that IP as a member (together with another IP that we also want to block). Object setup is:
Then we set up the firewall to block it at every possible point (some rules are overkill, but bear with me..). Firewall rules are:
External networks to Zentyal:
Traffic coming out of Zentyal:
External networks to internal networks:
Internal networks:
Internal networks to Zentyal:
But yet, even with all those rules loaded, we keep seeing traffic get through from/to ec2-54-221-231-21.compute-1.amazonaws.com (as per the first screenshot in my post).
Does anyone have any ideas? Maybe something I set up incorrectly?
4
Installation and Upgrades / Re: RAID degraded, partition missing from md0
« on: November 14, 2013, 09:50:11 am »
See the errors in the post above yours 
I'll try webmin, but I heard it messes around with Zentyal?
I'll try webmin, but I heard it messes around with Zentyal?
5
Installation and Upgrades / Re: RAID degraded, partition missing from md0
« on: November 14, 2013, 09:46:34 am »
Actually, right at the beginning already there's a problem:
mdadm --fail /dev/md0 /dev/sdb1:
mdadm: set device faulty failed for /dev/sdb1: No such device
mdadm --remove/dev/md0 /dev/sdb1
mdadm: hot remove failed for /dev/sdb1: No such device or address
mdadm --fail /dev/md0 /dev/sdb1:
mdadm: set device faulty failed for /dev/sdb1: No such device
mdadm --remove/dev/md0 /dev/sdb1
mdadm: hot remove failed for /dev/sdb1: No such device or address
6
Installation and Upgrades / Re: RAID degraded, partition missing from md0
« on: November 14, 2013, 09:43:27 am »
So since the disk is in 3 arrays, would I do:
mdadm --fail /dev/md0 /dev/sdb1
mdadm --fail /dev/md1 /dev/sdb2
mdadm --fail /dev/md2 /dev/sdb3
mdadm --remove /dev/md0 /dev/sdb1
mdadm --remove /dev/md1 /dev/sdb2
mdadm --remove /dev/md2 /dev/sdb3
Then copy the sda partition table to sdb, as per https://www.sharktooth.de/doku.php/linux:clone_disc_partition
Then:
mdadm --add /dev/md0 /dev/sdb1
mdadm --add /dev/md1 /dev/sdb2
mdadm --add /dev/md2 /dev/sdb3
Then:
mdadm --assemble --scan
Correct?
mdadm --fail /dev/md0 /dev/sdb1
mdadm --fail /dev/md1 /dev/sdb2
mdadm --fail /dev/md2 /dev/sdb3
mdadm --remove /dev/md0 /dev/sdb1
mdadm --remove /dev/md1 /dev/sdb2
mdadm --remove /dev/md2 /dev/sdb3
Then copy the sda partition table to sdb, as per https://www.sharktooth.de/doku.php/linux:clone_disc_partition
Then:
mdadm --add /dev/md0 /dev/sdb1
mdadm --add /dev/md1 /dev/sdb2
mdadm --add /dev/md2 /dev/sdb3
Then:
mdadm --assemble --scan
Correct?
7
Installation and Upgrades / Re: RAID degraded, partition missing from md0
« on: November 14, 2013, 09:30:27 am »
Sorry for the bother, but can you please explain step-by-step how I'd do this? (partition copy, removing from array, adding again, etc)
Remember, sda and sdb are used in 3 arrays, md0, md1, and md2:
md0: sda1 and sdb1
md1: sda2 and sdb2
md2: sda3 and sdb3
Remember, sda and sdb are used in 3 arrays, md0, md1, and md2:
md0: sda1 and sdb1
md1: sda2 and sdb2
md2: sda3 and sdb3
8
Installation and Upgrades / Re: RAID degraded, partition missing from md0
« on: November 14, 2013, 09:13:58 am »
Took the plunge and did the mdadm --assemble --scan now.
It ran for about 10 seconds and ended without saying anything. sdb1 is still missing from md0.
Now I'm really confused :/
It ran for about 10 seconds and ended without saying anything. sdb1 is still missing from md0.
Now I'm really confused :/
9
Installation and Upgrades / Re: RAID degraded, partition missing from md0
« on: November 14, 2013, 08:48:41 am »
Ah I see, so --assemble shouldn't take md0 offline. In other words, it wouldn't mess with the sda1 disk in the md0 array?
This is what had me worried:
The thing is, I need to be sure running --assemble is safe and won't take the server offline, as it's a big corporate network running off that server :S
This is what had me worried:
Quote
What are the dangers?
The chief problem with blind auto-assembly is that if you move the drives comprising a RAID array from one host to another, and if the destination host already has RAID arrays, then the auto-assembly could assemble the new drives rather than the old drives, resulting is a situation that is at least confusing, and may be detrimental.
The thing is, I need to be sure running --assemble is safe and won't take the server offline, as it's a big corporate network running off that server :S
10
Installation and Upgrades / Re: RAID degraded, partition missing from md0
« on: November 14, 2013, 07:28:07 am »
Can you run an mdadm --assemble while the raid device is online? The device has to be online, as it contains the root operating system.
11
Installation and Upgrades / Re: RAID degraded, partition missing from md0
« on: November 13, 2013, 01:52:03 pm »
So technically, I should remove sdb1 from the array, then delete the sdb1 partition, and recreate it - and then add it to the array again?
Problem is I get errors when trying to remove sdb1 from the array....
Problem is I get errors when trying to remove sdb1 from the array....
12
Installation and Upgrades / Re: RAID degraded, partition missing from md0
« on: November 13, 2013, 01:23:04 pm »
Thanks! But that will overwrite all the sdb partitions with the sda partition structures. What if I just want to delete the one sdb1 partition and overwrite it with the sda1 partition structure?
13
Installation and Upgrades / Re: RAID degraded, partition missing from md0
« on: November 13, 2013, 09:34:30 am »
The other partitions on the sdb disk are fine though. Is it not possible to just recreate that partition? Except I'm not 100% sure how to go about it.
14
Installation and Upgrades / Re: RAID degraded, partition missing from md0
« on: November 13, 2013, 08:14:20 am »
Hate to bump a thread, but I still need help with this. Any advice, anyone?
15
Installation and Upgrades / Re: RAID degraded, need help urgently
« on: November 07, 2013, 03:11:33 pm »
Some more info: the output of mdadm --detail /dev/md0 is:
Code: [Select]
/dev/md0:
Version : 1.2
Creation Time : Sat Dec 29 17:09:45 2012
Raid Level : raid1
Array Size : 1464710976 (1396.86 GiB 1499.86 GB)
Used Dev Size : 1464710976 (1396.86 GiB 1499.86 GB)
Raid Devices : 2
Total Devices : 1
Persistence : Superblock is persistent
Update Time : Thu Nov 7 15:55:07 2013
State : clean, degraded
Active Devices : 1
Working Devices : 1
Failed Devices : 0
Spare Devices : 0
Name : lia:0 (local to host lia)
UUID : eb302d19:ff70c7bf:401d63af:ed042d59
Events : 26216
Number Major Minor RaidDevice State
0 8 1 0 active sync /dev/sda1
1 0 0 1 removed