1126224075 M * marinal and when i tried several times to do newvserver ( with different server names), i got something like that: 1126224093 M * marinal s_context: 0 1126224093 M * marinal I: Retrieving Release 1126224093 M * marinal I: Retrieving Packages 1126224093 M * marinal I: Validating Packages 1126224093 M * marinal I: Checking component main on http://ftp.uk.debian.org/debian... 1126224094 M * marinal I: Extracting base-files... 1126224095 M * marinal I: Extracting base-passwd. 1126224112 M * marinal etc then 1126224118 M * marinal I: Base system installed successfully. 1126224118 M * marinal stty: standard input: Invalid argument 1126224118 M * marinal Starting system log daemon: syslogd. 1126224118 M * marinal Starting kernel log daemon: klogd. 1126224118 M * marinal Starting MTA: exim4. 1126224120 M * marinal Starting internet superserver: inetd. 1126224121 M * marinal Starting deferred execution scheduler: atd. 1126224123 M * marinal Starting periodic command scheduler: cron. 1126224125 M * marinal Err http://non-us.debian.org sarge/non-US/main Packages 1126224131 M * marinal Temporary failure resolving 'non-us.debian.org' 1126224133 M * marinal Err http://security.debian.org sarge/updates/main Packages 1126224135 M * marinal Temporary failure resolving 'security.debian.org' 1126224137 M * marinal Err http://ftp.uk.debian.org sarge/main Packages 1126224197 M * Bertl hmm, looks like your name resolver is not working correctly ... 1126224209 M * Bertl I would suggest the following: 1126224227 M * marinal it repeated complaining that can not resolve connection to get debian packages, then sometimes it began to ask about locales, root password etc and seemed to finish normally; but apt-get both within it and on the host by command vserver server-name pkg install ssh 1126224230 M * Bertl - update the tools to the 0.30.208 release (has some bugfixes) 1126224231 M * marinal did not work 1126224250 M * Bertl (make sure to use dietlibc not the glibc) 1126224291 M * Bertl after that, let's see if the issue persists, if so, also update the kernel to 2.4.31-vs1.2.10 (or .11-rc1) 1126224320 M * Bertl marinal: if you have the kernel config (for your current kernel, it should be easy to update) 1126224434 M * marinal thank you very much, I'll try tomorrow :) 1126224525 M * maja Bertl: am i correct that i simply have to enable nmi_watchdog=1 ? 1126224557 M * Bertl Documentation/nmi_watchdog.txt 1126224576 M * maja yes - i read it :) 1126224592 M * maja im only asking because i cannot find any kernel config parameter :) 1126224601 M * Bertl you need to have the apic enabled 1126224644 M * Bertl In order to use the NMI watchdog, you need to have APIC support in your kernel. For SMP kernels, APIC support gets compiled in automatically. For UP, enable either CONFIG_X86_UP_APIC (Processor type and features -> Local APIC support on uniprocessors) or CONFIG_X86_UP_IOAPIC (Processor type and features -> IO-APIC support on uniprocessors) in your kernel config. 1126224681 M * Bertl you then have to try with nmi_watchdog=1 and nmi_watchdog=2 1126224687 M * maja [Note: certain 1126224687 M * maja kernel debugging options, such as Kernel Stack Meter or Kernel Tracer, 1126224688 M * maja may implicitly disable the NMI watchdog.] 1126224695 M * maja thats why im not sure :) 1126224699 M * maja but ill sipmly try 1126224720 M * Bertl cat /proc/interrupts 1126224722 M * Bertl ... 1126224727 M * Bertl NMI: 14224 14499 1126224729 M * Bertl .. 1126224732 M * maja i c :) 1126224734 M * Bertl this is a good start := 1126224853 J * nayco ~nayco@lns-vlq-49-mar-82-251-44-227.adsl.proxad.net 1126224922 M * nayco 'llo 1126225009 M * Bertl welcome nayco! 1126225039 M * nayco had a nice day ? 1126225107 M * nayco Bertl: Could you mail me the test I gotta run (for XFS quota), and then I'll email you the results ? Wouldn't it be easier ? 1126225115 M * nayco tests 1126225144 M * maja brb - gotta reboot the server :) 1126225217 Q * maja Quit: leaving 1126225828 J * maharaja ~maharaja@chello080109078221.4.15.vie.surfer.at 1126225831 M * maharaja re 1126225920 M * Bertl nayco: yeah, had a pretty nice day ... guess testing is probably better interactively if possible (because I don't know what will happen yet :) 1126225960 M * Bertl nayco: first test would be to copy the 'real' device for your mountpoint (home IIRC) into the guest, and adjust the fstab/mtab accordingly 1126225983 M * maharaja still trying to get nmi on :) 1126226038 Q * marinal Quit: Leaving 1126226141 M * maharaja Bertl: NMI: 344 1126226144 M * maharaja looks good 1126226152 M * maharaja doesn't it :) 1126226251 M * Bertl yep, looks good ... 1126226267 M * Bertl now I'd try to lock up the kernel with something :) 1126226347 Q * azazel Remote host closed the connection 1126226371 M * maharaja Bertl: my config: 1126226374 M * maharaja http://raoul.bhatia.at/~raoul/config 1126226388 M * maharaja i'm not able to force it atm :) 1126226394 M * maharaja as i've got no clue where it originates from 1126226408 M * nayco Bertl: Could we do this tomorrow ? I'm tired, and I go to work in about 6 hours :P ! Do you think it is possible aroud 10-11pm tomorrow ? 1126226428 M * maharaja Bertl: feel free to add any additional information - ill check in later/tomorrow if the server is still up and running 1126226469 M * Bertl nayco: I guess so, but no guarantees ... 1126226484 M * Bertl nayco: I should be around in the afternoon too 1126226490 M * nayco Bertl: so, I mknod inside the vserver's /dev/ directory, then inside the vserver, I update the fstab ? 1126226523 M * Bertl best, you copy over the real device into the guest (cp -va) then adjust fstab and mtab (don't forget the mtab) 1126226541 M * Bertl then try to do some quota stuff, and see if that works as expected (inside the guest) 1126226621 M * nayco well, which (m|fs)tab ? The ones on the host, or those in the guest ? And why mtab ? Shouldn't I stop the vserver before doing so ? 1126227054 J * alexx ~alexx@proxy.ikse.net 1126227159 J * jonsmel ~jscottorn@209.33.206.3 1126227185 M * jonsmel hi all 1126227259 M * jonsmel ?, where do I set the CAP_NETADMIN option, I need a vserver to run iptables 1126227323 M * nayco /etc/vservers//bcapabilities 1126227347 M * jonsmel is that a file or a dir 1126227388 M * nayco that's a file where you list all the CAPs you give your vserver, on per line. 1126227406 M * nayco http://www.nongnu.org/util-vserver/doc/conf/configuration.html 1126227421 M * jonsmel so in that file i just list CAP_NETADMIN and that's it? 1126227428 M * Bertl jonsmel: you're sure about that? 1126227460 M * jonsmel well, I don't want to do that but can't think of any other way to do what I want 1126227480 M * nayco NET_ADMIN 1126227484 M * nayco I think 1126227534 M * jonsmel i need a way to redirect a particular port coming on a vserver to a different port on the same vserver 1126227580 M * Bertl jonsmel: configure it on the host? 1126227613 M * Bertl jonsmel: well, I hope that you are aware of the implications of giving CAP_NET_ADMIN 1126227630 M * jonsmel yeah, i know, that's why I don't want to do it that way 1126227656 M * jonsmel but i tried it on the host and it didn't work but I've probably got something wrong with me iptables line 1126227699 M * jonsmel if I do it on the host do I have to specify which ip it redirect to 1126227711 M * jonsmel rather than just to a port 1126227741 M * Bertl both guest and host use the identical iptables .. so nothing is different there 1126227756 M * Bertl if it doesn't work on the host, is definitely will not work on the guest ... 1126227792 M * jonsmel well, let me ask I am trying to setup a squid proxy in a vserver, it works directly if I set the proxy in the browser 1126227834 M * jonsmel but when I make it a transparent proxy it the request is getting sent to the proxy but the proxy doesn't respond 1126227845 Q * kas_3 Ping timeout: 480 seconds 1126227880 M * Bertl jonsmel: did you take a tcpdump of such an unsuccessful session? 1126227897 M * jonsmel I have 1126227919 M * Bertl is it available somewhere? 1126227954 M * jonsmel I have it in the body of an email I sent 1126227957 M * jonsmel that's about it 1126228019 M * nayco Bertl: Ok, the device was already present in /vserver/quota/dev/ (Mandrake basesystem installs basic /dev/ entries). I udpated /etc/(m|fstab) to reflect /dev/hda9 beiing mounted on /home (relative to the guest), and the setquota result is different than the last time... 1126228051 M * jonsmel well, I'll see if I can get this tomorrow, I've got to run for now. 1126228065 M * jonsmel thanks for the thoughts, I'll go back to the drawing board 1126228078 M * jonsmel night 1126228089 N * jonsmel jonsmel_Zz 1126228098 M * nayco "setquota: unable to write quota for 500 on /dev/hda9 : Operation not permitted" 1126228263 M * nayco Bertl: stracing the process learn that the quotactl syscall returns "-1 EPERM" 1126228272 M * nayco learns 1126228305 M * Bertl a) you should really clean up the /dev if you installed the guest by hand 1126228324 M * Bertl b) did you add the quota capability to the guest's config? 1126228339 M * nayco Which one is it ? 1126228401 M * nayco Cannot find it in http://savannah.nongnu.org/cgi-bin/viewcvs/util-vserver/util-vserver/lib/bcaps-v13.c?rev=HEAD 1126228437 M * Bertl DECL("quota_ctl", VC_VXC_QUOTA_CTL), 1126228445 M * Bertl in ccapabilities 1126228473 M * nayco ;-), oh, ok ! So, I write VC_VXC_QUOTA_CTL in ccapabilities ? 1126228474 M * Bertl so you add 'quota_ctl' to the ccapabilities file 1126228479 M * nayco ok 1126228504 M * Bertl don't forget to restart the guest, or use vattributes 1126228550 M * nayco restarting 1126228761 M * nayco still does not work 1126228777 M * nayco -EPERM 1126228937 M * Bertl okay, could you upload the strace output please? (pastebin.com or so) 1126228978 M * Bertl nayco: and hda9 was mounted with the quota option(s) on the host? 1126230246 M * nayco yes 1126230536 M * nayco http://pastebin.com/358538 1126230551 M * nayco Ok, I gotta go to bed. Continue tomorrow ? 1126230593 M * Bertl yep! sweet dreams! 1126230622 M * nayco sweet hack ;-) ! 1126230652 M * Bertl thanks! 1126230679 Q * nayco Quit: Bonne nuit ! 1126233058 Q * Johnsie Quit: G'bye! 1126235900 Q * jebba Quit: Leaving 1126237094 J * menomc ~amery@200.75.27.61 1126237104 M * Bertl welcome menomc! 1126237205 Q * mnemoc Ping timeout: 480 seconds 1126237384 Q * ag-2 Ping timeout: 480 seconds 1126237638 Q * menomc Ping timeout: 480 seconds 1126238083 Q * litage Ping timeout: 480 seconds 1126238403 J * mnemoc ~amery@200.75.27.61 1126239009 J * litage ~nick@203.201.96.11 1126239087 Q * duckx Ping timeout: 480 seconds 1126239177 J * duckx ~Duck@mna75-1-81-57-39-234.fbx.proxad.net 1126244805 J * dddd44 ~dhb55@tor-irc.dnsbl.oftc.net 1126244905 Q * Vudumen Ping timeout: 480 seconds 1126245520 J * Vudumen vudumen@perverz.hu 1126245533 M * maharaja re 1126245536 M * maharaja morning bertl! 1126245553 M * maharaja can you comment on the vserver x64 ? 1126245589 M * maharaja i want to buy an athlon xp and am wondernig if vserver runs in x64 mode or should be compiled for 686 1126245894 M * Bertl morning, and both works fine 1126245933 M * Bertl x86_64 is fully supported and allows 64bit as well as 32bit guests 1126246037 J * kas_3 ~dhb55@tor-irc.dnsbl.oftc.net 1126246310 Q * dddd44 Ping timeout: 480 seconds 1126246547 J * dddd44 ~dhb55@tor-irc.dnsbl.oftc.net 1126246820 Q * kas_3 Ping timeout: 480 seconds 1126247239 Q * Hollow Remote host closed the connection 1126247387 J * Hollow ~Hollow@home.xnull.de 1126247394 M * Hollow i hate... 1126247411 M * Hollow morning btw ;) 1126247415 M * maharaja Bertl: Thank you for your quick reply! 1126247503 M * Bertl Hollow: that's why I'm off to bed now :) 1126247512 M * Hollow heh, cu 1126247522 M * BWare nite nite ;) 1126247526 M * Bertl have a good one, everyone .. cya later ... 1126247532 N * Bertl Bertl_zZ 1126248145 Q * nokoya Ping timeout: 480 seconds 1126248569 J * kas_3 ~dhb55@tor-irc.dnsbl.oftc.net 1126248612 J * ag-2 ag@muaddib.roxor.cx 1126248636 J * nokoya ~young@hi-230-82.tm.net.org.my 1126248900 Q * dddd44 Ping timeout: 480 seconds 1126249649 J * dddd44 ~dhb55@tor-irc.dnsbl.oftc.net 1126249880 Q * kas_3 Ping timeout: 480 seconds 1126250795 J * kas_3 ~dhb55@dsl092-070-253.bos1.dsl.speakeasy.net 1126251135 Q * dddd44 Ping timeout: 480 seconds 1126251170 M * wibble appears that the 2.6 patch is borked with 2.6.13 1126251414 M * eyck 2.6 rocks. 1126251665 M * eyck it's like gettin.... oh wait... 1126252011 J * dddd44 U2FsdGVkX1@tor-irc.dnsbl.oftc.net 1126252305 Q * kas_3 Ping timeout: 480 seconds 1126253164 J * martin ~multiplex@pc70-c512.uibk.ac.at 1126253292 J * frz ~frz@jaim.at 1126253307 M * frz hello 1126253314 M * martin mornig frz 1126253335 M * wibble yo 1126253361 M * frz anybody has a working version from quotas with vrsetup - looks broken! 1126253398 M * frz also at mailinglist nobody seems to have an idea 1126253561 A * frz wants to get a programmer in next life 1126253639 M * martin :) 1126253815 M * martin does anybody has any idea about the reason for this error -> "chcontext: sethostname(): Operation not permitted" 1126253902 M * BWare run /usr/lib/util-vserver/vprocunhide 1126253915 M * BWare for newer versions of the tools 1126253930 M * martin k, thanks... i just reboot the server then i'll give it a try 1126253981 M * martin afaik vprocunhide is run by init.d? 1126254132 M * wibble yes, upon bootup 1126254149 M * martin :) thanks bware... you saved my day... it works ^^ 1126254156 M * BWare oke 1126254168 M * BWare enjoy ;) 1126254193 M * wibble ...enjoy... the problems lol 1126254608 M * frz hum - after running vrsetup /dev/vroot1 /dev/drbd1 - no vroot is used when looking in lsmod? 1126254678 M * frz did i miss some secret config changes etc...? 1126256049 J * prae ~prae@gut75-1-81-57-27-189.fbx.proxad.net 1126256144 M * frz ok will try later - maybe its better time ;) 1126256157 M * martin seems so... ^^ 1126256207 M * frz bye 1126256209 P * frz 1126256259 M * martin hm.. i just got the error again (sethostname when entering the vserver), however i found out now whats the real problem... how i got su... i really should have thought on that... so likewise it was not the vprocunhide thingy, but just the su ... -.- 1126258345 Q * dddd44 Ping timeout: 480 seconds 1126258499 J * dddd44 debian-tor@tor-irc.dnsbl.oftc.net 1126259174 Q * dddd44 Remote host closed the connection 1126259887 J * azazel ~azazel@81-174-9-35.f5.ngi.it 1126260905 J * hvd ~takeagues@fw-grz.hollomey.com 1126261001 Q * obi Ping timeout: 480 seconds 1126261004 M * hvd i would like to merge unionfs with ctx patch .. ctx modifies vfs_* functions with nameidata, can i yust add NULL to all vfs_* functions in unionfs ? 1126261023 M * hvd what should nameidata look like ? 1126261657 J * obi ~obi@B3114.karlshof.wh.tu-darmstadt.de 1126262197 J * dddd44 ~dhb55@tor-irc.dnsbl.oftc.net 1126262302 J * ponzio ~wrgwre@212.48.14.137 1126262333 P * ponzio 1126262582 M * azazel after installing util-vserver i found some scrpts in /etc/init.d.. two of them are used to start vservers at server start .... which one should i use ? 'vservers-default' or 'vservers-legacy'? 1126263019 M * hvd depends wich configuration style you use .. there are tow .. legacy and standard .. 1126263042 M * hvd vservers-default should be ok for you 1126263061 M * hvd starts all vservers that have a "default " in /etc/vservers//apps/init 1126263083 M * azazel thanks 1126263107 M * hvd s/"default "/"default" 1126263197 M * hvd ok .. adding NULL for nameidata does not work .. bertl help :-( 1126263374 Q * obi Ping timeout: 480 seconds 1126264194 Q * matta Read error: Connection reset by peer 1126264967 J * obi ~obi@B3114.karlshof.wh.tu-darmstadt.de 1126265395 M * azazel can i use vunify with apt? 1126266516 M * martin @hvd - when i use 'default' as init style i'll receive the error "Unknown init-style 'default'; aborting" ... i used 'plain' before... where can i set the 'default' value to (rescue / sysv / plain / minit / gentoo) ? 1126266916 M * daniel_hozac martin: apps/init/mark, not style. 1126267119 Q * Aiken Quit: Leaving 1126267238 M * martin ok, i see... thanks... i'm just converting the old config to the new and a script i used from the mailing made a 'default' to 'style' so i thought this is related to this 1126267896 M * hvd @martin argl sorry .. should be apps/init/mark 1126267975 Q * Doener Ping timeout: 480 seconds 1126267982 J * Doener ~doener@p54877401.dip.t-dialin.net 1126268206 M * meebey .oO( is this a webchat now? ) 1126268259 M * hvd no ;=) 1126268273 M * martin i had a problem with the hostname of the vserver with the new configuration as it appears it's ignoring uts/nodename, as it uses the vserver's /etc/hostname ... is this a misconfiguration at my side or intended behaviour? 1126268598 M * daniel_hozac martin: your vserver likely sets the hostname using /etc/hostname as part of the start process. 1126268936 M * martin yes, that's likely... however i thought that its not possible within a vserver, so that only the setting in uts/nodename takes affect... 1126270373 N * Bertl_zZ Bertl 1126270379 M * Bertl morning folks! 1126270703 M * Bertl martin: it's basically a question of capabilities, if you have the right ones, the guest can set the name and stuff ... 1126270705 M * martin hi bertl 1126270766 M * Bertl hvd: NULL for nameidata? sounds interesting! 1126270771 M * Bertl martin: hi! :) 1126270799 M * martin i see.... CAP_NET_RAW allows it to change hostname... it took me some hours to find out where the the wrong hostname was coming from... at least i'm learning more and more every day ^^ 1126270801 M * hvd hi bertl ;) 1126270826 M * hvd so ok unionfs passes only three arguments for vfs_* i guess the missing one is nameidata .. 1126270863 M * Bertl yeah, read further back in time, now I know what you are trying :) 1126270896 M * hvd well NULL did not work as estemated .. ;) 1126270908 M * Bertl wibble: a) which one, b) how so? 1126270949 M * Bertl hvd: a) what do you intend to use the unionfs stuff for? b) do you have an url for the patches? 1126270976 M * hvd unionfs for pxe style booting of the master server (easy migration of vservers) 1126270998 N * BobR_oO BobR 1126271060 M * hvd URL: http://www.fsl.cs.sunysb.edu/project-unionfs.html 1126271105 M * hvd basic you dont need to care whats on tmpfs and whats on nfs server (ro) .. which is very nice 1126271132 M * hvd i would use unionfs for context 0 1126271142 M * hvd s/for/only in/ 1126271153 M * martin one last issue with the new config style... i used "CAP_QUOTACTL" in S_CAPS before, however this value is not accepted by bcapabilities... Unknown bcap 'CAP_QUOTACTL' 1126271275 M * azazel can i configure something into .distribution/distro config path to specify which packages debootstrap should exclude/include? 1126271286 M * azazel with latest util-server 1126271305 M * Bertl martin: it was moved into ccapabilities (now called quota_cap IIRC) 1126271331 M * Bertl azazel: yes, sure .. that's where you customize those things ... 1126271381 M * azazel Bertl: thanks but how? i don't find any hint in the flower page 1126271401 M * Bertl sec 1126271541 M * Bertl azazel: hmm, not sure (as I'm no debian guy) but what about the apt.conf in /etc/vservers/.distributions/ ? 1126271575 M * hvd no apt.conf yust configures apt (priority, proxy), but not which packages are installed 1126271650 M * azazel Bertl: hmm... the exclude/include stuff is a deboostrap thing, apt stuff takes care of a vserver after it has been bootstrapped 1126271672 M * Bertl hvd, azazel: okay, then check with --debug (and a install run) if something is checked there, but I remember somebody adding a --exclude option to the build command ... I guess a patch to the tools would be simple and appreciated ... 1126271846 M * azazel i will look at it, but i must say that i'm not so talented at bash debugging :-/ ... usually i switch to another language when i have to manage a such complicated scriptng library 1126271947 M * martin bertl: i've looked again on the hostname issue, however as i found in the man(7) page of capabilities, SYS_ADMIN is required for changing hostname, however i didn't set this cap... all i had set was the NET_RAW? 1126271959 M * azazel for now i have grasped how to run an initpost script:) 1126271966 M * Bertl azazel: well, pastinga feature request on savannah might be sufficient ... 1126272013 M * Bertl martin: DECL("utsname", VC_VXC_SET_UTSNAME), 1126272021 M * Bertl (this is a ccap) 1126272060 M * martin ok, and this is on by default.? i didn't had a ccap file before 1126272079 M * Bertl martin: in the near future, SYS_ADMIN will be on by default as it will be reduced to a set of ccaps ... 1126272129 M * Bertl yes, some ccaps are on by default, see /proc/virtual 1126272193 M * martin bertl: if this is on by default, how can i disable it... soemthing like ~utsname in ccaps? 1126272252 M * hvd ftp://ftp.fsl.cs.sunysb.edu/pub/unionfs/unionfs-1.0.13.tar.gz against 2.6.13-vs2.1.0-pre6-swsuspend2 was my intention .. ;) 1126272268 M * martin i've set NET_RAW and QUOTACTL which gives me BCaps: 00000000344c24ff and CCaps: 0000000000100101 1126272276 M * Bertl martin: yes, should work fine (disabling) 1126272339 M * Bertl hvd: eek, another FiST filesystem ... 1126272344 M * hvd jep 1126272360 M * hvd dont like FiST ? 1126272389 M * Bertl well, the fist stuff is nice for prototyping, but bloated and buggy for production ... 1126272414 M * Bertl (doesn't mean I'm against it :) 1126272454 M * hvd well unionfs was working as expected with 2.6.12.3-vs2.0-rc9 1126272482 M * Bertl did you try with 2.6.13 (vanilla) yet? 1126272510 M * hvd the vfs_* changes are from vs2.1 1126272526 M * Bertl yes, well, precisely they are from the BME patches 1126272533 M * hvd BME ? 1126272552 M * Bertl bind mount extensions, allows you to mount --bind with ro and similar attributes 1126272572 M * hvd ahh i c 1126272641 M * Bertl the unionfs, is it only available as external module/package? 1126272655 M * hvd can compile both .. 1126272662 M * azazel anyone knows a way to have copy-on-write vservers?:) too advanced for now? 1126272675 M * hvd as a kernel (very unclean patch-kernel.sh) or standalone 1126272688 M * Bertl azazel: it's working in vs2.1.0-* 1126272768 M * Bertl hvd: okay, you really want to fix this up? (i.e. are willing to do some testing?) 1126272769 M * azazel Bertl: ummm... i'm using a kernel 2.6.13 with the vs2.0.1 patch into the experimental dir on vserver.13thfloor... 1126272799 M * Bertl azazel: 2.0.1-* next stable, 2.1.0-* development release 1126272814 M * azazel thanks 1126272837 M * hvd when was BME added ? 1126272847 M * Bertl COW stuff is not that well tested yet, so it's not in stable yet ... 1126272868 M * Bertl the BME stuff was added to the devel release at the beginning ... 1126272890 M * azazel ok, i'will saty on 2.0.1 until it becomes more stable 1126272891 M * Bertl you probably can revert it ... 1126272903 M * hvd mhh so reverting to stable should do the trick .. 1126273054 M * Bertl iif the BME is the _only_ issue you have :) 1126273081 M * hvd yes is .. (i guess) 1126273091 M * hvd at least it run on 2.6.12 ;) 1126273108 M * hvd vs2.0.1-pre2.diff has BME ? 1126273112 M * hvd - error = vfs_mknod(nd.dentry->d_inode,dentry,mode,0); 1126273112 M * hvd + error = vfs_mknod(nd.dentry->d_inode, dentry, mode, 1126273112 M * hvd + 0, &nd); 1126273132 M * hvd vfs_mknod takes 4 arguments .. 1126273144 M * Bertl sec 1126273193 M * hvd oups sorry .. wrong diff 1126273204 M * Bertl k :) 1126273222 M * hvd 2.0.1-pre2 is BME free ;) 1126274411 M * Bertl k, back later ... 1126274419 N * Bertl Bertl_oO 1126274928 M * azazel vreboot works with the new conf layout? 1126275370 N * jonsmel_Zz jonsmel 1126275504 M * daniel_hozac isn't vreboot deprecated? 1126275573 M * azazel i don't know... what do you use to reboot a vserver from inside it 1126275575 M * azazel ? 1126275581 M * daniel_hozac reboot -f 1126275625 M * azazel :) 1126275628 M * azazel thanks 1126275654 N * BobR BobR_oO 1126275768 Q * martin Quit: si vis pacem, para bellum 1126276644 J * BobR_oO_ ~georg@212.16.62.52 1126276651 J * SiD3WiND1 luser@bastard-operator.from-hell.be 1126276748 Q * BobR_oO Ping timeout: 480 seconds 1126276753 Q * SiD3WiNDR Ping timeout: 480 seconds 1126277535 M * meebey eerrrmm 1126277552 M * meebey mounting a nfs dir into a vserver from the root system does not work? 1126277567 M * meebey at least the mounted dir stalls when I am inside the vserver 1126277572 M * meebey outside of the vserver it works 1126277579 M * meebey isn't this possible? 1126277703 M * meebey do I need a portmapper inside the vserver? 1126277710 M * meebey found something on the vserver mailing list 1126279468 N * SiD3WiND1 SiD3WiNDR 1126279507 M * meebey hm nobody here to help me 1126279539 M * mnemoc meebey: sit back and relax 1126279576 M * mnemoc meebey: wait at least one hour if you are really interested on an answer 1126279589 M * meebey hm 30 left for today 1126279593 M * meebey 30min 1126279664 M * mnemoc i guess you need postmapper inside 1126279681 M * mnemoc but i haven't used nfs in years, and never inside a vserver 1126279701 J * stefani ~stefani@superquan.apl.washington.edu 1126279970 M * meebey mnemoc: is there some alternative? 1126279977 M * meebey mnemoc: I need some remote fs 1126280008 M * meebey used in LAN only but uid/gid mapping is often tricky I have the same uid/gid values on both servers to insure that all is right 1126280059 M * mnemoc why not NIS or LDAP? 1126280108 M * meebey NIS because of seucurity and design reasons, LDAP not because had no time yet to deploy it 1126280134 M * mnemoc unison? :) 1126280139 M * mnemoc or rsync ;) 1126280175 M * meebey rsync for? 1126280179 M * meebey thats not a remote fs 1126280233 M * hvd well nfs should work, yust put it in vserver//fstab 1126280253 M * hvd meebey: do u use policy routing ? 1126280254 M * meebey I mounted it outside 1126280257 M * meebey hvd: no 1126280266 M * meebey should I mount it inside? 1126280269 M * hvd you mount outside .. you mean in other namespace ? 1126280274 M * meebey context 1126280280 M * meebey I mounted it from the root context 1126280281 M * hvd so you mean in ctx 0 ? 1126280286 M * meebey yes 1126280310 M * meebey would that make a difference? 1126280316 M * hvd you have to disable 1126280326 M * hvd yust a sec 1126280410 M * hvd you have to disable namespace 1126280421 M * hvd eg touch /etc/vservers/.defaults/nonamespace 1126280422 M * mnemoc meebey: i meaned rsync to sync /etc/{passwd,groups} 1126280426 M * hvd or per individual vserver 1126280433 M * meebey works now, with portmap inside vserver 1126280445 M * meebey hvd: its vserver 1.2.10 1126280455 M * hvd otherwise every vserver is running in a differnt namespace so you want see mount from context 0 1126280466 M * hvd 1.2.10 .. ouch .. 1126280486 M * mnemoc 2.6 is out, you know? 1126280491 M * meebey ouch? its the only stable branch 1126280503 M * mnemoc 2.6.11.12 works perfectly here :) 1126280504 M * meebey we dont use 2.6 on produciton servers 1126280514 M * meebey at home I use 2.6 :) 1126280520 M * meebey or on workstations 1126280579 M * hvd well havent seen 1.2.10 loong time ;) 1126280622 M * mnemoc meebey: you should _really_ consider moving your servers to a 2.6 kernel, not bleeding edge but 2.6 1126280642 M * meebey I am considering but its not that easy 1126280650 M * meebey its a product line of servers 1126280670 M * mnemoc i have 2.0 and 2.0.1-pre2 backported to 2.6.11.12 if you decide it 1126280697 M * mnemoc meebey: a director or load balancer in front helps with the migration :) 1126280708 M * meebey I have 3 problems with 2.6 1126280725 M * meebey first vserver has no support to write to /proc 1126280732 M * meebey I had to patch vserver for that 1126280738 M * meebey I will have port the patch to 2.6 1126280747 M * meebey thats a big minus already, since I am not a C hacker 1126280765 M * meebey next is, the product line uses freeswan, means freeswan must compile with the 2.6 kernel 1126280766 M * mnemoc what do you _need_ to write at /proc ? 1126280776 M * meebey mnemoc: freeswan needs that 1126280778 M * mnemoc strongswan works perfectly here 1126280793 M * meebey its setting some ipsec stuff in it 1126280811 M * meebey I am running freeswan inside the vserver 1126280823 M * meebey on vs 1.2.10 + proc patch 1126280832 M * hvd so vserer has a lot of capabilities ? 1126280841 M * meebey kinda 1126280847 M * meebey NET_ADMIN it has 1126280852 M * meebey so it can create routes 1126280867 M * meebey I use vserver not only for security, also more mainly to have modular servers 1126280876 M * meebey the root server has only ssh, nothing else 1126280934 M * hvd i see 1126280942 M * meebey galilei:/vservers# find -maxdepth 1 -type d | wc -l 1126280942 M * meebey 29 1126280967 M * meebey each own area has its own vserver, we use them as templates 1126280975 M * meebey to deploy systems 1126280988 M * hvd sound usefull 1126280990 M * hvd so bye .. 1126280993 M * hvd i have to go 1126280995 M * meebey like mail, vpn, web, ns, groupware, smb, printing 1126281006 M * meebey k :) cya then, I have to go too 1126281010 M * meebey nfs works so I am happy 1126281015 M * hvd hehe 1126282724 N * dddd44 ewf32tf 1126282820 M * ewf32tf what the different tor and freenet??anyone?? 1126282881 Q * ewf32tf Killed (weasel (do not ask the same question in 3 different channels. Mail support@oftc.net if you have q)) 1126283088 J * dddd44 ~dhb55@tor-irc.dnsbl.oftc.net 1126283233 M * SiD3WiNDR :D 1126286255 Q * prae Quit: Execute Order 69 ! 1126286884 Q * jonsmel Ping timeout: 480 seconds 1126286922 M * Greek0 hi 1126287547 J * kas_3 ~dhb55@tor-irc.dnsbl.oftc.net 1126287837 Q * kas_3 Remote host closed the connection 1126287845 J * mef ~mef@targe.CS.Princeton.EDU 1126287862 J * kas_3 ~dhb55@tor-irc.dnsbl.oftc.net 1126287995 Q * dddd44 Ping timeout: 480 seconds 1126288073 J * dddd44 ~dhb55@tor-irc.dnsbl.oftc.net 1126288455 Q * kas_3 Ping timeout: 480 seconds 1126288472 J * kas_3 ~dhb55@tor-irc.dnsbl.oftc.net 1126288534 J * nayco ~nayco@lns-vlq-49-mar-82-251-44-227.adsl.proxad.net 1126288553 M * nayco 'llorgh ! 1126288825 Q * dddd44 Ping timeout: 480 seconds 1126288864 J * dddd44 ~dhb55@tor-irc.dnsbl.oftc.net 1126288985 Q * kas_3 Ping timeout: 480 seconds 1126290460 J * okf4trrf ~dhb55@tor-irc.dnsbl.oftc.net 1126290885 Q * dddd44 Ping timeout: 480 seconds 1126291475 Q * okf4trrf Ping timeout: 480 seconds 1126291493 J * okf4trrf ~dhb55@tor-irc.dnsbl.oftc.net 1126292025 Q * okf4trrf Ping timeout: 480 seconds 1126292038 J * okf4trrf ~dhb55@tor-irc.dnsbl.oftc.net 1126292540 Q * okf4trrf Ping timeout: 480 seconds 1126292567 J * okf4trrf ~dhb55@tor-irc.dnsbl.oftc.net 1126293136 J * Nicoli ask@208.53.159.171 1126293349 Q * Tenchi-san Ping timeout: 480 seconds 1126294557 J * lilo_ ~lilo@lilo.usercloak.oftc.net 1126294678 Q * lilo Ping timeout: 480 seconds 1126296386 J * Aiken ~james@tooax6-073.dialup.optusnet.com.au 1126296670 P * stefani I'm Parting (the water) 1126298687 J * yarihm ~yarihm@80-218-5-17.dclient.hispeed.ch 1126299453 Q * mef Quit: using sirc version 2.211+KSIRC/1.3.10 1126300119 J * jonsmel ~jscottorn@209.33.206.3 1126302128 Q * daniel_hozac Ping timeout: 480 seconds 1126302257 M * jonsmel hi everyone 1126302286 M * jonsmel anyone know how to redirect ports in a vserver 1126302360 M * jonsmel ie... i have traffic coming in on port 80 to ip 192.168.30.14 and I want to redirect any traffic on that port to port 8080 1126302374 M * jonsmel the host ip is 192.168.30.5 1126302392 M * jonsmel I have been trying to do it through iptables on the host but haven't had any luck 1126302509 J * daniel_hozac ~daniel@c-6f1472d5.010-230-73746f22.cust.bredbandsbolaget.se 1126302786 M * mnemoc exactly like any other redirect 1126302850 M * jonsmel hrm, well if I do a netstat on the host I don't see those ports being available 1126302863 M * jonsmel thost ports are only in the vserver 1126302885 M * jonsmel here is the statement I am using... 1126302936 M * jonsmel iptables -t nat -A PREROUTING -i eth2 -d ! 192.168.30.14 -p tcp --dport 80 -j REDIRECT --to-ports 8080 1126302952 M * jonsmel so far that doesn't work for the vserver 1126302969 M * jonsmel I have another host without any vservers and the redirect works just fine 1126303011 M * mnemoc -d ! 192.168.30.14? 1126303025 M * jonsmel that is preventing a loop 1126303058 M * jonsmel don't redirect if the destination is myself 1126303075 M * jonsmel I am trying to setup a squid proxy in a vserver 1126303099 M * jonsmel so far it works good when I'm not in a vserver 1126303116 M * jonsmel the only thing that is not working in the vserver environment is the redirect 1126303159 J * Blissex ~Blissex@82-69-39-138.dsl.in-addr.zen.co.uk 1126303439 M * mnemoc jonsmel: what about redirecting to the vserver? ;) 1126303514 M * daniel_hozac is the NAT table traversed at all for local connections? 1126303553 M * daniel_hozac umm, nevermind, brain meltdown. 1126304177 M * jonsmel mnemoc: ? 1126304198 M * mnemoc --to 192.168.30.14:8080 ? 1126304222 M * jonsmel don't know, I can see 1126304501 J * lilo ~lilo@lilo.usercloak.oftc.net 1126304643 Q * lilo_ Ping timeout: 480 seconds 1126304659 M * jonsmel hrm that doesn't work, you can't specify the ip with the port 1126304961 M * mnemoc jonsmel: *g* REDIRECT just change the port, you have to use DNAT to change also the ip, because you are sending the package to a _different_ machine 1126305014 M * jonsmel hrm, that might work 1126305016 M * jonsmel let me try 1126305064 M * jonsmel so it should be ... -j DNAT --to ip .. correct? 1126305102 M * mnemoc --to ip:8080 1126305118 M * jonsmel cool, it worked 1126305135 M * mnemoc good :) 1126305196 M * jonsmel thanks a lot 1126305202 M * jonsmel that was giving me a headache 1126305240 M * mnemoc yw 1126305707 Q * nayco Quit: Bonne nuit ! 1126305742 J * nayco ~nayco@lns-vlq-49-mar-82-251-44-227.adsl.proxad.net 1126306232 Q * jonsmel Quit: 1126306793 Q * Blissex Remote host closed the connection 1126307530 Q * yarihm Quit: Leaving 1126308282 Q * nayco Quit: Bonne nuit ! 1126308894 Q * Doener Quit: Leaving 1126309525 Q * okf4trrf Ping timeout: 480 seconds