/srv/irclogs.ubuntu.com/2014/05/13/#ubuntu-server.txt

=== The_Pugilist is now known as The_Pugilist|awa
=== ppetraki_ is now known as ppetraki
=== veebull_ is now known as veebull_away
Macerdoes anybody here use lxc?05:04
jpdsI imagine a lot of people do.05:04
Macerheh. i'm a bit curious. how do i assign an ip to a container on the same subnet as the host?05:04
jpdsI imagine you'd need some sort of bridge set up on the host.05:05
Maceri'm having difficulty finding decent instructions05:05
Maceroh ok. so it HAS to be a bridge?05:06
jpdsYep, same as any other virt tech.05:06
Maceri just figured i could change the veth in the container to the same subnet but that seems like it would be a bit problematic05:06
Macerhm. i'll keep looking for some good instructions on how to do it. can't seem to find anything that is straightforward05:07
Macerhttps://wiki.debian.org/LXC/SimpleBridge <- i'm guessing these similar instructions would work in ubuntu?05:15
Macerhm. that doesn't make sense. you lose the physical interface on the host and replace it with br0?05:20
Macerjpds: so let me get this straight.. if you remove eth0 from the host.. you can still access the internet on the host through the bridge with the ip?05:38
Macerthat just seems strange05:38
gigirockhi all. I installed 'standard' a ubuntu 64 bit server , 13.10 version then upgraded to 14.04 version. I installed lamp as 'extra' packets and everythings seems fine. I need ssh or scp root access in order to connect directly for some programming, but i can't login as root in any way. Note that i'm trying to login form local lan and the server is on my local lan. Accessing to the server via ssh wi07:08
gigirockth the 'only one' user that i created during installation works properly and then i can use sudo to act as root. I already readed and searched some documentation about it ma all the  suggestions doesn't solve the problem.07:08
gigirock*ma=but07:08
lordievaderGood morning.07:08
=== a1berto_ is now known as a1berto
Ben64gigirock: then make sure you have a root password and root login is enabled in sshd.conf07:13
gigirockBen64, yes according with all the docs, i use PermitRootLogin yes in sshd_config07:14
lordievadergigirock: Have you given root a password? (as Ben64 says)07:15
gigirocklordievader, mmmh no i assume that the root user has the same password as the default user....07:21
Ben64and now you know what happens when you assume07:21
lordievaderHihi07:22
gigirockdo you mean i have to give "passw root" command ?07:22
Macergigirock: you have to sudo passwd root07:22
Ben64do "sudo -i" to give yourself a root shell, then you can use "passwd"07:22
lordievaderThe root users is disabled by default, that means it doesn't have a password. However it can still be used by logging in with other means (keys, sudo, etc). But you can also set a password for root.07:23
Maceralso.. if it is just a matter of using a root shell you can always just sudo -s07:23
gigirockDamned.... the password can be the same of the only one user that i have on that server ?07:23
Maceryou can set it to whatever you want07:24
Macerpersonally i'd use a different password for root but to each their own07:24
gigirockthank you... i will send a box of beer.......next time07:24
gigirocksorry people, i have another problem about that ssh , but on a centos server.... :)07:25
Ben64can't help you there07:27
Maceri'm still a bit confused about bridging07:27
gigirockBen64, i have to switch to #centos-server  :) ?07:27
Ben64i'm not sure the channel for it07:28
Macerin ubuntu you disable the eth0 interface.. create br0 and use eth0 as its port ?07:28
Macerand you should still be able to hit the ubuntu box on the network ?07:28
gigirockMacer, as far ai I know you have to build a bridge in that way, but normally you will use br0 only for 'other' connection than your local connection07:30
Macergigirock: yeah i'm trying to put lxc containers on the same subnet as the host07:31
Macerakin to fbsd jails07:31
Maceri guess this requires a bridge to be created on the host07:31
Macerso will the host using br0 with eth0 as its port just work like it normally would ?07:32
Macerhttps://wiki.debian.org/LXC/SimpleBridge07:32
Maceri was just looking at that and noticed that eth0 is disabled in the example. it just seems odd to me07:32
gigirockMacer, i did something in the past but using two physical different eth board... then with routing and bridging07:32
Macerwell i only have 1 physical nic07:33
Macerbut i want to use lxc similar to how i was using jails in freenas07:33
Macerwith the jails being on the same subnet07:33
Maceri guess by default it uses its own dhcp and nats it07:34
lordievaderMacer: My server uses the br0 inteface for its network. The kvm vms tap into that bridge device.07:38
Macerah ok. so the br0 simply acts as the net interface?07:38
Macerinstead of eth0 on the host?07:38
Macersorry. just never had to manually set up a bridge before that wasn't done automatically for me07:39
Macerand i guess this is the only way to get lxc containers onto the same subnet as the host07:39
lordievaderIt does act as eth0 here.07:39
Macerand all you have is eth0 with no ip and br0 with the host ip?07:39
Maceror something to that effect?07:40
Maceri'lll try it out when i'm next to the box07:41
Macerso i don't have an oops moment heh07:41
lordievaderMacer: http://paste.ubuntu.com/7456296/07:41
lordievaderThe vnets are the vm's.07:41
Maceroh ok... nice. thanks :)07:41
Maceractual VMs.. not lxc containers right?07:42
Maceri'm sure the setup is exactly the same tho07:42
Maceroh ok. it looks like it's pretty much by default setting up its own bridge..i'll have to toy with it later.07:44
lordievaderMacer: Qemu-kvm vms, yes.07:44
Macerhttp://paste.ubuntu.com/7456302/07:44
Macerso it makes sense that eth0 would be blank07:44
Macerthanks tho... that's awesome. appreciate it07:45
lordievaderMacer: As you can see from my post, br0 is the master over eth0.07:46
Macerdo you set that up when you make br0 in network/interfaces?07:48
Macercan i see your interfaces file on your host?07:48
lordievaderMacer: http://paste.ubuntu.com/7456307/07:49
=== RaptorJesus_ is now known as RaptorJesus
Macerah ok. that's pretty straightforward07:49
Maceri'm guessing it's set by the bridge_ports ?07:49
lordievaderNope, wrote it myself.07:50
Macerno i mean the "master" part07:50
Macerbridge_ports eth007:51
lordievaderWrote that myself too ;)07:51
Macerin the lxc example there is no entry for eth0 tho07:51
Macerhttps://wiki.debian.org/LXC/SimpleBridge07:51
Macerit says to comment out the entire section about eth0.. that's where i got a bit confused heh07:51
Macerin yours you still haveit enabled and set to manual07:52
lordievaderI've used this one: https://help.ubuntu.com/community/KVM/Networking07:52
Macerah that's awesome. thanks a lot.07:54
Macerreally needed that information :) i'll try it out when i'm in front of the box and see how it goes and set up lxc to be on the same subnet as the host07:54
Macerthanks again.07:54
lordievaderMacer: No problem, have fun.07:57
Macerlordievader: hm. i managed it set up the bridge08:35
Macerbut i can't seem to hit anything via the internet from teh lxc console08:35
Macerbut i can ping internal ips08:35
Macer:/08:35
lordievaderMacer: From the host can you ping everything?08:40
Maceryes08:44
Macernameserver is the same as well08:44
Macerthere really isn't anything about the need for routing afaik08:45
Macerthe bridge and the container ip are correct08:45
Macerand i can ping the local IPs08:45
lordievaderMacer: You probably need to allow your firewall to forward those packets: iptables --append FORWARD --in-interface br0 -j ACCEPT08:46
lordievaderAnd possibly sysctl -w net.ipv4.ip_forward=108:46
lordievaderAnd possibly "sysctl -w net.ipv4.ip_forward=1"*08:46
Macernope08:47
Macerheh08:47
Macerthat's odd because you'd think08:47
Macerthat this would just act like a typical virtualized nic08:47
=== stooj_ is now known as stooj
Macerhave to be missing something here08:56
Macerforwarding didn't work08:56
Maceri think it may have to do with the lxc default config08:56
Macerif ican ping inernally i should be able to hit the outside08:56
lordievaderMacer: You can ping the host and other machines on your network?08:57
Maceryes08:58
Macerhow odd09:01
lordievaderCan you ping 8.8.8.8 from a vm?09:03
Macerconnect: Network is unreachable09:06
Macerno. can't ping outside IPs either09:07
Macer64 bytes from 192.168.1.1: icmp_seq=2 ttl=64 time=0.755 ms09:07
Macerbut i can ping the internal gateway09:07
Macer:/09:07
lordievaderHow does your kernel routing look?09:07
Maceralthough i do keep getting some bridge made by lxc09:13
Macernot sure where it is coming from09:13
Maceroh i think i may have found the problem09:19
Maceralthough i have no i dea why but service networking restart isn't working09:19
Macernor is running the script itself to restart09:19
Macerok. got it09:22
Macernice :)09:22
Macerit was because lxcbr0 was still enabled in /etc/default/lxc-net09:23
Macerhttps://help.ubuntu.com/12.04/serverguide/lxc.html09:23
Macerfound that there09:23
Macerit's workign now :D awesome09:23
Macerso now i'm wondering what happens when lxc tries to update a kernel within the container09:26
Macerwhen i do an apt-get upgrade09:26
lordievaderCongratulations :D09:30
aandyhi guys. unsure how to add aliases for a loopback device, i'm wondering if there's a way for me to *generate* /etc/network/interfaces based on the current interface setup (i.e. i've added the aliases using the `ip` utility)09:35
aandyanyone? this is an example, but not working: http://pastebin.com/USqgBYZ7 (line 6 is a misspelled option - 'address'?)09:47
aandybased on this http://www.linuxhomenetworking.com/wiki/index.php/Quick_HOWTO_:_Ch03_:_Linux_Networking#Creating_Interface_Aliases09:48
Macercan you alias lo?10:00
ivoksaliases for lo are pointless10:22
ivoksonce you have 127.0.0.1 you have 127.0.0.1 -> 127.255.255.25410:23
ivokstry pinging random ip from that range :)10:23
=== shadeslayer_ is now known as shadeslayer
stephanksmb: I tried reproducing the skb error using netcat and inetd echo earlier, but that didn't do the trick. Am now trying with redis pubsub.11:00
stephankOkay, can reproduce it with redis, but I'll respond to the bug.11:09
vilahi there, is this the right channel to ask about issues accessing az3.clouds.archive.ubuntu.com from a cloud instance ? (As in wget hangs at HTTP request sent, awaiting response)11:24
pmatulisdid we end up implementing a kernel cleanup mechanism?11:51
=== geowany_ is now known as geowany
pmatuliskirkland: i found a thread you started about this ↑ in 2012 on ubuntu-devel but it led to a dead-end.  anything change?12:12
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 7094312:13
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 6248812:13
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 8305512:13
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 1628812:13
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 566912:13
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 1568812:13
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 2381512:13
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 8788612:13
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 798112:14
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 2482412:14
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 7477112:14
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 1657712:14
andol!ops12:14
ubottuHelp! Channel emergency! soren, lamont, mathiaz, Pici, Daviey, Tm_T or pmatulis12:14
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 3186812:14
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 5359912:14
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 2463312:14
FyouAFUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! FUCK YOU ALL!!! 534812:14
andolTm_T: Thanks12:14
lordievaderThank you Tm_T :)12:15
Tm_Tsorry for being slow12:15
smbstephank, Ah ok, I will read up there. Sorry was away for a bit.12:44
ogra_kirkland, congrats for going public !12:50
smbpmatulis, apt-get autoremove (--purge) should get you to keeping 2 (or 3, I cannot remember exactly) kernel versions since I believe Saucy12:59
=== medberry is now known as Guest51278
=== Guest51278 is now known as med__
pmatulissmb: oh really?  will look thanks14:05
tomixxx7hi, when i execute "java -version" i get meaningful result: "java version "1.8.0" ..." if i call the "java" command from within a bash file located in the same directory, i get "java: command not found"14:57
patdk-wkand?14:58
tomixxx7why?15:01
tomixxx7java is installed15:01
tomixxx7so the bash script including the java call should work15:02
tomixxx7ah i have also to modify bashrc and not only .profile15:05
tomixxx7nevermind15:19
=== medberry is now known as Guest139
tomixxx7i have still the same problem, "java" from within bash script does not work if i execute the bash script15:28
tomixxx7if i call "java -version" from the shell for example, it works15:29
tomixxx7(same directory)15:29
rberg__try putting the full path to java in the script15:33
rberg__sounds like its in the path for a interactive shell but not in the non-interactive shell path15:34
=== Guest139 is now known as med__
tomixxx7rberg__: i have already the full path in .profile file15:36
tomixxx7i have also set the full path in .bashrc15:37
rberg__and putting the full path in the script isnt working? or $(which java)15:38
tomixxx7reberg__ i will try it15:39
tomixxx7yep, putting full path in client bash script is working15:40
rberg__cool.. are you exporting PATH in your script? possibly overriding the one from .profile?15:41
tomixxx7now, iam exporting PATH in the client bash script, yes, but before u told me, there were no export statements in it15:42
tomixxx7i mean15:42
tomixxx7i set the -cp though15:42
tomixxx7java -cp ./bin:./bin/lib/* ...15:42
tomixxx7but this should not affect if java is working in general, i guess15:43
rberg__I dont know much about java really.. is cp class path?15:44
tomixxx7yep, additional class pathes, e.g. directing to directories containing depending jar files15:44
=== medberry is now known as Guest17095
=== esde_ is now known as esde
raydeoI have a couple upstart jobs created using the pattern described at the bottom of the section http://upstart.ubuntu.com/cookbook/#another-instance-example16:36
raydeobasically a dummy job with no exec that starts some workers16:36
darkxploithii anyone can help me how to transfer/ copy a file from VPS [SERVER] to LOCAL [MY-PC] using SCP please16:36
raydeothis works fine upon boot, however *very* consistently when I "stop workers" and then "start workers" the start will hang in start/starting state with no way for me to see what's happening or recover16:37
sarkishey all, i have rsyslog watching some files and for some odd reason it just stops logging17:55
sarnoldsarkis: did those files get rotated or renamed or something similar?17:56
sarkisi mean it doesn't write the watched files to /var/log/syslog as it should, no errors.. i did notice there is a profile being loaded up in /etc/default/rsyslog and then the profile is present in /etc/apparmor.d/disable17:56
sarkissarnold: ah they do get rotated... interesting.17:56
sarkissarnold: i think that is the problem, it works fine until the files are logrotated and then it stops ;(17:57
parallel21I have simple dnsmasq server setup and am unable to load images from twitters cdn. abs.twimg.com19:09
parallel21And if I disable dnsmasq everything works19:10
parallel21images from abs.twing.com will load, that is19:10
parallel21It happens to a few other sites, but most definitely with twitter's cdn services19:11
N0CHello i was here yesterday and i talked to someone joesomething or somethingjoe, not to sure. Anyone know who i am talking about and if he is a regular around here?19:11
PiciJoey Jojo Shabadoo?19:12
sarnoldN0C: that may have been dasjoe?19:12
N0Cyes that sounds right19:12
N0CIt was about an N54l microserver and making a BIOS update and some other things19:12
sarnoldah, that's what it was :)19:12
N0CSo19:13
N0Ci got the update going19:13
N0Cit wrote a bunch of stuff19:13
N0Cbut now i am just left with a c:> blinking19:13
sarnold-probably- you just hit the power button -- I don't think freedos has any 'sync' or 'umount' or 'shutdown -h now' equivalent commands19:14
N0CAny ideas?19:15
N0CIt looks like this https://imgur.com/xzPPtlY19:16
N0CI am fuckin scared to brick the thing19:16
vlad_starkovQuestion (cross-post on #ubuntu): How can I disable ufw/table to filter inter-bridge traffic? I tried "iptables -I FORWARD -m physdev --physdev-is-bridged -j ACCEPT" but it doesn't help.19:16
jdstrandvlad_starkov: what version of Ubuntu are you using?19:20
N0CIT WORKED! GREAT SUCESS19:21
vlad_starkovUbuntu Server 14.04 64bit19:21
vlad_starkovI'm also using bonds19:21
vlad_starkovso the config is eth -> bond -> bridge19:21
jdstrandvlad_starkov: you might be interested in https://bugs.launchpad.net/ubuntu/+source/ufw/+bug/573461/comments/1219:21
uvirtbotLaunchpad bug 573461 in ufw "UFW blocks libvirt bridged traffic" [Undecided,Invalid]19:21
vlad_starkovjdstrand: nice :-)19:22
sk1pperhi all, I see some ICMP echo request from serverA to serverB, how can I find out which process is sending these ICMP packages?19:24
vlad_starkovjdstrand: made changes to /etc/sysctl.conf. now everything works :-)19:26
vlad_starkovjdstrand: thanks19:26
jdstrandnice!19:54
RoyKI wonder who might be interested in running a server with nested raids on ubuntu :P19:56
geniiWell, i have a couple of these hanging around, so maybe: http://www.networkstorageantics.com/products/jet_stor_416s.php20:02
geniiActually, 5 altogether but 2 are different model20:02
rberg__ 20:08
rberg__whoops20:08
ahmadgbgHi, i wonder what is the difference between using postfix as an own mailserver or going threw my ISP's mailserver? My ISP has blocked port 25 :P20:09
patdk-wkit's not suppported to run email servers at home :)20:10
ahmadgbgi mean, is there a difference when running it threw my ISP ?20:11
ahmadgbgthere isnt a problem if i do it like that right?20:11
patdk-wkthere will be issues no matter what you attempt20:12
ahmadgbglike what?20:12
dw1i guess this is cool, right? https://pastee.org/f5za3 :-/20:14
patdk-wkdunno, I don't use lvm20:16
dw1im sure its fine..20:18
dw1"Don't worry. It is a problem of os-prober. Here an old quote way back from 2009:" https://forum.manjaro.org/index.php?topic=5438.020:20
dw1meh20:20
dw1i dont understand it but whatever :p20:21
dw1tho maybe should file a bug report..... hrm20:25
geniiOr, just add to bug 131378420:28
uvirtbotLaunchpad bug 1313784 in grub-installer "File descriptors leaked on lvs invocation" [Undecided,Confirmed] https://launchpad.net/bugs/131378420:28
=== medberry is now known as Guest30963
=== Ursinha is now known as Ursinha-afk
=== Ursinha-afk is now known as Ursinha
Macerdoes anybody know where ubutntu sets up which lxc groups are auto-started?21:07
Macerby default nogroup is started.. i want to autostart groups on boot but can't seem to find out where it happens21:08
Maceri guess newer lxc just reads the autostart flag21:08
sarnoldMacer: some details on autostart here: https://www.stgraber.org/2013/12/21/lxc-1-0-your-second-container/21:09
Macersarnold: yeah i read that but it doesn't explain how to autostart by group21:20
sarnoldMacer: ah :) I know just enough to be dangerous, hehe21:20
Macerheh21:20
Macerlike if i set lxc.start.auto = 1 in the container.conf21:20
Macerthen it will start but if i add the conainer to a group it does not21:21
Macerand i dont' understand where you set which groups auto start or how to get groups to auto start21:21
sarnoldstgraber,hallyn, Macer has a question about lxc autostarting groups that I don't know how to answer :)21:21
Macer By  default  only containers without a lxc.group set will be affected.21:22
Macerfrom the lxc-autostart man page21:22
Macerbut it doesn't explain where that is set or where to set it or how to do it21:22
Macernor does the lxc.conf man page.. nor does any other documentation i've read so far heh21:22
Maceri'm just trying to set which groups start on boot21:23
hallynMacer: that is set in th e conatiner's configuration file21:25
hallynMacer: it's actually hopefully going to be augmented soon so you can specify lxc.group = onboot,whatever or lxc.group = ,whatever , in either case it woudl be autostarted at boot21:26
hallyn(so you could ahve a container in a group but still have it autoboot)21:26
hallynMacer: but if you haven't added a group to it, then it'snot in a group21:26
hallynso just lxc.start.auto = 1 whould work21:26
hallyn(see the lxc.container.conf(5) manpage)21:27
Maceryeah i saw that. and i added the container to a group21:27
Macerbut i don't see a way to autostart on boot21:27
hallyncorrect, right now you can't autostart on boot if it's in a group21:27
Maceroh ok21:27
hallynwell, you can by editing /etc/init/lxc.conf ...21:28
Macerwell. :) there's 30 minutes of my life i won't get back heh21:28
hallynyeah, sorry, it's a bit convoluted.  hopefully it'll be cleaned up in the next few weeks21:28
Macerlol. np. but you might want to throw that out there in big bold letters hehe.. i was looking for some setting like above for the lxc.conf21:28
Macersomething like21:28
Macerlxc.onboot.startgroups = group1 group2 etc21:29
Macerlike you stated earlier heh21:29
Macerbut thanks. i'm glad someone told me before i spent more time on it21:29
hallynyeah - ii think that'd be a nice feature, but i dno't remember where we ende dup on that.  (autostart is stgraber's baby, i don't use it :)21:30
hallynmust run - o/21:30
sarnoldthanks hallyn :)21:30
Macerso just going to throw stgraber under the bus huh? :)21:30
Macerthanks a lot hallyn .. appreciate the info21:31
Macerok ... well i guess i can move on and start working with this container then21:31
Macerawesome stuff. been curious about having a linux "jail" that wasn't a chroot21:32
hallynMacer: by all means do look at the seccomp, apparmor, and unprivileged container bits.  sarnold may be able to help you, or i shoudl be back ina  few hours, if you have any questions21:37
hallynheh, under the bus - no i quite like the way he did it, we just need to find 'just the right' api, and i'm leaving that to him since he cares more than i do :)21:38
* hallyn out21:38
Macerhallyn: lol. maybe soon. i'm setting up a container now to play with21:42
dw1genii: ahh, will do, thanks21:43
phuhhow do i apt-get install specific package when there are multiple ones with the same package name? (added via ppa)22:04
=== RaptorJesus_ is now known as RaptorJesus
Macerubuntu server is surprisingly good23:32
PryMar56Macer, yes - less is more23:56

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!