gjpminingcohey all i am needing some major help00:00
gjpminingcoI have a Server running Ubuntu Server 14.04, I have my Internet coming in on port em1 with a static IP, I want to Give Inet access to all my hardware on my switch that is connected to my server via em2 and i had it working but now after trying to install a dhcp server for all non static ip hardware i have lost internet access for my hardware on my switch00:02
sarnoldgjpminingco: check your IPs on your interfaces, routing tables, iptables rules, and ip_forwarding sysctl..00:07
gjpminingcois there anyway i can keep my system from loosing it's Static IP every time i restart00:13
sarnoldgjpminingco: set the ip in /etc/network/interfaces ?00:14
gjpminingcoanyone any good at setting up ICS on ubuntu server and Also setting up DHCPD to run also00:24
gjpminingcoInternet Connection Sharing00:29
=== thumper is now known as thumper-afk
sarnoldgjpminingco: ah. you probably want to research iptables snat -- the nicest description of snat and dnat I've seen so far is here: http://www.linuxquestions.org/questions/linux-security-4/iptables-dnat-snat-and-masquerading-264649/#post1341452 -- but perhaps there are better guides :)00:58
sarnoldgjpminingco: I'm lazy enough I'd probably try shorewall frontend first :)00:59
Patrickdksarnold, it's required, when you have like 20+ vlans, and vpn's and other crap all going on in the same box01:04
Patrickdkway too much to do by hand01:04
sarnoldPatrickdk: that's encouraging :) nice to hear there' ssomething that does a tolerable job with complex setups :)01:05
Patrickdkya, my first attempt at it was nice :)01:06
Patrickdka xen machine, like 5 different internal bridges, two external nics, and 6 vpn's01:06
Patrickdkdifferent vpn's where allowed different access to the internal bridges/xen clients01:06
Patrickdkcould be done by hand sure, but the mount of time for a simple change would have been painful01:07
zartooshhi what process creates /etc/network/interface file ? thx02:00
=== thumper-afk is now known as thumper
RoyKzartoosh: vi02:01
zartooshRoyK,  no what I mean is, this file originally get populated with network interfaces , what process does this? thx02:02
RoyKzartoosh: it's pre-built by the installer02:03
zartooshRoyK, okay I tried to modify its content through preseeding it failed... thanks02:16
=== ikonia is now known as Guest70019
=== ToAruShiroiNeko is now known as Guest76488
=== kermit is now known as Guest96695
=== neunon is now known as Guest28427
=== msx is now known as Guest82103
=== Guest82103 is now known as msx
DaDDaD  Lo all.. Any sysops maintaining Ubuntu 14.04LTS AMP stack servers?02:53
slompoA Brazilian?03:13
=== Ursinha is now known as Ursinha-afk
sarnoldslompo: there is #ubuntu-br03:13
DaDGuys... I need some help03:14
slompothanks sarnold03:14
sarnoldslompo: you're welcome, have fun :)03:14
slompohave people from all over the world here?03:15
slompoyou think it worth being set up a small host to host small websites and email accounts of small businesses? Or would it be better to leave it on account of the great hosts?03:20
sarnoldslompo: I suggest looking at email and web hosting differently; email is an absolutely miserable thing to host yourself but hosting your own website is not too bad03:22
sarnoldslompo: of course, handling spikes of web traffic (slashdot, daringfireball, etc.) can be pretty hard on your own, but that's not a problem most people have. keeping up on security fixes for your website software is the main task and that's also not terrible, just tedious most of the time :)03:23
=== Ursinha-afk is now known as Ursinha
slompoI understand. I already have a server in digitalocean, but my emails are on dreamhost, and I suffer a bit with this. In Brazil we do not have very good service providers.03:24
slompobye, thanks03:38
lordievaderzartoosh: What you could do is modify the 70-net-persistent rule and change the name to eth0.05:21
=== tomaw_ is now known as tomaw
liquid-silencehi all, setting up a new mail server, should I just use postfix + sql backend? or would I need to think of dovecot08:13
peetaur2postfix is a MTA... it doesn't give users their mailboxes. You need a thing like dovecot for that.08:13
liquid-silenceor courier-imap?08:14
liquid-silenceI am looking for something that does however give me the ability to create accounts via database or something08:14
liquid-silenceas it will be multi domain08:14
liquid-silencebut I also don't want to spend 10 hours when adding one account08:15
liquid-silencepeetaur2 so I presume I need to look at dovecot + postgresql?08:17
peetaur2yes probably you want a database supported by both your MTA and whichever IMAP server you choose08:17
liquid-silenceok dovecot it is, have not done this in a while though :D08:18
liquid-silencemind if I ask some more questions?08:18
fathi_anyone can help me please ?08:28
pdsany one around here that has xp with preeseeding and is will to help me out setting it up => already created the preseed file since it my first time doing so i would like to have a peerreview http://dpaste.com/1V7C29609:11
pmatulispds: what problem are you having?09:14
pdswell i would like to know how i can test it out09:15
pdsand if the preseed file is out09:15
pdsand if the preseed file is correct *09:15
peetaur2pds: I put mine in the initrd on the netboot server09:16
peetaur2pds: but that means you need a whole new initrd for each uniquely configured machine, rather than just a new preseed for each machine09:17
peetaur2pds: which is fine for me... so if that's fine for you, I can tell you how to do that09:17
pmatulisnot many people are willing to comb a preseed file.  best is to try it, try to fix any resulting error, and then ask here if you need help09:17
pmatulispds: ↑09:17
pdsit may be a better idea if i can swap the preseed files at will, but at this moment i just want to get a PoC working09:18
pdsso let the beast go, and let's go nuts09:21
peetaur2pds: so I don't know if you want it but if you do, here's what I do to pack the preseed into the initrd http://pastebin.com/iXDPDssb09:23
pdswhat would be the effect of this?09:25
peetaur2anything booting from your netboot will use the preseed09:27
peetaur2assuming you set the dirs right ;)09:28
pdsspoiler: brace yourself newbie questions related to pxe booting and preseeding incomming09:29
ed8hi, I'm working on a systemd services and when I try to run: systemctl daemon-reload09:30
ed8I got: systemctl: command not found09:30
ed8the 'systemd{,-shim}' packages are installed09:30
ed8I'm running on a 14.0409:31
pdsi would like to pxe boot a ubuntu server 14.04LTS with the seed file i wrote http://dpaste.com/1V7C296.  After that i would like to use ansible do some configuration files.09:32
pdsso a) how can i pxeboot the server, b) how can i couple the preseed file that i wrote to do it's business (automate the installation) and c) how can i provide a custom script at the end to wget the ansible stuff and let it spin09:34
=== Den_Beiren is now known as DenBeiren
pmatulispds: netbooting, preseeding, and custom installation scripts is a big topic.  you will get better help here if you do some research beforehand09:53
pdsdid so see resources09:56
maxbpds: I had a quick look at your preseed.cfg paste. I quickly stopped looking at it because it was so mired in commented out stuff, I couldn't easily see the functional bits. In any case, preseed setup always ends up requiring actual testing. It's sadly not practical to expect to write a preseed which works first time09:58
peetaur2he actually did quote resources before, which had all the steps...09:58
peetaur2not sure why he didn't try them :D09:58
peetaur2(yesterday I think)09:58
maxbSo, test it, and come back with questions if you can't solve how it breaks! :-)09:58
pdsfor petes sakes how do i test in the first place09:59
peetaur2pds: Yesterday, you linked http://digitalsanctum.com/2013/03/22/how-to-setup-a-pxe-server-on-ubuntu/ and I linked http://www.linuxquestions.org/questions/linux-newbie-8/automated-remote-installs-of-ubuntu-using-kickstart-802660/10:01
peetaur2pds: and then I said those are fine, but use pressed instead of kickstart10:02
peetaur2and you already have a preseed file, so just put it in the initrd, skip thte kickstart steps (which makes the web server obsolete also), and then try it, and come back with errors and confusion, but not just "please tell me all the steps on IRC" ... these guides already do that fine.10:02
maxbpds: You test by attempting to run an installation10:03
maxb"Try it out and see if it works" is a pretty simple testing methodology :-)10:03
peetaur2and then you are welcome to come back with any errors or questions to resolve confusion10:05
peetaur2but IRC is really not the place for pasting howtos10:06
peetaur2howtos for very specific things, sure... but not for general things where the only specific part is your preseed file10:06
pmatulispds: truth be told, this stuff can be confusing due to the different ways to achieve preseeding.  are your targets virtual or real?10:37
mndoHi, I am having network problems on the guests of a kvm trusty server - pinging the guest goes from a couple of ms to several seconds.. any ideas?10:51
orohi all, any experience here with bcache?10:55
oroudev screws up bcache* naming after each reboot. Ubuntu 14.04, bcache-tools from PPA10:55
=== apb_ is now known as apb1963
rbasakoro: I'd like to land bcache-tools in the archive proper, so I'm quite interested in the issue you have.11:07
rbasakoro: but I haven't actually tried it myself yet. Let me know what you find though, please?11:07
ororbasak, http://pastebin.com/A9YBL9Ag11:10
orohere you can see, that after two boots the bcache*  numbered devices get their names in different order11:10
oroI want to have one disk SSD cache (/dev/sdn) in front of 11 HDDs (/dev/sd{b,c,d,e,f,g,h,i,j,k,l})11:11
ororbasak, also you can see the wrong registration order in dmesg11:20
=== Guest70019 is now known as ikonia
pdspmautils following http://www.linuxquestions.org/questions/linux-newbie-8/automated-remote-installs-of-ubuntu-using-kickstart-802660/ atm11:33
pdstesting on virtuals11:33
pdsbut the actual devices are real11:34
pdsthe final project that is11:34
pdsso following the tutorial11:51
pdssudo /etc/init.d/openbsd-inetd start =>  * Not starting internet superserver: no services enabled11:51
pds@pmatulis seems like the tutorial you gave me could use an update11:58
pdsdo you actually need openbsd-inetd11:59
pmatulispds: i didn't give you a tutorial11:59
pdswell you linked to http://www.linuxquestions.org/questions/linux-newbie-8/automated-remote-installs-of-ubuntu-using-kickstart-802660/ no11:59
pdsnmv that was peetaur11:59
pdsany way do you actually need openbsd-inetd12:00
pdsgod darn it how hard can it be to find a decent source on how to preseed an ubuntu server 14.04 LTS12:01
pmatulispds: go for the original documentation.  you are referring to blogs and forums12:05
pds#http://digitalsanctum.com/2013/03/22/how-to-setup-a-pxe-server-on-ubuntu/ #http://www.linuxquestions.org/questions/linux-newbie-8/automated-remote-installs-of-ubuntu-using-kickstart-802660/ #http://linux.opm.si/programska-oprema/ubuntu-14-04-network-install  #UNIX and Linux System Administration Handbook 4th Edition (Jun 2010) #page 417 - 419  #ftp://cpe-69-205-130-169.stny.res.rr.com/Public/E-BOOKS/Linux%20System%20Administrati12:06
pdshow many more do you need :)12:06
pdsgive me a sec12:06
pdshere you go12:06
pdsthat all the stuff i read over the past 2-3 days12:06
pdssp you can't blame for not trying12:09
pmatulispds: here:12:13
pmatulispds: and i asked you a question but you did not answer, so i'm also trying to help you12:15
pdsi'm not blaming you i'm just getting a bit frustrated because i'm reading reading reading without having any  progress12:24
pdswhat was your question i may have missed is because well i was reading12:24
pdshmmm if is about real or virutal i did answer12:26
pdstesting on vm's because if i fuck up something it's easier to throw away and restart12:26
pdsbut the final goal is psychical devices (hp thin clients) to be exact12:27
pdsaround [13:33] to be precise12:29
=== psivaa is now known as psivaa-lunch
pmatulispds: ok13:26
pmatulispds: you will need at the very least a web server to dish up the preseed files13:26
pmatulispds: you can point to those files in different ways13:27
pmatulis==> virt-install (for virtual installs) or pxe (needs dhcp,isolinx) are 2 popular ways13:30
=== Ursinha is now known as Ursinha-afk
=== Ursinha-afk is now known as Ursinha
LarsNwhen using preseed to automate pxe installs of 12.04, I'm running into a small catch.  I have the following entry in my preseed file: d-i debian-installer/locale string en_US14:04
LarsN however the installer still pauses, waiting for me to specify which country I'm in.14:04
LarsNIs the solution as simple as adding: d-i debian-installer/country string US14:04
LarsNwhich I would have thought to be redundant?  Or is there another setting I need to include to get past the country string.14:05
ldelarosaHello guys I need some help, I just set up apache as reverse proxy and It's working with "http" but not with "https"14:05
=== psivaa-lunch is now known as psivaa
LarsNlooks like d-i debian-installer/country string US did fix it.  Good to know.14:07
zartooshlordievader, thanks that worked.15:04
lordievaderzartoosh: Nice, good to hear.15:09
lordievaderGood afternoon.15:49
=== matsubara is now known as matsubara-lunch
Demon_Jesterhey guys i have a linux based server at my home and im currently in the process of "hardening" it. I am wanting to know if anyone here that manages on linux based servers that setup alerts you for suspicious activity.16:28
sarnoldDemon_Jester: checking for apparmor DENIED messages is a good way to see if confined services or programs are being probed; checking dmesg for segfaults is useful; checking authentication times may be useful...17:04
Demon_Jesterwell i mean im thinking of writing a script to send me alerts when im away if stuff has been modified or if it finds other things still wip17:07
sarnoldDemon_Jester: makes sense; apt-cache search tripwire shows some similar tools that may be helpful17:09
Demon_Jestersarnold: ok thanks17:11
zulhallyn:  ping17:19
=== roaksoax is now known as roaksoax_bbl
patdk-wktripwire is nice17:28
patdk-wkbut also, tripwire is predictable, first thing people look for17:28
patdk-wkjust hope you get your security done good17:28
=== acrocity_ is now known as acrocity
=== kees_ is now known as kees
=== SierraRazgriz is now known as SierraAR
=== whaley_ is now known as whaley
=== Corey_ is now known as Corey
Trudkohi guys I have ubuntu server where I have production code and I would like to easily create copy of that so I can run it locally in vm to test the code17:59
=== kickinz1` is now known as kickinz1|away
aandyhi, anyone who has experience with carp on ubuntu? i'm using ucarp, but my question is general: i have a simple setup of advskew for master/slave of 1 and 100. it works as expected (slave takes over as master fails), but master regains the ip "too fast" (i.e. before a service has been started). which parameter is it i'm suppose to change to let the master be online for a bit longer before gaining the ip again18:18
hallynzul: what's up18:26
zulhallyn:  how does lxc-snapshot work with unprivileged containers18:27
hallynzul: same way as with privileged containers...  it creates a overlayfs clone in a custom lxcpath18:27
hallynzul: the location has changed recently, so i'm not sure where it ends up in trusty18:27
zulhallyn:  ok18:27
hallynit could be .local/share/lxcsnaps or .local/share/lxc/$container/snaps18:27
hallynstgraber: https://jenkins.qa.ubuntu.com/job/utopic-adt-cgmanager/27/ARCH=amd64,label=adt/console  i have no idea what is going on.  is it ok for the adt testcase to restart cgmanager with --debug and then print out the /var/log/upstart/cgmanager.log?18:28
stgraberhallyn: sure18:29
Level15hi. I am trying to install mantis bug tracker on ubuntu 14.04. According to https://launchpad.net/ubuntu/trusty/+package/mantis there is a mantis package for trusty, however, when i do aptitude search mantis i get nothing. Any ideas?18:34
hallynstgraber: ok trying18:35
sarnoldLevel15: looking for the mantis source package itself shows a different story, only available for lucid, precise, saucy: https://launchpad.net/ubuntu/+source/mantis18:37
Level15sarnold: hm, so that means the package does not exist for trusty?18:37
sarnoldLevel15: that's whatthat looks like -- it was removed from debian eight months ago: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=73012118:40
uvirtbotDebian bug 730121 in ftp.debian.org "RM: mantis -- RoQA; RC-buggy, unmaintained" [Normal,Open]18:40
GrantKWhen I ssh into my ubuntu 12.04LTS server, my login message announces: Your current Hardware Enablement Stack (HWE) is going out of support ... Install a newer HWE version by running: "sudo apt-get install linux-generic-lts-trusty linux-image-generic-lts-trusty"18:52
GrantKbut, when I exec that install cmd, it reports: "linux-generic-lts-trusty is already the newest version. linux-image-generic-lts-trusty is already the newest version."18:52
GrantKDo I actually need the update? or is the message 'confused'?18:52
GrantKchecking `hwe-support-status --verbose` returns "Your Hardware Enablement Stack (HWE) is supported until April 2017."18:57
GrantKwhich to believe?18:58
geniiGrantK: I'm inclined to believe hwe-support-status19:09
GrantKgenii: Checking versions manually, I'm 'correctly' updated, apparently.  Seems you're right. Nice if the notices get fixed -- but NBD if you know actual state.  Thx!19:18
bitfury!info mysql-server19:22
ubottumysql-server (source: mysql-5.5): MySQL database server (metapackage depending on the latest version). In component main, is optional. Version 5.5.37-0ubuntu0.14.04.1 (trusty), package size 12 kB, installed size 130 kB19:22
lordievaderUpgraded to Trusty from Saucy like a smooth ride. Nice work Ubu server devs \o/19:59
bitfury!info apache20:04
ubottuPackage apache does not exist in trusty20:04
bitfury!info apache220:04
ubottuapache2 (source: apache2): Apache HTTP Server. In component main, is optional. Version 2.4.7-1ubuntu4 (trusty), package size 85 kB, installed size 462 kB20:04
=== matsubara-lunch is now known as matsubara
bitfury!info vtiger20:39
ubottuPackage vtiger does not exist in trusty20:39
=== cmagina_ is now known as cmagina
=== DaIRCKing is now known as GTAXL
ghshwhere can i ask some questions right here on channel or ?22:28
sarnoldghsh: welcome to irc; irc works best if you just ask questions directly and wait around a little while for an answer22:28
ubottuPlease don't ask to ask a question, simply ask the question (all on ONE line and in the channel, so that others can read and follow it easily). If anyone knows the answer they will most likely reply. :-) See also !patience22:28
Patrickdkbots where made to be abused22:29
Patrickdkjust if someone could get all my triggers programmed into it22:29
=== ToBeFree is now known as Raymondo
=== Raymondo is now known as ToBeFree

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!