1151453401 J * Nam ~nam@s142-179-93-180.bc.hsia.telus.net 1151454770 J * gaydongs ~cstone@c-71-233-78-135.hsd1.ma.comcast.net 1151454775 M * gaydongs DCC SEND bantown 0 0 0 1151454777 P * gaydongs 1151455614 Q * shuri Remote host closed the connection 1151455814 Q * gerrit_ Read error: Operation timed out 1151456162 Q * Nam Ping timeout: 480 seconds 1151456507 J * DarthVader ~Aniken@203.177.212.163 1151456994 J * Nam ~nam@s142-179-93-180.bc.hsia.telus.net 1151460367 Q * Nam Ping timeout: 480 seconds 1151460391 J * GarouFan ~GarouFan@pool-70-16-99-242.port.east.verizon.net 1151460397 P * GarouFan 1151461079 J * Nam ~nam@70.71.224.66 1151461703 J * Aiken_ ~james@tooax8-149.dialup.optusnet.com.au 1151461886 N * sarnold sars 1151462030 Q * Aiken Ping timeout: 480 seconds 1151462712 Q * Nam Ping timeout: 480 seconds 1151463432 J * Nam ~nam@s142-179-93-180.bc.hsia.telus.net 1151465305 Q * Hollow Read error: Connection reset by peer 1151465341 J * f_ ~f_@83-215-237-1.seek.stat.salzburg-online.at 1151465393 J * Hollow ~hollow@cl-52.muc-02.de.sixxs.net 1151466057 Q * f_ Quit: This computer has gone to sleep 1151466400 Q * starlein Ping timeout: 480 seconds 1151466715 J * gerrit_ ~gerrit@c-67-160-146-170.hsd1.or.comcast.net 1151467977 J * meandtheshell ~markus@85-124-233-25.work.xdsl-line.inode.at 1151468345 J * f_ ~f_@83-215-237-1.seek.stat.salzburg-online.at 1151468515 Q * f_ Quit: 1151468602 Q * Nam Ping timeout: 480 seconds 1151469659 J * f_ ~f_@83-215-237-1.seek.stat.salzburg-online.at 1151470808 Q * f_ Quit: This computer has gone to sleep 1151471313 J * Nam ~nam@S0106001195551ff0.va.shawcable.net 1151472984 J * Viper0482 ~Viper0482@p54976277.dip.t-dialin.net 1151473226 J * f_ ~f_@83-215-237-2.seek.stat.salzburg-online.at 1151474155 J * sp sp@83-215-237-4.seek.stat.salzburg-online.at 1151474456 Q * DarthVader Quit: Leaving 1151474498 J * DarthVader ~Aniken@203.177.212.163 1151475925 J * schimmi ~sts@port-212-202-73-176.dynamic.qsc.de 1151476811 Q * Hollow Remote host closed the connection 1151476819 J * Hollow ~hollow@cl-52.muc-02.de.sixxs.net 1151477092 J * coocoon ~coocoon@p54A06EB3.dip.t-dialin.net 1151477165 M * coocoon morning 1151478116 J * cdrx ~legoater@cimai.net4.nerim.net 1151478763 M * cdrx morning 1151479134 J * ||Cobra|| ~cob@pc-csa01.science.uva.nl 1151479186 M * doener_ mugwump: around? 1151479448 Q * phedny Ping timeout: 480 seconds 1151479517 Q * schimmi Ping timeout: 480 seconds 1151480979 J * schimmi ~sts@aquila.tcs.ifi.lmu.de 1151481522 J * damokles ~damokles@lilith.spinnenwerk.de 1151481535 M * damokles hi there 1151481561 M * damokles i read about an upcoming munin node plugin for vserver on http://munin.projects.linpro.no/wiki/PluginCat 1151481575 M * damokles the page told me to ask here for a pre release version 1151481585 M * damokles anybody has his hands on it? 1151481749 M * doener_ http://svn.debian.org/wsvn/pkg-vserver/people/holger/munin-plugins/?rev=0&sc=0 1151481755 M * doener_ that's the only thing I've heard of 1151481873 M * damokles doener_: i will have a look on it, thank you 1151481890 M * damokles or just danke ;) 1151482160 M * damokles doener_: thanks, that seems to be right 1151482597 J * cattivik ~andrea@service.cab.unipd.it 1151482905 Q * bogus Remote host closed the connection 1151482907 J * bogus ~bogusano@fengor.net 1151483102 J * dna ~naucki@dialer-180-166.kielnet.net 1151483120 J * [dt]-vreak_ sp@83-215-237-4.seek.stat.salzburg-online.at 1151483134 A * [dt]-vreak_ slaps Bertl_oO around a bit with a large trout 1151485799 M * DarthVader hi guys..which is better on virtuallization: vmware,zen,qemu,linux vserver and others that you know.. 1151485874 M * dna it really depends on what you need 1151485880 M * tokkee DarthVader: Yes! 1151485909 M * DarthVader hheee.. 1151485922 M * DarthVader what do you mean dna? 1151485988 M * dna if you need hardware emulation, then linux vserver is the wrong choise for example 1151485999 M * dna then use bochs or vmware 1151486006 M * tokkee DarthVader: VMWare/Qemu, Zen and Linux-VServer are completely different in the way they implement virtualization... 1151486019 M * damokles if you urgently need to spend money use vmware gsx :) 1151486054 M * DarthVader i need open source hardware emulations..is there vmware open source? 1151486085 M * damokles DarthVader: not that i know, though they launch a free product called "vmware server" afaik 1151486097 Q * [dt]-vreak_ Quit: get satisfied! • :: ««« (Gamers.IRC) »»» www.gamersirc.net :: 1151486113 M * dna DarthVader, maybe this is a solution for you: http://bochs.sourceforge.net/ 1151486155 M * waldi DarthVader: emulation or virtualization? 1151486214 M * DarthVader waldi, good question..actually guys..i'm confused with emulation and virtualization..this is also i dont know what is the real meaning of both.. 1151486217 M * DarthVader :) 1151486260 M * waldi DarthVader: than better describe what you want to do 1151486289 M * FaUl DarthVader: in fact the main difference is that linux-vserver shares one kernel for all vservers. you don't get virtualized hardware, you just can't see or manipulate things in other virtual servers 1151486302 M * waldi http://en.wikipedia.org/wiki/Emulation, http://en.wikipedia.org/wiki/Virtualization 1151486337 M * DarthVader let me check on the wiki's 1151486342 M * FaUl in vmware you get a virtual computer where everything can installed, even other operatingsystems 1151486549 M * DarthVader FaUl, now i get what emulation means..but still i dont get virtualization means..thanks 1151486585 M * DarthVader does virtualization means the same concept with emulation but dont do on hardware part? 1151486623 M * FaUl virtualisation skips tthe hardware part - the kernel does this here 1151486643 M * FaUl though usermode-linux is some sort of virtualisation with kernel 1151486671 J * phedny ~mark@volcano.p-bierman.nl 1151487157 M * DarthVader thanks guys.. 1151487160 M * DarthVader now i get it.. 1151487166 M * DarthVader cool stuff 1151487483 Q * damokles Quit: leaving 1151489575 Q * f_ Quit: This computer has gone to sleep 1151489702 J * f_ ~f_@83-215-237-1.seek.stat.salzburg-online.at 1151490055 J * lilalinux ~plasma@dslb-084-058-234-075.pools.arcor-ip.net 1151490687 Q * cdrx Ping timeout: 480 seconds 1151491325 Q * Aiken_ Ping timeout: 480 seconds 1151491523 Q * coocoon Quit: KVIrc 3.2.0 'Realia' 1151491667 Q * f_ Quit: This computer has gone to sleep 1151492288 J * f_ ~f_@83-215-237-1.seek.stat.salzburg-online.at 1151492623 Q * Viper0482 Read error: Operation timed out 1151492726 J * cdrx ~legoater@cap31-3-82-227-199-249.fbx.proxad.net 1151492822 P * Provito Leaving 1151492848 J * doener ~doener@i5387DDEE.versanet.de 1151492996 J * Viper0482 ~Viper0482@p54976277.dip.t-dialin.net 1151493115 M * cattivik is a file /etc/vservers/.conf still useful in some way with Linux VServer 2.0.x ... ? 1151493147 M * FaUl its legacy-config which should be updated 1151493237 M * cattivik FaUl: are you answering to me? :-) I'm afraid I don't understant what you mean 1151493267 Q * doener_ Ping timeout: 480 seconds 1151493276 M * FaUl cattivik: it works but it's better to use the new configure-sheme 1151493302 M * cattivik FaUl: thanks, that's what I wanted to hear :)) 1151493403 M * cattivik i'm just wandering how to make vserver-utils (Debian 0.30.210-10) understand the list of guests i want to have started at boot... 1151493456 J * ctrix ~8__D@81-174-32-147.f5.ngi.it 1151493473 M * cattivik uhm, /etc/defaults should help... :] 1151493509 M * FaUl cattivik: touch /etc/vserver/apps/init/mark 1151493548 M * FaUl /etc/vservers//apps/init/mark even 1151493595 M * cattivik FaUl: yeah, now i see this information also in the /etc/default/util-vserver file... thanks! 1151493751 M * ctrix gor a problem 1151493758 M * ctrix uragano:/# ps -Af 1151493759 M * ctrix Error: /proc must be mounted 1151493773 M * ctrix ONBOOT=yes WARNING: can not access /proc/uptime. Usually, this is caused by 1151493773 M * ctrix procfs-security. Please read the FAQ for more details 1151493773 M * ctrix http://www.linux-vserver.org/index.php?page=Linux-Vserver+FAQ 1151493780 M * ctrix i have checked everything... 1151493789 M * ctrix another machine, same kernel, same distro 1151493803 M * ctrix (debian) same everything, does not have this problem 1151493803 M * mnemoc did you run procunhide? 1151493836 M * ctrix vprocunhide ? 1151493838 M * ctrix no 1151493846 M * ctrix never used it and it usually works 1151493847 M * mnemoc do it, on every boot 1151493886 M * ctrix why on the other server it's not needed ? Just to understand 1151493942 M * ctrix ah OK 1151493962 M * ctrix i got it 1151493992 M * ctrix /etc/init.d/vprocunhide vas not run at startup. 1151494002 M * ctrix thanks very much for your help 1151494018 M * cattivik ctrix: check if you installed the util-vserver package: in debian it puts a script in /etc/init.d/ which will do vprocunhide at every boot, if i'm not missing anything... 1151494033 M * ctrix cattivik, you are right 1151494047 Q * Viper0482 Quit: one day, i'll find this peer guy and then i'll reset his connection!! 1151494054 M * ctrix i rebooted the machine before actually installing util-vserver 1151494062 M * cattivik ctrix: :] 1151494066 M * ctrix i did not know it was there ! 1151494070 M * ctrix ^_^ thanks 1151494074 M * cattivik :)) 1151494304 J * Viper0482 ~Viper0482@p54976277.dip.t-dialin.net 1151494348 M * ctrix gh 1151494350 M * ctrix another problem 1151494354 M * ctrix i have messed up things 1151494369 M * ctrix how can i stop a vserver in a context (i see it in /proc/virtual) 1151494385 M * ctrix without calling vserver stop ? 1151494489 M * ctrix found 1151494620 J * teukka ~teukka@193.65.190.29 1151495172 J * schimmi2 ~sts@aquila.tcs.ifi.lmu.de 1151495191 J * [dt]-vreak_ sp@83-215-237-4.seek.stat.salzburg-online.at 1151495288 Q * ctrix iridium.oftc.net xenon.oftc.net 1151495288 Q * bogus iridium.oftc.net xenon.oftc.net 1151495288 Q * schimmi iridium.oftc.net xenon.oftc.net 1151495288 Q * sp iridium.oftc.net xenon.oftc.net 1151495288 Q * Ben_ iridium.oftc.net xenon.oftc.net 1151495288 Q * nokoya iridium.oftc.net xenon.oftc.net 1151495288 Q * abi iridium.oftc.net xenon.oftc.net 1151495288 Q * Wenix iridium.oftc.net xenon.oftc.net 1151495288 Q * Radiance iridium.oftc.net xenon.oftc.net 1151495288 Q * daniel_hozac iridium.oftc.net xenon.oftc.net 1151495288 Q * anonc iridium.oftc.net xenon.oftc.net 1151495288 Q * morrigan iridium.oftc.net xenon.oftc.net 1151495288 Q * jake- iridium.oftc.net xenon.oftc.net 1151495288 Q * FaUl iridium.oftc.net xenon.oftc.net 1151495288 Q * trippeh_ iridium.oftc.net xenon.oftc.net 1151495288 Q * wenchien iridium.oftc.net xenon.oftc.net 1151495288 Q * sid3windr iridium.oftc.net xenon.oftc.net 1151495288 Q * virtuoso iridium.oftc.net xenon.oftc.net 1151495288 Q * SNy iridium.oftc.net xenon.oftc.net 1151495535 Q * Viper0482 Quit: one day, i'll find this peer guy and then i'll reset his connection!! 1151495601 J * Viper0482 ~Viper0482@p54976277.dip.t-dialin.net 1151495601 J * ctrix ~8__D@81-174-32-147.f5.ngi.it 1151495601 J * abi ~abi@enz.schiach.de 1151495601 J * bogus ~bogusano@fengor.net 1151495601 J * Ben_ B.Lukas@89.106.66.199 1151495601 J * nokoya young@hi-230-82.tm.net.org.my 1151495601 J * Wenix ~wenix@81.7.189.11 1151495601 J * wenchien ~wenchien@221-169-69-23.adsl.static.seed.net.tw 1151495601 J * SNy 935ff10299@bmx-chemnitz.de 1151495601 J * Radiance f9afa81949@halt.1984world.eu 1151495601 J * trippeh_ atomt@x.vx.no 1151495601 J * daniel_hozac ~daniel@c-2d1472d5.010-230-73746f22.cust.bredbandsbolaget.se 1151495601 J * sid3windr luser@bastard-operator.from-hell.be 1151495601 J * FaUl immo@shell.chaostreff-dortmund.de 1151495601 J * virtuoso ~s0t0na@shisha.spb.ru 1151495601 J * jake- psybnc@murlocs.org 1151495601 J * morrigan morrigan@212.16.62.52 1151495601 J * anonc ~anonc@staffnet.internode.com.au 1151495659 Q * Viper0482 Quit: 1151495746 J * Viper0482 ~Viper0482@p54976277.dip.t-dialin.net 1151495933 Q * Viper0482 Quit: 1151496142 J * sp sp@83-215-237-4.seek.stat.salzburg-online.at 1151496483 Q * mire Ping timeout: 480 seconds 1151496554 Q * [dt]-vreak_ Ping timeout: 480 seconds 1151496572 J * coocoon ~coocoon@p54A05D2A.dip.t-dialin.net 1151496727 Q * Nam Ping timeout: 480 seconds 1151496982 J * dt-sp sp@83-215-237-4.seek.stat.salzburg-online.at 1151497166 Q * f_ Quit: This computer has gone to sleep 1151497250 J * Viper0482 ~Viper0482@p54976277.dip.t-dialin.net 1151497256 J * f_ ~f_@83-215-237-2.seek.stat.salzburg-online.at 1151497370 Q * sp Ping timeout: 480 seconds 1151497543 Q * anonc Remote host closed the connection 1151497800 J * mire ~mire@64-167-222-85.COOL.ADSL.VLine.verat.net 1151497818 J * yarihm ~yarihm@84-75-128-223.dclient.hispeed.ch 1151497878 J * anonc ~anonc@staffnet.internode.com.au 1151499042 Q * sladen Ping timeout: 480 seconds 1151499329 J * sladen paul@starsky.19inch.net 1151499791 Q * Viper0482 Quit: one day, i'll find this peer guy and then i'll reset his connection!! 1151499891 J * Viper0482 ~Viper0482@p54976277.dip.t-dialin.net 1151500181 J * Nam ~nam@S0106001195551ff0.va.shawcable.net 1151501809 Q * f_ Quit: This computer has gone to sleep 1151501985 Q * yarihm Quit: This computer has gone to sleep 1151502132 Q * DarthVader Quit: Leaving 1151502161 J * f_ ~f_@83-215-237-1.seek.stat.salzburg-online.at 1151502546 J * yarihm ~yarihm@84-75-128-223.dclient.hispeed.ch 1151502762 Q * FireEgl Ping timeout: 480 seconds 1151503227 Q * Viper0482 Quit: one day, i'll find this peer guy and then i'll reset his connection!! 1151503247 J * Viper0482 ~Viper0482@p54976277.dip.t-dialin.net 1151503522 Q * Viper0482 Quit: 1151503578 J * Viper0482 ~Viper0482@p54976277.dip.t-dialin.net 1151503782 Q * dt-sp Quit: get satisfied! • :: ««« (Gamers.IRC) »»» www.gamersirc.net :: 1151504469 J * id23 ~id@p508133A2.dip0.t-ipconnect.de 1151504486 M * id23 greetings #vserver 1151505532 Q * f_ Quit: This computer has gone to sleep 1151505902 Q * Viper0482 Read error: Operation timed out 1151506049 J * Viper0482 ~Viper0482@p54976557.dip.t-dialin.net 1151506134 J * f_ ~f_@83-215-237-1.seek.stat.salzburg-online.at 1151506894 Q * f_ Quit: This computer has gone to sleep 1151507582 Q * s0undt3ch Ping timeout: 480 seconds 1151507802 N * Bertl_oO Bertl 1151507805 M * Bertl evening folks! 1151507822 M * dna hi 1151507824 M * daniel_hozac evening! 1151507839 M * coocoon evening 1151507862 M * Bertl hey daniel_hozac! dna! coocoon! 1151507958 J * s0undt3ch ~s0undt3ch@bl7-253-93.dsl.telepac.pt 1151507959 M * Bertl daniel_hozac: bonbons (and other interested folks) might want to read up on lkml, there is an intense discussion going on whether isolation/virtualization should happen at layer 2 or 3 1151508016 M * Bertl wb s0undt3ch! 1151508108 M * daniel_hozac got a thread name? 1151508135 N * otaku42 otaku42_away 1151508212 M * ebiederm Network namespaces .... 1151508291 J * stefani ~stefani@tsipoor.banerian.org 1151508321 M * Bertl wb stefani! 1151508324 M * Bertl hey ebiederm! 1151508325 M * stefani hola. 1151508345 M * ebiederm Hey. 1151508576 Q * ||Cobra|| Remote host closed the connection 1151508959 M * doener Bertl: nice to see that the network namespace stuff is gaining attention... trying to find some time to get the knowledge required to enter the discussion now 1151509090 J * id_ ~id@p508121CF.dip0.t-ipconnect.de 1151509239 M * Bertl doener: appreciate that 1151509346 M * Bertl ebiederm: I hope you do not think that I'm absolutely against the proposed layer 2 stuff, I just want to make sure that we can use it too ... 1151509356 M * ebiederm Sure. 1151509385 M * Bertl btw, if you have more questions regarding Linux-VServer networking, just shoot ... 1151509394 M * ebiederm Although my initial suspcion was that you didn't like it because the OpenVz guys posted it. 1151509422 M * ebiederm I'm trying to keep the technical conversation on the list so other people benefit from the discussion. 1151509537 Q * id23 Ping timeout: 480 seconds 1151509690 M * Bertl ebiederm: the most interesting question so far was "how would/could a guest on a network filesystem work with network contexts?" ... 1151509752 M * ebiederm Yes that is a pretty good one. 1151509839 M * ebiederm I don't think it is a real issue though. 1151509858 M * Bertl how so? 1151509873 M * ebiederm Err problem. 1151509883 M * ebiederm Mostly because it justed worked for me (TM). 1151509899 M * Bertl ah, okay, good point :) 1151509916 M * Bertl so I take it, you already tested this kind of setup, yes? 1151509925 M * ebiederm Yep. 1151509955 M * ebiederm My test environment is almost always NFS root so I don't have to worry about lossind data when I crash the kenrel. 1151509970 M * Bertl i.c. good to know ... 1151510000 M * ebiederm Now I may have missed a subtle tcp reconnect problem or something but the essence works. 1151510011 M * ebiederm Did you see my reply on that one yet? 1151510028 M * Bertl not yet ... 1151510078 M * ebiederm The trick is having sockets know which network namespace they are part of. 1151510257 M * Bertl yes, we already have that too (as nid tagging) 1151510317 M * ebiederm The real trick for me was to get the guest mount inside the guest network namespace. So I could play 1151510342 M * ebiederm with ip addresses and such on the host without denying my guest access to it's filesystem. 1151510571 M * Bertl btw, what are your thoughts about the 'required policy' regarding IP assignment inside a guest? 1151510597 Q * schimmi2 Ping timeout: 480 seconds 1151510697 M * ebiederm In the process of replying. 1151510865 J * bonbons ~bonbons@83.222.39.166 1151511014 Q * s0undt3ch Ping timeout: 480 seconds 1151511047 J * f_ ~f_@83-215-237-1.seek.stat.salzburg-online.at 1151511147 M * ebiederm Basically I see two solutions remove CAP_NET_ADMIN from the guest or the admin can use the existing strong filtering code to ensure the client behaves. 1151511324 J * s0undt3ch ~s0undt3ch@bl7-253-93.dsl.telepac.pt 1151511600 M * Bertl ebiederm: okay, the remove CAP_NET_ADMIN basically gives the same situation we have now (with Linux-VServer), i.e. you cannot create and/or manage network devices inside a guest 1151511635 M * ebiederm Yep. 1151511640 M * Bertl while the 'strong filtering' would require eb tables, no? 1151511690 M * ebiederm Either eb tables, or you can route the namespaces together instead of using ethernet bridging. 1151511704 M * ebiederm At which point you can apply the routing consistency checks. 1151511743 M * ebiederm I.e. Only IP from a specific subnet are allowed. 1151511814 N * jake- _jake- 1151511870 M * Bertl ebiederm: but that adds an additional 'hop' to the entworking, which is not really required, no? 1151511934 M * ebiederm Well it makes the hop explicit. 1151511981 M * ebiederm I think it might be easier to optimize through if everything was routed. 1151512027 M * ebiederm However I am pretty certain that when you get to strong filter of the traffic there will be some performance cost. 1151512055 M * ebiederm But I think it is ok if you get something for that cost. 1151512134 Q * lilalinux Ping timeout: 480 seconds 1151512220 M * Bertl ebiederm: hmm, okay, what do you get for that, compared to a check when the ips are assigned? 1151512257 J * schimmi ~sts@port-212-202-73-176.dynamic.qsc.de 1151512275 M * ebiederm A lot of freedom in the guest to set up strange and peculiar configurations. 1151512286 M * ebiederm Things like tunnels etc. 1151512308 J * dlezcano ~dlezcano@cimai.net4.nerim.net 1151512317 M * ebiederm Plus you get truly distributed management. So that you can migrate a guest and be assured that things 1151512328 M * ebiederm will work well enough that you can restart it. 1151512346 M * Bertl hmm, okay, those 'guest local' ips would not be processed by the host stack at all, right? 1151512357 M * ebiederm Right. 1151512357 M * Bertl s/ips/devices/ 1151512390 M * Bertl could you imagine some way to let interfaces (and ips) blend through from the host system? 1151512426 M * Bertl might even be just by creating an appropriate interface on the guest which basically 'maps through' to the host? 1151512451 M * ebiederm Yes. The latter case can easily be done. 1151512639 J * lilalinux ~plasma@dslb-084-058-227-028.pools.arcor-ip.net 1151513135 M * Bertl ebiederm: okay, that seems to solve the issues I see perfectly fine ... 1151513169 M * Bertl I think we can arrange to integrate certain patches in our experimental releases to get some testing 1151513229 M * ebiederm If you can grab the various namespace patches that would be great. 1151513238 M * ebiederm Probably from -mm. 1151513309 M * Bertl I see no big problem to rebase linux-vserver to mm and make use of them .. we might need to modify the guest creation process a little, but that should be doable (at least with the helper) 1151513511 M * ebiederm Sounds good to me. 1151513550 M * ebiederm Ok. I'm off for a while. 1151513684 M * Bertl k, cya 1151513939 Q * f_ Quit: Leaving 1151514013 Q * dlezcano Quit: Leaving 1151516532 Q * yarihm Ping timeout: 480 seconds 1151516558 N * sars sarnold 1151516790 M * Bertl okay, I'm off for now .. back later 1151516796 N * Bertl Bertl_oO 1151516815 M * morrigan :( 1151516822 M * morrigan am really sorry :( 1151517243 Q * lilalinux arion.oftc.net quasar.oftc.net 1151517243 Q * id_ arion.oftc.net quasar.oftc.net 1151517243 Q * stefani arion.oftc.net quasar.oftc.net 1151517243 Q * alexx arion.oftc.net quasar.oftc.net 1151517243 Q * lilo2 arion.oftc.net quasar.oftc.net 1151517243 Q * Hunger arion.oftc.net quasar.oftc.net 1151517243 Q * ebiederm arion.oftc.net quasar.oftc.net 1151517243 Q * mountie arion.oftc.net quasar.oftc.net 1151517243 Q * Skram arion.oftc.net quasar.oftc.net 1151517243 Q * mnemoc arion.oftc.net quasar.oftc.net 1151517243 Q * derjohn arion.oftc.net quasar.oftc.net 1151517243 Q * Adrinael arion.oftc.net quasar.oftc.net 1151517308 J * lilalinux ~plasma@dslb-084-058-227-028.pools.arcor-ip.net 1151517308 J * id_ ~id@p508121CF.dip0.t-ipconnect.de 1151517308 J * stefani ~stefani@tsipoor.banerian.org 1151517308 J * alexx ~alexx@proxy.ikse.net 1151517308 J * lilo2 ~0710AAD4@tor-irc.dnsbl.oftc.net 1151517308 J * Hunger Hunger.hu@Hunger.hu 1151517308 J * ebiederm ~eric@ebiederm.dsl.xmission.com 1151517308 J * mountie ~mountie@CPEdeaddeaddead-CM000a739acaa4.cpe.net.cable.rogers.com 1151517308 J * Skram ~MarkS@admins.sentiensystems.net 1151517308 J * mnemoc ~amery@kilo105.server4you.de 1151517308 J * derjohn ~derjohn@80.69.37.19 1151517308 J * Adrinael adrinael@hoasb-ff09dd00-79.dhcp.inet.fi 1151517876 Q * id_ Quit: Leaving 1151518120 J * shuri ~shuri@64.235.209.226 1151519079 M * shuri anybody know what is the caps to be able to do iptables -L within a vserver 1151519124 M * cehteh NET_ADMIN ... but you really dont want that .. and iptables loads modules too so it needs SYS_ADMIN too 1151519148 M * shuri i need to collect data from iptables -L 1151519153 M * cehteh err -- ok -L 1151519245 M * shuri ? 1151519462 M * cehteh my error i thought you want to set the iptables from a guest 1151519483 M * cehteh well i dunno .. if it doesnt work try with NET_ADMIN 1151519495 M * cehteh quite unsafe 1151519535 M * daniel_hozac it does what it says, gives you administrative privileges of the network stack. 1151519571 A * cehteh would rather make a unnamed pipe and if a guest opens it then let the host push a iptables -L onto it 1151519585 M * cehteh err named pipe ... damnit let me sleep :P 1151519610 Q * lilalinux Remote host closed the connection 1151519753 M * shuri humm quite unsafe like you said 1151523938 Q * Viper0482 Quit: one day, i'll find this peer guy and then i'll reset his connection!! 1151524122 Q * coocoon Ping timeout: 480 seconds 1151524697 J * coocoon ~coocoon@p54A06B81.dip.t-dialin.net 1151524754 J * coocoon3 ~coocoon@p54A06B81.dip.t-dialin.net 1151524779 Q * coocoon3 Quit: 1151524779 Q * coocoon Quit: 1151524888 J * FireEgl Atlantica@Atlantica.US 1151525164 J * coocoon ~coocoon@p54A06B81.dip.t-dialin.net 1151526068 J * gebber ~Unknown@86.105.69.248 1151526498 Q * doener Quit: leaving 1151526580 Q * bonbons Quit: Leaving 1151526843 Q * cdrx Read error: Operation timed out 1151526976 J * cdrx ~legoater@cap31-3-82-227-199-249.fbx.proxad.net 1151527143 M * pusling is there a simple guide "Convert an existing physical server into a vserver" ? 1151527317 M * daniel_hozac it depends on your distribution, but i'm not aware of any. 1151527352 M * pusling it is a fedora core 1 that should be vserver in a debian host. 1151527425 M * coocoon pusling: it is old but maybe it will help http://linux-vserver.org/VirtualizeHowto 1151527485 M * gebber can i use vserver to jail daemons on a server and isolate the internal network from the internet securely? i also need to run a dhcp client on that server to setup the external interface and from what i read that is a bit of security risk. 1151527495 M * gebber sorry wrong window 1151528144 M * gebber Hollow: ping? 1151528158 M * Hollow gebber: pong 1151528290 M * gebber now i remembered that i don't need to run nfs and samba in vserver because those services will face the internal net and not the internet. in the best case i will run a web server and sshd. can then use it in the following way. i set up the main system to run nfs and all the services needed for the internal net and 1151528322 M * gebber use vserver to run the sshd and www in jail? 1151528339 M * gebber in this case avoiding the nfs problems? 1151528348 M * Hollow yeah, you could do this 1151528392 M * gebber but the dhcp hole will remain :( 1151528416 M * gebber ok thx i will continue to read about it maybe i can find a solution 1151529223 Q * mire Quit: Leaving 1151529962 Q * nox Ping timeout: 480 seconds 1151530003 J * shedi ~siggi@dsl-220-183.hive.is 1151530293 J * nox ~nox@noxlux.de 1151531836 Q * cdrx Quit: Leaving 1151532631 M * mugwump morning all 1151532683 P * stefani I'm Parting (the water) 1151532837 M * gebber good night everybody (here is 1 am). sleep well! :) 1151532984 Q * gebber Quit: Ex-Chat 1151533763 Q * shuri Remote host closed the connection 1151534089 Q * meandtheshell Quit: bye bye ... 1151535268 J * Aiken ~james@tooax6-169.dialup.optusnet.com.au 1151535350 M * Skram A timeout occured while waiting for the vserver to finish and it will 1151535351 M * Skram be killed by sending a SIGKILL signal. The following process list 1151535351 M * Skram might be useful for finding out the reason of this behavior: 1151535355 M * Skram I get that on all my VPSes 1151535904 Q * dna Quit: Verlassend 1151535909 M * daniel_hozac is the process list empty? 1151535923 M * Skram yeapps 1151535946 M * daniel_hozac what version and configured how? 1151535957 M * Skram uhmm 1151535962 M * Skram i think the kernel is 2.0.1 1151535980 M * Skram /etc/vservers/*/ 1151535999 M * Skram emerging world on the guest 1151536004 M * daniel_hozac i meant the kernel. 1151536005 M * Skram so. 1151536014 M * Skram yeah 2.0.1 i believe 1151536025 M * Skram on 2.6.14 1151536083 M * Skram sorry but.. ill brb 1151538851 J * starlein ~star@fo0bar.de