When you are running out of diskspace you can purge the MySQL binary logs to free up some space
mysql> PURGE BINARY LOGS BEFORE 'yyyy-mm-dd hh:mm:ss';Sometimes you are already on 99% disk space and need more drastic methods. This requires manually removing the logfiles.
systemctl stop mysql
cd /var/llog/mysql && a=`ls |grep -v relay |grep bin.index` && b=`wc -l <$a` ; c=`echo $(($b/2))` |xargs -l rm ; echo $c | head -n $b $a |cut -d "/" -f2 && sed 1,$c\d $a -i
systemctl start mysqlMake sure nvme-cli is installed:
$ sudo apt install nvme-cliCheck for availible nvme disks:
$ sudo nvme list
Node SN Model Namespace Usage Format FW Rev
---------------- -------------------- ---------------------------------------- --------- -------------------------- ---------------- --------
/dev/nvme0n1 S4EVNFXXXXXXXX9972H Samsung SSD 970 EVO Plus 500GB 1 26,60 GB / 500,11 GB 512 B + 0 B 2B2XXXXXM7
With nvme-cli you can now check the internal temperature, disk usage, power cycles, and much more:
$ sudo nvme smart-log /dev/nvme0
Smart Log for NVME device:nvme0 namespace-id:ffffffff
critical_warning : 0
temperature : 40 C
available_spare : 100%
available_spare_threshold : 10%
percentage_used : 0%
data_units_read : 90935
data_units_written : 119679
host_read_commands : 4491381
host_write_commands : 2370351
controller_busy_time : 8
power_cycles : 34
power_on_hours : 9
unsafe_shutdowns : 1
media_errors : 0
num_err_log_entries : 0
Warning Temperature Time : 0
Critical Composite Temperature Time : 0
Temperature Sensor 1 : 40 C
Temperature Sensor 2 : 38 C
Thermal Management T1 Trans Count : 0
Thermal Management T2 Trans Count : 0
Thermal Management T1 Total Time : 0
Thermal Management T2 Total Time : 0
OpenVPN provides flexible VPN solutions to secure your data communications, whether it’s for Internet privacy, remote access for employees, securing IoT, or for networking Cloud data centers. Our VPN Server software solution can be deployed on-premises using standard servers or virtual appliances, or on the cloud.
Make sure all latests packages and updates have been installed:
$ sudo apt update
$ sudo apt upgrade
$ sudo apt dist-upgrade$ wget https://git.io/vpn -O openvpn-install.sh
$ sudo chmod +x openvpn-install.sh
$ sudo ./openvpn-install.sh The script will ask you some questions for it’s basic configuration.
– When your IP address is asked, choose your WAN (public) address
– When protocol is asked, i recommend default UDP
– Port can be anything you want, i normally keep default
– When asked, pick 1.1.1.1 as your DNS server as this is one of the fastest currently online.
After this the installation will go ahead and inform you when it’s done. You can verify if OpenVPN is running or not:
$ sudo systemctl status openvpn@server # <--- get server statusYou can start or stop OpenVPN with the following commands:
$ sudo systemctl stop openvpn@server # <--- stop server
$ sudo systemctl start openvpn@server # <--- start serverAt the end of the installation you whould see a message like this:
Your client configuration is available at: /root/bontekoe.ovpnAs i am using Linux (Ubuntu) on my laptop, i can simply copy that ovpn file to my computer using scp.
$ sudo scp root@88.99.189.27:/root/bontekoe.ovpn /etc/openvpn/client.confThis should be enough to connect! Check if everything is working by running:
$ sudo openvpn --client --config /etc/openvpn/client.confNow, by opening another terminal you should be able to ping 10.8.0.1 (the VPN host).
If you are running windows, there is a client here.
Fio which stands for Flexible I/O Tester is a free and open source disk I/O tool used both for benchmark and stress/hardware verification that i mainly use for benchmarking ceph or specific ssd harware.
When using an SSD make sure it’s pre-warmed. This can be done using the dd command:
dd if=/dev/zero of=/dev/xvdb bs=100M &After this you can start performance measurement with fio. My advice is to run this test for 6 to 8 hours in order to get real data out of it.
fio --filename=/dev/nvmeXnXpX --direct=1 --rw=randwrite --refill_buffers --norandommap --randrepeat=0 --ioengine=libaio --bs=128k --iodepth=16 --numjobs=1 --time_based --runtime=86400 --group_reporting –-name=benchtestThis command will run for 24 hours and perform write-only workload of 128k blocks on a single process.
sudo fio --name=randread --ioengine=libaio --iodepth=16 --rw=randread --bs=4k --direct=0 --size=512M --numjobs=4 --runtime=240 --group_reportingThis will use 4 processes, run for 2 minutes and only perform read iops.
sudo fio --randrepeat=1 --ioengine=libaio --direct=1 --gtod_reduce=1 --name=test --filename=random_read_write.fio --bs=4k --iodepth=64 --size=4G --readwrite=randrw --rwmixread=75This will to a read/write test on a 4 GB file.
Windows Subsystem for Linux (WSL) allows you to run Linux straight from your Windows Desktop. I use this on a daily basis for running Ansible scripts without having to install VM’s. Make sure you installed al latest updates.
Open up a Powershell box as Administrator (search powershell, right click and run as Administrator).
Enable-WindowsOptionalFeature -Online -FeatureName Microsoft-Windows-Subsystem-LinuxThis will initiate the installation and once finished ask if you would like to reboot your system. Go ahead and do that. When the reboot is done search for ‘bash’ and open that, it will first require a few anwsers. Simply fill out all the questions and once that is done you will have Ubuntu up and running.
Now you are basicly in a Linux environment so you can install Ansible the typical way. Again, in the ‘bash’ window of course, use these instructions:
sudo apt-get -y install python-pip python-dev libffi-dev libssl-dev
sudo pip install ansibleShould you get any permission errors (i did not have this time, but given the nature of how WSL works that could happen) install pip with the –user flag. This will cause it to install ansible in the users home dir, not globally.
You are done. Using the following command you can check what ansible version is now installed:
ansible --versionIf you need the most recent version check out my other post here.
Ubuntu doesn’t ship with the newest version of ansible out of the box, sadly. You have to manually configure the PPA on your system in order to upgrade to the stable version. Follow these commands to install the PPA:
$ sudo apt update
$ sudo apt upgrade
$ sudo apt install software-properties-common
$ sudo apt-add-repository ppa:ansible/ansibleHit Enter when asked, and once the process is done update your apt repos:
$ sudo apt updateNow you can either upgrade or simply install ansible:
$ sudo apt install ansibleThis should be all, use the following to verify the ansible version:
$ ansible --versionRunning Ubuntu 18.04 i ran out of disk space on my main partition. I increased disk space in VMware and needed to expand the partitions from within Ubuntu. Start with scanning for changes on your disk
echo 1 > /sys/class/block/sda/device/rescanVerify that you can see the new (correct) disk space using:
fdisk -lCreate a new partition using “cfdisk”, navigate to the free space and hit “new”. After that hit Write to make sure the partition table gets written. Close cfdisk and either reboot or rescan to update your partition table. Now it’s time to add the disk space. First, find the new partition number:
fdisk -lIn my case sda3 was created to i’m going to create a new volume on it
pvcreate /dev/sda3now extent my volume group with the newly added volume:
vgextend ubuntu-dev-box /dev/sda3Extend the volume with all available (new) disk space:
lvextend -l+100%FREE /dev/ubuntu-dev-box/rootNow resize the filesystem:
resize2fs /dev/mapper/ubuntu--dev--box--rootI often use a ‘hopping server’ when connecting to clients, that means i need to login twice each time. To make my life easier i sometimes use an SSH tunnel so i can connect to clients directly.
SSH Tunnel can also be usefull when your office blocks netflix 😉
This will allow you to access remote servers direcly from your local computer. Let’s assume you want to use RDP (3389) to a clients hosts (10.0.1.1) and your hopping server is ‘hopping.server’
ssh -L 6000:10.0.1.1:3389 wieger@hopping.serverNow you can open Remote Desktop and connect to ‘localhost:6000’, directing you through the tunnel!
This will make your local service/port acccessible from a remote host. Sometimes i use this to keep a ‘backdoor’ and login remotely (home or whatever).
Let’s say you want to make a webapplication (TCP 443) availible at port 6000 on the remote SSH server
ssh -R 6000:localhost:443 wieger@bontekoe.technologyNow you should be able to connect to port 6000 on the remote host (bontekoe.technology)
This is ideal for people who want to use the internet safely/anonymous or for offices where Netflix is blocked 😉
Use a remote server to tunnel all web traffic (eg. home server), connect through SSH to it using the -D flag
ssh -D 6000 wieger@bontekoe.technologyNow open up your browser settings, navigate to the connection properties and enter a Proxy server (manually using SOCKS). Use 127.0.0.1 as host and 6000 as port. The tunnel will remain open as long as you are connected through SSH.
mod_pagespeed is an open-source Apache module created by Google to help Make the Web Faster by rewriting web pages to reduce latency and bandwidth. mod_pagespeed releases are available as precompiled linux packages or as source. (See Release Notes for information about bugs fixed)
Installation
apt update -y
apt upgrade -y
apt-get install apache2 -y
systemctl start apache2
systemctl enable apache2
wget https://dl-ssl.google.com/dl/linux/direct/mod-pagespeed-stable_current_amd64.deb
dpkg -i mod-pagespeed-stable_current_amd64.deb
systemctl restart apache2
curl -D- localhost | head | grep pagespeed
mod_pagespeed has a very simple web-interface to see statistics. If you do not case, skip this step.
nano /etc/apache2/mods-available/pagespeed.conf
Add these lines to it:
<Location /ps_admin>
Order allow,deny
Allow from localhost
Allow from 127.0.0.1
Allow from all
SetHandler ps-admin
</Location>
<Location /ps_global_admin>
Order allow,deny
Allow from localhost
Allow from 127.0.0.1
Allow from all
SetHandler ps_global_admin
</Location>After restarting apache you can go to http://<your url>/ps_admin