1255825491 Q * crushedhat Remote host closed the connection
1255826500 Q * mrfree Ping timeout: 480 seconds
1255826984 J * hparker ~hparker@2001:470:1f0f:32c:290:96ff:fe50:40fa
1255828997 J * Vutral ~ss@p54A8F78F.dip.t-dialin.net
1255831260 J * derjohn_foo ~aj@e180195205.adsl.alicedsl.de
1255831679 Q * derjohn_mob Ping timeout: 480 seconds
1255832459 Q * geb Quit: /
1255833167 J * Protagonist ~ss@p54A8B6E0.dip.t-dialin.net
1255833595 Q * Vutral Ping timeout: 480 seconds
1255834828 J * saulus_ ~saulus@d004209.adsl.hansenet.de
1255835234 Q * SauLus Ping timeout: 480 seconds
1255835239 N * saulus_ SauLus
1255838143 M * Bertl off to bed now ... have a good one everyone!
1255838148 N * Bertl Bertl_zZ
1255838167 Q * balbir_ Ping timeout: 480 seconds
1255838857 J * balbir_ ~balbir@122.172.30.27
1255840072 Q * BenG Quit: I Leave
1255841627 Q * scientes Ping timeout: 480 seconds
1255844105 Q * padde Remote host closed the connection
1255844133 J * padde ~padde@patrick-nagel.net
1255845457 J * MalibuKaribu ~ss@p54A8DADD.dip.t-dialin.net
1255845849 Q * Protagonist Ping timeout: 480 seconds
1255847909 J * ghislainocfs2 ~Ghislain@adsl2.aqueos.com
1255848839 J * Shinsaku ~Shinsaku@chello089076140236.chello.pl
1255852354 J * Protagonist ~ss@p54A8E9BF.dip.t-dialin.net
1255852774 Q * MalibuKaribu Ping timeout: 480 seconds
1255854551 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d
1255855947 M * ghislainocfs2 daniel_hozac: would it be possible to add LSB info to the startup script in utilvservers ?
1255856117 M * ghislainocfs2  daniel_hozac: i sent the header to you , see if you can/want to add them :)
1255856551 M * daniel_hozac yeah, i've had a tab open in firefox for that for a few months.
1255856563 M * daniel_hozac just haven't gotten around to actually doing it.
1255856694 M * daniel_hozac thanks.
1255860527 Q * hparker Quit: Read error: 104 (Peer reset by connection)
1255860771 J * hparker ~hparker@2001:470:1f0f:32c:290:96ff:fe50:40fa
1255861116 N * Bertl_zZ Bertl
1255861120 M * Bertl morning folks!
1255861144 M * hparker Morning Bertl 
1255861359 J * BenG ~bengreen@94-169-110-10.cable.ubr22.aztw.blueyonder.co.uk
1255861381 Q * raceme_ Remote host closed the connection
1255862328 M * ghislainocfs2  daniel_hozac: i just done it for teh 3 major script i do not know if those are the best choice but they seems good to me, and with them included in your source we can have feedback from other that can help fine tune them if needed
1255864904 Q * BenG Quit: I Leave
1255865237 J * BenG ~bengreen@94-169-110-10.cable.ubr22.aztw.blueyonder.co.uk
1255867112 J * doener_ ~doener@i59F5B861.versanet.de
1255867217 Q * doener Ping timeout: 480 seconds
1255867407 J * mrfree ~mrfree@host-62-10-66-75.cust-adsl.tiscali.it
1255867470 M * Bertl off for now ... bbl
1255867497 N * Bertl Bertl_oO
1255868253 Q * Shinsaku 
1255869987 Q * BenG Quit: I Leave
1255870264 J * fback_ fback@red.fback.net
1255870264 Q * fback Read error: Connection reset by peer
1255870619 J * geb ~geb@earth.gebura.eu.org
1255870684 M * geb hi
1255872851 J * scientes ~scientes@174-21-161-91.tukw.qwest.net
1255874004 J * Shinsaku ~Shinsaku@chello089076140236.chello.pl
1255875118 Q * FireEgl Remote host closed the connection
1255877029 J * FireEgl Proteus@2001:470:e056:1:4::9
1255878290 Q * hparker Remote host closed the connection
1255878303 Q * mrfree Ping timeout: 480 seconds
1255878333 Q * pinochle_ Quit: leaving
1255878639 J * hparker ~hparker@2001:470:1f0f:32c:290:96ff:fe50:40fa
1255879447 Q * hparker Ping timeout: 480 seconds
1255880106 J * hparker ~hparker@2001:470:1f0f:32c:290:96ff:fe50:40fa
1255881184 Q * geb Ping timeout: 480 seconds
1255882907 Q * SauLus Quit: ...something weird happened
1255883000 Q * Shinsaku 
1255884326 J * saulus ~saulus@d047004.adsl.hansenet.de
1255884363 Q * ghislainocfs2 Ping timeout: 480 seconds
1255884862 Q * saulus Remote host closed the connection
1255888509 J * geb ~geb@earth.gebura.eu.org
1255888737 Q * balbir_ Ping timeout: 480 seconds
1255889500 J * balbir_ ~balbir@122.172.30.27
1255891073 J * fleischergesell ~fleischer@dslb-088-076-055-136.pools.arcor-ip.net
1255891197 M * fleischergesell hi, how can i make several vservers use /dev/net/tun?
1255891221 M * fleischergesell whenever i try to setup a second vserver using this device, it says something like bad file descriptor
1255892223 M * daniel_hozac how are you doing it?
1255892951 M * fleischergesell sorry, problem already solved :)
1255894153 J * imcsk8 ~ichavero@189.155.80.33
1255894605 M * fleischergesell can i remove a vservers bcapabilities while its running?
1255894640 M * daniel_hozac sure, with vattribute.
1255894647 M * fleischergesell thanks
1255895701 M * fleischergesell if i make my devices with nodev instead of dev, apparently only one vserver can geht the eth0 device and all the others get none - why is that so and how can i work around this?
1255896070 Q * uva Quit: Leaving
1255896750 N * Bertl_oO Bertl
1255896753 M * Bertl back now ...
1255896796 M * Bertl fleischergesell: 'nodev' simply means that util-vserver will not assign the specified IP to an interface ... i.e. it is assumed that the IP is already assigned somewhere
1255896807 M * Bertl also util-vserver will not take down 'nodev
1255896815 M * Bertl ' IPs on guest shutdown
1255896861 M * Bertl so, I presume, the IPs of your 'other' guests are not assigned to any interface when the guest is started, and thus, no interface will be shown inside the guest
1255897033 M * fleischergesell mh okay - but this means, there is no network connection then, correct?
1255897054 M * fleischergesell i just had this damn problem with my vservers bringing down my interface on the host
1255897096 M * fleischergesell well, created lots of dummy ifaces now which kinda solves the problem
1255897623 M * Bertl known 'mainline' or configuration issue, dummy devices are nice, but not the proper solution
1255897731 M * Bertl you might want to take a look at the FAQ
1255897736 M * fleischergesell no, they're not a proper solution, but i cant find another one
1255897740 M * fleischergesell which i did
1255897808 M * Bertl http://linux-vserver.org/Frequently_Asked_Questions#If_I_shut_down_my_vserver_guest.2C_the_whole_Internet_interface_ethX_on_the_host_is_shut_down.__What_happened.3F
1255897818 M * fleischergesell the thing is: i need to have 2 vservers NET_ADMIN cap because i need to run tincd inside
1255897824 M * fleischergesell without net_admin, no interface on host gets shut down
1255897839 M * fleischergesell with net_admin, the only way to NOT shutting down iface on host is to use nodev
1255897871 M * fleischergesell i did what is said in the faq but this did NOT resolve the issue with bringing down ifaces because guest has NET_ADMIN
1255897915 M * Bertl doesn't tincd allow to use persistant tun devices?
1255898003 M * Bertl I'd say, your guest is not cleaned up either, ad so, once you give net_admin, the runlevel scripts inside the guest (which should not be executed) take down the interface
1255898013 M * fleischergesell thats true
1255898046 M * Bertl and that will happen regardless of dev/nodev in the config
1255898046 M * fleischergesell the runlevel scripts are fucked because those morons at debian sid wont let me install util-linux without having those runlevels
1255898072 M * Bertl okay, what's bad about those runlevels?
1255898107 M * fleischergesell worked like a charm for weeks, then update came for util-linux and i had to update all the runlevel scripts
1255898149 M * Bertl you can execute the post install script from the host, that should fix up your guest
1255898171 M * fleischergesell mh, but next time util-linux package gets updated i need the runlevel-scripts again...
1255898186 M * Bertl also investigate if tincd isn't able to bind to (preexisting) tun devices, because if so, you do not need net_admin
1255898205 M * Bertl openvpn is working quite fine here in a guest
1255898216 M * daniel_hozac binding to it should not be a problem, it's identical to binding to a new one.
1255898243 M * daniel_hozac leaving it when shutting down might be a problem.
1255898317 M * fleischergesell mh, i dont know how to pre-create the interface for tinc, because all i tried did not work out
1255898363 M * Bertl http://www.nongnu.org/util-vserver/doc/conf/configuration.html
1255898391 M * fleischergesell hehe, thats just the interface for the guest
1255898394 M * Bertl daniel_hozac: btw, google (feeling lucky) 'flower page'
1255898399 M * fleischergesell tinc creates one on the host
1255898408 M * fleischergesell or needs to create one
1255898421 M * fleischergesell and whatever i do, i cannot get tinc to use any pre-created device here
1255898424 M * Bertl how so?
1255898425 M * fleischergesell but i'll investigate this
1255898461 M * daniel_hozac Bertl: yeah, heh.
1255898469 M * fleischergesell found something - will try and might come back
1255898479 M * fleischergesell any idea where i can find the post install scripts to fix up my guests?
1255898659 M * geb hi folks
1255898681 M * daniel_hozac /usr/lib*/util-vserver/distributions/debian/initpost
1255898724 M * geb i have got a few questions about vcd: what is its status ? is it fonctional ? abandoned ?
1255898735 M * daniel_hozac abandoned.
1255898739 M * daniel_hozac as far as i know.
1255898747 M * geb :(
1255898752 M * geb is there some code visible ?
1255898787 M * daniel_hozac all the code is in svn.
1255898802 M * daniel_hozac hasn't been touched for over two years though.
1255898925 M * geb 'k thanks :)
1255898938 M * geb do you know why it has been abandoned ?
1255898961 M * daniel_hozac you'd have to talk to Hollow.
1255898976 M * geb k :)
1255899117 M * Bertl probably because nobody used it besides hparker 
1255899121 M * Bertl *Hollow
1255899652 M * fleischergesell how can i create an for a guest that maps to tun2 or tunX with name IFACENAME?
1255899660 M * fleischergesell *an interface
1255899683 M * daniel_hozac there are no guest interfaces.
1255899686 M * daniel_hozac nothing like that.
1255899690 M * daniel_hozac guests have IP addresses.
1255899693 Q * bonbons Quit: Leaving
1255899694 M * fleischergesell well sure
1255899730 M * fleischergesell but i can make them feel as they have interfaces
1255899730 M * daniel_hozac if you setup tun7 on the host with an IP address that the guest is assigned, the guest is going to be able to see that interface.
1255899765 M * fleischergesell okay, how do i create interface tunX on the host?
1255899829 M * daniel_hozac see the great flower page.
1255899833 M * daniel_hozac for a way to do it.
1255899885 N * DoberMann[PullA] DoberMann[ZZZzzz]
1255899891 J * mrfree ~mrfree@host-62-10-70-250.cust-adsl.tiscali.it
1255899955 M * fleischergesell mh i cant find a way to create interfaces on the HOST there
1255899988 M * daniel_hozac there is no way to create an interface on a guest.
1255899991 M * Bertl tunctl (tool)
1255899992 M * daniel_hozac there is no such thing.
1255900021 M * daniel_hozac any interface the utils create, they setup on the host, and assign the specific IP address to the guest.
1255900187 M * fleischergesell right... but it seems not possible to create an inteface dev=tun2, because then i get "no such device", because there is only "tun" - but i used "tun" for another vserver and if i try to use this again, i always get bad file descriptor
1255900297 M * daniel_hozac dev=tun2 is not a problem.
1255900300 M * daniel_hozac i have that.
1255900312 M * fleischergesell well, i dont have it :(
1255900321 M * daniel_hozac have you told the utils that they are creating a tun device?
1255900334 M * daniel_hozac i.e. by setting /etc/vservers/<guest>/interfaces/<X>/tun?
1255900340 Q * vServer_User 
1255900439 M * fleischergesell ah
1255901115 M * fleischergesell okay, how can i tell which DEVICE utils actually uses for this tun2 interface
1255901134 M * Bertl it will use the tun2 interface :)
1255901142 M * fleischergesell device = interface?
1255901160 M * Bertl correct
1255901339 M * fleischergesell so i setup the device using dev=tun2, x/tun, and it shows up under ifconfig in the guest - but i always get "cannot write to linux tun device /dev/net/tun2..."
1255901362 M * fleischergesell because I'm not sure if /dev/net/tun2 is the right interface here to specify for tinc
1255901382 M * Bertl why not just try with 'tun2'?
1255901481 J * blues_ ~blues@actv129.neoplus.adsl.tpnet.pl
1255901557 M * fleischergesell new problem: tunctl: ioctl(TUNSETIFF): Operation not permitted
1255901566 M * fleischergesell i just restarted the vserver and now get this error
1255901598 Q * blues Ping timeout: 480 seconds
1255901649 M * daniel_hozac there is no /dev/net/tun.
1255901651 M * fleischergesell mh seems to be a fucked up device
1255901659 M * daniel_hozac /dev/net/tun*, i mean.
1255901666 M * daniel_hozac there is only one /dev/net/tun, that is used for all interfaces.
1255901676 M * Bertl fleischergesell: you want to tell tincd not to try to configure the interface (IP/etc)
1255901753 M * fleischergesell ya, thats what i'm doing Bertl, but finding out what i have to tell tincd (which device it should use) is more complicated than i thought
1255901798 M * daniel_hozac the device node is /dev/net/tun, the interface is tunX
1255902173 J * BenG ~bengreen@94-169-110-10.cable.ubr22.aztw.blueyonder.co.uk
1255902609 Q * BenG Quit: I Leave
1255903060 M * fleischergesell puh, its so complicated to actually get this running..
1255903081 M * fleischergesell all i wanted was tinc running in 2 vservers without needing NET_ADMIN
1255903103 M * Bertl and? wasn't that hard with openvpn :)
1255903133 M * fleischergesell well i never tried openvpn, but i hoped that tinc would be easier than this
1255903167 M * Bertl well, still at the TUNSETIFF problem?
1255903196 M * fleischergesell no, i can setup everything without errors, but then tinc can't send data via the tun interface
1255903223 M * Bertl that sounds like a misconfiguration on the host (routing/etc)?
1255903246 M * Bertl what does tcpdump -vvnei tun2 show?
1255903255 M * fleischergesell we thought that too, but we have another setup running that works with the same routing (same host)
1255903344 M * fleischergesell that gives me a syntax error :|
1255903368 M * daniel_hozac "tcpdump -vvnei tun2"?
1255903372 M * Bertl you sure you're on linux :)
1255903423 M * fleischergesell hehe ya without "ne" it works
1255903430 M * fleischergesell it can send packets out
1255903436 M * fleischergesell but wont get anything in
1255903447 M * Bertl out means for you?
1255903472 M * fleischergesell out -> ping does this (my vserver is .1) 00:03:08.724069 IP (tos 0x0, ttl 64, id 0, offset 0, flags [DF], proto ICMP (1), length 84) 10.1.1.2 > 10.1.1.1: ICMP echo request, id 58738, seq 1, length 64
1255903500 M * fleischergesell ah, ping never leaves host
1255903501 M * Bertl ping from where?
1255903524 M * fleischergesell oh that was the ping from inside the guest
1255903532 M * fleischergesell and the tcpumpd was on the host
1255903551 M * Bertl okay, and 10.1.1.1 is the guest IP?
1255903563 M * fleischergesell no 10.1.1.2 is the guest ip, sorry
1255903572 M * fleischergesell the thing is:
1255903597 M * fleischergesell usually, tinc creates an interface having these modes:  UP BROADCAST RUNNING MULTICAST  MTU:1500 
1255903614 M * fleischergesell but the itnerface i created for tinc myself only has: UP POINTOPOINT RUNNING NOARP MULTICAST  
1255903635 M * fleischergesell and i need it to have broadcast, but cant figure out how to change it - and i believe this is part of the problem
1255903657 M * fleischergesell (not sure what NOARP does though)
1255903676 M * Bertl it doesn't send/relay arp requests
1255903708 M * fleischergesell okay, so how can i remove NOARP from the modes and have BRoADCAST instead if POINTTOPOINT?
1255903742 M * Bertl you are creating a tun interface, while the once tincd seems to create is a tap device
1255903794 M * fleischergesell k, will try to change it into tap
1255903932 J * ichavero_ ~ichavero@189.155.146.147
1255903952 Q * mrfree Remote host closed the connection
1255903996 M * Bertl fleischergesell: looking at the tin.conf man page, you want to use DeviceType = tun
1255904040 M * fleischergesell already changed the device to tap which did not solve the issue but we got atleast one step further
1255904062 M * Bertl tap won't work inside a guest, as it is below the IP layer
1255904077 M * Bertl well, at least not without network namespaces
1255904103 M * fleischergesell well, the other vserver which has NET_ADMIN runs it with tap and that works fine
1255904136 M * Bertl yeah, because it has net_admin, i.e. circumvents the network isolation
1255904243 Q * scientes Ping timeout: 480 seconds
1255904344 Q * imcsk8 Ping timeout: 480 seconds
1255904363 M * fleischergesell mh weird - no we got it working... with the tap iface - without net_admin
1255904439 M * fleischergesell thanks for your help!
1255904450 M * Bertl you're welcome!
1255904455 M * fleischergesell and just one more thing: how can i execute the post-inst-scripts?
1255904489 M * fleischergesell just to fix up the guests from time to time (they get broken by weird upgrades or have to get runlevel-scripts for those damn util-linux etc stuff)
1255904656 J * uva bno@118-168-238-45.dynamic.hinet.net
1255904671 J * janno ~janno@dslb-188-097-234-144.pools.arcor-ip.net
1255904740 M * Bertl /usr/lib*/util-vserver/distributions/debian/initpost /etc/vservers/<guest> /usr/lib*/util-vserver/util-vserver-vars
1255904762 M * fleischergesell thanks!
1255904799 M * Bertl np
1255904819 M * geb can i add a flag without restarting vservers ?
1255904833 M * Bertl very likely
1255904890 M * fleischergesell mh, that did not really work - lots of "/etc/vservers/mailserver: is a directory"
1255904915 M * fleischergesell or " startSleepingGuest: command not found" etc
1255904934 M * Bertl double check with daniel_hozac 
1255904937 J * orzel ~orzel@sylphide-consulting.com
1255904974 M * daniel_hozac that's right.
1255905015 M * orzel hello. since i've updated from linux-2.6.28.2-vs2.3.0.36.4 to linux-2.6.31.3-vs2.3.0.36.17 i have the funny following bug
1255905026 Q * hparker Quit: Read error: 104 (Peer reset by connection)
1255905040 M * orzel when i connect to my computer the 'hostname' is the one of the vserver ('web')
1255905061 M * orzel i guess that the 'set hostname' was kind of blocked inside a client until recently... is that right ?
1255905063 M * Bertl too old util-vserver
1255905074 M * Bertl your guests are not isolated properly
1255905111 M * orzel i use sys-cluster/util-vserver-0.30.215-r3
1255905118 M * orzel no propely as 'insecure' ?
1255905125 M * Bertl correct
1255905169 M * orzel mm, i have blocked update more recent than this version because "does not work" (yes, i'm very good at documentation)
1255905176 M * Bertl util-vserver 0.30.215 is almost two years old, you can't expect it to handle mainline changes done in 2.6.27+
1255905182 M * orzel let's try again then
1255905230 M * orzel does sys-cluster/util-vserver-0.30.216_pre2849 sound better ? or at least 'good' ?
1255905244 M * Bertl sounds better, yes :)
1255905308 M * orzel it kinds of mean that there has been no 'official' stable release since 0.30.215 though, no ? 
1255905321 M * orzel i could argue that i use the latest stable one :)
1255905387 M * Bertl yeah, I'd be happier with a 0.30.216 release too, but that's entirely up to daniel_hozac 
1255905472 M * daniel_hozac we'd all be happier with that, but there's just a lot of small things that need to get done before then.
1255905498 M * orzel is there a page about the releases of util-vserver. ? on http://linux-vserver.org ? 
1255905500 M * Bertl orzel: so get involved, and help us fix it all up :)
1255905513 M * orzel ouch. i'm a happy user, but i'm faaaar from being able to patch such a thing
1255905550 M * orzel anyway, server reboot 
1255905644 Q * fleischergesell Ping timeout: 480 seconds
1255905851 J * orzel_ ~orzel@sylphide-consulting.com
1255905884 Q * orzel Read error: Connection reset by peer
1255905964 M * orzel_ mm, at least my hostname is ok
1255906012 N * orzel_ orzel
1255906051 M * orzel vserver-stat seems happy, and the vserver is up and running. 
1255906065 M * Bertl that's the way it should be :)
1255906150 M * orzel yes, and i cant see any obvious problems so far. Great :-)
1255906402 M * orzel Bertl: there's no ipv6 support in client with 2.6.31.3-vs2.3.0.36.17, right ? 
1255906429 Q * janno Quit: Lost terminal
1255906432 M * Bertl depends on the kernel config
1255906462 M * Bertl if you enabled ipv6, it works, except for ipv4/v6 double bindings, which is work-in-progress
1255906612 M * orzel i have ipv6 enabled. It works pretty well on the host.
1255906632 M * orzel i can't ping6 from the client, but i guess i somehow needs to give it an ipv6 ?
1255906653 M * Bertl well, yeah? :)
1255906660 M * orzel web / # ping6 www.kame.net
1255906662 M * orzel socket: Address family not supported by protocol
1255906684 M * Bertl how should it ping without ipv6 address?
1255906723 M * orzel yes, yes. /me harvesting the doc about this on the website :)
1255906753 M * orzel the double-binding restriction means i currently need to choose between ipv4/ipv6, right ?
1255906770 M * orzel which is not a great deal as it only needs to be accessible from the host
1255906785 M * Bertl it basically means, you should not try the bind the same IP via v4 _and_ v6 atm
1255906818 M * Bertl you can still have a guest with v4 and v6 addresses as long as the services bind to different addresses
1255906837 M * orzel ok, i see
1255906891 M * Bertl off to bed now ... kind of tired ... cya!
1255906895 M * orzel i have quite some problems on the host with some services failing to bind to "wildcard socket address ::".... i thought it was because of the linux update, could be the 'vserver' update causing this ?
1255906901 M * orzel ah, ok, see ya :)
1255906905 M * Bertl have a good one everyone!
1255906914 N * Bertl Bertl_zZ
1255906982 Q * geb Ping timeout: 480 seconds
1255907264 J * saulus ~saulus@c195187.adsl.hansenet.de
1255909202 J * geb ~geb@173.4.82-79.rev.gaoland.net