Re: [CentOS] hosted VMs, VLANs, and firewalld

--On Monday, March 21, 2016 08:57:59 AM -0700 Gordon Messmer wrote: > On 03/20/2016 08:51 PM, Devin Reade wrote: >> In a CentOS 7 test HA cluster I'm building I want both traditional >> services running on the cluster and VMs running on both nodes > > On a purely

Re: [CentOS] IPSec multiple VPN setups

Anyway, they both use compatible config files? Eero 22.3.2016 12.23 ap. "Leon Fauster" kirjoitti: > Am 21.03.2016 um 18:17 schrieb Mike - st257 : > > I second Eero's comment, use a new IPSec daemon. > > > > Openswan was forked and became

[CentOS] Postfix Installed by default on CentOS 7 Minimal

Is there a reason that Postfix is installed and enabled by default on CentOS 7 minimal? -- Igal Sapir Lucee Core Developer Lucee.org ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/centos

Re: [CentOS] CentOS-7-x86_64-GenericCloud.raw very unusual format

On 21 March 2016 at 11:51, Karanbir Singh wrote: > On 21/03/16 14:34, Aliaksei Sheshka wrote: > > What is the point to pack single raw file into the tar.gz and to name it > raw ? > > Or it's just a mistake ? > > > > > > Johnny is looking at the cdn side of thigs, but

[CentOS] Unable to mount NetApp volume via smbfs on CentOS 6.6

Hi; Unable to mount NetApp volume via smbfs on CentOS 6.6 I have been able to mount the NetApp via smbfs from a Mac but cannot from CentOS 6.6 What I have in /etc/auto_smb on the Mac is: /Volumes/build_dir -fstype=smbfs ://domain_name;account_name:password@machine_name/partition_name What is

[CentOS-announce] CESA-2016:0465 Moderate CentOS 7 openssh Security Update

CentOS Errata and Security Advisory 2016:0465 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2016-0465.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64:

[CentOS-announce] CESA-2016:0466 Moderate CentOS 6 openssh Security Update

CentOS Errata and Security Advisory 2016:0466 Moderate Upstream details at : https://rhn.redhat.com/errata/RHSA-2016-0466.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386:

Re: [CentOS] CentOS-7-x86_64-GenericCloud.raw very unusual format

On 03/21/2016 09:51 AM, Karanbir Singh wrote: > On 21/03/16 14:34, Aliaksei Sheshka wrote: >> What is the point to pack single raw file into the tar.gz and to name it raw >> ? >> Or it's just a mistake ? >> >> > > Johnny is looking at the cdn side of thigs, but effectively we will not > have a

Re: [CentOS] IPSec multiple VPN setups

Am 21.03.2016 um 18:17 schrieb Mike - st257 : > I second Eero's comment, use a new IPSec daemon. > > Openswan was forked and became Libreswan. Paul, now a RH employee, was a > main developer for the Openswan project before he and others created the > Libreswan fork. >

Re: [CentOS] CentOS 7, systemd, nmcli, wifi, oh, my...

On 03/21/2016 01:36 PM, m.r...@5-cent.us wrote: I've been googling, but haven't come up with a satisfactory answer to the question of how I permanently turn off wifi on a workstation or server (which are*all* hardwired). I know you've brought this up before, though I can't find any instance

Re: [CentOS] IPSec multiple VPN setups

Well, RHEL actually supports upgrading from 6 to 7 in some use cases. If you have access, https://access.redhat.com/solutions/21964. Not sure how that fits for CentOS though.. Em 21-03-2016 15:38, Eero Volotinen escreveu: err. upgrades? You mean reinstall? As upgrading between major releases

Re: [CentOS] IPSec multiple VPN setups

On Mon, 2016-03-21 at 18:23 +, Glenn Pierce wrote: > I asked about upgrading once and got no reply. Does anyone have > experience of having a hosted centos upgraded on a virtual server. > Would you usually have to pay for a transition instance ? I have several Centos VPSs in several

Re: [CentOS] CentOS 7, systemd, nmcli, wifi, oh, my...

John R Pierce wrote: > On 3/21/2016 1:36 PM, m.r...@5-cent.us wrote: >> I've been googling, but haven't come up with a satisfactory answer to >> the question of how I permanently turn off wifi on a workstation or >> server (which are*all* hardwired). >> >> I see I can turn wifi off... but I don't

Re: [CentOS] CentOS 7, systemd, nmcli, wifi, oh, my...

On 3/21/2016 1:36 PM, m.r...@5-cent.us wrote: I've been googling, but haven't come up with a satisfactory answer to the question of how I permanently turn off wifi on a workstation or server (which are*all* hardwired). I see I can turn wifi off... but I don't know that it's permanent. wifi

[CentOS] CentOS 7, systemd, nmcli, wifi, oh, my...

I've been googling, but haven't come up with a satisfactory answer to the question of how I permanently turn off wifi on a workstation or server (which are *all* hardwired). I see I can turn wifi off... but I don't know that it's permanent. mark

Re: [CentOS] IPSec multiple VPN setups

I'm Sur my boss will agree. Looks like I have a multi terra byte postgres move to look forward to. Thanks evryone -Original Message- From: "m.r...@5-cent.us" Sent: ‎21/‎03/‎2016 20:03 To: "CentOS mailing list" Subject: Re: [CentOS] IPSec multiple

Re: [CentOS] IPSec multiple VPN setups

Glenn Pierce wrote: > Yes reinstall. I get you have to purchase a new instance for a time to > move over. I'd figure that they just move you to an instance that's already running a newer version of the o/s, giving you time to test for breakage. I really don't see them charging, except, possibly,

Re: [CentOS] IPSec multiple VPN setups

Eero Volotinen wrote: > err. upgrades? > > You mean reinstall? As upgrading between major releases are not supported > in any way on centos / rhel and clones.. > Of course. Now, I haven't looked recently, but I do vaguely remember them telling me they were moving me to an upgraded system; my

[CentOS-announce] CEEA-2016:0464 CentOS 7 i40e Enhancement Update

CentOS Errata and Enhancement Advisory 2016:0464 Upstream details at : https://rhn.redhat.com/errata/RHEA-2016-0464.html The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) x86_64:

Re: [CentOS] IPSec multiple VPN setups

Yes reinstall. I get you have to purchase a new instance for a time to move over. -Original Message- From: "Eero Volotinen" Sent: ‎21/‎03/‎2016 18:38 To: "CentOS mailing list" Subject: Re: [CentOS] IPSec multiple VPN setups err. upgrades?

Re: [CentOS] IPSec multiple VPN setups

err. upgrades? You mean reinstall? As upgrading between major releases are not supported in any way on centos / rhel and clones.. -- Eero 2016-03-21 20:33 GMT+02:00 : > Glenn Pierce wrote: > > I asked about upgrading once and got no reply. Does anyone have > experience > > of

Re: [CentOS] IPSec multiple VPN setups

Glenn Pierce wrote: > I asked about upgrading once and got no reply. Does anyone have experience > of having a hosted centos upgraded on a virtual server. Would you usually > have to pay for a transition instance ? > I pay for my own hosting (5-cent.us) at hostmonster. They've done upgrades, and

Re: [CentOS] IPSec multiple VPN setups

I asked about upgrading once and got no reply. Does anyone have experience of having a hosted centos upgraded on a virtual server. Would you usually have to pay for a transition instance ? -Original Message- From: "Eero Volotinen" Sent: ‎21/‎03/‎2016 18:11 To:

Re: [CentOS] IPSec multiple VPN setups

Glenn Pierce wrote: > To be fair its not highly sensitive info we are dealing with. > That doesn't matter. Do you drive a car that's leaking oil, and the engine check light has been on for months, and just put gas in, and not worry about adding more oil, or going to a mechanic? mark >

Re: [CentOS] IPSec multiple VPN setups

To be fair its not highly sensitive info we are dealing with. -Original Message- From: "Eero Volotinen" Sent: ‎21/‎03/‎2016 17:51 To: "CentOS mailing list" Subject: Re: [CentOS] IPSec multiple VPN setups Err. Sounds like security nightmare.

Re: [CentOS] IPSec multiple VPN setups

Memset.com ? In real world, rhel 5/centos 5 gets only critical security patches. Eero 21.3.2016 7.54 ip. kirjoitti: > Glenn Pierce wrote: > > Will ask my boss :) We are hosted on memset so not so easy to update > > > > Thanks > > Um, wait a minute: you're hosted? And they

Re: [CentOS] IPSec multiple VPN setups

Glenn Pierce wrote: > Will ask my boss :) We are hosted on memset so not so easy to update > > Thanks Um, wait a minute: you're hosted? And they haven't pushed you to 6 years ago? They haven't sent warnings that 5 was hitting eol? Who are they, please? I want to make sure that if someone asks me

Re: [CentOS] IPSec multiple VPN setups

Err. Sounds like security nightmare. 21.3.2016 7.47 ip. "Glenn Pierce" kirjoitti: > Will ask my boss :) We are hosted on memset so not so easy to update > > Thanks > > On 21 March 2016 at 17:36, Eero Volotinen wrote: > > Centos 5 is still soon end

Re: [CentOS] IPSec multiple VPN setups

Will ask my boss :) We are hosted on memset so not so easy to update Thanks On 21 March 2016 at 17:36, Eero Volotinen wrote: > Centos 5 is still soon end of life. Using it as ipsec gateway is .. > > Eero > 21.3.2016 7.25 ip. "Mike - st257"

Re: [CentOS] IPSec multiple VPN setups

Centos 5 is still soon end of life. Using it as ipsec gateway is .. Eero 21.3.2016 7.25 ip. "Mike - st257" kirjoitti: > On Mon, Mar 21, 2016 at 1:17 PM, Mike - st257 > wrote: > > > I second Eero's comment, use a new IPSec daemon. > > > > Openswan

[CentOS-virt] KVM networking issue

Hi folks, I posted this question to the KVM list, but I thought I'd try here too--sorry if this is the wrong place to post this, can you please direct me to the correct forum or list if so, thanks! I'm working on a network security project, using KVM installed on CentOS 6.7 through yum. I have a

Re: [CentOS] IPSec multiple VPN setups

On Mon, Mar 21, 2016 at 1:17 PM, Mike - st257 wrote: > I second Eero's comment, use a new IPSec daemon. > > Openswan was forked and became Libreswan. Paul, now a RH employee, was a > main developer for the Openswan project before he and others created the > Libreswan

Re: [CentOS] IPSec multiple VPN setups

And centos 5 is really soon end of life. Eero 21.3.2016 7.18 ip. "Mike - st257" kirjoitti: > I second Eero's comment, use a new IPSec daemon. > > Openswan was forked and became Libreswan. Paul, now a RH employee, was a > main developer for the Openswan project before he

Re: [CentOS] IPSec multiple VPN setups

I second Eero's comment, use a new IPSec daemon. Openswan was forked and became Libreswan. Paul, now a RH employee, was a main developer for the Openswan project before he and others created the Libreswan fork. https://libreswan.org/ EL6 has Openswan EL7 has Libreswan Racoon isn't all that fun

Re: [CentOS] IPSec multiple VPN setups

Yes you can. Please use newer version of centos and strong/openswan. Eero 21.3.2016 7.05 ip. "Glenn Pierce" kirjoitti: > Hi I hope someone can answer something I'm sure is quite basic. > > I am following the instructions at >

[CentOS] IPSec multiple VPN setups

Hi I hope someone can answer something I'm sure is quite basic. I am following the instructions at https://www.centos.org/docs/5/html/Deployment_Guide-en-US/ch-vpn.html On setting up a VPN The part I am having trouble with is when it show the /etc/racoon/racoon.conf file. But it doesn't say whay

Re: [CentOS] hosted VMs, VLANs, and firewalld

On 21.03.2016 16:57, Gordon Messmer wrote: > On 03/20/2016 08:51 PM, Devin Reade wrote: >> In a CentOS 7 test HA cluster I'm building I want both traditional >> services running on the cluster and VMs running on both nodes > > On a purely subjective note: I think that's a bad design. One of the

Re: [CentOS] hosted VMs, VLANs, and firewalld

On 03/20/2016 08:51 PM, Devin Reade wrote: In a CentOS 7 test HA cluster I'm building I want both traditional services running on the cluster and VMs running on both nodes On a purely subjective note: I think that's a bad design. One of the primary benefits of virtualization and other

Re: [CentOS] CentOS-7-x86_64-GenericCloud.raw very unusual format

On 21/03/16 14:34, Aliaksei Sheshka wrote: > What is the point to pack single raw file into the tar.gz and to name it raw ? > Or it's just a mistake ? > > Johnny is looking at the cdn side of thigs, but effectively we will not have a .raw - we will have a .raw.tar.gz file ( which will itself

[CentOS] CentOS-7-x86_64-GenericCloud.raw very unusual format

Hello! Is anyone aware why CentOS-7-x86_64-GenericCloud.raw has such unusual format ? root@test-srv:~# wget http://cloud.centos.org/centos/7/images/CentOS-7-x86_64-GenericCloud.raw --2016-03-21 13:16:31-- http://cloud.centos.org/centos/7/images/CentOS-7-x86_64-GenericCloud.raw Resolving