=== jeffreylevesque_ is now known as jeffreylevesque
=== arrrghhh is now known as arrrghhhAWAY
=== Ursinha is now known as Ursinha-afk
=== Ursinha-afk is now known as Ursinha
z1hazehow can i add another ssh key to my authorized keys? how does that process work?03:00
z1hazeim basically trying to rsync between 2 servrs that boht use key authentication, im just thinking that if both servers accept the same key from me then ill be able to do that?03:00
tortibHello can someone help me with this issue with cacti I'm having?  I have outlined the details here: http://askubuntu.com/questions/514072/blank-cacti-graphs04:07
=== thumper is now known as thumper-afk
=== darkness is now known as Guest26571
halvorsHi! I'm trying to setup a tunnel to tunnelbroker.net form my Ubuntu box. The problem is that when i add a ipv6 address to my interface statically, it seems to ignore the route thru the tunnel. How can i fix that?07:22
ikoniahalvors: what does your routing table show07:24
halvorsikonia: Here is my Ipv6 routing table. http://pastebin.com/byXJjmDP07:30
halvorsWhere 2001:470:27:436::1 is the tunnelbroker endpoint and 2001:470:27:436::2 is my address.07:31
ikoniahalvors: so your default is the tunnel device07:33
ikoniaseems odd that it would ignore the default route07:39
halvorsikonia: That is my configuration.07:40
ikoniahalvors: sady I've not setup a tunnel like that before so I don't know if that's right or wrong07:41
Abhijithow can i stop ubuntu to make me retpye the password second time at installation even if i mention it as plain text in preseed file?07:41
halvorsikonia: Ok.07:41
Abhijitit ask it by sayng it want me to be sure about spelling.07:42
ikoniaAbhijit: you have to confirm the password or have it configured in your auto deployment07:42
Abhijitikonia, i have configured it in my preseed file.07:42
halvorsikonia: But let's say that i have a statically assigined ip address that is provided by he.net. Then it should default route thru the tunnel without a gateway set on the interface?07:42
ikoniaAbhijit: doesn't sound like it07:42
Abhijitikonia, what does these two lines sound like? d-i passwd/root-login boolean true07:43
Abhijitd-i passwd/root-password password mypasshere07:43
ikoniahalvors: you have a static ip address, and you connect to something not on that network iti will use the default route07:43
ikoniaAbhijit: that doesn't look right, but I don't have an example heere to share with you07:43
halvorsYes, that's what i thought, but my problem is that it doesn't _)07:43
ikoniahalvors: I'm wondering if the 6->4 translation is confusing the route07:44
ikoniabut it should still use the 6 default, by default07:44
Abhijitikonia, I will be highly appricatie if you tell me whats wrong in those two lines.07:45
ikoniaAbhijit: I've not got anexample here to share, but that syntax doesn't look as I've remembered it07:45
Abhijitikonia, when you remeber those examples kindly edith this page here at https://help.ubuntu.com/12.04/installation-guide/example-preseed.txt07:46
ikoniaAbhijit: I could be wrong I don't have a reference here, but it doesn't look right07:46
Abhijitikonia, sure. np. i am just requesting you so that next time someone like me visits that page can use the right example not just me. if i got the correct syntax i will updathe the page.07:47
halvorsikonia: Got it working now :) Had an ip6tables configuration file that was loaded and dropped traffic :(08:12
halvorsikonia: Thank you very much for help, appirciate it ;)08:12
=== deegee is now known as drussell
=== mld_ is now known as mld
ikoniahallyn: so it was going out of the default route, just getting dropped08:33
=== Lcawte|Away is now known as Lcawte
=== thumper-afk is now known as thumper
hxmwhat is this? 014 Aug 21 12:49:49 datatec PAM service(sshd) ignoring max retries; 6 > 310:50
hxmis someone trying to bruteforce ssh?10:52
YamakasYhxm: I think Putin tries too11:03
bitfuryHey guys, so I have this server which was pegged at 93% memory use this morning.. stopped the responsible service but the box memory usage still high (3.1G/4G)14:51
bitfurynothing else is using this much memory14:52
=== JanC_ is now known as JanC
bitfuryha, cleared cached/buffers and came back to normal15:01
RoyKbitfury: how was the swap use? and how did you clear the cache/buffers?15:18
Free95hey all, random question: how would I recover the options I used when running ./configure for a package?15:30
Free95I tried using "history" but there are too many potentials15:31
RoyKFree95: probably the last one in 'history' ;)15:46
RoyKFree95: not sure if all packages store the configure string - I don't remember15:46
bitfuryRoyK: box wasn't swapping at all, cleared it with 'free && sync && echo 3 > /proc/sys/vm/drop_caches && free'15:47
RoyKbitfury: wierd - that shouldn't affect system performance15:47
bitfurywhat shouldn't?15:47
RoyKmemory used for buffers/cache15:48
bitfuryisn't buffers/cache how much space applications are currently using?15:49
bitfurycached memory15:50
RoyKno. buffers/cache is whatever applications aren't using. it's what's used for buffering/caching block devices/filesystems15:50
RoyKlinux can't tell an application to free memory15:50
bitfuryI've seen it happen a few times now16:00
bitfuryreally weird16:00
bitfurytomcat uses the most memory on this server, it starts low and builds up16:01
bitfurymaybe a memory leak16:01
bitfuryno idea why clearing the cache helps bring system memory down though16:02
RoyKI've seen linux machines with lots of memory, but high memory load, start to swap early just to get room for more buffers/cache, even if it reduces performance. linux isn't always to smart on such systems. reducing vm.swappiness to 10 or so remedies this, but that looks to me more like a workaround than a fix16:02
bitfuryafter stopping tomcat of course16:02
RoyKI guess restarting tomcat was what made it better. java is a memory hog16:03
bitfuryI stopped tomcat but memory was still high16:04
RoyKbtw. testing with 14.10, I have some issues with systemd:16:04
RoyKroot@u-dev:~# systemctl -l16:04
RoyKFailed to get D-Bus connection: No connection to service manager.16:04
RoyKbitfury: do you have the output of "free" after stopping tomcat?16:04
bitfurylet me check if my terminal buffer still has it16:05
bitfuryRoyK: http://pastie.org/949194716:06
RoyK4190044 free16:07
RoyKafter subtracting what's used for buffers/cache, which will be released anyway, if needed16:07
RoyKwhat does "free" say at this point?16:07
RoyKthat was top (and I pasted the swap)16:08
RoyKdid you have the output of the command "free"?16:08
bitfuryyep one sec16:08
RoyKit gives more detail16:08
bitfuryRoyK: http://pastie.org/949195616:09
RoyK-/+ buffers/cache:     325400    3723020 <-- plenty of free memory, hardly any swap used - shouldn't be a problem16:10
RoyKmaybe sshd hadn't been used in a while and thus had swapped out pages?16:10
bitfurythat's buffers/cache though, Top reported 3.4G of memory used!16:11
RoyKlinux usually swaps out things not in use - it's no reason to keep everything in memory when memory can be better used for caching than holding processes not currently in use16:12
RoyKso does free: Mem:       4048420    3105368     943052, but that's really irrelevant16:12
RoyKyou don't *want* free memory - you want it to be used for cache and buffers to avoid reading from a slow disk too much16:12
bitfuryim confused, so you're telling me not to trust Top "used" report16:13
bitfurycause it's irrelevant16:13
=== mip5__ is now known as mip5
RoyKtop shows what's used by both processes, cache and buffers16:13
RoyKfree also does that, but has this -/+ buffers/cache line that shows you how much free when not counting what's used by buffers and cache16:14
RoyKthat's far more relevant16:14
bitfurybrb - got called into a meeting16:14
RoyKif you want your system not to use swap unless it's not strictly needed, set vm.swappiness = 116:15
RoyKbut then - in *most* cases, it's better to let Linux do what it wants - it may take a second or two to ssh into the box if some of sshd's pages have been swapped out, but only the first time16:16
bitfuryRoyK: my confusion mostly comes from the system reporting ~3.4G in used and buffers/cache reporting 3.7 available for use17:20
RoyKbitfury: that's normal - really - there's a lot of questions about this topic17:21
bitfuryyou're saying the system had plenty of memory but top is reporting it didn't :(17:21
RoyKbitfury: see 'free' output - that reports it correctly. "free" memory as reported by "top" is memory that's not in use by anything, but you *want* the memory to be used for caching if apps aren't using it.17:22
bitfuryRoyK: cool thank you, it's kind of confusing but I guess is just a misunderstanding of terms. This is a good page on the topic: http://www.linuxatemyram.com/17:32
RoyKubottu: linux ate my ram is http://www.linuxatemyram.com/17:34
bitfurylike you said earlier, clearing the cache shouldn't affect system performance or amount of RAM in use17:34
bitfuryso very weird memory dropped when I cleared it17:35
RoyKbitfury: not wierd at all - you removed everything from the cache17:35
RoyKbitfury: that system call is meant for developers wanting to benchmark things - not for users or admins17:35
PiciRoyK: we actually already have !ram setup to include that site :)17:36
RoyKPici: ah17:36
ubottuIf you are wondering why some tools report your system has very little free memory, have a look at http://www.linuxatemyram.com/ | A short primer on Linux memory management can be found here: http://sourcefrog.net/weblog/software/linux-kernel/free-mem.html17:36
RoyKPici: thanks17:36
Picinp :)17:36
RoyKThe requested URL /weblog/software/linux-kernel/free-mem.html was not found on this server.17:37
bitfuryRoyK: got, thanks again :D17:37
RoyKPici: seems that page doesn't exist anymore :P17:39
Picio.  I'll update it.17:40
Pici!memory =~ s/|.*$//17:41
ubottuNothing changed there17:41
RoyK(perhaps !mem?)17:41
* Pici pesters ubottu in private17:41
RoyK(or !ram)?17:41
bitfuryRoyK: in other words, it's good to see cached memory allocated from free memory apps are not using, top will report this as used memory but it really isn't.. as applications need more memory it will grab what it needs back from cache.17:41
RoyKbitfury: bingo - it's used - but for caching/buffering - which is good. memory not used isn't good17:42
bitfuryim horrible at explaining it, but think I got it :P17:42
bitfurygot it17:43
RoyKbitfury: linux will just free it whenever a malloc() is issued. what you saw, was probably sshd's pages swapped out, which isn't a big deal, it just takes a second or two to get them back when you login the first time17:43
bitfuryI see, learned something new today.. I can sleep happy tonight17:46
RoyKif you have a linux system with high memory load (lots of memory traffic), you *may* see it start to use large amount of swap for some (to me) unknown reason. If you do, change vm.swappiness (sysctl) to a lower level than the default value of 6017:48
bitfuryhaven't seen this box do that even though it does use a lot of ram due to tomcat and the java app running but will keep that in mind, thx.18:00
RoyKbitfury: haven't seen it with application servers either, but sometimes with file servers with heavy load18:06
bitfuryheh, file servers are evil18:08
RoyKif you have 5k+ users on a file server, I/O patterns will be somewhat awkward18:13
mip5Hi - running ubuntu 14.04.1 server, 2@ 2.4 GHz qc cpus, 12 gbs ram, 6 @300 GB 15K drives (raid 6), LSI SAS 9260-8i raid controller. The server is a mysql slave, and also an nfs server for rsnapshot backups from ubuntu vms. nfs-kernel-server keeps stopping during the  rsnapshot jobs, and is causing the clients to get hung. Sudo service nfs-kernel-server start *appears* to work (doesn't throw...18:46
mip5...any errors on the cli), but service nfs-kernel-service reports nfsd not running. The only way to restart nfs-kernel-service is with a server reboot. /etc/exports options are: (rw,sync,no_root_squash,no_subtree_check). Any ideas why this would happen? How would I increase the logging to try to track this down? Thanks!18:46
sarnoldmip5: does this describe the situation? https://bugs.launchpad.net/ubuntu/+source/nfs-utils/+bug/135636118:48
uvirtbotLaunchpad bug 1356361 in nfs-utils "rpc.mountd crashed with SIGSEGV (dup-of: 1355829)" [High,Confirmed]18:48
uvirtbotLaunchpad bug 1355829 in nfs-utils "rpc.mountd segfaults after upgrading to 1:1.2.8-8ubuntu1" [Undecided,Confirmed]18:48
mip5I'm running 1:1.2.8-6ubuntu1.1 -19:00
mip5though the symptoms seem the same. I don't know *why* or *what* is causing the crash though, so I can't be sure the bug affects me. It did start happening after I got the latest package last friday, 8/1519:01
mip5What repository would I need to add so that I could get the nfs-common_1.2.8-9, nfs-kernel-server_1.2.8-9?19:19
mip5maybe I'm barking up the wrong tree. What would be the recommended fix for this issue?19:56
bananapieIf I use iproute2 to route packets, do they still go through netfilter ( iptables -t nat POSTROUTING ) ?20:19
bananapieHere is my iptables firewall and my ip route show. Packets going out on eth1 are not being mangled and are keeping the IP 192.168.0.x. Ignore the 192.168.36.x network20:26
bananapieWhy isn't iptables doing nat on my packets?20:26
SCHAAP137┏━╸╻┏┓╻╻┏━╸╻ ╻╺┳╸20:31
SCHAAP137┃╺┓ ┃┗┫┃┃╺┓┣━┫ ┃20:31
SCHAAP137┗━┛ ╹ ╹╹┗━┛╹ ╹ ╹20:31
SCHAAP137ah, wrong window lol20:31
bananapieinstead of eth0 why not localnet ?20:44
bananapieWhy don't we use arbitrary names for network adapters in linux, like windows does?20:44
keithzgYou can, if you want.20:53
keithzgAlthough I wouldn't choose localnet, personally . . . sounds and looks too much like localhost!20:54
keithzgBut you can certainly just set up, for example, a udev rule that specifies an arbitrary name for an adapter.20:56
bananapieok, example name was perhaps bad.21:07
keithzgWell, and the fundamental issue IMHO is that any automatic system isn't likely to know what connection the user would conceptualize it as, necessarily.21:08
keithzgAnd the usage of "eth" for ethernet, "br" for bridge and "wlan" for wireless LAN, then enumerating the connections as eth0, eth1 etc if there are multiples, is probably the best that's reasonable from a fully automatic point of view.21:10
bekksbridges and wlan are ethernet devices too. from that point of view, "eth" as naming scheme would be enough - unless you have devices which arent ethernet.21:11
bananapieIf I setup policy routes with ip ( iproute2), do my packets cross iptables -t nat POSTROUTING table?21:11
keithzgbekks: welllll, technically true, but the system *does* tend to know if it's using wired versus wireless drivers, and if it's a bridge. Thus it can, and on most distros does, automatically name accordingly, which IMHO is a good thing.21:12
bananapieSo, is it a good idea for a sysadmin to rename his/her network cards to be more "user-friendly" ?21:13
keithzgPersonally I name any bridges I create, but leave any wired adapters as just ethX . . . in no small part because there don't tend to be more than two, and usually just one.21:14
bekksbananapie: the best thing would be to work with data links, instead with physical interfaces (which are in fact irrelevant to know).21:14
bananapiedata link = IP right ?21:14
bananapieso work with IPs instead of names like 'eth3' and 'bond0' ?21:15
bekksNope. Data link = "path" of data through you computer, from the physical interface, up to the application working with that data.21:15
bekksIt is not bound to have an IP.21:15
bananapieah ok21:16
bananapieI'm learning iproute2, apparently I've been doing it wrong. I was using ifconfig and route.21:16
bananapieiproute2 commands give output that looks very similar to bsd21:17
keithzgI dunno, as a sysadmin I find the physical interfaces pretty damn important to know on a nearly daily basis, heh. Obviously scenarios may vary (company I work for is very small but tech-intensive, scraping by with cobbled together consumer hardware).21:17
bekkskeithzg: When working with data links, you define them once, and you never have to care about the physical interfaces again.21:18
keithzgbekks: That's working under the assumption that the physical networking hardware isn't failing due to age and a scary, scary electrical system in the building :P21:19
bananapiebekks, what do you use for a firewall? Do you not specify physical links in your iptables commands?21:19
bekkskeithzg: Well, you will know the hardware failed when your data link fails. And the data link will tell you which interface failed. So no need to know that before it gets important. :)21:20
bekksbananapie: I am using iptables, but the concept of datalinks isnt implemented in linux at all ;)21:20
keithzgbekks: Fair enough. Not really sure what help 'data links' would be in my scenario anyways, though. It's not like things don't Just Work as long as the interfaces are up!21:21
mip5gotta cruise21:30
=== jeremy_carroll__ is now known as jeremy_carroll
StolenToastif I want two public keys on my server do I simply add each as one line in authorized_keys?22:39
StolenToastwait it worked, my problem was I didn't specify the login name22:40
=== Lcawte is now known as Lcawte|Away

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!