CentOS

Lets follow a packet. Client X in 192.168.110.0/24 (192.168.110.x) creates a packet destined to 172.16.1.10. The 172.16.1.10 is not within 192.168.110.0/24, so it is sent to router Y (192.168.110.y). The router Y knows to forward the packet to next router C, the 192.168.110.10. The C sees that the p...

Officially, one makes a fresh install of something, then applies desired config (in way appropriate to the new distro), and transfers user data. Ideally, the user data is in separate filesystem that does not need to be touched, just mounted to the new OS. Obviously, one already has good backups of u...

I have not looked at network config files in a long time; I do look and modify config with 'nmcli'. nmcli nmcli d s nmcli c s man nmcli-examples does have an example for bond too. Naturally, bond mode, options, and ipv4 do differ from that example. In other words, I'd start by removing existing conn...

it seems like all network traffic goes on single interface The first/most specific/highest priority rule for "to 192.168.0.0/22" is: 192.168.0.0/22 dev em3 proto kernel scope link src 192.168.0.60 metric 102 so that is used for practically all traffic. It is possible to set same subnet series IP Ad...

In any case, the openssh 7.4p1 that is included in CentOS 7 is still maintained by Red Hat so any critical security fixes you think you may need from the newer openssh 9 packagtes are quite likely already included in the CentOS 7 copy. This applies wider than just CentOS 7. Red Hat backports fixes ...

The default value is 2 on CentOS 7. Seems to be default in el8 and el9 too. The scope of vulnerability impact for CVE-2023-6931 is Linux kernel 4.3 to 6.7; CentOS 7. x series kernel version 3.10.0 RHEL 7 is listed as "Out of support scope" While the RHEL 6 is listed as "Not Affected". The el7 kerne...

One could also ask "Why TFTP?" Is it for PXEboot?
If yes, are the DHCP and DNS needs "simple"?

If yes, then I would use 'dnsmasq', because that can act as DHCP, DNS, and TFTP server.

Does Red Hat still release updates for RHEL 7? Yes
Should those be rebuilt for CentOS 7? Yes
Are there plenty of resources to do the rebuilds with? No

Default files for account are copied from /etc/skel. See ls -laR /etc/skel These you can restore by copy from /etc/skel. If you had modified them, that we can't help with. When one starts a GUI desktop session, some additional directories do get created, like "Documents" and "Downloads". New GUI ses...

How long it takes RH to incorporate these patches is unknown to me. Unknown to most of us. You can look at past CVEs and how long bugs of same severity had to wait for RHSA as rough guess. Besides, RHEL 9.4 is already in beta. It should be possible to check whether it has something for these CVEs. ...