[03:21] <new_guest_21> Hi, quick question. I learnt recently that you can add ip routes to a custom table in firewall configuration (e.g. for WireGuard). I would like to know what characters are allowed in the table's name. Specifically, are alphanumerics and _ (underscore) allowed, or is it just numbers? (I've seen quite a few examples that use '1234' and '123' as table
[03:21] <new_guest_21> names.)
[03:21] <new_guest_21> E.g. command to give you an idea of what the 'table name' is that I'm referring to: `ip rule add iif wg0 table 123`
[03:38] <new_guest_21> Ah, shoot. That was a dumb question considering there are default tables named 'default' and 'main'. :P
[03:38] <new_guest_21> Must rest now.
[06:05] <lordievader> Good morning
[08:52] <koeretwqa> hi! i have a problem with setting up ufw on a diskless client running ubuntu server via NFS. whenever I enable UFW the system hangs because there must be some rule which is preventing system to get NFS packets from the NFS server. If I set DEFAULT_INPUT_POLICY to ACCEPT, then it works ok (but not something I'd desire). I tried all possible rules
[08:52] <koeretwqa> already to even allow all traffic from local network, but it still hangs the system... I would really appreciate any tip that would led me into the right direction... Thanks!
[18:20] <atjb> Hello - please could I ask for help installing a Linux Image package
[18:20] <atjb> I'm following a tutorial to run an ubuntu-KVM
[18:21] <atjb> And windows inside of it - https://medium.com/axon-technologies/installing-a-windows-virtual-machine-in-a-linux-docker-container-c78e4c3f9ba1
[18:21] <atjb> At step 7 I'm getting an 'unable to find package' when I try to run apt-get install
[18:23] <atjb> The result of my $(name -r) is 5.4.0-88-generic - so I guess I'm looking for something else that will work that I can install instead?
[18:28] <pycurious> anyone has any experience with cors problem in nginx with python servers - https://dpaste.org/8Nvj ? I could use some help. Thanks.
[18:28] <sarnold> atjb: that feels pretty strange.. I didn't think the containers would be able to load kernel modules
[18:29] <atjb> It's the first time I've tried the tutorial - but it makes sense.  In my experience, containers run pretty much anything inside them
[18:29] <atjb> But then again - I'm a novice
[18:42] <atjb> Ok - I've done a search and there's linux-image-5.4.0-87-generic & linux-image-5.4.0-89-generic - Signed kernel image generic available
[18:43] <atjb> uName on my build is 5.4.0-88-generic
[18:44] <atjb> Should I go for one version before or after?
[18:44] <atjb> I can't imagine it'll make much difference?
[18:45] <sarnold> it's probably worth rebooting into the newer kernel
[18:45] <sarnold> though I think we're doing kernel updates today, I'm not sure if those are out the door yet or not
[18:48] <atjb> Ok - fair enough, I'm just going to run with it
[18:48] <atjb> It's a learning exercise so no worries if it fails :)
[19:00] <TJ-> why put a VM hypervisor inside a docker container? That does seem extremely silly
[19:03] <sarnold> that was my first thought too, but I realized I don't know off-hand how to do the "differential disks" kind of thing in libvirt and this guide knows a way to not bother learning it :)
[19:22] <TJ-> differential disks?
[19:22] <TJ-> Isn't that what we have on our tractors!?
[19:22] <sarnold> dunno how else to say "let ten instances all share a qcow2 or zfs dataset and only write their own changes"
[19:23] <sarnold> lol
[19:23]  * genii makes vroom vroom sounds in the corner
[19:23] <TJ-> genii: more of a constant roar if you please :)
[19:26] <TJ-> sarnold: looks simple to do for me at least; LVM snapshots
[19:27] <sarnold> TJ-: ah I never got the hang of lvm :)
[19:27] <TJ-> it's SO simple and flexible :)
[19:27] <sarnold> I think it's something that would just happen if you use zvols backing storage but I've not actually tried it myself..
[19:31] <TJ-> pvcreate /dev/sda1; vgcreate VG /dev/sda1; lvcreate -n VM-base -L 30G VG; ... lvcreate --snapshot --size 1G --name snap01 VG/VM-base 
[19:33] <TJ-> and of course the space can be thin-provisioned and images RAIDed and shared over iSCSI
[19:41] <sdeziel> qcow2 files can have backing files and possibly backing device (never tested the later). I'd be curious to have a qcow2 "delta" file backed by a base zvol ;)
[19:41] <atjb> I guess I'm just learning, so I dunno if putting a hypervisor inside. Docker container is a good idea or not
[19:42] <atjb> But at my stage I'm putting everything inside docker containers - so I guess I want to try this
[19:42] <atjb> I'd like a Remote Desktop, and this looks a good way to get one
[20:06] <patdk-lap> well the issue is, by the time you make kvm work inside a docker container, you have removed all security of the docker container, so it's pointless