[00:16] <ruben23> sarnold: hi there
[00:17] <sarnold> evening ruben23
[00:18] <ruben23> sarnold: im so sorry i forgot to take note of teh substitute of apt-get install linux-headers-server in Ubuntu server 18.04 lts, what was that again if you dont mind, really sorry
[00:22] <sarnold> ruben23: linux-headers-generic
[00:24] <ruben23> ;-) Thanks a lotr
[00:27] <sarnold> you're welcome :)
[05:33] <adol-christin> hello i need help
[05:33] <adol-christin> getting my domain to work on my ubuntu dedi server
[05:44] <adol-christin> i played with host names and it kinda kept crashing the server over and over
[06:18] <lordievader> Good morning
[06:18] <lordievader> adol-christin: What kind of domain are you referring to? DNS domain, AD domain?
[06:19] <adol-christin> dns domain got it from google domains
[06:19] <adol-christin> and good morning to you too :)
[06:20] <lordievader> What is the actual problem?
[06:20] <adol-christin> well how do i get it to communcate to my dedi server
[06:20] <adol-christin> can i show a screen of how i configured it
[06:21] <lordievader> !paste
[06:21] <adol-christin> https://gyazo.com/7af911fd6493e23dbf1c777df89375cd
[06:21] <adol-christin> screen image and i changed stuff on my last ubuntu os on local host but that just constatly crashed the server over and over
[06:22] <adol-christin> https://www.youtube.com/watch?v=aPqDQX5naHA
[06:22] <adol-christin> i found this one
[06:22] <adol-christin> tutorial that is.
[06:23] <adol-christin> i edited /etc/hosts/
[06:24] <adol-christin> and added my domain too it 0.0.0.0 aetherdreams.com and another line with 0.0.0.0 www.aetherdreams.com
[06:25] <adol-christin> but that seemed to crash ubuntu over and over after doing that
[06:25] <adol-christin> do u kno why it would do this?
[06:31] <lordievader> Brr, you don't want to do that.
[06:31] <lordievader> 0.0.0.0 is a representation for the entire network.
[06:31] <adol-christin> oh so the youtuber is a retard?
[06:32] <lordievader> That said, since you are setting up DNS you don't want to be editing your hosts file since it defeats the purpose.
[06:32] <lordievader> Youtube is rarely good for these kind of things.
[06:32] <adol-christin> so what do i do to get apache to work with my domain name?
[06:32] <lordievader> You rather want to read manual pages, rfc's or tutorials of known good sources.
[06:33] <adol-christin> know any links too it?
[06:33] <lordievader> You first want to fix your DNS setup, currently I get an NXDOMAIN on www.aetherdreams.com.
[06:34] <adol-christin> so did u see my screen shot i sent?
[06:34] <lordievader> Then once www.a.c points to the IP address of the server you can tell Apache that its servername www.aetherdreams.com
[06:34] <lordievader> Yes
[06:34] <adol-christin> i watched a youtube vid on google domains i did what they said
[06:35] <adol-christin> Do you know what i did wrong?
[06:36] <lordievader> The description reads 'glue records', this is not what you want. You want to change the regular records.
[06:37] <blackflow> adol-christin: you need to stop messing around with public DNS and public servers until you know what you're doing.
[06:38] <adol-christin> https://gyazo.com/58e99bc995c19a7638f5b1c704f30f6d
[06:38] <lordievader> +1 to that, first figure out how things work before diving in.
[06:38] <adol-christin> as i said last night ive done with other domain servers and it was piss easy but this one never used it before
[06:38] <lordievader> I.e. read documentation
[06:38] <lordievader> Perhaps even RFCs to figure things out.
[06:38] <adol-christin> RFCs?
[06:39] <blackflow> adol-christin: no, you don't know what you're doing. please stop messing with  public infrastructure, you'll cause damage to someone.
[06:39] <adol-christin> how can u be sure ill cause damage to someone?
[06:40] <blackflow> Set up a VM and do it all on your VM, in your LAN, learn all the things and concepts first.
[06:40] <lotuspsychje> adol-christin: setting up servers needs basic knowledge, you cant just random do things
[06:40] <blackflow> adol-christin: becase in 20+ years of my experience I've seen it many times. noob setups getting pwned by bots and starting ddos attacks and other illicit things. open email relays. open dns resolvers....
[06:41] <lotuspsychje> adol-christin: did you read the server manuals we gave you last night?
[06:41] <blackflow> Set up a VM and learn things in that first. Folks here will be delighted to help with specific questions about that (after you've read required docs and tried yourself first).
[06:41] <adol-christin> no i passed out
[06:41] <adol-christin> can u resend it
[06:41] <lotuspsychje> !server | start here
[06:42] <lotuspsychje> adol-christin: before going to production, try the VM advice blackflow provided
[06:42] <blackflow> in addition to this, Digital Ocean has plenty of useful How-To articles on server applications and configurations. Google is your best friend there.
[06:43] <blackflow> for example, like this:  https://www.google.com/search?client=ubuntu&channel=fs&q=how+to+set+up+apache+site%3Adigitalocean.com
[06:44] <adol-christin> ah i see they gave me the wrong installation of it >_<
[06:45] <adol-christin> its not server edition just regular ubuntu for some reason
[06:45] <lordievader> Of what?
[06:45] <lordievader> That doesn't really matter.
[06:45] <lotuspsychje> 'they'?
[06:45] <blackflow> lordievader: it might if there's no GPU which was suggested yesterday as cause of crashes.
[06:45] <lordievader> The point is, that you need to learn things (read, try out in isolation, etc) first before putting things into production.
[06:46] <adol-christin> will u help me once i learn?
[06:46] <blackflow> Sure, if you have specific questions, pertaining to Ubuntu, we're all ears here.
[06:47] <lordievader> Like blackflow said, if you put in the effort we are willing to answer questions, sure.
[06:47] <lotuspsychje> adol-christin: ubuntu server is also a responsible task, at some point you will need to be on your own too
[06:49] <blackflow> and you'll need to know how to fix things over ssh only. running rescue environments, mounting your main installation's disks to fix broken boots, that's also important experience for running remote servers.
[06:49] <blackflow> who's "they" btw? which hosting company are you renting that behemoth server from?
[07:43] <huehner> Hello, seeing very strange apache2 behavior on bionic (2.4.29-1ubuntu4.7) with latest updates (regression fix for openssl1.1.1)
[07:44] <huehner> apache freshly restarted -> do a run of ssllabs.com/ssltest against it and 2 apache2 processes stuck at 100% apparently indefinitely
[08:28] <huehner> andol: https://bugs.launchpad.net/ubuntu/+source/apache2/+bug/1836329 -> regression in 4.6 -> 4.7 in LTS :(
[08:59] <andol> huehner: Why me?
[09:01] <huehner> andol: bad fingers on my side (was unintended), sry
[09:09] <andol> No worries.
[10:43] <ruben23> hi there guys where do i configure the my.cnf when i used MariaDB10.2 its quite different now from MariaDb5.5
[10:43] <ruben23> any idea guys.?
[14:24] <mTeK> Without gasoline and a match how would you diagnose a port flap using DAC's in bond to mlagged switches. It starts happening after 8 days after a reboot... I've changed firmware on cards, installed driver as dkms as manufacture says, changed kernels, changed DAC cable manufactures.
[14:25] <mTeK> It's randomly after 8 days happening on 4 servers. These 4 servers are some older supermicro's. I wouldn't think it would be the motherboard or pcie slot issue. The flap is only on one of the DAC's, the other interface seem stable but it's on a different switch.
[14:25] <mTeK> I'm thinking next step is to create more mlagged interfaces and move the servers into the new port channels to see if it's the first 4 ports of this switch.
[14:25] <mTeK> If that doesn't solve it should I change OS or nic cards next?
[14:31] <tomreyn> maybe increase log verbosity on the module (if available), see if there are power saving options there you can disable
[14:58] <mTeK> Your talking about nic power settings and not server governers?
[15:08] <tomreyn> mTeK: yes, but i really have 0 experience with DAC, should have said so.
[15:08] <tomreyn> switching governors might also be worth a try, sure.
[15:09] <mTeK> I use them quite a lot and I have the same cards in others servers using the same network config and they are working.
[15:09] <mTeK> There are power settings on the mellanox cards.
[15:09] <mTeK> I'm not even sure if the server or the switch side that's dropping
[15:10] <mTeK> The switches are arista and since I didn't buy them new I have no support from them.
[15:13] <tomreyn> aaw crap. they can do good enough logging though. or port mirroring.
[15:13] <tomreyn> at least the non entry models
[15:14] <mTeK> They are DCS 7150  so not entry level.
[15:21] <mTeK> ceph is pretty resiliant as long as the server goes offline, it doesn't like the bouncing ethernets.
[15:22] <mTeK> I think there is a timeout command that I can set on the bouncing on the switch. That way once it starts it will hold the port offline till the timer clears.
[15:23] <tomreyn> maybe you can do flap detection and fencing near the source instead.
[15:23] <tomreyn> actually your approach may be better
[15:33] <mTeK> Well I think that is how it works...
[15:39] <mTeK> Here is a paste of the logs https://pastebin.com/s13dDb68
[17:58] <teward> anyone with an 18.04 machine successfully configured a Bridge on their system with Netplan that lets the system itself have Internet and be reachable, but also allow cintainers such as LXD containers to use the bridge to get DHCP addresses too?
[17:59] <sdeziel> teward: I think so, let me check if I have something to share
[18:03] <sdeziel> teward: correction, I'm using a different bridge for the host and separated bridges for my lxd containers. That may still be useful to look at for you though https://paste.ubuntu.com/p/M6wwcMXTkR/
[18:03] <teward> sdeziel: thanks.  running into some headaches with macvlan on LXD by default.  The headache I have is that it's being derp with the containers behind
[18:03] <teward> maybe because VMware's involved it's eating packets...
[18:04] <teward> might mess with it later right now I just need to get this damn mail server set up >.<  *uses straight NAT for reasons in the interim*
[18:04] <sdeziel> teward: macvlan is annoying to deal with
[18:04] <teward> yes, it is
[18:04] <teward> so is VMware promiscuous mode eating packets from the host
[18:04] <sdeziel> because the host needs also a macvlan device if you want it to talk with your containers?
[18:04] <sdeziel> s/\?$//
[18:05] <teward> i don't need host -> container I just need Network <--> Container
[18:05] <teward> and container is making DHCP requests
[18:05] <teward> but they're not getting to the virtual firewall;
[18:05] <teward> so IDK what's up there
[18:05]  * teward will mess with that later
[18:06] <sdeziel> teward: with macvlan, your containers will show up with a new MAC when they get to VMWare so maybe you need to allow this virtual NIC to have more than 1 MAC
[18:06] <teward> not sure that's doable, but promiscuous mode and accept mac changes is enabled
[18:06] <teward> but VMware's having a hell of a time with it
[18:06] <teward> so IDK
[18:06] <teward> i'll mess with that in a separate VM later for testing
[18:06] <teward> FOR NOW
[18:06] <teward> I'm just going to straight NAT the container ports to the host
[18:06] <teward> and vice versa
[19:22] <lordcirth> Ok, this is weird. Brand new 18.04 LXC container, from the download template. If I try to start salt-minion, ssh, or postfix, they say "Job for salt-minion.service canceled."
[19:23] <teward> lordcirth: did you check syslog or other logging mechanisms to see why it explodified?  :p
[19:23] <lordcirth> teward, still hunting. I rebooted it, and now "systemctl start salt-minion" returns "Failed to connect to bus: No such file or directory"
[19:23] <lordcirth> As does 'status' so it's not salt-specific
[19:24] <teward> well salt I think there's known problems with
[19:24] <teward> but i was more curious about ssh and postfix
[19:24] <lordcirth> teward, ssh does the same
[19:24] <lordcirth> Also FYI this is the repo.saltstack.com salt
[19:25] <lordcirth> And I did have a problem earlier where one of my salt states tried to set the timezone, which apparently doesn't work in containers
[19:25] <lordcirth> Because timedatectl doesn't work
[19:27] <lordcirth> I'll rebuild the container.
[19:29] <sarnold> that sounds like super-unhappy dbus
[19:29] <teward> ^
[19:29] <teward> sarnold: but wouldn't that have a global effect rather than a container-specific problem?
[19:29] <teward> or is it possible there's apparmor isolation going on?
[19:30] <sarnold> rebuilding the container will be a pretty good indicator, I hope
[19:31] <lordcirth> I have this exact container setup running elsewhere, so it has to be something changed recently
[19:35] <lordcirth> ok, I made the container again, ssh was running. Installed salt-minion, accepted key, rebooted
[19:35] <lordcirth> ssh and salt-minion came up
[19:35] <sarnold> yay! but .. bummer to not Know what the problem was
[19:36] <lordcirth> Well, I'm not done applying the states yet.
[19:36] <lordcirth> Doing them in parts this time
[21:10] <lordcirth> I have a suspicion that linux-generic-hwe-18.04 getting installed in the container is what borked it
[21:11] <sarnold> hmm. any chance you've got a working container, can install that, and break your container?
[21:13] <lordcirth> The kernel package was installed by Salt after container init, so I'm trying now with that package commented
[21:13] <sarnold> aha
[21:14] <lordcirth> Previously all ceph clients were physical, so I forgot that it would install hwe
[21:20] <lordcirth> ahah, no, that didn't fix it. But commenting out an entry I put in /etc/fstab did
[21:21] <lordcirth> So I bet it's an apparmor profile issue
[21:23] <lordcirth> But I did it in an identical container earlier!
[21:44] <lordcirth> Ok, I got it to work by setting lxc.mount.entry properly and leaving /etc/fstab empty