/srv/irclogs.ubuntu.com/2013/11/26/#ubuntu-server.txt

=== Jikan is now known as Jikai
=== Jikai is now known as Jikan
=== freeflying_away is now known as freeflying
=== Jikan is now known as Jikai
Beatstreet	http://i39.tinypic.com/71jlu0.jpg	01:33
Beatstreet	during install I keep getting an error during partioning	01:33
=== freeflying is now known as freeflying_away
babinlonston	Hi , all I ahve Fijutsu Primergy MX130 S2 Micro Server , I want to install Ubuntu 12.04 server edition in it and Need to Install Guest operating systems in it , is it possible to manage graphically if i install KVM in it ?	04:27
=== freeflying_away is now known as freeflying
=== philipballew is now known as philip
eagles0513875_	hey guys	06:27
eagles0513875_	i am on 12.04 on my servers and i am getting the following apache error [Tue Nov 26 06:13:19 2013] [error] Init: Multiple RSA server certificates not allowed	06:28
eagles0513875_	this only started yesterday. thing is i only have one certificate from a CA and the other is self signed could that be causing the issue?	06:28
syria	Hi , How can I configure ubuntu server 10.04 LTS to autostart VMs please?	09:14
syria	Hi , How can I configure ubuntu server 10.04 LTS to autostart VMs please?	09:36
kwoot	This is dryving me nuts. I am a newbie to vmbuilder but everytime I get an error: Failure trying to run: chroot /tmp/tmpJtt3HY mount -t proc proc /proc. What am I missing here?	10:12
=== freeflying is now known as freeflying_away
kwoot	My commandline says: sudo vmbuilder kvm ubuntu \	10:16
kwoot	--verbose \	10:16
kwoot	--suite precise \	10:16
kwoot	--flavour virtual \	10:16
kwoot	--hostname testvm1204 \	10:16
kwoot	--mem 1024 \	10:16
kwoot	--user jeroen \	10:16
kwoot	--pass iwdi2hw \	10:16
kwoot	--mirror http://nl.archive.ubuntu.com/ubuntu/ \	10:16
kwoot	--iso /md0/home/jeroen/Downloads/ubuntu-12.04-desktop-amd64.iso \	10:16
kwoot	--timezone CET \	10:16
kwoot	--addpkg acpid \	10:16
kwoot	--addpkg vim \	10:16
kwoot	--addpkg openssh-server \	10:16
Rory	yeah kwoot don't do that	10:27
Rory	!paste	10:28
ubottu	For posting multi-line texts into the channel, please use http://paste.ubuntu.com \| To post !screenshots use http://imagebin.org/?page=add \| !pastebinit to paste directly from command line \| Make sure you give us the URL for your paste - see also the channel topic.	10:28
Raboo	patdk-wk yes, you where correct root_squash	10:33
=== freeflying_away is now known as freeflying
=== Guest46324 is now known as med_
=== med_ is now known as medberry
=== gary_poster\|away is now known as gary_poster
kwoot	Sorry about that. Will do next time. But, a hint as to why this does not work would still be appreciated.	13:49
=== Ursinha-afk is now known as Ursinha
kwoot	Ok. So specifying an ISO image is the source of the mahem. Right.	13:54
=== derrik_ is now known as derrik
zul	roaksoax: ping	14:22
roaksoax	zul pong	14:23
zul	roaksoax: can you do a quick review for me?	14:23
roaksoax	yup	14:23
zul	https://code.launchpad.net/~zulcss/python-heatclient/icehouse-ftbfs/+merge/196722	14:23
jamespage	zul, nice work on getting the icehouse builds up and running	14:33
jamespage	I see lots of blue now!	14:33
zul	jamespage: no worries...nova is still stumping me though	14:33
=== mjohnson15_2 is now known as mjohnson15
blueking	hello	15:39
* genii slides blueking a mug of coffee		15:40
blueking	thinking about to use ubuntu-server on my new box that should be used as router + some server stuff	15:40
blueking	does ubuntu support latest intel hardware on nic side ?	15:41
blueking	I210AT I350 and so on ?	15:41
* blueking havn't tasted coffee for 30 years		15:42
* blueking blinks at genii		15:42
genii	blueking: It's just my custom to be the maker or bringer of virtual coffee :)	15:42
blueking	doesn't sound delicious :P	15:43
blueking	I am thinking on skip sphirewall/debian due it seems impossibly to get NAT to work :/	15:43
blueking	so thinking about ubuntu server	15:44
genii	blueking: The page at https://downloadcenter.intel.com/Detail_Desc.aspx?DwnldID=13663 leads me to believe that Linux drivers are available for the I350	15:45
genii	( and the igb driver referenced there is present on my system here which is 13.10 )	15:46
blueking	on sphirewall/debian I had to make install of driver myself.. had to put in pci-e ethernet card to get os installed then install driver for onboard nic and not sure if that caused some problem with routing setup	15:46
blueking	genii: looks good	15:47
blueking	I need extra stuff to turn ubuntu server into router box ?	15:48
blueking	maybe thinking about BGP and quagga but might be overkill for local network at home/house	15:49
blueking	twiddles thumbs	15:52
blueking	genii: what u think about using ubuntu server as router ?	15:53
blueking	genii and I might have some extra stuff on it like rtorrent/rutorrent samba	15:54
genii	blueking: I would probably instead have a dedicated appliance running OpemWRT, myself	15:54
blueking	genii: on pc hardware ?	15:54
blueking	genii: http://www.supermicro.nl/products/motherboard/Xeon/C220/X10SLM_-F.cfm	15:54
blueking	intel xeon E3 1230L	15:54
blueking	and 16GB ecc udimm	15:55
blueking	genii: that hardware ar bought for beeing used as router	15:55
genii	blueking: Well, if that's what it's purpose is supposed to be from the start, and it's also going to run additional services, then Ubuntu Server is not a bad choice.	15:57
blueking	ok :)	15:58
genii	Apologies on lag, work requires me to often be away from my computer.	15:58
blueking	nods not in hurry	15:58
blueking	became father last wednesday :)	15:59
blueking	beeing home from work 2 weeks after birth	15:59
genii	blueking: So you need also a small side project like this to keep you busy? ;)	16:00
blueking	genii: have been trying to finish this project for more than a week but seems sphirewall/debian wasn't solution :/	16:02
blueking	just using iptables on ubuntu to setup router/nat ?	16:03
blueking	or install some stuff to do nat stuff <?	16:03
genii	blueking: There is a somewhat simplified tutorial here: http://www.yourownlinux.com/2013/07/how-to-configure-ubuntu-as-router.html	16:05
blueking	seems to be a good one :)	16:07
blueking	genii: u know abouthing about BGP ?	16:08
blueking	border gateway protocol	16:08
patdk-wk	only ebgp v4	16:10
blueking	patdk-wk: was that about BGP ?	16:11
danley	blueking, I don't think you need BGP. how many routers do you have in your local network ?	16:31
patdk-wk	bgp has nothing to do with how many routers you have	16:50
patdk-wk	but I wonder, what exactly will this be talking to on a home network	16:51
jamespage	zul, hallyn_: I'm trying to resync ipxe as much as possible from Debian	16:59
jamespage	how does qemu pickup roms these days? the ipxe-qemu package currently installs them to /usr/share/qemu	16:59
jamespage	but thats not done in debian - everything just gets chucked in /usr/lib/ipxe/qemu	17:00
zul	jamespage: hallyn_ was the last one to touch qemu	17:00
hallyn_	jamespage: ipxe-qemu is depended upon by qemu, that's how qemu gets them...	17:07
jamespage	hallyn_, yeah - I see the package dependency	17:07
hallyn_	jamespage: I'm not attached to how it currently is, feel free to change it	17:07
jamespage	hallyn_, this is what was confusing me - http://paste.ubuntu.com/6479931/	17:13
jamespage	the links to lib/ipxe come from qemu-system-x86	17:13
hallyn_	jamespage: if those didn't include pcnet32 i'd say they were just less commonly used and you just install all of ipxe to get them.	17:15
jamespage	hallyn_, looking up to Debian	17:15
jamespage	http://anonscm.debian.org/gitweb/?p=pkg-qemu/qemu.git;a=blob;f=debian/qemu-system-x86.links;h=3be443dbd5f1dc4bb73494d261bbbd905b9e9ab8;hb=HEAD	17:15
hallyn_	jamespage: ok. haven't merged this month i guess	17:18
hallyn_	i'm still looking for time to finish looking at the arm64 patches infinity wanted	17:18
hallyn_	and somebody's bugging us to do our tps reports this week :)	17:18
jamespage	hallyn_, I'm wondering whether we should put symlinks in /usr/share/qemu from the qemu packages only	17:18
jamespage	but for now I'll leave compat links in so we don't break anything	17:19
hallyn_	jamespage: the ../../lib/ipxe/ns8390.rom link should just be dropped, nothing like it seems to exist in ipxe	17:20
hallyn_	jamespage: I dno't know. 1.0.0+git-2.149b50-1ubuntu3 is where I reversed the links. Something broke when I didn't, but that's all I remember.	17:24
jamespage	hallyn_, yeah - you would have had an install failure	17:24
hallyn_	jamespage: I would've?	17:24
jamespage	qemu-system-x86 trying to overwrite files from ipxe-qemu	17:25
hallyn_	ipxe-qemudidn't yet exist did it?	17:25
blueking	danley: just one router + two asus wifi routers set in AP mode	17:28
blueking	patdk-wk: ethernet (fiber modem) - router - 24 port managed gbit switch	17:30
blueking	router = linux on pc	17:31
patdk-wk	so why do you think you need to run any kind of router?	17:32
blueking	gave up using asus rt n66u as router beeing not stable net dropping out several times a day	17:32
patdk-wk	you just need 1 firewall	17:32
patdk-wk	those are not routers, those are firewalls	17:32
blueking	firewall + nat	17:32
patdk-wk	firewall + nat != router	17:33
patdk-wk	nat is a firewall function	17:33
blueking	ok	17:33
patdk-wk	if there was no nat at all, I would be willing to say router	17:33
blueking	router = dhcpd server giving IP to each device connected on local net ?	17:33
patdk-wk	cause it would route	17:33
patdk-wk	no	17:34
patdk-wk	cause it's not routing anything, it's replacing	17:34
blueking	what you recommend me to do ?	17:34
patdk-wk	you don't need bgp	17:34
patdk-wk	you don't need quagga	17:34
blueking	ok	17:34
patdk-wk	you just need a basic iptables + dhcp + dns	17:34
patdk-wk	personally, I perfer to use shorewall for my firewall/nat config	17:35
patdk-wk	then configure a dhcp server	17:35
patdk-wk	then optionally a dns server	17:35
patdk-wk	and your good	17:35
blueking	shorewall are ?	17:35
patdk-wk	shorewall is a program that manages iptables (firewall, nat, )	17:35
blueking	some guys mentioned that firewall should be at .. uhm there are diff security levels if have linux and then software to ake firewall but then base of linux are not secured from attack ?	17:37
patdk-wk	base of linux?	17:37
patdk-wk	I thought you where worried about setting up a home network	17:37
patdk-wk	now your interesting in securing a shell server?	17:38
blueking	should block all from ethernet all ports open on inside/local net	17:38
patdk-wk	well, that isn't very secure	17:39
patdk-wk	block all from everything	17:39
patdk-wk	better yet, unplug it, then it's secure	17:39
blueking	:)	17:39
blueking	ubuntu server , shorewall, dhcp server, dns server is what I need	17:40
blueking	firewall ?	17:41
blueking	ubuntu server , shorewall, dhcp server, dns server is what I need	17:42
blueking	patdk-wk: no need for firewall u say or I have to install that too or are it within ubuntu server ?	17:43
patdk-wk	did you bother to read anything I said?	17:43
patdk-wk	shorewall configures the firewall+nat	17:43
blueking	ah missed that part :/	17:43
blueking	sorry	17:43
blueking	I'll give it a try	17:44
blueking	wish me good luck :)	17:44
=== G4MBY is now known as PaulW2U
zul	adam_g: https://code.launchpad.net/~zulcss/nova/icehouse-ftbfs/+merge/196763	18:07
TheLordOfTime	oh god the pebkac... has anyone else here noticed that there's an overabundance of people who use the default document root as configured in a site's config for web servers, rather than more sanely making their own location for their site's doc root?	18:08
TheLordOfTime	and then upgrades sometimes cause their code to die because they are using the default location and not a sane separate location?	18:08
patdk-wk	never noticed :)	18:08
patdk-wk	never had an upgrade break something like that	18:09
patdk-wk	but then, I never let the upgrades overwrite my configs	18:09
patdk-wk	and I always test the upgrade first	18:09
TheLordOfTime	patdk-wk, apparently nginx 1.1.19 has done this, i'm testing 1.4.4	18:09
TheLordOfTime	patdk-wk, https://bugs.launchpad.net/ubuntu/+source/nginx/+bug/1194074 makes me want to punch kittens...	18:09
uvirtbot	Launchpad bug 1194074 in nginx "Default index.html blindly overwritten" [Undecided,Confirmed]	18:09
patdk-wk	heh, not good	18:09
TheLordOfTime	because i always am like "WHY ARE YOU USING THE DEFAULT DOCROOT AND NOT A MORE SANE LOCATION?!?!?"	18:09
patdk-wk	that is why I stopped using rhel	18:10
TheLordOfTime	Hell, I don't even use the default docroot	18:10
TheLordOfTime	i use /home/MYUSER/html/sitespecificfolderhere	18:10
patdk-wk	cause in /etc/httpd/conf.d I would delete files I didn't want, like welcome.conf and stuff	18:10
TheLordOfTime	mhm	18:10
patdk-wk	and on upgrades they woudl come back to life	18:10
TheLordOfTime	right	18:12
TheLordOfTime	patdk-wk, i'm going to try and replicate with 1.4.4 in Debian, if i can replicate it with that, i'm going to say "Hey, you guys fix it, and give me a patch" lol	18:12
TheLordOfTime	CBA to rewrite their code today, especially since it's frigid cold here today	18:13
patdk-wk	could just look at the package, fix it	18:13
patdk-wk	and submit a patch	18:13
TheLordOfTime	... blehhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhhh stupid snow	18:13
TheLordOfTime	brb, need to shovel the car out of the driveway	18:13
Chocobo	Hi all. I am using raring-lts kernel... I need to do some iptables loging but I notice ipt_LOG does not exist. Any ideas?	18:33
patdk-wk	xtables?	18:34
patdk-wk	or ULOG	18:34
Chocobo	patdk-wk: Hmm, never used them. I will have to look into it.	18:38
patdk-wk	ulog is ultraconfigurable compared to log	18:39
patdk-wk	but I was just wondering if it was hiding in the xtables package	18:39
Chocobo	patdk-wk: I do see ipt_ULOG.	18:39
Chocobo	Hrmmm, so I installed ulogd but I don't seem to be getting anything in the logs. I did "iptables -t raw -A OUTPUT -d <DEST-IP> -j ULOG"	18:45
blueking	just a question-... no guide on how to put ubuntu server iso on memory stick for installation ?	18:47
patdk-wk	copy it?	18:49
sarnold	blueking: dd if=/path/to/file.iso of=/path/to/usb/device :)	18:49
bitbyte	Good Evening, I'm having a little trouble setting up StrongSwan, Is anyone able to help me out ?	18:49
blueking	sarnold:	18:50
blueking	not in windows	18:50
sarnold	blueking: oh. let me go looking for a bit..	18:50
sarnold	blueking: http://sourceforge.net/projects/win32diskimager/	18:51
blueking	unetbootin ?	18:51
genii	I think either winimage or windd also	18:52
sarnold	oh, unetbootin looks nice.	18:52
patdk-wk	bitbyte, don't do it	18:53
patdk-wk	use openswan, or libreswan	18:53
bitbyte	patdk-wk Why not use StrongSwan ?	18:54
patdk-wk	didn't it die a long long time ago	18:54
bitbyte	The IPsec protocol seems the best and most secure option, StrongSwan seems to implement it well	18:55
axisys	how to install openssh-server from precise into lucid?	18:56
Chocobo	hrmm, it doesn't look like ipt_ULOG is working within a network namespace.	18:56
axisys	cannot upgrade lucide to precise yet	18:56
patdk-wk	oh, strongswan is still alive	18:56
patdk-wk	dunno, openswan works good, and is easy to configure	18:56
axisys	lucid*	18:56
patdk-wk	axisys, you don't	18:57
axisys	getting a security scan and asking to upgrade openssh	18:57
axisys	I guess I can compile one and install that way for now	18:57
bitbyte	patdk-wk The thing i'm having trouble with is the config. I'm not really too sure about the address ranges	18:57
patdk-wk	axisys, learn about the security scan then	18:57
axisys	patdk-wk: OpenSSH J-PAKE Session Key Retrieval Vulnerability	18:58
patdk-wk	axisys, you sure?	18:58
patdk-wk	axisys, what cve?	18:58
sarnold	axisys: http://people.canonical.com/~ubuntu-security/cve/pkg/openssh.html	18:59
bitbyte	patdk-wk This is what i have so far but I'm not sure about the IP's http://pastebin.com/VWj9DiXJ	18:59
axisys	patdk-wk: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4478	18:59
uvirtbot	axisys: OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4478)	18:59
bitbyte	The right and left subnets I'm not really sure if their set right	18:59
sarnold	axisys: http://people.canonical.com/~ubuntu-security/cve/2010/CVE-2010-4478.html	18:59
uvirtbot	sarnold: OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4478)	18:59
bitbyte	Is the left subnet, the one which belongs to the servers internal network ?	19:00
sarnold	axisys: "not enabled at compile time" :)	19:00
patdk-wk	so amazing	19:00
patdk-wk	your vaunerable to something you don't have :)	19:00
patdk-wk	love stupid security scans	19:00
patdk-wk	all they do is check what version you have, and ASSUME you have issues	19:00
axisys	patdk-wk: :-)	19:01
patdk-wk	this drives up the scanners profits	19:01
patdk-wk	cause it finds things you don't have	19:01
patdk-wk	proving you need them	19:01
axisys	sarnold: help respond to the scan then. what is not enabled?	19:01
patdk-wk	yo udon't need to	19:01
patdk-wk	just supply that link	19:01
sarnold	I'd wager the clear majority of people just use their distribution-provided versions of nearly all their software -- making the tools worse-than-doing-nothing for nearly everybody	19:02
sarnold	axisys: J-PAKE authentication support	19:02
patdk-wk	I would scream at them myself	19:02
patdk-wk	how the hell can I be vaunerable to j-pake when I don't support it	19:03
axisys	patdk-wk: which link.. there were few flew by including mine	19:03
patdk-wk	http://people.canonical.com/~ubuntu-security/cve/2010/CVE-2010-4478.html	19:04
uvirtbot	patdk-wk: OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote attackers to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values in each round of the protocol, a related issue to CVE-2010-4252. (http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4478)	19:04
axisys	should ldd /usr/sbin/sshd prove that j-pake is not enabled?	19:04
patdk-wk	dunno	19:04
patdk-wk	them testing if j-pake is enabled would prove it	19:05
patdk-wk	the issue is, they didn't even bother	19:05
axisys	patdk-wk, sarnold : thanks a lot, guys!	19:16
sarnold	axisys: woot! have fun. :)	19:17
axisys	guess dealing with mediocre security team ;-)	19:17
axisys	at best	19:17
sarnold	oww	19:18
patdk-wk	they always are :)	19:30
patdk-wk	just enough to prove they did something	19:30
patdk-wk	without digging into doing real work	19:30
qman__	yeah, anybody can click 'scan' in openvas and email you the pdf	19:37
qman__	people wo actually do their jobs check to see whether the software is actually vulnerable	19:38
=== thomi_ is now known as thomi
qman__	my lucid servers get lit up for PHP vulnerabilities they don't have based on the version number all the time	19:40
=== qman__ is now known as qman
blueking	kernel to choose ?	19:48
Level15	hi, all. question, i am running win2k under kvm + libvirtd. Network speed between host and guest is way too slow. I tried changing the nic type to virtio, but it seems newer virtio drivers for windows do not support win2k. Any hints?	20:03
blueking	shorewall are not included in ubunti pack ?	20:09
genii	Not by default	20:09
blueking	ok have to fetch it myself then	20:10
genii	blueking: If you mean install it with apt-get, then yes :)	20:11
blueking	ah same style as debian	20:12
genii	Yep.	20:12
blueking	what I need for rtorrent/rutorrent ? it uses scgi ?	20:14
blueking	php5-cgi ?	20:14
blueking	or php5-xmlrpc ?	20:14
qman	Level15: sorry but you're probably SOL, windows 2000 hasn't been on anybody's radar in about 6 years	20:15
jrwren	Level15: win2k is 13 yrs old. good luck. :(	20:15
Level15	yeah... my friend has an ancient application that only runs on win2k and i'm just trying to give him a hand	20:16
qman	that it's working at all is surprising to me	20:18
sarnold	Level15: try fiddling around with several of the different NICs? my 'man qemu' reports 12 different nics, and while the ne2k_isa is unlikely to be best :) it can't hurt to try several of them..	20:20
Level15	I thought virtio was the best... found some oldr virtio drivers but gave me poor performance as well	20:22
adam_g	dweaver`, ping	20:23
dweaver`	adam_g, hi	20:23
sarnold	Level15: with newer guests, virtio probably would be best. but older guests might do better with standard, well-tested drivers, and forcing the emulator to be the funny one...	20:24
adam_g	dweaver`, hey, taking a lookat https://bugs.launchpad.net/bugs/1242992, trying to reproduce with not much luick. exactly where are you hitting this?	20:24
uvirtbot	Launchpad bug 1242992 in python-keystoneclient "Unable to autolaunch a dbus-daemon without a $DISPLAY for X11" [Undecided,Confirmed]	20:24
Level15	sarnold: will try, thanks	20:25
adam_g	dweaver`, i suspect the newly backported version of keyring from 12.10 is the culprit,but unable to reproduce with python-keystoneclient alone	20:25
dweaver`	adam_g, I did a clean deployment of Havana in our demo lab using Juju, I can paste the bundle file for you if you like.	20:25
adam_g	dweaver`, im more interested exactly what was failing and where	20:26
dweaver`	adam_g, Oh, OK, when trying to use openstack-dashboard you get the error in the apache log file.	20:26
adam_g	dweaver`, ah! okay	20:26
adam_g	ill try that	20:26
blueking	genii: when doing apt-get I want to look through what that are available to be downed/installed how ?	20:35
adam_g	dweaver`, hmph, still no luck	20:35
sarnold	blueking: apt-get -u dist-upgrade	20:40
dweaver`	adam_g, I don't know what to suggest, then. I can try and re-deploy and see if I get the error again on a new clean deployment, but that might take a while to organise as we are working on other bits of the lab at the moment.	20:41
genii	blueking: From command-line, usually something like: apt-cache search <something>	20:42
adam_g	dweaver`, if you hit it again please capture some log output and traces	20:42
blueking	ok	20:42
genii	blueking: I recommend to run first however: sudo apt-get update	20:42
blueking	i've done that at first	20:43
blueking	shorewall there are diff versions out.. currently my isp uses IPv4 but soon they'll start use IPv6 what to use ?	20:44
dweaver`	adam_g, which logs do you want, just the apache log?	20:44
blueking	shorewall6 maybe ?	20:45
adam_g	dweaver`, if that is the only place you're seeing any errors, yeah	20:45
adam_g	dweaver`, im interested to know if manually using the keystone client from the problematic node gives the same results, like the original bug shows	20:45
dweaver`	adam_g, Ok, I can try that too.	20:50
blueking	genii: atleast ubuntu server 13.10 found nic's without issue	20:54
blueking	oh noes.. :/ sending reboot command in shell makes pc shutdown and doesn't bring it up again, howto make it restart without needing to push powerbutton ?	20:56
sarnold	blueking: give it a minute, it might need to spend time on shutdown to flush swap, flush dirty pages to disk, go through a slow bios, wait five seconds at a grub prompt, then perhaps wait for a dhcp lease or something..	20:58
blueking	sarnold: powerled extinguishes	20:59
blueking	had same problem with suse too	21:00
sarnold	blueking: try looking at the reboot= option in bootparam(7) -- you might need to fiddle with that. (I haven't seen a need to change it in a decade or more, but you never know..)	21:04
=== mjohnson15_2 is now known as mjohnson15
blueking	sarnold: what file/location to look at ?	21:05
sarnold	blueking: man 7 bootparam	21:06
jrwren	blueking: also maybe a bios settings.	21:09
blueking	jrwren: reboots fine with other lix distru than ubuntu and suse,	21:15
axisys	sudo nm -D /usr/sbin/sshd \| grep method shows jpake method is not compiled in	21:18
blueking	just wonder ubuntu server i have nic interfaces p2p1 and p3p1 where p2p1 are connected to ethernet and p3p1 are local net diff subnets p2p1 gets ip from dhcp 192.168.1.114 and then on p3p1 static ip 192.168.2.1 netmask 255.255.255.0 then gateway on p3p1 should be ?	22:24
patdk-lap	none!	22:30
patdk-lap	it's a trick question :)	22:30
blueking	looked at example http://www.yourownlinux.com/2013/07/how-to-configure-ubuntu-as-router.html can't be correct to have diff subnets on same local net ?	22:30
blueking	patdk-lap: ubuntu machine has eth0 and eth1 10.10.6.203 and 10.10.6.204 ubuntu eth0 - switch - hostA that has ip 192.168.1.8 diff subnet from eth0 10.10.6.203 ? this example confused me :/	22:34
patdk-lap	what confuses me is	22:35
patdk-lap	how can people always fine the worse, most idiotic examples, that people post	22:35
blueking	:)	22:35
patdk-lap	http://www.shorewall.net/two-interface.htm	22:37
blueking	patdk-lap: hmm I installed shorewall6 I think	22:43
Patrickdk	why?	22:45
Patrickdk	does your isp support ipv6?	22:45
Patrickdk	does all the websites you use support ipv6?	22:45
Patrickdk	aren't you having enough issues dealing with ipv4 first?	22:46
blueking	Patrickdk: isp are soon going to use ipv6	22:47
Patrickdk	not likely	22:47
Patrickdk	they have been going to use ipv6 soon for years now	22:47
Patrickdk	and they have made even more plans to not use it	22:47
Patrickdk	thus the invention of CGN	22:48
blueking	so easier use shorewall two interface	22:48
Patrickdk	it's just as easy to use shorewall or shorewall6	22:49
Patrickdk	but shorewall handles ipv4	22:49
Patrickdk	and shoreall6 handles ipv6	22:49
blueking	ok done purge of shorwall6	22:49
blueking	a question when use 'init 6' shouldn't it reboot computer and not powerdown whole box ?	22:51
blueking	suse and ubuntu shuts down whole box with reboot/init 6, sphirewall/debian it restarted without need to push powerbutton... are there any setting that cause this powerdown when I want to restart linux ?	22:54
=== medberry is now known as med_
=== mjohnson15_2 is now known as mjohnson15
blueking	uhm what does last number 24 in ip mean ? 192.168.0.0/24	23:27
sarnold	blueking: the number of bits in a netmask; /24 corresponds with 255.255.255.0.	23:27
sarnold	blueking: http://en.wikipedia.org/wiki/CIDR_notation	23:28
blueking	ok	23:28
=== freeflying is now known as freeflying_away
blueking	hmm I need to static ip on local net interface...	23:42
sarnold	blueking: man 5 interfaces -- and don't forget to set aside some IPs for static use from your dhcp server :)	23:50
=== freeflying_away is now known as freeflying

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!