| keithzg[m] | For reference here's the other server's netplan config: https://paste.ubuntu.com/p/Brd26gHGSf/ Is it working due to some complicating factor of being set up as a bridge? | 00:01 |
|---|---|---|
| keithzg[m] | Oh, no, duh, it's because it's also a 10.1.186.* address. | 00:02 |
| * keithzg[m] totally knows what he's doing . . . yup . . . | 00:02 | |
| sarnold | keithzg[m]: woo! | 01:03 |
| blscoe | Hi. Someone know how I can log all the incomming and outcomming network request using the terminal? I have a small server and I want to check and registry the access information in a log like time, IP (dest/origin) of the requests. | 01:12 |
| blscoe | Someone recommends a netfilter rule or tcpdump. Can anyone talk me a good reference to do this? | 01:14 |
| sarnold | blscoe: depending upon what you're trying to do, maybe auditd syscall auditing rules on bind, connect, listen, and accept, and any derivatives | 01:14 |
| sarnold | blscoe: you could probably also use ftrace or bcc tools to monitor specific syscalls or tracepoints | 01:15 |
| sarnold | both netfilter and tcpdump can do it too -- tcpdump is probably best avoided for this though since it involves copying a huge amuont of data from kernel to userspace | 01:15 |
| sarnold | blscoe: if you want to use netfilter this is probably the starting point https://netfilter.org/projects/ulogd/index.html | 01:16 |
| blscoe | sarnold: I would like only to log the external and internal network requests with time and IP information. | 01:16 |
| blscoe | When someone access my webpage or try to connect in a service I woulld like to know who and when. | 01:17 |
| sarnold | blscoe: note the tcp* family of tools here https://github.com/iovisor/bcc -- I don't see any that work with udp or sctp or raw ethernet but these might get you far | 01:19 |
| blscoe | sarnold: thks mate! | 01:24 |
| keithzg[m] | Huh, tried following https://wiki.ubuntu.com/Testing/ISO/DevEnv but even after getting Drupal set up (which is more complicated than it should be since apparently it's not in the repos anymore?) the QA modules aren't seen. I wonder if they aren't compatible with Drupal 8? | 02:08 |
| stunts513 | I just switched to Ubuntu Server 19.10 since it has a way more up to date version of qemu-kvm(v4 as opposed to v2.12) than centos, i use gpu passthrough but every time i enable the code 43 workaround you need for nvidia cards, i get a bsod. Any ideas on a workaround? And i should mention i did enable the ioapic driver=kvm already, it didn't help. | 02:50 |
| cpaelzer | stunts513: I see most guides with nvidia gpu pt use q35 chipset for the guest - did you do that as well? | 06:14 |
| cpaelzer | I'd not know of other common fixes other than the ioapic setting you already have | 06:16 |
| === wings is now known as gnomethrower | ||
| === gnomethrower is now known as wings | ||
| lordievader | Good morning | 07:16 |
| Skyrider | Quick question. Anyone happen to know if csf / iptables are backwards compatible with each other? | 10:22 |
| tomreyn | what's CSF? | 10:35 |
| tomreyn | i guess this? https://www.configserver.com/cp/csf.html you could tell them there is no "ubuntu v18" or "ubuntu v19" | 10:37 |
| tomreyn | i'd rather recommend ossec or a software which includes it for a HIDS | 10:39 |
| Skyrider | Interesting, thanks. | 10:41 |
| lordievader | > Straight-forward SPI iptables firewall script | 11:48 |
| lordievader | Sounds like a frontend for iptables. | 11:48 |
| lordievader | s/iptables/netfilter/ | 11:48 |
| tomreyn | right, seems to be that rather, i was looking at a page where it discussed HIDS features, but it rather seems to be mostly an iptables frontend. | 12:47 |
| blscoe | hello, I use apache2 and I have some problems to configure a website in /etc/apache2/sites-available. Some options seens dont work, when I configure some for <directory> it seems dont work. Only work if I put this configurations in /etc/apache2.conf. But I know that this last file is for global configurations and I need only particular configurations for the current site.conf. Can someone tell me if is a configuration or another i | 21:01 |
| blscoe | ssue specific of ubuntu? Because I see tutorials for configuration apache in sites-available/site.conf, but it not works on ubuntu-server. | 21:01 |
| sdeziel | blscoe: please share your site definition via paste | 21:02 |
| blscoe | https://pastebin.com/JkWS9aB1 | 21:09 |
| blscoe | it is one that I trying | 21:10 |
| sdeziel | blscoe: I see no <directory> in there | 21:12 |
| blscoe | yesm it is other thing that I try and dont work | 21:12 |
| blscoe | I going to find the example with directory | 21:12 |
| blscoe | wait | 21:12 |
| blscoe | https://paste.ee/p/MJfVD | 21:25 |
| blscoe | and the another https://paste.ee/p/5BRC5 | 21:29 |
| === tds9 is now known as tds | ||
Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!