headers
Gerry | 1 Dec 2011 02:36
Favicon

Re: Virtual Platform leads

On Wed, 30 Nov 2011, Mr. B-o-B wrote:

> On 11/30/2011 9:39 AM, kelly cried from the depths of the abyss:
>> I have been running Libvirt with the KVM / Qemu Linux hypervisor.  I have had 
>> success with Windows Server 2008 R2, Windows Server 2003, and many instances 
>> of Linux without issue.  I have not done any BSD installs to date, so I can't 
>> speak to a BSD install under KVM/Qemu.
>> 
>> The drawback with the virt-manager tool is that it seems to be Linux only 
>> (someone tried a port at one point, but I can't seem to find it).
>>   The virsh shell rocks via ssh session from your smart phone though, so
>> you might not need it.  Recent Ubuntu server releases make it simple to
>> install by adding it as a pre-defined package selection for a VM host
>> during install, but it might be good to set it all up under Slackware so
>> you know all the moving parts :-)
>> 
>> Kelly Black
>
> Thanks for the tip Kelly!  I am in the process of consolidating my test 
> environment at work, and I think I am going to give this a try. Slackware is 
> always my default, so this should work well.  I am happy to see 2008r2 works. 
> A couple of my test boxes need that and other flavors of M$, and the rest are 
> mainly Slack boxes.  All my test boxes are running on VMware workstation, or 
> a pile/stack of old desktops turned server.  Not ideal, and I need to stop 
> the insanity.
>
> The timing of this thread is amazing.  I just finished ordering a bunch of 
> parts to refresh a recently unemployed HP server over here just for this 
> purpose.  I was going to give VMware vSphere 5 a try, but this looks like it 
> more up my alley.
(Continue reading)

Permalink | Reply | 3 comments |
headers
Mr. B-o-B | 1 Dec 2011 14:47
Picon

Re: Virtual Platform leads

Gerry cried from the depths of the abyss...

> Here's a +1 for the libvirt setup.

> I can access it with vnc localhost so virt-manager is still really not 
> needed.
> Certainly good enough for what I do on Windows but I can't speak to whether 
> I'd run a bunch of Windows servers on it.

Forgive me, but I have not read through any of the documentation yet.  Do 
you know if this type of setup will support RDP to the windows guests? 
Not a big deal if VNC works, just curious.  All the Linux guests I will be 
installing don't have X/GUI's installed, so no worries their.

Thanks!

Bob
Permalink | Reply | 2 comments |
headers
gregrwm | 1 Dec 2011 15:44

Re: Virtual Platform leads

Here's a +1 for the libvirt setup.

I can access it with vnc localhost so virt-manager is still really not needed.
Certainly good enough for what I do on Windows but I can't speak to whether I'd run a bunch of Windows servers on it.

Forgive me, but I have not read through any of the documentation yet.  Do you know if this type of setup will support RDP to the windows guests? Not a big deal if VNC works, just curious.  All the Linux guests I will be installing don't have X/GUI's installed, so no worries their.

by design virt-viewer, based on VNC but extended, shows you KVM virtual consoles.  which i generally use just long enough to fix the virt-clone network glitches so i can connect via ssh.  while not strictly necessary i've found virt-manager to be useful for it's handy column of CPU graphs and easy pause/resume/reboot access.

also openvz is working very well for us (linux clients only).  far lower overhead than KVM.  the only theoretical concern is whether to trust the ongoing supply of openvz kernel updates.  so far they (rhel6/openvz) seem rapid.  if that becomes a concern i'll look into fedora/lxc (lxc ships crippled in rhel).
_______________________________________________
TCLUG Mailing List - Minneapolis/St. Paul, Minnesota
tclug-list <at> mn-linux.org
http://mailman.mn-linux.org/mailman/listinfo/tclug-list
Permalink | Reply | 0 comments |
headers
kelly | 1 Dec 2011 16:13

Re: Virtual Platform leads

 

Thu Dec 01 2011 07:47:06 AM CST from "Mr. B-o-B" <mr.chew.baka <at> gmail.com> Subject: Re: [tclug-list] Virtual Platform leads
Forgive me, but I have not read through any of the documentation yet. Do
you know if this type of setup will support RDP to the windows guests?
Not a big deal if VNC works, just curious. All the Linux guests I will be
installing don't have X/GUI's installed, so no worries their.

Thanks!

Bob


Bob,

RDP works just fine.  If you use bridged networking, the host can be a part of the local lan.  By default, the host networking is via a local interface with dhcp served up by dnsmasq.

Kelly
_______________________________________________
TCLUG Mailing List - Minneapolis/St. Paul, Minnesota
tclug-list <at> mn-linux.org
http://mailman.mn-linux.org/mailman/listinfo/tclug-list
Permalink | Reply | 0 comments |
headers
Ryan Coleman | 1 Dec 2011 23:03

Any experience with NetVanta firewalls?

I have a NetVanta 3430 (Gen 1) firewall/VPN in the office and I'm trying to open up FTP for our customers
hardware to send backup configurations...

Does anyone here have any experience with these devices that could help me out? I can get the FTP session to
establish but I cannot seem to get the uploads to open up and start.

Thanks,
Ryan
Permalink | Reply | 3 comments |
headers
Mr. B-o-B | 1 Dec 2011 23:39
Picon

Re: Any experience with NetVanta firewalls?

On 12/1/2011 4:03 PM, Ryan Coleman cried from the depths of the abyss:
> I have a NetVanta 3430 (Gen 1) firewall/VPN in the office and I'm trying to open up FTP for our customers
hardware to send backup configurations...
>
> Does anyone here have any experience with these devices that could help me out? I can get the FTP session to
establish but I cannot seem to get the uploads to open up and start.

I don't know anything about NetVanta, but I have had similar issues in 
the past with Cisco PIX & ASA units.  Since you are able to make the FTP 
connection try doing your ftp in passive mode?  That might work.  Just a 
shot.
Permalink | Reply | 2 comments |
headers
Ryan Coleman | 2 Dec 2011 03:42

Re: Any experience with NetVanta firewalls?

Neither passive nor active starts transfers in either direction.

On Dec 1, 2011, at 4:39 PM, Mr. B-o-B wrote:

> On 12/1/2011 4:03 PM, Ryan Coleman cried from the depths of the abyss:
>> I have a NetVanta 3430 (Gen 1) firewall/VPN in the office and I'm trying to open up FTP for our customers
hardware to send backup configurations...
>> 
>> Does anyone here have any experience with these devices that could help me out? I can get the FTP session to
establish but I cannot seem to get the uploads to open up and start.
> 
> I don't know anything about NetVanta, but I have had similar issues in the past with Cisco PIX & ASA units. 
Since you are able to make the FTP connection try doing your ftp in passive mode?  That might work.  Just a shot.
> _______________________________________________
> TCLUG Mailing List - Minneapolis/St. Paul, Minnesota
> tclug-list <at> mn-linux.org
> http://mailman.mn-linux.org/mailman/listinfo/tclug-list
Permalink | Reply | 1 comment |
headers
ron | 2 Dec 2011 14:03

Android Desktop Linux ?

Android ,with the release of Ice Cream Sandwich source code, is being
ported to x86. I would love to see how people will work to make a desktop
android style for the keyboard and mouse interface. Do you think its a
good option and maybe friendlier for new users that may already be
familiar with its use on the smart phone?
Permalink | Reply | 0 comments |
headers
Matthew Lechleider | 2 Dec 2011 18:49
Favicon

DrupalCamp Chicago 2011 is NEXT WEEKEND

DrupalCamp Chicago 2011 is NEXT WEEKEND! If your interesting in 
attending NOW is the time to register. Registration will close Wednesday 
December 7th.

Saturday December 10th 9:00am-5:00pm
Register - https://drupalcampchicago.org
Cost - $40

SCHEDULE! https://drupalcampchicago.org/program/session-schedule
-We are proud to announce our 2011 presentation schedule is confirmed 
and live on our website!  Take a moment to check out the sessions, 
register a user, and sign up for sessions you plan to attend.  Signing 
up for sessions will help reserve a seat and plan your day.

AFTER PARTY! Proud to announce we have a private bar reserved all to 
ourselves 4:30pm-7:30pm for up to 200 camp attendees. More info soon :)

Camp will take place at the UBS Tower Conference Center on second floor 
of One N Wacker Drive. Public transportation is recommend for this 
event. Venue is very close to Ogilvie and Unions Stations in downtown 
Chicago.
-Map http://g.co/maps/qgc5f
-Venue/Directions https://drupalcampchicago.org/about/directions

Did you hear about the pre-camp training Duo Consulting is offering the 
day before camp with Doug Vann? Details  <at>  
https://drupalcampchicago.org/pre-camp-training

Are you able to volunteer at camp? We need technical and non-technical 
volunteers to help everything run smoothly. Everything from registration 
desk to "AV club nerds" are needed. If you have video gear available to 
help with presentation recording, let us know! If your available, please 
contact us  <at>  https://drupalcampchicago.org/volunteer

Sponsorships are still available to make this event happen. If you can 
provide support, let us know  <at>  https://drupalcampchicago.org/sponsorship
Permalink | Reply | 0 comments |
headers
Justin Krejci | 3 Dec 2011 02:51

Re: Any experience with NetVanta firewalls?

I don't know anything about NetVanta either but if both the FTP client
and the FTP server is NAT'ed you'll need a smart firewall to be able to
inspect the FTP commands and monitor the TCP port numbers.

For a cool page that clearly describes the behavior between passive and
active transfers and how NAT complicates life, check this out

http://slacksite.com/other/ftp.html

Excerpt from the end:

A quick summary of the pros and cons of active vs. passive FTP is also
in order:

Active FTP is beneficial to the FTP server admin, but detrimental to the
client side admin. The FTP server attempts to make connections to random
high ports on the client, which would almost certainly be blocked by a
firewall on the client side. Passive FTP is beneficial to the client,
but detrimental to the FTP server admin. The client will make both
connections to the server, but one of them will be to a random high
port, which would almost certainly be blocked by a firewall on the
server side.

Luckily, there is somewhat of a compromise. Since admins running FTP
servers will need to make their servers accessible to the greatest
number of clients, they will almost certainly need to support passive
FTP. The exposure of high level ports on the server can be minimized by
specifying a limited port range for the FTP server to use. Thus,
everything except for this range of ports can be firewalled on the
server side. While this doesn't eliminate all risk to the server, it
decreases it tremendously.

On Thu, 2011-12-01 at 20:42 -0600, Ryan Coleman wrote:
> Neither passive nor active starts transfers in either direction.
> 
> 
> On Dec 1, 2011, at 4:39 PM, Mr. B-o-B wrote:
>
Permalink | Reply | 0 comments |

Gmane