1370564495 J * thierryp ~thierry@home.parmentelat.net 1370564976 Q * thierryp Ping timeout: 480 seconds 1370566351 J * thierryp ~thierry@home.parmentelat.net 1370566836 Q * thierryp Ping timeout: 480 seconds 1370568209 J * thierryp ~thierry@home.parmentelat.net 1370568691 Q * thierryp Ping timeout: 480 seconds 1370570039 J * thierryp ~thierry@home.parmentelat.net 1370570522 Q * thierryp Ping timeout: 480 seconds 1370570536 Q * nkukard Ping timeout: 480 seconds 1370571280 N * l0kit Guest1243 1370571286 J * l0kit ~1oxT@0001b54e.user.oftc.net 1370571446 Q * Guest1243 Ping timeout: 480 seconds 1370571895 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:50dd:735f:46f5:f6d8 1370572378 Q * thierryp Ping timeout: 480 seconds 1370573725 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:5883:f180:2d4b:5a21 1370574207 Q * thierryp Ping timeout: 480 seconds 1370575582 J * thierryp ~thierry@home.parmentelat.net 1370576066 Q * thierryp Ping timeout: 480 seconds 1370577438 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:d43c:93fa:8aef:39e1 1370577923 Q * thierryp Ping timeout: 480 seconds 1370579294 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:dd2c:fea3:93f3:6910 1370579566 J * thierryp_ ~thierry@2a01:e35:2e2b:e2c0:4914:3d15:d013:c7e3 1370579778 Q * thierryp Ping timeout: 480 seconds 1370580671 Q * thierryp_ Remote host closed the connection 1370583103 J * thierryp ~thierry@home.parmentelat.net 1370583125 Q * thierryp Remote host closed the connection 1370583214 J * Ghislain ~aqueos@adsl1.aqueos.com 1370585742 Q * FireEgl Remote host closed the connection 1370586087 Q * hamann Quit: leaving 1370586171 J * thierryp ~thierry@zebra.inria.fr 1370586716 J * FireEgl ~FireEgl@173-25-83-57.client.mchsi.com 1370587027 Q * thierryp Remote host closed the connection 1370589816 J * thierryp ~thierry@zebra.inria.fr 1370590301 Q * thierryp Ping timeout: 480 seconds 1370590568 J * thierryp ~thierry@zebra.inria.fr 1370592100 J * thierryp_ ~thierry@zebra.inria.fr 1370592100 Q * thierryp Read error: Connection reset by peer 1370592383 J * deceptius ~deceptius@b.clients.kiwiirc.com 1370592472 M * deceptius hey guys, I got a question regarding to linux vserver. I got a host with three extern IP's and they are all routed to different VServers. However for outgoing connections the vservers use the hosts main IP. How can I change the routing so the VServer will use specified extern IP address? 1370592839 J * thierryp ~thierry@zebra.inria.fr 1370592839 Q * thierryp_ Read error: Connection reset by peer 1370593208 M * Guy- deceptius: what you're describing shouldn't happen unless you've also given the vservers the IP of the host (in addition to their own) 1370593231 M * Guy- deceptius: please post output of ip addr sh in one of the vservers (or just check if it contains the host IP) 1370593358 J * imachine ~imachine@robot.greenhost24.pl 1370593376 M * deceptius 1: lo: mtu 16436 qdisc noqueue state UNKNOWN 1370593376 M * deceptius     link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 1370593376 M * deceptius     inet 127.0.0.1/8 scope host lo 1370593376 M * deceptius 2: eth0: mtu 1500 qdisc pfifo_fast state UP qlen 1000 1370593378 M * deceptius     link/ether 54:04:a6:8a:61:a6 brd ff:ff:ff:ff:ff:ff 1370593378 M * deceptius     inet 176.9.87.251/27 brd 176.9.87.255 scope global eth0 1370593380 M * deceptius     inet 10.139.0.8/24 brd 10.139.0.255 scope global secondary eth0 1370593382 M * deceptius 1: lo: mtu 16436 qdisc noqueue state UNKNOWN 1370593382 M * deceptius     link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 1370593384 M * deceptius     inet 127.0.0.1/8 scope host lo 1370593384 M * deceptius 2: eth0: mtu 1500 qdisc pfifo_fast state UP qlen 1000 1370593386 M * deceptius     link/ether 54:04:a6:8a:61:a6 brd ff:ff:ff:ff:ff:ff 1370593386 M * deceptius     inet 176.9.87.251/27 brd 176.9.87.255 scope global eth0 1370593388 M * deceptius     inet 10.139.0.8/24 brd 10.139.0.255 scope global secondary eth0 1370593390 M * deceptius 1: lo: mtu 16436 qdisc noqueue state UNKNOWN 1370593390 M * deceptius     link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 1370593392 M * deceptius     inet 127.0.0.1/8 scope host lo 1370593392 M * deceptius 2: eth0: mtu 1500 qdisc pfifo_fast state UP qlen 1000 1370593394 M * deceptius     link/ether 54:04:a6:8a:61:a6 brd ff:ff:ff:ff:ff:ff 1370593394 M * deceptius     inet 176.9.87.251/27 brd 176.9.87.255 scope global eth0 1370593396 M * deceptius     inet 10.139.0.8/24 brd 10.139.0.255 scope global secondary eth0 1370593398 M * deceptius 1: lo: mtu 16436 qdisc noqueue state UNKNOWN 1370593398 M * deceptius     link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 1370593400 M * deceptius     inet 127.0.0.1/8 scope host lo 1370593421 M * deceptius 176.9.87.251 is the ip address of the vserver, but if i check the outbound ip using dig or something similiar i get 176.9.62.237 which is the ip address of the host 1370594352 N * Bertl_zZ Bertl 1370594359 M * Bertl morning folks! 1370594410 J * matrix ~matrix@ip-190-011-041-168.coopvgg.com.ar 1370594437 M * matrix HELLO 1370594484 M * Bertl deceptius: kernel/patch/util-vserver version? 1370594713 M * deceptius Kernel: 2.6.32-5-vserver-amd64 1370594713 M * deceptius VS-API: 0x00020305 1370594713 M * deceptius util-vserver: 0.30.215; Jun 18 2010, 13:35:17 1370594762 M * Bertl 0.30.215 doesn't work with 2.6.32, but I presume you are using the outdated/broken debian packages giving wrong information 1370594776 Q * thierryp Remote host closed the connection 1370594841 M * deceptius oh ok, didn't know that. I'm using Debian 6.0 1370595087 M * Bertl you might want to install the lihas or beng packages and try again (not saying that this will fix the issue, it might be a configuration issue) but it will definitely fix the debian issues 1370595307 M * deceptius ok, i'll try that. is it possible to update the current installation without too much hassle? 1370595335 M * Bertl yeah, the packages should work fine ontop of what you currently have 1370595356 Q * matrix Quit: Saliendo 1370595415 M * Bertl http://linux-vserver.org/Installation_on_Debian should have some pointers 1370595450 M * Bertl http://www.lihas.de/anleitungen-und-service/linux-vserver-kernel-fuer-debian/linux-vserver-kernel-english 1370595583 M * deceptius ok thank you 1370595710 M * Bertl you're welcome! 1370595969 M * fback deceptius: you can also biuld your own packages using latest util-vserver from http://people.linux-vserver.org/~dhozac/t/uv-testing/ 1370596113 J * thierryp ~thierry@zebra.inria.fr 1370596278 Q * Jb_boin Remote host closed the connection 1370596636 J * Jb_boin ~dedior@proxad.eu 1370597119 M * deceptius I had a look at another vserver I'm running on the same host and it is using the correct external IP. So it seems to be a configuration issue. What is the correct process to set a new external IP for a guest? 1370597180 M * Bertl basically the first IP asigned to a guest is the one preferred for outgoing traffic 1370597344 M * deceptius well that was the problem 1370597346 M * deceptius thank you! 1370597459 M * Bertl again, you're welcome! 1370598059 J * nkukard ~nkukard@197.87.53.252 1370598952 Q * deceptius Quit: http://www.kiwiirc.com/ - A hand crafted IRC client 1370601306 N * michal_ michal 1370602243 Q * Jb_boin Remote host closed the connection 1370602265 J * Jb_boin ~dedior@proxad.eu 1370602562 Q * tokkee Ping timeout: 480 seconds 1370602877 J * tokkee tokkee@osprey.tokkee.org 1370603356 Q * thierryp Remote host closed the connection 1370603376 Q * ircuser-1 Ping timeout: 480 seconds 1370605301 J * thierryp_ ~thierry@zebra.inria.fr 1370606250 Q * thierryp_ Remote host closed the connection 1370606903 J * ircuser-1 ~ircuser-1@35.222-62-69.ftth.swbr.surewest.net 1370609412 Q * Aiken Remote host closed the connection 1370609476 J * distemper ~user@2001:470:50b6:0:edfb:ba4d:ee9d:3ee7 1370609481 Q * distemper_ Read error: Connection reset by peer 1370611456 Q * nkukard Ping timeout: 480 seconds 1370611830 Q * Jb_boin Remote host closed the connection 1370611849 J * Jb_boin ~dedior@proxad.eu 1370612557 J * benl ~benl@dockoffice.sonassihosting.com 1370612563 M * benl Hey all 1370612629 M * benl I'm looking into some odd slowness on vserver guests (either tcp sockets, file descritors etc.) - and trying to see if vserver is responsible, or the host 1370612656 M * benl for a few values like - fs.file-max and the net.ipv4* - are they set and inhereted from the host? 1370613982 M * Ghislain hello there, sorry benl do not know, you can override on a guest basis some sysctl variables but i do not know if all can be changed that way 1370614036 M * Ghislain is there any documentation on how vshelper works ? i am wondering if i could use it to get the guest to ask the host to create an iptable rule but not sure how it works 1370614051 M * Ghislain cannot find any doc nor any man pages about it 1370614229 M * daniel_hozac vshelper only receives events that are programmed into the kernel. 1370614251 M * daniel_hozac primarily that revolves around guests rebooting 1370614319 M * Bertl benl: what kind of slowness? 1370614329 M * benl vserver GUEST enter 1370614331 M * benl is slow 1370614348 M * Bertl Ghislain: in theory, there could be helpers for all kind of events/triggers 1370614350 M * benl running some basic scripts (handmade) that admittedly contain a lot of forks (strace shows ~500) 1370614356 M * Bertl benl: systemd? 1370614361 M * benl systemd? 1370614370 M * Bertl are you using systemd? 1370614398 M * benl I've no idea what systemd is! 1370614425 M * Bertl something which recently replaced sysv init in most distros 1370614454 M * benl dpkg --list | grep systemd ... is empty 1370614462 M * benl So at a guess, no. 1370614492 M * Bertl okay 1370614553 M * Ghislain ok bertl, could you explain me a simple exemple that will help me setup one, i will wiki it i promise ! 1370614576 M * Ghislain i need to copy the binary into the guest i think 1370614580 M * daniel_hozac no 1370614597 M * Ghislain and if in a guest it launch a vshelper event...ah ok no lol 1370614620 M * Ghislain so i really do not get it ^^ 1370614726 M * daniel_hozac vshelper is launched on the host from the kernel when the guest does something. 1370614771 M * Ghislain how do it detect what the guest do ? 1370614802 M * daniel_hozac it's in the kernel. the kernel hooks certain syscalls and such. 1370614814 M * Ghislain i know it is for rebooting so lets take that for exemple, my use would be a fail2ban triggering an iptale rule 1370614817 M * Ghislain oh ok 1370614833 M * Bertl i.e. userspace calls into the kernel (e.g. with reboot), kernel in turn invokes vshelper on the host with some info 1370614849 M * Bertl that helper acts on behalf of the guest and e.g. restarts the guest 1370614873 M * Ghislain ok, got it in that case, is there a way to trigger one inside a guest, a custom one 1370614894 M * daniel_hozac modify the kernel. 1370614897 M * Bertl basically yes, as the reboot interface has some options 1370614918 M * Bertl but it wouldn't be flexible enough for your purpose I guess 1370614937 M * Bertl but IMHO using or even modifying the vshelper is overkill 1370614952 M * daniel_hozac generally, you're better off writing something that talks to a daemon on the host that performs tasks for you. 1370614954 M * Ghislain the goal would be to send a short message 1370614960 M * Ghislain i guess so 1370614962 M * Bertl for the fail2ban purpose, a simple file inside the guest would be more than enough 1370614987 M * Bertl just put IPs you want to block there, and scan from the host if the file was changed 1370615012 M * Bertl (kernel already supports synchronization and triggers on those changes) 1370615048 M * Bertl if you want a more complicated setup, use a unix socket or network socket to communicate from guest to host 1370615083 M * Bertl benl: what kernel/patch/util-vserver version? 1370615131 M * benl Eek, you're going to shout 1370615139 M * benl 2.6.32-5-vserver-amd64 1370615149 M * Bertl Eek! :) 1370615153 M * benl 0.30.215 1370615163 M * benl Stock squeeze kernel! 1370615174 M * Bertl yeah, we had that a few times in the last two days, the versions are incomplete or just wrong 1370615201 M * Bertl i.e. 0.30.215 is something completely different (as 0.30.215 wouldn't even work with 2.6.32) 1370615209 M * benl lol 1370615226 M * Bertl so, first step, upgrade to a recent kernel 1370615228 M * benl Is there a specific file/header I can check for 'accurate' info 1370615238 M * benl I seldom change kernel from stock - too unreliable 1370615239 M * Bertl either use the beng or lihas repository for that 1370615266 M * Bertl well, if you want the stock/debian kernel, you probably have to live with the (bad) quality 1370615281 M * benl :( 1370615289 M * Bertl nothing we can do about 1370615303 M * benl Whenever I run a custom kernel - lots of newer more random issues occur 1370615308 M * Bertl you can try to bug debian folks, but I guess it won't help you much 1370615312 M * benl my sucess rate has been 0 1370615316 M * benl :( 1370615337 M * Ghislain Beng kernel are probably your best way here 1370615339 M * Bertl as I said, you do not even need to build it yourself, although that's the preferred way 1370615355 M * benl repo.psand.net ? 1370615361 M * Ghislain he build debian packages for recent kernels 1370615363 M * Ghislain yes 1370615404 M * Ghislain if you are lost in kernel land try those, of course as said DIY is allways good unless you screw up things ^^ 1370615427 M * harry_ bwahahaaa... LINUx! 1370615441 M * benl DIY = fail! 1370615455 M * benl Had many a self-compiled kernel self destruct for no reason 1370615481 M * Bertl maybe you should consider asking or hiring somebody who knows how to build a kernel :) 1370615483 M * benl Bertl: lots of versions to choose from, which is the "stable" 1370615531 M * Bertl I do not monitor the beng or lihas repositories, as I do not use debian 1370615547 M * Bertl but probably the latest one is the best choice 1370615587 M * benl http://pastebin.com/hYFEfbxF 1370615610 M * Bertl so 3.2 1370615638 M * benl Why are Debian so far in the past kernel-wise? 1370615681 M * Ghislain stability and maintenance policy as with all distrib allmost 1370615683 M * Bertl because they confuse broken and outdated with stable 1370615688 M * benl lol 1370615727 M * benl I take it, using the 3.2 kern won't cause any issues with the exsting OS/guests? 1370615728 M * daniel_hozac "known broken is better than unknown broken" 1370615751 M * Ghislain i owuld go for 3.4 myself if any choice 1370615764 M * Bertl lihas has a 3.4 package (JFYI) 1370615877 M * benl linux-image-3.4-vserver-amd64 - Linux 3.4 for 64-bit PCs (meta-package), Linux-VServer support 1370615949 M * benl I'll have a think about it 1370615961 M * benl I'm sure its some arbritary limit rather than a kernel issue 1370615987 M * benl Almost every time I've changed a machine's kernel, its caused more problems 1370616198 M * Bertl do you use the kernels professionally or just for fun? 1370616223 M * benl professionally 1370616259 M * Bertl well, as I said, maybe consider to hire somebody to build a working kernel config for you (custom tailored to your hardware) 1370616272 M * Bertl that usually pays off fairly quickly 1370616291 M * Bertl (higher performance, less security issues, easy updates, etc) 1370616487 M * benl I tried that ... 1370616707 J * nkukard ~nkukard@41-133-202-121.dsl.mweb.co.za 1370617230 M * Bertl just read up on our last discussion (private) and you should already have a kernel config for your hardware (and the know how to use a serial console) 1370617272 M * Bertl off for dinner, bbl 1370617278 N * Bertl Bertl_oO 1370621957 N * Bertl_oO Bertl 1370621960 M * Bertl back now ... 1370622375 J * hijacker_ ~hijacker@cable-84-43-134-121.mnet.bg 1370623177 Q * Jb_boin Remote host closed the connection 1370623187 J * Jb_boin ~dedior@proxad.eu 1370625161 Q * benl Read error: Connection reset by peer 1370626354 J * benl ~benl@dockoffice.sonassihosting.com 1370627435 J * thierryp ~thierry@home.parmentelat.net 1370627916 Q * thierryp Ping timeout: 480 seconds 1370629237 Q * benl Ping timeout: 480 seconds 1370630162 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:915b:93df:edff:b7a1 1370631442 Q * thierryp Remote host closed the connection 1370631551 Q * mnemoc Remote host closed the connection 1370632680 Q * ptitoliv_ Quit: Lost terminal 1370632924 M * fback Bertl: how do I want to mount tmpfs inside the guest? 1370632977 M * fback ie, /tmp is easy, but how about /run, /run/lock and /run/shm? 1370633603 M * Bertl what's the difference for you? 1370633714 M * fback Bertl: you don't have subdirs in /tmp 1370633806 M * fback and you have to create lock and shm after mounting /run, before you can go on with them 1370633830 M * fback so you cannot simply put them in /etc/vservers/*/fstab 1370633920 M * daniel_hozac yes you can. 1370633924 M * daniel_hozac it mounts in order. 1370633964 M * Bertl the same as with fstab on a normal linux system 1370634049 J * bonbons ~bonbons@2001:a18:20b:a301:cd51:372:5822:4af1 1370634050 M * fback but I have to 1. mount tmpfs on /run, then create subdirs, then mount the /run/lock and /run/shm, otherwise mount will just complain about missing mount points 1370634144 M * fback so they are not mounted from fstab on a normal system too :) 1370634207 M * Bertl if you really want to have /run on a tmpfs as well, just create it before the guest's fstab is consulted and use a move mount in the fstab 1370634306 M * Bertl or maybe there is/will be a magic option to create mount points on-the-fly, daniel_hozac? 1370634326 M * Bertl off for now ... bbl 1370634333 N * Bertl Bertl_oO 1370635321 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:c1b4:8048:4dd9:5efd 1370635710 Q * hijacker_ Remote host closed the connection 1370636108 Q * fback Ping timeout: 480 seconds 1370636118 J * cuba33ci_ ~cuba33ci@114-25-196-245.dynamic.hinet.net 1370636471 Q * cuba33ci Ping timeout: 480 seconds 1370636481 N * cuba33ci_ cuba33ci 1370637495 Q * thierryp Remote host closed the connection 1370639950 Q * bonbons Quit: Leaving 1370640733 J * Aiken ~Aiken@2001:44b8:2168:1000:21f:d0ff:fed6:d63f 1370641717 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:6809:9d98:997f:14dd 1370642198 Q * thierryp Ping timeout: 480 seconds 1370642425 Q * Ghislain Quit: Leaving. 1370642701 J * arekm_ ~arekm@ixion.pld-linux.org 1370642743 Q * arekm Remote host closed the connection 1370644165 Q * hparker Quit: I've fallen off the 'net and can't get up 1370644308 J * fback fback@red.fback.net 1370646196 J * hparker ~hparker@linux.homershut.net 1370647143 Q * hparker Quit: I've fallen off the 'net and can't get up 1370647372 J * hparker ~hparker@linux.homershut.net