Problem accessing services through the private IP on multihomed server

I’ve got such an strange behaviour in a Ubuntu 18.04.3 LTS with latest updates:

Introduction:

It’s a multihomed server with a public IP for public services and a private IP on a second adapter for comunications like SSH. I’ve set up an IPSec tunnel (pfSense) that is working fine, so that I can SSH to all my servers on that private LAN.

The facts:

Periodically, after several days working fine it happens that:

  • 1) I can’t connect to any service from my VPN IP to the private IP address

  • 2) If I restart the VPN client or the VPN service it doesn’t solve

  • 3) If I restart the SSH service it doesn’t solve. It also happens with nginx, for example. Service restarts don’t solve it.

  • 4) I neither can connect to new services on new ports from the previously told IPs source/destination

  • 5) When the problem is happening other servers in that private LAN are not affected and you can connect from those servers to the SSH service of this affected server without problems. For example: my monitoring software is not showing any alert because it can connect to the services on its private IP without any problem.

  • 6) If I capture network traffic (tcpdump) I see that the first “SYN” packet is really reaching the server, but he server is not replying with the SYN/ACK packet as expected. So, the communication is never stablished.

  • 7) I can’t find any error message anywhere

  • 8) the static network route for VPN Network isn’t lost, ‘netstat -rn’ shows the same routes

  • 9) the server is idle

  • 10) It’s not using any local firewall like iptables

  • 11) To solve it I just have to put the network interface down and up (ifconfig eth1 down; ifconfig eth1 up), or reboot the server.

My assumptions

  • it can’t be a IPSec problem because of facts #5 and #6
  • it can’t be related to the software of the service (SSH) because of fact #3
  • it can’t be related to network routes because of facts #6 and #8
  • it’s not a performance probem, because of fact #9

It looks like a TCP/IP network stack problem but it would happen to more people and it should be solved in patches.

Can any body help me, please? Thanks in advance!

Accessing sharepoint list using REST api with angular gives 403 error

I am trying to make a call to sharepoint list using REST APIs. I am logged in to sharepoint and when in browser tab, I enter the rest url like:

https://myserver.sharepoint.com/sites/mylist/_api/lists/getbytitle(‘OEC_Docs’)/items

It returns me the data in the browser as expected. However using the code given below in my angular 4 app throws 403 error:

getDocs(){       const httpOptions = {       headers: new HttpHeaders({           'Accept':  'application/json;odata=verbose',           'Content-Type': 'application/json'       })   };    return this.http.get(this.sharePointRestHost, httpOptions) } 

As the app is running on localhost in the same browser. So I am expecting it to work.

Please advise how to fix it.

Accessing sharepoint image library from PPT to autimatically add images in a PPT

Wondering if there is a way to link the asset/image library from SharePoint to PPT. This way when creating a presentation, I could click on the image library and it will right away give me the images saved in that library in SharePoint where I can choose an image from. Those images would already be vetted and proper copy protection given. I would also be able to embed videos or audios when needed from this SharePoint asset library.

Problem when accessing the server at localhost:3306(Your connection attempt failed for user ‘root’ from your host to server at localhost:3306:)

I’m new in working with Database.I have a ubuntu machine.i installed mysql and mysql-workbrench in the repository.I’m success in installation and using them in the terminal but there’s a problem happended with workbrench when i tried to connect to the localhost:3306:

Problem is:Your connection attempt failed for user ‘root’ from your host to server at localhost:3306: Could not open database

Please: 1 Check that mysql is running on server localhost 2 Check that mysql is running on port 3306 (note: 3306 is the default, but this can be changed) 3 Check the root has rights to connect to localhost from your address (mysql rights define what clients can connect to the server and from which machines) 4 Make sure you are both providing a password if needed and using the correct password for localhost connecting from the host address you’re connecting from

I’ve searched too much but my problem isn’t fixed. Any idea here ??

picture 1 picture 2 picture 3

SharePoint 2013 On-Premise getting an error while accessing subsite java.net.ProtocolException: Server redirected too many times (20)

SharePoint 2013 On-Premise getting an error while accessing subsite java.net.ProtocolException: Server redirected too many times (20)

It is working fine when I try to load subsite again with the same session.

It is working for SharePoint on-premise 2010 but the issue only for SharePoint on-premise 2013

and there issue only for accessing subsite URL http://schemas.microsoft.com/sharepoint/soap/GetAllSubWebCollection

following is the error message:

(AxisFault): java.net.ProtocolException: Server redirected too many times (20) at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at sun.reflect.NativeConstructorAccessorImpl.newInstance(Unknown Source) at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(Unknown Source) at java.lang.reflect.Constructor.newInstance(Unknown Source) at sun.net.www.protocol.http.HttpURLConnection$ 6.run(Unknown Source) at sun.net.www.protocol.http.HttpURLConnection$ 6.run(Unknown Source) at java.security.AccessController.doPrivileged(Native Method) at sun.net.www.protocol.http.HttpURLConnection.getChainedException(Unknown Source) at sun.net.www.protocol.http.HttpURLConnection.getInputStream(Unknown Source)

Can we restrict Users from accessing Office 365 from certain IP address

we have office 365 tenant and our team over in india actively uses that for day to day stuff. But now we only want to allow users to access Office 365 from there office network. can we do that in Office 365.

When users login from other IP address other than office network it would simply block the access.

External Application accessing a Sharepoint Server

I have a specific scenario, wherein I have an application built ASP.net MVC accessing a SharePoint server.

Now my SharePoint server has a configuration where there are 2 Web Front End servers and 2 Database servers clustered.

The Web Front End servers are using a load balancer.

Now I want to host my External ASP.net web application.

Can I host my application on one of the Web Front End server?

Or I will have to have another server which will host my application?

sharepoint – accessing excel files from VBA

I’m trying to access SharePoint directory from Excel VBA and loop over all files at this directory. But when I try to refer to the directory, then I get this error in return:

Path not found

I tried:

Set folder = fs.GetFolder("//mojsharepoint/xx") 

and I tried this:

Set objFSO = CreateObject("Scripting.FileSystemObject") Set objFolder = objFSO.GetFolder("//mysharepoint/xx") 

But when referring to a single file on the directory it works perfect

LoadFilePath = "//mojsharepoint/xx/file.xlsm" Set WB = Workbooks.Open(LoadFilePath) 

Securing multiple systems accessing the same data

I’m hitting a roadblock when it comes to security for managing scoped permissions for servers.

Right now I run a community which can create sub-servers. So community A can allow certain users to moderate it, change settings, invite users, read logs etc for their own sub-server, but not others.

My current system has a global user, this user has permissions structured similar to this:

{  "id" :"their unique id",  "username" : "username",  "globalRole" : "user",  "permissions": [    {       "resource" : "guilds_id_here",       "permissions" : [          {            "resource" : "guild.logs",            "read" : true,            "write" : false           }        ]      }   ] } 

A single user has access based on ‘resources’, and when they attempt to modify, read or do anything through my API or Socket, i check if they have access to the resource they’re modifying.

This is pretty easy for me to manage permissions through the API as i intercept the request, grab the resource and see if they’re permitted to perform the action they’re trying to do, such as read a log or invite a user and then either reject the API call before it ever reaches the controller.

The main issue I’m now having is with maintaining multiple means of access, I now have the REST API and a WebSocket which can access the same kinds of data depending on where they’re accessing the guild from.

So now the permission system has become significantly more complicated and isnt as easy as intercepting a request from the REST API and blocking it, i now have two permission checking systems which I feel is wrong and breaks the DRY Principle.

I’d like to learn if there are any industry standards for multiple means of accessing data. Should I build a resource manager which always needs credentials and the target resource, and then have a system user for internal access or is there an easier standard for tight nit control over who can do what based on the permissions they have for a specific resource.

The end goal is to be able to grant permission to an object and properly filter out data that is authorised for the user requesting data.