Is the salt master service looking at the correct zone? Is that the right way to think of it?
Posts made by NerdyDad
-
RE: Salt-Minion can't talk to Salt-Masterposted in IT Discussion
-
RE: Salt-Minion can't talk to Salt-Masterposted in IT Discussion
@DustinB3403 said in Salt-Minion can't talk to Salt-Master:
firewall-cmd --permanent --zone=FedoraServer --add-port=4505-4506/tcpShould be what you're looking for.
Did that and says it is already enabled.
-
RE: Salt-Minion can't talk to Salt-Masterposted in IT Discussion
@DustinB3403 said in Salt-Minion can't talk to Salt-Master:
@NerdyDad said in Salt-Minion can't talk to Salt-Master:
@DustinB3403 said in Salt-Minion can't talk to Salt-Master:
@NerdyDad if you run
firewall-cmd --get-active-zoneswhat is the output?FedoraServer
interfaces: enp3s0Did you create a custom zone called
FedoraServer?No, I have not created any zones yet. That came stock.
-
RE: Salt-Minion can't talk to Salt-Masterposted in IT Discussion
@DustinB3403 said in Salt-Minion can't talk to Salt-Master:
@NerdyDad if you run
firewall-cmd --get-active-zoneswhat is the output?So I gather that FedoraServer is the zone that I need to add the ports to in the firewall?
-
RE: Salt-Minion can't talk to Salt-Masterposted in IT Discussion
@DustinB3403 said in Salt-Minion can't talk to Salt-Master:
@NerdyDad if you run
firewall-cmd --get-active-zoneswhat is the output?FedoraServer
interfaces: enp3s0 -
RE: Salt-Minion can't talk to Salt-Masterposted in IT Discussion
@black3dynamite said in Salt-Minion can't talk to Salt-Master:
Will you show the command for adding the firewall rules for 4505-5606?
The reason I'm asking is because if you include --zone=FedoraServer but your active firewall zone is public then that could be the issue.I've tried a number of commands
firewall-cmd --permanent --zone=trusted --add-port=4505-4506/tcp
firewall-cmd --permanent --zone=default --add-port=4505-4506/tcp
firewall-cmd --permanent --add-port=4505-4506/tcpIn that order, but not all at the same time. I reloaded the firewall and retested between each line.
-
Salt-Minion can't talk to Salt-Masterposted in IT Discussion
I have 2 physically separate boxes on the same LAN, 1 Fedora 29 server and 1 Fedora 29 Gnome desktop.
Server updated and installed salt-master and changed its name to SaltMaster (creative, I know)
Desktop updated and installed salt-minion (Name was already set from a previous Windows install and Fedora just carried it over)
Services are running on both boxes, changed the config on the minion to the network name of the SaltMaster
Minion can ping the master box with DNS and IP address but doesn't see the service and the master box isn't registering any unaccepted keys. I have tried adding 4505-4506 TCP to the firewall, but still no change. Restarted the salt-master service and firewall service, rebooted the SaltMaster server, and restarted the salt-minion service.
Still no communications. Any ideas?
-
RE: Yealink DECT dongle for T41S and T42Sposted in IT Discussion
Does the cordless and the deskphone both share the same extension? If so, this would be great for my wandering receptionist.
-
RE: Yealink DECT dongle for T41S and T42Sposted in IT Discussion
@JaredBusch said in Yealink DECT dongle for T41S and T42S:
@scottalanmiller said in Yealink DECT dongle for T41S and T42S:
@JaredBusch I've not seen it. Cool.
Anywhere that already has a Yelaink DECT base for a cordless handset can jsut buy the dongle and jack it into a 41/42 S series.
Disregard my previous comment.
-
RE: Yealink DECT dongle for T41S and T42Sposted in IT Discussion
But the phone would still require power from somewhere. I would assume 110v power, unless I'm missing something. Brain hurts.
-
RE: SAM: Learning Linux System Administrationposted in IT Careers
@scottalanmiller said in SAM: Learning Linux System Administration:
@travisdh1 said in SAM: Learning Linux System Administration:
@NerdyDad said in SAM: Learning Linux System Administration:
@scottalanmiller Something to add to this topic is firewalls and how to manage them
That's not so much a Linux thing. Most would recommend something that is purpose built for firewalls, like VyOS.
The Linux firewall I assume, you need it on every server / VM.
Yes the linux firewall...firewalld. Not VyOS or any other stand along system meant for routing/switching or firewalling. Just the software that is built into Fedora Server, Debian system, etc, etc, etc.
-
RE: What Are You Watching Nowposted in Water Closet
@black3dynamite said in What Are You Watching Now:
I still haven't watched Avengers: Infinity War on Netflix because I'm waiting for Avengers: Endgame. I think Kevin Feige said that they are separate movies but to me its one of those to be continued type movies, which I hate with a passion.
You mean a Marvel movie where the bad guy wins? Boooo hissss
-
RE: What Are You Doing Right Nowposted in Water Closet
@tonyshowoff said in What Are You Doing Right Now:
@DustinB3403 said in What Are You Doing Right Now:
Just to vent a bit, what the hell is with restaurants having menus without any damn pricing. . Seriously who the hell is going to say "I'll that the whatever" and have no idea on the final bill?
Someone rich like me.
JK I'm cheap as hell and wouldn't tolerate that. I'm a good tipper though.
Let's not start the "tipping" topic again.
-
RE: If you are new drop in say hello and introduce yourself please!posted in Water Closet
@scottalanmiller said in If you are new drop in say hello and introduce yourself please!:
@Dashrender said in If you are new drop in say hello and introduce yourself please!:
@scottalanmiller said in If you are new drop in say hello and introduce yourself please!:
Welcome @normalbumblebee
is there an abnormalbumblebee?
Not yet....
Regardless, welcome @normalbumblebee
-
RE: If you are new drop in say hello and introduce yourself please!posted in Water Closet
@Dashrender said in If you are new drop in say hello and introduce yourself please!:
@scottalanmiller said in If you are new drop in say hello and introduce yourself please!:
Welcome @normalbumblebee
is there an abnormalbumblebee?
Or unusualbumblebee
-
RE: SAM: Learning Linux System Administrationposted in IT Careers
@scottalanmiller Something to add to this topic is firewalls and how to manage them
-
RE: Chromebox for Clerks and Data Entryposted in IT Discussion
And now I have been given the green light to build a fedora 29 salt stack server. Testing only, not production yet.
-
RE: Chromebox for Clerks and Data Entryposted in IT Discussion
Going back to this topic.
Finally had a moment to take an old desktop, install Fedora 29 stock on it, run updates and installed remmina. It now connects to our ERP system just fine. Opened Firefox to O365 web portal for email and Excel Online. Boss was impressed. Informed him that, instead of Group Policy, we would place these types of machines in an untrusted zone with just access to the Internet and open ports to the Salt Stack master and the ERP system between the trusted and untrusted zones. Boss still impressed.
He asked about comparison between Fedora Linux management and Google Chromebook management. Where SaltStack is free, we would have to pay for Google Enterprise administration on an annual basis.
Not there yet, but a step in the right direction.
-
RE: Miscellaneous Tech Newsposted in News
@scottalanmiller said in Miscellaneous Tech News:
I thought that someone had one of these out a long time ago. Did I imagine that? What that a movie?
Honey I shrunk the kids?
-
RE: What Are You Doing Right Nowposted in Water Closet
@scottalanmiller said in What Are You Doing Right Now:
Riding the Green Line downtown.
You're half way here. Just take the Red Line the rest of the way down.
