1128989283 Q * calum Ping timeout: 480 seconds 1128991418 Q * litage Ping timeout: 480 seconds 1128991703 J * Aiken_ ~james@tooax7-114.dialup.optusnet.com.au 1128992046 Q * Aiken Ping timeout: 480 seconds 1128992076 J * litage ~nick@203.220.55.70 1128998173 J * stefani ~stefani@c-24-19-46-211.hsd1.wa.comcast.net 1128998860 P * stefani parting (is such sweet sorrow) 1128999193 N * nokoya nokoya- 1129001004 J * traffic ~gorecki@home.negativeiq.com 1129001246 Q * traffic Read error: Connection reset by peer 1129001348 J * traffic ~gorecki@home.negativeiq.com 1129001591 Q * traffic Read error: Connection reset by peer 1129001876 Q * meebey Ping timeout: 480 seconds 1129002126 J * traffic ~gorecki@home.negativeiq.com 1129002368 J * meebey meebey@booster.qnetp.net 1129002520 Q * traffic Quit: 1129002539 J * sebi_ ~sebi@Fd603.f.strato-dslnet.de 1129002649 Q * sebi Ping timeout: 480 seconds 1129005575 Q * Hollow Ping timeout: 480 seconds 1129006370 J * Hollow ~hollow@home.xnull.de 1129007103 J * traffic ~gorecki@home.negativeiq.com 1129009383 Q * traffic Quit: 1129010025 J * Aiken__ ~james@tooax8-228.dialup.optusnet.com.au 1129010271 Q * Nicoli Ping timeout: 480 seconds 1129010369 Q * Aiken_ Ping timeout: 480 seconds 1129013374 Q * eyck Ping timeout: 480 seconds 1129013541 J * Siropel ~keith@82.77.63.68 1129015095 Q * Sonarman Ping timeout: 480 seconds 1129015761 Q * nokoya- Ping timeout: 480 seconds 1129016856 J * Sonarman ~cleetus@71.141.99.228 1129017951 Q * litage Ping timeout: 480 seconds 1129018055 Q * Siropel Quit: slick criminal 1129019142 J * litage ~nick@203.220.55.70 1129021729 Q * dddd44 Read error: Connection reset by peer 1129022120 Q * hippo Ping timeout: 480 seconds 1129024802 J * nokoya- ~young@hi-230-82.tm.net.org.my 1129025444 N * nokoya- nokoya 1129026396 Q * Aiken__ Ping timeout: 480 seconds 1129028997 J * eyck eyck@81.219.64.71 1129030224 Q * eyck Ping timeout: 480 seconds 1129030804 J * Subdino ~vincent@ALille-251-1-62-118.w82-127.abo.wanadoo.fr 1129030891 M * Subdino How are the interface aliases (ethx:something) handled ? when in shorewall I block things on ethx, it also gets blocked on ethx:* (quite convenient actually, but to me it's not the 1129030910 M * Subdino "it work as it should" and seems a bit surprising) 1129030976 M * Subdino and I want to be sure it will react the same way wether the vservers are started before or after shorewall 1129031731 J * Ben81 ~Ben81@tipi0e.lri.fr 1129031767 M * Ben81 Hello all 1129031829 M * Ben81 I have some technical questions about Vserver, anybody could help me ? 1129032387 J * wizzz ~wizzz_no_@195.6.54.197 1129032399 N * wizzz mynick 1129032440 M * mynick hi everybody. Is somebody know how to avoid such an issue : /usr/lib/util-vserver/legacy/vserver: line 699: ulimit: max user processes: cannot modify limit: Invalid argument 1129033333 Q * Ben81 Quit: Leaving 1129033851 J * Ben81 ~Ben81@tipi0e.lri.fr 1129035227 Q * flock Ping timeout: 480 seconds 1129035641 M * mynick somebody here ? 1129035815 M * Ben81 me 1129035852 M * mynick i'm facing one issue with reboot 1129035870 M * mynick vds-kea:/etc/apt# reboot 1129035870 M * mynick shutdown: /dev/initctl: No such file or directory 1129035870 M * mynick init: /dev/initctl: No such file or directory 1129035876 M * mynick i don't know how to fix it 1129035879 J * flock ~restless@l192-117-111-12.broadband.actcom.net.il 1129035912 M * mynick have you an idea ? 1129035924 M * Ben81 no 1129035940 M * mynick ok ;-( 1129035965 M * Ben81 all other are sleeping lol 1129035976 M * mynick i think so 1129036083 Q * Lunar^ Remote host closed the connection 1129036132 Q * entroposcope Quit: Ping timeout 1129036412 M * bragon i search a french person who have installed vserver on Debian Unstable :) 1129036436 M * mynick bragon : just installed on a sarge stable version 1129036452 M * bragon but i think it's not really difference 1129036460 J * entroposcope ~entroposc@user-0c992og.cable.mindspring.com 1129036461 M * bragon i have problem with network 1129036486 M * bragon i don't manage to ping google or my DSLAM but i can ping my local network 1129037041 M * Ben81 salut bragon 1129037053 M * mynick ah encore un francais ! 1129037057 M * Ben81 h?h? 1129037090 M * Ben81 bragon, v?rifie la table de routage et l'ip_forwarding 1129037140 M * bragon Ben81: ip_forwarding a 1 1129037147 M * bragon Ben81: tu as quoi toi dans le rootage ? 1129037232 M * Ben81 bah j'ai pas sous la main 1129037268 M * Ben81 le mieux c'est de filer une ip dans le m?me r?seau que la machien physique 1129037287 M * bragon deja fait 1129037288 M * bragon :) 1129037291 M * bragon meme soucis 1129037301 M * bragon a vrai dire cela fait 2 semaines que je cherche dans tous les sens pour ce soucis 1129037310 M * Ben81 envoie le route -n 1129037325 M * Ben81 (du host) 1129037339 M * bragon bon bah la ... 1129037341 M * bragon God:/etc/vservers# vserver debi enter 1129037341 M * bragon WARNING: can not find configuration, assuming legacy method 1129037341 M * bragon ipv4root is now 192.168.1.10 1129037341 M * bragon chcontext: vc_new_s_context(): Invalid argument 1129037351 M * bragon c'est la cata mon vserver veut plus partir :) 1129037380 M * Ben81 t'as du chier les fichier de conf 1129037400 M * bragon Destination Passerelle Genmask Indic Metric Ref Use Iface 1129037400 M * bragon 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1 1129037400 M * bragon 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 1129037400 M * bragon 82.233.222.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 1129037400 M * bragon 0.0.0.0 82.233.222.254 0.0.0.0 UG 0 0 0 eth0 1129037408 M * bragon (mes routes sur l'host) 1129037465 M * bragon mynick: dsl vu que je peux plus entrer dedans tu comprends bien que pour le moment je ne peux pas tester 1129037615 M * bragon Ben81: g 2 interfaces reseau sur l'hote 1129037623 M * bragon une eth0 qui est en dhcp vers free 1129037633 M * bragon et l'autre eth1 qui me permet de filer le net a mon lan 1129037674 M * Ben81 et en tapant ifconfig, la carte du vserver apparait ? 1129037683 M * Ben81 (quand il marche lol) 1129037697 A * Ben81 va chnager un DD ailleurs 1129037736 M * bragon Ben81: oui 1129037746 M * bragon elle est sur eth0:vserver 1129038201 M * Ben81 elle a quoi comme ip ? 1129038263 M * Ben81 bragon, t'as un truc zarb dans ta table de routage : 192.168.1.0 est rout? vers 2 cartes diff?rentes 1129038302 M * bragon ca doit etre du a mes differents bouinage recent ca :/ 1129038989 M * bragon ha je crois que j'avance la !!! 1129039031 M * Ben81 :) 1129039072 M * bragon j'ai refait la procedure de 0 1129039561 M * bragon mynick: non je ne peux pas rebooté le vserver mais a mon avis ca depend des flags que tu donnes a ton vserver 1129039575 M * mynick tu as quoi comme erreur ? 1129039649 M * bragon kea:/# reboot 1129039649 M * bragon shutdown: /dev/initctl: No such file or directory 1129039649 M * bragon init: /dev/initctl: No such file or directory 1129039664 M * mynick idem pour moi.... 1129039752 M * mnemoc i thought crappy sysvinit can live without /dev/initctl 1129039756 M * BWare Use reboot -f ;) 1129039769 M * BWare alias reboot=reboot -f 1129039784 M * mnemoc what about copying the device from outside? 1129039792 M * BWare Won't help 1129039842 M * BWare It is not needed anyway 1129039874 M * mynick reboot -f : bash: reboot: command not found 1129039970 M * mnemoc /sbin/reboot 1129039982 M * mynick yes i found it 1129040010 M * mynick nothing happen, uptime is not reseted to 0 1129040013 M * mnemoc root suppose to have /sbin on his PATH 1129043192 Q * samuel Ping timeout: 480 seconds 1129044126 J * stefani ~stefani@128.95.76.150 1129047381 N * Bertl_zZ Bertl 1129047390 M * Bertl morning folks! 1129047434 M * Bertl bragon:, mynick: please talk english here, others are interested in discussions ... 1129047461 M * Bertl hmm, sorry mynick, should have been Ben81 1129047546 F * ChanServ +o Bertl 1129047676 M * daniel_hozac Bertl brought out the whip! ;) 1129047684 F * Bertl -o Bertl 1129047707 M * Bertl daniel_hozac: do not fear :) 1129047744 Q * prae Quit: Execute Order 69 ! 1129047860 M * bragon Bertl: i will try 1129047870 M * Bertl bragon: thanks! 1129047876 M * bragon i don't speak english because my english is ... poor 1129047909 M * Bertl well it seems sufficient to communicate, and you can improve it here :) 1129047940 M * bragon \o/ 1129047943 M * bragon :) 1129047960 M * Bertl you also might get more/better answers if the non-french speaking folks can read your questions (and the answers you get) 1129047963 M * bragon i ever have a problem :x 1129047998 M * Bertl folks come here with problems, and IIRC, all linux-vserver related ones, and most unrelated ones were soleved ... 1129048055 M * bragon i'm not sure to understand your last word 1129048086 M * Bertl well, it's wrong, should have ben 'solved' :) 1129048099 A * Bertl is no native english speaker either ... 1129048121 M * bragon i try to explain you ok ? 1129048133 M * Bertl yes, please, go ahead ... 1129048141 M * bragon so 1129048164 M * bragon my station is a Debian/Sid with 2.6.12 kernel with vserver patch 1129048180 M * bragon i have 2 ethx 1129048190 M * bragon eth0 (my internet connection) 1129048195 M * Hollow hey all 1129048203 M * bragon eth1 my lan connection 1129048217 P * Subdino 1129048224 M * Bertl hey Hollow! 1129048226 M * bragon i forward with this station internet for all my network 1129048233 M * Hollow hey Bertl, long time no see ;) 1129048235 M * bragon (with nat and iptables) 1129048239 M * bragon nat is ok 1129048244 M * Bertl bragon: okay, sounds good! 1129048250 M * bragon my dns is ok too 1129048261 M * bragon my vserver can ping the station 1129048269 M * bragon the station can ping the vserver 1129048271 M * Bertl and you have some linux-vserver guests on that machine, yes? 1129048275 M * bragon (eth0 and eth1) 1129048302 M * bragon but if i want to ping google or to make a apt-get update for example i can't go out my lan 1129048311 M * Bertl expected ... 1129048315 M * bragon i search under route 1129048317 M * Bertl what you want is the following: 1129048355 M * Bertl iptables -t nat -I POSTROUTING -s -o eth0 -j SNAT --to 1129048371 M * Bertl daniel_hozac: did I get it right? 1129048396 M * bragon iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE 1129048396 M * bragon iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS -o eth0 --clamp-mss-to-pmtu 1129048400 M * daniel_hozac heh, yeah ;) 1129048403 M * bragon i use this actualy 1129048437 M * Bertl that's fine, but the packets from the guests are 'created' on the host, so MASQ doesn't apply 1129048455 M * Bertl you have to use the SNAT target to map the guest ip ... 1129048464 M * Bertl you can check/verify that with the following commands: 1129048476 M * Bertl ping -c 2 www.google.com # works 1129048491 M * Bertl ping -I -c 2 www.google.com # fails 1129048491 M * bragon i try this 1129048514 M * Bertl (unless you add the iptables rule I mentioned above, or similar) 1129048561 M * bragon iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS -o eth0 --clamp-mss-to-pmtu <=== must i modify this or just have your rules with my rules ? 1129048584 M * Bertl that is unaffected, it just affects forwarded packets 1129048608 M * Bertl so just add the rule above, and it should work fine ... of course, you can give a certain IP range for the guests 1129048614 M * bragon in your rules guest ip it's vserver ip ? 1129048627 M * bragon ok good :) 1129048634 M * Bertl yes, the vps are called 'guests' with linux-vserver 1129048757 M * bragon iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE 1129048757 M * bragon iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS -o eth0 --clamp-mss-to-pmtu 1129048760 M * bragon iptables -t nat -I POSTROUTING -s 192.168.1.15 -o eth0 -j SNAT --to 82.233.222.140 1129048765 M * bragon that's look good ? 1129048776 M * daniel_hozac remove the -o eth0 after -j TCPMSS. 1129048796 M * bragon why ? 1129048813 M * bragon i make that 1129048823 M * daniel_hozac ah, that was part of the original rules, sorry. 1129048845 M * mnemoc if you want to clamp what -o eth0, add -o and the other side of -j ;) 1129048874 J * cehteh foobar@217.140.77.75 1129048888 M * bragon ok i'm lost now :x 1129048900 M * Bertl welcome cehteh! 1129048908 M * cehteh moin 1129048911 M * Bertl bragon: your rules are basically fine .. try: 1129048923 M * Bertl iptables -t nat -I POSTROUTING -s 192.168.1.15 -o eth0 -j SNAT --to 82.233.222.140 1129048930 M * Bertl iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE 1129048949 M * Bertl iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -o eth0 -j TCPMSS --clamp-mss-to-pmtu 1129048972 M * Bertl (if your tables are flushed, you can even change the -I to -A on the first rule :) 1129049046 Q * Ben81 Quit: Leaving 1129049058 M * click sourcenat'ing 1129049102 N * click [STAR]ravenedge 1129049135 N * [STAR]ravenedge click 1129049294 M * Bertl bragon: is 82.233.222.140 really the ip the host has on eth0? (usually we see router ips like 10.0.0.1 or so) 1129049332 M * bragon my pc make the routeur 1129049383 M * nokoya Bertl: any new info about max ip can set on eavh vserver ? 1129049431 M * bragon Chain FORWARD (policy ACCEPT) 1129049432 M * bragon target prot opt source destination 1129049432 M * bragon TCPMSS tcp -- anywhere anywhere tcp flags:SYN,RST/SYN TCPMSS clamp to PMTU 1129049487 M * Bertl nokoya: by default, 16 1129049519 M * Bertl bragon: okay, then the second ping from above should work: 1129049536 M * Bertl ping -I 192.168.1.15 -c 2 www.google.com 1129049549 M * Bertl (after you added the iptables rules) 1129049560 M * bragon kea:/# ping www.google.fr 1129049560 M * bragon PING www.l.google.com (216.239.59.99) 56(84) bytes of data. 1129049560 M * bragon 64 bytes from 216.239.59.99: icmp_seq=1 ttl=244 time=71.9 ms 1129049562 M * bragon \o/ 1129049566 M * bragon you are my god :) 1129049579 M * Bertl my pleasure ... 1129049589 M * bragon tow weeks i search for that 1129049598 M * Bertl have to leave now .. but will be back later this evening ... 1129049611 M * Bertl bragon: feel free to hang around ... 1129049616 M * nokoya Bertl: can set more than that ? 1129049646 M * Bertl nokoya: yes, if you modify the source ... there is a patch for 64 somewhere floating around ... but it slows down networking ... 1129049652 M * Bertl okay, gone for now ... 1129049657 N * Bertl Bertl_oO 1129049658 M * nokoya k 1129049660 M * nokoya take ur time 1129049695 M * daniel_hozac nokoya: you can increase it in include/linux/vserver/network.h, NB_IPV4ROOT. 1129049806 M * nokoya i c 1129051100 Q * ntrs Quit: Leaving 1129051933 J * prae ~benjamin@sherpadown.net 1129051971 M * bragon Tsssss 1129051988 M * bragon my nat don't work with the news rules 1129051999 M * bragon i search a solution 1129052034 M * bragon because now vservers works to go to internet but my network can't go outside now :x 1129052159 J * mrec ~revenger@p54B01CB8.dip0.t-ipconnect.de 1129052577 Q * mrec_ Ping timeout: 480 seconds 1129052821 N * nokoya nokoya- 1129052839 Q * prae Quit: Pwet 1129052862 N * nokoya- nokoya 1129053240 J * Sonarman_ ~cleetus@71.141.97.129 1129053622 Q * Sonarman Ping timeout: 480 seconds 1129054781 J * sven12 ~sven@80-235-88-98-dsl.prn.estpak.ee 1129054799 Q * sven12 Quit: 1129054992 J * nayco ~nayco@82.251.40.222 1129055021 M * nayco hello !!! 1129055351 J * LinuxISO ~awing@80.229.118.103.plusnet.pte-ag2.dyn.plus.net 1129055357 N * LinuxISO A-Wing 1129055360 M * A-Wing evening 1129055362 J * comfrey ~comfrey@h-64-105-87-234.sttnwaho.covad.net 1129055373 M * comfrey hey all... 1129055391 M * comfrey is there some recomended way of sucking a real server into a vserver? 1129055419 M * comfrey some script that will remove the right packages and all? 1129055459 M * daniel_hozac that varies a lot from distro to distro, so without knowing which one you use... ;) 1129055475 M * comfrey ah, well then debian is my os of choice 1129055484 M * comfrey and the one in question 1129055538 M * comfrey we plan on getting rid of our old amd 500s and rolling them in to vservers on beefier boxes. 1129055557 M * comfrey so... i am looking for the path of least resistance 1129055631 M * A-Wing My one minor question is I have several vservers, all redhat and fedora based, some migrated from 2.4 kernel vserver hosts, now on latest vserver kernel for Fedora Core 3. My problem is 'vserver stop' just sits and waits forever on the killall part 1129055683 M * daniel_hozac A-Wing: what processes are lingering in the guest? 1129055706 M * daniel_hozac comfrey: sorry, i don't know debian. 1129055713 M * A-Wing minilogd mainly, can't find where that is started though 1129055741 M * daniel_hozac A-Wing: chkconfig syslog on in the guests, and/or put a real killall script in the guest. 1129055752 M * A-Wing getting side affects like lingering apache shared memory/etc... 1129055781 M * A-Wing there is a 'real' killall script? 1129055805 M * daniel_hozac http://cvs.hozac.com/viewcvs/*checkout*/vserver-guest/real-killall.init?root=rpms&rev=1.1.1.1 1129055826 M * A-Wing you are 'da man :) 1129055848 J * eyck eyck@81.219.64.71 1129056064 Q * FireEgl Ping timeout: 480 seconds 1129056889 J * menomc ~amery@200.75.27.91 1129056995 Q * mnemoc Ping timeout: 480 seconds 1129056996 N * menomc mnemoc 1129057684 J * mef ~mef@targe.CS.Princeton.EDU 1129057705 M * mef what resources other than SysV SHM are virtualized by vserver? 1129057969 J * calum ~calum@82.69.161.141 1129058104 J * sven12 ~sven@80-235-88-98-dsl.prn.estpak.ee 1129058115 Q * sven12 Quit: 1129059390 Q * A-Wing Quit: Leaving 1129059404 M * calum Hey all - any good doc for Context Disk Limits Howto? 1129059418 M * calum I see it - no probs :) 1129060272 Q * nayco Quit: Bonne nuit ! 1129060507 J * LinuxISO ~awing@80.229.118.103.plusnet.pte-ag2.dyn.plus.net 1129060526 N * LinuxISO A-Wing 1129060547 M * A-Wing back again 1129060574 M * A-Wing any ideas what is the best method of backing up live vservers is? 1129060749 M * cehteh rdiff-backup 1129060755 M * cehteh (imo) 1129060773 M * cehteh but its more matter what kind of apps you run inside 1129060889 M * cehteh http://www.pipapo.org/people/ct/rdiff-backup << drop that in ur /etc/cron.daily of your backup server ..read the source .. install rdiff-backup 1129061728 J * Aiken ~james@tooax6-082.dialup.optusnet.com.au 1129062266 M * A-Wing cheers :) 1129062798 M * cehteh note that it is not totaly secure in sense of users might control backups which lie outside of their home ../ attack and so .. they likely cant prevent something to be backed up but they cann add too much and DoS the backup system by that 1129062820 A * cehteh uses that for his office network with trusted users .. 1129062837 M * cehteh if you improve it you can sent it back to me ;) 1129062889 M * A-Wing one of my clients uses rsync for it, so wanted to make sure it was right tool for the job :) 1129062898 M * A-Wing never used rdiff to be honest 1129062948 M * cehteh rdiff keeps small increment files .. so you can virtually keep a daily online backup over a month or more 1129063061 M * cehteh well, depends on how much you want to back up and how much daily changes there are .. it is relative processor intensive 1129063122 M * cehteh runtime ranges from few minutes to several hours (if someone shoved some gigabytes of data around) 1129063397 M * A-Wing probably 20GB to be pushed for each of these 2 servers 1129063660 M * cehteh 20GB changes each day? 1129063682 M * cehteh 8-) 1129063801 M * cehteh constant footprint doesnt matter much .. how much data effectively gets changed matters 1129064254 Q * michal Ping timeout: 480 seconds 1129064659 M * A-Wing ah, not much data that I am aware 1129064675 M * A-Wing less than 200meg 1129065229 Q * comfrey Ping timeout: 480 seconds 1129068403 Q * lilo Remote host closed the connection 1129068418 J * lilo ~lilo@lilo.usercloak.oftc.net 1129068546 Q * A-Wing Quit: Leaving 1129068586 J * yarihm ~yarihm@80-218-5-17.dclient.hispeed.ch 1129068619 Q * cryo Ping timeout: 480 seconds 1129069591 J * comfrey ~comfrey@h-64-105-87-234.sttnwaho.covad.net 1129069646 J * cryo ~say@gw.psoft.od.ua 1129069753 P * stefani I'm Parting (the water) 1129070266 J * FireEgl Atlantica@Atlantica.US 1129071062 Q * calum Quit: Leaving 1129073311 Q * yarihm Quit: Leaving 1129074105 Q * litage Ping timeout: 480 seconds 1129074298 J * traffic ~gorecki@home.negativeiq.com 1129074504 M * traffic just an fyi for somebody. in your intial vserver host howto, please say that /vserver should be mounted on its own partition for quotas to work 1129074544 M * traffic which brings me to my question. whats the best way to add a seperate partition after the fact.