@scottalanmiller said in Import a QCOW2 Into Proxmox:

Edit: As Jared linked below in the discussion, this process requires that the block image file (qcow, iso, etc.) but on local storage and not being pulled over a network.

I would like to note, that "local" only means you cannot directly pull it across a network.

Using anything properly mounted works just fine. Because that is "local" as far as any commands are concerned.

I am currently migrating my home stuff from an old desktop running raw KVM on Fedora to an old HP Microserver running Proxmox 7.

I mounted the old KVM drives:

mkdir /migration_a mkdir /migration_b mount -t nfs 10.254.103.5:/var/lib/libvirt/images/raid_a /migration_a/ mount -t nfs 10.254.103.5:/var/lib/libvirt/images/raid_b /migration_b/

Then ran the imports.

qm importdisk 101 /migration_a/plex.qcow2 zfs-pool1 # 30GB took 9 minutes qm importdisk 102 /migration_b/nas_boot.qcow2 zfs-pool1 # 20GB took 6 minutes qm importdisk 102 /migration_b/nas_data.qcow2 zfs-pool1 # 2TB, guessing 12 hours

@dashrender said in Staying at your shitty employer is your fault:

@gjacobse said in Staying at your shitty employer is your fault:

@irj said in Staying at your shitty employer is your fault:

I'm 6 years into IT (network admin, sysadmin, security (generalist)) and have my Security+ and am making $70,000

You are doing better than a fellow I worked at the state - who was two years from retirement (28 years of service)... By almost $20k... At $70k I think is is more an exception than the rule... Location is a big key here.... Yes - State Employees generally make less...

This is my general belief as well - location is king!

Now - today after Covid, location is a bit less, but I wouldn't say significantly less important, assuming the company moved a position to fully remote.

Living in SF, LA, NYC all cost 2-4 times what it does in Wisconsin.

I've read that west coast companies are now starting to have a new baseline salary for a position, then up it based on where you actually live. So the base might be $80K, but if you live in SF, you get $40K/y more, but live in Wisconsin - you just get 80K.

I have no personal experience in that happening - so no idea if it's true.

And those that are seeing high prices around here on ML - I think most of you live in or near those expensive cities - correct me if I'm wrong.

Even for remote workers sometimes there are differences depending on location, but some don't discriminate at all on location. Even the ones that does its not 100% more pay for California like in your example.

The best thing to do is confirm salary expectations and your location up front. Then this is never an issue. If you agree to the salary, then what's the problem?

@jaredbusch said in Small switch for small branch office recs?:

@dashrender said in Small switch for small branch office recs?:

Today, the answer is really any switch you can find that fits the stated requirements.

I would change that to: Any switch fitting the requirements that can be delivered.

So much stuff back-ordered it is insane.

Sadly, this ^^^

Youtube Video

@dbeato said in any zimbra specialists:

also Ubuntu 16.04 and ZImbra 8.8.12 are old and need to be updated.

General system admin rule of thumb.... always update before troubleshooting. There is a high chance that patching alone will resolve issues.

Saw that, so sad. He wasn't all that old. But definitely not in great physical condition.

@dashrender said in New customer - greenfield setup:

A NGFW from Sohos will run around
1 year - $900
5 years - $1800

It's definitely not cheap, but the idea of scanning all of the traffic inbound seems nice. Of course it's really only worthwhile where we can do SSL inspection (can this be down without installing certs on the clients to allow MiTM inspection?)

With the appliance - we could also have multilayers of email scanning - i.e. MX points to Sophos - Sophos then sends to M365.

With Sophos you can do Web Proxy filtering.
Youtube Video

@pete-s said in GKE Auto Scaling down to shut down resource usage and save costs.:

@stacksofplates said in GKE Auto Scaling down to shut down resource usage and save costs.:

@pete-s said in GKE Auto Scaling down to shut down resource usage and save costs.:

@irj
Interesting, I know nothing but aren't you using the cluster autoscaler?

It's supposed to scale up and down automatically as needed with the settings you give it. If it doesn't scale down as far as you like, have a look at the settings.

Autoscaling depends on the apps. If your app can't withstand a shutdown it's not a good idea. When more nodes are added the scheduler might move the pod to a different machine.

Yes, but that is why you have settings. How far you want to be able to scale down and how far you want to be able to scale up.

But I don't know much about it though except what I've picked up from videos like the one below: 🙂

It's not really about cluster settings. Even adding one node can cause a pod to be rescheduled. Then the node has to download the container and start the app which could take quite a bit of time depending on your container size. The point was the only time to enable autoscaling is if you know your app can handle interruptions.

@irj said in Windows 11 auto upgrade?:

Yeah. I have windows 10 on my home pc with auto updates and it only asks me if I want to upgrade. It never forces me or does it without my consent.

But if you do not give consent, it will update without your consent anyway (after some time) 🙂
You just can't stop updates on Windows 10, only delay it for some time.

@jaredbusch
The development is super. I would also like to add the union of two different groups from internal and Extension into one xml and you can assign only one button, there will be fire.

@dave247 said in Looking for simplest/secure setup for connecting a domain joined computer to corporate network when remote:

@dbeato said in Looking for simplest/secure setup for connecting a domain joined computer to corporate network when remote:

@pete-s said in Looking for simplest/secure setup for connecting a domain joined computer to corporate network when remote:

@dave247 Can you use 2FA on the VPN connection when doing it like that? Otherwise that would be a major concern.

Another issue with forced VPN is that if your VPN is down then the users can't login at all and can't work. That's a lot of eggs in the same basket. Does your company have HA firewalls, redundant internet, redundant power etc?

Otherwise using the cached domain password the users could login locally. Then they would be able to use their computers with local files and software and also have access to online resources such as M365 and whatever else you use.

No, you cannot use 2FA from within Windows Login screen with Sonicwall NetExtender.

Actually you can. You just click the icon to pull up NetExtender and punch your creds in, then it asks you for the TOTP.

yea, you are right. I was more thinking the SSO MFA SSL VPN but the TOTP either via email (not as secure) or the Authenticator app works well.

@rickygm now based on your experience, what other options are there to push with asterisk? I don't want to depend on third party services.

@dashrender said in SPF records - for all A records?:

This site is pretty good also for checking the whole mailing stack
https://www.checktls.com/TestReceiver

That one was new to me. I'm going to check it out.

Another awesome resource, one that can test your own email from the receiving end is https://www.learndmarc.com/
It just great and will explain what happens.

It's made by uriports. We just started to evaluate their DMARC report monitoring service. Looking good so far.

@dashrender said in Recommendation: Non-Profit Site hosting:

Why do you need WordPress?

Do you need that level of functionality?

We're going to be looking at redoing my company's website this year (I think). it's on WP now, but really, it's completely just static pages, there is no need for on the fly changes - unless they wanted to change the whole theme.

It's more of the feature set... being able to use a WYSIWYG editor for events, announcements and such. In some regard- yes WP is over powered, but it also allows for the tie ins like Calendar, Mailing list, and more.

@pmoncho said in ER-X firmware Upgrade:

@marcinozga said in ER-X firmware Upgrade:

It probably is bricked. The same happened to my ER-X when firmware 2 came out. I got it booted eventually over serial cable, and if I remember correctly it displayed something about internal storage.

I noticed others have had the same issue in the past.

I just saw the serial connection setup. Did you just use the USB-TTL device to connect?

The part that bugs me is I had check the storage issue prior to upgrade. Had 58% free so I figured I would be ok.

I used this cable:
https://www.amazon.com/gp/product/B00QT7LQ88?psc=1

I didn't bother with recovery, I just wanted to see what the issue was. I bought another ER-X and kept it on 1.x firmware.