* foo troubleshooting a high priority issue trying to figure out what's going on 03:24
foodear nginx, why didn't you come back online03:25
foo# netstat -nap |grep 8003:26
footcp        0      0    *               LISTEN      25308/nginx: master03:26
foo... it looks like it's listening 03:26
foohuh, networking dns issue. 03:28
foouh, I had changed /etc/hosts on a domain... I don't remember doing that. Anyway, disregard the foo... and maybe pity me, a little. ;) 03:31
lunatiqCan anybody maybe help me? I get poor speeds on my dedicated Hetnzer box to me. I also get under the mentioned linespeed I have in a speedtest to a local server. Is there anyway I can improve this?'03:36
blahdeblah_lunatiq: If you describe the situation with a little more detail/clarity it might be easier to help.  What have you done?  What tools are you using?  What results did you get?  What results did you expect?  What changes have you made to try to fix it?  How much did they help?03:38
lunatiqblahdeblah_ I have enabled bbr. That seems to have doubled the speed to me. I just did that.03:45
lunatiqI'm using speedtest03:45
fooSystem was throwing this: redis.exceptions.ResponseError: MISCONF Redis is configured to save RDB snapshots, but it is currently not able to persist on disk. Commands that may modify the data set are disabled, because this instance is configured to report errors during writes if RDB snapshotting fails (stop-writes-on-bgsave-error option). Please check the Redis logs for details about the RDB error. - 03:47
fooI've never seen this before, randomly started showing it. In the redis log I saw: 9787:M 08 Jan 18:57:03.013 # Can't save in background: fork: Cannot allocate memory ... the *only* thing that I could think that caused this was an rsync I did from from laptop to serverA (which had the issue). Is this possible? I rebooted the server and it solved it... but I realize that's not the ideal fix here. Not 03:47
foosure what else I could have done to fix that03:47
lunatiqhttps://www.speedtest.net/result/c/679cf5e6-149f-4207-a632-32bfd814cf84 this is the result I got03:56
lunatiqI get more towards 1000 or 90003:56
lunatiqhow would I speedtest against these files https://speed.hetzner.de/04:03
blahdeblah_lunatiq: curl or wget would be the usual way to test against those files04:13
lunatiqwell this says I get my speeds :s04:16
blahdeblah_foo: If your redis server is complaining that it can't allocate memory, you need to work out what's using that memory.  It might have been your rsync, but it could just as easily have been something else on the system.  Look in /var/log/kern.log to see if the OOM killer was triggered.04:17
blahdeblah_foo: You're looking for a line something like this:04:18
blahdeblah_Jan  3 14:15:02 myhost kernel: [4752161.961871] rsync_bpc invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=004:18
blahdeblah_foo: But there might be other things still running that are using the memory; use top or ps or similar to locate processes using the most memory04:19
blahdeblah_lunatiq: Keep in mind you'll get different speeds to different places - you can't expect consistent bandwidth to everywhere at once...04:44
lunatiqI installed a ppa and don't remember which one. I'd like to remove it and remove the app. I know how to remove the app. apt-get purge appname. Right? How do I remove the ppa afterwards?04:55
arrayboltXElunatiq: Do `ls /etc/apt/sources.list.d` and find the config file that pulls in the PPA in there. Then you can just move or delete the configuration file and run `sudo apt update`. You might want to *move* the file rather than deleting it, since you may also want to remove the PPAs signing key from the system, and the configuration file will tell you where that signing key is.05:05
arrayboltXE(I don't know if that last bit about signing keys applies to true PPAs or not, but it still comes in handy for removing third-party repos, which you should be able to remove the same way.)05:06
arrayboltXEThe only other gotcha in this is that some third-party repos store a highly trusted key in /etc/apt/trusted.gpg.d - if you're moving a third-party repo from your system, make sure to check that folder for a key and move it out of that folder to disable it. If everything works after that, then delete it.05:07
arrayboltXE(Third-party repos shouldn't be using the trusted.gpg.d folder anymore, but some still do, most notably Google Chrome.)05:08
Exterminadorisn't `add-apt-repository -r ppa:user/ppa` the way to remove a PPA?05:12
lunatiqarrayboltXE /etc/apt/keyrings/ookla_speedtest-cli-archive-keyring.gpg so I rm this?05:15
arrayboltXElunatiq: If you're getting rid of Ookla Speedtest, yeah, I'd remove that, as well as the config file in /etc/apt/sources.list.d.05:18
lunatiqI did05:18
arrayboltXEExterminador: That will work, but this way works on third-party repos too, which are similar but not the same as PPAs.05:18
mohaHow much size does it need to ha a repo mirror for Jammy version? Is it in the scale of TB?05:23
=== cpaelzer_ is now known as cpaelzer
JanCmoha: according to https://wiki.ubuntu.com/Mirrors in 2021 the whole archive was about 1.5TB, so I'm sure if you only need jammy and only some architectures it will be much less than 1TB ?06:42
JanCalso, if this is for your internal use, you don't need to mirror source packages either06:44
=== arrayboltXE is now known as Guest5152
=== Guest5152 is now known as arrayboltXE
mohaIt would be an internal mirror; I didn't enable the sources. It's now down, but I get this error on other machines pointed to this mirror: E: Failed to fetch http://myrepo/ubuntu/dists/jammy/main/cnf/Commands-amd64  404  Not Found [IP: 80]11:09
moha`apt update` --> E: Failed to fetch http://myrepo/ubuntu/dists/jammy-security/main/cnf/Commands-amd64  404  Not Found [IP: 80]11:09
=== polymorp- is now known as polymorphic
lunatiqif I purchase additional IPs can I route a virtualhost to just that IP or is that done through DNS?18:09
lunatiqI want to use the same server but use a different IP for another site18:10
lunatiqJanC how do I setup in virtualhst?18:24
lunatiqI think I got the virtualhost part18:27
lunatiqHow do I assign another IP to my server if I purchasd it?18:27
lunatiqI think I see how https://linuxhint.com/how-to-assign-multiple-ip-addresses-to-single-nic-in-ubuntu/18:35
JanClunatiq: if you have only one NIC you need to assign both IP addresses to that NIC indeed, you also need to tell the web and/or other servers about the different IP addresses (if you want to host different domains on each), and you need to change the DNS records for the (sub)domain(s)18:48
lunatiq2: enp0s31f6: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 100018:50
lunatiqenp0s31f6 is my nic right?18:50
lunatiqor the interface name18:51
rfmlunatiq, yes, that's the interface name.  if you have a normal ubuntu server install you'd configure extra static IPs in netplan,  https://netplan.io/examples should show how19:13
lunatiqThey say I must use the mac address assigned. The guide I found doesn't show anything about mac addresses19:18
rfmlunatiq, there's only one MAC address per interface, even if there are multiple IP addresses.  If it's working now it must be OK and you shouldn't change it.19:21
lunatiqrfm it says that at Hetzner it is critical that you use the MAC address listed when you configure the IP, you cannot use the MAC from the network card itself19:24
rfmlunatiq, obviously they have some list of permitted MACs so people can't attach more systems than they pay for.  So the authorized MAC address needs to be configured on the adapter, overriding the hardware MAC address.  This can be done in netplan.  Like I said, if this connection is already working this must have been done already.19:30
lunatiqrfm I ordered another IP adddress and I am trying to attach it.19:31
rfmlunatiq, yes, I get that.  If it is a reasonably normal Ubuntu Server install, you just have to add the address to the netplan config (and don't touch anything else)  https://netplan.io/examples#using-multiple-addresses-on-a-single-interface 19:35
ravagelunatiq: https://docs.hetzner.com/robot/dedicated-server/network/net-config-debian-ubuntu/19:38
ravagei would also recommend contacting their support in case something is unclear19:38
lunatiqravage I don't understand their guide 19:39
lunatiqI'm not through Hetnzer I'm through a reseller.19:39
ravagethen your reseller is your support contact19:40
lunatiqcan you please help me? They won't help.19:42
rfmlunatiq, we've already told you exactly what to do, the same thing that the Hetzner doc says: "When using netplan, simply add the additional IP addresses as /32 to the addresses section".   then "netplan try" to apply the config..19:48
lunatiqrfm but what about the mac address19:50
rfmlunatiq, again, don'19:51
lunatiqthey say "The MAC has to be configured on the virtual nic you setup the IP for :)"19:52
rfmlunatiq, that section is for when you are running a virtual machine inside the server.  Are you doing that?19:53
lunatiqrfm that's what the reseller told me "The MAC has to be configured on the virtual nic you setup the IP for :)"19:55
rfmlunatiq, so you're just adding another IP to the same interface -- which is already working, right?  So it must have the MAC configured already, by whoever set up the system in the first place.  19:56
lunatiqIt has to have a virtual nic to setup additional IP addresses19:57
rfmlunatiq, no, it doesn't. 19:58
lunatiqThats' what they're telling me.19:58
lunatiq"Please note that at Hetzner it is critical that you use the MAC address listed when you configure the IP, you cannot use the MAC from the network card itself."19:59
rfmlunatiq, that doesn't say anything about a virtual NIC, it just notes that the MAC address has to be configured on the interface connected to their net20:02
rfmlunatiq, have you even looked in /etc/netplan?  My guess is that's where the MAC address is being configured (again, if this is a reasonable normal Ubuntu Server install.)20:03
lunatiqfrm it doesn't list a mac address in there20:05
rfmlunatiq, then I have no idea where the MAC address is being set, you'd have to talk to whoever set up the machine.  But again, it must be being set somewhere or the system wouldn't be working at all.20:08
rfmlunatiq, "ip link show <interface name>" will show the MAC address being used, you can check that against the MAC address they gave you20:11
lunatiqrfm it's not the same.20:15
ChmEarlusing the neovim ppa with v0.9.0 I really like that Jammy has plenty of default lua-5.1 support20:17
lunatiqhttps://docs.hetzner.com/robot/dedicated-server/network/net-config-debian-ubuntu/ It seems I want the bridged method. 20:18
lunatiqBecause it acts independantly.20:18
lunatiqIn the guide it says to remove the auto lo and iface lo inet loopback20:19
rfmlunatiq, that's ifupdown (/etc/network/interfaces) stuff, Ubuntu hasn't used that in years20:22
lunatiqrfm then this guide is useless20:23
lunatiqrfm what should I use?20:26
rfmlunatiq, the guide looks fine to me, but you have to read the sections that talk about netplan.  I still think you should just stick the extra address in the list in netplan.  At least try it and see if you can ping that IP..20:29
lunatiqrfm I'm trying to understand howto do this via netplan now20:38
lunatiqI'm reading this but it doesn't make sense to me20:38
lunatiqmy yaml has /32 after my IP20:39
lunatiqI see now20:44
lunatiqAdding /32 after an IP address means that you are specifying all 32 bits of the IP address, and so you are not talking about a range of IP addresses. If you instead used /24 for example, you are specifying only the first 24 bits and the last 8 bits can take any value. So this is a range of 256 addresses.20:44
lunatiqI can't ping it20:46
lunatiqI tried netplan20:46
rfmlunatiq, actually in this case it's setting the "netmask", which is establishing a range of addresses that can talk directly (all on the same physical net).   Since you don't really care about sending packets from one of these IPs to the other, /32 is fine (all traffic will go out to the router)20:46
rfmlunatiq, did you do "netplan apply"?  does the ip show up in "ip addr"?20:47
lunatiqYes it did20:47
lunatiqI did 20:47
lunatiqI couldn't ping it20:47
rfmlunatiq, can you ping the other (old) address?  some providers cut off ICMP (ping) at the router20:48
lunatiqYes I can20:49
sarnoldcheck all the firewalls on all systems between the two systems -- perhaps some firewall (maybe run by your ISPs?) is blocking ICMP20:49
lunatiqI can ping other IP20:49
lunatiqit says netplan can't support virtual nic20:52
lunatiqon google20:52
lunatiqhttps://askubuntu.com/questions/990825/virtual-interface-in-netplan I found this but I tried to use a label and I got an error20:57
lunatiqetc/netplan/01-netcfg.yaml:10:18: Invalid YAML: mapping values are not allowed in this context:20:57
lunatiqlabel: enp0s31f6:020:57
lunatiqI got it21:10
lunatiqI used a netplan label21:10
lunatiqI added the IP21:10
lunatiqI corrected my indention and added the missing : after IP21:10
lunatiqI can ping it now21:10
lunatiqty rfm and the others21:15
JanCwhy do you go to a Hetzner reseller instead of directly to Hetzner?21:40
lunatiqJanC I made a mistake.21:46
JanCcan't you end the contract with the reseller?21:50
=== polymorp- is now known as polymorphic
=== polymorp- is now known as polymorphic
lunatiqHow would I setup ftp access for people to only specific folders?23:32
lunatiqI think this explains it23:35
lunatiqhow can I deny SSH access to them though?23:38
lunatiqCan't users who are added login to SSH?23:38
=== polymorp- is now known as polymorphic

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!