Java algorithm enable and disable

access to java security config file ( es: /usr/lib/jvm/java-1.8.0/jre/lib/security/java.security ) and update jdk.tls.disabledAlgorithms parameter.

You could find

jdk.tls.disabledAlgorithms=SSLv3, TLSv1, TLSv1.1, RC4, DES,

so could remove SSLv3, TLSv1, TLSv1.1 and put it into jdk.tls.legacyAlgorithms parameter to re-enable it

 

 

Docker commands

# list of images

sudo docker image ls

 

# list of container

sudo docker container ls

 

#copy from docker image

sudo docker cp <image>:/file/path/filename ./filename

 

# open shell

sudo docker run --rm -it --entrypoint bash zachdeibert/monodevelop

 

# open shell into container

sudo docker exec -it monodevelop-docker-container-1 /bin/bash

 

XDebug, VSCode and Eclipse

enable in php.ini or xdegub.ini

XDebug 2

xdebug.remote_enable = 1
xdebug.remote_autostart = 1
xdebug.remote_connect_back = 1
xdebug.remote_port = 9003
XDebug 3
xdebug.mode = debug
xdebug.client_host = 127.0.0.1
xdebug.client_port = 9003
xdebug.start_with_request = yes
xdebug.discover_client_host = false

VSCode launch.json file under .vscode folder

"name": "Listen for XDebug",
"type": "php",
"request": "launch",
"port": 9003,
"pathMappings": {
    "/var/www/webapps/<webapp folder>": "${workspaceFolder}"
}
Eclipse configuration
force to use ipv4 instead ipv6 editing file eclipse.ini and adding -Djava.net.preferIPv4Stack=true after -vmargs
In Eclipse use Default PHP Web Server
Window > Preferences > PHP > Debug > PHP Server = Default PHP Web Server
click on PHP Servers > Edit
Baseurl = http://localhost
Debugger = xdebug
Port = 9003 (change it also click on global settings)
remember to restart apache and php-fpm services
systemctl restart httpd
systemctl restart php-fpm
use firefox or chrome addons to enable debug on VSCode

 

Custom firewall rule on ESXi Host

Create a backup of firewall config file

cp /etc/vmware/firewall/service.xml /etc/vmware/firewall/service.xml.bak

Modify the access permissions of the service.xml file to allow writes by running the chmod command:

To allow writes:

chmod 644 /etc/vmware/firewall/service.xml

To toggle the sticky bit flag:

chmod +t /etc/vmware/firewall/service.xml

Update file service.xml

vi /etc/vmware/firewall/service.xml

add rule (for example Squid proxy)

<!-- Proxy Server on 3128/tcp -->
<service id='0045'>
  <id>Proxy Server Squid</id>
  <rule id='0000'>
    <direction>outbound</direction>
    <protocol>tcp</protocol>
    <porttype>dst</porttype>
    <port>
      <begin>3128</begin>
      <end>3128</end>
    </port>
  </rule>
  <enabled>false</enabled>
  <required>false</required>
</service>

Reset permissions

chmod 444 /etc/vmware/firewall/service.xml
chmod +t /etc/vmware/firewall/service.xml

Refresh the firewall rules for the changes to take effect by running the command:

esxcli network firewall refresh

 

To make persistent it we need to update service.xml file at boot time, so:

Create file /vmfs/volumes/datastore1/etc/squid.xml with follow content:

<ConfigRoot>
  <service>
    <id>Proxy Server Squid</id>
    <rule id = '0000'>
      <direction>outbound</direction>
      <protocol>tcp</protocol>
      <porttype>dst</porttype>
      <port>3128</port>
    </rule>
    <enabled>true</enabled>
    <required>false</required>
  </service>
</ConfigRoot>

Edit file /etc/rc.local

chmod 644 /etc/rc.local
chmod +t /etc/rc.local
vi /etc/rc.local

So the created files are copied back to host at boot time. Add lines to the end of the file, for example:

#copy the new firewall rule from vmfs place holder to file system
cp /vmfs/volumes/datastore1/etc/squid.xml /etc/vmware/firewall/

#refresh firewall rules
esxcli network firewall refresh

Reset permissions

chmod 555 /etc/rc.local

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Route set using more network devices on CentOS

es:

eth0 > internet (10.151.200.0)

eth1 > intranet (192.168.1.0)

Remove GATEWAY from internal configuration /etc/sysconfig/network-scripts/ifcfg-eth1

Set GATEWAY only on eth0 configuration /etc/sysconfig/network-scripts/ifcfg-eth0

create file configuration /etc/sysconfig/network-scripts/route-eth1 to force route for specific subnet

192.168.1.0/24 192.168.1.1 dev eth1

From VirtualBox to VmWare VM

export vm from VirtualBox

VBoxManage export "VMNAME" -o "VMNAME.ova"

convert vm into VmWare format

ovftool --lax "VMNAME.ova" "VMNAME.ovf"

edit ovf file to change virtual system type:

from <vssd:VirtualSystemType>virtualbox-2.2</vssd:VirtualSystemType>

to <vssd:VirtualSystemType>vmx-07</vssd:VirtualSystemType>

edit ovf file to update SATA controller with a SCSI controller:

from

<Item>
<rasd:Address>0</rasd:Address>
<rasd:Caption>sataController0</rasd:Caption>
<rasd:Description>SATA Controller</rasd:Description>
<rasd:ElementName>sataController0</rasd:ElementName>
<rasd:InstanceID>5</rasd:InstanceID>
<rasd:ResourceSubType>AHCI</rasd:ResourceSubType>
<rasd:ResourceType>20</rasd:ResourceType>
</Item>

to

<Item>
<rasd:Address>0</rasd:Address>
<rasd:Caption>SCSIController</rasd:Caption>
<rasd:Description>SCSI Controller</rasd:Description>
<rasd:ElementName>SCSIController</rasd:ElementName>
<rasd:InstanceID>5</rasd:InstanceID>
<rasd:ResourceSubType>lsilogic</rasd:ResourceSubType>
<rasd:ResourceType>6</rasd:ResourceType>
</Item>

remove file “VMNAME.mf”

import now vmdk into ESXi and after use SSH to access into shell. Now convert vmdk into ESXi format using:

vmkfstools -i VMDISK.vmdk  -d thin VMDISK-ESXi.vmdk

after use vi editor to edit disk

vi VMDISK-ESXi.vmdk

to update ddb.adapterType from ide to lsilogic:

ddb.adapterType = "lsilogic"

During boot you need to regenerate initramfs (in CentOS or Red Hat) using rescue kernel configuration and launch dracut command:

dracut -f /boot/initramfs-<KERNEL>.img <KERNEL>

es: dracut -f /boot/initramfs-4.1.13-100.fc21.x86_64.img 4.1.13-100.fc21.x86_64

after install vmware tools but first you need to install dependencies

yum -y install kernel-devel gcc dracut make perl eject policycoreutils-python