how to setup ssh tunnel to named virtual host

I’m currently setting up server inside our lab at Uni that will be used for multiple purposes including a bibliography database and a CI Server (Jenkins). In order to maintain clean separation of concerns, I have a jailed virtual host for each function along with an assigned internal domain name. Inside the lab, the arrangement works fine.

However, in order to connect to our lab from home, we need to first VPN into the Uni and then SSH into our lab’s gateway machine. From the gateway we can access any internal machines we need to reach, and use SSH Tunnels as needed.

I’m wondering if it is possible to access virtual hosts through a single SSH tunnel? Like Server Name Indication (SNI)? Or would I need to setup a proxy server like Squid? I gather that both DNS as well as HTTP traffic would need to be routed correctly. Can this be done using just hosts file settings?

Any advice would be much appreciated. Thanks!

How to access multiple websites from server on virtualbox to the host machine?

I am trying to access multiple websites that I have on my virtual-box server setup(Ubuntu 18.04.2) to my host machine(Ubuntu 19.04). the websites works fine in the virtual environment but when I try to access them in host machine via IP address(192.168.1.13), only files inside /var/www/html folder are accessed and are accessible on LAN.

BUT I have failed to find a way to access files inside (for instance) /var/www/test. Is there any sort of simple way to resolve the issue?

Thanks

BOINC can’t connect to local host

Have just upgraded online from 18.10 to 19.04 (desktop 64 bit). BOINC has worked previously but now won’t run. BOINC Manager is greyed out and shows ‘connecting to localhost’. Trying ‘boincmgr’ always returns ‘can’t connect to local host’. It has been suggested that it’s a firewall problem, but gufw doesn’t have a profile for BOINC. Since this is only since upgrade could this be a Ubuntu 19.04 problem?

Security Onion not displaying status of host running OSSEC agent in Kibana

I am deploying an instance of Security Onion to a test environment. In order to test OSSEC, I stood up an Ubuntu Linux host with assigned IP of 192.168.200.4 and installed the OSSEC agent. Following configuration, I confirmed that the OSSEC agent instance was successfully added to the OSSEC server on the Security Onion instance by running

$  sudo /var/ossec/bin/agent_control -l  Wazuh agent_control. List of available agents:     ID:000, Name: user-virtual-machine (server), IP: 127.0.0.1, Active/Local     ID:002, Name: 001, IP: 192.168.200.4, Active 

Using Wireshark, I confirmed that communication was occurring as expected and that the Ubuntu host was regularly sending logs to the server.

I altered a file in /etc on the Ubuntu host which should produce an alert, and it would appear that this change was successfully flagged and an alert was successfully displayed in Squert on the Security Onion Instance.

Squert dashboard filtered on 192.168.200.4 showing integrity alert

However, when I try to visualize alerts using Kibana on the Security Onion instance, my host running OSSEC does not appear as a monitored OSSEC instance at all. Only one device is listed as a monitored host, and that is my Security Onion instance.

Kibana dashboard, please note the sensor count and device count of 1

I’ve attempted to restart the Security Onion service and the host but have not been able to resolve this problem. I am new to Security Onion, so if I am fundamentally misunderstanding how this data should be displayed I apologize. Any help would be greatly appreciated.

virtualized Ubuntu 18.04 on VMware Workstation Pro fails to mount drive on physical Windows 10 host

I want to share files between an app on a native Windows 10 and an app on virtualized Ubuntu on VMware Workstation Pro, but can’t mount the Windows 10 shared directory onto Ubuntu with this Linux command:

sudo mount -t cifs //192.168.7.24/demo /home/movano/Desktop/share/ -o username=me,uid=me,password=pw

However, a 2nd laptop running Ubuntu 18.04 natively can mount the same directory on the same Windows 10 laptop OK. So, the problem is not on Windows. Samba smb.conf

Workflow…
Installed VMware Workstation Pro onto Windows 10 and virtualized Ubuntu 18.04
Installed Samba on the virtualized Ubuntu with these commands:
sudo apt install samba -y
sudo systemctl restart smbd

This newly installed smb.conf is identical to the smb.conf on the 2nd laptop with native Ubuntu, which of course also has Samba.

Have tried Network Adapter NAT, bridge, and host-only, but all get same problem.

2 directories listing with different credentials in 1 virtual host conf?

Is it possible to list 2 different directories, each with their own different username/password in the same documentroot in the same virtual host conf?

Ultimate goal is to browse to: https://myservershostname and it displays 2 directories, dir1 and dir2, if you click on dir1 you can only get into it if you type the password for user1, and if you click on dir2 you can only get into it if you type the password for user2.

my non-working config:

<VirtualHost *:443>     DocumentRoot "/app/httpd/home/htdocs/"     ServerName myservershostname  <Directory "/app/httpd/home/htdocs/">   Options Indexes FollowSymLinks </Directory>  <Directory "/app/httpd/home/htdocs/dir1/">       AuthType Basic       AuthName "Restricted Content"       AuthUserFile /etc/httpd/.htpasswd       Require user user1 </Directory>   <Directory "/app/httpd/home/htdocs/dir2/">       AuthType Basic       AuthName "Restricted Content"       AuthUserFile /etc/httpd/.htpasswd       Require user user2 </Directory>  </VirtualHost> 

Currently when I browse to https://myservershostname it doesn’t list anything. Any input or resources to look at would be very appreciated

What can be done increase bandwidth from Citrix XEN guest to Citrix XEN guest on the same physical host?

Whether using UDP or TCP, guest VM to guest VM bandwidth on a single Citrix 7.6 XenServer host caps out at about 6Gbits/sec. Would this 5Gbps be comparable to Amazon AWS Xen performance? Need this to much faster for iSCSi performance reasons.

GOOD: iperf3 client to localhost iperf3 server on same VM:

root@ubuntu:~# iperf3  -c localhost Connecting to host localhost, port 5201 [  4] local ::1 port 43350 connected to ::1 port 5201 [ ID] Interval           Transfer     Bandwidth       Retr  Cwnd [  4]   0.00-1.00   sec  3.10 GBytes  26.6 Gbits/sec    0   1.62 MBytes [  4]   1.00-2.00   sec  3.11 GBytes  26.7 Gbits/sec    0   2.37 MBytes  [ ID] Interval           Transfer     Bandwidth       Retr [  4]   0.00-10.00  sec  36.2 GBytes  31.1 Gbits/sec    0             sender [  4]   0.00-10.00  sec  36.2 GBytes  31.1 Gbits/sec                  receiver  iperf Done. root@ubuntu:~# 

BAD: UDP Guest VM to Guest VM bandwidth: Does not reach GigaBit ethernet speed, but this should be regulated shared memory. Suppose the packet loss points to something.

PS C:\Users\Administrator> iperf3 -u -b 10000000000 -c 192.168.2.251 Connecting to host 192.168.2.251, port 5201 [  4] local 192.168.2.159 port 51835 connected to 192.168.2.251 port 5201 [ ID] Interval           Transfer     Bandwidth       Total Datagrams [  4]   0.00-1.00   sec  68.2 MBytes   572 Mbits/sec  8731 [  4]   1.00-2.00   sec  79.7 MBytes   669 Mbits/sec  10205 [  4]   2.00-3.00   sec  76.8 MBytes   644 Mbits/sec  9825 [  4]   3.00-4.00   sec  80.5 MBytes   675 Mbits/sec  10308 [  4]   4.00-5.00   sec  73.9 MBytes   620 Mbits/sec  9463 [  4]   5.00-6.00   sec  70.5 MBytes   591 Mbits/sec  9020 [  4]   6.00-7.00   sec  74.8 MBytes   628 Mbits/sec  9575 [  4]   7.00-8.00   sec  82.3 MBytes   691 Mbits/sec  10536 [  4]   8.00-9.00   sec  79.5 MBytes   667 Mbits/sec  10178 [  4]   9.00-10.00  sec  73.0 MBytes   613 Mbits/sec  9350 - - - - - - - - - - - - - - - - - - - - - - - - - [ ID] Interval           Transfer     Bandwidth       Jitter    Lost/Total Datagrams [  4]   0.00-10.00  sec   759 MBytes   637 Mbits/sec  0.054 ms  166/97191 (0.17%) [  4] Sent 97191 datagrams  iperf Done. PS C:\Users\Administrator> 

Still BAD: TCP Guest VM to Guest VM bandwidth: About as fast as an old harddrive.

PS C:\Users\Administrator> iperf3 -b 900000000000 -c 192.168.2.251 Connecting to host 192.168.2.251, port 5201 [  4] local 192.168.2.159 port 49187 connected to 192.168.2.251 port 5201 [ ID] Interval           Transfer     Bandwidth [  4]   0.00-1.00   sec   659 MBytes  5.53 Gbits/sec [  4]   1.00-2.00   sec   599 MBytes  5.02 Gbits/sec [  4]   2.00-3.00   sec   610 MBytes  5.11 Gbits/sec [  4]   3.00-4.00   sec   650 MBytes  5.45 Gbits/sec [  4]   4.00-5.00   sec   600 MBytes  5.04 Gbits/sec [  4]   5.00-6.00   sec   632 MBytes  5.31 Gbits/sec [  4]   6.00-7.00   sec   602 MBytes  5.05 Gbits/sec [  4]   7.00-8.00   sec   626 MBytes  5.26 Gbits/sec [  4]   8.00-9.00   sec   625 MBytes  5.24 Gbits/sec [  4]   9.00-10.00  sec   615 MBytes  5.16 Gbits/sec - - - - - - - - - - - - - - - - - - - - - - - - - [ ID] Interval           Transfer     Bandwidth [  4]   0.00-10.00  sec  6.07 GBytes  5.22 Gbits/sec                  sender [  4]   0.00-10.00  sec  6.07 GBytes  5.22 Gbits/sec                  receiver  iperf Done. PS C:\Users\Administrator> 

VERYBAD: UDP Iperf3 server running on Citrix Xen host: Would not even reach GigaBit ethernet speed.

iperf3 -u -b 10000000000 -c LocalXenHost result was only 650Mbits/s 

BAD: TCP Iperf3 server running on Citrix Xen host:

iperf3 -b 10000000000 -c LocalXenHost     [ ID] Interval           Transfer     Bandwidth     [  4]   0.00-10.00  sec  6.46 GBytes  5.54 Gbits/sec                  sender     [  4]   0.00-10.00  sec  6.46 GBytes  5.54 Gbits/sec                  receiver