Displaying 20 results from an estimated 6000 matches similar to: "Tinc can't connect to names defined in /etc/hosts"
2017 Mar 13
0
Tinc can't connect to names defined in /etc/hosts
On Mon, Mar 13, 2017 at 01:20:11PM +0100, Niklas Hambüchen wrote:
> I have a host name defined in /etc/hosts (say "1.2.3.4 host1") that
> resolves via that but not via DNS; consequently pinging and netcatting
> to it works fine.
>
> When I try to use that in a tinc host definition like "Address = host1",
> tinc 1.1 tells me
>
> Error looking up
2017 Jan 27
1
Disallow binding via tinc
That would probably work, too; it's harder to configure though and
easier to get wrong.
If I could avoid having the tun0, that would trivially solve the problem.
On 27/01/17 09:41, Azul wrote:
> Why not just firewall incoming traffic on the clients?
>
>
> On 27 Jan 2017 8:37 am, "Niklas Hambüchen" <mail at nh2.me
> <mailto:mail at nh2.me>> wrote:
>
2017 Jan 27
4
Disallow binding via tinc
I'm looking for a way to add some (Linux) participants into my tinc
network, but I want to protect them from accidentally binding a port so
that it's accessible via tinc.
For example, `nc -l` by default listens to all interfaces.
Similarly, some software (I think mongodb < 2.6 was among those) bind to
all interfaces AND allow unauthenticated access that can do remote code
execution,
2012 Feb 06
2
Puppet kick class option error
Hi,
I''m trying to puppet kick with class option.
Pupper Master: puppetmaster.example.com
Puppet Client1: host1.example.net
Puppet Client2: host2.example.net
But I get this error.
---
[root@puppetmaster ~]# puppet kick --class test --debug
test: host1.example.net.example.com, host2.example.net.example.com
Triggering host1.example.net.example.com,
host2.example.net.example.com
Host
2017 May 17
3
Improving packets/sec and data rate - v1.0.24
Niklas - Thanks! Yeah, your Github issue was very useful for me to
understand what is probably causing our issue (the syscall chain done on
every UDP packet). Very interesting that you're able to see around 90%
of a Gig line on bare metal. Were you ever able to make any further
progress on adjusting Tinc based on the investigation in
https://github.com/gsliepen/tinc/issues/110 ?
Martin -
2017 May 18
1
Improving packets/sec and data rate - v1.0.24
I noticed a large performance boost both on bare metal and in vps instances
by turning on kernel routing in the tinc config, and using full host
declerations for routs rather than dumping things to the tun interface
ambiguously.
"Forwarding = kernel"
ip route add 1.2.3.4 via 4.3.2.1 dev tun
-instead of-
ip route add 1.2.3.4 dev tun
On May 17, 2017 3:10 PM, "Niklas Hambüchen"
2013 Jun 08
4
"Virtual hosts" for ssh
It'd be very cool if ssh supported something like Apache "virtual hosts". This would make it much more viable to host multiple installs of git on the same server, for example.
More details:
On the remote server, ssh already sets some environment variables:
> printenv | grep SSH
SSH_CLIENT=192.168.1.18 50945 22
SSH_TTY=/dev/pts/1
SSH_CONNECTION=192.168.1.18 50945 192.168.1.1 22
2009 Dec 03
2
Centos 4.7 /var/log/messages file kill process
We have DELL 2650 server and I found recently /var/log/messages have following messages continue pop-up:
===========================================
Dec 3 15:47:06 HOST1 kernel: Free pages: 17816kB (1664kB HighMem)
Dec 3 15:47:06 HOST1 kernel: Active:7463815 inactive:656000 dirty:0 writeback:0 unstable:0 free:4454 slab:119979 mapped:730440 pagetables:63277
Dec 3 15:47:06 HOST1 kernel:
2008 Jan 16
2
mysterious crash of a particular worker
Hi,
I am using the latest checkout from backgroundrb release 1.0.1. I
have a worker called status_checker that periodically (every minute)
checks the status of certain hosts over the network. It works fine at
the beginning but after a while the worker will mysteriously
disappear and stop working. I have other workers running but they do
not disappear like this worker does.
These are
2007 Dec 19
2
$HOME/.ssh/config and host/hostname resolution how-to?
Hiya,
What is the easiest way of looking up a hostname to see if it exists,
taking into account the .ssh/config file?
If i have an entry in my file
host host1
hostname server.domain.name
then usual OS calls won't recognise the 'alias' host1. So, i need to
make a call via ssh somehow to check if the name resolves without
actually initiating a full blown 'expensive'
2014 Apr 10
2
Re: Help with understanding and solving snapshot problem
Hello
Thanks heaps for your suggestions. responses inline.
On 10 Apr 2014, at 10:34 pm, Eric Blake <eblake@rehost1hat.com> wrote:
>
> [ … ]
> [Can you convince your mailer to wrap long lines? It makes it easier
> for other readers]
I’ll try and keep the lines short. I don’t see any obvious setting to change the wrap.
>>
>> Using RHEL 6.4 and libvirt version
2014 Apr 10
2
Help with understanding and solving snapshot problem
Hello
Fairly new to libvirt. I’m hoping to both solve a problem with this question as well as learn more detail about how libvirt works.
Using RHEL 6.4 and libvirt version is 0.10.2 and qemu-img version is 0.12.1.2
Using virt-manager I created a VM. Nothing unusual as far as I can see. I then added a disk. So I have a second virtio based volume which the guest then mounts as a separate
2001 Aug 28
2
[patch] known hosts with ports
Hello. We are currently installing a new firewall, and would like to use a
mixture of NAT and port mapping to have a single "gateway" host address
which exposes a range of open ports, each of which maps to sshd of a
different host in our internal network (e.g. ssh.jesus.cam.ac.uk on port
6789 maps to internal host1 port 22 whereas ssh.jesus.cam.ac.uk on port 6790
maps to internal
2015 Mar 20
1
help with tinc unstable state
I am using tinc to connect together VPCs in AWS across multiple regions and
accounts to provide secure communication. For the most part, it works
great. A few times, I have seen issues where something got into an
unstable state that didn't seem to resolve itself. Shutting down tinc on
all hosts and restarting seemed to do the trick, but I'd like to see if
there is something that I can
2007 Nov 19
1
Detecting reason for rsync errors
Hello guys!
I'm doing a middle scale backup job using ccollect [0], which uses
rsyn, with about 50 servers, each about 1-10 GiB changes per day and have
some problems, that servers do not finish their backup completly:
[host1.backup] Read from remote host host1.backup: Connection reset by peer
[host1.backup] rsync: connection unexpectedly closed (41306592 bytes received so far) [receiver]
2002 Feb 02
2
disabling the authentication agent?
Is there any way to disable the authentication agent globally? I'm not
quite sure I understand it's purpose. Here is some background info:
workstation: Key pair (dsa).
host1: No key pair. No authorized_keys.
host2: Has my workstation's key in authorized_keys.
I ssh to host1 from my workstation.
I ssh to host2 from host1. I am asked for a password. Good.
I ssh to host2 from my
2017 Aug 05
1
Tinc encryption with intermediate hosts
Hi
I have built a few networks with tinc and feel quite familiar with it.
But now I have got a scenario where I can't clearly figure out how
things work with tinc:
I have two nodes, both of them are in different private networks and
visible only to different servers, which have got an internal and an
external IP.
So my topology looks like this:
[n1]->[host1]<-->[host2]<-[n2]
2009 Aug 20
1
what is RAID "background initialization" ??
we have DELL server (CENTOS 4.X) with MD1000 connect on it. One of Raid5 (internal 4 disks) has hard disk bad and I replace it. I saw /var/log/messages have following entry:
=======================================
Aug 18 15:33:20 host1 Server Administrator: Storage Service EventID: 2049 Array disk removed: Array Disk 0:11 Controller 1, Connector 0
Aug 18 15:34:09 host1 Server Administrator:
2019 Mar 28
2
NFSv4: Using fsid=0 but *not* exporting the root filesystem
Hi,
I would like to use the NFSv4 ability to create a "root" filesystem with
fsid=0, so that I don't have to refer to the whole path of the exported
filesystem when I mount it. However I do *not* want this root
filesystem to be mountable by any host. Is that possible and how?
E.g
Filesystem:
/exports/data1
/exports/data2
/exports/data3
/etc/exports:
/exports
2008 Oct 02
2
some errors on 1.1.3
Hi,
we recently upgraded dovecot from 1.0.5 to 1.1.3+latest patches. After the
upgrade I saw some errors in the logs and I'm not sure whether they're a
cause for concern. Our setup is 2 servers running openSUSE 11.0 and a NetApp
Filer as storage backend. Following is the config:
protocols: imap imaps pop3 pop3s
login_dir: /var/run/dovecot/login
login_executable(default):