[00:05] <shally87> hi
[00:05] <shally87> if i already installed LAMP server and PHPMyAdmin
[00:05] <shally87> do i need to install DNS and samba?
[00:07] <Deeps> only if you want to run a dns server and samba server
[00:08] <shally87> owh
[00:08] <shally87> then can i run LAMP + DNS + Samba  together?
[00:08] <Deeps> sure
[00:09] <shally87> About the DNS server how do i point the server to my domain name?
[00:10] <shally87> My ISP give me a dynamic ip address..
[00:10] <shally87> and i afraid i dont have any static Ip address
[02:01] <techsupport> can someone tell me what lenny is ?
[02:02] <genii> techsupport: It's an older version of Debian
[02:02] <techsupport> genii, can you help me out please, i posted something on a forum and i dont know what this guy means he replied to me
[02:03] <genii> techsupport: Apologies, Lenny is the forthcoming Debian version. Current is Etch
[02:03] <genii> (Was thinking of Sid, a former version)
[02:04] <techsupport> genii, i'm gonna change my nick now ok ?
[02:04] <orudie> sorry for the nick change
[02:04] <genii> np
[02:04] <orudie> genii,  look please , i started this forum http://forums.steampowered.com/forums/showthread.php?t=794455
[02:06] <orudie> genii, he says the game server doesnt start because of some lib6
[02:09] <orudie> genii, anything ?
[02:19] <genii> orudie: Yes, I read it. No immediate ideas, except perhaps specify libc version to install.
[02:19] <orudie> genii, is there a way to update libc to the latest version ?
[02:20] <orudie> genii, without specifying the version number
[02:20] <genii> orudie: What ubuntu are you currently running?
[02:20] <orudie> server 8.10
[02:21] <genii> !info libc6 jaunty
[02:21] <genii> !info libc6 intrepid
[02:22] <orudie> yes i have libc6          2.8~20080505-0 GNU C Library: Shared libraries
[02:22] <orudie> can i update it ?
[02:22] <orudie> to v 2.9 ?
[02:22] <genii> orudie: They are saying you need 2.7.18 ... 8.10 has 2.8 and 9.04 has 2.9   ... These are LATER versions than 2.7.18
[02:24] <genii> orudie: If you add the src repos only of jaunty, you can apt-get source <package> and build. I'm not sure if libc however can be "built" as such
[03:35] <KterinK> how can i see if i have dhcp server installed?
[03:37] <KterinK> figured it out, 'sudo /etc/init.d/dhcp3-server status'
[03:39] <jmarsden> That tells you if it is running.... to check it is installed at all, something like   dpkg -l dhcp3-server   should work.
[03:42] <orudie> which command do i use in server's console to stop the server
[03:44] <green7> halt or shutdown?
[03:44] <orudie> i noticed i can only start tf2 server only after i reboot linux
[03:44] <orudie> this is messed up
[03:44] <green7> Tha's weird. no error messages?
[03:45] <orudie> green7, i am having seriouse problems man
[03:45] <orudie> green7, http://forums.steampowered.com/forums/showthread.php?t=794455
[03:47] <green7> Gimme a sec - reading it...
[03:47] <orudie> green7, also thanx, also Could not establish connection to Steam servers.
[03:51] <green7> hmmm, no idea. did you report it to steam tech support?
[03:52] <orudie> no, how can i do that ?
[03:53] <orudie> green7, ok lets say i get the server started, but why do i keep getting could not establish connection to steam servers ?
[03:53] <green7> support.steampowered.com, I guess.
[03:54] <green7> Do you have firewall turned on? Can you ping or traceroute to their servers? (you can run tcpdump to check where it's trying to get to)
[03:55] <orudie> green7, which command should i run ?
[03:55] <orudie> like sometimes it establishes connection and sometimes it doesnt
[03:55] <orudie> like i have to try 5 times, and from the 5th time it would establish connection
[03:55] <orudie> but now i can only start the server after i rebooth the computer
[03:55] <green7> chkconfig --list | grep firewall , I think
[03:55] <orudie> so i cant get it to establish connection
[03:56] <green7> maybe it's cycling through a list of servers, and only some of the servers are up.
[03:58] <green7> you can check that with tcpdump & see if it's trying to get to a different ip/hostname when it works and when it fails
[03:59] <green7> and if that's the problem you can put some bogus entries in /etc/hosts to point the non-working hostnames to working ones.
[04:00] <green7> I've gotta get out of here - good luck!
[04:00] <orudie> green7, thanx i think i got this
[04:56] <Ultraputz> how do you turn on zeroconf advertising for ssh on a fresh install of u server?
[05:07] <Ultraputz> installing firefly seemed to switch it on. thanks anyway !
[05:14] <iverson0881> is ufw suitable to be used in a production server environment?
[05:25] <ScottK> iverson0881: If its feature set is sufficient for what you need, certainly.
[05:26] <iverson0881> ScottK: but it's nothing as full blown as maybe using just straight iptables or bastille is that correct?
[05:26] <ScottK> It's a front end for iptables.
[05:26] <ScottK> So if you can do what you need with it, then fine.
[05:27] <ScottK> If you need stuff it can't help you with, then not.  It's really just a question of your requirements versus its capabilities.
[05:48] <iverson0881> oh okay, i see. what would you recommend?
[06:00] <ScottK> If ufw does what you need, use it.
[06:00] <ScottK> I use my own iptables scripts, so I'm probably not the best source of a recommendation for someting easier.
[06:07] <rdw200169> are there any applications on the terminal that run as daemons and can run a set of commands when network connectivity goes down?
[06:09] <hads> Something like monit may do what you want.
[06:27] <rdw200169> ah, thanks, forgot about monit.
[06:29] <iverson0881> there's also god
[06:29] <iverson0881> which is based on ruby
[06:30] <iverson0881> http://god.rubyforge.org/
[06:38] <suigeneris> hello
[06:38] <suigeneris> ScottK, are you there?
[06:38] <ScottK> I am, but I'm just about to go to sleep.
[06:38] <ScottK> suigeneris: ^^
[06:39] <suigeneris> when will you come back?
[06:39] <suigeneris> in 8 hrs?
[06:39] <ScottK> Unfortunately less.
[06:39] <ScottK> Is there a quick question
[06:39] <ScottK> Probably ~7 or so.
[06:39] <suigeneris> you said you'd help me with my smtpd.key problem
[06:40] <ScottK> Ah.
[06:40] <ScottK> I remember you.
[06:40] <suigeneris> thanks :)
[06:40] <ScottK> Yes, after I sleep, I need to be at my desktop, not my laptop.
[06:41] <suigeneris> i'll wait
[09:31] <mathiaz> kees: https://bugs.launchpad.net/ubuntu/+source/mysql-dfsg-5.0/+bug/323755
[09:31] <uvirtbot`> Launchpad bug 323755 in mysql-dfsg-5.0 "non-trivial building mysql source package, build test keeps failing, (open)ssl related" [Undecided,Confirmed]
[09:31] <mathiaz> kees: ^^ this is the mysql failure
[09:51] <frippz> I've got a bridge set up for KVM that is using one of three NICs. is it possible to add the other two by specifying them with bridge_ports? if so, how would that work?
[10:17] <simplexio> frippz: dont know about KVM, but make a bridge from all NICs is easy
[10:19] <simplexio> frippz: bridge addbr br0 && bridge addif br0 eth0 etc.. then tell kvm use br0, or if kvm uses some virtual interface you probably can add it too to bridge
[10:21] <simplexio> if i install bind9 for my self, can i use any domain name on it? like example.com or myhome.poop .. i just want to get "own" dns server for home lan, so that i can use kerberos, ldpa etc.. for filesharing on lan
[10:22] <simplexio> and i dont want that my bind9 server causes some dns names to point wrong place
[10:23] <hads> Yes
[10:23] <hads> Might want to look at dnsmasq also
[10:24] <frippz> simplexio: yeah, KVM is using br0 I think. what I'm wondering now is how the bridge will be working. will it be utilizing 3 NICs and effectively offer 3 Gbit/s speed?
[10:25] <frippz> since each NIC is a 1Gbit
[10:27] <simplexio> frippz: hmm.. im not sure (i use 100Mb + 1Gb bridge) where this 100Mb is on "internet" side and 1G is on my home lan
[10:27] <soren> frippz: No, it won't.
[10:27] <simplexio> but i get 1Gb speed to server from home desktop and 100Mbit from that
[10:28] <frippz> soren: I figured... seems to easy and too good to be true :)
[10:29] <simplexio> frippz: i think you need first make bond all those NIC to one virtual nic and then bridge it to KVM side
[10:29] <soren> frippz: If you want to to dhat, you need to set up bonding and add your bonded interface to the bridge instead of your hysical nic's.
[10:29] <soren> It's totally doable, just not how you explained it.
[10:30] <frippz> yeah, I'll have to look up bonding again. haven't played with that in ages :)
[10:30] <soren> Well, if you want to bond interfaces, which is clearly what you want... you kinda need to use bonding :)
[10:31]  * soren is about to lose nework access for a little bit
[10:32] <Gargoyle> Any mod_rewrite gurus online? I want to make a rule that redirects to my blog, but does not append to the query string.
[10:34] <soren> "Does not append to the query string"?Why would it do that?
[10:34] <Gargoyle> So far I have this... http://pastebin.com/d78ecbd05
[10:35] <Gargoyle> If you goto http://ga.rgoyle.com/an/ I want it to be as if you have gone to /blog, but it must be passing something extra through to wordpress cos I get page not found :(
[10:37] <soren> Gargoyle: Look in your logs?
[10:42] <Gargoyle> soren: Not much about rewrite rules seems to get logged.
[10:42] <hads> There's an option to log it
[10:43] <soren> Gargoyle: No, but you can see where it's redirecting to.
[10:44] <Gargoyle> Uh oh... I might be reading these docs for a while.... `Despite the tons of examples and docs, mod_rewrite is voodoo. Damned cool voodoo, but still voodoo.''
[10:45] <hads> Nah
[10:49] <Gargoyle> Cool! Redirect loop!
[10:49] <Gargoyle> :D
[10:53] <frippz> soren: what about distributing the load manually over several NICs? I'm thinking that about setting up several br-interfaces and letting some VMs use br0 and some other user br1 and br2. would that work?
[10:54] <soren> Manually?
[10:58] <frippz> soren: yeah, well. by manually I mean that I choose wich VM uses wich bridge
[10:58] <frippz> maybe I'm just making this more difficult for myself than it should be :D
[11:09] <fw1> I am setting up ldap replication following the  8.10 instructions,  the problem is that once i get to the end and the two servers are in sync the, i restart, create an object on the primary server,  the second server then blasts its db away
[11:11] <uvirtbot`> New bug: #324249 in bind9 (main) "[CVE-2009-0265] BIND 9 not properly checking the return value from OpenSSL EVP_VerifyFinal()" [Undecided,New] https://launchpad.net/bugs/324249
[13:31] <shally87> hi..
[13:31] <shally87> what is the command to install mail server using sudo apt-get
[13:31] <shally87> anyone
[13:34] <pmatulis> shally87: just use the 'tasksel' command to get the menu
[13:36] <andol> mathiaz: Thanks for pointing out the expired ssl-cert in the mysql testing suite. You just saved me from doing a hole bunch of completely unrelated tests :-)
[13:36] <mathiaz> andol: :)
[13:37] <mathiaz> andol: upstream has commited patches to their 5.1 and 6.0 trees.
[13:37] <shally87> ok
[13:37] <shally87> thanks pmatulis
[13:37] <mathiaz> andol: but the Debian maintainer reported that the patch would not apply on the 5.0 tree
[13:39] <andol> mathiaz: Should I look into building our own patch, using the new cert in the 5.1+ patch? Or do you have another solution in mind?
[13:40] <shally87> i want to esit my dns using this
[13:40] <shally87> sudo vi /etc/bind/named.conf.local
[13:40] <andol> mathiaz: Alternatevly is it just best to wait and see what Debian does?
[13:40] <mathiaz> andol: that's what I would do - take the new certs from 5.1+ and put them in 5.0
[13:40] <shally87> but i having problem on writing the code..
[13:40] <shally87> anyone experience to use it?
[13:40] <shally87> hope someone could help..i brb a while
[13:41] <shally87> thanks..
[13:52] <shally87> hi..back..
[13:52] <shally87> i got this function sudo vi /etc/bind/named.conf.local
[13:52] <shally87> from http://ubuntuforums.org/showthread.php?t=236093
[13:52] <shally87> and i need to add few more function below it.
[13:53] <shally87> but as i write the command sudo vi /etc/bind/named.conf.local and i entered a space to write something,
[13:53] <shally87> i having difficulties to write the command needed.
[13:53] <shally87> anyone know how can i write something over there?
[13:53] <shally87> if i press arrow, it came like "B"
[13:54] <shally87> and i dont know how to save it
[13:54] <suigeneris> press Ins
[13:54] <shally87> owh
[13:54] <shally87> then how to save it?
[13:54] <suigeneris> to save, presss Esc and then w
[13:55] <shally87> ok..thanks..
[13:55] <suigeneris> np
[13:59] <shally87> i got this problem again
[13:59] <shally87> # This is the zone definition for reverse DNS. replace 0.168.192 with your network address in reverse notation - e.g my network address is 192.168.0 zone "0.168.192.in-addr.arpa" {      type master;      file "/etc/bind/zones/rev.0.168.192.in-addr.arpa"; };
[13:59] <shally87> how to get the network address?
[13:59] <shally87> is it the dynamic address?
[13:59] <shally87> given by isp or the address of the router
[14:00] <dnperfors> shally87: it would be easier for you to use nano instead of vi it will behave like you would expect it to :)
[14:00] <shally87> nano?
[14:00] <shally87> how to use it?
[14:01] <shally87> i'm really new in command
[14:01] <dnperfors> Shally87: I guess that that address is for your internal network
[14:01] <dnperfors> nano is a text editor
[14:02] <shally87> owh...my bad of not knowing it
[14:02] <dnperfors> type sudo nano /etc/bind/named.conf.local instead of the one with vi ;)
[14:02] <shally87> internal..then as i'm using switch then the ip should be 192.1681.2
[14:02] <shally87> ok
[14:02] <shally87> thanks
[14:02] <shally87> the ip should be 192.168.1.2 is it?
[14:03] <dnperfors> when your ip is 192.168.1.2, than the network address is 192.168.1
[14:04] <shally87> owh..that is the ip for switch..then i guess i just make a trial and error..
[14:04] <shally87> owh..one thing..as i'm comfortable with windows.. how to get the ip or network address of my pc?
[14:05] <shally87>  linux quite new to me
[14:05]  * [gnubie] waves
[14:05] <dnperfors> in Linux? type ifconfig :)
[14:05] <shally87> ok
[14:05] <shally87> thanks
[14:05] <[gnubie]> pardon me, i will be asking for an OT.. i just need your advice..
[14:06] <[gnubie]> if you are going to choose between PaaS/cloud hosting, VPS or Managed Server, which one will you choose? which is more cheaper?
[14:08] <[gnubie]> this is to host your website and you want full control on your web app with more features but pay less..
[14:08] <shally87> vps
[14:13] <shally87> there is this another one thing..
[14:13] <shally87> forwarders {       # Replace the address below with the address of your provider's DNS server       123.123.123.123; };
[14:13] <shally87> does it means the ISP address?
[14:14] <Deeps> [gnubie]: depends on how much traffic you intend to use
[14:14] <dnperfors> shally87: that means the dns you get from your ISP or any other DNS server address you want to use
[14:15] <Deeps> [gnubie]: you need to work out how much disk space you need, how much traffic you intend to push, and then do your own costing analysis based on your own expected usage patterns
[14:15] <shally87> hmm
[14:15] <shally87> if i dont have one?
[14:15] <Deeps> [gnubie]: and thus, you can compare services like amazon's s3 with vps, managed + dedicated server providers
[14:15] <shally87> is it possible just point it to my pc?
[14:16] <[gnubie]> Deeps: honestly, i don't know what to expect for the traffic.. for the disk space, i don't think it is an issue because let's assume that the web app is like a blog
[14:17] <Deeps> [gnubie]: if you dont know how much traffic you're gonna get, how is anyone else going to know? lol
[14:17] <shally87> [gnubie]: do you just started a blog? or your blog had been known well?
[14:17] <shally87> [gnubie]: when i use blog i just go for shared hosting with cpanel
[14:17] <dnperfors> shally87: you can also leave that one out... basicly it is just saying: forward the request to these servers when I don't know the answer
[14:17] <shally87> you gotta search hosting company
[14:18] <shally87> dnperfors: thanks..i think i gonna use openDNS..does it ok?
[14:18] <[gnubie]> Deeps: i really don't know how to compute the traffic.. what i have here at home and even in the office are unlimited but with a maximum bandwidth for upload/download
[14:19] <[gnubie]> shally87: the blog is an example but yes, about to start
[14:20] <shally87> [gnubie]:  i use lunarpages hosting for around 6 website..and it does well, no bandwith and storage limit.. anyway hostgator is the best if you want to get a cheap hosting just for your site..then you no need to sweat handle the server..for long term if your website gotta do very well, then go for vps or dedicated server..
[14:21] <dnperfors> shally87: yes that will work, I do the same, I use my own server as a cache and to register local addresses and use OpenDNS as backup
[14:21] <shally87> ok
[14:21] <shally87> thanks dnperfors..i going to ask a lot..:-D
[14:22] <[gnubie]> shally87: i just checked serverbeach's basic offer at https://shop.serverbeach.com/product_details.php?id=2551 and it looks cheap.. what do you think?
[14:24] <shally87> wait a sec
[14:24] <[gnubie]> ok
[14:25] <shally87> you going for a dedicated server?
[14:25] <Deeps> [gnubie]: webstats
[14:25] <Deeps> [gnubie]: your webserver should be logging, use something like webalizer, will let you know how much traffic your site's using
[14:26] <shally87> this could be ok for me..but i don't know what pro will say..
[14:27] <shally87> if you were going to have a traffic like johnchow.com or download.com, it is best to get a dedicated server
[14:27] <shally87> that price is reasonable if the site is going to be very popular soon..
[14:28] <shally87> if just for a start go for shared or vps..
[14:28] <shally87> with the price i saw, it could be a dedicated server..
[14:28] <shally87> Student like me wont go for that..just setting up my own small server at home :sweat
[14:30] <shally87> dnperfors: can i put 3 backup ip? 1 to my isp then 2 to open dns
[14:32] <shally87> brb
[14:32] <dnperfors> shally87: I am looking in my configs, and I see that I am not using the forwarder at all :)
[14:32] <[gnubie]> Deeps: yes, using webalizer.. the problem is, i still don't have a website to do a webstats..
[14:33] <shally87> ok thanks dnperfors
[14:33] <dnperfors> shally87: yes that is possible
[14:33] <shally87> i think i just use the one from my isp..just to give a try..
[14:34] <[gnubie]> shally87: so you're saying that the link that i gave you, it was already expensive?
[14:34] <[gnubie]> i checked AWS and i honestly don't understand its computation
[14:35] <Deeps> $99 a month for a dedicated server like that isn't bad, but it's overkill for what you need
[14:35] <Deeps> by the sounds of things, you're starting a new site, it wont have much traffic, something like S3 may be what you need
[14:37] <shally87> [gnubie]: if you just started to host a site, it is better to go for a shared then upgrade to vps then upgrade to dedicated..this will save you a lot of money which you can use for advertising
[14:38] <mathiaz> andol: FYI this is the upstream commit that updates the certificates for the 5.0 branch: http://lists.mysql.com/commits/64296
[14:39] <shally87> [gnubie]:  if you go for vps it could at least support you with more than 1000users daily...and you only pay around usd24 to 40 monthly...
[14:40] <shally87> [gnubie]: making a site so popular takes time..unless your web app is something so unique that you could get it popular in short time..
[14:40] <suigeneris> ScottK, are you up yet?
[14:40] <heath|work> anyone know of a mod_xsendfile package for apache2 ?
[14:41] <shally87> then when you paying a server you gonna thing how long until your site get big and how much storage you could use one time..
[14:41] <shally87> that could be essential thing that you need to save money..
[14:41] <shally87> brb
[14:44] <andol> mathiaz: Nice. I'll take a closer look at it when I get home from work tonight.
[14:44] <shally87> i afraid the one 99 is 99 monthly..
[14:46] <suigeneris> anyone watching postfix users mailing list?
[14:49] <heath|work> When I am reading the apache docs, it is asking me to type httpd -l , but httpd does not exist...
[14:49] <lamont> suigeneris: any particular message, or just generally?
[14:50] <suigeneris> lamont, I have a problem with smtpd.key, I asked about it on postfix users
[14:53] <heath|work> nevermind
[14:55] <suigeneris> heath|work, could be apache2ctl
[14:56] <suigeneris> instead of httpd
[14:56] <heath|work> suigeneris, it is thanks... do you know how I am supposed to install apxs for apache?
[14:57] <suigeneris> http://www.linuxforums.org/forum/servers/61842-how-install-apxs-apache.html
[14:58] <shally87> there is another this thing
[14:58] <shally87> // Replace the following line as necessary: // ns1 = DNS Server name // mta = mail server name // example.com = domain name example.com.      IN      NS              ns1.example.com. example.com.      IN      MX     10       mta.example.com.
[14:58] <suigeneris> heath|work, what distro?
[14:59] <shally87> is it the DNS server name is anything i like?
[14:59] <suigeneris> lamont, can you help me with that?
[15:00] <heath|work> suigeneris, 8.04
[15:00] <suigeneris> ubuntu, right
[15:01] <shally87> owh..stop with that
[15:01] <heath|work> yes, ubuntu 8.04,
[15:02] <heath|work> with what?
[15:02] <shally87> mm, could i use the domain if i set it as a dns server domain?
[15:02] <dnperfors> shally87: sort of, yes...
[15:02] <shally87> with what i ask earlier
[15:02] <shally87> ok..
[15:02] <shally87> thanks again
[15:03] <heath|work> suigeneris, I just read that the tool is included in apache2-threaded-dev
[15:04] <heath|work> I guess I will give that a whirl
[15:12] <shally87> i got this problem..how do i know this?
[15:12] <shally87> Replace the IP address with the right IP addresses. www              IN      A       192.168.0.2 mta              IN      A       192.168.0.3 ns1              IN      A       192.168.0.1
[15:12] <shally87> www              IN      A       192.168.0.2
[15:13] <shally87> mta              IN      A       192.168.0.3
[15:13] <shally87> ns1              IN      A       192.168.0.1
[15:13] <shally87> how do i get this in my pc/
[15:26] <dnperfors> shally87: you need to specify all the hosts you want to specify, for example: router IN A 192.168.1.1
[15:26] <dnperfors> basicly you should know the ip address and assign a host name to it...
[15:26] <dnperfors> this only works when those machines have a static ip
[15:38] <shally87> ok..tq
[15:40] <shally87> does anyone got the original file for /etc/bind/named.conf .. could you copy and paste in the pastebin?
[15:54] <shally87> i got this porblem
[15:55] <shally87> do my dns server need to be different than my LAMP server?
[15:56] <[gnubie]> shally87: thanks.. sorry for my late reply..
[15:56]  * [gnubie] waves.. gtg now.. thanks..
[15:56] <shally87> ok//bye
[16:05] <BBHoss> does anyone know if iptables will forward out on the same interface that it recieved a packet?
[16:16] <soren> BBHoss: Iptables doesn't do routing.
[16:16] <BBHoss> i know
[16:16] <BBHoss> but will it forward it out
[16:17] <soren> You are asking a question about routing.
[16:17] <BBHoss> if i have the router on 192.168.0.1 and i have a forward rule to go to 192.168.0.169, and both are on eth0, will it send the packet to 192.168.0.169, assuming the routes are setup correctly
[16:17] <soren> iptables doesn't decide on the interface through which a package gets routed.
[16:17] <soren> Your eth0 has both addresses?
[16:18] <BBHoss> what i'm trying to do is test my rules to make sure it forwards it to the right place
[16:18] <BBHoss> .1 and .169 are on the same network
[16:19] <BBHoss> but eventually they won't be
[16:19] <soren> You will have to elaborate on that. :)
[16:19] <soren> How are you doing your subnetting?
[16:19] <BBHoss> \/24
[16:19] <soren> Then they are going to be on the same network.
[16:19] <BBHoss> right, i know that
[16:19] <BBHoss> eventually packets will come in on a separate interface
[16:20] <BBHoss> which is not on the same network (physically) or subnet-wise
[16:21] <BBHoss> i have -A PREROUTING -i eth0 -p tcp -m tcp --dport 9090 -j DNAT --to-destination 192.168.0.169:9090 inside the nat, and -A ufw-before-forward -p tcp --dport 9090 -j ACCEPT  in the before-filter chain
[16:22] <BBHoss> however if i run an nc listener on .169:9090, and then try to nc 192.168.0.1:9090, it won't connect
[16:23] <BBHoss> but its not blocking it, the logs would show it, because it was before i added a rule to the before-forward chain
[16:23] <soren> Which machine has the rules?
[16:23] <BBHoss> .1
[16:23] <BBHoss> thats the router/nat device
[16:24] <BBHoss> i have forwarding enabled in sysctl as well
[16:24] <soren> And from whence are you conducting your tests?
[16:24] <BBHoss> .169
[16:24] <soren> Yeah, that's not going to work.
[16:24] <BBHoss> ok would it work from another ip?
[16:25] <BBHoss> on the same network?
[16:25] <soren> Your problem is this:
[16:25] <soren> .169 is accessing .1, but the responses are coming from .169..
[16:25] <BBHoss> ahh i see
[16:25] <soren> ...so it doesn't know that it's related to the same connection.
[16:26] <soren> If you were outside the NAT, and you had a different rule that did the translation, that would be fine.
[16:26] <soren> "the translation" == the NATing.
[16:26] <BBHoss> ok so i have to be outside the nat to test it
[16:26] <soren> Assuming your NATing is set up correctly, yes.
[16:27] <BBHoss> http://pasternak.superalloy.nl/pastes/1357 is how i am doing NAT
[16:28] <soren> BBHoss: Does that work?
[16:28] <soren> "-o eth1" looks odd (from the very little I know about your network setup)
[16:28] <BBHoss> don't know, haven't tried it yet with eth1
[16:28] <BBHoss> eth1 will be the wan interface though
[16:28] <soren> Oh, blah, you're right.
[16:28] <soren> My bad.
[16:30] <BBHoss> see i was trying to prevent me being required to setup a full-fledged test lab, but i guess i have to :)
[16:30] <BBHoss> well thanks for your help, bbl
[16:35] <soren> BBHoss: Cheers.
[18:22] <quizme_> hello, my mysql didn't start
[18:22] <quizme_> where are the logs for mysql ?
[18:22] <quizme_> they are empty in /var/log/mysql.*
[18:23] <zoopster> quizme_: /var/log/mysql - however you may want to look at /var/log/messages or /var/log/syslog for more details...
[18:25] <quizme_> zoopster: i didn't find anything revealing there.  What's the command to start up mysql?
[18:26] <quizme_> zoopster: i did /etc/init.d/mysql start
[18:26] <quizme_> but that didn't seem to work
[18:27] <zoopster> quizme_: that is the correct one...grep the syslog for mysql messages..if it doesn't start there will be a message in there
[18:29] <quizme_> zoopster: okay i'll look again at the syslogs
[18:33] <quizme_> zoopster: found some!  Feb  2 18:32:11 domU-12-31-39-00-52-27 postfix/trivial-rewrite[25587]: fatal: mysql:/etc/postfix/mysql_domains.cf(0,lock|fold_fix): table lookup problem
[18:34] <redLAW> hello to all
[18:34] <zoopster> quizme_: but that is a postfix issue...seems it cannot find the table it needs
[18:35] <redLAW> I'm doing 8.04 LTS setup and i wanted to ask is there any good howto for making gateway with 2 nic
[18:35] <quizme_> zoopster: hmm.... weird
[18:36] <quizme_> zoopster: so how can i create the table, if i can't start mysql ?
[18:36] <quizme_> zoopster: maybe i should stop the postfix service?
[18:37] <zoopster> quizme_: first things first...try to start mysql again and either have another window watching syslog (tailf /var/log/syslog) or tail it after you have attempted a start
[18:37] <zoopster> it logs starts and stops
[18:37] <quizme_> zoopster: i know what you mean
[18:37] <quizme_> zoopster: i'll try that
[18:40] <quizme_> zoopster: http://pastie.org/377533
[18:43] <quizme_> how do i make a socket exist? /var/run/mysqld/mysqld.sock
[18:46] <zoopster> quizme_: look above that line... it doesn't like skip-federated
[18:46] <quizme_> zoopster: why is it doing that ?
[18:47] <zoopster> not sure...I am using 8.10 with 5.0.67-0ubuntu6 and that line is in my "my.cnf"
[18:47] <zoopster> but I don't see that problem
[18:47] <quizme_> zoopster: btw, i'm not sure if i did this right:  apt-get install libmysqlclient15-dev  ?
[18:48] <quizme_> i was messing with that
[18:48] <quizme_> then i did a  "gem install mysql"
[18:48] <quizme_> does that have anything to do with it ?
[18:49] <zoopster> quizme_: possibly, but that client lib *SHOULD* work...
[18:49] <zoopster> do a dpkg -l |grep myql and see what is installed
[18:49] <zoopster> is this 8.10 or 8.04?
[18:50] <jrwren> quizme_: /var/run/mysqld/mysqld.sock is created by the mysql server when you start it.
[18:50] <quizme_> 8.04
[18:50] <jrwren> quizme_: does your /etc/mysql/my.cnf have socket          = /var/run/mysqld/mysqld.sock in the [mysqld_safe] section?
[18:51] <quizme_> zoopster:  dpkg -l |grep myql   comes up empty handed
[18:51] <zoopster> quizme_: as in NOTHING?...you have to have something in there
[18:51] <zoopster> jrwren: the problem is that mysql_safe is choking on --skip-federated
[18:51] <quizme_> zoopster: oh i mispelled it
[18:51] <maxb> Perhaps "mysql" not "myql" ?
[18:52] <quizme_> jrwren: not sure hold on plz
[18:52] <zoopster> yea...I mispelled it...sorry
[18:52] <quizme_> making pastie
[18:53] <quizme_> i love pasties
[18:53] <quizme_> http://pastie.org/377551
[18:54] <quizme_> zoopster: http://pastie.org/377551
[18:55] <jrwren> quizme_: can you pastebin your /etc/mysql/my.cnf ?
[18:55] <quizme_> jrwren: yes it does.  i just check it.  i'll paste it
[18:56] <zoopster> jrwren: here is his pastebin from start up http://pastie.org/377533
[18:57] <quizme_> jrwren: http://pastie.org/377555
[18:57] <jrwren> yeah, its almost like the /etc/mysql/my.cnf has --skip-federated instead of just skip-federated in it.
[18:57] <jrwren> but it doesn't.
[18:58] <quizme_> is it serious ?
[18:58] <quizme_> i feel like you guys are doctors trying to diagnose me with some fatal disease.
[18:59] <jrwren> zoopster might know a lot more than me.
[18:59] <jrwren> quizme_: its very strange.
[18:59] <zoopster> heh
[18:59] <jrwren> i have the same package versions installed.
[18:59] <zoopster> quizme_: verify you are starting mysql with /etc/init.d/mysql start
[19:00] <jrwren> quizme_: what is the results of an md5sum on /usr/sbin/mysqld ?  does it look like this? http://pastie.org/377557
[19:00] <quizme_> oh crap
[19:00] <quizme_> i think i may have mixed up computers
[19:00] <quizme_> local vs remote
[19:00] <quizme_> .....
[19:01] <quizme_> lets' start with dpkg
[19:01] <jrwren> rofl
[19:02] <quizme_> http://pastie.org/377561  #  dpkg
[19:03] <zoopster> ok...so that tells us something
[19:03] <zoopster> and your my.cnf for that box?
[19:04] <quizme_> i'm back
[19:04] <quizme_> let me get that
[19:04] <zoopster> quizme_: skip-federated was added in .67
[19:05] <quizme_> http://pastie.org/377564  # my.cnf
[19:05] <jrwren> it looks like you are in the middle of upgrading that thing.
[19:05] <quizme_> btw
[19:06] <quizme_> oh
[19:06] <jrwren> mysql-server pkg is 5.0.67, but mysql-server-5.0 is version 5.0.51a
[19:06] <quizme_> so
[19:06] <quizme_> what should i do ?
[19:06] <jrwren> I'd run apt-get update && apt-get upgrade
[19:06] <quizme_> sometimes i type in random apt-get commands
[19:07] <quizme_> from the internet
[19:07] <quizme_> lol
[19:07] <quizme_> ok, i just did that apt-get update && apt-get upgrade
[19:08] <quizme_> but it's hanging here: 99% [Connecting to us.archive.ubuntu.com (91.189.88.31)]
[19:10] <quizme_> are u guys there ?
[19:10] <jrwren> ready and waiting to try to help.
[19:10] <quizme_> it's upgrading still
[19:11] <quizme_> lots of stuff is going on
[19:11] <quizme_> am i upgrading to 8.10 now ?
[19:11] <jrwren> no
[19:11] <jrwren> unless you previously told it to do so.
[19:11] <quizme_> i don't think i did
[19:12] <quizme_> it's updating massive stuff
[19:12] <quizme_> i thought myssytem was uptodate already
[19:14] <quizme_> i'm starting to like vi
[19:15] <quizme_> why do u guys sit here an help people?
[19:18] <jrwren> quizme_: because we love linux and ubuntu.
[19:20] <zoopster> it's a great reason to procrastinate real work
[19:20] <zoopster> :-D
[19:20] <quizme_> i see
[19:22] <quizme_> are u guys sysadmins?
[19:22] <quizme_> or programmers?
[19:22] <quizme_> or both?
[19:24] <quizme_> i love watching linux update itself
[19:24] <quizme_> it's like watching ocean waves
[19:26] <quizme_> u know humans are becoming part of an organism
[19:27] <zoopster> I pretend to administer systems in my spare time
[19:27] <zoopster> I manage a bunch of software vendors
[19:28] <quizme_> ok it's done updating finaally
[19:28] <quizme_> shoudl i do mysqld start?
[19:29] <quizme_> or /etc/init.d/mysql start
[19:29] <quizme_> or ps -a | grep mysqld ?
[19:30] <quizme_> hey it worked!
[19:30] <quizme_> thanks!
[19:30] <quizme_> oh man i'm happy
[19:30] <quizme_> thanks
[19:30] <quizme_> now i can go to sleep
[19:30] <quizme_> zoopster: i owe you a beer
[19:31] <quizme_> jrwren: i owe you a beer too
[19:31] <quizme_> have a good night!
[19:31] <jrwren> i'll take you up on that.
[19:31] <quizme_> i'm in Manila
[19:31] <quizme_> philippines
[19:31] <quizme_> swing by :)
[19:31] <jrwren> when i visit there.
[19:31] <quizme_> dbitsolutions@gmail.com
[19:31] <quizme_> see ya
[19:31] <quizme_> good night
[19:31] <zoopster> quizme_: cool...will do that some time..glad that work
[19:31] <zoopster> see ya
[19:32] <redLAW> I watched your work here... it is fantastic!
[19:35] <zoopster> redLAW: saw your q - did you search your favorite search engine - there are many how-tos on that subject
[19:36] <redLAW> i found sth
[19:36] <redLAW> basicaly
[19:36] <redLAW> i want to host
[19:36] <redLAW> my website at home and yet have gateway for home
[19:36] <redLAW> is it possbile with custom dns at dyndns service
[19:36] <zoopster> redLAW: I do that with ubuntu server myself
[19:37] <zoopster> redLAW: yes it is...I happen to have a static ip that I use
[19:37] <redLAW> i have dynamnic IP only
[19:37] <redLAW> avalible
[19:37] <zoopster> redLAW: you may violate your TOS, but it can and is being done regularly
[19:38] <redLAW> how do u mean TOS
[19:39] <jrwren> redLAW: many US isps once prohibited inet sharing like that, but most allow it now.
[19:39] <redLAW> I;m in Europe
[19:39] <jrwren> redLAW: you say "gateway", but what you really want is internet connection sharing, like NAT?
[19:40] <redLAW> yes
[19:40] <jrwren> the iptables oneliner will work.
[19:40] <jrwren> redLAW: I don't know the "ubuntu-way" for that.
[19:41] <redLAW> can you recommend me something
[19:41] <redLAW> to start
[19:42] <jrwren> modprobe iptable_nat ; iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE ;echo 1 > /proc/sys/net/ipv4/ip_forward
[19:42] <jrwren> change ppp0 to the network interface that is your outside (internet?) interface.
[19:42] <redLAW> ok
[19:42] <redLAW> ok
[19:42] <jrwren> you will need to do that every time you reboot, so maybe place it all in /etc/rc.local.
[19:43] <zoopster> https://help.ubuntu.com/community/DynamicDNS has some info...
[19:43] <jrwren> see also : https://help.ubuntu.com/community/IptablesHowTo
[19:43] <redLAW> ok
[19:43] <redLAW> i will do best
[19:43] <redLAW> i found
[19:43] <redLAW> clarkconnect
[19:44] <redLAW> but somehow
[19:44] <redLAW> that project is closed
[19:44] <redLAW> i want freedom
[19:47] <zoopster> redLAW: you can do it all yourself if you have the patience and time...it's fun to learn
[19:47] <redLAW> yes i have patience
[19:47] <zoopster> projects like clarkconnect and amahi just package it up for you
[19:47] <redLAW> yes
[19:47] <redLAW> i want to learn
[19:47] <zoopster> all of the basic parts are there in ubuntu
[19:48] <redLAW> how that parts work
[19:48] <redLAW> together
[19:48] <zoopster> help.ubuntu.com is a great place to start
[19:48] <redLAW> ok
[19:48] <zoopster> there are many books on the matter...but plenty of howto's...do some searching and you'll find lots of info
[19:48] <zoopster> if you get stumped...ask here...there is always someone around that can help
[19:49] <redLAW> :)
[20:10] <ScottK> suigeneris: I am around now (day went differently than I thought).
[20:16] <Kartagis> ScottK, I am home now and I am Kartagis
[20:17] <Kartagis> so, shall we start? first off, what kind of information do you want from me?
[20:19] <Kartagis> your day wasn't bad I hope
[20:23] <ScottK> Kartagis: Not bad, just different.
[20:24] <ScottK> Paste me the command you were using to make your certs.
[20:25] <piquadrat> Hi! I put this command in root's crontab: "47 2 * * * /usr/sbin/ftplicity backup". But ftplicity is never invoked. When I start ftplicity manually, everything works. What am I doing wrong?
[20:26] <Kartagis> just a sec, trying to find that page
[20:27] <Kartagis> https://help.ubuntu.com/8.04/serverguide/C/postfix.html
[20:27] <Kartagis> this was the page ScottK
[20:30] <ScottK> Kartagis: That's way different than I do it.  Let me try and write something up tonight.
[20:30] <ScottK> sommer: Did you validiate the TLS key creation in ^^^
[20:30] <Kartagis> thank you ScottK
[20:32] <sommer> ScottK: It's always worked for me in the past
[20:32] <sommer> ScottK: thanks for the ping the other day, unfortunetly I haven't had time to work on that yet
[20:32] <sommer> should have time this week though
[20:37] <axisys> anyone here successfully installed ubuntu on t1000?
[20:38] <Jeeves_> Yes
[20:38] <axisys> i tried hardy sparc64 and intrepid sparc boot image .. both failed at disk detection
[20:38] <Jeeves_> axisys: It's easy
[20:38] <Jeeves_> It was with hardy, though
[20:38] <axisys> Jeeves_: let me share my issue ..
[20:39] <axisys> i just posted it on mailing list with subject 'ubuntu install failed to install on t1000'
[20:40] <axisys> Jeeves_: mine is failing like this http://pastebin.com/d6c31c0bd
[20:40] <axisys> Jeeves_: i am using this https://help.ubuntu.com/community/Installation/Sparc
[20:40] <Kartagis> t1000, is that a more evil model than t888?
[20:41] <axisys> basically network-boot-arguments is where I am declaring the image path and all and then just boot net...
[20:41] <Jeeves_> axisys: Maybe intrepid is broken on sparc?
[20:41] <axisys> Jeeves_: i tried with hardy sparc64 too
[20:41] <ivoks> axisys: i did on TI UltraSparc IIIi
[20:41] <axisys> ivoks: t1000 is of that category ?
[20:41] <ivoks> axisys: i don't know :/
[20:42] <axisys> ivoks: i can check real quick
[20:42] <ivoks> this was sun fire v240
[20:42] <ivoks> i think this was an old machine
[20:43] <ivoks> it surely doesn't have 8 cores :D
[20:43] <ivoks> it's from pre-core era :D
[20:43] <ivoks> maybe 2 :)
[20:44] <axisys> Jeeves_: it is failing like this http://pastebin.com/d6692949a for hardy sparc64 boot img here http://ports.ubuntu.com/dists/hardy-updates/main/installer-sparc/current/images/sparc64/netboot/2.6/
[20:45] <Jeeves_> axisys: i've got no clue than
[20:45] <Jeeves_> hardy worked fine for me'
[20:45] <axisys> ivoks: UltraSPARC-T1 is t1000
[20:45] <ivoks> axisys: i used http://cdimages.ubuntu.com/ports/releases/8.04.1/release/ubuntu-8.04.1-server-sparc.iso
[20:46] <axisys> ivoks: t1000 does not have a cdrom
[20:46] <ivoks> oh
[20:46] <ivoks> stupid manufacturers :)
[20:46] <ivoks> ok, let's see what can we do
[20:46] <axisys> would be nice if i could point to the iso contents like solaris
[20:47] <axisys> ivoks: :-)
[20:47] <axisys> in solaris i mount the iso and run setup_install_server followed by add_install_client and then on the client boot net - install.. and thats it
[20:48] <axisys> that is how i installed solaris on this t1000
[20:49] <ivoks> on linux you have dhcp and tcpd
[20:50] <axisys> ivoks: u mean tftp ? so setup a dhcp and then point to iso ?
[20:50] <ivoks> ok
[20:50] <ivoks> i found an old conversation
[20:50] <axisys> ivoks: i think u sent a link to me before..
[20:51] <ivoks> did you power down your machine after running solaris?
[20:51] <axisys> ivoks: yeah ..heh
[20:51] <axisys> ivoks: yes.
[20:51] <ivoks> let's do that again :)
[20:51] <axisys> ivoks: i can't find the conversation :-(
[20:51] <axisys> ivoks: i just remember u were trying to help
[20:51] <ivoks> power of t1000
[20:51] <ivoks> power it on
[20:52] <axisys> ivoks: ok
[20:52] <ivoks> enter open firmware and run check boot?
[20:52] <axisys> poweroff
[20:52] <axisys> Are you sure you want to power off the system [y/n]?  y
[20:52] <axisys> from SC>
[20:52] <ivoks> setenv auto-boot false
[20:52] <axisys> SC Alert: SC Request to Power Off Host
[20:52] <axisys> ivoks: ok.. as soon as I bring it back on
[20:53] <Kartagis> ScottK, I am here
[20:55] <ivoks> axisys: http://irclogs.ubuntu.com/2006/05/27/%23ubuntu-ports.txt look for TPC and follow the conversation
[20:58] <ivoks> axisys: you might ask this on #ubuntu-ports too
[21:00] <axisys> ivoks: this converstaion seems like how to build an image
[21:01] <ivoks> axisys: but it starts with your problem
[21:01] <Kartagis> ScottK, are you there?
[21:01] <axisys> ivoks: yes..
[21:03] <ivoks> axisys: have you tried with 6.06?
[21:04] <axisys> ivoks: not yet..
[21:05] <ivoks> i have 8.04 on TI UltraSparc II and TI UltraSparc IIIi
[21:06] <ivoks> yes, the first one is almost a decade old :)
[21:06] <ivoks> still, great as slave DNS :)
[21:23] <ScottK> Kartagis: I'm here now.
[21:25] <ivoks> half an hour later 'Kartagis: ScottK where are you?'
[21:25] <ScottK> I guess he went to bed.
[23:44] <Bangers1> I'm doing "sar -A 3 3 | tr -s ' ' ',' > /tmp/tmp.csv" -- BUT it's NOT putting it all on one line.  How can I do that?
[23:44] <Bangers1> A multi generic line CSV isnt very helpful :)