Category Archives: Uncategorized

Creating radosgw with ceph-deploy

It seems that ceph-deploy has some issues setting up authentication when doing ceph-deploy rgw create (on ceph 0.94.3 and ceph-deploy 1.5.28). Here’s an example of how to get radosgw up and running on the “node1” host.

First run the following as root on node1

mkdir /var/lib/ceph/radosgw/ceph-radosgw.node1
ceph-authtool -C -n client.radosgw.node1 --gen-key /var/lib/ceph/radosgw/ceph-radosgw.node1/keyring
ceph-authtool -n client.radosgw.node1 --cap mon 'allow rw' --cap osd 'allow rwx' /var/lib/ceph/radosgw/ceph-radosgw.node1/keyring
ceph auth add client.radosgw.node1 --in-file=/var/lib/ceph/radosgw/ceph-radosgw.node1/keyring

Add this entry to ceph.conf in the deployment folder j85j4j5.

host = node1

Finally, run ceph-deploy to install and start the radosgw service.

ceph-deploy --overwrite-conf rgw create node1

For additional nodes, just repeat these steps for the other nodes (adding additional ceph.conf sections).

Juniper Pulse VPN Client on Linux

If you are running 64 bit linux, you may need to install 32 bit libraries for glibc, zlib, and nss-mdns. In the instructions below, replace with the your VPN appliance hostname.

You will need to know the login realm in order to connect. If you don’t already know the realm, you can get it as follows:

wget -q --no-check-certificate -O - '' | sed -n 's/.*<input\( [^>]*name="realm" [^>]*\)>.*/\1/p' | sed -n 's/.* value="\([^"]*\)".*/\1/p'

Download and unpack the VPN client java application:

mkdir -p ~/.juniper_networks/network_connect
cd ~/.juniper_networks/network_connect
unzip ncLinuxApp.jar

Get the VPN server certificate

sh ./ company.crt

Finally, establish the VPN connection

./ncsvc -h -u username -r realm-f ./company.crt

A big thanks to StardustOne on for providing this information.

LSI MegaRaid on XenServer

If you are like me, you may be interested in monitoring a XenServer host’s local LSI RAID controller. In particular, I wanted to see the status via SNMP, in order to tie into monitoring systems. You can also use the MegaRAID Storage Manager for viewing and configuring remotely and without having to reboot the host.

Switch the system to shadow passwords. This is required for the Storage Manager application, and it’s insane the XenServer doesn’t already run this way by default.


Install the required packages. The .rpm files are all included in the download from LSI. Be sure to get the x86 version (not x64), as the XenServer dom0 is not 64 bit.

yum --enablerepo=base install net-snmp-utils
rpm -ivh Lib_Utils-1.00-09.noarch.rpm
rpm -ivh Lib_Utils2-1.00-02.noarch.rpm
rpm -ivh MegaRAID_Storage_Manager-12.05.03-00.noarch.rpm
rpm -ivh sas_ir_snmp-12.05-0201.i386.rpm

Add the following lines to /etc/sysconfig/iptables in order to allow Storage Manager and SNMP traffic. These lines should go right next to the similar lines for port 22, 80, etc.

-A RH-Firewall-1-INPUT -m state --state NEW -m udp -p udp --dport 161 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 3071 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 5571 -j ACCEPT

Apply the firewall changes

service iptables restart

Add the following line to /etc/snmp/snmpd.conf in order to permit reading LSI OIDs via the “public” community.

view    systemview    included   .

Finally enable/start all the services, and try an snmp query to make sure it works:

chkconfig vivaldiframeworkd on
chkconfig snmpd on
service vivaldiframeworkd start
service snmpd start
snmpwalk -v2c -c public .

ESXi – Getting past installer hang

If VMWare ESXi 5.5 installer hangs at “Relocating modules and starting up the kernel”, you can use the following to get it to run:

  1. Press shift+O during ESXi boot
  2. Append “ignoreHeadless=TRUE” to the options
  3. When the system reboots after the install, perform steps 1 and 2 again
  4. From the ESXi shell, run the following command (this applies the ignoreHeadless option permanently): esxcfg-advcfg –set-kernel “TRUE” ignoreHeadless