April 2014 Archives

VMware ESXi 5.5 中的機器, 若使用 E1000 網卡, PPTP 會無法運作,
Client 會連不上, Server 端 Log 會看到類似這樣的 Log
GRE: read(fd=6,buffer=610c80,len=8196) from PTY failed: status = -1 error = Input/output error, usually caused by unexpected termination of pppd, check option syntax and pppd logs
此問題查了滿久的, 完全一樣的設定移到 VM 就不行, 原來是 VMware 本身的問題

解法1: 上 Patch (需要架 Update Manager 伺服器)
解法2(Workaround): 把網卡改成 VMXNET3, 若是 CentOS 必需裝 centos.plus 的 kernel, 才會有 vmxnet3 的 module

ref. Point-to-Point Tunneling Protocol (PPTP) connections may not work on ESXi 5.5 (2061834)

2014-10-08 Update: PPTP Client 也有類似的狀況, Log 最後會看到 LCP: timeout sending Config-Requests

管理 Compute Engine, 需安裝 gcutil,
python 版本至少要 2.6.x 以上才行, 最好要有 X 的環境, 因為一開始認證時, 會帶出登入 Google 的網址,
若是純文字, 會用 w3m, 但是 Email 欄位會填不到

認證完後, 就可以用管理介面上的 SSH command (gcutil) 使用 Key 直接連入,
預設只能用 Key 登入, 要打開密碼登入需改 /etc/ssh/sshd_config
PasswordAuthentication yes
再 restart sshd
要切到 root 用 sudo -s

g1-small 的狀態
[root@instance-3 make]# cat /proc/cpuinfo
processor : 0
vendor_id : GenuineIntel
cpu family : 6
model : 62
model name : Intel(R) Xeon(R) CPU @ 2.50GHz
stepping : 4
cpu MHz : 2499.998
cache size : 30720 KB
physical id : 1
siblings : 1
core id : 4
cpu cores : 1
apicid : 40
initial apicid : 40
fpu : yes
fpu_exception : yes
cpuid level : 13
wp : yes
flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ss syscall nx pdpe1gb rdtscp lm constant_tsc up xtopology unfair_spinlock pni pclmulqdq ssse3 cx16 sse4_1 sse4_2 x2apic popcnt aes f16c rdrand hypervisor lahf_lm xsaveopt fsgsbase smep
bogomips : 4999.99
clflush size : 64
cache_alignment : 64
address sizes : 46 bits physical, 48 bits virtual
power management:

[root@instance-3 make]# free
total used free shared buffers cached
Mem: 1741292 1524272 217020 0 45972 1246116
-/+ buffers/cache: 232184 1509108
Swap: 0 0 0

[root@instance-3 make]# df -h
Filesystem Size Used Avail Use% Mounted on
/dev/sda1 9.9G 3.4G 6.0G 37% /
tmpfs 851M 0 851M 0% /dev/shm

ping 到 GCE APAC ping 值不到 10ms, 地點位置應該是在台灣彰濱 IDC,
從台灣連 GCE APAC 上傳下載網速都超過 200 Mbps, 對台灣的 User 有滿大的吸引力

about:config
New Boolean
network.manage-offline-status=false

speedtest-cli
wget -O speedtest-cli https://raw.github.com/sivel/speedtest-cli/master/speedtest_cli.py
chmod +x speedtest-cli

# speedtest-cli
Retrieving speedtest.net configuration...
Retrieving speedtest.net server list...
Testing from XXX (XXX.XXX.XXX.XXX)...
Selecting best server based on ping...
Hosted by Far Eastone Telecommunications Co., Ltd. (Taipei) [1.06 km]: 29.325 ms
Testing download speed........................................
Download: 92.40 Mbit/s
Testing upload speed..................................................
Upload: 91.83 Mbit/s

rpm -e openssl-devel # remove old version package

wget https://www.openssl.org/source/openssl-1.0.1g.tar.gz
tar zxf openssl-1.0.1g.tar.gz
cd openssl
./config
make
make test
make install

cd /your/httpd/dir
export LDFLAGS=-ldl
./configure --enable-ssl --with-ssl=/usr/local/ssl
make
make install

/usr/local/apache/bin/httpd -k restart # restart apache

curl -I localhost # using curl to check if OpenSSL updated, you'll see something like this
HTTP/1.1 200 OK
Date: Mon, 14 Apr 2014 07:09:20 GMT
Server: Apache/2.2.27 (Unix) mod_ssl/2.2.27 OpenSSL/1.0.1g PHP/5.4.28
Content-Type: text/html; charset=iso-8859-1

ref. The Heartbleed Bug

Google 推出了跟 Amazon EC2 類似的服務 Google Cloud Compute Engine, 價錢跟 Amazon EC2 幾乎一樣,
Zone 目前只有兩個區可以選, europe-west, us-central
Image 目前有 debian-7, centos-6, rhel-6, sles-11, 尚未有 Windows 平台
Public IP 的做法跟 Amazon EC2 也一樣, 有在使用是免費的

ref. Google Cloud Platform