git clone and push command hang,get no response by ssh - ssh

our local gerrit version is gerrit-2.12.3.
It have be used for 4 years.It occured this issue suddenly.
when this issue orrured,someone can not clone and push by ssh, someone is ok.
all can clone and push by http.
when git push command execute,i have see the gerrit server have ssh connect
established.
but can not push success,just hang.have no error.
how can i resovle this,thank you


There could be any issues(repo size large ,more connections then thread) which is causing this problem, i would suggest you to come-up with the exact problem
Read this thread https://groups.google.com/forum/#!topic/repo-discuss/b0bMdq69KL4


my ssh config is like this
[sshd]
listenAddress = *:29418
maxConnectionsPerUser = 0
when ssh frezze,gerrit server ssh connect condition is like this
root#hkr-209:/home/mo/soft/gerrit2/git# netstat -tulanp | grep 29418
tcp6 0 0 :::29418 :::* LISTEN 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:42112 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60180 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.142.161:45036 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:3061 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60188 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60564 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 33280 10.10.142.183:29418 10.10.196.73:60179 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60185 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60487 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.142.161:47982 TIME_WAIT -
tcp6 0 408 10.10.142.183:29418 10.10.142.161:47992 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:42108 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60501 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.142.161:47524 TIME_WAIT -
tcp6 0 0 10.10.142.183:29418 10.56.53.14:57179 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 33280 10.10.142.183:29418 10.10.196.73:60181 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60485 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60486 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.142.161:47678 TIME_WAIT -
tcp6 0 0 10.10.142.183:29418 10.10.196.71:55037 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60307 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.142.161:47988 TIME_WAIT -
tcp6 0 0 10.10.142.183:29418 10.10.196.73:42114 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60255 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.142.161:47730 TIME_WAIT -
tcp6 0 0 10.10.142.183:29418 10.10.142.161:47812 TIME_WAIT -
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60183 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60189 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:63691 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60484 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60504 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:59970 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60190 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 0 10.10.142.183:29418 10.10.196.73:60563 ESTABLISHED 7071/GerritCodeRevi
tcp6 0 33280 10.10.142.183:29418 10.10.196.73:60182 ESTABLISHED 7071/GerritCodeRevi
i dont know why so many connecttion do not finish.
and we do not have big repo so
our server has four cpus,so how many maxConnectionsPerUser does i need to config?

Related

SSl Certificate on Port 8080 on ubuntu 20.04 with Apache2

i have a question, can i use SSL certificate on port 8080 with let's encrypt?? because i have Varnish on port 80 and apache2 on port 8080 and 443
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 1333884/varnishd
tcp 0 0 127.0.0.53:53 0.0.0.0:* LISTEN 1168629/systemd-res
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 27647/sshd: /usr/sb
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 1837/master
tcp 0 0 127.0.0.1:6082 0.0.0.0:* LISTEN 1333884/varnishd
tcp6 0 0 :::33060 :::* LISTEN 1079271/mysqld
tcp6 0 0 :::3306 :::* LISTEN 1079271/mysqld
tcp6 0 0 :::8080 :::* LISTEN 1335593/apache2
tcp6 0 0 :::80 :::* LISTEN 1333884/varnishd
tcp6 0 0 :::22 :::* LISTEN 27647/sshd: /usr/sb
tcp6 0 0 ::1:25 :::* LISTEN 1837/master
tcp6 0 0 :::443 :::* LISTEN 1335593/apache2
and if i try to install ssl i get this error
Domain: my_domain
Type: unauthorized
Detail: Invalid response from
http://my_domain/.well-known/acme-challenge/wtWGU-02etvPPcCMHS_XbDZz6zC6uaFl5sMKwdcwdNw
[ip_address]: 503
I'm pointing the domain with Record A and AAAA, it's almost 24hrs that I've pointed it

Asterisk API - problem reaching from browser [closed]

Closed. This question is not about programming or software development. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 3 months ago.
Improve this question
I have configured Issabel with Asterisk :
[root#issabel ~]# asterisk -V
Asterisk 11.25.3
enabled mini http server at /etc/asterisk/http.conf
enabled manager access at /etc/asterisk/manager.conf
http.conf:
#include http_additional.conf
#include http_custom.conf
[general]
enabled=yes
enablestatic=yes
bindaddr=0.0.0.0
bindport=8080
prefix=
tlsenable=no
tlsbindaddr=
tlscertfile=
tlsprivatekey=
manager.conf:
[general]
enabled = yes
bindaddr = 0.0.0.0
port = 5038
#include manager_general_additional.conf
[admin]
username = foo
secret = bar
#deny=0.0.0.0/0.0.0.0
permit=0.0.0.0/0.0.0.0
permit=127.0.0.1/255.255.255.0
read = system,call,log,verbose,command,agent,user,config,command,dtmf,reporting,cdr,dialplan,originate
write = system,call,log,verbose,command,agent,user,config,command,dtmf,reporting,cdr,dialplan,originate
writetimeout = 5000
httptimeout = 36000
#include manager_additional.conf
#include manager_custom.conf
i am trying to create some API based on this article:
[https://wiki.asterisk.org/wiki/display/AST/Allow+Manager+Access+via+HTTP][1]
the article says , that first i must log in via:
http://localhost:8088/manager?action=login&username=foo&secret=bar
of course i have issabel server in my local network, so i am trying to log in from Chrome:
http://192.168.0.100:8088/manager?action=login&username=foo&secret=bar
the result is the following:
Not Found
The requested URL was not found on this server.
Asterisk Server
the ports on the server are open, listening, no firewall blocking them - i can telnet these ports 8080 and 5038 from my command line
netstat on my issabel server:
[root#issabel ~]# netstat -tlpn
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:445 0.0.0.0:* LISTEN 1181/smbd
tcp 0 0 0.0.0.0:4190 0.0.0.0:* LISTEN 2414/cyrus-master
tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN 2414/cyrus-master
tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN 2414/cyrus-master
tcp 0 0 127.0.0.1:20004 0.0.0.0:* LISTEN 2558/php
tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN 2011/mysqld
tcp 0 0 0.0.0.0:139 0.0.0.0:* LISTEN 1181/smbd
tcp 0 0 0.0.0.0:5038 0.0.0.0:* LISTEN 2526/asterisk
tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN 2414/cyrus-master
tcp 0 0 0.0.0.0:4559 0.0.0.0:* LISTEN 2587/hfaxd
tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN 2414/cyrus-master
tcp 0 0 0.0.0.0:8080 0.0.0.0:* LISTEN 2526/asterisk
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 981/sshd
tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 1658/master
tcp6 0 0 :::443 :::* LISTEN 979/httpd
tcp6 0 0 :::445 :::* LISTEN 1181/smbd
tcp6 0 0 :::4190 :::* LISTEN 2414/cyrus-master
tcp6 0 0 :::993 :::* LISTEN 2414/cyrus-master
tcp6 0 0 :::995 :::* LISTEN 2414/cyrus-master
tcp6 0 0 :::139 :::* LISTEN 1181/smbd
tcp6 0 0 :::110 :::* LISTEN 2414/cyrus-master
tcp6 0 0 :::143 :::* LISTEN 2414/cyrus-master
tcp6 0 0 :::80 :::* LISTEN 979/httpd
tcp6 0 0 :::22 :::* LISTEN 981/sshd
tcp6 0 0 :::25 :::* LISTEN 1658/master
My goal is, to show the calling numbers to my CallCenter operators , find these numbers in my local database and display the caller names with the data needed to handle the cutomers in our information system based on web.
[root#issabel static-http]# ls -la ./
total 696
drwxrwxr-x 2 asterisk asterisk 4096 Jul 15 2019 .
drwxrwxr-x. 14 asterisk asterisk 4096 Jun 8 06:12 ..
-rw-rw-r-- 1 asterisk asterisk 6066 Jun 6 2018 ajamdemo.html
-rw-rw-r-- 1 asterisk asterisk 461 Jun 6 2018 astman.css
-rw-rw-r-- 1 asterisk asterisk 7912 Jun 6 2018 astman.js
-rw-rw-r-- 1 asterisk asterisk 573949 Jun 6 2018 core-en_US.xml
-rw-rw-r-- 1 asterisk asterisk 4170 Jun 6 2018 mantest.html
-rw-rw-r-- 1 asterisk asterisk 96653 Jun 6 2018 prototype.js
any hint appreciated

You also need install web files in correct location.
Check that you have files in /var/lib/asterisk/static-http/

cp -Rfv /var/lib/asterisk/* /usr/share/asterisk/

Can I set Tomcat SSL port other then 443 or 8443

I have Plesk on my server that is using both ports as:
#netstat -lnp | grep 443
tcp 0 0 0.0.0.0:8443 0.0.0.0:* LISTEN 5513/sw-cp-server:
tcp6 0 0 :::443 :::* LISTEN 32660/httpd
tcp6 0 0 :::8443 :::* LISTEN 5513/sw-cp-server:
unix 2 [ ACC ] STREAM LISTENING 110443 31339/dovecot /var/run/dovecot/stats
Best regards

Yes, you can. http://tomcat.apache.org/tomcat-7.0-doc/ssl-howto.html (First Google hit, incidentally)

Apache HTTP Server port doesn't respond

I'm forging a packet to start a TCP connection with port 80 (so I'm sending a TCP-SYN) and the HTTP Server does not respond at all.
I've ran netstat -natu during the all process and no change on the port 80 state:
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 192.168.1.7:41562 151.101.61.140:443 ESTABLISHED
tcp 0 0 192.168.1.7:45660 216.58.214.161:80 ESTABLISHED
tcp 0 0 192.168.1.7:50852 151.101.193.69:80 TIME_WAIT
tcp 0 0 192.168.1.7:36450 64.233.184.95:443 ESTABLISHED
tcp 1 0 192.168.1.7:46960 162.213.33.49:443 CLOSE_WAIT
tcp6 0 0 :::80 :::* LISTEN
tcp6 0 0 ::1:631 :::* LISTEN
tcp6 1 0 ::1:35050 ::1:631 CLOSE_WAIT
udp 0 0 0.0.0.0:631 0.0.0.0:*
udp 0 0 0.0.0.0:49933 0.0.0.0:*
udp 0 0 0.0.0.0:5287 0.0.0.0:*
The port is always on LISTEN state, and upon receiving a TCP-SYN it should change to SYN_RECV right?
If it helps, a Wireshark capture of the packet I send:
So I can't seem to see what the problem is.

Have you noticed that you're using tcp6 (mean IPv6) but trying to open up the session using IPv4?
I guess that's why it's not opening the session. Try to align to IPv4.

Gateway Timeout: can't connect to remote host after reboot

I'm running apache2 on a CentOS 6.7 VM. My PHP website was working fine before a reboot but afterwards I'm getting 504 Gateway Timeout.
$ telnet <MYIP> 80
Trying <MYIP>...
Connected to <MYHOSTNAME>.
Escape character is '^]'.
HTTP/1.0 504 Gateway Timeout
Gateway Timeout: can't connect to remote host
Connection closed by foreign host.
I've been googling for hours but can't find anything that works. The website works locally i.e. if I wget http://localhost:80/.
My iptables is as follows:
$ sudo netstat -plnt
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN 1556/rpcbind
tcp 0 0 0.0.0.0:35443 0.0.0.0:* LISTEN 1578/rpc.statd
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 1745/sshd
tcp 0 0 127.0.0.1:5432 0.0.0.0:* LISTEN 1782/postmaster
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 1866/master
tcp 0 0 ::ffff:127.0.0.1:8005 :::* LISTEN 2736/java
tcp 0 0 :::8009 :::* LISTEN 2736/java
tcp 0 0 :::111 :::* LISTEN 1556/rpcbind
tcp 0 0 :::80 :::* LISTEN 2854/httpd
tcp 0 0 :::8080 :::* LISTEN 2736/java
tcp 0 0 :::54644 :::* LISTEN 1578/rpc.statd
tcp 0 0 :::22 :::* LISTEN 1745/sshd
tcp 0 0 ::1:5432 :::* LISTEN 1782/postmaster
tcp 0 0 ::1:25 :::* LISTEN 1866/master
enter code here
Any ideas what could be wrong or how to troubleshoot this?

After having restarted apache many times and trying to set firewall rules again I did both again and it worked.
I've no clue what the issue was so still interested if anyone knows.