tftp part 2 – the tftp client requires a firewalld as well

Part 1 – running tftp server non root (xinetd) Part 2 – the tftp client requires firewalld changes as well (this blog post) Part 3 – replacing xinetd with systemd   firewalld change on TFTP clients The rest of this blog post will elaborate on what happens if you don’t do this. The quick bit […]

tftp part 1 – running it as non-root

I was trying to get the components of my PXE build server working; ie: http and tftp. xinetd and tftpd installed on Centos 7 (on a pi.) tftp client installed on Centos 7. Both with firewalld and selinux enforcing. I stumbled over a few things in the process, and have reposted that information in three […]

kvm: libvirt-guests and machined

Two main things covered off in this post: Getting libvirt-guests to work correctly, and machined/machinectl libvirt-guests This is configured via /etc/sysconfig/libvirt-guests and there’s a systemd service to enable: libvirt-guests.service Enabling it allows you to configure how guests start and stop with more flexibility. Some features libvirt-guests provides: On host shutdown, suspend the guests or shut […]

puppetising kvm on centos7

Yak shaving I found out about a bunch of stuff today, including the now 19-year-old term yak shaving. Clearer examples out there such as here, here and here. I was trying to roll creation of KVM virtual machines into Puppet (that is, bring my existing use of KVM at home under management) and in unpicking […]

AWOL Linux LVM volume group and physical volume

TL;DR Looks like there maybe a bug in lvm2-2.02.180-10.el7_6.3. Will raise a ticket for it with Centos. Update 2019-02-23 Ticket raised with Centos. Having tried to reproduce it on another machine, it takes more than just upgrading the package – as one would expect. No idea what the other variables might be. Update 2019-04-22 I […]

java – troubleshooting SSL/TLS truststores

Troubleshooting TLS issues involving a Java app can be difficult if the division of responsibility means that responsibility for the certs and truststores is not vested in a team with any Java skill.  This post is aimed at someone, like me, in that situation. SSLPoke Atlassian (JIRA/Confluence/Bitbucket) provide a simple program that does about as […]