1207785617 J * mire__ ~mire@198-172-222-85.adsl.verat.net 1207785735 Q * docelic Quit: http://www.spinlocksolutions.com/ 1207785827 Q * dowdle Remote host closed the connection 1207785846 Q * mire Ping timeout: 480 seconds 1207786003 Q * mire_ Ping timeout: 480 seconds 1207787299 J * mire_ ~mire@221-172-222-85.adsl.verat.net 1207787678 Q * mire__ Ping timeout: 480 seconds 1207788750 J * mire__ ~mire@110-172-222-85.adsl.verat.net 1207789123 Q * mire_ Ping timeout: 480 seconds 1207789775 J * eyck_ dI5rj8Jo@nat05.nowanet.pl 1207789833 Q * cehteh Ping timeout: 480 seconds 1207789893 Q * eyck Ping timeout: 480 seconds 1207790449 Q * marv- Quit: Leaving 1207791810 J * mire_ ~mire@7-172-222-85.adsl.verat.net 1207791976 J * cryptroni1 ~oli@p54A3AF6C.dip0.t-ipconnect.de 1207792191 Q * mire__ Ping timeout: 480 seconds 1207792352 Q * cryptronic Ping timeout: 480 seconds 1207793422 J * mire__ ~mire@118-172-222-85.adsl.verat.net 1207793423 J * cehteh ~ct@pipapo.org 1207793814 Q * mire_ Ping timeout: 480 seconds 1207794774 J * virtuoso_ ~s0t0na@ppp89-110-2-9.pppoe.avangarddsl.ru 1207795182 Q * virtuoso Ping timeout: 480 seconds 1207795817 J * mire_ ~mire@23-173-222-85.adsl.verat.net 1207796189 Q * mire__ Ping timeout: 480 seconds 1207796935 J * mire__ ~mire@178-173-222-85.adsl.verat.net 1207797187 J * _gh_ ~gerrit@63.97.245.98 1207797303 Q * mire_ Ping timeout: 480 seconds 1207798617 Q * ag- Read error: Connection reset by peer 1207798629 J * ag- ~ag@fedaykin.roxor.cx 1207798873 J * PowerKe_ ~tom@d5153A1EB.access.telenet.be 1207798982 Q * PowerKe Ping timeout: 480 seconds 1207799540 Q * _gh_ Quit: Client exiting 1207800554 Q * arekm Read error: Connection reset by peer 1207800562 J * arekm arekm@carme.pld-linux.org 1207805071 J * Slydder ~chuck@194.59.17.53 1207805492 N * Bertl_zZ Bertl 1207805496 M * Bertl morning folks! 1207805672 J * sko ~sko@adsl-76-199-8-104.dsl.chmpil.sbcglobal.net 1207805718 P * sko 1207807270 J * dna ~dna@158-232-dsl.kielnet.net 1207807457 Q * larsivi Quit: Konversation terminated! 1207807639 J * ftx ~ftx@dslb-084-060-234-039.pools.arcor-ip.net 1207807643 J * doener_ ~doener@i577B94B7.versanet.de 1207807791 Q * mire__ Ping timeout: 480 seconds 1207808057 Q * doener Ping timeout: 480 seconds 1207809086 Q * balbir Read error: Operation timed out 1207810188 J * mrfree ~mrfree@host1-89-static.40-88-b.business.telecomitalia.it 1207810489 J * virtuoso ~s0t0na@ppp89-110-2-9.pppoe.avangarddsl.ru 1207810530 M * padde hi there 1207810546 M * padde any hints on what I need to do to get an openvpn _client_ running in a vserver? 1207810568 M * padde i only found a FAQ entry stating what to do to get a openvpn _server_ running in a vserver 1207810593 Q * virtuoso_ Ping timeout: 480 seconds 1207810741 M * Bertl padde: very much the same, you setup the tun device on the host, and conenct to the persistant tun from the guest 1207810756 M * Bertl padde: IPs have to match the assigned sets for that guest to make it work 1207810871 M * padde i see. thanks for the info, i'll give it a try (and hopefully not bring down all the guests while i'm at it ;) ) 1207810982 M * padde i'm not too clear about what to learn from "If you need different settings, openvpn will tell you the ifconfig and route commands it uses to configure the interface when being started on the host with the original config file, but without ifconfig-noexec." (from http://linux-vserver.org/Frequently_Asked_Questions#Can_I_run_an_OpenVPN_Server_in_a_guest.3F) 1207810984 Q * Aiken Remote host closed the connection 1207810994 J * Aiken ~james@ppp121-45-192-61.lns1.bne1.internode.on.net 1207811021 M * padde i don't have a openvpn server config where i could set 'ifconfig-noexec' at all, because i only need to set up a client 1207811454 M * daniel_hozac the configuration is the same. 1207811508 M * padde daniel_hozac: so where do I get the server config from? or can i do it without it? i only have a client.conf right now (and not much clue about openvpn at all) 1207811532 M * daniel_hozac in client.conf, use ifconfig-noexec instead of ifconfig. 1207811644 M * padde daniel_hozac: i see, thanks :) 1207811698 J * DavidS ~david@85.125.165.34 1207812064 J * JonB ~NoSuchUse@77.75.164.169 1207812281 J * tobifix ~tobifix@IVV7KNALLER.UNI-MUENSTER.DE 1207812985 J * balbir ~balbir@59.145.136.1 1207813577 J * meandtheshell ~sa@d91-128-17-89.cust.tele2.at 1207816834 Q * JonB Quit: This computer has gone to sleep 1207816858 J * chigital ~chigital@p4FE5DEFC.dip.t-dialin.net 1207817271 J * ftx_ ~ftx@dslb-084-060-237-052.pools.arcor-ip.net 1207817501 M * harry daniel_hozac: ? 1207817510 M * harry do you admin the vserver server? 1207817523 M * harry i changed my .forward address a long time ago, but it doesn't seem to do that ;) 1207817524 M * daniel_hozac Hollow's the one who set it up. 1207817527 M * harry ah 1207817538 M * harry it does use .forward, right? 1207817576 M * daniel_hozac i think so. i have no idea though. 1207817604 J * sharkjaw ~gab@64.28.12.166 1207817682 Q * ftx Ping timeout: 480 seconds 1207817769 M * Bertl nap attack ... bbl 1207817774 N * Bertl Bertl_zZ 1207818294 N * PowerKe_ PowerKe 1207818367 Q * chigital Ping timeout: 480 seconds 1207819222 J * grocanar ~doutrele@157.159.21.148 1207819238 M * grocanar hi there 1207819278 M * grocanar i m wondering if i can install a 32 bit vserver on a 64 bit server 1207819733 J * JonB ~NoSuchUse@77.75.164.169 1207819818 M * padde grocanar: http://linux-vserver.org/Frequently_Asked_Questions#32_vs_64_Bit.3F_What_should_I_take.3F 1207819980 M * padde i'm still at my openvpn-client-in-vserver problem... the local IP address for the vpn-client node is assigned by the openvpn server. usually that's no problem, because the openvpn instance on the client just calles ifconfig and sets the ip-address to what the server tells it to - but if i want to run the openvpn-client in a vserver, i can't just set that ip address, am i right? what to do about that? 1207820014 M * JonB set it up front and use a static ip address 1207820021 M * JonB and dont close the tun interface 1207820039 M * padde JonB: what do you mean by 1207820044 M * padde JonB: "set it up front"? 1207820057 M * grocanar thanks for the link 1207820067 M * JonB padde: i mean set it up in advance at the host 1207820080 M * JonB and assign the tun interface to that guest 1207820086 M * padde JonB: oh, you mean i let the vpn-client run on the host 1207820123 M * JonB no i dont 1207820179 M * padde JonB: can I change the ip address of that tun interface if it's "assigned to the guest"? what would i specify in /etc/vservers//interfaces/ip then? 1207820208 M * JonB padde: the static ip address that this vpn client gets assigned 1207820274 M * padde JonB: umm, i think that's exactly the problem. it's not static. it may change between vpn connections 1207820285 M * JonB padde: then get a static 1207820297 Q * eyck_ Ping timeout: 480 seconds 1207820302 M * padde JonB: can't do that :( 1207820365 M * JonB why not? 1207820380 M * padde JonB: i don't have access to the vpn server's configuration 1207820491 M * JonB padde: tough 1207820495 M * JonB padde: usermode linux 1207820527 J * eyck 8zff8Nlm@nat06.nowanet.pl 1207820576 M * daniel_hozac padde: so either give the guest the capabilities to do that on its own, or write some sort of priviledged helper daemon. 1207820622 M * padde daniel_hozac: capabilities sounds good ;) i didn't make use of them, yet... i'll read up on it. 1207820870 N * DoberMann[ZZZzzz] DoberMann 1207822897 Q * JonB Quit: This computer has gone to sleep 1207823465 M * Hollow harry: use .qmail 1207824146 M * PowerKe How do I kill top in context 1 ? 1207824407 J * chigital ~chigital@91.90.144.102 1207824496 M * daniel_hozac PowerKe: chcontext --xid 1 kill should work, if vkill doesn't. 1207824525 M * PowerKe vkill didn't, but chcontext does 1207824527 M * PowerKe thanks 1207824967 J * eyck_ hxuzu79l@nat05.nowanet.pl 1207824968 Q * eyck Read error: No route to host 1207825343 Q * DavidS Quit: Leaving. 1207825414 Q * grocanar Quit: Quitte 1207826401 Q * kilobyte Quit: Sanity is overrated anyway 1207827535 Q * dna Quit: Verlassend 1207828020 Q * cryptroni1 Quit: Leaving. 1207828184 J * mire__ ~mire@178-173-222-85.adsl.verat.net 1207828334 J * docelic ~docelic@78.134.198.227 1207828595 Q * docelic 1207829007 J * docelic ~docelic@78.134.198.227 1207829092 J * C14r_ ~C14r@h58173.serverkompetenz.net 1207829150 J * JonB ~NoSuchUse@77.75.164.169 1207829156 Q * C14r Read error: Connection reset by peer 1207829685 J * yarihm ~yarihm@guest-docking-nat-2-155.ethz.ch 1207829737 M * harry Hollow: how? 1207829789 M * Hollow harry: just put your mail address you want to forward it to in ~/.qmail 1207830073 A * harry tests but it doesn't do anything :S 1207830133 M * harry still goes to the wrong address 1207830245 M * harry Hollow: help? 1207830283 M * Hollow sec 1207830379 M * Hollow harry: oh .. i'm sorry .. the setup is using vpopmail .. 1207830442 M * Hollow harry: pm me your new address and i set it up 1207831011 Q * ftx_ Remote host closed the connection 1207832603 Q * JonB Quit: This computer has gone to sleep 1207832896 Q * Aiken Remote host closed the connection 1207833364 J * friendly12345 ~friendly@ppp59-167-94-13.lns2.mel6.internode.on.net 1207834271 J * ftx ~ftx@space-ext.gatworks.de 1207834791 Q * sharkjaw Quit: Leaving 1207834944 Q * Slydder Quit: Leaving. 1207835297 Q * friendly12345 Quit: Leaving. 1207835529 Q * doener_ Ping timeout: 480 seconds 1207835608 Q * ftx Ping timeout: 480 seconds 1207835808 J * madgorilla ~mad@tor-irc.dnsbl.oftc.net 1207837160 J * doener ~doener@i577B94B7.versanet.de 1207837556 J * hijacker ~hijacker@213.91.163.5 1207837955 N * C14r_ C14r 1207837980 N * q Medivh 1207838432 Q * tobifix Quit: Leaving 1207838792 J * SpComb terom@zapotek.paivola.fi 1207838817 M * SpComb so hmm, `vserver ... build` is giving me a "/etc/vservers/.defaults/vdirbase/test1: Function not implemented" 1207838829 M * daniel_hozac are you running a Linux-VServer kernel? 1207838833 M * daniel_hozac what util-vserver version? 1207838837 M * SpComb issue is, I'm running this inside a Xen DomU 1207838845 M * SpComb so I'm not entirely surprised 1207838870 J * _gh_ ~gerrit@wireless-128-62-202-67.public.utexas.edu 1207838892 M * SpComb the kernel is 2.6.18-6-xen-amd64 1207838902 M * SpComb (from debian etch-backports) 1207838904 M * daniel_hozac that's not a Linux-VServer kernel. 1207838909 M * SpComb indeed, that's what I feared 1207838911 M * daniel_hozac and no, that's just etch. 1207838963 M * daniel_hozac you want linux-image-2.6-xen-vserver-amd64. 1207838984 M * SpComb oh, does that exist? Awesome 1207839019 Q * balbir Ping timeout: 480 seconds 1207839430 M * SpComb it's such a relief when you find out that the debian package maintainers have thought of your situation and provided a package that solves all your problems :) 1207839522 Q * chigital Ping timeout: 480 seconds 1207839639 J * JonB hidden-use@192.38.9.151 1207839795 M * SpComb and it does indeed work 1207839849 P * madgorilla Leaving 1207840868 Q * JonB Quit: This computer has gone to sleep 1207841035 Q * FireEgl Quit: Leaving... 1207841170 J * JonB hidden-use@192.38.9.151 1207841838 N * Bertl_zZ Bertl_oO 1207842651 J * dna ~dna@103-242-dsl.kielnet.net 1207843045 J * julius_ ~julius@p57B25006.dip.t-dialin.net 1207843462 Q * Julius Ping timeout: 480 seconds 1207843703 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d 1207844258 N * DoberMann DoberMann[PullA] 1207845110 Q * mrfree Ping timeout: 480 seconds 1207845352 M * SpComb I'm trying to set up a custom vserver configuration that simply runs one daemon process and nothing else (I don't need ssh, bash, anything at all, only this one process) 1207845391 M * SpComb i.e. instead of running this process in a chroot I'm trying to run it inside a vserver (cpu, mem limits, isolated networking) 1207845409 M * daniel_hozac but? 1207845416 M * SpComb terom@skrblz:/etc/vservers$ sudo vserver test2 start 1207845416 M * SpComb vlimit: fstat("/etc/vservers/test2/rlimits"): Permission denied 1207845422 M * SpComb I'll pastebin my config 1207845433 M * daniel_hozac that just means you've put the barrier on the wrong directory. 1207845475 M * daniel_hozac (or possibly symlinked it to a directory with the barrier) 1207845545 M * SpComb http://pb.paivola.fi/578 1207845558 M * SpComb (the /sbin/init -symlink is probably just a feeble joke) 1207845562 M * SpComb what do you mean with the barrier? 1207845637 M * daniel_hozac the barrier attribute is what protects you against chroot escapes. 1207845650 M * SpComb ah yes, I forgot to set that 1207845685 M * daniel_hozac with recent utils, it's set automatically when you build a guest. 1207845698 M * daniel_hozac run showattr /home/myottd/dev/mode-vserver/servers/test2 1207845748 M * SpComb well, I already ran setattr --barrier ., but http://pb.paivola.fi/579 1207845776 M * daniel_hozac it's even on the directory above that... 1207845803 M * daniel_hozac you can't have the config below a barrier directory. 1207845810 M * SpComb ah 1207845818 M * SpComb so I should unset it on that, and set it on the root dir? 1207845844 M * daniel_hozac no, it needs to be on a directory above the root directory, or the guest won't be able to do any lookups. 1207845869 M * SpComb (afk for 5min --> ) 1207846230 Q * yarihm Quit: This computer has gone to sleep 1207846456 M * SpComb so the implication of that is that I can't have the config dir and the fs-root in the same dir on the same level? 1207846466 M * daniel_hozac yep. 1207846530 J * larsivi ~larsivi@144.84-48-50.nextgentel.com 1207846573 M * SpComb great, it seems to work once I fix that 1207846646 M * SpComb (well, the /sbin/init-as-openttd fails, but that's a separate issue) 1207846688 M * SpComb http://linux-vserver.org/vcd:Introduction <-- does this vcd thing actually exist, or is it just a spec? 1207846717 M * daniel_hozac you'd have to talk to Hollow. 1207846911 Q * JonB Quit: This computer has gone to sleep 1207847039 J * ftx ~ftx@dslb-084-060-245-248.pools.arcor-ip.net 1207847114 J * dowdle ~dowdle@scott.coe.montana.edu 1207847791 J * JonB hidden-use@192.38.9.151 1207848138 Q * maddoc Ping timeout: 480 seconds 1207848383 M * SpComb http://pb.paivola.fi/580 <-- wrote a custom /sbin/init (does it have any bugs in it?) and the application works :) 1207848404 M * daniel_hozac uh, why aren't you just setting apps/init/cmd.start to the application you want? 1207848427 M * SpComb it's a temporary short-term solution 1207848433 M * SpComb does cmd.start take care of uid and cwd? 1207848441 Q * _gh_ Ping timeout: 480 seconds 1207848458 M * daniel_hozac no. 1207849084 N * Bertl_oO Bertl 1207849089 M * SpComb terom@skrblz:/etc/vservers$ sudo vserver test2 stop 1207849089 M * SpComb vkill: vc_ctx_kill(): No such process 1207849090 M * Bertl back now ... 1207849092 M * SpComb and then it just hangs 1207849108 M * Bertl SpComb: maybe it already 'stopped'? 1207849117 M * SpComb nope, it's running 1207849170 M * SpComb does vserver have some kind of "destroy" command? 1207849350 M * Bertl well, the vc_ctx_kill() is something like that 1207849366 M * SpComb attempting to kill -9 the "init" process from the host doesn't work either 1207849378 M * Bertl the fact, that you get 'No such process' means, that there is no context with the given id 1207849415 M * Bertl so, unless you are using _very_ old tools (debian) and your guest has no static xid assigned, something is definitely wrong 1207849472 M * SpComb I'm using debian sid/lenny util-vserver 0.30.215-2 and the vserver has a statically assigned context id (20001) 1207849604 M * SpComb is there any way to kill the vserver without rebooting the host os? 1207849725 M * daniel_hozac vkill -c -s 9 -- 0 1207849848 M * daniel_hozac i think the error is more due to the fact that you're using the plain init style when in fact, you're not running an init. 1207849860 M * SpComb is there some even more "raw" way? 1207849862 M * daniel_hozac thus pid 1 doesn't exist in the guest, and there's nothing to handle reboot. 1207849874 M * daniel_hozac than what? vkill? 1207849890 M * SpComb the vkill worked, it's gone now. I was talking about how I should set up my init instead 1207849905 M * daniel_hozac just use the regular sysv initstyle. 1207849918 M * daniel_hozac set cmd.start and cmd.stop accordingly. 1207850007 M * SpComb doesn't the sysv init style try and access /etc/init.d/* on the vm, or have I understood it wrong? 1207850046 M * SpComb or how does apps/init/cmd.start replate to apps/init/style? 1207850089 M * daniel_hozac cmd.start specifies the command used to start the guest. 1207850101 M * daniel_hozac cmd.stop specifies the command used to stop it. 1207850142 M * daniel_hozac (as it says on http://www.nongnu.org/util-vserver/doc/conf/configuration.html) 1207850181 M * SpComb yes, but do they override the automatic behaviour that apps/init/style appears to invoke? 1207850187 M * daniel_hozac yes, of course. 1207850212 M * SpComb so I can just omit apps/init/style completely and use those two? 1207850226 M * daniel_hozac sure, it'll default to sysv. 1207850274 Q * nkukard Quit: Leaving 1207850294 J * nkukard ~nkukard@196.212.73.74 1207850390 M * SpComb so what would cmd.start/stop be? "/sbin/init" (setuid+chdir+execl) and something that makes the aforementioned process terminate? 1207850398 J * danychouinard ~dchouinar@206.167.65.15 1207850421 M * daniel_hozac if that's what you want to do, yes. 1207850434 A * SpComb isn't really familiar with the internals of vserver/linux's init procedures 1207850442 J * psylocibe ~psylocibe@host198-37-dynamic.18-79-r.retail.telecomitalia.it 1207850470 M * psylocibe hi guys, i'm a newbye to linux-vserver. how do i delete a vserver? 1207850482 M * SpComb how does that differ from what style=plain does? I assumed that style=plain would run /sbin/init as pid=1 and then send a kill 15 to it on stop 1207850491 M * daniel_hozac psylocibe: vserver delete 1207850508 M * psylocibe thank you daniel_hozac 1207850511 M * daniel_hozac it's kill 1. 1207850528 M * daniel_hozac but your problem is that openttd forks, thus losing pid 1. 1207850536 M * danychouinard I was wondering what was the current best way to backup a vserver? I'm not using unify/hashify. 1207850546 M * daniel_hozac danychouinard: i use rsync... 1207850558 M * SpComb ah. I didn't realize that it forked 1207850586 M * danychouinard I would rather ends with a tar.gz or something. for off-shelf storage ;) 1207850586 M * SpComb does vtop show the in-context pid? I assumed the non-1 pid that is showed was some mapped pid or somesuch 1207850606 M * daniel_hozac vtop shows the real pids. 1207850621 M * daniel_hozac you'll want something like chcontext --xid -- ps faux to see real pids. 1207850626 M * daniel_hozac s/real/fake/ 1207850720 M * Bertl danychouinard: tar is fine too, just be careful about those nuemric ids .. for ext2/3 dump/rstore is a good solution, finally rbackup and friends work fine too 1207850733 M * Bertl *numeric that is 1207850793 M * Bertl daniel_hozac: maybe we should add a 'vserver - kill' or so, which does the magic incantation with -1/0/1 to kill off everything? 1207850799 M * danychouinard Bertl: I remember using something using find, cpio and gzip. I guess it is not relevent now. 1207850818 M * Bertl danychouinard: if you really like cpio archives, why not :) 1207850823 Q * JonB Quit: This computer has gone to sleep 1207850865 M * Bertl danychouinard: in any case, I'd double check if such a backup can be restored properly (i.e. without using any permissions, flags and similar) and if the numeric ids inside the guest dir are intact 1207850918 M * danychouinard Bertl: it is not a requirement ;) I was just looking to make sure I use somthing that works. I must admit that I get confused by all the unify and alike and that /proc folder that seems to confuse backup tool sometime. 1207850949 M * Bertl danychouinard: proc should not be visible from the host 1207851012 M * danychouinard Bertl: k 1207851352 J * maddoc maddoc@social.ostruktur.com 1207851373 Q * psylocibe Quit: so long and thanks for all the fish 1207851571 Q * samuel Quit: samuel 1207851641 J * Infinito ~argos@200-101-125-181.gnace701.dsl.brasiltelecom.net.br 1207852276 J * mrfree ~mrfree@79.16.49.176 1207852364 Q * Infinito Remote host closed the connection 1207852379 J * fatgoose ~samuel@76-10-149-199.dsl.teksavvy.com 1207853183 J * FireEgl ~FireEgl@adsl-220-216-143.bhm.bellsouth.net 1207853448 Q * meandtheshell Quit: Leaving. 1207854507 Q * danychouinard Quit: Ex-Chat 1207854708 Q * ftx Remote host closed the connection 1207854849 J * JonB ~NoSuchUse@77.75.164.169 1207855598 J * _gh_ ~gerrit@63.97.245.98 1207856513 J * heanol heanol@fuck.face.edu 1207856777 M * SpComb can I have a fifo that's shared between a guest vserver and the host? 1207856826 M * daniel_hozac sure. hardlinks do that just fine. 1207856835 M * Bertl if permissions and config are right, it should work fine 1207857737 Q * FireEgl Quit: Leaving... 1207858791 Q * mrfree Remote host closed the connection 1207859550 Q * bonbons Quit: Leaving 1207861037 Q * julius_ Ping timeout: 480 seconds 1207861067 J * Infinito ~argos@200-101-125-181.gnace701.dsl.brasiltelecom.net.br 1207861122 N * DoberMann[PullA] DoberMann 1207861261 J * Aiken ~james@ppp121-45-192-61.lns1.bne1.internode.on.net 1207861469 J * julius_ ~julius@p57B25006.dip.t-dialin.net 1207861561 J * friendly12345 ~friendly@ppp59-167-94-13.lns2.mel6.internode.on.net 1207861576 Q * friendly12345 1207861615 M * heanol i can't really find any specifics on how vserver networking works, but it seems when you create a guest you create an alias interface which is then bound to the guest, is this correct? 1207861682 M * daniel_hozac guests are limited to a subset of the available IP addresses. 1207861690 M * daniel_hozac all the networking happens on the host. 1207861710 M * heanol so it's bound on the ip-level, not interface-level really? 1207861717 M * Bertl heanol: precisely 1207861718 M * daniel_hozac that's the idea. 1207861727 M * heanol the alias interface are just a convienence 1207861732 M * heanol that's nice 1207861736 M * Bertl heanol: further, aliases are not used nowadays 1207861741 M * heanol oh 1207861750 M * heanol how does it work nowadays? 1207861753 M * Bertl well, you can, but usually you won't :) 1207861769 M * Bertl you just assign secondary ips (see ip utility) 1207861773 M * heanol ah, cool 1207861793 M * Bertl the advantage there is that they will show up like primaries in the guest 1207861812 M * Bertl e.g. having 10.0.0.1 as primary and 10.0.0.2 as secondary 1207861830 M * Bertl then giving 10.0.0.2 to the guest, will only show that one (like a primary) 1207861836 M * heanol and for examples in iptables on the host, it'd look like the traffic from the guest is originating from the interface on the host that is on the same network as the guest, just from a different source ip? 1207861855 M * Bertl exactly! 1207861858 M * heanol cool 1207861861 M * heanol suits my needs exacly 1207861864 M * heanol exactly* 1207861876 M * Bertl it's resfreshing that somebody sees it the proper way and doesn't talk about virtual interfaces :) 1207861891 M * heanol yeah, i'm running xen now and it's a pain 1207861911 M * heanol on many levels =) 1207861926 M * Bertl yeah, not to speak of the incured overhead 1207861938 M * Bertl (for bridging and routing) 1207861940 M * heanol true 1207861960 M * heanol if i remember correctly, i could not get gigabit speeds from a guest to outside the host 1207861968 M * heanol since the packets passed through two interfaces or somehing.. 1207862017 M * Bertl yes, and usually two network stacks too :) 1207862029 M * heanol perhaps that was what caused it 1207862065 M * heanol i like how grsecurity is integrated into vserver-patch too 1207862073 M * heanol i miss it with xen 1207862106 M * Bertl I'm still not convinced about the actual use of grsec, but yeah, it seems to work fine, thanks to harry 1207862127 M * Bertl (grsec in combination with Linux-VServer that is) 1207862138 M * heanol well pax and acls should be an advantage always? 1207862332 M * Bertl IMHO most of the 'security enhancements' provide at least a certain amount of false security 1207862350 M * Bertl like, great, now that I added grsec, I'm fine, nothing can happen 1207862354 M * heanol oh 1207862359 M * heanol hehe 1207862363 M * heanol of course not:) 1207862372 M * heanol but many people probably think so, sadly 1207862379 M * Bertl but yeah, if you know what you are doing, it's probably a good addition, indeed 1207862480 Q * dna Quit: Verlassend 1207863948 J * ritter__ ~lownoize@p5B077D2C.dip.t-dialin.net 1207864231 J * FireEgl FireEgl@adsl-220-216-143.bhm.bellsouth.net 1207864388 Q * ritter_ Ping timeout: 480 seconds 1207864761 N * DoberMann DoberMann[ZZZzzz] 1207864964 Q * JonB Quit: This computer has gone to sleep 1207865406 M * Bertl okay, off to bed now ... have a good one everyone! 1207865412 N * Bertl Bertl_zZ 1207865810 Q * phedny Ping timeout: 480 seconds 1207866510 Q * sid3windr Ping timeout: 480 seconds 1207866599 J * sid3windr luser@bastard-operator.from-hell.be 1207867494 Q * docelic Quit: http://www.spinlocksolutions.com/ 1207868466 Q * julius_ Remote host closed the connection 1207868665 Q * dowdle Remote host closed the connection 1207868809 J * ktwilight_ ~ktwilight@91.124-66-87.adsl-dyn.isp.belgacom.be 1207868838 Q * Infinito Quit: Leaving 1207869082 Q * ktwilight Ping timeout: 480 seconds 1207869086 Q * Aiken Quit: Leaving 1207869109 J * Aiken ~james@ppp121-45-192-61.lns1.bne1.internode.on.net 1207870215 J * Infinito ~argos@200-101-125-181.gnace701.dsl.brasiltelecom.net.br