Monthly Archives: October 2019

dnsmasq: AWS – “Temporary failure in name resolution”, logs, debug and dnsmasq cache size

28 October 2019
 

 We are using AWS VPC DNS and sometimes facing with errors like “php_network_getaddresses: getaddrinfo failed: Temporary failure in name resolution“. The only advice from AWS tech. support was to configure a local dnsmasq service to act as a local DNS cache, but I did this already year ago and this issue happens once in 1-2-3… Read More »

Arch Linux: package-query: error while loading shared libraries: libalpm.so.11

26 October 2019
 

 Didn’t install upgrades for a couple of weeks, today packages to be upgraded became over 100, so I run it. Upgrades on my Arch Linux are installed with a simple alias in the.bashrc: … alias osupgrade=”yaourt -Syua –noconfirm” … (seems eventually it’s time to change it to the alias osupgrade=”yay -Syua –noconfirm”) The error Usually,… Read More »

Okta: G-Suite integration – provisioning and users import and export

25 October 2019
 

 And going forward with Okta setup for our project. Previous posts: Okta: SSO authentication for Gmail and Slack Jenkins: SAML Authentication with Okta SSO and users groups Jenkins: SAML, Okta, users groups, and Role-Based Security plugin Github: SAML, Okta, and Github Enterprise Cloud – Organization SSO configuration The next task is to integrate our Google… Read More »

Github: SAML, Okta, and Github Enterprise Cloud – Organization SSO configuration

21 October 2019
 

 As a follow-up to the SSO, Okta, and SAML. We already did everything for our Jenkins (see the Jenkins: SAML, Okta, user groups, and Role-Based Security plugin post) – now it’s time to do the same thing with our Github organization. The idea is the same as for the Jenkins’ setup: keep all users in… Read More »

AWS: Redshift – quick start and SQL-workbench connection config

18 October 2019
 

 Our data-analytics team eventually started to play with an AWS Redshift cluster instead of the MariaDB RDS service. Actually, the current task is to spin up a simple Proof of Concept Redshift’s cluster in the AWS. Let’s do it quickly, without details – if this will go to the Production, I’ll add another post with… Read More »

OpenVPN: the No route to host and ERR_ADDRESS_UNREACHABLE errors – the cause and a solution

14 October 2019
 

 We have an OpenVPN Access Server running, see its setup in the OpenVPN: OpenVPN Access Server set up and AWS VPC peering configuration post. The VPN server is hosted in a first AWS VPC, while a Bitwarden service – in another one VPC. Between those VPCs we have a VPC peering configured, and the OpenVPN… Read More »

Jenkins: SAML Authentication with Okta SSO and users groups

11 October 2019
 

 SAML – Secure Assertion Markup Language is used for federated authentication when some service which we need to get access to (a Service Provider), asks another service (an Identity Provider) to perform a user’s authentification. Check the documentation here>>>. Service Provider (SP): is a system where need to authenticate, in our case this will be Jenkins… Read More »

Debian: logrotate won’t rotate logs with an “unknown group ‘syslog'” error

9 October 2019
 

 We have an AWS EC2 with Debian and logrotate. One day its root partition was exhausted and when I started investigating it – found, that we have a bunch of files like /var/log/syslog.N.gz. At the same time by default logrotate creates a config file to rotate syslog log files: [simterm] root@monitoring-dev:~# cat /etc/logrotate.d/syslog # Ansible… Read More »