-
jdtHi folks - I'm trying to find a way outside of the Triton UI to flip the security bits on instance NICs. I'm doing IPv6 and routing work, so I need to disable some of the checks. It works fine using the UI, but I'm having trouble getting it to work using the "update_nics" functionality with vmadm. Here's an example: gist.github.com/justindthomas/934e8210bc3f662420ca27ea41fae092
-
jdtNormally I wouldn't be flipping "true" to "false", but I would still expect that to work. What am I doing wrong?
-
pjusticejperkin, would you be willing to consider including github.com/tiandrey/nginx-sslkeylog in nginx builds? I see that nginx 1.27 has something equivalent in the commercial build, but it's not in the community version.
-
gemelenjdt: I'm not sure that it's correct from overall system view, but I saw something similar and I tried to restart vmadm - that helped
-
gemelenas in `svcadm restart vmadmd` from gz, cause `...refresh...` didn't solved it. I bumped into "stale" settings by switching vnc port multiple times, so it's not a particular setting problem
-
jdtThanks for the tip gemelen I'll give that a try.
-
jdtUnrelated question: is there a way to set a password the VNC sessions for Bhyve instances? I can use TurboVNC to connect from my Macbook, but the native Apple VNC client demands that there be a password (and fails to connect if you try to just leave it blank).
-
jdtI think I may have answered my own question: smartos.org/bugview/OS-8108 - I'll experiment with that.
-
fenix→ OS-8108: Support vnc passwords for BHYVE (Resolved) | joyent/illumos-joyent a3d96fd
-
jdtWorks with the password set, but it's a little clunky. The Apple client seems to terminate the connection on initiation (i.e., before it prompts for the password). Then it reconnects using the password. The triton instance vnc command seems to only work for a single connection, so the second attempt fails. Setting a predictable port with -p and then terminating and restarting the triton instance vnc command after the Apple prompt for
-
jdtpassword is displayed but before submitting the response works.
-
jdtJust FYI in case that's useful to anyone else...