I needed the same. I am running signal-cli-rest-api within node-red so I simply can use an http endpoint on node-red like this:
#!/bin/bash
content=$(echo -e "${OMV_NOTIFICATION_SUBJECT} on the ${OMV_NOTIFICATION_DATE} \n\n $(cat ${OMV_NOTIFICATION_MESSAGE_FILE})")
curl -X POST -H "Content-Type: text/plain" --data "${content[@]}" http://node-red.hostname.url/notify/omv Maybe this helps someone 
Maybe it is logging to the standard facilities like syslog and/or daemon.log?
Could be. It's working for me now, maybe this solution is also helpful for others.
Got it!
In /var/log/fail2ban.log I found that the date pattern wasn't recognized correctly, therefore the match was not counted.
2021-03-19 23:15:16,514 fail2ban.filter [24451]: WARNING Found a match for 'host [19/Mär/2021:23:15:16 +0000] "PASS (hidden)" [1.1.1.1] 53 no valid date/time found for 'host [19/Mär/2021:23:15:16 +0000] "PASS (hidden)" [1.1.1.1] 530'. Please try setting a custom date pattern (see manjail.conf(5)). If format is complex, please file a detailed issue on https://github.com/fail2ban/fail2ban/issues in order to get support for this format.I now use SystemLog (but had to define the logfile in OMV..)
OMV Extended Options for FTP:
# Record all logins
UseReverseDNS off
SystemLog /var/log/proftpd/proftpd.logFilter
# Fail2Ban fitler for the Proftpd FTP daemon
#
[INCLUDES]
before = common.conf
[Definition]
_daemon = proftpd
__suffix_failed_login = (User not authorized for login|No such user found|Incorrect password|Password expired|Account disabled|Invalid shell: '\S+'|User in \S$
failregex = ^%(__prefix_line)s%(__hostname)s \(\S+\[<HOST>\]\)[: -]+ USER .*: no such user found from \S+ \[\S+\] to \S+:\S+ *$
^%(__prefix_line)s%(__hostname)s \(\S+\[<HOST>\]\)[: -]+ USER .* \(Login failed\): %(__suffix_failed_login)s\s*$
^%(__prefix_line)s%(__hostname)s \(\S+\[<HOST>\]\)[: -]+ SECURITY VIOLATION: .* login attempted\. *$
^%(__prefix_line)s%(__hostname)s \(\S+\[<HOST>\]\)[: -]+ Maximum login attempts \(\d+\) exceeded *$
\(\S+\[<HOST>\]\)[: -]+ USER \S+: no such user found from \S+ \[\S+\] to \S+:\S+ *$
\(\S+\[<HOST>\]\)[: -]+ USER \S+ \(Login failed\): .*$
\(\S+\[<HOST>\]\)[: -]+ SECURITY VIOLATION: \S+ login attempted\. *$
\(\S+\[<HOST>\]\)[: -]+ Maximum login attempts \(\d+\) exceeded *$
ignoreregex =Jail
[proftd]
enabled = true
port = ftp,ftp-data,ftps,ftps-data
filter = proftpdneu
logpath = /var/log/proftpd/proftpd.log
maxretry = 3
action = iptables-allports[actname=proftpd,name=proftpd,protocol=all]
iptables-allports[actname=proftpd-docker,name=proftpd-docker,protocol=all,chain=DOCKER]This finally gives me
021-03-20 12:43:31,590 fail2ban.filter [11215]: INFO [proftd] Found 1.1.1.1 - 2021-03-20 12:41:16
2021-03-20 12:43:31,593 fail2ban.filter [11215]: INFO [proftd] Found 1.1.1.1 - 2021-03-20 12:42:23
2021-03-20 12:43:31,595 fail2ban.filter [11215]: INFO [proftd] Found 1.1.1.1 - 2021-03-20 12:42:32
2021-03-20 12:43:31,597 fail2ban.filter [11215]: INFO [proftd] Found 1.1.1.1 - 2021-03-20 12:42:37
2021-03-20 12:43:31,599 fail2ban.filter [11215]: INFO [proftd] Found 1.1.1.1 - 2021-03-20 12:42:40
2021-03-20 12:43:31,751 fail2ban.actions [11215]: NOTICE [proftd] Ban 1.1.1.1 dleidert thanks for the quick reply.
How did you match it? If I try to match it, I don't get a result:
root@aries:/etc/fail2ban# fail2ban-regex 'hostname [19/Mär/2021:22:43:19 +0000] "PASS (hidden)" [111.111.111.111] 530' "\[<HOST>\]\s+530$"
Running tests
=============
Use failregex line : \[<HOST>\]\s+530$
Use single line : hostname [19/Mär/2021:22:43:19 +0000] "PASS (hidde...
Results
=======
Failregex: 0 total
Ignoreregex: 0 total
Date template hits:
Lines: 1 lines, 0 ignored, 0 matched, 1 missed
[processed in 0.08 sec]
|- Missed line(s):
| hostname [19/Mär/2021:22:43:19 +0000] "PASS (hidden)" [111.111.111.111] 530
`-My fail2ban
root@aries:/etc/fail2ban# fail2ban-client --version
Fail2Ban v0.10.2My filter looks simple
# Fail2Ban configuration file
#
# Author: TTP
#
# $Revision$
#
[Definition]
#
failregex = \[<HOST>\]\s+530$
# Option: ignoreregex
# Notes.: regex to ignore. If this regex matches, the line is ignored.
# Values: TEXT
#
ignoreregex =I am more than happy to use the default logfile, but in standard OMV5 it's empty (/var/log/proftpd/proftpd.log) that's why I opted for the custom logfile.
I am trying to get fail2ban to work with proftpd. I used the default config without success. I then tried this hint: https://stackoverflow.com/ques…/regexp-proftpd-auth-logs which SHOULD work. Testing it with https://regex101.com worked (replacing "<HOST>" to look for anything + using "%a" instead of "%h" to get the ip adress).
log file
hostname [19/Mär/2021:22:43:19 +0000] "PASS (hidden)" [111.111.111.111] 530filter
failregex = \[<HOST>\]\s+530$Trying the filter with fail2ban-regex always returns 0 matches.
I looked around the forum using fail2ban + proftpd as the search input but wasn't very successful. Maybe othere faced the same issue?
The latest version of OMV should have fixed this issue completely.
I'm not understanding where or why you're trying to add this "with ssl" part...
Sorry for the confusion, I am not adding anything directly to the file. I simply implemented the pull request manually (https://github.com/openmediava…f934f24e199eebe98b381ae53) which, if you read carefully is adding with ssl (protocol ftp with ssl to be 100% correct) to the monit config if tls is activated.
It wasn't in there, even though I am running on 5.6.1..
Disabled monit watching for ftp for now.. Will check back with the next update.
cubemin thanks for pointing this out, but this is still not successful on my system.
Side note: I am on OMV 5.6.1-1
user@aries:~$ sudo apt list openmediavault
openmediavault/usul,usul,now 5.6.1-1 all [installed]I edited the files, did a deploy and can see that the config for monit is adopted correctly and added the with ssl statement.
Monit is still complaining about that ssl error.
Mar 2 12:39:36 aries monit[12266]: 'proftpd' failed protocol test [FTP] at [localhost]:2221 [TCP/IP TLS] -- SSL connection error: error:1408F10B:SSL routines:ssl3_get_record:wrong version number
Mar 2 12:39:36 aries monit[12266]: 'proftpd' trying to restart
Mar 2 12:39:36 aries monit[12266]: 'proftpd' stop: '/etc/init.d/proftpd stop'
Mar 2 12:39:36 aries systemd[1]: Stopping LSB: Starts ProFTPD daemon...
Mar 2 12:39:36 aries proftpd[13294]: aries.local - ProFTPD killed (signal 15)
Mar 2 12:39:36 aries proftpd[13294]: aries.local - ProFTPD 1.3.6 standalone mode SHUTDOWN
Mar 2 12:39:36 aries proftpd[13529]: Stopping ftp server: proftpd.
Mar 2 12:39:36 aries systemd[1]: proftpd.service: Succeeded.monit config
check process proftpd with pidfile /run/proftpd.pid
start program = "/etc/init.d/proftpd restart"
stop program = "/etc/init.d/proftpd stop"
mode active
# Do not specify a protocol here, so Monit will use a default connection test
# where we do not need to take care about whether SSL/TLS is enabled or not.
# BACKUP: if failed port 2221 for 3 cycles then restart
if failed port 2221 protocol ftp with ssl for 3 cycles then restartI tried to look for a more generic solution with proftpd, but could only find posts dating back to 2006 suggesting to force a specific TLS version.
Anyone fixed it only by adding the above (with ssl) to monit? Any one else having the same issue?
Thank you votdev !
I had to do a minor correction, after this it was accepted by omv-salt. I will see tomorrow if the email will stop being sent.
Above code runs into error on my version of SaltStack:
salt.exceptions.SaltInvocationError: 'contents' is an invalid keyword argument for 'file.append'Changing it to the following fixed it:
custom_postfix_smtputf8_enable:
file.append:
- name: "/etc/postfix/main.cf"
- text: smtputf8_enable = noHi everyone,
I get the following mail every day:
This is the mail system at host host.local.
I'm sorry to have to inform you that your message could not
be delivered to one or more recipients. It's attached below.
For further assistance, please send mail to postmaster.
If you do so, please include this problem report. You can
delete your own text from the attached returned message.
The mail system
<host@domain.com>: SMTPUTF8 is required, but was not offered by host
smtp.domain.com[81.132.234.233]I searched for this error and found a fix by applying the following fix: https://unix.stackexchange.com…bounce-of-smtputf8-emails
Because openmediavault is managing the `main.cf` of postfix, I cannot apply the fix directly in the config.
I found the following thread touching the same topic. But it seems this is still an old mkconfig fix:
custom postfix configuration for local email
What's the best way of applying custom config entries for postfix with OMV 5?
Duplicati performs de-duplication. It is available as plugin and docker. You can also install from CLI.
I used duplicati before switching to restic. I find duplicati to be very unstable using large amounts of data. Maybe the backend I used was unstable.. Also I like the snapshot feature restics uses: It splits the encrypted file in smaller chunks and checks each chunk against the already uploaded version, so when I only have minor changes in large files, it will not upload the whole file. Duplicate (or duplicity) will upload the whole file when only a few KB changed. This safes a lot of bandwidth but more important traffic on b2 =)
I will stick to restic for now, but will check if it supports hardlinking, so I can backup via rsnapshot and not rsync, as I prefer my local backup to be done by rnapshot now (really like it..)
Looks like a good solution. I am wondering if this is the way to go for remote backups (cloud) as well? Hardlinking isn't supported in most of the cloud drives, therefore it will add up space quite much, I guess?
Currently I am using restic to send over my rsync backup to the cloud. Rsync backup runs once a week from my main system to the backup system and is transfered from there to the cloud.
I found the issue. As @tkaiser pointed out, md raids aren't the best. My raid configuration was the bottleneck resulting in high I/O whenever I turned my TV on or my smart home pushed multiple sensor data.
I switched to an additional SSD for all the docker stuff, so this is separated from my data. Data is now on one 6 TB disk, formated with EXT4. For the second disk I was thinking of using the rsync method to have the data duplicated on both disks.
Any hints / ideas on how to implement the rsync method? Is this a good approach?
@m4dm4x Hope you've fixed your issues, too.
My /var/log/messages has a lot of those:
3> 0f 6f 07 66 0f 74 c1 66 0f d7 c0 85 c0 0f 85 9d 01 00 00 48 83
Jan 21 02:45:01 aries kernel: [1577377.985985] sadc[20083]: segfault at 1 ip 00007f62ba86a51f sp 00007ffe3edbece8 error 4 in libc-2.24.so[7f62ba7e0000+195000]
Jan 21 02:45:01 aries kernel: [1577377.985999] Code: 44 0d 00 e9 b5 fe ff ff 0f 1f 00 66 48 0f 6e ce 48 89 f9 66 0f 60 c9 66 0f 60 c9 48 83 e1 3f 66 0f 70 c9 00 48 83 f9 30 77 21 <f3> 0f 6f 07 66 0f 74 c1 66 0f d7 c0 85 c0 0f 85 9d 01 00 00 48 83
Jan 21 02:55:01 aries kernel: [1577977.960453] sadc[20889]: segfault at 1 ip 00007faa83c5f51f sp 00007ffedec0b5d8 error 4 in libc-2.24.so[7faa83bd5000+195000]
Jan 21 02:55:01 aries kernel: [1577977.960464] Code: 44 0d 00 e9 b5 fe ff ff 0f 1f 00 66 48 0f 6e ce 48 89 f9 66 0f 60 c9 66 0f 60 c9 48 83 e1 3f 66 0f 70 c9 00 48 83 f9 30 77 21 <f3> 0f 6f 07 66 0f 74 c1 66 0f d7 c0 85 c0 0f 85 9d 01 00 00 48 83
Jan 21 03:05:01 aries kernel: [1578577.180244] sadc[21432]: segfault at 1 ip 00007f1e0a52651f sp 00007fff4606bc28 error 4 in libc-2.24.so[7f1e0a49c000+195000]
Jan 21 03:05:01 aries kernel: [1578577.180255] Code: 44 0d 00 e9 b5 fe ff ff 0f 1f 00 66 48 0f 6e ce 48 89 f9 66 0f 60 c9 66 0f 60 c9 48 83 e1 3f 66 0f 70 c9 00 48 83 f9 30 77 21 <f3> 0f 6f 07 66 0f 74 c1 66 0f d7 c0 85 c0 0f 85 9d 01 00 00 48 83
Jan 21 03:15:01 aries kernel: [1579177.544276] sadc[21809]: segfault at 1 ip 00007f46a31bd51f sp 00007fff2927e018 error 4 in libc-2.24.so[7f46a3133000+195000]
Jan 21 03:15:01 aries kernel: [1579177.544289] Code: 44 0d 00 e9 b5 fe ff ff 0f 1f 00 66 48 0f 6e ce 48 89 f9 66 0f 60 c9 66 0f 60 c9 48 83 e1 3f 66 0f 70 c9 00 48 83 f9 30 77 21 <f3> 0f 6f 07 66 0f 74 c1 66 0f d7 c0 85 c0 0f 85 9d 01 00 00 48 83
Jan 21 03:25:01 aries kernel: [1579777.589142] sadc[22264]: segfault at 1 ip 00007f909cb9151f sp 00007ffdcd318018 error 4 in libc-2.24.so[7f909cb07000+195000]
Jan 21 03:25:01 aries kernel: [1579777.589154] Code: 44 0d 00 e9 b5 fe ff ff 0f 1f 00 66 48 0f 6e ce 48 89 f9 66 0f 60 c9 66 0f 60 c9 48 83 e1 3f 66 0f 70 c9 00 48 83 f9 30 77 21 <f3> 0f 6f 07 66 0f 74 c1 66 0f d7 c0 85 c0 0f 85 9d 01 00 00 48 83
Jan 21 03:35:01 aries kernel: [1580377.988431] sadc[22723]: segfault at 1 ip 00007f55b3ba651f sp 00007ffe30e96408 error 4 in libc-2.24.so[7f55b3b1c000+195000]
Jan 21 03:35:01 aries kernel: [1580377.988444] Code: 44 0d 00 e9 b5 fe ff ff 0f 1f 00 66 48 0f 6e ce 48 89 f9 66 0f 60 c9 66 0f 60 c9 48 83 e1 3f 66 0f 70 c9 00 48 83 f9 30 77 21 <f3> 0f 6f 07 66 0f 74 c1 66 0f d7 c0 85 c0 0f 85 9d 01 00 00 48 83
Jan 21 03:45:01 aries kernel: [1580977.566062] sadc[23120]: segfault at 1 ip 00007fc0c66d451f sp 00007ffde22c86e8 error 4 in libc-2.24.so[7fc0c664a000+195000]
Jan 21 03:45:01 aries kernel: [1580977.566075] Code: 44 0d 00 e9 b5 fe ff ff 0f 1f 00 66 48 0f 6e ce 48 89 f9 66 0f 60 c9 66 0f 60 c9 48 83 e1 3f 66 0f 70 c9 00 48 83 f9 30 77 21 <f3> 0f 6f 07 66 0f 74 c1 66 0f d7 c0 85 c0 0f 85 9d 01 00 00 48 83
Jan 21 03:55:01 aries kernel: [1581577.493955] sadc[23896]: segfault at 1 ip 00007f9df034a51f sp 00007fffee70f8f8 error 4 in libc-2.24.so[7f9df02c0000+195000]
Jan 21 03:55:01 aries kernel: [1581577.493971] Code: 44 0d 00 e9 b5 fe ff ff 0f 1f 00 66 48 0f 6e ce 48 89 f9 66 0f 60 c9 66 0f 60 c9 48 83 e1 3f 66 0f 70 c9 00 48 83 f9 30 77 21 <f3> 0f 6f 07 66 0f 74 c1 66 0f d7 c0 85 c0 0f 85 9d 01 00 00 48 83
Jan 21 04:05:01 aries kernel: [1582177.650869] sadc[24392]: segfault at 1 ip 00007fed36ec451f sp 00007fffcab2e638 error 4 in libc-2.24.so[7fed36e3a000+195000]
Jan 21 04:05:01 aries kernel: [1582177.650883] Code: 44 0d 00 e9 b5 fe ff ff 0f 1f 00 66 48 0f 6e ce 48 89 f9 66 0f 60 c9 66 0f 60 c9 48 83 e1 3f 66 0f 70 c9 00 48 83 f9 30 77 21 <f3> 0f 6f 07 66 0f 74 c1 66 0f d7 c0 85 c0 0f 85 9d 01 00 00 48 83
Jan 21 04:15:01 aries kernel: [1582777.683865] sadc[24775]: segfault at 1 ip 00007f95f0f6d51f sp 00007ffed40b13f8 error 4 in libc-2.24.so[7f95f0ee3000+195000]
Jan 21 04:15:01 aries kernel: [1582777.683882] Code: 44 0d 00 e9 b5 fe ff ff 0f 1f 00 66 48 0f 6e ce 48 89 f9 66 0f 60 c9 66 0f 60 c9 48 83 e1 3f 66 0f 70 c9 00 48 83 f9 30 77 21 <f3> 0f 6f 07 66 0f 74 c1 66 0f d7 c0 85 c0 0f 85 9d 01 00 00 48 83
Jan 21 04:25:01 aries kernel: [1583377.194820] sadc[25232]: segfault at 1 ip 00007f5d0b40d51f sp 00007ffccb3d5db8 error 4 in libc-2.24.so[7f5d0b383000+195000]
Jan 21 04:25:01 aries kernel: [1583377.194833] Code: 44 0d 00 e9 b5 fe ff ff 0f 1f 00 66 48 0f 6e ce 48 89 f9 66 0f 60 c9 66 0f 60 c9 48 83 e1 3f 66 0f 70 c9 00 48 83 f9 30 77 21 <f3> 0f 6f 07 66 0f 74 c1 66 0f d7 c0 85 c0 0f 85 9d 01 00 00 48 83
and those:
Jan 21 07:58:27 aries kernel: [1596183.541348] docker0: port 4(vethb9087cf) entered forwarding state
Jan 21 07:58:28 aries kernel: [1596183.616362] docker0: port 5(veth243938e) entered blocking state
Jan 21 07:58:28 aries kernel: [1596183.616366] docker0: port 5(veth243938e) entered disabled state
Jan 21 07:58:28 aries kernel: [1596183.616483] device veth243938e entered promiscuous mode
Jan 21 07:58:28 aries kernel: [1596183.616635] docker0: port 5(veth243938e) entered blocking state
Jan 21 07:58:28 aries kernel: [1596183.616638] docker0: port 5(veth243938e) entered forwarding state
Jan 21 07:58:28 aries kernel: [1596183.719632] docker0: port 6(veth8d17dbf) entered blocking state
Jan 21 07:58:28 aries kernel: [1596183.719636] docker0: port 6(veth8d17dbf) entered disabled state
Jan 21 07:58:28 aries kernel: [1596183.719718] device veth8d17dbf entered promiscuous mode
Jan 21 07:58:28 aries kernel: [1596183.722662] docker0: port 6(veth8d17dbf) entered blocking state
Jan 21 07:58:28 aries kernel: [1596183.722666] docker0: port 6(veth8d17dbf) entered forwarding state
Jan 21 07:58:28 aries kernel: [1596184.146350] docker0: port 4(vethb9087cf) entered disabled state
Jan 21 07:58:28 aries kernel: [1596184.146443] docker0: port 5(veth243938e) entered disabled state
Jan 21 07:58:28 aries kernel: [1596184.146534] docker0: port 6(veth8d17dbf) entered disabled state
Jan 21 07:58:28 aries kernel: [1596184.472117] eth0: renamed from veth86ac395
Jan 21 07:58:28 aries kernel: [1596184.503740] docker0: port 2(vethe4759b5) entered blocking state
Jan 21 07:58:28 aries kernel: [1596184.503746] docker0: port 2(vethe4759b5) entered forwarding state
Jan 21 07:58:29 aries kernel: [1596184.650882] eth0: renamed from veth7344753
Jan 21 07:58:29 aries kernel: [1596184.678340] docker0: port 1(vethb5471e1) entered blocking state
Jan 21 07:58:29 aries kernel: [1596184.678349] docker0: port 1(vethb5471e1) entered forwarding state
Jan 21 07:58:29 aries kernel: [1596184.853814] eth0: renamed from veth4287324
Jan 21 07:58:29 aries kernel: [1596184.894949] eth0: renamed from veth37a62d8
Jan 21 07:58:29 aries kernel: [1596184.982175] eth0: renamed from veth72cb793
Jan 21 07:58:29 aries kernel: [1596185.007154] docker0: port 4(vethb9087cf) entered blocking state
Jan 21 07:58:29 aries kernel: [1596185.007159] docker0: port 4(vethb9087cf) entered forwarding state
Jan 21 07:58:29 aries kernel: [1596185.007254] docker0: port 6(veth8d17dbf) entered blocking state
Jan 21 07:58:29 aries kernel: [1596185.007257] docker0: port 6(veth8d17dbf) entered forwarding state
Jan 21 07:58:29 aries kernel: [1596185.008581] eth0: renamed from veth309459c
Jan 21 07:58:29 aries kernel: [1596185.026984] docker0: port 5(veth243938e) entered blocking state
Jan 21 07:58:29 aries kernel: [1596185.026992] docker0: port 5(veth243938e) entered forwarding state
Jan 21 07:58:29 aries kernel: [1596185.027380] docker0: port 3(veth42d0d9b) entered blocking state
Jan 21 07:58:29 aries kernel: [1596185.027388] docker0: port 3(veth42d0d9b) entered forwarding stateSo disabling smb was the only thing you stopped or the only thing you recall?
Will try that, too.
Great to see you have similar issues. Not great, but good to know there's someone else 
Since my system is currently clogged, I started investigating again..
No high cpu usage / processes taking ram or cpu. BUT CPU waiting is high with around 24
Now after 10min being clogged (docker containers are not processing) I recognized my light going off (which is controlled by my smart home..) So the system is "free" again, load drops immediatly. I've done nothing but opening top or iotop..
top (clogged)
top - 22:19:09 up 13 days, 1:44, 2 users, load average: 21,82, 18,59, 12,38
Tasks: 254 total, 1 running, 204 sleeping, 0 stopped, 1 zombie
%Cpu(s): 2,4 us, 1,2 sy, 0,0 ni, 71,5 id, 24,6 wa, 0,0 hi, 0,2 si, 0,0 st
KiB Mem : 7643708 total, 3573692 free, 1095592 used, 2974424 buff/cache
KiB Swap: 7849980 total, 7440556 free, 409424 used. 6162440 avail Mem
PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
25186 root 20 0 51940 15924 6508 S 8,9 0,2 0:21.98 /usr/bin/python3 /usr/sbin/iotop -oPa -d 2
25548 root 20 0 46628 3908 3208 R 1,3 0,1 0:00.23 top
1044 root 20 0 971472 2196 1372 S 0,7 0,0 42:33.04 /usr/sbin/collectd
20760 root 20 0 16376 3312 1920 S 0,7 0,0 23:40.97 docker-gen -watch -notify nginx -s reload /app/nginx.tmpl /etc/nginx/conf.d/default.conf
21073 kris 20 0 30912 8136 684 S 0,7 0,1 13:03.13 redis-server
21111 root 20 0 17192 5804 4240 S 0,7 0,1 19:12.24 docker-gen -watch -notify /app/signal_le_service -wait 15s:60s /app/letsencrypt_service+
10 root 20 0 0 0 0 I 0,3 0,0 28:59.16 [rcu_sched]
3189 mysql 20 0 2792216 271180 9148 S 0,3 3,5 543:14.88 /usr/sbin/mysqld --basedir=/usr --datadir=/var/lib/mysql --plugin-dir=/usr/lib/mysql/pl+
3365 systemd+ 20 0 9420 1000 820 S 0,3 0,0 22:33.65 /usr/sbin/mosquitto -c /mosquitto/config/mosquitto.conf
31351 root 20 0 10744 1284 804 S 0,3 0,0 6:24.22 containerd-shim -namespace moby -workdir /var/lib/containerd/io.containerd.runtime.v1.l+
31436 kris 20 0 1266008 65756 8864 S 0,3 0,9 33:59.11 node-red
31614 root 20 0 0 0 0 S 0,3 0,0 21:31.91 [kdvb-ad-1-fe-0]
31616 root 20 0 0 0 0 S 0,3 0,0 21:34.00 [kdvb-ad-0-fe-0]
1 root 20 0 205144 5948 4096 S 0,0 0,1 4:15.22 /sbin/init
2 root 20 0 0 0 0 S 0,0 0,0 0:00.86 [kthreadd]
3 root 0 -20 0 0 0 I 0,0 0,0 0:00.00 [rcu_gp]
4 root 0 -20 0 0 0 I 0,0 0,0 0:00.00 [rcu_par_gp]
6 root 0 -20 0 0 0 I 0,0 0,0 0:00.00 [kworker/0:0H-kb]
8 root 0 -20 0 0 0 I 0,0 0,0 0:00.00 [mm_percpu_wq]
9 root 20 0 0 0 0 S 0,0 0,0 2:33.62 [ksoftirqd/0]
11 root 20 0 0 0 0 I 0,0 0,0 0:00.00 [rcu_bh]
12 root rt 0 0 0 0 S 0,0 0,0 0:01.94 [migration/0]
13 root rt 0 0 0 0 S 0,0 0,0 0:09.35 [watchdog/0]
14 root 20 0 0 0 0 S 0,0 0,0 0:00.00 [cpuhp/0]
15 root 20 0 0 0 0 S 0,0 0,0 0:00.00 [cpuhp/1]
16 root rt 0 0 0 0 S 0,0 0,0 0:08.65 [watchdog/1]
....Healthy top:
top - 22:23:29 up 13 days, 1:48, 2 users, load average: 0,91, 9,94, 10,51
Tasks: 234 total, 1 running, 184 sleeping, 0 stopped, 1 zombie
%Cpu(s): 1,5 us, 1,0 sy, 0,0 ni, 97,4 id, 0,1 wa, 0,0 hi, 0,0 si, 0,0 st
KiB Mem : 7643708 total, 3621904 free, 1072232 used, 2949572 buff/cache
KiB Swap: 7849980 total, 7440556 free, 409424 used. 6211944 avail Mem
PID USER PR NI VIRT RES SHR S %CPU %MEM TIME+ COMMAND
25186 root 20 0 51940 15948 6508 S 3,9 0,2 0:38.21 /usr/bin/python3 /usr/sbin/iotop -oPa -d 2
26148 root 20 0 46628 3856 3100 R 1,6 0,1 0:00.18 top
27181 root 20 0 1373624 177056 8588 S 1,3 2,3 76:33.29 /usr/bin/node /opt/pimatic-docker/node_modules/pimatic/pimatic.js restart
20760 root 20 0 16376 3576 1948 S 0,7 0,0 23:43.07 docker-gen -watch -notify nginx -s reload /app/nginx.tmpl /etc/nginx/conf.d/default.conf
21111 root 20 0 17192 5804 4240 S 0,7 0,1 19:13.83 docker-gen -watch -notify /app/signal_le_service -wait 15s:60s /app/letsencrypt_service+
10 root 20 0 0 0 0 I 0,3 0,0 29:00.03 [rcu_sched]
52 root 20 0 0 0 0 I 0,3 0,0 7:31.98 [kworker/3:1-eve]
883 root 20 0 1336100 41188 12124 S 0,3 0,5 51:00.64 /usr/bin/dockerd -H unix:///var/run/docker.sock
1044 root 20 0 971472 2196 1372 S 0,3 0,0 42:33.81 /usr/sbin/collectd
2683 root 20 0 327268 3324 2844 S 0,3 0,0 2:21.47 omv-engined
3189 mysql 20 0 2792216 271180 9148 S 0,3 3,5 543:15.55 /usr/sbin/mysqld --basedir=/usr --datadir=/var/lib/mysql --plugin-dir=/usr/lib/mysql/pl+
8503 root 20 0 70688 7700 7492 S 0,3 0,1 1:26.15 /lib/systemd/systemd-journald
17613 root 20 0 254244 2292 1932 S 0,3 0,0 0:35.65 /usr/sbin/rsyslogd -n
21073 kris 20 0 30912 8136 684 S 0,3 0,1 13:04.31 redis-server
31585 kris 20 0 730952 20300 184 S 0,3 0,3 159:26.74 /usr/bin/tvheadend -C -c /config
31614 root 20 0 0 0 0 S 0,3 0,0 21:32.35 [kdvb-ad-1-fe-0]
31616 root 20 0 0 0 0 S 0,3 0,0 21:34.50 [kdvb-ad-0-fe-0]
1 root 20 0 205144 5948 4096 S 0,0 0,1 4:15.26 /sbin/init
2 root 20 0 0 0 0 S 0,0 0,0 0:00.86 [kthreadd]
3 root 0 -20 0 0 0 I 0,0 0,0 0:00.00 [rcu_gp]
4 root 0 -20 0 0 0 I 0,0 0,0 0:00.00 [rcu_par_gp]
6 root 0 -20 0 0 0 I 0,0 0,0 0:00.00 [kworker/0:0H-kb]
8 root 0 -20 0 0 0 I 0,0 0,0 0:00.00 [mm_percpu_wq]
9 root 20 0 0 0 0 S 0,0 0,0 2:33.63 [ksoftirqd/0]
....
How can the waiting be investigated further? I check iotop (nothing special, not much writing..). I'll let iostat 120 run overnight, to see if there is something useful in it..
UPDATE:
I ran this while true; do date; ps auxf | awk '{if($8=="D") print $0;}'; sleep 30; done overnight (no clogging this night..)
and get some locking processes (rsync backup job) for about 15min, but no message about high load this time, so seems uncritical.
iostat 120 was running and is showing some output like this: https://pastebin.com/g85TLKgj
This is correct, iostat 120 gives me the output posted (added new iostat, too).
This the output of iotop -oPa -d 2 (running for 30min or so)
Total DISK READ : 0.00 B/s | Total DISK WRITE : 85.66 K/s
Actual DISK READ: 0.00 B/s | Actual DISK WRITE: 124.76 K/s
PID PRIO USER DISK READ DISK WRITE SWAPIN IO> COMMAND
289 be/3 root 0.00 B 19.85 M 0.00 % 0.34 % [jbd2/sda1-8]
544 be/3 root 0.00 B 492.00 K 0.00 % 0.07 % [jbd2/md0-8]
1024 be/4 root 0.00 B 464.00 K 0.00 % 0.04 % monit -c /etc/monit/monitrc
24437 be/4 openmedi 0.00 B 436.00 K 0.00 % 0.03 % php-fpm: pool openmediavault-webgui
11225 be/4 root 12.00 K 12.00 K 0.00 % 0.01 % smartd -n --quit=never --interval=1800
32234 be/4 root 0.00 B 0.00 B 0.00 % 0.03 % [kworker/u8:2-events_unbound]
6930 be/4 www-data 4.00 K 92.00 K 0.00 % 0.01 % apache2 -DFOREGROUND
12521 be/4 mysql 124.00 K 46.36 M 0.00 % 0.00 % mysqld --basedir=/usr --datadir=/var/lib/mysql --plugin-dir~/mysqld.pid --socket=/var/run/mysqld/mysqld.sock --port=3306
7082 be/4 www-data 4.00 K 96.00 K 0.00 % 0.00 % apache2 -DFOREGROUND
30853 be/4 root 0.00 B 0.00 B 0.00 % 0.01 % [kworker/u8:1-events_unbound]
32733 be/4 openmedi 0.00 B 96.00 K 0.00 % 0.01 % php-fpm: pool openmediavault-webgui
883 be/4 root 60.00 K 2.06 M 0.00 % 0.00 % dockerd -H unix:///var/run/docker.sock
21738 be/4 root 4.00 K 11.91 M 0.00 % 0.00 % rrdcached -B -F -f 3600 -w 900 -b /var/lib/rrdcached/db/ -j~l/ -p /var/run/rrdcached.pid -l unix:/var/run/rrdcached.sock
7159 be/4 www-data 40.00 K 88.00 K 0.00 % 0.00 % apache2 -DFOREGROUND
7026 be/4 www-data 4.00 K 88.00 K 0.00 % 0.00 % apache2 -DFOREGROUND
382 be/4 root 224.00 K 0.00 B 0.00 % 0.00 % lvmetad -f
892 be/4 nobody 0.00 B 936.00 K 0.00 % 0.00 % openvpn --daemon ovpn-server --status /run/openvpn/server.s~ /etc/openvpn/server.conf --writepid /run/openvpn/server.pid
27181 be/4 root 0.00 B 16.64 M 0.00 % 0.00 % node /opt/pimatic-docker/node_modules/pimatic/pimatic.js restart
9272 be/4 www-data 0.00 B 816.00 K 0.00 % 0.00 % nginx: worker process
1378 be/4 www-data 16.00 K 0.00 B 0.00 % 0.00 % php-fpm: pool openmediavault-mysql
6871 be/4 www-data 0.00 B 88.00 K 0.00 % 0.00 % apache2 -DFOREGROUND
32489 be/4 root 96.00 K 0.00 B 0.00 % 0.00 % docker-gen -watch -notify /app/signal_le_service -wait 15s:~/letsencrypt_service_data.tmpl /app/letsencrypt_service_data
1435 be/4 root 0.00 B 816.00 K 0.00 % 0.00 % python3 /usr/bin/fail2ban-server -s /var/run/fail2ban/fail2ban.sock -p /var/run/fail2ban/fail2ban.pid -x -b
17613 be/4 root 0.00 B 628.00 K 0.00 % 0.00 % rsyslogd -n
9273 be/4 www-data 8.00 K 424.00 K 0.01 % 0.00 % nginx: worker process
9274 be/4 www-data 0.00 B 664.00 K 0.00 % 0.00 % nginx: worker process
9275 be/4 www-data 8.00 K 156.00 K 0.00 % 0.00 % nginx: worker process
3150 be/4 root 20.00 K 0.00 B 0.00 % 0.00 % containerd-shim -namespace moby -workdir /var/lib/container~sr/bin/containerd -runtime-root /var/run/docker/runtime-runc
4227 be/4 root 8.00 K 0.00 B 0.00 % 0.00 % docker-gen -watch -notify nginx -s reload /app/nginx.tmpl /etc/nginx/conf.d/default.conf
6878 be/4 www-data 0.00 B 100.00 K 0.00 % 0.00 % apache2 -DFOREGROUND
3365 be/4 systemd- 0.00 B 8.00 K 0.00 % 0.00 % mosquitto -c /mosquitto/config/mosquitto.conf
3298 be/4 postfix 0.00 B 12.00 K 0.00 % 0.00 % tlsmgr -l -t unix -u -c
862 be/4 root 4.00 K 0.00 B 0.00 % 0.00 % containerd
7025 be/4 www-data 0.00 B 92.00 K 0.00 % 0.00 % apache2 -DFOREGROUND
7037 be/4 www-data 0.00 B 84.00 K 0.00 % 0.00 % apache2 -DFOREGROUND
7084 be/4 www-data 0.00 B 76.00 K 0.00 % 0.00 % apache2 -DFOREGROUND
7155 be/4 www-data 0.00 B 88.00 K 0.00 % 0.00 % apache2 -DFOREGROUND
1021 be/4 ntp 0.00 B 4.00 K 0.00 % 0.00 % ntpd -p /var/run/ntpd.pid -g -u 10
It shows me alot of writing from just the journaling service.. This could be the reason for the constant traffic?
iostat 120 from the last hour or so: https://pastebin.com/g885FkAc
UPDATE:
High I/O of the journaling resulted in mysql being the cause. If I follow the guide here: https://medium.com/@n3d4ti/i-o…l-import-data-a06d017a2ba I get it down to 0.X% and almost no traffic. But as pointed out in the post, this is not always a good setting for production. So what do you think? I leave it off for 1-2 days to see if it stops the spikes.
Also I was thinking about my docker container having services logging into sqlite database which are stored on my raid. Is it a good practice to include another SSD into the system for the appdata folder? Since my raid is constantly written to, it never sleeps..
UPDATE 2:
I've found that using Nextcloud App on iOS to scroll through a bunch of images, will cause very high load on my system. Mostly apache process will spike. I run the official docker image and will try to investigate further
With three high load alerts in my mail last night, I get this in the logs (running all 120sec):
iostat: https://pastebin.com/db63E1ND
swap: https://pastebin.com/CTvKNves
I don't see a problem here?
One logging problem seems to be, if the system is clogged, the logs are not generated. Therefore:
Alert at 6:34, but logfile is empty for 11-01-2019-06-34-5-iostat / swap.
will provide the logs once its something useful..
Okay, today I got something new. I tried to access my nextcloud from remote and got the following logs and a lot of emails telling me nginx crashed (running the omv gui) etc.
Jan 10 11:45:08 aries collectd[1044]: plugin_read_thread: read-function of the `memory' plugin took 111.053 seconds, which is above its read interval (10.000 seconds). You might want to adjust the `Interval' or `ReadThreads' settings.
Jan 10 12:01:06 aries systemd[1]: Starting Clean php session files...
Jan 10 12:01:06 aries collectd[1044]: Not sleeping because the next interval is 96.991 seconds in the past!
Jan 10 12:20:41 aries systemd[1]: systemd-journald.service: Watchdog timeout (limit 3min)!
Jan 10 12:20:41 aries collectd[1044]: plugin_read_thread: read-function of the `df' plugin took 117.851 seconds, which is above its read interval (10.000 seconds). You might want to adjust the `Interval' or `ReadThreads' settings.
Jan 10 12:31:01 aries systemd[1]: systemd-journald.service: Killing process 335 (systemd-journal) with signal SIGABRT.
Jan 10 12:31:01 aries collectd[1044]: plugin_read_thread: read-function of the `interface' plugin took 119.776 seconds, which is above its read interval (10.000 seconds). You might want to adjust the `Interval' or `ReadThreads' settings.
Jan 10 12:31:01 aries systemd[1]: Starting Flush Journal to Persistent Storage...
Jan 10 12:31:01 aries postfix/smtpd[7150]: disconnect from localhost[127.0.0.1] ehlo=1 mail=1 rcpt=1 quit=1 commands=4
Jan 10 12:31:01 aries systemd[1]: Started Flush Journal to Persistent Storage.
Jan 10 12:31:01 aries monit[1024]: Mail: Error receiving data from the mailserver -- Resource temporarily unavailable
Jan 10 12:31:01 aries systemd[1]: Started Run anacron jobs.
Jan 10 12:31:01 aries monit[1024]: Alert handler failed, retry scheduled for next cycle
Jan 10 12:31:01 aries systemd[1]: anacron.timer: Adding 4min 8.991355s random time.
Jan 10 12:31:01 aries postfix/smtpd[7150]: connect from localhost[127.0.0.1]
Jan 10 12:31:01 aries systemd[1]: systemd-journald.service: Watchdog timeout (limit 3min)!
Jan 10 12:31:01 aries monit[1024]: 'aries' mem usage of 96.9% matches resource limit [mem usage>90.0%]
And after that I get around 400 lines of this
Jan 10 12:33:57 aries collectd[1044]: rrdcached plugin: rrdc_update (/var/lib/rrdcached/db/localhost/memory/memory-used.rrd, [1547116150:7440388096.000000], 1) failed: rrdcached: illegal attempt to update using time 1547116150.000000 when last update time is 1547116161.000000 (minimum one second step) (status=-1)
Jan 10 12:33:57 aries collectd[1044]: Filter subsystem: Built-in target `write': Dispatching value to all write plugins failed with status -1.
Jan 10 12:33:57 aries collectd[1044]: rrdcached plugin: rrdc_update (/var/lib/rrdcached/db/localhost/interface-enp3s0/if_errors.rrd, [1547116151:0:0], 1) failed: rrdcached: illegal attempt to update using time 1547116151.000000 when last update time is 1547116160.000000 (minimum one second step) (status=-1)
Jan 10 12:33:57 aries collectd[1044]: rrdcached plugin: rrdc_update (/var/lib/rrdcached/db/localhost/interface-enp3s0/if_octets.rrd, [1547116151:4157840337:193606983271], 1) failed: rrdcached: illegal attempt to update using time 1547116151.000000 when last update time is 1547116160.000000 (minimum one second step) (status=-1)
Jan 10 12:33:57 aries collectd[1044]: rrdcached plugin: rrdc_update (/var/lib/rrdcached/db/localhost/memory/memory-buffered.rrd, [1547116150:3317760.000000], 1) failed: rrdcached: illegal attempt to update using time 1547116150.000000 when last update time is 1547116161.000000 (minimum one second step) (status=-1)
Jan 10 12:33:57 aries collectd[1044]: Filter subsystem: Built-in target `write': Some write plugin is back to normal operation. `write' succeeded.
Jan 10 12:33:57 aries collectd[1044]: rrdcached plugin: Successfully reconnected to RRDCacheD at unix:/var/run/rrdcached.sock
Jan 10 12:33:57 aries collectd[1044]: rrdcached plugin: rrdc_update (/var/lib/rrdcached/db/localhost/cpu-3/cpu-softirq.rrd, [1547116183:63586], 1) failed: rrdcached: illegal attempt to update using time 1547116183.000000 when last update time is 1547116191.000000 (minimum one second step) (status=-1)
Jan 10 12:33:57 aries collectd[1044]: Filter subsystem: Built-in target `write': Dispatching value to all write plugins failed with status -1.
Jan 10 12:33:57 aries collectd[1044]: rrdcached plugin: Successfully reconnected to RRDCacheD at unix:/var/run/rrdcached.sock
Jan 10 12:33:57 aries collectd[1044]: rrdcached plugin: rrdc_update (/var/lib/rrdcached/db/localhost/cpu-2/cpu-softirq.rrd, [1547116183:149442], 1) failed: rrdcached: illegal attempt to update using time 1547116183.000000 when last update time is 1547116191.000000 (minimum one second step) (status=-1)
Jan 10 12:33:57 aries collectd[1044]: Filter subsystem: Built-in target `write': Some write plugin is back to normal operation. `write' succeeded.
Jan 10 12:33:57 aries collectd[1044]: rrdcached plugin: Successfully reconnected to RRDCacheD at unix:/var/run/rrdcached.sock
Jan 10 12:33:57 aries collectd[1044]: rrdcached plugin: rrdc_update (/var/lib/rrdcached/db/localhost/cpu-1/cpu-softirq.rrd, [1547116191:81684], 1) failed: rrdcached: illegal attempt to update using time 1547116191.000000 when last update time is 1547116204.000000 (minimum one second step) (status=-1)
Jan 10 12:33:57 aries collectd[1044]: Filter subsystem: Built-in target `write': Dispatching value to all write plugins failed with status -1.
Jan 10 12:33:57 aries collectd[1044]: rrdcached plugin: Successfully reconnected to RRDCacheD at unix:/var/run/rrdcached.sock
Jan 10 12:33:57 aries collectd[1044]: rrdcached plugin: rrdc_update (/var/lib/rrdcached/db/localhost/cpu-1/cpu-steal.rrd, [1547116183:0], 1) failed: rrdcached: illegal attempt to update using time 1547116183.000000 when last update time is 1547116204.000000 (minimum one second step) (status=-1)
And after that mysqld complains
Jan 10 12:34:12 aries mysqld: 2019-01-10 12:34:12 0 [Warning] InnoDB: A long semaphore wait:
Jan 10 12:34:12 aries mysqld: --Thread 139666301327104 has waited at row0upd.cc line 3109 for 3550.00 seconds the semaphore:
Jan 10 12:34:12 aries mysqld: X-lock on RW-latch at 0x7f069fdca050 created in file buf0buf.cc line 1638
Jan 10 12:34:12 aries mysqld: a writer (thread id 0) has reserved it in mode SX
Jan 10 12:34:12 aries mysqld: number of readers 0, waiters flag 1, lock_word: 10000000
Jan 10 12:34:12 aries mysqld: Last time write locked in file buf0flu.cc line 1227
Jan 10 12:34:12 aries mysqld: 2019-01-10 12:34:12 0 [Warning] InnoDB: A long semaphore wait:
Jan 10 12:34:12 aries mysqld: --Thread 139666634364672 has waited at row0ins.cc line 2626 for 3550.00 seconds the semaphore:
Jan 10 12:34:12 aries mysqld: SX-lock on RW-latch at 0x7f069ffc25a0 created in file buf0buf.cc line 1638
Jan 10 12:34:12 aries mysqld: a writer (thread id 0) has reserved it in mode SX
Jan 10 12:34:12 aries mysqld: number of readers 2, waiters flag 1, lock_word: ffffffe
Jan 10 12:34:12 aries mysqld: Last time write locked in file buf0flu.cc line 1227
Jan 10 12:34:12 aries mysqld: 2019-01-10 12:34:12 0 [Warning] InnoDB: A long semaphore wait:
Jan 10 12:34:12 aries mysqld: --Thread 139666633160448 has waited at row0ins.cc line 2626 for 3548.00 seconds the semaphore:
Jan 10 12:34:12 aries mysqld: SX-lock on RW-latch at 0x7f069ffc25a0 created in file buf0buf.cc line 1638
Jan 10 12:34:12 aries mysqld: a writer (thread id 0) has reserved it in mode SX
Jan 10 12:34:12 aries mysqld: number of readers 2, waiters flag 1, lock_word: ffffffe
Jan 10 12:34:12 aries mysqld: Last time write locked in file buf0flu.cc line 1227
This is my `iostat -x` now with everything running:
$ iostat -x
Linux 4.18.0-0.bpo.1-amd64 (aries) 01/10/2019 _x86_64_ (4 CPU)
avg-cpu: %user %nice %system %iowait %steal %idle
2.05 0.00 3.03 3.34 0.00 91.57
Device: rrqm/s wrqm/s r/s w/s rkB/s wkB/s avgrq-sz avgqu-sz await r_await w_await svctm %util
sda 1.88 5.85 10.03 5.74 150.94 64.38 27.31 0.19 14.48 17.79 8.70 1.34 2.11
sdc 9.63 2.10 129.30 5.73 8936.85 120.34 134.15 0.42 2.33 2.32 2.59 0.39 5.24
sdb 9.62 2.10 129.72 5.74 8946.45 120.34 133.87 1.80 13.07 11.96 38.16 0.53 7.13
md0 0.00 0.00 2.94 7.54 261.86 119.60 72.84 0.00 0.00 0.00 0.00 0.00 0.00I now suspect docker being the bottleneck. Since I have all containers running on the default bridge, it might cause delays? Any recommended write up I can check for such errors?