Open Source

Getting snmpwalk to talk to snmpd on FreeBSD

1 Comment / FreeBSD, Open Source / By /

NOTE: If you are looking to configure net-mgmt/net-snmp for the first time, the latest article is Configuration of net-mgmt/net-snmp on FreeBSD. Contrary to all the examples I found, it’s not easy to get snmpwalk to communicate with snmpd. I am using the net-mgmt/net-snmp port with the default configuration options. It was installed with: pkg install net-mgmt/net-snmp This is the minimal configuration file, which should be placed at /usr/local/etc/snmp/snmpd.conf: rocommunity public When starting snmpd […]

Getting snmpwalk to talk to snmpd on FreeBSD Read More »

Bacula restore using a regex

Leave a Comment / Backups, Bacula / By /

Short version: I used this regex when restoring to a jail on the slocum server: !/\.zfs/snapshot/snapshot-for-backup/!/! Background Today I did this when setting up an ssh-key on a new host: ssh-add -L > ~/.ssh/authorized_keys Oh. That should have been >>. Restoring During the Bacula restore, I need to change this path: /usr/jails/mydev/.zfs/snapshot/snapshot-for-backup/usr/home/dan/.ssh/ to /usr/jails/mydev/usr/home/dan/.ssh/ That is, I need to remove this from the path: .zfs/snapshot/snapshot-for-backup For background on this backup strategy using jails,

Bacula restore using a regex Read More »

rndc: neither /usr/local/etc/rndc.conf nor /usr/local/etc/rndc.key was found

Leave a Comment / DNS, FreeBSD, Open Source / By /

In this post, I’m using bind98-9.8.8 from ports on FreeBSD 9.3, in case that helps you. Today, I was adjusting the pgcon.org domain as part of the move from the old server to the new server. This move would also see the website updated to PGCon 2015 and the use of Ansible for configuring that new server. Reloading named When I restarted named, this error appeared: $ sudo service named reload rndc: neither

rndc: neither /usr/local/etc/rndc.conf nor /usr/local/etc/rndc.key was found Read More »

gelt

Leave a Comment / File Systems, FreeBSD, Open Source / By /

For future reference. This server formed the backbone of just about everything I did. It hosted about 13 domains. Sadly, it was i386 and would not do for ZFS. Copyright (c) 1992-2014 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. FreeBSD is a registered trademark of The FreeBSD Foundation. FreeBSD 9.3-RELEASE-p2 #0: Mon Sep 15 16:23:12

gelt Read More »

When ssh and ansible play poorly together

5 Comments / ansible, Jails, Open Source, ssh / By /

Last night, this worked fine. This morning, it fails: # ansible-playbook jail-mailjail.yml PLAY [mailjails] ************************************************************** GATHERING FACTS *************************************************************** failed: [mailjail.example.org] => {“failed”: true, “parsed”: false} invalid output was: Sorry, try again. Sorry, try again. Sorry, try again. sudo: 3 incorrect password attempts TASK: [pkg | install pkg] ***************************************************** FATAL: no hosts matched or all hosts have already failed — aborting PLAY RECAP ******************************************************************** to retry, use: –limit @/root/jail-mailjail.retry mailjail.example.org : ok=0 changed=0 unreachable=0

When ssh and ansible play poorly together Read More »

Cunning plan for upgrading jails

Leave a Comment / ezjail, FreeBSD, Jails, Open Source / By /

After a lengthy Twitter discussion this afternoon, and a post to the forums, I decided to alter my ezjail basejail. The issue: when you update the basejail, /etc/rc.d and /etc/periodic do not get updated. This is by design. I wanted those directories to get updated. So I have changed the basejail. I will outline first, and go into more detail after I have changed all the jails On the jail host: NOTE: I

Cunning plan for upgrading jails Read More »

Getting logstash-forwarder working

6 Comments / logstash / By /

I’m doing some work with logstash-forwarder as part of a consolidation effort to get all the logs into one place, and using logstash to put them into Elasticsearch. logstash-fowarder requires the Go programming language, and that will be our first step. Installing go, the programming language I am assuming you are installing go at /usr/local; adjust the path to suit. I am installing from source because older versions of go will not work.

Getting logstash-forwarder working Read More »

Are FreeBSD jails being shutdown properly?

1 Comment / FreeBSD, Open Source / By /

This was done on FreeBSD 9.2-RELEASE-p10. After my boss told me about losing qmail logs from a jail some time ago when a server was shutdown, I started looking at some tests to ensure that jails are shutdown properly. I am beginning to suspect they are not. Consider this test. I added this to /usr/local/etc/rc.d/nullmailer in the jail named ‘testing’: echo $(date) $0 $1 >> /var/log/shutdown.log And then did this on the jail

Are FreeBSD jails being shutdown properly? Read More »

ssh key management

Leave a Comment / ansible / By /

Background I was asked to comment on the following: Our software is built and maintained by about 20 engineers, and runs in production on dozens of servers in a remote data center. One problem we frequently face is identity and access management on these servers – our engineers occasionally need to directly access the servers (via SSH) to debug an issue or perform maintenance, but often find that their key is not installed

ssh key management Read More »

Want 8.3 in a poudriere jail? Nope.

Leave a Comment / Jails, poudriere / By /

I tried this today, creating an 8.3-RELEASE jail for poudriere: $ sudo poudriere jail -c -v 8.3-RELEASE -j releng_8_3 ====>> Creating releng_8_3 fs… done ====>> Fetching sets for FreeBSD 8.3-RELEASE amd64 fetch: ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/8.3-RELEASE/base/CHECKSUM.SHA256: File unavailable (e.g., file not found, no access) fetch: ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/8.3-RELEASE/base/CHECKSUM.SHA256: File unavailable (e.g., file not found, no access) ====>> Error: Failed to fetch from ftp://ftp.freebsd.org/pub/FreeBSD/releases/amd64/8.3-RELEASE/base/CHECKSUM.SHA256 ====>> Error while creating jail, cleaning up. ====>> Removing releng_8_3 jail… done It failed. But

Want 8.3 in a poudriere jail? Nope. Read More »

Scroll to Top