[00:19] <elnur> So, is eth0 just a logical name? Or is it hardwired?
[00:20] <sarnold> purely logical
[00:20] <elnur> I mean, why replace eth0 with a bridge to eth0 if eth0 goes away? Isn't it the same thing then?
[00:22] <elnur> Or should a bridge be a bridge between several interfaces to make any sense?
[00:24] <sarnold> probably that -- or maybe with another bridge? -- but perhaps there's use for bringing a vm or container online with a nic but unable to talk qith anything else..
[00:25] <elnur> I still have the same use case: connecting LXC containers to the outside world.
[00:26] <elnur> Now I'm just trying to understand why I need a bridge in the first place.
[00:26] <elnur> Here's the post I tried to follow: http://blog.toxa.de/archives/606
[00:26] <elnur> But I still couldn't solve the problem.
[00:28] <elnur> So, what's the point of the bridge he created in that post if it bridges eth0 and nothing else?
[00:29] <sarnold> elnur: it appears to me that it bridges eth0 in the host with the eth0s in the guests
[00:29] <elnur> sarnold, oh. Now that makes more sense.
[00:40] <elnur> Okay. So I left eth0 and added br0 that bridged eth0. Now eth0 lost its IP addresses and br0 got them. What's the reason for this?
[00:53] <elnur> Okay, I managed to bridge both IPv4 and IPv6.
[00:53] <elnur> O
[00:53] <elnur> O
[00:53] <elnur> I'm making some progress. :)
[00:54] <elnur> Why would I need to use radvd?
[00:58] <sarnold> elnur: nice
=== markthomas is now known as markthomas|away
[01:11] <elnur> Is enabling forwarding necessary for this to work?
[01:11] <sarnold> elnur: I suspect it is but haven't tested myself
[01:12] <elnur> If I enable forwarding, will my host still be accessible by that IP?
[01:12] <sarnold> it should be, I've turned on enable forwarding on firewalls and been able to log in to the firewall via its IPs
[01:24] <elnur> Oh yea!
[01:24] <elnur> Finally made it work! \o/
[01:24] <elnur> I'm so damn happy now.
[01:24] <elnur> sarnold, thanks, man. You've been really helpful.
[01:26] <sarnold> elnur: sweet! I'm glad it's working, but you did most of the leg work. I jjust aimed a few docs your way :)
[01:27] <elnur> Just noticed I got one little problem though. :)
[01:27] <elnur> The container itself can't access the Internet.
[01:27] <sarnold> d'oh :)
[01:28] <elnur> But at least I can access it from the Internet.
[01:28] <elnur> That's the main problem I was trying to solve. :)
[01:28]  * Patrickdk gives everyone frozen yogert
[01:29] <sarnold> Patrickdk: yay!
[01:54] <Nyanpo> what the fuck is index.php and do I need it?
[01:54] <Nyanpo> I was told to delete it
[01:54] <Nyanpo> it's in var/www
[01:55] <Nyanpo> deleted it
[01:55] <Nyanpo> whatever
[02:49] <elnur> sarnold, solved that problem too. :)
[02:49] <elnur> Nyanpo, :D
[02:50] <Nyanpo> ayy
[02:50] <Nyanpo> I'm going to bed now anyways.
[03:17] <sarnold> elnur: oh cool, what was the problem with outgoing?
[03:54] <k2gremlin> sarnold, Im back. Had a great dinner at a Tilted Kilt ;)
[03:55] <sarnold> that's a good looking burger
[03:57] <k2gremlin> Sure was tasty :P
[03:59] <k2gremlin> So I got my VPN to the point were the tun0 interface is listed on ifconfig -a, I setup the configuration on my client laptop and it appears to be correct. But when it goes to connect it just times out
[03:59] <k2gremlin> Fri Mar 27 21:59:08 2015 TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
[03:59] <k2gremlin> Fri Mar 27 21:59:08 2015 TLS Error: TLS handshake failed
[04:03] <k2gremlin> iptables -L should list any and all iptables that are configured correct?
[04:05] <k2gremlin> sarnold, ?
[04:08] <sarnold> k2gremlin: might be time to use tcpdump or wireshark to see if you can see a key negotiation
[04:09] <k2gremlin> sarnold, The key piece of information is that this is my squid3 transparent server as well. WOuld any iptables crap have to be set to allow 1194 in?
[04:10] <k2gremlin> I tried using iptables -L to list what I am currently using for squid... but it will not display.
[04:10] <k2gremlin> not sure why
[04:10] <sarnold> k2gremlin: you'll probably have to let something through..
[04:10] <sarnold> k2gremlin: did you select the correct tables with -L?
[04:10] <k2gremlin> "iptables -L" should list everything currently in iptables right? or am I missing something lol
[04:11] <k2gremlin> trying to list all
[04:12] <sarnold> sudo iptables -L -t nat  lists different things than iptables -L
[04:16] <k2gremlin> sarnold, there is no way to just list all tables? I only have a few rules applied atm so it's not very long
[04:17] <sarnold> k2gremlin: iirc only filter and nat are used on most systems
[04:18] <k2gremlin> sarnold, I have 3 in mangle for proxy ;)
[04:24] <k2gremlin> sarnold, something isnt sitting good with me.. I start te openvpn service, run "netstat | grep openvpn" and nothing...
[04:25] <k2gremlin> anyone else have experiance with OpenVPN?
[04:26] <sarnold> k2gremlin: here's what I see on my client: http://paste.ubuntu.com/10693184/
[04:27] <k2gremlin> sec... found the issue... I think.... :P
[04:27] <k2gremlin> Mar 27 23:24:24 SquidTrans ovpn-server[18022]: Options error: --dh fails with 'dh1024.pem': No such file or directory
[04:27] <k2gremlin> Mar 27 23:24:24 SquidTrans ovpn-server[18022]: Options error: Please correct these errors.
[04:27] <k2gremlin> Mar 27 23:24:24 SquidTrans ovpn-server[18022]: Use --help for more information.
[04:27] <k2gremlin> digging now lol
[04:34] <k2gremlin> Ohhhhhh so close now :) gotta mess with the home side of the network. Get the config right
[04:45] <k2gremlin> arrgggggg so freaking close
[04:45] <k2gremlin> says endpoints must exist within the same 255.255.255.252 subnet.
[04:56] <k2gremlin> server-bridge 192.168.2.1 255.255.255.0 192.168.2.100 192.168.2.101
[04:56] <k2gremlin>     -   this is the line in the server.conf file. 192.168.2.1. is br0 and currently the gateway for my entire home network.
[05:00] <k2gremlin> sarnold, im baffled. How can I make the endpoints within the same .252 network when I have an entire class C on the back end
[05:02] <sarnold> k2gremlin: I don't know anything about that spefici restrction.. I suspect you could have your "roaming" profile hand out dhcp in a tiny range though..
[05:03] <k2gremlin> ---------------------------
[05:03] <k2gremlin> OpenVPN GUI
[05:03] <k2gremlin> ---------------------------
[05:03] <k2gremlin> Connecting to config has failed.
[05:03] <k2gremlin> ---------------------------
[05:03] <k2gremlin> OK
[05:03] <k2gremlin> ---------------------------
[05:03] <k2gremlin> errrrr that didnt paste right lol
[05:03] <k2gremlin> ill figure it out
[05:15] <sarnold> k2gremlin: good luck :) I'm off
[05:15] <k2gremlin> sarnold, later
[05:31] <k2gremlin> Looking for some guidence http://pastebin.com/ALeniTeX  Windows Maching connection to OpenVPN server
[05:41] <k2gremlin> Anyone?
[07:32] <bojan> Can anybody solve this problem "I have configured NFS on ubuntu and i can mount the shared partition on the same computer but cant mount in the computer connected in the network...Saying error as :mount.nfs:server access denied while mounting"..But i can see the shared directory in the network computer by the command "sghowmount -e 192.168.2.1"
=== Lcawte|Away is now known as Lcawte
=== bilde2910|away is now known as bilde2910
=== bilde2910|away is now known as bilde2910
[09:05] <aandy> hi guys. i have a ext4 fs, and a perculiar situation. what are my options if i want to have a copy (mirror) of a file with different permissions. e.g. a root:root rwx------ which should be readable to one other person (not withstanding adding the user to group root)? soft and hard symlinks seems to be a no-go as they point to the same inode, and chmod doesn't attempt to change permissions of symlinks
[09:05] <aandy> (or am i wrong?). so far, i've only come up with rsync+inotify as a (bloated) solution. i would prefer if i could just do: chown root:root file && chmod 700 file && setfacl -m u:other_user:rwx file, but file is tested by an application and throws errors if the permissions aren't exactly 0700 (which they aren't when acl is set). any ideas? :)
=== kickinz1 is now known as kickinz1|afk
[09:23] <lordievader> Good morning.
[09:24] <aandy> the file rarely changes, so it's not a huge problem, but the solution isn't pretty
=== zz_DenBeiren is now known as DenBeiren
[11:54] <Blueking> could someone had a look at this  http://paste.ubuntu.com/10691975/    net drop out without any notice,  'service networking restart' brings it back online   question are 1: are ISP's access gateway having issues?  2: pc hardware 3: pc software error ?   pc beeing used as router with ubuntu server + shorewall, supermicro mobo with xeon cpu dual nic onboard intel I210
[11:55] <Blueking> hadn't touched setup for more than a year before it started dropping net a week ago
=== martins-afk is now known as martinst
=== vdagli is now known as hephaestus
=== martinst is now known as martins-afk
=== DenBeiren is now known as zz_DenBeiren
=== bilde2910 is now known as bilde2910|away
[16:07] <xtify> hey guys
[16:08] <xtify> the ubuntu server community is this dedicated support for ubuntu-server..what exactly do the group provide as far as contributing
[16:08] <xtify> is this smiliar to fedora's infrastructure community
[16:13] <elnur> sarnold, I did this: http://blog.toxa.de/archives/613
[16:13] <pmatulis> xtify: normal people who help if they can.  ask a question and see
[17:00] <xtify> ok what is the best way I can contribut to ubuntu-server
[17:35] <pmatulis> xtify: documentation perhaps?
[17:36] <pmatulis> https://wiki.ubuntu.com/DocumentationTeam/SystemDocumentation/UbuntuServerGuide
=== JanC_ is now known as JanC
=== bilde2910|away is now known as bilde2910
=== ming is now known as Guest87143
=== zz_DenBeiren is now known as DenBeiren
=== Guest90957 is now known as mfisch
=== bilde2910 is now known as bilde2910|away
=== Lcawte is now known as Lcawte|Away