dduck's playground for blank html/css like back in the 90s
it is for privat use and the
do not F.A.Q. a duck
offline printer on windows server
printers of windows server will shown as offline
printers of windows server will shown as offline
snmp problem
text
solution
1. solution
net stop spooler
2. solution
switch off/on the "snmp"-option in the printer configuration.
source
text
Entgendern von Linux Cinnamon Desktop
situation
Gedschänderte Systemeinträge
analysis
Textbearbeitung innerhalb der deutschen Desktop übersetzung.
/usr/share/...
solution
bearbeitung der .mo dateien im share
installation gettext, getranslatore
source
talkAI / Suchen
MS Windows License Key
not readable license key
read the ms windows license key under linux from facility
analysis
read the ms windows license key under linux from facility
solution
read facility container with cat tool under Linux
cat /sys/firmware/acpi/tables/MSDM
source
https://www.cyberciti.biz/faq/linux-find-windows-10-oem-product-key-command/
Delete User Profile Windows or Temporary User Profile
situation
Delete User Profile Windows or Temporary User Profile
analysis
MS Windows create a backup profile of a userprofile. Named like ...Name_bak
solution
find user profiles in
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList"
C:\WINDOWS\System32\config
delete the key with regedit first and then the user folder with your favorite LinuxOS.
source
https://superuser.com/questions/567945/modifying-windows-registry-from-within-linux
https://log-it.tech/2019/05/15/editing-windows-registry-entrieshive-from-linux/
https://www.windows-faq.de/2017/10/02/windows-user-profile-in-der-registry-loeschen/
libreNMS php composer error
situation
after disconnect from isci-hdd to his runnig server. the librenms server show php composer error.
analysis
hours later in the web ...
you can find different or similar solutions but ...
... what they all don't tell you is (as far as I know) that you have to enter the composer command as a librenms user.
solution
connect to th librenms server per ssh
change to librenms-user
librenms@linbrenms: su librenms
librenms@linbrenms: composer global update
librenms@linbrenms: composer dump-autoload
source
-
Windows Print To PDF
situation
no possibly to change resolution / size of output
analysis
-
solution
C:\Windows\System32\spool\V4Dirs\C37144D0-7732-4FAB-A2AE-03A294610669
69b8a4a.gpd pdc.xml
source
https://superuser.com/questions/1151957/how-to-reduce-file-size-produced-by-microsoft-print-to-pdf#1533699
https://superuser.com/questions/1151957/how-to-reduce-file-size-produced-by-microsoft-print-to-pdf
https://franklinheath.co.uk/2015/08/29/custom-page-sizes-for-microsoft-print-to-pdf/
https://answers.microsoft.com/en-us/windows/forum/windows_10-hardware/microsoft-print-to-pdf-custom-paper-sizes-possible/90ed3d48-1ece-4ca5-8d3b-ff0af24a7b37
https://answers.microsoft.com/en-us/windows/forum/all/how-to-reduce-file-size-when-print-to-pdf/6dd3505d-9b2f-44c3-9902-af684dcdd5ac
Windows Office Key License
situation
read and set license key for office 2019
analysis
solution
open the cmd- or ps-shell as admin
call the command below
for office 32bit
>>request of installed eky<<
c:\>cscript C:\Program Files (x86)\Microsoft Office\Office16\OSPP.VBS /dstatus
>>delete the installed key<<
c:\>cscript C:\Program Files (x86)\Microsoft Office\Office16\OSPP.VBS /unpkey:KHGM9
>>set the new key<<
c:\>cscript C:\Program Files (x86)\Microsoft Office\Office16\OSPP.VBS /inpkey:
for office 64bit version
office64 open cmd as admin
>>request the installed key<<
cscript "C:\Program Files\Microsoft Office\Office16\OSPP.VBS /dstatus
>>delete the installed key<<
cscript "C:\Program Files\Microsoft Office\Office16\OSPP.VBS /unpkey:KHGM9
>>set the new ey<<
cscript "C:\Program Files\Microsoft Office\Office16\OSPP.VBS /inpkey:
>>hint<<
change the directory using
[host]: PS C:\> cd 'C:\Program Files\Microsoft Office\Office16\'
[host]: PS C:\Program Files\Microsoft Office\Office16> dir
Verzeichnis: C:\Program Files\Microsoft Office\Office16
Mode LastWriteTime Length Name
---- ------------- ------ ----
-a---- 01.02.2002 18:02 174528 OSPP.HTM
-a---- 01.02.2002 18:02 105198 OSPP.VBS
-a---- 01.02.2002 18:02 198992 OSPPREARM.EXE
-a---- 01.02.2002 18:02 36336 SLERROR.XML
-a---- 01.02.2002 18:02 20350 vNextDiag.ps1
[host]: PS C:\Program Files\Microsoft Office\Office16>cscript .\ospp.vbs
source
-
Chrome without print menu
situation
Windows10
print menu dismatch the default print settings of windows
analysis
print menu dismatch the default print settings of window
solution
edit google chrome shortcuts and use follow commands
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --kiosk-printing --disable-print-preview
source
https://www.maketecheasier.com/enable-disable-google-chrome-print-preview/
delete and create partition on freeBSD
situation
In the process of installing freenas could not remove the partition of the system disk. it give an error "writing not permitted ont the disk /dev/dxx".
analysis
solution
Jump back in the freenas install console menu and select the "shell".
user@server[~]# geom disk list
user@server[~]# gpart show da12
user@server[~]# gpart destroy da12
user@server[~]# gpart create gpt
source
https://www.freebsd.org/cgi/man.cgi?query=geom
https://forums.freebsd.org/threads/gpart-cheatsheet-wiping-drives-partitioning-formating.45411/
https://www.unix.com/man-page/FreeBSD/8/GPART/
https://www.cyberciti.biz/faq/freebsd-hard-disk-information/
delete and create partition on MSWindows
situation
cleaning a windows hdd bevor reinstalling or usb stick
analysis
solution
Datentr�ger |
### |
Status |
Gr��e |
Frei |
Dyn |
GPT |
--------------- |
--- |
------------- |
------- |
------- |
--- |
--- |
Datentr�ger |
0 |
Online |
1863 GB |
1024 KB |
|
* |
Datentr�ger |
1 |
Online |
476 GB |
1024 KB |
|
* |
DISKPART> select disk 1 (disk number)
source
https://docs.microsoft.com/en-us/windows-hardware/manufacture/desktop/windows-setup-installing-using-the-mbr-or-gpt-partition-style
Copy VMware and Downgrad
moving VMware machines from one host and downgrade
I had to move different VMachines to another host.
3 centos machines OTRS, Nextcloud, MariaDB
1 Debian Observer (Turnkey)
analysis
1. moving over net
2. downgrade from 7.0 to 6.5
solution
1. connect both VM-Ware hosts to the same iSCSi volume on freenas.
2. stop the machines
3. copy the whole directorys from one machine to the connect storage folder
4. connect per ssh to the VM-Ware host and edit the "vi *.vmx" file. Searching "/HW.v"
.encoding = "UTF-8"
config.version = "8"
virtualHW.version = "17"
vmci0.present = "TRUE"
floppy0.present = "FALSE"
numvcpus = "2"
memSize = "8192"
change the "17" to "13"
5. Go to "Create/Register" on the VMware webUI.
"Register an existing virtual machine"
"Select one ore more virtual machines, a datastore or a directory"
source
https://tylermade.net/2018/04/25/how-to-downgrade-virtual-machine-hardware-version-vmware/
https://www.altaro.com/vmware/4-ways-to-downgrade-the-vm-hardware-version/
https://kb.vmware.com/s/article/1003746
ZFS Command Reference
situation
text
analysis
text
solution
ZFS command line reference (Cheat sheet)
Pool Related Commands
# zpool create datapool c0t0d0 Create a basic pool named datapool
# zpool create -f datapool c0t0d0 Force the creation of a pool
# zpool create -m /data datapool c0t0d0 Create a pool with a different mount point than the default.
# zpool create datapool raidz c3t0d0 c3t1d0 c3t2d0 Create RAID-Z vdev pool
# zpool add datapool raidz c4t0d0 c4t1d0 c4t2d0 Add RAID-Z vdev to pool datapool
# zpool create datapool raidz1 c0t0d0 c0t1d0 c0t2d0 c0t3d0 c0t4d0 c0t5d0 Create RAID-Z1 pool
# zpool create datapool raidz2 c0t0d0 c0t1d0 c0t2d0 c0t3d0 c0t4d0 c0t5d0 Create RAID-Z2 pool
# zpool create datapool mirror c0t0d0 c0t5d0 Mirror c0t0d0 to c0t5d0
# zpool create datapool mirror c0t0d0 c0t5d0 mirror c0t2d0 c0t4d0 disk c0t0d0 is mirrored with c0t5d0 and disk c0t2d0 is mirrored withc0t4d0
# zpool add datapool mirror c3t0d0 c3t1d0 Add new mirrored vdev to datapool
# zpool add datapool spare c1t3d0 Add spare device c1t3d0 to the datapool
## zpool create -n geekpool c1t3d0 Do a dry run on pool creation
Show Pool Information
# zpool status -x Show pool status
# zpool status -v datapool Show individual pool status in verbose mode
# zpool list Show all the pools
# zpool list -o name,size Show particular properties of all the pools (here, name and size)
# zpool list -Ho name Show all pools without headers and columns
File-system/Volume related commands
# zfs create datapool/fs1 Create file-system fs1 under datapool
# zfs create -V 1gb datapool/vol01 Create 1 GB volume (Block device) in datapool
# zfs destroy -r datapool destroy datapool and all datasets under it.
# zfs destroy -fr datapool/data destroy file-system or volume (data) and all related snapshots
Set ZFS file system properties
# zfs set quota=1G datapool/fs1 Set quota of 1 GB on filesystem fs1
# zfs set reservation=1G datapool/fs1 Set Reservation of 1 GB on filesystem fs1
# zfs set mountpoint=legacy datapool/fs1 Disable ZFS auto mounting and enable mounting through /etc/vfstab.
# zfs set sharenfs=on datapool/fs1 Share fs1 as NFS
# zfs set compression=on datapool/fs1 Enable compression on fs1
File-system/Volume related commands
# zfs create datapool/fs1 Create file-system fs1 under datapool
# zfs create -V 1gb datapool/vol01 Create 1 GB volume (Block device) in datapool
# zfs destroy -r datapool destroy datapool and all datasets under it.
# zfs destroy -fr datapool/data destroy file-system or volume (data) and all related snapshots
Show file system info
# zfs list List all ZFS file system
# zfs get all datapool� List all properties of a ZFS file system
Mount/Umount Related Commands
# zfs set mountpoint=/data datapool/fs1 Set the mount-point of file system fs1 to /data
# zfs mount datapool/fs1 Mount fs1 file system
# zfs umount datapool/fs1 Umount ZFS file system fs1
# zfs mount -a Mount all ZFS file systems
# zfs umount -a Umount all ZFS file systems
ZFS I/O performance
# zpool iostat 2 Display ZFS I/O Statistics every 2 seconds
# zpool iostat -v 2 Display detailed ZFS I/O statistics every 2 seconds
ZFS maintenance commands
# zpool scrub datapool Run scrub on all file systems under data pool
# zpool offline -t datapool c0t0d0 Temporarily offline a disk (until next reboot)
# zpool online Online a disk to clear error count
# zpool clear Clear error count without a need to the disk
Import/Export Commands
# zpool import List pools available for import
# zpool import -a Imports all pools found in the search directories
# zpool import -d To search for pools with block devices not located in /dev/dsk
# zpool import -d /zfs datapool Search for a pool with block devices created in /zfs
# zpool import oldpool newpool Import a pool originally named oldpool under new name newpool
# zpool import 3987837483 Import pool using pool ID
# zpool export datapool Deport a ZFS pool named mypool
# zpool export -f datapool Force the unmount and deport of a ZFS pool
Snapshot Commands
# zfs snapshot datapool/fs1@12jan2014 Create a snapshot named 12jan2014 of the fs1 filesystem
# zfs list -t snapshot List snapshots
# zfs rollback -r datapool/fs1@10jan2014 Roll back to 10jan2014 (recursively destroy intermediate snapshots)
# zfs rollback -rf datapool/fs1@10jan2014 Roll back must and force unmount and remount
# zfs destroy datapool/fs1@10jan2014 Destroy snapshot created earlier
# zfs send datapool/fs1@oct2013 > /geekpool/fs1/oct2013.bak Take a backup of ZFS snapshot locally
# zfs receive anotherpool/fs1 < /geekpool/fs1/oct2013.bak Restore from the snapshot backup backup taken
# zfs send datapool/fs1@oct2013 | zfs receive anotherpool/fs1 Combine the send and receive operation
# zfs send datapool/fs1@oct2013 | ssh node02 �zfs receive testpool/testfs� Send the snapshot to a remote system node02
Clone Commands
# zfs clone datapool/fs1@10jan2014 /clones/fs1 Clone an existing snapshot
# zfs destroy datapool/fs1@10jan2014 Destroy clone
source
https://itsjustbytes.com/2020/05/10/zfs-command-line-reference-cheat-sheet
Firefox Cert Store
situation
Firefox does not accept cert from own pki
analysis
Firefox does not accept cert from own pki
solution
2 methods that firefox let windows cert store read
1. call configuration with "about:config"
create new key "security.enterprise_roots.enabled" value "true"
2. GPO
Admin=>Mozilla>Firefox=>Certificate "use windows cert store" "activate"
source
https://www.windowspro.de/tipp/windows-zertifikatspeicher-firefox-nutzen
silencing a DELL 730 server
situation
the DELL 730 server fan are incredible loud. sometimes it can be usefull to switch the fan down manually. if the ipmi loose
analysis
solution
install on centOS
step 1. install on a centos machine "dnf install ipmitool". on the net you can find that you have to install "openipmi (lib)". i can't confirm that.
step 2. in the DELL IDRAC WebUI do you have to go IDRAC-config => Network => Network => IPMI-Config switch on "IPMI-over-LAN activate".
step 3. make sure do you can connect via ssh to the IDRAC => Network => Services => SSH switch on "activate"
step 4. make sure do you have an account on the IDRAC-config => User-Authentication => Local-Users - In my case I created a special user "ipmi"
step 5. in my case i did build an centos VM and installed IPMI-Tools here. at my knowledge ipmitools only exist for red hat/centos and windows/PS.
on debian works same way.
step 1. apt-get install ipmitool
explain | command |
#Enable automatic fan control | raw 0x30 0x30 0x01 0x01 |
#Disable automatic fan control | raw 0x30 0x30 0x01 0x00 |
#command to turn default | raw 0x30 0xce 0x00 0x16 0x05 0x00 0x00 0x00 0x05 0x00 0x00 0x00 0x00 |
#command to check the status | raw 0x30 0xce 0x01 0x16 0x05 0x00 0x00 0x00 |
#0% | raw 0x30 0x30 0x02 0xff 0x00 |
#20% | raw 0x30 0x30 0x02 0xff 0x14 |
#25% | raw 0x30 0x30 0x02 0xff 0x19 |
#30% | raw 0x30 0x30 0x02 0xff 0x1e |
#50% | raw 0x30 0x30 0x02 0xff 0x32 |
#60% | raw 0x30 0x30 0x02 0xff 0x3C |
#100% | raw 0x30 0x30 0x02 0xff 0x64 |
user@server:/# ipmitool -I lanplus -H SERVERS_IP_HERE -U IDRAC_USERNAME -P 'IDRAC_PASSWORD_HERE' raw 0x30 0x30 0x01 0x00
user@server:/# ipmitool -I lanplus -H SERVERS_IP_HERE -U IDRAC_USERNAME -P 'IDRAC_PASSWORD_HERE' raw 0x30 0x30 0x02 0xff 0x14
source
https://back2basics.io/2020/05/reduce-the-fan-noise-of-the-dell-r720xd-plus-other-12th-gen-servers-with-ipmi/
https://www.reddit.com/r/homelab/comments/d7u7jt/dell_r720_fan_noise_control_via_ipmi/
https://www.thomas-krenn.com/de/wiki/Ipmitool_zur_Sensorabfrage_von_Servern_nutzen9
https://gist.github.com/mdpuma/8972079b7da52afef15cc039039ff818
https://www.reddit.com/r/homelab/comments/7xqb11/dell_fan_noise_control_silence_your_poweredge/
https://www.debiantutorials.com/installing-and-using-the-ipmi-tool/
install desktop XFC auf Centos 7
situation
Install desktop XFC auf Centos 7. Works also on Centos 8.
analysis
solution
Install Xfce Desktop Environment on here (You will need to add the EPEL Repository as like above in "Cinnamon" installation before).
# yum -y install epel-release
# sed -i -e "s/\]$/\]\npriority=5/g" /etc/yum.repos.d/epel.repo # set [priority=5]
# sed -i -e "s/enabled=1/enabled=0/g" /etc/yum.repos.d/epel.repo # for another way, change to [enabled=0] and use it only when needed
# yum --enablerepo=epel install [Package] # if [enable
# yum -y groupinstall X11
# yum --enablerepo=epel -y groups install "Xfce"
Input a command like below after finishing installation:
# echo "exec /usr/bin/xfce4-session" >> ~/.xinitrc
# startx
Xfce Desktop Environment starts.
source
https://unix.stackexchange.com/questions/181503/how-to-install-desktop-environments-on-centos-7
proxmox cluster deinstallation
situation
created cluster but only on a stand allone installation have to remove
analysis
solution
source
https://pve.proxmox.com/wiki/Proxmox_Cluster_File_System_(pmxcfs)
https://pve.proxmox.com/wiki/Cluster_Manager#pvecm_separate_node_without_reinstall
https://support.mozilla.org/de/questions/1300809
switch on snmpd on vmware
situation
sometimes you cant activate snmpd on vmware over the webui ... the easy way is the ssh connection to the vmware machine and ...
analysis
solution
esxcli system snmp set --communities public
esxcli system snmp set --enable true
source
situation
got 5-year old hardware and have to change dell chassisname and identification id
analysis
/admin1-> racadm
racadm>>getsysinfo
racadm getsysinfo
RAC Information:
RAC Date/Time = Wed Sep 30 11:40:19 2020
Firmware Version = 2.65.65.65
Firmware Build = 15
Last Firmware Update = 09/25/2020 16:53:13
Hardware Version = 0.01
MAC Address = xx:xx:xx:xx:xx
Common settings:
Register DNS RAC Name = 1
DNS RAC Name = iDRAC4
Current DNS Domain = xxxxxxxxxxxxx
Domain Name from DHCP = Disabled
IPv4 settings:
Enabled = 1
Current IP Address = xx.xx.xx.xx
Current IP Gateway = xx.xx.xx.xx
Current IP Netmask = 255.255.252.0
DHCP Enabled = 0
Current DNS Server 1 = xx.xx.xx.xx
Current DNS Server 2 = xx.xx.xx.xx
DNS Servers from DHCP = Disabled
IPv6 settings:
Enabled = 0
Current IP Address 1 = ::
Current IP Gateway = ::
Autoconfig = 0
Link Local IP Address = ::
Current IP Address 2 = ::
Current IP Address 3 = ::
Current IP Address 4 = ::
Current IP Address 5 = ::
Current IP Address 6 = ::
Current IP Address 7 = ::
Current IP Address 8 = ::
Current IP Address 9 = ::
Current IP Address 10 = ::
Current IP Address 11 = ::
Current IP Address 12 = ::
Current IP Address 13 = ::
Current IP Address 14 = ::
Current IP Address 15 = ::
DNS Servers from DHCPv6 = Disabled
Current DNS Server 1 = ::
Current DNS Server 2 = ::
System Information:
System Model = PowerEdge M520
System Revision = I
System BIOS Version = 2.9.0
Service Tag = xxxxxxx
Express Svc Code = xxxxxxxxxxxx
Host Name = VMware04
OS Name = VMware ESXi
OS Version = 6.5.0 U3 build-16576891
Power Status = ON
Fresh Air Capable = Yes
Watchdog Information:
Recovery Action = None
Present countdown value = 15 seconds
Initial countdown value = 15 seconds
System Thermal Information:
EstimatedSystemAirflow = NA
EstimatedExhaustTemperature = NA
Embedded NIC MAC Addresses:
NIC.Embedded.1-1-1 Ethernet = xx:xx:xx:xx:xx
NIC.Embedded.2-1-1 Ethernet = xx:xx:xx:xx:xx
racadm>>config -g
cfgActiveDirectory
cfgEmailAlert
cfgIPv6LanNetworking
cfgIPv6StaticLanNetworking
cfgIPv6URL
cfgIpmiLan
cfgIpmiPef
cfgIpmiSol
cfglannetworking
cfgLDAP
cfgLdapRoleGroup
cfgLogging
cfgOobSnmp
cfgRacSecurity
cfgractuning
cfgRacVirtual
cfgRemoteHosts
cfgserial
cfgserverInfo
cfgServerPower
cfgSessionManagement
cfgSmartCard
cfgStandardSchema
cfgStaticLanNetworking
cfguseradmin
cfgUserDomain
cfgVFlashPartition
cfgVFlashSD
ifcRacManagedNodeOs
racadm>>config -g ifcRacManagedNodeOs -o
ifcRacMnOsHostname
ifcRacMnOsOsName
ifcRacMnOsOsVersion
racadm>>config -g ifcRacManagedNodeOs -o ifcracmnoshostname VMware09
racadm config -g ifcRacManagedNodeOs -o ifcracmnoshostname VMware09
Object value modified successfully
RAC1169: The RACADM "config" command will be deprecated in a
future version of iDRAC firmware. Run the RACADM
"racadm set" command to configure the iDRAC configuration parameters.
For more information on the set command, run the RACADM command
"racadm help set".
racadm>>exit
source
https://www.dell.com/downloads/global/power/ps2q06-20060105-Zhang-OE.pdf
https://www.dell.com/support/article/de-de/sln266160/dell-poweredge-how-do-i-change-the-system-host-name-on-the-idrac
http://lifeofageekadmin.com/using-dell-racadm-on-redhat-centos/
https://cs.uwaterloo.ca/~brecht/servers/docs/PowerEdge-2600/en/Racadm/racadmc1.htm
https://www.aftershox.com/2013/07/11/how-to-configure-a-dell-idrac-card-using-the-racadm-command-line-tool/
Mozilla Thunderbird does not connect correctly to mail server after update to 78.1.1
situation
Since upgrading to Thunderbird 78.1.1 (32-bit) I'm not able to receive emails from my pop server and when i try to send an email I get the following error message.
"Sending of the message failed. Peer reports incompatible or unsupported protocol version. The configuration related to mail.******.com must be corrected."
analysis
the mail server is working intern with an old version. so i had to say TB it have to accept this kind of connection.
solution
If you have been effected by Thunderbird 78 changing the minimum tls security level to TLSv1.2 and the server you get emails downloaded from is not using the most up to date protocol then you not be able to get access to server using original server settings. Suggest you test this by trying a reset of the minimum version which by default is now set to 3.
To test this you can do one of the following: Using original server settings.
Menu app icon > Options.
Scroll all the way to the bottom and click on 'Config Editor' button.
Skip past the warning.
In search type: tls.version
Look for this line: security.tls.version.min
Double click on that line to open edit window
set the value to 1
click on OK
Restart Thunderbird.
If this gets you access, then you have a choice. Either leave that setting in place OR Revert the setting for 'security.tls.version.min' back to 3 and try changing the server settings to use: Port : 110 Connection Security: try 'STARTTLS', if it still fails then try 'None'
source
https://support.mozilla.org/de/questions/1300809
linux shell login message
situation
login message for non-linux colleagues to send some hints and infos create a file "whatevername.sh" in "/etc/profile.d/" in my case i create "loginmessage.sh" and write something like this...
echo ""
echo "########################################"
echo "#for GUI connect to this machine with Remotedesktop#"
echo "########################################"
echo " mariaDB Datenbankserver "
echo ""
loginmessage.sh (END)
Web console: https://xxx-mariadb.xxx-net.local:9090/ or https://xx.xx.xx.xx:9090/
Last login: Tue Sep 8 07:22:51 2020 from xx.xx.xx.xx
########################################
#for GUI connect to this machine with Remotedesktop#"
########################################
mariaDB Datenbankserver
smb-protocol samba
1325 10.423559 10.9.254.99 10.9.254.77 TCP 54 50178 ? 445 [RST, ACK] Seq=1095 Ack=817 Win=0 Len=0
situation
network with windows10 clients loosing their connection to the samba-shares on a linux box.
10.9.254.77 = smb-share server
10.9.254.99 = win10 client
analysis
the tcpdump did show the following traffic between win10 client and the samba-server.
1218 9.406740 10.9.254.77 10.9.254.99 NBNS 104 Name query response NB 10.9.254.77
1219 9.406740 10.9.254.77 10.9.254.99 NBNS 104 Name query response NB 10.9.254.77
1303 10.407656 10.9.254.99 10.9.254.77 TCP 66 50178 ? 445 [SYN] Seq=0 Win=64240 Len=0 MSS=1460 WS=256 SACK_PERM=1
1304 10.408045 10.9.254.77 10.9.254.99 TCP 66 445 ? 50178 [SYN, ACK] Seq=0 Ack=1 Win=64240 Len=0 MSS=1460 SACK_PERM=1 WS=128
1305 10.408154 10.9.254.99 10.9.254.77 TCP 54 50178 ? 445 [ACK] Seq=1 Ack=1 Win=2102272 Len=0
1306 10.408287 10.9.254.99 10.9.254.77 SMB 213 Negotiate Protocol Request
1307 10.408674 10.9.254.77 10.9.254.99 TCP 60 445 ? 50178 [ACK] Seq=1 Ack=160 Win=64128 Len=0
1308 10.413635 10.9.254.77 10.9.254.99 SMB2 260 Negotiate Protocol Response
1309 10.413794 10.9.254.99 10.9.254.77 SMB2 280 Negotiate Protocol Request
1310 10.414332 10.9.254.77 10.9.254.99 SMB2 326 Negotiate Protocol Response
1319 10.419983 10.9.254.99 10.9.254.77 SMB2 220 Session Setup Request, NTLMSSP_NEGOTIATE
1321 10.420492 10.9.254.77 10.9.254.99 SMB2 307 Session Setup Response, Error: STATUS_MORE_PROCESSING_REQUIRED, NTLMSSP_CHALLENGE
1323 10.421383 10.9.254.99 10.9.254.77 SMB2 597 Session Setup Request, NTLMSSP_AUTH, User: LOCALNET\netuser
1324 10.422765 10.9.254.77 10.9.254.99 SMB2 139 Session Setup Response
1325 10.423559 10.9.254.99 10.9.254.77 TCP 54 50178 ? 445 [RST, ACK] Seq=1095 Ack=817 Win=0 Len=0
see the handshake failed by the client. the reason was unclear. all solution in the net lead back the reason to a smb1/smb2 problem.
they recommend "allowinsecureguestauth: 1" as a parameter-key in the registry at the lanmanworkstation tree.
solution
the dc give a win7 gpo to the workstations that the "insecureguestauth" is not (more) allowed/unconfigured "AllowInsecureguestauth:dword 0" .
this should be ignored by the workstation by default because this insecureguestauth is not more allowed by win10/smb2. but sometimes a workstation stumbled over this gpo/rule and write this parameter in their own registry. what let the smb2 protocol stumble.
the solution in this case, was only to delete the complete key from registry and take the gpo from the dc away.
powershell:
get-ItemProperty HKLM:\SYSTEM\CurrentControlSet\Services\LanmanWorkstation\Parameters\
remove-ItemProperty HKLM:\SYSTEM\CurrentControlSet\Services\LanmanWorkstation\Parameters\ -Name AllowInsecureguestauth
source
smb1-smb2 problem
https://winxperts4all.at/index.php/betriebssysteme/windows-10/1808-unsichere-gastanmeldungen-aktivieren-in-windows-10
https://answers.microsoft.com/de-de/windows/forum/all/windows10-blockiert-netzwerkfreigabe-f%C3%BCr-nas/99cd9126-dade-4a08-bcc0-3bd1a24cd01e
https://de.minitool.com/datenwiederherstellung/zugriff-verweigert.html
https://ask.wireshark.org/question/15935/what-would-cause-a-rstack-from-client-to-smb-server/
https://www.johnpfernandes.com/2018/12/17/tcp-flags-what-they-mean-and-how-they-help/
https://robertheaton.com/2020/04/27/how-does-a-tcp-reset-attack-work/
Centos 8 munin-nodes need Power-Tools
https://blog.redbranch.net/2020/06/06/centos-8-munin-node-needs-powertools/
Depsolve Error occured: Problem: package munin-node-2.0.54-2.el8.noarch requires perl(Net::SNMP), but none of the providers can be installed\n - conflicting requests - nothing provides perl(Digest::SHA1) >= 1.02 needed by perl-Net-SNMP-6.0.1-25.el8.1.noarch
Solution
sed -i '/enabled=0/enabled=1/' /etc/yum.repos.d/CentOS-PowerTools.repo
munin snmp
situation
no chance to change something or rebuild, all nodes managed by cisco/meraki/veeam. only a little pool of linux boxes.
to monitor this little pool, i installed munin but stumpled over problems with snmp and the nature with the company network. there is no existing dns except the one for winAD.
1. editing
/etc/hosts
IP.ADD.RE.SS1 printer1
IP.ADD.RE.SS2 server2
2. /etc/munin/plugins
munin-node-configure -snmp ip.add.re.ss -shell
ln -s '/usr/share/munin/plugins/snmp__if_' '/etc/munin/plugins/snmp_99.9.99.66_if_1'
ln -s '/usr/share/munin/plugins/snmp__if_err_' '/etc/munin/plugins/snmp_99.9.99.66_if_err_1'
ln -s '/usr/share/munin/plugins/snmp__if_multi' '/etc/munin/plugins/snmp_99.9.99.66_if_multi'
ln -s '/usr/share/munin/plugins/snmp__netstat' '/etc/munin/plugins/snmp_99.9.99.66_netstat'
ln -s '/usr/share/munin/plugins/snmp__print_supplies' '/etc/munin/plugins/snmp_99.9.99.66_print_supplies'
ln -s '/usr/share/munin/plugins/snmp__uptime' '/etc/munin/plugins/snmp_99.9.99.66_uptime'
3./ munin-node-configure -snmp ip.add.re.ss -shell | bash
4. /etc/plugin-conf.d
every file in this folder is part of the plugin configuration no name confess.for printers i build file print.
vi print
name of the plugin link what munin-node-configuration did build.
[snmp_99.9.99.66*]
env.community public
env.host printer1
[snmp_99.9.99.67*]
env.community public
env.host printer2
2. /etc/munin.conf
[printer]
[printer;printer1]
address 127.0.0.1
use_node_name no
[printer;printer2]
address 127.0.0.1
use_node_name no
systemctl restart munin-node.service
After upgrade, the swap got a new UUID
after upgrading from debian 9 to 10 got the start job running for dev disk. long searches on different sites did not give me really a solution but a way to go... lsblk shows the dev and a !new! blkid for the dev. with blkid the new uuid written in fstab. but it was not the final solution. then i stumbled about this tiny hit on a site..
changing here sda6_crypt UUID=abcd123-4567-8901-0101-abcdefg01010101- none luks,swap