Clear PageCache only
# sync; echo 1 > /proc/sys/vm/drop_caches
Clear dentries and inodes
# sync; echo 2 > /proc/sys/vm/drop_caches
Clear PageCache, dentries and inodes
# sync; echo 3 > /proc/sys/vm/drop_caches
Seperate Private Key and Certificate file
#Generate certificates bundle file
openssl pkcs12 -nokeys -in server-cert-key-bundle.p12 -out server-ca-cert-bundle.pem
#Generate server key file.
openssl pkcs12 -nocerts -nodes -in server-cert-key-bundle.p12 -out server.key
Convert a PKCS#12 file (.pfx .p12) containing a private key and certificates to PEM
openssl pkcs12 -in keyStore.pfx -out keyStore.pem -nodes
Create a .pfx/.p12 certificate file using OpenSSL
openssl pkcs12 -export -out certificate.pfx -inkey privateKey.key -in certificate.crt
Src: https://www.sslshopper.com/article-most-common-openssl-commands.html
After you login in you Endian Appliance, simply issue the following command:
root@endian # netwizard
You will be asked a couple of questions. If the network has already been configured, the current values are shown: simply press Enter if you want to keep that value. The snippet below shows some possible values. Note that you should enter the network interfaces as eth1, eth2, and so on and not as br0, br1, and so on. IP ranges should be written in CIDR notation.
Network Configuration Wizard ---------------------------- Hostname? myappliance. Domain? mydomain RED interface type <STATIC/DHCP/GATEWAY>? DHCP RED device <eth0/eth1/eth2/eth3>? eth3 Green devices <eth0/eth1/eth2>? eth0 Green IPs (IP/CIDR)? 172.20.0.1/24 Orange devices <eth1/eth2>? eth1 Orange IPs (IP/CIDR)? 172.21.30.1/24 Blue devices ? eth2 Blue IPs (IP/CIDR)? 172.22.30.1/24 Enable SSH access <on/off>? on Allow access to ports 22, 80 and 10443 from any interface <on/off>? off
Continue reading “Endian Community (3.x)- network configuration using CLI- Netwizard” »
Management URL: https://192.168.0.15:10443 Green IP: 192.168.0.15/24 ----------------- 0) Shell 1) Reboot 2) Change Root Password 3) Change Admin Password 4) Restore Factory Defaults Choice: 0[endian]: login
root's password: Welcome to Endian Firewall Appliance release 2.5-0 (Deployset #0) [endian] root: bash
Continue reading “Endian Community (2.5.1)- Change the green IP address from console” »
First of all, why we choose three nodes and not only two? In any cluster, the number of nodes should be odd, so in the case of disconnection of a node, we assume that the highest group of servers has the fresh data, and should be replicated to the down node to avoid data loss. This is related only to resolve conflicts in data replication, we won’t loose data written only to the disconnected node.
This is used to avoid a circumstance called split brain, in which we can’t automatically choose which node has correct data. Think for example of a 2 node cluster where both nodes are disconnected from each other, and the same record is written to both nodes: who wins when they come back online? We don’t know, so split brain happens, and we have to manually decide wich record is the right one.
The number of nodes that is needed to determine wich part of the cluster has the right data is called QUORUM, in our case, the quorum will be 2. So we need 2 servers always be connected to each other. In case all three nodes will go down, we have a split brain and we must decide wich server should go in bootstrap mode manually, this is the procedure to determine wich will be the main server to resume from the split brain.
Configuring Percona XtraDB Cluster on Debian 8
This tutorial describes how to install and configure three Percona XtraDB Cluster nodes on Debian 8 servers, we will be using the packages from the Percona repositories.
Node 1 Hostname: mysql1.local.vm IP address: 192.168.152.100 Node 2 Hostname: mysql2.local.vm IP address: 192.168.152.110 Node 3 Hostname: mysql3.local.vm IP address: 192.168.152.120
On each host, modify file /etc/hosts as follows to ensure DNS will work correctly. Continue reading “Install Percona XtraDB Cluster for MySQL 5.7 on Debian 8” »
Step 1: Generating the certificate
First, let’s create a place to store the file.
mkdir ~/certificates cd ~/certificates
Generate CSR and private key.
openssl req -x509 -newkey rsa:4096 -keyout apache.key -out apache.crt -days 365 -nodes
It will ask for information for the certificate request. Complete with the appropriate information.
Country Name (2 letter code) [AU]: US State or Province Name (full name) [Some-State]: FL Locality Name (eg, city) []: Miami Organization Name (eg, company) [My Company]: My Company Organizational Unit Name (eg, section) []:
Common name should be your domain name or the server’s IP address. Also, fill in your email. Continue reading “Configure Apache With Self-Signed TLS/SSL Certificate on Ubuntu 16.04” »
Setup auto-login
Auto locking after login
Check your PHP version installed
Before we start, we can simply type the following command to check the existing PHP version installed on the server.
$ php -v
If you installed Ubuntu 16.04 LTS, you will get PHP 7.0.30 installed on your server by running installation script from VestaCP. In this tutorial, we will upgrade our PHP version to 7.2 to enjoy more features and bug fixes.
Check your PHP modules installed
To check installed PHP modules in Ubuntu, type the following command (as Ubuntu makes PHP modules available via packages):
$ dpkg — get-selections | grep -v deinstall | grep php7.0
Remember mark installed modules list, as you need to install them again after upgraded to PHP 7.2. We don’t need to install mcrypt as it has been dropped from PHP 7.2.
In this tutorial, we need to install those modules again: Continue reading “Upgrade PHP version to 7.2 from 7.0 on Ubuntu 16.04” »
MariaDB is an open source relational database management system, backward compatible, binary drop-in replacement of MySQL. It is developed by some of the original developers of the MySQL and by many people in the community. With the release of CentOS 7, MySQL was replaced with MariaDB as the default database system.
If you, for any reason need to install MySQL, check the How to Install MySQL on CentOS 7 tutorial. If your application does not have any specific requirements, you should stick with MariaDB, the default database system in CentOS 7.
In this tutorial we will show you how to install the latest version of MariaDB on CentOS 7 using the official MariaDB repositories.
Prerequisites
Make sure you are logged in as a user with sudo privileges before proceeding with the tutorial. Continue reading “Install MariaDB on CentOS 7” »
Plex is a free feature-rich media library platform that provides a way to store all your movies, shows, and other media in one place. You can access Plex from any device, whether you’re at home or on-the-go. There are many different media tools available in the world like, Kodi, Xmbc, OSMC and Mediatomb, but the Plex Media Server is perhaps one of the most popular solutions for managing media. Plex runs on Windows, macOS, Linux, FreeBSD and many more. Plex is a client-server media player system made up from two main components, 1) The Plex Media Server, which organizes music, photos and videos content from personal media libraries and streams it to their player, 2) The Players that can be the Plex web UI, Plex Apps or Plex home theater. Plex Media Server supports Chromecast, Amazon FireTV, Android, iOS, Xbox, PlayStation, Apple TV, Roku, Android TV and various types of smart TVs. If you are looking for a way to watch your movies from anywhere, then Plex is best choice for you.
In this tutorial, we will learn how to install and configure Plex Media Server on Ubuntu 16.04.
Requirements
Getting Started
Before starting, make sure your system is fully up to date by running the following command:
sudo apt-get update -y sudo apt-get upgrade -y
Once your system is updated, restart your system to apply all these changes with the following command:
sudo reboot
After restarting, log in with sudo user and proceed to the next step. Continue reading “Install and setup Plex Media Server Ubuntu 16.04” »
If you are looking for the options to avoid any DNS-related downtime or the way to manage dns across all server you have, you might consider to set up dns cluster.
Create user dns-cluster on a server which will be used as dns slave
On the second server (slave) with vestacp you should create new user with name dns-cluster (via gui or cli)Code:
v-add-user dns-cluster passowrd yourmail@example.tld
On the first server (master) you should run this command: Continue reading “Vesta- How to set up master-slave DNS cluster” »
I had few issues on my container and KVM on installing vestacp. Issues were like quite weird, such as-
After hours and hours of search, found few root causes-
So let’s start.
Download installation script
curl -O http://vestacp.com/pub/vst-install.sh
Run it
bash vst-install.sh --nginx yes --phpfpm yes --apache no --named yes --remi yes --vsftpd yes --proftpd no --iptables no --fail2ban no --quota no --exim yes --dovecot yes --spamassassin yes --clamav yes --softaculous yes --mysql yes --postgresql no --hostname yourdomain.com --email yourmail@yourdomain.com --password yourpassword
You can also generate your installation command from vesta website: Continue reading “Install Vesta Control Panel (vestacp) on Centos 7 with PHP-FPM and PHP 7.2” »
