1273369042 J * Romster ~romster@202.168.100.149.dynamic.rev.eftel.com 1273369472 J * Rooomster ~romster@202.168.100.149.dynamic.rev.eftel.com 1273369549 Q * Romster Ping timeout: 480 seconds 1273371759 Q * Rooomster Quit: Geeks shall inherit properties and methods of object earth. 1273372333 J * Romster ~romster@202.168.100.149.dynamic.rev.eftel.com 1273374027 J * SauLus_ ~SauLus@c152143.adsl.hansenet.de 1273374218 Q * balbir Ping timeout: 480 seconds 1273374438 Q * SauLus Ping timeout: 480 seconds 1273374438 N * SauLus_ SauLus 1273374833 J * balbir ~balbir@122.172.11.14 1273379170 Q * Hunger Quit: _._ 1273379188 J * Hunger- ~Hunger@Hunger.hu 1273379983 Q * sid3windr Ping timeout: 480 seconds 1273380940 J * sid3windr luser@bastard-operator.from-hell.be 1273382273 M * julius is using dummy interfaces for guest networking still the recommended method? 1273382320 M * julius (When I'd like to have my guests in a seperate subnet and the host act as a router.) 1273382417 N * Bertl_zZ Bertl 1273382422 M * Bertl morning folks! 1273382438 M * Bertl julius: it never really was, but you can do that if you like 1273382467 M * Bertl without network namespaces, Linux-VServer doesn't 'route through' the host 1273382505 M * Bertl the packets are already 'on' the host when they leave the guest 1273382586 M * julius mh 1273382623 M * julius I'd really prefer my VMs to have their own subnet 1273382649 M * Bertl Linux-VServer is no VM, and you can use a separate subnet for your guests 1273382699 M * Bertl and with iptables you can even stop crosschat between your networks without the need for network namespaces 1273382830 M * julius that I know 1273382876 M * julius with network namespace you mean what I called "interface"? 1273382934 M * Bertl network namespaces are VM like virtual network stacks which give you a virtual netwrok interface on the guest and another end on the host which you then can route or bridge into the real network interfaces 1273382982 M * Bertl you need to set them up yourself, util-vserver AFAIK has only preliminary support yet 1273382991 M * Bertl off for breakfast .. bbs 1273382998 N * Bertl Bertl_oO 1273383008 M * julius Bon appétit! 1273383692 M * daniel_hozac Bertl_oO: are you admining the domains? 1273383719 M * daniel_hozac because ns4, ns5 and ns5 do not resolve linux-vserver.org 1273383847 M * daniel_hozac s/ns5/ns6/2 1273384608 Q * balbir Read error: Connection reset by peer 1273385143 N * Bertl_oO Bertl 1273385147 M * Bertl back now ... 1273385164 M * Bertl daniel_hozac: sec, let me check, we have a bunch of 'external' ns mirrors 1273385289 M * Bertl looks like they are dead/gone, will remove them from the ns master soon 1273385304 M * daniel_hozac cool. 1273385319 M * daniel_hozac i just noticed my requests to *.linux-vserver.org would only work every now and then. 1273385334 M * Bertl please remind me in the evening in case I forget ... 1273385339 M * daniel_hozac sure 1273385358 M * Bertl what's new in util-vserver? 1273385365 M * daniel_hozac not much unfortunately :-( 1273385372 M * daniel_hozac i've been swamped with work lately. 1273385379 J * balbir ~balbir@122.172.157.15 1273385405 M * Bertl same here, but there is a light at the end of the tunnel :) 1273385419 M * daniel_hozac hehe 1273385420 M * daniel_hozac yeah 1273385425 M * daniel_hozac i think i see it now. 1273385431 M * Bertl let's hope it isn't a train :) 1273385436 M * daniel_hozac haha 1273385974 J * derjohn_mob ~aj@e181201005.adsl.alicedsl.de 1273386788 J * ntrs ~ntrs@77.28.171.120 1273387130 J * Piet ~Piet__@04ZAACAFM.tor-irc.dnsbl.oftc.net 1273391573 J * imcsk8 ~ichavero@65.Red-80-38-6.staticIP.rima-tde.net 1273391768 Q * balbir Ping timeout: 480 seconds 1273392341 J * balbir ~balbir@122.172.7.1 1273393858 Q * imcsk8 Ping timeout: 480 seconds 1273394039 J * imcsk8 ~ichavero@65.Red-80-38-6.staticIP.rima-tde.net 1273394118 J * ntrs_ ~ntrs@77.28.29.118 1273394563 Q * ntrs Ping timeout: 480 seconds 1273394722 J * BenG ~bengreen@cpc2-aztw22-2-0-cust521.aztw.cable.virginmedia.com 1273394947 Q * imcsk8 Quit: This computer has gone to sleep 1273395317 J * bonbons ~bonbons@2001:960:7ab:0:2c0:9fff:fe2d:39d 1273396042 J * yarihm ~yarihm@186-35-239-77-pool.cable.fcom.ch 1273398186 J * petzsch ~markus@p4FF465ED.dip.t-dialin.net 1273399024 Q * petzsch Quit: Leaving. 1273399081 M * ard pfff.... network namespaces.... still confuses me :-( 1273399095 J * imcsk8 ~ichavero@65.Red-80-38-6.staticIP.rima-tde.net 1273399127 J * dna ~dna@122-213-103-86.dynamic.dsl.tng.de 1273399592 Q * imcsk8 Quit: This computer has gone to sleep 1273399693 Q * derjohn_mob Ping timeout: 480 seconds 1273400502 J * Vudumen 3049177a07@perverz.hu 1273402741 J * sHellUx ~kroto@212-76-45-2.home.aster.pl 1273402920 Q * sHellUx 1273402950 J * sHellUx ~kroto@212-76-45-2.home.aster.pl 1273403309 Q * BenG Quit: I Leave 1273404074 Q * Romster Quit: Geeks shall inherit properties and methods of object earth. 1273404252 J * Romster ~romster@202.168.100.149.dynamic.rev.eftel.com 1273406569 M * ard So to put a vserver into a seperate network cgroup, I should start the container with lxc-unshare -s NETWORK 1273406976 Q * Romster Quit: Geeks shall inherit properties and methods of object earth. 1273407396 Q * sHellUx Remote host closed the connection 1273407492 Q * Piet Ping timeout: 480 seconds 1273407557 M * daniel_hozac or, if you're actually using vserver, touch /etc/vservers//spaces/net 1273407742 Q * opuk Quit: leaving 1273407979 J * Romster ~romster@202.168.100.149.dynamic.rev.eftel.com 1273409758 A * ard is going to cry :-( 1273409771 M * ard daniel_hozac: is that a svn version? 1273409788 M * ard or was that part already in the major util-vserver? 1273409799 M * daniel_hozac that's been present for a long time. 1273409813 M * ard ok... then it's time to head my head against a wall ;-) 1273409880 M * daniel_hozac that's been in there since january 2008. 1273409891 M * ard oh please, rub it in... ;-) 1273409901 M * daniel_hozac even part of 0.30.215. 1273409902 M * daniel_hozac :-) 1273409943 M * ard hmmm, so even the debian/lenny packages should work... 1273409965 A * ard wonders if he should be happy or crying 1273410003 M * ard anyways: thank you! thank you! thank you! 1273410009 M * ard it just works... 1273410022 M * ard 13: lo: mtu 16436 qdisc noop state DOWN 1273410022 M * ard link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 1273410022 M * ard C14r: sit0: mtu 1480 qdisc noop state DOWN 1273410022 M * ard link/sit 0.0.0.0 brd 0.0.0.0 1273410065 M * ard anyway: it was a good exercise to get aquainted with containers 1273410232 M * ard so the only thing left to get network virtualized instead of isolated is to enable network admin rights 1273410250 M * daniel_hozac yeah 1273410272 M * daniel_hozac and you have to put in some commands to create the tunnel interface between the host and guest. 1273410292 M * ard can I refer to the name as netns ? 1273410320 M * daniel_hozac what? 1273410340 M * ard if I transfer a link from the host to a container using ip link set netns 1273410369 M * ard the id will be the pid of the process or is id a name? 1273410372 M * daniel_hozac IIRC that API is crack and requires a pid in the guest. 1273410387 M * ard a, clear :-( 1273411354 M * ard Hmmmm, the pid obviously is only available after the process starts... are there hooks in util-vserver that allows me to assign the devices to a pid... 1273411357 M * ard hmmm wait... 1273411574 M * ard Ah, I still have a question! 1273411593 Q * Bertl Ping timeout: 480 seconds 1273411634 M * ard touch /etc/vservers//spaces/net means a network namespace per vserver, right? Is it possible to share network namespaces across a group of vservers? 1273411948 M * ard my idea is to have multiple vservers inside a single vlan with vserver socket isolation, have the vlan itself be contained, but next to that also be flexible enough to have some vservers have full access to vlans (bridged with veth) 1273412267 M * ard aargh.... /me just sees that http://www.nongnu.org/util-vserver/doc/conf/configuration.html already contains the spaces/net hint :-( 1273413626 M * ard Ah... http://lxc.sourceforge.net/network.php works again... So the creation of veth device pairs can best be done by creating them from the new network namespace, and moving one of the pair into host network namespace before the CAP_NET_ADMIN is dropped 1273414053 Q * jpic Ping timeout: 480 seconds 1273414104 J * BenG ~bengreen@cpc2-aztw22-2-0-cust521.aztw.cable.virginmedia.com 1273414631 Q * BenG Quit: I Leave 1273415165 J * jpic ~jpic@perso.chocolatpistache.com 1273415299 J * petzsch ~markus@dslb-094-222-103-009.pools.arcor-ip.net 1273415520 J * emcepe ~mcp@wolk-project.de 1273415893 Q * mcp Ping timeout: 480 seconds 1273415893 N * emcepe mcp 1273418089 Q * ntrs_ Ping timeout: 480 seconds 1273419169 J * dihedral ~dih@znc.noaddedsugar.net 1273423161 J * imcsk8 ~ichavero@210.199.18.95.dynamic.jazztel.es 1273423536 J * thesunisblack ~bigboi@28IAAB9R1.tor-irc.dnsbl.oftc.net 1273426980 J * selim ~chatzilla@e181085089.adsl.alicedsl.de 1273427364 J * ntrs ~ntrs@77.28.171.235 1273428020 J * ntrs_ ~ntrs@77.28.171.235 1273428038 Q * ntrs Ping timeout: 480 seconds 1273429448 Q * balbir Ping timeout: 480 seconds 1273429859 Q * FireEgl Quit: Leaving... 1273429936 Q * yarihm Quit: This computer has gone to sleep 1273429992 J * balbir ~balbir@122.172.11.149 1273430288 J * Bertl herbert@IRC.13thfloor.at 1273431946 M * daniel_hozac Bertl: did you get a chance to look at the DNS issue? 1273432083 J * grharry ~root@athedsl-84201.home.otenet.gr 1273432090 P * grharry 1273432399 M * Bertl daniel_hozac: should be resolved 1273432445 M * daniel_hozac right now, or for a while? 1273432489 M * Bertl for a while 1273432547 M * daniel_hozac i guess it takes a while to propagate too though. 1273435264 M * PowerKe ns[12].linux-vserver.(org|at) still return the NS records to ns[1-6] 1273435275 M * PowerKe The entire setup seems a bit complex for a small site :) 1273435432 M * petzsch @dns: my 530 domains run perfectly well on 2 PowerDNS servers, guess linux-vserver.org as to it's user reach (comparable to google.com) should need some more ;-) 1273435458 Q * thesunisblack Quit: fuck you all i want to kill you 1273435783 J * harobed ~harobed@arl57-1-82-231-110-14.fbx.proxad.net 1273435806 Q * oli Quit: Leaving 1273437347 J * ntrs__ ~ntrs@77.28.12.214 1273437787 Q * ntrs_ Ping timeout: 480 seconds 1273438343 J * derjohn_mob ~aj@e181201005.adsl.alicedsl.de 1273438592 Q * dna Quit: Verlassend 1273439056 Q * bonbons Quit: Leaving 1273439675 J * thierryp ~thierry@home.parmentelat.net 1273439737 N * DoberMann[PullA] DoberMann[ZZZzzz] 1273439791 Q * thierryp 1273439978 Q * harobed Ping timeout: 480 seconds 1273440213 Q * derjohn_mob Ping timeout: 480 seconds 1273440252 J * FireEgl FireEgl@173-16-9-10.client.mchsi.com 1273442103 Q * ntrs__ Ping timeout: 480 seconds 1273442470 Q * petzsch Quit: Leaving. 1273443291 M * ard Hmmmm 1273443301 M * ard somebody has forgotten to add glue to the domain 1273443349 M * ard according to the whois, the ns of linux-vserver.org are: NS1.13THFLOOR.AT and NS1.LINUX-VSERVER.AT 1273443412 M * ard according to the .org tld servers, the ns of linux-vserver.org is ns[1-6].linux-vserver.org 1273443421 M * ard But: there is no glue for the nameservers... 1273443529 M * ard ah... some of the .org are migrating to 13thfloor.at an linux-vserver.at others are still announcing ns[1-6].linux-vserver.org without glue 1273443560 M * ard so eventually something can be resolved :-) 1273443692 Q * selim Quit: ChatZilla 0.9.86 [SeaMonkey 2.0.4/20100317120533] 1273443712 M * ard hmmm, no... 13thfloor and linux-vserver say it's ns[1-6].linux-vserver.org ... without glue we will have no linux-vserver anymore :-( 1273443841 J * ignaz ~ignaz@85-126-150-194.work.xdsl-line.inode.at 1273447153 Q * imcsk8 Quit: This computer has gone to sleep 1273447675 M * PowerKe ard: there's no glue needed since the nameservers for linux-vserver.org are ns1.linux-vserver.at and ns1.13thfloor.at which both have glue at the .at domain 1273447844 M * PowerKe at least, according to the .org domain those are the nameservers, if you ask ns1.linux-vserver.at, it will tell you that ns[1-6].linux-vserver.org are the nameservers 1273448141 M * PowerKe ns1.13thfloor.at doesn't redirect you to the other nameservers and is also the primary NS listed in the .org domain. 1273448174 M * PowerKe So as long as no packets are lost and queries are anwered you'll be talking to ns1.13thfloor.at which will answer all linux-vserver.org queries 1273448213 M * PowerKe Once one of the queries fail, you get to the ns1.linux-vserver.at nameserver which will answer your first query but redirect to ns[1-6] for further queries 1273448322 M * PowerKe by itself nothing wrong with it, but seems a bit complex :) (and ns[56] seem to be down)