NOTES on ROCKY 10 Linux on HP 17 Started this file on May 2, 2026 Added to GITHUB BBC_WWW Admin Noteson May 3, 2026 Local MacM4mini2T: ~/Documents/GitHub/BBC_WWW/Admin Notes/2026-Rocky10hp17-notes.text GITHUB: https://github.com/lcbrevard/BBC_WWW/tree/main/Admin%20Notes In laurencebrevard.com site as: http://laurencebrevard.com/AdminNotes/2026-Rocky10hp17-notes.text And on rocky10hp17 as: http://192.168.1.116/AdminNotes/2026-Rocky10hp17-notes.text FROM MEMORY ----------- INSTALLED from bootable Rocky 10 thumb drive SURPRISES: All hardware detected HDMI connection of Samsung 1920 just worked with two desktops USB GigE just worked to create 2nd Ethernet Added to dock / tray Emacs Settings ... MANY PACKAGE ADDED WITH dnf install EMACS: emacs-nox added for use in terminal emacs in terminal fails to open (find?) display - WTF REMOTE Control: ssh added and working once added to firewalld TeamViewer "works" but only once logged and without good scaling RDP works using "Windows" app on macOS but has to be logged in first vnc - no luck - Wayland is not Xorg even though has subsystem Chrome Remote Desktop not available? ISSUES: requires login to desktop for any to work Autologin fails with some kind of inability to open keystore SATURDAY MAY 2, 2026 -------------------- ADDING NFS access to UNAS UNAS -> All Files -> New Shared Drive Created "ForNFS" on UNAS with 4TB Limit ForNFS properties - nothing added UNAS -> Setup -> Services -> NFS -> Add NFS Connectcions -> Hostname Or IP started with 192.168.1.116 but required 192.168.1.58 (built-in ethernet) Page use to use this to mount: sudo mount -t nfs 192.168.1.73:/var/nfs/shared/[Shared Drive Name] /mnt ROCKY Created /mnt/UNAS1nfs with mode 777 # WORKED [root@rocky10hp17 ~]# mount -t nfs 192.168.1.73:/var/nfs/shared/ForNFS /mnt/UNAS1nfs [root@rocky10hp17 ~]# mount | grep NAS 192.168.1.73:/var/nfs/shared/ForNFS on /mnt/UNAS1nfs type nfs (rw,relatime,vers=3,rsize=1048576,wsize=1048576,namlen=255,hard,fatal_neterrors=none,proto=tcp,timeo=600,retrans=2,sec=sys,mountaddr=192.168.1.73,mountvers=3,mountport=49840,mountproto=udp,local_lock=none,addr=192.168.1.73) [root@rocky10hp17 ~]# SUNDAY May 3, 2026 ------------------ CHANGE SSHD PORT to 4224 (does not appear in /etc/services) CONFIG the port With WEBMIN to change port to 4224 - still listen on all addresses change is in /etc/ssh/sshd_config root@rocky10hp17:/etc/ssh# grep -A1 -B2 -n 4224 sshd_config 127-ClientAliveInterval 0 128-TCPKeepAlive no 129:Port 4224 130- OR DIRECTLY EDIT /etc/ssh/sshd_config - which includes instructions on how to change the port! FIREWALL ADD PORT 4224 FIREWALL CONFIGURATION APP in Rocky to add 4224 as tcp and udp in public, runtime, then runtime to permanent OR something like: sudo firewall-cmd --permanent --add-port=4224/tcp sudo firewall-cmd --reload SELinux needs to know: sudo semanage port -a -t ssh_port_t -p tcp 4224 CHECK with: sudo semanage port --list | grep ssh RESTART ssh: sudo systemctl restart sshd VERIFY with: sudo ss -tulpn | grep ssh WORKING with vandyke to 192.168.1.58:4224 BACKUP for Rocky ====== Based on: https://forums.rockylinux.org/t/how-to-make-full-system-backup/18123 ------ RESTIC ------ GET CODE https://restic.net/ https://github.com/restic/restic/tree/master DOCS https://restic.readthedocs.io/en/stable/index.html https://github.com/restic/restic/blob/master/doc/index.rst USE DNF Install GO - in case we want to built from sudo dnf install go ......... FIRST TRY ......... [brevard@rocky10hp17 ~]$ mkdir /mnt/UNAS1nfs/restic-brevard [brevard@rocky10hp17 ~]$ ls -al /mnt/UNAS1nfs/ total 0 drwxrwx---. 1 setroubleshoot colord 50 May 3 09:13 . drwxr-xr-x. 3 root root 22 May 2 10:57 .. drwxr-xr-x. 1 977 colord 0 May 3 09:13 restic-brevard drwxrwx---. 1 977 colord 0 May 3 08:57 restic-root [brevard@rocky10hp17 ~]$ restic init --repo /mnt/UNAS1nfs/restic-brevard/ enter password for new repository: l999DecR! enter password again: l999DecR! created restic repository 8f44d8a2ac at /mnt/UNAS1nfs/restic-brevard/ Please note that knowledge of your password is required to access the repository. Losing your password means that your data is irrecoverably lost. [brevard@rocky10hp17 ~]$ DO IT [brevard@rocky10hp17 ~]$ export RESTIC_REPOSITORY=/mnt/UNAS1nfs/restic-brevard [brevard@rocky10hp17 ~]$ export RESTIC_PASSWORD=l999DecR! [brevard@rocky10hp17 ~]$ restic init ### NOTE already done above Fatal: create repository at /mnt/UNAS1nfs/restic-brevard failed: Fatal: unable to open repository at /mnt/UNAS1nfs/restic-brevard: config file already exists [brevard@rocky10hp17 ~]$ restic backup ~brevard/. repository 8f44d8a2 opened (version 2, compression level auto) created new cache in /home/brevard/.cache/restic no parent snapshot found, will read all files [0:00] 0 index files loaded Files: 12085 new, 0 changed, 0 unmodified Dirs: 1464 new, 0 changed, 0 unmodified Added to the repository: 5.294 GiB (4.700 GiB stored) processed 12085 files, 5.805 GiB in 7:17 snapshot a930755e saved [brevard@rocky10hp17 ~]$ restic snapshots repository 8f44d8a2 opened (version 2, compression level auto) ID Time Host Tags Paths Size -------------------------------------------------------------------------------- a930755e 2026-05-03 09:42:46 rocky10hp17 /home/brevard 5.805 GiB -------------------------------------------------------------------------------- 1 snapshots [brevard@rocky10hp17 ~]$ restic check using temporary cache in /tmp/restic-check-cache-2684504547 create exclusive lock for repository repository 8f44d8a2 opened (version 2, compression level auto) created new cache in /tmp/restic-check-cache-2684504547 load indexes [0:00] 100.00% 1 / 1 index files loaded check all packs check snapshots, trees and blobs [0:00] 100.00% 1 / 1 snapshots no errors were found [brevard@rocky10hp17 ~]$ MAN PAGES mkdir -v /tmp/restic-man restic generate --man /tmp/restic-man cd /tmp/restic-man for mman in *.1 ; do gzip $mman ; done mv -v *.gz /usr/share/man/man1/ ls /usr/share/man/man1/restic* WWW SITE WORK Add Admin Notest to site as laurencebrevard.com/AdminNotes with this file included in that directory created index.html as well. working on rocky10hp17 site for laurencebrevard.com in /var/www/html/CLB/BBC_WWW/laurencebrevard.com All checked in to github.com and propogated to the 2k4 based server RESTIC BACKUPS Created restic-setup.source in ~brevard on hp17 with echo export RESTIC_PASSWORD=l999DecR! export RESTIC_PASSWORD=l999DecR! echo export RESTIC_REPOSITORY=/mnt/UNAS1nfs/restic-brevard export RESTIC_REPOSITORY=/mnt/UNAS1nfs/restic-brevard echo restic stats restic stats Then ran restic backup . while in ~brevard/ May not be the same paths as backup earlier of ~brevard Created /mnt/UNAS1nfs/restic-www Then switched RESTIC_REPOSITORY=/mnt/UNAS1nfs/restic-www restic init then cd /var restic backup www [brevard@rocky10hp17 var]$ restic stats repository 293cf646 opened (version 2, compression level auto) [0:00] 100.00% 1 / 1 index files loaded scanning... Stats in restore-size mode: Snapshots processed: 1 Total File Count: 1163 Total Size: 390.289 MiB [brevard@rocky10hp17 var]$ Using command line param for repo [brevard@rocky10hp17 var]$ restic -r /mnt/UNAS1nfs/restic-brevard/ stats repository 8f44d8a2 opened (version 2, compression level auto) [0:00] 100.00% 2 / 2 index files loaded scanning... Stats in restore-size mode: Snapshots processed: 2 Total File Count: 27180 Total Size: 11.622 GiB [brevard@rocky10hp17 var]$ restic -r /mnt/UNAS1nfs/restic-www/ stats repository 293cf646 opened (version 2, compression level auto) [0:00] 100.00% 1 / 1 index files loaded scanning... Stats in restore-size mode: Snapshots processed: 1 Total File Count: 1163 Total Size: 390.289 MiB [brevard@rocky10hp17 var]$ [eof]