/srv/irclogs.ubuntu.com/2019/07/12/#ubuntu-server.txt

ruben23sarnold: hi there00:16
sarnoldevening ruben2300:17
ruben23sarnold: im so sorry i forgot to take note of teh substitute of apt-get install linux-headers-server in Ubuntu server 18.04 lts, what was that again if you dont mind, really sorry00:18
sarnoldruben23: linux-headers-generic00:22
ruben23;-) Thanks a lotr00:24
sarnoldyou're welcome :)00:27
adol-christinhello i need help05:33
adol-christingetting my domain to work on my ubuntu dedi server05:33
adol-christini played with host names and it kinda kept crashing the server over and over05:44
lordievaderGood morning06:18
lordievaderadol-christin: What kind of domain are you referring to? DNS domain, AD domain?06:18
adol-christindns domain got it from google domains06:19
adol-christinand good morning to you too :)06:19
lordievaderWhat is the actual problem?06:20
adol-christinwell how do i get it to communcate to my dedi server06:20
adol-christincan i show a screen of how i configured it06:20
lordievader!paste06:21
ubottuFor posting multi-line texts into the channel, please use https://paste.ubuntu.com | To post !screenshots use https://imgur.com/ !pastebinit to paste directly from command line | Make sure you give us the URL for your paste - see also the channel topic.06:21
adol-christinhttps://gyazo.com/7af911fd6493e23dbf1c777df89375cd06:21
adol-christinscreen image and i changed stuff on my last ubuntu os on local host but that just constatly crashed the server over and over06:21
adol-christinhttps://www.youtube.com/watch?v=aPqDQX5naHA06:22
adol-christini found this one06:22
adol-christintutorial that is.06:22
adol-christini edited /etc/hosts/06:23
adol-christinand added my domain too it 0.0.0.0 aetherdreams.com and another line with 0.0.0.0 www.aetherdreams.com06:24
adol-christinbut that seemed to crash ubuntu over and over after doing that06:25
adol-christindo u kno why it would do this?06:25
lordievaderBrr, you don't want to do that.06:31
lordievader0.0.0.0 is a representation for the entire network.06:31
adol-christinoh so the youtuber is a retard?06:31
lordievaderThat said, since you are setting up DNS you don't want to be editing your hosts file since it defeats the purpose.06:32
lordievaderYoutube is rarely good for these kind of things.06:32
adol-christinso what do i do to get apache to work with my domain name?06:32
lordievaderYou rather want to read manual pages, rfc's or tutorials of known good sources.06:32
adol-christinknow any links too it?06:33
lordievaderYou first want to fix your DNS setup, currently I get an NXDOMAIN on www.aetherdreams.com.06:33
adol-christinso did u see my screen shot i sent?06:34
lordievaderThen once www.a.c points to the IP address of the server you can tell Apache that its servername www.aetherdreams.com06:34
lordievaderYes06:34
adol-christini watched a youtube vid on google domains i did what they said06:34
adol-christinDo you know what i did wrong?06:35
lordievaderThe description reads 'glue records', this is not what you want. You want to change the regular records.06:36
blackflowadol-christin: you need to stop messing around with public DNS and public servers until you know what you're doing.06:37
adol-christinhttps://gyazo.com/58e99bc995c19a7638f5b1c704f30f6d06:38
lordievader+1 to that, first figure out how things work before diving in.06:38
adol-christinas i said last night ive done with other domain servers and it was piss easy but this one never used it before06:38
lordievaderI.e. read documentation06:38
lordievaderPerhaps even RFCs to figure things out.06:38
adol-christinRFCs?06:38
blackflowadol-christin: no, you don't know what you're doing. please stop messing with  public infrastructure, you'll cause damage to someone.06:39
adol-christinhow can u be sure ill cause damage to someone?06:39
blackflowSet up a VM and do it all on your VM, in your LAN, learn all the things and concepts first.06:40
lotuspsychjeadol-christin: setting up servers needs basic knowledge, you cant just random do things06:40
blackflowadol-christin: becase in 20+ years of my experience I've seen it many times. noob setups getting pwned by bots and starting ddos attacks and other illicit things. open email relays. open dns resolvers....06:40
lotuspsychjeadol-christin: did you read the server manuals we gave you last night?06:41
blackflowSet up a VM and learn things in that first. Folks here will be delighted to help with specific questions about that (after you've read required docs and tried yourself first).06:41
adol-christinno i passed out06:41
adol-christincan u resend it06:41
lotuspsychje!server | start here06:41
ubottustart here: Ubuntu Server Edition is a release of Ubuntu designed especially for server environments, including a server specific !kernel and no !GUI. The install CD contains many server applications. Current !LTS version is !Bionic (Bionic Beaver 18.04) - More info: http://www.ubuntu.com/products/whatisubuntu/serveredition - Guide: https://help.ubuntu.com/lts/serverguide - Support in #ubuntu-server06:41
lotuspsychjeadol-christin: before going to production, try the VM advice blackflow provided06:42
blackflowin addition to this, Digital Ocean has plenty of useful How-To articles on server applications and configurations. Google is your best friend there.06:42
blackflowfor example, like this:  https://www.google.com/search?client=ubuntu&channel=fs&q=how+to+set+up+apache+site%3Adigitalocean.com06:43
adol-christinah i see they gave me the wrong installation of it >_<06:44
adol-christinits not server edition just regular ubuntu for some reason06:45
lordievaderOf what?06:45
lordievaderThat doesn't really matter.06:45
lotuspsychje'they'?06:45
blackflowlordievader: it might if there's no GPU which was suggested yesterday as cause of crashes.06:45
lordievaderThe point is, that you need to learn things (read, try out in isolation, etc) first before putting things into production.06:45
adol-christinwill u help me once i learn?06:46
blackflowSure, if you have specific questions, pertaining to Ubuntu, we're all ears here.06:46
lordievaderLike blackflow said, if you put in the effort we are willing to answer questions, sure.06:47
lotuspsychjeadol-christin: ubuntu server is also a responsible task, at some point you will need to be on your own too06:47
blackflowand you'll need to know how to fix things over ssh only. running rescue environments, mounting your main installation's disks to fix broken boots, that's also important experience for running remote servers.06:49
blackflowwho's "they" btw? which hosting company are you renting that behemoth server from?06:49
huehnerHello, seeing very strange apache2 behavior on bionic (2.4.29-1ubuntu4.7) with latest updates (regression fix for openssl1.1.1)07:43
huehnerapache freshly restarted -> do a run of ssllabs.com/ssltest against it and 2 apache2 processes stuck at 100% apparently indefinitely07:44
huehnerandol: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1836329 -> regression in 4.6 -> 4.7 in LTS :(08:28
ubottuLaunchpad bug 1836329 in apache2 (Ubuntu) "Regression running ssllabs.com/ssltest causes 2 apache process to eat up 100% cpu, easy DoS" [Undecided,New]08:28
andolhuehner: Why me?08:59
huehnerandol: bad fingers on my side (was unintended), sry09:01
andolNo worries.09:09
ruben23hi there guys where do i configure the my.cnf when i used MariaDB10.2 its quite different now from MariaDb5.510:43
ruben23any idea guys.?10:43
mTeKWithout gasoline and a match how would you diagnose a port flap using DAC's in bond to mlagged switches. It starts happening after 8 days after a reboot... I've changed firmware on cards, installed driver as dkms as manufacture says, changed kernels, changed DAC cable manufactures.14:24
mTeKIt's randomly after 8 days happening on 4 servers. These 4 servers are some older supermicro's. I wouldn't think it would be the motherboard or pcie slot issue. The flap is only on one of the DAC's, the other interface seem stable but it's on a different switch.14:25
mTeKI'm thinking next step is to create more mlagged interfaces and move the servers into the new port channels to see if it's the first 4 ports of this switch.14:25
mTeKIf that doesn't solve it should I change OS or nic cards next?14:25
tomreynmaybe increase log verbosity on the module (if available), see if there are power saving options there you can disable14:31
mTeKYour talking about nic power settings and not server governers?14:58
tomreynmTeK: yes, but i really have 0 experience with DAC, should have said so.15:08
tomreynswitching governors might also be worth a try, sure.15:08
mTeKI use them quite a lot and I have the same cards in others servers using the same network config and they are working.15:09
mTeKThere are power settings on the mellanox cards.15:09
mTeKI'm not even sure if the server or the switch side that's dropping15:09
mTeKThe switches are arista and since I didn't buy them new I have no support from them.15:10
tomreynaaw crap. they can do good enough logging though. or port mirroring.15:13
tomreynat least the non entry models15:13
mTeKThey are DCS 7150  so not entry level.15:14
mTeKceph is pretty resiliant as long as the server goes offline, it doesn't like the bouncing ethernets.15:21
mTeKI think there is a timeout command that I can set on the bouncing on the switch. That way once it starts it will hold the port offline till the timer clears.15:22
tomreynmaybe you can do flap detection and fencing near the source instead.15:23
tomreynactually your approach may be better15:23
mTeKWell I think that is how it works...15:33
mTeKHere is a paste of the logs https://pastebin.com/s13dDb6815:39
tewardanyone with an 18.04 machine successfully configured a Bridge on their system with Netplan that lets the system itself have Internet and be reachable, but also allow cintainers such as LXD containers to use the bridge to get DHCP addresses too?17:58
sdezielteward: I think so, let me check if I have something to share17:59
sdezielteward: correction, I'm using a different bridge for the host and separated bridges for my lxd containers. That may still be useful to look at for you though https://paste.ubuntu.com/p/M6wwcMXTkR/18:03
tewardsdeziel: thanks.  running into some headaches with macvlan on LXD by default.  The headache I have is that it's being derp with the containers behind18:03
tewardmaybe because VMware's involved it's eating packets...18:03
tewardmight mess with it later right now I just need to get this damn mail server set up >.<  *uses straight NAT for reasons in the interim*18:04
sdezielteward: macvlan is annoying to deal with18:04
tewardyes, it is18:04
tewardso is VMware promiscuous mode eating packets from the host18:04
sdezielbecause the host needs also a macvlan device if you want it to talk with your containers?18:04
sdeziels/\?$//18:04
tewardi don't need host -> container I just need Network <--> Container18:05
tewardand container is making DHCP requests18:05
tewardbut they're not getting to the virtual firewall;18:05
tewardso IDK what's up there18:05
* teward will mess with that later18:05
sdezielteward: with macvlan, your containers will show up with a new MAC when they get to VMWare so maybe you need to allow this virtual NIC to have more than 1 MAC18:06
tewardnot sure that's doable, but promiscuous mode and accept mac changes is enabled18:06
tewardbut VMware's having a hell of a time with it18:06
tewardso IDK18:06
tewardi'll mess with that in a separate VM later for testing18:06
tewardFOR NOW18:06
tewardI'm just going to straight NAT the container ports to the host18:06
tewardand vice versa18:06
=== markthomas_ is now known as markthomas
lordcirthOk, this is weird. Brand new 18.04 LXC container, from the download template. If I try to start salt-minion, ssh, or postfix, they say "Job for salt-minion.service canceled."19:22
tewardlordcirth: did you check syslog or other logging mechanisms to see why it explodified?  :p19:23
lordcirthteward, still hunting. I rebooted it, and now "systemctl start salt-minion" returns "Failed to connect to bus: No such file or directory"19:23
lordcirthAs does 'status' so it's not salt-specific19:23
tewardwell salt I think there's known problems with19:24
tewardbut i was more curious about ssh and postfix19:24
lordcirthteward, ssh does the same19:24
lordcirthAlso FYI this is the repo.saltstack.com salt19:24
lordcirthAnd I did have a problem earlier where one of my salt states tried to set the timezone, which apparently doesn't work in containers19:25
lordcirthBecause timedatectl doesn't work19:25
lordcirthI'll rebuild the container.19:27
sarnoldthat sounds like super-unhappy dbus19:29
teward^19:29
tewardsarnold: but wouldn't that have a global effect rather than a container-specific problem?19:29
tewardor is it possible there's apparmor isolation going on?19:29
sarnoldrebuilding the container will be a pretty good indicator, I hope19:30
lordcirthI have this exact container setup running elsewhere, so it has to be something changed recently19:31
lordcirthok, I made the container again, ssh was running. Installed salt-minion, accepted key, rebooted19:35
lordcirthssh and salt-minion came up19:35
sarnoldyay! but .. bummer to not Know what the problem was19:35
lordcirthWell, I'm not done applying the states yet.19:36
lordcirthDoing them in parts this time19:36
lordcirthI have a suspicion that linux-generic-hwe-18.04 getting installed in the container is what borked it21:10
sarnoldhmm. any chance you've got a working container, can install that, and break your container?21:11
lordcirthThe kernel package was installed by Salt after container init, so I'm trying now with that package commented21:13
sarnoldaha21:13
lordcirthPreviously all ceph clients were physical, so I forgot that it would install hwe21:14
lordcirthahah, no, that didn't fix it. But commenting out an entry I put in /etc/fstab did21:20
lordcirthSo I bet it's an apparmor profile issue21:21
lordcirthBut I did it in an identical container earlier!21:23
lordcirthOk, I got it to work by setting lxc.mount.entry properly and leaving /etc/fstab empty21:44

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!