Search Results

Search found 23220 results on 929 pages for 'default constraint'.

Page 343/929 | < Previous Page | 339 340 341 342 343 344 345 346 347 348 349 350  | Next Page >

• route http and ssh traffic normally, everything else via vpn tunnel

  - by Normadize

  I've read quite a bit and am close, I feel, and I'm pulling my hair out ... please help! I have an OpenVPN cliend whose server sets local routes and also changes the default gw (I know I can prevent that with --route-nopull). I'd like to have all outgoing http and ssh traffic via the local gw, and everything else via the vpn. Local IP is 192.168.1.6/24, gw 192.168.1.1. OpenVPN local IP is 10.102.1.6/32, gw 192.168.1.5 OpenVPN server is at {OPENVPN_SERVER_IP} Here's the route table after openvpn connection: # ip route show table main 0.0.0.0/1 via 10.102.1.5 dev tun0 default via 192.168.1.1 dev eth0 proto static 10.102.1.1 via 10.102.1.5 dev tun0 10.102.1.5 dev tun0 proto kernel scope link src 10.102.1.6 {OPENVPN_SERVER_IP} via 192.168.1.1 dev eth0 128.0.0.0/1 via 10.102.1.5 dev tun0 169.254.0.0/16 dev eth0 scope link metric 1000 192.168.1.0/24 dev eth0 proto kernel scope link src 192.168.1.6 metric 1 This makes all packets go via to the VPN tunnel except those destined for 192.168.1.0/24. Doing wget -qO- http://echoip.org shows the vpn server's address, as expected, the packets have 10.102.1.6 as source address (the vpn local ip), and are routed via tun0 ... as reported by tcpdump -i tun0 (tcpdump -i eth0 sees none of this traffic). What I tried was: create a 2nd routing table holding the 192.168.1.6/24 routing info (copied from the main table above) add an iptables -t mangle -I PREROUTING rule to mark packets destined for port 80 add an ip rule to match on the mangled packet and point it to the 2nd routing table add an ip rule for to 192.168.1.6 and from 192.168.1.6 to point to the 2nd routing table (though this is superfluous) changed the ipv4 filter validation to none in net.ipv4.conf.tun0.rp_filter=0 and net.ipv4.conf.eth0.rp_filter=0 I also tried an iptables mangle output rule, iptables nat prerouting rule. It still fails and I'm not sure what I'm missing: iptables mangle prerouting: packet still goes via vpn iptables mangle output: packet times out Is it not the case that to achieve what I want, then when doing wget http://echoip.org I should change the packet's source address to 192.168.1.6 before routing it off? But if I do that, the response from the http server would be routed back to 192.168.1.6 and wget would not see it as it is still bound to tun0 (the vpn interface)? Can a kind soul please help? What commands would you execute after the openvpn connects to achieve what I want? Looking forward to hair regrowth ...

  Read the article

• Using Gimp to batch convert images to another format in Windows

  - by Alex Marshall

  As implied by the title, does anybody know how to use the gimp-console-[version].exe program to batch convert images between formats (with default settings) in Windows ?

  Read the article

• When is a domain computer account scheduled to change the password?

  - by Jason Stangroome

  I understand domain-joined computers have machine accounts in AD and these accounts have passwords that expire (apparently every 30 days by default) and those passwords are automatically changed without user intervention. Given that this is known to cause issues when restoring snapshots of domain-joined virtual machines, is it possible to query the domain-joined computer or AD to determine when the machine account password is next scheduled to be changed?

  Read the article

• Dual boot: Windows XP and Ubuntu

  - by user19455

  (I know that there are some questions similar to this one, but the ones I have read (and I have read more than one, did not answer my question) I have installed, in two physically different hard drives Windows XP and Ubuntu 9.0. I would like to have a dual boot that, if nothing was pressed, the Windows XP would start automatically. I have read about Grub but got the impression that it wasn't possible to default the operating system to start to something other than Ubuntu. Thanks.

  Read the article

• Apache's 404 page not shown in IE but works in firefox?

  - by apache

  The related configuration is like this: ErrorDocument 404 /404.php And it works in firefox,but when in IE it's not shown(IE's default 404 page is shown instead) Has anyone experienced this?

  Read the article

• Why can't Emacs on Mac OS X find the Info directory node?

  - by Scott Schulthess

  The default Emacs on Mac OS X, 22.1, appears to have some problems with the info/help stuff. When you hit C+h i, it says: Can't find the Info directory node. It works in AquaEmacs, but I downloaded the 23 version of emacs precompiled binaries from here and I still have the same problem.

  Read the article

• Snow Leopard - Finder "Arrange By ..." for all files/folders

  - by cloudfade

  I just upgraded to Snow Leopard and one feature that seems to be different (from Leopard) is that setting the default "arrange by" option doesn't affect all files and folders, and only changes the currently open folder. Is there a way to do this so these settings stay persistent for all files and folders?

  Read the article

• Should I worry about making my picasa web albums public?

  - by Motti

  I choose the public option for all my albums in Picasaweb, these mostly (90%) contain pictures of my children which I share with my family. Ever so often somebody I don't know adds me as a favorite, at current count I have 7 people in my fan list (non of whom I know) and only three of them have any public albums. Is this creepy? I take care not to upload any pictures that may attract perverts What would you recommend, private by default or continue with public?

  Read the article

• How to install jdk,jre 1.6.0_17 in ubuntu 10.4?

  - by abc

  How to install jdk,jre 1.6.0_17 in ubuntu 10.4? by default it takes 1.6.0_20 how to install the specific version ?

  Read the article

• LOCAL and RADIUS authentication on ASA

  - by ghp

  Have configured local authentication which was working fine.And today I wanted to implement RADIUS too .. but after I have done, Im unable to login to my firewall user-identity default-domain LOCAL aaa authentication ssh console LOCAL and RADIUS aaa-server RADIUS protocol radius aaa-server RADIUS (inside) host xyzabc Key zzzzzz aaa authentication ssh console RADIUS aaa authentication enable console RADIUS aaa authentication http console RADIUS Can someone help me login to my firewall

  Read the article

• Is there a way to create a cmd shortcut for a specific folder on W7 or/and W8?

  - by Hinstein

  Let say i have 3 different folders that i want to access with CMD C:\Users\Henok\Documents\Visual Studio 2012\Projects\TestApp1\Debug C:\Users\Henok\Documents\Visual Studio 2012\Projects\TestApp2\Debug C:\Users\Henok\Documents\Visual Studio 2012\Projects\TestApp3\Debug I wonder if there is a way to create 3 different cmd shortcuts to access those directory (folders) individually without changing the default cmd directory location. Forgive me for my broken English, and thanks for your time.

  Read the article

• Export/Import Windows XP wireless configs

  - by blunders

  About to rebuild my XP install and figured I'd see if there was a file or interface for collecting the configs for the built in Windows XP wireless manager. I've looked under the "advance settings" tab and within the properties GUI for each connection and I'm not seeing a way to export the configs. Clearly if I'm exporting these I'd like to be able to import or override the default config with the backup.

  Read the article

• Tomcat maximum threads

  - by Clinton Bosch

  I understand that setting the maximum number of connections available in a connection pool should be the same as your maxThreads configured for your Tomcat server (which correlates to the number of requests that can be handled) For tomcat the default is 200, I assume there is a maximum that you can safely configure for your Tomcat server before things start getting out of control, which I assume is also governed by the resources of the machine it is running on. I am trying to get an understanding of the size of maxThreads that people are using with success, is 1000 too big?

  Read the article

• Group traffic shaping with traffic control?

  - by mmcbro

  I'm trying to limit the output bandwidth generated by an application with linux tc. This application sends me the source port of the request that I use has a filter to limit each user at a given downloadspeed. I feel that my setup could be managed way better if I had a better knowledge of linux tc. At the application level users are categorized as members of a group, each group have a limited bandwidth. Example : Members of group A : 512kbit/s Members of group B : 1Mbit/s Members of group C : 2Mbit/s When a user connects to the application, it retrieves the source port to the origin of the request from the user and sends me the source port and the bandwidth at which the user must be limited depending on group to which it belongs. With these informations I must add the appropriate rules so that the user (the source port in reality) is limited to the right bandwidth. If the user that connect isn't a member of any group it should be limited at a default bandwidth speed. I'm actually managing this by using a self made daemon that add or remove rules from when it receive a request from the application. With my little knowledge of tc I'm not able to limit other users (ones that aren't in a group, all others in fact) at a default speed and my configuration seems awful to me. Here is the base of my tc qdisc and classes : tc qdisc add dev eth0 root handle 1: htb tc class add dev eth0 parent 1: classid 1:1 htb rate 100mbps ceil 125mbps To classify a user at a given speed I have to add one subclass and then associate one filter to it : # a member of group A tc class add dev eth0 parent 1:1 classid 1:11 htb rate 512kbps ceil 512kbps # tts associated filter to match his source port tc filter add dev eth0 protocol ip parent 1:0 prio 1 u32 match ip sport 50001 flowid 1:11 # a member of group A again tc class add dev eth0 parent 1:1 classid 1:12 htb rate 512kbps ceil 512kbps # tts associated filter to match his source port tc filter add dev eth0 protocol ip parent 1:0 prio 1 u32 match ip sport 61524 flowid 1:12 # a member of group B again tc class add dev eth0 parent 1:1 classid 1:13 htb rate 1000kbps ceil 1000kbps # tts associated filter to match his source port tc filter add dev eth0 protocol ip parent 1:0 prio 1 u32 match ip sport 57200 flowid 1:13 I already know that a source port could be the same if its coming from a different IP address the thing is the application is behind a proxy so I don't have to manage any IP address in that situation. I would like to know how to manage the fact that for all other users (request/source port, whatever you name it) could be limited at a given speed each. I mean that each connection should be able to use at max 100kbit/s for example, not a shared 100kbit/s. I also would like to know if there is a way to simplify my rules. I don't know if it is possible to use only one class per group and associate multiple filters to the same class so each users could be handled by one class and not one class per user. I appreciate any advice, thanks.

  Read the article

• Echo 404 directly from nginx to improve performance

  - by user64204

  I am in charge of production servers serving static content for a website. Those servers are constantly being crawled by bots looking for potential exploits (which isn't that much of a problem security-wise because no application can be reached behind the web server) but generates thousands of 404 per day, sometimes per hour. I am looking into ways of blocking those requests but it's tricky (you want to make sure you don't block legitimate traffic and these bots are becoming more and more clever at looking like they're legit) and is going to take me a while to find an acceptable solution. In the meantime I would like to reduce the performance impact of serving those 404 pages. Indeed we're using nginx which by default is configured to serve it's 404 page from the disk (This can be changed using the error_page directive but in the end the 404 will either have to be served from disk or from another external source (e.g. upstream application which would be worst)) which isn't ideal. I ran a test with ab on my local machine with a basic configuration: in one case I echo a message directly from nginx so the disk isn't touched at all, in the other case I hit a missing page and nginx serves its 404 from disk. server { # [...] the default nginx stuff location / { } location /this_page_exists { echo "this page was found"; } } Here are the test results (my laptop has Intel(R) Core(TM) i7-2670QM + SSD in case you're wondering why they are so high): $ ab -n 500000 -c 1000 http://localhost/this_page_exists Requests per second: 25609.16 [#/sec] (mean) $ ab -n 500000 -c 1000 http://localhost/this_page_doesnt_exists Requests per second: 22905.72 [#/sec] (mean) As you can see, returning a value with echo is 11% ((25609-22905)÷22905×100) faster than serving the 404 page from disk. Accordingly I would like to echo a simple 404 Page not Found string from nginx. I tried many things so far but they all failed, essentially the idea was this: location / { try_files $uri @not_found; } location @not_found { echo "404 - Page not found"; } The problem is that as soon as the echo directive is used, the http response code is set to 200. I tried changing that by doing error_page 200 = 400 but that breaks the configuration. How can I serve a 404 page directly from nginx? (without hacking the source which may be might next step)

  Read the article

• Ubuntu: how to change hard disc name?

  - by user33144

  I have computer with installed Ubuntu. By default hard disc name consist of sequence numbers and letters, which not easy to remember and input in terminal. How to change hard disk name in Ubuntu? Which file to change? Thanks in advance.

  Read the article

• iLOM Boot device SUN X4170

  - by bernie

  I have configured the boot device to cdrom but whenever I reboot the server, it defaults to boot_device=default. Pressing F2/F8 during POST does not activate the BIOS setup. set boot_device=cdrom Set 'boot_device' to 'cdrom' -> show /HOST Targets: diag Properties: boot_device = cdrom generate_host_nmi = (Cannot show property) Commands: cd set show

  Read the article

• Change file icons in Windows 7

  - by Michael Itzoe

  The Folder Options dialog in Windows XP Explorer had a File Types tab that allowed one to change a file type's icon. Windows 7 doesn't have this. Is there a way to change file icons without changing its default application?

  Read the article

• undo moving of a folder in Windows

  - by Tony_Henrich

  There are times when instead of scrolling vertically in file explorer I accidentally move a folder to within another folder. Great! It happens so quick I don't know which folder was moved and this means I just screwed up an application installation. Is there a way to undo this operation? Or someway to disable moving of folders by default? Using Windows 7.

  Read the article

• cannot change theme and desktop background in ubuntu 10.04

  - by Nrew

  I tried to follow this tutorial frome ghacks.net. But I end up with a bug. Everytime I try to change the desktop background or the theme. It opens up lots of folders. And then close it back again. So I cannot do anything when I try to change the background or the theme to the default. Here is the tutorial And I can't even shutdown my machine now, please help.

  Read the article

• ESX guest machine floppy drives

  - by warren

  What purpose does having a virtual floppy drive on a guest in ESX serve? Is there a way to configure ESX by default to NOT include such a device? It's annoying to have to remove it by hand once a new VM is ready to be provisioned.

  Read the article

• Where route to 169.254.0.0 comes from?

  - by jackhab

  Running CentOS 5.4 Why do I have route to 169.254.0.0 although it does not appear in Network Ethernet Device Route configuration dialog? Destination Gateway Genmask Flags Metric Ref Use Iface 192.168.1.0 * 255.255.255.0 U 0 0 0 eth2 169.254.0.0 * 255.255.0.0 U 0 0 0 eth2 default 192.168.1.1 0.0.0.0 UG 0 0 0 eth2 Thanks.

  Read the article

• Security Restrictions Downloading From the Internet

  - by Cyper

  Hi, For some reason since we rolled out IE7 to the estate users are unable to download from the Internet, they get an error message "the operation could not be completed due to restrictions on the computer" I have checked the GPO and it allows downloads in the Default domain policy. I am I missing something in GPO or is this problem with IE7. Any help would be much appreciated. Cheers

  Read the article

• Change the Mac notification sound on a per-application basis

  - by Mark Szymanski

  By default on Mac OS X there is a system-wide notification sound that you can choose. This sound is applied to every application and played whenever the application outputs a beep (for instance, when typing a keyboard shortcut that doesn't work, or during a terminal beep). Is there any way to change what sound this is on a per-application basis? Specifically, I'm looking to change the sound Terminal.app uses, while every other app uses another sound.

  Read the article

• Why is the output of ls is like this?

  - by dorelal

  I am using Mac OS X Snow Leopard and when I type ls c * this is what I get in my terminal: clock: PSD demo.html jquery.tzineClock script.js styles.css clock2: clojure-presentations: Clojure-1up.pdf ClojureInTheField-1up.pdf license.html Clojure-4up.pdf README ClojureForRubyists-1up.pdf keynote coffee-script: Cakefile README bin examples index.html package.json test LICENSE Rakefile documentation extras lib src vendor By default I am using Bash.

  Read the article

< Previous Page | 339 340 341 342 343 344 345 346 347 348 349 350  | Next Page >