[00:01] <lynxman> zroysch: yeah I think
[00:01] <lynxman> SpamapS: ping, whenever you have 5 mins, upstart question
[00:02] <cjs226> anyone setup nat on an ec2 instance?
[00:02] <SpamapS> lynxman: fire away, but I really do only have 5 minutes
[00:03] <lynxman> SpamapS: cool, will take 3 :)
[00:03] <lynxman> SpamapS: trying to setup an upstart job for a process that was using an init.d wrapper, and I need to user the wrapper (it's python calling to internal functions)
[00:05] <SpamapS> lynxman: you can have an upstart job with no actual running process to track.. just use pre-start to call the 'thing start' and pre-stop to call the 'thing stop'
[00:05] <lynxman> SpamapS: like this http://pastebin.ubuntu.com/667787/
[00:05] <lynxman> SpamapS: smoser suggested the expect fork, right now the upstart job hangs indefinitely as it is, I guess it's due to that
[00:06] <SpamapS> For that, I'd just drop the expect fork, and move the script to pre-start script
[00:06] <SpamapS> The upstart job will work like a place holder for boot/shutdown...
[00:06] <SpamapS> but otherwise will get out of the way.
[00:06] <lynxman> SpamapS: cool, was just a bit concerned of using pre-start instead of start
[00:06] <lynxman> SpamapS: thanks :)
[00:08] <SpamapS> lynxman: its a little obtuse, but works wonders for getting things into upstart without fully migrating them. :)
[00:08] <SpamapS> btw, your start on is *WAY* too verbose
[00:08] <SpamapS> just start on runlevel [2345]
[00:08] <lynxman> SpamapS: hehe yeah we were discussing it with smoser last Friday so I wanted to be safe
[00:08] <SpamapS> both of those events are guaranteed to happen before runlevel 2
[00:08] <lynxman> SpamapS: cool, will reduce that as well
[00:09] <SpamapS> plus this way when you go from runlevel 1 -> 2 .. it will actually get started back up.
[00:09] <smoser> so what does 'status' show for a job that has no job ?
[00:09] <lynxman> SpamapS: neat
[00:10] <lynxman> smoser: I guess "nothing to see here, move along"
[00:10] <smoser> and why would you not want upstart to correctly track a pid ?
[00:10] <smoser> how would it know if the thing died ?
[00:10] <SpamapS> smoser: its start/running but no pid
[00:10] <smoser> i'm generally curious
[00:10] <smoser> generally and genuinely
[00:10] <SpamapS> smoser: because upstart cannot correctly track most pids
[00:10] <SpamapS> They've come up with a good plan for that finally.
[00:11] <lynxman> SpamapS: when are we switching to systemd?
[00:11]  * lynxman hides
[00:11] <SpamapS> instead of 'expect fork' it will be 'expect exit' .. which will watch for the parent's fork, but then wait for it to exit.
[00:11] <zroysch> lynxman:  http://pastebin.com/kWFtcb30
[00:12] <SpamapS> smoser: tracking pids is over rated, some services actually do it all by themselves. ;)
[00:12] <SpamapS> anyway
[00:12] <SpamapS> I'm late.. good luck!
[00:15] <lynxman> zroysch: out of ideas then, you definitely have something weird going on there...
[00:15] <zroysch> well i do have the data backed up
[00:15] <zroysch> i guess i could just start over from scratch
[00:16] <lynxman> zroysch: if that's an available option I would go for it, and make both fd this time ;)
[00:16] <lynxman> zroysch: software raid gets confused way too easily
[00:28] <zroysch> lynxman: i've never run into this problem before.
[00:30] <lynxman> zroysch: me neither :)
[00:37] <zroysch> http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=500309
[00:37] <zroysch> hmm
[00:37] <zroysch> old bug resurfacing?
[00:37] <zroysch> i have mdadm v3.1.4
[00:38] <zulax> does ubuntu server come with lesser repositories?
[00:38] <zulax> cant seem to find git-core
[00:39] <zulax> nm, after an update i got it
[00:49] <pmatulis> an update will not get you a new package
[00:52] <twb> zulax: it was renamed to "git" about twelve months ago
[00:52] <zulax> ok
[01:06] <JRWR> Having a issue with nginx 1.0.5, php-fcgi with php-fpm over a socket is using its cache a little to aggressive, it seems that ALL requests are being send to the same file, which is the one cache file that was made with the first request, my configs http://pastebin.com/RND2E9fY http://pastebin.com/vxbHZf3W http://pastebin.com/xKaKAAgH
[01:06] <twb> Is your PHP app sending the appropriate cache-related header fields?
[01:07] <JRWR> my first test was apc.php
[01:07] <JRWR> but if i do apc.php first
[01:07] <JRWR> then do test.php
[01:07] <JRWR> it will show what apc.php sent to nginx
[01:07] <twb> Dunno, then
[01:08] <twb> You could try #nginx and/or ##php, too
[01:08] <JRWR> http://survivorzero.com:82/apc.php then http://survivorzero.com:82/test.php
[01:08] <JRWR> test.php doesnt exist
[01:08] <JRWR> and its showing the contents from apc.php
[01:09] <twb> http://paste.debian.net/126447/
[01:11] <JRWR> is the only cache file
[01:11] <JRWR> http://pastebin.com/aLkPwh8p
[01:11] <JRWR> no matter what you call it will serve that file
[01:12] <JRWR> whats fun is that d41d8cd98f00b204e9800998ecf8427e = md5("")
[01:12] <JRWR> thats the hash its stored in the cache
[01:12] <JRWR> so... i dont think the cache has a clue to what the request URI is
[01:18] <twb> ARM supports PXE?
[01:18] <twb> I thought PXE was an x86ism
[01:18] <JRWR> why wouldnt it?
[01:19] <twb> As opposed to what I *have* seen on ARM/uboot, which is to hard-code the TFTP server address and the filename
[03:45] <NCommander> hallyn: ping, I think there's a serious problem with your cgroups/lxc
[03:45] <NCommander> ^implementation
[03:46]  * NCommander facepalms
[03:46] <lifeless> NCommander: whats aup?
[03:46] <NCommander> lifeless: so lxc uses/requires cgroups to make sure containers are separate from each other, right?
[03:47] <lifeless> yes
[03:47] <lifeless> key component of the implementation
[03:47] <NCommander> lifeless: right, but then why does LXC work if cgorup namespaces are unavailable? (they were removed with 39(?))
[03:48] <lifeless> http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=a77aea92010acf54ad785047234418d5d68772e2 ?
[03:48] <NCommander> The replacement is clone_process, but that's not enabled by default and there's no way to get cgroups to use them with cgconfigparser
[03:49] <NCommander> lifeless: as it stands, I think cgroups aren't being properly used, but LXC doesn't emit a warning or error (aside from a misleading message in lxc-checkconfig)
[03:49] <lifeless> hmmm
[03:49] <lifeless> I think this is out of my expertise ;)
[03:50] <NCommander> (this is true on i386/amd64 as well)
[03:50] <twb> lxc is just a thin shim around cgroups
[03:50] <lifeless> so I think ns_cgroup isn't needed
[03:50] <NCommander> twb: right, but namespaces areno longer available
[03:50] <lifeless> and never really was, it was a convenience
[03:50] <twb> But a default lxc configuration will not virtualize much at all -- e.g. no namespace (containerization) for the filesystem, network stack, etc.
[03:50] <NCommander> lifeless: no, they were replaced with clone_instance
[03:51] <NCommander> whichis a mounting option when you create the cgroup (there is no way ot specify the necessary flag via cgconigparser)
[03:51] <lifeless> I see your point
[03:51] <lifeless> like I say, we've reached the edge of know-how.
[03:51] <NCommander> twb: lxc-checkconfig says namespaces are 'required' although if clone instances are enabled, it says 'enabled' with a new line
[03:52] <lifeless> NCommander: can you file a bug @ https://bugs.launchpad.net/ubuntu/+source/lxc ?
[03:52] <lifeless> NCommander: serge is pretty active there
[03:52] <NCommander> lxc-stop appears to be broken like this
[03:52] <twb> lxc-stop is probably broken for unrelated reasons
[03:53] <NCommander> twb: lxc-stop works properly if clone_children is set on the cgroup instances
[03:53] <twb> Of course my experience is limited to .32 so I may be talking bullshit
[03:53] <lifeless> NCommander: thats extremely interesting
[03:57] <NCommander> I got lxc-stop to work after a few tries. No idea why
[04:01] <lifeless> NCommander: so it 'works' first time for me, always has (though it whines but actually does its  thing)
[04:01] <lifeless> NCommander: but the lack fo power-off means that processes don't go down quite as they might expect
[04:06] <NCommander> twb: lifeless: https://bugs.launchpad.net/ubuntu/+source/lxc/+bug/827798
[04:18] <NCommander> the bot is lagged :-/
[05:49] <rickjaruiz> slow server 10.04 in hyper-v vm, can anyone help?
[05:57] <rickjaruiz> nvm, thank you google
[06:03] <twb> rickjaruiz: what was the issue?
[06:03] <twb> Rather, what was the cause and the fix
[06:04] <rickjaruiz> disable the frame buffer module: edit /etc/modprobe.d/blacklist-framebuffer.conf and add the following line:  blacklist vga16fb
[06:05] <rickjaruiz> every line to be drawn for a page refresh
[06:05] <twb> God damn I hate that module
[06:05] <twb> And I hate that it's on by default
[06:05] <twb> All it gives you is 80x30 instead of 80x25, it's not even useful when it DOES work :-/
[06:06] <rickjaruiz> anyway to turn off before installation?
[06:06] <twb> rickjaruiz: during lucid install, no.  Post-install and I *think* in newer d-i installs, yes
[06:06] <rickjaruiz> or during installation
[06:06] <twb> There's a bug in the lucid installer that prevents all documented techniques from working
[06:06] <rickjaruiz> yeah it makes install take twice as long
[06:06] <twb> Oh, also of course you can do the install via serial instead of VGA
[06:06] <rickjaruiz> 11.04 installed in 10 minutes and 10.04 installed in 20
[06:07] <rickjaruiz> im running it as a virtual machine in hyper-v
[06:07] <twb> If Microsoft's virtualization technology can't emulate a COM port, it ought to be scrapped.
[06:08] <rickjaruiz> how can i get a remote gui file access?
[06:08] <twb> I don't know or care; GUIs are not a server issue.
[06:08] <rickjaruiz> or whats a good way to transfer files between serveres
[06:08] <rickjaruiz> i new to linu
[06:08] <rickjaruiz> linux
[06:09] <twb> SFTP.
[06:09] <rickjaruiz> how do u install in server?
[06:09] <twb> Or scp, which is pretty much the same thing.
[06:09] <twb> Both are components of SSH
[06:09] <rickjaruiz> so just udo apt-get install openssh-server?
[06:09] <rickjaruiz> *sudo
[06:09] <twb> rickjaruiz: if you have not already done so, you should read the ubuntu server guide (mentioned in /topic)
[06:09] <twb> rickjaruiz: yes.
[06:10] <rickjaruiz> i mgoing through it and asking questions at the same time
[06:10] <rickjaruiz> helps me remember
[06:12] <twb> OK
[06:12] <rickjaruiz> but yeah so much to learn from that guide
[06:12] <rickjaruiz> i have to take it in sections
[06:37] <KE1HA> Is there any known problems / bugs affecting 11.04-Server and Samba? I've been tryng to setup a simple share for hour, and its just not happening, even with SWAT
[06:41] <Gxt4> Evening.. Is there a way to have initrd get all ip's from dhcp servers before doing it's iscsistart ?
[06:43] <Gxt4> for now , the moment it booots , its gets an ip , then immediately tries to make iscsi connections. ending up being unable to connect.
[07:23] <ttx> Daviey: about my rootwrap, I think I'll have to defer to Essex, I'm a bit busy atm
[07:24] <ttx> Daviey: on the plus side, this will allow to generally discuss security improvements at ODS
[07:24] <ttx> Daviey: and nobody strictly asked for it in MIRs afaict
[07:24] <ttx> Daviey: thoughts ?
[07:26] <Daviey> ttx: Well nova MIR hasn't been ack'd yet
[07:26] <ttx> Daviey: sure but that wasn't part of it -- anyway, I commit to doing it for Essex, so would be in LTS
[07:26] <Daviey> But yes, apparmour and sudo limitation seemed more favourable to me, but i understood i was overuled on that.
[07:27] <Daviey> ttx: How much work is involved forking what we had before?
[07:27] <ttx> Daviey: I'm almost done with the wrapper -- the devil being in the "almost"
[07:27] <ttx> Daviey: also I feel a bit uncomfortable pushing it now
[07:28] <Daviey> ttx: Having the proof-of-concept published somewhere would allow it to be mentioned in docs.
[07:28] <ttx> Daviey: first shot is at https://code.launchpad.net/~ttx/nova/privsep2
[07:29] <ttx> but I can't really spend more time on it this week(s), and would like to have it properly testcased
[07:29] <ttx> so to do it right, I need more time -- and that time would allow us to discuss how to do it
[07:29] <Daviey> ttx: Where will this live eventually, packaging branch? contrib/ in upstream or a core part of upstream?
[07:30] <RoyK> morning
[07:30] <Daviey> hey RoyK
[07:30] <ttx> Daviey: if we follow what I started, it will live in bin/nova-rootwrap in nova + contrib filter files in Nova.
[07:31] <ttx> again, some discussion around it at ODS sounds like a good idea
[07:31] <ttx> I need to work on the registration site now
[07:31] <Daviey> ttx: Why did you start it from scratch?
[07:31] <ttx> Daviey: as opposed to ?
[07:31] <Daviey> forking what we used to use
[07:32] <ttx> (1) because there is no way I can write security code in C right and (2) I'd like it to live in Nova
[07:32] <Daviey> ok, thanks
[07:32] <ttx> so that someone adding a sudo command can fix the file
[07:32] <Daviey> ttx: Thanks for letting me know.
[07:32] <ttx> Daviey: that was the result of a discussion with mdeslaur, fwiw
[07:33] <ttx> anyway, I prefer not to rush security code :)
[07:33] <Daviey> i'll catch up with mdeslaur regarding this, hopefully today.
[07:34] <ttx> Daviey: I think it's better to discuss how it's best done, and implement it with plenty of safeguards in essex
[07:34] <Daviey> ttx: yah
[07:34] <ttx> rather than adding one more branch merge proposal to our FF queue
[07:34] <ttx> (deadline for feature merges being Monday)
[07:34] <ttx> If I had one more week I would probably have done it
[07:35] <Daviey> aw frack
[07:35] <ttx> I was a bit optimistic on how much free time I'd get :)
[07:49] <eagles0513875> hey guys what is needed to do a remote network installation
[08:06] <Daviey> eagles0513875: a good preseed :)
[08:06] <eagles0513875> ? meaning what
[08:06] <Daviey> eagles0513875: entirely hands off, or over SSH>
[08:07] <Daviey> ?
[08:07] <eagles0513875> over ssh
[08:07] <Daviey> https://help.ubuntu.com/community/Installation/OverSSH
[08:07] <Daviey> ^^ not the best way IMO.
[08:08] <Daviey> https://help.ubuntu.com/community/Installation/NetworkConsole <-- much better
[08:08] <eagles0513875> humm ok
[08:09] <eagles0513875> i just dont want to migrate my keyboard nad monitor over to my room where my server is at hence why im askin
[08:10] <eagles0513875> Daviey: so i boot the iso or the bootable usb on the machien im currently on right then follow the steps from there?
[08:11] <Daviey> eagles0513875: If you are doing this for the first time, and mainly doing it to save time.. you are better off moving the monitor and keyboard.
[08:11] <eagles0513875> ok
[08:11] <eagles0513875> :-/
[08:12] <twb> Daviey: why, because of the 1:1 correspondence with the udeb name?
[08:13] <twb> Oh, nm, those articles are different.  Thought you were discussing the name of the article
[08:14] <eagles0513875> hehe
[08:14] <twb> The overssh version is a pita
[08:14] <eagles0513875> last question guys i need to back up my current email server which is running dovecot postfix and spamassassin
[08:14] <twb> Better off just put the mini.iso kernel and ramdisk and preseed in the /boot of the unix system you want to blow away
[08:15] <eagles0513875> thing is i need to change disks i bought 2x1tb hdds for raid
[08:15] <Daviey> twb: Yeah, suggesting against debootstrap - in favour of using the ssh support within d-i
[08:15] <eagles0513875> in regards to my question above relating to email
[08:15] <twb> Then you reboot, pick d-i from the grub menu, and it'll load into RAM.  At that point, you have everything in RAM and can blow away the HDD you booted from
[08:15] <eagles0513875> i just need to backup the postfix conf file the dovecot config and spamassassin config maildir correct and i should be fine
[08:15] <twb> debootstrap has a whole bunch of hairy edge cases like creating /etc/hosts, and it's a PITA to remember all of them
[08:16] <twb> And if you're using grub, that's a bloody huge nightmare to install via a chroot, unlike extlinux
[08:18] <greppy> eagles0513875: as a general rule, I would back up all of /etc, tar -cfp etc.tar /etc, then save the .tar file where you can get to it.
[08:18] <eagles0513875> greppy: why though?
[08:18] <eagles0513875> guess it woudlnt hurt
[08:18] <eagles0513875> wouldnt
[08:19] <greppy> because there have been times when I have remembered that I needed something AFTER I wiped the disk :)
[08:19] <eagles0513875> this disk isnt getting whiped
[08:19] <eagles0513875> its going into storage
[08:19] <eagles0513875> atm my server only has one 750 hdd
[08:19] <greppy> and having groups/passwd/shadow, etc backed up is handy
[08:19] <eagles0513875> im putting in or hoping to put in 2x1tb hdd raid 1
[08:20] <eagles0513875> agreed
[08:20] <eagles0513875> :) thanks for your input greppy :)
[08:20] <greppy> *nod* still easier to have a tar ball of all of /etc instead of having to shove the drive into another system to get data off of it.
[08:20] <eagles0513875> im gonna take my server offline for a sec to check something
[08:38] <eagles0513875> guys is it easy to setup raid if i add a 2nd hdd at a later point in time
[08:39] <philipballew> what option after ifconfig shows me all avaible interfaces not just the up ones
[08:54] <_ruben> philipballew: don't use ifconfig, it's been depreciated for ages, use the 'ip' command instead .. 'ip link' for all interfaces, 'ip address' for all ip addresses on thos einterfaces, 'ip route' for all routes, etc
[08:54] <_ruben> 'ip help' and 'man ip' for more info :)
[08:54] <philipballew> _ruben, ive never even herd of that command. its better?
[08:55] <eagles0513875> _ruben: havent heard of that command either
[08:57] <_ruben> 'ip' offers way more options than 'ifconfig' and is less braindead .. ifconfig for instance can't see multiple ip addresses per interface, only ip aliases, which basically are a nasty workaround to the actual problem
[09:00] <ikonia> ifconfig can see multiple interfaces per interface, no problem
[09:03] <twb> ip's easier to read, too
[09:03] <_ruben> multiple interfaces per interface ? :)
[09:04] <twb> http://paste.debian.net/126482/
[09:04] <_ruben> nice example of flaws: http://paste.ubuntu.com/668056/
[09:05] <twb> Yep
[09:05] <philipballew> this conversation is still goin?
[09:05] <philipballew> nice!
[09:06] <twb> ifconfig's only good feature is that it's available on SUS systems you might have to deal with
[09:06] <twb> Like say SCO or Solaris
[09:07] <twb> Although ISTR they don't have a route(8) that does what you expect, for some reason that functionality is in netstat(8)
[09:33] <_ruben> twb: hence lots of people using netstat -r on linxu as well :)
[09:33] <ikonia> I still use netstat -rn for things like the routing table
[09:34] <_ruben> yuck
[09:34] <_ruben> `ip r` is so much shorter to type and cleaner output-wise :)
[09:35] <ikonia> netstat is clean enough and works on all the platforms I use as a standard format
[09:35] <_ruben> and netstat -rn is semi-braindead too, doesnt list source ip address for instance :)
[09:35] <_ruben> then again, to each his own :)
[10:55] <reisi> hmm apparently one cannot edit their lp-comment?
[10:59] <_ruben> sounds more appropriate to be asked in #launchpad i guess :)
[11:03] <Ursinha> reisi: no, editing comments isn't possible right now :/
[11:03] <reisi> well if there was a way i guess someone would had shouted, no need to go bully the launchpad crowd :)
[11:04] <Ursinha> reisi: https://bugs.launchpad.net/launchpad/+bug/80895
[11:42] <tdr112> hey guys , how would i add a file to a .war file , i tried tar , but it can use war files
[11:58] <lynxman> tdr112: war files are zip files, just rename, unzip, add file, rezip, rename
[12:00] <tdr112> thanks lynxman
[12:25] <mrryanjohnston_> I'm running ubuntu server 11.04 on vmware player. I added a second interface in /etc/network/interface and now I can't resolve outside network addresses. Any insight into this?
[12:25] <mrryanjohnston_> Added the second interface by adding the following lines: #Host-Only  /  auto eth1  /  iface eth1 inet dhcp
[12:50] <smb> Hey, just a quick question: is there something like the ubuntu-desktop^ (task) for the server seed? ubuntu-server^ does not work. Just may be handy sometimes as at least on the desktop normal upgrade sometimes "forgets" to install vital things...
[12:51] <mrryanjohnston_> ah, it seems like /etc/resolv.conf is getting re-written
[13:02] <andol> smb: Well, there is a task simply called server, as well as a set of more specific server tasks (openssh, postgres, etc)
[13:02] <andol> tasksel --list-tasks
[13:03] <andol> Even if they might not give you the exact same thing as  the server install seed.
[13:03] <andol> (Don't see anything about the server kernel for one thing.)
[13:04] <smb> andol, Ah, cool. So it seems there already is one thing missing here... Well, I usually know when I am missing the kernel... ;) But other things not so much
[13:11] <smb> ... hm, not that those would force back useful things like tasksel or command-not-found which were probably removed due to broken dependencies. But ok, I can bring those back...
[13:31] <hggdh> Daviey: did you get my comment about -enroll?
[13:31] <hggdh> and good morning
[13:33] <Daviey> hggdh: i did not :(
[13:33] <Daviey> hggdh: where did you send it?
[13:34] <hggdh> Daviey: lp:~hggdh2/+junk/cobbler-enroll2
[13:37] <Daviey> hggdh: will look shortly
[13:37] <Daviey> How is it looking>
[13:39] <hggdh> Daviey: seems good (but I still have no clue on how to do the actual config via a postinstall
[13:40] <hggdh> which is to say, apart from the postinstall (and a man page for it, lintian is not very happy about lacking it), it is ready
[13:42] <Daviey> hggdh: db_get :)
[13:42] <Daviey> hggdh: you rock
[13:44] <hggdh> Daviey: send me what you have, and I will try it
[13:44] <Daviey> hggdh: not done yet
[13:45] <hggdh> Daviey: k. BTW, I changed the templates slightly, and changed the NIC dialog to a selection
[13:46] <Daviey> hggdh: ooo, nice
[13:46] <Daviey> hggdh: so it lists all the NIC's?
[13:46] <Daviey> hggdh: how much code did that take?
[13:46] <hggdh> Daviey: 3 lines in the template :-)
[13:47] <Daviey> I put the logic for the nic's as much as possible into C, to try and keep it small.
[13:47] <Daviey> hggdh: wow. Is that multi-select?
[13:47] <hggdh> yes
[13:48] <hggdh> Daviey: one thing we might ant to look at is if the user may select more than one interface
[13:48] <hggdh> s/ ant/ want/
[13:48] <Daviey> hggdh: yeah, i'm not going to be a perfectionist over that TBH
[13:49] <hggdh> heh
[13:49] <Daviey> the main target audience is using it to preseed; or selecting "all"
[13:49] <hggdh> man, perfection is an unattainable dream
[13:49] <hggdh> 'it works' is almost perfect
[13:50] <Daviey> Hah, landing it is a dream :)
[13:50] <hggdh> lol
[13:50] <hggdh> brb
[14:20] <smb> zul, so today (not sure whether it is because its Wednesday or because I pulled int the virt-host task which added libvirt-bin) bonding comes up ok, though the pbond0 that used to be created is not. PVM seems ok with net. HVM started with xm does fail/hang early trying to do large order allocations of some kind. Started with xl comes up to the point where the IDE emulation wait and resets itself endlessly...
[14:20] <smb> zul, Guess I check that again tomorrow... :-P
[14:23] <RoAkSoAx> Daviey: ping
[14:23] <Daviey> RoAkSoAx: pong
[14:24] <RoAkSoAx> Daviey: ok so I got ARM booting, not installing thouhg :)
[14:25] <RoAkSoAx> Daviey: but it is in process
[14:33] <CrazyGir> hello! I have a 11.04, kvm based VM server with a handful of VMs running. Some should only be accessible via a private network, but not externally addressable, others should get external IPs routed through the VM server. I have the private net working fine (though I did not set this up), and I have seen other systems with a bridge interface setup to allow VMs the ability to hop on the external network/subnet and get DNS pointing at them direct
[14:33] <CrazyGir> I'm not sure I fully understand how the bridge and VM server ought to be setup to allow for that
[14:33]  * patdk-wk uses bridges for all of that, private and non-private
[14:33] <CrazyGir> guidance / topics to research / etc are all appreciated
[14:34] <CrazyGir> patdk-wk: could you give me an example? is this all configured in /etc/network/interfaces?
[14:34] <CrazyGir> or is there VM configuration as well (aside from a VM having brX as its source?)
[14:34] <patdk-wk> in my case no, I did it manually
[14:34] <CrazyGir> how do you mean?
[14:35] <patdk-wk> vm's would never have a brX
[14:35] <CrazyGir> not as a source if?
[14:35] <patdk-wk> manually = not using a script
[14:35] <CrazyGir> patdk-wk: would you consider /etc/network/interfaces a script?
[14:36] <patdk-wk> crazygir, /etc/network/interfaces is a config for a script, so yes, it's using a script
[14:36] <CrazyGir> does that configuration (your manual method) persist across reboots?
[14:36] <CrazyGir> do you use puppet for system management at all?
[14:36] <CrazyGir> cause I don't really see that working if you are leveraging puppet
[14:37] <CrazyGir> that said, I would be curious how you did it
[14:37] <CrazyGir> I'm sure I can figure out how that translates
[14:37] <patdk-wk> who said I used puppet?
[14:37] <CrazyGir> I'm just going into uncharted territory at this point and unsure how the pieces I understand connect
[14:37] <patdk-wk> I don't think puppet even existed in 8.04
[14:37] <patdk-wk> it seems to be documented pretty good in the manual: https://help.ubuntu.com/community/KVM/Networking
[14:37] <CrazyGir> I didn't say you did, I asked if you did
[14:39] <CrazyGir> so using bridges is the way to do this?
[14:39] <patdk-wk> using bridges is an easy way to do it
[14:39] <Ursinha> Daviey: would you be able to generate the list of bugs we have in http://status.qa.ubuntu.com/reports/ubuntu-server/release-bugs.html other than using tags?
[14:39] <patdk-wk> dunno if it's the best for your case or not, but generally it's simple and easy, and repeatable
[14:39]  * CrazyGir nods
[14:39] <patdk-wk> if you just think of each bridge as a seperate switch
[14:39] <patdk-wk> and you plug the vm's into those switchs (bridges)
[14:40] <CrazyGir> fantastic, I'll dig a little deeper here and see how well this will fit
[14:40] <CrazyGir> yea, that makes sense
[14:40] <CrazyGir> but how to create that in linux does not always make as much sense to me
[14:40] <CrazyGir> I would be able to work my way through most all of this setup on OpenBSD with the manpages only
[14:41] <CrazyGir> that doesn't happen in linux for me for some reason :)
[14:41]  * CrazyGir shrug
[14:41] <CrazyGir> either way, I'll see where this gets me, thanks patdk-wk
[14:41] <Gxt4> the moment i add a second NIC to a system that boots over iscsi , initrd screws me over.  are there docs somewhere on how to force initrd to either pause till both my nics have an ip before continuing with iscsi , or force it to only start "iscsistart" when a particular nic has an ip.
[14:42] <Gxt4> i have tried scsi-if=ethX
[14:42] <Gxt4> but nada
[14:43] <Gxt4> if i stick in the cable in the second nic it's broken.
[14:43] <patdk-wk> heh
[14:43] <Gxt4> i have tried 3 different systems btw
[14:43] <patdk-wk> second nic was added after the first one? and is normally called eth1?
[14:43] <Gxt4> it's the same
[14:44] <Gxt4> if i install with eth0 or eth 1 as a primary
[14:44] <Gxt4> or if i do an install with only 1 and then add it later
[14:45] <Gxt4> even if ubuntu server is instyaled and configured with only 1 nic , the moment i add the second and it has a cable , it fucks up in initrd
[14:45] <Gxt4> it gets an ip for the other nic
[14:45] <Gxt4> and tried to contact my target
[14:45] <Gxt4> through the other interface
[14:45] <CrazyGir> ouch
[14:46] <Gxt4> which is on another subnet and has no iscsi targets
[14:46] <patdk-wk> guess the iscsi script grabs first to get dhcp working
[14:46] <patdk-wk> dunno, would have to check the iscsi initrd scripts
[14:47] <Gxt4> it should wait till all nics are up ..
[14:47] <CrazyGir>      you could have it run last?
[14:48] <Gxt4> what do you mean Crazy ?
[14:48] <Gxt4> Yes , it all works peachy on all systems untill i stick in another card
[14:48] <patdk-wk> gxt4, not really, it should know what one is used for iscsi maybe
[14:48] <Gxt4> brands?
[14:48] <hallyn> Daviey: is libcgroup not in the list of packages server team watches?  I don't see new bugs announced here by the bot...
[14:48] <zul> smb: cool i hope to get to it next week at a conference this week
[14:48] <Gxt4> well yes
[14:49] <Gxt4> @patdk-wk initrd should keep a record of which nic the target is on
[14:49] <smb> zul, ack
[14:50] <Gxt4> @patdk-wk aparently it doesn't ..
[14:50] <CrazyGir> Gxt4: can you do a static network configuration
[14:50] <Daviey> hallyn: no.. not as yet, you think it should be?
[14:50] <Gxt4> @crazy once it's past initrd it's all peachy
[14:51] <Gxt4> @ i can configure ip's via dhcp or fixed then
[14:51] <CrazyGir> dunno, I'm not a ubuntu guru
[14:51] <Gxt4> @ the problems are before os is loaded
[14:52] <hallyn> Daviey: well it affects lxc and libvirt.  so maybe.  Of course, so do most things in foundations :)
[14:52] <zul> hallyn: what does?
[14:53] <hallyn> libcgroup
[14:53] <hallyn> zul: ^
[14:53] <zul> ah ok
[14:53] <Daviey> hallyn: I wonder if this is best on your personal list?
[14:53] <hallyn> but maybe it's just my problem and no one else here woudl care to see them
[14:54] <Daviey> hallyn: The rest of us will no doubt have NFI how to triage those issues.
[14:55] <hallyn> Daviey: when it breaks it can break your whole openstack/uec/ensemble/whatever stack...  it definately seems server related to me.
[14:55] <Daviey> hallyn: argh, ok
[14:56] <hallyn> (as it's doing right now - ask smoser :)
[14:56] <hallyn> Daviey: but ok, if noone else is going to bother looking anyway then forget it
[14:56] <hallyn> i have a few more reboot tests to do, biab
[14:57] <Daviey> hallyn: added
[14:58] <hallyn> Daviey: tbh my sense is that libcgroup has fundamental flaws, and for our deafults we would be better off with a simple upstart job that mounts the cgroups
[14:58] <hallyn> maybe i should discuss on -devel...
[14:58] <smoser> hallyn, did you not author that ?
[14:58] <hallyn> smoser: no!
[15:00] <smoser> you're talking about cgroup-bin, right?
[15:01] <hallyn> yes
[15:01] <hallyn> and libcgroup1 in general
[15:01] <Daviey> hallyn: added now.. it's a topic for UDS i think
[15:01] <hallyn> what is a topic for uds?
[15:01] <hallyn> oh, you mean it *should* be
[15:01] <Daviey> hallyn: the flaws and perhaps an upstart job.
[15:02] <hallyn> ok
[15:03] <Daviey> hallyn: really your judgement on this matters more than mine, is it too late in the cycle to look at switching?
[15:03] <Daviey> based on reward/gain, potential instability and work we already have pending
[15:04] <hallyn> Daviey: its' past FFE at any rate :).  I don't see where the cgroup-lite package could cause instability, and
[15:04] <hallyn> I can see a lot of time being spent working around cgroup-bin issues.  And since lxc now depends on it, that tiem will have to be spent
[15:05] <Daviey> hallyn: it's not past FFE :)  it's past FF, but with a FFe get out of jail card.
[15:05] <hallyn> I don't know of anything which actually depends on cgred or cgroup-bin.  They just dpeend on cgroups being mounted
[15:05] <Daviey> (everyone gets issued one get out of jail card, use it wisely)
[15:07] <Daviey> utlemming: around?
[15:08] <hallyn> Daviey: oh yeah, there's also all the cpu time and batt life which cgclassify consume :)
[15:08] <hallyn> anyway, boot time
[15:11] <hallyn> Daviey: no, before i do, lemme ask - do you mind looking at and pushing http://people.canonical.com/~serge/ipxe.debdiff
[15:11] <hallyn> biab
[15:11]  * Daviey looks
[15:12] <Daviey> hallyn: Do reverse depends need handling, and/or a kvm-pxe transistional package?
[15:18] <Daviey> utlemming: Have you had a chance to look at the ipxe bug you were touching?
[15:37] <RoAkSoAx> zul: ok it works :)
[15:37] <RoAkSoAx> zul: arm/cobbler pxe
[15:38] <zul> RoAkSoAx: that didnt take you long :)
[15:40] <RoAkSoAx> zul: nah :) though there's one thing that i'm gonna change within cobbler for ARM archs which is to create the PXE file in the way of <MAC in uppercase> instead of 01-<mac lowercase> because u-boot is not fully compliant to standars just yet
[15:40] <jose__> hello
[15:40] <zul> RoAkSoAx: i just saw the bug report for it
[15:40] <jose__> can anybody help me with a samba problem?
[15:41] <RoAkSoAx> zul: cool there's a patch already
[15:42] <zul> RoAkSoAx: our delta is getting quite large can you send that patch upstream as well
[15:42] <zul> im going to do a new snapshot next week
[15:43] <jose__> aloha
[15:46] <jose__> iam sharing files with samba in an Ubuntu 10.04 server, when i copy/write a file in the server speeds reach 10mb/s both sides, but i work with acces files and its painful becauso of the slowness
[15:50] <RoAkSoAx> zul: ok cool, I'll send a few patches over by the end of the week
[15:51] <RoAkSoAx> w
[15:55] <jose__> forever alone, nobody help neither in samba irc
[15:56] <bkerensa> jose_: Whats the problem I might be able to help
[15:57] <hallyn> Daviey: how would we do a transitional package?
[15:57] <Daviey> hallyn: is kvm-pxe going awol?
[15:58] <hallyn> yes, but i'm not sure when
[15:58] <Daviey> hallyn: this cycle?
[15:58] <hallyn> if we want to wait on ahving ipxe confict-with kvm-pxe,
[15:58] <hallyn> then that woudl be fien - but installing the symlinks kvm needs should be done asap
[15:58] <hallyn> Daviey: i don't know.
[15:58] <Daviey> hallyn: agreed, just thinking ahead.
[15:58] <hallyn> I don't know who was going to push that button
[15:59] <hallyn> Daviey: do you know that there are things depending on kvm-pxe?
[15:59] <Daviey> usually, kvm falls onto our team :)
[15:59] <hallyn> but this is technically 'etherboot'
[15:59] <hallyn> and it's been kicked by debian
[15:59] <Daviey> hallyn: just qemu-common and testdrive
[15:59] <Daviey> not checked for reverse recommends tho
[16:00] <hallyn> i thought qemu-common only suggested it?
[16:00] <hallyn> anyway my next step was gong ot be to update kvm to recommend ipxe and drop kvm-pxe suggests
[16:00] <hallyn> same should be done with testdrive
[16:00] <hallyn> but i don't knwo if that's jumping the gun
[16:01] <hallyn> rmadison -u debian etherboot shows it's out of sid
[16:01] <hallyn> which, iiuc, means it's effectively unmaintained...
[16:01] <Daviey> i expect it is
[16:02] <hallyn> and, i'm growing more and more convinced i want to create cgroup-lite pkg :)
[16:02] <Daviey> hallyn: i don't think it's really a feature change, as the contents are just moving into a different package
[16:02]  * hallyn watches the hour hand laugh as it keeps moving on and leaving my productivity behind
[16:02] <hallyn> meaning?
[16:02] <Daviey> hallyn: Probably best to discuss the merits on a public FFe bug, subscribing Stephan
[16:02] <hallyn> smb?
[16:02] <Daviey> stgraber
[16:03] <smb> hallyn, hu?
[16:03] <hallyn> smb: nm, carry on, sorry :)
[16:03]  * smb goes back to sleep
[16:03] <hallyn> Daviey: an FFE for dropping etherboot right?
[16:03] <hallyn> Daviey: do you midn in the meantime cherrypicking the good part of the debdiff?
[16:04] <Daviey> hallyn: I think it looks ok.. i assume you have tried it?
[16:07] <hallyn> of course :)
[16:07] <hallyn> using it the last two days
[16:07] <stgraber> Daviey: ?
[16:08] <hallyn> stgraber: debian has dropped etherboot in favor of ipxe
[16:08] <hallyn> stgraber: we'd like to post FFE to do the same
[16:08] <hallyn> Daviey: suggested i subcribe you
[16:09] <stgraber> ok
[16:10] <Daviey> hmm, that was in regards to cgroups - that i thought stgraber had an interest in
[16:11] <hallyn> ah
[16:11] <hallyn> in that case,
[16:12] <hallyn> stgraber: then i guess Daviey was suggesting i file an FFE bug to create cgroup-lite package
[16:12] <lynxman> Daviey: ping
[16:12] <Daviey> lynxman: o/
[16:12] <hallyn> stgraber: which would conflict with cgroup-bin, and just ship an upstart job to mount all controllers separateuly under /sys/fs/cgroup
[16:12] <stgraber> hallyn: what would be the difference with cgroup-bin?
[16:13] <Daviey> hallyn: Ah, you are quite correct kvm-pxe is only a suggests of qemu-common
[16:13] <hallyn> stgraber: cgroup-bin reclassifies all tasks, and does so in a racy way
[16:14] <hallyn> and enables cgclassifyd by default which is pretty heavyweight given that noone uses it
[16:14] <lynxman> Daviey: I've got the swift scripts working, finally, you want a debdiff?
[16:14] <lynxman> Daviey: so bug + debdiff and such
[16:14] <Daviey> lynxman: hell.. yes.. :)
[16:14] <hallyn> lxc and libvirt only want the cgroups to be mounted.  They don't want cgroup-bin mucking with things under there.
[16:14] <Daviey> lynxman: you could propose a branch to the shared packaging branch
[16:14] <Daviey> lynxman: ~openstack-ubuntu-packagers
[16:14] <lynxman> Daviey: that would be option 2
[16:14] <lynxman> Daviey: you prefer a branch? :)
[16:15] <Daviey> lynxman: well i'd have to turn your debdiff into a branch myself otherwise :)
[16:15] <lynxman> Daviey: alright, branch it is
[16:16] <Daviey> rocking!
[16:17] <lynxman> \m/
[16:18] <hallyn> stgraber: (biam, reboot time) if you want convincing, take a quick look at the libcgroup bug list - some are fundamental, and i don't really want to force all lxc users to run that
  iam sharing files with samba in an Ubuntu 10.04 server, when i copy/write a file in the server speeds reach 10mb/s both sides, but i work with acces files and its painful becauso of the slowness
[16:26] <bkerensa> jose__: Unfortunately I do not use Samba but could it be network related?
[16:28]  * SpamapS stretches
[16:29]  * SpamapS slogs into the daily swamp of email with his DeleteKey-2001 pumping out useless bytes as fast as possible
 could be, i asked also in samba channel
[16:35] <Ursinha> tough day
[16:35] <lynxman> Ursinha: hope you still have energy
[16:35] <SpamapS> Ursinha: too many bugs? ;)
[16:40] <Daviey> Ursinha: are you claiming there a defects in the magic we do?
[16:41] <Ursinha> hah
[16:44] <ivoks> Daviey: is there anything i can do for you guys? i have some free cycles...
[16:44] <ivoks> :)
[16:44] <ivoks> Daviey: nothing critical, cause i might get pulled out without notice :)
[16:45] <Daviey> ivoks: Awesome!
[16:46] <Daviey> ivoks: You used to touch postfix, right?
[16:47] <Daviey> ivoks: well logwatch could appreciate your love, bug 809753 :)
[16:47] <ivoks> hehe ok
[16:49] <Daviey> <-- hero of the day, ivoks
[16:49] <Daviey> err arrow the wrong way around
[17:39] <ivoks> Daviey: debdiff attached
[18:02] <sidnei> hallyn, around?
[18:03] <bernhard2>  is it best tosetup exim4 with maildir ??
[18:05] <ivoks> i preferr postfix and maildir
[18:10] <bernhard2> basicly need an email server with smtp, imap
[18:11] <patdk-wk> yay, dovecot, postfix :)
[18:12] <ivoks> we have that configured for you :)
[18:12] <ivoks> just install mail-stack-delivery
[18:12] <ivoks> answer couple of questions and you are done
[18:13] <bkerensa> postfix for the win
[18:13] <bernhard2> how do i uninstall exim4 ?
[18:15] <patdk-wk> apt-get purge exim4
[18:16] <JasioK> Heya folks, I'm using Ubuntu 10.04 LTS and it seems my postfix doesn't want to work with webmail- third-party access via Outlook/Thunderbird etc is fine but anytime I try to load webmail I get "An error occurred listing mail in this folder : Failed to connect to localhost:143 : Connection timed out". I can't seem to find what would be causing the issue since the postfix/dovecot files look fine, and there isn't anything blocking the port.
[18:17] <hallyn> smoser: if you're interested, a proposed fix for the libvirt not starting VMS after boot is at https://bugs.launchpad.net/ubuntu/+source/libcgroup/+bug/828061
[18:17] <JasioK> I looked into /var/log/mail.log and there are no errors being reported.
[18:17] <TheEvilPhoenix> anyone know of any Ubuntu Server Certifications?  got a friend who wants to get one.
[18:18] <hallyn> sidnei: i am.  i'll be slow answering, but i'm here
[18:19] <sidnei> hallyn, i'm hitting #819621, i guess lxcguest wasn't updated in the ppa although it's marked as fix-released?
[18:20] <Pici> JasioK: The webmail package that you are using might be helpful to know, as well as if this issue just started or if this is the initial setup.
[18:21] <JasioK> Pici, sorry- I am using webmin (virtualmin/usermin package) and the issue just started.
[18:22] <hallyn> sidnei: uh yeah, not fixed in ppa.  ppa's don't get autosynced
[18:22] <hallyn> sidnei: which ppa+release are you using?
[18:23] <sidnei> hallyn, host is oneiric, container is lucid
[18:23] <ivoks> JasioK: 143 is imap, not postfix
[18:23] <sidnei> hallyn, so lxc-create added the ubuntu-virt ppa iiuc
[18:24] <JasioK> ivoks, so it would be an issue with dovecot then as thati s my imap server.
[18:24] <JasioK> that is*
[18:25] <ivoks> JasioK: or webmail, yes
[18:30] <JasioK> Looking through /var/log/syslog and running 'dovecot --error-log' and reading through the files- I don't see any errors.
[18:35] <hallyn> sidnei: can you file a bug against lxc to backport lxcguest to lucid?
[18:35] <sidnei> hallyn, sure.
[18:35] <hallyn> sidnei: thanks.  And then I'll update the templates not to use the ppa.
[18:35] <hallyn> That's just wrong
[18:36] <bernhard2>  how can i check if i have dovecot installed ?
[18:38] <sidnei> hallyn, bug #828262
[18:39] <hallyn> sidnei: thx
[18:40] <hallyn> SpamapS: ^  I don't know how this is actually handled.  I assume it's not just an SRU?
[18:40] <hallyn> eh, it's probably just not possible
[18:41] <hallyn> sidnei: ^ just a warning.  i doubt we can introduce a new binary package.  but i'm going udner the 'cant hurt to ask' philospophy
[18:41] <CrazyGir> hiya, in the following notes: https://help.ubuntu.com/community/KVM/Networking  under the bridge setup, "To work around this, add the following to your bridge configuration:  post-up ip link set br0 address f4:6d:04:08:f1:5f" <--- where exactly is this added?
[18:41] <sidnei> hallyn, np
[18:42] <hallyn> sidnei: so lemme upload new version for the ppa this afternoon.  hopefully be up by tonight
[18:42] <sidnei> hallyn, awesome, thanks!
[18:50] <CrazyGir> anyone know about post-up?
[18:52] <andol> CrazyGir: Such as in /etc/network/interfaces?
[18:53] <CrazyGir> andol: see my question noted above
[18:54] <CrazyGir> I am primarily confirming this because it is not clear enough for me to feel comfortable restarting networking on a remote system, is that wiki saying to add the post-up to /etc/network/interfaces?
[18:57] <andol> CrazyGir: Yes, that would be an entry you'd add to /etc/network/interfaces, for the br0 interface, with the same indention as the rest of the options (bridge_fd, bridge_wait, etc)
[18:58] <andol> CrazyGir: Note that I am only interpreting the wiki page and the syntax. I have no idea whatever it actually is a good idea or not to add that post-up command.
[18:59] <Daviey> ivoks: you rock star
[19:02] <CrazyGir> andol: perfect, thank you for that confirmation
[19:02] <CrazyGir> :)
[19:03] <hggdh> Daviey: good evening, care to have a look at bug 795159?
[19:10] <SpamapS> hallyn: its handled via ubuntu backports
[19:12] <jcastro> RoAkSoAx: woo! I found a cobbler bug I think!
[19:16] <RoAkSoAx> jcastro: hehe :) what's the bug?
[19:16] <RoAkSoAx> or what seems to be the problme?
[19:18] <stgraber> hallyn: any idea of why/how cgroup-bin is breaking my laptop suspend? :)
[19:19] <stgraber> hallyn: I just spent 3 hours trying to debug that issue assuming it was kernel related and went as far back as Natty's kernel without finding a single working kernel.
[19:19] <stgraber> hallyn: then looked at what I installed since I reinstalled my laptop 2 days ago and noticed that removing cgroup-bin fixes everything :)
[19:20] <stgraber> hallyn: with cgroup-bin installed, I can suspend once, then resume fine but second time I suspend, my laptop will just hang in the "flickering sleep LED" mode on tty1 (lenovo laptop)
[19:21] <hallyn> stgraber: hm, there was a bug about that.
[19:21] <hallyn> stgraber: i thought it was fixed
[19:22] <hallyn> stgraber: presumably libcgroup moved kthreadd or somesuch into another cgroup and shouldn't have.
[19:22] <hallyn> stgraber: have i convinced you yet that we should ahve cgroup-lite package? :)
[19:23] <stgraber> hallyn: yes :) enough time wasted trying to fix it :)
[19:23] <hallyn> the problem is it's not just one 'it'.
[19:24] <stgraber> going for lunch now, definitely +1 on getting a working cgroup-lite package
[19:25] <hallyn> stgraber: ok, i'll give it a shot once i get lxc backported to lucid for ppa.  i'll sling the result over to you
[19:25] <hallyn> stgraber: and i guess that suspend bug shoudl be re-opened.  i think i just marked it fixed today :)
[20:08] <Daviey> hggdh: will do
[20:11] <Daviey> hggdh: looks good, is there a branch/debdiff?
[20:11] <hggdh> Daviey: there was ;-)
[20:12] <hggdh> but I found there was a problem with my override_dh_auto_install
[20:12] <hggdh> and am looking at it now
[20:12] <hggdh> dammit
[20:12] <Daviey> hggdh: ah.. good stuff!
[20:12] <Daviey> hggdh: is it easier to patch, rather than use a rules stamp?
[20:13] <hggdh> Daviey: undortunately, no... the build is auto-adding /usr/share/python/runtime.d/*, and this is what kees wants out
[20:14] <hggdh> I could simply completely override bloody dh_auto_install, but this seems rather crude
[20:19] <ChmEarl> 11.10 kernel is now at 3.0.0-8.9.. any chance for it to get to 3.1 anytime before release?
[20:20] <RoyK> ChmEarl: out of curiosity, what's new in 3.1?
[20:20] <ChmEarl> RoyK, its the xen patches I need
[20:20] <RoyK> ok
[20:20] <RoyK> guest or host?
[20:21] <RoyK> that is - is host xen in official kernel at all?
[20:21] <ChmEarl> RoyK, yes host/dom0 -- there is a vga patch in 3.1
[20:22] <ChmEarl> RoyK, some 11.10 users report stable dom0 and nvidia accel driver works normally
[20:22] <RoyK> didn't think xen dom0 would ever make it into the mainline...
[20:23]  * RoyK hasn't really been reading much news about the issue, though, kvm works well
[20:23] <ChmEarl> RoyK, its a matter of configuration and setup to get it working with 11.10 kernel
[20:23] <ChmEarl> it=xen dom0
[20:24] <RoyK> is xen dom0 "better" than kvm these days?
[20:24] <RoyK> I mean - has anyone tried to compare the two?
[20:25] <ChmEarl> RoyK, now that dom0 is in mainline kernel, you could setup kvm vs xen tests and find out in less than 1 day
[20:25] <ChmEarl> I satisfied myself that xen is better for my use
[20:27] <RoyK> ok
[20:27]  * RoyK only uses LTS releases for his servers
[20:28] <CrazyGir> ChmEarl: in what ways did you find xen better for your use?
[20:28] <ChmEarl> CrazyGir,  paravirtual network speed is double for linux guests
[20:28] <ChmEarl> in xen
[20:30] <patdk-wk> hmm?
[20:30] <RoyK> ChmEarl: are there/will there be any cluster/failover possibilities in Xen from ubuntu now?
[20:30] <rickjaruiz> im using "top" with over 1gb used and i dont understand how to check what is using it
[20:30] <patdk-wk> the kvm network couldn't perform?
[20:30] <RoyK> rickjaruiz: ps axfv
[20:30] <RoyK> rickjaruiz: and 'free'
[20:31] <RoyK> rickjaruiz: even though the "used" amount of memory is high, as reported by top, it's usually far lower due to memory used for caching
[20:31] <ChmEarl> RoyK, there is a launchpad team to package latest hypervisor for 11.10, but I'm not sure about cluster software
[20:31] <rickjaruiz> well there should be nothing running atm
[20:31] <patdk-wk> free -m :)
[20:31] <RoyK> rickjaruiz: free will tell you
[20:32] <patdk-wk> ChmEarl, you tested with virtio_net?
[20:32] <RoyK> rickjaruiz: !pastebin free
[20:32] <ChmEarl> patdk-lap, don't remember... I tested on Opensuse
[20:32] <RoyK> !pastebin
[20:32] <rickjaruiz> http://pastebin.com/PTyNDTbK
[20:33] <patdk-wk> 188megs used
[20:33] <rickjaruiz> free
[20:33] <RoyK> yeah, looks normal
[20:33] <patdk-wk> seems really high, if *nothing* is running
[20:33] <patdk-wk> mine is normally <50megs
[20:33] <RoyK> lots of memory spent for caching, but that'll be released if a process requests it
[20:33] <rickjaruiz> well mysql is running, nothing conencted to it now though
[20:34] <rickjaruiz> i c
[20:34] <RoyK> rickjaruiz: pastebin "ps axfv"
[20:35] <rickjaruiz> http://pastebin.com/Tf9WHi8F
[20:35] <rickjaruiz> ps axfv
[20:36] <RoyK> so mysqld is eating 45 megs
[20:37] <RoyK> should be quite ok
[20:37] <hggdh> Daviey: I cannot get the $#%@ rules to delete the directory
[20:38] <rickjaruiz> so in free, im looking at used buffers/cache, for what is really used in memory?
[20:39] <Daviey> hggdh: why not delete it in a patch?
[20:39] <hggdh> Daviey: how could it be done?
[20:40] <Daviey> hggdh: sorry, perhaps i'm missing the issue..
[20:40] <RoyK> rickjaruiz: free shows "free" memory as unallocated. unallocated memory is usually not good. memory allocated for caching is good
[20:41] <rickjaruiz> im just kind of confused which one to look at, that tells me how much ram i readlly had left
[20:41] <rickjaruiz> *really
[20:41] <hggdh> Daviey: kees would like /usr/share/python/runtime.d/ajaxterm.rtupdate *not* to be there; this directory & content is auto-created by dh_*
[20:42] <bernhard2> trying to make exim4 dovecot work with TLS but receive this message when i test it: Host did not advertise STARTTLS
[20:42] <hggdh> Daviey: I thought I could delete it by overriding dh_auto_install, but it does not seem to work
[20:42] <hggdh> Daviey: so... except for this rather small detail, it is ready
[20:42] <RoyK> rickjaruiz: -/+ buffers/cache:     188172    1861960
[20:43] <RoyK> the latter is the amount of memory not actively in use
[20:43] <Daviey> hggdh: It should allow you to remove.. are you expanding the location correctly?
[20:43] <hggdh> Daviey: I believe I am, but of course I can be wrong. The branch is at lp:~hggdh2/ubuntu/oneiric/ajaxterm/bug795159
[20:43] <rickjaruiz> thanks royk
[20:44] <hggdh> and I have been looking at this for so long I am probably incapable of seeing the obvious
[20:44] <RoyK> rickjaruiz: sorry - how much is free
[20:44] <RoyK> well
[20:44] <RoyK> same thing
[20:48] <mande01> Hi, I'm wanting to install a ubuntu on a USB or SD card, and have it run from there. What changes should I make to the install to allow this to work successfully?
[20:48] <mande01> P.S. ubuntu server
[20:50] <RoyK> mande01: it should work without changes
[20:52] <mande01> Is there a way I could get it to run from RAM or stop writting log files?
[20:57] <RoyK> mande01: it won't run out of RAM by using an SD card - RAM usage is the same
[20:58] <RoyK> even if you install it on an SD card, or a SAS drive, or an old SCSI drive, or an ATA drive or even a floppy (if you could fit it there)
[20:58]  * RoyK vouches for core memory
[21:00] <mande01> Royk: sorr y I'm not making myself clear.
[21:00] <RoyK> then please explain :)
[21:01] <mande01> Royk: I want to install the system on an SD card but not have a lot of read or writes going to the card so it will last and be more robust.
[21:01] <RoyK> you can use tmpfs
[21:01] <mande01> something like freenas, but having it run from ram
[21:01] <RoyK> meaning a dynamic ram drive
[21:02] <RoyK> mande01: most SD cards have wear levelling in them, so it'll last quite some time
[21:02] <RoyK> mande01: and if you make sure the system doesn't log everything very verbose, it'll probably work well for quite some time
[21:03] <RoyK> AFAIK wear levelling became standard about 3-5 years ago, perhaps longer
[21:05] <mande01> Thanks,
[21:06] <RoyK> mande01: generally the root is rarely written to except for logs and swap. you can disable the swap if you like, although it might be a bad idea
[21:07] <RoyK> for the logs, just configure syslog not to log to verbosely
[21:18] <bernhard2> Configuring Exim4 to use TLS. Configured 03_exim4-config_tlsoptions but when i restart exim4 and check with:  exim4 -bP | grep tls_
[21:18] <bernhard2> i get this output..     http://pastebin.com/VYwTEihg (it does not show what i have configured) when i test get this message  Host did not advertise STARTTLS
[21:27] <bernhard2> can anyone check my exim4 issue above..
[22:24] <jvargas> hi
[22:26] <jvargas> I plan to setup VNC server on ubuntu 11.04, so that the user doesn't need to start an X session if server is rebooted. I mean that VNC oculd be always running.
[22:26] <jvargas> is it possible and which vnc server setup should I follow?
[22:49] <ChmEarl> jvargas,  vnc4server xauth
[22:52] <hallyn> stgraber: http://people.canonical.com/~serge/cgroup-lite    that seems to be working for me with libvirt at least.
[22:58] <stgraber> hallyn: ok. I'll grab it and test with arkose and lxc (though I guess you tested regular lxc already)
[22:59] <hallyn> stgraber: heh, no i didn't.  lxc-create is spinning atm
[23:00] <hallyn> gr.  W: Failure while installing base packages.  This will be re-attempted up to five times.
[23:00] <stgraber> heh
[23:06] <bernhard2> how can i check if Exim was compiled with OpenSSL (or GnuTLS) support
[23:24] <hallyn> stgraber: eh, it needs a few tweaks yet
[23:25] <stgraber> hallyn: ok. Let me know when I can test it
[23:25] <hallyn> stgraber: will do
[23:46] <hggdh> Daviey: finallt, bug 795159 is ready for review
[23:48] <Daviey> hggdh: looking