1315958469 M * chrissbx linux-image-2.6.32-5-vserver 2.6.32-35squeeze2  and utils trunk@2939
1315958497 M * chrissbx This is my interface config: /etc/vservers/t3/interfaces/0/dev: lo; /etc/vservers/t3/interfaces/0/ip: 192.168.30.101; /etc/vservers/t3/interfaces/0/prefix: 24; 
1315958537 M * Bertl what are the semicolons?
1315958537 M * chrissbx I forgot whether interfaces/IFACE/dev is meant to be the host iface to use or the guest
1315958556 M * Bertl it is the same interface, on host and guest
1315958562 M * chrissbx I did this to save space: tn:~# for f in /etc/vservers/t3/interfaces/0/*; do echo -n "$f: `cat $f`; "; done; echo
1315958578 M * chrissbx so, just to split the entries, they're not in the files
1315958581 M * Bertl so those are not in the actual files
1315958606 M * Bertl okay, does the 192.168.30.101 get assigned to lo on guest startup?
1315958618 M * chrissbx no, lo in the guest is given 127.0.0.1
1315958626 M * Bertl on the host
1315958627 M * chrissbx and ifconfig -a doesn't show anything else
1315958633 M * chrissbx ah, checkin
1315958661 M * chrissbx hm, ifconfig -a doesnt show anything new, forgot how to deal with "ip"
1315958680 M * Bertl ip a l
1315958711 M * chrissbx nothing, just lo, eth0, and eth1 with their correct ips I set for the host.
1315958723 M * chrissbx 192.168.30.101 is nowhere
1315958736 M * chrissbx wait
1315958748 M * chrissbx it's there
1315958753 M * chrissbx sorry, have to look closely
1315958755 M * chrissbx on lo
1315958807 M * chrissbx Hm. So why does the client not see this?
1315958815 M * chrissbx ah it does
1315958818 M * chrissbx with "ip a l"
1315958899 M * Bertl there you go, no idea why you assign it to 'lo' though
1315958901 M * chrissbx I think I need another name for this interface. Something I can use to give some programs that expect interface names.
1315958940 M * chrissbx What should I use instead? I always did it that way in the past, and then used firewall rules to forward (NAT) and separate guests from each other.
1315958969 M * chrissbx eth0 and eth1 might go away sometimes
1315958989 M * Bertl don't get me wrong, lo is fine, better than dummy0, I was just wondering
1315959068 M * chrissbx Well in the past I had it somehow that it would allocate the ips on the host lo interface, but show them in the guest as something like "loc0" and "pub0" for locally and publicly available interfaces.
1315959089 M * chrissbx But I don't remember how I did that. (Time to reopen my old archives again?)
1315959108 M * Bertl I really doubt that :)
1315959136 M * chrissbx Or maybe lo:loc0 and lo:pub0, don't remember.
1315959167 J * pmjdebru1jn ~pascal@overlord.pcode.nl
1315959168 M * Bertl that sounds more like it, you can achieve that by adding a 'name' entry with 'loc0'
1315959213 M * chrissbx aha, that was it
1315959274 Q * pmjdebruijn Ping timeout: 480 seconds
1315959587 M * chrissbx hm it doesn't have any effect. tn:/etc/vservers# cat t3/interfaces/0/name
1315959587 M * chrissbx pub0
1315959608 M * chrissbx but "ip a l" doesn't contain "pub" in either guest or host
1315959811 M * chrissbx (neither does ifconfig -a show it)
1315960011 M * Bertl you probably changed the 'name' while the guest was running, then restarted the guest
1315960017 M * Bertl (which is a nono)
1315960042 M * Bertl so now you have the old (non alias) ip added to lo (the one which just shows with ip)
1315960072 M * Bertl and the guest start, when trying to add that IP with an alias only throws a warning, you simply oignored
1315960075 M * Bertl *ignored
1315960174 M * chrissbx aha
1315960176 M * chrissbx yep
1315960307 M * chrissbx works
1315960342 M * Bertl :)
1315965566 Q * hparker Quit: Quit
1315974725 J * fisted ~fisted@xdsl-87-78-213-117.netcologne.de
1315974857 J * sannes ~ace@cm-84.209.106.118.getinternet.no
1315976443 J * Supaplex_ ~supaplex@64.70.137.11
1315976559 Q * Supaplex Ping timeout: 480 seconds
1315977052 Q * fisted Remote host closed the connection
1315977234 J * fisted ~fisted@xdsl-87-78-213-117.netcologne.de
1315977530 Q * quasisane resistance.oftc.net larich.oftc.net
1315977530 Q * micah resistance.oftc.net larich.oftc.net
1315977530 Q * jyryt resistance.oftc.net larich.oftc.net
1315977597 J * quasisane ~sanep@c-76-24-80-97.hsd1.nh.comcast.net
1315977597 J * micah ~micah@micah.riseup.net
1315977597 J * jyryt ~rj@tdream.lly.earlham.edu
1315977698 M * Bertl off to bed now ... have a good one everyone!
1315977702 J * quasisane_ ~sanep@c-76-24-80-97.hsd1.nh.comcast.net
1315977703 N * Bertl Bertl_zZ
1315977837 Q * quasisane Remote host closed the connection
1315977960 Q * jyryt resistance.oftc.net larich.oftc.net
1315977960 Q * micah resistance.oftc.net larich.oftc.net
1315977997 J * micah ~micah@micah.riseup.net
1315977997 J * jyryt ~rj@tdream.lly.earlham.edu
1315980650 J * ncopa ~ncopa@3.203.202.84.customer.cdi.no
1315980961 Q * mcp Remote host closed the connection
1315981557 Q * derjohn_mob Ping timeout: 480 seconds
1315981882 J * mcp ~mcp@wolk-project.de
1315982748 J * derjohn_mob ~aj@213.238.45.2
1315983042 Q * chrissbx Read error: Operation timed out
1315983810 J * jeroen__ ~jeroen@imap.powerinternet.eu
1315985132 Q * Aiken Read error: Connection reset by peer
1315985141 J * Aiken ~Aiken@ppp219-137.static.internode.on.net
1315985151 J * ghislain ~AQUEOS@adsl2.aqueos.com
1315985693 Q * tty234 Ping timeout: 480 seconds
1315985879 J * tty234 telex@anapnea.net
1315985992 J * BenG ~bengreen@cpc12-aztw24-2-0-cust146.aztw.cable.virginmedia.com
1315992255 J * nox ~nox@ns.secure-you.de
1315997015 J * kir ~kir@swsoft-msk-nat.sw.ru
1315997807 Q * fisted Ping timeout: 480 seconds
1315997929 J * fisted ~fisted@xdsl-87-78-221-71.netcologne.de
1316001403 J * hparker ~hparker@2001:470:1f0f:32c:beae:c5ff:fe01:b647
1316001497 Q * BenG Quit: I Leave
1316002453 J * BenG ~bengreen@cpc12-aztw24-2-0-cust146.aztw.cable.virginmedia.com
1316003630 M * ccxCZ hmm, did my email (about grsec releases) arrive to mailing list? or did it get lost somewhere
1316003947 M * ccxCZ it seems to be in the archive, okay then
1316004902 N * Bertl_zZ Bertl
1316004907 M * Bertl morning folks!
1316005329 M * hparker Morning Bertl 
1316005388 Q * nkukard Ping timeout: 480 seconds
1316005539 J * nkukard ~nkukard@41-133-198-167.dsl.mweb.co.za
1316006144 Q * BenG Quit: I Leave
1316008503 M * Rockj Anyone experienced with ip link? Ive added an virtual device to get a second ip on subnet. but it starts dropping alot of packets once I add it. Shouldn't it be fine to have 2 ip's on the same subnet aslong as the second ip you assign has a netmask of 32? 
1316008514 M * Rockj or im tottally herpa derpa in my head atm?
1316008575 M * Bertl two IPs in the same subnet are always fine, no idea why you would want /32 though
1316008596 M * Bertl also, what do you need a virtual device for?
1316008614 M * Rockj Bertl: wanted to have an own virtual device for the vserver?
1316008621 M * Rockj and own ip. 
1316008642 M * Bertl so, how did you create that 'virtual device' then?
1316008778 M * Rockj ip link add link eth0 name eth0.virtual2 address ma:ac:ad:dr:es:ss macvlan0 type macvlan 
1316008794 M * Rockj ip a add public-ip-on-same-subnet-as-eth0/32 dev eth0
1316008810 M * Bertl well, that is probably not the best idea
1316008845 M * Rockj hm
1316008860 M * Bertl the vlan device is unlikely to be used, unless you have special setup/routing for that
1316008867 M * Rockj oh, I meant  dev eth0.virtual2 on the ip add 
1316008888 M * Bertl do you get any packets on that device?
1316008959 M * Rockj it receives packets but not sending .. but both is getting   dropped counter increased when running ifconfig
1316009032 M * Bertl see, that's what I mean, it doesn't get used for traffic
1316009316 M * Rockj should be fixable by some ip route magic I guess?
1316009339 M * Bertl probably, but let's first check what you want to achieve, no?
1316009624 M * Rockj hm, simply have its own "ethernet" device assigned to the vserver with a dedicated ip ? 
1316009643 M * Rockj while creating a vserver it takes an interface as an argument. 
1316009725 M * Bertl why do you want an ethernet device for that guest?
1316009921 M * Rockj well, to hijack another public ip to run my vserver on :)
1316009987 M * Bertl that sounds strange ... why not simply assign that IP to your guest?
1316010056 M * Rockj dhcp range. 
1316010094 M * Rockj <-- student, and I doubt they can be arsed to do a static dhcp assignment etc etc just for me playing with a vserver tbh :)
1316010100 Q * Mr_Smoke Ping timeout: 480 seconds
1316010110 M * Bertl why not simply request another dhcp IP ?
1316010217 Q * cehteh Ping timeout: 480 seconds
1316010221 M * Bertl i.e. did you try with a different client identifier?
1316010262 M * Rockj Bertl: what's the fun it that, I just figured out that I could make a virtual ethernet device with its own mac-address  - so kinda keen on figuring out how to play with it aswell
1316010267 M * Rockj client identifier? 
1316010429 M * Bertl well, you probably want to go for network namespaces then if you want to use a separate interface for your guest
1316010600 M * Rockj network namespaces? Ill google that, but first of all I need to get rid of those packet dropps first
1316011050 M * Rockj hmhm, I feel kinda lost. Trying to understand why it drops packets . yujm
1316011061 Q * Aiken Remote host closed the connection
1316011448 M * Rockj if I remember correctly, I can assing ip 192.168.1.10/24 on dev eth0 and  ip 192.168.1.20/32 on dev eth1 if my pc had 2 network cards and connected to the same network? 
1316011487 M * Bertl sure, you can also assign 192.168.1.10/24 and 192.168.1.20/24 to eth0 in the same situation
1316011516 M * Rockj then there will be communicating issues between eth0 and eth1 afaik
1316011526 M * Rockj or wait
1316011544 M * Rockj its when adding multiple ip's on the same eth0 you need to use /32 on the ip's
1316011564 M * Bertl not really
1316011580 J * Mr_Smoke smokey@layla.lecoyote.org
1316011625 M * Bertl works just fine with the correct netmask ...
1316011701 M * Rockj hm. Ok, but is it logical that the virtual device actually drops packets by just being enabled and have no ip assigned to it? 
1316011737 J * dowdle ~dowdle@scott.coe.montana.edu
1316011850 J * alpha_one_x86 ~kvirc@201.222.115.7
1316011860 M * Rockj Bertl: if you want, I'll let you have a look if you dont have anything else to do and you dont mind :)
1316011894 M * alpha_one_x86 Hello, I need some help about cgroup ans vserver, my munin memory graph: https://munin.barnix.net:55988/host/barnix-1.host/memory-day.png my cgroup graph: https://munin.barnix.net:55988/host/barnix-1.host/vserver_memory-day.png
1316011925 M * alpha_one_x86 it's wrong? if yes, why it's wrong?
1316011937 J * chrissbx ~chrissbx@bas1-montreal07-1176421055.dsl.bell.ca
1316011974 M * alpha_one_x86 match with RSS size into vserver-stat
1316012006 M * alpha_one_x86 but 2x5GB of the 2 vserver = 10GB, but the host show 5GB used
1316012701 Q * ncopa Quit: Leaving
1316013404 M * Bertl alpha_one_x86: what's the question?
1316013466 M * alpha_one_x86 The cgroup show 5GB usage for 2x vserver, and munin graph "memory" show only 6GB memory used
1316013483 M * alpha_one_x86 it's normal?
1316013491 M * Bertl no idea, what do they graph?
1316013500 M * Bertl i.e. where does the data come from?
1316013643 M * alpha_one_x86 of the host from: /proc/meminfo, for the guest from /dev/cgroup/*/memory.usage_in_bytes (info match with vservser-stat)
1316013690 M * Bertl so each guest shows 5GB, and the host shows 6GB of memory used, yes?
1316013722 M * alpha_one_x86 yes
1316013752 M * Bertl well, that could be correct, because 4GB might be shared between those guests
1316013782 M * alpha_one_x86 like what? what should be shared?
1316013813 M * Bertl mainly memory pages :) what does the /proc/meminfo show inside the guests?
1316013844 M * alpha_one_x86 ~ same info on 2 guest
1316013860 M * Bertl can you upload that for me?
1316013865 M * alpha_one_x86 I search to isolate the real application memory usage on 2x guest
1316013890 M * alpha_one_x86 it's should be 1GB for the first and 4GB for the second
1316014093 M * alpha_one_x86 my question is: how get the memory used by all program into each virtual machine
1316014138 M * Bertl via cgroup accounting
1316014180 M * Bertl i.e. if you have a cgroup domain for each guest, it will account the 'used' memory correctly
1316014267 M * alpha_one_x86 I have it via: /dev/cgroup/[vm name]/memory.usage_in_bytes no?
1316014282 M * alpha_one_x86 if yes, then it report the wrong data
1316014316 M * Bertl yes, that is the correct one and if it reports wrong data, you need to contact the kernel developers
1316014334 M * Bertl the question is, how did you verify that the data is wrong?
1316014472 M * alpha_one_x86 because I'm sure of both vm use only 5GB, and confirmed by the host via info into: /proc/meminfo
1316014477 M * alpha_one_x86 (and top)
1316014496 M * Bertl and what does /dev/cgroup/[vmname]/memory.usage_in_bytes show?
1316014603 M * alpha_one_x86 5791502336 for the first, 5527928832 for the second
1316014637 M * Bertl so the values in /proc/meminfo are lower than that?
1316014639 M * Rockj Bertl: actually, their switches doesn't seem to permit multiple mac's on a single ip on this connection ;)
1316014651 M * Rockj Bertl: probably configured as host or something on the switch I guess or something funky
1316014677 M * Bertl multiple macs on a single ip?
1316014677 M * alpha_one_x86 http://pastebin.com/E6u40gKc
1316014703 M * alpha_one_x86 no, multiple ip, but single mac
1316014734 M * Rockj I meant multiple ip but single mac
1316014735 Q * nospoonuser Ping timeout: 480 seconds
1316014736 M * Rockj sorry
1316014738 M * Rockj :p
1316014750 M * Rockj so I gotto get the virtual device to work - hehe
1316014843 M * Bertl alpha_one_x86: the information doesn't look incosistant to me
1316014862 M * Bertl Rockj: how did you test?
1316014949 M * alpha_one_x86 Bertl: Can you explain where get the memory for vm1 -> only the memory used by the program of vm1
1316014986 M * Rockj Bertl: simply have a static configuration on one of the ip's and doing a   ip a add ip.addr.r dev eth0 
1316015048 M * Bertl well, it would be poor security if you could pick whatever IP you like
1316015081 M * Bertl did you try to request two different dhcp IPs and use those?
1316015099 M * Bertl alpha_one_x86: I do not understand the question
1316015130 M * Bertl processes use memory for various things, file mappings, anonymous memory, caches, buffers, etc
1316015155 M * Bertl the cgroup subsystem is designed to track those allocations on a per group basis
1316015165 M * Rockj Bertl: yes. 
1316015172 M * Bertl alpha_one_x86: so all processes in that group will be accounted in that regard
1316015173 M * Rockj Bertl: actually, I sent mail and got 2 static ones now ;p
1316015188 M * Bertl so that should be fine then
1316015195 M * Rockj Bertl: but those I requested ip's from, doesn't run the switches
1316015196 M * alpha_one_x86 exemple: apache+mysql of guest 1 use 1GB of memory, apache+mysql of guest 2 use 4GB, then on host 5GB is used, how get this info about the host
1316015242 M * Bertl from /proc/meminfo? or from a host cgroup if you configured one?
1316015266 M * Rockj Bertl: still wont let me ping that ip tho, when I assigned it
1316015287 M * Rockj could be that their running some mac-addr protection of which mac-addr can use that ip 
1316015303 M * alpha_one_x86 cgroup configured, but the info showed see illogic to me, because the first guest should use only 1GB of memory
1316015330 M * Bertl why 'should' it only use 1GB?
1316015369 M * alpha_one_x86 I know this value because this guest come from 2 host, and nothing have been touched into it
1316015419 M * Bertl well, maybe a guest process allocates memory based on total memory?
1316015435 M * Bertl Rockj: ping what IP from where?
1316015447 M * Bertl (and what setup are we taling now?)
1316015463 M * Rockj Bertl: that was multiple ip's on one physical ethernet device. 
1316015502 M * Rockj Bertl: but I did request those ip's with mac-addr's, so I bet their switches is running mac addr spoofing protection
1316015511 M * Rockj Bertl: as I can't ping it from another server I have here on the university :)
1316015534 M * alpha_one_x86 Bertl: possible, my target is monitor by munin -> then cli, the meomry usage of each to kill the guest which will become crazy and eat lot of memory
1316015540 M * Rockj (and adding multiple hosts on same nic ive done before, as Im using that on the box im irc'ing from) 
1316015574 M * Rockj anyhow, moving to another office - student union techie thingie got meeting in 10min so :)
1316015674 J * Mr_Smoke_ smokey@layla.lecoyote.org
1316015740 Q * Mr_Smoke Read error: Connection reset by peer
1316016373 J * bonbons ~bonbons@2001:960:7ab:0:1d85:9984:fe8b:cba6
1316016945 J * clopez ~clopez@155.99.117.91.static.mundo-r.com
1316017179 M * Bertl nap attack ... bbl
1316017189 N * Bertl Bertl_zZ
1316018816 J * clopez__ ~clopez@155.99.117.91.static.mundo-r.com
1316018824 P * clopez__ 
1316018839 J * clopez__ ~clopez@155.99.117.91.static.mundo-r.com
1316018843 P * clopez__ 
1316018862 J * clopez__ ~clopez@155.99.117.91.static.mundo-r.com
1316018870 P * clopez__ 
1316019023 Q * clopez Quit: Leaving
1316019030 J * clopez ~clopez@155.99.117.91.static.mundo-r.com
1316019079 Q * clopez 
1316019086 J * clopez ~clopez@155.99.117.91.static.mundo-r.com
1316020305 J * |alpha_one_x86| ~kvirc@201.222.115.7
1316020708 Q * alpha_one_x86 Ping timeout: 480 seconds
1316021309 J * FireEgl ~FireEgl@173-16-9-169.client.mchsi.com
1316021433 M * WMP hello
1316021444 M * WMP i want to add second ip to vserver
1316021478 M * WMP i copyinf inteface/0 to interface/1 and edit ip and dev file
1316021496 M * WMP after vserver restart i have eth0 and eth1 but on this same ip
1316022485 Q * derjohn_mob Ping timeout: 480 seconds
1316024560 N * Bertl_zZ Bertl
1316024566 M * Bertl back now ...
1316024597 M * Bertl WMP: explain the entire interface files via pastebin please
1316024884 Q * |alpha_one_x86| Ping timeout: 480 seconds
1316025004 Q * FireEgl Quit: Leaving...
1316026320 J * cehteh ~ct@pipapo.org
1316026451 J * FireEgl FireEgl@2001:470:e056:1:7c6e:8b43:31c5:a782
1316028147 Q * clopez Ping timeout: 480 seconds
1316029167 Q * hparker Ping timeout: 480 seconds
1316029327 J * derjohn_mob ~aj@d065055.adsl.hansenet.de
1316030071 J * hparker ~hparker@linux.homershut.net
1316030323 Q * FireEgl Remote host closed the connection
1316030746 Q * fisted Remote host closed the connection
1316030762 J * fisted ~fisted@xdsl-87-78-221-71.netcologne.de
1316030970 J * hijacker_ ~hijacker@cable-84-43-136-96.mnet.bg
1316031336 J * FireEgl ~FireEgl@173-16-9-169.client.mchsi.com
1316031364 Q * sannes Remote host closed the connection
1316032193 J * clopez ~clopez@32.14.117.91.dynamic.mundo-r.com
1316032952 J * Aiken ~Aiken@2001:44b8:2168:1000:21f:d0ff:fed6:d63f
1316032955 Q * clopez Ping timeout: 480 seconds
1316033416 Q * bonbons Quit: Leaving
1316033981 Q * chrissbx Quit: Leaving
1316034491 Q * hijacker_ Quit: Leaving
1316034799 N * zbyniu_ zbyniu
1316035581 J * BenG ~bengreen@cpc12-aztw24-2-0-cust146.aztw.cable.virginmedia.com
1316035907 Q * derjohn_mob Ping timeout: 480 seconds
1316036928 J * derjohn_mob aj@88.128.164.197
1316039244 Q * ghislain Quit: Leaving.
1316041379 Q * dowdle Remote host closed the connection
1316042804 J * clopez ~clopez@238.10.117.91.dynamic.mundo-r.com
1316043430 Q * fisted Ping timeout: 480 seconds
1316043747 J * fisted ~fisted@xdsl-87-78-215-176.netcologne.de