Ops accounts
1 unresolved thread
1 unresolved thread
Compare changes
+ 278
− 281
@@ -173,51 +166,54 @@ Configuring projects for services on private networks
@@ -226,11 +222,11 @@ Please be sure to copy the following information (that are needed later):
@@ -240,11 +236,11 @@ First of all you need to install the needed packages:
@@ -253,13 +249,13 @@ An example is provided here:
@@ -276,30 +272,26 @@ An example is provided here:
@@ -307,7 +299,8 @@ Then create the file /etc/pam.d/openvpn with this content:
@@ -316,7 +309,7 @@ Finally edit the /etc/openvpn/server/server.conf file, adding the following line
@@ -352,17 +345,17 @@ An example of the /etc/openvpn/server/server.conf file is provided here:
@@ -370,48 +363,45 @@ have the following format:
@@ -421,9 +411,9 @@ images at least for the following operating systems:
@@ -436,18 +426,16 @@ uses some weak SSH ciphers and KexAlgorithms that should be disabled.
@@ -479,8 +467,8 @@ they must be updated whenever there is a vulnerability to be addressed.
@@ -488,8 +476,9 @@ image, you can use the following command:
@@ -504,7 +493,7 @@ or:
@@ -515,11 +504,9 @@ Disabling weak SSH ciphers and KexAlgorithms on CentOS7 images using the vendord
@@ -528,33 +515,30 @@ with this content:
@@ -591,13 +575,12 @@ ssh ciphers and KexAlgorithms, can be the following one:
@@ -607,21 +590,21 @@ Logging
@@ -637,26 +620,26 @@ to a central log server, can be something like:
@@ -670,21 +653,26 @@ to a central log server, can be something like:
@@ -694,23 +682,26 @@ to use a command such as this one:
@@ -720,7 +711,8 @@ Floating IP associations and disassociations are logged in the server.log file o
2022-04-28 13:08:11.401 5895 INFO neutron.db.l3_db [req-ad02529b-3ea0-40ca-80f8-0558492314fa e237e43716fb490db5bda4b777835669 b38a0dab349e42bdbb469274b20a91b4 - default default] Floating IP 28bf4ef6-6be1-4ac8-9a7e-dab0c52396ea associated. External IP: 90.147.77.102, port: d7b764fc-5f74-4d8c-9571-de3221505483.
@@ -734,18 +726,19 @@ If the relevant VM is still alive, you can simply query the neutron database:
2022-04-28 13:07:11.178 4263 INFO neutron.agent.dhcp.agent [-] Trigger reload_allocations for port admin_state_up=True, allowed_address_pairs=[], binding:host_id=, binding:profile=, binding:vif_details=, binding:vif_type=unbound, binding:vnic_type=normal, created_at=2022-04-28T11:07:10Z, description=, device_id=2303896a-61ec-4128-ace4-63672ffff8ea, device_owner=, extra_dhcp_opts=[], fixed_ips=[{'subnet_id': '1f32039f-f426-42f7-8d1a-88cd2862af11', 'ip_address': '10.63.15.74'}], id=d7b764fc-5f74-4d8c-9571-de3221505483, mac_address=fa:16:3e:c7:de:9b, name=, network=admin_state_up=True, availability_zone_hints=[], availability_zones=['nova'], description=None, id=0a1b566c-5479-44dc-8cd8-0e396605b806, ipv4_address_scope=None, ipv6_address_scope=None, mtu=1458, name=AdminTesting-wan, project_id=b38a0dab349e42bdbb469274b20a91b4, provider:network_type=gre, pro...
@@ -770,17 +763,17 @@ Then you can simply query the floatingip_actions table of the neutron database:
@@ -832,14 +825,17 @@ Querying the nova DB, you can find the UUID of the relevant instance:
@@ -852,4 +848,5 @@ If you need to find information about a VM (even if this was cancelled in the me