Re: [gentoo-user] How much effort from udev-197-r3 to 206
please read the news it's a must. If your network card drivers are built as modules ''in theory'' you are not effected. If they are built into the kernel, you will have to delete a 70- something file, and replace it with an 80- something empty file, to keep the same ethN wlanN names. Sorry, i do not remember the actual file names. Please google ''udev thay slut'' to see my original post about this. N On 8/3/13, Harry Putnam rea...@newsguy.com wrote: I see an update to udev come up when investigating installing various other pkgs. eix shows I'm on 197-r3 and the most recent is 206. Will that be a hefty amount of change... and concomittant amount of work? Or something a lazy slug can manage?
Re: [gentoo-user] Linux Fiber SAN
Hello Norman, Sorry for the delayed response What do you mean by replication? Oh I was referring to the replication of the entire NFS server with virtual drive images etc.. to other machines for fail over, maybe load balancing. Kind Regards, Nick.
Re: [gentoo-user] Linux Fiber SAN
Anyone using Hadoop for managing virtual machines and/or drives. Kind Regards, Nick.
Re: [gentoo-user] Linux Fiber SAN
Hello Norman, Thank you so much for your response, and that is an interesting setup. we open up pools of up to 20 hosts which all mount the same NFS share which holds sparse file images as virtual hdds of the VM. How are these sprase file images initially built for each VM's virtual hdd? And can this process be automated. So life migration is possible, other than holding the VMs on local storage. I can understand that. Our never clusters are equipped with hosts using 10 gigabit ethernet. Two 10GE ports are bonded to provide redundancy and balancing. Every host features 2 bonds, one for storage vlans and one for the production vlans. Performance is not the issue. Good network engineering. I guess also with this setup replication would be handled by rsync? If so, the potential of this setup really starts to shine. WOW, from NAS to SAN? Kind Regards, Nick.
Re: [gentoo-user] Linux Fiber SAN
Hello Nick, the question is, what are you doing with it and why do you think you need a fibre channel SAN. Our goal indeed is to get rid of the SAN infrastructure as it is delicately to all kinds of failure with nearly zero fault tolerance. An example, you have an hicup or a power failure in your network. SAN is dead from nowon and must be reinitialized on the server. Simple NFS comes back up without any fuzz. Another, you boot your storage systems due to an os update or something like that. Your SAN will be dead. NFS will just go on as if nothing happened. We use netapp storage systems which are NAS and SAN capable. Another point is, that if you have a SAN lun, there is either no way to increase or decrease size on the fly, on cifs or nfs you can resize your share on the go. So if you do not have a _really_ good reason to use a fribre channel SAN, don't! Regards, Norman Hello Norman, Thank you so much for your response. That is a very interesting! We currently use an NFS to house home directories etc.., and I love how it just bloody works!!! We do however need block level sharing. The idea is the typical host with multiple VM with virtual HDDs residing on a SAN. We figured fibre would give us better performance (for the mean time!!!). It was my understanding that SAN whether implemented using iSCSI or Fibre was essentially susceptible to the same type of faults that lead to whatever failures? The only difference being of course, on is on fibre, and the other using ethernet. Given the price of fibre right now, it's quite cheap and we though double the throughput, why not? We could have the VMs taking storage from DAS, and mount to an external NFS for home/ etc... Not sure how it would perform in terms of IO rates, and also, the idea of block level allocation just seems so much cleaner no? PS I am new to SAN, please excuse me. Kind Regards, Nick
Re: [gentoo-user] Linux Fiber SAN
Hello, I tend to disagree. A correctly designed SAN (using dual Fabric among other things) is a lot more stable and has a lot better performance than any NAS (NFS, CIFS, iSCSI) solution. One other thing that also needs to be correctly configured to have a stable SAN infrastructure is the servers on it (Multipathing, partition alignment, queue depth, ...) according to the storage vendors recommendation. LUN expansion/shrink is storage vendor specific, some can not (netapp apparently) but others can. Just my 2 cents. Regards, -- Dan Johansson, http://www.dmj.nu *** This message is printed on 100% recycled electrons! *** Hello Dan, Thank you so much. As mentioned earlier I am a new to SAN, and the approach we are taking given our limited budget is to purchase an IBM with sufficient hdd bays and PCI bus, plugging a PCIe raid card as well as an HBA (or two as you mentioned), and installing SCST or ESOS, and going from their. Would you be kind enough to give more details about your SAN setup in respect to HBA, raid adapters, software etc... I understand that you could be using a black box from HP etc.., but just a general idea. Kind Regards, Nick.
Re: [gentoo-user] Linux Fiber SAN
On Wed, Jun 12, 2013 at 10:53 AM, Alan McKinnon alan.mckin...@gmail.comwrote: Old cynic speaking here: Yes, they both have the same weak point: humans. In my experience the only storage technology that ever let me down badly was a decrepit Arena locally-attached badly designed POS. The humans that *run* the storage failed me many times. The SAN never deleted a LUN, the humans did - more than once. If you are assessing risk, do keep that one in mind. Other than that, no storage technology is really inherently better than any other, some are just better suited to what you need and have budget for. -- Alan McKinnon alan.mckin...@gmail.com Hello Alan, Thanks for joining us! I am a big believer of KISS, and was also hoping on eventually getting some up-to-date simple and efficient strategies to deploying and managing SANs in a virtualized environment to mitigate things like human error. Things like zoning using (world wide name/ n_port id virualization), LUN mapping and masking etc... Using the typical architecture Host (VM1, VM2, VMn)--SAN Virtual Storage. It would be interesting in knowing are handling the said, and also felxable way of backing up of virutal storage drives, snapshots etc... Kind Regards, Nick.
[gentoo-user] Linux Fiber SAN
Hello Everyone, Was wondering what people are running these days, and how do they compare to the 10,000 dollar SAN boxes. We are looking to build a fiber san using IET and glusterFS, and was wondering what kind of luck people where having using this approach, or any for that matter. Kind Regards, Nick.
Re: [gentoo-user] IP Load Sharing - Per Packet Load Balancing (Linux router)
And who says you can't teach an old man new tricks huh geezer ;)? Thank you so much for your response!!! That sorts out outgoing traffic, have you had to setup rules for incoming traffic? I mean from the outside world to a server for example? Kind Regards, Nick.
[gentoo-user] Re: IP Load Sharing - Per Packet Load Balancing (Linux router)
Any different if the links are VDSL? I have little experience in working with DSL based connections, and was wondering what was possible in terms or bridging/bonding etc.. if anything. N. On 5/25/13, Nick Khamis sym...@gmail.com wrote: I missed out some crusial info in my last email. As mentioned this would be two separate DSL services, connected using separate bridges. I think I am describing more of a link aggregation or bonding Also assuming that the service providers support bonding of the links N. On 5/25/13, Nick Khamis sym...@gmail.com wrote: Hello everyone, I am looking to put together a linux router for small business, and was wondering if there was anything the suite (using quagga etc..) that would allow for load balancing of regular dsl links. Kind of like cisco with fast ethernet 0,1 and ip sef. If outgoing and incoming traffic could be balanced, it would be great! Kind Regards, Nick.
Re: [gentoo-user] IP Load Sharing - Per Packet Load Balancing (Linux router)
Remaining independent from corporate bureaucracy or lack of support (ISP saying no to MLPP), and proprietary technology (our friends in blue, purple and green ;). What would be the best way to integrate it to my linux router to laod balance packets both up and down. And if not at the packet level, maybe the session would suffice (i.e, per network session)? Although per packet would be preferred. Kind Regards, Nick. On 5/26/13, Mick michaelkintz...@gmail.com wrote: On Sunday 26 May 2013 22:35:14 J. Roeleveld wrote: On 25 May 2013, at 22:26, Nick Khamis wrote: ... As mentioned this would be two separate DSL services, connected using separate bridges. I think I am describing more of a link aggregation or bonding Also assuming that the service providers support bonding of the links…. Here in the UK this is a somewhat common thing - there are a number of ISPs which offer bonded xDSL services. It's certainly possible to use a Linux router to manage such a connection, although I don't know the details. http://www22.brinkster.com/findall/bondedcd.html http://www.automatedhome.co.uk/reviews/adsl-bonding-how-to-and-revie w.html Bonding network devices together is quite simple, but it needs to be configured on both ends. In other words, to merge 2 DSL-connections together using bonding, you need to get both from the same ISP and the ISP would need to support it on their end. If bonding can't be done on the ISP-side, you can use seperate load-balancing/failover using other techniques. There's different ways of going about it, without or without MLPPP, depending on what your ISP offers: http://wiki.aa.org.uk/index.php/Linux_upload_bonding_using_multipath_routing http://wiki.aa.org.uk/index.php/Linux_upload_bonding_using_policy_routing It used to be the case that Cisco 1800/2800 routers were used at customers' premises for MLPPP with certain UK ISPs, but since BT started implementing 21CN (ADSL2+) they are using ERX core routers (Juniper) and no longer support MLPPP. I understand that MPLS is used instead these days, but have no experience in its implementation. -- Regards, Mick
Re: [gentoo-user] IP Load Sharing - Per Packet Load Balancing (Linux router)
Sorry for the top post. N.
Re: [gentoo-user] IP Load Sharing - Per Packet Load Balancing (Linux router)
By downstream, I mean within our own network. Obviously downstream LB from the ISP's DSLAM would be impossible without MLPP, BGP support... N
[gentoo-user] IP Load Sharing - Per Packet Load Balancing (Linux router)
Hello everyone, I am looking to put together a linux router for small business, and was wondering if there was anything the suite (using quagga etc..) that would allow for load balancing of regular dsl links. Kind of like cisco with fast ethernet 0,1 and ip sef. If outgoing and incoming traffic could be balanced, it would be great! Kind Regards, Nick.
[gentoo-user] Re: IP Load Sharing - Per Packet Load Balancing (Linux router)
I missed out some crusial info in my last email. As mentioned this would be two separate DSL services, connected using separate bridges. I think I am describing more of a link aggregation or bonding Also assuming that the service providers support bonding of the links N. On 5/25/13, Nick Khamis sym...@gmail.com wrote: Hello everyone, I am looking to put together a linux router for small business, and was wondering if there was anything the suite (using quagga etc..) that would allow for load balancing of regular dsl links. Kind of like cisco with fast ethernet 0,1 and ip sef. If outgoing and incoming traffic could be balanced, it would be great! Kind Regards, Nick.
[gentoo-user] IPTables - Going Stateless
Hello Everyone, We recently moved our stateful firewall inside, and would like to strip down the firewall at our router connected to the outside world. The problem I am experiencing is getting things to work properly without connection tracking. I hope I am not in breach of mailing list rules however, a stripped down configuration is as follows: #!/bin/bash IPTABLES='/sbin/iptables' #Set interface values INTIF1='eth0' #flush rules and delete chains $IPTABLES -F $IPTABLES -X #echo -e- Accepting input lo traffic $IPTABLES -A INPUT -i lo -j ACCEPT #echo -e- Accepting output lo traffic $IPTABLES -A OUTPUT -o lo -j ACCEPT #echo -e- Defined Chains $IPTABLES -N TCP $IPTABLES -N UDP #echo -e- Accepting SSH Traffic $IPTABLES -A TCP -p tcp -m tcp -s 192.168.2.0/24 -d 192.168.2.5 --dport 22 -j ACCEPT $IPTABLES -A TCP -p tcp -m tcp -s 0.0.0.0/0 -d 192.168.2.5 --dport 22 -j DROP #echo -e- Accepting input TCP and UDP traffic to open ports $IPTABLES -A INPUT -i $INTIF1 -p tcp --syn -j TCP $IPTABLES -A INPUT -i $INTIF1 -p udp -j UDP #echo -e- Accepting output TCP and UDP traffic to open ports $IPTABLES -A OUTPUT -o $INTIF1 -p tcp --syn -j TCP $IPTABLES -A OUTPUT -o $INTIF1 -p udp -j UDP #echo -e- Dropping input TCP and UDP traffic to closed ports # $IPTABLES -A INPUT -i $INTIF1 -p tcp -j REJECT --reject-with tcp-rst # $IPTABLES -A INPUT -i $INTIF1 -p udp -j REJECT --reject-with icmp-port-unreachable #echo -e- Dropping output TCP and UDP traffic to closed ports # $IPTABLES -A OUTPUT -o $INTIF1 -p tcp -j REJECT --reject-with tcp-rst # $IPTABLES -A OUTPUT -o $INTIF1 -p udp -j REJECT --reject-with icmp-port-unreachable #echo -e- Dropping input traffic to remaining protocols sent to closed ports # $IPTABLES -A INPUT -i $INTIF1 -j REJECT --reject-with icmp-proto-unreachable #echo -e- Dropping output traffic to remaining protocols sent to closed ports # $IPTABLES -A OUTPUT -o $INTIF1 -j REJECT --reject-with icmp-proto-unreachable Everything works fine with the REJECT rules commented out, but when included SSH access is blocked out. Not sure why, isn't the sequence correct (i.e., the ACCPET entries before the DROP and REJECT)? Also, any pointers or heads up when going stateless would be greatly appreciated. Kind Regards, Nick
[gentoo-user] Re: IPTables - Going Stateless
For testing purposes I changed the ssh rule to: -A TCP -p tcp -m tcp --dport 22 -j ACCEPT -A TCP -p tcp -m tcp -s 0.0.0.0/0 -d 192.168.2.5 --dport 22 -j DROP And still no go. As mentioned before, everything works fine until I try to close up the rest of the ports not opened up in the chains UDP and TCP stated above: #echo -e- Dropping input TCP and UDP traffic to closed ports -A INPUT -i $INTIF1 -p tcp -j REJECT --reject-with tcp-rst -A INPUT -i $INTIF1 -p udp -j REJECT --reject-with icmp-port-unreachable #echo -e- Dropping output TCP and UDP traffic to closed ports -A OUTPUT -o $INTIF1 -p tcp -j REJECT --reject-with tcp-rst -A OUTPUT -o $INTIF1 -p udp -j REJECT --reject-with icmp-port-unreachable #echo -e- Dropping input traffic to remaining protocols sent to closed ports -A INPUT -i $INTIF1 -j REJECT --reject-with icmp-proto-unreachable #echo -e- Dropping output traffic to remaining protocols sent to closed ports -A OUTPUT -o $INTIF1 -j REJECT --reject-with icmp-proto-unreachable That is when I cannot SSH over to the server. N.
Re: [gentoo-user] Re: [gentoo-user] IPTables - Going Stateless
Looks like the packet never gets to the tcp chain. what is --syn? It seems that way I am not sure what --syn is actually. But even if I comment it out it does not work. Also, for testing I changed the SSH rule to allow bidirectional traffic until this is fixed: -A TCP -p tcp -m tcp --dport 22 -j ACCEPT As mentioned before everything works as expected until when I try to close up the ports not included in the TCP and UDP chains: #echo -e- Dropping input TCP and UDP traffic to closed ports -A INPUT -i $INTIF1 -p tcp -j REJECT --reject-with tcp-rst -A INPUT -i $INTIF1 -p udp -j REJECT --reject-with icmp-port-unreachable #echo -e- Dropping output TCP and UDP traffic to closed ports -A OUTPUT -o $INTIF1 -p tcp -j REJECT --reject-with tcp-rst -A OUTPUT -o $INTIF1 -p udp -j REJECT --reject-with icmp-port-unreachable #echo -e- Dropping input traffic to remaining protocols sent to closed ports -A INPUT -i $INTIF1 -j REJECT --reject-with icmp-proto-unreachable #echo -e- Dropping output traffic to remaining protocols sent to closed ports -A OUTPUT -o $INTIF1 -j REJECT --reject-with icmp-proto-unreachable Thanks in Advance, Nick.
Re: [gentoo-user] IPTables - Going Stateless
Hello Everyone, Thank you so much for your responses. I agree Alan, total pain in the neck!!! But it's a ticket that was passed down to me. We moved the stateful firewalls inside the network, broken down to each department. But as a first on site defense on our BGP router running Quagga, we only require stateless for performance reasons. Jerry, thank you so much! I might need some additional help with the three way handsahkes. What I did to stay scalable was: Define a chain: -N TCP Handle two way for a specific service: -A TCP -p tcp -m tcp -s 192.168.2.0/24 -d 192.168.2.5 --dport 22 -j ACCEPT -A TCP -p tcp -m tcp -s 192.168.2.5 --sport 22 -d 192.168.2.0/24 -j ACCEPT -A TCP -p tcp -m tcp -s 0.0.0.0/0 -d 192.168.2.5 --dport 22 -j DROP Accepting Input and output requests to services included in the chain: #echo -e- Accepting input TCP traffic to open ports -A INPUT -i $INTIF1 -p tcp -j TCP #echo -e- Accepting output TCP traffic to open ports -A OUTPUT -o $INTIF1 -p tcp -j TCP Dropping Everything Else: #echo -e- Dropping input TCP to closed ports $IPTABLES -A INPUT -i $INTIF1 -p tcp -j REJECT --reject-with tcp-rst #echo -e- Dropping output TCP traffic to closed ports $IPTABLES -A OUTPUT -o $INTIF1 -p tcp -j REJECT --reject-with tcp-rst #echo -e- Dropping input traffic to remaining protocols sent to closed ports $IPTABLES -A INPUT -i $INTIF1 -j REJECT --reject-with icmp-proto-unreachable #echo -e- Dropping output traffic to remaining protocols sent to closed ports $IPTABLES -A OUTPUT -o $INTIF1 -j REJECT --reject-with icmp-proto-unreachable Hope this keeps me scalable enough to keep the world of pain at bay as much as possible... N.
[gentoo-user] Re: IPTables - Going Stateless
Neal, As for the --sport flag for OUTPUT, should it not be left arbitrary? The SSH daemon should use unprivileged ports between 1024 and 65535. The only daemon I know thus far that does not is NTP which is hardwired to 123 both ways. Thanks Guys, Nick.
Re: [gentoo-user] Real qucik question - Copying over kernel configuration for same machines
Thank you!!! On 5/12/13, staticsafe m...@staticsafe.ca wrote: On 5/11/2013 20:39, Nick Khamis wrote: Hello Everyone, Just running an installation on another IBM machine, and wanted to know which kernel config files can we copy over from one machine to another, and have the same exact modules etc copied over. Saw examples for genkern, but we build our own kernels. After copying the files over we like to run make and make modules_install on the new machine. Thanks in Advance, Nick. The .config in the kernel source directory. -- staticsafe O ascii ribbon campaign - stop html mail - www.asciiribbon.org Please don't top post - http://goo.gl/YrmAb Don't CC me! I'm subscribed to whatever list I just posted on.
Re: [gentoo-user] Real qucik question - Copying over kernel configuration for same machines
I just realized that we were running 3.5.7 on the older systems, and the current version is 3.7.10. Would I be cutting too many corners to copy over the ..config from the older machine. Thanks in Advance, Nick. On 5/12/13, Nick Khamis sym...@gmail.com wrote: Thank you!!! On 5/12/13, staticsafe m...@staticsafe.ca wrote: On 5/11/2013 20:39, Nick Khamis wrote: Hello Everyone, Just running an installation on another IBM machine, and wanted to know which kernel config files can we copy over from one machine to another, and have the same exact modules etc copied over. Saw examples for genkern, but we build our own kernels. After copying the files over we like to run make and make modules_install on the new machine. Thanks in Advance, Nick. The .config in the kernel source directory. -- staticsafe O ascii ribbon campaign - stop html mail - www.asciiribbon.org Please don't top post - http://goo.gl/YrmAb Don't CC me! I'm subscribed to whatever list I just posted on.
Re: [gentoo-user] Real qucik question - Copying over kernel configuration for same machines
Please forgive me! Gmail client from hell!
[gentoo-user] Traffic Intensive IPSec Tunnel
Hello Everyone, Our service provider requires all connections between us be done through IPSec IKE. From the little bit of research, I found that this is achieved using a system with IPSec kernel modules enabled, along with cryptography modules. On the application level, I saw ipsec tool, OpenSWAN, and OpenVPN. What I was wondering is which should be used for traffic intensive connections in a deployment environment. Without starting any OpenVPN vs OpenSwan debate, we would really like to keep the application level to a minimum. Meaning if we could achieve the tunnel using the required kernel modules, ipsec-tools and iptables, we see that as keeping it simple and effective. Your insight, suggested how-to pages are greatly appreciated. Thanks in Advance, Nick.
[gentoo-user] Real qucik question - Copying over kernel configuration for same machines
Hello Everyone, Just running an installation on another IBM machine, and wanted to know which kernel config files can we copy over from one machine to another, and have the same exact modules etc copied over. Saw examples for genkern, but we build our own kernels. After copying the files over we like to run make and make modules_install on the new machine. Thanks in Advance, Nick.
Re: [gentoo-user] Traffic Intensive IPSec Tunnel
Thanks yet again Michael! Enjoy your weekend. N. On 5/11/13, Michael Mol mike...@gmail.com wrote: On 05/11/2013 03:13 PM, Nick Khamis wrote: Hello Everyone, Our service provider requires all connections between us be done through IPSec IKE. From the little bit of research, I found that this is achieved using a system with IPSec kernel modules enabled, along with cryptography modules. On the application level, I saw ipsec tool, OpenSWAN, and OpenVPN. What I was wondering is which should be used for traffic intensive connections in a deployment environment. Without starting any OpenVPN vs OpenSwan debate, we would really like to keep the application level to a minimum. Meaning if we could achieve the tunnel using the required kernel modules, ipsec-tools and iptables, we see that as keeping it simple and effective. Your insight, suggested how-to pages are greatly appreciated. To my knowledge, OpenVPN does not use IPSec. Instead, it encapsulates either IP/IPv6 (tun mode) or layer 2 (tap mode) over TLS. If your service provider requires IPSec and IKE, best forget about OpenVPN. http://www.ipsec-howto.org/x304.html Look under Automatic keyed connections using racoon
Re: [gentoo-user] Fine Tuning NTP Server
Hello Andrea, Thank you so much for your time. I missed the part about log^2 in the documentation. Kind Regards, Nick. On 5/10/13, Pandu Poluan pa...@poluan.info wrote: On May 10, 2013 5:23 PM, Andrea Conti a...@alyf.net wrote: Hello, server tick.nrc.ca minpoll 64 maxpoll 1024 iburst prefer Ouch! minpoll and maxpoll should be specified as the log2 of the actual value, i.e. 6 and 10. Those are the defaults anyway. disable auth broadcastclient server ntp.server.com prefer This looks fine to me; although configuring a broadcast association when your clients also have a unicast association to the same server seems a bit pointless, this should not cause any harm. I think you should first try to fix your server config and see if getting a proper sync on the server also solves the problem with the clients. As for /etc/conf.d/ntpd, we have set nothing. To be honest I did not even know the file existed till you mentioned it: NTPD_OPTS=-u ntp:ntp That is where you put the commandline options you want ntpd to be started with. I would have liked to be better prepared for this but the gentoo wiki page has been down for a few weeks now. We are not looking for microsecond synchronization however, down to the second would be nice! I doubt you can consistently achieve microsecond-level synchronization with NTP ;) The official documentation of the ntp suite [1] is a good source of information; the man pages of ntpd and ntp.conf are also quite extensive, albeit a bit terse. andrea [1] http://www.eecis.udel.edu/~mills/ntp/html/index.html Many thanks Andrea! Although I'm not the original poster, but within the next couple of months, me my team will have to implement something similar. Your reply is a good reference for us! Again, thank you! Rgds, --
Re: [gentoo-user] Fine Tuning NTP Server
Hello Andrea, Thank you so much for your response! I was reluctant to include configuration related material for the sake of not insulting anyone however, on the server we have set: server tick.nrc.ca minpoll 64 maxpoll 1024 iburst prefer server tock.nrc.ca minpoll 64 maxpoll 1024 iburst restrict 127.0.0.1 restrict 192.168.2.0 mask 255.255.255.0 broadcast 192.168.2.255 minpoll 64 # Synchronize Hardare Clock CLOCK_SYSTOHC=yes The reason I manually set min/maxpoll is to be in compliance with ntp server requirements: minpoll/maxpoll may not be changed below the defaults of 64 seconds and 1024 seconds respectively. For the client, I have: disable auth broadcastclient server ntp.server.com prefer # Synchronize Hardare Clock CLOCK_SYSTOHC=yes As for /etc/conf.d/ntpd, we have set nothing. To be honest I did not even know the file existed till you mentioned it: NTPD_OPTS=-u ntp:ntp I would have liked to be better prepared for this but the gentoo wiki page has been down for a few weeks now. We are not looking for microsecond synchronization however, down to the second would be nice! Kind Regards, Nick.
[gentoo-user] Fine Tuning NTP Server
Hello Everyone, A while back I was inquiring about the best way to have computers on the network synched. Long story short, we opted to go with an NTP server installed on one machine, and synching the rest of the machines against it. However, I am not sure if the NTP server is properly synched with the public stratum 2 server furthermore, it does not seem like the clients are synced with the base server: ntpq -p remote refid st t when poll reach delay offset jitter *tick.nrc.com .GPS.1 u 52h 36h2 56.0368.131 0.445 tock.nrc.com .INIT. 16 u- 36h00.0000.000 0.000 192.168.2.255 .BCST. 16 u- 102400.0000.000 0.000 And one of the clients: ntpq -p remote refid st t when poll reach delay offset jitter time.server 128.233.154.245 2 u 32 64 3770.168 25539.9 40.427 I have to be honest, not sure what those fields mean, but when I manually check the machines using the date command, i see that clients are ~20 sec behind. Was wondering how to best manipulate sync given our reliance on an outside ntp server. We are not looking for nanosecond synching, but at least down to the second would be efficient. Finally, is refid 128.233.154.245 on client's pointing to the outside stratum server normal behaviour? Shoild refid not be pointing to our NTP server? Your help is greatly appreciated, Nick.
[gentoo-user] Problem with iptables logging (iptables: No chain/target/match by that name.)
Hello Everyone, While trying to include a logging chain to our IPTables rules, I am receiving the following error: (iptables: No chain/target/match by that name. The chain looks like: # Set Log Limit LOGLIMIT=2/s LOGLIMITBURST=10 $IPTABLES -N LOGDROP #echo -e- Logging Dropped Traffic # $IPTABLES -A LOGDROP -i $INTIF1 -p tcp -m limit --limit $LOGLIMIT --limit-burst $LOGLIMITBURST -j LOG --log-prefix TCP LOGDROP: # $IPTABLES -A LOGDROP -j DROP # $IPTABLES -A INPUT -p icmp -i $INTIF1 -j LOGDROP # $IPTABLES -A INPUT -p tcp -i $INTIF1 -j LOGDROP # $IPTABLES -A INPUT -p udp -i $INTIF1 -j LOGDROP Some searching caused me to make sure that I have the correct modules loaded: modprobe ipt_LOG Module Size Used by iptable_nat 3220 0 nf_nat 11228 1 iptable_nat ipt_LOG 6454 0 ipt_REJECT 1917 3 nf_conntrack_ipv4 9141 10 nf_nat,iptable_nat nf_defrag_ipv4 847 1 nf_conntrack_ipv4 iptable_filter 988 1 ip_tables 8370 2 iptable_filter,iptable_nat But still no go. Thank in Advance, Nick.
Re: [gentoo-user] Problem with iptables logging (iptables: No chain/target/match by that name.)
We are using 3.3.8. I did see those in the kernel list. Anyone have any idea which ones are needed? Thanks in Advance, N. On 5/4/13, Tanstaafl tansta...@libertytrek.org wrote: On 2013-05-04 12:41 PM, Nick Khamis sym...@gmail.com wrote: Some searching caused me to make sure that I have the correct modules loaded: modprobe ipt_LOG Module Size Used by iptable_nat 3220 0 nf_nat 11228 1 iptable_nat ipt_LOG 6454 0 ipt_REJECT 1917 3 nf_conntrack_ipv4 9141 10 nf_nat,iptable_nat nf_defrag_ipv4 847 1 nf_conntrack_ipv4 iptable_filter 988 1 ip_tables 8370 2 iptable_filter,iptable_nat What kernel version? I had the same problem after an update to 3.7.10, had to enable some new options: CONFIG_NETFILTER_NETLINK_LOG=y CONFIG_NETFILTER_XT_TARGET_LOG=y CONFIG_IP_NF_TARGET_ULOG=y Not sure if they are all needed though...
Re: [gentoo-user] Re: [gentoo-user] Problem with iptables logging (iptables: No chain/target/match by that name.)
On 5/4/13, the guard the.gu...@mail.ru wrote: Суббота, 4 мая 2013, 12:41 -04:00 от Nick Khamis sym...@gmail.com: Hello Everyone, While trying to include a logging chain to our IPTables rules, I am receiving the following error: (iptables: No chain/target/match by that name. The chain looks like: # Set Log Limit LOGLIMIT=2/s LOGLIMITBURST=10 $IPTABLES -N LOGDROP #echo -e- Logging Dropped Traffic # $IPTABLES -A LOGDROP -i $INTIF1 -p tcp -m limit --limit $LOGLIMIT --limit-burst $LOGLIMITBURST -j LOG --log-prefix TCP LOGDROP: # $IPTABLES -A LOGDROP -j DROP # $IPTABLES -A INPUT -p icmp -i $INTIF1 -j LOGDROP # $IPTABLES -A INPUT -p tcp -i $INTIF1 -j LOGDROP # $IPTABLES -A INPUT -p udp -i $INTIF1 -j LOGDROP Some searching caused me to make sure that I have the correct modules loaded: modprobe ipt_LOG Module Size Used by iptable_nat 3220 0 nf_nat 11228 1 iptable_nat ipt_LOG 6454 0 ipt_REJECT 1917 3 nf_conntrack_ipv4 9141 10 nf_nat,iptable_nat nf_defrag_ipv4 847 1 nf_conntrack_ipv4 iptable_filter 988 1 ip_tables 8370 2 iptable_filter,iptable_nat But still no go. 6 or 4? I was gazing at your question for a sec. 4 :). I thought you were asking about kernel minor+ version, or iptables version... IPV4 Sir :) N.
Re: [gentoo-user] Server system date synchronizaion
On 4/26/13, Jarry mr.ja...@gmail.com wrote: On 26-Apr-13 16:10, Joseph wrote: On 04/25/13 10:33, Nick Khamis wrote: We are trying to sync our server's time with an accurate ntp server, and was wondering which of the many solutions are considered viable. I did see the http://en.gentoo-wiki.com/wiki/Time_Synchronization. Our services are quite time sensitive. put this script on a cron and enjoy :-) #!/bin/sh /usr/bin/rdate -s 128.138.140.44 /sbin/hwclock --systohc Yeah, enjoy mysterious crashes of some services which die whenever system time changes rapidly, in one big step (i.e. dovecot, TS, etc)! Man, I sincerely hope you do *NOT* mean this seriously. It might work on desktop but that's definitely NOT the way time on servers should be updated! Some services are so sensitive they crash even if you shift time 0.2s back or forth! I had even to include tinker step 0 in my ntpd.conf just because of that problem (it means ntpd will now never adjust time by stepping, always only by slewing, which in my case is max 0.5ms per second)... Jarry -- ___ This mailbox accepts e-mails only from selected mailing-lists! Everything else is considered to be spam and therefore deleted. Hello Everyone, Thank you for the many solutions however, I am totally lost as to which would be most reliable in a collocation setting vs. office desktop. What we would like is to set up our own ntp server which other servers and desktops in our office syncs to. Is this advised? If so, is there a nice tutorial online? Kind Regards, N.
Re: [gentoo-user] Server system date synchronizaion
On 4/26/13, Alan McKinnon alan.mckin...@gmail.com wrote: On 26/04/2013 17:27, Nick Khamis wrote: Hello Everyone, Thank you for the many solutions however, I am totally lost as to which would be most reliable in a collocation setting vs. office desktop. What we would like is to set up our own ntp server which other servers and desktops in our office syncs to. Is this advised? If so, is there a nice tutorial online? The subject of time is vastly more complex than anyone ever thinks at first look. Time servers are tiered and are themselves both clients and servers... So here's what you do: sync everything to your ISP's time servers. Chances are good they do a better job than you can, just like with DNS caching. When you know more about the subject than you do now, you can venture into rolling your own. I'm not being rude or funny - time servers are just one of those things that unless you have special needs and LOTS of cash, it is so much easier to just let someone else do all the heavy lifting. -- Alan McKinnon alan.mckin...@gmail.com Hello Alan, Thank you so much for your response, and I totally understand the effort vs. benefit challenge. However, is it really that much trouble/unstable to setup our own ntp server that syncs with our local isp, and have our internal network sync on it? N.
Re: [gentoo-user] Server system date synchronizaion
On 4/26/13, Alan McKinnon alan.mckin...@gmail.com wrote: On 26/04/2013 17:54, Nick Khamis wrote: On 4/26/13, Alan McKinnon alan.mckin...@gmail.com wrote: On 26/04/2013 17:27, Nick Khamis wrote: Hello Everyone, Thank you for the many solutions however, I am totally lost as to which would be most reliable in a collocation setting vs. office desktop. What we would like is to set up our own ntp server which other servers and desktops in our office syncs to. Is this advised? If so, is there a nice tutorial online? The subject of time is vastly more complex than anyone ever thinks at first look. Time servers are tiered and are themselves both clients and servers... So here's what you do: sync everything to your ISP's time servers. Chances are good they do a better job than you can, just like with DNS caching. When you know more about the subject than you do now, you can venture into rolling your own. I'm not being rude or funny - time servers are just one of those things that unless you have special needs and LOTS of cash, it is so much easier to just let someone else do all the heavy lifting. -- Alan McKinnon alan.mckin...@gmail.com Hello Alan, Thank you so much for your response, and I totally understand the effort vs. benefit challenge. However, is it really that much trouble/unstable to setup our own ntp server that syncs with our local isp, and have our internal network sync on it? No, it's not THAT much effort. You can get by with installing ntpd on a single machine, pointing it at the upstream time server and pointing all your clients to it. It's clearly recorded in the config file, you can't go wrong. It's understanding how this weird thing called time works that is the issue. Take for example leap seconds. urggg... The basic question I suppose is why do you want to do it this way? What do you feel you will gain by doing it yourself? -- Alan McKinnon alan.mckin...@gmail.com Hello Alan, Thank you so much for your time. Our voip cluster time always vary for some reason And with long distance, that could mean upwards to a dollar a call. N.
Re: [gentoo-user] Server system date synchronizaion
On 4/26/13, Alan McKinnon alan.mckin...@gmail.com wrote: On 26/04/2013 19:11, Nick Khamis wrote: Thank you so much for your response, and I totally understand the effort vs. benefit challenge. However, is it really that much trouble/unstable to setup our own ntp server that syncs with our local isp, and have our internal network sync on it? No, it's not THAT much effort. You can get by with installing ntpd on a single machine, pointing it at the upstream time server and pointing all your clients to it. It's clearly recorded in the config file, you can't go wrong. It's understanding how this weird thing called time works that is the issue. Take for example leap seconds. urggg... The basic question I suppose is why do you want to do it this way? What do you feel you will gain by doing it yourself? -- Alan McKinnon alan.mckin...@gmail.com Hello Alan, Thank you so much for your time. Our voip cluster time always vary for some reason And with long distance, that could mean upwards to a dollar a call. Ah, OK. That changes things quite a bit. I have a little bit of experience with that - I work for a large ISP, we have a large VOIP department and we run a stratum 2 time server that serves most of the country. First things first: you can't just stick any old upstream ntp server in your config and walk away. You are then reliant on the quality of that upstream, and far too often other time servers operate on a good enough policy - if it's accurate to about a second, it's good enough (and for desktop users i.e. most ISP clients, it is good enough). I don't know how big your operation is, if you have budget I suggest you invest in a proper master time source that is GPS-driven. We have a Symmetricom (http://www.symmetricom.com) but it's a mature market with several vendors. Shop around, prices are less than you'd expect (about the same as a decent mid-range server and much less than Cisco's routers...) Weather can get in the way, so back up the device with a decent second upstream. I have a good one available run by the Science and Technology Research part of the Dept of Trade and Industry and the third option is all the other big ISPs around. Depending on your accuracy needs you could get away without the GPS unit and just use a good upstream, but I'd fight for the budget for it - tell management it puts control of billing back in your hands, they always fall for that one :-) So the summary would be that I reckon ntpd will do what you want as long as you chose good reliable time sources. With that in hand, the config is easy as rather well documented. Shout here ont he list if you need a hand with this when you come to deployment time -- Alan McKinnon alan.mckin...@gmail.com Any suggestions for a reliable, use that word cautiously ntp server. Requests are coming from canada. Was there not a project that dealt with setting up a network across the globe just for serving up NTP services? Did that marvelous idea die out? N.
[gentoo-user] Server system date synchronizaion
Hello Everyone, We are trying to sync our server's time with an accurate ntp server, and was wondering which of the many solutions are considered viable. I did see the http://en.gentoo-wiki.com/wiki/Time_Synchronization. Our services are quite time sensitive. Thanks in Advance, N.
Re: [gentoo-user] Server system date synchronizaion
On 4/25/13, Michael Mol mike...@gmail.com wrote: On 04/25/2013 10:33 AM, Nick Khamis wrote: Hello Everyone, We are trying to sync our server's time with an accurate ntp server, and was wondering which of the many solutions are considered viable. I did see the http://en.gentoo-wiki.com/wiki/Time_Synchronization. Our services are quite time sensitive. My best results so far have been to have one node on my network sync to pool.ntp.org, and to have all other nodes on my network sync to that one node. Short of having a stratum 1 time server on my network, that seems to work the best; done that way, my nodes are within a few milliseconds of each other, near as I can figure. For contrast, having all nodes sync to pool.ntp.org results in time variance of up to 2-3 minutes across a dozen or so machines. Thank you so much for your response. Michael, were you using ntp to sync that initial server? If so, can we get that setup up and running easily? I've been putting the time issue off for way too long... Thanks in Advance, Nick
Re: [gentoo-user] Server system date synchronizaion
Ummm... *all* servers are critically time-sensitive. Yeah... I concur ;)
Re: [gentoo-user] How reliable is ext3?
Who's paying for this bandwith? N. On 4/24/13, Neil Bothwick n...@digimed.co.uk wrote: On Wed, 24 Apr 2013 19:07:05 +0100, Stroller wrote: That only works on small systems. I have systems here where a 'du' on /home would take hours and produce massive IO wait, because there's so much data in there. Of course. Excuse me. My original idea was in respect of the previous respondent's desire to offer hard limits of a gigabyte - allocating each user a partition and running `du`, which returns immediately, on it. I said by the gigabyte not of a gigabyte, a user could have hundreds of them. I don't understand how a hard limit could be enforced if it's impractical to assess the size of used data. Because the filesystem keeps track of the usage, just like it does for the whole filesystem, which is why df . is so much faster than du .. ZFS does this too, it just doesn't have a concept of a soft limit. -- Neil Bothwick Please rotate your phone 90 degrees and try again.
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
Double checking the udevd version we are running 171. Not sure if we should be effected yet? I confess, I did a world upgrade and walked away. For some reason it was stuck on ipr.h for some apache related package, which was odd since apache is not installed on the machine. I reset the system and poof Here I am at the co-location on Sunday at 9:00am. Serves me right I guess. I double checked. When deleting 70-something rules and restarting the machine they get regenerated. Any help is greatly appreciated. N. On 4/7/13, Heiko Zinke ma...@rabuju.com wrote: On 06.04.2013 21:11, Jörg Schaible wrote: Jarry wrote: On 06-Apr-13 19:10, Alan Mackenzie wrote: STOP SPREADING THIS FUD It did not happen to pretty much everybody. It happened to people who blindly updated thignsd and walked away, who did not read the news announcement, who did not read the CLEARLY WORDED wiki article at freedesktop.org or alternatively went into mod-induced panic and started making shit up in their heads. Steady on, old chap! By it I was meaning the general inconvenience all round occasioned by the changes between udev-{197,200}. Not everybody encountered this. For example Dale, and Walt D. didn't have to do anything. But pretty much everybody else did. The problem is, news item is not correct! I followed it and yet finished with server having old network name (eth0). Problem was the point 4. in news item, which is not quite clear: - 4. predictable network interface names: If /etc/udev/rules.d/80-net-name-slot.rules is an empty file or a symlink to /dev/null, the new names will be disabled and the kernel will do all the interface naming... - Well, in my case 80-net-names-slot.rules was neither empty, nor symlink to dev null, but FULL OF COMMENTS AND NOTING ELSE, which basically did the same thing as empty file: disabled new network names. Unfortunatelly, I found it just after screwed reboot. But I did everything I found in news item: checked and verified that file was not symlink to /dev/null and that it was not empty (1667 bytes does not seem to me to be empty file). As I wrote previously, I am pretty sure I never created this file manually so it must have been created by som previous udev-version. So I finished up with similar problem as OP: after rebooting I did not find interface I expected. The only difference is I expected already interface with new name, and OP is probably the old one... You're not alone, this happened for me on all my 4 machines. Same confusion here, but this paragraph saved my ass -- In a normal new installation there are no files in /etc/udev/rules.d and if you haven't edited any files you have in there, you should most likely backup and delete them all if they don't belong to any packages. -- So I checked and just removed all files. luckily everything went fine :) So I must add my point to complaining about news item not beeing quite clear. And this happens quite often... heiko
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
Manually bringing up eth0 using ifconfig got me up and running. It's quite shaky though. net.eth0 does not work any more and of course neither does sshd or any other service that requires net.eth*. Thanks Michael. If they're supposed to be configured via DHCP, try dhclient $interface_name. If they're supposed to be statically configured, try using ifconfig to configure them manually. Now that I have internet connection, I am not sure what my line of action should be. N. On 4/7/13, Nick Khamis sym...@gmail.com wrote: Double checking the udevd version we are running 171. Not sure if we should be effected yet? I confess, I did a world upgrade and walked away. For some reason it was stuck on ipr.h for some apache related package, which was odd since apache is not installed on the machine. I reset the system and poof Here I am at the co-location on Sunday at 9:00am. Serves me right I guess. I double checked. When deleting 70-something rules and restarting the machine they get regenerated. Any help is greatly appreciated. N. On 4/7/13, Heiko Zinke ma...@rabuju.com wrote: On 06.04.2013 21:11, Jörg Schaible wrote: Jarry wrote: On 06-Apr-13 19:10, Alan Mackenzie wrote: STOP SPREADING THIS FUD It did not happen to pretty much everybody. It happened to people who blindly updated thignsd and walked away, who did not read the news announcement, who did not read the CLEARLY WORDED wiki article at freedesktop.org or alternatively went into mod-induced panic and started making shit up in their heads. Steady on, old chap! By it I was meaning the general inconvenience all round occasioned by the changes between udev-{197,200}. Not everybody encountered this. For example Dale, and Walt D. didn't have to do anything. But pretty much everybody else did. The problem is, news item is not correct! I followed it and yet finished with server having old network name (eth0). Problem was the point 4. in news item, which is not quite clear: - 4. predictable network interface names: If /etc/udev/rules.d/80-net-name-slot.rules is an empty file or a symlink to /dev/null, the new names will be disabled and the kernel will do all the interface naming... - Well, in my case 80-net-names-slot.rules was neither empty, nor symlink to dev null, but FULL OF COMMENTS AND NOTING ELSE, which basically did the same thing as empty file: disabled new network names. Unfortunatelly, I found it just after screwed reboot. But I did everything I found in news item: checked and verified that file was not symlink to /dev/null and that it was not empty (1667 bytes does not seem to me to be empty file). As I wrote previously, I am pretty sure I never created this file manually so it must have been created by som previous udev-version. So I finished up with similar problem as OP: after rebooting I did not find interface I expected. The only difference is I expected already interface with new name, and OP is probably the old one... You're not alone, this happened for me on all my 4 machines. Same confusion here, but this paragraph saved my ass -- In a normal new installation there are no files in /etc/udev/rules.d and if you haven't edited any files you have in there, you should most likely backup and delete them all if they don't belong to any packages. -- So I checked and just removed all files. luckily everything went fine :) So I must add my point to complaining about news item not beeing quite clear. And this happens quite often... heiko
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
I am upgrading each package (25) one by one, and leaving the meat and potatoes (udev) for last. I am really sorry about the noise guys and gals. It's been a while since I had such a scare There are 4500 people coming into work tomorrow morning, and this machine also happens to be our LDAP server. N. On 4/7/13, Neil Bothwick n...@digimed.co.uk wrote: On Sun, 7 Apr 2013 09:38:23 -0400, Nick Khamis wrote: Double checking the udevd version we are running 171. Not sure if we should be effected yet? I confess, I did a world upgrade and walked away. For some reason it was stuck on ipr.h for some apache related package, which was odd since apache is not installed on the machine. I reset the system and poof Here I am at the co-location on Sunday at 9:00am. Serves me right I guess. I double checked. When deleting 70-something rules and restarting the machine they get regenerated. That's how udev-171 was supposed to work. You need to update to 200 then delete the file and it will stay deleted. You really need to read the news item and associated page CAREFULLY, then work through them CAREFULLY and the upgrade should do just what you want. udev, or whatever device manager you choose, is a critical system component, not the sort of thing you should leave to update itself without reading the instructions, especially on a remote server. -- Neil Bothwick MICROSOFT: Most Intelligent Customers Realize Our Software Only Fools Teenagers
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
Installing wpa_supplicant got the network scripts working again. Not sure why. Does anyone know why we need wpa_supplication now? On 4/7/13, Nick Khamis sym...@gmail.com wrote: I am upgrading each package (25) one by one, and leaving the meat and potatoes (udev) for last. I am really sorry about the noise guys and gals. It's been a while since I had such a scare There are 4500 people coming into work tomorrow morning, and this machine also happens to be our LDAP server. N. On 4/7/13, Neil Bothwick n...@digimed.co.uk wrote: On Sun, 7 Apr 2013 09:38:23 -0400, Nick Khamis wrote: Double checking the udevd version we are running 171. Not sure if we should be effected yet? I confess, I did a world upgrade and walked away. For some reason it was stuck on ipr.h for some apache related package, which was odd since apache is not installed on the machine. I reset the system and poof Here I am at the co-location on Sunday at 9:00am. Serves me right I guess. I double checked. When deleting 70-something rules and restarting the machine they get regenerated. That's how udev-171 was supposed to work. You need to update to 200 then delete the file and it will stay deleted. You really need to read the news item and associated page CAREFULLY, then work through them CAREFULLY and the upgrade should do just what you want. udev, or whatever device manager you choose, is a critical system component, not the sort of thing you should leave to update itself without reading the instructions, especially on a remote server. -- Neil Bothwick MICROSOFT: Most Intelligent Customers Realize Our Software Only Fools Teenagers
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
No... I'm stumped. I really don't want it in there either... I will attempt removing it once finished updating the system. N. On 4/7/13, Michael Mol mike...@gmail.com wrote: Are you using 802.1x or wireless on that machine? If not, I can't think of a reason you'd need it, outside of it being a hard dependency of some other package. On 04/07/2013 10:22 AM, Nick Khamis wrote: Installing wpa_supplicant got the network scripts working again. Not sure why. Does anyone know why we need wpa_supplication now? On 4/7/13, Nick Khamis sym...@gmail.com wrote: I am upgrading each package (25) one by one, and leaving the meat and potatoes (udev) for last. I am really sorry about the noise guys and gals. It's been a while since I had such a scare There are 4500 people coming into work tomorrow morning, and this machine also happens to be our LDAP server. N. On 4/7/13, Neil Bothwick n...@digimed.co.uk wrote: On Sun, 7 Apr 2013 09:38:23 -0400, Nick Khamis wrote: Double checking the udevd version we are running 171. Not sure if we should be effected yet? I confess, I did a world upgrade and walked away. For some reason it was stuck on ipr.h for some apache related package, which was odd since apache is not installed on the machine. I reset the system and poof Here I am at the co-location on Sunday at 9:00am. Serves me right I guess. I double checked. When deleting 70-something rules and restarting the machine they get regenerated. That's how udev-171 was supposed to work. You need to update to 200 then delete the file and it will stay deleted. You really need to read the news item and associated page CAREFULLY, then work through them CAREFULLY and the upgrade should do just what you want. udev, or whatever device manager you choose, is a critical system component, not the sort of thing you should leave to update itself without reading the instructions, especially on a remote server. -- Neil Bothwick MICROSOFT: Most Intelligent Customers Realize Our Software Only Fools Teenagers
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
You should do udev first, that way if it breaks you have the maximum amount of time to get things working again. Not that I'm a pessimist... PS Please don't top-post, it is frowned upon on this list. Makes sense and I apologize for the top posts. Have everything up to date with udev in the crosshairs. That being said: 1) Network drivers are compiled as modules 2) I deleted the contents of /etc/udev/rules.d (i.e, 70-something) 3) Removed udev-postmount from runlevels. That should be sufficient to hold onto the old names eth0/1? Thanks for all your help. N. On 4/7/13, Neil Bothwick n...@digimed.co.uk wrote: On Sun, 7 Apr 2013 10:20:02 -0400, Nick Khamis wrote: I am upgrading each package (25) one by one, and leaving the meat and potatoes (udev) for last. I am really sorry about the noise guys and gals. It's been a while since I had such a scare You should do udev first, that way if it breaks you have the maximum amount of time to get things working again. Not that I'm a pessimist... PS Please don't top-post, it is frowned upon on this list. -- Neil Bothwick the sum of all human intelligence is constant, only the number of humans increases.
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
On 4/7/13, Mick michaelkintz...@gmail.com wrote: On Sunday 07 Apr 2013 17:00:24 Nick Khamis wrote: You should do udev first, that way if it breaks you have the maximum amount of time to get things working again. Not that I'm a pessimist... PS Please don't top-post, it is frowned upon on this list. Makes sense and I apologize for the top posts. Have everything up to date with udev in the crosshairs. That being said: 1) Network drivers are compiled as modules 2) I deleted the contents of /etc/udev/rules.d (i.e, 70-something) 3) Removed udev-postmount from runlevels. That should be sufficient to hold onto the old names eth0/1? If they are built as modules, then I would expect the old naming convention to be retained - unless you had renamed them in a different order in your 70- something... rules. This is not all though. Check the page: http://wiki.gentoo.org/wiki/Udev/upgrade You also need CONFIG_DEVTMPFS=y in your kernel and if there is a /dev entry in your /etc/fstab, then it must have devtmpfs as its fs type. Most installations would not have such an entry in /etc/fstab - but better check to be safe. -- Regards, Mick Oh yes! The devtempfs is enabled in the kernel, and no entry in fstab. Forgot to mention that. N.
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
After psyching myself and everyone else for the udev 200 update, it failed on compile phase! We are using hardened server, and error message (which I am transferring over manually) is: The specific snippet of code: die econf failed This thing is not going easy N. On 4/7/13, Tanstaafl tansta...@libertytrek.org wrote: On 2013-04-07 9:38 AM, Nick Khamis sym...@gmail.com wrote: Double checking the udevd version we are running 171. Not sure if we should be effected yet? I confess, I did a world upgrade and walked away. Well, hopefully you learned a valuable lesson. I cannot even *fathom* the *idea* of doing a world update on a remote server without going through each and every package to be updated, reading every news item I could find, etc etc ad nauseum, and googling if any systems critical to booting (like udev) are involved. For me, world updates are usually very small because I keep my server updated weekly. I generally sync every day, checking what packages are available, then once that update has been available/unchanged for 3 or 4 days, I update it... waiting even a bit longer (and googling for issues) if the package(s) are critical system packages. Admittedly, doing it this way manually wouldn't work for anyone managing more than a few servers, although I imagine it could be scripted by one with the knowledge/desire. But seriously - there has been so much noise about the whole udev situation in the last months (6+?) that you should really be kicking yourself that you did that.
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
I just did got udev updated. Did all the steps in the news: 1. tempfs in kernel 2. nothing in /etc/udev/rules.d 3. removed udev-postmount from runlevel 4) check fstab for the /tmp And it changed! This is the pits dude... N. On 4/7/13, Michael Hampicke gentoo-u...@hadt.biz wrote: Am 07.04.2013 16:32, schrieb Nick Khamis: No... I'm stumped. I really don't want it in there either... I will attempt removing it once finished updating the system. N. On 4/7/13, Michael Mol mike...@gmail.com wrote: Are you using 802.1x or wireless on that machine? If not, I can't think of a reason you'd need it, outside of it being a hard dependency of some other package. Mike is right, if it's not a dep of another ebuild, you don't need wpa_supplicant. I just upgraded udev to 200 on the last remote box (which is always a bit of a thrill after typing reboot return :-) ). As expected, eth0 came up, everything works fine, wpa_supplicant is not installed.
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
Ooops I should have been more specific the net cards are not esp5s0 and esp6s0. And the drivers for the network cards are built as modules. N On 4/7/13, Tanstaafl tansta...@libertytrek.org wrote: On 2013-04-07 1:48 PM, Nick Khamis sym...@gmail.com wrote: I just did got udev updated. Did all the steps in the news: 1. tempfs in kernel 2. nothing in /etc/udev/rules.d 3. removed udev-postmount from runlevel 4) check fstab for the /tmp And it changed! WHAT changed???
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
Is changing it back to eth0 and eth1 like pulling teeth? N On 4/7/13, Nick Khamis sym...@gmail.com wrote: Ooops I should have been more specific the net cards are not esp5s0 and esp6s0. And the drivers for the network cards are built as modules. N On 4/7/13, Tanstaafl tansta...@libertytrek.org wrote: On 2013-04-07 1:48 PM, Nick Khamis sym...@gmail.com wrote: I just did got udev updated. Did all the steps in the news: 1. tempfs in kernel 2. nothing in /etc/udev/rules.d 3. removed udev-postmount from runlevel 4) check fstab for the /tmp And it changed! WHAT changed???
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
For those that have an error compiling udev 200: # emerge -1 XML-Parser # perl-cleaner --all There was not mention of this in the news. Nor will the package pull them in as a dependency. N. On 4/7/13, Nick Khamis sym...@gmail.com wrote: Is changing it back to eth0 and eth1 like pulling teeth? N On 4/7/13, Nick Khamis sym...@gmail.com wrote: Ooops I should have been more specific the net cards are not esp5s0 and esp6s0. And the drivers for the network cards are built as modules. N On 4/7/13, Tanstaafl tansta...@libertytrek.org wrote: On 2013-04-07 1:48 PM, Nick Khamis sym...@gmail.com wrote: I just did got udev updated. Did all the steps in the news: 1. tempfs in kernel 2. nothing in /etc/udev/rules.d 3. removed udev-postmount from runlevel 4) check fstab for the /tmp And it changed! WHAT changed???
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
I went into the kernel, rebuilt it with no changes (network driver was already built as a module), rebooted and nothing changed. Option 2 worked ok. As for the x86 machines, they were also updated blindly (94 packages udev 200) included... 70-presistent file in rules.d and no problems. eth0 was still eth0... N. On 4/7/13, Michael Hampicke gentoo-u...@hadt.biz wrote: Am 07.04.2013 20:08, schrieb Nick Khamis: For those that have an error compiling udev 200: # emerge -1 XML-Parser # perl-cleaner --all There was not mention of this in the news. Nor will the package pull them in as a dependency. N. On 4/7/13, Nick Khamis sym...@gmail.com wrote: Is changing it back to eth0 and eth1 like pulling teeth? N On 4/7/13, Nick Khamis sym...@gmail.com wrote: Ooops I should have been more specific the net cards are not esp5s0 and esp6s0. And the drivers for the network cards are built as modules. This is most likely related to your previous world update. Maybe there was an update for perl, after which you did not run perl-cleaner.
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
Oooops, I meant option 3.1: 3.1 Create a new empty file: touch /etc/udev/rules.d/80-net-name-slot.rules and reboot. The kernel will rename the interfaces hopefully as they were before. N. On 4/7/13, Nick Khamis sym...@gmail.com wrote: I went into the kernel, rebuilt it with no changes (network driver was already built as a module), rebooted and nothing changed. Option 2 worked ok. As for the x86 machines, they were also updated blindly (94 packages udev 200) included... 70-presistent file in rules.d and no problems. eth0 was still eth0... N. On 4/7/13, Michael Hampicke gentoo-u...@hadt.biz wrote: Am 07.04.2013 20:08, schrieb Nick Khamis: For those that have an error compiling udev 200: # emerge -1 XML-Parser # perl-cleaner --all There was not mention of this in the news. Nor will the package pull them in as a dependency. N. On 4/7/13, Nick Khamis sym...@gmail.com wrote: Is changing it back to eth0 and eth1 like pulling teeth? N On 4/7/13, Nick Khamis sym...@gmail.com wrote: Ooops I should have been more specific the net cards are not esp5s0 and esp6s0. And the drivers for the network cards are built as modules. This is most likely related to your previous world update. Maybe there was an update for perl, after which you did not run perl-cleaner.
[gentoo-user] Myrient Fiberchannel Drivers
Hello Everyone, On our test machines we are using and EOL Myrinet fibercahnnel card: 01:05.0 Network controller: MYRICOM Inc. Myrinet 2000 Scalable Cluster Interconnect (rev 03) The problem is that their open source driver only supports up to 2.6 kernels. And with us running gentoo 3.x kernel headers we are just not going back to that for reasons known to the list... Are there: * any generic drivers we can use? * Can we hack the driver to run on the servers? I hope I did not just purchase hardware that our OS does not support. It's been a while since i've done that Your help is greatly appreciated, Nick.
[gentoo-user] Eth0 interface not found - udev that little slut!!!!!
After updating our systems we lost network connectivity to the servers. When trying to start net.eth0 we got the following message: /ib64/rc/net/wpa_supplicant.sh: line 68: _is wireless command not found /etc/init.d/net.eth0: line 548: _exists command not found Errror: Interface eth0 does not exist Ensure that you have loaded the correct kernel modules for your hardware # lsmod module used by tg3 0 lbphytg3 eth0 flags=4098broadcast,multicast mtu 1500 interrupt=16 lo flags=73UP,LOOPBACK,RUNNING mtu 16436 inet 127.0.0.1 BROADCAST 255.255.255.0 inet6 ::1 prefixlen 128 scopeid 0x10 host Please excuse me, I am running back and forth from the servers and typing the error message here. Did our configuration get switched to IP6? These are our DB servers and why me!!! Why ME! Your help is greatly appreciated, Nick
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
Oh dear what did I start!@!@! I'm sorry, I did not know this was a machine brewing. Don't follow the mailing list all that often. I updated 3 x86 machines with no problem but the 64 just took a crap... I agree! Should have read the notes. N. On 4/6/13, Jörg Schaible joerg.schai...@gmx.de wrote: Volker Armin Hemmann wrote: Am 06.04.2013 21:33, schrieb Mick: On Saturday 06 Apr 2013 20:03:15 Volker Armin Hemmann wrote: Am 06.04.2013 17:57, schrieb Alan Mackenzie: Hi, Nick. On Sat, Apr 06, 2013 at 10:51:42AM -0400, Nick Khamis wrote: After updating our systems we lost network connectivity to the servers. When trying to start net.eth0 we got the following message: /ib64/rc/net/wpa_supplicant.sh: line 68: _is wireless command not found /etc/init.d/net.eth0: line 548: _exists command not found Errror: Interface eth0 does not exist Ensure that you have loaded the correct kernel modules for your hardware # lsmod module used by tg3 0 lbphytg3 eth0 flags=4098broadcast,multicast mtu 1500 interrupt=16 lo flags=73UP,LOOPBACK,RUNNING mtu 16436 inet 127.0.0.1 BROADCAST 255.255.255.0 inet6 ::1 prefixlen 128 scopeid 0x10 host Please excuse me, I am running back and forth from the servers and typing the error message here. Did our configuration get switched to IP6? These are our DB servers and why me!!! Why ME! No, it's not just you, it's happened to pretty much everybody. udev-200 now renames eth0, eth1, to something else, dependent upon complicated rules. In my case eth0 has become p6p1, though many people seem to have got longer names. Have a look in /sys/class/net and see if your new name is there. If so, edit all your config files containing eth0, switching to the new name. Once you got that done and things work again, take a deep breath and have a look at the most recent Gentoo news item ($ eselect news read) which explains it all, more or less. Then decide whether the above is a long term solution, and if not start reading docs about writing udev rules. Yes, it's a pain in the backside. But at least with Gentoo, you've a good chance of fixing things like this quickly. Your help is greatly appreciated, Nick in my case it is still eth0: ifconfig eth0: flags=4163UP,BROADCAST,RUNNING,MULTICAST mtu 1500 inet 192.168.178.21 netmask 255.255.255.0 broadcast 192.168.178.255 inet6 fe80::1e6f:65ff:fe87:6f6a prefixlen 64 scopeid 0x20link ether 1c:6f:65:87:6f:6a txqueuelen 1000 (Ethernet) RX packets 4647305 bytes 6693078055 (6.2 GiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 2943816 bytes 226871998 (216.3 MiB) TX errors 0 dropped 1 overruns 0 carrier 0 collisions 0 sys-fs/udev Available versions: (~)168-r2[1] [M]171-r10 197-r8^t{tbz2} (~)198-r6^t{tbz2} (~)199-r1^t{tbz2} 200^t{tbz2} **^t {acl action_modeswitch build debug doc edd extras +firmware-loader floppy gudev hwdb introspection keymap +kmod +openrc +rule_generator selinux static-libs test} Installed versions: 200^t{tbz2}(18:30:31 29.03.2013)(firmware-loader gudev hwdb keymap kmod openrc -acl -doc -introspection -selinux -static-libs) I did keep net.eth0 Is your eth0 NIC a module (modprobed), or built in the kernel? r8169 41918 0 module For me its built in. - Jörg
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
Our net card was also build as a module Volker, did you include your net driver for example in /etc/conf.d/modules? N. On 4/6/13, Nick Khamis sym...@gmail.com wrote: Oh dear what did I start!@!@! I'm sorry, I did not know this was a machine brewing. Don't follow the mailing list all that often. I updated 3 x86 machines with no problem but the 64 just took a crap... I agree! Should have read the notes. N. On 4/6/13, Jörg Schaible joerg.schai...@gmx.de wrote: Volker Armin Hemmann wrote: Am 06.04.2013 21:33, schrieb Mick: On Saturday 06 Apr 2013 20:03:15 Volker Armin Hemmann wrote: Am 06.04.2013 17:57, schrieb Alan Mackenzie: Hi, Nick. On Sat, Apr 06, 2013 at 10:51:42AM -0400, Nick Khamis wrote: After updating our systems we lost network connectivity to the servers. When trying to start net.eth0 we got the following message: /ib64/rc/net/wpa_supplicant.sh: line 68: _is wireless command not found /etc/init.d/net.eth0: line 548: _exists command not found Errror: Interface eth0 does not exist Ensure that you have loaded the correct kernel modules for your hardware # lsmod module used by tg3 0 lbphytg3 eth0 flags=4098broadcast,multicast mtu 1500 interrupt=16 lo flags=73UP,LOOPBACK,RUNNING mtu 16436 inet 127.0.0.1 BROADCAST 255.255.255.0 inet6 ::1 prefixlen 128 scopeid 0x10 host Please excuse me, I am running back and forth from the servers and typing the error message here. Did our configuration get switched to IP6? These are our DB servers and why me!!! Why ME! No, it's not just you, it's happened to pretty much everybody. udev-200 now renames eth0, eth1, to something else, dependent upon complicated rules. In my case eth0 has become p6p1, though many people seem to have got longer names. Have a look in /sys/class/net and see if your new name is there. If so, edit all your config files containing eth0, switching to the new name. Once you got that done and things work again, take a deep breath and have a look at the most recent Gentoo news item ($ eselect news read) which explains it all, more or less. Then decide whether the above is a long term solution, and if not start reading docs about writing udev rules. Yes, it's a pain in the backside. But at least with Gentoo, you've a good chance of fixing things like this quickly. Your help is greatly appreciated, Nick in my case it is still eth0: ifconfig eth0: flags=4163UP,BROADCAST,RUNNING,MULTICAST mtu 1500 inet 192.168.178.21 netmask 255.255.255.0 broadcast 192.168.178.255 inet6 fe80::1e6f:65ff:fe87:6f6a prefixlen 64 scopeid 0x20link ether 1c:6f:65:87:6f:6a txqueuelen 1000 (Ethernet) RX packets 4647305 bytes 6693078055 (6.2 GiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 2943816 bytes 226871998 (216.3 MiB) TX errors 0 dropped 1 overruns 0 carrier 0 collisions 0 sys-fs/udev Available versions: (~)168-r2[1] [M]171-r10 197-r8^t{tbz2} (~)198-r6^t{tbz2} (~)199-r1^t{tbz2} 200^t{tbz2} **^t {acl action_modeswitch build debug doc edd extras +firmware-loader floppy gudev hwdb introspection keymap +kmod +openrc +rule_generator selinux static-libs test} Installed versions: 200^t{tbz2}(18:30:31 29.03.2013)(firmware-loader gudev hwdb keymap kmod openrc -acl -doc -introspection -selinux -static-libs) I did keep net.eth0 Is your eth0 NIC a module (modprobed), or built in the kernel? r8169 41918 0 module For me its built in. - Jörg
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
Well I looked into /sys/class/net as mentioned by Alan. In there I see eth0/ eth1/ lo/ and sit0/. Not sure what too look for in (e.g. eth0/). /sys/class/net/eth0/ifindex says 3. Other files look ok, for example address (contains mac address if that has not changed...). N. On 4/6/13, Volker Armin Hemmann volkerar...@googlemail.com wrote: Am 06.04.2013 23:19, schrieb Nick Khamis: Our net card was also build as a module Volker, did you include your net driver for example in /etc/conf.d/modules? no I removed the 70-something rules, and did pretty much nothing else. /etc/udev/rules.d/80-net-name-slot.rules just exists and is full of text. And nothing changed.
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
In attempted to delete 70-something rules from /etc/udev/rules.d/ and it was recreated on boot with the same content. I don't think the device got renamed since ifconfig eth0 shows the correct info. Your help is greatly appreciated, N. On 4/6/13, Nick Khamis sym...@gmail.com wrote: Well I looked into /sys/class/net as mentioned by Alan. In there I see eth0/ eth1/ lo/ and sit0/. Not sure what too look for in (e.g. eth0/). /sys/class/net/eth0/ifindex says 3. Other files look ok, for example address (contains mac address if that has not changed...). N. On 4/6/13, Volker Armin Hemmann volkerar...@googlemail.com wrote: Am 06.04.2013 23:19, schrieb Nick Khamis: Our net card was also build as a module Volker, did you include your net driver for example in /etc/conf.d/modules? no I removed the 70-something rules, and did pretty much nothing else. /etc/udev/rules.d/80-net-name-slot.rules just exists and is full of text. And nothing changed.
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
I took a closer look at /etc/udev/70-something-rules-net and /sys/class/net/eth0/ and all the ATTR (i.e., address, type, dev_id) line up fine. I did not find a name file in /sys/class/net/eth0 however, name=eth0 in etc/udev/70-something-rules-net. Ifconfig alone returns nothing. Ifconfig eth0/1 and lo returns the interface with no tx and rx traffic. And no ip address as set in conf.d/net. Please help guys. Server room is numbing.. N. On 4/6/13, Nick Khamis sym...@gmail.com wrote: In attempted to delete 70-something rules from /etc/udev/rules.d/ and it was recreated on boot with the same content. I don't think the device got renamed since ifconfig eth0 shows the correct info. Your help is greatly appreciated, N. On 4/6/13, Nick Khamis sym...@gmail.com wrote: Well I looked into /sys/class/net as mentioned by Alan. In there I see eth0/ eth1/ lo/ and sit0/. Not sure what too look for in (e.g. eth0/). /sys/class/net/eth0/ifindex says 3. Other files look ok, for example address (contains mac address if that has not changed...). N. On 4/6/13, Volker Armin Hemmann volkerar...@googlemail.com wrote: Am 06.04.2013 23:19, schrieb Nick Khamis: Our net card was also build as a module Volker, did you include your net driver for example in /etc/conf.d/modules? no I removed the 70-something rules, and did pretty much nothing else. /etc/udev/rules.d/80-net-name-slot.rules just exists and is full of text. And nothing changed.
Re: [gentoo-user] Eth0 interface not found - udev that little slut!!!!!
The problem with eudev is that we are using the hardened profile and not sure if it is part of our source tree. Right now, I just would like to pinpoint this stubborn little issue I just wanted to mention that name did not change. ifconfig eth0 still pulls up the interface, and same for ifconfig lo etc... /udev/rules/70-something looks on the up and up, and same with /sys/class/eth0/1 Think the security guard outside would not appreciate having me smash this sticky keyboard in a room full of humming servers? ;)... I'm just being silly. N On 4/6/13, William Kenworthy bi...@iinet.net.au wrote: On 07/04/13 01:10, Alan Mackenzie wrote: 'Evening, Alan. On Sat, Apr 06, 2013 at 06:36:07PM +0200, Alan McKinnon wrote: On 06/04/2013 17:57, Alan Mackenzie wrote: Please excuse me, I am running back and forth from the servers and typing the error message here. Did our configuration get switched to IP6? These are our DB servers and why me!!! Why ME! No, it's not just you, it's happened to pretty much everybody. udev-200 now renames eth0, eth1, Please please PLEASE, for the love of god joseph mary and every other $DEITY on the planet STOP SPREADING THIS FUD It did not happen to pretty much everybody. It happened to people who blindly updated thignsd and walked away, who did not read the news announcement, who did not read the CLEARLY WORDED wiki article at freedesktop.org or alternatively went into mod-induced panic and started making shit up in their heads. Steady on, old chap! By it I was meaning the general inconvenience all round occasioned by the changes between udev-{197,200}. Not everybody encountered this. For example Dale, and Walt D. didn't have to do anything. But pretty much everybody else did. I didnt get hit either either, but (STRONG hint) ... I use eudev, so dies Dale and I believe Walt uses mdev. Time for those in server environments to jump ship? It may hit us eventually, but at the moment its :) BillK
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
I do not have /etc/ip however, I do have /etc/ipmaddr show: 1: lo inet6 ff02::1 2: sit0 inte6 ff02::1 3: eth0 link 33:33:00:00:00:01 inet6 ff02:1 4: eth1 link 33:33:00:00:00:01 inet6 ff02:1 Too much inte6 for my liking... Did I somehow get rid of ipv4? N. On 4/6/13, Michael Mol mike...@gmail.com wrote: On 04/06/2013 08:53 PM, Nick Khamis wrote: I took a closer look at /etc/udev/70-something-rules-net and /sys/class/net/eth0/ and all the ATTR (i.e., address, type, dev_id) line up fine. I did not find a name file in /sys/class/net/eth0 however, name=eth0 in etc/udev/70-something-rules-net. Ifconfig alone returns nothing. Ifconfig eth0/1 and lo returns the interface with no tx and rx traffic. And no ip address as set in conf.d/net. Please help guys. Server room is numbing.. /sbin/ip link addr show That will tell you the names of your interfaces, as they currently exist. You cannot reliably use 70-persistent-net-rules to assign interfaces names which the kernel may chose. This means things like 'eth0' and 'wlan0' are unreliable in principle. Once you know what the interface name will be, rename /etc/init.d/net.eth0 to /etc/init.d/net.$YOUR_INTERFACE_NAME_HERE , remove /etc/runlevels/net.eth0 and create a symlink in /etc/runlevels pointing at your new /etc/init.d/net.$WHATEVER file. Then /etc/init.d/net.$WHATEVER restart ... and things should come up, at least partially. To find anything else that might be broken: find /etc|grep eth0 find /etc -print0|xargs -0 grep eth0|egrep -v ':#' and rename 'eth0' there to your new interface name. I just went through this entire process on one of my machines...but I wiped all the files out of /etc/udev/rules.d/ and went with udev's new defaults, rather than set up my on persistent net rules for this machine. (That's a task for another day.) Frankly, the process is a PITA...and I'm going to go back to a persistent-net.rules file in the future; having to go through that entire process because of a NIC swap or an upstream behavior tweak is not something I care to have to do.
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
Sorry I did mean /sbin/ip... Long day. Regardless, /sbin/ipmaddr does now show any ipv4 related material. Other than the network card driver, what module should I ensure is loaded for ipv4 related stuff. As for /etc/conf.d/net, net.eth0/eth1 these were untouched and still point to eth0 and eth1. As for /sbin/ip. I have no such command. N. On 4/6/13, Michael Mol mike...@gmail.com wrote: /sbin/ip, not /etc/ip Those inet6 addresses beginning with ff02 are link-local addresses. Those are automatically configured on a link simply by the link being up. Something is failing to configure your interfaces' ipv4 settings. The culprit is almost certainly somewhere in one of these places, its lack of being in these places it part of your problem: /etc/conf.d/net /etc/init.d/net.* /etc/runlevels/*/net.* Otherwise, try those find/grep lines I offered. On 04/06/2013 10:01 PM, Nick Khamis wrote: I do not have /etc/ip however, I do have /etc/ipmaddr show: 1: lo inet6 ff02::1 2: sit0 inte6 ff02::1 3: eth0 link 33:33:00:00:00:01 inet6 ff02:1 4: eth1 link 33:33:00:00:00:01 inet6 ff02:1 Too much inte6 for my liking... Did I somehow get rid of ipv4? N. On 4/6/13, Michael Mol mike...@gmail.com wrote: On 04/06/2013 08:53 PM, Nick Khamis wrote: I took a closer look at /etc/udev/70-something-rules-net and /sys/class/net/eth0/ and all the ATTR (i.e., address, type, dev_id) line up fine. I did not find a name file in /sys/class/net/eth0 however, name=eth0 in etc/udev/70-something-rules-net. Ifconfig alone returns nothing. Ifconfig eth0/1 and lo returns the interface with no tx and rx traffic. And no ip address as set in conf.d/net. Please help guys. Server room is numbing.. /sbin/ip link addr show That will tell you the names of your interfaces, as they currently exist. You cannot reliably use 70-persistent-net-rules to assign interfaces names which the kernel may chose. This means things like 'eth0' and 'wlan0' are unreliable in principle. Once you know what the interface name will be, rename /etc/init.d/net.eth0 to /etc/init.d/net.$YOUR_INTERFACE_NAME_HERE , remove /etc/runlevels/net.eth0 and create a symlink in /etc/runlevels pointing at your new /etc/init.d/net.$WHATEVER file. Then /etc/init.d/net.$WHATEVER restart ... and things should come up, at least partially. To find anything else that might be broken: find /etc|grep eth0 find /etc -print0|xargs -0 grep eth0|egrep -v ':#' and rename 'eth0' there to your new interface name. I just went through this entire process on one of my machines...but I wiped all the files out of /etc/udev/rules.d/ and went with udev's new defaults, rather than set up my on persistent net rules for this machine. (That's a task for another day.) Frankly, the process is a PITA...and I'm going to go back to a persistent-net.rules file in the future; having to go through that entire process because of a NIC swap or an upstream behavior tweak is not something I care to have to do.
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
ifconfig -a and ifconfig eth0 etc.. lists the interfaces correctly. When trying to start net.eth0 the error that struck me as odd was: /lib64/rc/net/wpa_supplicant.sh: line 68: _is_wireless: command not found /etc/init.d/net.eth0: line 548: _exists: command not found Sorry I can't paste stuff directly. I am literally taking phone pics and communicating through my laptop. N. On 4/6/13, Michael Mol mike...@gmail.com wrote: It's probably not a module issue. Are these interfaces supposed to be DHCP-configured, or are they supposed to be statically and locally configured? If they're supposed to be configured via DHCP, try dhclient $interface_name. If they're supposed to be statically configured, try using ifconfig to configure them manually. Also, ipmaddr is *not* the command you should be using. That deals strictly in multicast addresses, not unicast addresses. I presume you're trying to get your unicast addresses working properly. ifconfig -a On 04/06/2013 10:35 PM, Nick Khamis wrote: Sorry I did mean /sbin/ip... Long day. Regardless, /sbin/ipmaddr does now show any ipv4 related material. Other than the network card driver, what module should I ensure is loaded for ipv4 related stuff. As for /etc/conf.d/net, net.eth0/eth1 these were untouched and still point to eth0 and eth1. As for /sbin/ip. I have no such command. N. On 4/6/13, Michael Mol mike...@gmail.com wrote: /sbin/ip, not /etc/ip Those inet6 addresses beginning with ff02 are link-local addresses. Those are automatically configured on a link simply by the link being up. Something is failing to configure your interfaces' ipv4 settings. The culprit is almost certainly somewhere in one of these places, its lack of being in these places it part of your problem: /etc/conf.d/net /etc/init.d/net.* /etc/runlevels/*/net.* Otherwise, try those find/grep lines I offered. On 04/06/2013 10:01 PM, Nick Khamis wrote: I do not have /etc/ip however, I do have /etc/ipmaddr show: 1: lo inet6 ff02::1 2: sit0 inte6 ff02::1 3: eth0 link 33:33:00:00:00:01 inet6 ff02:1 4: eth1 link 33:33:00:00:00:01 inet6 ff02:1 Too much inte6 for my liking... Did I somehow get rid of ipv4? N. On 4/6/13, Michael Mol mike...@gmail.com wrote: On 04/06/2013 08:53 PM, Nick Khamis wrote: I took a closer look at /etc/udev/70-something-rules-net and /sys/class/net/eth0/ and all the ATTR (i.e., address, type, dev_id) line up fine. I did not find a name file in /sys/class/net/eth0 however, name=eth0 in etc/udev/70-something-rules-net. Ifconfig alone returns nothing. Ifconfig eth0/1 and lo returns the interface with no tx and rx traffic. And no ip address as set in conf.d/net. Please help guys. Server room is numbing.. /sbin/ip link addr show That will tell you the names of your interfaces, as they currently exist. You cannot reliably use 70-persistent-net-rules to assign interfaces names which the kernel may chose. This means things like 'eth0' and 'wlan0' are unreliable in principle. Once you know what the interface name will be, rename /etc/init.d/net.eth0 to /etc/init.d/net.$YOUR_INTERFACE_NAME_HERE , remove /etc/runlevels/net.eth0 and create a symlink in /etc/runlevels pointing at your new /etc/init.d/net.$WHATEVER file. Then /etc/init.d/net.$WHATEVER restart ... and things should come up, at least partially. To find anything else that might be broken: find /etc|grep eth0 find /etc -print0|xargs -0 grep eth0|egrep -v ':#' and rename 'eth0' there to your new interface name. I just went through this entire process on one of my machines...but I wiped all the files out of /etc/udev/rules.d/ and went with udev's new defaults, rather than set up my on persistent net rules for this machine. (That's a task for another day.) Frankly, the process is a PITA...and I'm going to go back to a persistent-net.rules file in the future; having to go through that entire process because of a NIC swap or an upstream behavior tweak is not something I care to have to do.
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
Can't do nothing right now, no network connection... Don't feel like burning a livecd and chrooting to jail... N. On 4/6/13, Randy Barlow ra...@electronsweatshop.com wrote: On Sat, 6 Apr 2013 22:35:22 -0400 Nick Khamis sym...@gmail.com wrote: As for /sbin/ip. I have no such command. I'd recommend installing and becoming familiar with the iproute2 package. I personally find the tools it delivers to be more intuitive than the older tools, and I *think* they are considered to obsolote some tools, such as ifconfig. -- Randy Barlow
Re: [gentoo-user] Re: Eth0 interface not found - udev that little slut!!!!!
Hello Michael, Is it because you disabled udev's renaming entirely via the kernel command-line parameter? Because you've done some magic in /etc/udev/rules.d/? I did not change 70-something contents. I deleted it and let udev regenerate it. The name in rules.d is net=eth0 and net=eth1 pointing to the correct mac address. Your help is greatly appreciated, N. On 4/6/13, Michael Mol mike...@gmail.com wrote: The problem is that the definition of 'correctly' has changed. I don't know if this is 'correctly' from your perspective of 'this is how I'm used to seeing it' or 'correctly' from any of the three or more ways one could use udev. The various defintions of 'correctly' may not overlap. If they're showing up as eth0/eth1...why? Is it because you disabled udev's renaming entirely via the kernel command-line parameter? Because you've done some magic in /etc/udev/rules.d/? If the former, then OK, this is a different issue. If the latter, be aware that this isn't a supported configuration! You may very well have to rename your interfaces before this is done, or let udev rename them for you. On 04/06/2013 10:55 PM, Nick Khamis wrote: ifconfig -a and ifconfig eth0 etc.. lists the interfaces correctly. When trying to start net.eth0 the error that struck me as odd was: /lib64/rc/net/wpa_supplicant.sh: line 68: _is_wireless: command not found /etc/init.d/net.eth0: line 548: _exists: command not found Sorry I can't paste stuff directly. I am literally taking phone pics and communicating through my laptop. N. On 4/6/13, Michael Mol mike...@gmail.com wrote: It's probably not a module issue. Are these interfaces supposed to be DHCP-configured, or are they supposed to be statically and locally configured? If they're supposed to be configured via DHCP, try dhclient $interface_name. If they're supposed to be statically configured, try using ifconfig to configure them manually. Also, ipmaddr is *not* the command you should be using. That deals strictly in multicast addresses, not unicast addresses. I presume you're trying to get your unicast addresses working properly. ifconfig -a On 04/06/2013 10:35 PM, Nick Khamis wrote: Sorry I did mean /sbin/ip... Long day. Regardless, /sbin/ipmaddr does now show any ipv4 related material. Other than the network card driver, what module should I ensure is loaded for ipv4 related stuff. As for /etc/conf.d/net, net.eth0/eth1 these were untouched and still point to eth0 and eth1. As for /sbin/ip. I have no such command. N. On 4/6/13, Michael Mol mike...@gmail.com wrote: /sbin/ip, not /etc/ip Those inet6 addresses beginning with ff02 are link-local addresses. Those are automatically configured on a link simply by the link being up. Something is failing to configure your interfaces' ipv4 settings. The culprit is almost certainly somewhere in one of these places, its lack of being in these places it part of your problem: /etc/conf.d/net /etc/init.d/net.* /etc/runlevels/*/net.* Otherwise, try those find/grep lines I offered. On 04/06/2013 10:01 PM, Nick Khamis wrote: I do not have /etc/ip however, I do have /etc/ipmaddr show: 1: lo inet6 ff02::1 2: sit0 inte6 ff02::1 3: eth0 link 33:33:00:00:00:01 inet6 ff02:1 4: eth1 link 33:33:00:00:00:01 inet6 ff02:1 Too much inte6 for my liking... Did I somehow get rid of ipv4? N. On 4/6/13, Michael Mol mike...@gmail.com wrote: On 04/06/2013 08:53 PM, Nick Khamis wrote: I took a closer look at /etc/udev/70-something-rules-net and /sys/class/net/eth0/ and all the ATTR (i.e., address, type, dev_id) line up fine. I did not find a name file in /sys/class/net/eth0 however, name=eth0 in etc/udev/70-something-rules-net. Ifconfig alone returns nothing. Ifconfig eth0/1 and lo returns the interface with no tx and rx traffic. And no ip address as set in conf.d/net. Please help guys. Server room is numbing.. /sbin/ip link addr show That will tell you the names of your interfaces, as they currently exist. You cannot reliably use 70-persistent-net-rules to assign interfaces names which the kernel may chose. This means things like 'eth0' and 'wlan0' are unreliable in principle. Once you know what the interface name will be, rename /etc/init.d/net.eth0 to /etc/init.d/net.$YOUR_INTERFACE_NAME_HERE , remove /etc/runlevels/net.eth0 and create a symlink in /etc/runlevels pointing at your new /etc/init.d/net.$WHATEVER file. Then /etc/init.d/net.$WHATEVER restart ... and things should come up, at least partially. To find anything else that might be broken: find /etc|grep eth0 find /etc -print0|xargs -0 grep eth0|egrep -v ':#' and rename 'eth0' there to your new interface name. I just went through this entire process on one of my machines...but I wiped all the files out of /etc/udev/rules.d/ and went with udev's new defaults, rather than set up my on persistent net rules for this machine. (That's a task
[gentoo-user] Updating our live servers. I'm scared!
Hello Everyone, Just got a ticket assigned to me where we need to update our production servers. uname -a Linux noun 3.4.9-gentoo #2 SMP Sat Oct 13 09:35:07 EDT 2012 x86_64 Intel(R) Xeon(TM) CPU 3.60GHz GenuineIntel GNU/Linux eselect [18] hardened/linux/amd64 * I don't think they have been updated since the initial install and wanted to get a little feedback on some safe practices and methods that should be performed before and while doing so. Thanks in Advance, Nick.
Re: [gentoo-user] Updating our live servers. I'm scared!
So basically rsync configs and databases first? When issuing updates to world and so no. What is the safest process/order to sync portage, and update world? I have seen a number of flags various example use, and was wondering if someone can give me the safest and equally effective commands with flags included. Thanks again, Nick. On 3/28/13, Joshua Murphy poiso...@gmail.com wrote: On Thu, Mar 28, 2013 at 11:38 AM, Nick Khamis sym...@gmail.com wrote: Hello Everyone, Just got a ticket assigned to me where we need to update our production servers. uname -a Linux noun 3.4.9-gentoo #2 SMP Sat Oct 13 09:35:07 EDT 2012 x86_64 Intel(R) Xeon(TM) CPU 3.60GHz GenuineIntel GNU/Linux eselect [18] hardened/linux/amd64 * I don't think they have been updated since the initial install and wanted to get a little feedback on some safe practices and methods that should be performed before and while doing so. Thanks in Advance, Nick. Personally, I would recommend pulling an rsync (databases and such might cause a hiccup with that) of one of them to a nonessential system and testing updating there, building packages (assuming matching use flags, etc, across your systems), documenting the pitfalls you run into as you go. After you're up to date there, run through and test it again from a base copy, then test the actual services to ensure changes to them don't hose your environment's configuration, and once that's good, it then depends entirely on what failover, or downtime allowances you have available. If you have no failover to rely on, and can't afford enough downtime to update the system in place from the packages you've built, clone each off, update, then migrate the changes that've occured in the time between... time consuming, and requires a lot of care, but doable. -- Poison [BLX] Joshua M. Murphy
Re: [gentoo-user] Updating our live servers. I'm scared!
Hahahah udev hell!! I did go through that updating from 2.6 to 3.4. That was quite an experience But for kernel 3.* has udev not been phased out in our gentoo boxes? Will have to double check when I get back behind a console. N. On 3/28/13, Michael Orlitzky mich...@orlitzky.com wrote: On 03/28/2013 11:38 AM, Nick Khamis wrote: Hello Everyone, Just got a ticket assigned to me where we need to update our production servers. uname -a Linux noun 3.4.9-gentoo #2 SMP Sat Oct 13 09:35:07 EDT 2012 x86_64 Intel(R) Xeon(TM) CPU 3.60GHz GenuineIntel GNU/Linux eselect [18] hardened/linux/amd64 * I don't think they have been updated since the initial install and wanted to get a little feedback on some safe practices and methods that should be performed before and while doing so. This isn't that old, you'll be fine. First run an emerge --sync to update the tree. Then list everything it wants to upgrade: emerge -puDN1 world Once you have that list, go through a few at a time, updating non-essential packages. For example, emerge -u1 timezone-data man-pages ... Every once in a while, run a revdep-rebuild. If you have service monitoring (e.g. Nagios), great, it'll alert you if something breaks. If not, you'll have to test the services yourself every few packages. And don't forget to open a counter-ticket for someone to implement a monitoring solution, already. After a while, only important packages (apache, mysql, postfix...) will be left. Do those one at a time, and restart the services afterwards. Read the release notes first. Run revdep-rebuild. Check that the services work. Finally, you'll be left with the guaranteed-to-break updates like grub2 (50/50) and udev (100% you're fucked prepare for downtime). Grub2 can of course be skipped until the hardware dies. Best of luck to you with udev =)
Re: [gentoo-user] Updating our live servers. I'm scared!
So basically, no long weekend for me here in Canada. Thanks a lot guys for your time.Wish me luck. Happy easter/holidays!!! N. On 3/28/13, Michael Orlitzky mich...@orlitzky.com wrote: On 03/28/2013 12:56 PM, Nick Khamis wrote: Hahahah udev hell!! I did go through that updating from 2.6 to 3.4. That was quite an experience But for kernel 3.* has udev not been phased out in our gentoo boxes? Will have to double check when I get back behind a console. I'm afraid not! Once you sync, you can do, eselect news read 23 to see the news item that was posted about it (title: 2013-01-23-udev-upgrade). Even that doesn't contain all of the information.. some of it is spread throughout bugs and across mailing list discussions. Oh and they decided to rename your NICs to owiu23awds89, which stands for, actually-nobody-knows-welcome24-to16-hell9-slot12-moon-phase-36-hey-if-you-enjoyed-this-give-systemd-a-try, or something like that. It's all explained very poorly in the cited links.
Re: [gentoo-user] Updating our live servers. I'm scared!
First hickup emerge -puDN1 world !!! Unable to parse profile: '/etc/portage/make.profile' !!! ParseError: Profile contains unsupported EAPI '5': '/usr/portage/profiles/eapi-5-files/eapi' !!! Your current profile is invalid. If you have just changed your profile !!! configuration, you should revert back to the previous configuration. !!! Allowed actions are limited to --help, --info, --search, --sync, and We were always running hardened. Never changed the profile. N. On 3/28/13, Michael Orlitzky mich...@orlitzky.com wrote: On 03/28/2013 01:16 PM, Nick Khamis wrote: So basically, no long weekend for me here in Canada. Thanks a lot guys for your time.Wish me luck. Happy easter/holidays!!! I'm being a bit dramatic. I would plan on spending ~4 hours researching, planning, and documenting the udev upgrade. Maybe an hour to execute it in the middle of the night, physically present. You can expect around 15 minutes downtime if all goes well. The rest of the updates you can do at your leisure, although the critical services should be restarted and checked during off-hours.
Re: [gentoo-user] Updating our live servers. I'm scared!
I switched to the default profile from hardened: eselect profile list Available profile symlink targets: [1] default/linux/x86/13.0 * env-update !!! Unable to parse profile: '/etc/portage/make.profile' !!! ParseError: Profile contains unsupported EAPI '5': '/usr/portage/profiles/default/linux/x86/13.0/eapi' Regenerating /etc/ld.so.cache... And still can't update portage. N. On 3/28/13, Michael Orlitzky mich...@orlitzky.com wrote: On 03/28/2013 01:43 PM, Nick Khamis wrote: First hickup emerge -puDN1 world !!! Unable to parse profile: '/etc/portage/make.profile' !!! ParseError: Profile contains unsupported EAPI '5': '/usr/portage/profiles/eapi-5-files/eapi' !!! Your current profile is invalid. If you have just changed your profile !!! configuration, you should revert back to the previous configuration. !!! Allowed actions are limited to --help, --info, --search, --sync, and We were always running hardened. Never changed the profile. Hmm.. this is probably /someone's/ bug. Nevertheless, all you have to do to fix it us update portage to the current stable version, which supports EAPI5. Can you switch to another profile temporarily and get portage updated?
Re: [gentoo-user] Updating our live servers. I'm scared!
But we never changed our profile? Always running hardened server. N. On 3/28/13, Nick Khamis sym...@gmail.com wrote: I switched to the default profile from hardened: eselect profile list Available profile symlink targets: [1] default/linux/x86/13.0 * env-update !!! Unable to parse profile: '/etc/portage/make.profile' !!! ParseError: Profile contains unsupported EAPI '5': '/usr/portage/profiles/default/linux/x86/13.0/eapi' Regenerating /etc/ld.so.cache... And still can't update portage. N. On 3/28/13, Michael Orlitzky mich...@orlitzky.com wrote: On 03/28/2013 01:43 PM, Nick Khamis wrote: First hickup emerge -puDN1 world !!! Unable to parse profile: '/etc/portage/make.profile' !!! ParseError: Profile contains unsupported EAPI '5': '/usr/portage/profiles/eapi-5-files/eapi' !!! Your current profile is invalid. If you have just changed your profile !!! configuration, you should revert back to the previous configuration. !!! Allowed actions are limited to --help, --info, --search, --sync, and We were always running hardened. Never changed the profile. Hmm.. this is probably /someone's/ bug. Nevertheless, all you have to do to fix it us update portage to the current stable version, which supports EAPI5. Can you switch to another profile temporarily and get portage updated?
Re: [gentoo-user] Updating our live servers. I'm scared!
As mentioned earlier a temporary change of profile got me on my way eselect profile set 0 env-update eselect profile set 7 Moving forward... Thanks guys. On 3/28/13, Nick Khamis sym...@gmail.com wrote: But we never changed our profile? Always running hardened server. N. On 3/28/13, Nick Khamis sym...@gmail.com wrote: I switched to the default profile from hardened: eselect profile list Available profile symlink targets: [1] default/linux/x86/13.0 * env-update !!! Unable to parse profile: '/etc/portage/make.profile' !!! ParseError: Profile contains unsupported EAPI '5': '/usr/portage/profiles/default/linux/x86/13.0/eapi' Regenerating /etc/ld.so.cache... And still can't update portage. N. On 3/28/13, Michael Orlitzky mich...@orlitzky.com wrote: On 03/28/2013 01:43 PM, Nick Khamis wrote: First hickup emerge -puDN1 world !!! Unable to parse profile: '/etc/portage/make.profile' !!! ParseError: Profile contains unsupported EAPI '5': '/usr/portage/profiles/eapi-5-files/eapi' !!! Your current profile is invalid. If you have just changed your profile !!! configuration, you should revert back to the previous configuration. !!! Allowed actions are limited to --help, --info, --search, --sync, and We were always running hardened. Never changed the profile. Hmm.. this is probably /someone's/ bug. Nevertheless, all you have to do to fix it us update portage to the current stable version, which supports EAPI5. Can you switch to another profile temporarily and get portage updated?
Re: [gentoo-user] Updating our live servers. I'm scared!
Yeah these guys seem to think that our servers MUST run on the hardened profile... On 3/28/13, Dale rdalek1...@gmail.com wrote: Nick Khamis wrote: Hahahah udev hell!! I did go through that updating from 2.6 to 3.4. That was quite an experience But for kernel 3.* has udev not been phased out in our gentoo boxes? Will have to double check when I get back behind a console. N. Just a thought. Have you thought about switching to eudev? That would solve some udev issues. Since you are running a hardened profile and servers, may not be a option tho. Dale :-) :-) -- I am only responsible for what I said ... Not for what you understood or how you interpreted my words!
Re: [gentoo-user] OT: Arm Cluster board
Someone watched some news regarding HP moving towards ARM ;) http://www.mercurynews.com/business/ci_19240331 Nick. On Wed, Nov 2, 2011 at 4:07 PM, James wirel...@tampabay.rr.com wrote: So Sorry, I just think that in a few years, Gentoo will be more about ARM( 64 or 128 bit) than Intel... Check out the cluster on a board in the link below! (and you can run it from a solar panel + battery). Low power is King. 72 quad-core ARM servers takes up just one rack unit equivalent of space. http://www.eetimes.com/electronics-news/4230267/Calxeda-could-create-a-32-bit-microserver-market?cid=NL_EETimesDaily enjoy, James
Re: [gentoo-user] Anyone can afford information about build kernel?
cd /usr/src/linux make menuconfig select the list of modules/drivers you need for your box make modules_install cp arch/i386/boot/bzImage /boot/kernel-2.6.3.whatever you want to call it vi /boot/grub/grub.conf nano if you have not used vi before part of grub.conf title Gentoo Linux 2.6.36-r1 root (hd0,0) kernel /boot/kernel-2.6.36-native-r3 root=/dev/sda3 reboot If this is a fresh install, make mistakes, break your environment, chroot into jail...This is the only cure for your condition. Nick. On Sat, Oct 8, 2011 at 8:55 PM, Lavender 448463...@qq.com wrote: It seems that no matter I build gentoo manually or with genkernel I can't have a fine-working kernel finally. Obviously I must solve it by myself , so I determined to build entire kernel all manually , it requests a lot of linux knowlege . All for that, I hope someone could tell me where to get this information , I haven't found them on gentoo.org , so please lead me to the correct direction, thank you for you all !
[gentoo-user] command not found xmlinclude
Hello Everyone, I have a problem compiling Heartbeat, the error is: glib-2.0.so ../replace/.libs/libreplace.a -lbz2 -lz -lc -luuid -lrt /usr/lib/libltdl.so -ldl creating cl_respawn gmake[1]: Leaving directory `/usr/local/src/Heartbeat-3-0-STABLE-3.0.4/tools' Making all in doc gmake[1]: Entering directory `/usr/local/src/Heartbeat-3-0-STABLE-3.0.4/doc' \ --xinclude \ http://docbook.sourceforge.net/release/xsl/current/manpages/docbook.xsl heartbeat.xml gmake[1]: --xinclude: Command not found gmake[1]: *** [heartbeat.8] Error 127 gmake[1]: Leaving directory `/usr/local/src/Heartbeat-3-0-STABLE-3.0.4/doc' What provides xmlinclude? Thanks in Advance, Nick.
Re: [gentoo-user] Gentoo and Ultramonkey
Hey Mike, Thanks a lot sir... Much appreciated. Regards, Ninus.
Re: [gentoo-user] Ultramonkey 3 + Gentoo a Match Made in Hell?
Hey Guys, Thank you for your posts, I will keep working on Gentoo + UltraMonkey 3. I use it on Debian it is very useful. Will keep those of you whom are interested posted. Regards, Ninus.
[gentoo-user] Gentoo and Ultramonkey
Hello Everyone I am new to gentoo, usually I use Debian. I have a fresh install x86 2.6.30 kernel and I was trying to get Ultramonkey going on the box. I looking for the equivilant to the following deb packages for Gentoo please * libdbi-perl * libdbd-mysql-perl * libmysqlclient14-dev If you feel that there is anything else I need to know about getting Ultramonkey working on Gentoo please let me know. Thanks In Advanced, Ninus
Re: [gentoo-user] Gentoo and Ultramonkey
Hello Gentlemen, Thank you for your responses, I do apologize for the inconvenience. So all I have to do is modify /etc/make.conf by adding mysql and emerge libdbi. I do not need to install mysql server, this machine only needs mysqlclient. Thanks again for your help. Nick On Sun, Sep 27, 2009 at 11:33 PM, Volker Armin Hemmann volkerar...@googlemail.com wrote: On Montag 28 September 2009, Nick Khamis wrote: Hello Everyone I am new to gentoo, usually I use Debian. I have a fresh install x86 2.6.30 kernel and I was trying to get Ultramonkey going on the box. I looking for the equivilant to the following deb packages for Gentoo please * libdbi-perl * libdbd-mysql-perl * libmysqlclient14-dev If you feel that there is anything else I need to know about getting Ultramonkey working on Gentoo please let me know. Thanks In Advanced, Ninus emerge -s lbdbi * dev-db/libdbi Latest version available: 0.8.3 Latest version installed: [ Not Installed ] Size of files: 1,035 kB Homepage: http://libdbi.sourceforge.net/ Description: libdbi implements a database-independent abstraction layer in C, similar to the DBI/DBD layer in Perl. License: LGPL-2.1 emerge -pv libdbi [ebuild N] dev-python/egenix-mx-base-3.1.2 7,976 kB [ebuild N] dev-db/postgresql-server-8.4.1 USE=nls perl python xml -doc (-selinux) -tcl -uuid LINGUAS=de -af -cs -es -fa -fr -hr -hu -it -ko -nb -pl -pt_BR -ro -ru -sk -sl -sv -tr -zh_CN -zh_TW 0 kB [ebuild N] virtual/postgresql-server-8.4 0 kB [ebuild N] dev-db/libdbi-0.8.3 USE=-doc 1,036 kB [ebuild N] dev-db/libdbi-drivers-0.8.3 USE=postgres sqlite sqlite3 - bindist -doc (-firebird) -mysql -oci8 1,499 kB you see, mysql is an useflag for libdbi. So all you have to do is set the useflags and emerge libdbi. And for the future, please read the documentation. Almost everything is covered in it.
[gentoo-user] Ultramonkey 3 + Gentoo a Match Made in Hell?
Hello Everyone, Does anyone have any experience building Ultramonley 3 on Gentoo. I downloaded ultramonkey 3 from here http://www.ultramonkey.org/download/3/source/ultramonkey-3-1um.1.tar.gz;. It is in the source folder but Is see no source. I understand how this could be an ultramonkey question just trying my luck on the gentoo forum first. Regards, Ninus
Re: [gentoo-user] Ultramonkey 3 + Gentoo a Match Made in Hell?
So no Ultramonkey 3 on Gentoo? Anyone?
Re: [gentoo-user] Re: Where are the following LVS kernel modules
How I recompile the kernel is select the module that I need M IP virtual server support - [*] TCP load balancing - [*] UDP load balancing then do a make followed by a make modules_install. ip_vs is in my list of modules (the only ip_vs*) and does not return an error when I modprobe it but these are not there: #lvs ip_vs ip_vs_rr ip_vs_wrr ip_vs_lc ip_vs_wlc ip_vs_lblc ip_vs_lblcr ip_vs_dh ip_vs_sh ip_vs_sed ip_vs_nq ip_vs_ftp I am using kernel 2.6.30r5 Thanks for you Help, Ninus.
[gentoo-user] Gentoo LVS
Hello everyone I am having problems with using LVS in Gentoo, I needed the following modules built into the kernel: ip_vs ip_vs_rr ip_vs_wrr ip_vs_lc ip_vs_wlc ip_vs_lblc ip_vs_lblcr ip_vs_dh ip_vs_sh ip_vs_sed ip_vs_nq ip_vs_ftp How I recompile the kernel is select the module that I need M IP virtual server support - [*] TCP load balancing - [*] UDP load balancing then do a make followed by a make modules_install. ip_vs is in my list of modules (the only ip_vs*) and does not return an error when I modprobe it but these are not there: #lvs ip_vs ip_vs_rr ip_vs_wrr ip_vs_lc ip_vs_wlc ip_vs_lblc ip_vs_lblcr ip_vs_dh ip_vs_sh ip_vs_sed ip_vs_nq ip_vs_ftp I am using kernel 2.6.30r5 Thanks for you Help, Ninus.
Re: [gentoo-user] Re: Where are the following LVS kernel modules
Hey Albert, When issuing a find /lib/modules/`uname -r` -name ip_vs*.ko I see only /lib/modules/2.6.30-gentoo-r6/kernel/net/netfilter/ip_vs.ko I do not see the rest #lvs ip_vs ip_vs_rr ip_vs_wrr ip_vs_lc ip_vs_wlc ip_vs_lblc ip_vs_lblcr ip_vs_dh ip_vs_sh ip_vs_sed ip_vs_nq ip_vs_ftp Thanks in Advanced, Ninus
Re: [gentoo-user] Re: Where are the following LVS kernel modules
Hey Walt, I build the kernel via: make menuconfig make make modules_install cp arch/... /boot/... I did issue a depmod and still just: /lib/modules/2.6.30-gentoo-r6/kernel/net/netfilter/ip_vs.ko when issuing a find /lib/modules/`uname -r` -name ip_vs*.ko Thanks in Adnvanced, Ninus
Re: [gentoo-user] Gentoo LVS
Hey Xavier, I do appologize for the two messages, it will not happen again. When issuing a find /lib/modules/`uname -r` -name ip_vs*.ko I see only /lib/modules/2.6.30-gentoo- r6/kernel/net/netfilter/ip_vs.ko I do not see the rest #lvs ip_vs ip_vs_rr ip_vs_wrr ip_vs_lc ip_vs_wlc ip_vs_lblc ip_vs_lblcr ip_vs_dh ip_vs_sh ip_vs_sed ip_vs_nq ip_vs_ftp I build the kernel via: make menuconfig make make modules_install cp arch/... /boot/... I did issue a depmod and still just: /lib/modules/2.6.30-gentoo-r6/kernel/net/netfilter/ip_vs.ko when issuing a find /lib/modules/`uname -r` -name ip_vs*.ko Thanks in Advanced, Ninus
[gentoo-user] Where are the following LVS kernel modules
I have included in my kenrel configuration the following: M IP virtual server support - [*] TCP load balancing - [*] UDP load balancing I have added to /etc/modules.autoload.d/kernel-2.6 the follwing #lvs ip_vs ip_vs_rr ip_vs_wrr ip_vs_lc ip_vs_wlc ip_vs_lblc ip_vs_lblcr ip_vs_dh ip_vs_sh ip_vs_sed ip_vs_nq ip_vs_ftp When I modprobe any of them I recieve module not found. What am I doing wrong. Your help is greatly apprecated, Thanks In Advanced, Ninus.
[gentoo-user] Creating virtual server using VirtualBox
Hello Everyone, I am using my laptop to test virtualization before setting it up on the servers. I am familiar with vmware but since I am unable to get vmwre-server going on kernel 2.6.3r5, I am using virtualbox. My question is in terms of the HardDisk setting. The host has SATA hdd and I do not what the virtual machine to use IDE hda. I tried: Enable Additional Controller - SCSI BusLogic Attacments - SCSI Port 0 lb1.vdi (Normal, 8.00GB) When trying to install the virtual machine I am seeing some partition creation issues etc... Your Help Is Greatly Appreciated. Greags, Ninus
Re: [gentoo-user] Re: Gentoo Virtualization
1) Security is for exploiting 2) If they are well versed on the drivers that virtualization technologies use, then yes they can tell they are on a virtual machine and not on dedicated server. 3) You can bridge network connection physically on the network minus the nic of course 4) Virtualization servers VMware, VirtualBox offer clients to connect to the servers, ssh, sftp is also possible as is done with regular servers. Regards, Ninus
Re: [gentoo-user] error compiling virtual box
Hey Everyone, This is the error I am experiening when trying to build vmware-server: /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c: In function 'LinuxDriver_Open': /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:579: error: 'struct task_struct' has no member named 'euid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c: In function '__LinuxDriver_Ioctl': /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1530: error: 'struct task_struct' has no member named 'suid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1531: error: 'struct task_struct' has no member named 'cap_permitted' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1796: error: 'struct task_struct' has no member named 'euid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1796: error: 'struct task_struct' has no member named 'uid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1797: error: 'struct task_struct' has no member named 'fsuid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1797: error: 'struct task_struct' has no member named 'uid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1798: error: 'struct task_struct' has no member named 'egid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1798: error: 'struct task_struct' has no member named 'gid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1799: error: 'struct task_struct' has no member named 'fsgid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1799: error: 'struct task_struct' has no member named 'gid' make[3]: *** [/var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.o] Error 1 make[2]: *** [_module_/var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only] Error 2 make[1]: *** [sub-make] Error 2 make[1]: Leaving directory `/usr/src/linux-2.6.30-gentoo-r5' make: *** [vmmon.ko] Error 2 [31;01m*[0m [31;01m*[0m ERROR: app-emulation/vmware-modules-1.0.0.15-r2 failed. [31;01m*[0m Call stack: [31;01m*[0m ebuild.sh, line 49: Called src_compile [31;01m*[0m environment, line 3723: Called linux-mod_src_compile [31;01m*[0m environment, line 2841: Called die [31;01m*[0m The specific snippet of code: [31;01m*[0m eval emake HOSTCC=\$(tc-getBUILD_CC)\ CROSS_COMPILE=${CHOST}- LDFLAGS=\$(get_abi_LDFLAGS)\ ${BUILD_FIXES} ${BUILD_PARAMS} ${BUILD_TARGETS} || die Unable to emake HOSTCC=$(tc-getBUILD_CC) CROSS_COMPILE=${CHOST}- LDFLAGS=$(get_abi_LDFLAGS) ${BUILD_FIXES} ${BUILD_PARAMS} ${BUILD_TARGETS}; [31;01m*[0m The die message: [31;01m*[0m Unable to emake HOSTCC=i686-pc-linux-gnu-gcc CROSS_COMPILE=i686-pc-linux-gnu- LDFLAGS= auto-build VMWARE_VER=VME_S1B1 KERNEL_DIR=/usr/src/linux KBUILD_OUTPUT=/lib/modules/2.6.30-gentoo-r5/build [31;01m*[0m [31;01m*[0m If you need support, post the topmost build error, and the call stack if relevant. [31;01m*[0m A complete build log is located at '/var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/temp/build.log'. [31;01m*[0m The ebuild environment file is located at '/var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/temp/environment'. [31;01m*[0m Your Help Is Greatly Apprecited, Reagrds, Ninus
[gentoo-user] vmware-server error log
Hey Everyone, I have been at this for a week now, going from amd64 to x86. I still want to use 2.6.30-r5. When trying to build vmware-server this is the error I am presented with: /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c: In function 'LinuxDriver_Open': /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:579: error: 'struct task_struct' has no member named 'euid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c: In function '__LinuxDriver_Ioctl': /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1530: error: 'struct task_struct' has no member named 'suid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1531: error: 'struct task_struct' has no member named 'cap_permitted' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1796: error: 'struct task_struct' has no member named 'euid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1796: error: 'struct task_struct' has no member named 'uid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1797: error: 'struct task_struct' has no member named 'fsuid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1797: error: 'struct task_struct' has no member named 'uid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1798: error: 'struct task_struct' has no member named 'egid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1798: error: 'struct task_struct' has no member named 'gid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1799: error: 'struct task_struct' has no member named 'fsgid' /var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.c:1799: error: 'struct task_struct' has no member named 'gid' make[3]: *** [/var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only/linux/driver.o] Error 1 make[2]: *** [_module_/var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/work/vmmon-only] Error 2 make[1]: *** [sub-make] Error 2 make[1]: Leaving directory `/usr/src/linux-2.6.30-gentoo-r5' make: *** [vmmon.ko] Error 2 [31;01m*[0m [31;01m*[0m ERROR: app-emulation/vmware-modules-1.0.0.15-r2 failed. [31;01m*[0m Call stack: [31;01m*[0m ebuild.sh, line 49: Called src_compile [31;01m*[0m environment, line 3723: Called linux-mod_src_compile [31;01m*[0m environment, line 2841: Called die [31;01m*[0m The specific snippet of code: [31;01m*[0m eval emake HOSTCC=\$(tc-getBUILD_CC)\ CROSS_COMPILE=${CHOST}- LDFLAGS=\$(get_abi_LDFLAGS)\ ${BUILD_FIXES} ${BUILD_PARAMS} ${BUILD_TARGETS} || die Unable to emake HOSTCC=$(tc-getBUILD_CC) CROSS_COMPILE=${CHOST}- LDFLAGS=$(get_abi_LDFLAGS) ${BUILD_FIXES} ${BUILD_PARAMS} ${BUILD_TARGETS}; [31;01m*[0m The die message: [31;01m*[0m Unable to emake HOSTCC=i686-pc-linux-gnu-gcc CROSS_COMPILE=i686-pc-linux-gnu- LDFLAGS= auto-build VMWARE_VER=VME_S1B1 KERNEL_DIR=/usr/src/linux KBUILD_OUTPUT=/lib/modules/2.6.30-gentoo-r5/build [31;01m*[0m [31;01m*[0m If you need support, post the topmost build error, and the call stack if relevant. [31;01m*[0m A complete build log is located at '/var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/temp/build.log'. [31;01m*[0m The ebuild environment file is located at '/var/tmp/portage/app-emulation/vmware-modules-1.0.0.15-r2/temp/environment'. [31;01m*[0m Your Help Is Greatly Apprecited, Reagrds, Ninus
Re: [gentoo-user] vmware-server error log
Hey William, Thanks again for your help I have attached the complete build log file. I know with the layman overlay vmware-server 2 is easily done but I woule rather vmware-server 1x. I know there are a few pathces for this I just want to make sure after shcking with you guys what I should do. Thanks In Advanced! Ninus vmware-modules-1.0.0.15-r2.ebuild Description: Binary data
Re: [gentoo-user] vmware-server error log
Now for the real build log (oops) vmware-modules-1.0.0.15-r2.ebuild Description: Binary data
Re: [gentoo-user] vmware-server error log
Arghhh to early in the morining here in Toronto. This is the build.log build.log Description: Binary data
Re: [gentoo-user] Gentoo Virtualization
Hey Guys, I really apperciate your help but as it sits I am unable to compile vmware-server 1.x or XEN. I have attached the build log. Basically I know I can larman the new version of vmware-server2 but I heard it is a clunker. I really need to get virtual servers up on the server before I get fired ;) :) lol. Thanks in Advanced, Ninus build.log Description: Binary data
[gentoo-user] 2.6.30 and vmware-server build.log
Hello Everyone, I have been at this for a week, and I am stumped. Trying to emerge vmware-server 1.0.9 using x86 environment and 2.6.30 kernel. I gave up on amd64 earlier this week please help. Attached is the build.log Thanks In Advanced! Ninus. build.log Description: Binary data