Pivotree, formerly known as Tenzing, is a web hosting company.
ICOM has contracted the use of 4 physical servers under 2 accounts with Tenzing Managed IT Services of Toronto.
Account #97028
Account #97470
A ticket is requested when contacting Pivotree Support. Account number may be required.
server9483
IP used for outbound traffic:
67.22.102.177
Deleting files older than 90 days in the current directory:
sudo find . -mtime +90 -exec rm {} \;Which are the biggest vhosts?
sudo du --max-depth=1 /var/www/vhosts/ > vhost_folder_size.txtZip vhosts:
sudo tar -czvf teckapi.tar.gz teckapi/Apache redirects
RewriteEngine OnRewriteCond %{REQUEST_URI} !=/index.phpRewriteCond %{REQUEST_URI} !\.(gif|jpe?g|png|css)$RewriteRule ^ /index.php [R=302]DocumentRoot /var/www/vhosts/disabled/webroot/htdocsCSR
Before buying a Certificate, or asking our clients to provide one, a CSR needs to be generated from our web server.
sudo openssl req -new -newkey rsa:2048 -nodes -keyout shortname.key -out shortname.csrLeave the CSR in a ssl folder for the vhost:
eg: /var/www/vhosts/shortname/webroot/ssl/
Certificate
Using the CSR text, purchase a PositiveSSL certificate from:
Namecheap
Certificate should be compatible with an Apache webserver running OpenSSL.
Copy certificates to a ssl directory of the vhost (replace "shortname"):
eg: /var/www/vhosts/shortname/webroot/ssl/
Bundle the intermediate certificates provided into one (replace "shortname"):
sudo cat AddTrustExternalCARoot.crt COMODORSAAddTrustCA.crt COMODORSADomainValidationSecureServerCA.crt > shortname.bundleApache conf
Edit/create an Apache HTTPS Virtual Host configuration file.
An example:
/etc/httpd/conf.d/vhosts/shell.conf
NameVirtualHost 67.22.102.183:80<VirtualHost 67.22.102.183:80> Use icomproductions_domains shell Redirect 301 / https://shell.icomproductions.ca/</VirtualHost>Check status:
sudo service httpd statusTest any changes first:
sudo service httpd configtestGraceful restart:
sudo service httpd gracefulUnusable IPs
67.22.99.170 was bound to the server but is not part of one of your private subnets. It is unusable as it is on a vlan which is not configured on the switch your server is using. I have hence removed 67.22.99.170 from Server9483 (to avoid more confusion in the future) and have bound a new IP - 66.11.148.91 for you. Will you please update your configure files to use 66.11.148.91 and let us know how it works? Thanks! Nathan
Ensure "20" is the next available device number:
cd /etc/sysconfig/network-scripts/ cp ifcfg-eth0:0 ifcfg-eth0:20 vi ifcfg-eth0:20
Edit file to contain your:
Restart and confirm:
/etc/init.d/network restart /sbin/ifconfig
2013/07/08 18:35:41 BY Jason Manning This is what I am showing for Rules: FTP/SSH to server9641 199.202.144.0/24 199.202.144.192 199.202.144.204 208.98.233.6 SSH to Server9641 66.222.178.187 Full Trust all servers 216.13.179.146 SSH to server9483 209.82.26.132 FTPS Access 216.58.14.240 , 216.220.51.2 , 71.4.124.77 , 71.4.124.76 , 71.4.124.75 , 71.4.124.74 , 71.4.124.73 , 71.4.124.72 , 71.4.124.71 , 71.4.124.70 , 71.4.124.69 , 71.4.124.67 , 71.4.124.68 , 206.75.198.0/24 , 208.98.233.0/24 , 206.108.31.36 , 66.225.131.29 , 72.29.238.61 , 216.198.158.43 , 216.198.158.44 , 216.198.158.46 , 207.228.86.2 , 209.82.26.132 , 209.148.219.99 , 198.161.238.19 SSH Access 198.161.238.19 , 66.249.75.49 , 209.82.26.132 , 208.38.44.210 , 207.228.86.2 , 216.198.158.46 , 216.198.158.44 , 208.38.59.120 , 66.225.131.0/27 , 208.38.59.124 , 208.38.59.123 , 216.198.158.43 , 205.210.17.0/24 , 208.98.233.0/24 , 206.75.198.0/24 , 71.4.124.67 , 216.13.179.146 , 71.4.124.68 , 71.4.124.69 , 71.4.124.70 , 71.4.124.71 , 71.4.124.72 , 71.4.124.74 , 71.4.124.73 , 71.4.124.75 , 71.4.124.77 , 71.4.124.76
In order to connect to our web server clients need this IP addresses whitelisted. This request can be made through Tenzing support:
URL: https://my.tenzing.com/SignIn.aspx
User Name: icom.support
Password:
Visit: Tickets >> Add Ticket >> Firewall
ICOM sets up FTP accounts for clients hoping to drop user lists into their FiLMS install and/or pulling enrollment exports produced by FiLMS. Passwords are kept secure here:
CNRL Horizon
CNRL Training
Enerplus
Mark's
Mark's
Newalta
Precision Drilling
Suncor Contractors
Teck
TELUS Integrity
Trimac
Unknown? cd /data/backups/
server9822: cd /var/backup/db/
SELECT table_schema "Data Base Name", sum( data_length + index_length ) / 1024 / 1024 "Data Base Size in MB" FROM information_schema.TABLES GROUP BY table_schema;