Endian Community (3.x)- network configuration using CLI- Netwizard Rumi, February 20, 2019 After you login in you Endian Appliance, simply issue the following command: root@endian # netwizard You will be asked a couple of questions. If the network has already been configured, the current values are shown: simply press Enter if you want to keep that value. The snippet below shows some… Continue Reading
Endian Community (2.5.1)- Change the green IP address from console Rumi, February 18, 2019 Management URL: https://192.168.0.15:10443 Green IP: 192.168.0.15/24 —————– 0) Shell 1) Reboot 2) Change Root Password 3) Change Admin Password 4) Restore Factory Defaults Choice: 0[endian]: login root’s password: Welcome to Endian Firewall Appliance release 2.5-0 (Deployset #0) [endian] root: bash Continue Reading
Install Percona XtraDB Cluster for MySQL 5.7 on Debian 8 Rumi, February 18, 2019 First of all, why we choose three nodes and not only two? In any cluster, the number of nodes should be odd, so in the case of disconnection of a node, we assume that the highest group of servers has the fresh data, and should be replicated to the down node… Continue Reading
Configure Apache With Self-Signed TLS/SSL Certificate on Ubuntu 16.04 Rumi, February 10, 2019 Step 1: Generating the certificate First, let’s create a place to store the file. mkdir ~/certificates cd ~/certificates Generate CSR and private key. openssl req -x509 -newkey rsa:4096 -keyout apache.key -out apache.crt -days 365 -nodes It will ask for information for the certificate request. Complete with the appropriate information. Country… Continue Reading
Install and setup Plex Media Server Ubuntu 16.04 Rumi, January 28, 2019 Plex is a free feature-rich media library platform that provides a way to store all your movies, shows, and other media in one place. You can access Plex from any device, whether you’re at home or on-the-go. There are many different media tools available in the world like, Kodi, Xmbc,… Continue Reading
Vesta- How to set up master-slave DNS cluster Rumi, January 28, 2019January 28, 2019 If you are looking for the options to avoid any DNS-related downtime or the way to manage dns across all server you have, you might consider to set up dns cluster. Create user dns-cluster on a server which will be used as dns slave On the second server (slave) with… Continue Reading
Install Vesta Control Panel (vestacp) on Centos 7 with PHP-FPM and PHP 7.2 Rumi, January 28, 2019 I had few issues on my container and KVM on installing vestacp. Issues were like quite weird, such as- Post installation on KVM- it moved into emergency maintenance mode Post installation on LXC container- DNS resolution halted After hours and hours of search, found few root causes- I have to… Continue Reading
SPF, DKIM, DMARC – Sample and perfect record values Rumi, January 27, 2019 Sharing some sample record value of the post subject for future reference: SPF: domain.gov.bd. IN TXT “v=spf1 a mx ip4:1.2.3.4 ?all” DKIM: MDaemon._domainkey.domain.gov.bd. IN TXT “v=DKIM1; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDIaJcNDjvJ6LJ/zyZCIOuaQiLMSC+FBfky8JMFE7LUGlP4LXwmpaKO3Z67x+PVXgYbbFU9nzLaFOfIXTbsCh6LYLBgQF+PNghbTAchQ59IEMrMRsTPCCg95+gKYRupN0B96Uz7rrXifZL8T+yl9MkpIlAsXXs7e8Vhzwa94NdVjQIDAQAB” DMARC: _dmarc.domain.gov.bd. 3600 IN TXT “v=DMARC1; p=quarantine; sp=quarantine; rua=mailto:postmaster@domain.gov.bd; ruf=mailto:postmaster@domain.gov.bd; rf=afrf; pct=100; ri=86400” DMARC Generator: https://www.unlocktheinbox.com/dmarcwizard/ Continue Reading
Enable DNSBL or RBL on Zimbra Rumi, January 26, 2019 DNS-based Blackhole List (DNSBL) or Real-time Blackhole List (RBL) is an effort to fight spam emails. It is a blacklist of source IP addresses that have a reputation of sending spam emails. Most email systems can be configured to check these lists and block or flag emails that were sent… Continue Reading
SSH Tunnel on PuTTY Rumi, January 5, 2019 Most of you have probably used a tunnel with an SSH connection. What you probably weren’t aware of is that you can use a dynamic tunnel to access all remote infrastructure. Furthermore, you can specify a port and a destination IP to have direct access. This process is achieved through… Continue Reading