@romo said in salt-master: error: Failed to load configuration: Cannot load native module 'Cryptodome.Cipher._raw_des':
Getting this error on my salt-master (CentOS 7), which is causing it to not being able to start.
salt-master version ? and was it from repo of salt or packages of centos ?
I think getting the repo from salt is better
Finally a clear and simple explanation of agent and agentless backup modes.
Also I do believe in the emerging devops/stateless way of backups regardless of the company size as it depends on the person, paired with golden image and your set, i dont know why people deem this way as mission impossible, and even without golden image, centos 7 installs on servers in like 5 mins ? then you can install salt-minion and apply state from the master. I know this does not apply on every server role but hay it is newer way of thinking and can work with people that document their work, and testing the backup is very easy on test VM.
Hi,
I am deploying NC as backup option backed with saltstack and running remote commands on minions to put files into NC folder.
I came to this issue, I need to setup the upload speed preferably from the server and not the client, any idea how can i do so ?
@pete-s said in AMD Epyc experience?:
Does anyone have experience running VM hosts on AMD Epyc CPUs?
Are there any gotchas or is it just smooth sailing?
I am using white box machien with Ryzen 7 1700 as server with KVM, to handle a couple of VMs for small company like nextcloud and stuff, it is what you expect from any other machine.
I know this is not server part but I loved pairing it with an AMD 370x mobo with 8 port SATA allowing a nice software raid 10. I can pretend that it is EPYC, in my mind it is good setup.
How do you combat harassment emails coming from fake gmail accounts that could be [email protected]
to your employees and the one sending them knows personal detail of users and acts stalker-ish.
Aside from telling the user to disregard.
Can you go to the police cyber criminal unit and what do you expect
Do you schedule shutdown for your PoE WiFi APs ?
I have 30x Cisco Aironet 1830 and I feel after 2-3 months of ongoing power one of them might hang and such.
The switch is connected to 6KVA UPS so they never get power off
Yh your both right, I just thought if there was an easy way to do implement this then maybe I will add it as an extra hardening step, and I know the more security layer you add the more complexity, and sometimes it becomes more unusable/unreliable.
Now where does VDO lies
| / | /var | /usr | /home |
--------------------------
| LVM Volume |
--------------------------
| RAID Device |
--------------------------
| Disk 1 | Disk 2 | Disk 3 |
Also if your having mount issues on boot for boot devices add this is nano /etc/fstab
Replace defaults with:
defaults,discard,x-systemd.requires=vdo.service 0 0
I genuinely dont why and what is file server anymore in this day and age, as it sounds very simple basic and archaic task to the point that it gone pointless, like FTP and SFTP.
Regarding Linux as file server, you should seriously consider Linux Centos/Fedora and check how easy it is to setup and harness the power of linux LVM/FS/VDO/RAID below:
https://mangolassi.it/topic/17760/unlock-vdo-in-cockpit
It as very simple when dealing with elegant GUI client like cockpit, and you just need to install centos minimal + cockpit storaged packages, and your ready to fly. You can do RAID 10 on 4 drives, and then create LVM on top of it, and easily resize that volume any second or grow it without the need of unmounting it. VDO adds the compression and duplication support.
Why do you want to deal with Windows idiot way of mounting network drives and it is limitations.
Screw that, and even if you want to do this, why not use WinSCP with its 16 years of experience with another secure protocol and modern one like WebDav or SCP.
I just dont get why File Server old way of thinking is needed for any company, let them have local copy + sync copy on the server as NC does, way modern and + you can easily host it on premises + open port and you allow them to work from home and access their files.
@pete-s
VMware Workstation and Player can do it, so you dont have to bother with getting extra separated hardware.
https://www.logicaldoc.com/
the open source version for document management systems.
Java based, but easy install and stable. my HR are currently studying it.
@emad-r said in GeekBench Results for Cloud Servers:
Topic like this should be pinned and done every year or so. No one keeps alot of track about this.
What else we can test efficiently...
RAM Speed ? but who cares about this.
How we can test VM Cloud Download/Upload
Thought about Network testing and came up with this:
iperf3 -c bouygues.iperf.fr -t 30 = upload
iperf3 -Rc bouygues.iperf.fr -t 30 = download
Disk 2 VHD have not been updated for like 5-6 years.
This on the other hand :
https://www.softpedia.com/get/System/System-Miscellaneous/VMware-Converter.shtml
IF you can login via VMware you get more updated version.
What is in your mind a real example of the fastest path you can adopt to
continuous integration and continuous delivery
I know each case/business is different but I am researching this more and more now
http://www.freesshd.com/?ctt=download
freeFTPd
freeFTPd is a FTP/FTPS/SFTP server that enables user to access remote files over TCP/IP network such as Internet. Unlike FTP, FTPS and SFTP protocols provide security and strong encryption of data - great for insecure network.
Very easy and works well.
@pete-s said in What's in your bag?:
I switched to backpacks many years ago.
https://us.targus.com/products/checkpoint-friendly-air-traveler-16-inch-laptop-backpack-tbb012us
I usually have:
Laptop, power supply, cat6 cable, usb3 ethernet adapter for dual-homing, a couple of usb memory sticks.
High quality notepad, good pens, sticky notes, highlighters markers, whiteboard pens, presentation pointer.
Folders and a binder when needed. Books sometimes.
Earphones, earplugs, some medication like pain relievers.
When traveling I also put tickets, passport, money, keys etc in it. And water.
Pretty much the same even the brand... + mint gum.
@scottalanmiller said in Check my 2 min audio theory on Containers:
@stacksofplates said in Check my 2 min audio theory on Containers:
@scottalanmiller said in Check my 2 min audio theory on Containers:
@stacksofplates said in Check my 2 min audio theory on Containers:
@scottalanmiller said in Check my 2 min audio theory on Containers:
@stacksofplates said in Check my 2 min audio theory on Containers:
@scottalanmiller said in Check my 2 min audio theory on Containers:
@stacksofplates said in Check my 2 min audio theory on Containers:
@scottalanmiller said in Check my 2 min audio theory on Containers:
@stacksofplates said in Check my 2 min audio theory on Containers:
@scottalanmiller said in Check my 2 min audio theory on Containers:
@stacksofplates said in Check my 2 min audio theory on Containers:
@matteo-nunziati said in Check my 2 min audio theory on Containers:
@stacksofplates said in Check my 2 min audio theory on Containers:
@scottalanmiller said in Check my 2 min audio theory on Containers:
Containers use shared kernels by definition, that's what makes it a container.
This isn't really how Docker works. Docker manages namespaces. If you use "FROM Alpine" then it will share the kernel, but if you write an app in Go and use "FROM scratch" it has zero reliance on a specific kernel. You can also run full VMs in a Docker container which is how Red Hat uses OpenShift to deploy OpenStack VMs.
Well go requires the kernel too. But yes for the most is the "from scratch" part which allows more abstraction
Well I mean you have to have a kernel for anything to run. My point was it is technically possible to run a Go app in Docker natively on Windows with no Linux anywhere.
Well sure, but you have a Windows kernel. Why would a Linux kernel be expected to be required to run a Go app? The Windows kernel has a Linux compatibility layer to mimic Linux calls. So we'd expect it to be able to run anything that can run on Linux.
I assume you are using Go as an example because normally you need to compile Go to the platform and if you compile against Linux, then Windows would not be able to run it? But is Docker handling the translation here, or is Windows? What if you ran it on BSD? Or a different architecture, like ARM?
Go statically links the compiled code. Same source code is compiled for Linux or Windows or Mac or BSD. You're making my point with the first statement. There are no kernel dependencies, external libraries, etc with a Go app in the container. The same source could be run across most operating systems (excluding AIX and some other UNIX).
But your point was that Docker was including a kernel to run a full VM. My point was that it doesn't have to, it uses a shared kernel. So this makes my point, that Go doesn't require a full VM, therefore can use whatever kernel is already there. So it is a shared kernel.
OMG. It was not. My point is you can run Docker containers with NO SHARED KERNEL.
Right, so Docker is a type 2 hypervisor.
If you believe this statement is wrong, please explain how? Because to me, you just screamed "DOCKER IS A TYPE 2 HYPERVISOR" while seemingly trying to say it is not.
Shared Kernel = Contrainerization
No Shared Kernel = Type 2 Hypervisor (when an OS is needed beneath, like with Docker.)You're being purposefully obtuse. Your last sentence would mean KVM is a type 2. Docker creates a KVM VM on bare metal, type 1 end of story.
No, I'm not being obtuse at all. KVM doesn't run ON an OS, it IS the OS, making it a TYpe 1 (or Type 0 some call it.) We've covered this a lot and is unrelated here.
Docker is using KVM? So Socker is EXACTLY like ProxMox now? Just using Docker as the container and KVM for the virtualization? So Docker is NOT able to do full VMs, but just provides an interface to a hypervisor?
That's not at all the same as what you had said, that Docker was doing it itself. Any tool can automate something that already exists. I can write a script to manage KVM, it doesn't make the resulting VMs a script, or part of my script. It's just a management tool to the real thing.
It was obtuse to say it like Docker had this power and was doing things itself. Docker runs on top of an OS, so if Docker itself is virtualizing a full VM by definition it is a type 2. If Docker requires KVM, it can be a management tool for a type 1.
They use kubernetes to orhestrate docker brining up KVM VMs for OpenStack. Sure you can write scripts but you don't get anywhere near the power you have with k8s.
It's not a type 2 you're looking at this incorrectly. Docker is ensuring the VM runs on the host. The VM isn't running in a shared kernel at all. Again docker manages namespaces and cgroups. The it doesn't "contain" things like LXC. You can write your own SELinux policies and such to do this but it doesn't by default.
But when running a "normal" Docker workload, it is a container just like LXC (but not LXC any more) and does this stuff. That Docker was containerization was its bread and butter purpose from day one, just one focused on a very specific usage, for app isolation.
Docker still does all that, right? That K8s can orchestrate KVM seems great, but is Docker in play when doing that?
No it's not. Default docker is namespaces and cgroups. They call it "containerization" but it is namespaces and cgroups.
Namespaces and cgroups were how the first containerization was done. That's the core of containers. That's how LXC does it, more or less.
@scottalanmiller @stacksofplates
I found something that will please you both, check this guy:
https://twitter.com/DEVOPS_BORAT
@DEVOPS_BORAT
Hard part in devops is make money from wheel after you are reinvent it.
Loving the admin UI
Installing on Centos is simple as :
wget -qO- https://binaries.cockroachdb.com/cockroach-v2.0.5.linux-amd64.tgz | tar xvz
cp -i cockroach-v2.0.5.linux-amd64/cockroach /usr/local/bin
cockroach start --insecure \
--host=YOURIP
