[00:27] <simonjj> anyone here that knows vm-builder?
[00:58] <adam_g> zul: when are you planning on doing the e4 upload? friday?
[01:00] <hggdh> Daviey, roaksoax: bug 943000 is hitting the QA lab
[01:00] <uvirtbot`> Launchpad bug 943000 in cobbler "update to system fails with  Exception value: 'NoneType' object has no attribute 'os_version'" [Undecided,New] https://launchpad.net/bugs/943000
[01:02] <twb> Do they have white coats and stuff, or is it all inside a server in a rack
[01:03] <hallyn> and mice in little cages
[01:04] <zul> adam_g: yeah
[01:05] <twb> huge bottle glasses
[01:08] <jcorneli_> @kklimonda : I updated to the new kernel but the device still isn't booting properly
[01:12] <adam_g> zul: ok, im close to finishing porting the charms to the new branch. hopefully have CI on that tomorrow, and we should be good to update keystone
[01:15] <zul> kk
[01:37] <Canadian1296> I want to set up a VPN server on my server, so I can have a secure tunnel into my network.
[01:37] <Canadian1296> What package do I need?
[03:22] <hallyn> smoser: would it be acceptable to you if by default you couldn't run lxc/libvirt inside a container, but some workaround (disabling or changing apparmor profile) would let you?
[03:22] <hallyn> I'm trying to decide whether it's worth immediately doing separate profiles per container
[03:25] <hallyn> i'd prefer to punt on per-container profiles to make sure we take the time to do it right...
[03:25] <hallyn> anyway we can talk about it tomorrow.
[03:33] <twb> lxc inside a container?  You mean like nested ones?
[03:40] <hallyn> yeah
[03:41] <hallyn> nothing stopping it right now, but i'd like to clamp down on cgroups inside containers by default
[04:10] <twb> Why?
[04:10] <twb> Just because it'd be confusing?
[04:15] <hallyn> to stop changes to the devices cgroup setting
[04:26] <twb> Oh, you can break out of it that way?
[04:27] <hallyn> well you could give yourself the rights to /dev/sda and write to it
[04:28] <hallyn> now it's not something that would accidentally happen, and i mainly for 12.04 want to prevent accidental abuse of the host by containers
[04:28] <hallyn> but still, it's blatant enough...
[04:31] <twb> Nod
[04:31] <twb> That's why my containers lack sys_admin cap
[04:42] <Smozius> Can someone here tell me how to set the PE size for LVMs in Ubuntu server 10.04?
[04:43] <twb> Do you mean PV ?
[04:43] <Smozius> No the physical extent size
[04:43] <Smozius> so I can get LVMs above 256GB
[04:44] <Smozius> By default its at 4MB
[04:44] <Smozius> For some reason there is no option in the LVM set up to make it higher
[05:14] <Canadian1296> I want to set up a VPN server on my server, so I can have a secure tunnel into my network. What package do I need?
[05:23] <twb> Smozius: um, I have LVs >256G and I haven't touched the extent size
[05:23] <Smozius> Oh.... well then maybe I don't have to worry about it lol
[05:23] <twb> Smozius: and I thought the default extent size was *4kiB*
[05:24] <Smozius> its 4MB on CentOS
[05:24] <twb> The extent size really only matters if you're trying to avoid write amplification, which is a PITA to do
[05:24] <Smozius> and 16MB I heard pushes it up to 1TB
[05:24] <Smozius> ok
[05:24] <twb> It doesn't hurt to crank it up though
[05:24] <twb> I think you set it at PV creation time
[05:24] <twb> Well, it would hurt if you set it to 1G and you then wanted a 128M LV
[05:24] <Spanky> My LVM is 4mb extents and I have 3TB volume....
[05:25] <twb> You can obviously only create LVs in exact multiples of the extent size
[05:25] <twb> Bigger extents might also mean higher data:metadata ratio, I don't know
[06:20] <Canadian1296> How would I set up an IRC server? Preferably with NickServ and ChanServ
[06:23] <twb> apt-get install ircd-irc2
[06:23] <twb> Dunno about nickserv/chanserv
[06:28] <Canadian1296> twb: Alright
[06:29] <twb> There are several ircds, irc2 is the simplest and easiest
[06:30] <twb> I use it for my in-office IRC
[06:33] <Canadian1296> twb: Okay, so without nickserv and chanserv, I'll get a basic irc that anyone can join and speak in? Can I configure channels and accounts and stuff without chan and nick serb?
[06:33] <Canadian1296> **serv
[06:33] <twb> NFI
[06:33] <twb> basic irc you just join channels to create them
[06:33] <twb> I never cared about anything fancier
[06:34] <twb> #freenode can probably direct you to detailed irc server info
[06:34] <onre> dunno about modern irc servers but even original ircd had users and passwords, if that's good enough
[06:34] <Canadian1296> twb: Alright I'll ask there about nickserv. Thanks for your help :)
[06:36] <Canadian1296> onre: All I need is a simple irc server, I just want to allow users to register their nicknames ( on here it's /msg NickServ etc etc, but idk how to do it without nickserv
[06:38] <Smozius> Where is the binary file for apache2 installed at in ubuntu server? I cannot find it in /usr/sbin/....
[06:38] <Smozius> Also did a find / -name httpd* and didn't come with any binary files
[06:38] <twb> It'll be called apache not httpd
[06:39] <twb> Since when apache httpd existed, it was the only *apache* product but not the only *httpd*
[06:39] <Smozius> Ah okay, found it
[06:39] <Smozius> i assume its /etc/init.d/apache2?
[06:39] <twb> uh, that's not a binary
[06:40] <twb> I guess you aren't familiar with System V
[06:40] <Smozius> Nope
[06:41] <Smozius> So then its /usr/sbin/apache2
[06:41] <twb> Looks like it
[06:42] <twb> Here is how you work it out: http://paste.debian.net/158008/
[06:45] <uvirtbot`> New bug: #943088 in nagios3 (main) "package nagios3-cgi 3.2.3-1ubuntu1.2 failed to install/upgrade: subprocess installed post-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/943088
[07:04] <Smozius> twb: Is /usr/sbin/httpd a deprecated apache2 version or a fork of apache?
[07:05] <twb> NFI
[07:06] <twb> It doesn't exist on my system.
[07:07] <twb> In fact, it isn't provided by and package in Ubuntu.
[08:06] <davepigott> jamespage: ping
[08:24] <Daviey> a
[08:25] <smb> b
[08:26] <lynxman> c
[08:27] <Daviey> harh
[08:41] <lynxman> Daviey: ping
[08:41] <Daviey> lynxman: pong
[08:41] <lynxman> Daviey: early morning sir :)
[08:41] <lynxman> Daviey: was wondering, I have puppet 2.7.11 packaged, would it be any help?
[08:42] <Daviey> lynxman: i would think so! :)
[08:43] <lynxman> Daviey: cool, let me make it pretty and presentable then and I'll submit a merge request this morning
[09:13] <jamespage> davepigott, pong
[09:13] <jamespage> morning all
[09:13] <davepigott> jamespage: Hi. :)
[09:13] <davepigott> jamespage: Just wondering. Do I need to enable vlan on the public network switch as well as the private?
[09:13] <jamespage> davepigott, I don't think so
[09:14] <davepigott> jamespage: OK. Well, as I said, I can now ping my instances (there's a phrase I never expected to say!) but when I try to ssh I get connection refused
[09:14] <davepigott> jamespage: Unless it's on cloud01
[09:14] <davepigott> jamespage: I opened ssh on the switch as well (it was off as well)
[09:15] <jamespage> davepigott, where are you ssh'ing from? cloud01?
[09:15] <davepigott> jamespage: No. From a client machine
[09:15] <lynxman> jamespage: morning! I'll be introducing you today to your new disciple ;)
[09:15] <jamespage> lynxman, w00t
[09:16] <jamespage> davepigott, hmm
[09:17] <davepigott> jamespage: Frustrating, isn't it.
[09:17] <kai> hm, I don't get it.. lxc really is acting weird and unpredictable :/
[09:17] <davepigott> jamespage: I've come this far, I'm 95% there. I really want to make the vlan solution work. I'm suspecting a switch config again, but I may be wrong
[09:18] <jamespage> davepigott, you might be but if you are accessing the instance through its public IP address I don't think that should matter
[09:18] <davepigott> jamespage: And it's obviously talking to the instance, because it's "connection refused" not "host unreachable" or something like that
[09:19] <jamespage> davepigott, thats useful
[09:19] <kai> davepigott: ssh is running and you're not blocked by a firewall config or denyhosts or something like that?
[09:19] <jamespage> davepigott: can you grab the console output from one of the failing instances for me
[09:20] <davepigott> kai - ssh is running, not sure about denyhosts, and we're all on the same lan, no firewall
[09:20] <davepigott> jamespage: Will do. One moment
[09:21] <davepigott> jamespage: First of all, here's an output from ssh -v -v -v: http://pastebin.ubuntu.com/861673/
[09:21] <kai> davepigott: if you didn;t install denyhosts, you should be fine
[09:22] <Daviey> davepigott: is this a cloud instance you are trying to connect to?
[09:22]  * Daviey has missed context.
[09:22] <davepigott> Daviey: Yep
[09:22] <Daviey> davepigott: Well, it seems you are either: Using the wrong key, the instance has no key, or the key failed to get set
[09:22] <jamespage> davepigott, it might be that the instance can grab stuff from nova-api (metadata) on anywhere other than cloud01
[09:22] <jamespage> console should tell us
[09:23] <Daviey> davepigott: can you euca-get-console-output i- ?
[09:23] <davepigott> Daviey: I can connect to an instance running on the "controller" node - i.e. one running all nova/glance/swift - but not one running on a nova-compte/network node. Just getting output….
[09:23] <Daviey> O_o
[09:23] <Daviey> lets see the console log..
[09:24] <davepigott> Daviey: jamespage http://pastebin.ubuntu.com/861675/
[09:24] <Daviey> ahhh
[09:25] <davepigott> Ahhh? Please tell me it's simple. :)
[09:25] <Daviey> davepigott: so, you are SURE you can ssh to it from the controller node?
[09:25] <jamespage> davepigott, that looks to be the issue
[09:26] <davepigott> Daviey: No, I ssh to an instance on the controller node from a client, but if I ssh onto an instance that's on another node I can't
[09:26] <Daviey> ih
[09:26] <Daviey> oh
[09:26] <jamespage> davepigott, I suspect that if you grab the console log from one running on cloud01 it should be OK
[09:26] <Daviey> davepigott: Well i'm guessing it's SNAT'd traffic.
[09:26] <davepigott> jamespage: Yes, it is. I've done it.
[09:26] <davepigott> SNAT'd?
[09:26] <davepigott> Daviey: ^
[09:26] <jamespage> davepigott, I suspect that your configuration for the nova-api server might be borked on the other nodes
[09:26] <jamespage> davepigott, you are running nova-api on all nodes right?
[09:27] <davepigott> jamespage: According to all the documentation I've read you only run nova-api on the controller, but yes, I am
[09:27] <Daviey> davepigott: Can you comment what the  --ec2_dmz_host  on compute node is
[09:27] <Daviey> ?
[09:27] <davepigott> Daviey: Yeah, one moment
[09:29] <davepigott> Daviey: In nova.conf?
[09:30] <davepigott> Daviey: If so, it's not set
[09:31] <Daviey> hmm
[09:31] <davepigott> Hmmm. Nor is ec2_api
[09:32] <davepigott> Daviey: My nova.conf file (same on all nodes) http://pastebin.ubuntu.com/861681/
[09:32] <Daviey> davepigott: is ec2_host?
[09:33] <davepigott> Daviey: nope
[09:34] <Daviey> davepigott: try adding: --ec2_host=192.168.1.14
[09:34] <Daviey> --ec2_dmz_host=192.168.1.14
[09:34] <Daviey> --ec2_url=http://192.168.1.14:8773/services/Cloud
[09:45] <davepigott> Daviey: OK. And then restart compute and network?
[09:47] <jamespage> davepigott, yes
[09:49] <davepigott> jamespage: Daviey: Are you sure nova-api should be running on *all* nodes? All the documentation says not
[09:50] <jamespage> davepigott, I think you can OR you can run it in one location - but for the life of me I can't remember the rationale
[09:50] <Daviey> davepigott: You can do either.  WE tend to recommend running it on each node because nova-api doesn't scale well.
[09:50] <jamespage> I think that nova-api provides the metadata service - so having it on all nodes scales better
[09:50] <jamespage> ah- like Daviey said :-)
[09:51] <davepigott> But the nova.conf points at the one node as being nova-api
[09:51] <davepigott> So are the others redundant?
[09:52] <Daviey> davepigott: Hmm, lets just see if that setting works.. if it does, lets change it to point the the local ip address.
[09:52] <davepigott> Daviey: ok
[09:55] <jamespage> biab
[10:04] <kai> right, too much magic...
[10:04]  * kai just figured out part of his lxc trouble :)
[10:05] <kai> now let's wait through the bootstrap
[10:05] <davepigott> Daviey: jamespage: "ssh: connect to host 192.168.1.59 port 22: Connection refused" :(
[10:16] <jamespage> davepigott, please check the console log again
[10:17] <davepigott> jamespage: http://pastebin.ubuntu.com/861711/
[10:20] <jamespage> davepigott, hmmm
[10:20]  * jamespage scratches his head
[10:21] <davepigott> jamespage: Join the club.
[10:25] <kai> davepigott: tried a sniffer to see if the packets get to the server?
[10:29] <davepigott> kai: No. Actually, the packets are obviously getting to the instance, because pings are working, and if I do an ssh -v -v -v I can see that the instance is responding, it's just refusing the connection
[10:30] <davepigott> kai: And when the boot up happens, the instance doesn't appear to have a connection to the outside world.
[10:30] <jamespage> davepigott, I'm pretty sure the issue is on startup - the instance does not initialise properly so you won't ever be able to get to it
[10:30] <jamespage> its the link between nova-compute/nova-api for ec2 metadata thats causing the issue
[10:30] <davepigott> jamespage: So why is it starting up badly on the compute nodes?
[10:30] <jamespage> let me take a look in the test lab charms to see if anything is missing
[10:30] <davepigott> jamespage: OK. Thanks
[10:33] <Daviey> davepigott: you might need to put the bridge in promiscuous mode..
[10:34] <davepigott> Daviey: Hmm. Uh, and how do I do that?
[10:34] <Daviey> davepigott: sudo ip link set dev br100 promisc on
[10:34] <davepigott> On all nodes?
[10:34] <Daviey> davepigott: well, if it were me.. i'd be experimenting with one compute node to start with :)
[10:34] <davepigott> Daviey: Ah. Good point. :)
[10:36] <jamespage> davepigott, the only flag we set during testing is --ec2_dmz_host
[10:36] <davepigott> jamespage: Which I have set
[10:37] <jamespage> davepigott, whats in /var/log/nova/nova-api.log on the failing nodes?
[10:45] <davepigott> jamespage: http://pastebin.ubuntu.com/861735/
[10:47] <davepigott> jamespage: But since nothing references nova-api on the other nodes, it won't make a huge amount of difference
[10:55] <jamespage> davepigott, OK - so I'll paste the config from our functional lab - it might help
[10:55] <jamespage> Compute nodes - http://paste.ubuntu.com/861749/
[10:56] <davepigott> jamespage: So compute nodes are different from the main one?
[10:57] <davepigott> jamespage: In terms of nova.conf I mean
[10:58] <jamespage> davepigott, and the cloud controller - http://paste.ubuntu.com/861752/
[10:58] <jamespage> davepigott, yes they are
[10:59] <davepigott> jamespage: OK. Let me do a little comparison work. Thanks!
[10:59] <jamespage> please note that this config is for essex on precise so there will be quite alot different I suspect
[10:59] <davepigott> jamespage: Yep. Noted
[11:16] <linocisco> hi
[11:30] <lynxman> jamespage: ping
[11:31] <jamespage> lynxman, pong
[11:31] <lynxman> jamespage: would like to introduce you to bbcmicrocomputer
[11:31] <jamespage> lynxman, sure
[11:31] <lynxman> bbcmicrocomputer: jamespage is our java expert (author of http://javacruft.wordpress.com/)
[11:32] <lynxman> jamespage: feel introduced :)
[11:32] <jamespage> lynxman, ta
[11:32] <jamespage> hey bbcmicrocomputer
[11:32] <bbcmicrocomputer> jamespage, Hi, nice to meet you
[11:32]  * jamespage shakes hands
[11:33] <jamespage> bbcmicrocomputer, so lynxman tells me that you have a strong Java background?
[11:35] <Daviey> davepigott: so, on the other nodes.. did you set it to use ec2* from the compute ip address?
[11:35] <davepigott> Daviey: No. ec2* looks to the main server
[11:36] <Daviey> davepigott: make it = the compute node.. see how that works out
[11:36] <Daviey> (providing you have nova-api running!)
[11:36] <davepigott> Daviey: Yeah, I do. OK
[11:40] <bbcmicrocomputer> jamespage, yeah, although I keep it silent
[11:40] <davepigott> Daviey: Nope. Same deal. Can ping but not ssh
[11:41] <Daviey> davepigott: it's the euca-console-log which is more useful tbh
[11:42] <davepigott> Daviey: OK
[11:42] <davepigott> Daviey: One moment
[11:46] <davepigott> Daviey: http://pastebin.ubuntu.com/861801/
[11:48] <Daviey> well that makes no sense
[11:50] <Daviey> davepigott: on the compute node, can you $ echo 1 | sudo tee /proc/sys/net/ipv4/ip_forward
[12:14] <davepigott> Daviey: Sorry - got a phone call. It gives me "1"
[12:15] <uvirtbot`> New bug: #943208 in sysstat (main) "package sysstat 10.0.3-1 failed to install/upgrade: ErrorMessage: subprocess installed post-installation script returned error exit status 2" [Undecided,New] https://launchpad.net/bugs/943208
[12:33] <eutheria> i want to setup remote logging for my applications, would rsyslogd be up to the task?
[12:54] <TeTeT> eutheria: guess it depends what logging mechanism the applications use, but basically yes, rsyslogd can be used for remote logging
[12:54] <TeTeT> eutheria: there's a whitepaper on rsyslog at http://www.canonical.com/about-canonical/resources/white-papers
[12:56] <eutheria> i was going to use python's logging module
[12:59] <iclebyte> what are you guys using to analyse your logs ?
[13:06] <Daviey> davepigott: sorry, that enabled ip routing... see if that makes a difference.
[13:07] <davepigott> Daviey: Oh! OK. One moment
[13:44] <zul> morning
[13:47] <lynxman> zul: morning!
[13:47] <zul> hey lynxman
[13:53] <tgardner> smoser, I'm researching bug #943119 which led me to your bug #903897. what is your use case for aufs ?
[13:53] <uvirtbot`> Launchpad bug 943119 in linux "aufs.ko missing from the Precise kernels" [Undecided,Confirmed] https://launchpad.net/bugs/943119
[13:53] <uvirtbot`> Launchpad bug 903897 in linux "-virtual kernel missing modules" [High,Fix released] https://launchpad.net/bugs/903897
[13:55] <smoser> tgardner, i have no specific use case for aufs.
[13:55] <tgardner> smoser, you complained that it would break scripts that expect aufs.
[13:56] <smoser> i do think that Bogdan (opener of that bug) is probably not going to be alone
[13:56] <smoser> of course it will break things that use aufs.
[13:56] <smoser> it deleted a kernel function
[13:56] <tgardner> do you why overlayfs is inadequate?
[13:57] <tgardner> know why*
[13:57] <smoser> i completely understand you not wanting to support something that is not in mainline especially when there is a solution that is .
[13:57] <smoser> i suspect that its only inadequacy is that it has different interface to it.
[13:57] <tgardner> smoser, overlayfs is not mainline either, though its more likely to get that way then aufs
[13:57] <smoser> and things have been built (like this NAS that the guy mentioned) to use aufs.
[13:57] <davepigott> Daviey: No. Didn't make a difference. :(
[13:58] <smoser> tgardner, i suspect there will be more complains about it missing.
[13:58] <smoser> but i completely understand your position
[13:58] <smoser> and would probably make the same decision myself
[13:58] <tgardner> smoser, well, it turns out overlayfs doesn't do inotify correctly. things like 'tail -f' don't work. which is why I'm reexamining aufs
[13:59] <smoser> ah. well inotify is pretty important.
[13:59] <tgardner> indeed
[14:01] <smoser> tgardner, sorry i couldn't be more help.
[14:01] <tgardner> smoser, however, I'd be better armed with information if I had some specific cases where overlayfs is insufficient, and for which aufs solves the problem. apw is likely to fix the inotify bug, but I'd like to know what else is missing.
[14:01] <smoser> my guess is if you wait, others will tell you :)
[14:02] <tgardner> smoser, well, by then its a bit late
[14:02] <smoser> yeah.
[14:02] <smoser> maybe ask on ubuntu-devel ?
[14:02] <smoser> its at least a wider audience.
[14:02] <smoser> but nothing compared to the onslaught that we'll see soon.
[14:02] <tgardner> yeah, I guess thats a good place.
[14:03] <smoser> tgardner, you could cross post to ubuntu-cloud
[14:03] <smoser> or server
[14:03] <smoser> cloud might expose some use cases specifically
[14:03] <tgardner> smoser, I needed more email in my inbox
[14:04] <smoser> exactly.
[14:27] <hallyn> tgardner: gary_poster: ^ if tail -f doesn't work in overlayfs, that's gonna suck for the ephemeral containers whose rootfs is based on overlayfs
[14:27] <hallyn> (i'm surprised it hasn't shown up more, in fact, if it's that blatant)
[14:28] <tgardner> hallyn, it seems to be.. Andy is working on it, but he says the patches are pretty ugly.
[14:28] <hallyn> overlayfs was *so* clean before it actually needed to do things like LSM an inotify
[14:29] <tgardner> yeah.
[14:29] <hallyn> maybe it's time to take yet another look at valerie's mount stuff
[14:30] <tgardner> hallyn, unionfs is a ginormous patch set, and I don't think its fully coked yet
[14:30] <tgardner> cooked*
[14:30] <hallyn> it's been years since i looked at it
[14:30] <hallyn> but i did understand why overlayfs was so seductive
[14:30] <hallyn> (maybe still is - i
[14:30] <hallyn> i'll have to look at apw's patchset :)
[14:30] <tgardner> its much simpler. it at least works for the live CD use case
[14:31] <hallyn> stgraber: jjohansen: i think i'm going to add a 'lxc.lsmdomain' or somesuch config variable to do simplest possible per-container apparmor policies for now
[14:31] <hallyn> if not specified, it'll choose a default, ncie and tight one
[14:32] <hallyn> ubuntu templatse well generate per-container ones to customize cgroup controls
[14:32] <hallyn> (cgroups are the main reason i feel i need to do this)
[14:32] <hallyn> (would love for someone to say i shouldn't worry about that :)
[14:35] <gary_poster> hallyn, I don't have the scrollback; lemme see if I can find the online log, assuming there is one
[14:37] <gary_poster> http://irclogs.ubuntu.com/2012/02/29/%23ubuntu-server.txt doesn't show this yet
[14:53] <hallyn> gary_poster: sorry, just that overlayfs apparently doesn't support inotify, and tail -f doesn't work
[14:53] <hallyn> gary_poster: tgardner was looking for aufs use cases
[14:54] <hallyn> gary_poster: and I would have thought if tail -f didn't work in ephemeral containers, that would've bothered you by now :)
[14:54] <tgardner> hallyn, Leann is gonna send out an information request on ubuntu-devel.
[14:54] <hallyn> ok
[14:58] <SockPants> hi all
[14:59] <SockPants> i've attempted to install a gui on my server, but messed it up and i'd rather remove everything now. so, which packages do i remove to remove both gnome and unity completely?
[15:01] <Daviey> lynxman: How is that puppet branch progressing?
[15:01] <Daviey> :)
[15:02] <lynxman> Daviey: just messaged you in another channel ;)
[15:02] <lynxman> Daviey: all ready for review!
[15:02] <lynxman> Daviey: https://code.launchpad.net/~lynxman/ubuntu/precise/puppet/newupstream/+merge/95185
[15:04] <Daviey> lynxman: rocking
[15:05] <lynxman> Daviey: tested it and its working (on my servers)
[15:06] <lynxman> Daviey: did I tell you I'm running oneiric in prod? :)
[15:11] <Daviey> lynxman: No.. :)
[15:12] <Adri2000> zul: hi, what's the status of keystone for precise? I've seen MIR bugs and keystone light mentioned but no recent comments
[15:13] <zul> Adri2000: should be uploaded this week
[15:14] <Adri2000> keystone or keystone light? (actually I don't even know what's the status of this upstream). and it's going to main?
[15:17] <zul> keystone light has already been merged into keystone so it really doesnt matter at this point :)
[15:18] <gary_poster> hallyn, sorry, been having Precise issues on my desktop.  We only run our test command in overlayfs.  It is surprising that that limitation has not bitten us; it may be because we've been using a single subset of the tests to get everything else set up.  Maybe not wise.  We should hopefully have a full test run this week to examine.
[15:18] <Adri2000> zul: ok, didn't know that, thanks :)
[15:18] <gary_poster> maybe it would not bite us even in the entire test suite, but that does seem unlikely, given how much launchpad does and tests
[15:19] <hallyn> yeah
[15:19] <gary_poster> so, we know aufs works/worked
[15:20] <gary_poster> certainly it would be nice to have that as an option.  Since the inotify issue is already slated to be addressed that's promising, but I'll plan to have full test run results to look at the overlayfs situation
[15:20] <gary_poster> this week
[15:24] <hallyn> i think enabling aufs is a lot more work than justified by "it would be nice"  :)
[15:25] <hallyn> gary_poster: tgardner said an email will go to ubuntu-server asking for use cases
[15:26] <tgardner> hallyn, actually, we've been keeping up with aufs updates, but haven't tested it much.
[15:27] <hallyn> oh, ok, i figured it was a whole new porting effort
[15:27] <hallyn> though i recall bad bugs even in maverick
[15:28] <tgardner> hallyn, yep, bad bugs are my concern as well as soon as aufs sees any usage
[15:36] <hallyn> gah.  laptop froze AGAIN.
[15:36] <hallyn> i'm starting to think vim is causing it
[15:39] <lynxman> hallyn: vim is evil ;)
[15:41] <ogra_> yeah, better use oowriter !
[15:41]  * benji performs the sign of vim and kisses his vim necklace.
[15:42] <hallyn> vim is probably jsut too heavyweight.  back to ed
[15:42] <hallyn> that's not a bad idea
[15:43] <hallyn> rest of the day, i'm using ed!
[15:46] <hallyn> unfortunately, unlike yesterday, the pic i took with my phone of my screen isn't as clear so it's hard to retype
[15:47] <lynxman> hallyn: just use xxd like real men do
[15:47] <hallyn> xxd?
[15:48] <hallyn> oh
[15:48] <lynxman> hallyn: :)
[15:48] <zul> xxd = porn lite
[15:48] <hallyn> lol
[15:48] <hallyn> i'm just not sure i need hex for my emails...
[15:48] <hallyn> or porn
[15:48] <hallyn> my recipients might disagree i guess
[15:48] <lynxman> hallyn: I'm sure they'll be glad to hex translate your emails
[15:49] <hallyn> my content is worth it!
[15:49] <hallyn> all right, back to it.  <squints at pic on phone>
[15:52] <hallyn> (also playing some metal in case the laptop just got groggy adn fell asleep)
[15:55] <zul> hallyn: ooh what metal?
[15:58] <smoser> adam_g, i just updated bug https://bugs.launchpad.net/nova/+bug/942865
[15:58] <uvirtbot`> Launchpad bug 942865 in nova "upgrade from diablo leaves existing images with kernel unbootable" [Undecided,New]
[15:59] <smoser> it seems like generically, you can't make an ec2 published image public if it has a kernel and ramdisk.
[15:59] <smoser> so, rbasak until we get that fixed, i can't make public lucid images.
[16:03] <hallyn> zul: right now volbeat, for some lighter fare
[16:03] <zul> hallyn: never heard of them
[16:03] <hallyn> might have to switch tos omething heavier, laptop is dozing
[16:04] <zul> lol
[16:04] <zul> laptop or hallyn is dozing
[16:04] <hallyn> zul: you don't care about non-libvirt lxc right?
[16:05] <zul> hallyn: i dont
[16:05] <hallyn> k
[16:13] <Adri2000> zul: if you're going to upload python-keystoneclient, can I give you bug #934064 ?
[16:13] <uvirtbot`> Launchpad bug 934064 in python-keystoneclient "Installing openstack-dashboard on Precise removes Keystone package" [High,Confirmed] https://launchpad.net/bugs/934064
[16:14] <zul> Adri2000: yes that will be fixed when the new keystone is uploaded
[16:14] <Adri2000> bug assigned :)
[16:51] <diogo_79> hi guys
[16:52] <diogo_79> what can i use for newsletter management in ubuntu server?
[16:54] <rbasak> diogo_79: do you know about mailchimp et al? They're web services, not ubuntu server. But sending out email newsletters is a complicated fast moving game, due to kickback from spam filters and suchlike. It may be easiest to use such a service. For a simple mailing list manager, you could use mailman which is packaged on ubuntu server I believe
[16:54] <jcastro> jamespage: scale of 1 to 10 how complete do you consider the hbase charm?
[16:55] <jamespage> jcastro, hmm - about 7 ATM
[16:55] <jamespage> working on it ATM
[16:55] <jamespage> it currently broken :-(
[16:57] <jcastro> don't need it now, just wondering if when people ask about our hbase story I can say "we're on it."
[17:02] <jamespage> jcastro, quack quack oops - it would help if it was actually pointing at HDFS
[17:02]  * jamespage faceplants
[17:02] <jamespage> jcastro, we are definately on it
[17:17] <hggdh> Daviey: ping
[17:26] <smoser> jamespage, still around ?
[17:26] <smoser> https://jenkins.qa.ubuntu.com/view/ec2%20AMI%20Testing/view/Overview/job/precise-server-ec2/4/
[17:26] <adam_g> zul: did you already merge the debian stuff into the CI packaging branches?
[17:26] <smoser> the two red dots failed similarly. the instance failed to start.
[17:27] <zul> adam_g: yeah did it this morning
[17:27] <adam_g> zul: er
[17:27] <adam_g> zul: [ERROR] Failed charm: nova-compute, state: install_error
[17:27] <zul> adam_g:meaning....?
[17:27] <smoser> the one thing i don't undertsand though is https://jenkins.qa.ubuntu.com/view/ec2%20AMI%20Testing/view/Overview/job/precise-server-ec2/4/ARCH=i386,REGION=ap-northeast-1,STORAGE=ebs,TEST=all-types,label=ubuntu-server-ec2-testing/console
[17:27] <smoser> that has 'failed to copy' for cloud-init-output.log
[17:30] <hggdh> Daviey: bug 943000
[17:30] <uvirtbot`> Launchpad bug 943000 in cobbler "update to system fails with  Exception value: 'NoneType' object has no attribute 'os_version'" [Critical,Confirmed] https://launchpad.net/bugs/943000
[17:30] <Daviey> hggdh: hola
[17:30] <Daviey> nicceee
[17:30] <hggdh> Daviey: I hope you are doing good, sir, and sorry to dump yet another one on you
[17:30] <adam_g> zul: meaning nova-compute had some problem installing. looking at logs now
[17:32] <adam_g> zul: http://paste.ubuntu.com/862208/
[17:32] <adam_g> zul: it looks like installing nova-compute-kvm didn't install nova-compute, and there was no upstart job
[17:33] <zul> adam_g: k ill have another look
[17:33] <adam_g> zul: installing nova-compute manually seems to have gotten it started, but i havent looked any closer
[17:36] <zul> adam_g: http://paste.ubuntu.com/862214/
[17:36] <zul> does the juju charms just go apt-get install nova-compute-kvm?
[17:40] <hallyn> drat, hard kernel crash while doing nested kvm
[17:42] <jamespage> smoser: thats OK - its the collect_data script trying to grab everything - but for that test cloud-init is not used I think
[17:43] <jMCg>   * Starting Userspace bootsplash                                         [ OK ]
[17:43] <jMCg> How do I get rid of that? I'm pretty and sure my servers won't need that.
[17:47] <adam_g> zul: yes
[17:49] <adam_g> zul: or potentially any of the other nova-compute-$flavor types
[17:49] <zul> adam_g: ack
[17:50] <smoser> jamespage, ah. yeah, i just noticed that
[17:52] <jamespage> smoser: looks like it failed to reboot for some reason - where both failures the same?
[17:54] <smoser> jamespage, are there logs available more verbose than console ?
[17:55] <jamespage> smoser: the build artifacts for that job should have more info - but for some reason the terminated console has nothing in it
[17:55] <jamespage> same with the other
[17:55] <smoser> right.
[17:55] <smoser> as in it dididn't start
[17:55] <jamespage> the stopped log is OK
[17:56] <jamespage> but it looks like those instances never started again
[17:56] <zul> adam_g: what machine that nova-compute failed on?
[17:57] <smoser> right.
[17:58] <uvirtbot`> New bug: #941922 in puppet (main) "do-release-upgrade races puppet for file contents" [Undecided,New] https://launchpad.net/bugs/941922
[17:58] <smoser> yeah, so it basically looks like they stopped but never started.
[17:58] <smoser> but i can't see any thing more than that.
[17:59] <smoser> ie, i dont knwo if test harness tried to start once, that call failed for some transient reason, and then it never tried again
[18:00] <adam_g> zul: test-03
[18:02] <smoser> although, i guess that the self.instance.connection.start_instances would have raised an error if it fialed for some reason
[18:02] <zul> adam_g: i see alot of connection rejected from rabbitmq in nova-network
[18:05] <smoser> so, jamespage i can only think that there is a failure in the test case, but i have very little information to go on.
[18:15] <zul> adam_g: its not obvious to me what would go wrong
[18:27] <adam_g> zul: it looks like none of the nova-compute-$flavors have a dependency on nova-compute any more
[18:27] <zul> adam_g: thats what i thought
[18:27] <zul> adam_g: ill fix that up tout suite
[18:28] <adam_g> zul: which i imagine they actually need considering all of the dependencies of nova-compute (iscsi, kpartx, etc)
[18:28] <zul> adam_g: do you want to fix that or do you want to fix it
[18:30] <adam_g> zul: what is the solution, just add nova-compute as a Depends of all of the nova-compute-$flavors?
[18:31] <zul> adam_g: yes
[18:31] <adam_g> zul: whats the point of nova-compute-hypervisor? and shouldn't it (and nova-compute-kvm) be dropped from nova-compute Depends?
[18:32] <zul> adam_g: im not sure i think its a meta-package type deal i think it can be dropped because no one uses it i think
[18:32] <adam_g> mm
[18:45] <savid> I'm curious, how does one typically avoid downtime due to automated disk checks?  eg, "/dev/sda1 has gone 345 days without being checked, check forced"   Do most sysadmins just see that as a "fact of life"?
[18:50] <patdk-lap> savid, just don't use *ext?*
[18:51] <savid> patdk-lap, heh, well I'm using cloud servers (rackspace), so I don't think I have much of a choice there.  besides, are there better alternatives to ext*?
[18:52] <patdk-lap> heh, I've gone all vm's
[18:52] <patdk-lap> but none of my *server* has more than 4gigs of disk formatted ext4
[18:52] <patdk-lap> so check times are only a min or two
[18:53] <patdk-lap> my last system, I'm moving over to zfs, has 58Million files in <300gigs of space
[18:53] <patdk-lap> that took a day to fsck
[18:55] <savid> what fs do you use for your vm's?
[18:55] <adam_g> zul: i believe  e4 marks the opening of the folsom branch, so we'll need to adjust our scripts to pull from the essex branch instead of master? or we'll need to come up with a way of testing both
[18:55] <patdk-lap> ext4
[18:56] <savid> I see, so you just keep each instance small so that fsck's are short
[18:56] <zul> adam_g: i havent thought that far yet do we care about the folsom branch right now? if we dont we can open up the bzr branches for folsom and then stick everything in a ppa and continue on with essex for now
[18:57] <zul> right now i dont care about folsom imho
[18:58] <adam_g> zul: since we dont need to mess with switching ubuntu releases between essex + folsom, i think it'd be easy enough to test post-commit, if we had seperate local dpkg repos for each release. we need to also remember to use the essex branch instead of master when doing the upload on friday
[18:58] <adam_g> zul: at least i *think* the branches split today, i could be making that up
[18:58] <zul> adam_g: agreed
[18:59] <zul> ill have to find out from mtaylor how they are going to do the tarballs
[19:01] <zul> and ask ttx some questions
[19:06] <zul> adam_g: im thinking lp:~u-s-d/$proj/essex will branch lp:~u-s-d/$proj/folsom and any fixes in essex can be merged into folsom but im not sure how to handle the tarballs yet
[19:06] <kwolf> Looking for some assistance with SOLR and NUTCH with 11.10...  Anyone with some experience?
[19:06] <zul> (ie weekly snapshot)
[19:21] <uvirtbot`> New bug: #943502 in whois (main) "whois doesn't properly query .hr/.sx/.pe TLDs and incorrect format for whois.arin.net" [Undecided,New] https://launchpad.net/bugs/943502
[19:43] <adam_g> zul: ping
[19:43] <zul> adam_g: yo
[19:44] <adam_g> zul: all this xcp stuff needs to go
[19:44] <adam_g> its all universe
[19:44] <zul> adam_g: huh?
[19:44] <zul> adam_g: yeah the binaries can go into universe
[19:46] <zul> adam_g: dont worry about it
[19:46] <esuave> anyone know of a good server monitoring tool to use with ubuntu? shows server load etc.. something besides top
[19:47] <adam_g> zul: what do you mean?
[19:47] <PrinceKapHot> Hi there ! I'm having trouble with postgresql, I can connect to 127.0.0.1 but not the local IP address of the server. I think postgresql is configured correctly for remote connections, but are there other things I need to configure in Ubuntu ?
[19:47] <adam_g> zul: nova-compute-xcp depends on python-xapi. nova-compute-xcp goes into universe?
[19:47] <esuave> PrinceKapHot: make sure you are listening for incoming connections on the outside
[19:47] <zul> adam_g: source have to be in main but binaries can be either in main or universe
[19:47] <zul> adam_g: correct
[19:48] <adam_g> zul: oh, okay
[19:48] <PrinceKapHot> esuave : I followed guides to configure postgresql so it does that, but is there a way to check it is listening correctly ? I don't know many commands in Ubuntu...
[19:49] <esuave> PrinceKapHot: netstat -an |grep LISTEN.. look for the port its listening on.
[19:51] <esuave> PrinceKapHot: port 5432 should be default.. you will see something like 0.0.0.0:5432
[19:51] <PrinceKapHot> esuave : there is 127.0.0.1:5432, and ::1:5432, nothing else for this port. I guess it's not listening correctly on the right addresses then ?
[19:52] <esuave> PrinceKapHot: right. its only listening locally
[19:53] <PrinceKapHot> esuave: okay thanks. I'll check my postgresql configuration then (again !)
[19:53] <esuave> PrinceKapHot: exactly. check in postgresql.conf there should be a listen_address somewhere in there
[19:55] <PrinceKapHot> esuave: well, I already put that to '*', and restarted the server, but it doesn't seem to be working even though the documentation says it's an option
[19:56] <PrinceKapHot> esuave : all right my mistake : after opening the file for the hundreth time I just noticed the line was commented out...
[19:56] <esuave> PrinceKapHot: :P. nice!
[19:57] <adam_g> zul: https://code.launchpad.net/~gandelman-a/nova/debian-merge/+merge/95253
[19:57] <zul> adam_g: cool ill merge that into debian-merge and then merge into the essex branch
[19:57] <PrinceKapHot> esuave: still not working... But now I'm getting the 0.0.0.0:5432 in netstat at least
[19:59] <esuave> PrinceKapHot: do you have IP tables running?
[20:00] <esuave> PrinceKapHot: sudo iptables -L
[20:01] <PrinceKapHot> esuave: "command not found", I thought this might be the problem at first, so I installed it, added some rules, then removed the rules and removed it.
[20:02] <esuave> PrinceKapHot: try to telnet to the machine on that port..: telnet <serverIP> <port>
[20:06] <PrinceKapHot> esuave: I'm currently on windows, I have a bunch of videos to convert. I tried it with putty, but I'm getting "connexion refused", things like that. I'll reboot under Ubuntu, the command line sucks in Windows
[20:12] <PrinceKapHot> esuave: so, I'm getting "Connection refused" from telnet
[20:12] <esuave> PrinceKapHot: ok so theres something external from your server that is dropping the connection to that port
[20:13] <esuave> PrinceKapHot: do you have any kind of firewall in front of it? or router?
[20:14] <PrinceKapHot> esuave: The server is in a server room, and the administrators listed me the authorized connections, and postgres on 5432 was one of those
[20:16] <esuave> PrinceKapHot: well tell them admins that your listening on port 5432.. but the connection is getting dropped before it hits the server.
[20:17] <esuave> PrinceKapHot: otherwise if you do : netstat -an |grep 5432 and see it listening on 0.0.0.0:5432.. your set up to listen for external connections
[20:18] <PrinceKapHot> esuave: right... But couldn't the server be dropping the connection because of some settings ?
[20:19] <esuave> PrinceKapHot: well you said there were no iptables running.. do you have any other software firewall running on the server?
[20:20] <PrinceKapHot> esuave: I don't think so... But there could be problems in the allowed connections in pg_hba.conf
[20:20] <esuave> PrinceKapHot: that is also possible
[20:21] <esuave> PrinceKapHot: but i would think you would still be able to telnet to that port if it were opened and listening
[20:22] <PrinceKapHot> esuave: right, and get an error message or something. I'll ask the server room administrators tomorrow, thanks !
[20:23] <esuave> PrinceKapHot: sure np!
[20:23] <PrinceKapHot> esuave: and maybe ask on #postgresql too, they might have more information (even though you helped a lot already)
[20:24] <esuave> PrinceKapHot: yes! that would be a good place to ask more :)
[20:27] <RoyK> hi all. I'm testing a two-node setup with kvm on ubuntu lucid (10.04.4LTS-64) and it works well, migrating VMs between the nodes is easy and so on. But - a few things: Starting a VM on node #2 doesn't seem to work until the VM has been migrated there and out again, and even worse, there doesn't seem to be a check for if a VM is running somewhere else, meaning if I start VM xyz on node A and then on node B, it runs happily unaware of that it's sharing its 
[20:37] <adam_g> zul: can you hit this one quick, it feel thru the cracks: https://code.launchpad.net/~gandelman-a/nova/py-iso8601/+merge/95255
[20:39] <zul> adam_g: done
[20:39] <zul> adam_g: thank you for your contribution to ubuntu ;)
[20:40] <roaksoax> lol
[20:41] <adam_g> zul: <3
[20:41] <RoyK> am I doing something wrong here, or is the repo fscked?
[20:41] <RoyK> root@xenamd10:~# add-apt-repository ppa:sanlock
[20:41] <RoyK> Error: can't find signing_key_fingerprint at https://launchpad.net/api/1.0/~sanlock/+archive/ppa
[20:45] <guntbert> RoyK: you are defintely doing something wrong - but that has no bearing on your key issue  ("root@xenamd10"  :-))
[20:46] <soren> RoyK: Yes.
[20:46] <RoyK> guntbert: what should be wrong about that?
[20:46] <soren> RoyK: There's no such user.
[20:46] <RoyK> erm. ok :P
[20:46] <soren> RoyK: https://launchpad.net/~sanlock
[20:46] <soren> see for yourself.
[20:46]  * RoyK fetches the sanlock source
[20:48]  * SpamapS would love to see some testing of the b1 candidate .. http://iso.qa.ubuntu.com/qatracker/milestones/208/builds/12749/testcases
[21:31] <uvirtbot`> New bug: #943599 in tomcat6 (main) "[lucid] tomcat6 does not include tomcat-dbcp.jar" [Undecided,New] https://launchpad.net/bugs/943599
[21:38] <nagyz> hi guys
[21:38] <nagyz> I'm trying to build my own EC2 Oneiric images based on https://code.launchpad.net/~ubuntu-on-ec2/vmbuilder/automated-ec2-builds
[21:38] <nagyz> could someone help me out there? the script here is not really in an easily digestible format
[21:39] <SpamapS> nagyz: any reason you don't want to just rebundle the official images?
[21:40] <nagyz> haven't found an up-to-date docs on how I could create my own snapshot of the snapshot used by the official ec2 images
[21:40] <nagyz> but if you can give me pointers I'm fine with that method too
[21:41] <alex-> Is it true that the Ubuntu kernel is modified for server usage?
[21:41] <afernandez> Hello, I have a trouble with postfix logs, I configure the log rotation in logrotate.d folder then postfix is not saving nothin in mail.conf
[21:44] <nagyz> SpamapS do you know of a guide describing the steps I should take to do that?
[21:47] <SpamapS> nagyz: http://aws.amazon.com/ec2/faqs/#How_do_I_load_and_store_my_systems_with_Amazon_EC2
[21:47] <nagyz> SpamapS I know about AMIs, and I've even managed to create my own S3 based one. I just specifically want to modify the ubuntu cloud images posted by canonical
[21:47] <nagyz> there should be an easy way to do that
[21:48] <nagyz> how can this be closed off as wontfix? https://bugs.launchpad.net/ubuntu/+source/vm-builder/+bug/576501
[21:48] <nagyz> gosh
[21:48] <uvirtbot`> Launchpad bug 576501 in vm-builder "vmbuilder doesn't recognize --ec2 flag" [Wishlist,Won't fix]
[21:49] <nagyz> it's listed in the official wiki as how it should be used, yet that doesn't work
[21:51] <SpamapS> nagyz: I believe we use something different to create those cloud images now
[21:51] <SpamapS> nagyz: "official wiki" ? can you share the link?
[21:52] <SpamapS> utlemming: ^^ can you comment on how nagyz could get started building his own cloud images?
[21:52] <nagyz> well, this is a description: https://wiki.edubuntu.org/EC2Vmbuilder
[21:52] <nagyz> and I'm currently trying to set this one up: https://wiki.edubuntu.org/UbuntuCloud/Images/Publishing
[21:53] <nagyz> but it's pretty, well, outdated it seems
[21:53] <nagyz> (hardy, maverick...)
[21:53] <SpamapS> nagyz: right, I believe the process has changed some
[22:05] <Daviey> adam_g: is bug 942865 likely to me another migration issue?, where the rename isn't being cared for?
[22:05] <uvirtbot`> Launchpad bug 942865 in nova "upgrade from diablo leaves existing images with kernel unbootable" [Undecided,New] https://launchpad.net/bugs/942865
[22:05] <Daviey> (smoser ^)
[22:14] <soren> smoser: Is there a simple way from the kernel command line to tell cloud-init to go fetch a cloud-config file from a url?
[22:21] <onekenthomas> safe way for middle mouse button emulation on 11.10-- editing 50-synaptic.conf creates boot hangs?
[22:22] <soren> onekenthomas: Wrong channel.
[22:22] <onekenthomas> compared to?
[22:23] <EvilResistance> onekenthomas, try #ubuntu
[22:23] <onekenthomas> yeah right.
[22:23] <EvilResistance> whats wrong with #ubuntu?
[22:23] <EvilResistance> its the place for the GUI version of Ubuntu's questoins
[22:24] <onekenthomas> #ubuntu is dominated by people who installed yesterday discussing whether they'll go back to Windows next week
[22:24] <EvilResistance> well then you're SOL, because #ubuntu-server is for server-related questions
[22:24] <onekenthomas> I've yet to find anyone who would have a clue about a question ...
[22:24] <EvilResistance> not GUI-Ubuntu questions
[22:24] <onekenthomas> I can't run a server with a GUI :) ?
[22:25] <EvilResistance> then post on the forums or on AskUbuntu
[22:25] <Canadian1296> onekenthomas: Ask again in #ubuntu. There are knowledgeable people there.
[22:25] <EvilResistance> and have patience
[22:26] <Canadian1296> onekenthomas: Of course you can run a server with a GUI, but if the question related the the server software ask here, of it relates to said GUI, ask in #ubuntu.
[22:27] <onekenthomas> Canadian1296,  no offense,  I'll post in forums if I have to.  the current channel structure doesn't work.  GUI/non-GUI is an odd,  rather arbitrary differentiation.
[22:28] <afernandez> umm I made a question about postfix in ubuntu, but nobody answer or interested about my question, but for say not ask it in this channel all people get alive
[22:28] <Canadian1296> onekenthomas: Well both GUI and non-GUI, you should use #ubuntu. If it is server related ask here
[22:28] <adam_g> Daviey: im not sure that it is, according to that report the bug is still there with a fresh devstack
[22:29] <qman___> onekenthomas, that's the one of only a handful of differences between server and desktop
[22:29]  * onekenthomas has his own channels to run
[22:29] <qman___> and installing the GUI installs a bunch of extra things, like network maanger, which change everything
[22:29] <Canadian1296> afernandez: try #postfix
[22:30] <onekenthomas> which GUI :P ?
[22:30] <qman___> installing a GUI on a server is also a not-recommended-thing, and should only be done in certain circumstances
[22:30] <onekenthomas> da da da
[22:31] <Daviey> adam_g: oh?  I misread the bug then.. i thought it was the aki id changed after upgrade, and the mapping got skewed?
[22:46] <adam_g> Daviey: the original report sounds that way, but later scott reproduced the issue using essex/devstack with no upgrad
[22:46] <Daviey> ah
[22:46] <Daviey> crap.
[23:11] <uvirtbot`> New bug: #943664 in openldap (main) "package slapd 2.4.21-0ubuntu5.7 failed to install/upgrade: ErrorMessage: subprocess new pre-installation script returned error exit status 1" [Undecided,New] https://launchpad.net/bugs/943664
[23:34] <Canadian1296> Im trying to set up a VPN server (l2tp through IPSec, using openswan and xl2tpd), and ran into a problem. Should I ask here, or is there a channel better suited to my question?
[23:46] <SpamapS> Canadian1296: a lot of people prefer openvpn for its simplicity over ipsec/l2tp ... any reason you're choosing that?
[23:47] <Canadian1296> SpamapS: Yes, I require l2tp over IPSec to connect from my iPhone.
[23:51] <Canadian1296> I am testing the ipsec portion of it, and I should be getting connected in the servers logs, but im getting errors (cannot respond to ipsec sa request because no connection is known