/srv/irclogs.ubuntu.com/2015/03/28/#ubuntu-server.txt

elnur	So, is eth0 just a logical name? Or is it hardwired?	00:19
sarnold	purely logical	00:20
elnur	I mean, why replace eth0 with a bridge to eth0 if eth0 goes away? Isn't it the same thing then?	00:20
elnur	Or should a bridge be a bridge between several interfaces to make any sense?	00:22
sarnold	probably that -- or maybe with another bridge? -- but perhaps there's use for bringing a vm or container online with a nic but unable to talk qith anything else..	00:24
elnur	I still have the same use case: connecting LXC containers to the outside world.	00:25
elnur	Now I'm just trying to understand why I need a bridge in the first place.	00:26
elnur	Here's the post I tried to follow: http://blog.toxa.de/archives/606	00:26
elnur	But I still couldn't solve the problem.	00:26
elnur	So, what's the point of the bridge he created in that post if it bridges eth0 and nothing else?	00:28
sarnold	elnur: it appears to me that it bridges eth0 in the host with the eth0s in the guests	00:29
elnur	sarnold, oh. Now that makes more sense.	00:29
elnur	Okay. So I left eth0 and added br0 that bridged eth0. Now eth0 lost its IP addresses and br0 got them. What's the reason for this?	00:40
elnur	Okay, I managed to bridge both IPv4 and IPv6.	00:53
elnur	O	00:53
elnur	O	00:53
elnur	I'm making some progress. :)	00:53
elnur	Why would I need to use radvd?	00:54
sarnold	elnur: nice	00:58
=== markthomas is now known as markthomas\|away
elnur	Is enabling forwarding necessary for this to work?	01:11
sarnold	elnur: I suspect it is but haven't tested myself	01:11
elnur	If I enable forwarding, will my host still be accessible by that IP?	01:12
sarnold	it should be, I've turned on enable forwarding on firewalls and been able to log in to the firewall via its IPs	01:12
elnur	Oh yea!	01:24
elnur	Finally made it work! \o/	01:24
elnur	I'm so damn happy now.	01:24
elnur	sarnold, thanks, man. You've been really helpful.	01:24
sarnold	elnur: sweet! I'm glad it's working, but you did most of the leg work. I jjust aimed a few docs your way :)	01:26
elnur	Just noticed I got one little problem though. :)	01:27
elnur	The container itself can't access the Internet.	01:27
sarnold	d'oh :)	01:27
elnur	But at least I can access it from the Internet.	01:28
elnur	That's the main problem I was trying to solve. :)	01:28
* Patrickdk gives everyone frozen yogert		01:28
sarnold	Patrickdk: yay!	01:29
Nyanpo	what the fuck is index.php and do I need it?	01:54
Nyanpo	I was told to delete it	01:54
Nyanpo	it's in var/www	01:54
Nyanpo	deleted it	01:55
Nyanpo	whatever	01:55
elnur	sarnold, solved that problem too. :)	02:49
elnur	Nyanpo, :D	02:49
Nyanpo	ayy	02:50
Nyanpo	I'm going to bed now anyways.	02:50
sarnold	elnur: oh cool, what was the problem with outgoing?	03:17
k2gremlin	sarnold, Im back. Had a great dinner at a Tilted Kilt ;)	03:54
sarnold	that's a good looking burger	03:55
k2gremlin	Sure was tasty :P	03:57
k2gremlin	So I got my VPN to the point were the tun0 interface is listed on ifconfig -a, I setup the configuration on my client laptop and it appears to be correct. But when it goes to connect it just times out	03:59
k2gremlin	Fri Mar 27 21:59:08 2015 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)	03:59
k2gremlin	Fri Mar 27 21:59:08 2015 TLS Error: TLS handshake failed	03:59
k2gremlin	iptables -L should list any and all iptables that are configured correct?	04:03
k2gremlin	sarnold, ?	04:05
sarnold	k2gremlin: might be time to use tcpdump or wireshark to see if you can see a key negotiation	04:08
k2gremlin	sarnold, The key piece of information is that this is my squid3 transparent server as well. WOuld any iptables crap have to be set to allow 1194 in?	04:09
k2gremlin	I tried using iptables -L to list what I am currently using for squid... but it will not display.	04:10
k2gremlin	not sure why	04:10
sarnold	k2gremlin: you'll probably have to let something through..	04:10
sarnold	k2gremlin: did you select the correct tables with -L?	04:10
k2gremlin	"iptables -L" should list everything currently in iptables right? or am I missing something lol	04:10
k2gremlin	trying to list all	04:11
sarnold	sudo iptables -L -t nat lists different things than iptables -L	04:12
k2gremlin	sarnold, there is no way to just list all tables? I only have a few rules applied atm so it's not very long	04:16
sarnold	k2gremlin: iirc only filter and nat are used on most systems	04:17
k2gremlin	sarnold, I have 3 in mangle for proxy ;)	04:18
k2gremlin	sarnold, something isnt sitting good with me.. I start te openvpn service, run "netstat \| grep openvpn" and nothing...	04:24
k2gremlin	anyone else have experiance with OpenVPN?	04:25
sarnold	k2gremlin: here's what I see on my client: http://paste.ubuntu.com/10693184/	04:26
k2gremlin	sec... found the issue... I think.... :P	04:27
k2gremlin	Mar 27 23:24:24 SquidTrans ovpn-server[18022]: Options error: --dh fails with 'dh1024.pem': No such file or directory	04:27
k2gremlin	Mar 27 23:24:24 SquidTrans ovpn-server[18022]: Options error: Please correct these errors.	04:27
k2gremlin	Mar 27 23:24:24 SquidTrans ovpn-server[18022]: Use --help for more information.	04:27
k2gremlin	digging now lol	04:27
k2gremlin	Ohhhhhh so close now :) gotta mess with the home side of the network. Get the config right	04:34
k2gremlin	arrgggggg so freaking close	04:45
k2gremlin	says endpoints must exist within the same 255.255.255.252 subnet.	04:45
k2gremlin	server-bridge 192.168.2.1 255.255.255.0 192.168.2.100 192.168.2.101	04:56
k2gremlin	- this is the line in the server.conf file. 192.168.2.1. is br0 and currently the gateway for my entire home network.	04:56
k2gremlin	sarnold, im baffled. How can I make the endpoints within the same .252 network when I have an entire class C on the back end	05:00
sarnold	k2gremlin: I don't know anything about that spefici restrction.. I suspect you could have your "roaming" profile hand out dhcp in a tiny range though..	05:02
k2gremlin	---------------------------	05:03
k2gremlin	OpenVPN GUI	05:03
k2gremlin	---------------------------	05:03
k2gremlin	Connecting to config has failed.	05:03
k2gremlin	---------------------------	05:03
k2gremlin	OK	05:03
k2gremlin	---------------------------	05:03
k2gremlin	errrrr that didnt paste right lol	05:03
k2gremlin	ill figure it out	05:03
sarnold	k2gremlin: good luck :) I'm off	05:15
k2gremlin	sarnold, later	05:15
k2gremlin	Looking for some guidence http://pastebin.com/ALeniTeX Windows Maching connection to OpenVPN server	05:31
k2gremlin	Anyone?	05:41
bojan	Can anybody solve this problem "I have configured NFS on ubuntu and i can mount the shared partition on the same computer but cant mount in the computer connected in the network...Saying error as :mount.nfs:server access denied while mounting"..But i can see the shared directory in the network computer by the command "sghowmount -e 192.168.2.1"	07:32
=== Lcawte\|Away is now known as Lcawte
=== bilde2910\|away is now known as bilde2910
=== bilde2910\|away is now known as bilde2910
aandy	hi guys. i have a ext4 fs, and a perculiar situation. what are my options if i want to have a copy (mirror) of a file with different permissions. e.g. a root:root rwx------ which should be readable to one other person (not withstanding adding the user to group root)? soft and hard symlinks seems to be a no-go as they point to the same inode, and chmod doesn't attempt to change permissions of symlinks	09:05
aandy	(or am i wrong?). so far, i've only come up with rsync+inotify as a (bloated) solution. i would prefer if i could just do: chown root:root file && chmod 700 file && setfacl -m u:other_user:rwx file, but file is tested by an application and throws errors if the permissions aren't exactly 0700 (which they aren't when acl is set). any ideas? :)	09:05
=== kickinz1 is now known as kickinz1\|afk
lordievader	Good morning.	09:23
aandy	the file rarely changes, so it's not a huge problem, but the solution isn't pretty	09:24
=== zz_DenBeiren is now known as DenBeiren
Blueking	could someone had a look at this http://paste.ubuntu.com/10691975/ net drop out without any notice, 'service networking restart' brings it back online question are 1: are ISP's access gateway having issues? 2: pc hardware 3: pc software error ? pc beeing used as router with ubuntu server + shorewall, supermicro mobo with xeon cpu dual nic onboard intel I210	11:54
Blueking	hadn't touched setup for more than a year before it started dropping net a week ago	11:55
=== martins-afk is now known as martinst
=== vdagli is now known as hephaestus
=== martinst is now known as martins-afk
=== DenBeiren is now known as zz_DenBeiren
=== bilde2910 is now known as bilde2910\|away
xtify	hey guys	16:07
xtify	the ubuntu server community is this dedicated support for ubuntu-server..what exactly do the group provide as far as contributing	16:08
xtify	is this smiliar to fedora's infrastructure community	16:08
elnur	sarnold, I did this: http://blog.toxa.de/archives/613	16:13
pmatulis	xtify: normal people who help if they can. ask a question and see	16:13
xtify	ok what is the best way I can contribut to ubuntu-server	17:00
pmatulis	xtify: documentation perhaps?	17:35
pmatulis	https://wiki.ubuntu.com/DocumentationTeam/SystemDocumentation/UbuntuServerGuide	17:36
=== JanC_ is now known as JanC
=== bilde2910\|away is now known as bilde2910
=== ming is now known as Guest87143
=== zz_DenBeiren is now known as DenBeiren
=== Guest90957 is now known as mfisch
=== bilde2910 is now known as bilde2910\|away
=== Lcawte is now known as Lcawte\|Away

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!