@black3dynamite said in Why I Feel KVM Is the Easiest HyperVisor to Learn the Basics On:
Would you still use it without Xen Orchestra?
I asked because I feel Xen Orchestra has a big part in making an individual to use XenServer/XCP-ng.
I would definitely not use XCP-ng without XO. I would probably use Hyper-V and Veeam otherwise.
I want to try KVM, but I don't have time to figure out the backup stuff right now. Maybe it's time I switch my home lab over to KVM.
@dave247 said in question about increasing MS volume licensing:
Maybe I am just being anal, but if I have 25 computers that I'm imaging with the same single key, yet in reality I am using a key meant for 20 systems across 25, and not actually using the 5 new additional keys.... ah you all get what I'm saying...
It's my understanding that you can use whatever keys you want, so long as you own enough licenses to cover what you have installed. This was the case for us when we were audited a couple years ago anyway.
When you get a key from MS VLSC it doesn't ask which agreement you want the key applied to, it just gives you your key and tells you how many times you've activated with that key. For example, we only have 2 SA licenses, but our windows 10 key shows like 7/50 activations...
@dave247 As long as you're putting the same edition (probably Pro) that came on the computers you don't need a volume license for every one, because they're already licensed for that edition from Dell. You only need new licenses for computers you want to upgrade from 7, 8.1, etc.
You need a single volume license to get imaging rights.
@Pete-S said in 2U Server Shipping Boxes for HP DL380 Servers:
See if you can sell the servers locally instead of shipping them. You could always remove disks or whatever else you want to keep and put in your luggage.
There is probably more money in the CPU, memory and the disks than in the box - of course depending on the config.
Plenty of CTO servers are sold so people can configure them however they want.
Basically the same price as whatever boxes were posted above lol not a terrible idea here
uh oh :face_screaming_in_fear: I guess I'll just tear down the instance and make a new one.
For future reference is there any decent way to protect against this happening in the future?
vpnmonster.ru
2019-01-04 22:46:08
Hello Abuse-Team,
Your Server/Customer with the IP: <PiHoleIP> has attacked one of our servers <VictimIP> The attackers used the method/service: *DNS Amplification* Please check the machine behind the IP <PiHoleIP> and fix the problem.
What happened?
- We received a large DDoS attack and your IP <PiHoleIP> was one of the addresses the attack was coming from - You will find a log at the end of this message
Why this email was sent to me? - Your network has an open DNS resolver <PiHoleIP> being used in a botnet for a DDoS attack - The WHOIS of the IP <PiHoleIP> contained your email - If you are not a person responsible for this machine, please forward the message to the network owner or the corresponding machine owner
Please consider the complaint as soon as possible and fix the problem.
Log:
Date 04.01.2019.
Time zone UTC
######################################
21:35:12.334449 IP <PiHoleIP>.53 > <VictimIP>.80: 8333 NotImp 0/0/1 (36)
21:35:13.450924 IP <PiHoleIP>.53 > <VictimIP>.80: 51429 NotImp 0/0/1 (36)
21:35:14.325458 IP <PiHoleIP>.53 > <VictimIP>.80: 53947 NotImp 0/0/1 (36)
21:35:15.124668 IP <PiHoleIP>.53 > <VictimIP>.80: 13030 NotImp 0/0/1 (36)
21:35:17.429052 IP <PiHoleIP>.53 > <VictimIP>.80: 59040 NotImp 0/0/1 (36)
######################################
@DustinB3403 said in Pi-hole server involved in a 'DNS Amplification' DDOS Attack:
So you won't be able to fix this issue without confirming that your friends and family systems aren't compromised. Not that a public DNS can't be used like this but it's much more likely to be within your environment to find the culprit.
I highly doubt this is the case. All somebody needs to do is discover that there is a public DNS server. I would get random hits and scans all the time that show up in the PiHole GUI.
@Dashrender said in Pi-hole server involved in a 'DNS Amplification' DDOS Attack:
GEO IP blocking
This is what I was thinking. Maybe a decent starting point, but probably not super useful as they use the targets address as the source(if I understand correctly), so any attacks on a US target would be allowed. This attack just happened to be against a Russian VPN service, so it might have helped here.
Ouch. Thankfully this was just a test site and didn't have anything really important on it. I'm assuming I'll just have to set it back up from scratch since it was a custom ISO install of Fedora. They probably won't be able to provide login details like the canned email response claims.
Dear Customer,
Regarding the following subscriptions:
1024 MB Server - <IP> (Fedora - Wordpress) in Chicago
Hello,
In the past 24 hours, we sent notification of a node failure impacting your cloud server listed above.
Despite extensive efforts, our attempts to manually recover your cloud server were unsuccessful.
Our engineering team is currently deploying new instances with the same operating system and IP and you will receive login details in a separate message. You may also deploy a backup or snapshot on a new instance with a new IP if you prefer.
Our staff will be applying a two month account credit for the affected services shortly.
Vultr Support Team
@JaredBusch said in Vultr Node Failure - VPS Recovery Unsuccessful:
And you have a 2 month credit coming.
If you paid the $1/month for automatic backups you could be online in an hour or less.
Yeah, it was for testing, so I wasn't going to pay more. Not too worried about it.
Just sharing the experience. Not sure if anybody else has encountered this yet with Vultr.
@scottalanmiller said in DD-WRT:
I'd argue that it's "anti-power user". That's my underlying point. If you start with DD-WRT not being for power users, then the rest of it is obvious and common sense. I'm not sure what more explanation is needed.
If you believe it is for power users, and don't understand that I don't, then I can see why you feel my position doesn't make sense.
Bottom line... I see DD-WRT as a toy for people to play with. Nothing wrong with that, not at all a power user tool.
I guess our definitions of power users aren't in line. I tend to agree with wikipedia on this one: A power user or an experienced user is a computer user who uses advanced features of computer hardware,[1][2][3] operating systems,[4] programs,[5][6] or web sites[7] which are not used by the average user.
DD-WRT certainly offers what me, and wikipedia, would call power-user features...
@scottalanmiller said in DD-WRT:
Example....
Hobbyiest: Installs DD-WRT at home because it is "cool."
Hobby Business: Installs DD-WRT at work because it is "cool" or they think they don't need entry point business approaches.
Power User: Installs UBNT ERL at home and treats it like a business.
Business: Installs UBNT ERL at work and treats it like a business.
This completely contradicts what you said above. Buying something and not implementing it's advanced features does NOT make you a power user. Simply buying an ERL does definitely NOT make you a power user. If I need to use something on the ERL that the consumer router can't do, that is what would make you a power user.
@scottalanmiller said in DD-WRT:
If "features" are how you define power user, then I agree, DD-WRT is for power users and I'd define power users as a pointless definition that has a terrible name implying that they are heavier or more serious users, because features and more serious users don't go together.
So if my POS consumer router firmware doesn't allow me to forward ports, but DD-WRT unlocks this, it wouldn't be a power user feature?
One thing I definitely learned from this one, is that I'm going to buy my kids some used Dell servers for Christmas so they can put on their resumes that they are senior systems administrators by the time they're in middle school since owning something, instead of actually using it, defines what type of user you are.
@travisdh1 Make sure you use 2 vcpu in your XOCE VM if you want to use Delta backups, I believe they won't merge otherwise.
@DustinB3403 said in Which hosts belong in what pool when running local storage?:
@bnrstnr said in Which hosts belong in what pool when running local storage?:
@DustinB3403 said in Which hosts belong in what pool when running local storage?:
Even ideal (again assuming you're using XO to manage everything) as you can perform rolling pool upgrades.
I've never tried this, but do you need shared storage for this?
The approach is that nothing is shared. So it won't be HA. The VM will still have to migrate to that system. But that would occur via a snapshot and migrate.
Ah OK, I have live migrated some smaller VMs, but I've never actually done the rolling pool upgrades because I have some pretty big VMs that it's so much faster just to shut down and restart during planned downtime.
@JaredBusch said in Nginx VM:
I think the worst part about running with 512MB is installing Fedora. That was painful, even in text mode.
How do you get text mode on Fedora 28+ I don't see the menu choice.
Note: I never bothered to even Google. I just let the install chug along and do something else.
Hit tab while Install Fedora 28/29 is selected, and add inst.text
. -name "var/log/ovsdb-server.log.*" -print0 | xargs -0 rm
This took care of it for me. The bug was creating a billion log files
Their most recent stuff has 3-4 year old processors. Even their top tier FS3017, coming in at $10k for a diskless server, has 2x E5-2620 v3 that were launched in Q3'14. That's pretty bad...
Compare that to a R740xd on xbyte with the latest processors, 64 GB RAM, and a RAID card with 8GB NV cache for ~$3500, the Synology starts looking really bad.
None of which is really apples to apples in this case, because it's a $600 box we're talking about above... but at the higher end, Synology definitely starts getting left behind.
That is what my sites normally look like until I install an SSL Insecure Content Fixer
I run this in my wp directory:
wp plugin install ssl-insecure-content-fixer --activate
This is a Fedora VM presenting a Wasabi bucket to XO as an NFS share?