0262 | freeipa add replica stuck at ‘No status yet’

February 18th, 2025 by icez | Posted in Misc | No Comments »

reference: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org/thread/OY6EC5XS54OLKBL57S3FJ3HUANWIJQPN/

ipa-replica-install stuck with:

  [26/40]: setting up initial replication
Starting replication, please wait until this has completed.
No status yet
No status yet
No status yet
No status yet
No status yet
No status yet
No status yet
No status yet
No status yet
No status yet

step to fix

• cancel the replication process
• uninstall with

/usr/sbin/ipa-server-install --uninstall

• create file ‘custom.ldif’ with content:

dn: cn=config
changetype: modify
replace: nsslapd-maxsasliosize
nsslapd-maxsasliosize: 8388608
replace: nsslapd-sasl-max-buffer-size
nsslapd-sasl-max-buffer-size: 8388608

• rerun ipa-replica-install by adding option ‘–dirsrv-config-file=custom.ldif’

0261 | เปิด ripe-atlas probe กันเถอะ

January 14th, 2025 by icez | Posted in Misc | No Comments »

docker-compose.yml

services:
  ripe-atlas:
    image: jamesits/ripe-atlas:latest
    restart: always
    environment:
      RXTXRPT: "yes"
    volumes:
      - "./etc:/var/atlas-probe/etc"
      - "./status:/var/atlas-probe/status"
    cap_drop:
      - ALL
    cap_add:
      - CHOWN
      - SETUID
      - SETGID
      - DAC_OVERRIDE
      - NET_RAW
#    mem_limit: "64000000000"
#    mem_reservation: 64m
    labels:
      - "traefik.enable=false"
      - "com.centurylinklabs.watchtower.enable=true"
    logging:
      driver: json-file
      options:
         max-size: 10m
    network_mode: "host" # if possible, avoid double NAT
    # security_opt:
    #   - seccomp:unconfined

รันแล้วจะได้ไฟล์ public key ใน folder ./etc/probe_key.pub เอาไปใส่ใน https://atlas.ripe.net