1205366543 Q * bonbons Quit: Leaving 1205366650 J * hparker ~hparker@linux.homershut.net 1205366732 M * thei0s hm, is there a way to tell syslogd on the main system to log vservers under their hostnames (when they write to /dev/log, and syslogd is started with -a parameter to this sockets)? atm every entry gets logged under the main systems hostname 1205366786 Q * dowdle Remote host closed the connection 1205367615 Q * quasisane Ping timeout: 480 seconds 1205368394 Q * yarihm Quit: Leaving 1205369910 J * xdr ~xdr@133-173-96-87.cust.blixtvik.se 1205372214 J * ace_ ace@har.sagt.no 1205372216 Q * sannes Read error: Connection reset by peer 1205372768 J * fatgoose ~samuel@bas5-quebec14-1242523234.dsl.bell.ca 1205373361 J * virtuoso_ ~s0t0na@ppp89-110-2-151.pppoe.avangarddsl.ru 1205373478 J * virtuoso1 ~s0t0na@ppp91-122-26-192.pppoe.avangarddsl.ru 1205373763 Q * virtuoso Ping timeout: 480 seconds 1205373764 Q * thei0s Quit: Leaving. 1205373872 Q * virtuoso_ Ping timeout: 480 seconds 1205373899 J * kilobyte ~kilobyte@barad-dur.angband.pl 1205375204 Q * hparker Quit: Quit 1205375818 J * hparker ~hparker@linux.homershut.net 1205376021 Q * adamm Quit: adamm 1205378084 M * micah PowerKe: did you try a newer util-vserver? 1205382738 J * Bertl_zZ_ herbert@IRC.13thfloor.at 1205382744 Q * Bertl_zZ Read error: Connection reset by peer 1205383285 Q * balbir Ping timeout: 480 seconds 1205385114 Q * fatgoose Quit: fatgoose 1205389367 Q * hparker Quit: g'nite 1205390297 J * sharkjaw ~gab@64.28.12.166 1205390621 J * [PUPPETS]Gonzo MrBlonde@fellatio.deswahnsinns.de 1205392842 J * JonB ~NoSuchUse@77.75.164.169 1205392993 J * balbir ~balbir@59.145.136.1 1205395825 J * gebura ~gebura@77.192.186.197 1205395837 J * _bjh_ ~bjh@84.112.154.154 1205396075 M * gebura hi 1205397729 N * DoberMann[ZZZzzz] DoberMann 1205397814 M * PowerKe micah: no, didn't try that yet. 1205397840 M * daniel_hozac it's most likely your rc-script that's segfaulting. 1205397898 M * PowerKe running /sbin/rc shutdown in the guest gives shutdown: /dev/initctl: No such file or directory 1205398413 Q * JonB Quit: This computer has gone to sleep 1205398575 M * PowerKe hmm, running env -i RUNLEVEL=0 /sbin/rc shutdown in the guest however gives a segfault 1205398700 M * Hollow PowerKe: try 0.30.214 1205398715 M * Hollow it should add a default PATH to the shutdown env 1205398736 M * Hollow i knew we had a segfault on stop before ... 1205398759 J * Julius ~julius@p57B25A37.dip.t-dialin.net 1205399201 M * PowerKe Hollow: that does indeed fix it 1205399746 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d 1205400039 J * JonB ~NoSuchUse@77.75.164.169 1205400502 J * friendly12345 ~friendly@ppp59-167-152-238.lns4.mel6.internode.on.net 1205401273 N * Bertl_zZ_ Bertl_oO 1205402351 Q * JonB Quit: This computer has gone to sleep 1205403350 J * JonB ~NoSuchUse@77.75.164.169 1205404564 J * hparker ~hparker@linux.homershut.net 1205404752 J * Slydder ~chuck@194.59.17.53 1205406072 J * Punkie ~Punkie@goc.coolhousing.net 1205407745 Q * JonB Quit: This computer has gone to sleep 1205407919 J * dib ~dib@LPuteaux-151-41-2-6.w217-128.abo.wanadoo.fr 1205408782 Q * lilalinux Remote host closed the connection 1205408881 Q * Julius Remote host closed the connection 1205409104 J * Julius ~julius@p57B25A37.dip.t-dialin.net 1205409428 J * rhodes ~rhodes@hc652a8cf.dhcp.vt.edu 1205409925 J * JonB hidden-use@192.38.9.151 1205410579 J * quasisane ~sanep@c-76-118-191-64.hsd1.nh.comcast.net 1205411930 P * rhodes 1205412012 Q * friendly12345 Quit: Leaving. 1205412791 J * rhodes ~rhodes@hc652a8cf.dhcp.vt.edu 1205412811 M * rhodes Good morning (US Eastern) 1205412841 M * rhodes What's the right way to set up IPSec for connections from a vserver 1205412876 M * rhodes My first tests seemed to indicate that the vserver did not have auth/control over the pfkey socket to use the ipsec-tools inside the vserver 1205412916 M * rhodes I'm trying to set up the sad/spd entries on the base system, but have run into what appears to be a ipsec bug 1205412918 M * daniel_hozac networking happens on the host. 1205412937 M * rhodes So ipsec sad/spd entries should be set up on the host 1205412949 M * rhodes Meaning base host 1205413872 J * ftx ~ftx@dslb-084-060-252-165.pools.arcor-ip.net 1205415305 J * mrfree ~mrfree@host1-89-static.40-88-b.business.telecomitalia.it 1205417325 M * rhodes I've resolved my ipsec sad entry issue on the base/hosting system and vserver connections (as mentioned handled by the host ip stack) are successfully making ipsec connections 1205417416 M * gebura rhodes, if you have some time it should be very intesting if you write few lines on the wiki about what you did 1205417430 M * gebura i 'll personaly very interested 1205417440 M * gebura being very interested 1205417479 M * rhodes will do, this conn was for central logging over ipsec (which is a convenience issue), this vserver must use ipsec to make Oracle connnections, so I'm glad ipsec is functioning 1205417506 Q * balbir Ping timeout: 480 seconds 1205417571 Q * _bjh_ Quit: leaving 1205418011 Q * sharkjaw Quit: Leaving 1205418215 J * fatgoose ~samuel@76-10-149-199.dsl.teksavvy.com 1205418357 J * ftx_ ~ftx@dslb-084-062-245-217.pools.arcor-ip.net 1205418737 Q * ftx Ping timeout: 480 seconds 1205419122 M * mrfree does exist a backport patch for 2.2 to add the "guest loopback" feature to the stable release?? 1205419431 J * ftx__ ~ftx@dslb-084-062-226-146.pools.arcor-ip.net 1205419777 Q * ftx_ Ping timeout: 480 seconds 1205420115 M * mrfree can I create a "dead" net if in a guest??? for example if I don't specify the dev under /etc/vserver/...interfaces... 1205420658 Q * rhodes Quit: rhodes 1205421173 J * Hiaslboy ~wieser@143.224.23.203 1205421226 Q * ||Cobra|| Read error: Connection reset by peer 1205421417 J * ||Cobra|| ~cob@pc-csa01.science.uva.nl 1205421624 M * ard6 mrfree : i think 2.3 is stable enough to use it :-) 1205421641 M * ard6 and what do you mean with dead net? 1205421657 M * ard6 if you mean network less, just make sure the interfaces dir contains nothing :-) 1205421689 Q * Hiaslboy Ping timeout: 480 seconds 1205421865 M * mrfree ard6, I want to emulate a loopback under a guest 1205421896 M * mrfree with "dead" I mean... like the guest is the only host connected to it 1205421907 M * meebey there is a kernel module that allows to create virtual interfaces 1205421913 M * meebey I forgot the name though 1205421932 M * mrfree dummy 1205421936 M * meebey yeah :) 1205421953 M * meebey so create dummy0 and map it to the vserver guest 1205421972 M * mrfree sure but I probably need a dummy if for each guest!! 1205422018 M * meebey omg, too many dummies! 1205422052 M * mrfree sure... and I'm running a kernel without modules support and the only way to have more than one dummy if is using dummy module 1205422054 M * mrfree :) 1205422096 M * meebey the dummy module can only bring up one dummy interface? 1205422114 M * hparker it's dumb :P 1205422125 M * meebey dumb dummy then, indeed 1205422153 M * mrfree you need to use "modprobe dummy -o dummy[K]" 1205422175 M * mrfree without modules support in the kernel you will have a single dummy if 1205422189 M * meebey ah ic, so get a decent kernel 1205422196 Q * Punkie Quit: Odcházím 1205422208 M * mrfree ... 1205422210 M * mrfree :) 1205422226 M * mrfree I don't want to setup a dummy if for each guest :) 1205422230 J * dowdle ~dowdle@scott.coe.montana.edu 1205422246 M * mrfree I think it's possible but I'm searching for an alternative... 1205422276 Q * Aiken Remote host closed the connection 1205422281 M * meebey well if you castrate your linux kernel, live with the consequences :-P 1205422307 M * mrfree the problem isn't the number of the dummy ifs!! :) 1205422647 J * thei0s ~G0D@lk.84.20.235.126.dc.cable.static.lj-kabel.net 1205422847 M * thei0s hi, could somebody tell me how to convince syslogd on the main system to log events from vservers under their hostnames (not the main server hostname)? (I implemented it with the /dev/log variant) 1205422895 M * gebura hum couldn't you use syslog remote loging facility ? 1205422923 M * mrfree thei0s. for example.. destination v_messages { file("/var/log/VSERVERS/$HOST/messages.log"); }; 1205422924 M * gebura that's an interesting design :) 1205422953 M * gebura use syslog-ng if you want have more control on logsd 1205422957 M * gebura -d 1205422971 M * mrfree oops sure I'm talking about syslog-ng 1205423015 M * mrfree thei0s, in the host syslog-ng.conf you need to add keep_hostname(yes); in the options section too 1205423024 M * thei0s yeah, the remote logging could be an answer but there is more overhead.. is there any other alternative than syslog-ng (the last time I looked at it, it didnt convince me that it was so good)? 1205423158 M * gebura it is just a bit more flexible 1205423209 M * gebura maybe a bit more heavy (in memory, cpu...) 1205423230 A * hparker looked into logging per host... till he figured out just how much upkeep it'd be for all of the log parsing apps, logrotate, etc 1205423377 Q * Slydder Quit: Leaving. 1205423498 J * julius_ ~julius@p57B27020.dip.t-dialin.net 1205423928 Q * Julius Ping timeout: 480 seconds 1205424716 J * ema ~ema@rtfm.galliera.it 1205424861 M * Hollow gebura: be ware that syslog-ng does not support ssl/tls in the open-source edition 1205424870 M * Hollow you need stunnel or so for remote logging 1205424888 A * gebura take not :) 1205424890 M * gebura note 1205425698 Q * JonB Quit: This computer has gone to sleep 1205426560 N * Bertl_oO Bertl 1205426590 M * Bertl thei0s: why not? I'm quite happy with syslog-ng and it doesn't have all the 'normal' syslog issues 1205426654 M * thei0s Hollow for example exposed one useful but missing ability 1205426655 M * thei0s :) 1205426684 M * thei0s and as gebura said it also eats more resources 1205426696 M * Bertl well, I haven't seen the normal syslog do tls logging? 1205426724 M * Hollow no syslog daemon i know does tls except syslog-ng commercial edition 1205426731 M * thei0s no, but it is "old software", from a new thing I would expect a couple of useful features :) 1205426745 M * mc syslog-ng does tcp, doesnt it? 1205426750 M * mc just pipe it through stunnel 1205426761 M * Hollow i do so, but it is no fun 1205426770 M * ard6 rsyslog? 1205426793 M * Hollow hmm 1205426812 J * JonB ~NoSuchUse@77.75.164.169 1205426813 M * Bertl thei0s: can't follow your reasoning, new tools have to have twice the features than older ones to be fine? 1205426844 M * Bertl thei0s: not to mention that I'm using syslog-ng for .. like 6 years now? 1205426845 M * Hollow ah, rsyslog also uses stunnel 1205426853 M * Hollow same crap 1205426856 M * ard6 at least we concluded that syslog-ng altough fast is not multithreaded.. 1205426857 M * Hollow i want native tls 1205426888 M * ard6 we use syslog-ng to log our accesslog and get live results... 1205426892 M * thei0s Bertl: yes, if newer tools use more resources then they need to offer a lot of new features 1205426935 M * Hollow ard6: i'm playing with mod_log_sql currently, logging access logs via syslog is kind of a hack 1205426942 M * ard6 (something with >(1 GB/hour*server) * 8 servers) 1205426947 M * Hollow or do you leave the syslog timestamp etc in place? 1205426947 M * gebura thei0s, more ressources is different that 3x more ressources 1205426960 M * gebura syslog-ng is not apache :) 1205426974 M * ard6 sql can't cope with the amount of traffic we have in the log files :-) 1205426976 M * thei0s :) 1205426991 M * ard6 we also use udp and not tcp... 1205427020 M * ard6 and the ethernet drivers and kernel ipv4 stack is carefully tuned :-) 1205427062 M * gebura ard6, mod_log_sql can't cope or your sql server can't cope ? 1205427248 M * ard6 well, it's squid and not apache :-) 1205427295 M * ard6 And I don't think an sql server can cope with the amount of data 1205427311 M * ard6 it will hurt the performance of the frontend 1205427397 M * ard6 I cannot give you numbers, about the number of requests, but we have a 25Gig internet connection :-) 1205427444 J * balbir ~balbir@122.167.212.218 1205427542 M * Hollow ard6: maybe the archive storage engine can cope? it is said to support about 100k inserts/sec 1205427554 M * Hollow with delyed inserts this should not slow down the frontends 1205427558 M * Hollow *delayed 1205427580 M * Hollow not that i want to convince you to use mysql .. :p 1205427598 M * ard6 well, the frontend's don't really have time for that, but I will remember the archive engine :-) 1205427668 M * ard6 in this case syslog-ng and the machine have hardly the time to start receiving... At least 1000 requests are dropped upon starting 1205427679 M * Hollow i see :) 1205427690 M * ard6 that happens when you have bnx2 hardware :-( 1205427694 A * ard6 wants e1000 ! 1205427733 M * Bertl depends on what e1000 :) 1205427743 M * ard6 :-)... 1205427777 M * ard6 well, I think they all have a 4k descriptor ring and not the 256 descriptor ring as the bnx2 has 1205427780 M * Bertl not all models work well, but most do 1205427835 M * Bertl but yes, bnx* sucks, almost as good as the rtl cards :) 1205427858 M * ard6 :-( 1205427899 M * ard6 the DELL.950's are equiped with high-end processors, and low-end network chips, and the DELL.850's with high end network chips :-) 1205427917 M * ard6 we still choose 1850 above 1950 for networking equipment ;-) 1205428355 Q * JonB Quit: This computer has gone to sleep 1205429546 M * alex__ is there anyway to setup samba share across host -> guest and vice versa? 1205429559 M * alex__ or would you go about it the usual way? 1205429616 M * daniel_hozac why samba? bind mounts are far more performant. 1205429659 A * ard6 guesses on a tag mounted volume 1205429668 M * ard6 else bind mounts are preferred :-) 1205429710 Q * mrfree Quit: Leaving 1205429731 M * alex__ bind mounts? 1205429752 M * ard6 vfs layer "symlinks" ... 1205429776 M * ard6 mount -o bind -t nothing /some/dir /another/place 1205429843 M * ard6 It makes available a tree of the fs under another part of the fs... 1205429904 M * alex__ so i can do this on my guest vserver to connect to ze host/ 1205429915 M * alex__ ? 1205429940 M * Bertl connect, no, but you can share part of the filesystem 1205429949 M * alex__ right so for example 1205429949 M * daniel_hozac ard6: that's what notagcheck is for ;) 1205429966 M * ard6 wut? It's there? 1205429966 M * alex__ i want the host to have a nice looksie into my guest's logfiles 1205429969 M * alex__ so i would do: 1205429988 M * alex__ ah right 1205430000 M * ard6 the host always sees your guest :-) 1205430007 M * alex__ theres a directory structure of my guest somewhere on the host yes? 1205430008 M * alex__ ah heheh 1205430017 Q * gebura Quit: Quitte 1205430028 M * ard6 daniel_hozac : what incantation is necessary to get the notagcheck ? 1205430032 M * alex__ got it 1205430034 M * alex__ thanks :D 1205430038 M * daniel_hozac mount -o notagcheck,bind ... 1205430060 M * daniel_hozac it was added in 2.3.0.18. 1205430063 M * ard6 you mean to tell me it was "always.. 1205430065 M * ard6 ah :-) 1205430068 M * ard6 ok :-) 1205430111 A * ard6 dances around 1205430133 M * ard6 actually weeps a little... 1205430152 M * alex__ /vservers/ispconfig/var/log on /var/log/moon type nothing (rw,bind,notagcheck) 1205430153 M * ard6 I just paritioned into 30Gig tagged and 700gig untagged 1205430156 M * alex__ hmm nothing gets displayed? 1205430161 A * Bertl expected a somersault at least ... 1205430166 M * alex__ type nothing is correct? 1205430201 M * ard6 type is not used, since you are telling the vfs that it should do something and not delegate something ;-) 1205430232 M * alex__ so i should just remove the -t nothing ? :D 1205430250 M * ard6 in your case you don't need bind mount's if you want to see the filesystem of your vserver on the hosts 1205430251 M * alex__ oh waiut 1205430254 M * alex__ its working :D 1205430257 M * alex__ got it 1205430263 M * ard6 it's in /etc/vservers//vdir/ 1205430375 J * JonB ~NoSuchUse@77.75.164.169 1205430852 J * dreamind ~dreamind@C2107.campino.wh.tu-darmstadt.de 1205430883 N * dreamind Guest1219 1205430890 N * Guest1219 dreamind 1205431214 M * Bertl nap attack ... bbl 1205431221 N * Bertl Bertl_zZ 1205431290 M * dreamind Hi :) 1205431323 J * Piet ~piet@tor.noreply.org 1205431367 Q * mick_work Read error: Connection timed out 1205431418 J * mick_work ~clamwin@h-74-2-196-226.miatflad.covad.net 1205432669 Q * hparker Quit: Read error: 104 (Peer reset by connection) 1205433578 J * ViRUS ~mp@p57A6FF2D.dip.t-dialin.net 1205433610 Q * dib Quit: Ex-Chat 1205433819 Q * phedny Ping timeout: 480 seconds 1205433956 J * larsivi ~larsivi@144.84-48-50.nextgentel.com 1205435060 J * phedny ~mark@010-022-128-083.dynamic.caiway.nl 1205435299 Q * ema Quit: leaving 1205436095 Q * Piet Quit: Piet 1205437398 J * hparker ~hparker@linux.homershut.net 1205437768 J * dna ~dna@249.Red-88-27-12.staticIP.rima-tde.net 1205440261 Q * ftx__ Remote host closed the connection 1205443037 J * Aiken ~james@ppp121-45-199-100.lns1.bne1.internode.on.net 1205443233 Q * mick_work synthon.oftc.net tachyon.oftc.net 1205443267 Q * ViRUS Quit: Leaving 1205443916 J * mick_work ~clamwin@h-74-2-196-226.miatflad.covad.net 1205444715 T * * http://linux-vserver.org/ | latest stable 2.2.0.6, 2.0.3-rc3, devel 2.3.0.32, stable+grsec 2.2.0.6 | util-vserver-0.30.214 | libvserver-1.0.2 & vserver-utils-1.0.3 | He who asks a question is a fool for a minute; he who doesn't ask is a fool for a lifetime -- share the gained knowledge on the Wiki,a 1205444715 T * ChanServ - 1205444808 N * Bertl_zZ Bertl 1205445621 N * DoberMann DoberMann[ZZZzzz] 1205446271 Q * julius_ Remote host closed the connection 1205447593 Q * balbir synthon.oftc.net scorpio.oftc.net 1205448368 Q * xdr Ping timeout: 480 seconds 1205448383 J * balbir ~balbir@122.167.212.218 1205448486 Q * JonB Quit: This computer has gone to sleep 1205448903 Q * dreamind Quit: dreamind 1205449953 Q * larsivi Remote host closed the connection 1205450034 Q * dna Quit: Verlassend 1205452669 Q * bonbons Quit: Leaving