Discuss April 2012

discuss@lists.centos.org

181 participants
171 discussions

centos 6.2; mount 6TB OSX formatted FW
by aurfalien 20 Apr '12

20 Apr '12

Hi all, Trying to mount an FW800 6TB volumes. The logs say; cannot find hfs+ superblock and volumes larger then 2TB are not supported yet Is my case really because of the >2TB volume? Thanks in advance, - aurf

2 1

fail2ban attempt, anyone want to add anything?
by Bob Hoffman 20 Apr '12

20 Apr '12

Tonight I added fail2ban to one of my webservers to test it out. Here is my step by step, as best as I could figure it out...documentation a bit sketchy. feel free to add anything to it or suggest changes. I tried to set it up to deal with ssh, http authentication, dovecot, ftp, and postfix I could find no working example for centos 6 and there is no fail2ban book available to peruse. So, just winging it.... I used the EPEL repo and it needed the following packages to work correctly I do not use priorities, but I add things by using includepkgs= in the repo file. fail2ban shorewall python-inotify gamin-python (logging) although fail2ban adds a logrotate file for fail2ban.log, it logs everything to the /var/log/messages file so I changed /etc/fail2ban/fal2ban.conf line 25 logtarget = /var/log/fail2ban.log Perhaps overlooked by the rpm developer? /etc.fail2ban/jail.conf In all sections I commented out the mailto section since it just sends a ton of mails when start/stopped...yikes. Not sure if there is a setting only for errors or actions...but the start/stop mails are too annoying. Will use logwatch daily to check on it. line 16, added a space then my server ip address 123.123.123.123 (example ip address, not real) ignoreip = 127.0.0.1 123.456.789.123 SSH section line 48 enabled=true line 50, changed to my port number commented out the mailto section sasl section (for postfix) line 68 enabled=true backend = polling (I left this but have no idea if I should or not) line 71, 'rewrote it to' action = iptables-multiport[name=POSTFIX, port="25,465,993,995", protocol=tcp] this blocks all mail ports when someone tries and fails at least I think it does....? :) Apache (this was tough since many online sources says it will not work, but will test and see) [apache-tcpwrapper] enabled = true filter = apache-auth action = iptables-multiport[name=ApacheAuth, port=80,443, protocol=tcp] logpath = /var/log/httpd/*error_log maxretry = 4 Several docs suggest tcpwrapper and centos are a no go, and that this will not work...trying it anyway All the http stuff is not set up for centos, its default is to look for /var/log/apache so this was not set up at all by the rpm dev...at least not the working examples in the jail.conf file. added this to the bottom (and a new file must be created to work with it) [Dovecot] enabled = true filter = dovecot maxretry = 5 action = iptables-multiport[name=DOVECOT, port="25,465,993,995", protocol=tcp] logpath = /var/log/maillog (again, I added all mail ports in case of a hacker) New file added /etc/fail2ban/filter.d/ new file dovecot.conf [Definition] # Option: failregex # Notes.: regex to match the password failures messages in the logfile. The # host must be matched by a group named "host". The tag "<HOST>" can # be used for standard IP/hostname matching. # Values: TEXT # failregex = (?: pop3-login|imap-login): (?:Authentication failure|Aborted login \(auth failed|Aborted login \(tried to use disabled|Disconnected \(auth failed).*rip=(?P<host>\S*),.* # Option: ignoreregex # Notes.: regex to ignore. If this regex matches, the line is ignored. # Values: TEXT # ignoreregex = service fail2ban start chkconfig fail2ban on service iptables restart (not sure if you have to or not with each fail2ban restart)

2 5

Using eth0 on desktops with single network interface
by Alfred von Campe 20 Apr '12

20 Apr '12

What is the best way to stop CentOS 6 from renaming the eth0 interface to em1? I've googled a bit and found many relevant posts, but have still not come up with an elegant solution. One of the resources I found was http://www.arachnoid.com/linux/network_names/index.html, and while the Python script contained therein does create a new udev rule that renames em1 back to eth0 it feels kludgy and requires me to manually create the ifcfg-eth0 script. I'm looking for a way to stop udev from renaming the interface in the first place, preferably something that allows me to automate it via kickstart so that any new systems I deploy will have a permanent fix. I'll push a fix to any systems I already have deployed with CentOS 6 that have this problem. On some of my systems I have a 70-persistent-net.rules file with a comment that says it was generated by /lib/udev/write-net-rules, but I don't remember what I did to get it generate that rule, much less how to automate it and get it to work reliably (on one of my systems I have that rule but the interface is sill named em1). BTW, the em1 name only appears to be an issue on my newer Dell desktops; the older IBM/Lenovo systems I support are all using eth0 Thanks, Alfred

6 10

Cluster with VM and global resources
by Baptiste AGASSE 20 Apr '12

20 Apr '12

Hi all, I've a little problem with software cluster provided by CentOS 6.2 (cman, rgmanager & cie), VM cluster services and global cluster resources. Here is my system arch: --------------- ------------------ |clusternode1 |--+---| GFS2:vmimages1 | --------------- | | | | | VM img 1 | | | VM img 2 | | | VM img 3 | + | ... | | ------------------ | | | --------------- | ------------------ |clusternode2 |--+---| GFS2:vmimages2 | --------------- | | | | | VM img X | | | VM img Y | | | VM img Z | | | ... | | ------------------ | --------------- | |clusternode3 |--+--- ... --------------- | ... | All my cluster nodes are connected to a SAN which houses some GFS2 fs for VM images files. I've defined global cluster resources for my GFS2 filesystems where my vm images files are stored. Now i want to add this resources to vm services to makes the cluster aware of VM dependency to the fs which store it image file (to avoid node to try to start VM if it don't have required filesystem or stop VM when it lost the filesystem). When i add global resources to a "normal" cluster service, it works, but it don't when i try to add global resources to a VM service. I'm the onlyone with this type of configuration ? Someone know if it's a bug or it's not supported ? I don't find anything about it in cluster documentation/man pages/<cluster commands> --help Have a nice day. Regards. -- Baptiste AGASSE

1 0

Help needed with NFS issue
by Steve Thompson 19 Apr '12

19 Apr '12

I have four NFS servers running on Dell hardware (PE2900) under CentOS 5.7, x86_64. The number of NFS clients is about 170. A few days ago, one of the four, with no apparent changes, stopped responding to NFS requests for two minutes every half an hour (approx). Let's call this "the hang". It has been doing this for four days now. There are no log messages of any kind pertaining to this. The other three servers are fine, although they are less loaded. Between hangs, performance is excellent. Load is more or less constant, not peaky. NFS clients do get the usual "not responding, still trying" message during a hang. There are no cron or other jobs that launch every half an hour. All hardware on the affected server seems to be good. Disk volumes being served are RAID-5 sets with write-back cache enabled (BBU is good). RAID controller logs are free of errors. NFS servers used dual bonded gigabit links in balance-alb mode. Turning off one interface in the bond made no difference. Relevant /etc/sysctl.conf parameters: vm.dirty_ratio = 50 vm.dirty_background_ratio = 1 vm.dirty_expire_centisecs = 1000 vm.dirty_writeback_centisecs = 100 vm.min_free_kbytes = 65536 net.core.rmem_default = 262144 net.core.rmem_max = 262144 net.core.wmem_default = 262144 net.core.wmem_max = 262144 net.core.netdev_max_backlog = 25000 net.ipv4.tcp_reordering = 127 net.ipv4.tcp_rmem = 4096 87380 16777216 net.ipv4.tcp_wmem = 4096 65536 16777216 net.ipv4.tcp_max_syn_backlog = 8192 net.ipv4.tcp_no_metrics_save = 1 The {r,w}mem_{max,default} values are twice what they were previously; changing these had no effect. The number of dirty pages is nowhere near the dirty_ratio when the hangs occur; there may be only 50MB of dirty memory. A local process on the NFS server is reading from disk at around 40-50 MB/sec on average; this continues unaffected during the hang, as do all other network services on the host (eg an LDAP server). During the hang the server seems to be quite snappy in all respects apart from NFS. The network itself is fine as far as I can tell, and all NFS-related processes on the server are intact. NFS mounts on clients are made with UDP or TCP with no difference in results. A client mount cannot be completed ("timed out") and access to an already NFS mounted volume stalls during the hang (both automounted and manual mounts). NFS block size is 32768 r and w; using 16384 makes no difference. Tcpdump shows no NFS packets exchanged between client and server during a hang. I have not rebooted the affected server yet, but I have restarted NFS with no change. Help! I cannot figure out what is wrong, and I cannot find anything amiss. I'm running out of something but I don't know what it is (except perhaps brains). Hints, please! Steve

5 14

were to find 2.6.18-53 aka 5.1 kernel
by aurfalien 19 Apr '12

19 Apr '12

Hi all, I am migrating my Xen guests over to KVM. Does any one know were I can find said 5.1 kernel for download? - aurf

2 2

CentOS-announce Digest, Vol 86, Issue 10
by centos-announce-request＠centos.org 19 Apr '12

19 Apr '12

Send CentOS-announce mailing list submissions to centos-announce(a)centos.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.centos.org/mailman/listinfo/centos-announce or, via email, send a message with subject or body 'help' to centos-announce-request(a)centos.org You can reach the person managing the list at centos-announce-owner(a)centos.org When replying, please edit your Subject line so it is more specific than "Re: Contents of CentOS-announce digest..." Today's Topics: 1. CEBA-2012:0497 CentOS 5 xulrunner Update (Johnny Hughes) ---------------------------------------------------------------------- Message: 1 Date: Thu, 19 Apr 2012 09:19:04 +0000 From: Johnny Hughes <johnny(a)centos.org> Subject: [CentOS-announce] CEBA-2012:0497 CentOS 5 xulrunner Update To: centos-announce(a)centos.org Message-ID: <20120419091904.GA13513(a)chakra.karan.org> Content-Type: text/plain; charset=us-ascii CentOS Errata and Bugfix Advisory 2012:0497 Upstream details at : https://rhn.redhat.com/errata/RHBA-2012-0497.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 64f17d662b4e607fa6066e458b1b6a7920d829d02c748bdb300b400116f58859 xulrunner-10.0.3-2.el5_8.i386.rpm 677e2eeba8ec9e60649fc3446b5e9a0fd4a4f8fe6144e0dbb8d900698d69312d xulrunner-devel-10.0.3-2.el5_8.i386.rpm x86_64: 64f17d662b4e607fa6066e458b1b6a7920d829d02c748bdb300b400116f58859 xulrunner-10.0.3-2.el5_8.i386.rpm e3994980db6d5663979e33bfd5fd43a357d7f0c6caf4a41ee619d9797c9b2067 xulrunner-10.0.3-2.el5_8.x86_64.rpm 677e2eeba8ec9e60649fc3446b5e9a0fd4a4f8fe6144e0dbb8d900698d69312d xulrunner-devel-10.0.3-2.el5_8.i386.rpm a956c4c021eab1a1f0db660b5358d91a8c52c505cdedf38c5cd84b0bea56c60d xulrunner-devel-10.0.3-2.el5_8.x86_64.rpm Source: fe8505ac0784d234560a2f2a5f0ab620e542dd4141c5075153b78907b2af0c1a xulrunner-10.0.3-2.el5_8.src.rpm -- Johnny Hughes CentOS Project { http://www.centos.org/ } irc: hughesjr, #centos(a)irc.freenode.net ------------------------------ _______________________________________________ CentOS-announce mailing list CentOS-announce(a)centos.org http://lists.centos.org/mailman/listinfo/centos-announce End of CentOS-announce Digest, Vol 86, Issue 10 ***********************************************

1 0

The requested URL was not found on this server
by Prabhpal S. Mavi 19 Apr '12

19 Apr '12

Greetings Dear Friends, I am seeking assistance from Apache experts friends. i recently installed cacti Graphing Solution. The main Cacti folder exist under "/var/www/html/cacti" and we all knows that default DocumentRoot under CentOS is DocumentRoot "/var/www/html" Following is Virtual Virtual Host under "conf.d" Alias /cacti /var/www/html/cacti/ <Directory /var/www/html/cacti/> DirectoryIndex index.php Options -Indexes AllowOverride all AddType application/x-httpd-php .php php_flag magic_quotes_gpc on php_flag track_vars on </Directory> if i try browsing cacti, i can login without problem. But if i try to follow other links on the page. For example i have clicked on Graphs icon. i see the following error. The requested URL /graph_view.php was not found on this server where as this URL (graph_view.php) exist on the server, that is under Cacti folder "/var/www/html/cacti/graph_view.php". But Apache is looking under DocumentRoot that is "/var/www/html/graph_view.php". if i change DocuemtRoot to following, (And virtual host directory and alias directive as well) everything is fine. DocumentRoot "/var/www/html/cacti" Changing DocumentRoot actually disturb other front ends setup. i have Nagios & zabbix installed on same machine. which i use to monitor stuff. is there anything i can do to maintain DocumentRoot to default that is. DocumentRoot "/var/www/html" Regards / Thanks Prabhpal Singh Thanks / Regards Prabhpal S. Mavi

5 11

3TB system drive partitioning question
by John R Pierce 18 Apr '12

18 Apr '12

so I want to install c6.2 x86_64 onto a 2.7TB /dev/sda ... its a virgin machine with no software, using pxe boot. disk druid or whatever seems to only want to let me have like 2tb of default stuff, I'm guessing because its not using GPT? do I need to preboot into a shell or something and use parted before I can install ? -- john r pierce N 37, W 122 santa cruz ca mid-left coast

6 7

SSD as system drive - partitioning question
by Frank Cox 18 Apr '12

18 Apr '12

I mentioned here the other day that I was planning to set up a Centos 6 system using a SSD for the system drive and a regular hard drive for a data drive. My plan is to have everything that doesn't change (much) on the SSD, such as /boot, /lib, /bin and so on. I want to put /tmp and /var and /home on the regular hard drive. Now that I'm at the stage of actually setting this up I have discovered that I don't understand enough about drive partitioning to make this work the way that I want it to. Perhaps I'm missing something obvious. I could create separate partitions on the SSD for /lib, /bin and everything else that I want to put there, then put / on the hard drive, but I would really prefer to put /boot and one other partition on the SSD, and one partition on the hard drive. How can I tell the system that I want /bin and friends on the SSD and /home and /var on the hard drive, but still have just one partition on each drive (plus /boot on the SSD)? If I create / on the hard drive and /ssd on the SSD, then putting bin on the SSD would make it /ssd/bin and that would obviously not be what I want to see. -- MELVILLE THEATRE ~ Real D 3D Digital Cinema ~ www.melvilletheatre.com www.creekfm.com - FIFTY THOUSAND WATTS of POW WOW POWER!

5 5

← Newer
1
...
5
6
7
8
9
10
11
...
18
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Discuss April 2012