Jump to content

repomanz

Members
  • Content Count

    36
  • Joined

  • Last visited

Community Reputation

3 Neutral

About repomanz

  • Rank
    Advanced Member

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Hey guys - unsure if Alpine / Unraid is impacted but passing along just in case. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5736 https://seclists.org/oss-sec/2019/q1/119 repo
  2. repomanz

    [Support] Linuxserver.io - OpenVPN-AS

    silly question as I'm trying to get this functioning. Is setting up the openvpn as server with google 2fa required on logins supported on the android openvpn app? If so; I must be missing this setting somewhere.
  3. repomanz

    deleted file from console / wrong path

    appears some back-end service has fixed this issue auto-magically. crisis averted.
  4. Hi folks - i misconfigured the CA backup plugin and pointed it /mnt/cache/backups/unraid folder instead of the proper /mnt/user/backups. It filled up my cache drive and hung so i went in and deleted the file (85gb) via console. However after doing so, I am not showing the cache drive recovering that space. Is there a service that will auto-correct this or do i need to do something manually here? Side note; how can i safely force the backups share to point to my disk volumes, including moving all currently files on cache to the new directory?
  5. repomanz

    escaping a docker container / alpine linux

    I don't run any privileged docker containers but would that change if the container was actually ran as privileged? What's interesting is that team is aware of other exploit techniques they chose not to make public.
  6. Hey guys - wanted you to be aware of this one. Hot off the press today. https://www.cyberark.com/threat-research-blog/how-i-hacked-play-with-docker-and-remotely-ran-code-on-the-host/ repo
  7. repomanz

    (solved) help with external dockers / vlan

    Wanted to close this thread out / show my configuration in case someone runs across it switch configuration, - port 5 connected to eth4 on unraid nic - port 1 connected to pfsense eth4 NIC configuration on Unraid OS docker configuration within Unraid OS pfsense vlan interface
  8. repomanz

    (solved) help with external dockers / vlan

    Hi Bonienl - with your help I believe we have success. I now have - internal docker containers running on the trusted lan - external docker containers running on eth4 / vlan 5 Confirmed routing on router also working lan to vlan, vlan to lan and vlan to inet. Really appreciate you walking me through this.
  9. repomanz

    (solved) help with external dockers / vlan

    Hi Bonienl - thanks for responding! What about this? - remove eth4 vlan settings within unraid - bridge eth4 nic - assign port on managed switch eth4 is connected to to vlan 5 - create vlan 5 interface on router Would I be able to put dockers on the bridged eth4 NIC as it's operating within the vlan 5 network?
  10. Hi folks - I'm new to vlans / managed switches and learning unraid so bare with me. Is there a version of this guide that deals with vlans with using multiple network cards? I have a 4 port intel nic so currently unraid sees eth0 - eth4. Here is what I'm wanting to do (or something similar) 1) leverage eth4 physical network 2) create a vlan off the eth4 interface 3) put external facing dockers on the vlan I've tried various combinations of things on the router, managed switch and unraid. So far the best i have gotten is eth4 was successful in getting a dhcp IP address defined for the vlan. However doing so I can no longer reach unraid. Admittedly; I'm likely doing some things wrong here either within unraid or my managed switch. Any coaching or guides would be helpful so i can accomplish my goal here. Thanks in advance!
  11. repomanz

    [Support] binhex - NZBGet

    while unpacking; seems it does not honor cpu pinning. IE; even though i have cpu 1,5 pinned, it's maxing out all of my cpus. Seeing above posts are there plans to fix unpacking issues? Other issues i have with unpacking is that it hangs or takes forever
  12. repomanz

    docker / check for updates

    Hi folks - i think this is network related as I VPN all of my traffic out of my house. When I check for updates for dockers the page will just spin / do nothing. I have unraid's dns pointed to pihole (on my network). Pihole then requests dns out through my VPN interfaces if not cached. My suspicion is the update URL or code to check for updates is somehow not resolving dns or is possibly being blocked since I'm coming from a VPN connection. Can someone explain how unraid checks for docker updates and if there is specific URLs used?
  13. repomanz

    docker dns

    Hi folks - if I assign a docker container an IP address where does this IP address get it's DNS information? From my DNS settings defined with unraid OR my network/gateway?
  14. repomanz

    Intel NIC 2 of 4

    *bump* hoping someone can confirm this for me.
  15. repomanz

    Intel NIC 2 of 4

    I found a few threads regarding this so i'd like to confirm before moving forward. Here is my sys devices: I OMMU group 16: [111d:8018] 07:02.0 PCI bridge: Microsemi / PMC / IDT PES12N3A 12-lane 3-Port PCI Express Switch (rev 0e) [8086:10bc] 08:00.0 Ethernet controller: Intel Corporation 82571EB/82571GB Gigabit Ethernet Controller (Copper) (rev 06) [8086:10bc] 08:00.1 Ethernet controller: Intel Corporation 82571EB/82571GB Gigabit Ethernet Controller (Copper) (rev 06) IOMMU group 17: [111d:8018] 07:04.0 PCI bridge: Microsemi / PMC / IDT PES12N3A 12-lane 3-Port PCI Express Switch (rev 0e) [8086:10bc] 09:00.0 Ethernet controller: Intel Corporation 82571EB/82571GB Gigabit Ethernet Controller (Copper) (rev 06) [8086:10bc] 09:00.1 Ethernet controller: Intel Corporation 82571EB/82571GB Gigabit Ethernet Controller (Copper) (rev 06) I would like to hide pci id 09:00.0 and 09:00.1 so I can make 09:00.0 and 09:00.1 specifically available to a pfsense vm (lan / wan interfaces). Questions: 1) Is it a safe assumption that the PCI bridge 07:04.0 should be hidden as well? 2) My edits would be to the unraid os section and look like this? Unraid OS: kernel /bzimage append xen-pciback.hide=(07:04.0)(09:00.0)(09:00.1) initrd=/bzroot The result i'm assuming: Unraid OS would see: PCI Bridge: 07:02.0 NIC: 08:00.0 NIC: 08:00.1 PFSense VM would have the ability to leverage 07:04.0, 09:00.0 and 09:00.1 Please let me know if I'm doing this right and the outcome is what I believe it to be. JJ