Unix Revolution

resolution: update your running config on your firewall. See below issue: I changed my primary internal DNS to run on a RHEL 6.2 system. After that there were noticeable lags occasionally when I would browse.  Upon review of the syslog I noticed messages like the following; Jan 31 22:44:41 zion named[26381]: success resolving 'p03-bookmarks.icloud.com/A' (in 'icloud.com'?) after reducing the advertised EDNS UDP packet size to 512 octets I happen to use a Cisco ASA 5505 and I did some digging around. firewall(config)# show run | grep mess   message-length maximum 512 So - it turns out the value is set as part of a policy-map.  Let's tune it. firewall(config)# policy-map type inspect dns preset_dns_map firewall(config-pmap)# parameters firewall(config-pmap-p)# no message-length maximum 512 firewall(config-pmap-p)# message-length maximum 4096 firewall(config-pmap-p)#  firewall(config-pmap-p)# write mem Building configuration... Cryptochecks...

Solution :  remove the up2date configuration, run rhn_register, then select the certificate at /usr/share/rhn/RHNS-CA-CERT Issue : When I first installed RHEL on my laptop I registered it to the Satellite I have at my house, behind a firewall.  I have a problem leaving my own Satellite exposed to the Internet as if someone found it, they could poach software off the thing whenever they like.  Normally having my laptop reg'd to my own Satellite is fine as I am home quite often.  However, today I had a need to install telnet and I am at my office.  I could open the firewall back to my house from the office, but I instead decided to register my laptop back to Red Hat since I have available entitlements. # rpm -qa | grep rhn # rpm -e rhn-org-trusted-ssl-cert-1.0-1.noarch # cd /etc/sysconfig/rhn; mv up2date up2date.previous # rhn_register Then tell the app to use the cert located at /usr/share/rhn/RHNS-CA-CERT

Solution : update /etc/ssh/sshd_config change: #GSSAPIAuthentication no GSSAPIAuthentication yes to: GSSAPIAuthentication no #GSSAPIAuthentication yes Issue : my system which I had converted from VMware ESX to KVM seemed to have a quite noticeable pause when I would try to connect from a remote machine.  There were a number of other changes that had taken place during that migration as well, but I had validated all DNS, routes, etc.. were still all correct. I then ssh'd to my server using -v -v and discovered it would hang debug1: Next authentication method: gssapi-with-mic debug1: An invalid name was supplied Cannot determine realm for numeric host address I did some research and discovered some people had suggested the fix above.  I now need to research what the potential issues are in doing such a thing.

Solution :  create a /boot/EFI partition type EFI (vfat) around 200m, along with your /boot type ext4 Issue : I had seen quite a bit of rumblings regarding EFI and Linux.  I was actually hesitant to even attempt the install because the experience sounded horrific. I had read somewhere recently that they were going to allow booting from an LVM-based /boot.  That should be good.

solution : run my stupid script ;-) issue : At my small company we maintain our own Drupal hosting and content (what a pain).  Anyhow - I suggested that they utilize a "promotion" methodology whereas they do their dev/testing in a DEV/TEST environment, and then I could push the content from one environment to the other. In this case, I have 2 environments, 2 vhosts, 2 databases, 2 etc... test   and    www If you run this script, it generates the command to run to go through the activity. #!/bin/bash # 20120224 - I don't need a script id? TODAY=`date +%Y%m%d` BACKUPDIR=/backups/${TODAY} clear echo "" echo "You need to cut-and-paste the following output into a terminal to complete the promotion" echo "########################################################################################" echo "" echo "mkdir -p ${BACKUPDIR}" # THESE ARE JUST POINTERS TO MAKE IT EASY TO UPDATE WHICH ENVIRONMENT  # ...

Solution : append  floppy.allowed_drive_mask=0  to the end of the boot string (or kickstart config) Problem : apparently the initrd still includes support floppy devices and the installer will hang attempting to configure one.  Personally, I think the behavior should be the opposite, an installer should not attempt to use a floppy unless you specifically append a floppy.allow = 1. This apparently occurs with a number of Linux variants and versions.  Red Hat Enterpise Linux, Fedora, Ubuntu. To determine if this is your issue, start the installation process (from kickstart or DVD) when it seems it is about to transform to the GUI, it flashes to a blinking cursor about mid-screen on the left.  Press ATL-F2 and you will see the following: end_request: I/O error, dev fd0, sector 0 end_request: I/O error, dev fd0, sector 0 Buffer I/O error on device fd0, logical block 0 reboot, and when the first screen appears, press tab and after > vmlinuz initrd=in...

Solution : yum install ntfs-3g Issue :  I would like to access the NTFS partition on my laptop while I am running RHEL 6.2 Workstation.  I believe Fedora had this all enabled from a standard build.  RHEL did not, but it was not a big deal to work through it.  There are probably thousands of posts on this topic.  But, this one covers exactly what I need. [jradtke@neo ~]$sudo  mkdir -p /windows/C -- Add the following to /etc/fstab # Windows Partition /dev/sda2       /windows/C              ntfs    auto,rw,umask=0000,uid=2025,gid=2025,fmask=117,dmask=007,defaults 0 0 [jradtke@neo ~]$ touch /windows/C/test [jradtke@neo ~]$ ls -l /windows/C/test  -rw-rw----. 1 jradtke jradtke 0 Jan 11 20:34 /windows/C/test

Solution :  Install Rhythmbox and the supporting packages. Issue :  MP3 support is not enabled due to licensing on RHE 6. I recently reconstructed my laptop host using RHEL 6.3 x86_64.  Things went much more smoothly this time and I have a rather usable desktop environment now ;-) rhn-channel -v -u rhnuser@example.com -a -c rhel-x86_64-workstation-optional-6 -a -c rhel-x86_64-workstation-supplementary-6 # NOTE: you will most likely need to find out which version of the EPEL noarch.rpm is out there.  6.5 will be out of date.  rpm -Uvh http://download.fedoraproject.org/pub/epel/6/x86_64/epel-release-6-5.noarch.rpm yum -y install yum-plugin-priorities rpm -Uvh http://download1.rpmfusion.org/free/el/updates/testing/6/x86_64/rpmfusion-free-release-6-0.1.noarch.rpm http://download1.rpmfusion.org/nonfree/el/updates/testing/6/i386/rpmfusion-nonfree-release-6-0.1.noarch.rpm # MISC (mostly audio-type stuff) yum -y install id3lib mesa-demos mesa-li...

I have my "play" network where I test out a bunch of stuff.  I have a satellite server for testing which handles the DHCP stuff for me.  I just broke that portion of my lab, but I needed to test out Tim Beatty's Beacen product using PXE, a SunRay station. This configuration would not likely be used in a production environment, but I wanted to document how you add "custom" dhcp options (in this case Option 194). PXE, SunRay, Beacen dhcpd.conf #deny unknown-clients; # BEGIN - SunRay stuff option space SunRay; option SunRay.AuthSrvr code 21 = ip-address; option SunRay.AuthSrvr 10.10.31.104; option SunRay.FWSrvr code 31 = ip-address; option SunRay.FWSrvr 10.10.31.104; option SunRay.NewTVer code 23 = text; option SunRay.NewTVer "3.0_51,REV=2004.11.10.16.18"; option SunRay.Intf code 33 = text; option SunRay.Intf "eth0"; option SunRay.LogHost code 24 = ip-address; option SunRay.LogHost 10.10.31.103; option SunRay.LogKern code 2...

Solution :  I tried to use the Discrete video adapter (non-Optimus) and load the akmod-nvidia driver.  This, however, does not fix the problem :-(  Install the Compiz goodness and run that as your Display Manager.  I actually don't mind Gnome3 now.... bordering on almost liking it.  I certainly hope they get their stuff together soon. # Install Compiz yum -y install compiz.x86_64 compiz-bcop.noarch compiz-devel.x86_64 compiz-gconf.x86_64 compiz-gnome.x86_64 compiz-gtk.x86_64 compiz-manager.noarch compiz-plugins-main.x86_64 compiz-plugins-main-devel.x86_64 compiz-plugins-main-gconf.x86_64 compizconfig-backend-gconf.x86_64 compizconfig-python.x86_64 libcompizconfig.x86_64 libcompizconfig-devel.x86_64 UPDATE :  The problems continues using the Nvidia driver and discrete display adapter.  Unfortunately I can not handle this type of issue on my primary workstation and therefore I am migrating to RHEL 6.2 workstation. Issue :  My system...

Solution:  freesco (free Cisco - I guess?) Issue:  When I am working on some topology design and especially when using AD... I like to have my development area segmented from anything else that it may impact.  On my laptop I use DHCP on either em1 or wlan0 with your standard 192.x.x.x address. To segment my development I use a "Host-Only" network, which has changed a bit with VMware Workstation 8 for Linux (not sure about the Windows version).  They now offer Host-Only and another option "LAN Segment".  I'm not sure what the limitation for these LAN Segments are.  But I currently have 3 configured.  I like this option as I believe it will be extremely useful testing cluster configs (for the LLT networks). When I use freeSCO - I do the following: download the freeSCO source and untar it (currently 0.4.3) Create a virtual machine using "Other Linux 2.2.x Kernel" and 512 MB (proceed with defaults for the remainder) remove the hard disk, USB, pri...

A few links that I have used in my venture to implement a Novell eDirectory 8.8 and GroupWise 8 deployment. http://support.novell.com/techcenter/articles/ana20000502.html