1198195401 M * Bertl_oO just specify the full guest path for the first one, or do the mount from the host (inside the guest namespace) 1198195789 M * amaxik i see thanks will try 1198196308 M * Bertl_oO you're welcome! 1198196995 J * fatgoose ~samuel@201.203.168.22 1198197548 Q * Abaddon Quit: leaving 1198198007 Q * mire Ping timeout: 480 seconds 1198200069 J * anonc ~anonc@staffnet.internode.com.au 1198200275 M * anonc anyone here using vlans with vserver? I've got udev messing with the vlan device name (adds an unwanted _rename so the interface gets called eth0.300_rename) which breaks the configuration. Just wondering if anyone here has the same problem and if so how they tweaked udev not to do this (host server is gentoo). It's really a udev problem - not a vserver one but it would probably show up for people trying to use vservers + vlans. 1198200394 M * Bertl_oO vlans are supported for a long time now 1198200441 M * Bertl_oO I consider the _rename a bug in your distros udev 1198200506 M * anonc so do i. google return a few of the same type of issue with other distros in the past. just thought i'd ask here since vservers are the context in which i'm trying to use this 1198200587 M * anonc i suspect it might have something to do with my having udev rules to force the names of the interfaces to eth0, 1, 2, and 3 (by default they show up in random order as eth4, 5, 6 and 7. 1198200665 Q * dna_ Quit: Verlassend 1198200700 Q * fatgoose Quit: fatgoose 1198201743 M * anonc fixed by inserting a vlan specific udev rule before the mac address matching rules 1198201756 M * Bertl_oO excellent! 1198201933 M * anonc now to add the /etc/iproute2/rt_tables entries and create pre-start and pre-stop scripts to handle routing on a per vserver/vlan basis 1198202826 J * dowdle ~dowdle@71-36-196-83.blng.qwest.net 1198204267 M * yarihm does anyone happen to know what i need to set in order to have bind (the debian-version with --enable-linux-caps) run in a vserver? i'll set up a build-host in order to build a better version but for now (as it is an internal nameserver) I'd rather give the caps out 1198204489 M * yarihm ah, screw it, i'll do that tomorrow. gn8 everyone 1198204512 J * Infinito argos@201-3-115-31.gnace701.dsl.brasiltelecom.net.br 1198204995 Q * yarihm Quit: Leaving 1198205468 Q * mnemoc Ping timeout: 480 seconds 1198205626 J * mnemoc ~amery@kilo105.server4you.de 1198205806 Q * FireEgl Read error: Connection reset by peer 1198206511 Q * Infinito Quit: Quitte 1198206605 J * FireEgl FireEgl@4.0.0.0.1.0.0.0.c.d.4.8.0.c.5.0.1.0.0.2.ip6.arpa 1198209458 Q * shuri Quit: Leaving 1198210068 Q * derjohn Ping timeout: 480 seconds 1198210079 J * derjohn ~derjohn@dslb-084-058-207-128.pools.arcor-ip.net 1198214390 Q * balbir Ping timeout: 480 seconds 1198217058 J * deoptima ~deo@c-68-54-232-19.hsd1.tn.comcast.net 1198218203 J * shuri ~shuri@64.235.209.226 1198218205 Q * shuri 1198218544 J * sharkjaw ~gab@shell.ormset.no 1198219432 J * balbir ~balbir@59.145.136.1 1198219950 M * Slydder morning all 1198220189 M * softi42 morning Slydder 1198220787 Q * deoptima Ping timeout: 480 seconds 1198221277 Q * softi42 Ping timeout: 480 seconds 1198221800 J * softi42 ~softi@p549D7125.dip.t-dialin.net 1198222137 Q * hparker Quit: Read error: 104 (Peer reset by connection) 1198222877 M * Slydder getting ready to do my first Open-Xchange EE install on a Vserver guest. wish me luck 1198223476 J * yang yang@yang.netrep.oftc.net 1198223758 J * JonB ~NoSuchUse@kg0-128.kollegiegaarden.dk 1198224243 Q * JonB Ping timeout: 480 seconds 1198224256 J * JonB ~NoSuchUse@kg1-98.kollegiegaarden.dk 1198224277 Q * JonB 1198224558 J * JonB ~NoSuchUse@kg1-98.kollegiegaarden.dk 1198226603 J * larsivi ~larsivi@85.221.53.194 1198227122 J * dna ~dna@165-246-dsl.kielnet.net 1198227271 J * Alikus ~alikus@217.150.200.212 1198228199 N * DavidS Guest860 1198228199 J * DavidS ~david@p57A48598.dip0.t-ipconnect.de 1198228622 Q * Guest860 Ping timeout: 480 seconds 1198228991 Q * Alikus Remote host closed the connection 1198229017 J * Abaddon abaddon@68-71.is.net.pl 1198229333 N * DoberMann[PullA] DoberMann 1198229780 Q * JonB Quit: This computer has gone to sleep 1198229987 J * Pyxcad ~jircii@81-174-56-148.static.ngi.it 1198230459 M * Pyxcad hello everyone. I have a debian etch vserver, in the guest syslog I find this error every 7 minutes : init: Id "2" respawning too fast: disabled for 5 minutes 1198230503 M * Pyxcad the id number changes from 1 to 6 , i find all six lines every 7 minutes 1198230523 M * Pyxcad do I have to worry about it? 1198230528 J * mire ~mire@103-170-222-85.adsl.verat.net 1198230548 Q * Slydder Quit: Chatzilla 0.9.67+ [Iceape 1.0.9/2007050500] 1198232155 M * Bertl_oO hey Pyxcad! 1198232199 M * Bertl_oO Pyxcad: well, it 'looks' like something is trying to respawn init (for whatever reason) 1198232234 M * Bertl_oO Pyxcad: or maybe it is init which is respawning a service (would make more sense, but should have a name) 1198232627 P * friendly12345 1198233351 M * ard6 it must be the latter... 1198233361 M * ard6 maybe /etc/inittab is b0rken 1198233372 M * ard6 and init thinks it's not 1198233716 J * JonB ~NoSuchUse@130.227.63.19 1198234494 Q * balbir Ping timeout: 480 seconds 1198235181 J * gdistasi ~gdistasi@143.225.229.142 1198235194 M * gdistasi hi 1198235200 M * gdistasi am I in vserver channel? 1198235218 M * gdistasi is there anybody? 1198235248 M * cehteh 113 people :P 1198235253 M * Bertl_oO last time I checked about 120 people :) 1198235256 M * gdistasi yes :) 1198235256 M * Pyxcad those inittab id are about respawn:/sbin/getty 38400 tty2 1198235274 M * Pyxcad gdistasi: hello 1198235278 M * Bertl_oO Pyxcad: ah, so remove that, it's not used anyway 1198235280 M * gdistasi I'm from naples' university 1198235284 M * gdistasi hello Pyxcad 1198235299 M * Pyxcad thanks Bertl 1198235320 M * Pyxcad I'm from vicenza , lots of vservers in italy ! 1198235323 M * gdistasi we are trying to grant users of a guest system the possibility to start an umts connection 1198235358 M * gdistasi we managed to let users to start the connection but not to see the new interface ppp0 1198235403 M * gdistasi do you know if it is possible to add a new network interface after guest system boot? 1198235450 M * Bertl_oO network interfaces always belong to the host 1198235471 M * Bertl_oO Linux-VServer uses IP isolation, so all you ever do is assing an IP to a guest 1198235487 M * Bertl_oO of course, you can do that with a running guest too 1198235495 M * Pyxcad use routing , I used webmin + shorewall to do it easier 1198235507 M * gdistasi yes Bertl_oO... but why do I have to use a real interface name? 1198235530 M * gdistasi for the guest system 1198235623 M * gdistasi ok Pyxcad 1198235713 M * Bertl_oO gdistasi: what do you mean by 'have to use a real interface'? 1198235732 M * Pyxcad Bertl correct me about routing if I'm wrong, I'm Noob 1198235784 M * gdistasi I mean that the guest interface have to have a host interface name 1198235791 M * gdistasi for example eth0... am I wrong? 1198235817 M * Bertl_oO gdistasi: once again, there is _NO_ such thing as a guest interface 1198235819 M * gdistasi the guest interface has to have 1198235823 M * gdistasi :) 1198235839 M * Bertl_oO there are host interfaces and IPs 1198235851 M * Bertl_oO and a subset of those IPs is assigned to each guest 1198235875 M * gdistasi but how do I assign an IP to a guest? 1198235939 M * JonB gdistasi: /etc/vservers//interfaces ... 1198235954 M * Bertl_oO either at startup (guest config) or via naddress (at runtime) 1198235973 M * gdistasi naddress... that's good 1198235975 M * Bertl_oO check out 'naddress --help' for details 1198235982 M * gdistasi I need to add an IP after ppp0 comes up 1198236020 J * wibble wibble@vortex.ukshells.co.uk 1198236134 M * gdistasi naddress --add 10.2.2.1/24 1198236138 M * gdistasi Adding 1198236142 M * gdistasi naddress: execvp(): No such file or directory 1198236172 M * Bertl_oO you need to specify the nid 1198236186 M * Bertl_oO (if you want to modify a guest) 1198236208 M * Bertl_oO and the syntax is wrong anyway :) 1198236226 M * Bertl_oO naddress --add --nid --ip 10.2.2.1/24 1198236256 M * gdistasi thanks, you're right 1198236269 M * gdistasi do you know where to look for nids 1198236293 M * Bertl_oO in your config, usually the nid is identical with the xid 1198236308 M * Bertl_oO (which is stored in /etc/vservers//context) 1198236331 M * yang hello Bertl_oO ! 1198236347 M * gdistasi thanks 1198236352 M * yang Bertl_oO: Is there an option to do backups of the guests? and to restore them later? 1198236355 M * gdistasi naddress --add --nid 40000 --ip 10.3.2.1/24 1198236367 M * gdistasi Adding 10.3.2.1 1198236435 M * gdistasi but... now, if I do ifconfig, I don't see any new interface... apart from eth0, which was there already (I know, there is no "interface" in guest, but how do I notice the new ip?) 1198236439 M * Bertl_oO yang: rsync? 1198236471 M * Bertl_oO gdistasi: is 10.3.2.1/24 assigned to some interface on the host? 1198236516 M * gdistasi ops... no 1198236548 M * yang Bertl_oO: in debian release of vserver 1198236550 M * yang linux-image-2.6.22-3-vserver-686 - Linux 2.6.22 image on PPro/Celeron/PII/PIII/P4 1198236582 M * yang there is no -686-bigmem version , so can I use just -686 with 8GB of RAM ? 1198236671 J * Julius ~julius@p57B26743.dip.t-dialin.net 1198236732 M * gdistasi Bertl_oO: do you know where I can find good documentation about networking in guest systems? 1198236752 M * Julius can i mount a second procfs inside a guest? 1198236762 M * Julius kind of need it for my chroot 1198236831 M * Bertl_oO gdistasi: yes, on any Linux networking portal, as it is identical to the host networking except for a tiny detail (the source address remapping) 1198236847 M * Bertl_oO Julius: yes, if you allow your guest to do that 1198236879 Q * Abaddon Quit: leaving 1198237017 Q * harry Ping timeout: 480 seconds 1198237042 M * gdistasi Is there a command to obtain user's nid from guest system name? 1198237106 M * yang erm yes 1198237120 M * yang nids...Is this the same as context? 1198237127 M * yang (server ID) 1198237130 M * gdistasi yes yang 1198237161 M * yang yes, just look at /etc/vservers/interfaces/context i think 1198237166 M * yang let me check for you 1198237238 M * yang /etc/vservers//context 1198237246 M * yang cat /etc/vservers//context 1198237256 M * yang also vserver-stat will show you the context name 1198237257 M * Julius http://linux-vserver.org/Networking_vserver_guests <- that tutorial uses dummy interfaces for internal network, is that the recommended solution 1198237269 M * Bertl_oO well, the nid is the network id, while the xid is the context id 1198237281 M * gdistasi ok, thanks yang 1198237311 M * Bertl_oO if the nid is not explicitely specified, it is assumed to be identical to the xid 1198237319 M * gdistasi ok, Bertl_oO 1198237345 Q * Aiken Quit: Leaving 1198237791 M * gdistasi Is it possible to force a guest process to use a determined ip for outgoing connection? 1198237798 M * gdistasi maybe with chbind? 1198237962 M * _marv mm give him that ip 1198237977 M * _marv do the routing with iptables and specify the output 1198237982 M * gdistasi yes... but if there is more than an ip? 1198237998 M * _marv give him both/all 1198238012 M * _marv do the routing with load balancing to split it up if the output is many ip's 1198238042 M * _marv http://lartc.org/ 1198238046 M * _marv ur going to love that site 1198238129 M * gdistasi I don't want to balance... I want to force a process to use a given ip source address 1198238138 M * gdistasi however I'll look to that site 1198238145 M * _marv u want it by "process name"? 1198238174 M * _marv does each guest have his own external ip? 1198238185 M * gdistasi I want to launch ping for example and have it use a given ip address... 1198238194 M * _marv k 1198238212 M * gdistasi in the host I can do "chbind --ip 1.1.1.1 ping x.x.x.x" 1198238212 M * _marv then i think my site is not what u want 1198238232 M * _marv u want the guest to be forced to use that ip for ping? 1198238237 M * _marv or the guest chan choose 1198238249 M * gdistasi not only for the ping 1198238257 M * gdistasi the guest should be able to choose 1198238262 M * _marv mmmm 1198238272 M * _marv and all guest have access to all ips? 1198238290 M * _marv or each guest has his own ip 1198238307 M * gdistasi more than one 1198238330 M * _marv k 1198238335 M * _marv but the guest OWNS that ip 1198238341 M * _marv its not shared with other guests right 1198238377 M * _marv ? 1198238386 M * Bertl_oO it can be 1198238402 M * _marv i'm trying to get on how complicated this is going to be :P 1198238416 M * _marv not pulling the right info out of him 1198238437 M * Bertl_oO gdistasi: you can _alway_ choose between ips, like on the host 1198238443 M * _marv yeah 1198238460 M * _marv but if the ip is shared on 20 guests and the routing is done on the host 1198238462 M * _marv it can be a pain :P 1198238472 M * Bertl_oO gdistasi: ever wondered what ip 'ping' is 'choosing'? 1198238480 M * _marv but if the guests OWN the ip's alone its nothing 1198238511 M * _marv ping -I IP/or/INTERFACE www.foo.net 1198238558 M * gdistasi ip ping chooses no source address. the source address is given by the kernel, after it's looked up the routing table 1198238562 M * gdistasi is that correct 1198238568 M * _marv no 1198238572 M * _marv u can choose with -I 1198238579 M * gdistasi _marv: that's good... but I need a method to do that for every application 1198238584 M * _marv [-I interface or address] 1198238587 M * _marv there usualy is 1198238598 M * _marv an option in every app... 1198238615 M * _marv but i dont understand why yet 1198238641 M * _marv are you trying to give users specific ip's on a box? 1198238644 M * gdistasi _marv: we have an ethernet connection and an umts connection to a node 1198238680 M * Bertl_oO gdistasi: yep, without the -I option that is correct 1198238697 M * Bertl_oO gdistasi: note: same happens inside the guest 1198238701 M * gdistasi I want application to use ethernet interface as default, but I want user to be able to choose umts connection 1198238712 M * _marv ahhh 1198238728 M * _marv u may want to do some static routing 1198238741 M * _marv put your vservers in a NAT 1198238747 M * _marv control the NAT with the host 1198238767 M * _marv but that would end up being pretty much the same 1198238769 J * jpduyx ~jpduyx@bas2.ka.sara.nl 1198238802 M * gdistasi it is not static routing... only when I want connections have to go through umts connection... in other cases connections can go through ethernet connection 1198238827 M * _marv well you want some type of load balancing 1198238838 M * _marv controle by portrange or protocol type or something... 1198238867 P * jpduyx 1198238870 M * _marv in that case the site i had given you... might be a good read http://lartc.org/ 1198238882 M * gdistasi _marv: you're right about the ping option... but there are some application which don't have that option... and moreover we don't want to force user to learn how to do that for every application 1198238891 M * _marv its been quite a while since ive done multiple wan's 1198238926 M * _marv gdistasi, well alias ping to ping -I 192.168.X.X in there .rcprofile whatever file 1198238931 M * _marv 2s i'll get the correct filename 1198238931 M * gdistasi no... it is not load balancing... if I want to do a test with umts, I use umts... otherwise I use ethernet 1198238948 M * _marv u still need a switch somewhere to switch that 1198238954 M * _marv and thats has to be done on the host 1198238958 M * gdistasi we want to do that on planet lab nodes... they are nodes used for network experiments 1198238963 M * _marv there for uncontrolable by the vserver 1198238997 M * gdistasi _marv: we want to do that for every application, not only for ping 1198239000 M * gdistasi and not always 1198239006 M * _marv yeah 1198239007 M * Bertl_oO gdistasi: I see two options here, a) select the IP for the app (making it bind to that ip) or b) switching the ips/routing/nat on the host 1198239010 M * _marv i kinda get where ur going now 1198239019 M * _marv Bertl_oO, u can't chbind in a vserver 1198239052 M * _marv gdistasi, that could be fun to setup :) 1198239056 M * Bertl_oO _marv: depends on your definition of a vserver, but you cannot create hierarchical namespaces yet 1198239058 M * gdistasi yes... chbind in a vserver would be ideal... 1198239085 M * _marv Bertl_oO, by vserver i ment guest... sorry for my redneck language :P 1198239095 M * gdistasi I would do, when I want to use the umts connection: chbind --ip UMTS_IP ping x.x.x.x 1198239132 M * sid3windr what's wrong with ping -I ? :p 1198239140 M * _marv gdistasi, well u can do the routing on the host.... and just reroute where ever... 1198239147 M * _marv sid3windr, nothing at all... 1198239148 M * gdistasi in other cases, I would do: ping x.x.x.x (so using ethernet connection) 1198239151 M * sid3windr :-) 1198239154 M * sid3windr chbind is cool though 1198239207 M * _marv gdistasi, what i would do is set the host as the router, have it do load balancing on both(if disired), have it switch to do from X source use X output, rest load balancing, or from ALL source use X output, .... 1198239209 M * gdistasi yes _marv... you it would be difficult to let users choose when to do that 1198239219 M * _marv just have a script rebuild your routing tables/firewall 1198239220 M * Bertl_oO gdistasi: you could create a guest without network namespace 1198239234 M * Bertl_oO gdistasi: and then chbind before entering the guest 1198239262 M * gdistasi Bertl_oO: but then applications would always use the umts connection 1198239266 M * _marv that would require a guest reboot every time u want to chagne the IP 1198239267 M * _marv no? 1198239288 M * Bertl_oO gdistasi: they would use whatever ip you bind before the enter 1198239302 M * _marv he wants to switch from one to the other 1198239307 M * _marv not have it on only 1 1198239309 M * _marv thats his prob 1198239310 M * _marv :) 1198239311 M * gdistasi yes, but what if they want to change? 1198239334 M * Bertl_oO gdistasi: stop the app, enter with different ip, start again 1198239346 M * _marv gdistasi, really the more i think about it and see what u wanna do... u need to build a NAT and switch the routing on the host/router 1198239366 M * Bertl_oO gdistasi: note that you even could have two instances of the same app running on both ips 1198239388 M * _marv Bertl_oO, what if the app is: vserver start 1198239395 M * _marv u need to reboot the guy's server 1198239399 M * _marv so he could ping with the diff ip 1198239400 M * _marv :/ 1198239402 M * Julius julius@sshweb:~$ l /proc/self/fd/0 1198239402 M * Julius lrwx------ 1 julius julius 64 Dec 21 13:09 /proc/self/fd/0 -> /server/sshweb/dev/pts/6 1198239405 M * gdistasi but the user cannot enter or exit when he wants 1198239430 M * gdistasi he doesn't have any privilege 1198239445 M * Julius i gave secure mount capabilities to the guest and mounted proc in my chroot dir 1198239466 M * gdistasi _marv: I'm thinkin about that 1198239488 M * _marv gdistasi, thats a nice lil project u got goin on in your head there :P 1198239492 M * gdistasi in fact I need the -I option of the ping for every application... 1198239509 M * sid3windr :) 1198239792 Q * ard6 Ping timeout: 480 seconds 1198239873 Q * dna Quit: Verlassend 1198240304 J * ard6 ~ard@2002:d9c4:2909:1::1 1198240388 Q * JonB Ping timeout: 480 seconds 1198240622 M * daniel_hozac gdistasi: on current PlanetLab, you could use chbind in a slice. 1198240641 M * daniel_hozac that'll change with 4.2 though. 1198240740 M * daniel_hozac (well, you're lacking CAP_VSERVER, but other than that...) 1198240792 Q * ard6 Ping timeout: 480 seconds 1198241526 Q * sharkjaw Remote host closed the connection 1198241857 Q * ensc Read error: Connection reset by peer 1198241997 J * ensc ~irc-ensc@77.235.182.26 1198242016 M * Julius i mounted /dev/pts in a chroot in my vserver 1198242025 M * Julius why can't i read/write these files? 1198242915 M * Bertl_oO nodev is added for security reasons 1198243410 M * Pyxcad going away. Merry Xmas everybody. 1198243433 M * Pyxcad and thanks for help. 1198243768 J * Abaddon abaddon@68-71.is.net.pl 1198244059 J * JonB ~NoSuchUse@kg1-98.kollegiegaarden.dk 1198244505 J * rgl ~rgl@84.90.10.245 1198244507 M * rgl hello! 1198244532 M * rgl its possible to assign IP addresses to guests at runtime? (while the guest is running). 1198246166 J * yarihm ~yarihm@whitehead2.nine.ch 1198246271 P * Pyxcad 1198246446 Q * rgl Quit: Enough 1198246711 J * virtuoso ~s0t0na@ppp91-122-160-1.pppoe.avangard-dsl.ru 1198247112 J * doener_ ~doener@i577B9C63.versanet.de 1198247138 Q * virtuoso_ Ping timeout: 480 seconds 1198247527 Q * doener Ping timeout: 480 seconds 1198247601 J * ard6 ~ard@2002:d9c4:2909:1::1 1198247807 J * Alikus ~alikus@217.150.200.212 1198247864 Q * larsivi Quit: Konversation terminated! 1198249203 Q * Abaddon Quit: leaving 1198249382 Q * Alikus Remote host closed the connection 1198249501 Q * amaxik 1198249688 Q * esa` Ping timeout: 480 seconds 1198249810 J * AStorm ~astralsto@host-89-228-135-37.gorzow.mm.pl 1198250020 J * shuri ~shuri@64.235.209.226 1198250632 Q * mire Ping timeout: 480 seconds 1198250823 Q * mnemoc Ping timeout: 480 seconds 1198251004 J * mnemoc ~amery@kilo105.server4you.de 1198252761 J * esa bip@ip-87-238-2-45.adsl.cheapnet.it 1198252877 J * ema ~ema@rtfm.galliera.it 1198254031 J * deoptima deo@c-68-53-139-206.hsd1.tn.comcast.net 1198254054 Q * deoptima 1198255085 J * mick_work ~clamwin@adsl-068-157-089-099.sip.bct.bellsouth.net 1198256111 N * DoberMann DoberMann[PullA] 1198256682 Q * gdistasi Quit: Konversation terminated! 1198256823 Q * wibble Ping timeout: 480 seconds 1198259278 J * make_j p4_Haxa@213-216-248-166-Tuira-TR1.suomi.net 1198259312 M * make_j hi folks 1198259347 M * make_j hey Bertl, thanks for yesterday's advices 1198259445 M * make_j it was the utils-install which was corrupted or uncomplete somehow - i did uninstall it and proceeded with yum this time and got fc8 guests working 1198260880 Q * dowdle Remote host closed the connection 1198261720 Q * yarihm Quit: Leaving 1198262194 J * rgl ~rgl@84.90.10.245 1198262196 M * rgl hello 1198262222 M * rgl its possible to assign IP addresses to guests at runtime? (while the guest is running). 1198262274 M * daniel_hozac sure, use naddress. 1198262399 M * rgl cool :D 1198262406 M * rgl what is the --nid argument? 1198262411 M * daniel_hozac the network context id. 1198262415 M * daniel_hozac you can use the guest's name. 1198262440 M * _marv does naddress create tin /etc/vservers//interface//* files? 1198262445 M * _marv or he'll have to add those manualy 1198262462 M * rgl humm, why its not a xid? can we have several network context id per guest? 1198262499 M * daniel_hozac the configuration is not modified. 1198262535 M * daniel_hozac yes, the network context id is not necessarily equivalent to the xid. 1198262546 M * daniel_hozac you can share one across multiple guests. 1198262595 M * Bertl_oO make_j: glad to hear ... 1198262650 M * rgl daniel_hozac, interesting. how can we manage them? and why do we need them? 1198262667 M * rgl or better, are there any docs about this? :) 1198262678 M * daniel_hozac about what? 1198262687 M * rgl network contexts 1198262696 M * daniel_hozac they're not new in any way..... 1198262735 M * rgl oh, I never notice them! 1198262867 M * rgl I'm only finding this http://linux-vserver.org/Capabilities_and_Flags#Network_context_flags_.28nflags.29 table about the ncontext, is there any other docs? 1198262922 Q * sladen Remote host closed the connection 1198262967 M * daniel_hozac http://www.google.com/search?q=site%3Alinux-vserver.org+network 1198263128 M * rgl I'm sorry daniel_hozac, but I don't find anything relevant in that google search :/ 1198263142 M * daniel_hozac anything relating to networking in guests is talking about network contexts.... 1198263203 M * rgl I'm blind, but I don't find that. 1198263210 M * daniel_hozac find what? 1198263600 Q * JonB Quit: This computer has gone to sleep 1198264071 M * rgl the stuff about network contexts. 1198264261 M * daniel_hozac what stuff are you looking for? 1198264284 M * rgl I already told you :) 1198264292 M * rgl how can we manage them? and why do we need them? 1198264296 M * rgl :) 1198264311 M * daniel_hozac but what does manage them mean? 1198264337 M * rgl create/list/destroy networks contexts 1198264350 M * rgl and share them like you said its possible. 1198264360 M * daniel_hozac the network contexts are what isolate guests networking. 1198264473 M * daniel_hozac you destroy them the same way you destroy regular contexts, by killing all the processes. 1198264481 M * daniel_hozac listing them is also the same, ls /proc/virtnet. 1198264496 M * daniel_hozac creating is either with ncontext or chbind (just a wrapper). 1198264585 Q * ema Quit: leaving 1198264752 J * sladen paul@starsky.19inch.net 1198265352 Q * make_j Quit: see ya 1198265597 J * JonB ~NoSuchUse@kg1-98.kollegiegaarden.dk 1198266544 M * rgl daniel_hozac, thanks! I'm starting to understand :-) 1198266783 J * Abaddon abaddon@68-71.is.net.pl 1198266919 Q * JonB Quit: This computer has gone to sleep 1198267262 J * Aiken ~james@ppp121-45-246-228.lns2.bne4.internode.on.net 1198267369 M * rgl oh, I can't enter my guest again :/ 1198267376 M * rgl vserver piranha exec ls 1198267376 M * rgl vnamespace: vc_enter_namespace(): Invalid argument 1198267421 M * daniel_hozac what kernel are you using? 1198267458 M * rgl 2.6.22.14-vs2.2.0.5 on x86-84 1198267487 M * rgl I'm looking at the strace but don't find anything I can understand 1198267573 Q * AStorm Ping timeout: 480 seconds 1198267681 M * rgl does this make any sense http://ruilopes.com/tmp/strace.txt? 1198267726 M * daniel_hozac cat /proc/virtual/xid/status 1198267780 M * daniel_hozac we want the spaces line. 1198267842 M * rgl Spaces: 0c000000 1198267866 M * daniel_hozac what utils? 1198267879 M * rgl humm, the guest I can enter have: Spaces: 0c020200 1198267889 M * daniel_hozac which is what you wanr. 1198267904 M * rgl 0.30.213-1 1198267945 M * daniel_hozac try 0.30.214. 1198267970 M * rgl I'll try to make the ubuntu package for it. 1198267978 M * rgl what is the Spaces line? 1198267993 M * daniel_hozac it shows which spaces are assigned to the guest. 1198268002 M * rgl what is a space? :) 1198268039 M * daniel_hozac an isolation/virtualization component. 1198268050 J * Piet ~piet@tor.noreply.org 1198268101 M * rgl where can I read about it? sources? 1198268127 M * daniel_hozac man 2 clone 1198268173 M * rgl a space is a memory space? 1198268179 M * daniel_hozac no. 1198268241 M * rgl what is it relation with clone(2)? (memory space the is the only place where "space" is mentioned) 1198268253 J * AStorm ~astralsto@tor-irc.dnsbl.oftc.net 1198268258 M * daniel_hozac look at CLONE_NEWNS, CLONE_NEWIPC, CLONE_NEWUTS... 1198268265 M * Bertl_oO rgl: all 'spaces' are cloned nowadays 1198268276 M * Bertl_oO (alternatively you can 'unsahre' them) 1198268304 M * rgl oh, "space" as in "namespace"? 1198268320 M * daniel_hozac some are namespaces, some aren't. 1198268432 M * rgl oh can I known which spaces are available? like, the meaning of the "Spaces" word 0c020200? 1198268458 M * rgl BTW, CLONE_NEWIPC, _NEWUTS in not in my clone(2) page :( 1198268518 M * daniel_hozac vi include/linux/sched.h 1198268520 Q * esa Read error: Connection reset by peer 1198268634 M * rgl the Space line is the "cloning flags"? 1198268640 M * daniel_hozac yes. 1198268660 M * rgl ah nice thx! 1198268679 M * rgl do you have any idea why that has changed in this guest of mine? 1198268726 M * daniel_hozac no, it cannot be unset. 1198268747 J * virtuoso_ ~s0t0na@ppp91-122-139-27.pppoe.avangard-dsl.ru 1198268876 J * esa bip@ip-87-238-2-45.adsl.cheapnet.it 1198268910 M * rgl something bad is happening then :( 1198268926 M * rgl what file implements the /proc/virtual/xid/status fs? 1198268946 M * daniel_hozac kernel/vserver/proc.c 1198268963 J * Blissex ~Blissex@82-69-39-138.dsl.in-addr.zen.co.uk 1198268970 M * rgl thx! 1198269158 Q * virtuoso Ping timeout: 480 seconds 1198269704 Q * rgl Ping timeout: 480 seconds 1198269817 J * hparker ~hparker@linux.homershut.net 1198270157 J * esa` bip@ip-87-238-2-45.adsl.cheapnet.it 1198270173 Q * esa Ping timeout: 480 seconds 1198270381 Q * opuk Quit: leaving 1198270608 J * opuk ~kupo@nl107-188-99.student.uu.se 1198271193 Q * Piet Remote host closed the connection 1198271491 N * AStorm Guest907 1198271495 J * AStorm ~astralsto@tor-irc.dnsbl.oftc.net 1198271854 Q * Guest907 Ping timeout: 480 seconds 1198272209 J * bardia ~bardia@lnc.usc.edu 1198272259 J * rgl ~rgl@84.90.10.245 1198272265 M * rgl hi again, 1198272274 A * rgl had a power failure here :/ 1198272332 J * Piet ~piet@tor.noreply.org 1198272713 Q * Piet Quit: Piet 1198273277 Q * Blissex Remote host closed the connection 1198273862 Q * AStorm Ping timeout: 480 seconds 1198273917 J * AStorm ~astralsto@tor-irc.dnsbl.oftc.net 1198275126 M * bardia i'm a little confused about the nonamespace option and the recommendation to implement a barrier? it seems my /var/lib/vservers already has barrier turned on, but the subdirectories, individual vservers, don't. they're ---bui- rather than ---Bui-. is that ok? only one vserver client uses nonamespace. should i setattr --barrier that vserver folder as well? 1198275224 M * Bertl_oO no, the barrier has to be _above_ the guest root 1198275248 M * Bertl_oO that is, why all? documentation says /path/to/guest/.. (the .. is literally) 1198275270 M * rgl daniel_hozac, I've installed 0.30.214 and the guest started with correct Status line. so far so goog. 1198275273 M * rgl err good. 1198275291 M * Bertl_oO bardia: the nonamespace option is only if you do not want to use private namespaces for the guest 1198275321 M * rgl but the start now displays "RTNETLINK answers: File exists" 1198275356 M * Bertl_oO sounds like the ip is already configured, maybe from a previous (wrong?) config? .. check with 'ip addr ls' 1198275376 M * rgl Bertl_oO, ah, that might be true, because I had to vkill the previous guest 1198275462 M * bardia ok, i already see the barrier turned on above the guest root, must be default in the lenny packages. so there's nothing else i need to do to 'secure' the nonamespace vserver client? 1198275473 Q * Julius Ping timeout: 480 seconds 1198275516 M * Bertl_oO bardia: nope, if you use properly installed guests, they will be secure (as far as we know :) 1198275521 M * daniel_hozac namespaces are not technically a security feature, though they may, as a side-effect, add some security. 1198275612 M * bardia great, thanks! 1198275636 M * Bertl_oO you're welcome! 1198275941 M * rgl daniel_hozac, its seems this new util-vserver is working ok. at least, I've restarted the guest two times, and it worked. 1198276004 M * bardia i just discovered vserver recently, perfectly fits my needs, i'm loving it! 1198276262 N * virtuoso_ virtuoso 1198276317 J * mire ~mire@103-170-222-85.adsl.verat.net 1198276643 J * _brent_ ~brent@mail.jivecommunications.com 1198276661 J * Infinito argos@201-3-18-132.gnace701.dsl.brasiltelecom.net.br 1198276783 Q * sladen Ping timeout: 480 seconds 1198276839 J * dna ~dna@p54BCF5B8.dip.t-dialin.net 1198277393 J * dna_ ~dna@p54BCF5B8.dip.t-dialin.net 1198277699 Q * shuri Quit: Leaving 1198277772 Q * dna Ping timeout: 480 seconds 1198278072 Q * dna_ Ping timeout: 480 seconds 1198278178 J * shuri ~shuri@64.235.209.226 1198278538 Q * kwowt Ping timeout: 480 seconds 1198279744 M * Bertl_oO bardia: good to hear! 1198280371 M * matti Bertl_oO: :) 1198280522 M * Bertl_oO hey matti! 1198281358 Q * rgl Quit: Enough