Re: [CentOS-es] Formatie por error la particion /boot
Gracias por su respuesta pero no tengo otros servidores similares. Googleando un poco encontre este link que me ayudo a resolver el problema reinstalando el grub y el kernel y luego ejecutando el grub-install y finalmente crear un grub.conf de forma manual http://proyectofedora.org/argentina/?p=113 Teofilo Copa Fernandez El día 2 de julio de 2010 17:20, Ing. Ernesto Pérez Estévez cen...@nuestroserver.com escribió: primero es reponer sus contenidos, que son el grub.conf y el kernel. a mi me pasó una vez, y por suerte tengo otros servidores con idéntico hardware y particionamiento, así que copié el todo /boot de otro servidor y ya. si no fuera tu caso, te tocará rehacer el grub.conf con un poquito de trabajo.. pero seguro lo lograrás... no es mortal.. a todos les pasa que por error formatean... saludos epe On 07/02/2010 01:57 PM, Teofilo copa wrote: Hola amigos de la lista tengo un problema: ayer mientras redimensionaba mi disco formatie for accidente la particion /boot alguien sabe como podria restaurarlo? intente reinstalar el grub con el comando: grub-install /dev/sda y nada, tambien intente reinstalar el grub con el instalador y tampoco funciona ;-( ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Problema con DNS bind9 gracias de antemano!!!
Hola, 2010/7/2 daniel danielog2...@gmail.com: Hola lista tengo un problema con la configuracion de un DNS interno solo lonecesito para no tener que recordar tantas ip's ya que la red del laboratorio esta creciendo demaciado entonces me decidi por hacer un DNS con bind9, lo fui realizando por pasos primero solo agrege los DNS en forward para que se usara como DNS interno y pudiera resolver peticiones de paginas de fuera, el problema empezó cuando agregue la zona interna y la inversa me costo un poco por errores de sintaxis pero cuando por fin lo pude hacer funcionar ya no me resuelve peticiones de paginas de Internet, en pocas palabras solo resuelve peticiones de la zona interna espero y me puedan ayudar saludos estos son los archivos de configuración cabe destacar que la zona interna funciona perfectamente lo que no funciona es cuando quiero que me resuelva ip's de internet por ejemplo: host www.google.com Host www.google.com not found: 3(NXDOMAIN) named.conf options { listen-on port 53 { 127.0.0.1; }; // listen-on-v6 port 53 { ::1; }; directory /var/named; dump-file /var/named/data/cache_dump.db; statistics-file /var/named/data/named_stats.txt; memstatistics-file /var/named/data/named_mem_stats.txt; // Those options should be used carefully because they disable port // randomization // query-sourceport 53; // query-source-v6 port 53; // allow-query { localhost; }; // allow-query-cache { localhost; }; forwarders{8.8.8.8; 8.8.4.4}; }; logging { channel default_debug { file data/named.run; severity dynamic; }; }; view localhost_resolver { match-clients{ localhost; }; match-destinations { localhost; }; recursion yes; include /etc/named.rfc1912.zones; zone .{ type master; file lsvp.zone; }; zone 1.168.192.in-addr.arpa { type master; file 1.168.192.in-addr.arpa.zone; }; }; include /etc/rndc.key; --- zona lsvp.zone $TTL86400 @IN SOA. root. ( 42; serial (d. adams) 3H; refresh 15M; retry 1W; expiry 1D ); minimum @ IN NS sulaco. @ IN A 192.168.1.8 master IN A 192.168.1.2 cintia IN A 192.168.1.3 carlos IN A 192.168.1.4 maquina6IN A 192.168.1.6 pablo IN A 192.168.1.10 jorge IN A 192.168.1.12 prueba IN A 192.168.1.18 karina IN A 192.168.1.21 fabiola IN A 192.168.1.23 fantasmaIN A 192.168.1.29 impresora IN A 192.168.1.249 ---1.168.192.in-addr.arpa.zone $TTL 86400 @INSOA. root. ( 42; serial 3H; refresh 15M; retry 1W; expiry 1D ); minimum ; @INNSsulaco. 2INPTRmaster. 3INPTRcintia. 4INPTRcarlos. 6INPTRmaquina6. 10INPTRpablo. 12INPTRjorge. 18INPTRprueba. 21INPTRkarina. 23INPTRfabiola. 29INPTRfantasma. 249INPTRimpresora. 251INPTRgateway. 252INPTRgatewaywireless. Muchas gracias por responder Ruben, si con secundario te refieres a esclavo ya lo intente pero no nomas no resuelve para fuera sigo sin la menor idea de que puedes ser alguien tiene alguna otra idea? como les repito desde el momento en que agrege la zona iterna ya no resolvio direcciones externas pero nunca movi nada en named.conf.options gracias por su tiempo ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS-es] Problema con DNS bind9 gracias de antemano!!!
Muchas gracias por contestar Camilo pero en named.conf no puedo poner esas opciones me marca error y me dice que no reconoce esas opciones lo que me escribiste lo coloque en named.conf.options y si me los acepto si problemas pero sigue igual no resuelve ninguna ip de internet alguna otra idea??? El 3 de julio de 2010 23:09, Camilo Astete camilo.ast...@gmail.comescribió: Hola Daniel: Deja estos parametros en tu archivo named.conf *query-source address *;* *listen-on port 53 { 127.0.0.1; ip_local_maquina; };* En la parte de ip_local_maquina agrega la ip que tiene tu maquina, ademas de la 127.0.0.1 y el query-source * para que sea cualquiera, Y ve si te resuelven dominios de afuera, a mi me esta funcionando correctamente con esos parámetros, y de hay nos cuentas como te fue :=) Saludos.- El 3 de julio de 2010 23:58, daniel danielog2...@gmail.com escribió: Hola, 2010/7/2 daniel danielog2...@gmail.com: Hola lista tengo un problema con la configuracion de un DNS interno solo lonecesito para no tener que recordar tantas ip's ya que la red del laboratorio esta creciendo demaciado entonces me decidi por hacer un DNS con bind9, lo fui realizando por pasos primero solo agrege los DNS en forward para que se usara como DNS interno y pudiera resolver peticiones de paginas de fuera, el problema empezó cuando agregue la zona interna y la inversa me costo un poco por errores de sintaxis pero cuando por fin lo pude hacer funcionar ya no me resuelve peticiones de paginas de Internet, en pocas palabras solo resuelve peticiones de la zona interna espero y me puedan ayudar saludos estos son los archivos de configuración cabe destacar que la zona interna funciona perfectamente lo que no funciona es cuando quiero que me resuelva ip's de internet por ejemplo: host www.google.com Host www.google.com not found: 3(NXDOMAIN) named.conf options { listen-on port 53 { 127.0.0.1; }; // listen-on-v6 port 53 { ::1; }; directory /var/named; dump-file /var/named/data/cache_dump.db; statistics-file /var/named/data/named_stats.txt; memstatistics-file /var/named/data/named_mem_stats.txt; // Those options should be used carefully because they disable port // randomization // query-sourceport 53; // query-source-v6 port 53; // allow-query { localhost; }; // allow-query-cache { localhost; }; forwarders{8.8.8.8; 8.8.4.4}; }; logging { channel default_debug { file data/named.run; severity dynamic; }; }; view localhost_resolver { match-clients{ localhost; }; match-destinations { localhost; }; recursion yes; include /etc/named.rfc1912.zones; zone .{ type master; file lsvp.zone; }; zone 1.168.192.in-addr.arpa { type master; file 1.168.192.in-addr.arpa.zone; }; }; include /etc/rndc.key; --- zona lsvp.zone $TTL86400 @IN SOA. root. ( 42; serial (d. adams) 3H; refresh 15M; retry 1W; expiry 1D ); minimum @ IN NS sulaco. @ IN A 192.168.1.8 master IN A 192.168.1.2 cintia IN A 192.168.1.3 carlos IN A 192.168.1.4 maquina6IN A 192.168.1.6 pablo IN A 192.168.1.10 jorge IN A 192.168.1.12 prueba IN A 192.168.1.18 karina IN A 192.168.1.21 fabiola IN A 192.168.1.23 fantasmaIN A 192.168.1.29 impresora IN A 192.168.1.249 ---1.168.192.in-addr.arpa.zone $TTL 86400 @INSOA. root. ( 42; serial 3H; refresh 15M; retry 1W; expiry 1D ); minimum ; @INNSsulaco. 2INPTRmaster. 3INPTRcintia. 4INPTRcarlos. 6INPTRmaquina6. 10INPTRpablo. 12INPTRjorge. 18INPTRprueba. 21INPTRkarina. 23INPTRfabiola. 29INPTRfantasma. 249INPTRimpresora. 251INPTRgateway. 252INPTRgatewaywireless. Muchas gracias por responder Ruben, si con secundario te refieres a esclavo ya lo intente pero no nomas no resuelve para fuera sigo sin la menor idea de que puedes ser alguien tiene alguna otra idea? como les repito desde el momento en que agrege la zona iterna ya no resolvio direcciones externas pero nunca movi nada en named.conf.options gracias por su tiempo ___ CentOS-es mailing list CentOS-es@centos.org
Re: [CentOS-es] Problema con DNS bind9 gracias de antemano!!!
En named.conf.options ? El 4 de julio de 2010 00:32, daniel danielog2...@gmail.com escribió: Muchas gracias por contestar Camilo pero en named.conf no puedo poner esas opciones me marca error y me dice que no reconoce esas opciones lo que me escribiste lo coloque en named.conf.options y si me los acepto si problemas pero sigue igual no resuelve ninguna ip de internet alguna otra idea??? El 3 de julio de 2010 23:09, Camilo Astete camilo.ast...@gmail.comescribió: Hola Daniel: Deja estos parametros en tu archivo named.conf *query-source address *;* *listen-on port 53 { 127.0.0.1; ip_local_maquina; };* En la parte de ip_local_maquina agrega la ip que tiene tu maquina, ademas de la 127.0.0.1 y el query-source * para que sea cualquiera, Y ve si te resuelven dominios de afuera, a mi me esta funcionando correctamente con esos parámetros, y de hay nos cuentas como te fue :=) Saludos.- El 3 de julio de 2010 23:58, daniel danielog2...@gmail.com escribió: Hola, 2010/7/2 daniel danielog2...@gmail.com: Hola lista tengo un problema con la configuracion de un DNS interno solo lonecesito para no tener que recordar tantas ip's ya que la red del laboratorio esta creciendo demaciado entonces me decidi por hacer un DNS con bind9, lo fui realizando por pasos primero solo agrege los DNS en forward para que se usara como DNS interno y pudiera resolver peticiones de paginas de fuera, el problema empezó cuando agregue la zona interna y la inversa me costo un poco por errores de sintaxis pero cuando por fin lo pude hacer funcionar ya no me resuelve peticiones de paginas de Internet, en pocas palabras solo resuelve peticiones de la zona interna espero y me puedan ayudar saludos estos son los archivos de configuración cabe destacar que la zona interna funciona perfectamente lo que no funciona es cuando quiero que me resuelva ip's de internet por ejemplo: host www.google.com Host www.google.com not found: 3(NXDOMAIN) named.conf options { listen-on port 53 { 127.0.0.1; }; // listen-on-v6 port 53 { ::1; }; directory /var/named; dump-file /var/named/data/cache_dump.db; statistics-file /var/named/data/named_stats.txt; memstatistics-file /var/named/data/named_mem_stats.txt; // Those options should be used carefully because they disable port // randomization // query-sourceport 53; // query-source-v6 port 53; // allow-query { localhost; }; // allow-query-cache { localhost; }; forwarders{8.8.8.8; 8.8.4.4}; }; logging { channel default_debug { file data/named.run; severity dynamic; }; }; view localhost_resolver { match-clients{ localhost; }; match-destinations { localhost; }; recursion yes; include /etc/named.rfc1912.zones; zone .{ type master; file lsvp.zone; }; zone 1.168.192.in-addr.arpa { type master; file 1.168.192.in-addr.arpa.zone; }; }; include /etc/rndc.key; --- zona lsvp.zone $TTL86400 @IN SOA. root. ( 42; serial (d. adams) 3H; refresh 15M; retry 1W; expiry 1D ); minimum @ IN NS sulaco. @ IN A 192.168.1.8 master IN A 192.168.1.2 cintia IN A 192.168.1.3 carlos IN A 192.168.1.4 maquina6IN A 192.168.1.6 pablo IN A 192.168.1.10 jorge IN A 192.168.1.12 prueba IN A 192.168.1.18 karina IN A 192.168.1.21 fabiola IN A 192.168.1.23 fantasmaIN A 192.168.1.29 impresora IN A 192.168.1.249 ---1.168.192.in-addr.arpa.zone $TTL 86400 @INSOA. root. ( 42; serial 3H; refresh 15M; retry 1W; expiry 1D ); minimum ; @INNSsulaco. 2INPTRmaster. 3INPTRcintia. 4INPTRcarlos. 6INPTRmaquina6. 10INPTRpablo. 12INPTRjorge. 18INPTRprueba. 21INPTRkarina. 23INPTRfabiola. 29INPTRfantasma. 249INPTRimpresora. 251INPTRgateway. 252INPTRgatewaywireless. Muchas gracias por responder Ruben, si con secundario te refieres a esclavo ya lo intente pero no nomas no resuelve para fuera sigo sin la menor idea de que puedes ser alguien tiene alguna otra idea? como les repito desde el momento en que agrege la zona iterna ya no resolvio direcciones externas pero nunca movi nada en named.conf.options gracias por su tiempo
Re: [CentOS-es] Problema con DNS bind9 gracias de antemano!!!
si es la versión bind 9.6.1 ___ CentOS-es mailing list CentOS-es@centos.org http://lists.centos.org/mailman/listinfo/centos-es
Re: [CentOS] ESXi, KVM or Xen?
On 03/Jul/2010 06:52 Emmanuel Noobadmin centos.ad...@gmail.com wrote .. Which of these would be the recommended virtualization platform for mainly CentOS guest on CentOS host for running a virtualized mail server? From what I've read, objectively it seems that VMWare's still the way to go although I would had like to go with Xen or KVM just as a matter of subjective preference. My subjective preference is similar. By now I'm running a dozen Centos servers virtualized (xen), all I can say is Centos5 + Xen = love :-) The darn thing runs out of the box very well; it's stable, it's fast, tools and big community expertise available. VMWare's offering seems to have the best support and tools, plus likely the most matured of the options. Also given their market dominance, unlikely to just up and die in the near future. Unlikely to die yes, possibly to just stop offering shit for free, yes also. Unless you're a big enterprise looking for some serious corporate backing, I wouldn't look at vmware, but that's just how I feel. Xen would had been a possible option except Redhat appears to be focusing on KVM as their virtualization platform of choice to compete with VMWare and Citrix. So maybe Xen support will be killed shortly. Xen will be fully supported in Centos5 so you have until 2014 (if I'm not mistaken) to change boat. I'm not sure about EL6, but I'm sure it will have at least domU full support. And even so, I'm sure there will be ways around it (centosplus, elrepo etc). Plus the modified xen kernel apparently causes conflict with certain software, at least based on previous incidents where I'd been advised not to use the CentOS xen kernel if not using xen virtualization. Never had a problem, the only issue I encountered is NVidia proprietary graphics driver doesn't like it, but there is a way around that as well and anyway, you won't need that driver on a server. KVM would be ideal since it's opensource and would be supported in CentOS as far as can be reasonably foreseen. However, looking at available resources, it seems to have these key disadvantages 1. Poorer performance under load. http://wiki.xensource.com/xenwiki/Open_Topics_For_Discussion?action=AttachFiledo=gettarget=Quantitative+Comparison+of+Xen+and+KVM.pdf This 2008 XenSummit paper indicates that it dies on heavy network load as well as when there are more than a few VM doing heavy processing at the same time. But that's two years ago and they weren't using paravirtual drivers it seems. Yes, indeed. http://vmstudy.blogspot.com/2010/04/network-performance-test-xenkvm-vt-d.html This blog testing out Xen/KVM pretty recently. While the loads are not as drastic and neither the difference, it still shows that KVM does lag behind by about 10%. The gap is only temporary, I'm sure. KVM is a very active project, and for the moment at least what you lose in performance you gain in flexibility; kvm machines being linux proceses, so from there sky's the limit. You don't get this with any other virtualization platform out there (talking about the big guys, not the like of lguest etc). This is a concern since I plan to put storage on the network and the most heavy load the client has is basically the email server due to the volume plus inline antivirus and anti-spam scanning to be done on those emails. Admittedly, they won't be seeing as much emails as say a webhost but most of their emails come with relatively large attachments. The base rule performance wise with any virtualization solution is to have fast disks. Raid10 is quite sweet unless you're looking at big networked storage solutions. The best thing to do is install and test all 3 of them and see which works best on whatever hardware you possess. 2. Security Some sites point out that KVM VM runs in userspace as threads. So a compromised guest OS would then give intruder access to the system as well as other VMs. Not necesarilly, I'm planning to switch my domUs to KVM at some point in the near future and I'm not going to run them as root; they're only processes after all. Even if they break the VM and get out they will still be restricted. That scenario though is quite a fantastic one, imho. I'm no kernel hacker but it sounds extremely unlikely to happen. Should I really be concerned or are these worries only for extreme situations and that KVM is viable for normal production situations? Are there other things I should be aware of? I wouldn't be concerned, really. HTH ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Nux! www.nux.ro ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] text to html
input: http://pastebin.com/raw.php?i=MqPXZwc3 output: http://pastebin.com/raw.php?i=8QCkp4yv it will be a long day.. :D could someone please help with it? i have to make a one liner that get's the input, and gives the mentioned output. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] text to html
Use php or some other html-friendly scripting language... Should be easy. - Jussi On 3.7.2010 12.07, Jozsi Avadkan wrote: input: http://pastebin.com/raw.php?i=MqPXZwc3 output: http://pastebin.com/raw.php?i=8QCkp4yv it will be a long day.. :D could someone please help with it? i have to make a one liner that get's the input, and gives the mentioned output. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- Jussi Hirvi * Green Spot Topeliuksenkatu 15 C * 00250 Helsinki * Finland Tel. +358 9 493 981 * Mobile +358 40 771 2098 (only sms) jussi.hi...@greenspot.fi * http://www.greenspot.fi ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] text to html
On 7/3/10, Jozsi Avadkan jozsi.avad...@gmail.com wrote: input: http://pastebin.com/raw.php?i=MqPXZwc3 output: http://pastebin.com/raw.php?i=8QCkp4yv it will be a long day.. :D could someone please help with it? i have to make a one liner that get's the input, and gives the mentioned output. Definitely looks like a job for a script and personally I'll go with PHP due to familiarity. read line by line, explode the string on /, then section off based on the first token. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] text to html
post script: it's not often I actually run into something I can help with on this list. So just let me know if you need help writing that php script. Shouldn't take more than 15 minutes as long as you don't require design documentations ;) ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ESXi, KVM or Xen?
On Sat, Jul 03, 2010 at 11:52:41AM +0800, Emmanuel Noobadmin wrote: Which of these would be the recommended virtualization platform for mainly CentOS guest on CentOS host for running a virtualized mail server? From what I've read, objectively it seems that VMWare's still the way to go although I would had like to go with Xen or KVM just as a matter of subjective preference. Also worth looking at Citrix XenServer. My essay on this from a few months ago: http://sweh.spuddy.org/Essays/Virtualization_options.html VMWare's offering seems to have the best support and tools, plus Note that ESXi uses an embedded control node and is very limited in hardware support. Xen would had been a possible option except Redhat appears to be I found the Xen in CentOS 5.4 to be unstable for Windows guests; it was fine for CentOS guests. KVM would be ideal since it's opensource and would be supported in It seemed to work adequately, but the toolset isn't quite as user friendly (eg need to manually create bridges). -- rgds Stephen ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] kvm as non-root user
Yes, I already get that output. I also made sure that the xml scripts and the VM images are not root:root, but root:kvm. I'm using the Virtual Machine Manager GUI as the interface...that is where I get challenged for the root pw. Maybe I need to go to create a script that runs qemu-kvm as the regular user to start the VMs. Dave M On Fri, 2010-07-02 at 18:09 +0530, Arun Khan wrote: On Fri, Jul 2, 2010 at 4:24 PM, David McGuffey davidmcguf...@verizon.net wrote: Tried as I might, I cannot get kvm on CentOS 5.4 to run as a non-root user. Post the error message. Have Googled and followed guidance I've found (put the regular user in the kvm group, change permissions on several files, etc.). Anyone have decent (e.g., working) guidance on how to do this? The output of ls -l /dev/kvm should be like this: crw-rw+ 1 root kvm 10, 232 2010-07-02 09:27 /dev/kvm I have not had to do anything special as long as the non root user is member of kvm group. HTH -- Arun Khan ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ESXi, KVM or Xen?
On Sat, 2010-07-03 at 11:52 +0800, Emmanuel Noobadmin wrote: 2. Security Some sites point out that KVM VM runs in userspace as threads. So a compromised guest OS would then give intruder access to the system as well as other VMs. Should I really be concerned or are these worries only for extreme situations and that KVM is viable for normal production situations? Are there other things I should be aware of? As I understand it each VM under kvm has a different SELinux context. Breaking into one VM doesn't give you the context to manipulate another. One would have to go back out through the network to attack the next VM...and if you have decent logging and IDS the noise should be seen/detected. I went with kvm specifically because it is integrated into SELinux. Dave M ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] kvm as non-root user
On Sat, 2010-07-03 at 07:58 -0400, David McGuffey wrote: Yes, I already get that output. I also made sure that the xml scripts and the VM images are not root:root, but root:kvm. I'm using the Virtual Machine Manager GUI as the interface...that is where I get challenged for the root pw. Maybe I need to go to create a script that runs qemu-kvm as the regular user to start the VMs. Dave M On Fri, 2010-07-02 at 18:09 +0530, Arun Khan wrote: On Fri, Jul 2, 2010 at 4:24 PM, David McGuffey davidmcguf...@verizon.net wrote: Tried as I might, I cannot get kvm on CentOS 5.4 to run as a non-root user. Post the error message. Have Googled and followed guidance I've found (put the regular user in the kvm group, change permissions on several files, etc.). Anyone have decent (e.g., working) guidance on how to do this? The output of ls -l /dev/kvm should be like this: crw-rw+ 1 root kvm 10, 232 2010-07-02 09:27 /dev/kvm I have not had to do anything special as long as the non root user is member of kvm group. HTH -- Arun Khan In /usr/bin, here is what I find. -rwxr-xr-x 1 root root 9230 Apr 2 22:31 virt-clone -rwxr-xr-x 1 root root 10322 Apr 2 22:31 virt-convert -rwxr-xr-x 1 root root 12000 Apr 2 22:31 virt-image -rwxr-xr-x 1 root root 34482 Apr 2 22:31 virt-install lrwxrwxrwx 1 root root 20 May 16 22:34 virt-manager - ../bin/consolehelper -rwxr-xr-x 1 root root 34040 Sep 3 2009 virt-viewer -rwxr-xr-x 1 root root 3505 Mar 31 05:02 virt-xml-validate And looking through the virsh manual, here is what I find: Most virsh commands require root privileges to run due to the communications channels used to talk to the hypervisor. Running as non root will return an error. Seems all paths to managing VMs has to go through root. Dave M ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Help: Please help me size my server requirements
I am looking to build a Workgroup Server. (Should be compatible/certified with both XEN VMware hypervisors, as I am not sure which one I will settle with...comments requested) To run baremetal on hypervisor, with each of the following services running virtualized with minimum OS install (CentOS 5.x, latest stable release). - Multi-homed router-cum-border firewall (Access to Network Card limited to this instance...will act as router for rest of virtual machines). - DNS Server (djbDNS). - Mail Server (Qmail). - News Server (INN). - Webserver (Apache). - RDBMS (postgreSQL...highest load). In addition to above the server to provide Windows RDP /or Linux Desktop Thinclient to 5 users running diskless thin clients or old desktops (second highest load). Server to have adequate amount of memory for the above and 500 GB/1 TB RAID 5 or better using SATA disks. What Server Specs. I am looking at? I understand DB load is major in this but assuming moderate to medium db load, what do I need. Will seperate the server Thinclient server six months/year down the road. What budget? Recommendations for a processor/motherboard/ram/disks/sata card? With best regards and thanks in advance. Sanjay Arora. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] text to html
On 07/03/2010 02:07 AM, Jozsi Avadkan wrote: input: http://pastebin.com/raw.php?i=MqPXZwc3 output: http://pastebin.com/raw.php?i=8QCkp4yv it will be a long day.. :D could someone please help with it? i have to make a one liner that get's the input, and gives the mentioned output. Why a 'one liner'? That sounds an awful lot like homework...But I'll give you the benefit of the doubt. You can turn this Perl script into a one liner easily. Or you can just save it as a script and use it like: ./convert-to-html.pl input_data.txt #!/usr/bin/perl use strict; use warnings; my (%section_info, @section_list); while(STDIN) { s/^\s+//s; s/\s+$//; next unless ($_ ne ''); s//\amp;/gs; s//\lt;/gs; s//\gt;/gs; s//\quot;/gs; my ($dir,$file) = m#(^[^/]+)/(.+)$#; $file =~ s/\.html$//i; push(@{$section_info{$dir}}, a href=\$_\$file/a); push(@section_list, $dir); } foreach my $section (@section_list) { print brfont size=4$section/fontbr\n; print join( |\n, @{$section_info{$section}}); print \nbr\n; } -- Benjamin Franz ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ESXi, KVM or Xen?
Hi, I'm running CentOS 5.5 under Xen, it works excellent, no problems. -- Regards, Samuel Paragreen. On 7/3/10, David McGuffey davidmcguf...@verizon.net wrote: On Sat, 2010-07-03 at 11:52 +0800, Emmanuel Noobadmin wrote: 2. Security Some sites point out that KVM VM runs in userspace as threads. So a compromised guest OS would then give intruder access to the system as well as other VMs. Should I really be concerned or are these worries only for extreme situations and that KVM is viable for normal production situations? Are there other things I should be aware of? As I understand it each VM under kvm has a different SELinux context. Breaking into one VM doesn't give you the context to manipulate another. One would have to go back out through the network to attack the next VM...and if you have decent logging and IDS the noise should be seen/detected. I went with kvm specifically because it is integrated into SELinux. Dave M ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- -- Regards, Samuel Paragreen. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ESXi, KVM or Xen?
On 7/3/10, David McGuffey davidmcguf...@verizon.net wrote: As I understand it each VM under kvm has a different SELinux context. Breaking into one VM doesn't give you the context to manipulate another. One would have to go back out through the network to attack the next VM...and if you have decent logging and IDS the noise should be seen/detected. I went with kvm specifically because it is integrated into SELinux. In theory that sounds great and would had covered the security concern part. But my own experience with SELinux had basically been well less than positive. When I first knew about it 2 years ago on my first install of CentOS, it just made things really difficult and even when it worked, setroubleshootd ends up sucking up memory and lags the system, making it extremely difficult to even view the SE event log to try to figure out what happened. Maybe it's just my noobness then, so I'll give it another try with leaving SELinux enforcing instead of permissive. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ESXi, KVM or Xen?
Hi, We went for Esxi, with Vmware essentials, cost about £300 for 3 hosts managed via vcenter, so far so good most vm's are CentOS 5.x Running NFS shared storage on RHEL Regards Keith On 3 Jul 2010, at 04:52, Emmanuel Noobadmin centos.ad...@gmail.com wrote: Which of these would be the recommended virtualization platform for mainly CentOS guest on CentOS host for running a virtualized mail server? From what I've read, objectively it seems that VMWare's still the way to go although I would had like to go with Xen or KVM just as a matter of subjective preference. VMWare's offering seems to have the best support and tools, plus likely the most matured of the options. Also given their market dominance, unlikely to just up and die in the near future. Xen would had been a possible option except Redhat appears to be focusing on KVM as their virtualization platform of choice to compete with VMWare and Citrix. So maybe Xen support will be killed shortly. Plus the modified xen kernel apparently causes conflict with certain software, at least based on previous incidents where I'd been advised not to use the CentOS xen kernel if not using xen virtualization. KVM would be ideal since it's opensource and would be supported in CentOS as far as can be reasonably foreseen. However, looking at available resources, it seems to have these key disadvantages 1. Poorer performance under load. http://wiki.xensource.com/xenwiki/Open_Topics_For_Discussion?action=AttachFiledo=gettarget=Quantitative+Comparison+of+Xen+and+KVM.pdf This 2008 XenSummit paper indicates that it dies on heavy network load as well as when there are more than a few VM doing heavy processing at the same time. But that's two years ago and they weren't using paravirtual drivers it seems. http://vmstudy.blogspot.com/2010/04/network-performance-test-xenkvm-vt-d.html This blog testing out Xen/KVM pretty recently. While the loads are not as drastic and neither the difference, it still shows that KVM does lag behind by about 10%. This is a concern since I plan to put storage on the network and the most heavy load the client has is basically the email server due to the volume plus inline antivirus and anti-spam scanning to be done on those emails. Admittedly, they won't be seeing as much emails as say a webhost but most of their emails come with relatively large attachments. 2. Security Some sites point out that KVM VM runs in userspace as threads. So a compromised guest OS would then give intruder access to the system as well as other VMs. Should I really be concerned or are these worries only for extreme situations and that KVM is viable for normal production situations? Are there other things I should be aware of? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Limiting fuse-mounted NTFS drive access?
I have a CentOS 5.5 system that is dual-boot CentOS 5.5 and Windows XP w/SP3 formatted with NTFS (for the Windows partition, of course). I have installed fuse (ntfs-3g) to allow read/write access to the NTFS partition from CentOS. No regular user has sudo. What is the best way to limit the access a user logging into the CentOS from mangling or changing data in unwanted areas of the fuse-mounted NTFS partition? I presume this would be somewhere in /etc/fstab, but what should the mount line say for at least write limitations? Thanks. Scott ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] text to html
my own solution: http://pastebin.com/raw.php?i=kqQXCpD5 input: http://pastebin.com/raw.php?i=MqPXZwc3 output: http://pastebin.com/raw.php?i=8QCkp4yv it will be a long day.. :D could someone please help with it? i have to make a one liner that get's the input, and gives the mentioned output. ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ESXi, KVM or Xen?
n...@li.nux.ro wrote: My subjective preference is similar. By now I'm running a dozen Centos servers virtualized (xen), all I can say is Centos5 + Xen = love :-) The darn thing runs out of the box very well; it's stable, it's fast, tools and big community expertise available. VMWare's offering seems to have the best support and tools, plus likely the most matured of the options. Also given their market dominance, unlikely to just up and die in the near future. Unlikely to die yes, possibly to just stop offering shit for free, yes also. Unless you're a big enterprise looking for some serious corporate backing, I wouldn't look at vmware, but that's just how I feel. You never know when any company is going to die, change directions, or be acquired by Oracle, but VMware has a fairly long history of providing increasingly better free offerings (better in that respect than RedHat...) so I would downplay the risk of it going away. The main issue with using ESXi is just that you need a windows box to run the client when you want to change configurations or access the guest consoles. And with the free version you have to use the converter program to copy images in or out (but the converter is very well done). -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] qemu
How to use qemu with a network brdige The bridge should have dhcp Not nat ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos