After upgrading to Windows 10 on my main work computer, I could no longer connect to 2 XenServer 6.2 hosts and found out that the error was “Could not create SSL/TLS Secure Channel”. After a bit of lazy searching I found a forum post that fixed the problem.
The actual fix for this is as follows.
service xapissl stop
mv /etc/xensource/xapi-ssl.pem /etc/xensource/xapi-ssl.pem.bak
/opt/xensource/libexec/generate_ssl_cert "/etc/xensource/xapi-ssl.pem" '10.10.6.27'
service xapissl start
Replace the 10.10.6.27 with the IP of the server host you are attempting to fix. This should resolve your ability to connect from XenCenter.
Please do not bother responding with how worthless this is. This is purely academic. A few of the guys at my office were curious and I was idle for a little while this weekend and got started with the basics of the basics in bitcon mining.
Go setup yourself a bitcoin wallet here –> http://www.trybtc.com There will be some tutorials, feel free to go through those.
You’ll end up here –> https://coinbase.com This is where you can keep track of your account. First let’s pop in there and grab the bitcoin address that we will use in a bit. You can find it under Account Settings –> Bitcoin Addresses. This is how others can give you money.
Create an account here –> https://mining.bitcoin.cz/ This is the only way that CPU mining is even relevant….which it’s really not. This is a pool of individuals that work on mining bitcoin blocks.
Ok, now that you have setup the accounts, here is the basic how-to for setting up CPUMINER on Ubuntu 12.04 Server. I have this deployed on 16 VM’s running 1 processor and 512 Megs of RAM each for testing.
Install Ubuntu 12.04 Server and get root
chmod o+x bcminingprep.sh
edit bcminingprep.sh for your worker user/pass found under “My Account” in the bitcoin.cz site.
Now you are mining. Please feel free to comment how fast or slow your mining is going. I have 16 VM’s on modern hardware under XenServer 6.2 running on AMD processors all getting 4.57 khash/s. Please note…this is very slow and you will likely never make your money back once power is concerned.
Added Cycling to my “Projects” dropdown and Pins for Pinterest (they are actually my wifes but I like most of them). Stay tuned…
A few days ago I received a pretty new Google Chrome Notebook model CR-48. I was, completely caught off guard by a very nicely packaged device sitting the table when I got home. I still had no idea what I was because I forgot that I signed up for this program. Ecstatic doesn’t quite cut how happy I was when I discovered what it was. I was actually selected as a Google Chrome Notebook pilot user. I doubt this is a rare thing, however I almost never get selected to test stuff that I think is cool.
So far the experience has been pretty good. When I first booted the system, I had a bit of a hard time connecting to my wireless. I have a WRT-160N running DD-WRT with WPA2 AES/TKIP enabled. I reconfigured it to just TKIP and it seemed to work after that and then I was able to login and get the notebook updated. Pretty neat that EVERYTHING is handled under Chrome.
My wife said it’s the perfect computer for her. It’s small and light enough to take around the house and we pretty much use Google Docs exclusively for document creation and sharing. We both use Hulu for video’s, Picasa for photos and I use WordPress for blogging. I have not found a telnet/ssh client for the browser yet so I may take a stab at creating one or finding someone who can. Since I’m a network engineer, this is an essential function for me. I’m happy to see the Cisco ASA Clientless SSL VPN now supports Chrome as a browser since that will be my primary view into my work network.
I’ll put up some more posts as time goes on about the use of the Google Chrome Notebook CR-48.
Well, it has been over a year since I have last posted something worthwhile and I feel a little bad about that. Even if nobody is reading this, I use it to help me remember things that I know I’ll need later. So if I haven’t posted in a while then I’ll probably forget everything I’ve learned over the last year :). Hopefully not.
OK, so a few new things have happened. My daughter, Kacy was born 8/24/2009 and is now the fire in my life…literally she makes me burn inside with love, anger, cheer, fear, and laughs. She’s pretty awesome. My wife who stays at home with her has been very patient and we are now making good progress towards potty training.
I am now employed at KeyOn Communications, Inc as the Sr. Network Engineer. I updated my about me section so you can check some details there, but in short, I’ll be posting some things up here about what I’m doing at work. This change is bigger than it sounds. I used to work in SMB/SME systems where I was the “go to” person for everything under the sun. Servers, Exchange, Outlook, Quickbooks, etc…you name it, I had to support it. Now, I get to focus on something and move away from the “Jack of All Trades, Master of None” mentality to finally becoming an expert on something…and I feel GREAT… Working for a smaller ISP that is growing pretty rapidly, I think, is the perfect place for me.
I now have my CCNA. This took me 6 years too long to get. I should have taken it while I was in the Marine Corps but didn’t, then I feel into two jobs that didn’t care one way or another…therefor I took the path of least resistance…not anymore. Now I am working towards my CCNP and then off to CCIP and CCIE in time.
</update> Until next time…
At work, I have a client that was requesting the ability to monitor/block sites that their users were visiting. This is traditionally quite easy with just a squid proxy server or a Barracuda Web Filter but they really didn’t want an extra server to be installed during this process AND they were using a terminal server.
I started looking for server side applications that I could install and just have the admin pull the data from there, however, the costs I was finding were a bit too much. I setup a pfSense in a quick lab to demo this up. After installing pfSense on some old hardware, did a basic configuration of the box, and then installed the Squid proxy package. I configured this to be a traditional proxy where I had to send traffic on a specific port, and the user was required to login. That was really the trick to get the terminal server users broken apart. I know it could probably use a little masaging with NTLM authentication or some other clean mechanism but for the lab and the purposes of this client, this hit the mark for a great price.
I did mention that they did not want to install new hardware during this process, but the knew they needed to upgrade their Linksys “router” that was currently firewalling their network. I am once again impressed with the flexibility and ease of use that pfSense gives you. I truly only have 1 complaint about the system at all but it has nothing to do with this and as I understand it, that feature has been added in pfSense 2.0. The management of OpenVPN clients/certificates is somewhat of a nightmare for large installs unless you use a single certificate for all users (not recommended).
For some truly unknown reason, Cisco’s devices still have support for “small servers” or “simple services”. Examples of these include echo, chargen, daytime and discard. An attacker could possibly start a denial of service attack (DoS) against one or more network devices with those configured. In this case; echo and chargen are to blame by allowing an attacker to cause the chargen service to hit the echo services causing an endless loop of character generation and echo between the two hosts. To disable this, simply enter the following commands:
no service tcp-small-servers
no service udp-small-servers
These commands can be run on nearly all IOS based Cisco equipment.
Dynamic Trunking Protocol (DTP) is a standard feature of Cisco switches and allows two switches to dynamically configure interfaces interconnecting each other to be trunked ports. DTP has 5 modes; Auto (default), On, Off, desirable and nonegotiate. These 5 modes all have a purpose. I have layed out the groundwork below:
To configure this on your switches, issue the following:
switchport trunk encapsulation dot1q
switchport mode trunk
Hopefully this was somewhat worthwhile. It is very basic so I apologize but this is the easiest way to give you the needed information without boring you to death
I was working on a client’s network tonight and thought of about 10k topics to blog about.Â All the commands on Cisco routers and switches.Â The purpose of this would be to help remind me that the basics are not good enought and also expand your mind on what a command does, how to use it and possibly when to implement it.Â If at any point I’m completely off my rocker, you know what to do
Well, last Friday my wife and I added a new edition to the family; an Asus eee PC (XP Home, 1Gb Memory, 120 Gb Hard Drive). We bid the highest on the computer at my companies yearly Christmas Party. I really didn’t want it at first but now that I’ve had a little bit of time on it, the computer is actually pretty fully functional. There are a few minor issues that I see so far but overall, the computer is very very usable.
So far this weekend I’ve really only had time to do some light surfing and software installs to get my core app’s installed but I do have to say that it is very functional. The size and weight are great, it’s “fast enough” which I have mentioned before is a relative term. I won’t be playing WoW or Unreal Tournament any time soon on it but it allows me to surf from one page to another without delay, watch online video via YouTube, Fox on demand or ABC online and it has different power settings depending on how I want to use it (Super Performance, High Performance and Battery Saving Modes).
I will complain that the keyboard takes a little getting used to especially if your normally on a desktop or large laptop, the touch pad buttons are a bit stiff but I can always use a mouse if needed, and I absolutely hate the way they partitioned the hard drive. They did 2 60Gb partitions for C: and D:. Why, that’s all I can ask?
We ended up keeping the black model that was the Christmas party prize but I tell you, I had to defend my manly stance pretty hard against the wife so that she wouldn’t want me to trade it for the pink model.
In some respects it feels faster than my desktop at work (AMD something? 2Ghz, 1Gb Ram).