This post is password protected. To view it please enter your password below:

Password:

Share on Facebook

The information below is expressed as a set of ratios that begins with your system RAM and then works from there.

innodb_buffer_pool_size = $SYSTEMRAM/2
innodb_additional_mem_pool_size = $innodb_buffer_pool_size/20
innodb_log_file_size = $innodb_buffer_pool_size/4
innodb_log_buffer_size = $innodb_buffer_pool_size/50 or a minimum value of 8MB

Note bene: Changing your log file size can results in a mySQL refusing to start.  Simply remove these files from you mysql data directory and they will be created on the next startup.

Share on Facebook

You should probably use this fellow link because it works… it’s just slower and manual.  Oh, and if you do get a scripting urge, please make this script work properly for me and post it in a comment.  Thanks.

USER=root
PASSWORD=yourpassword
DBS="$(mysql --user=$USER --password=$PASSWORD -Bse 'show databases')"
OLDDATA_DIR="/var/lib/mysql"
NEWDATA_DIR="/database/lib/mysql"

mkdir -pv $NEWDATA_DIR

for FILE in ${DBS[@]}; do
        DATABASE=`basename $FILE`
        echo cp -R $OLDDATA_DIR/$DATABASE $NEWDATA_DIR/$DATABASE
done

# Set permissions
chown -R mysql:mysql $NEWDATA_DIR

# Archive the old & link it to the new
mv $OLDDATA_DIR OLDDATA_DIR-old
ln -s $NEWDATA_DIR/$DATABASE $OLDDATA_DIR/$DATABASE

#get_mysql_option mysqld datadir "/database/lib/mysql"
sed -i  's|$OLDDATA_DIR|$NEWDATA_DIR|' /etc/init.d/mysqld
sed -i  's|$OLDDATA_DIR|$NEWDATA_DIR|' /etc/my.cnf

Share on Facebook

This post is password protected. To view it please enter your password below:

Password:

Share on Facebook

CUCM call routing use the following components:

• Route Pattern (RP)
• Route List (RL)
• Route Group (RG)
• Gateway/Trunk (GW/ICT)

When calling, Cisco phones send their digits to the CUCM where the routing DB is used to direct the call.  Once analysis is complete the call will be routed to the called party.

Routing Patterns make use of wild cards, but it should be noted that the more specific the pattern the higher preference given to that particular entry.  These are fairly similar to Unix wildcards.  Entries can look like this:

• 1208 – An exact number match used for directory numbers that are assigned to a partition and route to a specific Cisco IP phone (SEP001894F90E0A)
• 120X – 1200 to 1209 plus 120* and 120#
• 120[5-9] – 1205 to 1209. Translation patterns used to route unassigned calls to the operator.
• 120[^0-4] – 1205 to 1209 (exclude 0-4).  I don’t think we use these.
• . – Digit stripping and manipulation
• 9.@ – Route pattern used at most companies for outgoing calls where you dial 9
• # – timing out for International calls

In the CUCM take a look at “Call Routing | Route Plan Report” and you will see your current  plan.  They are listed in 5 columns. The first is a graphic representation of  the 4th (Type).  The others are Pattern, Partition and Route Detail.

About Jay Farschman - Jay currently works as a Senior Systems Administrator for an asset management company in Colorado where he works with companies that produce hardware, telecommunications software and financial services.  Jay previously owned a consulting company and provided training and consulting services for three Fortune 500 companies and numerous small businesses where he leveraged Linux to provided exceptional value.

Share on Facebook

The central problem is how long it takes to port DID’s to a a new PRI or port a PRI to a new voice gateway.  It’s much faster to individually forward the individual DIDs to a new set of DIDs.

IMPORTANT NOTE – US Telcos are likely not going to allow you to forward individual DIDs to other DIDs unless you have an emergency, like a fire or flood.  In the event of a disaster they will temporarily forward lines in this fashion and I presume quickly ports the DIDs of the PRI/ISDN.  But, without a disaster it’s a 30-45 day process.   If, however, you are porting what the FCC calls a ‘simple’ phone number which is defined as not a part of a PRI/ISDN and only a single number the LNP laws specify that this has to take place in one day.

RESOURCES
We have DIDs running through a PRI into the office we will be closing.  These DID enter our network at a gateway also located in the closing office.  In another state we have a set of unused DIDs that I can use.  In my case they are a contiguous set of number at both locations and for sake of keeping it simple the last two digits of the numbers match up perfectly.  That was not my case, but it will be for this howto.

One other complication. I have inherited two sets of call managers.  One is a Call Manager 4 and the other is Call Manager 5.  I have the spare DID on the Call Manager 4….. but the phones for the closing site are on the

STEPS IN A NUTSHELL

1. Identify the Problem – and your resources (gather DIDs and map the problem)
2. Adjust the Voice Gateway – You may not need this but I need to divert 6860-6879 to point to a different call manager.
3. Directory Number into a Transformation Pattern – Remove the directory number and instead create a transformation pattern
4. Setup a Test Phone – Put it on your desk and configure it as a closing office phone.
5. Test It – including the caller ID, the voicemail, inbound and outbound dialing.

Below I go into a little more detail.

IDENTIFY THE PROBLEM
Identifying the problem is your first step.  At this point I know that I’m moving extension 8360 through 8379 and I have cleared up extension 6838 through to 6859.  So the last two digits match.  This isn’t necessary, but it make reading this a bunch easier because the number match

1-505-123-8360 ==> 1-205-842-6879

Now, these numbers are coming in to our two different voice gateways in two different states and are handled by two different Call Managers.  So one of my problems is I want to forward from my 68[6-7]. number from one call manager to another

ADJUST THE VOICE GATEWAY
In the original gateway I pointed a range of numbers to a single call manager.  Now I need to point some of those to a different manager while leaving the rest unchanged.  So we started out with a config that looks liek this:

dial-peer voice 68001 voip
 description inbound DID to CUCM 4
 preference 1
 destination-pattern 68..
 progress_ind setup enable 3
 progress_ind progress enable 8
 voice-class codec 1
 voice-class h323 1
 session target ipv4:10.10.10.5
 dtmf-relay h245-alphanumeric
 ip qos dscp cs3 signaling
 no vad
!

And we are creating a new dial-peer changing destination pattern and the session target it to look like this:

dial-peer voice 68601 voip
 description inbound DID to CUCM 5
 preference 1
 destination-pattern 68[6-7].
 progress_ind setup enable 3
 progress_ind progress enable 8
 voice-class codec 1
 voice-class h323 1
 session target ipv4:10.10.11.5
 dtmf-relay h245-alphanumeric
 ip qos dscp cs3 signaling
 no vad
!

Well, that was easy because destination-patterns attempts to match on the most specific pattern first and then work their way down to less specific patterns.  So now we have 6860-6879 pointing to the 10.10.11.5 call manager, but all the rest pointing to their original location.

DIRECTORY NUMBER CHANGES TO TRANSLATION PATTERN
In the call manager take a look at “Call Routing | Route Plan Report” and you should see a “Directory Number” for your 8963 number.  Delete that and create a translation pattern in it’s place.

When you “Call Routing | Translation Pattern” for 8963 and change the “Called Party Transform Mask” to 6863.  I should point out here that our PRI delivers 4 digits so that’s all I have to enter.

SETUP A TEST PHONE
Build phone with one of the original (closing office) extension.  You need this on your desk for testing.  It’s the first phone you will be setting up and if you get it right you can extend everything to the rest of the extensions.  My test extension if 8963 (closing location) / 6863 (new location).

When adding the extension make sure your descriptions are able to display the 8963 information, but the actual “Directory Number” remains 6863.  So you are spoofing the following:

• Description – Jay Farschman, 8963
• Line Text Label – Jay Farschman, 8963
• ASCII Line Text – Jay Farschman, 8963
• External Phone Number Mask – 5051238363

Wait… External Phone Number Mask?  Yep.  When the phone dials out you want people to see the 10-digit number from the original office.  So just present the whole 10-digit number in External Phone Number Mask and that will be the caller id you see when calling out.

Any yes, every number you have to transform will go through this process.

TEST IT
At this point you should be able to dial from the outside world using the 1-505-123-8360 and if you dial from that number elsewhere you should see the proper caller id.  That was easy.

About Jay Farschman - Jay currently works as a Senior Systems Administrator for an asset management company in Colorado where he works with companies that produce hardware, telecommunications software and financial services.  Jay previously owned a consulting company and provided training and consulting services for three Fortune 500 companies and numerous small businesses where he leveraged Linux to provided exceptional value.

Share on Facebook

A COUPLE OF NOTES

• Patching typically requires maintenance mode and often a reboot.  The bottom line here is that it’s an outage for your systems.
• Some patches will require you to load a new client for the vSphere before you can get access.

GET READY

1. Locate the the appropriate patches http://www.vmware.com/patchmgr/download.portal if you don’t know what version your are running then take a look in you vSphere client under “About”
2. See what’s needed with the CLI command “esxupdate query” This is going to show you what is already installed  For instance it may say “VMware ESXi 4.0 Update 3″  Let’s consider installing update 4.
3. Place your ESX in Maintenence mode using one of these two commands:ESXi: # vim-cmd hostsvc/maintenance_mode_enter
   ESX: # vimsh -n -e /hostsvc/maintenance_mode_enter
4. Copy the link for update 4 from step #1 and setup the download process.esxupdate –bundle=https://hostupdate.vmware.com/software/VUM/OFFLINE/release-322-20111116-059770/update-from-esxi4.0-4.0_update04.zip update
5. Wait for it to complete.  If you get a message about “it is installed or obsoleted” those are two possible problems, but consider that your link from #1 could be for the wrong ESX version as well.
6. Once installed Get out of maintenance mode:ESXi: # vim-cmd /hostsvc/maintenance_mode_exit
   ESX: # vimsh -n -e /hostsvc/maintenance_mode_exit

   ESXi: # vim-cmd /hostsvc/hostsummary | grep inMaintenanceMode
   ESX: # vimsh -n -e /hostsvc/hostsummary | grep inMaintenanceMode

7. Reboot as necessary.
8. Reload your vSphere client.

QED -

About Jay Farschman - Jay currently works as a Senior Systems Administrator for an asset management company in Colorado where he works with companies that produce hardware, telecommunications software and financial services.  Jay previously owned a consulting company and provided training and consulting services for three Fortune 500 companies and numerous small businesses where he leveraged Linux to provided exceptional value.

Share on Facebook

Install MacPorts and then get run these in order

sudo port install ffmpeg +gpl +lame +x264 +xvid
sudo port install pcre libsdl libsdl_image ftgl boost GLEW
sudo port install gource

Share on Facebook

For the most part when you are working with Unix you will find that the syslog daemon handles how messages are logged in you system, but Apache handles it’s own logs and the details are typically kept in the httpd.conf file.

sudo grep -i 'log' /etc/httpd/conf/httpd.conf /etc/httpd/conf.d/*

# Custom log file locations
LogLevel warn
ErrorLog  /var/www/html/site1.com/log/error.log
CustomLog /var/www/html/site1.com/log/access.log combined
# Custom log file locations
LogLevel warn
ErrorLog  /var/www/html/site2.com/log/error.log
CustomLog /var/www/html/site2.com/log/access.log combined
# Custom log file locations
LogLevel warn
ErrorLog  /var/www/html/site3.com/log/error.log
CustomLog /var/www/html/site3.com/log/access.log combined

So, grepping gives me a listing of logfile locations for each of the sites and as you can see they are all located in different directories.  You probably also noticed that there are logfiles in the con.d directory that I grepped for.  A lot of stuff will want to install there, like phpMyAdmin or webalizer or ssl.conf.  One other note, some installations will have their config files in an apache2 directory.

LOGROTATE

We are going to make use of logrotate a system that typically runs daily so you’ll find it in /etc/cron.daily/logrotate

#!/bin/sh

/usr/sbin/logrotate /etc/logrotate.conf
EXITVALUE=$?
if [ $EXITVALUE != 0 ]; then
    /usr/bin/logger -t logrotate "ALERT exited abnormally with [$EXITVALUE]"
fi
exit 0

Or course, it has it’s own logrotate.conf file and if you peek in there you’ll see an include directory “include /etc/logrotate.d”  peeking in there you’ll find a bunch of ASCII text files.  I found one with the following:

/var/log/httpd/*log {
    missingok
    notifempty
    sharedscripts
    postrotate
        /sbin/service httpd reload > /dev/null 2>/dev/null || true
    endscript
}

This isn’t a bad start, but it points to the wrong location and doesn’t handle things very specifically.  I’d like to add a few directives

• weekly – Only rotate weekly
• size 10M – Don’t bother rotating until the file exceeds 10M.
• compress – Go ahead and compress that 100M file that you are saving.
• rotate 4 – keep no more than 7 of these.

If you want to know more try the ‘man logrotate’ command, but this is going to give me a minimum of 4 weeks of logfiles.  Okay, so you end up creating a unique logrotate config for each separate virtualhost where you store the log files in a unique location.  It might looks like this:

/var/www/html/site1.com/log/*.log {
     weekly
     missingok
     rotate 4
     compress
     delaycompress
     notifempty
     sharedscripts
     postrotate
         /sbin/service httpd reload > /dev/null 2>/dev/null || true
     endscript
}

I called mine site1.com and wanted to check the debug file on this so I ran the following command.

logrotate --debug --force /etc/logrotate.d/site1.com

Now take out the –debug to force the rotation right now and take a look at your work.

Okay, so one last tip.  You probably noticed that we are compressing things and you may be thinking how lame that is if you have to reference the files, but the gzip RPM comes with zless and zgrep.  These solve that problem nicely.

About Jay Farschman - Jay currently works as a Senior Systems Administrator for an asset management company in Colorado where he works with companies that produce hardware, telecommunications software and financial services.  Jay previously owned a consulting company and provided training and consulting services for three Fortune 500 companies and numerous small businesses where he leveraged Linux to provided exceptional value.

Share on Facebook

Google announced a new privacy policy the other day and characterized it as very user friendly because it combines more than 60 policies into a single policy.  I have to agree with that characterization.  One of the most important features of a privacy policy should be it’s transparency and having 60-some overlapping policies is not very transparent and pretty well impossible to read through.

One other significant change is that while you may have created accounts with special aliases to hide your identity, these are not necessarily anonymous anymore.  Google has be transitioned to a unified Google account where a single profile is attached to multiple services. Some or all Google services may replace your pseudonym  with your Google Profile account name and picture and make that information available publicly.  This has become part of the ‘Information you volunteered to Google’ [see below].

WHAT THEY COLLECT

1. Information you volunteer to Google – Information you give Google when you sign up for a service like your name, email address, telephone number or credit card and possibly a publicly visible Google Profile, which may include your name and photo.
2. Information Google learns while you use their services
1. Device Information – such as your hardware model, operating system version, unique device identifiers, and mobile network information including phone number). Google is able to associate your device identifiers or phone number with your Google Account.
2. Log information – Details of how you used a Google service, such as your search queries, IP Address, cookies, browser type, browser language, the date.  Some applications may log, device event information such as crashes, system activity, hardware settings.
3. Log information – Details of how you used a Google service, such as your search queries, IP Address, cookies, browser type, browser language, the date.  Some applications may log, device event information such as crashes, system activity, hardware settings.
4. Unique application number – Tracks Google application versions for automatic updates.
5. Cookies – limited data is collected through cookies and shared with advertisers (opt-in consent for personal info)

WHO HAS THE ACCESS TO THE INFO

• Google Employees – They say the information is distributed on a ‘need-to-know’ basis, but there are certainly some Google employees who have access to all of the information, sensitive and otherwise.
• Companies Outside Google – may purchase information, but personal (confidential medical facts, racial or ethnic origins, political or religious beliefs or sexuality) information is not shared without your consent (opt-in)
• External Processing Companies – companies that process the data for Google in accordance with Google privacy policies.
• Law Enforcement/Govt. – Any enforceable governmental request or if are believed to have violated the Terms of Service.

TRANSPARENCY
In the interest of transparency Google offers these links to assist you to understanding the scope of the information stored and to control that information, in a limited way.

1. Review Your Account – https://www.google.com/dashboard/?hl=en
2. Advertising Management – https://www.google.com/settings/u/0/ads/preferences/?hl=en
3. Edit Your Profile – http://support.google.com/accounts/bin/answer.py?hl=en&answer=97706
4. Control Your Circle of Friends – http://support.google.com/plus/bin/static.py?hl=en&page=guide.cs&guide=1257347
5. I want out – http://www.dataliberation.org/

References:
ACLU Article hammering home the danger of targeted ads.

About Jay Farschman - Jay currently works as a Senior Systems Administrator for an asset management company in Colorado where he works with companies that produce hardware, telecommunications software and financial services.  Jay previously owned a consulting company and provided training and consulting services for three Fortune 500 companies and numerous small businesses where he leveraged Linux to provided exceptional value.

Share on Facebook