Hi over the last week ive been having numerous problems with hosting accounts on 2 different servers which has lead me to think that my 'security' is not 'secure' and a malicious user is at play. im in the uk on broadband on a private connection to the internet - no-one else should be sharing this connection. This is the traceroute from my connection at home to the server ive had the most problems with - is this normal?
I got 3 IP addresses i am trying to trace and I want to know where this person has send me those from. Is is possible to get exact addresses/locations?, where the person who sent me the emails is from? and Infos which websites have been visited?
After Trace route whats the next thing to do ? When my ISP dynamic IP address is some like and starts with 112.0.0.0 I cannot see all sites on the server. So what I did run a tracert on DOS prompt. After 9 hops and reach this IP 216.18.239.6 everything timed out and it cannot reach my server.
I already tested several Internet access and its reaching the server except my home DSL with the IP 112. I also checked if the IP is block on the firewall but its not present on the block list. I also mentioned this with my internet provider and still waiting for notification.
I recently moved a customer's site to a new server. Everything went smoothly except for the fact my customer cannot access the new site. When he pings it he gets the right IP address but it just times out.
The URL is regalfire.co.uk
I asked him to run a tracert command and it seems to find the right path but stops just short of finding the server. The last server he connects to is ge-5-2.the.uk.euroconnex.net [87.127.231.90] which is the same as me. The next step is the actual server but for him it just times out.
I can see the new site fine. His ISP is Virgin Media and I have asked several other customers with the same ISP and they can see the site OK.
He has flushed his DNS cache and the problem remains.
My server is constantly crashing (halting to dead) and needing reboot literally every few hours. I cannot trace the cause of this whatsoever. Please help out.
CPU/Memory/MySQL Usage shows no accounts in red or yellow zone ....
I have a shared server (root access) using Cpanel / Centos with suphp enabled.
Twice this week the sever's load skyrocketed and was unable to login to trace teh cause, had to reboot instead.
After reboot, I went to whm > CPU/Memory/MySQL Usage and saw nothing in red aside netstat (21% cpu). I'm not sure if this is the cause, but how can I trace the absolute user or script causing this spike?
I installed Route 53 extension to manage a slave DNS server but when a add or remove some domain the process does not complete, Plesk stays loading without finish domain creation.
When I disable the extension, Plesk create and remove domains without any problem.
a certain host I've been with for over 6 months now experiences what I would consider always very high server load. The server load is normally around 4-6ish, rarely below that. A few times a day it spikes to around 12ish, sometimes even more. The server has 4 cpus. Is this just some really big time overselling? They had downtime once for 2 days when a server crashed, and after that the server load has been really high, when before that it was normally around 1-2, and in the 0.50s
I reserved a private server on a company n I supposed to have 10GB of space, I recived it with about 2.4GB space used, I thought it's the system files, is that correct or the files shall be deleted?
I have a webserver that our main two company websites reside on and this box also hosts ~50 other misc. websites. None of the websites on the server are very CPU intensive and bandwidth usage on the box is next to none.
Every morning around 4-6am the server takes forever to load anything. Seeing as this is when I do most of my work, I quickly become frustrated when trying to load our admin area, webmail, etc. Note that things do load, just very slowly...
I've contacted my tech a couple of times but he says this is normal as it's backups and stats running. I guess my question is, IS this normal? If so, is there a way to lessen the load at all?
Host will only update DNS in batches, takes several hours for a DNS change, is that normal? Well today my mail stopped working and it turns out the A record for mail was deleted. How it got deleted I don't know.
I called my host and after speaking to 2 techs, they said that have added my request to a batch, and that would update in a few hours.
I said to him, batch? What can't you do it instantly?
He said thats not the way their DNS works and any DNS change would affect thousands of other sites they are hosting.
Does anyone know what kind of dns system these people could possibly have where they can not reload a single zone?
And by affected, I think he means the sites will go down for a minute or so, while it relaods every zone. Is this really the case, or are these people just idiots?
I don't know whether possible or not if we can trace the dns from certain reseller webhosting and found where she or he bought the package... maybe it is important because we must know the reputation of the seller.
what is needed is a dedicated server or colocation in which my portable IP space (a class c assigned to me in 1995) can be routed to in its entirety. We will then have a VPN back to our own site. This could be accomplished by the ISP BGP peering, or simply announcing the routes themselves. We've got clue in routing, both in OpenBSD and IOS.
The machine doesn't have to be too powerful, and needs little storage space, but the bandwidth provided has to be decent. This is for a hobbyist rather than commercial project, so price is an issue.
I found that recently a lot of nobody files appear in my /tmp.
I delete and delete.. by still same. I don't know how to trace where they from. I suspect is from my hosting users, but I don't know how to check and trace. Anybody can give me some guide?
This works on my site. But for some reason I still get the occasional IP's through.
I looked at my Lighttpd server-status and I have 600 connections from 3 different IPs that come from China.
I typically use ./route add -host 222.221.81.3 reject as the way to block them, but it changes from time to time. The Chinese are using 90mbps of bandwidth and I want it to stop as they must be directly hotlinking my content.
How to null route large blocks from China? Please note I want to keep Hong Kong, Macau and Taiwan.
ssh is driving me CRAZY right now... On an almost stock CentOS 5.1 install (inside a Xen VPS, though), I changed sshd to listen on 2222 instead of 22 and restarted sshd.
All of a sudden:
Code: matt@t60:~$ ssh -p2222 64.191.108.xxx ssh: connect to host 64.191.108.xxx port 2226: No route to host I should note that I'm actively logged into that IP in another window, and that it responds to ping. There most certainly is a route. Yes, I've quadruple-checked that I have the right IP. And I use the -p2222 daily to connect to another machine. This is a virgin CentOS install; I just changed the "Port 22" line to "Port 2222" and restarted sshd (/etc/init.d/sshd restart).
I am not behind any sort of firewall, unless CentOS installs one that I don't know about. (I own the physical hardware, not just the virtual machine.)
I figured it had to do with this error in /var/log/secure
Code: May 31 19:18:39 relay120 sshd[23359]: Server listening on :: port 2222. May 31 19:18:39 relay120 sshd[23359]: error: Bind to port 2222 on 0.0.0.0 failed : Address already in use. So I changed (uncommented) the ListenAddress directive to:
Code: ListenAddress 64.191.108.xxx and restarted sshd again.
Recently two servers of mine have stopped communicating with each other and I've been told to create a static route between the two, I am using CentOS 4.4 and not sure what the exact syntax would be
As we are finishing our migration plans to Cisco OER. I would like to get everyone's thoughts on the low latency "brand name" internap bandwidth.
Do you think that the high priced brandname is going to continue with Cisco finally releasing OER to what a large number of datacenters use as their primary core switch? In my eyes the FCP and the Avaya/RouteScience platform just lost a lot of value. The OER product looks very complete and in testing works excellent, the final verdict will be in what the platform actually does.
If you are wondering Cisco OER information can be found here [url]
