/srv/irclogs.ubuntu.com/2018/08/28/#ubuntu-server.txt

=== nOgAnOo_ is now known as noganoo
xaseAnyone have a good document for nameservers with bind? I'm having trouble getting my nameservers set up and resolving... and I'm not sure now what is wrong at this point.05:11
lordievaderGood morning06:01
lordievaderxase: Is bind a must? Else I'd recommend using PowerDNS, much easier to set up.06:01
cpaelzergood morning lordievader06:06
cpaelzerhope your week started well06:06
lordievaderHey cpaelzer06:06
lordievaderIt did, busy but good.06:06
lordievaderHow about you?06:06
cpaelzerlordievader: about the same :-)06:28
lordievaderAny plans for today?06:32
cpaelzerThe days I could have ONE plane for a day are long over :-)06:34
cpaelzerbut for like "now" ppc64el build errors between stdbool/altivec headers06:34
cpaelzerwell I also never had a plane, but I meant "plan" obviously06:35
lordievader😉06:37
=== michal_f is now known as michal_f_2
gartralfejwf09:51
gartralhey all, I had a webapp crash... I logged in and I was getting "out of space errors" I ran a df -h and got back /dev/xvda1      299G  287G     0 100% / where did those 12gb go?!09:51
gartralhello all09:51
gartralI went to use a service I run for myself tonight and it wouldn't load, I ran a df -h and got back /dev/xvda1      299G  287G     0 100% /09:52
gartralwhere sis those 12gb go?!09:52
gartraldid*09:52
lordievaderext filesystems reserve a bit of space for emergency logins.09:53
lordievaderThis can be configured and was per default 5 percent IIRC.09:53
lordievaderThe tool `dumpe2fs` can show these configurations.09:55
gartralthat seems... extreme for so much disk space... especially since it doesn't reserve the space for non-root purposes09:59
gartralsudo tune2fs -m 2 /dev/sdb1 would set it to a reasonable 6gb for a 300gb disk, yes?10:01
mwhudsonyeah it's a default from a different era really10:03
mwhudsonin fact i thought it had changed but maybe not...10:03
gartralApeparently not. >.>10:03
gartralI was not pleased to discover that 300gb had 12gb reserved XD10:04
gartralin the era multi-terrabyte disks... 5% of a disk is an unreasonably large percentage to reserve >.>10:07
gartral1-2% is reasonable.. but still a significant portion to set asie10:08
gartralaside*10:08
ahasenackcpaelzer: hi, how would I best come up with a url that identifies that my patch was merged upstream, given https://github.com/apache/libcloud/commits/trunk shows that my change was rebased on top of master, instead of merged?10:58
ahasenackthe PR link which is closed and says "fix committed"? That's equal to "Forwarded:"10:59
ahasenack(context: dep3 headers)10:59
ahasenackI could construct a url in github that shows the diff on master between two commits perhaps10:59
ahasenackor just not add the applied-upstream header bit10:59
cpaelzerhi ahasenack11:01
ahasenackI think "yes" would suffice for this case, but the dep3 header template says it must be either a url, version, or commit11:02
cpaelzerahasenack: do I understand it correctly that you'D want one (=1) link that you can use as "origin:" for all the commits you had here?11:03
ahasenackcpaelzer: not origin, but "Applied-Upstream"11:03
cpaelzerah ok11:03
cpaelzerI tihnk "yes" will do in this case11:03
cpaelzeryou can add in the description the link you just shared11:04
cpaelzerahasenack: to some extend (but that is opinion) we never should be overzealous on the last bits of interpreting these tags - after all they are meant to make things understandable and to be able to follow the path of a change11:17
ahasenacksure11:17
cpaelzerIMHO if the metadata you add will allow one to find the right spots, then it doesn't matter too much if you write yes/yez/y or similar11:17
cpaelzerI know tools will have to rely on a certain format11:17
cpaelzerbut just saying, I'd want not to spend "too much" on trying to be too accurate11:18
ahasenackjust checking if there was precedence11:22
ahasenackcpaelzer: ok, I made libcloud green (https://bileto.ubuntu.com/excuses/3384/cosmic.html)11:26
ahasenackincluding a few "always failed" cases11:26
ahasenackI know why the i386/armhf ones are failing, but I don't know why they are *not* failing in the other arches11:27
ahasenackit's caused by a change in python-requests: https://github.com/requests/requests/issues/347711:27
ahasenackan old-ish one even11:27
ahasenackI checked versions and i386 and amd64 have the same ones11:27
ahasenackI'll investigate a bit more, but we are already in a better place11:28
cpaelzerthank you ahasenack11:29
cpaelzerfor not giving up!11:29
cpaelzerand the ppc64 build issue fixed (again)11:31
cpaelzerready for lunch ...11:31
ahasenackcpaelzer: https://code.launchpad.net/~ahasenack/ubuntu/+source/libcloud/+git/libcloud/+merge/35385612:15
ahasenackI'm counting on that one unblocking paramiko and strongswan from cosmic-proposed12:15
ahasenackI might have to ask for some sort of in-step migration, though12:15
cpaelzerahasenack: checking the MP now ...12:39
cpaelzerahasenack: #placeholder12:49
cpaelzerdid I miss something why this is needed in your MP?12:49
ahasenackyo don't like it? :)12:49
cpaelzerI might like it once I get what it is about12:49
ahasenackgit-ubuntu build is failing miserably in packages that do not have debian/patches12:50
ahasenackso I'm trying to get used to it12:50
ahasenackI've seen "#placeholder" for d/p/series in some packages that do not have any patches12:50
cpaelzerdidn't consciously see that before, but I see why it is there now12:50
cpaelzergmm12:50
cpaelzerhmm12:50
ahasenackso I started by adding it, when there was no patch12:50
ahasenackand just added patches on top12:50
cpaelzerbut since you now have patches it looks odd from an empty file to12:50
ahasenackbut of course it's not needed12:50
cpaelzer#plaeholder + 2 changes12:51
ahasenackok, I can drop it12:51
ahasenackit's really a g-u bug12:51
ahasenackbut will probably be a long while until it's addressed12:51
cpaelzeryes12:51
cpaelzercan the file be just empty?12:51
ahasenackthat I don't know12:52
ahasenackhaven't seen it12:52
cpaelzerjust like you don't use g-u submit I gave up on g-u build-source12:52
ahasenackhehe12:52
cpaelzerI could not go on day-by-day without the review/backport features12:52
cpaelzerbut it seems the non core features are unrelibale (as we know)12:53
cpaelzerahasenack: once I push the ta after you dropped the placeholder - do you need sponsoring on this?12:53
cpaelzerI see you have a PR for the i386/arm tests12:54
cpaelzernext question: do you want to wait and bundle those once accepted?12:54
cpaelzeror get it fixed soon to unblock migrations?12:55
kstenerudmorning!12:59
sdezielgood morning!13:00
=== Sven_vB_ is now known as Sven_vB
cpaelzerhi sdeziel and kstenerud13:19
cpaelzerahasenack: I see you dropped the #placeholder13:19
cpaelzerahasenack: what about my question on the i386 test fix13:19
cpaelzerdo you want to do all that in one upload?13:19
cpaelzeror get things up to unblock now13:19
cpaelzerand if you want things now, do you need more than tags being pushed?13:20
cpaelzersince it is not imported you don't even need that actually13:20
xaselordievader, I followed a server setup setup for ISPConfig... Will powerDNS drop in as a replacement?13:23
lordievaderErr, no idea. However, PowerDNS is a lot easier to set up than bind.13:24
cpaelzerharr - we are more upstream than upstream on the openvpn service file and that breaks us13:25
xaseIt sounds easier. With a name like powerDNS13:25
cpaelzerandol: kstenerud: their .deb has older .service than their actual git repo - it is a trap if the former works and the latter which we follow doesn't ?13:26
kstenerudahasenack: Do I need to use the web interface for this ipa testing env? What else needs to be set up?13:38
ahasenackthere is a command-line tool, but I used the web interface in the past13:38
ahasenackI think it demands kerberos authentication now. So you would have to install krb5-user on your machine, set it to the example.com realm, and tell it that the kdc is the vm where you installed freeipa13:38
ahasenackthen run "kinit administrator" and get a ticket for the admin user (or kinit admin, I don't remember the exact name)13:39
kstenerudOK, I typed that and it didn't complain. Where would the ticket be?13:40
ahasenackrun klist13:41
kstenerudOK. what does the ticket do?13:42
ahasenackit's an authentication token, valid for X hours. It can allow you access to other kerberized services without having to type in a password again13:42
ahasenackkstenerud: before going further,13:42
ahasenackkstenerud: this setup used your bind9 package with that linker patch, right?13:42
kstenerudI have the ppa version installed13:43
ahasenackkstenerud: ok, so I think you can propose that fix for cosmic13:43
ahasenacksince you just validated it yourself :)13:43
kstenerudby installing it?13:43
ahasenackby completing the freeipa installation13:43
kstenerudoh right :)13:44
ahasenackyou can further check /var/log/syslog to see if there are bind9 crashes in there13:44
ahasenacknamed-pkcs11 iirc is the binary name13:44
kstenerudyeah no crashes13:45
ahasenackso, MP it away13:48
ahasenackwe can still upload fixes13:48
ahasenackbut after a while, even those need an exception13:48
ahasenackkeep an eye on the calendar: https://wiki.ubuntu.com/CosmicCuttlefish/ReleaseSchedule13:49
=== xase_ is now known as Guest42923
=== Guest42923 is now known as Xase
kstenerudahasenack: I'm getting weird behavior with uvt-simplestreams-libvirt. When I sync a release, the command returns with no error, but the image doesn't actually download16:32
ahasenackkstenerud: does it delete the images you already had in the query command?16:48
ahasenackkstenerud: you have been having weird behavior with that tool since the beginning, something is going on16:48
ahasenackmaybe purge everything and start over (libvirt, uvt)16:48
ahasenackcpaelzer: after the libcloud upload, paramiko and strongswan migrated right away \o/16:52
ahasenackand look at that green wave: http://autopkgtest.ubuntu.com/packages/libcloud16:52
ahasenackit's just starting16:52
DammitJimAny recommended cluster (distributed) file servers on ubuntu?17:52
ahasenack"Windows, i.e., NetBIOS, name resolution is on Linux provided for by the "winbindd" daemon" uhh?18:06
ahasenack"One does not need either of the other two Samba daemons "smbd" and "nmbd" when NetBIOS name resolution is all you need"18:07
* ahasenack wonders what he things nmbd does18:07
RandomTechHello, Would anyone here be able to answer a question i have about ceph?18:20
dpb1best just to ask the question, RandomTech :)18:22
RandomTechI was just wondering if it is still recomended to have my journal on a seperate ssd (I have 2 3TB HHD and 1 250GB SSD) and if so how should i calculate the space needed18:27
RandomTechFor ceph of course18:27
kstenerudcpaelzer: Can you help me with a virtual bridge problem?18:54
=== arka500_ is now known as arka500
RoyK!ask | kstenerud19:02
ubottukstenerud: Please don't ask to ask a question, simply ask the question (all on ONE line and in the channel, so that others can read and follow it easily). If anyone knows the answer they will most likely reply. :-) See also !patience19:02
cpaelzerkstenerud: virtual bridge problem with <detail> ?19:39
cpaelzerahasenack: libcloud -> paramiko -> strongswan and co - \o/19:40
ahasenackyeah, that was nice19:41
kstenerudcpaelzer: It was the virtual bridge you'd helped me set up yesterday. For some reason now when I try to uvt-kvm create with the template, it fails:19:41
ahasenackand quick19:41
ksteneruduvt-kvm: error: libvirt: Cannot get interface MTU on 'br0': No such device19:41
kstenerudSomething's changed on my system because it used to work until a few hours ago19:42
kstenerudand I can't for the life of me figure out what19:42
cpaelzerhmm19:42
cpaelzerone moment19:42
kstenerudvirsh net-list shows br019:43
kstenerudactive19:43
cpaelzerdoes it exist with brctl show ?19:43
cpaelzerand ifconfig br0 is the device there19:44
cpaelzeror did lxd take it away for some reason?19:44
kstenerudhmm nope none of that19:44
cpaelzerkstenerud: so it doesn't exist with brctl show ?19:44
kstenerudcorrect19:44
cpaelzerarr19:44
cpaelzerwhat does lxc profile edit default tell you19:44
cpaelzerwhat is the bridge19:44
cpaelzerto be used in lxd19:45
cpaelzer?19:45
kstenerudit shows eth0 bridged to br019:45
kstenerud    name: eth019:45
cpaelzerhmm, maybe it is rather dynamic19:45
kstenerud    nictype: bridged19:45
kstenerud    parent: br019:45
cpaelzerare any lxd containers up that would use the bridge?19:45
cpaelzerif not it might have removed the bridge19:46
kstenerudnope. no containers19:46
cpaelzeryeah , there you go19:46
cpaelzerwe created a frankenbridge intentionally19:46
cpaelzeryou need to have once19:46
cpaelzerone container most likely to ahve it existing19:46
cpaelzersorry for the typos19:46
cpaelzercheck my telegram pic for the reason19:47
cpaelzer:-)19:47
kstenerudlol19:47
kstenerudOK so basically as soon as I do the net-define thing I need to create some minimal container to use it?19:47
cpaelzeryeah, and never remove the last container or the bridge will go away19:48
cpaelzeryou could follow the netplan.io example I linked19:48
cpaelzerto create a fully separate bridge19:48
cpaelzeryou'd need to make sure there is some dhcp server on it external or no19:48
cpaelzernot19:48
cpaelzerbut then the lifecycle of that bridge would neither depend on libvirt nor lxd19:48
cpaelzerkstenerud: I'd leave for today, is that enough to get it working?19:49
kstenerudso if I did a full on netplan bridge, that would do it?19:49
kstenerudI think so19:50
cpaelzeryeah that bridge would exist all the time19:50
cpaelzerjust as I said, someone should provide dhcp on it19:50
cpaelzerbut that might as well be your router or whatever is on the bridged ethdev#19:50
kstenerudcpaelzer: This is all going to be local to the VM I'm running this whole shebang on19:52
kstenerudI'm doing a cloud-side version of this tester setup19:53
ahasenackI just use the libvirt-created bridge19:53
ahasenackvirbr019:53
ahasenackthat's where I 'hang' my vms19:53
cpaelzerfine for me if that is what you want19:53
kstenerudbut can lxd and vms talk to each other on virbr0?19:53
ahasenackI hang containers in another bridge, the one created by lxc init19:53
ahasenackthey get another network19:54
_KaszpiR_should be doable19:54
ahasenackbut can talk to each other just fine19:54
ahasenackjust not dns, usually19:54
ahasenackthe host routes19:54
cpaelzerahasenack: he had it on the one by lxc init19:54
ahasenackdns got messy after systemd-resolved19:54
cpaelzerhe jsut ran into that bridge being removed when the last container goes away19:54
ahasenackI had it working so nicely in xenial, with the containers resolveable by name automatically19:54
cpaelzerkstenerud: being on the same bridge with an IP of the same subnet will work19:55
cpaelzerit really behaves like a switch most of the time :-)19:55
kstenerudcool :)20:02
* jhebden is back from [afk] - 426524h:56m:12s away20:56
mason48 years?21:05
jhebdenthink about it for a sec, it was a very magical time for *NIX21:08
masonAh, yes.21:25
* RoyK guesses a raspberry pi with no rtc or ntp21:30
madLyfeis NFS installed by default on sever?21:30
RoyKthe kernel modules, yes, but you need nfs-common to use it21:31
RoyK(iirc)21:31
madLyfeso here is my situation. i setup(partially, not fully configured to my liking yet) samba on ubuntu server to share a zfs mirror array to my network. i have mapped that share on win 10 as a drive and now im getting my ubuntu desktop setup. im not sure if i should use NFS or just use the the samba share?21:34
RoyKshould work if the smb share is mounted21:34
RoyKjust install nfs-common first and configure /etc/exports - exportfs -a and test it21:35
sarnoldjhebden: just wait until you see what's been done with unix, you'll /away again in a real hurry..21:36
RoyKsarnold: ?21:36
madLyfewhat do you mean should work if the smb share is mounted?21:37
sarnoldRoyK: I suspect polkit could make anyone cry..21:37
jhebdensarnold: I'm just now reading about javascript and am digging a bunker brb21:37
sarnoldjhebden: lol21:37
* RoyK installs windows 95 on sarnold's machine21:37
sdezielmadLyfe: ubuntu can mount smb/cifs shares just fine21:37
sarnoldRoyK: hehe, in 1995 that actually seemed pretty neat. :)21:38
RoyKfor a short while21:38
madLyfeya im just asking if i should stick with the smb share i have setup or setup NFS as well? transition to only using NFS for nix and win both?21:38
sarnoldRoyK: I mean, I had plug-n-play with linux earlier, and 32 bit protected mode, and better screensavers, and web browser, and web servers, and so on.21:38
sarnoldRoyK: but as far as windows went it was neat ;)21:38
RoyKon windoze it was plug-n-pray, remember?21:38
sdezielmadLyfe: I'd stick with samba if you have it working already.. unless you want to learn nfs21:40
sdezielmadLyfe: I don't know how well win10 supports nfs mounts21:40
madLyfei will just do that for now. do they play well running together?21:40
RoyKwindows has supported nfs since nt 3.51 or something, but it has always sucked - don't use nfs with windows21:41
madLyfeis it possible to make the share act like a drive? and auto mounted?21:42
RoyK!autofs21:43
ubottuAutomount is the modern way to mount directories over a network. It is much easier to manage and  more economic in bandwidth than static mounts via fstab. For more info - https://help.ubuntu.com/community/Autofs21:43
madLyfewell do i need cifs-util?21:43
RoyKto mount cifs, yes21:43
sarnoldyeah I tried NFS on windows. do not recommend. stick to smb/cifs stuff for windows.21:44
madLyfebut since this is a samaba server hosted by ubuntu server i dont need that?21:45
sdezielmadLyfe: this is needed client-side only21:45
madLyfethe autofs is only needed you mean, sdeziel?21:45
sdezielmadLyfe: no I meant cifs-utils21:46
RoyKcifs-utils is the client side to mount cifs, samba is the server-side. autofs is the client thing to automount things21:46
madLyfeso the samba server is using cifs standard?21:50
RoyKsamba is using SMB3, also called CIFS21:50
RoyKthe worst name of a network filesystem ever - "common internet filesystem"21:51
madLyfeok cuz i read that cifs was IMB or MS? implementation of the samaba protocol?21:51
RoyKand SMB really sucks over a slow link21:51
madLyfei have cat521:51
madLyfeso i need the cifs-utils and the autofs?21:52
RoyKmadLyfe: cat5 can be used for a lot of things, including strangling people - the question is the data rate of your network21:52
sarnold(don't strangle people)21:52
RoyKIIRC cat5 can be used for gigabit up to 50m or so, cat5e up to 100m, cat6 can do 10Gbps over 50m, cat6a 10Gbps over 100m21:53
madLyfeso what is the difference between just right clicking and adding the share to the file manager(nautilus or dolphin) and do the cifs-utils/auto mount?21:54
madLyfe*crickets* :P22:05
tomreynthe former does, i think, not automount. the formeruses udisks2 to make it happen.22:07
madLyfedid you mean the latter on the last part of your statement?22:08
sarnoldyou may not get great results asking desktop tools questions in a server channel, hehe22:08
madLyfetrue22:08
sarnoldI've never seen nautilus or dolphin, can't tell you what they do :)22:08
* tomreyn was referring to the graphical file manager in both cases22:09
madLyfeoh ok. checks out. :P22:10
madLyfei know the system has a GUI settings area to auto mount things like the internal drive.22:11
madLyfeso is that what i need the cidfs-utils for? to make the samba share 'look' like a drive?22:12
madLyfeso if im going to mount the network share, 'sudo mkdir /media/servershare' is their example, how do you make the dir a drive and not a dir on the OS drive?22:22
madLyfei obv dont understand fully how that works but im just trying to formulate the question as best i can.22:23
sarnoldthe only way to access files on linux is to mount the drive into the filesystem.22:23
naccsarnold: i think you're confusing yourself about filesystems and disks22:25
madLyfeso like all my internal drives are already auto mounted and are listed under devices. i right clicked and added the network share under places called 'kinghat-server': https://usercontent.irccloud-cdn.com/file/1SqiE56E/image.png22:25
sarnoldnacc: unlikely. :D22:25
madLyfemy goal is to make the share show up like a disk under devices.22:25
naccsarnold: bah, sorry, meant madLyfe!22:25
sarnoldnacc: I'm doing my best to respond to madLyfe's questions .. hehe.22:25
naccand had already started typing your nick about something previously :)22:26
sarnoldaha! :D22:26
* nacc goes back to other things22:26
madLyfeis there a proper place in root where i should be making the dir at?22:29
Xaselordievader, you're familiar with PDNS, did you get a failure on your first startup? and if so how did you fix it?22:30
XaseThe error is very vague.22:30
sarnoldXase: what's the error?22:30
Xase  Process: 10232 ExecStart=/usr/sbin/pdns_server --guardian=no --daemon=no --disable-syslog --log-timestamp=no --write-pid=no (code=exited, status=122:31
XaseOh something else22:31
XaseUnit start.service could not be found.22:31
sarnoldXase: that feels likely to be a misuse of the systemctl command22:33
sarnoldwhat exactly did you type to get that error?22:34
Xaseservice pdns.service start22:34
Xaseerr service pdns start22:34
Xasenot .service22:34
sarnoldtry systemctl start pdns22:34
XaseSame... reading journalctl gave me a better error.22:36
XaseHold while I pastebin it.22:36
madLyfeooooo https://usercontent.irccloud-cdn.com/file/DnEyLZmU/image.png22:37
Xasehttps://pastebin.com/puLf9yK1 sarnold22:37
XaseI stopped bind before starting it...22:37
XaseDisable bind from starting and reboot server?22:38
sarnoldXase: okay, something is already trying to do dns. what's binding that port? you can check with netstat -ulnp | grep :5322:38
sarnoldmadLyfe: what tool is that?22:39
Xaseudp    21504      0 127.0.0.53:53           0.0.0.0:*                           802/systemd-resolve22:39
sarnoldaha22:39
madLyfeyou mean that is displaying that info?22:39
sarnoldmadLyfe: yeah22:40
madLyfedolphin file manager if thats what you mean: https://usercontent.irccloud-cdn.com/file/FWpFzG9C/image.png22:40
sarnoldXase: try systemctl mask systemd-resolved.service22:41
sarnoldaha :) so that's dophin..22:41
XaseCreated symlink /etc/systemd/system/systemd-resolved.service → /dev/null.22:42
XaseShould I reboot my server or stop resolved?22:42
Xasealso should I mask Bind9 so it doesn't interfere? I don't want to remove it, incase pdns doesn't work out.22:43
sarnoldXase: that's prolbably a good idea22:43
XaseBut that systemd-resolved might've been stopping bind from working too right?22:43
sarnoldI don't understand exactly when a disabled service would be re-enabled but I understand some standard action does that... but I don't think any automatic tool will undo the 'masking' operation22:44
sarnoldyes22:44
Xasealright this time, no errors starting pdns.22:45
XaseSweet. On the right track.22:46
Xasesarnold, thanks :)22:47
sarnoldXase: all sorted? woo22:48
XaseSeems to be... now I just need to figure out how to configure powerdns :D22:49
XaseGood lord -_-22:59
madLyfewell since adding the fstab entry my computer no longer shuts down. it shuts down and then turns right back on. lol23:03
madLyfeits a dual boot machine and windows shuts down fine23:04
madLyfehmm its like it got confused and mixed suspend and shutdown..23:15
madLyfeanyways, not server related.23:15
madLyfethanks for the help guys!23:15
XaseI have another small issue after setting up PowerDNS via a tutorial for ubuntu.23:57
XaseWhen I dig @localhost. the status is SERVFAIL and it says (2 servers found)23:57
sarnoldcan you pastebin the whole thinig?23:58
XaseOf course sarnold23:59

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!