/srv/irclogs.ubuntu.com/2013/02/18/#ubuntu-server.txt

galoreHello, a trivial question. I have problems with traceroute with ufw enabled or disabled, ping works just fine. (12.10 server)00:47
galoretraceroute just times out, its really weird00:47
galoreworks just fine from a macbook behind same firewall00:48
patdk-laptraceroute uses a udp port00:50
patdk-lapso you must allow the udp port it uses00:50
galorepatdk-lap: hmm ok, nothing shows in ufw.log though00:51
patdk-lapheh?00:51
patdk-lapshould something show?00:51
galoreyou mean allow it in the firewall ? How come it works perfect from a macbook behind same fwall00:52
galorei turned off ufw, problem persist00:52
patdk-lapwell, as you haven't given much discription how should I know?00:53
patdk-lapis the ufw this firewall? or different system?00:53
galorei am trying to do a traceroute from my 12.10 server , it times out00:53
patdk-lapit times out at what part?00:53
galorefirewall is a hwardware firewall for all machines /2400:53
galoreat hop 200:54
patdk-lap hop 1 works?00:54
galoreyeah, hop 1 is the router/fwall, works00:54
patdk-lapthen it's not that machine that is the issue00:54
patdk-lapmust be the hardware firewall then00:54
galoreok00:55
patdk-lapis it some home router thing?00:55
patdk-lapI have seen so many of them that can't nat udp/icmp correctly00:55
galorebut how can a traceroute from a macbook work perfect but not from the 12.10, they on same subnet, same router/fwall00:55
patdk-lapeasily00:55
patdk-lapit's called a bug00:55
galorelol00:56
patdk-lapthe ones I have seen00:56
patdk-lapwill send ALL results back to the first one to do it00:56
patdk-lapso when you test from a second machine, it never sees the results00:56
patdk-lapcause they keep going to the first one00:56
patdk-lapbut is just one issue I have seen though00:56
galorehmm ok, sounds weird though but it can be that of course00:57
patdk-lapyou can always watch the endless flood of udp packets my server gets from bad nat routers00:57
patdk-lapI would see if there is a firmware update for it00:57
patdk-lapjust most people don't feel like fixing these issues, cause all the users care about is if web works00:58
galorewhen you say 'the first one' what exactly do you mean by that ?00:58
patdk-lapexactly what I said00:58
galoretraceroute from macbook works perfect, traceroute from 12.10 times out at 2nd hop00:58
galorethey go through same router which is also the fwall00:59
patdk-lapturn off macbook, powercycle router, and try again on 12.1000:59
galorei'll do that00:59
galorepatdk-lap: thanks a lot for helping, i was going nuts over this00:59
galorepatdk-lap: that ipv6 tunnel, HE net ?01:00
galorenm01:05
galorei hope i can change isp soon anyhow, to fiber. static ups and superior hardware01:10
galoreok, gnite01:12
jgcampbell300is there anyone here that could help me out with fail2ban02:06
cfhowlettturtal02:18
=== histo1 is now known as histo
vedicHey friends, I want to remove (purge) popularity contest from my Ubuntu Lucid 64bit. Is there any harm in removing it via apt? I don't want cron job running this and if it is disabled, why should I keep it on the server?04:26
vedicI have simulated purging popularity contest and I see it also remove ubuntu-standard04:27
vedicHey friends, I want to remove (purge) popularity contest from my Ubuntu Lucid 64bit. Is there any harm in removing it via apt? I don't want cron job running this and if it is disabled, why should I keep it. So how to remove it?04:34
holsteinvedic: i would just look in the package manager of your choice and remove it.. check and see what all is going to be removed... you can always just see that it is not running...04:55
vedicholstein: It removes ubuntu-standard and debian-goodies04:58
holsteinvedic: you can always just see that it is not running04:58
vedicholstein: I see cron running in on weekly basis04:58
holsteincool.. so you can disable that then, if you want, or remove the package04:59
=== hatake is now known as suka|janda
=== suka|janda is now known as vhadil
DavieyMorning all!08:12
cfhowlettDaviey, yowza08:12
histomorning08:14
=== smb` is now known as smb
PlizzoI had a RAID5 with three 2TB drives, making 4TB of available space. A few days ago I added another drive to the array using mdadm --add /md0 /dev/sde, and then I ran mdadm --grow /md0/ --raid-devices=4 or similar. It then took 15 hours for the RAID to reorganize before I started using it again, but I still have 4TB of total storage, how can this be?09:13
PlizzoDo I also need to run: mdadm –grow /dev/md1 –size=max?09:14
Plizzomd0*09:14
yolandaDaviey, jamespage, i'm having this problem on the nova node i added using openstack charm: http://paste.ubuntu.com/1676247/09:17
jamespageyolanda, context would be good - which version of openstack, which version of ubuntu etc....09:22
yolandajamespage, grizzly - raring09:22
jamespageyolanda, from the archive or from the trunk PPA?09:23
yolandajamespage, from the testing ppa09:23
jamespageyolanda, ooo - looks like a bug then!09:23
jamespageyolanda, I've not seen one like that before; I would have to go dig!09:24
yolanda:(09:24
yolandai had that working before, then i teared down the node and created a new one, to integrate with the ceilometer node, maybe i did something wrong?09:24
alkisgWith the new lts-quantal server, smbd only works once for me. A user tries to connect to a share, he succeeds. After that all connections fail with http://paste.ubuntu.com/1675846/ - no other errors in dmesg nor in syslog. Apport tries to report a bug but after the samba-related questions it just exits with no messages to the user.09:31
alkisgAfter many minutes, e.g. 30, once smbd connection can be made again. After that connection smbd dies again for all  subsequent retries.09:31
alkisg*one09:31
alkisgAny hints?09:31
alkisg*the new lts-quantal **kernel**, not server09:32
jamespageyolanda, probably not - but I suspect you got a new version of nova!09:33
yolandajamespage, i have that one: 2013.1.a4408.gae888be+git201302161902~raring-0ubuntu109:34
yolandajamespage, do you know about some workaround i could apply manually? i was just playing with openerp and found that my instances were down09:40
jamespageyolanda, not off the top of my head - sorry!09:44
jamespageyolanda, actually09:47
jamespageyolanda, you could try upgrading all nodes; I would suspect some sort of API version mismatch between cloud-controller and compute maybe09:47
yolandai found that in conductor/rpcapi.py09:48
yolanda    def instance_get_all_by_host(self, context, host, node=None):09:48
yolanda        msg = self.make_msg('instance_get_all_by_host', host=host, node=node)09:48
yolanda        return self.call(context, msg, version='1.32')09:48
yolandathat 1.32 is the cause of that09:48
yolandai'll try to upgrade nova-cloud, let me see09:48
jamespageDaviey, zul uploaded oslo-config to raring over the weekend09:49
jamespageDaviey, its in the new queue; I said if there where any problems today I would pickup09:49
jamespageDaviey, quantum has switched and I suspect other projects will do over the next fews days prior to g309:49
Davieyjamespage: yeah, he asked me to NEW review it09:50
jamespageDaviey, great!09:50
yolandajamespage, i upgraded nova-cloud node, and now i receive that error trying to start nova-compute10:02
yolandahttp://paste.ubuntu.com/1676338/10:02
jamespageyolanda, can you paste your nova.conf please10:10
jamespageyolanda, something todo with this - https://github.com/openstack/nova/commit/78ebb445b349e9407c60c3fe2d21552977a3c29910:10
yolandajamespage, yes, vif_type is not present on my nova.conf file10:11
jamespageyolanda, it won't be10:11
jamespageyolanda, that is set somewhere in nova based on what type of networking you are using10:11
jamespageyolanda, I'm more interested in libvirt_vif_driver10:12
yolandajamespage, http://paste.ubuntu.com/1676360/10:13
jamespageyolanda, OK - so it should be using the default generic driver10:13
yolandawhat's wrong?10:14
yolandathat is wrong? compute_driver=libvirt.LibvirtDriver10:14
jamespageyolanda, TBH with spending time on it I have no idea10:17
jamespageyolanda, is this happening when trying to create new instances? or is it just on startup?10:18
yolandajamespage, it cannot start nova-compute10:18
jamespageyolanda, feels like an upgrade issue10:18
yolandai'll try tearing down the node and installing it again10:33
=== yofel_ is now known as yofel
gordonjcphi there11:10
gordonjcphow can I stop /etc/resolv.conf getting clobbered on every boot?11:11
RoyKgordonjcp: add the settings to /etc/network/interfaces instead, which is a more proper way to do it :P11:11
RoyKas in 'dns-nameservers x.x.x.x y.y.y.y' and 'dns-search adsf.com'11:11
gordonjcpRoyK: oh, okay11:12
gordonjcpI did try that but it didn't seem to help11:13
jamespageDaviey, also 2013.1b3 is going to create issues I think - should be 2013.1~b311:24
jamespageas 2013.1 < 2013.1b311:24
Davieyjamespage: agreed11:30
iclebyte_workcan anyone with a largish installation tell me how they manage updates across servers? we've looked at landscape but the cost is prohibitive.11:30
jamespageDaviey, OK - I'll fix that as well11:31
ikoniashell script ?11:31
ikoniaupdate manager as a daemon ?11:31
iclebyte_workwell we obviously don't want to allow automatic updates on the network so we're looking for a method to review updates before they are applied. i suppose this is as much a question around process as specific technology/software11:32
ikoniatest the updates11:33
ikoniapick a test host11:33
Davieyiclebyte_work: Have you chatted to the landscape folks.. not just read the page?  failing that, debmarshall is reasonable11:33
Davieyor reprepro11:33
ikoniathen if they they work, set up a sync script to pull down just those updates11:33
ikoniaor host your own repo of "approved updates" and move them into place11:33
gordonjcpright, so now my server gets stuck at "Waiting for network configuration"11:33
ikoniathen set all your servers to update11:33
gordonjcphow do I stop it doing that?11:33
ikoniaiclebyte_work: also look at trying puppet ?11:34
iclebyte_workwe do currently host our own repo anyway but so far it's only be used for deploying our own code and for masking of specific packages e.g. deploying puppet 2.7 to ubuntu 10.04LTS nodes.11:34
iclebyte_workwe are using puppet for configuration management of specific services, but hadn't really considered it for the application of updates.11:35
ikoniaiclebyte_work: have a test box, pick a "safe repo", test the udpates you want, them move them to the "safe repo" then set all your other servers to auto update from that safe repo11:35
ikoniaiclebyte_work: keep it seperate from your custom code repo11:35
iclebyte_worki suppose with a combination of our own repo/packages specified in puppet with 'latest' against them we could devise something but I can't help but feel it's a bit dirty and much have been better solved before.11:36
iclebyte_workis this a common way around the problem?11:36
ikoniajust an idea11:36
ikoniaI've used puppet with debian and rhel type situations as you want11:36
iclebyte_workit's interesting that I can't seem to find many articles around the process/management of large installations11:37
ikoniaiclebyte_work: either a.) enterprise tools, like landscape/satellite/spacewalk etc, or custom in house things11:37
iclebyte_workI have looked at spacewalk although we've not yet tried it out. just still looking for options at this stage11:38
iclebyte_worki must say, when we looked at satellite/spacewalk we almost wished we'd gone the CentOS route with out farm.11:38
iclebyte_workout* = our11:38
ikoniaiclebyte_work: spacewalk isn't really for debian based distros11:39
ikoniajust using it as an example11:39
iclebyte_workiclebyte, no i know, although deb's are supported.11:39
ikoniaiclebyte_work: they aren't really11:39
ikonia"supported" and "'supported'"11:40
iclebyte_work:)11:40
iclebyte_workit is one area where RHEL/CentOS does have an upper hand11:40
iclebyte_worki'm supprised landscape hasn't been opened up a bit.11:41
Davieyiclebyte_work: Have you contacted the landscape team?  I would be quite surprised if the quote they give you is prohibitive11:42
jamespageDaviey, oslo-config uploaded with changes discussed (zul FYI)11:42
Davieyjamespage: ok, will review after luncheon11:43
jamespageDaviey, ack11:43
iclebyte_workDaviey, no i haven't. just read on line11:43
Davieyiclebyte_work: might be worth a quick chat.11:45
ikoniaDaviey: is there development licenses for landscape, eg: 2 - 3 hosts being maanged for test/poc/development11:49
ikoniaI mean development of landscape platforms/solutions, rather than software development11:50
violinapprenHello all. Is there a way to notify Apache2 to reread the htpasswd file without having to 'service apache2 reload' as root?11:56
* melmoth bet for kill -HUP11:58
violinapprenperhaps a configuration option to ask apache2 to reread the file every time an auth is needed12:02
melmothnone that i am aware of.. .what is the problem with reloading apache anyway ?12:07
maxbApache *does* reread the htpasswd file every time anyway12:08
balboahanyone doing unattended-upgrades for a PPA?13:27
balboahI'm wondering how to figure out the correct origin tag to enlist13:28
ikoniabrave13:31
ikoniaauto updates from a PPA13:31
=== acrocity_ is now known as acrocity
RZAFCcan someone help?14:57
RZAFC<RZAFC> I can't compile c program in gcc14:58
melmoth?14:59
melmothwell, either you are not giving gcc the right option, or your code is wrong.15:00
melmothor a library is missing15:00
melmothor the disk is full, or there s a hardware failure15:00
melmothit s kind of difficult to guess without more info15:00
iclebyte_work:)15:01
RZAFCit says internal error in set_offset, at ../../gold/output.cc:462215:01
melmothso, it  s not about "compiling c progrmams" in general, but compiling this one in particular.15:02
melmothtry to find some error before, like may be some hint about a lib missing, a symbol unknown, something15:03
melmothand read line 46222 of output.cc, you never know15:03
RZAFCcollect2: ld returned 1 exit status15:03
=== bavila is now known as bavila_
=== baba is now known as hack
=== hack is now known as megha
liltedotolá pretendo ter no meu servidor 12.04 vários sites com contas ftp para cada site. podem-me indicar a direcção estou farto de googlar e nao encontro o que preciso16:52
liltedotjá tenho lamp a funcionar16:53
eutheriahello, what would give me a quick dns server for a local network?17:39
RoyKeutheria: bind917:53
eutheriatoo much :)17:54
RoyKit's pretty light...17:54
eutheriabut heavy management :)17:54
RoyKnot really17:54
eutheriayes it is17:54
eutheriai wanted something i would spent 5 mins over17:55
eutheriadnsmasq will probably do17:55
RoyKif you just want a caching nameserver, bind9 works as installed by "apt-get"17:56
eutheriai will have to setup things17:57
eutherialike the network subnet, the dhcp to dns hostname updates etc17:57
RoyKyou didn't say you needed dynamic dns ;)17:58
eutheriain my world local network implies this ;) caching dns server implies not local network17:59
RoyKanother world, then18:00
eutheriacould be ;)18:01
=== imbrando1 is now known as imbrandon
=== frojnd_ is now known as frojnd
=== erichammond1 is now known as erichammond
=== yofel_ is now known as yofel
=== erichammond1 is now known as erichammond
rapitivoHi there. how is that possible to the Load be too high and the server (mysql+apache+bind) keep fast?19:20
RoyKprobably some process in D or Z state19:22
rapitivothere is one mysql on D state19:24
blkperlanyone have a good method to measure samba performance/stats  ?19:24
rapitivoRoyK: Should I kill it?19:25
RoyKif it's in one of those states, it may be hard to kill it19:32
RoyKrapitivo: what does ps axf has to say?19:32
rapitivoRoyK: There is no D or Z states. I was looking at htop before.19:34
rapitivoThe Load now is 11.50. It was more than 30 before and I could access my system online (it was a little bit slow).19:36
RoyKthat's high19:36
RoyKcan you pastebin "ps axfv" ?19:37
rapitivoif there are lot of people trying to access the site but the apache has no available connections, does it make the Load high?19:38
RoyKrun "sar 1 10"19:38
RoyKif the i/o load is high, it'll make a lot of processes/threads hang around waiting19:38
RoyKrapitivo: it shows a lot of apache processes in D state, meaning I/O is saturated19:44
RoyKrapitivo: can I post the ps output here?19:45
rapitivoyes19:45
RoyKhttp://pastebin.com/UjXkbdcs19:45
RoyKwhat sort of webserver is this running?19:46
RoyKit seems rather heavily loaded19:46
rapitivothere are 30 websites19:48
rapitivoa web based system for real estates19:49
rapitivohow can I find witch php script is doing too much IO? I can not see how is that possible to be too high. :/19:52
RoyKrapitivo: I guess something of a database connection is the source20:35
=== cmagina is now known as cmagina_away
=== cmagina_away is now known as cmagina
rapitivoRoyK: What do you mean?21:17
pythonirc1011if i have 4 disks and i make a raid 10 on ubuntu, how can i install the OS, so that if one/two drives fail, the machine still boots without any problem? (or extra tinkering)21:42
=== railsraider_ is now known as railsraider
RoyKpythonirc1011: I don't think you can install on anything but plain disks or raid-121:43
RoyKpythonirc1011: if you have big drives, stick to raid-5 or -6 and use some smallish drive for the root21:44
pythonirc1011What I am asking can't be done then?21:44
RoyKjust trying to help here21:45
RoyKhow large are the drives?21:45
pythonirc10112TB each21:45
RoyKthen don't use them for the root21:45
RoyKget some cheap 80GB drive or even a thumb drive for the root21:45
RoyKuse large drives for ata21:46
RoyKdata21:46
RoyKalways separate data and system21:46
RoyKand don't use raid-10 - it's not flexible21:47
RoyKrather raid-5 or raid-621:47
RoyKthose can be grown21:47
RoyKraid-6 for safety, raid-5 for a wee bit more space21:47
RoyKif you search the ubuntu-raid mailing list, there are numerous messages there "how to rescue a raid-5 from a double disk failure"21:48
RoyKso better use raid-621:48
RoyKpythonirc1011: point taken?21:49
ajpI'm trying to get my upstart script (http://pastebin.com/xjACPjk4) to work, it launches this script (http://pastebin.com/zUjJ9G8c) but when I reboot the server (12.04 headless) the script does not work. I had it working a few weeks ago.22:03
ajpanyone know upstart?22:10
ajpI'm trying to get my upstart script (http://pastebin.com/xjACPjk4) to work, it launches this script (http://pastebin.com/zUjJ9G8c) but when I reboot the server (12.04 headless) the script does not work. I had it working a few weeks ago.22:18
ajpis there a command for upstart to rescan it's .conf files?22:18
=== erichammond1 is now known as erichammond
escottajp, perhaps this is an update-initramfs issue?22:34
escottajp, is your $HOME encrypted?22:34
escottajp, in general it is considered rather ugly/bad practice to have root messing around with scripts in individuals $HOMES22:35
escottajp, put your script in /usr/local/bin or /opt22:35
ajpthanks for the help escott :D22:41
xnoxpythonirc1011: yeah, just use the server cd to install.22:58
JanCRoyK: RAID-6 doesn't help in case of a triple disk failure though  ;)23:07
=== highvoltage is now known as hv-onlogged
RoyKJanC: no, but that is rather rare23:38
utterHello, i have a weird problem with traceroute, it always times out after hop 2. I guess i tried everything, turning ufw off, turning router fwall off, still problem persist.23:41
JanCRoyK: I'm not sure why it would be much more uncommon than double disk failure in certain cases (when you use disks from the same & apparently bad series)23:42
escottgoogle published an in the field study of correlation affects of disk failures. that will provide some hard numbers, but there is a fairly high correlation23:43
lifelessJanC: because23:49
lifelessJanC: two-disk failures are dependent on the failure-rate of the drives *and* the time to repair the array23:50
lifelessJanC: a 4TB drive for instance, with a repair rate of 100MBps, or 10s/GB will take 4000*10s to repair a single drive, which is ~11 hours23:51
lifelessJanC: the chance of a single disk failure is only dependent on the failure rate of the drives.23:51
JanClifeless: let's say I saw three drives from the same batch/series fail within a couple hours after each other23:52
lifelessJanC: so you multiple the failure rate of three drives together - gets you a very low number, * 11 hours23:52
JanCapparently some "feature" of that batch minimized their "life" in a very similar way (maybe because they were in the same RAID)23:53
utterIs the lrwxrwxrwx 1 root root    28 Feb  6 00:22 traceroute -> /etc/alternatives/traceroute a broken link, 12.1023:54
utter?23:55
utterits highlighted in red23:55
JanCutter: if it runs, it's not broken...23:56
utterbecause tracepath works and traceroute does not, on a 12.10 server edi.23:56
lifelessJanC: so IIRC the google report wasn't about manufacturing defects, but about good drives running in arrays23:56
uttersomething is bork with traceroute on the 12.10 server,23:56
JanCutter: or something is borked with your second or third "hop"23:57
lifelessJanC: point being that that sort of failure - say a bad raid controller over-voltaging the drives23:58
utterJanC: no its not, works with tracepath and from all other systems behind same firewall23:58
lifelessJanC: or an actual broken batch23:58
JanCutter: tracepath doesn't use the same ICMP messages AFAIK23:58
lifelessJanC: will both affect ~all the drives, irrespective of size.23:58
utterJanC: hmm ok23:58

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!