[01:06] Hey all, trying to migrate from a worthless VPS server. Is it possible from a SolusVM Serial Console to start sshd on the VPS. It is running Ubuntu. [01:07] their support team told me they would not be able to assist because of "my bad configuration" which appears to be a problem on their end, can't ssh into the VPS :( [01:07] Gaming4JC: do you have a login: prompt on the serial console? or is it stuck somewhere else? [01:08] sarnold: I can get into root at serial console, however I'd like to turn ssh back on and login as my user and backup my stuff locally. [01:09] Gaming4JC: excellent. first things first, run apt-get update && apt-get install openssh-server openssh-blacklist openssh-blacklist-extra [01:09] Gaming4JC: if it wasn't installed yet, this will install it. if it is installed, it ought to be a no-op === n0ts_off is now known as n0ts [01:11] sarnold: It has sshd but it's only for the control panel, it's like a limbo account. I can't login as my user and the IP is different from the VPS (it would appear to be spawning an SSH shell on the control panels IP itself) :-/ ?? [01:12] at any rate I should be able to backup most of my stuff from this shell, even though user permissions are all wrong and I can't get dropbox to sync as my user [01:13] Gaming4JC: hrm; are you trying to use password or keys? when you try to ssh in, what error do you get? [01:14] sarnold: trying to use passwords. I'm getting Connection refused [01:15] Gaming4JC: check netstat -anp output and see which IPs your sshd is bound to [01:15] Gaming4JC: check iptables -L output and make sure you can connect to your sshd from your client [01:17] sarnold: inside of Serial console it is bound to 0.0.0.0 and ipv6 ::: :( [01:18] ok I think I have something, it's letting me login from root and drop to user, at least then I can innitiate a backup [01:18] :) [01:20] Gaming4JC: 'it' == serial console, right? [01:21] sarnold: yes, ran a netstat -anp inside of serial console and you can see an sshd running and bound to 0.0.0.0 [01:24] wow. [01:24] begin to see the problem. I'm inside the VPS and can't even ping google.com [01:24] it can't reach the internet [01:25] Gaming4JC: hey, that's progress and a good reminder to check the basics. :) [01:26] yes, was overthinking the obvious :) [01:26] Gaming4JC: ip addr show ; ip route show ... make sure those look sane? :) [01:27] looks pretty insane - http://pastebin.ubuntu.com/1398178/ [01:27] that's ip addr show [01:27] DOWN [01:28] heh, I think I'll cancel my subscription ASAP. :| [01:29] wow. never seen 'lo:..down' before. :) [01:30] Well, I guess I could have expected as much for 1TB bandwith 1GB of memory and 100GB of space for $100 a year. [01:30] cheap :P [01:30] that sounds like a good deal, indeed :) [01:31] It worked for 11 months with 80/75% up-time and 512MB of ram :) [01:31] 80% uptime, eh. [01:31] haha [01:31] they told me it's my fault it runs so bad [01:31] epic support. [01:31] ran Minecraft on it ;) [01:31] None of our other customers noticed! [01:32] To be fair, http://www.hetzner.de/hosting/produkte_vserver/vq7 is about competitive with that, and they are a serious hosting company (i.e. 98+% uptime). [01:32] http://www.hetzner.de/en/hosting/produkte_vserver/vq7 [01:32] That's unfair, it's probably 99.99%+ [01:32] that's the third time in three weeks I've heard good things about hetzner :) [01:33] not heard of them but will keep it in mind. I got one of the LowendBox ChicagoVPS packages ($300 for $30 Cybermonday deal) that I'm going to test out next [01:33] gotta love 90% discounts [01:33] I expect a lot [01:33] ;P [01:33] I said cheap, not good. Their server auction, https://robot.your-server.de/order/market , is pretty awesome, if you want, say, more than 100gb of storage for under €30/mo. [01:33] (Which is why I'm with them.) [01:34] Chicago VPS was $30 for a year [01:34] :) [01:34] Sounds awful. =p [01:34] 2GB of ram, 1TB of bandwith and 50GB of space [01:34] w00t === n0ts is now known as n0ts_off === n0ts_off is now known as n0ts [02:34] hey all.. im setting up a raid 5 using mdadm.. im a bit confused on what to do.. i made autodetect partitions on each drive.. the total size will end up over 4TB requiring GPT.. do i need to make a partition on the md0? === Ursinha is now known as Ursinha-afk === Ursinha-afk is now known as Ursinha [02:50] kantlivelong, heh? you need gpt if your making a partition and if the drive is >2tb [02:50] you don't need to partition md0 if you don't want to [02:50] depends on what your doing [02:50] you could must format it with your filesystem [02:50] partition it, then format [02:51] or install lvm on it, then format the lvm parts [02:51] if you don't boot from it, no need for partitions though [02:51] patdk-lap: why would you need to partition it if you boot from it? === chilicuil_away is now known as chilicuil [02:52] sarnold, cause grub will get upset? and so will the bios === n0ts is now known as n0ts_off [02:53] patdk-lap: hrm, grub can find its way through raid5? :) [02:53] hmm, yes [02:53] grub has had raid support for awhile [02:54] nice! === n0ts_off is now known as n0ts [02:54] I don't know of the limitations, if any [02:54] cause I would never boot from my data disks === n0ts is now known as n0ts_off === Guest3512 is now known as Chalaman [03:17] hello all [03:19] hi guys [03:20] any help on this please, i got error---------------------> http://pastebin.com/yEMZuc6F -------------------------> http://pastebin.com/TSA2EEcM [03:25] What do you guys use to DLNA to a "smart tv" ? minidlna? [03:25] or is there something like media tomb? [03:29] guys any help there [03:56] New bug: #1064320 in python-glanceclient "Error on deleting image membership" [Medium,Fix released] https://launchpad.net/bugs/1064320 === chilicuil is now known as chilicuil_away === Psi-Jack_ is now known as Psi-Jack === Gallomimia_ is now known as Gallomimia === Ursinha is now known as Ursinha-afk === n0ts_off is now known as n0ts === ibiris|afk is now known as ibiris [07:53] how can i skip the warning dialogue for no swap when installing server 12.10 through kickstart === Ursinha-afk is now known as Ursinha === th0mz_ is now known as th0mz [08:22] Can anyone recommend software for alert monitoring and graphing of server performance? [08:31] I installed Zpanel on my ubuntu server, and now I can't launch my game servers, it keeps telling me "No such fule or directory" when it gets to either ./steam or ./srcds_run [08:41] Sander^work: Zabbix [08:42] vezq, What is it based on? [08:44] vezq, I would prefer something with an agent. [08:48] vezq, Would prefer something which dosn't require snmp configuration. [09:12] hi guys. How do you set a timezone on a remote server without interactvity? "dpkg-reconfigure tzdata" requires some extra actions from the user =) [09:12] Sander^work: it has an agent, not snmp required [09:23] progre55: Set /etc/timezone then run dpkg-reconfigure -f nointeractive tzdata. [09:23] Well, on Debian, anyway. [09:24] FauxFaux: thanks, will try that [09:39] * pr3d4t0r eyes FauxFaux. [10:04] any one here with cisco any connect vpn client? (i cant seem to make it run automaticaly in ubuntu server) [10:04] i have to make the connection manualy by typping the commands [10:04] in to the vpn program of cisco [10:14] morning! [10:14] what apache version does the latest ubuntu-server run? [10:16] mjau^: https://launchpad.net/ubuntu/+source/apache2 will give you a summary === n0ts is now known as n0ts_off [10:17] rbasak: ah, so 2.2.22 then? do you know if it's got OCSP support? === n0ts_off is now known as n0ts === disposab1e is now known as disposable [10:49] nobody with cisco vpn? [10:53] not on linux. === cpg is now known as cpg|away [12:52] we are getting tcp reset on port 80, while other ports are getting accessed properly .. there is no firewall which is running on the system .. can anybody provide any clue or help [12:54] What happens if you stop the webserver? [12:55] satya: check the webserverlogs [12:56] there is no request which is getting logged on webserver [12:56] packet getting tcp reset as we see in tcpdump [12:56] satya: and netstat -ln --tcp shows you're listening to port 80? [12:56] yup [12:57] which webserver? [12:57] nginx [12:57] perhaps try to strace -f nginx [12:57] it works if we run on any other port other than 80 [12:57] perhaps try to strace -f `pidof nginx` [12:57] eh - that doesn't make sense... [12:58] perhaps try #nginx [12:58] even we tried with nc -l 80 after stopping nginx [12:58] still no luck [12:59] do the packets arrive to port 80? [12:59] does it work from localhost? [12:59] yes [12:59] yes what? [12:59] both yes [13:00] no idea - must be an nginx issue... [13:00] that is - I really don't know [13:00] I love the way people just ignore me. [13:00] iptables -vnL shows an empty set? [13:00] we stopped nginx and made port 80 listening using netcat [13:00] yes iptables show empty [13:01] So, kill netcat and try to connect. What does the client get/ [13:01] http://paste.ubuntu.com/1399034/ [13:01] kill nginx and netcat and check with netstat -ln --tcp if something's listening [13:01] Jesus fucking christ. [13:03] nothing is listning on port 80 [13:03] and the response is [13:03] telnet: Unable to connect to remote host: Connection refused [13:05] we suspect some kernel firewall or some sort of thing in os which is sending resets to port 80 [13:16] sorry if not appropriate question here, but would using pvcreate on an already existing partition wreck it? === n0ts is now known as n0ts_off [13:21] Kartagis: it'll overwrite whatever's there, yes [13:21] or at least the start of it [13:23] Daviey, just added the check for irqbalance to the default server test in raring [13:23] thanks RoyK, looks like it's useful to make a backup first [13:24] jamespage: thanks [13:24] Kartagis: it's always useful to have a backup or two... [13:24] RoyK: how do I move the backed up files back afterwards? a simple mv will do? [13:24] Daviey, running the tests now in the lab [13:24] I ususally just use rsync [13:26] jamespage: running the test for just raring, or precise daily aswell? [13:26] Daviey, thats just raring atm [13:27] jamespage: confirmed, precise includes it. [13:27] it must just be the cloud images.. [13:27] Daviey, for precise - lemme check [13:28] jamespage: My iso install just confirmed it [13:28] Daviey, for precise? [13:28] Yes, iso precise has it.. I haven't confirmed cloud images [13:31] Daviey, cloud-image looks OK _ although it stops on a m1.small due to only having 1 cpu [13:31] * jamespage tries a bigger image [13:31] What's the problem with irqbalance? [13:32] Daviey, actually its installed in my raring cloud-image as well - just not running [13:32] soren, question over whether its shipping by default or not [13:32] but I think it is [13:33] It is. It's been since... Gosh, a long time ago. [13:33] soren, yes [13:33] soren: Yep, been in standard since Lucid, and seeded directly before [13:33] Daviey, I'm not sure this is an issue tbh [13:34] soren: The issue is a large user had a 'bad time' until they installed it [13:34] stgraber: a guy (in private email, sigh) complains that lxc-clone doesn't preserver hardlinks. do you have any experience with how much -H slows down rsync? [13:34] soren: So i'm trying to work out how they are not having it byu default [13:35] Daviey: Ah, I see. [13:36] jamespage / soren: Might not be a one off.. http://www.linux-archive.org/ubuntu-user/519707-irqbalance-off.html [13:37] Daviey, hmm [13:39] Daviey: I may have a guess. [13:39] soren: oh? [13:41] jamespage: Maybe the reason you are seeing it not run, is it exit's itself if it's a one (v)cpu box [13:41] Daviey, thats what I'm thinking [13:42] its def installed and is running when I spin up something with more than 1 CPU [13:42] Daviey: Hang on, readiing code. [13:42] * jamespage probably just created a test failure in the lab by adding a check for this. [13:43] Daviey: Oh, wait... Did they say it wasn't installed or that it didn't run? [13:44] soren: Honestly, the info is too sketchy to be sure [13:44] I think it was not installed. [13:44] That package's use of debconf is... umm... interesting. [13:44] db_set irqbalance/enable ENABLED [13:45] where irqbalance/enable is a boolean [13:45] (from irqbalance.config) [13:45] hah [13:46] Still, i don't think that is the cause. [13:47] Daviey: You're probably right. [13:47] soren, I can't see that? [13:48] soren, package dbconf looks OK to me [13:55] jamespage: you are confident this isn't a bug our side? [13:57] Daviey, I don't think so [13:57] Daviey, needs a check of the aws cloud image as well [13:59] jamespage: surely that would be the same? [13:59] but yes, good thinking [13:59] jamespage: Do you have access to an AWS image running already? [14:00] hallyn: nope. I wouldn't expect it to take much longer as rsync needs to call stat on all the files anyway, all -H should do is that it'll do it before copying anything to figure out if some are the same inode [14:02] jamespage: https://code.launchpad.net/~zulcss/ubuntu/precise/python-novaclient/new/+merge/137201 [14:05] stgraber: ok, then maybe i should just add it always. I usually use lvm cloning anyway so *I* don't care :) [14:05] Daviey, installed on 10.04 and 11.10 instances I have running [14:06] hallyn: I usually use the rsync code path, but I'm on SSD pretty much everywhere ;) [14:06] Daviey: erm - I don't appear to have a handy 12.04/12.10 instance to check this on [14:08] jamespage: OK, lets leave it for now [14:08] thanks for your help [14:08] zul, see MP - 1 minor nit; please fix and upload [14:09] Daviey, ack [14:09] jamespage: ack [14:10] jamespage: last one https://code.launchpad.net/~zulcss/ubuntu/precise/python-keystoneclient/new/+merge/137202 [14:12] zul: stop [14:12] stopped [14:13] zul: your bzr commit includes 3 x * New upstream release... [14:14] Daviey: for which one? [14:14] https://code.launchpad.net/~zulcss/ubuntu/precise/python-keystoneclient/new/+merge/137202 [14:15] Daviey: in the debian/changelog? i dont see [14:15] the bzr commit... [14:15] * jamespage rewinds [14:15] Daviey: im looking at line 552 of the diff [14:17] ah, i guess that makes more sense... i was looking at the BZR COMMIT LOG [14:17] zul: sorry - python-novaclient is fine for precise-grizzly [14:18] jamespage: k [14:18] (remember debuild -v) [14:19] keystoneclient alright as well? [14:19] zul, keystoneclient looks OK as well [14:21] cool thanks [14:21] zul, Daviey, smoser: I added a new script to smoses cloud-archive-check [14:21] ~james-page/+junk/cloud-archive-check/ [14:21] lp:~james-page/+junk/cloud-archive-check/ [14:22] verify_ca_branch.py - see code for details of what it does [14:23] release notes?! THE CODE IS THE RELEASE NOTES :) [14:34] what package does it take to install KDE? kdebase-bin? [14:34] sorry, wrong channel [14:40] what is a good tool to browse python code ? ctags ? cscope doesn't seem to like python [14:49] caribou: spyder? [14:49] there's a bunch of different ones out there [14:50] oh, spyder is the scientific one - probably not what you'r looking for [14:50] caribou: I have used cscope semi-succesfully with Python but it was a hack (and a hack that I don't remember very clearly); ctags works well, for what it is. I have been meaning to try http://pypi.python.org/pypi/pycscope/ [14:51] New bug: #1085057 in lxc (universe) "lxc-clone of busybox lxc 440M instead 1.7M" [Undecided,New] https://launchpad.net/bugs/1085057 [14:51] benji: yeah, I saw mentions of pycscope, but didn't find it in the archives. Since I had ctags already installed, I tried it but not convinced [14:52] benji: I'll give a second look at pycscope [14:52] caribou: if you think of it, let me know how it goes; I would like to be motivated/demotivated with regards to setting it up mysel [14:52] benji: ok, will do === mcclurmc_away is now known as mcclurmc [15:03] benji: d/led it, installed & built the cscope file. seems to do what I want, even from within VIM with exhuberant CTAGS shortcuts [15:03] cool, sounds like a winner [15:03] from the timestamp, took ~10 min to setup :) [15:19] zul: jdstrand: http://people.canonical.com/~serge/libvirt-hugepages.debdiff and http://people.canonical.com/~serge/qemu-hugepages.debdiff, plus a server guide entry on picking values for sysctl vm.nr_hugepages ... any objections? [15:20] hallyn: looks good to me [15:23] smoser: ping [15:24] hi, is there any way to build a package skipping the tests? i'm just trying to debug some lintian errors [15:24] hallyn: well, this gets back to if guests end up with access to other guests [15:25] hallyn: I'm not really familiar with hugepages. will the kernel isolate them based on pid or similar? [15:25] (if so, then ack-- it is as good as the kernel enforcing other access controls) [15:30] jdstrand: no, the kernel won't isolate guests based on pids i don't think [15:30] however, you have to opt into /run/hugepages/kvm being mounted... [15:32] jdstrand: so to make this more secure, we'd have to edit qemu_driver.c and virt-aa-helper.c, i assume, to grant access to only $HUGEPAGES_MOUNT/libvirt/qemu/ ? === matsubara is now known as matsubara-lunch [15:34] jdstrand: but... there are no files under there, actually [15:35] does anyone know if it's possible to have multiple partitions on an EBS root device? [15:35] (and still actually boot the damn thing?) [15:44] hallyn: if there are no files, what is it accessing? [15:44] jdstrand: just looked, here's how it works [15:45] libvirt just creates $hugepagemount/libvirt/qemu, and runs qemu-kvm with -mem-path , [15:45] qemu-kvm then opens a file in that dir, mmaps memory from it, and truncates the file immediately [15:45] so that's why with a hugepage-backed vm running, there areno files to be found in that dir === yofel_ is now known as yofel [15:47] seems a rogue guest would not be able to take advantage of that... I assume there is some locking mechanism to prevent races on $hugepagemount/libvirt/qemu [15:48] jdstrand: qemu-kvm uses mkstemp in that dir [15:48] ah [15:48] that sounds ok then [15:48] hallyn: thanks for looking into it [15:48] so the worst a guest should be able to do is grab all the hugepages [15:48] np. thanks, ttyl [15:48] yeah, but apparmor wouldn't prevent that anyway [15:49] (assuming the user actually wants to use hugepages) [15:49] right [15:49] or rather, assuming the host wants guests to use hugepages [15:50] hallyn: hugepages is opt-in via the xml? [15:50] yes [15:50] (unfortunately :) [15:50] i need to look into adding a switch in virt-manager for that [15:50] hallyn: so, actually, since that is the case, would it be better for virt-aa-helper to add that line only for guests that want huge pages? [15:51] yeah... [15:51] i guess i need to look deeper into virt-aa-helper anyway. there are other open bugs with that... [15:55] hallyn: I think all you need to do is in get_files() look in ctl->def->() and see if you should use it, then call virBufferAsprintf() appropriately (see vah_add_file for how to do that) [15:58] jdstrand: waht exactly is get_files() meant to do? get list of all paths it needs access to? [16:00] hallyn: it looks in the vm definition for user specific file paths, yes [16:01] jdstrand: all right for now i think i will (a) push that qemu-kvm debdiff, and (b) look at every apparmor related libvirt bug i can find and see if i can get a few done in one fell swoop along with this [16:01] hallyn: a few are also added in main() [16:01] hallyn: this one might be better in main() (or some function you create called from main() rather than get_files(), since the actual path is user specified) [16:02] err [16:02] jdstrand: actually this might be a problem - the path isn't user specified per se, [16:03] *isn't* user specified [16:03] so virt-aa-helper will have to reprdouce the logic done in qemu_driver.c to determine the path [16:03] hallyn: hmm [16:03] ok, will look into it - thanks, bbl [16:06] Hello, how do I open port 53 for DNS? [16:07] I created etc/iptables.rules and it contains "-A INPUT -p tcp -m tcp --dport 53 -j ACCEPT [16:07] " [16:08] sliddjur: While DNS uses TCP in some cases (large responses) it most commonly uses UDP. [16:08] andol, yeah, i got a line for udp too [16:09] nmap shows port 22, 111 and 2049 is open [16:09] sliddjur: Of course assuming that /etc/iptables.rules is read by an iptables-restore (or an iptables-apply) somewhere. [16:14] adam_g: hey, I was looking at quantal SRU's and noticed the nova and quantum SRU's which have a ridiculous number of bug #'s, but no single bug to track the general testing effort (since we'll be doing them like an MRE) [16:22] mm, i'm having a lintian error about empty binary package, but that package actually has some contents inside /usr/share/doc... is that a good idea to add some lintian overrides there, or what's the best fix for that? [16:24] jdstrand, what do you think about it? ^ [16:25] if it doesn't ship anything usable or isn't a meta-package, it should probably be removed. [16:27] jdstrand, it's the nova-compute-xcp package, and ships some documentation inside /usr/share/doc/nova-compute-xcp/ === matsubara-lunch is now known as matsubara [16:56] yolanda: sorry for the delay [16:56] jdstrand, no problem, i'm trying to progress with other points [16:56] yolanda: so, /usr/share/doc/nova-compute-xcp/changelog.Debian.gz is there because the package was declared in debian/control [16:56] yolanda: so that shouldn't be considered [16:56] yolanda: /usr/share/doc/nova-compute-xcp/copyright is an actual file [16:57] yolanda: t (to be considered), but it is referring to things that the package doesn't ship. this looks to be a mistake [16:59] yolanda: looking at the Depends, it seems to be a package made simply to pull in python-xenapi [17:00] i added an override there [17:00] a lintian overrides [17:01] yolanda: I suggest asking zul what the intent of the package is (he added xcp support in 2012.1~e4-0ubuntu1) [17:01] an override might be ok, I can't say. zul can let you know if there is a mistake there [17:01] its on my personal todo list to fix for raring [17:01] override should be fine for now [17:07] Hi all, not sure if there's a better place to be asking this, so point me there if so. I'm running an Essex openstack installation at the moment on Ubuntu 12.04 for a university research project. We'd like to upgrade to Folsom, and there seems to be an upgrade path out there for it, but I can't find much info on it other than Mark Shuttleworths video, and instructions on how to enable [17:07] the correct repo. Is there any info out there, or guides, on preperation that needs to be done, potential problems, and any manual steps? My google-fu is failing me today. [17:09] zul, ok, i added that override [17:12] jamespage: howdy!! so I was thinking that it doesn't really make sense to make the charms (i.e. keystone) configure its own haproxy when there's really a charm for it [17:12] jamespage: so we should probably use it as a subordinate [17:12] or figure out a way to use it effectively [17:13] roaksoax, charms can only have one personality [17:13] subordinate or principle [17:13] jamespage: right, we can have a simplified version of the HA proxy charm then [17:13] jamespage: i.e. keystone principal, with 2 subordinate haproxy/hacluster [17:13] and a relation in bteween the subordinates [17:14] jamespage: or even colocate them with jitsu [17:14] roaksoax, not that last option [17:14] yeah that wouldn't work with add-unit [17:14] everything should be deployable WITHOUT jitsu [17:14] roaksoax, I agree with 're-use' for haproxy but not with subordinate [17:15] jamespage: right, so then there's really no way to do so without integrating haproxy in keystone [17:15] jamespage: or even in the hacluster charm [17:17] roaksoax, OK - so reuse the same code for haproxy across all of the openstack charms that need it [17:18] and add stuff into the charm hooks that calls it in the right way [17:18] that way the principle is in charge of configuring its haproxy; hacluster takes care of the VIP/service failover [17:18] I think adding another subordinate is over complicating things [17:19] jamespage: right, so we will only use haproxy if we have hacluster right? [17:19] SpamapS: what is the quantum SRU? i had put together a nova SRU last month for quantal-proposed with a meta bug (LP: 1074359) to track. but upstream has released a new stable release yesterday that ill be preparing a new one (today,m hopefully) that will supersede that one. [17:20] adam_g: ah ok, want to just reject the current upload then? [17:20] adam_g: I'd say just make it clear in the changelog which one is the meta bug [17:20] adam_g: and re quantum, I'll just chalk that up to me assuming you did them both. [17:21] roaksoax, hmm - probably; the principle should start generating config for haproxy as soon as it has peers [17:21] and a vip configured [17:22] jamespage: right, so I think it might be easier to make the hacluster do that config, since it is there were we will configure the vip [17:22] SpamapS: looks like zul did the quantum one back on nov 07th. rejecting them is fine. in the new batch ill be sure to reference the metabug at the top of the changelog [17:22] * jamespage thinks [17:25] SpamapS: also FYI--i sent an email to the TB list yesterday (stuck in moderation, tho) requesting cinder and quantum be added to the existing MRE [17:26] adam_g: Its still "provisional".. I wonder, how many have been done since that provisional MRE was granted? [17:28] jdstrand: still playing, but i think i'll just need to add the backing file to the VirDomainDef struct [17:30] roaksoax, not sure TBH; I like the separation between hacluster (responsible for VIP's and service control) and a principle that set's up and configures the services [17:30] that way if a principle starts todo something new; then all it has todo is tell hacluster... [17:31] jamespage: or, you can simply tell hacluster "get me haproxy with HA" [17:31] jamespage: then hacluster will configure haproxy for such escenario [17:31] jamespage: and in principal charms, you would simply say [17:31] "enable haproxy, this is the VIP i want you to use" [17:32] hmm [17:32] jamespage: i see this as a similar thing as what will happen with DRBD [17:33] I remain unconvinced [17:33] SpamapS: we managed to push out 4 SRUs (LP: #1041120). this time around there is a set release schedule for upstream point releases, so i expect we'll be shooting to do as many in Ubuntu this time around [17:35] roaksoax, sorry - I'm not trying to be awkward :-) [17:36] jamespage: lol no worries :) [17:37] jamespage: so HA proxy in this escenario (running in the same place as keystone), doesn't make sense without hacluster [17:37] right? [17:37] roaksoax, agreed; and it won't work really cause it does not have an IP to bind to [17:37] roaksoax, the way I saw it (probably) was [17:37] juju set keystone vip=xx.xx.xx.xx [17:37] juju add-unit keystone [17:38] (at which point we start generating a haproxy configuration using a peers hook) [17:38] juju deploy hacluster keystone-hacluster [17:38] juju add-relation hacluster keystone [17:39] (keystone then says to hacluster - relation-set vip=xx.xx.xx.xx service=haproxy) [17:39] ^^ that line is over simplified I know [17:39] jamespage: Error: "^" is not a valid command. [17:39] and then hacluster does it magic, brings up a vip on one of the nodes and starts up haproxy [17:39] roaksoax, does that make sense? [17:40] Hos do I use wireless on ubuntu server [17:40] jamespage: yeah, that's very similar workflow as I was thinking but doing so in the hacluster side [17:40] as in: juju set keystone vip=x.x.x.x [17:40] juju deploy keystone [17:40] juju deploy hacluster [17:40] juju set keystone service=haproxy [17:41] juju add-relation keystone hacluster [17:41] JoeVLcek, i'm here now. [17:41] juju add-unit keystone [17:41] Hos do I use wireless on ubuntu server [17:41] jamespage: and then, hacluster say, oh wait, keystone wants to use VIP for HA proxy, let's install and configure haproxy for usch purpose [17:42] How do I use wireless on ubuntu server? [17:42] jamespage: to me, in reality, is the same in either place [17:42] taowa: normally, it is considered polite to repeat questions once an hour at the most. [17:42] roaksoax, hmm [17:44] jamespage: in this case escenario it is exactly the same [17:44] roaksoax, I just prefer the split of what (in keystone) and how (in hacluster) [17:44] jamespage: the benefit I see, however, is thta this would work (or should) if we don't deploy them in the same machine [17:45] roaksoax, I don't understand that last comment [17:46] New bug: #1075342 in mysql-5.5 (main) "package mysql-server-5.5 5.5.24-0ubuntu0.12.04.1 failed to install/upgrade: subprocess new pre-removal script returned error exit status 255" [Undecided,Invalid] https://launchpad.net/bugs/1075342 [17:46] jamespage: basically is "there might be various units of keystone, but as long there's no hacluster controller haproxy, then they are all useless" [17:46] s/controller/controling === pr3d4t0r is now known as NikkiWade [17:47] so you might aswell integrate haproxy in hacluster, the same way you would do with DRBD [17:47] as in, juju deploy mysql [17:47] juju dmeploy hacluster [17:47] juju add-relation mysql hacluster [17:48] hacluster will then say, oh mysql in HA, so I need to configure DRBD, and put all the mysql stuff in the DRBD partition [17:48]