Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Repo info
Activity
  • Sep 13 2016 13:04

    galthaus on develop

    update metadata on test barclam… Merge pull request #1296 from z… (compare)

  • Sep 13 2016 13:04
    galthaus closed #1296
  • Sep 13 2016 04:52
    VictorLowther commented #1296
  • Sep 13 2016 04:52
    zehicle labeled #1296
  • Sep 13 2016 04:52
    zehicle opened #1296
  • Sep 13 2016 04:52
    zehicle assigned #1296
  • Sep 06 2016 20:50

    galthaus on develop

    :3000 no longer needed Merge pull request #1295 from z… (compare)

  • Sep 06 2016 20:50
    galthaus closed #1295
  • Sep 06 2016 20:48
    VictorLowther commented #1295
  • Sep 06 2016 20:48
    zehicle opened #1295
  • Sep 06 2016 06:11

    galthaus on develop

    allow prefix more control in no… Merge pull request #1294 from z… (compare)

  • Sep 06 2016 06:11
    galthaus closed #1294
  • Sep 06 2016 03:18
    VictorLowther commented #1294
  • Sep 06 2016 03:18
    zehicle opened #1294
  • Sep 01 2016 21:05

    galthaus on stop-dns-and-gssapi-in-sshd-in-sledgehammer

    (compare)

  • Sep 01 2016 21:05

    galthaus on develop

    Update sshd in Sledgehammer to … Merge pull request #1293 from d… (compare)

  • Sep 01 2016 21:05
    galthaus closed #1293
  • Sep 01 2016 21:03
    VictorLowther opened #1293
  • Sep 01 2016 21:03

    VictorLowther on stop-dns-and-gssapi-in-sshd-in-sledgehammer

    Update sshd in Sledgehammer to … (compare)

  • Sep 01 2016 14:40

    galthaus on fix-intermittent-network-role-creation-failure

    (compare)

Simon
@analbeard
any suggestion as to where i'm going wrong here?
rackneng
@rackneng
[greg] Firewall rules?
Simon
@analbeard
yup i just clocked that about two minutes ago
palm has been vigorously applied to face
rackneng
@rackneng
[greg] :D
Simon
@analbeard
someone should bust me back down to first line for that
Simon
@analbeard
possibly a daft question, but would the serial console show anything when the victim has booted into the sledgehammer env? i can see it in the machine list so it's been successful, but there's nada on the console
rackneng
@rackneng
[greg] It will depend upon your hardware / env. We don’t pass a serial console, so it is linux defaults.
[greg] For packet, we add profiles that set the kernel-console parameter
[greg] To handle this case.
[greg] You can set that globally or on a machine or a profile to a machine.
[greg] Checkout the parameter kernel-console in the UX.
Simon
@analbeard
ok, that makes sense. it's not the end of the world, just nice to see some output to understand what's going on, especially whilst i'm just poking it. if we were to use it in production then it wouldn't matter
ok, will do. thanks!
rackneng
@rackneng
[greg] make sense. Also, if you setup the access-keys parameter (docs has some stuff on this), you can ssh in to the box as well.
[greg] @faq
[greg] in faq - 22.3
Simon
@analbeard
ah yes, that looks handy. thanks Greg!
rackneng
@rackneng
[greg] You can do the command in the doc to the global profile and it will be available to all machines all times.
Simon
@analbeard
ah yes i see what you mean, i can see a key for 'galthaus@Gregs-MacBook-Pro.local' in the root-access-example profile ;)
rackneng
@rackneng
[greg] well - you know. author privs and all
[greg] The main thing to remember is that the parameter has to be set on the machine (globally, or specifically, or by profile assignment) when the task ssh-access runs during the discover stage. That means for discovered things you have to have it globally set. Or set it after discovery and reboot.
Simon
@analbeard
sure, that makes sense. I think i've probably got enough to get something going now
thanks again!
Simon
@analbeard
hmm, I've had a machine PXE booted for half an hour or so but i'm unable to progress to an install:
Can not change bootenv while in a stage unless forced. old: sledgehammer new ubuntu-16.04-install
the machine is currently sitting in the discover stage according to it's info
rackneng
@rackneng
[greg] This means you have a task that didn’t complete I think.
[greg] Check the jobs area to see if there is a failed job. The machine has probably been marked not runnable as well.
rackneng
@rackneng
[lae] [lae@yuzu fireeye-content]$ drpcli profiles update global global.yaml Error: Failed to generate changed profiles:global object: invalid character '-' in numeric literal
[lae] I'm getting this I guess after a recent update, did anything change regarding importing profiles from yaml?
[lae] kind of expected this to also work, but I guess it's not expecting stdin to be yaml anymore?
[lae@yuzu fireeye-content]$ drpcli profiles show global -F yaml > tmp.yml
[lae@yuzu fireeye-content]$ drpcli profiles update global - < tmp.yml
Error: Failed to generate changed profiles:global object: invalid character 'A' looking for beginning of value
Simon
@analbeard
@lae I had that yesterday, I think it's mean to be JSON
rackneng
@rackneng
[lae] yes, but yaml used to be allowed
[lae] I'm just reusing my existing workflow for updating the global profile, which seems to not support yaml anymore
[lae] (I just went ahead and exported/edited/reimported as json but that's more tedious than editing yaml and committing it to git)
Simon
@analbeard
@greg (or anyone at RackN) - is there no way to view the UI than through the RackN website? The environment my DRP box will live in won't be internet accessible, and even if it were I can guarantee our security team would have a shit-fit if I suggested doing that
@lae I have found some of the docs to be a little out of date and I had to fudge my way around it - editing profiles was oen of them
rackneng
@rackneng
[lae] the rackn UI doesn't access your DRP instance over the internet, it uses JS in your browser to access it - so you just need to be able to access the DRP endpoint from your browser
Simon
@analbeard
oh - i hadn't investigated it because I thought that was how it worked. that certainly improves things!
rackneng
@rackneng
[lae] and uh, my point is that this seems to be an unexpected regression in one of the recent releases. Anyway, I just tried downgrading drpcli to 3.4.1 and 3.2.1 (from 3.6.0) and that works in 3.2.1 but not 3.4.1
rackneng
@rackneng
[vlowther] @lae broken yaml support is definitely a bug. Open an issue?
MattyBoy
@MattyBoy4444
Just reinstalled with force. When I go to setup subnets in UX I just get a spinning "Loading Interfaces". Any suggestions? I am a newbie at drp.
Running v3.6.0
rackneng
@rackneng
[shane] @MattyBoy4444 - are you sure your DRP Endpoint is accessible from your Laptop/Management machine - no Firewalls or IPTables rules blocking access? You can also check the process to make sure it's running on the Endpoint as well (ps -ef | grep dr-provision) ... also - any log output from the running instance if it is running ?
[shane] you need TCP Port 8092 access to the DRP Endpoint from the system you are running the Web Browser connection to the Portal
rackneng
@rackneng
[shane] so ... gohai-inventory of DMI --> BIOS --> BIOSVersion == "VirtualBox" is ... well ... VirtualBox ... so unfortunately - that param won't be reliable for all types of Virtualization
MattyBoy
@MattyBoy4444
@rackneng I can access the UX frontend from my management machine. I did check Chrome console and found a jquery warning
MattyBoy
@MattyBoy4444
error1.jpg
rackneng
@rackneng
[greg] You may want to try changing the base url to portal.rackn.io