Tag: linux

LDAPS Problem: Can’t contact LDAP server (-1)

LDAP authentication problem in the customer environment: The error message was received right after entering the password. Tshark says: 1 0.000000000 192.168.99.200 → 10.10.10.10 TCP 74 44780 → 3269 [SYN] Seq=0 Win=64240 Len=0 MSS=1460 SACK_PERM=1 TSval=2891116193 TSecr=0 WS=128 2 0.001225814 10.10.10.10 → 192.168.99.200 TCP 74 3269 → 44780 [SYN, ACK] Seq=0 Ack=1 Win=8192 Len=0 MSS=1460 […]

Linux Routing Memos

These are just small hints and memos what to do on a Debian Linux setup. This is not a complete guide on doing a secured routing environment with Linux. /etc/sysctl.conf: net.ipv4.ip_forward=1 Configure /etc/network/interfaces iptables -t nat -A POSTROUTING -o <upstream_interface> -j MASQUERADE apt-get install iptables-persistent apt-get install iftop apt-get install conntrack conntrack -L -s 10.11.1.10 […]

NetBox Install on Debian 9

When installing NetBox on Debian 9 and Apache, the instructions in http://netbox.readthedocs.io/en/latest/ are fine, just some small additional operations are needed. The libapache2-mod-wsgi-py3 package needs to be installed as well, otherwise you will get errors about the “WSGIPassAuthorization on” command when starting Apache [this has later been addressed in commit b917e8d] Disable the “000-default” site […]

TLS Certificates in Debian and Apache

Adding TLS configurations in Apache: cat > /etc/ssl/private/myserver.key chmod 0640 /etc/ssl/private/myserver.key chgrp ssl-cert /etc/ssl/private/myserver.key cat > /etc/ssl/certs/myserver.crt cd /etc/apache2/sites-available cp default-ssl.conf myserver-ssl.conf vi myserver-ssl.conf – add ServerName if needed – RedirectMatch ^/$ https://myserver.mydomain.com/appname (if needed) – edit SSLCertificateFile and SSLCertificateKeyFile a2ensite myserver-ssl a2enmod ssl vi 000-default.conf – add ServerName if needed – Redirect / https://myserver.mydomain.com/ […]