1211241624 Q * edlinuxguru Ping timeout: 480 seconds
1211242266 J * balbir ~balbir@122.167.180.76
1211243260 J * edlinuxguru ~edlinuxgu@225.sub-97-12-98.myvzw.com
1211246954 Q * edlinuxguru Ping timeout: 480 seconds
1211248310 Q * Mojo1978 Remote host closed the connection
1211248515 J * FireEgl FireEgl@adsl-212-220-247.bhm.bellsouth.net
1211248810 Q * balbir Ping timeout: 480 seconds
1211249314 Q * doener_ Ping timeout: 480 seconds
1211250006 Q * ensc|w Ping timeout: 480 seconds
1211252164 J * ensc|w ~ensc@www.sigma-chemnitz.de
1211255739 J * doener ~doener@i577B87F8.versanet.de
1211257938 J * cryptronic ~oli@p54A3B114.dip0.t-ipconnect.de
1211259074 Q * cryptronic Quit: Leaving.
1211259829 J * sharkjaw ~gab@64.28.12.166
1211261189 J * ntrs__ ~ntrs@77.29.69.27
1211261448 J * Slydder ~chuck@194.59.17.53
1211262614 Q * opuk Quit: leaving
1211262705 J * opuk ~kupo@c213-100-138-228.swipnet.se
1211265028 J * rgl ~rgl@bl8-130-19.dsl.telepac.pt
1211265194 Q * awk cation.oftc.net resistance.oftc.net
1211265194 Q * quasisane cation.oftc.net resistance.oftc.net
1211265194 Q * bronson cation.oftc.net resistance.oftc.net
1211265194 Q * Hollow cation.oftc.net resistance.oftc.net
1211265194 Q * nkukard cation.oftc.net resistance.oftc.net
1211265194 Q * AndrewLee cation.oftc.net resistance.oftc.net
1211265194 Q * puck cation.oftc.net resistance.oftc.net
1211265626 Q * doener Ping timeout: 480 seconds
1211265640 J * awk ~awk@security.web.za
1211265640 J * quasisane ~sanep@c-75-68-59-175.hsd1.nh.comcast.net
1211265640 J * bronson ~bronson@adsl-68-122-117-135.dsl.pltn13.pacbell.net
1211265640 J * Hollow ~hollow@proteus.croup.de
1211265640 J * nkukard ~nkukard@196.212.73.74
1211265640 J * AndrewLee ~andrew@flat.iis.sinica.edu.tw
1211265640 J * puck ~puck@leibniz.catalyst.net.nz
1211265641 Q * quasisane Read error: Connection reset by peer
1211266421 J * DavidS ~david@p4FCC1F4F.dip0.t-ipconnect.de
1211266679 Q * ntrs__ Ping timeout: 480 seconds
1211267901 J * fb fback@red.fback.net
1211267913 M * fb good morning
1211267927 M * Hawq hello
1211268009 J * Pazzo ~ugelt@reserved-225136.rol.raiffeisen.net
1211268393 M * Hawq which sysctl option enables context debugging?
1211268631 N * phedny Guest70
1211268637 J * phedny ~mark@2001:610:656::115
1211268653 Q * Guest70 Remote host closed the connection
1211269139 Q * phedny Ping timeout: 480 seconds
1211269251 N * DoberMann[ZZZzzz] DoberMann
1211269292 J * MatBoy ~MatBoy@wiljewelwetenhe.xs4all.nl
1211269944 J * phedny ~mark@2001:610:656::115
1211271062 N * phedny Guest75
1211271062 Q * Guest75 Remote host closed the connection
1211271067 J * phedny ~mark@2001:610:656::115
1211271136 Q * phedny 
1211271197 J * phedny ~mark@003-021-128-083.dynamic.caiway.nl
1211271472 Q * jsambrook Quit: Leaving.
1211271954 Q * ktwilight_ Read error: Connection reset by peer
1211271971 J * ktwilight ~ktwilight@87.66.195.235
1211272604 Q * nenolod Ping timeout: 480 seconds
1211272681 Q * Pazzo Ping timeout: 480 seconds
1211273200 J * Pazzo ~ugelt@sadsl-246167.rol.raiffeisen.net
1211274136 Q * DavidS Read error: Connection reset by peer
1211274137 J * DavidS ~david@p4FCC1F4F.dip0.t-ipconnect.de
1211274422 J * dna ~dna@89-199-dsl.kielnet.net
1211274487 J * quasisane ~sanep@c-75-68-59-175.hsd1.nh.comcast.net
1211274669 Q * DavidS Ping timeout: 480 seconds
1211274680 J * DavidS ~david@p4FCC1F4F.dip0.t-ipconnect.de
1211275863 J * jsambrook ~jsambrook@anchor-internet-1-if0.router.demon.net
1211276035 J * friendly ~friendly@ppp121-44-194-142.lns3.mel4.internode.on.net
1211276040 Q * dna Ping timeout: 480 seconds
1211276173 Q * friendly Remote host closed the connection
1211277585 Q * eSa| Read error: Connection reset by peer
1211277587 J * pmenier ~pme@LNeuilly-152-22-72-5.w193-251.abo.wanadoo.fr
1211277765 J * dna ~dna@89-199-dsl.kielnet.net
1211278219 J * friendly ~friendly@ppp121-44-194-142.lns3.mel4.internode.on.net
1211279685 Q * phedny Remote host closed the connection
1211279700 J * phedny ~mark@003-021-128-083.dynamic.caiway.nl
1211280539 Q * Pazzo Read error: Connection reset by peer
1211280764 J * eSa| ~kvirc@ip-87-238-2-45.static.adsl.cheapnet.it
1211281155 J * Matz ~MatBoy@wiljewelwetenhe.xs4all.nl
1211281272 Q * Matz 
1211281369 Q * MatBoy Ping timeout: 480 seconds
1211281526 J * MatBoy ~MatBoy@wiljewelwetenhe.xs4all.nl
1211281600 J * Pazzo ~ugelt@reserved-225136.rol.raiffeisen.net
1211283073 N * _Radiance Radiance
1211284021 J * kir ~kir@swsoft-msk-nat.sw.ru
1211285114 Q * Aiken Remote host closed the connection
1211285126 J * Aiken ~james@ppp121-45-230-114.lns1.bne4.internode.on.net
1211286659 Q * dna Read error: Connection reset by peer
1211286683 J * dna ~dna@89-199-dsl.kielnet.net
1211287135 Q * Aiken Remote host closed the connection
1211287885 Q * friendly Quit: Leaving.
1211287906 Q * weasel Ping timeout: 600 seconds
1211289301 Q * sharkjaw Remote host closed the connection
1211289914 N * Bertl_zZ Bertl
1211289922 M * Bertl morning folks!
1211289991 M * derjohn Bertl, mornin' !
1211290158 J * balbir ~balbir@122.167.180.76
1211290426 M * Hawq hey Bertl 
1211290538 M * Hawq can you tell me which sysctl option enables context debugging?
1211290580 M * Bertl sysctl -a | grep vserver
1211290596 M * Bertl you'll find the debug_xid and debug_switch
1211290613 M * Bertl you probably want to set them to 65535 or so
1211290660 M * Hawq thanks. lets see what interesting things get logged
1211290769 M * Hawq uh. nothing get logged :/
1211290841 M * Hawq wrong. just a two lines, both says "Not cloning cgroup for unused subsystem ns"
1211290878 J * hparker ~hparker@linux.homershut.net
1211290969 M * Bertl you should get quite some stuff logged in dmesg
1211290984 M * Bertl (if you did successfully set the sysctl values)
1211291021 M * Hawq sysctl -a says they're set
1211291242 M * Hawq anyway, time to go home for me. bbl
1211291247 M * Bertl k, cya
1211291312 M * Bertl okay, off for now .. bbl2
1211291317 N * Bertl Bertl_oO
1211291485 Q * Slydder Quit: Leaving.
1211291739 Q * kir Quit: Leaving.
1211292260 J * weasel weasel@weasel.chair.oftc.net
1211292270 J * doener ~doener@i577B87F8.versanet.de
1211292690 Q * dna Read error: Connection reset by peer
1211292715 J * dna ~dna@89-199-dsl.kielnet.net
1211293110 J * ema ~ema@rtfm.galliera.it
1211293142 Q * FireEgl Read error: No route to host
1211295143 Q * Medivh Ping timeout: 480 seconds
1211295876 Q * doener Ping timeout: 480 seconds
1211297073 J * nenolod ~nenolod@ip68-0-124-204.tu.ok.cox.net
1211297272 Q * nenolod 
1211297338 J * nenolod ~nenolod@ip68-0-124-204.tu.ok.cox.net
1211297666 J * julius ~julius@p57B273AA.dip.t-dialin.net
1211297676 M * julius hiho
1211297727 M * julius I just tried to install an ejabberd in a vserver and while searching for the problem(ssl handshake failed) I found a remark about it on your homepage
1211297753 M * julius do you know any solutions for this problem?
1211297766 M * Bertl_oO what's the problem?
1211297810 M * julius oh i just read that it should stop accepting connections
1211297843 M * julius my pidgin says that the ssl handshake fails
1211297876 M * julius guess the problem's somewhere else :-/
1211297882 M * Bertl_oO well, maybe the ssl handshake fails?
1211297950 M * julius :P
1211297985 M * Bertl_oO ssl can be tested manually, so you might want to do that
1211298001 M * julius the biggest problem is the lack of detailed error information on both sides
1211298008 M * julius I'll try
1211298029 M * Bertl_oO yeah, it's always good when applications do not tell the details :)
1211298864 J * cryptronic ~oli@p54A3B114.dip0.t-ipconnect.de
1211298888 M * emag julius: try a "{loglevel, 5}." in ejabberd.cfg
1211298896 M * emag that *might* help
1211298941 M * emag pidgin's one of the worst clients to test with, though, as it seems to have really poor xmpp support (ironic, considering the protocol's completely documented)
1211299018 M * julius i did try that loglevel option
1211299037 M * julius maybe i put it in the wrong place 'cause it didn't change a thing
1211299070 M * julius I've been doing some testing with openssl s_client and the 5223(old ssl) port
1211299090 M * julius http://phpfi.com/318411
1211299157 J * dowdle ~dowdle@scott.coe.montana.edu
1211299503 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d
1211301979 J * edlinuxguru ~edlinuxgu@216.223.13.111
1211302780 Q * pmenier Quit: Konversation terminated!
1211303643 J * docelic ~docelic@78.134.205.150
1211303785 J * Linus ~nuhx@bl7-139-219.dsl.telepac.pt
1211303970 N * DoberMann DoberMann[PullA]
1211304066 J * doener ~doener@i577B87F8.versanet.de
1211304372 M * Hawq home at last. time for some debugging
1211304459 Q * eSa| Quit: KVIrc 3.4.0 Virgo http://www.kvirc.net/
1211304969 J * marl ~marl@84.13.35.31
1211305100 M * marl hi folks, need a bit of help :) i have an NTL cable connection that gives me multiple fixed ip address on my connection, the only problem is each ip has to be assigned to a sepperate MAC address, anyone sujest a way of creating some kind of virtual net cards with different MAC address, that would allow me to then easly use those IPs within my guest systems?
1211305169 M * julius tun devices and bridges?
1211305204 Q * julius Quit: Es war einmal, südlich der Grasplantagen von Mittelerde.
1211305315 M * marl is there any howtows on tuns and bridges on vserver? lol will be my first time using tuns n bridges :(
1211305372 M * daniel_hozac you've verified that separate MACs actually are needed?
1211305383 M * daniel_hozac i.e. that different DHCP client identifiers are not sufficient?
1211305406 M * Bertl_oO marl: tuns and bridges on Linux-VServer are the same as on any Linux system
1211305422 M * Bertl_oO marl: but I really doubt that you'll need that
1211305488 M * ard if you want seperate macs, use macvlan
1211305502 M * ard that's part of the kernel since 2.6.23
1211305513 M * ard before that you need the macvlan patch and mvconfig
1211305588 M * ard I think marl needs different macs...
1211305604 M * Hawq daniel_hozac: what should I do to try to debug the problem about which I talked yesterday? I've debug enabled and set in sysctl, I've tried to build new guest but I'm not getting much info in logs. Most of them probably is from already running guests.
1211305617 M * ard The ip's are fixed, and usually that's based on something, and on cable I can only see mac as an identifier
1211305638 N * DoberMann[PullA] DoberMann
1211305658 M * marl ard, you are rite the cable system uses mac ids for all its settings
1211305667 M * ard marl : if you are sure you *need* different macs (please check that *first*), you can use the macvlan patches
1211305738 M * ard marl : I have initial packaging and such at http://217.196.41.9/~ard/vlan/
1211305744 M * daniel_hozac Hawq: with switch and xid debugging, you should see a _lot_ of output.
1211305756 M * marl ard, have confirmed with the ISP that differant macs are required
1211305760 M * ard those will never make it into debian, since 2.6.23 it's configured using standard NET api's
1211305801 M * marl and am running 2.6.25 kernel
1211305804 M * ard a macvlan will give you additional ethernet devices, which are the same, but with a different mac-address...
1211305820 M * Hawq daniel_hozac: any way to filter out logs from already running guests except stopping them?
1211305826 M * ard You need different ethernet devices, since the linux kernel filters on the primary mac-address
1211305845 M * Hawq daniel_hozac: and is 65535 good value for xid and switch debug?
1211305852 M * ard marl : then you need to just ip link add ...
1211305855 M * daniel_hozac Hawq: just create a mark in the log file, and don't vserver ... XYZ.
1211305884 M * ard I can't give you any details because I have to go home right now ;-)
1211305887 M * ard O/~
1211305908 M * marl thanks ard, will u be on later?
1211306072 M * Hawq daniel_hozac: console output is http://paste.linux-vserver.org/12111
1211306093 M * daniel_hozac and dmesg?
1211306127 M * Hawq daniel_hozac: and logged stuff from failing vserver build: http://paste.linux-vserver.org/12112
1211306164 M * Hawq nothing more get logged :/
1211306199 M * Bertl_oO did you execute 'dmesg'?
1211306204 M * Hawq yes
1211306214 M * Bertl_oO could you upload the output of testme.sh?
1211306228 M * Hawq thats all that appeared in dmesg after vserver build
1211306255 M * Hawq http://paste.linux-vserver.org/12113
1211306337 M * Hawq http://paste.linux-vserver.org/12114
1211306676 M * Bertl_oO ah, maybe you managed to turn down the kernel log level?
1211306746 M * Bertl_oO any loglevel= commands on the kernel boot command line?
1211306794 M * Hawq nope.
1211306819 M * Bertl_oO cat /proc/sys/kernel/printk
1211306888 M * Hawq output: 1       4       1       7
1211306923 M * Hawq some stuff is appearing in log though I'm not doing anything on this machine.
1211306924 M * Bertl_oO try 'echo 8 > kernel/printk'
1211306934 M * Bertl_oO in /proc/sys
1211306958 M * fb Bertl_oO: is there some kind of ctx 1, but for a network?
1211306982 M * Bertl_oO yep, it's called the spectator context and has nid=1
1211307015 M * fb how can i switch to it?
1211307021 M * Hawq Bertl_oO: did echo 8, tried vserver build, same stuff appeared in log.
1211307042 M * daniel_hozac ncontext --nid 1 --migrate -- ...
1211307147 M * fb thanks, daniel_hozac 
1211307229 J * Medivh ck@dolphin.serverbox.de
1211307259 M * fb does it work with stable version?
1211307288 Q * opuk Quit: leaving
1211307302 J * opuk ~kupo@2001:16d8:ffbd:100::10
1211307310 M * Bertl_oO fb: yep
1211307363 M * fb hmh, so i must to something wrong way -- after ncontext --nid 1 -- migrate -- bash netstat shows no output
1211307390 M * daniel_hozac is that old stable?
1211307395 M * fb nope
1211307403 M * fb 2.2 with grsec and ipv6 patch
1211307435 Q * DavidS Remote host closed the connection
1211307484 M * Hawq http://paste.linux-vserver.org/12115 is this any helpfull? It appeared in log when I wasn't doing anything on server
1211307484 M * fb 2.6.22.19-c3-2-grsec2.1.11-ipv6-vs2.2.0.6
1211307823 J * mess-mate ~chatzilla@ALille-254-1-50-18.w86-196.abo.wanadoo.fr
1211307880 P * mess-mate 
1211309269 M * Hawq I tried same debug stuff in freshly created virtual machine without guest systems. same results
1211309525 M * Hawq Bertl_oO, daniel_hozac: any more ideas what I may try to debug this?
1211309539 M * Hawq or why I'm getting so little output in dmesg
1211309707 M * daniel_hozac are you sure you rebuilt the entire kernel after you enabled debugging?
1211309760 M * Bertl_oO shouldn't show the sysctl entries
1211309798 M * Hawq daniel_hozac: yes, I rebuilt, reinstalled and rebooted machine
1211309849 M * Hawq maybe I need some other kernel options to compile in?
1211309898 M * Bertl_oO let's do it the other way round, what messages do you get in dmesg?
1211309908 M * Bertl_oO (i.e. could you upload the output?)
1211309942 M * Bertl_oO could be that the sysctl entries got broken somehow
1211310041 M * Hawq output from virtual machine will be fine? I'll reboot it and upload whole dmesg without attempting to execute vserver build
1211310057 M * Bertl_oO virtual machine means?
1211310077 M * Hawq virtualbox with same system and kernel I'm using on real server
1211310085 M * Bertl_oO should be fine
1211310128 M * ard marl : I am lurking again
1211310271 M * Hawq http://paste.linux-vserver.org/12116
1211310340 M * Bertl_oO okay, now try to boot that with vsdebug=switch=255 on the kernel command line
1211310884 M * Hawq uh, dmesg gor overfilled or something. I can't even paste it into http://paste.linux-vserver.org/ (returns error)
1211310960 M * Hawq http://hawk.furud.net/files/dmesg.txt
1211310966 M * Hawq thats all dmesg returns now
1211310976 M * Hawq its obviously cut
1211311185 M * Hawq I checked system logs. nothing more in kernel log, I mean, same stuff as in file repeating over and over
1211311250 M * Bertl_oO well, that's good, because that is the debug stuff we want
1211311281 M * Hawq I may upload full kernel log from boot as recorded by syslog
1211311285 M * Bertl_oO the question now is, why can't you activate the debug output with sysctl
1211311299 Q * jsambrook Quit: Leaving.
1211311306 M * Bertl_oO let's try to de-activate the sysctl entry for a test
1211311406 M * Hawq vserver.debug_switch set to 0
1211311484 M * Hawq I may configure sysctl rules used on system start so they'll get set automatically upon bootup right after init, maybe that will help?
1211311538 M * Hawq tried vserver build with deactivated sysctl entry, no debugging info logged
1211311755 M * Hawq tried setting startup sysctl rules too, dmesg output is exactly the same as with vsdebug=switch=255, but vserver build returned same short debug info I pasted before from real server
1211311837 J * doener_ ~doener@i577B83C2.versanet.de
1211311939 Q * doener Ping timeout: 480 seconds
1211311969 J * hijacker_ ~Lame@87-126-142-51.btc-net.bg
1211311970 Q * dowdle Remote host closed the connection
1211311978 J * dowdle ~dowdle@scott.coe.montana.edu
1211312236 J * Aiken ~james@ppp121-45-230-114.lns1.bne4.internode.on.net
1211312999 Q * hijacker_ Ping timeout: 480 seconds
1211313827 J * FireEgl ~FireEgl@adsl-212-220-247.bhm.bellsouth.net
1211313839 J * larsivi ~larsivi@144.84-48-50.nextgentel.com
1211314070 Q * dna Ping timeout: 480 seconds
1211315252 Q * rgl Quit: Saindo
1211315283 Q * Pazzo Quit: Ex-Chat
1211315342 M * Hawq I'm just thinking... can it be fault of my system rpm? but OTOH it works well with 2.6.22
1211316536 J * dna ~dna@89-199-dsl.kielnet.net
1211318171 P * cryptronic Leaving.
1211318187 Q * bonbons Quit: Leaving
1211318209 M * svenk 0
1211318234 M * Bertl_oO 1
1211318248 Q * dna Quit: Verlassend
1211318322 Q * transacid Remote host closed the connection
1211318531 J * transacid ~transacid@transacid.de
1211318822 M * zbyniu re
1211318883 M * zbyniu if (!vx_check(vx_task_xid(child), VS_WATCH_P | VS_IDENT)) { ... in patch for .25 is bad
1211318906 M * zbyniu for archs sparc, sparc64 and as i think some more
1211318926 M * Bertl_oO where (I mean, we have a bunch of them :)
1211318942 M * zbyniu ie arch/sparc/kernel/ptrace.c
1211318963 M * Bertl_oO ah, the ptrace checks, what's wrong with them?
1211318989 M * zbyniu doesn't build
1211319003 M * Bertl_oO what does it say?
1211319023 M * zbyniu and look in sources please, it looks like from some other universe
1211319042 M * zbyniu 'child' undeclared (first use in this function)
1211319099 M * zbyniu none word is known, even label :)
1211319191 M * Bertl_oO yep, that looks misapplied
1211319219 M * Bertl_oO should go into the arch_ptrace section
1211319230 M * Hawq there is progress. I recompiled util-vserver on llh 2.6.25, now it says "capset(): invalid argument" when trying to build guest
1211319242 J * jordi ~jordi@115.Red-213-96-69.staticIP.rima-tde.net
1211319253 M * Bertl_oO Hawq: you sure that can be considered progress?
1211319275 M * Hawq Bertl_oO: at least previous errors are gone
1211319284 M * daniel_hozac probably because it fails sooner now.
1211319290 M * Bertl_oO Hawq: what does vserver-info - SYSINFO say?
1211319306 M * jordi can anyone explain what are the different columns in /proc/virtual/xid/limit?
1211319322 M * jordi I'm desperately trying to raise the max number of processes in a vserver
1211319326 M * jordi but it's apparently ignored
1211319334 M * jordi PROC:	       347	       372	      5000	     0
1211319335 M * daniel_hozac it says at the top?
1211319343 M * Bertl_oO http://linux-vserver.org/ProcFS
1211319344 M * jordi it doesn't here at least
1211319352 M * daniel_hozac ah, Debian.
1211319356 M * jordi heh
1211319423 M * Hawq http://paste.linux-vserver.org/12117
1211319439 M * Bertl_oO note that this shows the current procfs, not that of the ancient previous stable branch :)
1211319468 M * jordi ok, so I have an /etc/vservers/foo/rlimits/ndev.hard (tried without .hard too) which says 5000
1211319477 M * jordi and it's getting ignored, apparently
1211319494 M * daniel_hozac "ndev"?
1211319496 M * jordi there's a horrible slaughter of processes going on right now
1211319499 M * jordi er
1211319501 M * jordi nproc
1211319502 M * jordi sorry
1211319519 M * Bertl_oO well, the entry you copy/pasted shows that it reached 372 processes
1211319532 M * Bertl_oO so that is a while away from 5k
1211319542 M * jordi it's killing like mad though
1211319550 M * jordi May 20 23:39:05 popes kernel: VM: killing process sh
1211319574 M * Bertl_oO upload the entire /proc/virtual/xid/limit to paste.linux-vserver.org
1211319599 M * daniel_hozac that looks more like OOM-killer to me.
1211319640 M * jordi oh, and it is
1211319645 M * jordi ffs
1211319663 M * zbyniu Hawq: libcap-devel >= 2.0 ?
1211319670 M * jordi http://paste.linux-vserver.org/12118
1211319678 M * jordi daniel_hozac: yeah, evidently
1211319704 M * Bertl_oO so, you hitted the rss limit 14068 times
1211319705 M * Hawq zbyniu: yeah, 2.05
1211319723 M * Bertl_oO jordi: and you had a maximum of 372 processes running at the same time
1211319743 M * jordi Bertl_oO: I don't understand that
1211319762 M * jordi If I'm specifying 5000 in nproc.hard, what's that 372 doing there?
1211319796 M * Bertl_oO well, if you specify 5k processes, that doesn't mean that there will immediately spawn 5000 processes (of whatever)
1211319806 M * Bertl_oO it just means that the upper limit is 5k
1211319814 M * Bertl_oO you were never even near that value
1211319814 M * Hawq time to go sleep here. I'll report back tomorrow to continue digging in that vserver build problem
1211319829 M * Hawq have a good night
1211319831 M * jordi ah, right. the slaughter was due to rss, of course
1211319835 M * Bertl_oO Hawq: u2
1211319851 M * jordi it's quiet now, I gave it two more gigabytes
1211319875 M * micah jordi: quit being so murderous with your processes
1211319913 M * jordi micah: dude
1211319917 M * jordi micah: I love them
1211319921 M * micah :)
1211319926 M * jordi but ther'es too many smtpd stuff going on
1211319927 M * jordi :)
1211319955 M * micah spam attack?
1211320055 M * jordi yeah
1211320083 M * jordi I don't know what to do about it now, postfix restriction list is long now :)=
1211320139 M * micah maybe lower the number of smtpd processes?
1211320194 M * jordi I've found legit connection attempts are punished by that
1211320205 M * jordi ie, I get timeouts
1211320308 A * hparker points out STRESS_README and postfix.org
1211320466 M * jordi smtpd_client_message_rate_limit (default: 0)
1211320469 M * jordi I was looking at this
1211320505 J * esa` ~esa@ip-87-238-2-45.static.adsl.cheapnet.it
1211320516 Q * esa Ping timeout: 480 seconds
1211320516 M * jordi fun, that's not included in the centos package
1211320584 M * micah jordi: dude
1211320615 M * jordi ha, yeah, tell me about CentOS now
1211320635 M * jordi CentOS 4 no less
1211320650 M * micah i was just going to tell you how sorry I am for you
1211320657 M * jordi heh
1211320671 M * jordi thank you, I know you love me. :)
1211321134 M * micah of course
1211321606 M * Bertl_oO okay, off to bed now .. have a good one everyone, cya!
1211321630 N * Bertl_oO Bertl_zZ
1211322591 Q * larsivi Remote host closed the connection
1211322795 Q * edlinuxguru Ping timeout: 480 seconds
1211323260 Q * docelic Quit: http://www.spinlocksolutions.com/
1211323642 Q * ema Quit: leaving
1211323757 J * edlinuxguru ~edlinuxgu@187.sub-97-15-216.myvzw.com
1211323884 M * edlinuxguru Hey just incase anyone was interested i got fuse and glusterFS working. http://linux-vserver.org/Fuse_GlusterFS 
1211323932 P * edlinuxguru 
1211323950 J * edlinuxguru ~edlinuxgu@187.sub-97-15-216.myvzw.com
1211323969 M * daniel_hozac congrats.
1211323973 M * daniel_hozac how does it perform?
1211324470 N * DoberMann DoberMann[ZZZzzz]
1211324579 M * edlinuxguru I have not done any heavy testing on it yet. but lets say its faster then s3 :)
1211324651 M * daniel_hozac s3?
1211324729 M * edlinuxguru I was making a joke about the amazon grid. Ill install bonnie++ later tonight and see if I can get a good benchmark out of it.
1211324818 Q * FloodServ charon.oftc.net services.oftc.net
1211325053 J * FloodServ services@services.oftc.net
1211325223 M * edlinuxguru I think I read this but all traffic from vserver to vserver on the same host never hits the forward chain correct?
1211325259 M * daniel_hozac traffic to/from guests never, ever, go through FORWARD.
1211325346 M * edlinuxguru So from my reading it seems like iptables is powerless on them correct?
1211325355 M * daniel_hozac huh?
1211325365 M * daniel_hozac they still pass through INPUT/OUTPUT, as usual.
1211325380 M * daniel_hozac i firewall my guests to death.
1211325392 M * edlinuxguru I understand but they can not firewall themselves
1211325429 M * daniel_hozac there are userspace solutions for that.
1211325447 M * edlinuxguru Do you mean in terms of proxy type applications?
1211325459 M * daniel_hozac yes.
1211325687 M * edlinuxguru Most proxy application re-write the source IP ? There is no way to get around that?
1211325853 M * edlinuxguru IP tables is not a big deal as long as the systems are isolated from each other
1211325854 M * daniel_hozac what?
1211325881 M * daniel_hozac you'd have a daemon on the host that receives requests from the guests to do things to their iptables.
1211326164 M * edlinuxguru I was thinking that was always a course of action but I was looking for a more direct way. Looks like you are looking at the new author of vs-iptables :)
1211326217 M * daniel_hozac i haven't looked at virtuatables in-depth, but it's supposed to work.
1211326645 Q * edlinuxguru Ping timeout: 480 seconds