@smartkid808 said in Nginx setup:
I have port 80 blocked by ISP, but will be passing all via 443. Anyone know a way to have either GoDaddy or no-ip force 80 to 443 when resolving host name?
Can't be done because DNS will only resolve the host name to ip address.
But if you have a proxy server in front of your own server and the proxy will answer on port 80 it will work. Then it could redirect to https. Look at Cloudflare for example.
When I looked into different options for ssh tunneling here on ML in this thread, I learned that -R and -L are TCP port forwarding but in different directions.
But there is also the dynamic port forwarding, socks proxy, option. And then the real VPN tunnel option where you use ssh to create a tun device. That can be used to route traffic.
There are lots of ssh tunneling trickery on this page:
https://hackertarget.com/ssh-examples-tunnels/
@brandon220 said in Managing Type 1 Hyper Visors:
I like the ability to clone - especially in my lab. The obvious reason is to have a few server (minimal) VMs patched and ready to deploy.
Also on production when upgrades don't go as planned. While you can revert the production VM back to the pre-upgrade snapshot, you can use clones to troubleshoot on.
Stop running glorified desktops as servers. Buy real rack servers and put them in a rack. No sane person wants to use that as a workstation. Problem solved. 
With 450 desktops you are close to the requirements of Microsoft's Enterprise Agreement, which is 500 users or devices for commercial organizations and 250 for government organizations.
https://www.microsoft.com/en-us/licensing/licensing-programs/enterprise
@Pete-S said in A different mindset:
@scottalanmiller said in A different mindset:
@StuartJordan said in A different mindset:
I feel quite happy that I have saw a lot of history of how hardware and software has developed to this day, and you have seen more then I have. Like people today won't know what a ps/2 mouse is or a serial based mouse lol.
I still end up with those from time to time!
I use one almost every day - a Keytronic keyboard. About 20 years old.
And PS/2 is the "new" stuff. Original PC keyboard uses a 5 pin DIN connector.
PS/2 is of course named so since it was introduced on IBM's PS/2 computer.
If you can limit a client to just one IP and just tcp 3389 in your firewall that should be enough.
Disable shared drives or the user is able to infect the work pc with files from his home pc.
Typically when we connect with VPN to enterprise networks to do work on certain servers or what not, we get a static ip and then they have firewall rules to determine what IPs / ports we can reach. So yes, the computer we use is on their LAN but only through a very small and restricted opening that just allows RDP to just the one server we need to access. Everything else is blocked.
We had a thread recently where virtual desktops (aka workspaces, multiple desktops) came up and everyone didn't seem to use it or was aware of it, so I thought I'll share this video I bumped into. It might be useful in these corona times.
@notverypunny said in SAS to USB:
@travisdh1 said in SAS to USB:
@notverypunny said in SAS to USB:
SAS to USB, does such a thing exist? (that doesn't cost a small fortune). Based on my own searching and research I think the answer is no, but figured I'd ask here in case I've missed something.
Found this, but can't justify the price
https://www.amazon.ca/gp/offer-listing/B07KZRCT8H/ref=dp_olp_new_mbc?ie=UTF8&condition=newI've got a bunch of 2.5" drives that we pulled when swapping SSDs into a few servers. We're using them as spares to replace dead drives in other machines for which they're compatible but they have to be cleared / blanked before being used as replacements in order for the RAID controller to properly accept the drive and rebuild.
Right now I've got to boot a spare server into the PERC's configuration interface and use that to clear the drive before I can swap it in. Ideally I'd like to be able to just connect the drive via USB to a workstation or laptop and use fdisk / gparted or something else to blank it.
Have you tried plugging them into a standard USB to SATA adapter? Should work from what I know, but I've never tried it myself.
The interfaces won't mate, there's a notch that prevents just that. We tried what looks to be a simple pin to pin adapter with a USB to sata that I found online and couldn't get anything to see the drive on the other end.
SATA drives fit into SAS backplanes but SAS drives don't fit SATA backplanes/connectors.
@biggen said in Add 2.5" U.2 (NVMe) SSDs to custom build?:
@Pete-S said in Add 2.5" U.2 (NVMe) SSDs to custom build?:
Intel P4510
Yup that would work. Wish I could figure out a way to at least mount the U.2 drives in the 3.5" external drive bay since I don't need a 3.5" bay for anything else. ICY DOCK makes a twin 2.5" SATA drive bay that fits in a 3.5" bay, but they don't make a twin 2.5" U.2 NVMe drive bay that fits in the 3.5". I'm guessing the 2.5" U.2 needs either more spacing or better cooling than a standard 2.5" SATA SSD.
You don't want them in an external bay. Remember that these are PCIe bus connections so it makes sense to have short cables. The cables in the adapter above are probably 1.5 feet at the most.
U.2 drives are thicker than standard SSDs, usually 15mm (a little more than 1/2 inch). They get hotter than normal SSDs but nothing extreme. P4510 for instance is rated at 16W power consumption. Which is about twice as much as a 3.5" spinner. In a high powered rack server the drives stays cool but they're usually designed to have a generous amount of airflow through the case and over the drives.
PS. If it wasn't clear - U.2 drives have the same mechanical mount as 2.5" drives. So you can mount them in a 2.5" internal drive bay or in a 3.5" internal drive bay with adapters. You just can't put them in a hotswap drive bay or any drive bay that has an SATA or SAS backplane because it's electrically not the same.
This is what we do.
Option 3.
Hypervisor on satadom or small SSD drive.
Performance storage array with SSDs. Raid 1 or 10.
Capacity storage array with 3.5" HDDs. Raid 1 or 10.
Right now I'm prepping a RAID 1 array 2x16TB that will go into one of our hosts.
md4 : active raid1 sdm[1] sdl[0]
15625748288 blocks super 1.2 [2/2] [UU]
[>....................] resync = 0.6% (99811008/15625748288) finish=1322.2min speed=195699K/sec
We'll see how long it takes. Supposedly around 23 hours.
@scottalanmiller said in PC Build - Flight Sims:
In my case, my entire PC was about the same cost as the GPU alone would have been!
I remember one time when we bought a simple tower server from HP and it was the same price as just the Xeon CPU alone. Hard to beat that.
What is "deploy firmware" in this case?
If you want to update bios, raid cards, network cards, ilo etc you can just boot into another OS, update and then reboot into your installed OS.
We do it remotely by mounting a virtual drive over ipmi/idrac/ilo. If you have physical access or remote hands you can do it with usb storage.
A lot of times you can boot into DOS or linux to run firmware updates. That's pretty easy to set up. Windows is harder since it needs to be installed but can be done with a USB hard drive (64GB+) that has a complete windows enviroment.
You have that info in the thread below from the other day:
https://mangolassi.it/topic/21751/import-a-qcow2-into-proxmox
Basically you need to put it in the right place and it has to have the right name (depending on config file, what filesystem, VM ID)
@EddieJennings said in Password manager for ordinary users?:
I'm transitioning from LastPass to BitWarden. Both services are good.
If both are good, why the change?
Assuming here you have Visual Studio/MSDN subscription or similar so you have iso-files for everything old.
This is how I do it:
If you use shared folders in virtualbox you don't need to worry about setting up any network on the VM. Shared folders let you share files between the host and the VM.
@pmoncho said in How to Connect Power Disable SATA Drive to Dell Inspiron 5676:
@JaredBusch said in How to Connect Power Disable SATA Drive to Dell Inspiron 5676:
@scottalanmiller said in How to Connect Power Disable SATA Drive to Dell Inspiron 5676:
@pmoncho said in How to Connect Power Disable SATA Drive to Dell Inspiron 5676:
@scottalanmiller said in How to Connect Power Disable SATA Drive to Dell Inspiron 5676:
@Pete-S said in How to Connect Power Disable SATA Drive to Dell Inspiron 5676:
@scottalanmiller said in How to Connect Power Disable SATA Drive to Dell Inspiron 5676:
Confirmed, snipping the orange wire (I needed help as I can't see orange) did the job, drive showed up immediately.
Congrats! I wasn't sure you'd be up for the task. A lot of people are afraid to make permanent changes to their equipment.
You can't believe how much pushback I got from @Dominica and @pchiodo about snipping a simple cable on a $2 SATA extension part! For me, it was a no brainer once knowing what it was. But they were up for spending hundreds of dollars to avoid snipping that wire. And it isn't even hard wired to the power supply or anything it's literally just a SATA extension piece! lol Like $2 tops if you don't shop around.
I would have been with @Dominica and @pchiodo on this. Electric scares me. I would think snipping the wire would cause a spark while I wasn't home and come home to a few burning cinders.
That was mentioned as a concern. lol
FFS people need to just STFU if they donβt know how electricity works.
That was exactly my point and why I wouldn't have done it. As for STFU about well, that is where we differ. Those concerns could be alleviated with an explanation of why it would not be an issue.
For electrons to flow you need a circuit. If you cut the wire you don't have a circuit anymore and because of that you don't have any electricity flowing. Since there is no electricity, there can't be any sparks.
If you just cut the wire but don't remove it, then one end can come in contact with the chassis and then you have a circuit and electricity flowing.
Modern switched power supplies (as in your computer) have short-circuit protection. So nothing would happen except that 3.3V will go down to 0V. So if there is anything in your computer that need 3.3V power from the power supply, it will not get it.
If you had something else producing 3.3V (for instance a battery) and you'd short-circuit that, then it can get cause a fire. Just because it's only 3.3V doesn't mean anything.
And sparks is not a problem unless you're in an explosive environment. The problem is that a short-circuit cause increased current running in the wire. That current will turn into heat. That heat causes things to melt and catch fire. And that's how you burn down a house.
Also nice to know is that any electrical circuit inside a computer is low voltage, 12V or below. It can't kill you no matter what you do. It's the same voltage as you have in an ordinary car battery.
The only way to get into trouble with a computer is by disassembling the power supply. There you have lethal voltage.
If you wanted to show the progress % you could do something like this as well:
$quantity = $systems.count
$i = 0
foreach ($server in $systems){
//stuff
$i = $i + 1
$progress = 100 * $i / $quantity
}
Another trick is to not count it at all, just print a dot (".") for each iteration.
.........
@gjacobse said in NextCloud: Chmod user folders:
Oh - no - the syntax is incorrect for ownership.
sudo chown
Yes,
Remember you can always do man chown to see the syntax.
@Pete-S said in Building your own lab:
@openit said in Building your own lab:
@scottalanmiller @Pete-S
Do we have any complete post or article on ML which describes how to build a Lab with design, like server, switch etc. arrangement.Really appreciate, if someone can provide any links, which gives complete lab design, to prepare me as a good Windows System Administrator, which should include all tasks, activities a typical SysAdmin requires.
The idea is that if you set up everything, you have gained experienced and knowledge in a number of areas you would not get otherwise.
Much more valuable than following a post.
Otherwise you would need a whole series of posts and videos to get you from start to finish.
I think the best way to get started is to dive head in. First would be to get some servers. Then networking. Then it's time to install hypervisors.
IMHO it's best to build something you have a use for or can find a use for.