@JaredBusch said in FreePBX Ring Group / Remove CID Name Prefix on Transfer ?:

To my knowledge, there is nothing you can do to get rid of it without custom dial plan.

This process simply prepends the text to the existing variable.

Ok, Thanks.

If you have a primary/failover type set up take a look at Peplink Balance products. They can do outside IP address translations and forwarding such that packets coming in on say 66.0.0.1 (Carrier A) can be sent to ip 12.0.0.1 (Carrier B) with in the device. They are expensive; but worth it. We used to use a Peplink Balance 580 here to both load balance between a (then ) Level 3 (Primary) and Time Warner (secondary) circuit but also to fail over; traffic would be re-directed via DNS (ether SRV secondary records or "round robin") to the secondary provider and the Balance 580 would essential NAT the address to the primary carrier's IP (on our equipment).
https://www.peplink.com/company/peplink-enterprise-features/

@Dashrender said in System Image Disappearing/Reappearing:

@G-I-Jones said in System Image Disappearing/Reappearing:

The only thing I can think of, which is most likely not correct, is that Windows reads the WindowsImageBackup folder alphabetically. That is to say since LABS comes before LENOVOLAP alphabetically, it hits the Windows 10 image in LENOVOLAP and then says "nope, everything else after this is null" and then doesn't even get to STAFF? I dunno man, it's weird.

Yeah, it's a super basic tool, it's probably not expecting more than a single backup in the directory.

^^ This sounds like what's happening.

If you're tied down to using an external drive and $0 tools, maybe consider using clonezilla or the Veeam's free windows agent. If you've got an afternoon and space for a linux VM (or even just a decommissioned desktop / server for a Proof of Concept test) take a look at FOG (https://fogproject.org/).

I don't know how Starwind vSAN can be run but if it's on a hypervisor it's severely limited by I/O congestion through the kernel. NVMe drives is causing problems that was of no concern whatsoever with spinners. Both KVM and Xen has made a lot of work to limit their I/O latency and use polling techniques now but it's still a problem. That's why you really need SR-IOV on NVMe drives so any VM can bypass the hypervisor and just have it's own kernel to slow things down.

Anton: There are no problems with polling these days 🙂 You normally spawn a SPDK-enabled VM (Linux is unbeatable here as most of the new gen I/O development happens there) and pass thru RDMA-capable network hardware (virtual function with SR-IOV or whole card with PCIe pass-thru, this is really irrelevant...) and NMVe drives and... magic starts happening 🙂 This is how our NVMe-oF target works on ESXi & Hyper-V (KVM & Xen have no benefits here architecturally, this is where you're either wrong or I failed to get your arguments). It's possible to port SPDK into Windows user-mode but lack of NVMe and NIC polling drivers takes away all the fun: to move the same amount of data we normally use ~4x more CPU horsepower on "Pure Windows" Vs. "Linux-SPDK-VM-on-Windows" models. Microsoft is trying to bring SPDK to Windows kernel (so does VMware from what I know), but it needs a lot of work from NIC and NVMe engineers and... nobody wants to contribute. Really.

Just my $0.02 🙂

@dbeato said in Configuring Bookstack to use LDAP:

This are my settings

# General auth #AUTH_METHOD=standard AUTH_METHOD=ldap # LDAP Host LDAP_SERVER=1.2.3.4:636 # The base DN for users LDAP_BASE_DN=DC=domain,DC=com #The full DN and password for binding LDAP_DN=CN=bookstack,CN=Users,DC=domain,DC=com LDAP_PASS=S0UP3rS7r0ngP@ssW0rd #A filter to use when searching for users LDAP_USER_FILTER=(&(mail=${user})) LDAP_VERSION=3 # Set the default 'email' attribute. Defaults to 'mail' LDAP_EMAIL_ATTRIBUTE=mail # Set the property to use for a user's display name. Defaults to 'cn' LDAP_DISPLAY_NAME_ATTRIBUTE=cn # Enable LDAP group sync, Set to 'true' to enable. LDAP_USER_TO_GROUPS=true # LDAP user attribute containing groups, Defaults to 'memberOf'. LDAP_GROUP_ATTRIBUTE="memberOf" # Remove users from roles that don't match LDAP groups. LDAP_REMOVE_FROM_GROUPS=false LDAP_AUTO_CONFIRM_EMAIL=true # A full list of options can be found in the '.env.example.complete' file.

Make sure to have the local admin logged in and not logged out while you change and save the changes so then you can add yourself as admin tied to AD.

I just made the default role admin and then changed it after my initial logon lol

@JaredBusch said in Unifi AP AC EDU with FreePBX ...:

@Dashrender all of the IP phones I have worked with can handle multicast natively.

That's good - I guess, and makes it even more weird that Ubiquiti didn't have their devices supporting it out of the gate.

@NashBrydges said in Trying my luck in Toronto, Ontario:

@manxam said in Trying my luck in Toronto, Ontario:

@JaredBusch : Waterloo is over an hour away from Toronto, so quite the difference. Considerably different "way of life" as well.

Similar to saying you live in Buffalo when, in fact, you live in Rochester...

Agree. I live in the Waterloo area and it is NOTHING like Toronto.

Not to anyone from outside the immediate area. Let alone another country halfway around the world.

@openit said in Ubuntu firewall sucks, status showing allowed http, but won't:

I have ran following commands to redirect port 80 and 443, and it is working fine until next reboot:

#!/bin/bash
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8069
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 443 -j REDIRECT --to-port 8070
iptables-save

So I found one more article is saying to add first two commands to /etc/rc.local file to have rules permanently, but doesn't seems to be, not sure why?
@Pete-S @black3dynamite

Here's how to do it using UFW.
https://serverfault.com/a/238565
66ee7cc6-ba0d-489b-9b1c-a73e23ca9fb3-image.png

@brandon220 said in Logging out of Nextcloud in Chrome is very slow:

Another browser-based issue I've seen is in Edge. If you click the Files button in the top left, it just spins. Tried on multiple machines and multiple NC 16 installs. Works fine in FF and Chrome. Swapping browsers for different applications is a pain.

Interesting. Same happens for me.

@JaredBusch fair enough, I haven't used the product itself as of yet and wasn't aware it had whitelisting inside the product, if this was specific to just fail2ban then that method would be suitable, but in this case I agree with you, my mistake.

@IRJ You are passionate about computers, you love to write code. Well, what's more exciting than being able to create your own plugins.

When you know that WordPress is today one of the most used CMS on the web, it would be really interesting to see how a plugin is made and to be able to create it yourself. [Check it here] (http://bit.ly/2KxPChJ)

@notverypunny said in XenServer Supplemental Packs:

@DustinB3403 said in XenServer Supplemental Packs:

@notverypunny said in XenServer Supplemental Packs:

@DustinB3403 Going through the 7.1 version of the same thing right now. Not much is making it through this sinus headache / migraine though.... Maybe another coffee will help. From what I see on the XCP-ng forum they're trying to move away from the notion of supplemental packs in favor of standard rpms.

Yup, because SPs are essentially private, where as the entire XCP-ng project is FOSS. It makes it way easier to just run yum install <something> and keep it all updated with the yum upgrade

Makes perfect sense for the XCP-ng project, but playing with yum and adding repos would put our hosts in an unsupported state with Citrix. Other way I might be able to do this is some sort of query over SSH from a linux machine to the bare-metal (Dell idrac) and / or the XenServer install. FusionInventory does wonders with SNMP for network devices and printers but I haven't seen anything that applies to my setup.

You'll have to build an SP, and use that to ensure you can maintain your support from Citrix. Nothing else would fly with them.

@IRJ #TrueStory

@wrx7m that vendor sounds like GE or UTC. These companies employ the most ridiculous procedures and requirements in the name of security. I think it all comes down from gov oversight, so dumbasses on top audit you, then you need to implement some retarded procedure that does nothing, but makes lives miserable for everyone you deal with.

@openit said in CompTIA Linux+ LX0-103/104 or XK0-004? free training?:

On other hand, I'm looking for free or cheaper training, in which whole course content matches the updated/latest Linux+ exam, so I can take the certification. I had a look on Cybrary.it but it doesn't seems to be covering all topics from certification syllabus.

I find Cybrary to be a complete waste of time. Their courses are outdated and quite frankly suck! Don't even bother. I recommend Udemy where courses are around $10-20. They are rated by many people and you can get a good idea about the course through reviews before buying.

We are IT professionals here, and dont have time to try to save $10 and waste hours of time looking at useless material like cybrary or incomplete and incorrect data that can be on youtube and other untested sources.

Subscription based training is also bad IMO since there is no incentive to make each course be the best in it's category. No competition on a platform like Udemy.

@IRJ said in Windows Server 2012 R2 - Share Auditing for Changes:

I know you use wazuh..

Check this out

https://documentation.wazuh.com/current/user-manual/capabilities/file-integrity/index.html

Thanks! Checking out setting this up. Hopefully, it will reveal the culprit.

@davide-bonavita said in Moving from O365 E3 to Business Premium:

It looks like you don't need to uninstall and reinstall Office

Correct

@marcinozga said in FreePBX hardening ...:

@IRJ The scenario described above doesn't look like automated attack, and it's rather unlikely bots would be exploiting PBX to make international calls.

I think this is the first episode of the Darknet Diaries