Skip to content

Recent Articles

20
Apr

Remove stale vCenter Server from SSO setup - vCenter Server 6.0 on VCSA

I was having issues logging into my vcenter server 6.0 environment when I removed a test vcenter server. The login would take anywhere from 60-300 seconds and finally let me login. An error would come up stating that my third vcenter server was not accessible. This error also came up whenever a feature of vcenter server was used that could reference info from other vcenters in your SSO setup:

Read more
14
Apr

Troubleshooting - VCSA 6.0 Install - Connection Timed Out to destination ESXi host

Problem:
Today I attempted to deploy a VCSA 6.0 to an ESXi host. It continued to hang on "Connecting to Server" for the second step of the installation process. Eventually it would say "connection timed out." I attempted to connect to other servers, but could not get anything to get passed the "connecting" phase.

Solution:
I had to remove the CIP (Client Integration Plugin) and reinstall it. The CIP had a bad SSL cert stored and finally prompted be for a new one.

Read more
13
Apr
check_esxi_hardware.py - Warning - Memory

check_esxi_hardware.py - Warning - Memory

I had an issue with the check_esxi_hardware.py script. It stated that I had an issue with memory. I ran a memtest86 for 72 hours and nothing had an error. I had to eventually log into the Dell Remote Access Card (DRAC) and clear out the log for the "SMI Handler". This log contained an old error for memory with "ECC Deassert".

Here is the link for the developers plugin:
http://www.claudiokuenzler.com/nagios-plugins/check_esxi_hardware.py

Read more
07
Nov

New Zimbra install - zmconfigd is not running.

I couldn't get zmconfigd to start and stay running. After installing NC, all is well.

Read more
19
Aug

nagios plugin: check_file_folder_ownership

Check the permissions of all files in a given directory. Good for maintaining a working app directory when package updaters randomly change ownership of files on you. An example is that I use it for spamassassin and mimedefang. All files in /etc/mail/spamassassin all need to be defang defang.

Read more
07
Aug

Extend partition with added storage to single drive using blockdev, vgchange, LVM and VMware ESXi

If you are using RHEL/CENTOS6 with LVM do the following:

example:

-/dev/sdb1 was created and is LVM partition.
-In VMware I extended the Virtual Disk file an extra 100GB
-I added a new partition called /dev/sdb2
-OS states I need to run kpartx or partprobe
-OS states drive is busy and cannot continue


In order to get the drive working, I did the following;

Read more
19
Jun

Add self created CA to Zimbra keystore database for External secure LDAP/LDAPS/TLS

When using Zimbra with external LDAP, you may need to use secure LDAP or TLS. Zimbra uses java keytool to import the self created Certificate Authority.

Read more
10
Jun

mysqlbinlog usage with Percona XtraDB Cluster (PXC) on Percona 5.5.37

I needed to investigate a mysql replication issue within Percona XtraDB Cluster on Percona/MySQL 5.5.37. /var/lib/mysql/GRA_*log files are created whenever a replication issue arises. You can use mysqlbinlog to shed some light on the issue.

Read more
29
May

mimedefang multiplexor "No DNS servers available!" issue

Starting with /etc/resolv.conf and add a working DNS server. After the DNS server is definitely configured, make sure the proper Perl modules are installed.

Read more
13
May

CIDR notation ranges /24 - /29 cheat sheet

Here is a breakdown of the slash 24 to slash 29 ranges of IP's. Among other things. these are particularly handy for determining the IP's you can use from a given ISP.
/24 - 0-255
/25 - 0-127 128-255
/26 - 0-63 64-127 128-191 192-255
/27 - 0-31 32-63 64-95 96-127 128-159 160-191 192-223 224-255
/28 - 0-15 16-31 32-47 48-63 64-79 80-95 96-111 112-127 128-143 144-159 160-175 176-191 192-207 208-223 224-239 240-255

Read more
28
Apr

iscsiadm cheat sheet

iscsiadm cheat sheet for Centos 5/6. Login to Single Target, Logout of all targets, Login to all targets found with discovery, Discover targets associated with an IP Address.

Read more
19
Mar

SSH Agent Issue - Could not open a connection to your authentication agent

In order to add a key to your ssh-agent, you need to load the agent first via eval

eval `ssh-agent -s`

After this just run ssh-add and you're set.

Read more
04
Mar
Increase RAM usable by Couchbase Server

Increase RAM usable by Couchbase Server

Couchbase is a caching system that is scalable across many clustered nodes. In the event that your buckets need more RAM, you need to ultimately rmeove the exisiting bucket and increase the couchbase servers total RAM.

Read more
04
Mar
Spacewalk 2.1 Released - Images / Screenshots

Spacewalk 2.1 Released - Images / Screenshots

Spacewalk 2.1 was released today. It includes a new WebUI that should simplify the use of Spacewalk. I feel it looks a little better but does not provide enough increase in functionality.

Read more
19
Dec

Nagios Client NRPE: check_mailq - CRITICAL: Error code 78 returned from /usr/bin/mailq

check_mailq was not working properly. tailing the /var/log/maillog tells me that the /var/spool/mqueue folder is not readable by anyone but root. I made it able to be read by any process running on the system.

Read more
19
Dec

Nagios Client NRPE: check_smtp CRITICAL - Socket timeout after 10 seconds

My nagios client was having issues after a few package updates. About 10 services would report properly for NRPE, except for check_smtp. After lots of checking around the net, the answer was in the /var/log/maillog.

Read more
12
Dec

pgtune for spacewalk server

My Spacewalk 2.0 Server has been working just fine, aside from viewing the systems all at once. The issue appears to be hanging SELECT queries that will idle for about 30 seconds while the systems are being organized into a list(aka just clicking "All Systems" in WebUI). I wanted to give a good read and read/write test because most of the problem is while doing reads. The read write is just for good measure. Appears to be about 10x faster in read only scenario.

Read more
06
Dec

TLS for Sendmail SMTP

I grabbed this article from "netguy.org". As he states, it's hard to get a correct writeup.
http://www.netguy.org/wordpress/?p=299

1. Install openssl-perl:
yum -y install openssl-perl

2. You need to edit the CA.pl file. This was a common area of errors since the instructions for the edit were WRONG. Rather than screwing around with diff files, you just need to make the following changes (copying the existing /etc/pki/tls/misc/CA.pl to /etc/pki/tls/misc/CA1.pl)

Read more
07
Nov

Mount CDROM in ESXi Shell 5.0,5.1,5.5 - Super Micro PDSBM LN2+

I needed to mount a CDROM drive in order to grab older NIC drivers for my SuperMicro PDSBM-LN2+ Motherboard. It has 2 Intel 82573L Gigabit Ethernet Controllers onboard. VMware stopped support for these as of ESXi 5.0. This requires using esxcli software install vib commands in order to roll back the VMware driver bootbank to an older VIB for the Intel e1000e NIC driver. Given that my system has two onboard NICs and no room for expansion, I cannot mount anything over the network to grab the drivers. A chicken and egg scenario. CDROM it is!

Read more
29
Oct

Using 2+ types of bonds on a Centos 5/6 machine

In a previous posting, I laid out the configuration for a single bond on a centos5/6 machine. This configuration needs to change to accomodate multiple network bonds, especially when using two different modes for the bonds. If you do not change the layout and simply add more lines to the /etc/modprobe.d/bonding.conf config file, you will get the same mode applied to both bond interfaces.

Read more

Pages