Re: [RDD] Guidance on remote machine access
Thanks We would like to make a copy of Our databases I have not been able to to that also I was thinking about installing PhPmyadmin. But I really don't what to add alot of stuff to the server to bog it down. Do you have a solution for Making a copy of the databases and The Var/snd directories On 2018-02-28 13:10, Bill Putney wrote: James, We use rsync to sync the /var/snd directories in our servers. Syncing the databases is a little more complicated. If you have the network bandwidth, running a single primary database would be best. Make all they quires to that database. You can do a daily snapshot of the database to keep the standby database server mostly up to date in case of a complete network failure. Also, since Fred implemented keeping a checksum of the audio files in the database, I'd run a periodic consistency check to make sure there hasn't been any corruption in the audio files. There are a couple ways to set up the firewalls with respect to network traffic that isn't between VPN connected sites. One is to allow each site access to the Internet for non-associated sites and only run the site to site traffic over the VPN. That gives sites the fastest access to non-associated Internet sites. The other way is to send all the traffic of a subsidiary site back to the main site before it goes out on the Internet to non-associated sites. That is a choice that is made for various reasons. The main site might have better restriction controls for Internet access. Their may be a concern about an attack that traffic analysis would play a part in. You can exercise QOS based prioritization if all the traffic going to and from a site is kept within the VPN. Traffic presented to the public Internet doesn't carry QOS so incoming traffic could delay database responses or any live audio you might be transporting. Bill Putney - WB6RFW District 2 Commissioner - Port of Port Townsend Chief Engineer - KPTZ El Jefe de Contenido - Port Townsend Film Festival Private Pilot-Single Engine Land | Airframe & Powerplant / Inspection Authorization On 2/27/18 9:37 PM, ija...@jamcorbroadcast.com wrote: Bill Thanks for bringing this subject on the Forum. we have a similar situation and we are looking to have some solution. Maybe you want to have your edge router setup VPN for your Rivendell So you will have access like the machine is in your current location. I think You have can the edge routers ignor any traffic except the addressees you list in the firewall. James I am interested how you have the 2 rivendell's synced. we are getting ready to build a master server and playout Can you Sen me some info on how you did your 2 servers to work together. Thanks On 2018-02-05 10:47, Bill Putney wrote: We use PFSense software on PC hardware. PFSense implements several different VPN arrangements but we are using IP/SEC since it is one of the very few that hasn't been hacked. Some one I know was looking at Ubiquiti Cloud Key remote and I did a search for exploits and it has been listed as having "Critical" level hacks. Not sure about their edge routers but you should search for exploits for whatever equipment you use that interfaces the Internet. Bill Putney - WB6RFW District 2 Commissioner - Port of Port Townsend Chief Engineer - KPTZ El Jefe de Contenido - Port Townsend Film Festival Private Pilot-Single Engine Land | Airframe & Powerplant / Inspection Authorization On 2/5/18 3:48 AM, Andy Higginson wrote: This is probably going off at a slight tangent but I was looking at Ubiquiti EdgeRouters over the weekend. They might be an interesting option for getting things up and running for VPN work. It is often said that you should keep your office network and music network separate. However, if you are trying to access the Rivendell machines remotely, you need to have internet access to them, even if it is through a VPN. The Edgerouters (even the cheapest model the lite) have multiple subnets and routing on them. The lite comes with 3 ports - eth0 for the WAN, eth1 for LAN 192.168.101.x and eth2 for LAN 192.168.102.x. Now I don't know what routing it does between ports eth1 and eth2 but it does seem to me that you could use this to allow both of the station networks to access the internet via this router. It also has the ability to run a VPN as well so you should be able to access the Music network from the outside world. How well they run and how they would perform in this context is not something that I would know. However I would be interested if anyone has some input. https://www.ubnt.com/edgemax/edgerouter-lite/ https://www.smallnetbuilder.com/lanwan/lanwan-reviews/33111-ubiquiti-edgerouter-lite-revisited Of course, one of the things with getting a VPN up and running is that you could use this for storing a remote off site backup with a NAS drive. That's something for another discussion. Andy On Mon, 05 Feb 2018 10:06:45 + JAMES GREENLEE wrote Isn't this what the
Re: [RDD] Guidance on remote machine access
James, We use rsync to sync the /var/snd directories in our servers. Syncing the databases is a little more complicated. If you have the network bandwidth, running a single primary database would be best. Make all they quires to that database. You can do a daily snapshot of the database to keep the standby database server mostly up to date in case of a complete network failure. Also, since Fred implemented keeping a checksum of the audio files in the database, I'd run a periodic consistency check to make sure there hasn't been any corruption in the audio files. There are a couple ways to set up the firewalls with respect to network traffic that isn't between VPN connected sites. One is to allow each site access to the Internet for non-associated sites and only run the site to site traffic over the VPN. That gives sites the fastest access to non-associated Internet sites. The other way is to send all the traffic of a subsidiary site back to the main site before it goes out on the Internet to non-associated sites. That is a choice that is made for various reasons. The main site might have better restriction controls for Internet access. Their may be a concern about an attack that traffic analysis would play a part in. You can exercise QOS based prioritization if all the traffic going to and from a site is kept within the VPN. Traffic presented to the public Internet doesn't carry QOS so incoming traffic could delay database responses or any live audio you might be transporting. Bill Putney - WB6RFW District 2 Commissioner - Port of Port Townsend Chief Engineer - KPTZ El Jefe de Contenido - Port Townsend Film Festival Private Pilot-Single Engine Land | Airframe & Powerplant / Inspection Authorization On 2/27/18 9:37 PM, ija...@jamcorbroadcast.com wrote: Bill Thanks for bringing this subject on the Forum. we have a similar situation and we are looking to have some solution. Maybe you want to have your edge router setup VPN for your Rivendell So you will have access like the machine is in your current location. I think You have can the edge routers ignor any traffic except the addressees you list in the firewall. James I am interested how you have the 2 rivendell's synced. we are getting ready to build a master server and playout Can you Sen me some info on how you did your 2 servers to work together. Thanks On 2018-02-05 10:47, Bill Putney wrote: We use PFSense software on PC hardware. PFSense implements several different VPN arrangements but we are using IP/SEC since it is one of the very few that hasn't been hacked. Some one I know was looking at Ubiquiti Cloud Key remote and I did a search for exploits and it has been listed as having "Critical" level hacks. Not sure about their edge routers but you should search for exploits for whatever equipment you use that interfaces the Internet. Bill Putney - WB6RFW District 2 Commissioner - Port of Port Townsend Chief Engineer - KPTZ El Jefe de Contenido - Port Townsend Film Festival Private Pilot-Single Engine Land | Airframe & Powerplant / Inspection Authorization On 2/5/18 3:48 AM, Andy Higginson wrote: This is probably going off at a slight tangent but I was looking at Ubiquiti EdgeRouters over the weekend. They might be an interesting option for getting things up and running for VPN work. It is often said that you should keep your office network and music network separate. However, if you are trying to access the Rivendell machines remotely, you need to have internet access to them, even if it is through a VPN. The Edgerouters (even the cheapest model the lite) have multiple subnets and routing on them. The lite comes with 3 ports - eth0 for the WAN, eth1 for LAN 192.168.101.x and eth2 for LAN 192.168.102.x. Now I don't know what routing it does between ports eth1 and eth2 but it does seem to me that you could use this to allow both of the station networks to access the internet via this router. It also has the ability to run a VPN as well so you should be able to access the Music network from the outside world. How well they run and how they would perform in this context is not something that I would know. However I would be interested if anyone has some input. https://www.ubnt.com/edgemax/edgerouter-lite/ https://www.smallnetbuilder.com/lanwan/lanwan-reviews/33111-ubiquiti-edgerouter-lite-revisited Of course, one of the things with getting a VPN up and running is that you could use this for storing a remote off site backup with a NAS drive. That's something for another discussion. Andy On Mon, 05 Feb 2018 10:06:45 + JAMES GREENLEE wrote Isn't this what the Server/Client model is all about? In our deployment, our main studio is located in another town from the owner and myself. There's a "server" at the main studio (which is also the active RDAirPlay host), and workstations at both my location and the owners location. All of our networks (two home locations, the main s
[RDD] RD Catch
I am trying to configure RD catch to look at a folder or Dropbox Account We have an internal server its a shared server. I get an error UrL not supported on the shared server * when I used the SMB// Local Address. - Error Supported Protocal * when I used the http// Local Address. - Invalid address * With DropBox it does Not do anything. Can any one tellme what is the proper naming convention it should be smb// Local address - how do you set up the wild card and the properwayto set up the file name in the RD Catch Thanks ___ Rivendell-dev mailing list Rivendell-dev@lists.rivendellaudio.org http://caspian.paravelsystems.com/mailman/listinfo/rivendell-dev
Re: [RDD] Still no sound from soundcard after video card swap
On Wed, 28 Feb 2018 11:06:46 -0500 Rich Gattie wrote: > Sorry for starting another thread.. but I have been trying to figure this > out and it's driving me mad... There are very good reasons for making backups. What I would do now, if I was you, is to remove the new super-whiz-bang and go back to the barely-adequate. Make it work, then copy the configs to a safe place. -- Cowboy There's two theories about arguing with a woman. Neither one works. ___ Rivendell-dev mailing list Rivendell-dev@lists.rivendellaudio.org http://caspian.paravelsystems.com/mailman/listinfo/rivendell-dev
Re: [RDD] Still no sound from soundcard after video card swap
On Wed, Feb 28, 2018 at 11:33 AM, Andy Higginson wrote: > Sorry if this is wrong. Just a few musings over this. > > 1) Could you please do an aplay -l for us. > 2) (this may be wrong), Rivendell does not run under the logged in user > but under the rivendell user. Therefore if something is under your home > directory, it is not a system wide thing (didn't quite come out right - > brain is tired). Therefore, you need to be running with the asound.conf > file in /etc. Have you tried running rdalsaconfig as a sudo user? > > Probably totally the wrong direction but with a shot. > > Andy > > > Yes, I did sudo rdalsaconfig, and the asound.conf file in /etc is empty.. And when it exits, it says... Home directory /home/mobbyg not ours. And I ran it as sudo from the /etc/ directory... Here is aplay -l aplay -l List of PLAYBACK Hardware Devices card 0: CA0106 [CA0106], device 0: ca0106 [CA0106] Subdevices: 0/1 Subdevice #0: subdevice #0 card 0: CA0106 [CA0106], device 1: ca0106 [CA0106] Subdevices: 1/1 Subdevice #0: subdevice #0 card 0: CA0106 [CA0106], device 2: ca0106 [CA0106] Subdevices: 1/1 Subdevice #0: subdevice #0 card 0: CA0106 [CA0106], device 3: ca0106 [CA0106] Subdevices: 1/1 Subdevice #0: subdevice #0 card 1: Audigy2 [SB Audigy 2 Value [SB0400]], device 0: emu10k1 [ADC Capture/Standard PCM Playback] Subdevices: 31/32 Subdevice #0: subdevice #0 Subdevice #1: subdevice #1 Subdevice #2: subdevice #2 Subdevice #3: subdevice #3 Subdevice #4: subdevice #4 Subdevice #5: subdevice #5 Subdevice #6: subdevice #6 Subdevice #7: subdevice #7 Subdevice #8: subdevice #8 Subdevice #9: subdevice #9 Subdevice #10: subdevice #10 Subdevice #11: subdevice #11 Subdevice #12: subdevice #12 Subdevice #13: subdevice #13 Subdevice #14: subdevice #14 Subdevice #15: subdevice #15 Subdevice #16: subdevice #16 Subdevice #17: subdevice #17 Subdevice #18: subdevice #18 Subdevice #19: subdevice #19 Subdevice #20: subdevice #20 Subdevice #21: subdevice #21 Subdevice #22: subdevice #22 Subdevice #23: subdevice #23 Subdevice #24: subdevice #24 Subdevice #25: subdevice #25 Subdevice #26: subdevice #26 Subdevice #27: subdevice #27 Subdevice #28: subdevice #28 Subdevice #29: subdevice #29 Subdevice #30: subdevice #30 Subdevice #31: subdevice #31 card 1: Audigy2 [SB Audigy 2 Value [SB0400]], device 2: emu10k1 efx [Multichannel Capture/PT Playback] Subdevices: 8/8 Subdevice #0: subdevice #0 Subdevice #1: subdevice #1 Subdevice #2: subdevice #2 Subdevice #3: subdevice #3 Subdevice #4: subdevice #4 Subdevice #5: subdevice #5 Subdevice #6: subdevice #6 Subdevice #7: subdevice #7 card 1: Audigy2 [SB Audigy 2 Value [SB0400]], device 3: emu10k1 [Multichannel Playback] Subdevices: 1/1 Subdevice #0: subdevice #0 -- -=:{ Rich Gattie, KB2MOB }:=- Email: mob...@gmail.com Blog: http://xjockalbanyny.com ___ Rivendell-dev mailing list Rivendell-dev@lists.rivendellaudio.org http://caspian.paravelsystems.com/mailman/listinfo/rivendell-dev
Re: [RDD] Still no sound from soundcard after video card swap
Sorry if this is wrong. Just a few musings over this. 1) Could you please do an aplay -l for us. 2) (this may be wrong), Rivendell does not run under the logged in user but under the rivendell user. Therefore if something is under your home directory, it is not a system wide thing (didn't quite come out right - brain is tired). Therefore, you need to be running with the asound.conf file in /etc. Have you tried running rdalsaconfig as a sudo user? Probably totally the wrong direction but with a shot. Andy On Wed, 28 Feb 2018 16:06:46 + Rich Gattiewrote Sorry for starting another thread.. but I have been trying to figure this out and it's driving me mad... Swapped out a 64MB video card for a 1G video card which has HDMI, it took over the audio. I figured out it was the HDMI and blacklisted the HDMI driver in /etc/modprobe.d/blacklist.conf: blacklist snd_hda_intel Now one of my 2 Soundblasters are working. Audigy SE (CA0106) and Audigy2 (emk10k1 I think is the driver) Anyways, I have everything enabled in rdalsaconfig, but the asound.conf file in /etc is empty... #Lines below here added for more than 1 soundcard uncomment as required # *** Start of Rivendell configuration generated by rdalsaconfig(1) *** # *** End of Rivendell configuration generated by rdalsaconfig(1) *** But I have cards in the asound.conf in my home directory... cat asound.conf pcm.rd0 { type hw card 0 } ctl.rd0 { type hw card 0 } #Lines below here added for more than 1 soundcard uncomment as required pcm.rd1 { type hw card 1 } ctl.rd1 { type hw card 1 } pcm.rd2 { type hw card 2 } ctl.rd2 { type hw card 2 } pcm.rd3 { type hw card 3 } ctl.rd3 { type hw card 3 } While the system sees only 1 input and 1 output on both cards, each is capable of multiple analouge outputs. I just cant remember how I did it and can't find my notes... but I digress.. The Audigy2 is able to play out as my stream is back up, but the SE is not working at all, which is the one I use in studio for production. Any suggestions on what I can try? Kinda feeling lost here... Thanks in advanced... -- -=:{ Rich Gattie, Host of Geek Show Radio }:=- -=:{ X1 - The Capital Region's Online Rock }:=- Email: mob...@gmail.com Blog: http://x1radio.net Stream: http://listen.x1radio.net ___ Rivendell-dev mailing list Rivendell-dev@lists.rivendellaudio.org http://caspian.paravelsystems.com/mailman/listinfo/rivendell-dev ___ Rivendell-dev mailing list Rivendell-dev@lists.rivendellaudio.org http://caspian.paravelsystems.com/mailman/listinfo/rivendell-dev
[RDD] Still no sound from soundcard after video card swap
Sorry for starting another thread.. but I have been trying to figure this out and it's driving me mad... Swapped out a 64MB video card for a 1G video card which has HDMI, it took over the audio. I figured out it was the HDMI and blacklisted the HDMI driver in /etc/modprobe.d/blacklist.conf: blacklist snd_hda_intel Now one of my 2 Soundblasters are working. Audigy SE (CA0106) and Audigy2 (emk10k1 I think is the driver) Anyways, I have everything enabled in rdalsaconfig, but the asound.conf file in /etc is empty... #Lines below here added for more than 1 soundcard uncomment as required # *** Start of Rivendell configuration generated by rdalsaconfig(1) *** # *** End of Rivendell configuration generated by rdalsaconfig(1) *** But I have cards in the asound.conf in my home directory... cat asound.conf pcm.rd0 { type hw card 0 } ctl.rd0 { type hw card 0 } #Lines below here added for more than 1 soundcard uncomment as required pcm.rd1 { type hw card 1 } ctl.rd1 { type hw card 1 } pcm.rd2 { type hw card 2 } ctl.rd2 { type hw card 2 } pcm.rd3 { type hw card 3 } ctl.rd3 { type hw card 3 } While the system sees only 1 input and 1 output on both cards, each is capable of multiple analouge outputs. I just cant remember how I did it and can't find my notes... but I digress.. The Audigy2 is able to play out as my stream is back up, but the SE is not working at all, which is the one I use in studio for production. Any suggestions on what I can try? Kinda feeling lost here... Thanks in advanced... -- -=:{ Rich Gattie, Host of Geek Show Radio }:=- -=:{ X1 - The Capital Region's Online Rock }:=- Email: mob...@gmail.com Blog: http://x1radio.net Stream: http://listen.x1radio.net ___ Rivendell-dev mailing list Rivendell-dev@lists.rivendellaudio.org http://caspian.paravelsystems.com/mailman/listinfo/rivendell-dev