/srv/irclogs.ubuntu.com/2012/05/17/#ubuntu-server.txt

roaksoaxsidnei: we are still early in the process, it will be merged /synced soon00:01
sidneiroaksoax, ok, thanks!00:03
pdtpatrickI've got to be missing something in this setup. Is the maas server expecting some node to connect to it with the MAC address i created in the webUI? or is it going to create a new node with that mac and fire it up? if so - where do i see what the individual nodes are doing? I see it talks about virsh and WOL (almost as if it expects me to setup a new KVM node using PXE)00:05
harushimohey my maas installation got messed up00:07
jtvpdtpatrick: MAAS fires it up.  We have no way to show what a node is doing yet.00:08
harushimoI was wondering is there a way to do complete reinstall of maas00:08
harushimoit gave me an fatal error last night00:08
pdtpatrickjtv: so having gone through the MAAS setup and bringing up the UI, setting up the MAC addy in there pretty much sets up a node for first boot using the images it downloaded. That said, do u know why my setup is stuck on Commissioning ?00:09
jtvpdtpatrick: do you see any errors on the node's page in the UI, or on its own console?00:10
harushimoanyone00:10
jtvharushimo: what kind of error?00:10
harushimofatal error: password authenciation00:11
harushimoI just want to complete wipe the install and do a reinstall00:11
harushimoI don't know if that is possible00:11
harushimothat should fix it00:12
jtvYou might be able to dump the database, uninstall-reinstall, and then restore the database.  But haven't tried that.00:12
harushimohow do I do that?00:13
jtvharushimo: before you even start trying, please understand that I have no idea whether it'll work!00:14
harushimoit may not00:14
harushimounless I try00:14
jtvIf you overlap with European timezones, another thing worth trying may be to ask allenap (who should not be online now)00:14
jtvI think he did the authentication.00:14
harushimooh okay00:15
harushimothanks00:15
jtvThere may be some way to re-generate the credentials.00:15
harushimothat is what I'm trying to figure out00:15
jtvIf you're interested (perhaps just for exploration), the MAAS database is in postgres.  I think on an installed system (as opposed to our dev setups) you can log in using “psql maas” or dump it using “pg_dump maas”00:16
harushimolog in where?00:16
harushimoI can't even access the web interface now00:17
harushimothrough the terminal?00:17
harushimoI can't even install apache on the computer00:17
harushimomaas total screwed up a lot of stuff00:17
harushimowhich is okay00:17
harushimoI'm learning00:18
harushimoits okay. that is how I learn00:19
harushimoI just want to get maas working00:19
jtv(sorry, was afk for a brief spell)00:24
jtvWhat I mean is you should be able to log in directly to the database by typing “psql maas” on the command line.  I'm not sure you'd be authorized though; haven't worked with an installed setup yet.00:24
harushimoits on my computer00:25
harushimoI'm authorized00:25
jtvThen try it!00:25
jtvIf it works, it'll give you an SQL shell on the MAAS database.00:25
harushimosudo apt-get psql maas00:25
harushimosudo psql mass?00:25
harushimoi get an error fatal: role "harushimo" does not exist00:26
jtvJust “psql maas” — do you have psql installed?00:27
jtv(Stupid me.  Of course you do or you wouldn't have gotten that error)00:27
harushimothat is cool00:28
harushimoI can't apt-get install anything00:28
jtvThen “psql maas -U maas” may work.00:28
harushimook00:28
harushimopeer authentication failed for user "maas:00:29
harushimoI mean maas00:29
harushimothis is always happens00:29
jtvSo you're not authorized.  :(00:29
harushimohow do I authorize myself00:30
harushimoI even did this on sudo00:30
jtvBasically, the database is set up to authenticate the maas user by checking what _system_ user is making the connection.00:30
harushimook00:30
jtvTry sudo'ing to the user “postgres”00:30
jtv(It's the PostgreSQL equivalent of root)00:30
harushimosudo postgres -U00:31
harushimoor sudo postgres00:31
harushimoI may have to do a reinstall of the system00:32
harushimoluckily I don't have anything on it00:32
pdtpatrickjtv: I'm not seeing any errors00:32
harushimoI want to know if there is a way to fix maas00:32
jtvpdtpatrick: depending on the version you have, there may be a “Retry commissioning” button on the node's page.00:33
pdtpatrickjtv: so here's the node page: http://cl.ly/19452c2d3M1B3S0Z1J2j and here's the page when i click on edit: http://cl.ly/3S2R1Y43132M1D11291O00:33
jtvharushimo: it's a very young project still, so a lot of this will have to mature over time.00:33
* jtv follows links00:33
harushimothats okay00:33
harushimoI just want to get a basic cloud setup00:34
pdtpatrickjtv: here's the version of maas i have00:34
pdtpatrickii  maas                0.1+bzr482+dfsg-0ub Ubuntu MAAS Server00:34
* jtv juggles conversations00:34
harushimothanks guys. I'll be back on later00:34
jtvGood luck!00:34
harushimothank you00:34
jtvpdtpatrick: I think that's pretty old… I haven't kept track of the packaging side of MAAS; any chance there's an upgrade available?00:35
pdtpatrickdid a full system upgrade and no luck00:35
jtvIn the original version, I think a node in this state is just stuck.00:36
pdtpatrickunless there's a ppa I'm unaware of00:36
jtvI can't think of one; maybe there's a backport.  Daviey: do we have newer versions of MAAS available somewhere?00:36
pdtpatrickshould i use this? : https://launchpad.net/~maas-maintainers/+archive/dailybuilds00:36
=== Arc_ is now known as a5m0
jtvpdtpatrick: that looks like the same version you have, actually.00:37
jtvpdtpatrick: do you have just the one node?00:38
pdtpatrickVersion: 0.1+bzr482+dfsg-0ubuntu1 vs 0.1+bzr482+dfsg-0+557+50~precise100:38
pdtpatricki have 7 nodes00:38
pdtpatrickhttp://cl.ly/0j0K2Q2S023E47081i1E00:38
jtvAnd all stuck in Commissioning?  :(00:39
jtvWhat should have happened is this:00:39
jtvMAAS fires up the node.  It boots and runs a small script.00:39
jtvThe MAAS server provides some setup data to it over http.00:40
jtvFinally, the script contacts that same http service to signal that it's done commissioning and is now ready to use.00:40
jtvPardon me: the script contacts that same http service to signal that it's done commissioning and *the node* is now ready to use.00:40
jtv(The Ready state means that a node is ready for a user to allocate it)00:41
pdtpatrick:(00:41
jtvWhat this may mean is that the node was unable to reach the MAAS service.00:41
pdtpatrickaahh the daily build was different than mine00:42
jtvThen I guess the daily build comes off trunk (lp:maas) rather than the 1.0 branch we released with the 12.04 CD.00:42
pdtpatrickhttp://cl.ly/033t1A1v3D013z163u2R00:42
jtvThat's a much newer version.  There are some schema changes; I hope the installation script will know how to apply them.00:43
pdtpatricki can see that now00:43
jtvYup, that's from trunk.00:43
jtvIn that version, you should have a “Retry commissioning” option on the node page.00:44
pdtpatrickdon't see that00:44
jtvDo you get the “Delete node” option?00:44
pdtpatrickhttp://cl.ly/3k0U40461L1h1Z1z083H00:44
pdtpatrickyup00:44
jtvAh, I'm being dense again.  The retry option only appears when commissioning has actually _failed_, and we don't time it out yet if it never finishes.00:45
pdtpatrickshould i check in /var/log/maas to see if anything is happening ?00:45
jtvAlways good to have a look.00:46
pdtpatrickI'm looking at maas.log and pserv.log and txlongpoll.log00:46
jtvIn particular, see if you can find an http log that shows requests to MAAS.  Look for the /metadata/ path.00:46
pdtpatricktail -f  shows nothing happening00:46
jtvThat's not surprising.00:46
jtvThe txlongpoll.log is of no interest; it's basically for ajax interaction in the UI.00:47
jtvThe pserv.log is for the provisioning server.  That's the component that (using another product called Cobbler) fires up the node.00:47
pdtpatrickhttp://cl.ly/2u331N1J2p2q3f2h3v0r00:47
jtvMAAS did succeed in turning the nodes on, right?00:47
pdtpatrickthere's my apache2 log00:47
jtv(Maybe we should add a favicon.ico just to shut up those errors)00:48
pdtpatrickHere's what i did - i installed the maas server according to the guide, i logged into the UI, added nodes and its being stuck on commissioning since00:48
jtvDid MAAS manage to power up the nodes?00:49
pdtpatrickwhen u say power? are u expecting a VM to be running somewhere? like in KVM or xbox ?00:50
pdtpatrickvbox*00:50
pdtpatricki c this in settings00:51
pdtpatrickhttp://cl.ly/0U0M1B0j3b0G2w2P2X4400:51
jtvNo, but MAAS needs to turn those machines on in order to control what image they boot into.00:51
jtvNow, if you turned those machines on by hand before adding them to MAAS and then left them on, then just rebooting them by hand may do the trick.00:52
pdtpatrickin that case, how can i check a machine is turned on is what confuses me. Unless maas gives you a vnc console like KVM and I'm supposed to connect to some node. I also only know the MACs of the servers00:52
jtvpdtpatrick: wait, are these virtual or physical machines?00:53
pdtpatrickhmmmm i think the docs didn't explain something. It sounds like ur asking whether i have a physical server setup to listen to maas to be provisioned00:53
jtvNo, just whether these are physical machines we're talking about, or whether these nodes are virtual machines.00:54
pdtpatrickjtv: i've not setup any physical or virtual sever which is why i was asking whether maas creates these VMs or is it expecting a machine to be running virtual box or a physical machine with those specific macs that it can go ahead and provision00:54
jtvAh!  Yes, in order to manage servers, you need servers.00:54
pdtpatrickOkay so there's no machine  -- i've not setup anything besides entering the MACs on the UI00:54
jtvWell that explains why MAAS isn't hearing from those servers.  :)00:55
pdtpatrickhaha wow -- i think the docs should have explained that :)00:55
jtvMAAS is meant to manage physical servers, with as one application, the ability to deploy cloud infrastructure on those machines.00:55
jtvI sort of assumed that that would be documented somewhere as well!00:55
pdtpatricki was thinking it is like AWS where it'll fire up an instance and then give u access to it00:56
pdtpatrickwell - that solves that confusion00:56
jtvYeah.  :)00:56
jtvIt's _similar_ to AWS, but it manages proper metal.00:56
jtv(Hence the name: it manages metal, as a service)00:56
pdtpatrickgood point :)00:57
pdtpatrickhmmm back to the drawing board. Now I'm not sure what the advantage is using this plus openstack vs using servers managed by puppet + mcollective00:57
jtvIf you've got a minute, I'll file a bug for this and perhaps you can add a quick story of how you got to setting up a MAAS installation without getting presented with the basics along the way?00:57
pdtpatrickjtv: will try and do that00:58
jtvOK, just a mo'00:58
pdtpatrickthanks again00:59
jtvThere goes my alarm clock.  Scared the life out of me.01:00
jtvpdtpatrick: if you would just add the details here: https://bugs.launchpad.net/maas/+bug/100050901:01
uvirtbotLaunchpad bug 1000509 in maas "Basics not explained?" [High,Triaged]01:01
jtv(You have a Launchpad account?)01:01
pdtpatrickyup01:01
jtvGreat.  Thanks for your patience!01:02
pdtpatrickjtv: added01:06
pdtpatrickThanks for you help01:06
jtvThanks.  About the advantage over servers managed by puppet etc., I'm not a sysop and have very little experience with those, but I think the key thing is that you don't just set up servers, manage them, and deploy services on them; you get a pool of servers that you can deploy to specific tasks from the central command line.01:06
jtvOr, from the UI, you can allocate servers (or have your users allocate servers), use them, and later release them to the pool again.01:07
pdtpatrickthat could be interesting01:07
pdtpatrickdoes maas have to control the DHCP server ?01:08
pdtpatrickI'm guessing it would since it needs to set up the params for PXE booting ?01:08
pdtpatrickmost places already have DHCP server so I'm just wondering how is it going to listen on the network to grab those MACs entered in the UI01:09
pdtpatrickI guess for now I'm best to just follow the project until it is more mature01:10
jtvThat's pretty much in a nutshell.  I'm pretty sure we've got a work item in the backlog to make it work with an external DHCP server.01:10
pdtpatrickYup - is there some mailing or newsletter i could follow ?01:10
jtvThere's a mailing list — hang on, I'll dig it up.01:10
jtvmaas-devel@lists.launchpad.net is the public development mailing list.01:11
jtvIt's still pretty quiet; we do most of the work on IRC.01:12
pdtpatrickin here or a different room ?01:14
jtvA bunch of rooms, to be honest, some private.01:15
pdtpatricki c01:15
pdtpatrickwell i'll just try to keep with what I can get my hands on.01:15
pdtpatrickThanks again01:15
jtvNow, this stuff is out in the open and we want it to be transparent, so feel free to prod us.01:15
pdtpatrickYou got it01:16
* jtv is dismayed by the volume of his inbox01:16
jtvpdtpatrick: thanks for playing with it and giving us your feedback.  That's important for getting it more mature.  I'll move on to that inbox now!01:17
pdtpatrickYou're welcome. Take care01:17
three18ti_how would I configure bind9 for a local network?  I would like to address my computers by name, so I attempted to to add the following record http://pastebin.com/dAZegGsY01:24
three18ti_but I get a server fail when I attempt to dig the address01:24
three18ti_/etc/bind/named.conf.local looks like this http://pastebin.com/j40z0Ht301:25
three18ti_ok, just restarted bind and it seems to work...?01:27
=== Resistance is now known as LordOfTime
stgraberhallyn: http://paste.ubuntu.com/991691/02:22
stgraberhallyn: that seems easier to SRU than lxc-ip ;)02:22
stgraberit's abusing the netns function of ip a tiny bit, but well, it works ;)02:22
twbstgraber: is that a new thing?  I'm still on 2.6.32 here, and I haven't noticed "ip netns"02:34
twbYou should double-quote "$1" and probably error out if lxc-info exits unsuccessfully.02:35
stgrabertwb: patch was submitted to iproute a year ago, so maybe 11.10 already had it, otherwise it's new in 12.0402:36
stgrabertwb: yeah, the script was meant as a proof of concept for hallyn more than something I'd really use ;) checking that the container indeed exists and is running, as well as ensuring you're root would be useful at least02:37
hallynstgraber: oh right, I remember eric mentioning that ip supported that.02:38
hallynstgraber: cool.  I'll leave it in your capable hands :)02:38
stgraberhallyn: yeah, I've noticed it a few months ago on 12.04 but didn't try to use it with lxc, turned out it's really quite simple ;)02:38
twbOkey dokey02:38
hallyndo yo uwant to switch it out for q too?02:39
stgraberhallyn: not sure for Q, for P it seems like we can get away with just a 2-3 lines delta which should be much easier to SRU02:40
hallyn(btw if you want me to follow up on it that's fine, just tell me :)02:40
hallynit's probably more robust to re-use ip...  not that i can see much going wrong with using sys_setns from python02:41
nathwilli just bought one of these: http://www.newegg.com/Product/Product.aspx?Item=N82E16816401170 and 12.04 can't see it... any advice?02:42
stgraberhallyn: right, looking at lxc-ip's code, I think it'd be better for now to switch to using "ip netns" on both precise and quantal. I think we should also add a function to the API to retrieve all IPs from the container's network namespace so we can get that into lxc-info and the python module02:45
nathwillspecifically, it can't see the nic.02:45
stgraberhallyn: or if you don't want that kind of code in the C library, it should be easy enough to do with ns_attach/execute_in_container from the python code (or in the C code of the python module)02:46
hallynstgraber: yeah i'm not sure it needs to be in the c library.  it's not dependent on anything in liblxc.  But either way02:48
hallynOTOH02:50
hallynstgraber: I need to run soon, but I don't like the ln -s into /run/netns/$102:50
hallynracy02:50
hallynmanpage says that's for named netns.  But the name == the pid, so it seems like it should work just using the pid without that file?02:51
stgraberhallyn: apparently ip doesn't support "netns exec PID", only "netns exec NAME"02:52
stgraberthough I can symlink to anything I want, including the pid02:52
hallynstgraber: better to tmpfile that then02:53
esuavehow come my server has a static IP set but every once in a while it looses its IP and pulls a dhcp IP02:54
stgraberhallyn: indeed, a random name is probably be best to avoid the (unlikely) race02:54
hallynstgraber: yeah i guess that addresses my concern02:54
hallyncool, thanks :)02:55
hallyngood night02:55
stgraberhallyn: I'll have a look at SRUing this tomorrow (well, putting it somewhere in the SRU queue)02:56
hallynstgraber: wait there's another one waiting for SRU I think02:56
stgraberhallyn: and will also fix Jibel's bug in the process (package conflict)02:56
stgraberyeah, we have one in proposed currently, so I'll have this one ready to be pushed to -proposed once the other one has cleared02:57
hallynok cool - thanks02:57
hallyngood night02:57
stgrabergood night02:57
esuavewhat does this mean? ADDRCONF(NETDEV_UP): eth0: link is not ready03:02
nathwilloh nm, haha. this damn thing is IPMI..03:29
nathwillurgh03:29
three18ti_how do I configure a secondary "storage' network?  I set eth1 to address 10.10.10.1/2 and netmask 255.255.255.0 w/o gateway and am able to ping 1/2 from that machine but cannont ping 2/103:46
twbUh, what?03:47
twbOh I see, that's not a CIDR.03:47
twbthree18ti_: do not use 1.2.3.4/5 notation, because the /x aready means something else.03:47
three18ti_oh, yea.  sorry.03:48
three18ti_I mean I have two machines 10.10.10.1 and 10.10.10.2 (n/s 255.255.255.0) connected directly on eth103:48
three18ti_I can ping 1 from 1 and 2 from 2 put I can't ping 2 from 1 and vice versa03:49
twbThey can't BOTH be directly connected.03:53
twbDo you have a switch, or a hub, or what03:54
three18ti_so, eht0 is connected to a switch -> router -> internet03:54
twbeth0 of which host03:54
three18ti_I would like eth1 to be a private "storage" network, but don't have a second switch yet, so I have my two machines directly connected with a patch cable.03:55
three18ti_both.  both hosts are connected on eth0 to the internet.03:55
three18ti_eth1 should be isolated from the internet.03:55
twbI still don't follow.  Please sketch an ascii-art diagram and pastebin it03:56
three18ti_ok.03:56
twbhttp://paste.debian.net/169201/ is an example of what I mean (yours need not be so elaborate)03:57
three18ti_http://pastebin.com/7a5TK0H704:00
three18ti_not exactly like your example.  Let me know if I'm still unclear.04:01
three18ti_I need to switch monitors around, so if I disconnect I'll be right back,04:03
twbOK so IIUC you have a normal switched 192.168/16 private network, and you want to additionally hook up a point-to-point connection over separate cables going into separate ethernet ports in the back of Machine1 and Machine2?04:07
three18ti_ok, that was fun...04:13
three18ti_twb, did that diagram make sense?04:14
twbOK so IIUC you have a normal switched 192.168/16 private network, and you want to additionally hook up a point-to-point connection over separate cables going into separate ethernet ports in the back of Machine1 and Machine2?04:17
three18ti_yes.04:18
three18ti_in the future, I would like this to be a dedicated network, but for the time being it's just a point to point connection.04:19
twbOK so just run a cable between them, and do ip link set eth1 up; ip address add dev eth1 brd + 10.10.10.1 peer 10.10.10.204:20
twbEr, sorry, of course "brd +" is not needed on a point-to-point link04:20
three18ti_on both machines?04:21
three18ti_linkseteth1 ip; ip address add dev eth1 10.10.10.1 peer 10.10.10.204:22
twbOn the second machine the IPs would be reversed04:22
three18ti_linkseteth1 ip; ip address add dev eth1 10.10.10.2 peer 10.10.10.104:22
twbI don't nkow what "linkseteth1 ip" is; I said "ip link set eth1 up"04:22
three18ti_ip link set eth1 ip; ip address add dev eth1 10.10.10.2 peer 10.10.10.104:23
three18ti_yea, apparently I can't type...04:24
twb*up* not *ip*04:24
three18ti_ok, wow.  thanks! :)04:24
twbAnd you might need to double-check the "peer" part; I usually just use /30's or so.04:24
twbThe ip a add should set up the route automatically; otherwise you'll also need to use ip r04:25
=== Gallomimia_ is now known as Gallomimia
mr-richOk, I'm setting up an Ubuntu web server. What is the best free (GPL'd) web control pannel software?04:35
three18ti_i just installed webmin today.  it's relatively painless to install.  Not pretty, but it is functional.04:35
mr-richthree18ti: Ubuntu doesn't support Webmin04:36
three18ti_tell that to... me...04:36
mr-richI just did ... :)04:36
three18ti_http://www.webmin.com/deb.html04:37
three18ti_Well, you should tell my computers that it doesn't work...04:37
three18ti_literally added the repos, updated the key, and apt-get installed it...04:37
three18ti_http://i.imgur.com/FGbYO.png04:39
three18ti_mr-rich, ^04:39
twbI have maintained webmin modules, and in my professional opinion "it is functional" is an outrageous lie.04:43
twbIt is, as best, marginally less bumbling than a FNG sysadmin04:43
three18ti_well, as you can see, I've installed it three hours ago.  So I cannot attest to the functionality of the product.04:44
three18ti_*/I've/I/04:45
three18ti_what do you like twb?04:45
twbLearning to use the bloody system.04:46
linociscotwb, what is bloody system?04:46
twblinocisco: the ubuntu server that you're tasked with babysitting04:46
linociscotwb, ok04:47
three18ti_twb, what about for reselling web services?  Unfortunately, you can't expect your customers to know what they're doing and expect to make money.04:56
twbThat industry can die in a fire.04:57
three18ti_twb, +1... but it pays my rent...04:59
three18ti_I work for a data centre that started as a web hosting company...  we do some bass ackwards $4!t...04:59
twbFWIW in that situation, we wrote a little in-house python WHCP that was hard-coded to do what we needed and nothing more.05:01
twbWhich I'm not happy about, but I'm a lot less unhappy about it than I was about webmin05:02
three18ti_... I hate RHE/CentOS... (don't mind Fedora) but cPanel is not... horrible.  I support mostly WebSitePanel and Helm though... :(05:03
twbcpanel is horrible05:04
twbIt even ships its own broken apache instead of using the distro's one.05:04
three18ti_haha, you're just a hater. :P seriously though, what's so horrible about cPanel?  it's certainly better than Webmin.05:06
twbthree18ti_: 15:04 <twb> It even ships its own broken apache instead of using the distro's one.05:09
twbAnd there was this "easy_apache" thing that got in the way05:09
three18ti_it ships with an independent web server so if there is an issue with the apache config, you can still access the CP.  what's so "broken" about it?  I agree with you about easy_apache... it's a pain in the ass.  but as long as you use easy_apache you won't break cPanel (don't even get me started on this).05:11
three18ti_so yea, I agree, there's lots of problems with it.  but I challenge you to name a "good" control panel.05:12
three18ti_I'm just trying to understand your point of view.05:13
twbMy point is there is *no* good WHCP.  And it's impossible to build one, because the very idea that a piece of software can take an incompetent user's requests and convert them into competent sysadmin actions, is absurd.05:18
twbIf the user wants to learn, give them the CLI.  If the user doens't want to learn, let them pay for a competent human operator.05:19
three18ti_I can agree with that.  Very astute.05:19
twbIf there are security reasons to prevent them getting a root shell, then a WHCP is... probably not the best way to enact that security policy.05:20
three18ti_it's like I always say, wordpress is a remote shell with a neat blog feature.05:25
blendedbychrishow can i check if nfs service is running ?05:31
blendedbychrishttp://gluster.org/pipermail/gluster-users/2010-November/005685.html05:31
blendedbychrishaving a issue related to that05:31
twbblendedbychris: nfs kernel server?05:31
blendedbychrisya05:31
twbIt will be listed in /proc/mounts05:32
twbOh sorry, brain fart05:32
twbrpcinfo -p localhost will mention it, at least05:32
twbexportfs will mention specific exports I think05:33
blendedbychristwb: The program 'exportfs' is currently not installed.  You can install it by typing:05:33
blendedbychrisapt-get install nfs-kernel-server05:33
twbyes, if you run exportfs without -r it queries the current state of affairs05:33
twbblendedbychris: if that package is not installed, you definitely don't have a an NFS server running05:33
blendedbychristwb: well05:33
blendedbychrishttp://pastie.textmate.org/private/wbz1tqczepsuc7gtdkoqzq05:33
pdtpatr1ckin cluster theres an option to enable nfs05:33
pdtpatr1ckit is disabled by default05:34
pdtpatr1cku need to turn that on05:34
blendedbychrispdtpatr1ck: i've enabled it05:34
pdtpatr1ckr u using version 3 of NFS or version 4 ?05:34
twbI am discussing *actual* NFS; I don't know anything about gluster "pretending" to be an NFS server or whatever05:34
blendedbychrisyes05:34
blendedbychristwb: does that look like a nfs server trying to be run though? the last line maybe?05:34
blendedbychristwb: i understand that btw :)05:35
twbhttp://paste.debian.net/169208/ is an active lucid NFSv3 kernel server05:35
blendedbychrisi just wasn't sure if nfs-server was hidden somewhere considering that post references a "kernel" nfs service05:35
pdtpatr1ckhttp://www.gluster.org/community/documentation/index.php/Gluster_3.2:_Using_NFS_with_Gluster05:35
twbquota and lock services are TECHNICALLY not required, but it would be unusual for them to be absent05:35
twbNFSv4 of course has additional gssapi/krb stuff05:36
twbpdtpatr1ck: have you spoken to the gluster people about it?05:36
blendedbychrispdtpatr1ck: i have that set to off05:36
twbSorry, wrong nick05:36
blendedbychristwb:  ya i'm bugging them05:36
blendedbychrisbut i figured i'd ask the rudimentary "is nfs running" question in here heh05:36
mr-richwow ... webmin seems a bit ... overkill05:37
pdtpatr1ckso let me understand ur issue  -- ur using glusterfs and trying to mount the gluster shares as NFS right ?05:37
blendedbychrispdtpatr1ck: indeed05:37
pdtpatr1cku don't need NFS-kernel-server05:37
blendedbychrispdtpatr1ck: right...05:38
pdtpatr1ckyou just need the glusterfs package and nfs.enable should be on05:38
pdtpatr1ckthen u would run mount.nfs -o vers=3 and then the rest of ur setup05:38
blendedbychris[2012-05-17 00:26:12.71863] C [nfs.c:240:nfs_start_subvol_lookup_cbk] 0-nfs: Failed to lookup root: Input/output error05:39
blendedbychris[2012-05-17 00:29:03.552540] E [nfs3.c:724:nfs3_getattr] 0-nfs-nfsv3: Failed to map FH to vol05:39
pdtpatr1ckcluster volume info <vol-name>05:40
pdtpatr1ckdamn auto correct05:40
pdtpatr1cks/cluster/gluster05:41
blendedbychrishttp://pastie.textmate.org/private/2dyi2vaeqmye7ptvazhrq05:41
blendedbychristhis has me somewhat concerned [2012-05-17 00:26:12.71806] I [afr-self-heal-common.c:705:afr_mark_sources] 0-srv-replicate-0: split-brain possible, no source detected05:41
pdtpatr1ckr u able to mount using the mount.gluster option ?05:42
blendedbychrislet me try again… i wasn't able to earlier05:42
blendedbychrisah05:43
blendedbychrispdtpatr1ck: yes but i get -bash: cd: /srv.gluster: Input/output error05:43
blendedbychris[2012-05-17 00:43:10.513155] I [afr-self-heal-common.c:705:afr_mark_sources] 0-srv-replicate-0: split-brain possible, no source detected05:43
blendedbychrisis related05:43
blendedbychris[2012-05-17 00:43:07.409932] W [fuse-bridge.c:419:fuse_attr_cbk] 0-glusterfs-fuse: 2: LOOKUP() / => -1 (Input/output error)05:44
pdtpatr1ckdoes ur status say created? when u run volume info ?05:44
blendedbychrissays "Started"05:44
blendedbychrisfwiw these two bricks are empty05:44
pdtpatr1ckdoes lsmod show the driver?05:44
blendedbychrisdriver?05:45
pdtpatr1cktry "modproble cluster"05:45
pdtpatr1ckwhoops05:45
pdtpatr1ck"modprobe gluster"05:45
blendedbychrisFATAL: Module gluster not found.05:45
pdtpatr1cku don't have gluster installed on the client then05:45
blendedbychrisi don't think that's true05:46
pdtpatr1ckdoes gluster --version show anything ?05:46
blendedbychrisyes05:46
blendedbychrisplus i'm using the cli?05:46
pdtpatr1ckis fuse loaded ?05:46
pdtpatr1ck"modprobe fuse" && dmesg | grep -i fuse05:46
twb!ur05:46
ubottuU is the 21st letter of the modern latin alphabet. Neither 'U' nor 'Ur' are words in the English language. Neither are 'R', 'Y', 'l8', 'ryt',  'Ne1' nor 'Bcuz'. Mangled English is hard for non-native English speakers. Please see http://geekosophical.net/random/abbreviations/ for more information.05:46
blendedbychrismodprobe fuse returns nothing05:47
blendedbychris[    1.283854] fuse init (API version 7.17)05:47
nathwillwat?05:48
blendedbychriswelcome back?05:48
pdtpatrickswitched to computer i have gluster running on05:48
blendedbychrisfuse is running05:49
blendedbychrismodprobe fuse05:49
blendedbychris[    1.283854] fuse init (API version 7.17)05:49
pdtpatrickokay05:49
pdtpatricktype "mount." and press tab05:49
pdtpatrickis gluster one of your options ?05:49
blendedbychrisi have glusterfs, nfs, fuse05:49
blendedbychrisyes05:49
blendedbychrisotherwise i wouldn't have been able to mount -t glusterfs :)05:49
twbGrumble intermitting non-breaking spaces, grumble05:50
blendedbychrisi think this split brain crap is throwing off05:50
blendedbychrispdtpatrick: care to take this in #gluster05:50
pdtpatricksure -- those guys know a lot more than i do but let's talk there.05:50
blendedbychristwb seems to want a dead chan :)05:51
twbblendedbychris: I want people to stop writing IRC clients that automatically convert "     " into " &nbsp; &nbsp; "05:53
twb(Where &nbsp; is a non-breaking space, but I assume you can't actually SEE them because if you could, you would fix your IRC client.)05:53
blendedbychristwb: ah. i thought you were referring to the multiple lines of thought05:54
blendedbychrisit's adium, i'm sure it sucks05:54
twbblendedbychris: well yo uclaim to be using libpurple05:54
twbI mean, if you're going to pretend that IRC is HTML, and want to force whitespace folding, at least do five &nbsp; in a row instead of interposing non-breaking and regular spaces :-/05:55
twb>rage<05:55
twb*forcibly prevent whitespace folding05:55
three18ti_ok... I'm an idiot...  I've followed these destructions: https://help.ubuntu.com/community/SettingUpNFSHowTo06:07
three18ti_when I attempt to write to my mounted nfs partition I get a permission denied.06:07
three18ti_I mounted as root and am attempting to write as root...06:07
three18ti_will need to also be able to write as libvirt user06:08
three18ti_machine1 from before is the storage machine and machine2 is the KVM hypervisor.06:09
twbthree18ti_: if this is just to push data from one host to another temporarily, just use scp or rsync06:09
three18ti_twb, ^ machine1 from before is the storage machine and machine2 is the KVM hypervisor.06:09
three18ti_is there a better solution than nfs?06:09
twbNot really06:10
twbRule #1 of network filesystems is: they all suck.  They especially suck at locking, and they also suck at authentication.  (Except for kerberized ones, which get auth right, but are a royal pain to configure and babysit.)06:10
twbSome VM technologies use a sort of fake filesystem implemented in both the host and guest kernels, to exchange data without using the network stack.  e.g. vmware has hgfs.  AFAIK this is not available for KVM at this time.06:11
twbIf you are on a trusted network, I suggest you avoid NFSv4 and stick to NFSv3 which is much simpler to get going06:13
three18ti_well, cloudstack uses NFS for its KVM storage.  I've gotten it to work there, but now I'm trying to do it manually...06:13
three18ti_sure, got a link on NFSv3?06:13
twbTry the ubuntu server guide06:13
twbbasically just install nfs-kernel-server and write an exports(5) line; and on the other box install nfs-common and write an fstab(5) line06:13
three18ti_lol 8.04 is the first google link.06:13
twbthree18ti_: /topic06:14
three18ti_lol, that's 10.0406:14
three18ti_fortunately, the version is canonicalized in the link.06:15
twbShrug.06:15
yaboohas anyone used mgetty+sendfax06:26
KXTwoHi everyone, I just installed ubuntu server on an old machine I had ubuntu desktop on.  For some reason eth0 is down, even when I use ifconfig to set it to up, I does not connect to my router, when I reboot eth0 is set back to down06:31
twbKXTwo: pastebin your /etc/network/interfaces06:36
KXTwotwb: It just had lo in there06:47
KXTwoI just added eth0 in there06:47
KXTwobut now my system is hanging out waiting for network configuration06:47
twbit should be auto lo eth0; iface lo inet loopback; iface eth0 inet dhcp06:47
twb...more or less06:47
KXTwoyes hold on ill show you what I have06:48
KXTwotwb: here is a dumb question that I SHOULD know06:48
KXTwoI can set a static ip address outside the range of dhcp on my router right?06:48
twbI'm not stopping you06:48
KXTwotwb:  ok I found a typo.06:50
KXTworebooting06:50
three18ti_IDK WTF, but purging and reinstalling nfs seems to have solved the problem... chock one up to the great ubuntu gods.06:52
* three18ti_ shrugs06:52
three18ti_* s/nfs/nfs-kernel-server/06:53
twbthree18ti_: well, NFS and upstart do not play nice together IME06:53
twbthree18ti_: so if you restarted recently that might have pissed it off06:53
KXTwoI hope this works, for some reason my ps2 keyboad wouldnt let me navigate the bios so had to switch to usb06:57
KXTwotwb: it worked, I just ahd a typo in my interfaces file.  15- istead of 15006:58
KXTwonow for the hard part, setting up services!06:58
three18ti_twb, fscking upstart...  well, I was trying to get NFSv3 to work and was still getting errors, so I rebooted, had to hard power down, then after reboot upon still having errors, apt-get purge / apt-get install nfs-kernel-server and every thing seems to be kosher.07:02
three18ti_> 500 MB xfer speeds via nfs and rsync07:02
three18ti_(small files for a quick test...07:02
three18ti_)07:02
three18ti_twb, thanks for the tip,07:03
three18ti_mr-rich, see puppet http://docs.puppetlabs.com/learning/07:07
blendedbychrisis there an easy way to strace a set of pids based on their process name?07:07
blendedbychrislike in one command instead of doing a ps aux and typing in the pids07:08
blendedbychrisah brilliant found something07:10
blendedbychrispidof apache2 |sed 's/\([0-9]*\)/\-p \1/g'07:10
KXTwoWhen I installed server, I opted for guided use entire disk and setup LVM.  what is LVM though?07:12
KXTwoI know it stands for logical volume management and as Im raeding about it, it sounds like I didn't need itk, I only have one harddrive in there07:14
twbLVM is useful if you don't know /a priori/ how much space a filesystem will need.07:15
twbi.e. it's pretty much always useful07:15
twbIn the simplest case, you probably want to keep your OS (/) and user data (/home) on separate filesystems, and so LVM is still useful to avoid reserving too much or too little space for the OS07:16
KXTwotwb: oh I dont think tahts how im setup at all07:16
KXTwotwb: ive never done that before, where / and /home were different file systems07:17
KXTwoor at least if I had I was unaware07:17
twbKXTwo: well otherwise if you need to reinstall the OS, you have to take more care not to trash the user data07:19
KXTwotwb: something tells me that is a lesson I will learn the hardway07:19
twbShrug07:19
KXTwoif thats what LVM does though why does it go with the option use entire disk?  If you were going to have multiple partitions I could see it, but with just swap and primary it seems useless?07:20
twbBecause partman's guided choices are crap07:21
twbThe way you use LVM is you say "OK in the first six months, / will need about 2GB and /home will need about 8GB, so allocate those and leave the rest of the disk as unallocated LVM space"07:22
twbThen when your users whinge about needing more space, you grow /home to say 16GB07:22
twbIf you use LVM and you allocate everything up-front, you have missed the point07:23
twbLVM is also useful for making temporary snapshots of filesystems, but this also requires (a little) unallocated space in the volume group07:23
KXTwoahh server uses aptitude, I thought apt-get was taking that over07:26
twbUh, you can use either on any ubuntu07:27
twbHistorically aptitude had substantially better functionality; nowadays that is less noticable.  apt-get still starts substantially faster.07:27
KXTwoI actually dont even know the syntax of apt-get lol07:28
KXTwotwb: in the past when ive updated via shell, I would type aptitude update then aptitude upgrade.  This howto Im looking at changes it to aptitude update then aptitude  dist-upgrade.  Is there a difference?07:29
twbThat's wrong.07:31
KXTwowhich part?07:32
KXTwoI did it my way07:32
twbAs at precise it should be "aptitude update"; "aptitude safe-upgrade" and "aptitude full-upgrade".07:32
twbThe second will apply upgrades that do not require packages be removed; the third does not have that constraint.07:32
twbHistorically, "safe-upgrade" was "upgrade", and "full-upgrade" was "dist-upgrade".07:32
KXTwooh07:33
twbBut as at precise the old command names should emit a warning07:33
KXTwowhat do you recommend then07:33
KXTwoI did upgrade07:33
KXTwothen dist-upgrade but no packages were upgraded when i did07:33
KXTwothe second one07:33
twbIn a released version, it would be unusual for full-upgrade to have any effect.07:33
KXTwoso my way is fine?07:34
KXTwojust update upgrade?07:34
twbSure, whatever07:34
KXTwolol07:34
KXTwook server question, during install i chose lamp.  that means I already have the apache mysql and php packages right?07:35
twbNFI07:36
blendedbychrisany idea why flock would hang on nfs?07:37
twbblendedbychris: nfs client or server07:37
ARTSIOMsorry, for asking it again, but I still can't make it work. here is my full conf file placed in /etc/init folder http://paste.org/49317 , but the app is still not starting on boot (but starting fine with "start app"). Am I missing smth?07:37
KXTwothe answer is yes lol07:37
blendedbychristwb: no idea? heh… i just see flock in my strace from a php app and it hangs07:37
twbARTSIOM: that script should not work at all07:37
blendedbychrisphp can't write files because of this07:37
ARTSIOMtwb: but it is for sure working when I am doing "service start torquebox"07:38
ARTSIOMtwb: what is wrong with it?07:38
twbARTSIOM: you should use this: exec su -u torquebox -c 'exec torquebox run >>/var/log/... 2>&1"07:38
twbARTSIOM: well if it "works" it's only because you're running it as root07:39
twbARTSIOM: that is, your sudo -i line doesn't do what you think07:39
twbARTSIOM: I also encourage you to use syslog(3) or logger(1) to push log entries through the standard log infrastructure, instead of writing to log files directly.07:39
blendedbychristwb:  you mentioned a bunch of stuff about locking… should i enable like a nolock option maybe?07:40
ARTSIOMtwb: I have switched to "sudo -i -u", because of my previous problem: "can someone please explaine me how "su - user" command works. In documantation it is said that "-" option will "Provide an environment similar to what the user would expect had the user logged in directly.". But this is not the case for me on 12.04. When I am loging in directly with the user I have a $PATH, which differs...07:40
ARTSIOM...from the one I get when login in with "su - user""07:40
twbblendedbychris: that depends if you need locking07:40
twbblendedbychris: if you have exactly one NFS client, you probably do not need locking07:40
twbARTSIOM: sorry, I don't care enough to help you further.07:41
rcsheetsam I crazy, or should I see a hostname *and* an IP address on each "64 bytes from..." line when I "ping 74.125.224.81"?07:50
rcsheetse.g. "64 bytes from nuq04s07-in-f17.1e100.net (74.125.224.81): icmp_req=1 ..."07:50
twbThat depends on the ping07:51
twbIf there are appropriate forward/reverse resolutions, Ubuntu's ping appears to print both on each echo-reply.07:51
rcsheetsok, so if it's in DNS, it should show up?07:51
twbif you're resolving stuff via DNS, yes07:51
twbCheck your resolv.conf and query the DNS server directly with dig, 7c &C07:52
twb&c &c, I mean07:52
rcsheetsok, so nsswitch has hosts set to "files dns"07:52
rcsheetsand "host 74.125.224.81" gives me the right hostname07:52
rcsheetsbut if i ping 74.125.224.81, the hostname doesn't show up in the echo-reply output07:53
twb"getent hosts 74..."07:53
rcsheetsfair point...07:53
rcsheetsthat returns the hostname07:53
twbThen I don't know why you aren't seeing it07:53
twbping and getent hosts should be using the same syscalls07:53
rcsheetsok, so i'm not crazy (at least not because of this)?07:54
twbrcsheets: can you reproduce the issue for arbitrary IPs?07:54
twbWhat does ping say for 203.7.155.107:54
rcsheetswell i'd call one of google's web servers pretty arbitrary, but sure i'll try that one07:54
rcsheets64 bytes from 203.7.155.1: icmp_req=1 ttl=55 time=196 ms07:55
rcsheetsetc07:55
rcsheets'getent hosts ...' gives me alpha.cyber.com.au07:55
twbYeah something is wrong there.  Double-check that you get a PTR by other means.07:55
rcsheets'host ...' also yields the hostname07:56
twbThat is the correct PTR07:56
rcsheetsDNS seems to be working fine, getent works fine, but whatever ping uses doesn't work fine07:56
rcsheetsthe actual reason i'm asking though is because this is happening on my mysql server (but also other servers), and that's bad because the users' host specifications are written as hostnames.07:56
rcsheetsso it relies on getaddrinfo (or whatever) working properly07:56
rcsheetsso access is denied right now for everyone, because the host-by-addr lookup fails07:57
rcsheetsi would understand this if DNS were failing, but... i'm just really confused07:57
twbrcsheets: just in case: know that mysql hard-codes either "localhost" or "127.0.0.1" specially to mean "use sockets instead of ports"07:58
rcsheetsyeah this is non-local07:59
rcsheetsbut a good thing to note. i've been bitten by that before. localhost is the one it forces to a socket.07:59
twbWhere is your resolv.conf pointing?07:59
rcsheetsmy ISP's three recursors07:59
rcsheets216.218.196.2, 65.19.175.2, and 65.19.176.207:59
twbIf you're chrooted, /etc/resolv.conf might point to a different file07:59
=== Arc_ is now known as a5m0
rcsheetsnothing is running chrooted. ping _certainly_ isn't.08:00
rcsheetsand this is happening on multiple systems08:00
twbTry limiting it to a single resolver, or to 8.8.8.8 specifically.  Check if nscd is running.08:00
twbIt's also worth noting that ping is setuid08:00
rcsheetsah that's a good point08:00
twbAnd of course tcpdump08:01
twbAnd check logfiles :-)08:01
rcsheetsnscd would be the process name, right?08:01
twbDunno08:02
rcsheetsok, a system far away on a different network is doing the same thing (with ping)08:02
twbTo make things extra interesting, sometimes things work only if nscd *is* running...08:02
rcsheetsfully updated 64-bit lucid system08:02
rcsheets64 bytes from 203.7.155.1: icmp_seq=1 ttl=49 time=331 ms08:03
twbIs this a contanier or openvz ve or anything like that?08:03
rcsheetsthe far-away system is virtual. the ones i was looking at before are one KVM virtual machine and one physical box08:03
twbThat can cause bizarre issues due to different kernel than expected.08:03
rcsheetsi will try another physical box08:03
twbKVM should be fine08:04
rcsheetssame result pinging 203.7.155.108:04
rcsheetsi'll try changing recursors08:04
twbMight also want to compare dig with and without that option that makes it do its own recursing08:05
rcsheetsdig gives the same results regardless of my resolv.conf settings (modulo the info about where it connected, of course)08:05
rcsheetsdo you have a system where you can verify for sure that 'ping 203.7.155.1' shows the hostname on each echo-reply line?08:06
rcsheetsbtw i don't have nscd installed on any of these boxes08:07
twbrcsheets: yes, that happens here, on 203.7.155.1 :-)08:08
rcsheets"that" being the reverse lookup?08:08
twbOh, crap08:09
rcsheetscrap?08:09
twbOK, ignore everything I've said for the last twenty minutes08:09
rcsheetsokay08:09
twbIt looks up As but not PTRs08:09
twbhttp://paste.debian.net/169212/08:10
rcsheetsokay08:10
rcsheetsso the results of 'ping' were a red herring, but mysql still seems to be broken.08:10
rcsheetsfor instance, from margaret.picosecond.org, connecting to kumquat.picosecond.org, i get08:11
rcsheetsERROR 1130 (HY000): Host '184.105.204.160' is not allowed to connect to this MySQL server08:11
rcsheetswhich is because 184.105.204.160 doesn't match any users' host patterns08:12
rcsheetsbut normally that wouldn't matter, because mysql would look up the hostname08:12
twbHave you asked #mysql about that?08:12
rcsheetsno, i thought i had a general nss-related issue, because of the ping stuff08:13
rcsheetswoah, wait a sec. i restarted mysqld and now it's okay?!08:14
twbIME when you are using <stupid thing>, it doesn't hurt to check with them if it's a known issue08:14
rcsheetsi mean, i made a config change. i _turned logging on_.08:14
rcsheetsyou know, i wouldn't be the least bit surprised if whether logging is turned on somehow effects whether hostnames are looked up for new connections.08:14
rcsheetsjust because, well, mysql08:15
twbtell me about it08:15
rcsheetsyeah, and now <random website that was broken> is now fine08:15
rcsheetswhat. the. FFFFFFFFFFFFF08:15
twbSo the obviousl solution, is to have a cron job that restarts mysqld every ten minutes amirite08:16
rcsheetsremind me to start charging extra for mysql databases.08:16
twbNot that I have ever been ordered to deploy such a solution, ohnono08:16
rcsheetsok, well i'm putting the laptop down for a bit and letting my brain relax now that i'm done with that08:18
rcsheetsmany thanks, twb, for talking through all that with me.08:18
twbNo worries08:18
rcsheetseven being wrong together about the behavior of ping is better than being wrong alone :)08:19
twb!beer08:21
twbUseless bots in #ubuntu-* :-/08:21
three18ti_twb, you wouldn't -DOWNLOAD- a -BEER- would you?08:27
* rcsheets pours twb a cold beer08:29
rcsheetsalso, here's a seahorse. http://i.imgur.com/ciTzp.jpg08:29
twbIn separate steins, I trust08:32
rcsheetsof course08:33
samba35if i have to setup pexlinux what do i require on client side ? do i require bootrom on nic ?08:34
blendedbychrisis there like an iotop ?08:35
blendedbychrisindeed08:35
twbsamba35: do you mean pxelinux?08:44
samba35yes08:45
nibalizer14208:45
nibalizerthats waht you need08:45
twbIf so, all you need is a PXE ROM.  Most ethernet NICs ship with one onboard, you simply enable it in the BIOS.08:45
twbOtherwise, get either ipxe or gpxe, and bootstrap that from something else (e.g. CD or USB key).08:45
samba35ok08:46
samba35is ipxe boot over internet ? never heard of ipxe just read about gpxe08:47
twbipxe is a fork of gpxe08:48
twbEach claims to be better than the other08:48
samba35ahh ok08:48
samba35twb, have you ever hard or is it possible to boot ubuntu desktop form (?)pxe  from ubuntu server08:49
samba35sorry just thinking of played very long time back on ltsp08:50
twbsamba35: http://prisonpc.com08:50
twbThat's an ubuntu desktop booted off PXE08:50
samba35ok thank you08:51
samba35have you ever tryed ?08:51
samba35and sorry not a native english speaker08:52
twbsamba35: PrisonPC is my product.08:53
samba35ahhhhh08:54
samba35can i send you pm ?08:54
=== Mez_ is now known as Mez
twbWhatever08:57
twbTechnical questions should be addressed to the channel.08:57
blendedbychrisnight guys08:58
lynxmanmorning o/09:02
linociscohi all09:17
linociscohow can I get myname@Ubuntu.com ?09:17
linociscojust by signing ubuntu COC?09:17
nathwilllinocisco, need to be an ubuntu member09:22
nathwillhttps://wiki.ubuntu.com/Membership09:22
linocisconathwill, can you check if I am already a member by seeing my page https://launchpad.net/~naymyowin ? I want to know what to do next09:23
lynxmanjamespage: thanks for triaging, it was on my todo list for today :)09:25
jamespagelynxman, np09:25
nathwilllinocisco, you'll need to read the section "prodedure for obtaining membership"09:25
jamespagelynxman, something weird going on with triggers for mcollective + plugins09:26
lynxmanjamespage: I reckon its missing the option in the postinst09:27
linocisconathwill, to my understanding, after signing COC, it was done. but now all changed09:31
nathwilllinocisco... not to my knowledge. ubuntu membership has always been more involved09:31
nathwillsigning the COC is a prereq, certainly...09:31
rcsheetsa necessary condition, but not a sufficient condition09:33
nathwilllinocisco: #ubuntu-community-team is more likely to have details09:35
linocisconathwill, thanks09:35
nathwilllinocisco: yw. glad you're interested :)09:36
rcsheetsi have to admit, realvnc enterprise is pretty decent stuff09:41
eagles0513875hey guys how can i setup my mail server to work with a different domain if i have a client that wants email hosting and restrict the Maildir accounts to their domain? as well as how can i set quotas on other users in regards to email except for my account11:02
MischinkaIs there anyway to install a package that is dependent libmysql16 on ubuntu 12.04 ?11:03
Davieyhey zul, fancy checking if the Dep is *needed*? https://launchpad.net/ubuntu/+source/routes/1.13-1/+build/349628211:05
zulDaviey: ack when i get in11:06
Davieyget in there!11:08
Mischinkahmm this APE Server installation is a pain on precise.11:09
livtylerHello, can EAP and LDAP as a bind user store coexist without interfering with each other?11:14
zulDaviey: its in the archive so i dont know whats happening there11:19
MischinkaANyone know how to get this libmysql16 on precise?11:25
Davieyzul: Are you kidding me?11:28
zulDaviey: too early in the morning11:30
Davieyzul: heh, ok. You had me there.11:30
lollisoftHi, I have installed ubuntu server (cloud) on my Mac within VirtualBox using a 8GB disk. Then I installed open ssh and made a snapshot. Then after installing open jdk 6 and rebooting I got a grub error out of partition. Any help?11:40
=== matsubara-afk is now known as matsubara
brainysmurfI need an afp share on ubuntu, what's the best package to use?12:45
brainysmurfthe afp share comes from a mac12:46
RoyKnetatalk12:47
brainysmurfI thought netatalk turns ubuntu into a server; I need a client to connect to afp server12:48
RoyKoh12:48
RoyKhttp://bit.ly/L2Ixwv12:49
veetHi! I installed Ubuntu MaaS server, but I have Internal Server Error on http://my.ip.address/MAAS. Can you help me to solve this problem?12:52
RoyKveet: have you checked the apache logs?12:53
brainysmurfHow about sharing via ssh?12:56
RoyKsshfs?12:57
brainysmurfI found sshfs, but can't get it installed ...12:58
RoyKbrainysmurf: does the server *only* support afp?12:58
brainysmurfRoyK: no, anyway I'm root there12:58
RoyKthen using something else would possible be desirable12:58
brainysmurfyou mean not using afp?12:59
RoyKyep12:59
RoyKnfs is probably better13:00
veetI have these errors on apach log: http://pastebin.com/mevBTjqF13:00
patdk-wkveet, fix your cgi programs13:01
veetAll my cgi programs seems correct. I think trouble is in something else.13:19
hallynzul: your libvirt has swarves in build-deps, but dwarves is in univers?13:37
drPoOhi all, I am having difficulties installing sun java6 jre on 10.04 LTS. Could anybody point me to a working tutorial?13:42
cocoa117drPoO, u still using 10.04?13:47
drPoOcocoa117, I will update to 12.04 soon but need to fix java ASAP13:47
cocoa117drPoO, so what's the problem13:49
drPoOI added http://archive.canonical.com/ubuntu lucid partner to my sources.lst13:49
cocoa117that method won't work anymore13:49
cocoa117Oricle change Java distribution license13:50
drPoObut still get the following message http://pastebin.com/EGmSm2wf13:50
cocoa117ubuntu can't distributed anymore13:50
jpdsdrPoO: You have to download it from the Oracle site.13:50
drPoObut how can I install it then?13:50
drPoOah13:50
drPoOthe .bin file?13:50
cocoa117yes13:50
kayakyakrAlright, I would love to get another eye on this issue I'm having. Trying to get a single server instance of openstack set up and have everything working except for the most important part: launching instances.13:58
kayakyakrThis is the error I'm getting: http://pastebin.com/21MXmrfX13:58
kayakyakrEssentially boils down to one line: libvir: Security Labeling error : internal error cannot load AppArmor profile 'libvirt-8daa5252-9795-42e1-8e5a-f16df7d5932d'13:58
kayakyakrI can launch new instances in KVM using virsh and virt-manager, just can't get openstack to launch them14:00
Hoythi , apt-get dist-upgrade doesn't work in ubuntu server ?14:34
tashI've never setup Ubuntu Server on a system with fake raid ( aka bios raid, not a real raid controller ), and I'm having some issues in doing so.  Ubunt 12.04, Supermicro X8SIL-V Mobo, 2 X 500 GB Westerd Digital hdd's, bios Intel raid, everything works until the installer tries to install Grub and it fails.  Anyone else had similar issues that you were able to conquer??14:40
tashI tried again and am at the "Detect disks" screen.  Says that one or more drives contains SATA RAID and wants to know if I want to activate the Serial ATA RAID devices.  I assume "Yes", and that's what I did the first couple of times....14:41
tashany help would be greatly appreciated.14:41
rbasakDaviey: it looks like openipmi in main is too low level. It could be used but ipmitool from freeipmi (in universe) matches the level we need, ie. no low level IPMI knowledge, just commands like "chassis power reset" and "chassis bootdev pxe". ipmitool doesn't look to have any dependencies that aren't in main already. What do you think about promoting ipmitool to main and then using that?14:44
rbasakDaviey: apparently ipmitool is already the de-facto standard too.14:44
Davieyrbasak: that is the plan.14:45
rbasakDaviey: so that's fine then, right? If ipmitool works then there's nothing further for me to test?14:45
NCommanderDaviey: so we're going to promote ipmitool to main?14:45
Davieyrbasak: how come ipmitool from openipmi doesn't work?14:46
DavieyNCommander: That is what i am pushign for.. it's a more healthy and polished project IMO.14:47
rbasakDaviey: I think it could be made to work, but it's low level so I'd need inside IPMI knowledge. It would make sense to write a wrapper around it to issue high level commands like reboot and change boot device. But is there any need to write such a wrapper when it already exists in ipmitool, even if ipmitool uses its own stack?14:47
NCommanderDaviey: ipmitool is really just a very small tool that speaks ipmi. open/freeipmi look like IPMI implementations and do other stuff. I'm not quite sure why we even ship those (though I'mstillhaving trouble wrapping my head around openipmi)14:47
Davieyrbasak: what do you by low level?14:48
Davieymean by*14:49
rbasakDaviey: I would have to use commands like ipmicmd channel [ipmb] IPMB-addr lun netfn [seq] cmd [data1 [data2 ...]]14:49
rbasakNo idea what that means. ipmitool uses commands like "ipmitool chassis power reset". Presumably that can be translated to the former syntax with a wrapper.14:49
iSeeDeadPixelshey, i'm having a MAAS problem14:50
rbasakBut the wrapper would have to be written.14:50
iSeeDeadPixelstwo actually14:50
rbasakNot so much the wrapper but gathering the knowledge needed, at which point the wrapper would fall out of that knowledge.14:50
iSeeDeadPixelsone is a python piston error (oauth) the other is a Internal Server Error on Accept and Commission14:50
NCommanderIn addition an entire new program would have to be written for SOL support14:51
NCommanderas far as I can tell14:51
rbasakEssentially high level command to binary blob translation as I see it.14:51
Davieyrbasak: right... so the promotion opportunity is for http://www.gnu.org/software/freeipmi/, when http://ipmitool.sourceforge.net/ is alreayd in main14:51
Daviey^^ two high level projects.14:51
uvirtbotDaviey: Error: "^" is not a valid command.14:51
rbasakDaviey: no, ipmitool is in universe. ipmicmd is in main (it's from the openipmi package)14:51
Davieyopenipmi provides a kernel interface, which is useful for poking the BMC directly.. i don't actually know if freeipmi covers that scope14:52
Daviey(that scope is required for setting auth and network details on first comission)14:52
rbasakipmitool can poke the BMC directly.14:52
rbasakI tried that yesterday14:52
Davieyrbasak: So.. ipmitool is the tool we traditionally recommended.. but looking to bump that to freeipmi14:52
rbasakauth details I'm not that clear about. I don't full understand the IPMI auth model yet. But it appears that this should work too.14:53
rbasakOK so freeipmi I haven't looked at yet. Looks like it's a third one, in universe. What's the reason we want to switch to that?14:54
Davieyrbasak: variations of what i use, http://pb.daviey.com/p3xx/14:55
Davieybut that uses ipmitool.. which i'm keen to move away from14:55
rbasakLooks like freeipmi does have the high level functions I want, but I need to test it14:55
rbasakWhy do you want to move from ipmitool to freeipmi?14:55
Davieyrbasak: freeipmi is a more healthy project IMO, over ipmitool14:55
rbasakThe vendors appear to be behind ipmitool. They are patching that for their custom commands, not freeipmi.14:56
Davieyipmitool last released in 200714:57
Davieyfreeipmi is averaging on montly releases14:57
rbasakfreeipmi does appear to work for me14:58
Davieyrbasak: Where are you seeing the patches?14:58
rbasakDaviey: I know of one vendor with unpublished patches for support of some of their vendor-specific stuff.14:58
Davieyrbasak: well if it's unpublished, it doesn't impact the Ubuntu Archives :)14:59
=== Lcawte|Away is now known as Lcawte
rbasakDaviey: that same vendor reckons that "everyone else" is also using ipmitool. But I don't think that they're particularly averse to switching if we can convince them it's a good idea.14:59
Davieyrbasak: Well the project activity alone is a good indicator15:00
rbasakMaybe not the ubuntu archives, but if we want MAAS to have the widest support possible, it would make sense to use the IPMI tool that vendors want us to use and are prepared to patch when necessary. This could still be freeipmi - I'm just asking the question.15:00
Davieyfreeipmi uses saner config files than ipmitool15:00
jhobbsipmitool uses config files?15:00
rbasakconfig files? Why would we need any?15:00
Davieyyou can dump the config in xml, edit it, and push it back15:01
Davieyipmitool doesn't support this15:01
rbasakWhy do we need config files?15:01
Davieyfreeipmi you can also do 192.168.1.[100-200] chasis power on15:01
rbasakWhat extra state should an ipmi tool be storing?15:01
Davieyand it'll do the whole range15:01
Davieyrbasak: not state, but config.. i suggest trying it to see what i mean15:02
kayakyakrwelp, got the openstack running15:02
kayakyakrtore down apparmor completely and it works15:02
rbasakI just tried it. I have no idea what you mean. What exactly would be in these config files that you would want in there/15:02
rbasak?15:02
kayakyakrnow have to see if i can do it without destroying system protection.15:02
hallynzul: hm, also i'm getting test failure at build (on q, will try on p to compare)15:02
Davieyrbasak: freeipmi was originally declared on https://blueprints.launchpad.net/ubuntu/+spec/servercloud-p-arm-system-management .. so vendors were aware.15:03
stgraberhallyn: hey, I'm doing some SRU validation for lxc. The testcase in bug 997687 seems weird to me, I don't see anything in there that'd get expanded by the shell, did I miss something?15:03
uvirtbotLaunchpad bug 997687 in lxc "lxc-start-ephemeral needs to quote $line when echoing" [Undecided,Fix committed] https://launchpad.net/bugs/99768715:03
rbasakDaviey: and from what I remember of that session, they objected right at that time.15:03
jhobbs<-- I objected15:04
Davieyjhobbs: you did?  why?15:04
rbasakDaviey: I'm just asking why exactly we want freeipmi. So far the only reason I understand is the range facility.15:04
jhobbsbecause we use ipmitool, as do most of the partners that we've discussed with15:04
Davieyrbasak: no, i also stated it's a more healthy project.15:04
hallynstgraber: abc:abc gets expanded15:04
hallynwell, '*:*' gets expanded to abc:abc15:04
jhobbsand fwiw, that blueprint mentions openmpi, not freeipmi15:05
rbasakok so that's one other (IMO weak) reason. If it's stable and works, why does it need to have a recent release?15:05
jhobbsopenipmi that is15:05
stgraberhallyn: oh, I see, I guess I should have actually checked the code :)15:05
hallynstgraber: the "echo $line" (with $line unquoted) gets expanded for "lxc.cgroup.devices.allow = c *:* m"  :)15:05
jhobbswe also use freeipmi sometimes, it has better dcmi support15:06
Davieyrbasak: please investigate the differences yourself.15:06
hallynluckily i see that my scripts forwarding what i type to my irc client are properly quoting :)15:06
stgraberhallyn: right, fix confirmed. That's all of the fixes from the current SRU confirmed, so we just need to wait for the wait period, then I can upload the next one ;)15:08
hallynhere's hoping we don't ge tmore int he meantime15:09
=== marrusl_ is now known as marrusl
Davieyrbasak: Personal experience with openipmi has shown that the kernel module isn't that robust.. it previously has locked up cores for myself.  Parallel execution of tasks lends itself to hyperscale more.  Having a 'detect' utility ipmi-locate fits MAAS well for initial setup (does this work on that box?  it *might* use dmi tables).  Provides some nice abstractions for status, richer bmc watchdog, SOL seems more polished, user experience provides 15:28
rbasakOK those sound like good reasons - thanks!15:29
Davieythe sensor output is more reliably parsible IME.15:33
SpamapSDaviey: who would be good MaaS people to invite to hang out in #juju? We get on average 2-3 questions per 24 hour period in there about MaaS15:37
stgraberhallyn: currently running tests, but it looks like all the package lists in lxc-ubuntu are actually useless. We could achieve the exact same by just having a single packages=vim,ssh for all distro versions15:37
SpamapSDaviey: and frankly, most of us know almost nothing about maas15:37
stgraberhallyn: I think these lists were only relevant before we switched the deboostrap mode to be closer to that of the distro.15:37
stgraberhallyn: I confirmed it on precise for now and I'm running tests on lucid, natty and oneiric now15:38
kayakyakrwoo! openstack server up and running15:39
kayakyakrwithout any sort of apparmor security >_<15:39
DavieySpamapS: roaksoax, smoser, robbiew, jtv, bigjools, flacoste, rvba, allenap, sabdfl.. all MAAS experts :)15:39
Davieyi know a thing or two, but those are the best people :D15:39
robbiewSpamapS: right...so the same could have been said about juju..until people started *using* it ;)15:40
anooif you mean "Magic As A Service," I want some of that.15:40
anooif it's that same ol' "metal", not really as interesed :)15:43
SpamapSrobbiew: right, so perhaps what we need is a "beginner's maas" so that we can speak intelligently when people ask about how to fix the provider.15:43
robbiewbeginner's maas?15:45
robbiewlike a wiki page?15:45
pdtpatrickkayakyakr: was there a guide u followed for Openstack? if so - can you please share?15:45
robbiewjust trying to understand what's needed...if folks are having problems with the provider...bigjools is their man15:46
robbiewand I would agree that he should probably hang out in #juju15:46
robbiewbut he's also asleep right now ;)15:46
Davieyslackr.15:46
kayakyakrpdtpatrick: http://docs.openstack.org/trunk/openstack-compute/install/content/ch_installing-openstack-overview.html15:46
stgraberhallyn: looks good on all ubuntu releases, so I'll probably SRU it like that, only real changes will be that I'll drop resolvconf on < precise (as it's known to be broken/unreliable) and we won't install dialog (but whiptail is there by default, so if that was for debconf, it'll work exactly as it does today)15:47
pdtpatrickahh you used their docs - that's what  i had used earlier as well. Very long guide. They've got to trim that down or automate it a bit more or allow some setup via a UI.15:48
kayakyakrpdtpatrick: it took me about 3 days. i used devstack at first, but you can't transition devstack into a full deployment15:48
kayakyakrit really wasn't nearly as complex as getting cloudstack set up... which I never successfully did.15:49
pdtpatrickYeah i spent an entire day getting my setup working. I like how they don't tell you hey - don't lose this "ID" you're going to need it shortly. Or they don't really tell you how the IDs are related so you have to play a bit of guess game. Anyway - once it is up and running, it's a SEKSY project.15:50
kayakyakrThe hard parts were getting the endpoints properly set up in the identity service, and getting past that apparmor crap15:50
pdtpatrick:)15:50
kayakyakrWould be nice is openstack had a bit more you could do from the interface. uploading new images, managing endpoints, stuff like that.15:51
pdtpatrickI tried the juju openstack charms - FAIL. Was quite excited when i saw the charm15:51
kayakyakrha15:51
jdstrandI wrote https://wiki.ubuntu.com/SecurityTeam/TestingOpenStack and didn't have to adjust apparmor at all15:51
jdstrandkayakyakr: please file bugs and include your kern.log that has the denials15:51
kayakyakryeah, I saw that option in the 12.04 server install. didn't think it'd work out well.15:51
kayakyakrjdstrand: it wasn't a denial, it was http://pastebin.com/21MXmrfX15:52
kayakyakrand it failed in both enforce and complain modes15:52
jdstrandkayakyakr: can you paste the output of 'cat /etc/apparmor.d/libvirt/libvirt-8daa5252-9795-42e1-8e5a-f16df7d5932d*'15:53
kayakyakrdoesn't exist15:54
jdstrandkayakyakr: I suggest you file a bug using 'ubuntu-bug libvirt-bin'15:55
jdstrandand details the steps used to reproduce the bug, etc15:55
kayakyakrjdstrand: I'll do that later, though I am unsure if anyone will be able to reproduce. It seems to be rare. The only other mention of the same error with openstack + libvirt in google is in this same IRC.15:57
hallynstgraber: is it bc we stopped doing minbase variant?15:57
kayakyakrright now i'm going to be working on getting it imaged15:57
stgraberhallyn: yeah16:02
stgraberhallyn: I'm doing quite a few other changes to lxc-ubuntu, trying to reduce/remove the need for update every time we release a new ubuntu16:04
hallynstgraber: excellent16:05
kayakyakrjdstrand: that's a clean tutorial. some suggestions from my experience: I got mine up with a single network interface. This might be better for a lot of smaller installs. You also skip over the 'volume' service, which is tougher to explain but very, very useful (and not difficult to get set up if you set up LVM properly). euca is useful, but no longer necessary, you can do everything without it.16:06
jdstrandyeah, I wanted swift too. it is a work in progress16:06
jdstrandthank adam_g-- he walked me through it16:07
kayakyakri skipped over swift for now. wanted to get it running first.16:07
kayakyakrsomething to make a note of: logs for the nova services, when you're using upstart to run them, are located at /var/log/upstart/nova-____.log16:08
kayakyakrthat took me a few hours of frustration to figure out.16:08
kayakyakrand getting the endpoints right was the other thing that took me ages. using the template file might be a much more maintainable method of handling endpoints for small deployments)16:09
=== anoo is now known as an00
=== an00 is now known as anoo
stgraberhallyn: I think my changes are good to go for lxc-ubuntu. I'll write a changelog based on them then will ask you to review (as there are a good lot of them)16:20
stgraberhallyn: http://paste.ubuntu.com/992635/16:25
stgraberhallyn: better with the changelog: http://paste.ubuntu.com/992636/16:26
hallynstgraber: part of me wants to suggest waiting until 12.04.1 to change default to precise, but given the feature diff, precise is worth it16:53
zulhallyn: gah?16:54
zulhallyn: where is it failiting?16:54
hallyntest-nonblocking-socket.sh16:55
hallyn/home/ubuntu/libvirt-0.9.12/./gnulib/tests/test-nonblocking-reader.h:153: assertion failed16:55
zulweird16:57
hallyntaht was interesting16:59
hallynthere went my byobu session16:59
hallynzul: so you don't get such a failure?17:00
hallynif not i guess i'll dig in...  how utterly weird17:00
hallynzul: oh, what about the universe build-dep ?17:00
zulno that doesnt happen for me17:00
zulwhich one?17:00
hallynstgraber: looks good, thanks17:02
hallynzul: dwarves17:03
zulhmm...thats something i cherrypicked from debian17:03
hallynit may end up being something we need MIRd, based on the description17:04
zulyeah ill get that started17:04
hallynheh, apologies to jdstrand17:05
zulhallyn: lemme do the build again and see if i can reproduce again17:06
hallynd'oh.  it's a gnulib test, not a libvirt test17:06
zulhallyn: this will disable it: http://anonscm.debian.org/gitweb/?p=pkg-libvirt/libvirt.git;a=blob;f=debian/patches/Disable-gnulib-s-test-nonplocking-pipe.sh.patch;h=64f6968fd48f9161cd515d8a1f22e78048dac497;hb=0c361401bb36be6326021182d0e6d28b6495e5ec17:07
hallynzul: ok i guess we need that. t he problem is that the '*-main' test for that one failed to compile, so the test script fails17:08
zullogs?17:08
hallyncd gnulib/tests and make test-nonblocking-socket-main17:09
hallyntest-nonblocking-socket-main.c:18:20: fatal error: config.h: No such file or directory17:09
hallynsounds to me like bad gnulib17:09
zulgrrr17:10
zulok ill look into it17:11
hallynno wait, the patch you linked to was for test-nonblocking-pipe.  this is -socket17:11
zulhallyn: this is building on precise right?17:12
hallynzul: nope17:13
zulhmmmm17:13
hallynI think this has been mentioned to me before in ubuntu-devel, at least some gnulib breakage was known17:13
hallynbut ... probably not exactly this17:13
zulhallyn: yeah i get that as well, im getting network tests failure as well17:21
hallynzul: networkxml2argvtest ?17:22
zulyeah17:22
hallynyeah that seems to not happen every time.  it happened first and third, but not second time...  weird17:22
zulit might have failed because i have dnsmasq running17:22
zulbut yeah its weird17:23
=== Ursinha` is now known as Ursinha
stgraberhallyn: doh, you were faster than me ;) (at replying to the lxc-net e-mail on lxc-devel)17:39
stgraberhallyn: so the guy will get twice the same answer (though I linked my shell script to my reply, so hopefully he can use that in the mean time)17:40
hallyncool17:40
hallynmy hope was he'd come back with the lxc-attach patch :)17:40
hallynjjohansen: I notice we didn't put down an action item for relating to apparmor for lxc.  Are those in the apparmor blueprint?18:00
zulDaviey: routes was using a custom repoze.lru18:03
iSeeDeadPixelshey, i'm having a MAAS problem18:12
iSeeDeadPixelsone is a python piston error (oauth) the other is a Internal Server Error on Accept and Commission18:13
zulDaviey: https://bugs.launchpad.net/ubuntu/+source/python-repoze.lru/+bug/100091418:20
uvirtbotLaunchpad bug 1000914 in python-repoze.lru "[MIR] python-repoze.lru" [Undecided,New]18:20
hallynall right, i'm trying to udpate the server guide (https://help.ubuntu.com/12.04/serverguide/dns-configuration.html) to clarify earlier that bind cannot write under /etc/bind18:20
hallynbut i'm not entirely clear on, under what conditions will it try to do so?18:20
KXTwoDoes anyone know if what server might have a dokuwiki channel, I am looking fo rhelping with using dokuwiki on my webserver18:20
hallynis it an allow-update line in the zone section?18:20
hallynstgraber: you need to do something about your mailer :)18:21
hallynpeople can get uppity about that...18:22
stgraberhallyn: my mailer is the default mailer with the default config ;)18:23
stgraberhallyn: let me see if I have some broken settings ...18:23
stgraberhallyn: hmm, the e-mail preview looks good, so thunderbird is messing with it afterwards...18:24
hallynweird18:25
hallynwould be worth makign sure that ubuntu users aren't automatically shunned from lkml and the likes18:25
Davieyzul: super18:27
stgraberhallyn: looks like enigmail is to blame actually...18:28
hallynah.  good, i guess18:28
KXTwowow did i ask a dumb question18:30
iSeeDeadPixelshey, i'm having a MAAS problem18:41
iSeeDeadPixelsone is a python piston error (oauth) the other is a Internal Server Error on Accept and Commission18:41
hallynzul: would you mind taking 3 minutes today, any time, and quickly reviewing https://code.launchpad.net/~serge-hallyn/serverguide/serverguide-dns-varlibbind/ ?18:44
zulhallyn: sure but i dont think i can merge it18:44
=== skaet_ is now known as skaet
hallynzul: right, i just want to make sure it's right.18:45
zulhallyn: looks ok to me18:46
hallyni'll do a proper merge request after i can get both you and jdstrand to look at it :)18:46
hallynthanks18:46
hallynjdstrand: if you get a few minutes this afternoon, could you look at https://code.launchpad.net/~serge-hallyn/serverguide/s18:46
hallynerverguide-dns-varlibbind and see if it makes sense to you?18:46
stgraberhallyn: can you confirm the e-mail I just sent you appears correctly?18:49
stgraberhallyn: apparently the problem was with the needed wrapping when doing inline gpg signing. I changed my settings to do pgp/mime instead which should fix the issue.18:49
=== fij0_ is now known as fij0
jdstrandhallyn: what is the reference to /var/lib/ypbind/db.example.com? Other than that, it seems fine. I might note that the apparmor policy is based on the packaging rather than dictating it. not sure if that really needs to be captured in the serverguide, but it seemed sorta like there is a problem with apparmor18:58
hallynjdstrand: what do you mean by what is the reference?  (I'll reword to make clear it comes from policy)19:03
=== Arc_ is now known as a5m0
jdstrandhallyn: I didn't read the whole thing-- ypbind is the method to use DDNS?19:04
hallynd'oh19:04
hallyntypo.  that was supposed to just be /var/lib/bind.  thanks19:04
hallyni'll just drop the apparmor bit again.  it's probably extraneous info.19:05
jdstrandok, that is what I thought (I was not familiar with ypbind in this context :)19:05
RoyKyp* == NIS != DNS19:05
hallynyup :)  i was also looking at an nis bug last night, hence...19:05
stgraberhallyn: did you have a chance to look at these lxc-ubuntu changes? (planning to get these into quantal later today along with dropping lxc-ip)19:10
koolhead17hi all19:13
iSeeDeadPixelsanyone have experience with MAAS?19:14
koolhead17iSeeDeadPixels, shoot your query am sure someone will respond19:14
iSeeDeadPixelsone is a python piston error (oauth) the other is a Internal Server Error on Accept and Commission19:16
iSeeDeadPixelsbut because there seems to be missing stuff19:16
iSeeDeadPixelsit's a clean MAAS install.19:16
hallynstgraber: the ones from the pastebin?  yes, sorry, thought i had said - they look good19:16
hallyni especially like the improved tests (over 'release = "precise"')19:16
=== wolferz_ is now known as wolferz
stgraberhallyn: good, I'll run a batch of test to make sure I can actually bootstrap and boot all the supported releases, then I'll look at what I want to SRU to precise19:20
koolhead17iSeeDeadPixels, if you think something is missing file a bug with all the details and distribution your trying it on, am sure someone will have a look at it. It will help the devs at same time19:23
stgraberhallyn: looks like that guy will take care of your lxc-attach work item after all ;)19:29
hallynwoot!19:34
iSeeDeadPixelsand now i am greppin' COMMISSIONING_SCRIPT19:35
=== kirkland` is now known as kirkland
=== nxvl_ is now known as nxvl
arooni-mobilegenerally accepted opinion on using ext4 versus ext3 on a ubuntu production server enviornment?20:32
KXTwoI finally have my web server up!20:39
* wolferz is downloading ubuntu-server now and will be setting up shortly20:45
poorangusGood day all. I'm having a very frustrating problem with Postfix. Is this an appropriate place to ask for help?20:47
JonEdneypoorangus, Go ahead and ask your question.  If someone knows the answer or can provide input, they will.20:48
poorangusExcellent.20:48
poorangusUnder Ubuntu 12.04 LTS, Postfix receives all mail 100% of the time from every service, except Gmail.20:51
JonEdneyAre there any log entries?20:52
poorangusYes, this is what gets written to mail.log when GMail tries to deliver the email:20:52
poorangusMay 17 10:23:29 myhostname postfix/smtpd[3547]: connect from mail-pb0-f51.google.com[209.85.160.51]20:52
poorangusMay 17 10:23:29 myhostname postfix/smtpd[3547]: warning: TLS library problem: 3547:error:140943FC:SSL routines:SSL3_READ_BYTES:sslv3 alert bad record mac:s3_pkt.c:1247:SSL alert number 20:20:52
poorangusMay 17 10:23:29 myhostname postfix/smtpd[3547]: lost connection after EHLO from mail-pb0-f51.google.com[209.85.160.51]20:52
poorangusMay 17 10:23:29 myhostname postfix/smtpd[3547]: disconnect from mail-pb0-f51.google.com[209.85.160.51]20:52
poorangusSo, the connection is being dropped immediately.20:53
poorangusNothing gets written to mail.err ..20:53
poorangusStrangely, this only happens with email sent from an email client using Google's SMTP server.20:53
poorangusGMail sent from the browser-based client is delivered as expected.20:53
poorangusReal stumper, eh?20:56
poorangusThis is a very clean install too .. installed from DVD, installed the dovecot-postfix package, and did some basic configuration..20:59
KXTwoSo I forwarded ports 22 adn 80 but when people outside my network put in my public ip address its not connecting?21:05
stgraberhallyn: did you notice the natty containers being broken lately?21:23
stgraberhallyn: I don't think it's my change breaking them, the rootfs looks good but none of the tty/console jobs start21:24
stgraberhallyn: ssh starts though and forcing the console jobs to start works fine, so I'm suspecting something is wrong in whatever triggers rc RUNLEVEL=...21:24
stgraberhallyn: lucid, oneiric, precise and quantal all work fine, so it seems to be limited to natty21:26
hallynstgraber: nope, last i ran the tests a few days ago, all worked.21:33
hallyn(or is natty not in my list in the testsuite?)21:33
stgraberhallyn: tracked it down to the missing "net-device-up IFACE=lo" event21:35
stgraberhallyn: wasn't that SRUed to the releases that ship lxcguest?21:35
stgraberhallyn: oh right, you fixed it but the SRU is still in -proposed...21:36
stgraberhallyn: bug 92433721:36
uvirtbotLaunchpad bug 924337 in lxc "lxc on precise is not working with lucid containers (container does not reach runlevel 2)" [Undecided,Fix committed] https://launchpad.net/bugs/92433721:36
stgraberhallyn: I marked the SRU as verification-done, so it should be moved to -updates soonish21:37
hallyngah.  hate that.  need to start actively looking for those weekly21:38
hallynthanks21:39
stgraberhallyn: in case you don't know about it: http://people.canonical.com/~ubuntu-archive/pending-sru.html21:40
lamontpoorangus: what version of postfix is installed?21:44
lamontpoorangus: because it feels like a libssl issue actually21:50
iggiCan someone help me with recovering a RAID 5 array after OS drive failure? I have a USB live cd in, I installed mdadm, did modprobe raid5, mdadm -E -s shows arrays present, but they are not in /dev/md*21:51
lamontiggi: mdadm --assemble --scan21:51
iggilamont, Thanks, that started most of my arrays ( I have 4) the largest one is sating that only 4 of the 6 drives are present, but I can see all 4 partitions in the OS21:54
iggierr all 621:55
lamontiggi: that's where  you --examine all of them and figure out if you're willing to just tell it to force assembly even though things are technically not happy21:55
lamontas in see the revno for all 6 drives, and you'll probably find that 2 of them are out of date21:55
* lamont needs to run21:55
iggithanks, I'll look into it21:56
pooranguslamont - it's Postfix 2.9.121:57
poorangusDang it, looks like I missed him.22:01
iggiWell hopefully I can get someone else to give me a bit of assistance22:08
iggiI'm trying to force mdadm to make the array, but I'm getting Device or Resource busy when it's not even mounted that I can tell22:09
iggiLooks like it might be dmraid messing around with it, I'm going to try removing it22:13
MischinkaHas anyone properly set up an ape server before? I cant seem to get any guidance as to do so using Precise22:22
pdtpatrickMischinka: http://www.ape-project.org/wiki/index.php/Setup22:41
pdtpatrick?22:41
hattorihanzoanyone deal with isseus in byobu in 12.0422:46
poorangusso many questions, so few answers :)22:46
pdtpatrickhattorihanzo: what issues? I believe Dustin Kirkland is in this room. He might be able to answer if no one else can tackle it22:46
grendal-primehey..im runing 12.04 on vmware.  I removed all the nics.  In the past with 10.04 i needed to remove the /etc/udev/rules.d/70-persistant-net.rules22:47
grendal-primeotherwise it would remember the interface isingments for the hardware.  I just deleted that file..and it no longer gets regenerates the file on system start..22:49
=== Lcawte is now known as Lcawte|Away
=== matsubara is now known as matsubara-afk
iggiI'm trying to force assemble a software raid 5 array, however it seems to detect all of my disks as spares, any help?23:00
jMCgHey folks - bug in MySQL on 12.04: http://dpaste.com/749584/23:04
jose__hi23:06
jose__may i ask a question23:06
jMCgjose__: you already did.23:06
jose__trolling like a sir23:06
jose__ok , here it goes, i have two internet connections (two modems) i want to have 2 gateways in nthe same interface, is it posible?23:07
jose__so i can router some ports with one modem, and some other with the other router23:08
ZenMasterOne hour left of work.23:09
keeshallyn: shouldn't clone(..., CLONE_NEWNS, ...) fail if I don't have CAP_SYS_ADMIN ?23:12
kirklandhattorihanzo: pdtpatrick: thanks, I'll have a look at that later tonight!23:23
poorangusTotally stumped .. anyone able to help with my Postfix woes?23:29
poorangusWhen receiving from GMail: "May 17 10:23:29 myhostname postfix/smtpd[3547]: warning: TLS library problem: 3547:error:140943FC:SSL routines:SSL3_READ_BYTES:sslv3 alert bad record mac:s3_pkt.c:1247:SSL alert number 20:"23:29
ZenMasterpoorangus: Do you have the write ports?23:32
ZenMasterI know that I have to setup a lot of outlook accounts here.23:33
ZenMasterimap 993 and ssl and smtp 587 and tls.23:33
ZenMasterOf course the log record you posted looks tay say something about a library problem, and a bad recorrd.23:34
ZenMasterSo sorry i guess that did not really help.23:34
poorangusTLS connections using with other ciphers including DHE-RSA-AES256-SHA (256/256 bits), ECDHE-RSA-RC4-SHA (128/128 bits) and RC4-SHA (among others, probably) seem to work. mail-*.google.com usually uses RC4-MD5 (always causing a warning/lost collection), but sometimes uses ECDHE-RSA-RC4-SHA (128/128 bits).23:45
poorangusThinking this is related to the cipher.23:46
patdk-lappoorangus, for ubuntu 12.04? this was solved awhile ago on the postfix list, no idea if it made it into ubuntu23:48
iggiwhen I force assembly of my software raid 5 array I get "mdadm: /dev/md3 assembled form 0 drives and 6 spares - not enough to start the array. My question is why does it recognize all the drives as spares?23:50

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!