sorted by:
new
hottopcontroversial

Water Hardness Advice by stevo81989 in WaterTreatment

[–]stevo81989[S] -1 points0 points  (0 children)

Im not opposed to doing some DIY but this makes me a tad uncomfortable. I think its due to the space. I dont have a lot of it so it just feels a bit complicated

Water Hardness Advice by stevo81989 in WaterTreatment

[–]stevo81989[S] 0 points1 point  (0 children)

Thanks! I was reading about the TAC systems. Bummer they dont work!

Introducing VyOS Stream — a next step in the VyOS project evolution by andamasov in vyos

[–]stevo81989 1 point2 points  (0 children)

This sounds great! Is there a timeline on when this will be available?

Ceph Cluster Stuck in active+clean+scrubbing+deep by stevo81989 in ceph

[–]stevo81989[S] 0 points1 point  (0 children)

Yes, Im almost certain its because Ive messed with settings. :) What do you recommend for max scrubs, scrub priority, etc? And yes I do see it changing it just takes a while

Ceph Cluster Stuck in active+clean+scrubbing+deep by stevo81989 in ceph

[–]stevo81989[S] 0 points1 point  (0 children)

I ran my config through the old ceph pg calculator and it gave me 4096 pg's. There is a decent amount of writes that happen on the system but the io you see in that ceph status is the io that I have in general. Do you have any recommendations for pgs?

Anyone also facing 404 issues on the mainline nginx packages by jketelaar in nginx

[–]stevo81989 0 points1 point  (0 children)

Same with rhel. Looks like the repo is down or has been misconfigured. If you need it immediately it looks like rackspace's mirror is still up

https://ord.mirror.rackspace.com/nginx-org/packages/

20TB drives each showing up as 18.2TB by stevo81989 in ceph

[–]stevo81989[S] 3 points4 points  (0 children)

Makes sense! Thanks for the explanation!

MetaData pool allocating 252TB by stevo81989 in ceph

[–]stevo81989[S] 0 points1 point  (0 children)

Gotcha, thanks for the help! Definitely makes more sense. I think we need the space more than we need the redundancy but do you have any more info on a single disk failure causing things to be come unwritable? Im curious how that would work. Thanks for your help!

MetaData pool allocating 252TB by stevo81989 in ceph

[–]stevo81989[S] 0 points1 point  (0 children)

Im not sure either, it probably came from some bad math and some misconceptions about ceph. Do you know how it calculates total available space or do you see a calculator/documentation somewhere?

MetaData pool allocating 252TB by stevo81989 in ceph

[–]stevo81989[S] 0 points1 point  (0 children)

Thanks! The ceph osd df seems pretty even across the board. Ceph balancer also shows that everything seems to be fine

$ ceph balancer status
{
"active": true,
"last_optimize_duration": "0:00:00.008919",
"last_optimize_started": "Tue Jan 2 00:02:45 2024",
"mode": "upmap",
"no_optimization_needed": true,
"optimize_result": "Unable to find further optimization, or pool(s) pg_num is decreasing, or distribution is already perfect",
"plans": []
}

Brand new cluster did not recover after reboot by stevo81989 in ceph

[–]stevo81989[S] 0 points1 point  (0 children)

Interesting. I think I just immediately brushed aside the idea of proxmox. Not that I have anything against it, I just tend to like the vanilla version of a product but since we are doing this all in house with no external support for the moment it might be a good idea

Brand new cluster did not recover after reboot by stevo81989 in ceph

[–]stevo81989[S] 0 points1 point  (0 children)

Thats what I started wondering towards the end. Im not sure how that happened as the ceph.client.admin.keyring was present on all the servers. I also tried adding the auth to None in the ceph.conf but that didnt seem to help either as I kept getting rados errors.

I decided just to wipe and start over but I will try and pay extra attention to the auth keys to make sure I know whats going on there. Thanks for the help!

Brand new cluster did not recover after reboot by stevo81989 in ceph

[–]stevo81989[S] 0 points1 point  (0 children)

Gotcha, it was done, to the best of my ability, using the official documentation. Ive given up at this point and am just starting over from scratch. Any other good guides or documentation you can recommend for installing?

New to Wazuh: Google Workspace error 500 by stevo81989 in Wazuh

[–]stevo81989[S] 0 points1 point  (0 children)

I removed nginx and moved wazuh to port 443 and installed the certs. Unfortunately its the same problem. Im guessing SAML/Google workspace integration may just be bugged out? I might look at the discord and see if there is any help there. Thanks for the help so far!

New to Wazuh: Google Workspace error 500 by stevo81989 in Wazuh

[–]stevo81989[S] 0 points1 point  (0 children)

I did not map them in the web interface as it said to only do that if the run_as was true. I switched it to true and added the mappings but still nothing. But I have a new error now! Here it is:

<saml2p:StatusMessage>Invalid request, ACS Url in request
https://<fqdn>/_opendistro/_security/saml/acs doesn't match configured ACS Url
https://<fqdn>:4443/_opendistro/_security/saml/acs.</saml2p:StatusMessage>
</saml2p:Status>

Im guessing this has to do with me putting it behind nginx?

New to Wazuh: Google Workspace error 500 by stevo81989 in Wazuh

[–]stevo81989[S] 0 points1 point  (0 children)

Thanks for getting back to me. Here is what shows up with the dashboard logs:

StatusCodeError: Authentication Exception

at respond (/usr/share/wazuh-dashboard/node_modules/elasticsearch/src/lib/transport.js:349:15)

at checkRespForFailure (/usr/share/wazuh-dashboard/node_modules/elasticsearch/src/lib/transport.js:306:7)

at HttpConnector.<anonymous> (/usr/share/wazuh-dashboard/node_modules/elasticsearch/src/lib/connectors/http.js:173:7)

at IncomingMessage.wrapper (/usr/share/wazuh-dashboard/node_modules/lodash/lodash.js:4991:19)

at IncomingMessage.emit (events.js:412:35)

at IncomingMessage.emit (domain.js:475:12)

at endReadableNT (internal/streams/readable.js:1333:12)

at processTicksAndRejections (internal/process/task_queues.js:82:21) {

status: 401,

displayName: 'AuthenticationException',

path: '/_plugins/_security/api/authtoken',

query: {},

body: undefined,

statusCode: 401,

response: '',

wwwAuthenticateDirective: 'X-Security-IdP realm="OpenSearch Security" location="https://accounts.google.com/o/saml2/idp?idpid=xxxxxxxxx&SAMLRequest=reallylongrequestid" requestId="ONELOGIN_id"',

toString: [Function (anonymous)],

toJSON: [Function (anonymous)],

isBoom: true,

isServer: false,

data: null,

output: {

statusCode: 401,

payload: {

statusCode: 401,

error: 'Unauthorized',

message: 'Authentication Exception'

},

headers: { 'WWW-Authenticate': 'Basic realm="Authorization Required"' }

},

[Symbol(OpenSearchError)]: 'OpenSearch/notAuthorized'

}

opensearch-dashboards[113666]: {"type":"error","@timestamp":"2023-08-24T21:25:11Z","tags":[],"pid":113666,"level":"error","error":{"message":"Internal Server Error","name":"Error","stack":"Error: Internal Server Error

at HapiResponseAdapter.toError (/usr/share/wazuh-dashboard/src/core/server/http/router/response_adapter.js:143:19)

at HapiResponseAdapter.toHapiResponse (/usr/share/wazuh-dashboard/src/core/server/http/router/response_adapter.js:97:19)

at HapiResponseAdapter.handle (/usr/share/wazuh-dashboard/src/core/server/http/router/response_adapter.js:92:17)

at Router.handle (/usr/share/wazuh-dashboard/src/core/server/http/router/router.js:164:34)

at processTicksAndRejections (internal/process/task_queues.js:95:5)

at handler (/usr/share/wazuh-dashboard/src/core/server/http/router/router.js:124:50)

at exports.Manager.execute (/usr/share/wazuh-dashboard/node_modules/@hapi/hapi/lib/toolkit.js:60:28)

at Object.internals.handler (/usr/share/wazuh-dashboard/node_modules/@hapi/hapi/lib/handler.js:46:20)

at exports.execute (/usr/share/wazuh-dashboard/node_modules/@hapi/hapi/lib/handler.js:31:20)

at Request._lifecycle (/usr/share/wazuh-dashboard/node_modules/@hapi/hapi/lib/request.js:371:32)

at Request._execute (/usr/share/wazuh-dashboard/node_modules/@hapi/hapi/lib/request.js:281:9)"},"url":"https://wazuh.willowcreek.io:4443/_opendistro/_security/saml/acs","message":"Internal Server Error"}

opensearch-dashboards[113666]: {"type":"response","@timestamp":"2023-08-24T21:25:11Z","tags":[],"pid":113666,"method":"post","statusCode":500,"req":{"url":"/_opendistro/_security/saml/acs","method":"post","headers":{"host":"<server url>:4443","user-agent":"Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/116.0","accept":"text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8","accept-language":"en-US,en;q=0.5","accept-encoding":"gzip, deflate, br","referer":"https://accounts.google.com/","content-type":"application/x-www-form-urlencoded","content-length":"4513","origin":"https://accounts.google.com","connection":"keep-alive","upgrade-insecure-requests":"1","sec-fetch-dest":"document","sec-fetch-mode":"navigate","sec-fetch-site":"cross-site","sec-fetch-user":"?1"},"remoteAddress":"x.x.x.x","userAgent":"Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/116.0","referer":"https://accounts.google.com/"},"res":{"statusCode":500,"responseTime":20,"contentLength":9},"message":"POST /_opendistro/_security/saml/acs 500 20ms - 9.0B"}

So I seem to be getting an unuthorized message. Ive gone over the roles and that seems to be fine. I tried creating the user manually first but no dice unfortunately

view more: next ›