Re: Multiple servers for 1 domain name?
On 11 Feb 2003, Thomas Lamy wrote: > As this is for a customer's web site, we have scheduled updates two times a > day, which isn't really an option in your case. But you can monitor > /var/log/xferlog, and rsync only updated files. Or really try NFS. I recently did some searching on the topic of high availability and the service replication and stumbled across DRBD, some kind of network RAID-1. DRBD mirrors partitions between two machines in a completely transparent way. I have no idea if and how well this works (the mailing-list traffic suggests that it does work), but I find the idea brilliant. It makes rsync unnecessary and even works for services that don't have any replication functionality at all. You can find some descriptions as well as a download link at the following URL: http://www.complang.tuwien.ac.at/reisner/drbd/ If you decide to give it a try, I'd be very interested to hear from your experiences. Regards, Oliver -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Reporting Packages ? - News & FTP Logs
On 24 Mar 2003, alan graham wrote: > Question is - should I continue to use Analog for these servers as > well, or are there better packages for these type of servers. Any > thoughts appreciated. webalizer allows to process web server, ftp (xferlog) and squid proxy server logs. No idea if there exists a program which also supports news server logs, but maybe you could just preprocess them with some awk and sed scripts prior to feeding them into webalizer (or analog). Regards, Oliver -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Reporting Packages ? - News & FTP Logs
On 24 Mar 2003, alan graham wrote: > Question is - should I continue to use Analog for these servers as > well, or are there better packages for these type of servers. Any > thoughts appreciated. webalizer allows to process web server, ftp (xferlog) and squid proxy server logs. No idea if there exists a program which also supports news server logs, but maybe you could just preprocess them with some awk and sed scripts prior to feeding them into webalizer (or analog). Regards, Oliver
Re: sane trouble-ticket systems
On 09 Aug 2003, Brad Lay wrote: > otrs looked nice, but I'll be buggered if I can get it working using > postfix. I don't see why this shouldn't work. OTRS supports fetching mails from a POP3 server, what more do you need? Regards -- Oliver Hitz [EMAIL PROTECTED] net-track gmbh http://www.net-track.ch -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: vmware server with multiple Server OS's on blade servers
On 26 Sep 2003, Theodore Knab wrote: > I was wondering if anyone is running multiple versions of Linux > atop of vmware's enterprise server ? I haven't tested this personally, but you should probably be able to do more or less the same using user-mode linux (UML): http://user-mode-linux.sourceforge.net/ There is even a list with UML hosting providers on the web site. This suggests that UML is stable enough to be used even for commercial use. Regards, Oliver -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Automated solutions for a small ISP
On 15 Oct 2003, Igor Wawrzyniak wrote: > Idea 1) Write a system which keeps the hosts information (and in > future - user information) in some kind of a database (file, MySQL > or LDAP, probably I'll choose MySQL) and generates configuration > files. Advantages: easy to implement. Disadvantages: limited use. Exactly what I do. It is very flexible and extremely reliable. Unlike database servers, files rarely "go down". There's no point in having small and reliable services if they are directly tied (i.e. online) to huge applications such as database servers. Unless your configuration files are very big (e.g. you have hundreds of thousands of customers) it is also very fast. Regards, Oliver -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: Debian and SAN support
On 10 Feb 2004, Robin Vley wrote: > I was actually thinking of building a fileserver running with a SCSI > RAID5 array in it, and then just NFS the share out to a couple of > webserver frontends. Anyone using such a solution, or am I overlooking > something completely here? Round robin DNS, combined with a simple > monitoring script that can take IP's out of the zonefile (short TTL). Even if this has nothing to do with the SAN in the subject, if you are interested in high availability, you should definitely take a look at drbd (www.drbd.org). It lets you mirror drives in real-time across a fast network. This doesn't let you do load balancing, though. Oliver -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: rfc2385 patch for debian kernels.
Hi Jamie On 26 Aug 2004, Jamie Baddeley wrote: > Has anyone successfully applied the MD5/BGP patch above to a stock (well > backported) 2.4.26 kernel? The rfc2385-2.4.26.patch at Hasso Tepper's quagga homepage applies cleanly against a stock 2.4.26 kernel: http://hasso.linux.ee/quagga/bgp-md5.en.php Regards Oliver pgpLk3ocLzmgK.pgp Description: PGP signature
Re: rfc2385 patch for debian kernels.
On 26 Aug 2004, Jamie Baddeley wrote: > I'm using that. But I'm applying against a 2.4.26 kernel-source from > backports.org.. > > 2.4.26 from sarge No, the kernel from kernel.org. I should probably have been writing "vanilla", not "stock"... Sorry for confusion. Maybe you can apply the Debian patches after applying rfc2385.patch. Oliver pgpZUjya5XHG3.pgp Description: PGP signature
Re: rfc2385 patch for debian kernels.
On 26 Aug 2004, Jamie Baddeley wrote: > my next question of course is what is the "debian way" of applying > debian patches :-) Why do you need a debian kernel? I've been working with the standard vanilla kernel for ages. Download the source from kernel.org, apply your patches and compile it the "debian way" in order to get a .deb: make-kpkg --append-to-version -jamie \ --revision 1 \ --config menuconfig \ kernel_image modules_image Oliver pgpR8gyllAqgN.pgp Description: PGP signature
Re: which dns server to use ?
On 08 Apr 2003, Thomas Lamy wrote: > I recently switched to mydns (http://mydns.bboy.net/). As all data is stored > in a mysql (or pgsql) backend, it's easy to edit zones/resource records. And While I see that it may be useful to have zone data in an sql backend, I don't like the idea of plugging a mission-critical service such as a dns server directly to an sql database. A dns server has to be as simple as possible, with as few dependencies as possible. Serving zone data directly from an sql database increases the complexity of your system and adds new points of failure, what is especially undesirable in the case of a dns server. Just my 0.02 francs. Cheers, Oliver
Re: which dns server to use ?
On 09 Apr 2003, Thomas Lamy wrote: > - Three db-servers (2 in active-active replication, and a third running from > the last daily db export) > - the mysql connection procedure in mission critical programs (mydns, snmp > gatherer) is hacked to try both main servers in r/w mode, and then the third > one in r/o mode. Interesting. I see you're prepared for the worst case :-) However, since I am somewhat lazy, I prefer to have all my services work with standard apt-get'able packages. This may also prevent possible security related problems. I am using the 'database-export-approach' to maintain the configuration files of the various services. This has proved very stable for 3 years now and it allows me to do upgrades the 'apt-get way', without recompiling or modifying source code. Oliver
Re: which dns server to use ?
On 09 Apr 2003, Markus Welsch wrote: > So you are using the approach I am currently working on. I'll be doing > extensive error checking since ... sql server(s) not responding/no > access, invalid data, etc and after the update i'll send out an email > report with all the details. What kind of invalid data? - You have to make sure that invalid data doesn't get into the database. There's no point in having a database otherwise. > I'm thinking of using Perl for that, although I'm no Perl expert. The > only other solution would be using commandline PHP ... > What do you suggest ? The language itself isn't really important. You have to be comfortable with your choice, that's all. Cheers, Oliver
Re: Authenticate when SSL is activeted only?
On 22 Apr 2003, axacheng wrote: > I am running apache 1.3.26, apache-ssl 1.3.26 on Debian Woody 3.0r1. > The reason is that I think a user should not type his LDAP account > and password when the connection is not secure. Any comment is > appreciated :) Try the following to redirect your users to the secure version of the page: SSLRequireSSL ErrorDocument 403 https://www.domain.com However, it depends if the authentication is done before or after checking SSL. I've never done this with HTTP authentication. Oliver
Re: Recontruction a failed raid array on root
On 07 May 2003, Craig wrote: > We have a server running raid 1 mirroring and one of the HDD > failed. We have since replaced the failed drive and have > re-constructed 2 out of the 3 raid arrays. The problem we are > having is with re-contructing the raid array runnning on the root > partition. I had exactly the same problem this morning. Our server allows hot swapping drives so I was able to replace the failed drive without taking the machine down. I did the following steps: - remove all partitions on the failed disk from the raid: mdadm --remove /dev/md0 /dev/sdb1 ... - remove the disk from the scsi bus: scsiadd -r 1 - replace the disk and add it to the scsi bus: scsiadd -a 1 - partition the disk (copy partition table from sda to sdb): sfdisk -d /dev/sda | sfdisk /dev/sdb - add all partitions to the raid: mdadm --add /dev/md0 /dev/sdb1 ... - install lilo on /dev/sdb: lilo - now watch the mirror rebuilding in /proc/mdstat Hope this helps. One of the partitions is the root partition, but this is not important. The same procedure was applied as to all the other partitions. Regards, Oliver
Re: Help. Looking for FTP solution for multiple clients.
On 19 May 2003, Sis wrote: >I modified a PHP script for uploading which gave each of the > sub-clients their own sub-directory with username and password to upload > to. But for some reason, the script fails to upload anything larger than > about 5Mb (it's not the max_upload_filesize in php.ini which i > increased) Argh. It's called "upload_max_filesize" if I'm not mistaken. And you also need to increase post_max_size and maybe memory_limit (not about this one) in php.ini. Oliver
Re: Debian and SAN support
On 10 Feb 2004, Robin Vley wrote: > I was actually thinking of building a fileserver running with a SCSI > RAID5 array in it, and then just NFS the share out to a couple of > webserver frontends. Anyone using such a solution, or am I overlooking > something completely here? Round robin DNS, combined with a simple > monitoring script that can take IP's out of the zonefile (short TTL). Even if this has nothing to do with the SAN in the subject, if you are interested in high availability, you should definitely take a look at drbd (www.drbd.org). It lets you mirror drives in real-time across a fast network. This doesn't let you do load balancing, though. Oliver
