The Problem System exhibits some performance degradation. Checking with netstat shows very large (and rising) numbers of “packet reassembles failed” similar to: # netstat -s | fgrep reassembles 353357449 packet reassembles failed 353359152 packet reassembles failed 353360314 packet reassembles failed 353361547 packet reassembles failed 353363020 packet reassembles failed 353364064 packet reassembles failed The Solution In […]
Archives for September 2019
Linux Interview Questions – Linux Printing (CUPS)
This post covers the most often asked how-to questions about Linux printing support. What tool provides Linux printing support? CUPS, the Common Unix Printing System What kinds of printers can be attached to a Linux system? Linux support printers which are connected using any of the following: Locally Attached Printer (LPT) through a local parallel […]
Server Application Getting “connection refused” From Remote Servers [due to firewalld or iptables] – CentOS/RHEL 7
The Problem An application is getting “connection refused” from other servers. The application is accessible from localhost and also it listens to the expected port. The Solution Firewall on the local server is dropping inbound connection attempts from other servers. Note: By default, CentOS/RHEL 7 uses the FIREWALLD service to manage the IPTABLES rules. The […]
How to make CentOS/RHEL 7 FIPS 140-2 compliant
To make CentOS/RHEL 7 compliant with the Federal Information Processing Standard Publication (FIPS) 140-2, some changes are needed to ensure that the certified cryptographic modules are used and that your system (kernel and userspace) is in FIPS mode. Pre-requisites 1. Confirm that the current openssl version supports fips: # openssl version OpenSSL 1.0.1e-fips 11 Feb […]
How to Configure Remote Rsyslog To Accept TLS and Non-TLS in CentOS/RHEL
This post will show How to configure a CentOS/RHEL system to accept remote log messages using TLS and non TLS only. Let’s say we have following servers. Rsyslog server with TLS and non TLS : syslog-server.geeklab.com Client TLS : syslog-tls.geeklab.com Client Non TLS: syslog-non-tls.geeklab.com 1. Use the following guide to setup the TLS on rsyslog-server […]
How to add new host entry in /etc/hosts when a docker container is run
This post shows how to add host-entries onto /etc/hosts on docker container when it is run. For the purpose of this post, we are using CentOS/RHEL 7 host. But this should work on any Linux host capable of running latest docker versions. Generally speaking, /etc/hosts file can not be modified before running the docker container. […]
How To Create Virtual Data Optimizer(VD0) in CentOS/RHEL 7 and 8
Virtual Data Optimizer (VDO) is a block virtualization technology that allows you to easily create compressed and deduplicated pools of block storage. This post outlines steps to create Virtual Data Optimizer(VD0) filesystem in CentOS/RHEL 8 systems. 1. Install VDO using dnf or yum. # dnf install install vdo Verify the package installation: # rpm -qa […]
How To Create/Remove and Mount a Stratis Filesystem in CentOS/RHEL 8
“stratis” is the new volume manager introduced in the CentOS/RHEL 8 release. This post outlines steps to create or remove a new stratis filesystem in CentOS/RHEL 8 system. We will also see how to mount and umount a stratis filesystem in this post. Creating and mounting a stratis filesystem 1. Install Stratis packages: # rpm […]
How to disable FIPS mode on CentOS/RHEL 7
What is FIPS Compliance? The Federal Information Processing Standards (FIPS) are standards specified by the United States Government for approving cryptographic software. The National Institute of Standards and Technology (NIST) has so far issued the FIPS 140-1 and FIPS 140-2 standards, and FIPS PUB 140-2 is the standard for “Security Requirements for Cryptographic Modules”. The […]
How to Create a tmpfs Filesystem in CentOS/RHEL
tmpfs are not really used as filesystems, but just take advantage of the filesystem abstraction. Applications can do I/O on a tmpfs. tmpfs functions reside purely in memory. Creating a tmpfs special filesystem 1. Mount a new instance of tmpfs: # mkdir /mnt/tmpfs # mount -t tmpfs none /mnt/tmpfs Note: Check how much space the […]