[00:01] For reference here's the other server's netplan config: https://paste.ubuntu.com/p/Brd26gHGSf/ Is it working due to some complicating factor of being set up as a bridge? [00:02] Oh, no, duh, it's because it's also a 10.1.186.* address. [00:02] * keithzg[m] totally knows what he's doing . . . yup . . . [01:03] keithzg[m]: woo! [01:12] Hi. Someone know how I can log all the incomming and outcomming network request using the terminal? I have a small server and I want to check and registry the access information in a log like time, IP (dest/origin) of the requests. [01:14] Someone recommends a netfilter rule or tcpdump. Can anyone talk me a good reference to do this? [01:14] blscoe: depending upon what you're trying to do, maybe auditd syscall auditing rules on bind, connect, listen, and accept, and any derivatives [01:15] blscoe: you could probably also use ftrace or bcc tools to monitor specific syscalls or tracepoints [01:15] both netfilter and tcpdump can do it too -- tcpdump is probably best avoided for this though since it involves copying a huge amuont of data from kernel to userspace [01:16] blscoe: if you want to use netfilter this is probably the starting point https://netfilter.org/projects/ulogd/index.html [01:16] sarnold: I would like only to log the external and internal network requests with time and IP information. [01:17] When someone access my webpage or try to connect in a service I woulld like to know who and when. [01:19] blscoe: note the tcp* family of tools here https://github.com/iovisor/bcc -- I don't see any that work with udp or sctp or raw ethernet but these might get you far [01:24] sarnold: thks mate! [02:08] Huh, tried following https://wiki.ubuntu.com/Testing/ISO/DevEnv but even after getting Drupal set up (which is more complicated than it should be since apparently it's not in the repos anymore?) the QA modules aren't seen. I wonder if they aren't compatible with Drupal 8? [02:50] I just switched to Ubuntu Server 19.10 since it has a way more up to date version of qemu-kvm(v4 as opposed to v2.12) than centos, i use gpu passthrough but every time i enable the code 43 workaround you need for nvidia cards, i get a bsod. Any ideas on a workaround? And i should mention i did enable the ioapic driver=kvm already, it didn't help. [06:14] stunts513: I see most guides with nvidia gpu pt use q35 chipset for the guest - did you do that as well? [06:16] I'd not know of other common fixes other than the ioapic setting you already have === wings is now known as gnomethrower === gnomethrower is now known as wings [07:16] Good morning [10:22] Quick question. Anyone happen to know if csf / iptables are backwards compatible with each other? [10:35] what's CSF? [10:37] i guess this? https://www.configserver.com/cp/csf.html you could tell them there is no "ubuntu v18" or "ubuntu v19" [10:39] i'd rather recommend ossec or a software which includes it for a HIDS [10:41] Interesting, thanks. [11:48] > Straight-forward SPI iptables firewall script [11:48] Sounds like a frontend for iptables. [11:48] s/iptables/netfilter/ [12:47] right, seems to be that rather, i was looking at a page where it discussed HIDS features, but it rather seems to be mostly an iptables frontend. [21:01] hello, I use apache2 and I have some problems to configure a website in /etc/apache2/sites-available. Some options seens dont work, when I configure some for it seems dont work. Only work if I put this configurations in /etc/apache2.conf. But I know that this last file is for global configurations and I need only particular configurations for the current site.conf. Can someone tell me if is a configuration or another i [21:01] ssue specific of ubuntu? Because I see tutorials for configuration apache in sites-available/site.conf, but it not works on ubuntu-server. [21:02] blscoe: please share your site definition via paste [21:09] https://pastebin.com/JkWS9aB1 [21:10] it is one that I trying [21:12] blscoe: I see no in there [21:12] yesm it is other thing that I try and dont work [21:12] I going to find the example with directory [21:12] wait [21:25] https://paste.ee/p/MJfVD [21:29] and the another https://paste.ee/p/5BRC5 === tds9 is now known as tds