/srv/irclogs.ubuntu.com/2010/07/26/#ubuntu-server.txt

=== TannerF is now known as [12]
=== [12] is now known as TannerF
vaporstun	hi all, i installed ubuntu server and it will not boot. just shows cursor blinking with black background	00:53
=== JanC_ is now known as JanC
vaporstun	when i boot into ubuntu server cd, i can tell it to boot from first hard disk and it works fine	00:53
vaporstun	tried re-installing grub, installing lilo, etc. to no avail	00:53
vaporstun	any ideas?	00:54
vaporstun	oh, i am using a 2.2TB hardware RAID array which is properly recognized by the installer and is formatted as ext4	00:54
doolph	what package do ubuntu 10.04 server has for Qos?? I want to use it as internet gateway	01:03
KurtKraut	doolph, I don't belive this could be achived by just installing a package. You'll have to configure from ground to top a firewall with QoS,	01:04
doolph	do you know where to start?	01:05
KurtKraut	doolph, yes: studying iptables firewall.	01:06
KurtKraut	doolph, you'll spend a great effort reading, studying, trying, but at the end, you'll be able to have the most 'cirurgical' QoS and other complex firewall settings.	01:07
Saturn2888	I upgraded to Ubuntu Lucid and now when logging in, I find it takes at least 50 sec just to authenticate me to user and also a long time to authenticate me as root. Why is this?	02:38
Saturn2888	I /did/ notice something like 60 console-kit-daemons loaded. I wonder if they load up every time I log in	02:42
Saturn2888	yes, it's starting them up every time I login. Second, I noticed if I've already authenticated as root, it doesn't take any time to log me in. Something about entering in a password correctly is triggering the creation of all of these	02:44
aitd	Saturn2888: going on memory here, not at work to check my logs, but I had the same problem and I modified the /etc/sshd_config file, appending "UseDNS no" (unsure of correct syntax. Google it. After doing so, the logins returned to a more normal time period.	03:02
Saturn2888	apt-get remove consolekit did not fix the problem,	03:03
bogeyd6	Saturn2888, which authentication method are you using, PAM, LDAP, DOMAIN?	03:03
Saturn2888	PAM I think. I didn't know you could use Domain or LDAP actually bc I'd rather prefer adding domain in :P	03:04
bogeyd6	kkk	03:04
bogeyd6	heh	03:04
bogeyd6	Saturn2888, change your /etc/ssh/sshd_config file to "UseDNS no" and restart the service using sudo /etc/init.d/ssh restart	03:05
Saturn2888	"UsePAM yes" Could I even add "UseDOMAIN yes" ?	03:05
bogeyd6	second you should be using SSH keys to login with SSH and not passwords	03:05
bogeyd6	https://help.ubuntu.com/community/SSH/OpenSSH/Keys	03:06
Saturn2888	meh, it's not online, it's my home network, and I use PuTTY, and it's a bit of a pain to do the key thing. The 1 security flaw about keys is that someone gets the key and no password is needed.	03:06
Saturn2888	is the DNS thing commented out or should I add it? Second, why didn't I have these issues in Hardy?	03:07
bogeyd6	1 security flaw is anyone sniffs your connect and you lose	03:07
bogeyd6	You should add it	03:07
Saturn2888	What do you mean about sniffing the connection?	03:07
bogeyd6	we need to fix the obvious and lay a good base so we can further troubleshoot, right now you got two big problems	03:07
bogeyd6	Cain&Abel	03:08
Saturn2888	:P	03:08
Saturn2888	login is still slow. I need to restart ssh don't I?	03:09
bogeyd6	really?	03:09
Saturn2888	yeah, still slow	03:09
Saturn2888	http://pastie.org/private/xekad7aqtulkicszgvyuqa	03:09
bogeyd6	i meant "sudo /etc/init.d/sshd restart"	03:10
Saturn2888	wait wait. That's not the whole file	03:10
Saturn2888	ok referesh	03:10
Saturn2888	refresh*	03:10
Saturn2888	it's ssh restart. sshd isn't a service in init.d	03:10
bogeyd6	does the delay occur after you type password?	03:11
bogeyd6	ok now we need to debug	03:12
bogeyd6	ssh -vvv user@server	03:12
bogeyd6	after that we will need to take a look at if you have the update motd script running	03:14
Saturn2888	ok	03:18
bogeyd6	http://www.walkernews.net/2009/04/06/how-to-fix-scp-and-ssh-login-prompt-is-very-slow-in-linux/	03:18
bogeyd6	im out	03:18
Saturn2888	yes	03:18
Saturn2888	after the password. Does it for root too, but does NOT do it when I do sudo su - right after having logged in as root meaning, if I do not authenticate again, I do not have the issue	03:19
Saturn2888	bogeyd6: http://pastie.org/private/1ih8lnt1o9vaal6yuosfaa	03:20
Saturn2888	I also keep seeing domainadmin@grubber:~$ debug2: tcpwinsz: 263536 for connection: 4 at the prompt and can't get rid of it	03:22
bogeyd6	* System restart required *	03:22
bogeyd6	* System restart required *	03:22
bogeyd6	lol	03:22
bogeyd6	LOL	03:22
Saturn2888	bogeyd6: ? Where is that? And it does the password thing in tty	03:23
bogeyd6	dude, "sudo shutdown -r now"	03:23
Saturn2888	or just reboot :p	03:23
bogeyd6	line 144	03:23
Saturn2888	great, well darn. I wish I'd seen that before	03:23
Saturn2888	Wow, the great feat of Windows tech support	03:23
bogeyd6	hopefully, just hopefully	03:23
Saturn2888	yeah	03:24
Saturn2888	I don't think that's it. I'm almost sure it did that after a restart	03:24
bogeyd6	it will solve it, because your next step is to start PAM trouble shooting and changes lots of things	03:24
Saturn2888	?	03:24
Saturn2888	I'm getting a keyboard	03:27
Saturn2888	finally, now it's going down. I lost my DHCP lease in the process....	03:32
Saturn2888	logging in on the host machine itself was fast.	03:34
Saturn2888	but it didn't reboot from terminal	03:34
Saturn2888	only from tty	03:34
Saturn2888	but I can't acces sit	03:34
Saturn2888	access* it	03:34
Saturn2888	aw great.. I restarted the wrong server.	03:37
Saturn2888	that was my router. The reason i can't access it is because I'm at the grubrescue> screen. I dunno what to do.	03:37
Saturn2888	booting now. I need to update-grub then grub install into the compact flash drive I have in there. I must've forgotten. then I'll swap out the USB drive with the Compact flash and should be okay	03:41
Saturn2888	if you're wondering, grub2 wouldn't embed into /dev/md0 so I mad /boot on a USB, it worked bu it's so slow. I ended up moving it all to an IDE Compact Flash drive I had sitting around but must've forgotten some stueps	03:42
bogeyd6	sounds like you got alot of work ahead of you	03:42
Saturn2888	yeah, slow in tty1 for sure	03:42
Saturn2888	well this should be about 1 min (after login) to fix GRUB	03:43
Saturn2888	the rest is logging in being slow. It's not SSH-related	03:43
Saturn2888	rebooting it. hoping this time it'll use the compact flash. Maybe it did last time and grub was like "WTF?" Hmmm. The USB isn't large enough to use anyway.	03:49
Saturn2888	bogeyd6: yay works. Ok, back to this problem	03:50
Saturn2888	I think it has to do with something in /etc/pam.d	04:18
twb	Saturn2888: what are you trying to do?	04:18
Saturn2888	login in both ssh and tty is extremely slow taking 30sec to 1min. I am trying to figure out why. I restored an old snapshot of the /etc/pam.d directory, no fix. I wonder what's causing it. Before, i noticed everytime I authenticated, I got a ton of console-kit-daemon --no-daemon processes which I used apt-get remove consolekit to kill. Then I also noticed that if I logged in as root, hit CTRL D, and did sudo su - before the tim	04:21
qman__	Saturn2888, the default motd in jaunty and newer takes some time to process	04:24
qman__	it checks system load and then checks for updates	04:24
Saturn2888	qman__: oh ok. Where is it? I have it not to load over ssh, but that probably just stops it from being displayed	04:28
qman__	Saturn2888, /etc/motd.d	04:29
Saturn2888	hmm only motd.	04:31
Saturn2888	http://pastie.org/private/sty5kobyzckuhinvbx4yuq	04:31
qman__	hmm, must be the wrong path	04:32
qman__	ah	04:32
qman__	/etc/update-motd.d/	04:33
twb	Saturn2888: what auth methods do you want/try to use?	04:33
Saturn2888	password?	04:33
Saturn2888	superman?	04:33
twb	So you aren't using, say, LDAP, or kerberos?	04:33
Saturn2888	I dunno what you mea	04:33
twb	This is a single-user single-host machine without a network connection?	04:34
Saturn2888	oh oh, no no. I wish. I only found out today it was possible in SSH, didn't even know it was possible for tty	04:34
Saturn2888	I get into it via SSH almost always. it is a single-user machine in that I am the only one using it, but some apps have their own users.	04:34
twb	Oh, you said it's still only taking a minute to boot	04:35
Saturn2888	http://pastie.org/private/sty5kobyzckuhinvbx4yuq	04:35
twb	Unless this is a brand new machine, one minute is good	04:35
qman__	yeah, all those scripts run to generate the motd	04:35
Saturn2888	only? no no, boot is a different issue. I'm talking about login	04:35
Saturn2888	like "Ubuntu 10.04.1 Login: "	04:35
qman__	if any one of them takes more than a couple seconds, you're going to notice it	04:35
Saturn2888	after typing in my pass it's like "let's go to sleep now"	04:35
twb	Saturn2888: You mean the delay is after you enter your username and password?	04:35
qman__	and they do on every system I've installed	04:35
Saturn2888	no	04:35
Saturn2888	qman__: ok. So I check them all?	04:36
Saturn2888	twb: it's the delay after entering a correct password to getting to the prompt	04:36
qman__	move the ones you don't care about out of that directory	04:36
Saturn2888	which ones are which? Why are they there?	04:36
qman__	they generate the info that shows up in the motd	04:36
twb	Saturn2888: then the problem is most likely in your .bashrc, .bash_profile, .profile, or other login scripts.	04:37
qman__	system status, updates, zombie processes, that sort of thing	04:37
qman__	it's a convenience feature	04:37
twb	Checking motd is also a good idea, although I thought those were updated at boot time, not at login time.	04:37
qman__	not sure when it updates, but I notice with fresh installs that logging in takes longer because of it	04:37
qman__	even on fast hardware	04:38
qman__	and even when logging in long after booting has finished	04:38
twb	Shrug.	04:38
Saturn2888	qman__: do I restart something after doing this?	04:39
qman__	no	04:39
Saturn2888	I'm moreso thinking it's in bash then like twb says	04:39
qman__	just log in and see if it fixes the problem	04:39
Saturn2888	didn't fix it	04:39
Saturn2888	well lemme move more things.	04:39
Saturn2888	yeah, no fix from even completely moving the update-motd.d folder	04:40
qman__	ok then, must be something else	04:40
Saturn2888	The only thing I changed in bashrc is something I changed on all my other systems, I added the colors	04:41
Saturn2888	maybe something else went screwy. I want to try copying files from one server to this one and see what happesn	04:41
Saturn2888	happens*	04:41
Saturn2888	hmm. did anything change from hardy to now?	04:43
Saturn2888	in the bash rc files	04:43
qman__	they have changed, but I don't think any of the configuration itself has changed	04:44
qman__	just the order and the comments	04:44
qman__	if your question is whether a hardy .bashrc will work on lucid without issues, the answer is yes	04:44
Saturn2888	ok good	04:45
Saturn2888	lemme try swapping the files now. Unless you guys can point me to some default ones	04:45
twb	Saturn2888: put "date --rfc-3339=ns" at the top of your .bashrc	04:50
twb	Then, when you next log in, you'll know how quickly it reaches that point	04:51
Saturn2888	why's that?	04:51
Saturn2888	ooh cool!	04:51
twb	You can also try something like printf "${BASH_SOURCE[0]}:$LINENO"	04:52
twb	I forget the exact syntax	04:52
Saturn2888	For what?	04:53
Saturn2888	2010-07-25 22:53:50.296067986-05:00 if it's saying it only took 10 sec, that's a lie so this is saying it's probably def bashrc?	04:55
Saturn2888	I had pasted it in the wrong chat :P	04:55
twb	For when you have a dozen such timestamp lines; it prints out which file/line the timestamp belongs to.	04:55
Saturn2888	oh I see, i want that. I dunno how to lookup the syntax for it. Never done bash scripting myself	04:58
twb	go onto #bash and ask	05:00
Saturn2888	haha oh yeah	05:01
Saturn2888	1 min	05:01
Saturn2888	gonna swap out the file first	05:01
Saturn2888	swapping out the .bashrc file didn't fix it either	05:04
Saturn2888	qman__: haha, it's not fixing that way either	05:04
Saturn2888	do you guys know what scripts run when you login? Maybe that's killing it	05:05
twb	Saturn2888: /etc/profile.d	05:13
Saturn2888	nothing in there	05:15
twb	I find that hard to believe	05:16
Saturn2888	twb: http://pastie.org/private/orjqbjlsjizbpw4h9j32pw	05:16
Saturn2888	was there supposed to be stuff in there?	05:16
twb	bash_completion, at least	05:16
twb	Maybe ubuntu moved it somewhere "helpful"	05:17
Saturn2888	hahaha	05:17
=== rmk_ is now known as rmk
Saturn2888	I have some things in /home/user	05:17
Saturn2888	http://pastie.org/private/orjqbjlsjizbpw4h9j32pw	05:18
Saturn2888	twb: Something looks off to me: http://pastie.org/private/3plvoir17bujn2lpljrsha line 19	05:25
Saturn2888	I see something, the if /etc/bash_completion part. That file is in /etc	05:29
=== oubiwann-away is now known as oubiwann
Saturn2888	although, this is commented out for root login	05:29
Saturn2888	twb: Oddly enough, it gives me enough time when it's logging in to switch out the .bashrc file.	05:44
Saturn2888	so it's whatever executes before bash	05:45
twb	.bash_profile	05:47
Saturn2888	ok	05:48
Saturn2888	lemme log back in, I wanna also try changing the password	05:48
twb	Whatever; I'm not hanging on your every word.	05:48
Saturn2888	np np, sorry. I might wanna note ,if I type in my password wrong it does that normally	05:49
Saturn2888	the speed that is	05:49
Saturn2888	http://pastie.org/private/xcbagfsqv9ewytwd47bq	05:50
Saturn2888	oops, that was my fault	05:50
Saturn2888	does bash have anything to do with password authentication?	05:50
Saturn2888	if not, that's the new place to look for this because authenticating this password to change it took forever	05:51
qman__	that's pam	05:51
Saturn2888	back to pam then?	05:52
qman__	probably /etc/pam.d/common-auth	05:52
Saturn2888	What could be the issue now?	05:52
Saturn2888	ok	05:52
Saturn2888	http://pastie.org/private/xcbagfsqv9ewytwd47bq	05:53
qman__	well, there you have it	05:53
qman__	you're attempting to authenticate with winbind	05:54
qman__	it's probably failing	05:54
Saturn2888	oh ok, I am?	05:54
qman__	winbind and ldap	05:54
Saturn2888	wait wait, so I can auth as a samba users?	05:54
qman__	what specifically do you mean?	05:54
Saturn2888	oh, this machine is the LDAP server, now I remember. But LDAP stopped working after the upgrade. Ah ha! so I should comment it out	05:55
qman__	that's not going to solve the problem	05:55
Saturn2888	ok	05:55
qman__	that file is now automatically generated	05:55
qman__	you need to fix or remove ldap	05:55
qman__	and winbind	05:55
Saturn2888	ok	05:56
qman__	otherwise, next time the pam update script runs, it'll be slow again	05:56
qman__	you can comment as a temporary solution	05:56
Saturn2888	oh	05:56
Saturn2888	it's okay. I'll just remake my samba users again	05:56
Saturn2888	I have no clue why it's not working anyway	05:56
qman__	winbind/ldap is a separate thing from samba	05:56
qman__	what exactly are you trying to do?	05:57
qman__	you CAN authenticate samba users via ldap/winbind, but they don't by default	05:57
Saturn2888	or was I trying to do. Does uninstalling those fix pam?	05:57
qman__	might, though you might need to purge them	05:57
Saturn2888	I had this as an LDAP master and my other server as an AD server which got users from LDAP on this machine	05:57
qman__	the reason it's taking so long is it's timing out attempting to authenticate against winbind or ldap, or both	05:58
Saturn2888	one of them is gone, the pam-ldap.so use_first_pass is still there. Commenting it out	05:58
Saturn2888	no fix though	05:59
qman__	you only commented it out in one method	06:00
qman__	common-auth	06:00
qman__	it more than likely exists in others	06:00
qman__	and when pam updates again, it'll uncomment	06:00
qman__	you need to fix/remove ldap	06:01
Saturn2888	pam-auth-update , ran that, didn't fix it though	06:01
Saturn2888	oh oh! fixed	06:01
Saturn2888	I forgot to uncheck samba. weird, at least now I have more control over this	06:01
Saturn2888	Thank you guys so much!	06:14
Saturn2888	I'm heading out	06:14
lwizardl	Hi	06:43
mase_wk	hi lwizardl	06:44
lwizardl	I know Landscape is a payware type of service but does there exist something similar to it for free usage ?	06:44
twb	Depends if you want to babysit both ends	06:44
lwizardl	twb, what do you mean?	06:45
mase_wk	landscape is a service	06:45
lwizardl	well what I am looking for is something that will let me manage everything from a single location	06:46
mase_wk	i think it's proprietary, not entirely sure. But even if it was free, they would still charge for the service.	06:46
lwizardl	I know I could use stuff like cpanel, ebox, webmin, etc to do most of it	06:46
mase_wk	i don't think landscape does what you think it does	06:47
lwizardl	yeah I am not looking for someone else to do the work. more a just a single program versus using shell to handle this, then that, etc	06:47
lwizardl	ah ok	06:47
lwizardl	then I must have been confused	06:47
mase_wk	landscape will let you manage a pool of VM's	06:47
mase_wk	systems etc..	06:47
mase_wk	so packages etc.. on the boxes	06:48
lwizardl	last time I looked at landscape was around the first advertisement date on the server download site	06:48
lwizardl	oh	06:48
mase_wk	cpanel and lanscape do have some crossover in terms of functionality but i think they are fairly different beasts.	06:49
mase_wk	landscape is probably what you want if you ahve a number of servers to manage	06:49
mase_wk	and you want to administer/ provision them automagically	06:49
lwizardl	ok yeah I just have 1 server and 10 domains on it	06:50
mase_wk	you probably don't want ladnscape.	06:50
lwizardl	that I manage manually	06:50
lwizardl	yeah i don't think so	06:50
lwizardl	now if i had like 5-6 servers then yeah	06:50
lwizardl	ok	06:51
lwizardl	thanks	06:51
mase_wk	what are the main issues for you wrt to managing the server via CLI ?	06:51
mase_wk	is it just unfamiliarity or do you need to give other people access to things?	06:52
lwizardl	mase_wk, I am fine with the cli just sometimes people ask for access to this or that	06:57
lwizardl	and then i have to remove it etc	06:57
lwizardl	also would like to be able to have printable charts of usage etc	06:58
lwizardl	there are a few things here and there I don't know how to do but a quick google search usually helps for those	06:59
mase_wk	yeh i understand what you mean. i've had to do something similar with some of my servers however I basically just created an ldap server, and hooked apache/ postfix / everything else up to the ldap server for auth	06:59
mase_wk	and then wrote a web frontend to which ever parts of the ldap records i wanted people to be able to change	07:00
twb	lwizardl: cfengine, puppet, chef, etc. provide a centralized mechanism for managing a network of heterogeneous systems	07:00
lwizardl	yeah what I was doing was more setup a temp ftp and link to those files needed. and then after the login and they got that file i remove the account	07:00
Roxyhart0	hi there, i need to control which user are accesing p2p connection from internet. Somebody have any idea about any tool?	07:00
lwizardl	Roxyhart0, that seems to be a firewall relationship issue. I would look into ipcop	07:01
Roxyhart0	i mean, p2p is open...i just need to control when the user are downloading stuff with copyright issues	07:03
mase_wk	Roxyhart0: thats pretty hard to do unless you know which files have copyright issues in advance	07:03
lwizardl	Roxyhart0, ah ok I thought you was trying to stop all p2p on the network	07:03
Roxyhart0	no yet	07:03
lwizardl	Roxyhart0, that program i listed has a option to block all p2p traffic on the network, and lots of other stuff. I haven't set one up yet but it will be done this week after my network is installed at the location	07:04
twb	mase_wk: the other problem with landscape (apart from being proprietary) is that the client is only available on Ubuntu	07:05
mase_wk	twb: ah ok so it handles stuff at the application level etc.. too ? i dont use landscape ( b/c it's proprietary )	07:05
twb	AFAIK landscape is basically just a cfengine-type system with the server side, and its web ui, being proprietary	07:05
Roxyhart0	thanks...at the moment identify user who download material with copyright issues. It is more "after" the problem as we still are not going to block p2p	07:06
mase_wk	twb: ah ok. fair enough.	07:06
mase_wk	Roxyhart0: how do you handle encrypted p2p ?	07:07
mase_wk	is this for an office / corp environ or something like a wifi hotspot ?	07:08
Roxyhart0	this is a educational institution	07:08
Roxyhart0	an	07:08
mase_wk	k	07:08
Roxyhart0	and i dont know, but the most of the traffic p2p is not encrypted i suppose?	07:09
mase_wk	not really sure i guess it depends on your users. the most useful way i've managed to combat p2p in an office is by heavily shaping everything that isn't a service we actively use	07:11
mase_wk	and offering to download torrents at high speed on behalf of users. For those that want new distro torrents or other legal things	07:11
lwizardl	I don't think so but most p2p today seems to be torrents and most clients are setup to use encryption	07:12
mase_wk	we had alot of encrypt on our network	07:12
mase_wk	hence why i couldn't really stop it per se	07:12
mase_wk	but i could make it annoyingly slow	07:13
mase_wk	and those that want something quick know they can get it quick if it's legal.	07:13
lwizardl	the ipcop program one of my friends used when he did a bunch of network setup installs for a church community center	07:13
lwizardl	and set it to block stuff like kazaa/limewire/frostwire bittorrents	07:14
Roxyhart0	i will check it, i leasen about ipp2p and Dante(as proxy) as well...but doesn do that im looking to do now	07:14
lwizardl	only thing that still works for what he told me was stuff like megaupload etc and he just added those to the blocked sites	07:14
lwizardl	plus that has a option to setup cache for updates so if you have say 10 computers on the network that all need to get updated it only grabs it once from the internet and the other 9 computers grab a cached version from the firewall	07:15
Roxyhart0	mase_wk, how you can do slow the traffic if you cannt detect if it is p2p? i mean encrypted traffic?	07:16
lwizardl	i think its just a modded version of monowall/shorewall but has lots of nice features	07:16
mase_wk	Roxyhart0: i dont' detect it's p2p , i just shape everything and unshape the protocols we actively use, ssh, http, ssl etc..	07:16
Roxyhart0	ah ok...	07:17
mase_wk	the shaping works well because it's not like it doesn't work. so people just assume the torrents are slow	07:17
mase_wk	esp when generic web access etc.. is quick	07:17
mase_wk	so most of the time they just give up	07:18
Roxyhart0	haha...	07:18
mase_wk	if they complain, they usually complain about a legal torrent, in which case i explain that it's shaped etc..	07:18
mase_wk	and then download it for them	07:18
lwizardl	mase_wk, yup but the more tech people will try and use a proxy and see if that will bypass and get faster	07:18
mase_wk	lwizardl: proxy won't help in this scenario unless it tunnels the p2p over http	07:19
mase_wk	which means your downloading it twice	07:19
lwizardl	ah true	07:19
mase_wk	once remotely and then pushing it through the proxy	07:19
mase_wk	which people who run proxy's don't like either	07:20
mase_wk	same applies to an ssh tunnel	07:20
mase_wk	in both cases people who understand it realise it's easier to do it from home :)	07:20
lwizardl	yeah just saying if someone wants it bad enough they will try other options	07:20
lwizardl	yes	07:20
lwizardl	or look for another wifi spot and try with that instead	07:21
mase_wk	yeh just makign it easier to do something else is usually enough	07:22
lwizardl	yup and then if something happens you have tried to stop people from doing it	07:23
lwizardl	me I plan to offer internet lan access in my store and I want to make 100% or as close as possable to stop any p2p downloading	07:24
Roxyhart0	i read dante works with p2p	07:25
lwizardl	and I also want to try and block access to adult related sites which is both something that the ipcop program does and then it has more options that I can make use of also	07:25
Roxyhart0	i will have a look at ipcop	07:26
lwizardl	yeah the only issue I have seen is that your box you install it on will need to have atleast 3 nic cards installs	07:27
lwizardl	so you can set them for how trusted the network you want Red/Blue/Green	07:27
lwizardl	basically Internal network only, external network only, and both	07:28
Roxyhart0	so, the nic with both is going the trusted traffic?	07:30
=== rmk_ is now known as rmk
lwizardl	yeah	07:31
mase_wk	the adult sites can be handled by blocking dns requests to anything other than your dns servers	07:32
lwizardl	and has full access, external only can visit web sites like google etc, and internal only is for computers you need to do other stuff on like your backend server keep track of POS cash registers etc	07:33
mase_wk	or you can use a service like openDNS	07:33
mase_wk	and only allow dns requests to those dns servers	07:33
lwizardl	mase_wk, yeah I was going just display a generic "sorry these types of pages are not allowed on the network"	07:33
lwizardl	and then also disable the usb ports so people can't bring files from home and save them onto the computers to cause problems	07:34
lwizardl	I want to set the machines to do like the computers at my old college did. after you reset the computer it booted a set system and automatically removed any files a user may have left or installed	07:35
Roxyhart0	can you do that with linux? I know with AD form windows ypu can do, i mean reset policies in clients (windows) but i am not sure if it is possible with linux server, could be great	07:36
qman__	lwizardl, should be pretty straightforward if you build an image and set them to netboot it	07:36
qman__	most of the trouble in setting up a netboot system is the persistent data	07:36
lwizardl	qman__, yeah I think that is what they did	07:36
qman__	but since you don't want any that takes that whole bit out	07:36
qman__	in absence of adequate network resources, you could build a custom live CD	07:38
qman__	but then you'd have to burn a new CD every time you patch it	07:38
lwizardl	yeah and that would be a waste	07:39
mase_wk	Roxyhart0: depends if your clients are linux or windows. I don't believe you can give the windows clients those sorts of profiles from a openldap etc.. like you can with AD	07:39
mase_wk	but if you have linux / osx clients you can	07:39
lwizardl	I will look into that because the computers I am running as internet terminals aren't that great of machines but for just net access they work great	07:40
lwizardl	they are running Ubuntu 10.04	07:40
EvilPhoenix	any idea why when I try and add this to iptables it fails: http://starfleet.pastebin.com/gQtgRsfg	07:41
Roxyhart0	yes the most are windows and mac	07:41
lwizardl	I'm using old Compaq IPAQ desktop computers 550mhz with 256mb ram, and a 10gb hdd	07:41
EvilPhoenix	#netfilter says its the kernel	07:41
EvilPhoenix	i'm not sure what to look for to fix it	07:41
mase_wk	Roxyhart0: well the mac ones with auth against openldap. I don't / haven't used windows clients since 98 so i'm not sure how they will deal with an openLDAP server.	07:42
qman__	mase_wk, they won't	07:42
lwizardl	I keep 1 windows desktop around and thats just for editing commercials from my ReplayTV DVR other then that I'm fully Ubuntu only on the other machines	07:43
qman__	you need samba, and some serious hacks	07:43
mase_wk	qman__: ye figured as much	07:43
qman__	and even then it's only partially working at best	07:43
qman__	ugh	07:43
qman__	upgraded to lucid, it picked a resolution out of range	07:43
Roxyhart0	in the most of the suff are ok, but for apply policies...no unless there are some way that we dont know	07:43
lwizardl	I have 1 windows machine, 1 server, 4 terminals, 2 linux pos computer cash registers, 1 office pc, 1 soon to be firewall, and 1 backend server	07:44
lwizardl	and 3 computers that are soon to be installed into MAME arcade cabinets	07:44
mase_wk	can anyone remember where hardy stored it's getty configuration ?	07:45
Roxyhart0	Hi EvilPhoenix, look this page http://www.shorewall.net/OpenVZ.html	07:46
Roxyhart0	"if you see annoying error messages as shown below during start/restart, remove the module-init-tools package from the VE"	07:47
EvilPhoenix	Roxyhart0: the issue isnt with OpenVZ, the issue is iwith the kernel image loaded on it	07:47
qman__	mase_wk, the per-TTY configs are in /etc/event.d	07:48
EvilPhoenix	its not reading the modules necessary to detect ESTABLISHED,RELATED connections on iptables	07:48
mase_wk	qman__: thats it . thanks. don't suppose you can copy/paste your getty line from /etc/event.d/tty1 ? I am de-xenifiying a virtual machine	07:49
qman__	yeah	07:49
qman__	exec /sbin/getty 38400 tty1	07:49
mase_wk	thank you	07:49
qman__	no problem	07:50
qman__	now to figure out why my video mode changed	07:50
qman__	so, for some reason	08:05
qman__	video modes that worked fine in hardy, now show 'out of range' after upgrade to lucid	08:05
qman__	if I remove the modeline it works, but obviously it's low resolution	08:05
qman__	video card is an ATi Rage XL	08:06
qman__	don't tell me I need to install grub2 to get more than an 80x25 terminal :/	08:13
KurtKraut	How can I detect the fastes Ubuntu mirror to set in my sources.list file?	08:27
uvirtbot	New bug: #570456 in qemu-maemo "Unimplemented cp15 register write (c9, c12, {0, 0}) with Ubuntu OMAP image" [Medium,Fix released] https://launchpad.net/bugs/570456	08:37
Roxyhart08	hi there, there are someway to identify users by IP address?	09:25
Roxyhart08	i mean who is using an IP?	09:26
binBASH	Roxyhart08: google for host based authentication	09:27
Roxyhart08	thanks	09:27
twb	It depends on a range of factors, like whether you have control of the network and all the machines that use it.	09:29
uvirtbot	New bug: #609979 in mysql-5.1 (main) "aptitude install mysql-server freezes at dpkg" [Undecided,New] https://launchpad.net/bugs/609979	09:37
kim0	Hey folks .. when is the 10.04.1 release	10:04
jcastro	kim0: https://wiki.ubuntu.com/LucidReleaseSchedule looks up to date	10:25
kim0	jcastro: you're da man :)	10:26
hari__	after getting ip from dhcp server.. and only ubuntu lucid image	10:55
_ruben	hmm, speaking of 10.04.1, my desktop vm just announced itself as 10.04.1 .. that's odd	11:40
=== TREllis_ is now known as TREllis
silentwhisper	good day	12:18
silentwhisper	how can is send mail to jigsneth@yahoo.com	12:18
silentwhisper	how can i send mail to jigsneth@yahoo.com?	12:18
larsemil	silentwhisper: assuming you have a mailaccount, in the to field of your client(webbased or other) you paste the adress. If you prefer you can write something in the subject line. In the usually bigger square you write your email and press send. Some clients require you to press send & recieve button or similar. If your question is about some more server-side stuff like postfix i prefer you alter your question	12:27
Database	Howdy. I recently replaced the motherboard in my Ubuntu Server 10.04 install, and now the network isn't working - is there any way to get Ubuntu to redetect and reinstall the correct drivers without having to reinstall the whole OS?	13:00
Sharcho	Any idea why a fresh install of mysql on a fresh installation of 10.04 gets stuck when running "start mysql"?	13:00
Jeeves_	Database: Do you have an onboard NIC?	13:08
mattt	Database: did your NIC get detected as eth1, or eth2 or something?	13:11
remix_tj	Database: are you sure you nic is invisible? ifconfig -a what says?	13:11
Jeeves_	Database: Your new NIC is probably mentioned in /etc/udev/rules.d/70-persistent-net	13:12
Jeeves_	The old one will still be mentioned there, probably	13:13
Database	hmmm.	13:13
Database	Okay.	13:13
Database	Jeeves_, yes, it's onboard.	13:13
Database	hang on, I'll go check to see if it's detected as eth1.	13:13
mattt	it's probably mapped your old NIC's mac address to eth0	13:13
mattt	not sure what the 'official' fix is, but i usually just grab the new mac address and replace what's mapped to eth0 ... and then remove reference to the newly added device (eth1, eth2, whatever)	13:15
Jeeves_	mattt: Removing that file and rebooting works too :)	13:16
mattt	Jeeves_: does it just recreate it?	13:17
mattt	i like that option better ... cuz when i'm adjusting that file, it's usually over KVM, or something ;)	13:17
Database	okay, so I can just delete /etc/udev.rules.d/70-persistent-net?	13:19
Database	I've found my new NIC is mapped to eth2, so you are right.	13:19
mattt	Database: do the needful	13:20
mattt	:)	13:20
Jeeves_	Database: Removing it is ok. It will be recreated on the next reboot	13:20
Jeeves_	altering it is also ok	13:20
Jeeves_	(and might help you to understand what happens better)	13:20
Database	okay	13:39
Database	It works :D	13:39
Database	Thank you all :)	13:40
mattt	woot!	13:40
uvirtbot	New bug: #610066 in commons-io (main) "Sync commons-io 1.4-3 (main) from Debian unstable (main)" [Wishlist,Confirmed] https://launchpad.net/bugs/610066	14:01
ivoks	alright, got my laptop back	14:03
chrismat	How do I mirror packages between two systems	14:17
chrismat	there was some command to dump the package list	14:17
chrismat	and to get it on the other system	14:17
Pici	!clone \| chrismat	14:17
ubottu	chrismat: To replicate your packages selection on another machine (or restore it if re-installing), you can type « aptitude --display-format '%p' search '?installed!?automatic' > ~/my-packages », move the file "my-packages" to the other machine, and there type « sudo xargs aptitude --schedule-only install < my-packages ; sudo aptitude install » - See also !automate	14:17
chrismat	thanks ubottu	14:20
Pici	You're welcome ;)	14:20
chrismat	!clone	14:21
ubottu	To replicate your packages selection on another machine (or restore it if re-installing), you can type « aptitude --display-format '%p' search '?installed!?automatic' > ~/my-packages », move the file "my-packages" to the other machine, and there type « sudo xargs aptitude --schedule-only install < my-packages ; sudo aptitude install » - See also !automate	14:21
chrismat	!clone	14:21
chrismat	!automate	14:22
ubottu	Ways to automate installation of Ubuntu on multiple machines are described at https://help.ubuntu.com/10.04/installation-guide/i386/automatic-install.html - See also !cloning	14:22
a_ok	I have an active connection to an iscsi target. I have added an extra lun to this target, however the added volume does not show up at the server with the active connection. How can I make it recognice the change without breaking the connection?	15:04
TuxSax	hi all	15:10
ivoks	kirkland: ping	15:10
TuxSax	ping you too!	15:11
TuxSax	I have a question about UEC	15:12
TuxSax	anybody home?	15:12
jiboumans	TuxSax: just go ahead and ask the question; if anyone here has the answer I"m sure they'll share	15:13
ivoks	jiboumans: hi there	15:14
ivoks	long time no see	15:14
jiboumans	ivoks: hey	15:14
ivoks	i know you hate me :)	15:14
jiboumans	ivoks: hah, yeah i dodge the channel ;)	15:14
jiboumans	ivoks: kirkland's boarding a flight right now	15:15
ivoks	ok	15:15
jiboumans	with a little luck he's back online in ~3-4 hours	15:15
TuxSax	I was thinking about setting up our own private could at our company, and I'm trying to understand how exactly can we benefit from it's use	15:15
TuxSax	I still don't get a simple answer to what exactly a could is	15:15
jiboumans	TuxSax: well that depends a lot on your needs i suppose	15:16
TuxSax	* cloud	15:16
TuxSax	let me tell you what I was thinking and you can tell me if I'm in the right direction	15:16
jiboumans	TuxSax: out of curiousity, did you see http://www.ubuntu.com/cloud and cloud.ubuntu.com/ yet?	15:16
TuxSax	we have needs for linux servers, from time to time we need to add a server, or to upgrade/reinstall an old one	15:17
TuxSax	Yes, but the "human readable" information I was trying to confirm doesn't exist there, a lot of buzz but not a real simple answer to what I need	15:17
TuxSax	I was thinking about setting up a initial setup of two or three servers, according to ubuntu documentation a basic cloud consist of one controller and one or more nodes	15:18
TuxSax	so I was thinking about setting up a couple of servers, and be able to add more nodes as I migrate some of the services I already run, to virtual servers, and then some of the hardware that get's free will become new nodes	15:19
jiboumans	TuxSax: yeah, you can set up the management components on a single machine and then add single servers as nodes	15:19
jiboumans	tuxsax: this talks you through it https://help.ubuntu.com/community/UEC/CDInstall	15:20
TuxSax	my question is, if I set up, let's say five nodes servers, does it mean they all run as a kinda big single server sharing their hardware and storage or I've got the wrong concept?	15:20
TuxSax	I don't have problems with the setup or the howto, I know the documents online, I just want to be sure I understand the concept	15:21
jiboumans	tuxsax: if you use s3 and ebs, yes you can consider the storage as one big shared pool	15:22
TuxSax	when they talk about running an "instance", does it mean I can run a LAMP server in one instance, and an FTP server on another instance and so on?	15:22
ivoks	you have multiple servers	15:23
ivoks	it's not one big server, like HPC cluster; it's pile of virtualized servers on top of couple hardware servers	15:24
TuxSax	is an ubuntu cloud comparable to VMWare ESX or Citrix ZenServer hypervisors?	15:24
ivoks	all independet	15:24
jiboumans	TuxSax: UEC is actually exactly comperable to Amazons EC2	15:24
jiboumans	the virtualization is one part of that	15:24
ivoks	it's much more than ESX :)	15:25
TuxSax	what I'm trying to gain is scalability, so if I run 5 virtual servers and let's say I feel a bit of load in the system, I can add another node to share the load?	15:25
TuxSax	YEah, also Amazon EC2 is something I'm trying to understand, it's the same concept	15:25
jiboumans	tuxsax: if your system benefits from more hardware, then yes of course that works	15:26
jiboumans	if you add a node, you can run more virtualized servers basically	15:26
TuxSax	what I didn't get about Amazon was that in the howto they said "remember to stop the running instance, you're paying as long as it's running"	15:26
jiboumans	tuxsax: amazons billing scheme is based on the amount of hours the instance is 'up'	15:26
jiboumans	(idle or not)	15:26
jiboumans	tuxsax: with UEC, your system is in house so you don't have to pay amazon ;)	15:27
TuxSax	but if I run a server to server files for other people, what good can be to close the instance?	15:27
TuxSax	I can't imagine what service could I possibly want to run for only several hours...	15:27
jiboumans	tuxsax: if you're using an instance, obviously you wouldn't turn it off	15:27
TuxSax	anyway, I prefer to run my own cloud, I was just trying to understand Amazon's service	15:28
TuxSax	so, the work load of all the instances is load balanced among all the "available hardware" of nodes?	15:28
Jeeves_	TuxSax: I still don	15:29
Jeeves_	't get it..	15:29
TuxSax	so if my five instances are running a little slow and I add two new nodes, all of them will benefit from this "processing power" addition?	15:29
jiboumans	tuxsax: it's not balanced automatically, no	15:30
TuxSax	mmm, then? who decides on what node every instance runs?	15:30
TuxSax	Jeeves_: what exactly you still didn't get?	15:31
schweppp	hi guys. have a weird problem. virtualbox on win7 host, guest os is ubuntu server. pinging the server on 192.168.0.40 sometimes replies from 192.168.0.41??	15:33
Jeeves_	TuxSax: The whole use/idea behind this Cloud stuff	15:33
TuxSax	Jeeves_: That's exactly what I'm trying to understand too...	15:34
Jeeves_	TuxSax: Please, do keep on trying. Maybe I'll get the picture too, some day :)	15:36
TuxSax	jiboumans was trying to help me out here but he dissapeared on me... ;-)	15:36
jiboumans	TuxSax: sorry, i'm on calls for the next 90 mins	15:37
TuxSax	oh, you're on duty...	15:37
jiboumans	tuxsax: if you're only looking to virtualize your current hardware, you may want to look at just running KVM	15:38
jiboumans	tuxsax: beyond that, and the UEC/EC2 feature list is the best explenation at the moment, a personal cloud may make sense	15:38
TuxSax	you mean to run KVM on top of a cloud?	15:40
jiboumans	tuxsax: no, just kvm on the hardware	16:02
TuxSax	jiboumans: I think that what I actually need is http://www.beowulf.org/overview/index.html	16:06
TuxSax	a cluster that allows me to share the load of a few virtual servers that run on top of the cluster	16:09
TuxSax	and then having the option of adding processing power, if needed, by adding more nodes to the cluster	16:09
TuxSax	I was sure that a cloud could give me the same...	16:10
TuxSax	guess not...	16:10
ivoks	nope	16:11
ivoks	that's hpc cluster	16:11
uvirtbot	New bug: #610103 in migrationtools (main) "package suggests editing an installed non-conffile for normal operation" [Undecided,New] https://launchpad.net/bugs/610103	16:11
ivoks	TuxSax: note that your app would have to be cluster aware	16:13
TuxSax	HPC?	16:13
ivoks	TuxSax: if you plan to have web server, then you just need lots of hardware to set up apache load balancing	16:13
TuxSax	I don't actually mind what exactly to use as long as it gives me what I need	16:14
ivoks	you need to scale load on multiple servers, right?	16:14
TuxSax	right now I have a few servers that run several tasks, not only apache	16:14
TuxSax	a couple of apache servers, a couple of DNS, a network tool server, a backup server, and similar	16:15
ivoks	what's the load? is it network connections or cpu load?	16:15
ivoks	you basically need high availability cluster with load balancing option	16:15
TuxSax	so I was thinking about taking one or two and start a kind of cluster or cloud and move to there those services, and then, once a service is moved from a physical server to a virtual server on the cloud/cluster	16:16
=== dendrobates is now known as dendro-afk
ivoks	doh...	16:16
ivoks	let me guess what you want :)	16:16
TuxSax	I could take the free hardware, reinstall and make it join the cluster/cloud as a new node, thus adding more power to the main system, then I can migrate another services to there and free up another box	16:16
ivoks	you have multiple services?	16:16
ivoks	right?	16:17
TuxSax	and so on, get the idea?	16:17
ivoks	ok, let's say you have 4 servers, each 4GB of RAM and two cores	16:17
ivoks	that means you have 16GB of RAM and 8 cores to use	16:18
TuxSax	yep, that's more or less the kind of servers I have	16:18
ivoks	you can set up cloud on top of that	16:18
TuxSax	but instead of running 4 different ubuntu servers that each one does something	16:18
ivoks	meaning you can have 8 virtual machines, each could have its own core and 2GB of RAM	16:18
ivoks	(more or less)	16:18
ivoks	you could have 16 servers, with each 512MB of RAM	16:19
ivoks	or you could mix	16:19
TuxSax	ok, but what you're saying is that the load distribution is kinda static and predecided	16:19
ivoks	two servers for DNS, each with 256MB of RAM	16:19
ivoks	exactly	16:19
ivoks	nothing would scale automaticaly	16:19
ivoks	and beowulf isn't for DNS/web/etc...	16:19
ivoks	it's for computing	16:19
TuxSax	on what stage do I have to decide? when creating a new instance?	16:19
ivoks	instance = running operating system	16:20
ivoks	so, you could do with it what ever you want	16:20
ivoks	having cloud for just scaling apache on multiple machines is pointless overhead	16:20
AndyGraybeal	is there documentation on Ubuntu-Server 10.04 for RAID... i see this page: https://help.ubuntu.com/community/Installation/SoftwareRAID <--- which is for ubuntu 9.10 -- is htis also applicable to 10.04?	16:20
ivoks	think of cloud as a pool of hardware	16:21
ivoks	if you have 4 hardware servers, you could set up multiple machines on top of it... 4, 8, 16, ... 256	16:21
jiboumans	smoser, ping	16:21
ivoks	but of course, 256 virtualized machines won't work as good as just 4, since hardware is limited	16:22
TuxSax	but it has to be a multiple of a total	16:22
smoser	jiboumans, here.	16:22
jiboumans	smoser: hi, you're tough to get a hold of	16:22
ivoks	no, it can be any number :)	16:22
smoser	this morning has been a bear	16:22
ivoks	TuxSax: you know what KVM is?	16:22
ivoks	or vmware	16:22
jiboumans	smoser: sorry to hear =/ is now a good time for a call, or should we try later in the week?	16:22
TuxSax	yeah, just played around a bit with it on my PC	16:22
ivoks	vmware manages multiple virtualized machines, right?	16:22
smoser	now is good. jiboumans	16:23
ivoks	so you can have 2,3,4... virtualized machines on one server	16:23
TuxSax	yep	16:23
ivoks	so, cloud would be the same thing with one exception	16:23
* ccheney brb, rebooting irc box		16:23
jiboumans	smoser: cool, join me on mumble?	16:23
smoser	y	16:23
ivoks	it wouldn't be one server, but 4 or how many of them you have	16:23
TuxSax	but when you run an instance from the cloud, what really happens? the server runs a kvm session on one of the nodes?	16:24
ivoks	exactly	16:24
TuxSax	well, not exatly KVM I guess	16:24
ivoks	it's kvm	16:24
TuxSax	what runs in beneath?	16:24
TuxSax	kvm itself?	16:24
TuxSax	nice	16:24
ivoks	kvm is virtualization layer	16:24
TuxSax	but I don't have to care much about it, right?	16:24
ivoks	bellow it there's eucalyptus that decides where to run what	16:25
TuxSax	the cloud manager makes it happen	16:25
ivoks	right	16:25
TuxSax	kvm is the so called "hypervisor" ?	16:25
ivoks	yes	16:25
ivoks	now i'm sorry, but i have to go	16:25
TuxSax	fine, so what the cloud actually gives me is the ease of managing?	16:25
ivoks	:)	16:25
TuxSax	ok, thanks for your info!	16:26
ivoks	it merges all your hardware	16:26
ivoks	this isn't something you can achive with kvm by it self	16:26
ivoks	you have pool of ram, cpus, etc...	16:26
ivoks	and it has potential to automaticaly start an instance once your load is high	16:27
TuxSax	so it does merge the sum of all hardware, so if I move a service to a new cloud instance and I get a free server, I can add a new node and gain more power to the pool?	16:27
ivoks	but i'm not that much into cloud to know if that's available now	16:27
* ccheney back		16:27
ivoks	yes	16:27
TuxSax	cool, then it does give me what I planned!	16:27
TuxSax	you've been a real aid, ivoks!	16:28
TuxSax	now it all makes sense	16:28
TuxSax	10x a lot	16:28
ivoks	(i have never used cloud in my life)	16:28
ivoks	:D	16:28
TuxSax	I'll try and tell you how it feels... ;_0	16:28
ivoks	more power = more available cpus and ram	16:29
ivoks	it won't automaticaly add cpus to instances :)	16:29
=== dendro-afk is now known as dendrobates
hggdh	Daviey: morning/late afternoon	16:46
Daviey	hggdh, Hello sir, good trip back?	16:47
hggdh	Daviey: fantastic, slept about 8 hours of the 10-hours flight :-)	16:47
Daviey	\o/	16:47
hggdh	Daviey: you were going to upload a new euca 2.0 -- did you?	16:47
AndyGraybeal	anyone want to help a newb through raid configure in 10.04? i did this back in 8.10, i got it to work without much pain.	16:48
Daviey	hggdh, Hmm.. not today.. nothing urgent changed.	16:48
AndyGraybeal	i can either start after i install the server or before i install the server, i got 5 drives, 4 of which need to be part of the array, and the first 1 is the boot drive.	16:48
AndyGraybeal	i got 4 300gb drives, and ultimatly i'd like to get like 10 raid, w/ 500gb	16:49
hggdh	Daviey: OK. I will go back to the basics, and will start trying it on Maverick, from all-in-one	16:49
Daviey	AndyGraybeal, Install time is much easier IMO.	16:49
Daviey	hggdh, Good idea.. i'm doing the same	16:49
AndyGraybeal	Daviey: okay thank you for the insight. i'm a little confused by the partitioner program. i go to "Configure Software RAID" and it says i's gonna change the partitions on the first drive (which is not necessarily what i want, i think atleast) is this correct procedure?	16:50
AndyGraybeal	i want the first drive not in the array, but the next 4 in the array	16:51
Cubber	for some reason I cannot get any of my scripts that use sendmail to send mail when they are run via cron	16:51
Cubber	they work perfectly when ran at the CLI	16:51
Daviey	AndyGraybeal, it's a two stage process... Ignore the first drive to start with.. and create a new raid partition on the others.	16:52
Daviey	then you get the raid device as a block device (ie, the installer sees it as a disk)	16:52
AndyGraybeal	Daviey: thank you agian,	16:53
Cubber	a basic script I am trying to test with to send the mail, if I use a proper email it works from CLI not cron, cron will run the script and do the commands within however it just wont send the mail and there is no log of an attempt in any of the /var/log/mail.* files	16:54
Cubber	http://pastebin.com/ryuup4UB	16:54
Cubber	00 5 * * * bash /scripts/test >/var/log/backup/test >/dev/null 2>&1	16:55
Cubber	that is the entry in crontab	16:55
Cubber	these scripts work perfectly on my gentoo server	16:56
TuxSax	Cubber: when running a script from crontab you need to be sure the full paths for all commands are exact	16:58
Cubber	so sendmail for instance	16:58
Cubber	interesting that they work fine in gentoo as is but I will edit it with the full path to sendmail and try	16:58
hggdh	Daviey: \o/ we now have access to ppa.lp.net under tamarind!	16:58
TuxSax	Cubber: if you run the /scripts/test script and on the script it says "command bla bla bla" it should be "/path/to/command bla bla bla"	16:59
TuxSax	what cron program you use on gentoo? vixiecron?	16:59
Cubber	yes	17:00
TuxSax	perhaps the difference comes from there	17:00
Cubber	probably thank you for the info I will test	17:00
Cubber	looks like sendmail is in /usr/sbin/sendmail	17:00
Daviey	hggdh, Yes! I was going to say - but i saw they CC'd you \o/	17:00
Daviey	Makes life easier, eh? :)	17:01
hggdh	indeed it does :-)	17:01
\sh	hey hggdh...	17:01
TuxSax	I always put all the commands with full paths under a variable on my scripts, so when calling them I don't need to worry	17:01
hggdh	\sh: cheers, how are you?	17:01
\sh	hggdh: fine so far...a bit tired after a hard weekend of datacenter work (moved 4 racks from one city dc to another city dc)	17:02
TuxSax	so for sendmail I'd set a variable called MAILER=/usr/sbin/sendmail or whatever mailer is used	17:02
TuxSax	then later on on the script I'd use $MAILER bla bla bla	17:02
hggdh	\sh: and I had a bout of insomnia last week, and netted just under 20 hours of sleep in 7 days...	17:03
TuxSax	ok, I'm outta here, see ya all	17:03
AndyGraybeal	okay.. i got it.. it was confusing because i have to first 'partition' the drives... geesh	17:05
\sh	hggdh: oh but looks like that I have to force myself to not sleep tonight, because I have to deploy some machines till tomorrow morning...	17:05
hggdh	\sh: then... Welcome to the Sleepless Club. We are glad to have you here, and all that ;-)	17:06
\sh	hggdh: btw...the tool I talked about is released...launchpad.net/dc2	17:06
hggdh	\sh: looking at it now	17:06
\sh	hggdh: on my blog there are more informations...and on dc2.sourcecode.de	17:07
hggdh	\sh: cool, thank you. Any intention of packaging?	17:07
\sh	hggdh: more docs are coming this and next week when I'm back on normal sleep schedule	17:07
hggdh	heh	17:07
AndyGraybeal	Daviey: thank you for the hand holding.	17:09
\sh	hggdh: it's not ready for packaging, but we are planning to finalize V1.0 and to do packaging for debian and ubuntu,we need some more deps packaged before we can do the real upload :)	17:09
hggdh	\sh: no prob. I am really interested in checking it	17:09
Daviey	AndyGraybeal, awesome	17:10
\sh	hggdh: people from the FAI group already got some hints...http://michael-prokop.at/blog/2010/07/08/report-from-fai-developer-workshop-072010/ <- this is the report from the FAI developer workshop there are some infos about the tool	17:10
hggdh	\sh: so I understand you will eventually deploy FAI/(DC)^2 at work?	17:13
\sh	hggdh: it's already deployed here at my company	17:13
\sh	hggdh: it's already working since more then a year :)	17:14
hggdh	\sh: heh. Feedback from the field is good, I guess :-)	17:14
\sh	hggdh: I already have a lot of feedback several admins from dif. companies do want to have this...they are eager to test it :)	17:15
hggdh	\sh: cool. I will bring this up here then	17:16
silent1mezzo	Hey, I just installed Ubuntu Server onto an old server. Everything worked fine until I restarted. Now I'm getting this error: "I9990301 Hard disk drive boot sector error" and then "I9990305 Operating System not found	17:43
RoyK	silent1mezzo: might be there's a bad sector or two on it...	17:51
silent1mezzo	is there a way to test this from Ubuntu?	17:52
RoyK	silent1mezzo: boot on the cd and use badblocks	17:52
silent1mezzo	ok thanks	17:53
RoyK	if the system is just installed, using _destructive_ read/write might be a good idea	17:53
RoyK	just keep in mind you'll need to reinstall afterwards	17:53
silent1mezzo	whats _desctruve_read/write?	17:53
RoyK	but boot on the live (desktop) cd - I don't know if badblocks is on the server cd	17:54
RoyK	silent1mezzo: it overwrites data on the harddisk to check for bad sectors	17:54
RoyK	non-destructive testing may not find errors that easily (or at all)	17:55
silent1mezzo	ok	17:55
silent1mezzo	thanks	17:55
RoyK	but destructive doesn't mean it messes with your hardware	17:55
RoyK	that is - if you have data on a drive that you want out, don't do anything like that - just get the drive out and as fast as possible and don't write to it, but then, this doesn't seem to be the case - right?	17:56
silent1mezzo	aye	17:57
silent1mezzo	this is, I've formatted my disk, installed the os and tried to boot it	17:57
RoyK	how much memory do you have in the box?	17:57
silent1mezzo	8gb	17:58
RoyK	oh - that'll suffice :)	17:58
silent1mezzo	lol	17:59
RoyK	what sort of drive is this?	17:59
silent1mezzo	older 3.5" sata drive...don't remember the make/model	17:59
RoyK	ok - try badblocks	17:59
silent1mezzo	ok, will do	17:59
RoyK	man badblocks once you're running on the live cd	18:00
silent1mezzo	aye, I'll have to download/burn the desktop cd first	18:00
RoyK	k	18:00
silent1mezzo	thanks RoyK	18:02
RoyK	np :)	18:02
RoyK	mind, if the memory isn't ECC, it might be a good idea to run memtest86 to see if something's wrong	18:03
RoyK	well, even if it _is_ ECC, if it's an old server....	18:03
Jinxed-	I have been trying to get simple vlan trunking working for the past 5 hours, and thus far all i have managed to do is make my wireless "not managed"	18:05
Jeeves_	Jinxed-: :)	18:05
Jinxed-	note: currently im using the desktop version, not server edition	18:05
Jinxed-	I installed vlan	18:05
Jeeves_	Jinxed-: And that's about it :)	18:05
Jinxed-	and set net.ipv4.ip_forward = 1	18:05
Jinxed-	I also edited the /etc/network/interfaces configuration	18:06
Jeeves_	add interfaces in /etc/network/interfaces like so 'auto ethX.<vlanid>'	18:06
Jeeves_	And that should be it.	18:06
Jinxed-	Here is my current config: http://paste.ubuntu.com/469425/	18:07
Jinxed-	a diagram of my simple setup: http://imgur.com/MJm6t	18:08
Jinxed-	two laptops on different vlans and one laptop to route between them	18:08
RoyK	what sort of switch is this?	18:08
RoyK	there are several trunking protocols - does yours support 802.1q?	18:09
Jeeves_	'auto eth1'	18:09
Jeeves_	that shouldn't be there, you're not configuring that one	18:09
Jinxed-	cisco	18:09
Jinxed-	2960	18:09
RoyK	yeah, but cisco what?	18:09
RoyK	any letters after that?	18:10
RoyK	cisco has lots of different software versions	18:10
Jeeves_	RoyK: Cisco2960 is a normal switch	18:10
Jeeves_	the 2960 is new, and supports dot1q	18:10
RoyK	ok	18:10
Jinxed-	I already checked the config on the switch it is setup for 8021q	18:10
RoyK	ok	18:10
RoyK	just asking	18:10
Jinxed-	haha no i appreciate it	18:10
Jeeves_	Jinxed-: And what interfaces do you get on the machines?	18:11
Jinxed-	Not sure I understand your question	18:11
RoyK	on ubuntulap, what does 'ifconfig' say?	18:11
Jeeves_	Jinxed-: What RoyK says :)	18:11
Jinxed-	http://paste.ubuntu.com/469426/	18:12
RoyK	no vlan interfaces are up there	18:12
Jeeves_	Nope	18:13
RoyK	an interface can be in 802.1q mode or non-802.1q mode - not both	18:13
Jeeves_	Jinxed-: And what happens if you type 'ifup vlan10' ?	18:13
RoyK	imho eth1 shouldn't be up at all	18:14
RoyK	perhaps that's what's blocking it	18:14
Jeeves_	RoyK: That's true.	18:15
Jeeves_	But it may be up	18:15
Jeeves_	I mean, it's allowed to have a untagged interface	18:15
RoyK	if an interface is in 802.1q mode, it will need vlan tagging. if you send untagged frames to a switchport defined as a trunk port, the frames will be discarded	18:16
Jinxed---	sorry that last command got me kicked off	18:16
RoyK	(OTOMH)	18:16
Jeeves_	RoyK: That's not true.	18:16
Jeeves_	You are allowd to configure an native vlan on a trunk	18:16
RoyK	Jeeves_: what should the switch do with those packages then? send them to all vlans?	18:16
Jinxed---	I have not seen anything after when Jeeves asked what happens if you type ifup vlan10	18:16
silent1mezzo	RoyK: it was the disk :P I just tossed it and installed it onto a new disk...Runs fine	18:17
Jeeves_	untagged packets will be send on the native vlan	18:17
Jinxed---	My wireless device is now not managed again	18:17
RoyK	silent1mezzo: :)	18:17
Jinxed---	and it said	18:17
Jeeves_	Jinxed-: You're not trying to do vlan's over your wireless interface, are you?	18:17
Jinxed---	Set name-type for vlan subsystem should be visible in /proc/net/vlan/config	18:17
Jinxed---	added vlan with vid == 10 to IF -:eth1:-	18:18
Jeeves_	Jinxed-: That's ok.	18:18
Jinxed---	nope	18:18
Jeeves_	That means that it created eth1.10 for you	18:18
Jeeves_	(so it works)	18:18
RoyK	Jinxed---: what is eth1 - the wired or the wireless interface?	18:18
RoyK	silent1mezzo: remember to remove those supermagnets from the dead drive :D	18:19
silent1mezzo	most definitely, already got a use for them	18:20
J3ckyl	wired	18:22
uvirtbot	New bug: #610150 in mysql-5.1 (main) "autocompletion doesn't work" [Undecided,New] https://launchpad.net/bugs/610150	18:22
Jinxed---	RoyK how do I tell?	18:23
RoyK	J3ckyl: why do you have an IP set on eth1?	18:23
J3ckyl	Royk, why do I? or why do you?	18:23
RoyK	J3ckyl: lshw will show you the mac address assigned to each interface iirc, and ifconfig will show the mac address	18:23
RoyK	J3ckyl: sorry - wrong guy	18:24
Jinxed---	ok	18:26
Jinxed---	checking	18:26
RoyK	Jinxed---: on most laptops I've been out for, eth1 is _usually_ the wireless card	18:28
RoyK	can't be sure, though - the actual numbering is defined by udev	18:28
RoyK	that is - wait - the wireless shouldn't really be ethx, it should be wlanx or something	18:29
RoyK	eth0 for the wired one	18:29
RoyK	but then again - check /etc/udev/rules.d/70-persistent-net.rules	18:30
Jinxed---	ok im confused what am i looking for	18:30
RoyK	Jinxed---: can you pastebin /etc/udev/rules.d/70-persistent-net.rules and the 'lshw' output?	18:31
RoyK	there's another potential issue I've ran across - that the GUI network manager overrides /etc/network/interfaces	18:32
RoyK	the latter isn't meant to be used on a desktop	18:32
RoyK	and iirc you're running this on a desk- or laptop setup, right?	18:33
Jinxed---	yeah	18:35
Jinxed---	ok i got back online with my ubuntu laptop	18:35
Jinxed---	about to send links	18:35
Jinxed-	hello	18:35
Jinxed-	http://paste.ubuntu.com/469435/	18:35
RoyK	Jinxed-: if you can use something else than ubuntu desktop for this, it'll help a lot	18:35
Jinxed-	http://paste.ubuntu.com/469434/	18:35
Jinxed---	that is what this computer is for	18:35
Jinxed---	but it's hard to pastebin the files not on the ubuntu laptop	18:36
RoyK	Jinxed---: wlan0 and eth1 has the same mac address, so that's your wireless interface	18:36
RoyK	eth0 is wired	18:36
Jinxed---	ok, so in the /etc/network/interfaces	18:37
Jinxed---	i should change everything that is eth1 to eth0	18:37
* RoyK has never used VLAN tagging with linux		18:37
RoyK	Jinxed---: try	18:37
Jeeves_	Jinxed---: Yes, that would work better, I think :)	18:38
RoyK	Jinxed---: looks ok	18:38
Jinxed---	hmm	18:41
Jinxed---	ok now when i do ifup	18:41
Jinxed---	it kills my wired connection	18:41
Jinxed---	guess it's time to ping	18:41
RoyK	Jinxed---: pastebin the config again	18:41
\sh	RoyK: vlan tagging is easy	18:41
RoyK	\sh: not my problem - Jinxed--- is the one trying :)	18:42
Jeeves_	\sh: Yes, it it. But not if you're trying to trunk on your wireless :)	18:42
Jinxed---	everyone keeps telling me it's easy	18:43
Jinxed---	im not trying to do my trunk on wireless	18:43
\sh	Jeeves_: well, I wonder why someone wants to do that	18:43
Jeeves_	Jinxed---: It is easy. If you understand what the hell you're doing ;)	18:43
\sh	apt-get install vlan	18:43
\sh	vi /etc/network/interfaces	18:43
Jinxed---	did that	18:43
\sh	auto vlan<vlanID>	18:43
Jinxed---	did that	18:43
Jinxed---	did that	18:43
\sh	iface vlan<vlanID> inet static	18:43
Jeeves_	\sh: Barking up the wrong tree here :)	18:43
\sh	address bla	18:43
RoyK	Jinxed---: I didn't say it's easy - just pastebin the config again	18:43
\sh	netmask foo	18:44
Jinxed---	ok	18:44
\sh	gateway foobar	18:44
Jinxed---	one sec	18:44
Jeeves_	\sh: I guess we're just too smart ;)	18:44
\sh	vlan_raw_device <your real trunking interface like eth0 bond0 or whatever>	18:44
RoyK	\sh: we have the docs as well	18:44
Jeeves_	\sh: Shall we create #ubuntu-server-experts and charge admission fees? :P	18:44
\sh	Jeeves_: why? it's written all over the googlenet...e.g. http://www.mysidenotes.com/2007/08/17/vlan-configuration-on-ubuntu-debian/ ;)	18:45
Jinxed-	http://paste.ubuntu.com/469438/	18:45
\sh	direct hit..."ubuntu vlan"	18:45
RoyK	Jinxed-: still eth1	18:45
Jeeves_	\sh: Why? To make money, duh :P	18:46
\sh	Jinxed-: you have to s/\-/\_/g	18:46
Jinxed-	opps	18:46
\sh	on all vlan_raw_devices lines	18:46
Jinxed-	old pastebin	18:46
Jinxed-	http://paste.ubuntu.com/469442/	18:46
Jinxed-	current interfaces	18:46
\sh	then you need to check your switch that it has all allowed vlans for trunking	18:46
\sh	Jinxed-: again - instead of _	18:47
RoyK	Jinxed-: and as \sh said, s/-/_/g	18:47
RoyK	:%s/-/_/g	18:48
RoyK	:þ	18:48
Jinxed-	http://paste.ubuntu.com/469446/	18:48
Jinxed-	current trunk setup	18:48
\sh	http://paste.ubuntu.com/469447/ <- thats a vlan trunk interface with source based routing (or policy based routing)	18:48
RoyK	Jinxed-: did you change - to _ ?	18:48
Jinxed-	in what file	18:49
\sh	Jinxed-: /etc/network/interfaces	18:49
\sh	Jinxed-: and I don't see any vlan config on your switch just the already enabled vlan 1	18:50
\sh	which is a default	18:50
RoyK	Jinxed-: sh vl	18:51
RoyK	Jinxed-: conf vl ....	18:52
Jinxed-	http://paste.ubuntu.com/469448/	18:52
RoyK	can't see any tagged ports there	18:53
Jinxed-	that first paste was just a detailed look at interface f0/4	18:53
Jinxed-	if you look	18:53
Jinxed-	f0/1 is vlan 20	18:53
Jinxed-	sorry	18:53
Jinxed-	f0/1 is vlan 10	18:53
Jinxed-	f0/2 is vlan 20	18:53
Jinxed-	f0/3 is vlan 30	18:53
RoyK	sure, we can read	18:53
RoyK	but I don't see any trunk ports	18:53
Jinxed-	:/	18:53
Jinxed-	the trunk port doesn't show in a show vlan	18:54
RoyK	they don't?	18:54
Jinxed-	it is f0/4	18:54
Jinxed-	you will notice it is missing	18:54
Jinxed-	it is subtle	18:54
RoyK	anyway - did you change - to _ in /etc/network/interfaces?	18:54
\sh	Jinxed-: on f0/4 there is no alloweded vlan	18:54
Jinxed-	http://paste.ubuntu.com/469446/	18:55
Jinxed-	Trunking VLANs Enabled: ALL	18:55
Jinxed-	RoyK, yes	18:55
RoyK	ok	18:55
\sh	oh my f...god..what switch is that? ;)	18:55
Jeeves_	Jinxed-: Can you copy an show running config please?	18:55
Jinxed-	yep	18:55
\sh	with tcpdump you can even see tagged packages btw	18:56
RoyK	\sh: cisco 2960	18:56
Jinxed-	http://paste.ubuntu.com/469450/	18:56
Jeeves_	Ok	18:56
Jeeves_	only port 1 and 4 can be trunks	18:57
\sh	Jinxed-: you know the difference between access and trunk?	18:57
Jinxed-	yeah	18:57
RoyK	I don't think you can mix access and trunk	18:57
Jinxed-	switchport mode access will make the port on a vlan	18:57
\sh	Jinxed-: what you configured is native vlan 10 on f0/1 and no alloweded trunked vlans	18:57
Jinxed-	switchport mode trunk makes the port a trunk	18:57
Jeeves_	\sh: If you configure no vlans on a trunk, it accepts all.. Right?	18:58
Jinxed-	eh sorry im not using f0/1	18:58
Jinxed-	you can ignore it	18:58
\sh	Jeeves_: not on our switches	18:58
Jeeves_	And indeed 'switchport mode trunk' is needed	18:58
Jeeves_	On fa0/1 and fa0/4	18:59
\sh	switchport mode access	18:59
\sh	Puts the interface (access port) into permanent nontrunking mode and negotiates to convert the link into a nontrunk link. The interface becomes a nontrunk interface regardless of whether or not the neighboring interface is a trunk interface.	18:59
\sh	http://www.cisco.com/en/US/docs/switches/lan/catalyst2960/software/release/12.2_25_see/configuration/guide/swvlan.html#wp1200245	18:59
\sh	table 12-14 Layer 2 interface modes	18:59
Jinxed-	ok	19:00
\sh	and I do think that cisco "switchport mode access" rules over "trunk"	19:00
Jinxed-	I just got rid of all the config on f0/1	19:00
\sh	Jinxed-: if you want to have a default vlan for untagged packages on a trunk port, you need to set switchport trunk native vlan <native vlan id>	19:00
RoyK	Jinxed-: your linux box is on fa0/4?	19:00
Jinxed-	current setup: http://i.imgur.com/MJm6t.png	19:00
Jinxed-	yeah	19:01
RoyK	Jinxed-: ok, pastebin /etc/network/interfaces and 'sh run'	19:01
\sh	Jinxed-: your config needs to be : interface fastethernet 0/1 \n switchport trunk allowed vlan 10	19:01
\sh	e.g.	19:01
EtienneG	hey guys! libpam-ldap and libnss-ldap ... are they still being looked after by the server team?	19:02
Jinxed-	\sh, by default with cisco all vlans are allowed on a trunk line	19:02
EtienneG	I see zul triaged my bug earlier, just wondering who I should poke ... /me whistle innocently	19:02
zul	not me :)	19:02
\sh	Jinxed-: yeah I see that	19:02
Jinxed-	if I do that only vlan10 will be allowed, (not vlan 20, 30.. etc)	19:02
AndyGraybeal	should i partition using GUID or MBR (this is a raid array)	19:02
zul	EtienneG: but yes I think they are still being maintained by us...you might want to poke mathiaz	19:03
\sh	Jinxed-: anyways, it works here with the setup I gave you on the linux side	19:03
Jinxed-	interfaces	19:03
Jinxed-	http://paste.ubuntu.com/469453/	19:03
\sh	Jinxed-: you don't need to bring up eth0	19:04
\sh	via auto eth0	19:04
Jinxed-	show run	19:04
Jinxed-	http://paste.ubuntu.com/469455/	19:04
RoyK	Jinxed-: what does 'ifconfig' say?	19:04
Jinxed-	\sh, ok taking it off	19:04
Jinxed-	ifconfig	19:05
Jinxed-	http://paste.ubuntu.com/469456/	19:05
\sh	Jinxed-: and you loaded the kernel module 8021q	19:05
\sh	Jinxed-: and installed the vlan package	19:05
RoyK	\sh: shouldn't that be loaded automatically when configuring a vlan?	19:06
EtienneG	zul, thanks zul. Our friend mathiaz is offline :(	19:06
Jinxed-	I did sudo modprobe 8021q	19:06
Jinxed-	and installed the vlan package	19:06
EtienneG	zul, but no harm, there is no rush	19:06
RoyK	Jinxed-: can you ping anything now? overthe vlans?	19:06
Jinxed-	no	19:07
RoyK	Jinxed-: lsmod \| grep 8021q	19:07
Jinxed-	i can ping from the laptop to itself, and both vlans on the switch	19:07
Jinxed-	but not the other laptop	19:07
unit3	Hey all, can someone tell me where the apt mirror prevu uses is configured?	19:07
Jinxed-	same for the other laptop	19:07
\sh	RoyK: to be sure it's there I'm including it in /etc/modules all the time	19:07
Jinxed-	8021q 22232 0	19:08
Jinxed-	garp 7689 1 8021q	19:08
RoyK	ok	19:08
RoyK	hm. config looks right	19:09
RoyK	\sh: what do you think?	19:09
Jinxed-	(also I have both firewalls off on the laptops)	19:10
RoyK	is there a way to show vlans?	19:10
Jinxed-	yeah	19:10
RoyK	as in 'sh vlan' the linux way?	19:10
Jinxed-	do you want me to show vlans on the switch?	19:10
RoyK	\sh: any idea?	19:10
RoyK	Jinxed-: just pastebin all config once more - it looks ok to me, but then, others may have input	19:11
Jinxed-	ok	19:12
Jinxed-	network interfaces: http://paste.ubuntu.com/469435/	19:13
Jinxed-	computer hardware: http://paste.ubuntu.com/469434/	19:13
Jinxed-	trunk port f0/4 info: http://paste.ubuntu.com/469446/	19:13
Jinxed-	cisco show vlan: http://paste.ubuntu.com/469448/	19:13
Jinxed-	/etc/network/interfaces: http://paste.ubuntu.com/469453/	19:13
Jinxed-	cisco show run: http://paste.ubuntu.com/469455/	19:14
RoyK	Jinxed-: Access Mode VLAN: 1 (default) on f0/4	19:14
Jinxed-	ifconfig: http://paste.ubuntu.com/469456/	19:14
RoyK	Jinxed-: what happens if you ifdown eth0? do all vlan devs go down?	19:14
RoyK	or ifconfig eth0 down	19:15
Jinxed-	all the vlans go down as in when i type ifconfig	19:15
Jinxed-	they aren't there any more	19:15
Jinxed-	cisco switch has link lights still	19:16
RoyK	ok	19:17
RoyK	just curious	19:17
RoyK	probably not the right thing to do, then :)	19:17
Jinxed-	ok, so I can ping from my laptop that is 10.1.10.11 to the vlan20 which is 10.1.20.1	19:18
RoyK	Jinxed-: switchport trunk encapsulation dot1q	19:18
RoyK	tried that?	19:18
Jinxed-	sorry laptop was 10.1.20.11	19:18
Jinxed-	not directly (not possible), but i double checked to make sure it was configured for 802.1q	19:19
Jinxed-	ok, so i can ping from the laptop (10.1.20.11) to the vlan20 on ubuntulaptop (10.1.20.1), but I can't hit vlan30 (10.1.30.1) on the ubuntu laptop	19:20
RoyK	Jinxed-: show version	19:20
RoyK	on the cisco	19:20
Jinxed-	so ubuntu isn't forwarding the packets	19:20
RoyK	netstat -rn	19:20
Jinxed-	Cisco IOS Software, C2960 Software (C2960-LANBASEK9-M), Version 12.2(44)SE6, RELEASE SOFTWARE (fc1)	19:21
RoyK	Jinxed-: ok, so from the trunk, you can ping machines at boths VLANs?	19:22
Jinxed-	netstat: http://paste.ubuntu.com/469465/	19:22
Jinxed-	yes	19:23
Jinxed-	from ubuntu laptop i can ping both external laptops on vlan 20,30	19:23
Jinxed-	i can also ping the ip addresses of both vlans on the cisco device	19:24
RoyK	sysctl net.ipv4.ip_forward	19:24
Jinxed-	net.ipv4.ip_forward = 1	19:25
Jinxed-	so both the ubuntu laptop and switch can hit everything	19:25
RoyK	check sysctl -a \| grep forwa	19:27
RoyK	see if packets are forwarded at the device given	19:27
RoyK	_mc is just multicast - normally not needed	19:28
Jinxed-	looks like they are mostly forwarded	19:29
RoyK	Jinxed-: also, if this is on a private net (rfc1918 addresses) you will ned NAT to reach the internet	19:29
RoyK	or anything != RFC 1918	19:29
Jinxed-	RoyK, i don't want to get online	19:30
RoyK	!nat	19:30
Jinxed-	(at least yet)	19:30
RoyK	can you ping from the client to the server you're on?	19:30
Jinxed-	not sure what you mean	19:31
RoyK	explain where ping works and where it doesn't work	19:31
Jinxed-	From the external laptops (vlan 20/30) I can ping itself, and BOTH vlan on the switch, and the associated vlan on the ubuntu-laptop(server)	19:32
inveratulo	I am having a problem getting the /etc/init.d/apache2 script to recognize my User= and Group= directive within my apache2.conf, so the web server continues to run as root, which is certainly not what i want. am I overlooking something?	19:33
Jinxed-	RoyK, so in this picture	19:33
RoyK	Jinxed-: and I guess you can ping the 'external' laptop from those other ones?	19:33
=== dendrobates is now known as dendro-afk
RoyK	inveratulo: the initial apache server will always run as root	19:34
RoyK	inveratulo: without that, it can't open port 80	19:34
RoyK	inveratulo: but then, all child processes are changed to the apache user	19:34
inveratulo	RoyK: that's fine, but the damon should fork right	19:34
Jinxed-	Laptop 1 can ping: switch (10.1.20.254, 10.1.30.254), Ubuntu-lap vlan20(10.1.20.1). It CANT ping 10.1.30.1 or 10.1.30.11	19:34
Jinxed-	The switch/ubuntup laptop can ping everything	19:35
RoyK	Jinxed-: then what is it the other laptops can't ping?	19:35
Jinxed-	laptop 2 (10.1.30.11) CAN'T ping 10.1.20.11 or 10.1.20.1	19:36
Jinxed-	so the same things	19:36
RoyK	and how is the routing table on laptop 2?	19:37
Jinxed-	how do i display that	19:39
RoyK	netstat -rn	19:40
Jinxed-	eh ok?	19:41
Jinxed-	i can't copy/paste the laptops aren't online	19:41
RoyK	well, is that linux box their default router/gateway?	19:42
RoyK	or do they have static routes to the other networks they want to access?	19:42
RoyK	or is RIP or OSPF enabled somewhere?	19:42
RoyK	Jinxed-: any box on IP will try to reach its networks through its default gateway - if the gateway doesn't know the network, it'll send back an ICMP network unreachable	19:44
Jinxed-	i just made the vlan they were connected to on the switch their default gateway	19:44
RoyK	is the linux box their default gateway or the switch?	19:44
RoyK	the switch is a layer two switch, not a router	19:44
Jinxed-	WWWWWWWWWWWWWWWWWWOOOOOOOOOOOOOOOOOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHHHHHHHHHHHHHHHHHHHHHHHHHH	19:45
Jinxed-	works!	19:45
Jinxed-	you sparked a thought	19:46
Jinxed-	i just changed the laptops default gateway to the interfaces on the ubuntu laptop instead of the switch	19:46
RoyK	Jinxed-: http://en.wikipedia.org/wiki/OSI_protocol	19:47
RoyK	start there	19:47
RoyK	a switch works at layer two, not three	19:47
Jinxed-	haha	19:47
RoyK	that is, unless you have a L3 switch, which costs a wee bit more	19:47
Jinxed-	not this one, although i do have some	19:47
Jinxed-	that i could have used	19:47
Jinxed-	this was pure l2	19:48
Jinxed-	now to try to stream videos	19:49
Jinxed-	with xbmc	19:49
Jinxed-	:)	19:49
Jinxed-	thank you thank you thank you	19:49
RoyK	multicast? or unicast?	19:49
Jinxed-	RoyK, /sh, and Jeeves_ and everyone who helped	19:50
Jinxed-	I want to set it up so the laptops(1 and 2) could request a video from the ubuntu laptop	19:50
Jinxed-	and stream it	19:50
RoyK	well	19:50
RoyK	multicast or unicast?	19:50
Jinxed-	well its requested, so it would be unicast	19:50
RoyK	ok	19:50
RoyK	if doing multicast, check the IGMP settings	19:51
RoyK	AFAIK most switches come with IGMP disabled	19:51
Jinxed-	multicast would be like if I decided on the ubuntu laptop that i was going to stream	19:51
Jinxed-	video	19:51
Jinxed-	and started a multicast stream	19:51
RoyK	multicast is used if streaming live video on a LAN	19:52
RoyK	for VoD, unicast is what you'd use	19:52
RoyK	for live video for < 10 machines, unicast will do ok	19:52
Jinxed-	RoyK, have you ever done VoD	19:53
RoyK	large-scale, yes	19:53
Jinxed-	Noice	19:53
RoyK	100 concurrent views	19:53
Jinxed-	nice*	19:53
Jinxed-	how do you do that	19:53
RoyK	from a couple of cheap boxes with some cheap ATA drives	19:54
Jinxed-	what software did you use for the vod part	19:54
RoyK	we wrote a video streaming server on top of Linux RAID-0 (with sufficient servers for failover)	19:54
RoyK	just make the chunk size large enough so that the disks won't spend time seeking	19:55
Jinxed-	you wrote a video streaming server?	19:56
RoyK	you can do it with RAID-5 too if you want to - just keep lots of processes reading and have sufficient memory for the read-ahead - linux can do most of this alone	19:56
RoyK	yeah	19:56
Jinxed-	I was thinking about trying to use ssd with xbmc	19:56
Jinxed-	I would be very interested in your work	19:56
Jinxed-	sounds very similar to what I want to do	19:57
RoyK	Jinxed-: it's simple - the problem with VoD is concurrency - lots of clients wanting to read at different places on different drives.	19:57
Jinxed-	i take it ssd would help, but not solve the problem?	19:58
RoyK	the solution to this is to have enough memory to use LARGE chunk sizes for Linux software RAID, and clients that can fail over to another server if the one they're on fails, which of course implies a good buffer on the client side	19:58
RoyK	forget about the SSD	19:58
RoyK	we wrote a system on which we had four cheap servers with some (at the time) large ATA drives in Linux software RAID-0	19:59
RoyK	chunk size 1MB, meaning mostly no seeking, mostly just reading linearly	19:59
RoyK	the software was simple, an HTTP server	20:00
RoyK	we tried with Apache but got hung up with memory issues, probably fixed by now (this was around 2003)	20:00
RoyK	anyway - with a cheap box with four 120GB drives, we could sustain >80 clients, each watching a movie with a bandwidth of 4Mbps	20:01
Jinxed-	so then you also had file sharing capabilities?	20:02
RoyK	we tried at the (current) Compaq lab, and with a truckload of fast SCSI drives, we could do about 100 concurrent reads	20:02
RoyK	that wans't in the picture	20:02
Jinxed-	nice	20:02
Jinxed-	hmm	20:02
Jinxed-	I want to do vod	20:02
Jinxed-	file sharing	20:02
Jinxed-	and eventually play with asterisk	20:02
Jinxed-	in that order	20:03
RoyK	just sit down and do some calculation - with today's SATA drives, you get something like 100-120 IOPS	20:03
RoyK	meaning I/O operations per second	20:03
RoyK	the problem is seeking	20:03
RoyK	so if you read a LOT before seeking, even $120 2TB drives are blazingly fast	20:03
RoyK	we just had 120gig drives back then, today it'll be far faster	20:04
Jinxed-	would ssd eliminate seek time	20:04
RoyK	but then, you'll want a client that can read an XML file with a randomized list of available servers from which to fetch the video	20:05
Jinxed-	random access - no seek motion	20:05
RoyK	sure, but SSDs cost a LOT	20:05
Jinxed-	yeah	20:05
RoyK	perhaps ZFS with SSDs in front will help	20:05
RoyK	well, it will help	20:05
RoyK	I have a couple of 50TB setups on ZFS on opensolaris with SSD caching and they perform better than we need them to	20:06
Jinxed-	haha, i think that is larger than what i need for space	20:06
RoyK	well, to cut it short - most filesystems aren't made for streaming	20:07
RoyK	that's why we did this, seven years ago	20:08
RoyK	if you want to push the limits, go low	20:08
Jinxed-	Do you see any major disadvantages to using	20:08
RoyK	if not, use ZFS, it'll work well	20:08
Jinxed-	xbmc	20:08
Jinxed-	or some other software that is designed to stream videos?	20:08
RoyK	I don't know that product	20:08
Jinxed-	xbox media center	20:08
RoyK	IMHO it's not the streaming software that's the problem, but the filesystem and/or storing architecture	20:09
giovani	xbmc is just a gui wrapped around mplayer -- it doesn't usually do "streaming"	20:09
RoyK	Linux doesn't have anything that can compare with ZFS	20:09
Jinxed-	it was originally developed for xbox, it now is a cross platform system that has the ability to do vod afaik	20:09
giovani	btrfs will be there some day	20:09
RoyK	giovani: some day, yes, I've been following the progress for more than a year, but it still doesn't have anything like raidz	20:10
RoyK	giovani: and no SSD caching	20:10
RoyK	Jinxed-: how much data will you be serving?	20:10
giovani	RoyK: absolutely -- and ZFS didn't appear out of nowhere -- give it time :)	20:10
RoyK	giovani: sure, I'll give it time, but meanwhile I'll stick with ZFS	20:11
giovani	are you running it on Solaris, or FreeBSD?	20:11
Jinxed-	Well right now, not too much experimenting to try to get it to work	20:11
RoyK	giovani: opensolaris	20:11
Jinxed-	i don't even understand what zfs is	20:11
RoyK	Jinxed-: how much? 1TB 10TB?	20:11
RoyK	Jinxed-: http://hub.opensolaris.org/bin/download/Community+Group+zfs/docs/zfslast.pdf	20:12
Jinxed-	you mean the overall size of the video	20:12
RoyK	Jinxed-: scan through that presentation	20:12
Jinxed-	the videos that would reside on the server	20:12
Jinxed-	or the overall amount of data going out at one time	20:12
RoyK	Jinxed-: data size - the total	20:12
Jinxed-	1 tb would be much closer	20:12
Jinxed-	maybe 300-600 gb	20:12
RoyK	you can do that on any system, really	20:13
Jinxed-	down the road, possibly more	20:13
Jinxed-	I would like to make it so I could add on if I wanted to	20:13
RoyK	how many concurrent clients?	20:13
Jinxed-	1-50	20:13
Jinxed-	most likely about 4	20:13
RoyK	any system will handle that	20:14
RoyK	anyway	20:14
Jinxed-	:/	20:14
RoyK	[21:12] <RoyK> Jinxed-: http://hub.opensolaris.org/bin/download/Community+Group+zfs/docs/zfslast.pdf	20:14
RoyK	read that, and you'll understand a few new things about storage	20:14
inveratulo	I am having a problem getting the /etc/init.d/apache2 script to recognize my User and Group directive within my apache2.conf, so the web server continues to run as root, which is certainly not what i want.	20:16
Jinxed-	RoyK, looks very interesting, i don't think I have ennough background to fully appreciate it though. Im new to the whole server thing	20:17
Jinxed---	downloading/printing/googline	20:19
Jinxed---	googling*	20:20
Jinxed-	RoyK, what do the additional server components of ubuntu get you if you install them?	20:23
=== dendro-afk is now known as dendrobates
uvirtbot	New bug: #609743 in mysql-dfsg-5.1 (main) "package mysql-server-5.1 5.1.37-1ubuntu5 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/609743	20:51
Jinxed-	RoyK, so I restarted and now when i do ifconfi	21:25
Jinxed-	ifconfig	21:25
Jinxed-	i don't see anything	21:25
Jinxed-	how do i get everything back up and running	21:25
Jinxed-	?	21:25
ssureshot	whats jot running jinxed	21:28
Jinxed-	ssureshot, so I had vlan trunking working earlier	21:29
Jinxed-	i have vlan20,30 etc set up in the /etc/network/interface	21:29
Jinxed-	but it doesn't show up when i do ifconfig	21:30
Jinxed-	infact eth0 seems not to be working at all	21:30
hggdh	yo Daviey, still awake ;-)	21:41
hggdh	?	21:41
Daviey	hggdh, sadly :)	21:42
RoyK	Jinxed-: is the 8021q module loaded?	21:42
hggdh	Daviey: I figured so... I see groovy errors in the cloud-debug.log	21:42
Daviey	hggdh, Interesting.... can you pastebin?	21:43
hggdh	Daviey: just a sec	21:43
Daviey	hggdh, Ok.. i'm not fully here.. just passing - but i will read it! :)	21:43
hggdh	Daviey: I frankly do no texpect you to be fully awake at this hour ;-) http://pastebin.ubuntu.com/469518/	21:45
ccheney	Daviey, do you have problems with recent iso having syslinux crash due to low dos memory?	21:47
ccheney	Daviey, er well the syslinux on recent iso when used with pxe crashes for me i meant to say	21:51
=== A-Tuin_ is now known as A-Tuin
RoyK	22:58:15 up 3 days, 7:57, 2 users, load average: 24.26, 24.20, 24.12	21:58
Daviey	hggdh: Ahh.. i think i know what has caused that groovy issue.. it's an upstream bug if my prediction is correct.	21:59
Daviey	(introduced by refactoring)	21:59
Daviey	ccheney: Interesting... not seen that yet	21:59
ccheney	Daviey, ok	21:59
Daviey	will experiment tommorrow	21:59
jpds	RoyK: Nice.	22:00
RoyK	all 24 cores running stably	22:00
RoyK	close to no system time or wio	22:00
Daviey	RoyK: My record to date (obtained over ssh) http://daviey.mooo.com/wp-content/uploads/2007/10/top.png	22:01
RoyK	Daviey: http://karlsbakk.net/top-24.png	22:02
Daviey	niiiice	22:05
RoyK	we have another 16 core working on that too	22:05
RoyK	Eyjafjallajökull ash movement inversions	22:06
hggdh	ccheney: which package is implementing your uec provisioning?	22:17
ccheney	hggdh, uec-provisioning-*	22:17
hggdh	heh	22:17
hggdh	ccheney: already in Maverick?	22:18
ccheney	yes	22:18
hggdh	k, thanks	22:18
lwizardl	hey is it possable to setup email accounts to auto cc/bcc to another address ? I want the emails to stay in the correct box but I would like to have it also sent to the main email of the person in charge of that so if that person leaves we still have all the old emails	22:45
lox_	Hi guys	22:46
lox_	I have an emergency here	22:46
ivoks	lwizardl: always_bcc?	22:46
lwizardl	yeah I want it to always do it	22:46
lox_	I add to change sda in a raid1 array, so I hot removed it with mdadm, shutdown, chnaged the disk	22:46
lox_	buit it won' boot on sdba	22:47
lox_	sdb	22:47
lox_	I only get a blinking cursor	22:47
lox_	I had a look to sdb using live cd and boot flag is correctly set on the boot partition (sdb1)	22:48
ivoks	lox_: wait for it	22:48
ivoks	lox_: it will bring up busybox	22:48
lox_	is it supposed to be so long ?	22:49
ivoks	couple of minutes	22:49
ivoks	i think it's 5	22:49
lox_	Ok so I wait more ....	22:49
unit3	Just a ping on my previous question, can someone tell me where the apt mirror prevu uses is configured?	22:49
lox_	ivoks, thks	22:50
lwizardl	ivoks, basically I am hosting a site for a convention and the staff members tend to be replaced. example if sam is incharge of costumes and advertising, I would like to have costumes@ & advertisment@ bcc a copy of all emails sent to those emails be sent to her main address but also keep a copy of those in there original email box also. so if she quits we don't have her personal emails mixed in with the convention emails	22:50
ivoks	always_bcc is for all mails sent and received	22:50
ivoks	so, i guess that's not an option	22:50
ivoks	you could setup procmail as a delivery agent	22:51
ivoks	and have /etc/procmailrc	22:51
lwizardl	ivoks, because we originally thought about just forwarding but then they don't stay in the main boxes	22:51
ivoks	they can	22:52
ivoks	you can forward a copy	22:52
ivoks	easiest thing to do would be with /etc/aliases	22:53
ivoks	for example, if you have user steve getting the mail	22:53
ivoks	and you want forward a copy to mark@gmail.com	22:53
ivoks	you would add:	22:53
ivoks	steve: steve mark@gmail.com	22:54
ivoks	to /etc/aliases	22:54
lwizardl	ok	22:54
ivoks	if you use postfix	22:55
lwizardl	I thought that it would never reach a box for the other emails and just push the mails to the new location	22:55
ivoks	i'm not sure with other mtas	22:55
lox_	ivoks, the cursor has been blinking for ten minutes, still nothing else	22:59
unit3	Oh, I've figured it out. /usr/bin/prevu-init is hardcoded to override the mirror in my /etc/pbuilderrc with archive.ubuntu.com. That's terrible.	23:01
unit3	Guess I'll file a bug report shortly.	23:01
ivoks	lox_: alt+f1, alt+f6?	23:03
lox_	ivoks, no go ...	23:03
lox_	ivoks, I had replace sdb the same way with no problem	23:04
lox_	ivoks, is the blinking cursor from grub ?	23:04
ivoks	did you see grub menu?	23:04
hggdh	ccheney: this is really something, it seems euca-* commands output changed on 2.0	23:10
hggdh	ccheney: and I am getting 100% failure now :-(	23:11
AndyGraybeal	okay, i made a raid array with mdadm; i'm trying to get LVM on it. i do a: "pvcreate /dev/md0" and it returns: "Device /dev/md0 not found (or ignored by filtering)" i checked "ls -l /dev/md0" and it's there. it's my raid array. has anyone run into this before? am i doing something wrong?	23:31
ivoks	AndyGraybeal: check /etc/lvm/lvm.conf, search for 'filter'	23:33
Daviey	hggdh: Hmm.. something seems inconsistent - i had that stage last week... left it, and it worked again.	23:33
AndyGraybeal	ivoks: it says: filter = [ "a/.*/" ]	23:34
ivoks	if that's the only filter, then it's not filter at all :D	23:35
AndyGraybeal	ivoks, then that' sthe filter - do yoiu know what might be happening?	23:35
ivoks	no idea	23:36
hggdh	Daviey: this is really not kosher	23:36
AndyGraybeal	okay thank you ivoks.	23:36
ivoks	/proc/mdstat	23:36
ivoks	is that ok?	23:36
hggdh	Daviey: my euca-run-instances stay in pending for a while, then go to tesminated	23:36
Daviey	hggdh: sigh, that was working	23:36
Daviey	hggdh: Feel free to keep prodding, can you email me your findings? I'm going afk now :(	23:37
hggdh	Daviey: I am opening bugs on all I find ;-)	23:37
Daviey	rocking!	23:38
hggdh	we will chat tomorrow, go hit the bed, don't go my way last week ;-)	23:38
lox_	ivoks, no grub menu appeared	23:42
ivoks	lox_: then it doesn't boot from disk at all?	23:42
AndyGraybeal	ivoks: i decided i run the installer again before you wrote that, sory	23:46
ivoks	haha	23:46
AndyGraybeal	ivoks: the installer says the same thing about /dev/md0 ... even after i deleted and recreated the array	23:47
ivoks	so, in previous life, you were a windows sysadmin? :)	23:47
AndyGraybeal	ivoks, yes, yes, 10 yrs ago.	23:47
AndyGraybeal	i'm still fumbling with this linux.	23:47
AndyGraybeal	ivoks, i'll take your queues next time though, sorry.	23:47
ivoks	you would have erase superblock before creating new md	23:48
AndyGraybeal	anyway - my goal is to end up with 1 80gb boot drive with linux on it and one raid array with 4 disks, 320 each.	23:48
hggdh	Daviey: apparmour, it seems	23:48
AndyGraybeal	ivoks: okay - i don't know what really that means, erase the superblock, does that require a reboot?	23:49
ivoks	there's nothing on the disks?	23:49
Daviey	hggdh: Not suprised by that - it's bitten us a few times	23:49
AndyGraybeal	ivoks, no there's nothing on the disks.. i'm just starting from scratch.	23:49
AndyGraybeal	i got all my data backed up safely	23:49
ivoks	AndyGraybeal: and you are in the installer?	23:49
hggdh	Daviey: yes... for the record, bug 610265	23:49
uvirtbot	Launchpad bug 610265 in eucalyptus "cannot successfully start an instance" [Undecided,New] https://launchpad.net/bugs/610265	23:49
AndyGraybeal	ivoks: yes, it's unpacking softwares as we speak, i can restart it if you recommend.	23:49
ivoks	AndyGraybeal: er... didn't you just said that it doesn't work?	23:50
AndyGraybeal	i'm very confused and scared a bit by this whole manual partitioning. i've been doing this for 10 years, but that doesn't mean i'm nearly anywhere good at it.	23:50
ivoks	oh, you have one partition just for /	23:50
ivoks	one disk	23:50
AndyGraybeal	ivoks, the plan is one disk holds all of linux and assorted softwares; but the raid array holds /home and /srv (and data for my business)	23:51
ivoks	ok	23:51
ivoks	then finish installation	23:51
AndyGraybeal	sory for the confusion and run around. i feel like i'm never going to get good at this ... in 10 yrs.. it's been longer than tear years honestly; but we won't get into that.	23:52
AndyGraybeal	i gave up a high paying job with windows to take the time to really learn linux.. and here i am :) still learning.	23:53
AndyGraybeal	but it's good, it's in a real business setting.	23:54
AndyGraybeal	i feel more in control that's for sure.	23:54
ivoks	what ubuntu is that?	23:55
ivoks	which version	23:55
AndyGraybeal	it's 10.04 server	23:55
AndyGraybeal	64bit	23:55
ivoks	ok	23:55
AndyGraybeal	okay, it's still moving, i'm going to get a bite to eat; brb	23:59

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!