Re: [Vserver] 64bit centos templates?
On Wednesday 27 September 2006 11:06, Herbert Poetzl wrote: On Wed, Sep 27, 2006 at 08:02:31AM -0400, Chuck wrote: On Wednesday 27 September 2006 07:33, ehab heikal wrote: this is an opteron system so i would really like to find an image to work best on it. what keeps you from installing it from network? there is nothing within the running basic centos 64 guest that i picked up that is capable of going out and getting packages and maintaining them.. i was hoping to find a ready to roll basic template to save time as well.. i could i suppose locate the rpms for yum and download them on the host into the centos64 directory structure then go in and run the install... just seems to me when someone says a default basic system is a ready template it would include an editor and updater like yum or update... maybe i ask too much :) it had little else other than that needed to start the os which is ok as long as there was an updater of some kind... is there no 64bit centos repository available? i have only found one template available in x86_64 which i think is redhat's version of amd64. all others offered around are 32bit. i exhausted 4 google pages looking :) guess ill have to have a look at the centos website and see if they have pkg downloads available that i can get to to get the updater pkg so i can get things directly. although they plan to support gentoo, this package we need to run doesn't support it at present... and i dont have the time to wait 3 months or so for their projected release date. i need to get this server in production with all sites moved over from a failing discreet host in another 10 days or so to allow debugging time. (15 day deadline from today). best, Herbert About the 64 bit issue and performance. When running on AMD always go for 64bit if you can. When running on Intel, older 64bit implementations are sometimes slower in 64bit than in 32bit. That also holds to newer intel processors including core 2 duo but to a lesser extent where in some benchmarkes it was faster and in some it was slower. MySQL on 64bit AMD is great. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Chuck Sent: Wednesday, September 27, 2006 12:53 PM To: vserver@list.linux-vserver.org Subject: [Vserver] 64bit centos templates? so far i found only one centos4 64bit vserver image that was labelled 'default'. it turned out to not even have a text editor other than ed and no way to bring packages into it. no yum or update. does anyone know of a decent image available? ultra-basic is fine as long as it has nano/pico and yum already installed. the 32bit runs fine, but i would prefer 64bit guests (at least i *think* i would). i have a good full featured gentoo one, but a package we need to run for some things requires a redhat-style os. we would have to re-license it to use other than centos. -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] confusion on kernel settings
On Sunday 24 September 2006 05:40, Daniel Hokka Zakrisson wrote: ok thanks guys... since its relatively recent utils and kernel code ill try getting rid of legacy and see what happens :) Björn Steinbrink wrote: On 2006.09.23 17:24:39 -0400, Chuck wrote: the gentoo vserver how-to says to set up the kernel this way: [ ] Enable Legacy Kernel API [*] Disable Legacy Networking Kernel API Using util-vserver 0.30.210 or later, these setting are fine, earlier tools need the legacy networking, ancient tools need both legacy interfaces. Except if you want guests to have the ability to reboot themselves (with reboot -f), in which case you'll need to keep the legacy kernel API enabled until 0.30.211 is released. -- Daniel Hokka Zakrisson GPG id: 06723412 GPG fingerprint: A455 4DF3 990A 431F FECA 7947 6136 DDA2 0672 3412 ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] huge oops
i am installing on an opteron system using gentoo and portage. when emerging util-vserver it errored with the following cc1: error: unrecognized command line option -fno-stack-protector-all make: *** [bin-x86_64/start.o] Error 1 make: *** Waiting for unfinished jobs cc1: error: unrecognized command line option -fno-stack-protector-all make: *** [bin-x86_64/dyn_start.o] Error 1 make: *** [bin-x86_64/dyn_stop.o] Error 1 make: *** wait: No child processes. Stop. !!! ERROR: dev-libs/dietlibc-0.28 failed. Call stack: ebuild.sh, line 1546: Called dyn_compile ebuild.sh, line 937: Called src_compile dietlibc-0.28.ebuild, line 42: Called die it is attempting to install util-vserver-0.30.210.tar.bz2 vserver-sources kernel was installed which is 2.6.15-vs2.0.1-gentoo-r5 any ideas? hints? -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] re oops
got it to compile by using ~amd64 installing the r18 version -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] confusion on kernel settings
the gentoo vserver how-to says to set up the kernel this way: [ ] Enable Legacy Kernel API [*] Disable Legacy Networking Kernel API however, and i don't know why this is unless i was told to set it this way last year, the year old machine we have running has the kernel set this way: [*] Enable Legacy Kernel API [ ] Show a Legacy Version ID [ ] Disable Legacy Networking Kernel API this yr old system is running a dev version 2.6.13.3-vs2.1.0-rc4 which is correct? the versions on the new machine are kernel: v2.6.15-vs2.0.1-gentoo-r5 using tools version util-vserver-0.30.210-r18 this is on an opteron system. -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] using old 64 ip patch - question
because i see no newer one available. using the gentoo vserver sources version 2.6.15-vs2.0.1-gentoo-r5 which is the latest gentoo vserver production kernel in /include/linux/vserver/legacy.h does not contain either define NB_S_CONTEXT or no NB_IPV4ROOT as shown below #define NB_S_CONTEXT 16 -#define NB_IPV4ROOT16 +#define NB_IPV4ROOT64 however network.h does contain NB_IPV4ROOT -#define NB_IPV4ROOT16 +#define NB_IPV4ROOT64 are there any other places that need changing in the kernel besides network.h? -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] mixed gcc versions
will a 32 bit guest compiled under gcc 3.4.6 run properly under a 64 bit host compiled using gcc 4.1.1? not positive of what is compatible and what is not. unfortunately i have not found a centos guest template done under 4.1.1 have not looked yet at the centos64 to see if that is under 4.1.1 -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] mixed gcc versions
On Tuesday 19 September 2006 08:50, Michael S. Zick wrote: On Tue September 19 2006 07:16, Chuck wrote: will a 32 bit guest compiled under gcc 3.4.6 run properly under a 64 bit host compiled using gcc 4.1.1? not positive of what is compatible and what is not. unfortunately i have not found a centos guest template done under 4.1.1 have not looked yet at the centos64 to see if that is under 4.1.1 Only the kernel is common between host and guest. Which means host and guest software needs to be built against the same (or compatible) kernel headers. Plus the consideration that your question implies - the kernel when compiled for 64-bit must still support 32-bit code. Not all brands of machine will support mixed size code. For instance, Linux on pa-risc does not have a 64-bit userland, regardless of the kernel being compiled for either 32-bit or 64-bit. it would be a gentoo 64 bit host with 32bit emu enabled and a 32 bit or even possibly the 64bit centos guest.. all gentoo guests will be 64bit gcc 4.1.1 i am just concerned about the centos since thats binary distribution. Mike ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] mixed gcc versions
On Tuesday 19 September 2006 09:19, Michael S. Zick wrote: On Tue September 19 2006 08:00, Chuck wrote: On Tuesday 19 September 2006 08:50, Michael S. Zick wrote: On Tue September 19 2006 07:16, Chuck wrote: will a 32 bit guest compiled under gcc 3.4.6 run properly under a 64 bit host compiled using gcc 4.1.1? not positive of what is compatible and what is not. unfortunately i have not found a centos guest template done under 4.1.1 have not looked yet at the centos64 to see if that is under 4.1.1 Only the kernel is common between host and guest. Which means host and guest software needs to be built against the same (or compatible) kernel headers. Plus the consideration that your question implies - the kernel when compiled for 64-bit must still support 32-bit code. Not all brands of machine will support mixed size code. For instance, Linux on pa-risc does not have a 64-bit userland, regardless of the kernel being compiled for either 32-bit or 64-bit. it would be a gentoo 64 bit host with 32bit emu enabled If 32-bit emulation is enabled, it should be just fine. cool You still haven't mentioned the processor type, but if 32-bit code will run on the host, then 32-bit code will run in the guest. sorry... dual core opterons and a 32 bit or even possibly the 64bit centos guest.. all gentoo guests will be 64bit gcc 4.1.1 i am just concerned about the centos since thats binary distribution. You probably should not share the same copy of glibc host guest. It is always a good idea for glibc to be built with the same compiler as the rest of userland code. each guest has its own everything except kernel and modules... my boss doesnt believe in sharing things to save space. Running a different glibc in a vserver is not a problem, vservers are good at doing things like that. ahh ok then.. cause yeah.. each guest will be compiled within itself while running and not compiled by the host or some other combination. however although i think i could put 4.1.1 on centos via yum then update everything forcing a recompile of world, not knowing anything about centos i have no clue if anything would break so i am forced to accept whatever parameters the guest template is made with. Mike ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] ip count
On Friday 15 September 2006 12:21, Bruno wrote: great. thanks.. makes life lots more simple. On Friday 15 September 2006 01:45, Chuck wrote: On Thursday 14 September 2006 16:07, Herbert Poetzl wrote: ok... one quick question... if the host has this patch, must the guest have it if the guest will not be using more than 1 ip or must all guests match the kernel in this patch regardless? i guess a better way to ask is... with the host patched, can i patch only the guests needing more than 16 ip addys or must i patch every guest? planning whether i would have to provided the template patched or not. This patch just defines the maximum number of IP addresses that can be assigned to a guest. As the kernel is host-side and guest are pure userspace, guest are not affected at all be the maximum number of IPs it can have. (it's not the guest which selects its IPs anyhow) The guest should be able to run correctly in each case. Bruno On Thu, Sep 14, 2006 at 12:44:30PM -0400, Chuck wrote: On Thursday 14 September 2006 12:18, Bruno wrote: oh .. to complete the explanation on our systems a guest would never address more than a single /24 but with the limitation that has to be divided among a gazillion guests instead.. last time I checked, a /24 (or class C network) had 256 addresses (with 254 usable for ips) not a gazillion :) this aside, we will add it soon, but you can (for now) just apply one of the 64address patches, to kernel and tools, as I doubt it will cause much overhead ... HTH, Herbert On Thursday 14 September 2006 16:27, Chuck wrote: someone mentioned the possibility of getting a setup on current vserver code that would take a /24 network and not have much if any slowdown.. has this ever been realized? I did some coding in that direction, but patch is not finished yet. Hopefully I will get some more time after next week do continue coding on it. My direction is assigning address elements to guests, either single addresses or groups of addresses as range or mask. When there is more than a single such item, on additional is created that itentifies the complete range contaning the addresses of a guest. Thus two guests with 20 IPs spread over two different /24 networks wil be seen as a single range for most check wether IP is part of the guest's address-space. Only on match of that outer boundary checking of the idividual addresses or the guest is done. Mostly missing is the handling of broadcast... Bruno ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] ip count
someone mentioned the possibility of getting a setup on current vserver code that would take a /24 network and not have much if any slowdown.. has this ever been realized? -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] ip count
On Thursday 14 September 2006 16:07, Herbert Poetzl wrote: On Thu, Sep 14, 2006 at 12:44:30PM -0400, Chuck wrote: On Thursday 14 September 2006 12:18, Bruno wrote: oh .. to complete the explanation on our systems a guest would never address more than a single /24 but with the limitation that has to be divided among a gazillion guests instead.. last time I checked, a /24 (or class C network) had 256 addresses (with 254 usable for ips) not a gazillion :) hehe its that many guests seemingly when you have to pay a license fee for each virtual server that we run a software package on, and more than one is a gazillion in my book :) this aside, we will add it soon, but you can (for now) just apply one of the 64address patches, to kernel and tools, as I doubt it will cause much overhead ... hmm 64 addresses per server... that's do-able... ok so i asume this patch is searchable on the vserver website... ok thanks! HTH, Herbert On Thursday 14 September 2006 16:27, Chuck wrote: someone mentioned the possibility of getting a setup on current vserver code that would take a /24 network and not have much if any slowdown.. has this ever been realized? I did some coding in that direction, but patch is not finished yet. Hopefully I will get some more time after next week do continue coding on it. My direction is assigning address elements to guests, either single addresses or groups of addresses as range or mask. When there is more than a single such item, on additional is created that itentifies the complete range contaning the addresses of a guest. Thus two guests with 20 IPs spread over two different /24 networks wil be seen as a single range for most check wether IP is part of the guest's address-space. Only on match of that outer boundary checking of the idividual addresses or the guest is done. Mostly missing is the handling of broadcast... Bruno ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] ip count
On Thursday 14 September 2006 16:07, Herbert Poetzl wrote: the patches look simple enough... i assume if i try manually patching more recent versions i should have no trouble finding those code snips. Sep 14, 2006 at 12:44:30PM -0400, Chuck wrote: On Thursday 14 September 2006 12:18, Bruno wrote: oh .. to complete the explanation on our systems a guest would never address more than a single /24 but with the limitation that has to be divided among a gazillion guests instead.. last time I checked, a /24 (or class C network) had 256 addresses (with 254 usable for ips) not a gazillion :) this aside, we will add it soon, but you can (for now) just apply one of the 64address patches, to kernel and tools, as I doubt it will cause much overhead ... HTH, Herbert On Thursday 14 September 2006 16:27, Chuck wrote: someone mentioned the possibility of getting a setup on current vserver code that would take a /24 network and not have much if any slowdown.. has this ever been realized? I did some coding in that direction, but patch is not finished yet. Hopefully I will get some more time after next week do continue coding on it. My direction is assigning address elements to guests, either single addresses or groups of addresses as range or mask. When there is more than a single such item, on additional is created that itentifies the complete range contaning the addresses of a guest. Thus two guests with 20 IPs spread over two different /24 networks wil be seen as a single range for most check wether IP is part of the guest's address-space. Only on match of that outer boundary checking of the idividual addresses or the guest is done. Mostly missing is the handling of broadcast... Bruno ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] ip count
On Thursday 14 September 2006 16:07, Herbert Poetzl wrote: ok... one quick question... if the host has this patch, must the guest have it if the guest will not be using more than 1 ip or must all guests match the kernel in this patch regardless? i guess a better way to ask is... with the host patched, can i patch only the guests needing more than 16 ip addys or must i patch every guest? planning whether i would have to provided the template patched or not. On Thu, Sep 14, 2006 at 12:44:30PM -0400, Chuck wrote: On Thursday 14 September 2006 12:18, Bruno wrote: oh .. to complete the explanation on our systems a guest would never address more than a single /24 but with the limitation that has to be divided among a gazillion guests instead.. last time I checked, a /24 (or class C network) had 256 addresses (with 254 usable for ips) not a gazillion :) this aside, we will add it soon, but you can (for now) just apply one of the 64address patches, to kernel and tools, as I doubt it will cause much overhead ... HTH, Herbert On Thursday 14 September 2006 16:27, Chuck wrote: someone mentioned the possibility of getting a setup on current vserver code that would take a /24 network and not have much if any slowdown.. has this ever been realized? I did some coding in that direction, but patch is not finished yet. Hopefully I will get some more time after next week do continue coding on it. My direction is assigning address elements to guests, either single addresses or groups of addresses as range or mask. When there is more than a single such item, on additional is created that itentifies the complete range contaning the addresses of a guest. Thus two guests with 20 IPs spread over two different /24 networks wil be seen as a single range for most check wether IP is part of the guest's address-space. Only on match of that outer boundary checking of the idividual addresses or the guest is done. Mostly missing is the handling of broadcast... Bruno ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] gcc version mixing?
does anyone know if it would cause problems if my host is compiled with gcc 4.1 using nptl while some guests are precompiled binaries using gcc 3.4.6 with the old style threading and others compiled using gcc 4.1 with nptl? i do not have the luxury of making them all 4.1.. so its either hopefully mixing is ok or do all guests in 3.4.6 old threading or i have to do the entire system including host in 3.4.6 old threading. i know basically nothing about the new vs old systems for any kind of compatibility. -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] reiserfs user quotas
On Wednesday 06 September 2006 20:31, Georges Toth wrote: looks good. just have to figure how to modify it to fit my needs... i mount all vserver guest partitions on boot even if they do not start.. in our systems vserver guest mounts are independent of running them. will this info presented at this site cause any damage to existing data in an existing guest if i wished to add quotas to it now after it has been running without them? or should i prepare to archive it and see a wiped partition for reinstall after? On Thursday 07 September 2006 02:08, Chuck wrote: On Wednesday 06 September 2006 16:18, Herbert Poetzl wrote: On Wed, Sep 06, 2006 at 08:43:16AM -0400, Chuck wrote: we use reiserfs v3 in each guest. each guest is its own partition using lvm to solve guest server total quota is there a way to manage user disk quotas separately within each guest? yes, should work fine with the help of vroot (you need one device per guest) ok will look into this.. im not sure i was completely clear on our setup.. each vserver has its own partition so its controlled by that for the server itself.. You have to use vroot, as Herbert mentioned See this guide for in-detail instructions on how to use quotas in this situation: http://www.5dollarwhitebox.org/wiki/index.php/Howtos_Linux-Vserver_With_LVM_And_Quotas Hope that helps :-) -- regards, Georges Toth ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] gentoo update?
i remember reading a bit ago that version 2.1 has gone production.. when will that be integrated into gentoo's vserver-sources portage group? or should i just do the kernel manually... i have to set up a new host next week and wanted to use the latest and greatest stable sources. currently, what is available is vserver-sources-2.0.1-r5 -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] gentoo update?
On Monday 11 September 2006 13:15, Benedikt Böhm wrote: ok cool. thanks... i have a question tho.. i am confused... we are currently using 2.6.13.3-vs2.1.0-rc4 on some of our machines from last december or so... other newer ones we installed 2.6.15-vs2.0.1-gentoo-r5. does this mean that the earlier ones using 2.1.0 have more fixes and options .. ie.. a 'higher version' than the 2.0.1? or has that particular 2.1 been 'grandfathered' into the 2.0.x ? On Monday 11 September 2006 19:03, Chuck wrote: i remember reading a bit ago that version 2.1 has gone production.. this has not happened yet, curent stable is 2.0.2, released on september 3rd when will that be integrated into gentoo's vserver-sources portage group? you can find all rc* kernels in our overlay at http://overlays.gentoo.org/proj/vps or should i just do the kernel manually... i have to set up a new host next week and wanted to use the latest and greatest stable sources. currently, what is available is vserver-sources-2.0.1-r5 vserver-sources-2.0.2 is in portage, still ~arch for the required minimum of 30 days until going stable HTH, Bene ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] gentoo update?
On Monday 11 September 2006 14:39, Benedikt Böhm wrote: On Monday 11 September 2006 19:23, Chuck wrote: On Monday 11 September 2006 13:15, Benedikt Böhm wrote: ok cool. thanks... i have a question tho.. i am confused... we are currently using 2.6.13.3-vs2.1.0-rc4 on some of our machines from last december or so... other newer ones we installed 2.6.15-vs2.0.1-gentoo-r5. does this mean that the earlier ones using 2.1.0 have more fixes and options .. ie.. a 'higher version' than the 2.0.1? or has that particular 2.1 been 'grandfathered' into the 2.0.x ? well, fixes go into both series, but new major features will only be added to 2.1 ok thanks. On Monday 11 September 2006 19:03, Chuck wrote: i remember reading a bit ago that version 2.1 has gone production.. this has not happened yet, curent stable is 2.0.2, released on september 3rd when will that be integrated into gentoo's vserver-sources portage group? you can find all rc* kernels in our overlay at http://overlays.gentoo.org/proj/vps or should i just do the kernel manually... i have to set up a new host next week and wanted to use the latest and greatest stable sources. currently, what is available is vserver-sources-2.0.1-r5 vserver-sources-2.0.2 is in portage, still ~arch for the required minimum of 30 days until going stable HTH, Bene ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] 64bit environment
I am getting ready do set up a new vserver host using Opterons.. however some of the guests will be pre-compiled 32bit such as CentOS.. if the host Gentoo is AMD64 will this cause problems? Should I just do x86 i686 all the way around and use CFLAGS to optimize for Opteron? It must be extremely stable. -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] reiserfs user quotas
we use reiserfs v3 in each guest. each guest is its own partition using lvm to solve guest server total quota is there a way to manage user disk quotas separately within each guest? if not is there a file system as good as reiserfs that will allow this? -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] reiserfs user quotas
On Wednesday 06 September 2006 16:18, Herbert Poetzl wrote: On Wed, Sep 06, 2006 at 08:43:16AM -0400, Chuck wrote: we use reiserfs v3 in each guest. each guest is its own partition using lvm to solve guest server total quota is there a way to manage user disk quotas separately within each guest? yes, should work fine with the help of vroot (you need one device per guest) ok will look into this.. im not sure i was completely clear on our setup.. each vserver has its own partition so its controlled by that for the server itself.. what i want is from within webmin when we assign a user admin and create a domain to be able to specify a quota of how much disk space that website/user-admin can have and to be able to notify if they go over or even go so far as to suspend operations on that particular domain... one vserver guest may handle 40+ websites each with their own quotas. and we want to be ble to select it within webmin/virtualmin rather than have yet another manual operation if its possible.. i have no clue what they are doing to specify quotas as i have literally no experience with them, but whatever they do must be standard so i would like if possible for the guest system to respond properly to their requests/checks/ i literally know as much about quotas as i do building cold fusion reactors :) ( in other words 0) if not is there a file system as good as reiserfs that will allow this? I guess that depends on who you ask, some folks believe that every filesystem is better than reiserfs, others believe that reiserfs is better than anything else .. the truth will be somewhere inbetween, I guess HTH, Herbert -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] centos4.3 guest under Gentoo host
On Tuesday 29 August 2006 04:36, Luc Dumaine wrote: Chuck wrote: I have it running however I see a few things which have me confused. I have never run or experienced centos before this. I got the template from http://lylix.net/vps+templates/func,fileinfo/id,14/ We also use centos 4.3 under gentoo, with a template we made. No problem like this here, only one init process and no /bin/bash /etc/rc.d/rc.sysinit What the initstyle on your vserver ? sysv here. maybe that is it... mine is plain also, after going into rc.sysinit and commenting out all fsck and clock functions the process list looks more like what i would expect with init[3] instead of the boot ones.. but the shutdown still times out. [EMAIL PROTECTED] /]# ps ax|grep init PID TTY STAT TIME COMMAND 1 ?S 0:00 init [3] 16693 pts/2S+ 0:00 grep init ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] centos4.3 guest under Gentoo host
changed it to sysv but still timeout on minilog.. what is that. i dont load any minilog. also, i entered the system and tried doing an init 0 to watch it shut down and saw this error and no shutdown. i suspect this is the culprit. [EMAIL PROTECTED] /]# init 0 init: timeout opening/writing control channel /dev/initctl any ideas what i should do to fix this? On Tuesday 29 August 2006 04:36, Luc Dumaine wrote: Chuck wrote: I have it running however I see a few things which have me confused. I have never run or experienced centos before this. I got the template from http://lylix.net/vps+templates/func,fileinfo/id,14/ We also use centos 4.3 under gentoo, with a template we made. No problem like this here, only one init process and no /bin/bash /etc/rc.d/rc.sysinit What the initstyle on your vserver ? sysv here. [EMAIL PROTECTED] /]# ps ax|grep init PID TTY STAT TIME COMMAND 1 ?S 0:00 init [3] 16693 pts/2S+ 0:00 grep init ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] centos4.3 guest under Gentoo host
On Tuesday 29 August 2006 11:28, Herbert Poetzl wrote: testme: Linux 2.6.13.3-vs2.1.0-rc4 i686/0.30.210/0.30.210 [Ea] (0) VCI: 0002:0001 273 03000136 --- [000]# succeeded. [001]# succeeded. [011]# succeeded. [031]# succeeded. [101]# succeeded. [102]# succeeded. [201]# succeeded. [202]# succeeded. vserver-info: Versions: Kernel: 2.6.13.3-vs2.1.0-rc4 VS-API: 0x00020001 util-vserver: 0.30.210; Apr 3 2006, 10:34:43 Features: CC: i686-pc-linux-gnu-gcc, i686-pc-linux-gnu-gcc (GCC) 3.3.6 (Gentoo 3.3.6, ssp-3.3.6-1.0, pie-8.7.8) CXX: i686-pc-linux-gnu-g++, i686-pc-linux-gnu-g++ (GCC) 3.3.6 (Gentoo 3.3.6, ssp-3.3.6-1.0, pie-8.7.8) CPPFLAGS: '' CFLAGS: '-march=pentium3 -O2 -funroll-loops -fprefetch-loop-arrays -pipe -std=c99 -Wall -pedantic -W' CXXFLAGS: '-march=pentium3 -O2 -funroll-loops -fprefetch-loop-arrays -pipe -ansi -Wall -pedantic -W -fmessage-length=0' build/host: i686-pc-linux-gnu/i686-pc-linux-gnu Use dietlibc: yes Build C++ programs: yes Build C99 programs: yes Available APIs: v13,net ext2fs Source: e2fsprogs syscall(2) invocation: alternative vserver(2) syscall#: 273/glibc Paths: prefix: /usr sysconf-Directory: /etc cfg-Directory: /etc/vservers initrd-Directory: /etc/init.d pkgstate-Directory: /var/run/vservers vserver-Rootdir: /vservers On Mon, Aug 28, 2006 at 10:19:43PM -0400, Chuck wrote: I have it running however I see a few things which have me confused. I have never run or experienced centos before this. I got the template from http://lylix.net/vps+templates/func,fileinfo/id,14/ output of 'testme.sh' and 'vserver-info - SYSINFO' please 1. when running the basic system i see this in the process list.. 2 boots [EMAIL PROTECTED] ssh]# ps ax PID TTY STAT TIME COMMAND 1 ?S 0:00 init boot 17957 ?Ss 0:00 init boot 17959 ?S 0:00 /bin/bash /etc/rc.d/rc.sysinit 17964 ?S 0:00 /sbin/initlog -r /etc/rc.d/rc.sysinit 18012 ?Ss 0:00 minilogd 18031 ?S 0:00 sulogin 18036 pts/4S+ 0:00 /usr/sbin/vcontext --silent --migrate --chroot --xid 39250 --uid root --vlogin -- /bin/bash -login 18048 pts/3Ss 0:00 /bin/bash -login 19977 pts/3R+ 0:00 ps ax we probably alreay know what it is, but we need to confirm, TIA, Herbert 2. when shutting down it times out with this message A timeout occured while waiting for the vserver to finish and it will be killed by sending a SIGKILL signal. The following process list might be useful for finding out the reason of this behavior: -- 16810 39250 www4 ?Ss 0:00 init boot 16811 39250 www4 ?Ss 0:00 \_ init boot 16813 39250 www4 ?S 0:00 \_ /bin/bash /etc/rc.d/rc.sysinit 16818 39250 www4 ?S 0:00 \_ /sbin/initlog -r /etc/rc.d/rc.sysinit 16881 39250 www4 ?S 0:00 \_ sulogin 16866 39250 www4 ?Ss 0:00 minilogd -- The init style is plain in the /etc/vservers configuration for this www4 server. I used the 'gentoo' instructions for installing templates using vserver-new and then double checked all the settings. I am not sure of the init style however. it starts without errors and appears to run properly. yum even updates properly. I am sure this is probably something very simple that I am not familiar with on this distro. -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] centos4.3 guest under Gentoo host
On Tuesday 29 August 2006 11:31, Daniel Hokka Zakrisson wrote: Chuck wrote: changed it to sysv but still timeout on minilog.. what is that. i dont load any minilog. also, i entered the system and tried doing an init 0 to watch it shut down and saw this error and no shutdown. i suspect this is the culprit. [EMAIL PROTECTED] /]# init 0 init: timeout opening/writing control channel /dev/initctl any ideas what i should do to fix this? That's expected, you no longer have an init inside the guest, so things like that won't work. The problem is that CentOS uses logging in their init.d scripts, even after syslogd has been shut down. This causes minilogd to be started when syslog(3) is invoked, and because guests generally lack the real killall script, it won't be stopped by the guest's shutdown procedure. To fix it, you could either comment out the relevant lines (/etc/init.d/functions, IIRC grep for initlog), or add a real killall script to the guest's 0 and 6 runlevels. will try the comment. i dont have access to a real killall for centos as all i have is a guest template. -- Daniel Hokka Zakrisson GPG id: 06723412 GPG fingerprint: A455 4DF3 990A 431F FECA 7947 6136 DDA2 0672 3412 ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] centos4.3 guest under Gentoo host
I have it running however I see a few things which have me confused. I have never run or experienced centos before this. I got the template from http://lylix.net/vps+templates/func,fileinfo/id,14/ 1. when running the basic system i see this in the process list.. 2 boots [EMAIL PROTECTED] ssh]# ps ax PID TTY STAT TIME COMMAND 1 ?S 0:00 init boot 17957 ?Ss 0:00 init boot 17959 ?S 0:00 /bin/bash /etc/rc.d/rc.sysinit 17964 ?S 0:00 /sbin/initlog -r /etc/rc.d/rc.sysinit 18012 ?Ss 0:00 minilogd 18031 ?S 0:00 sulogin 18036 pts/4S+ 0:00 /usr/sbin/vcontext --silent --migrate --chroot --xid 39250 --uid root --vlogin -- /bin/bash -login 18048 pts/3Ss 0:00 /bin/bash -login 19977 pts/3R+ 0:00 ps ax 2. when shutting down it times out with this message A timeout occured while waiting for the vserver to finish and it will be killed by sending a SIGKILL signal. The following process list might be useful for finding out the reason of this behavior: -- 16810 39250 www4 ?Ss 0:00 init boot 16811 39250 www4 ?Ss 0:00 \_ init boot 16813 39250 www4 ?S 0:00 \_ /bin/bash /etc/rc.d/rc.sysinit 16818 39250 www4 ?S 0:00 \_ /sbin/initlog -r /etc/rc.d/rc.sysinit 16881 39250 www4 ?S 0:00 \_ sulogin 16866 39250 www4 ?Ss 0:00 minilogd -- The init style is plain in the /etc/vservers configuration for this www4 server. I used the 'gentoo' instructions for installing templates using vserver-new and then double checked all the settings. I am not sure of the init style however. it starts without errors and appears to run properly. yum even updates properly. I am sure this is probably something very simple that I am not familiar with on this distro. -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] chkrootkit
On Sunday 30 April 2006 06:18 am, Nikolay Kichukov wrote: it appears it is a normal report. after discussion with the developers, i find that our mail server runs many hidden/private processes momentarily and since we have ssl/tls enabled this is a normal result on port 465. I hope that is normal and there is no need to worry. Nice one Chuck! ;-) Regards, -Nikolay Kichukov On Sat, 2006-04-29 at 23:23 -0400, Chuck wrote: i just ran chkrootkit on our vserver host and got this... i suspect this is a result of the vserver patches and is normal? or should i worry? Checking `bindshell'... INFECTED (PORTS: 465) Checking `lkm'... You have 1 process hidden for readdir command You have 1 process hidden for ps command chkproc: Warning: Possible LKM Trojan installed -- Когато сме щастливи, сме добри. Но когато сме добри, не винаги сме щастливи... -Оскар Уайлд ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] chkrootkit
On Sunday 30 April 2006 05:38 am, Daniel Kraft wrote: Chuck wrote: [...] Checking `lkm'... You have 1 process hidden for readdir command You have 1 process hidden for ps command chkproc: Warning: Possible LKM Trojan installed [...] See my message in this ML from 2006-04-03: ### Please keep in mind, that LKM seems to be a false positive many times with chkrootkit, because chkrootkit in this case seems to test only against processes that don't show up everywhere (afaik a diff with ps and /proc). Please rescan after a reboot or so and look at this: turns out it is a false positive. our mail server runs on 465 among others, and when it is being used, there are a number of short-lived private/hidden processes run. Manfred Sindhoff wrote 22 May 2004 in debian-user-german: The lkm check is known to produce false positives for NPTL kernels (2.6 kernels or 2.4 with NPTL patches). Common multithreaded programs which will show this behaviour are slapd, mozilla and apache2 if you use one of its threading MPMs. (http://www.wiggy.net/debian/developer-securing/) ### HTH Daniel -- Daniel Kraft Heilmeyersteige 131 D-89075 Ulm Tel: +49 700 572383-66 Fax: +49 700 572383-29 Certs: http://www.spotlite.de/web/kontakt.html [EMAIL PROTECTED] *** krafthost - professional business hosting http://www.krafthost.de/ *** -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] version confusion
we use gentoo exclusively in our servers, we are presently using 2.6.13.3-vs2.1.0-rc4 which is a vanilla kernel with a vserver development patch that fixed a severe smp bug. i noticed the production versions are all 2.0.x. since this unstable branch fix was from last november or so, i can assume it made it into produciton. if we simply install the latest production version, can i safely assume this fix will be included regardless of the fact it is 2.0.x? also, we will be moving to amd64 arch using multiple opteron dual core processors for all machines except one which will remain x86. is the vserver amd production branch 'in sync' with the x86 branch? if i used the devel branch is it as stable as the x86 was? any caveats with the amd branch at this time? we have no need for most of the advanced features of linux-vserver so far and only use the most basic of capability options. i have been told by a close friend who does a serious amount of video production work using the amd gentoo versions that we should only use the ~ branch of both gentoo and linux-vserver and that it would be stable for us. he has the ~ combinations out in production in literally hundreds of installations... comments on that? just a bit of confusion here... our current version has proven rock stable for us, and in this new amd environment i don't want to sacrifice this. -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] /vservers as an nfs mount?
On Wednesday 26 April 2006 05:44 am, Herbert Poetzl wrote: On Wed, Apr 26, 2006 at 07:00:21PM +1200, Sam Vilain wrote: Chuck wrote: we are completely restructuring our entire physical network around the vserver concept. it has proven itself in stability and performance in production to the point we no longer see the need for dedicated servers except in the most demanding instances (mostly our email server which cannot be run as a guest until there is no slow down using 130 ip addresses). could you describe what scheme is behind those 130 ips in your case? I'm trying to get an idea what addresses such large-ip systems typically use ... it is commercial, licensed software so multiple uses of it are prohibitive. every domain we host in email is offered a unique ip address if they wish so the server takes on the identity of that domain. this gives the effect that the domain owns their own email server to the outside world. in this case we have a single /23 block of (512)ips dedicated strictly to email which we are using roughly 1/4 at this moment. when we fill it we will assign another block. we also mix additional domains that do not care about appearing to own their own email server into 'namespace' using the single primary server ip address. in our network restructuring, we wish to use our large storage nfs system and place all the vserver guests on that sharing those directories to be mounted on the proper dual opteron machine front end as /vservers. i am seriously thinking of also making /etc/vservers an nfs mount so that each host configuration and guests live in a particular area on the nfs to make switching machines a breeze if so needed. does anyone see a problem with this idea? we will be using dual GB nics into this nfs system in a pvtnet from each machine to facilitate large amounts of data flow. public ip space will still use 100mb nics. that is basically what lycos is doing, and together with them we implemented the xid tagging over nfs (requires a patched filer though), which seems to work reasonably fine ... im sure their system load is far more than what we experience, so if it is fine for them it will be for us also.. i assume you have the patch available along with instructions what this gets applied to? if this can work efficiently (most of our guests are not disk i/o bound.. those with ultra heavy disk i/o will live on each front end machine), we can consolidate more than 100 machines into 2 front end machines and one SAN system. This would free enough rack space that if we don't need any dedicated machines in the future we could easily add more than 1500 servers in host/guest config in the same space 100 took up. it would also hugely simplify backups and drop our electric bill in half or more. yes, just requires really sensitive tuning, otherwise the nfs will be the bottleneck thats the only other thing i have to figure out is the nfs tuning for this. i am assuming it will require large buffers rather than the tiny ones it uses by default. Nice idea, certainly NFS is right for /etc/vservers, but consider using a network block device, like iSCSI or ATA over Ethernet for the filesystems used by vservers themselves. You'll save yourself a lot of headaches and the thing will probably run a *lot* faster. this is a viable alternative too, at least iSCSI and AOE was already tested with Linux-VServer, so it should work only problem is after quickly scanning some documents on aoe and vblade, i dont know if it would live well in the same machine as the nfs side of the server. this storage array we have is huge and is already set up as an nfs server and working serving about 70 companies.. however the total array is not partitioned completely so we can add via lvm where necessary. i suppose i could just partition an additional section for vblades or aoe once i understand it.. the total array is 50TB of which we have only assigned 15 at the moment. the rest is unpartitioned, begging to be used. the other catch is that the aoe/vblade setups must work well on amd64 arch.. Unification would be impractical on top of all of this, but this is probably not a huge problem. why would that be so? if it is the same block device, the filesystem on-top can as well use unification, not across different filesystems though ... HTH, Herbert Sam. ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I
Re: [Vserver] many ip addys
On Monday 10 April 2006 02:10 pm, Herbert Poetzl wrote: whoah... heh ok maybe i will implement 'plan B' for now and wait until this is all settled in. those figures are a bit too much for us to use presently. On Thu, Apr 06, 2006 at 07:00:32AM -0400, Chuck wrote: On Friday 21 October 2005 12:23 pm, Chuck wrote: On Friday 21 October 2005 12:12 pm, Herbert Poetzl wrote: On Fri, Oct 21, 2005 at 06:58:38AM -0400, Chuck wrote: i forget.. was it ngnet that would support a few hundred ip addys in a guest? i have a few big machines i cant move over until it can efficiently support several hundred ip addys (minimum a /24) ... if ngnet is the answer im gonna try to raise some funding from my boss .. no promises as he does not let go easily.. :D hehe, well, ngnet will provide that indeed, but for a quick and dirty hack you can raise the limit from the current 16 to something higher, but you should be aware that the current implementation will slow down with every ip address you add ... does anyone have some facts about how slow this would get with 130 or 140 ip addys added to a current vserver? is it just measurable or is it visible? unfortunately this mail server is very busy so i am extremely hesitant to try this. with the current design, the lookup/checks are linear so, you can calculate like this: there is a minimal general overhead, let's say 2 checks worth on every action there will be so many checks as are required to find a match, so roughly N/2 checks per bind, connect, whatever ... so with N ips assigned, you will get (N/2)+2 checks, which will give you: N=1 : 2.5 N=8 : 6.0 ~ 2.4 times slower N=16 : 10.0 ~ 4.0 times slower N=256 : 130.0 ~ 52.0 times slower on those specific checks ... btw, this will change in the near future, as we will switch to something of log(N) order, which should eliminate those overheads HTH, Herbert Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] many ip addys
On Friday 21 October 2005 12:23 pm, Chuck wrote: On Friday 21 October 2005 12:12 pm, Herbert Poetzl wrote: On Fri, Oct 21, 2005 at 06:58:38AM -0400, Chuck wrote: i forget.. was it ngnet that would support a few hundred ip addys in a guest? i have a few big machines i cant move over until it can efficiently support several hundred ip addys (minimum a /24) ... if ngnet is the answer im gonna try to raise some funding from my boss .. no promises as he does not let go easily.. :D hehe, well, ngnet will provide that indeed, but for a quick and dirty hack you can raise the limit from the current 16 to something higher, but you should be aware that the current implementation will slow down with every ip address you add ... does anyone have some facts about how slow this would get with 130 or 140 ip addys added to a current vserver? is it just measurable or is it visible? unfortunately this mail server is very busy so i am extremely hesitant to try this. Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] ability to use 130+ ips within a vserver yet?
On Thursday 06 April 2006 06:55 am, Chuck wrote: my only other option is to do policy routing which i don't think our switch/router ios is right for.. at least then i could target the entier /24 for port 80 requests and translate them to something like 7080 before it gets to the machine and then back out again. messy at best i suspect. tuesday, i ran into a major emergency with a hardware failure on our email machine which uses 130 ip addresses. my only choice was to move it to the host side of our dell vserver host. this is presently causing an extreme amount of port clashes as the email server wants to grab every ip on port 80 for webmail rather than stick to a single /24 and i so far have not found a way to bind it to only a single network. putting it into a guest would cure all of this i believe... i did not do this initially due to the 16 ip limitations... is that limitation released yet? or is there code available which works well enough to stuff it into a production environment? i have had to shut down 14 vservers just to get mail to run :( the only other option i have is to buy a replacement server and put mail onto that which i prefer not to do as we are targeting a large new server to put all the vservers onto which would leave the dell to run email as a stand alone machine but this wont happen for a good month yet as once the server comes in i have to recompile every virtual to live on amd64/opteron arch as i move them over (quite time consuming considering i am moving 40+ vservers off a p3 intel environment).. -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] ability to use 130+ ips within a vserver yet?
On Thursday 06 April 2006 07:30 am, Oliver Welter wrote: Hi Chuck, my only other option is to do policy routing which i don't think our switch/router ios is right for.. at least then i could target the entier /24 for port 80 requests and translate them to something like 7080 before it gets to the machine and then back out again. messy at best i suspect. Might it be an option to do so with iptables ? I use this approach for some servers without any problems - I think that iptable -t nat -I PREROUTING -d 192.168.168.0/24 --dport 80 -j DNAT --to target:port Should work without reasonable impact on the load... hmm.. ok im no iptables whiz but i will try this syntax... i have to eliminate nat since they are all public ip addresses.. i suspect maybe something like this might work in our saved rules file? (gentoo) i suspect maybe this may need to be changed.. -A RH-Firewall-1-INPUT PREROUTING -d 64.113.34.0/24 --dport 80 [dont know what to do with -j here] --to 64.113.34.0/24:7080 basically anything that say comes in for 64.113.34.11 port 80 needs to go to the same ip address on port 7080 and likewise back out for replies.. any assistance is greatly appreciated.. Oliver -- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72 -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: many ip addys
On Thursday 06 April 2006 07:17 am, Matvey Gladkikh wrote: On 06/04/06 07:00 -0400, Chuck wrote: On Friday 21 October 2005 12:23 pm, Chuck wrote: On Friday 21 October 2005 12:12 pm, Herbert Poetzl wrote: On Fri, Oct 21, 2005 at 06:58:38AM -0400, Chuck wrote: i forget.. was it ngnet that would support a few hundred ip addys in a guest? i have a few big machines i cant move over until it can efficiently support several hundred ip addys (minimum a /24) ... if ngnet is the answer im gonna try to raise some funding from my boss .. no promises as he does not let go easily.. :D hehe, well, ngnet will provide that indeed, but for a quick and dirty hack you can raise the limit from the current 16 to something higher, but you should be aware that the current implementation will slow down with every ip address you add ... does anyone have some facts about how slow this would get with 130 or 140 ip addys added to a current vserver? is it just measurable or is it visible? unfortunately this mail server is very busy so i am extremely hesitant to try this. I am useing 256 per vserver guest. About ~80 ips usually. Have not seen any big differences in speed. interesting.. is it noticable though? this sucker gets pounded pretty severely and if i reduce its handling capacity i fear the results :) My pathched sources can be found: deb http://matvey.org.ru/pub/debian stable main will look this over and try to figure out how to do it for a gentoo vserver utils install and vanilla kernel. in case it matters this is my version 2.6.13.3-vs2.1.0-rc4 thank you! -- Matvey Gladkikh ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] ability to use 130+ ips within a vserver yet?
On Thursday 06 April 2006 08:01 am, Oliver Welter wrote: Hi Chuck, iptable -t nat -I PREROUTING -d 192.168.168.0/24 --dport 80 -j DNAT --to target:port Should work without reasonable impact on the load... hmm.. ok im no iptables whiz but i will try this syntax... i have to eliminate nat since they are all public ip addresses.. i suspect maybe something like this might work in our saved rules file? (gentoo) You will need NAT - as this will translate the destination... i suspect maybe this may need to be changed.. -A RH-Firewall-1-INPUT PREROUTING -d 64.113.34.0/24 --dport 80 [dont know what to do with -j here] --to 64.113.34.0/24:7080 Basically PREROUTING is another chain than the one you are using - so, I suggest: iptables -t nat -A PREROUTING -p tcp -d 64.113.34.0/24 --dport 80 -j DNAT --to :7080 This will redirect every traffic to 64.113.34.0/24:80 to the same ip as the orginal paket but going to port 7080. ahh ok.. heh i just saw nat and thought private nets immediately. thanks will try this. If you want to stuff everything into one vServer with one IP, just repace the target with -j DNAT --to vserversip:port unfortunately no can do on a single ip. every domain is assigned its own so it appears to have its own mail server answering as that domain, dns lookups including reverse as that domain etc HTH Oliver PS: if you have problems revealing private data write PM, or join #vserver - will be there shortly as oliwel -- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72 -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] ability to use 130+ ips within a vserver yet?
On Thursday 06 April 2006 09:09 am, Benoît des Ligneris wrote: Hello, Chuck a écrit : tuesday, i ran into a major emergency with a hardware failure on our email machine which uses 130 ip addresses. my only choice was to move it to the host side of our dell vserver host. this is presently causing an extreme amount of port clashes as the email server wants to grab every ip on port 80 for webmail rather than stick to a single /24 and i so far have not found a way to bind it to only a single network. If you are using a vserver kernel, why not use chbind to bind the server to the IP you want to use ? interesting utility... never knew it existed... i would have to bind to eth2 and all 130+ ip addys on it though and exclude one... one ip in that same netblock using the same interface is a vserver guest that is a different email server. from what i gather this will lock down all ip addys on that interface... unless it is used first, then an ip is added by a guest using a later startup... with my luck it would go ahead and grab that one too :) putting it into a guest would cure all of this i believe... i did not do this initially due to the 16 ip limitations... Well, this can easily be changed with a patch to the vserver patch however there will be a small performance impact. will have to find this patch and review it... if patched is this performance impact across the board on all guests whether using 1 or 100 ips? or is it restricted to those with 16 ips? is that limitation released yet? or is there code available which works well enough to stuff it into a production environment? i have had to shut down 14 vservers just to get mail to run :( We already deploy it in a production environment for at least one year now (for hosting, 64 IPs). the only other option i have is to buy a replacement server and put mail onto that which i prefer not to do as we are targeting a large new server to put all the vservers onto which would leave the dell to run email as a stand alone machine but this wont happen for a good month yet as once the server comes in i have to recompile every virtual to live on amd64/opteron arch as i move them over (quite time consuming considering i am moving 40+ vservers off a p3 intel environment).. -- Benoit des Ligneris Ph. D. President de Revolution Linuxhttp://www.revolutionlinux.com/ OSCAR http://oscar.openclustergroup.org/ EduLinuxhttp://www.edulinux.org/ Toutes les opinions et les prises de position exprimées dans ce courriel sont celles de son auteur et ne répresentent pas nécessairement celles de Révolution Linux Any views and opinions expressed in this email are solely those of the author and do not necessarily represent those of Revolution Linux ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] too many open files error
this one is weird. could i be reaching some kind of max on a gentoo platform? we are running approx 40 vserver guests on a 4 processor dell. our email server is running on the 'host' side. my tip on this came from our email list server. the log stated: 6 10:20:19 error: Still trying to open connection Too many open files and this is in the log many times. not knowing if this is a program or system error causing this i am taking the safe route while i wait for the program support people to let me know... is there a setting somewhere in the vserver system, i assume on the host, that the number of open files can be set? i dont even know what the stock max is.. -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] ability to use 130+ ips within a vserver yet?
On Thursday 06 April 2006 08:01 am, Oliver Welter wrote: just wanted to let you know your suggestion cured my problem :) thanks!! it translates perfectly, and now the email software can co-exist with other port 80 guest servers nicely. now if the high ip address usage within a guest works reasonably nicely, it will cure my other problems of not being able to move some machines over to vservers.. Hi Chuck, iptable -t nat -I PREROUTING -d 192.168.168.0/24 --dport 80 -j DNAT --to target:port Should work without reasonable impact on the load... hmm.. ok im no iptables whiz but i will try this syntax... i have to eliminate nat since they are all public ip addresses.. i suspect maybe something like this might work in our saved rules file? (gentoo) You will need NAT - as this will translate the destination... i suspect maybe this may need to be changed.. -A RH-Firewall-1-INPUT PREROUTING -d 64.113.34.0/24 --dport 80 [dont know what to do with -j here] --to 64.113.34.0/24:7080 Basically PREROUTING is another chain than the one you are using - so, I suggest: iptables -t nat -A PREROUTING -p tcp -d 64.113.34.0/24 --dport 80 -j DNAT --to :7080 This will redirect every traffic to 64.113.34.0/24:80 to the same ip as the orginal paket but going to port 7080. If you want to stuff everything into one vServer with one IP, just repace the target with -j DNAT --to vserversip:port HTH Oliver PS: if you have problems revealing private data write PM, or join #vserver - will be there shortly as oliwel -- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72 -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] too many open files error
On Thursday 06 April 2006 11:56 am, Xavier Montagutelli wrote: On Thursday 06 April 2006 16:46, Chuck wrote: this one is weird. could i be reaching some kind of max on a gentoo platform? we are running approx 40 vserver guests on a 4 processor dell. our email server is running on the 'host' side. my tip on this came from our email list server. the log stated: 6 10:20:19 error: Still trying to open connection Too many open files and this is in the log many times. not knowing if this is a program or system error causing this i am taking the safe route while i wait for the program support people to let me know... is there a setting somewhere in the vserver system, i assume on the host, that the number of open files can be set? i dont even know what the stock max is.. Perhaps /proc/sys/fs/file-max ? maybe max files is not the issue. : # cat /proc/sys/fs/file-max 309847 i would think 309k open files would be sufficient. will see what the mailing list software vendor has to say.. Just modify the value by echoing the new value or use sysctl -w fs.file-max= and modify /etc/sysctl.conf -- Xavier Montagutelli Tel : +33 (0)5 55 45 77 20 Service Commun Informatique Fax : +33 (0)5 55 45 77 60 Universite de Limoges 123, avenue Albert Thomas 87060 Limoges cedex ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] too many open files error
On Thursday 06 April 2006 01:01 pm, Michael S. Zick wrote: On Thu April 6 2006 11:20, Chuck wrote: Ch On Thursday 06 April 2006 11:56 am, Xavier Montagutelli wrote: Ch On Thursday 06 April 2006 16:46, Chuck wrote: Ch this one is weird. could i be reaching some kind of max on a gentoo Ch platform? Ch Ch we are running approx 40 vserver guests on a 4 processor dell. our email Ch server is running on the 'host' side. Ch Ch my tip on this came from our email list server. the log stated: Ch Ch 6 10:20:19 error: Still trying to open connection Too many open files Ch A single, multi-thread application? actually 2 applications, the mail server and the list server both of which can open several hundred threads as needed. There is another limit built into the kernel for applications that use 'select' to get notifications of connection attempts to file descriptors. That limit is the hardcoded size of the file descriptor select structure (in bits). Not sure off-hand how big it is, I think either 64 or 128 bits (open descriptors monitored). You might have to run multiple instances of the e-mail application if this is the cause of the error message. due to licensing i am not sure it is possible. the license is for single run use on a single machine.. will have to check if that is even possible with this... however, the software vendor feels it is something to do with their settings/possible code problems.. this is a new binary issued so it is possible there are probs there. it appears our number of file handles (upward of 309k is more than sufficient. # cat /proc/sys/fs/file-max 309847 # cat /proc/sys/fs/file-nr 19425 0 309847 Thanks for the info on 'select'.. one more thing to research now :) Chuck Mike Ch and this is in the log many times. not knowing if this is a program or Ch system error causing this i am taking the safe route while i wait for the Ch program support people to let me know... Ch Ch is there a setting somewhere in the vserver system, i assume on the host, Ch that the number of open files can be set? i dont even know what the stock Ch max is.. Ch Ch Perhaps /proc/sys/fs/file-max ? Ch Ch Ch maybe max files is not the issue. : Ch Ch # cat /proc/sys/fs/file-max Ch 309847 Ch Ch i would think 309k open files would be sufficient. Ch Ch will see what the mailing list software vendor has to say.. Ch Ch Just modify the value by echoing the new value Ch Ch or use sysctl -w fs.file-max= and modify /etc/sysctl.conf Ch Ch -- Ch Xavier Montagutelli Tel : +33 (0)5 55 45 77 20 Ch Service Commun Informatique Fax : +33 (0)5 55 45 77 60 Ch Universite de Limoges Ch 123, avenue Albert Thomas Ch 87060 Limoges cedex Ch ___ Ch Vserver mailing list Ch Vserver@list.linux-vserver.org Ch http://list.linux-vserver.org/mailman/listinfo/vserver Ch Ch ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] vlan
is there any in-depth guide/documentation to fully explain construction of vlans with respect to vservers? my boss now wants to change our unique port network vlan structure to multiple vlans on a single port. -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] vlan
On Tuesday 28 March 2006 09:10 am, Herbert Poetzl wrote: thank you! i think i can do it now well enough not to blow the entire mess up :) it's a shame they don't put more devices directly onto the mobo (like 4 or 8 ethernet ports).. we are getting some new 2 and 4 way opteron dual core servers to replace all our intel ones and these only have 2 - gig ethernet ports which only leaves one for public ip space so we will be forced to totally re-engineer this entire network still keeping things in production. no fun. its not small. On Tue, Mar 28, 2006 at 08:59:18AM -0500, Chuck wrote: is there any in-depth guide/documentation to fully explain construction of vlans with respect to vservers? don't know ... my boss now wants to change our unique port network vlan structure to multiple vlans on a single port. should be straight forward, i.e. use a vlan interface instead of the normal one for the guest config (eth0 - eth0.100) the tools will automagically create the interface for you (and use vlan tagging for that), if you don't want that behaviour (e.g you want to setup them yourself), just use the nodev or novlandev commands ... just to summarize: ip=192.168.0.10 nodev ip will be used, nothing will be created ip=192.168.0.10 dev=eth0 ip will be assigned to eth0, and used ip=192.168.0.10 dev=eth0.10 novlandev ip will be assigned to eth0.10 (which must exist) and will be used ip=192.168.0.10 dev=eth0.10 vlan device eth0.10 will be created (eth0 must exist) the ip will we assigned and used interfaces and assignments done by the tools will be removed on guest shutdown ... HTH, Herbert -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] latest stable for gentoo?
Hi- Sorry I haven't been around but my boss has caught the vserver fever and has me converting literally *everything* to guests! :) I have not had the time to keep up with this list or the website and to be honest I don't yet, so I'm going to be lazy and ask. I am currently using the following: vanilla kernal and patch : 2.6.13.3-vs2.1.0-rc4 Gentoo packages for util-vserver-0.30.210-r5 baselayout-vserver 1.11.13-r1 I see that 2.1.0 was released in Dec. Is this the latest stable? What newer kernel(s) will the patch work with? I see that the latest kernel in portage is vanilla-sources-2.6.16_rc6 I may be biting my own tail, but I gave up on the gentoo sources kernels due to the extremely heavy patching. I find the vanilla kernels perform noticably faster and seem more stable. Everything I am running is rock stable so I'm not positive upgrades are truly needed but would like to incorporate any other features/fixes my above versions may be missing. Last question... has any progress been made on the proposed network code changes to allow each guest to have a true localhost and more than 16 ip addresses without falling apart? -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] latest stable for gentoo?
On Wednesday 15 March 2006 08:55 am, Benedikt Böhm wrote: ok thanks. On Wednesday 15 March 2006 13:30, Chuck wrote: Hi- Sorry I haven't been around but my boss has caught the vserver fever and has me converting literally *everything* to guests! :) I have not had the time to keep up with this list or the website and to be honest I don't yet, so I'm going to be lazy and ask. I am currently using the following: vanilla kernal and patch : 2.6.13.3-vs2.1.0-rc4 Gentoo packages for util-vserver-0.30.210-r5 baselayout-vserver 1.11.13-r1 I see that 2.1.0 was released in Dec. Is this the latest stable? No. http://linux-vserver.org/ Section Downloads What newer kernel(s) will the patch work with? 2.6.16-rc5 http://vserver.13thfloor.at/Experimental/ I see that the latest kernel in portage is vanilla-sources-2.6.16_rc6 I may be biting my own tail, but I gave up on the gentoo sources kernels due to the extremely heavy patching. genpatches consists of bugfixes only, the extra patches can all be turned off with make menuconfig I find the vanilla kernels perform noticably faster and seem more stable. Everything I am running is rock stable so I'm not positive upgrades are truly needed but would like to incorporate any other features/fixes my above versions may be missing. Last question... has any progress been made on the proposed network code changes to allow each guest to have a true localhost and more than 16 ip addresses without falling apart? no ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Vservers and RAID (5 hard)
On Tuesday 14 February 2006 05:41 pm, John Alberts wrote: I agree 100% that is what I am using on my vserver host as well and I have enough free space unassigned to last several years at this point. LVM2 should actually become a permanent built-in part of all file systems :) As I re-do my home workstations, I am changing them over to LVM2 as well. I will not install linux now without it unless it is an extremely specific installation that will not allow it (which I have yet to encounter) (romable code is the only thing I can think of ). Chuck I recently purchased a Dell PowerEdge 2850 that I'm using for vservers. I'm using Gentoo for the host and guests. Seems to work really great so far. I purchased 4 10k rpm 73G u320 drives and use them in a single raid5 partition. I then used LVM2 to partiion up the space. Here's the output of fdisk -l : Disk /dev/sda: 219.8 GB, 219823472640 bytes 255 heads, 63 sectors/track, 26725 cylinders Units = cylinders of 16065 * 512 = 8225280 bytes Device Boot Start End Blocks Id System /dev/sda1 1 12 96358+ de Dell Utility /dev/sda2 * 13 21 72292+ 83 Linux /dev/sda3 22 508 3911827+ 82 Linux swap / Solaris /dev/sda4 509 26725 210588052+ 5 Extended /dev/sda5 509 752 1959898+ 83 Linux /dev/sda6 753 26725 208628091 8e Linux LVM As you can see, I have a partition for /boot, /, and swap. The rest is for LVM. I then divided up the LVM for the remainder of the system. Here's what lvdisplay shows: --- Logical volume --- LV Name/dev/vg/usr VG Namevg LV UUID**I LV Write Accessread/write LV Status available # open 1 LV Size10.01 GB Current LE 2563 Segments 1 Allocation inherit Read ahead sectors 0 Block device 254:0 --- Logical volume --- LV Name/dev/vg/home VG Namevg LV UUID** LV Write Accessread/write LV Status available # open 1 LV Size5.00 GB Current LE 1280 Segments 1 Allocation inherit Read ahead sectors 0 Block device 254:1 --- Logical volume --- LV Name/dev/vg/opt VG Namevg LV UUID** LV Write Accessread/write LV Status available # open 1 LV Size5.00 GB Current LE 1280 Segments 1 Allocation inherit Read ahead sectors 0 Block device 254:2 --- Logical volume --- LV Name/dev/vg/var VG Namevg LV UUID** LV Write Accessread/write LV Status available # open 1 LV Size10.00 GB Current LE 2560 Segments 1 Allocation inherit Read ahead sectors 0 Block device 254:3 --- Logical volume --- LV Name/dev/vg/tmp VG Namevg LV UUID** LV Write Accessread/write LV Status available # open 1 LV Size2.00 GB Current LE 512 Segments 1 Allocation inherit Read ahead sectors 0 Block device 254:4 --- Logical volume --- LV Name/dev/vg/vservers VG Namevg LV UUID** LV Write Accessread/write LV Status available # open 1 LV Size30.00 GB Current LE 7680 Segments 1 Allocation inherit Read ahead sectors 0 Block device 254:5 I still have lots of unused LVM space. I just expand my /vserver volume and any others as needed. Performance is great. Hope this helps your decision. On 2/14/06, Lars Hallberg [EMAIL PROTECTED] wrote: Sam Vilain wrote: I hate that! Such a deep directory... besides, the unix conventions of var, /usr, etc, were made before this use case was considered (/com, anyone?). I think it deserves its own TLD (top level directory). /var/lib/vservers ... Have no problems with that... but i symlink it as 'v' from /root :-) ... and /etc/vservers as 'e' :-) Thats Ubuntu... same as Debian I asume. /LaH ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] The nano-vserver package.
On Monday 26 December 2005 10:38 am, Michael S. Zick wrote: On Mon December 26 2005 09:15, Joel Soete wrote: Hello Mike, Michael S. Zick wrote: Joel, I think my planned package is complete, I wanted to review it with someone, I will try to be brief... - - - [ really big snip ] - - - What common tool set have I overlooked? Do you see anything that really must be included? just one thought (just because it seems to be a std de facto), may some sshd to be able login the vps, tough? Thanks, I missed that one. People will expect it to be available. BusyBox does have a telnetd. I just checked, BusyBox has a vi for text editing. Should there be some other editor? I think that emacs would be too big. yes please... pico or nano either one.. both are small and to me more useful than any of the others. i use them exclusively. this looks like it could make an extremely nice rescue disk. PS: I am finishing my recipe to re-use a chrooted disk on hppa box and will try asap to build 'baby' and vbox on my parisc-linux box too. I will post a pre-view of baby02.bin later today - It will not all be working - It will have all of the source tarballs and rough, guru level, instructions (except Lua and sshd) to build a non-x86 version. Thanks for your advice. Mike ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] recommended way to backup vserver guests with nightly cron job?
On Tuesday 20 December 2005 04:30 am, Gerhard Hofmann wrote: for backups that's what i do... every 4 hours i just tar them even while running, and then once nightly i stop each one tar then restart...it is fast enough there is minimal downtime. i personally don't see the need for mysqldump if you tar the entire thing, but there are a few ways to run it.. one is of course to run cron in the guest and do it that way, the other is in the backup script and simply point it to the proper database.. its a bit more complicated in the host script but it can be done.. there is another way i think which i have not investigated yet.. there is a host command to execute a program within the guest and the guest environment. i'm just not sure what it is. Hi list, I'm a newbie to vserver and I wonder how to backup my vserver guests with a cron job run by the vserver host. I think it should be something like that: vserver myvserver stop ...compress /etc/vserver to a tgz file and save on external storage... vserver myvserver start Have I forgotten something important here? Myvserver will run mysql and apache (TYPO3 content management system), so I think it won't hurt to run a mysqldump before shutting down and backing up myvserver. What is the best way to invoke the mysqldump command within myvserver? A separate cron job within the guest? TIA Gerhard ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] When to mount lvm? (vs2.0)
On Tuesday 13 December 2005 07:38 am, Lars Braeuer wrote: Hi, I'm not sure where to mount an LVM2 device with vs2.0. I do not want to mount it on system boot, but when starting the guest vserver. The fstab file in the vserver config directory seems to be the right place. good question. i run lvm2 and i have found on my system, if i want to be able to administer the guest directly from the host, i must mount it on boot or create a special script to start the guest which mounts the lvm2 mountpoint, then calls vserver to start the guest. if i do not do this, then i cannot administer the guest from the host and must enter the guest to do anything at all. will be interesting to see what the gurus say :) But when including an entry like this in the fstab file, the mount won't show up in the hostsystem and will not be accessible via the mount point in the /vservers directory: /dev/mapper/vg-test01 / ext3 defaults 1 2 But I'm able to enter the vserver with vserver test01 enter, weird. I also tried the prepre-start script, but it seems to be the wrong place, because it's called after the generateOptions function. Any hints? Best, Lars ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] When to mount lvm? (vs2.0)
On Tuesday 13 December 2005 08:03 am, Lars Braeuer wrote: Chuck wrote: On Tuesday 13 December 2005 07:38 am, Lars Braeuer wrote: Hi, I'm not sure where to mount an LVM2 device with vs2.0. I do not want to mount it on system boot, but when starting the guest vserver. The fstab file in the vserver config directory seems to be the right place. good question. i run lvm2 and i have found on my system, if i want to be able to administer the guest directly from the host, i must mount it on boot or create a special script to start the guest which mounts the lvm2 mountpoint, then calls vserver to start the guest. if i do not do this, then i cannot administer the guest from the host and must enter the guest to do anything at all. will be interesting to see what the gurus say :) so you are doing it the same way, via the fstab config file? it seems like the device is mounted right until after the vserver is up. I included a ls -la /vservers/test01/ ; df -a in the prepre-start script and it actually outputs a listing of the guest system. This might be from a different ctx (i.e. 1)??? Because after the guest system is started, and I return to the normal hostsystem shell, a ls -la /vservers/test01 outputs an empty directory. for the most part i mount them on boot. i have one guest that i dont want mounted until i use it, so i have a special script i run when i want to use that guest which mounts the lvm mount point then calls vserver to start the guest so the mount point is visible in the host until i stop the guest, then the script unmounts it after stopping the guest. its just a specialized init script. But when including an entry like this in the fstab file, the mount won't show up in the hostsystem and will not be accessible via the mount point in the /vservers directory: /dev/mapper/vg-test01 / ext3 defaults 1 2 But I'm able to enter the vserver with vserver test01 enter, weird. I also tried the prepre-start script, but it seems to be the wrong place, because it's called after the generateOptions function. Any hints? Best, Lars ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] gentoo guest wont start up or find anything after failed emerge
On Thursday 24 November 2005 05:38 pm, Grzegorz Nosek wrote: got it working although i never did find out what caused the actual problem. what i had to do was unpack my template, then copied all of /bin /sbin /lib /usr/bin /usr/sbin /usr/lib over to the damaged guest. then suddenly it started working. Hello, 2005/11/24, Chuck [EMAIL PROTECTED]: You should be able to run ldconfig inside the chroot as it's (at least on some ancient box I'm looking at right now) statically linked, so try: chroot /vservers/davin ldconfig -v Also compare your /lib directories on the host and the guest. the guest cannot execute any files at all. nor can it find them even with the proper path given. if i just knew what could have happened within the emerge of a binary program for this to occur. it was working fine before this and nothing had been installed/changed in approx month before this. eron davin # chroot /vservers/davin /sbin/ldconfig -v chroot: cannot run command `/sbin/ldconfig': No such file or directory Have a try with (from host) ldconfig -v -r /vservers/davin it cant find bash it cant find ls it cant access anything. same behavior as when the guest was 'alive' before i stopped it. stopping it was error prone too since it could not execute shutdown. it simply has lost the ability to execute anything or find anything.. If you don't have libc installed in the guest, none of the standard binaries will run even if the proper /bin/bash, /bin/ls etc. binaries are in place. Do you have some statically linked shell handy? sash, busybox maybe? i tried comparing the libs but that seems useless too in a way since the host and guest are vastly different in what is installed. the host is a full featured workstation with literally hundreds of applications installed while the guest is a minimal remote desktop server. ill try to make lists and diff them and see what happens.. Well, comparing /usr/lib on two vastly different systems is usually pointless. The basic stuff lives in /lib and should look mostly the same for all systems (with minor differences between distros). Your system should be able to boot without /usr at all (so that includes /usr/lib). For comparison purposes, here's a listing of /lib on one of my vservers (debian 3.1 basically). v824:/# ls /lib -F cpp@ libatm.so.1@ libcom_err.so.2@ libdl.so.2@libmemusage.so libnss_hesiod.so.2@ libpopt.so.0@ librt.so.1@ libuuid.so.1.2 init/ libatm.so.1.0.0libcom_err.so.2.1 libe2p.so.2@ libncurses.so.5@libnss_nis-2.3.2.so libpopt.so.0.0.0libslang.so.1-UTF8@ libwrap.so.0@ iptables/ libattr.so.1@ libconsole.so.0@ libe2p.so.2.3 libncurses.so.5.4 libnss_nis.so.2@ libproc.so.3.2.1libslang.so.1-UTF8.4.9 libwrap.so.0.7.6 ld-2.3.2.so* libattr.so.1.1.0 libconsole.so.0.0.0 libext2fs.so.2@libnsl-2.3.2.so libnss_nisplus-2.3.2.so libpthread-0.10.so libss.so.2@ lsb/ ld-linux.so.2@libblkid.so.1@ libcrypt-2.3.2.so libext2fs.so.2.4 libnsl.so.1@libnss_nisplus.so.2@ libpthread.so.0@libss.so.2.0modules/ libBrokenLocale-2.3.2.so libblkid.so.1.0libcrypt.so.1@ libgcc_s.so.1 libnss_compat-2.3.2.so libpam.so.0@ libreadline.so.4@ libthread_db-1.0.so security/ libBrokenLocale.so.1@ libc-2.3.2.so* libctutils.so.0@ libhistory.so.4@ libnss_compat.so.2@ libpam.so.0.76 libreadline.so.4.3 libthread_db.so.1@ tls/ libSegFault.solibc.so.6@ libctutils.so.0.0.0 libhistory.so.4.3 libnss_dns-2.3.2.so libpam_misc.so.0@ libreadline.so.5@ libusb-0.1.so.4@ libacl.so.1@ libcap.so.1@ libdb.so.2@ libhistory.so.5@ libnss_dns.so.2@libpam_misc.so.0.76 libreadline.so.5.0 libusb-0.1.so.4.4.2 libacl.so.1.1.0 libcap.so.1.10 libdb1-2.2.5.so libhistory.so.5.0 libnss_files-2.3.2.so libpamc.so.0@ libresolv-2.3.2.so libutil-2.3.2.so libanl-2.3.2.so libcfont.so.0@ libdb1.so.2@ libm-2.3.2.so libnss_files.so.2@ libpamc.so.0.76 libresolv.so.2@ libutil.so.1@ libanl.so.1@ libcfont.so.0.0.0 libdl-2.3.2.so libm.so.6@ libnss_hesiod-2.3.2.so libpcprofile.so librt-2.3.2.so libuuid.so.1@ HTH and sorry for the ugly copy-paste :) Best regards, Grzegorz Nosek ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath
Re: [Vserver] gentoo guest wont start up or find anything after failed emerge
On Wednesday 23 November 2005 09:45 pm, Grzegorz Nosek wrote: 2005/11/24, Chuck [EMAIL PROTECTED]: i just found something VERY odd (at least to me) in the emerge log. it unmerged glibc even though the only command given it was emerge -v mozilla-firefox-bin and that was it. here is the log snippet 1132791518: Started emerge on: Nov 23, 2005 19:18:38 1132791519: *** emerge --verbose mozilla-firefox-bin 1132791519: emerge (1 of 1) www-client/mozilla-firefox-bin-1.0.7 to / 1132791519: === (1 of 1) Cleaning (www-client/mozilla-firefox-bin-1.0.7::/usr/portage/www-client/mozilla-firefox-bin/mozilla-firefox-bin-1.0.7.ebuild) 1132791529: === (1 of 1) Compiling/Merging (www-client/mozilla-firefox-bin-1.0.7::/usr/portage/www-client/mozilla-firefox-bin/mozilla-firefox-bin-1.0.7.ebuild) 1132791657: === (1 of 1) Updating world file (www-client/mozilla-firefox-bin-1.0.7) 1132791657: === (1 of 1) Post-Build Cleaning (www-client/mozilla-firefox-bin-1.0.7::/usr/portage/www-client/mozilla-firefox-bin/mozilla-firefox-bin-1.0.7.ebuild) 1132791669: AUTOCLEAN: www-client/mozilla-firefox-bin 1132791669: --- AUTOCLEAN: Nothing unmerged. 1132791670: ::: completed emerge (1 of 1) www-client/mozilla-firefox-bin-1.0.7 to / 1132791670: *** Finished. Cleaning up... 1132791677: === Unmerging... (sys-libs/glibc-2.3.5-r1) 1132791764: *** terminating. 1132791764: *** terminating. i noticed when i installed open-office-bin back in october it did the same thing for the same version of glibc so maybe thats normal? even more confused now. Hello I have never used gentoo but have you checked that your libc inside the guest is actually installed? If a shared library is missing, you'll (AFAIK) get No such file or directory while trying to execute the binary, so that seems like it. If you *do* have the libc files installed, try running ldconfig. without knowing much about the library system, i would say it is installed. see below... ldconfig would be very hard to run within the guest when i cannot chroot the guest. /vservers/davin/opt/OpenOffice.org/program/libstdc++.so /vservers/davin/opt/OpenOffice.org/program/libstdc++.so.5 /vservers/davin/var/cache/edb/dep/usr/portage/sys-libs/libstdc++-v3-3.3.4 /vservers/davin/var/cache/edb/dep/usr/portage/sys-libs/libstdc++-v3-3.3.6 /vservers/davin/var/cache/edb/dep/usr/portage/sys-libs/libstdc++-v3-3.3.3-r1 /vservers/davin/usr/lib/libstdc++.so.2.7.2.8 /vservers/davin/usr/lib/libstdc++-2-libc6.1-1-2.9.0.so /vservers/davin/usr/lib/libstdc++-3-libc6.2-2-2.10.0.so /vservers/davin/usr/lib/gcc-lib/i686-pc-linux-gnu/3.3.6/libstdc++.la /vservers/davin/usr/lib/gcc-lib/i686-pc-linux-gnu/3.3.6/libstdc++.so /vservers/davin/usr/lib/gcc-lib/i686-pc-linux-gnu/3.3.6/libstdc++.a /vservers/davin/usr/lib/gcc-lib/i686-pc-linux-gnu/3.3.6/libstdc++.so.5 /vservers/davin/usr/lib/gcc-lib/i686-pc-linux-gnu/3.3.6/libstdc++_pic.a /vservers/davin/usr/lib/gcc-lib/i686-pc-linux-gnu/3.3.6/libstdc++.so.5.0.7 /vservers/davin/usr/lib/libstdc++-libc6.2-2.so.3 /vservers/davin/usr/lib/libstdc++.so.2.8 /vservers/davin/usr/lib/libstdc++.so.2.9 /vservers/davin/usr/lib/libstdc++.so.2.7.2 /vservers/davin/usr/lib/libstdc++.so.2.8.0 /vservers/davin/usr/lib/libstdc++.so.2.9.0 /vservers/davin/usr/lib/libstdc++-libc6.1-1.so.2 /vservers/davin/usr/share/gcc-data/i686-pc-linux-gnu/3.3.6/locale/de/LC_MESSAGES/libstdc++.mo /vservers/davin/usr/share/gcc-data/i686-pc-linux-gnu/3.3.6/locale/fr/LC_MESSAGES/libstdc++.mo Best regards, Grzegorz Nosek ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] gentoo guest wont start up or find anything after failed emerge
On Thursday 24 November 2005 04:55 pm, Grzegorz Nosek wrote: 2005/11/24, Chuck [EMAIL PROTECTED]: without knowing much about the library system, i would say it is installed. see below... ldconfig would be very hard to run within the guest when i cannot chroot the guest. /vservers/davin/opt/OpenOffice.org/program/libstdc++.so /vservers/davin/opt/OpenOffice.org/program/libstdc++.so.5 /vservers/davin/var/cache/edb/dep/usr/portage/sys-libs/libstdc++-v3-3.3.4 /vservers/davin/var/cache/edb/dep/usr/portage/sys-libs/libstdc++-v3-3.3.6 /vservers/davin/var/cache/edb/dep/usr/portage/sys-libs/libstdc++-v3-3.3.3-r1 /vservers/davin/usr/lib/libstdc++.so.2.7.2.8 /vservers/davin/usr/lib/libstdc++-2-libc6.1-1-2.9.0.so /vservers/davin/usr/lib/libstdc++-3-libc6.2-2-2.10.0.so /vservers/davin/usr/lib/gcc-lib/i686-pc-linux-gnu/3.3.6/libstdc++.la /vservers/davin/usr/lib/gcc-lib/i686-pc-linux-gnu/3.3.6/libstdc++.so /vservers/davin/usr/lib/gcc-lib/i686-pc-linux-gnu/3.3.6/libstdc++.a /vservers/davin/usr/lib/gcc-lib/i686-pc-linux-gnu/3.3.6/libstdc++.so.5 /vservers/davin/usr/lib/gcc-lib/i686-pc-linux-gnu/3.3.6/libstdc++_pic.a /vservers/davin/usr/lib/gcc-lib/i686-pc-linux-gnu/3.3.6/libstdc++.so.5.0.7 /vservers/davin/usr/lib/libstdc++-libc6.2-2.so.3 /vservers/davin/usr/lib/libstdc++.so.2.8 /vservers/davin/usr/lib/libstdc++.so.2.9 /vservers/davin/usr/lib/libstdc++.so.2.7.2 /vservers/davin/usr/lib/libstdc++.so.2.8.0 /vservers/davin/usr/lib/libstdc++.so.2.9.0 /vservers/davin/usr/lib/libstdc++-libc6.1-1.so.2 /vservers/davin/usr/share/gcc-data/i686-pc-linux-gnu/3.3.6/locale/de/LC_MESSAGES/libstdc++.mo /vservers/davin/usr/share/gcc-data/i686-pc-linux-gnu/3.3.6/locale/fr/LC_MESSAGES/libstdc++.mo These are the standard C++ libraries. The standard C library is /lib/libc.so.6 or something similar (along with several other essential libraries). You should be able to run ldconfig inside the chroot as it's (at least on some ancient box I'm looking at right now) statically linked, so try: chroot /vservers/davin ldconfig -v Also compare your /lib directories on the host and the guest. the guest cannot execute any files at all. nor can it find them even with the proper path given. if i just knew what could have happened within the emerge of a binary program for this to occur. it was working fine before this and nothing had been installed/changed in approx month before this. eron davin # chroot /vservers/davin /sbin/ldconfig -v chroot: cannot run command `/sbin/ldconfig': No such file or directory it cant find bash it cant find ls it cant access anything. same behavior as when the guest was 'alive' before i stopped it. stopping it was error prone too since it could not execute shutdown. it simply has lost the ability to execute anything or find anything.. i tried comparing the libs but that seems useless too in a way since the host and guest are vastly different in what is installed. the host is a full featured workstation with literally hundreds of applications installed while the guest is a minimal remote desktop server. ill try to make lists and diff them and see what happens.. Best regards, Grzegorz Nosek ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] major problem i have no clue where to look
On Wednesday 23 November 2005 04:07 pm, Herbert Poetzl wrote: On Tue, Nov 22, 2005 at 07:32:55PM -0500, Chuck wrote: I am not even positive this is due/related to vserver. I have one guest which is a very busy radius server using a mysql database. The previous incarnation had no trouble at all on its own machine. Now, we are missing stop packets quite a bit which is causing radius accounting to go totally haywire. I have the added complication that this is a different radius software than we previously used, and it is not possible to revert back to try the old one. we previously used IC-Radius and are currently using Free-Radius.. both use mysql. I guess my questions would be process of elimination... 1. is there anything within the vserver system that could be considered a 'heartbeat' where a particular guest would be 'off' for a miniscule time where it could possibly miss an incoming packet? only if the host would miss that packet too, as the networking is entirely on the host (not the guest) 2. is there anything similar within iproute2 framework? 3. i remember reading somewhere and now cannot find it that there is a way to increase the priority of a particular guest. i was wondering if i did that for this one very slightly if it may ease its pain? doesn't affect network parameters, only task switching and task priorities ... 4. when inside a guest, does mysql behave slightly slower than it normally does? if so is there a cure? unfortunately this particular system requires lightning fast mysql responses. slightly slower might be possible, especially if other tasks are running, but I doubt that this has any influence on the networking stacks, as they usually work much faster than mysql would even get a request (not to talk of answering it back) hmm that guest runs radius, apache2, mysql, php4 and snmp im thinking more along searching the radius itself for the answer especially as none of the other 9 guests are having any trouble at all and if anything appear to be more responsive then they were on their own machine.. ok thanks... gonna go pound my head against a stone wall for a while.. :) best, Herbert 5. anyone have such an experience and a cure/workaround? -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] gentoo guest wont start up or find anything after failed emerge
ok.. now i'm baffled. i went to emerge mozilla-firefox-bin inside my guest and it failed. i did not copy the error but it had to do with emerge .py files. this guest has run well for quite a while... then nothing would work. i could not execute any commands all were not found including ls. cd seemed to be the only thing that worked. it was almost like it could not search the diskafter stopping the guest, i see that everything is still there and have content but now the guest won't start. i tried unmounting the /vservers partition and remounting it. same thing. this is an entire gentoo system running 2.6.13.3-vs2.1.0-rc4 with util-vserver-0.30.209 portage was mounted using defaults in the default guest fstab i cannot even do a chroot /vservers/davin /bin/bash as it comes back with chroot: cannot run command `/bin/bash': No such file or directory .. yet it exists where it should be and is the correct size and from the host i can execute the bash shell in the guest bin path just fine. when trying to start the guest i get the following: eron davin # vserver davin start Davin starting vcontext: execvp(/sbin/init): No such file or directory An error occured while executing the vserver startup sequence; when there are no other messages, it is very likely that the init-script (/sbin/init) failed. Common causes are: * /etc/rc.d/rc on Fedora Core 1 and RH9 fails always; the 'apt-rpm' build method knows how to deal with this, but on existing installations, appending 'true' to this file will help. Failed to start vserver 'davin' the only other variation in this whole thing is the host did an update on binutils on itself which doesnt touch the files in the guest. i do not do updates in the guest usually and this time was no exception. i was just reinstalling firefox-bin .. puzzled/baffled -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] gentoo guest wont start up or find anything after failed emerge
i just found something VERY odd (at least to me) in the emerge log. it unmerged glibc even though the only command given it was emerge -v mozilla-firefox-bin and that was it. here is the log snippet 1132791518: Started emerge on: Nov 23, 2005 19:18:38 1132791519: *** emerge --verbose mozilla-firefox-bin 1132791519: emerge (1 of 1) www-client/mozilla-firefox-bin-1.0.7 to / 1132791519: === (1 of 1) Cleaning (www-client/mozilla-firefox-bin-1.0.7::/usr/portage/www-client/mozilla-firefox-bin/mozilla-firefox-bin-1.0.7.ebuild) 1132791529: === (1 of 1) Compiling/Merging (www-client/mozilla-firefox-bin-1.0.7::/usr/portage/www-client/mozilla-firefox-bin/mozilla-firefox-bin-1.0.7.ebuild) 1132791657: === (1 of 1) Updating world file (www-client/mozilla-firefox-bin-1.0.7) 1132791657: === (1 of 1) Post-Build Cleaning (www-client/mozilla-firefox-bin-1.0.7::/usr/portage/www-client/mozilla-firefox-bin/mozilla-firefox-bin-1.0.7.ebuild) 1132791669: AUTOCLEAN: www-client/mozilla-firefox-bin 1132791669: --- AUTOCLEAN: Nothing unmerged. 1132791670: ::: completed emerge (1 of 1) www-client/mozilla-firefox-bin-1.0.7 to / 1132791670: *** Finished. Cleaning up... 1132791677: === Unmerging... (sys-libs/glibc-2.3.5-r1) 1132791764: *** terminating. 1132791764: *** terminating. i noticed when i installed open-office-bin back in october it did the same thing for the same version of glibc so maybe thats normal? even more confused now. . On Wednesday 23 November 2005 08:43 pm, Chuck wrote: ok.. now i'm baffled. i went to emerge mozilla-firefox-bin inside my guest and it failed. i did not copy the error but it had to do with emerge .py files. this guest has run well for quite a while... then nothing would work. i could not execute any commands all were not found including ls. cd seemed to be the only thing that worked. it was almost like it could not search the diskafter stopping the guest, i see that everything is still there and have content but now the guest won't start. i tried unmounting the /vservers partition and remounting it. same thing. this is an entire gentoo system running 2.6.13.3-vs2.1.0-rc4 with util-vserver-0.30.209 portage was mounted using defaults in the default guest fstab i cannot even do a chroot /vservers/davin /bin/bash as it comes back with chroot: cannot run command `/bin/bash': No such file or directory .. yet it exists where it should be and is the correct size and from the host i can execute the bash shell in the guest bin path just fine. when trying to start the guest i get the following: eron davin # vserver davin start Davin starting vcontext: execvp(/sbin/init): No such file or directory An error occured while executing the vserver startup sequence; when there are no other messages, it is very likely that the init-script (/sbin/init) failed. Common causes are: * /etc/rc.d/rc on Fedora Core 1 and RH9 fails always; the 'apt-rpm' build method knows how to deal with this, but on existing installations, appending 'true' to this file will help. Failed to start vserver 'davin' the only other variation in this whole thing is the host did an update on binutils on itself which doesnt touch the files in the guest. i do not do updates in the guest usually and this time was no exception. i was just reinstalling firefox-bin .. puzzled/baffled -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] major problem i have no clue where to look
I am not even positive this is due/related to vserver. I have one guest which is a very busy radius server using a mysql database. The previous incarnation had no trouble at all on its own machine. Now, we are missing stop packets quite a bit which is causing radius accounting to go totally haywire. I have the added complication that this is a different radius software than we previously used, and it is not possible to revert back to try the old one. we previously used IC-Radius and are currently using Free-Radius.. both use mysql. I guess my questions would be process of elimination... 1. is there anything within the vserver system that could be considered a 'heartbeat' where a particular guest would be 'off' for a miniscule time where it could possibly miss an incoming packet? 2. is there anything similar within iproute2 framework? 3. i remember reading somewhere and now cannot find it that there is a way to increase the priority of a particular guest. i was wondering if i did that for this one very slightly if it may ease its pain? 4. when inside a guest, does mysql behave slightly slower than it normally does? if so is there a cure? unfortunately this particular system requires lightning fast mysql responses. 5. anyone have such an experience and a cure/workaround? -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] major problem i have no clue where to look
On Tuesday 22 November 2005 07:32 pm, Chuck wrote: one more thing.. we are using linux-2.6.13.3-vs2.1.0-rc4 on a 4-way smp system. and i just double checked the kernel config and pre-emption is off and both timers are set at 250hz I am not even positive this is due/related to vserver. I have one guest which is a very busy radius server using a mysql database. The previous incarnation had no trouble at all on its own machine. Now, we are missing stop packets quite a bit which is causing radius accounting to go totally haywire. I have the added complication that this is a different radius software than we previously used, and it is not possible to revert back to try the old one. we previously used IC-Radius and are currently using Free-Radius.. both use mysql. I guess my questions would be process of elimination... 1. is there anything within the vserver system that could be considered a 'heartbeat' where a particular guest would be 'off' for a miniscule time where it could possibly miss an incoming packet? 2. is there anything similar within iproute2 framework? 3. i remember reading somewhere and now cannot find it that there is a way to increase the priority of a particular guest. i was wondering if i did that for this one very slightly if it may ease its pain? 4. when inside a guest, does mysql behave slightly slower than it normally does? if so is there a cure? unfortunately this particular system requires lightning fast mysql responses. 5. anyone have such an experience and a cure/workaround? -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] is kernel update worth it yet?
we are running vanilla kernels with the vserver patch on our Gentoo production system (the 'big bertha' one). currently this is 2.6.13.3-vs2.1.0-rc4 I see little bits here and there of 2.6.14 and some vs number being ready for prime time.. I have been out of intimate touch with what is going on due to job responsibilities.. are the fixes/features/etc enough to warrant a switch from above? is there a changelog or something i can look at to see what has been done since rc4? -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Gentoo Vserver: PHP5 - udev - baselayout problem
On Friday 11 November 2005 05:46 am, Tor Rune Skoglund wrote: hmm.. i just tried it on several of my guests and didn't see anything about udev.. prometheus spamassassin # ACCEPT_KEYWORDS='~x86' emerge -p dev-lang/php These are the packages that I would merge, in order: Calculating dependencies ...done! [ebuild N] app-text/aspell-0.60.4 [ebuild N] media-libs/freetype-2.1.10 [ebuild N] dev-libs/libmcrypt-2.5.7 [ebuild N] media-libs/t1lib-5.0.2 [ebuild N] app-admin/eselect-1.0_rc1 [ebuild N] app-admin/eselect-php-0.96 [ebuild N] dev-libs/libxml2-2.6.22 [ebuild N] dev-lang/php-5.0.5-r4 are the kernels between your 2 hosts both 2.6.x using only udev and not devfs? all of our servers are udev based only. it sounds like some configuration in your system is a bit off. i think this is definitely a job for the 'super-devs' of gentoo :) Hi List! This is probably a Gentoo specific Vserver problem: I am trying to emerge dev-lang/php to get php5. package.keywords have been set accordingly. Emerge wants to install udev for some reason. (Why would I want udev in a vserver? I probably don't...) Anyway, when trying to emerge udev, udev want a baselayout other than the vserver baselayout, and there my knowledge stops. Might be something with my USE flags? But I can't see which. Strange thing is that in another installation on another host, I do not have this udev requirement when installing php5. Any help or pointers appreciated. You guys probably want to see some config files. Just tell me which. Best regards Tor Rune Skoglund ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Xorg in a vserver running on a headless host
On Wednesday 09 November 2005 06:19 am, Marcel Gsteiger wrote: Hi all I am running vservers on a headless fc4-x86_64 (the real server runs at runlevel 3). My idea was to install a virtual graphical desktop environment (using gnome) in the virtual server, then let the users access this system remotely using FreeNX. Currently I am at the stage of bringing Xorg to life on my virtual server, but I'm still not there. Xvfb starts and listens on port 6000, but I can't get gnome to work. Do I have to install the Xorg components on the main server too? Did anybody else already try out this setup? Just in case I'm trying to reinvent the wheel... I am using xorg with kde for remote desktops as a guest off my workstation just fine, however I have not tried using xvfb/freeNX. I am using Xvnc in realvnc 4.1.1 which requires vncviewer run remotely and disabled xorg's ability to see/use a console. This keeps xorg from running but xdm still starts and Xvnc becomes the X running when called upon using the xorg config. as far as I know xorg does not have to be on the main server as well. I am running it on the main server simply because the remote desktop guest lives on my main workstation and I can log into the guest using a vncviewer window. If this method is of interest, I can post what I did to make it work. It will require a bit of configuration as it is not a standard setup. This configuration will cancel the X session upon disconnect or logoff and allows for multiple user logins simultaneously and dynamic resolution / color depth selections. There is a way to reconfigure it to allow you to return to a previously running session but I have not tried it as it cancels multiple simultaneous user ability. The fact that you have X running remotely is encouraging already. Are you providing a login manager (GDM/KDM) in your guest system configs for it? In my system (gentoo) we specify that in /etc/rc.conf and then load /etc/init.d/xdm which causes the chosen login manager to run. The login manager needs to have XDCMP and port 177 enabled in its config. From there the login manager knows how to set up the environment for the installed windowmanagers which can be selected usually in a pull-down menu. Chuck Regards --Marcel ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Nagios 2.x on a vserver. Anyone?
On Monday 07 November 2005 10:21 am, Oliver Welter wrote: yes when I installed 1.2 on a guest I had to edit the configure file to change all 127.0.0.1 to something like 127.0.0.3 which then passed the tests. as a 'just in case' measure I also changed my hosts file to reflect this ip for localhost I also had to add a ccapability to the guest configuration: raw_icmp we are running 2.6.13.3-vs2.1.0-rc4 nagios 1.2 works perfectly in a guest. I have not tried 2.x out yet, but the configuration change to 127.0.0.x other than 1 will solve your install problem. Hi, I think that this problem is related to the nonexisting 127.0.0.1 address. If I remeber correctly than nagios try to ping this address and cant reach it I think that I simply commented this check out in the scripts Oliver Evert Meulie wrote: (cross-post from: http://www.meulie.net/forum_viewtopic.php?94.4177 ) Hi all! I'm attempting to install Nagios 2.x on a vserver. However, the build stops with: checking for ICMP ping syntax... Has anyone else come across this problem before? Regards, Evert ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72 -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] guaranteeing a certain ip is used?
I have many ip addresses on each of 4 ethernet cards using iproute2. one of my guests must absolutely always send and receive on a certain ip address which is not the first ip on the card. I have bound the service (radius) to that ip which is the only one the guest is given. I have not proven it but have a suspicion that once in a while a radius reply is getting sent out the primary ip of either the card or eth0 (the card is eth3 and the default system gateway is for eth0.. the rest use default gateway routing via tables). is there some magic that can guarantee that guest and subsequent handling by the host can never mess up and always use that single ip for all traffic while not affecting other guests? my net setup for this card is as follows config_eth3=( 64.113.39.252 netmask 255.255.255.0 broadcast 64.113.39.255 ) routes_eth3=( 64.113.39.0/24 src 64.113.39.252 table 39net ) routes_eth3=( default via 64.113.39.1 table 39net ) rules_eth3=( from 64.113.39.0/24 table 39net ) would it work or help to duplicate the first routes_eth3 line but using the ip of the guest? eg: routes_eth3=( 64.113.39.0/24 src 64.113.39.5 table 39net ) or would this confuse the networking code? i would think this ip would be 'covered' by the rule set in the last line. i am still very green when it comes to iproute2 and what it can do. what is happening is I am missing a LOT of stop packets. many more than i ever did before I moved radius to a guest and I need to fix this because when a stop is missed people cannot log in as they get simulteneous use errors. maybe somehow assigning this guest slightly more priority? don't know .. grabbing at straws here.. the configuration of radius is fine and is just as it was when it was running by itself on its own server. -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] vserver-new reports a guest exists when it does not
this is on a gentoo system. i am trying to create a guest called support. i created the mount point in /vservers, it is mounted and a clear, empty volume. i run this command and get this result: phoenix vservers # vserver-new support --hostname support --context 3920 --interface eth3:64.113.39.20/24 template /work/guest-stuff/template.tar.bz2 * Existing vserver installation found. Try --destroy support does not exist in /etc/vservers or in /vservers as a configured guest, the context 3920 does not exist either and the ip address is not in use. i have tried changing the name of the guest, the context number, even the ethernet device still the same... its almost behaving like it has run out of resources or something but there are only 8 guests in operation.. this would be the 9th. what could be happening? and of course this happens when the boss wants this done in the next few hrs... -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] vserver-new reports a guest exists when it does not
On Monday 31 October 2005 02:49 pm, Tor Rune Skoglund wrote: that was it! thanks! it should take an already created empty subdir tho... gonna suggest that Mandag 31 oktober 2005 19:08, skrev Chuck: this is on a gentoo system. i am trying to create a guest called support. i created the mount point in /vservers, it is mounted and a clear, empty volume. i run this command and get this result: phoenix vservers # vserver-new support --hostname support --context 3920 --interface eth3:64.113.39.20/24 template /work/guest-stuff/template.tar.bz2 * Existing vserver installation found. Try --destroy support does not exist in /etc/vservers or in /vservers as a configured guest, the context 3920 does not exist either and the ip address is not in use. i have tried changing the name of the guest, the context number, even the ethernet device still the same... its almost behaving like it has run out of resources or something but there are only 8 guests in operation.. this would be the 9th. what could be happening? H, might be a similar problem that I had with vserver-new... I created the /vserver/newvserverdir as a symbolic link to a fresh and empty volume, and vserver-new complained. I found that it seems to just check if the directory exists, and if it does, it will not make a new server. So I tried --destroy, and it did remove the link, and created a new directory on the root partition. OK. Well, anyway I did a manual mv of all the files to a symlinked dir and it seems to be OK. Possibly I bug in vserver-new this I don't know. Best regards Tor Rune Skoglund [EMAIL PROTECTED] ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] vserver-new reports a guest exists when it does not
On Monday 31 October 2005 04:42 pm, Tor Rune Skoglund wrote: no its just the fact that the directory existed whether i used it as a mount point or whether it was a simple directory.. what i had to do is after the template was installed in the new guest, then i renamed the guest directory, made another one mounted it then moved all the data from the freshly installed directory to the mountpoint. Mandag 31 oktober 2005 22:40, skrev Benedikt Boehm: On Monday 31 October 2005 19:08, Chuck wrote: this is on a gentoo system. i am trying to create a guest called support. i created the mount point in /vservers, it is mounted and a clear, empty volume. i run this command and get this result: phoenix vservers # vserver-new support --hostname support --context 3920 --interface eth3:64.113.39.20/24 template /work/guest-stuff/template.tar.bz2 * Existing vserver installation found. Try --destroy vserver-new can handle mount points, just add --destroy and it will umount/mount the defice automagically... (you have to specify destroy here, because vserver-new can't decide if the mount point is fresh or already used.. AFAICT then the problem is existing symlinked vserver directories rather than mount points... Tor Rune Skoglund [EMAIL PROTECTED] ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] vserver-new reports a guest exists when it does not
On Monday 31 October 2005 04:40 pm, Benedikt Boehm wrote: ahh, ok... hehe the word destroy had me a bit leery to use it :) so then if i have a mount point already set up, then i can just use the original line with the destroy parm and it will load it in fine onto the mounted partition. On Monday 31 October 2005 19:08, Chuck wrote: this is on a gentoo system. i am trying to create a guest called support. i created the mount point in /vservers, it is mounted and a clear, empty volume. i run this command and get this result: phoenix vservers # vserver-new support --hostname support --context 3920 --interface eth3:64.113.39.20/24 template /work/guest-stuff/template.tar.bz2 * Existing vserver installation found. Try --destroy vserver-new can handle mount points, just add --destroy and it will umount/mount the defice automagically... (you have to specify destroy here, because vserver-new can't decide if the mount point is fresh or already used.. ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] private networking between guests
i saw somewhere a description on how to create an internal private network between guests and now i cant find it.. anyone have a url for that? -- Chuck Windows?? You mean the thirty-two bit extension and graphical shell to a sixteen-bit patch to an eight-bit operating system originally coded for a four-bit microprocessor which was written by a two-bit company that can't stand one bit of competition? Oh, that... -- Lee Clarke ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] private networking between guests
On Sunday 30 October 2005 08:36 am, Herbert Poetzl wrote: oh ok. so then i can use the host lo to create a pvtnet by assigning each guest a unique localhost number such as guest 1, 127.0.0.2, guest 2 , 127.0.0.3 and they can talk back and forth addressing each unique localhost id.. On Sun, Oct 30, 2005 at 08:15:45AM -0400, Chuck wrote: i saw somewhere a description on how to create an internal private network between guests and now i cant find it.. anyone have a url for that? all guest-guest communication is internal and private (to the host) as it happens via the loopback device best, Herbert -- Chuck Windows?? You mean the thirty-two bit extension and graphical shell to a sixteen-bit patch to an eight-bit operating system originally coded for a four-bit microprocessor which was written by a two-bit company that can't stand one bit of competition? Oh, that... -- Lee Clarke ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] gentoo util-vserver -r5 problem
On Sunday 30 October 2005 11:33 am, Enrico Scholz wrote: is there any difference between the util-veserver packages i can download and the ones emerged via Gentoo portage? I use genoo and have always gotten this pkg from portage. If there is no difference, then I will download and try it otherwise I will wait till its avail in portage. don't want to break anything. [EMAIL PROTECTED] (Chuck) writes: phoenix rio # /etc/init.d/vservers start * Unhiding /proc entries ... [ ok ] * Starting vservers of type 'default' ... * ns1 starting make: *** No rule to make target `..stamp', needed by `.ns2.stamp'. make: Target `all' not remade because of errors. Please test it again with 0.30.209; I added some more diagnostics there and fixed behavior with empty or comment lines. 0.30.208 contained a bug but it should affect 'stop' only. Enrico ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] gentoo util-vserver -r5 problem
On Sunday 30 October 2005 11:33 am, Enrico Scholz wrote: also, these that break during start are all using /etc/vservers/guestname/apps/init/depends where for this one, the ns2 guest has a depends that contains ns1 on a single line. i dont know if anything else is needed or not to use the depends.. the last one i want to start has this in the depends file ns1 ns2 usage colossus prometheus [EMAIL PROTECTED] (Chuck) writes: phoenix rio # /etc/init.d/vservers start * Unhiding /proc entries ... [ ok ] * Starting vservers of type 'default' ... * ns1 starting make: *** No rule to make target `..stamp', needed by `.ns2.stamp'. make: Target `all' not remade because of errors. Please test it again with 0.30.209; I added some more diagnostics there and fixed behavior with empty or comment lines. 0.30.208 contained a bug but it should affect 'stop' only. Enrico ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] gentoo util-vserver -r5 problem
I'm sure its something I have mis-configured, but I have no clue where to look. when i try to use the vservers startup script, which now works right on the other system, i get this error: phoenix rio # /etc/init.d/vservers start * Unhiding /proc entries ... [ ok ] * Starting vservers of type 'default' ... * ns1 starting make: *** No rule to make target `..stamp', needed by `.ns2.stamp'. make: Target `all' not remade because of errors. and it only starts ns1 then exits. i have depends set up on this machine but it seems i must have something else.. something about a guest.stamp or something.. for ns2 which failed, i have in /etc/vservers/ns2/apps/init/depends a single entry ns1 and then the others all depend on each other so there is a specific start order but it never gets that far. what do i still need to do? and then it hides proc entries and i cannot start the others manually until i unhide them manually. i still think this is a bad place to put the vprocunhide as without the other init script to back it up it leaves a person unable to manually work with their system when the init script setup doesnt work. for me i shall always edit that script to remove the vprocunhide/hide code in every version and will continue to use the manual script which i saved a copy of since i dont believe it is supplied any more. -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Probs after update world in Gentoo Guest
On Saturday 29 October 2005 04:37 am, Oliver Welter wrote: i run gentoo.. no expert on portage but.. Hi Hollow, Hi List, I have several problems with my gentoo guests :( 1) I build a new guest from scratch using vserver-new with a stage3 tarball from your website, afterwards I did an emerge -u world. Running etc-update tries to replaced /etc/inittab with a version taht contains tty entries - no good ida I think... did you first run emerge metadata and check the world file to be sure the standard baselayout is replaced with the vserver one in the listing? it sounds like something got confused. i installed all my production guests using the above method and p3 tar and didn't have that problem. maybe it is unique to a certain tar version? 2) The recent utils (0.30.308-r4) are a little bit to silent... I was running above mentioned server on a r4 toolset without any error-msgs. I than transfered the server image to a box with -r2 tools and got startup errors, that looks like the old problem with broken init scripts... When upgrading the tools the error messages are gone, the server seems to startup withput problems but I am a little bit nervous there were some start/stop issues with earlier tools on gentoo. -r4 is the first one to work properly with their fixes for it. i just installed -r5 which seems to be working well once i figure out what i dont have configured correctly when using depends. BTW: Base systems are Gentoo too, both using recent kernels wit 2.0vs patches... Any ideas ?? Oliver -- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72 -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Can't bind-mount host-guest
On Saturday 29 October 2005 10:11 am, Bruno wrote: hmm.. not sure what version you are running, but with the latest dev, there is an fstab in every guest configuration that has bind mounts for portage in it that get mounted and umounted as the guest is started/stopped. they bind to the host portage dirs, so as long as the host portage is mounted, these will reflect any changes made in the host such as sync or distfiles additions Hi, On my Gentoo Host+Guest I have a squashfs copy of portage which is loop-mounted at boot time on the host and then bind-mounted to the guest using the vserver's fstab in /etc/vservers/... How can I unmount+mount this snapshot with propagation to the guests when the image is updated? Best would be to have a vmount tool provided by util-vserver that can mount anything from guest-guest or even host-guest. It should work with the host's mount command (if needed) so it works even if the guest do not have mount installed. Bruno ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] gentoo util-vserver -r5 problem
On Saturday 29 October 2005 12:07 pm, Benedikt Boehm wrote: On Saturday 29 October 2005 18:03, Chuck wrote: On Saturday 29 October 2005 11:59 am, Benedikt Boehm wrote: On Saturday 29 October 2005 11:44, Chuck wrote: I'm sure its something I have mis-configured, but I have no clue where to look. when i try to use the vservers startup script, which now works right on the other system, i get this error: phoenix rio # /etc/init.d/vservers start * Unhiding /proc entries ... [ ok ] * Starting vservers of type 'default' ... * ns1 starting make: *** No rule to make target `..stamp', needed by `.ns2.stamp'. make: Target `all' not remade because of errors. and it only starts ns1 then exits. this is definitely a problem with util-vserver, the init script uses /usr/lib/util-vserver/start-vservers which is pretty borked hmm, ok even in -r5.. yeah, we try to fix up things step by step. i assume you noticed that the patch tarball grows by every release.. ;) heh yeah :) at least we have another way to make it happen so i'm not too concerned about the 'proper[' init method working or not.. ok i will refrain from using the init and just put the order to start/stop in local.start and local.stop using the vserver guest action command i have depends set up on this machine but it seems i must have something else.. something about a guest.stamp or something.. for ns2 which failed, i have in /etc/vservers/ns2/apps/init/depends a single entry ns1 and then the others all depend on each other so there is a specific start order but it never gets that far. what do i still need to do? and then it hides proc entries and i cannot start the others manually until i unhide them manually. i still think this is a bad place to put the vprocunhide as without the other init script to back it up it leaves a person unable to manually work with their system when the init script setup doesnt work. for me i shall always edit that script to remove the vprocunhide/hide code in every version and will continue to use the manual script which i saved a copy of since i dont believe it is supplied any more. ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] vservers init script broken?
On Friday 21 October 2005 10:57 pm, Chuck wrote: forgot to tell you how i installed both this one and the dell from a previous msg.. i used the vserver-new script along with hollow's new instructions to create a template guest using the stage3-pentium3 install tar and for creating a template tar and using that as the 'install tar' for the other guests. all the guests use baselayout-vserver-1.11.13-r1 as supplied in his tar. the host utils are util-vserver-0.30.208-r4 the kernel and vserver patch is 2.6.13.3-vs2.1.0-rc4 should i be using baselayout-vserver-1.12.0_pre8-r2 with this? i used this in the previous 'prometheus' setup. this is a different method than i used in the 2 temp hosts i had set up as this stage3-pentium3 version for the guests and the new instructions using vserver-new was not available then. this is also , for completeness, using the version of vservers init script that does its own vprocunhide which was not available in the other temp host installs. they used util-vserver-0.30.208-r3. on a totally different machine and completely different installation i get this which is a different error than the one on the dell: on start eron ~ # /etc/init.d/vservers start chdir(): No such file or directory chdir(): No such file or directory * Unhiding /proc entries ... [ ok ] * Starting vservers of type 'default' ... Davin starting [ ok ] on stopping: eron ~ # /etc/init.d/vservers stop * Stopping all types of vservers ... [ ok ] * Checking for vservers still running ... vuname: vc_xidopt2xid(/proc/virtual/3883): No such file or directory basename: too few arguments Try `basename --help' for more information. * Hiding /proc entries ... chdir(): No such file or directory chdir(): No such file or directory [ ok ] and the vserver is still running just fine. vserver guest stop works perfectly. do i have something misconfigured or is this script broken? it is giving me errors on 2 different machines and they are 2 different errors.. i posted the previous one a day or so ago -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] vservers init script broken?
On Saturday 22 October 2005 04:40 am, Benedikt Boehm wrote: On Saturday 22 October 2005 09:03, Chuck wrote: On Friday 21 October 2005 10:57 pm, Chuck wrote: forgot to tell you how i installed both this one and the dell from a previous msg.. i used the vserver-new script along with hollow's new instructions to create a template guest using the stage3-pentium3 install tar and for creating a template tar and using that as the 'install tar' for the other guests. all the guests use baselayout-vserver-1.11.13-r1 as supplied in his tar. the host utils are util-vserver-0.30.208-r4 the kernel and vserver patch is 2.6.13.3-vs2.1.0-rc4 should i be using baselayout-vserver-1.12.0_pre8-r2 with this? i used this in the previous 'prometheus' setup. this is a different method than i used in the 2 temp hosts i had set up as this stage3-pentium3 version for the guests and the new instructions using vserver-new was not available then. this is also , for completeness, using the version of vservers init script that does its own vprocunhide which was not available in the other temp host installs. they used util-vserver-0.30.208-r3. on a totally different machine and completely different installation i get this which is a different error than the one on the dell: on start eron ~ # /etc/init.d/vservers start chdir(): No such file or directory chdir(): No such file or directory * Unhiding /proc entries ... [ ok ] * Starting vservers of type 'default' ... Davin starting [ ok ] on stopping: eron ~ # /etc/init.d/vservers stop * Stopping all types of vservers ... [ ok ] * Checking for vservers still running ... vuname: vc_xidopt2xid(/proc/virtual/3883): No such file or directory this is fixed, and will be released as -r5 soon whew.. ok thanks! .. i was going crazy trying to figure out what I did wrong yet came up with nothing... ok for now I will just keep the start/stop on host reboot set up in the local.start and local.stop files so they are automated. basename: too few arguments Try `basename --help' for more information. * Hiding /proc entries ... chdir(): No such file or directory chdir(): No such file or directory [ ok ] and the vserver is still running just fine. vserver guest stop works perfectly. do i have something misconfigured or is this script broken? it is giving me errors on 2 different machines and they are 2 different errors.. i posted the previous one a day or so ago -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] routing question
On Saturday 22 October 2005 03:46 pm, Guenther Fuchs wrote: I would thnk you could do this using iproute2 with tables and rulesets Hi there, have a bit of problem here with setting up the proper routing for a special environment / requirement: I've here a dual-homed system which mainly should only be available to an internal net. Base host therefore hase no external IP (and shall not), all requests to external shall be routed through an (extra) NAT gateway. So far no problem, setting up all hosts only on eth1 and having a default gw on the base for this eth1 default route works fine. Now the prob: There should be set up _one_ host with also internal _and_ external IP (on eth0) which should externally use a different gw and also which should not change anything on the base setup. But if I activate _any_ external IP on eth0 the (previous) default route for eth1 is nomore used but guests (only having eth1 activated!) try to connect direct through this eth0 ip which they naturally can't use so traffic stops completely 8-( Any idea's/hint's? -- regards, Guenther Fuchs ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] routing question
On Saturday 22 October 2005 05:25 pm, Guenther Fuchs wrote: will gather some tutorial links on iproute2 and place them in here.. which distro are you running Hi there, on Saturday, October 22, 2005 at 23:07 on the list was posted: I would thnk you could do this using iproute2 with tables and rulesets Okay, do you have any links for me on that? Any howto or so which describes e.g. some similar setup maybe? -- regards, Guenther Fuchs ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] routing question
On Saturday 22 October 2005 07:09 pm, Chuck wrote: On Saturday 22 October 2005 05:25 pm, Guenther Fuchs wrote: will gather some tutorial links on iproute2 and place them in here.. which distro are you running Hi there, on Saturday, October 22, 2005 at 23:07 on the list was posted: I would thnk you could do this using iproute2 with tables and rulesets Okay, do you have any links for me on that? Any howto or so which describes e.g. some similar setup maybe? here are a number of reasonable links which you may gain an insight from on how to do what you want. http://snafu.freedom.org/linux2.2/docs/ip-cref/ip-cref.html#SECTION0008 http://lartc.org/howto/ http://enterprise.linux.com/article.pl?sid=04/10/07/0057237tid=89 http://www.policyrouting.org/iproute2.doc.html http://snafu.freedom.org/linux2.2/iproute-notes.html http://lartc.org/howto/lartc.rpdb.multiple-links.html http://people.netfilter.org/~rusty/unreliable-guides/ http://www.thelinuxreview.com/howto/networking/ i use gentoo which uses a net config file which plugs data into pre-defined routines calling ip with the proper commandlines.. but it can give you an insight into things maybe by seeing something modules=( iproute2 ) # 32net 4port config_eth0=( 64.113.33.2 netmask 255.255.254.0 broadcast 64.113.33.255 ) routes_eth0=( 64.113.32.0/23 src 64.113.33.2 table 32net ) routes_eth0=( default via 64.113.32.1 table 32net ) #default gateway for sysem as a catch-all routes_eth0=( default via 64.113.32.1 ) rules_eth0=( from 64.113.32.0/23 table 32net ) #pvtnet 4port config_eth1=( 172.30.0.57 netmask 255.255.255.0 broadcast 172.30.0.255 ) routes_eth1=( 172.30.0.0/24 src 172.30.0.57 table pvtnet ) routes_eth1=( default via 172.30.0.1 table pvtnet ) rules_eth1=( from 172.30.0.0/24 table pvtnet ) # 34net 4port config_eth2=( 64.113.34.254 netmask 255.255.255.0 broadcast 64.113.34.255 ) routes_eth2=( 64.113.34.0/24 src 64.113.34.254 table 34net ) routes_eth2=( default via 64.113.34.1 table 34net ) rules_eth2=( from 64.113.34.0/24 table 34net ) # 39net 4port config_eth3=( 64.113.39.252 netmask 255.255.255.0 broadcast 64.113.39.255 ) routes_eth3=( 64.113.39.0/24 src 64.113.39.252 table 39net ) routes_eth3=( default via 64.113.39.1 table 39net ) rules_eth3=( from 64.113.39.0/24 table 39net ) # available. netsemi nic #config_eth4=( 64.113.38.124 netmask 255.255.255.248 broadcast 64.113.38.127 ) #routes_eth4=( 64.113.38.120/29 src 64.113.38.124 table 38net ) #routes_eth4=( default via 64.113.38.121 table 38net ) #routes_eth4=( default via 64.113.38.121 ) #rules_eth4=( from 64.113.38.120/29 table 38net ) the above are all unique physical networks within our system each with its own border router to the outside with the exception of pvtnet which remains internal. the config statements above use ip addr the routes statements above use ip route the rules statements above use ip rule there are numerous examples of the usage syntax for those in the links. the tables are names given arbitrary unique values. contents of rt_tables: # # reserved values # 255 local 254 main 253 default 0 unspec # # local # i added these below to match our networks 32 32net 34 34net 38 38net 39 39net 172 pvtnet all of the above configs, yield this working routing table: ip route show 64.113.34.0/24 dev eth2 proto kernel scope link src 64.113.34.254 172.30.0.0/24 dev eth1 proto kernel scope link src 172.30.0.57 64.113.39.0/24 dev eth3 proto kernel scope link src 64.113.39.252 172.30.0.0/23 dev eth1 proto kernel scope link src 172.30.0.90 64.113.32.0/23 dev eth0 proto kernel scope link src 64.113.33.2 127.0.0.0/8 dev lo scope link default via 64.113.32.1 dev eth0 the working rules display: ip rule show 0: from all lookup local 32762: from 64.113.39.0/24 lookup 39net 32763: from 64.113.34.0/24 lookup 34net 32764: from 172.30.0.0/24 lookup pvtnet 32765: from 64.113.32.0/23 lookup 32net 32766: from all lookup main 32767: from all lookup default from the way you mentioned things, i would change a bit.. eth0 when active becomes a hardwired default for some things. it would be better to make eth0 your internal network if that is your routing priority and use eth1 for your outside connection. unless you want the oujtside connection to be the priority then make it eth0. place the system default gateway on the outside connection device because if the default is on your internal network, then any requests for outside ip addresses not addressed by rules or routes in the networking system will flow out to the default gateway into the internal network. each device has its own gateway/table in addition to the default, so anything you send to your internal network will always go out your internal network device. with iproute2, and there is documentation for this in the links above, you can also do ip forwarding and many other things easily
Re: [Vserver] Re: VServer forum
On Friday 21 October 2005 04:31 am, Evert Meulie wrote: Dariush Pietrzak,,, wrote: If people are not smart enough to check at the bottom of a thread for new/updated/corrected info, they should not be allowed near any electrical/electronic device... 8-) So, basically, you're saying that you should ban calculators, computers, GPS etc, because if you're smart and determined, you can do without. Good luck, Eehh, no... I am saying that people who don't know how to use them should stay away from them. People like us SHOULD use these devices... ;-) hehe Evert, umm I see only one flaw in this logic we became those who should by first being those who shouldn't :) Regards, Evert ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] many ip addys
i forget.. was it ngnet that would support a few hundred ip addys in a guest? i have a few big machines i cant move over until it can efficiently support several hundred ip addys (minimum a /24) ... if ngnet is the answer im gonna try to raise some funding from my boss .. no promises as he does not let go easily.. :D -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] many ip addys
On Friday 21 October 2005 12:12 pm, Herbert Poetzl wrote: On Fri, Oct 21, 2005 at 06:58:38AM -0400, Chuck wrote: i forget.. was it ngnet that would support a few hundred ip addys in a guest? i have a few big machines i cant move over until it can efficiently support several hundred ip addys (minimum a /24) ... if ngnet is the answer im gonna try to raise some funding from my boss .. no promises as he does not let go easily.. :D hehe, well, ngnet will provide that indeed, but for a quick and dirty hack you can raise the limit from the current 16 to something higher, but you should be aware that the current implementation will slow down with every ip address you add ... hehe dont think that would work as its a quite heavily used email server :) if i can get the software people to agree, i could just make 12 email guests.. separating the domains and accounts would be a bit of a problem but thats one way to do it.. problem is the licensing. its commercial software licensed for one machine. i know the ceo fairly well from dealing with him directly with bug fixes and feature implementations so maybe i can convince him im not trying to stiff him and get a multiple machine license for this if i explain the 16 ip limitation. the other problem ill run into is there will be 12x the resource usage of just one.. not good.. maybe ill leave it as a separate machine for now. so then just for clarity, using the current vserver software (2.1.0-r4) with up to 16 ip addys does not give any performance hits at all compared to 1 but beyond that is when it gets nasty. http://vserver.13thfloor.at/Experimental/VARIOUS/delta-2.6.9-vs1.9.3-net64.diff (old patch to give you some ideas :) best, Herbert -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] many ip addys
On Friday 21 October 2005 12:39 pm, Herbert Poetzl wrote: On Fri, Oct 21, 2005 at 12:23:38PM -0400, Chuck wrote: On Friday 21 October 2005 12:12 pm, Herbert Poetzl wrote: On Fri, Oct 21, 2005 at 06:58:38AM -0400, Chuck wrote: snip so then just for clarity, using the current vserver software (2.1.0-r4) with up to 16 ip addys does not give any performance hits at all compared to 1 but beyond that is when it gets nasty. no, that is a linear search, so every new ip address will actually add overhead on every socket bind and/or ip related operation inside the guest ... ok.. so how may ips in a guest do you estimate could be used before a perceptable change in performance happens? and by this are we talking about per interface or gross totals among all interfaces? HTH, Herbert http://vserver.13thfloor.at/Experimental/VARIOUS/delta-2.6.9-vs1.9.3-net64.diff (old patch to give you some ideas :) best, Herbert -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] VServer forum
On Thursday 20 October 2005 06:59 am, Stephen Harris wrote: On Thu, Oct 20, 2005 at 08:30:11AM +0200, Herbert Poetzl wrote: the main question is, do we need 'another forum'? Mailing lists are a lot better than web forums (IMHO). I've dropped out of more than one community when they transferred to web forums from mailing lists (although some people might not think that's a bad thing ;-)) I don't answer many questions here (2 or 3 in the past few months only) so my opinion isn't too important! I have found both to be very helpful. Mailing lists are excellent but for me I find it difficult to wait through a search of tens of thousands of msgs for some content I am looking for. There is an extreme convenience in mailing lists in that, one.. they come into your home therefore seem more personal... two you can maintain your own 'database' of sorts to search at your liesure however it does get to be difficult when manipulating,say, 25,000 msgs. :) The linux-vserver project has, I believe, one of the most responsive mailing lists I have seen, and the irc is excellent for solving problems in real-time. I use the gentoo forum as an example. It is large, very active, and I have yet to do a search that did not result in a fast return on my search criteria. New content not covered was responded to quickly by many, some quite helpful and others not so much... just have to use judgement. To me forums seem less 'personal' in that I have to 'go' somewhere to get my answers and for that effort it still is not in real time as irc would be. I think the primary beauty of forums is topic organization and speed and ease of searches. However, in this case, a forum is just one more place to pay attention to. I personally think the mailing list and irc are sufficient for any discussion. both have their strong and weak points... what would be nice instead of an interactive forum, but a bit difficult to implement, would be to create some kind of parsing program to parse the entire mailing list archives into a database, then present the database data in 'forum' form for easy searching and reading. I believe this would answer a need for a 'forum style' facility, and would make finding answers *considerably* easier for everyone. I don't know of a topic that has not been resolved somewhere in the mailing list archives. Resolutions done on irc, if not covered in the mailiing list could be submitted to the database for inclusion, and by running this update program a few times a day looking for new data, the 'forum' facility would be updated almost in real time. I also believe in people having the freedom to create a forum if they wish, but it would be a personal thing run as many personal gentoo forums are and not officially sanctioned.. I think the developers have enough to do keeping up with mailing list and irc and I would never expect them to add more to their list to watch... what we need to do as users is to assist them by developing this huge wealth of data already existing in the mailing list archives and in irc logs into some kind of organized, easy to use, one-stop information facility like this forum-database idea. -- rgds Stephen ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] very odd error with vservers init script
I tried to start the vservers for the first time using the init script and got a weird error I have never seen before. using the vserver guestname start/stop works perfectly the guests are configured with various mark files for some default to start and others with 'nostart' inside them so they wont start.. they also have the depends file in each and are ordered like this: ns1 starts first so it has no depends file. it is the only one that doesnt. ns2 contains ns1 in its depends the third, usage, contains ns1 ns2 in its depends and the 4th contains ns1 ns2 usage in its depends so that should start them in the order of ns1, ns2, usage, nagios the error i get from the init script is this: phoenix etc # /etc/init.d/vservers start * Unhiding /proc entries ... [ ok ] * Starting vservers of type 'default' ... * ns1 starting make: *** No rule to make target `..stamp', needed by `.ns2.stamp'. make: Target `all' not remade because of errors. and only ns1 started. any clues what I did wrong? until this gets fixed up, i have the start/stop orders in the local start/stop files in case of a reboot before i get it fixed. -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] unique uptime report per guest
On Tuesday 18 October 2005 09:52 am, Gregory (Grisha) Trubetskoy wrote: it worked. thanks! On Tue, 18 Oct 2005, Chuck wrote: ok found that but now where do i put the virt_uptime flag? into what file? Most likely in /etc/vservers/vserver name/flags (one flag per line) Grisha ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] unique uptime report per guest
On Tuesday 18 October 2005 09:53 am, Gregor Schreier wrote: thanks! it worked! .. that's one of the hardest things i have found working with guests is which configuration goes in which file.. the flower page is helpful but outdated and doesn't include everything.. and all the other documentation has it mentioned in various areas.. :) this http://linux-vserver.org/Caps+and+Flags file looks like a great start for listing everything, now all someone has to do is expand on it to show what goes where :) or give the flower page an update. Hi Chuck, try echo VIRT_UPTIME /etc/vservers/yourvserver/flags Chuck wrote: On Tuesday 18 October 2005 08:17 am, Herbert Poetzl wrote: On Tue, Oct 18, 2005 at 05:52:45AM -0400, Chuck wrote: in the video a unique uptime per guest ability is mentioned.. i just searched the site and can't find how to do this.. basically it's all in the flags and capabilities ... :) #define VXF_VIRT_UPTIME 0x0002 check the new wiki page http://linux-vserver.org/Caps+and+Flags for more details on the flags (and soon caps too) ok found that but now where do i put the virt_uptime flag? into what file? best regards gregor ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Quota for guest servers on /vservers, /vservers is on LVM ext3
On Tuesday 18 October 2005 02:58 pm, Steven Truong wrote: Hi, all. After reading some of the messages regarding quota, I would like to implement quota for the guest servers on a LVM partition /vservers. I only care to limit the amount of space a guest server could use and I do not care about the per user quota in each guest. I found this link from a recent message and wonder if the instructions applied to my situations. http://linux-vserver.org/Standard+non-shared+quota to be honest i am not sure of the above method.. all i did was create a logical volume using lvm for each guest the size i wanted that guest to have. easy to extend if more space is needed for a given guest. i followed this how-to below but interpolated my own needs into it and it worked great the first time out. now each guest is limited to a 10g 'hdd'. on my next round of installs some will be a 40g etc...and it doesn't place any extra responsibility on the kernel for quotas or anything. http://www.gentoo.org/doc/en/lvm2.xml although the doc is written for gentoo, the information in it is not gentoo specific besides how to install packages. the only other change i made was i did not use modules but included all lvm items needed within the kernel since i use monolithic kernels (not capable of loading modules). i used one volume which was half the raid disk system i have set aside for this, leaving the other half to be used sometime in the future as needed. i then used the file system i wanted for each guest on each virtual volume. i made a small /vservers home mount point and then mounted the individual guest disks within that so it is all well separated from the host. the final tree looks like this now with each volume/mount point the name of the guest: /dev/sda6 9.4G 516M 8.9G 6% /vservers /dev/mapper/vg-colossus 10G 429M 9.6G 5% /vservers/colossus /dev/mapper/vg-nagios 10G 371M 9.7G 4% /vservers/nagios /dev/mapper/vg-ns 10G 352M 9.7G 4% /vservers/ns /dev/mapper/vg-ns110G 342M 9.7G 4% /vservers/ns1 /dev/mapper/vg-ns210G 337M 9.7G 4% /vservers/ns2 /dev/mapper/vg-prometheus10G 703M 9.4G 7% /vservers/prometheus /dev/mapper/vg-usage10G 528M 9.5G 6% /vservers/usage that's about as close to physically partitioning the disk for each as you can get but any of them are easily extendable and won't pass its own boundaries if a rogue guest gets artistic and desides to write pretty 1 and 0 designs all over the 'disk'. :) . this was my first attempt with lvm and i honestly now cannot say how i lived without it before. :) And how LVM could assist in limiting disk space of each guest server? (If by any means) Please assist me in this attempt. Thanks. -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: Quota for guest servers on /vservers, /vservers is on LVM ext3
On Tuesday 18 October 2005 08:06 pm, Steven Truong wrote: Thanks Mr. *Gorecki and Chuck for the answers. I have a question regarding http://linux-vserver.org/Disk+Limits . I created my vserver without specifying the context number, so do I need to fix it or have to rebuild the guest server with a context number, or could I just append to the guest server the context number (if possible)? Regarding to Chuck's method, I think it is a bit different for my case because /vservers is already a logical volume, and I can resize /vserver as a whole partition. i think you may be able to create logical volumes within the one large logical volume :) on mine, yeah the partition i created to put the guests is simply a volume group, but as far as i know, as long as the /vservers is mounted first, you can mount additional logical partitions within it. Best regards, Steven. * On 10/18/05, Steven Truong [EMAIL PROTECTED] wrote: Hi, all. After reading some of the messages regarding quota, I would like to implement quota for the guest servers on a LVM partition /vservers. I only care to limit the amount of space a guest server could use and I do not care about the per user quota in each guest. I found this link from a recent message and wonder if the instructions applied to my situations. http://linux-vserver.org/Standard+non-shared+quota And how LVM could assist in limiting disk space of each guest server? (If by any means) Please assist me in this attempt. Thanks. -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: Quota for guest servers on /vservers, /vservers is on LVM ext3
On Tuesday 18 October 2005 08:06 pm, Steven Truong wrote: Thanks Mr. *Gorecki and Chuck for the answers. I have a question regarding http://linux-vserver.org/Disk+Limits . I created my vserver without specifying the context number, so do I need to fix it or have to rebuild the guest server with a context number, or could I just append to the guest server the context number (if possible)? hmm.. i believe you might get away with placing the context number in the correct files and locations within the /etc/vserers definitions. Regarding to Chuck's method, I think it is a bit different for my case because /vservers is already a logical volume, and I can resize /vserver as a whole partition. Best regards, Steven. * On 10/18/05, Steven Truong [EMAIL PROTECTED] wrote: Hi, all. After reading some of the messages regarding quota, I would like to implement quota for the guest servers on a LVM partition /vservers. I only care to limit the amount of space a guest server could use and I do not care about the per user quota in each guest. I found this link from a recent message and wonder if the instructions applied to my situations. http://linux-vserver.org/Standard+non-shared+quota And how LVM could assist in limiting disk space of each guest server? (If by any means) Please assist me in this attempt. Thanks. -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: Quota for guest servers on /vservers, /vservers is on LVM ext3
On Tuesday 18 October 2005 08:11 pm, Chuck wrote: On Tuesday 18 October 2005 08:06 pm, Steven Truong wrote: Thanks Mr. *Gorecki and Chuck for the answers. I have a question regarding http://linux-vserver.org/Disk+Limits . I created my vserver without specifying the context number, so do I need to fix it or have to rebuild the guest server with a context number, or could I just append to the guest server the context number (if possible)? Regarding to Chuck's method, I think it is a bit different for my case because /vservers is already a logical volume, and I can resize /vserver as a whole partition. i think you may be able to create logical volumes within the one large logical volume :) the reason why i say this is lvm appears to just be an application interface method of the manual way of using dd to create a large file then associating that file via the mapper and the loopx devices then initializinig a file system on it and then mounting it... using this manual approach i have created a master encrypted 'disk' with several volumes inside it and successfully mounted each with no problem... copying the one large master file backs up the entire subsystem i created inside as well...so if lvm is in fact an application that manipulates this type of setup, then you should be able to create volumes within a volume. on mine, yeah the partition i created to put the guests is simply a volume group, but as far as i know, as long as the /vservers is mounted first, you can mount additional logical partitions within it. Best regards, Steven. * On 10/18/05, Steven Truong [EMAIL PROTECTED] wrote: Hi, all. After reading some of the messages regarding quota, I would like to implement quota for the guest servers on a LVM partition /vservers. I only care to limit the amount of space a guest server could use and I do not care about the per user quota in each guest. I found this link from a recent message and wonder if the instructions applied to my situations. http://linux-vserver.org/Standard+non-shared+quota And how LVM could assist in limiting disk space of each guest server? (If by any means) Please assist me in this attempt. Thanks. -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] Re: Quota for guest servers on /vservers, /vservers is on LVM ext3
On Tuesday 18 October 2005 09:28 pm, Steven Truong wrote: what version of vserver are you running? 2.0.x? for mine, im running 2.1.0-rc4 and i have a context file inside guestname here is the directory layout for the first level that i have for a guest named colossus.. below that is the context file typed out with the context id i assigned it dell colossus # ls -l drwxr-xr-x 3 root root 72 Oct 9 17:43 apps -rw-r--r-- 1 root root 5 Oct 9 17:43 context -rw-r--r-- 1 root root 13 Oct 18 10:03 flags -rw-r--r-- 1 root root 261 Oct 10 05:32 fstab drwxr-xr-x 3 root root 72 Oct 9 17:43 interfaces -rw-r--r-- 1 root root 9 Oct 9 17:43 name lrwxrwxrwx 1 root root 26 Oct 9 17:43 run - /var/run/vservers/colossus drwxr-xr-x 2 root root 112 Oct 9 21:21 scripts drwxr-xr-x 2 root root 72 Oct 9 17:43 uts lrwxrwxrwx 1 root root 41 Oct 9 17:43 vdir - /etc/vservers/.defaults/vdirbase/colossus dell colossus # cat context 3905 dell colossus # is your structure similar? Oops. I found out that I could set S_CONTEXT in /etc/vservers/lanweb.conf to set the context id. Here is my lanweb.conf IPROOT=192.168.0.78 http://192.168.0.78 IPROOTMASK=255.255.255.0 http://255.255.255.0 IPROOTDEV=eth1 S_HOSTNAME=lanweb S_DOMAINNAME=none ONBOOT=no S_CAPS=CAP_NET_RAW S_CONTEXT=10 Once I got lanweb started and then entered it by root. At the prompt of the host, I did vserver lanweb status and here is the output: Vserver 'lanweb' is running at context '49153' Number of processes: 3 Uptime: 00:02 I did set S_CONTEXT=10 just in case I did not set it correctly. However, in both case, my context is not 10 and always different numbers. Is there any restrictions on the range of context id? Is this kind of servername.conf configuration file a legacy stuff too? What could be wrong here? Could some expert give me some info on this? I would like to solve this so I can have a context id for my guest server to set up quota on it. Thanks. Steven. On 10/18/05, Steven Truong [EMAIL PROTECTED] wrote: Thanks Mr. *Gorecki and Chuck for the answers. I have a question regarding http://linux-vserver.org/Disk+Limits . I created my vserver without specifying the context number, so do I need to fix it or have to rebuild the guest server with a context number, or could I just append to the guest server the context number (if possible)? Regarding to Chuck's method, I think it is a bit different for my case because /vservers is already a logical volume, and I can resize /vserver as a whole partition. Best regards, Steven. * On 10/18/05, Steven Truong [EMAIL PROTECTED] wrote: Hi, all. After reading some of the messages regarding quota, I would like to implement quota for the guest servers on a LVM partition /vservers. I only care to limit the amount of space a guest server could use and I do not care about the per user quota in each guest. I found this link from a recent message and wonder if the instructions applied to my situations. http://linux-vserver.org/Standard+non-shared+quota And how LVM could assist in limiting disk space of each guest server? (If by any means) Please assist me in this attempt. Thanks. -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
[Vserver] a few minor? problems with Xvnc / KDE in a guest
I almost hafve remote desktops working perfectly in a guest. I have two issues to deal with, one/both of which may be easy to solve? When I log into the guest from remote after first starting the guest so /tmp is empty, KDE halts at initializing services and the connection breaks,dropping out of guest memory as it should. I don't know what causes this but if I first log in as root after a guest startup, it all works and every user can log in properly afterward.. any clues why this happens? It would be nice to figure this one out otherwise every time I restart the guest, I have to remember to log in as root then log out. It all works for users for as long as that guest remains running after root has logged in and out. I'm at a loss where to look on this one. My other issue which is a fairly major one, is that from within KDE I cannot open any kind of terminal window, be it user / root shell, ssh shell, nothing. Which tells me I need some kind of tty/pts definition that is non-harmful. Any ideas there? I have no user-defined capabilities of any kind given to the guest. It is just as it was created. Outside of these two things, it works perfectly and doesn't bother my primary desktop running on the host at all:) -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] a few minor? problems with Xvnc / KDE in a guest
On Monday 17 October 2005 02:30 am, Chuck wrote: just re-read this and it doesn't make sense:) on logging in i am speaking about logging in via vncviewer and kdm, logging into kde. ssh works fine via terminal. I almost hafve remote desktops working perfectly in a guest. I have two issues to deal with, one/both of which may be easy to solve? When I log into the guest from remote after first starting the guest so /tmp is empty, KDE halts at initializing services and the connection breaks,dropping out of guest memory as it should. I don't know what causes this but if I first log in as root after a guest startup, it all works and every user can log in properly afterward.. any clues why this happens? It would be nice to figure this one out otherwise every time I restart the guest, I have to remember to log in as root then log out. It all works for users for as long as that guest remains running after root has logged in and out. I'm at a loss where to look on this one. My other issue which is a fairly major one, is that from within KDE I cannot open any kind of terminal window, be it user / root shell, ssh shell, nothing. Which tells me I need some kind of tty/pts definition that is non-harmful. Any ideas there? I have no user-defined capabilities of any kind given to the guest. It is just as it was created. Outside of these two things, it works perfectly and doesn't bother my primary desktop running on the host at all:) -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] a few minor? problems with Xvnc / KDE in a guest
On Monday 17 October 2005 05:03 am, Herbert Poetzl wrote: thats was it o great guru :) thank you! all i had to do was add my users to the tty group and terminal windows now work. still doesn't fix the startup problem though where after a guest start i have to log into kde as root then log out to allow regular users to log in. without this, kde only gets to some point in initializing services and then dies. i did notice one thing but i dont know if this would have a bearing on it or not.. whenever i start xdm which then runs kdm, i get this error: kdm[5185]: XDMCP socket creation failed, errno 97 however, after i have done the root login, i can restart xdm all i want and it gets that error every time but nothing affects my login as a regular user. it always continues to work until the guest is restarted again. i have no clue where to look for that problem :) everything within the kdm/xdm/kde framework has a single ip listen address assigned. everything within kde that i need for remote admin work and personal option config for kde works fine. i have removed everything else from the menu since its not a 'play' desktop :) once i can get this to work without a root login first, then there is 100% success in running a remote kde desktop under a vserver guest :) On Mon, Oct 17, 2005 at 02:30:50AM -0400, Chuck wrote: I almost hafve remote desktops working perfectly in a guest. I have two issues to deal with, one/both of which may be easy to solve? When I log into the guest from remote after first starting the guest so /tmp is empty, KDE halts at initializing services and the connection breaks,dropping out of guest memory as it should. I don't know what causes this but if I first log in as root after a guest startup, it all works and every user can log in properly afterward.. any clues why this happens? It would be nice to figure this one out otherwise every time I restart the guest, I have to remember to log in as root then log out. It all works for users for as long as that guest remains running after root has logged in and out. I'm at a loss where to look on this one. My other issue which is a fairly major one, is that from within KDE I cannot open any kind of terminal window, be it user / root shell, ssh shell, nothing. Which tells me I need some kind of tty/pts definition that is non-harmful. Any ideas there? check the /dev/pts permissions and the groups, maybe your permissions are too restrictive to allow terminal sessions to work properly. also check the logs for pam messages and verify that your pam setup is working correctly, e.g. on was it FC4? disable the uuid audit plugin ... HTH, Herbert I have no user-defined capabilities of any kind given to the guest. It is just as it was created. Outside of these two things, it works perfectly and doesn't bother my primary desktop running on the host at all:) -- Chuck ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] a few minor? problems with Xvnc / KDE in a guest
On Monday 17 October 2005 04:44 pm, Herbert Poetzl wrote: On Mon, Oct 17, 2005 at 04:35:47PM -0400, Chuck wrote: On Monday 17 October 2005 05:03 am, Herbert Poetzl wrote: thats was it o great guru :) thank you! you're welcome! all i had to do was add my thusers to e tty group and terminal windows now work. still doesn't fix the startup problem though where after a guest start i have to log into kde as root then log out to allow regular users to log in. without this, kde only gets to some point in initializing services and then dies. i did notice one thing but i dont know if this would have a bearing on it or not.. whenever i start xdm which then runs kdm, i get this error: kdm[5185]: XDMCP socket creation failed, errno 97 however, after i have done the root login, i can restart xdm all i want and it gets that error every time but nothing affects my login as a regular user. it always continues to work until the guest is restarted again. i have no clue where to look for that problem :) everything within the kdm/xdm/kde framework has a single ip listen address assigned. everything within kde that i need for remote admin work and personal option config for kde works fine. i have removed everything else from the menu since its not a 'play' desktop :) once i can get this to work without a root login first, then there is 100% success in running a remote kde desktop under a vserver guest :) hmm, a remote logon might actually change the 'ownership' of the tty entries and/or some permissions it might also create some files and/or initialize some authentication stuff ... maybe do an ls -lR before and after that root login (inside the guest!) and check for differences (also in /dev, /dev/pts and /tmp) ... it does create entries in /tmp.. one msg i read in a search for the problem said they cured it by changing ownership of the /tmp files to root after the failed login... but thats a patch as bad as my logging in as root soon as i start it:) this is a look at tmp when everything is working as it should be... cody is one of the remote users.. i had him log in to be sure it worked to the outside ok. the root and gndmstr ones are coming from my workstation-host via vnc just like the remote people will use. drwx-- 2 codyusers40 Oct 17 16:50 kde-cody drwx-- 2 gndmstr wheel40 Oct 17 16:26 kde-gndmstrz2Ekz4 drwx-- 2 rootroot 40 Oct 17 16:24 kde-root drwx-- 2 codyusers40 Oct 17 16:50 ksocket-cody drwx-- 2 gndmstr wheel 120 Oct 17 16:26 ksocket-gndmstrEffl17 drwx-- 2 rootroot 40 Oct 17 16:25 ksocket-root the failed attempt appears to have the same permissions as above.. will run that ls cmd to a file before any logins on a fresh start and then again after a failed user login, then after a root login to see what files may differ i think i can get away with only doing /usr/kde , /dev, /tmp and /var since some run pids and sockets are created there. also /home because kde creates dcop server files and links there during use. HTH, Herbert On Mon, Oct 17, 2005 at 02:30:50AM -0400, Chuck wrote: I almost hafve remote desktops working perfectly in a guest. I have two issues to deal with, one/both of which may be easy to solve? When I log into the guest from remote after first starting the guest so /tmp is empty, KDE halts at initializing services and the connection breaks,dropping out of guest memory as it should. I don't know what causes this but if I first log in as root after a guest startup, it all works and every user can log in properly afterward.. any clues why this happens? It would be nice to figure this one out otherwise every time I restart the guest, I have to remember to log in as root then log out. It all works for users for as long as that guest remains running after root has logged in and out. I'm at a loss where to look on this one. My other issue which is a fairly major one, is that from within KDE I cannot open any kind of terminal window, be it user / root shell, ssh shell, nothing. Which tells me I need some kind of tty/pts definition that is non-harmful. Any ideas there? check the /dev/pts permissions and the groups, maybe your permissions are too restrictive to allow terminal sessions to work properly. also check the logs for pam messages and verify that your pam setup is working correctly, e.g. on was it FC4? disable the uuid audit plugin ... HTH, Herbert I have no user-defined capabilities of any kind given to the guest. It is just as it was created. Outside of these two things, it works perfectly and doesn't bother my primary desktop running on the host at all:) -- Chuck
Re: [Vserver] beecrypt on host blocks rpm install
On Sunday 16 October 2005 06:48 am, Christian Heim wrote: On Thursday 13 October 2005 20:49, Chuck wrote: is there a way around this in gentoo? i cannot install rpm since the vserver util code installed beecrypt. Calculating dependencies ...done! [blocks B ] dev-libs/beecrypt (is blocking app-arch/rpm-4.2) [ebuild N] app-arch/rpm-4.2 +doc +nls +python 0 kB You could add app-arch/rpm ~x86 to /etc/portage/package.keywords and then retry the merge ... beecrypt blocks only rpm-versions below 4.2.1. From ChangeLog: ahh ok thanks! *beecrypt-3.1.0-r2 (13 Apr 2004) 23 Oct 2004; Stefan Jones [EMAIL PROTECTED] : Block app-arch/rpm-4.2 not app-arch/rpm-4.2.1 so I can downgrade rpm im assuming util-vserver requires beecrypt. if no way around it, then we do Yes, AFAIK for the unification stuff. -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
Re: [Vserver] problems with sshd/pam inside vserver guest
On Thursday 13 October 2005 12:14 pm, Eric Jorgensen wrote: I don't know the fedora installs, but I had basically that same problem on one of my earlier gentoo installs.. for me it was 2 things. 1. i didnt have my host ssh or guest ssh locked into listening to specific ip addresses. 2. the most important thing was, i created the guest using links against the template and something was wrong and much of the file system had immutable files and directories which prevented modifications/writes. once i fixed that so COW would break the link properly it did work. i dont know if this will help with anything but Hello, I'm running 2.6.12.4-vs2.0 on a Fedora Core 4 box, with a Fedora Core 4 guest. I've installed the openssh-server package and dependencies, but I cannot seem to get it to work. I have configured sshd on the host and guest to only bind the their proper IPs: guest: tcp 00 10.0.0.215:22 0.0.0.0:* LISTEN sshd does start up in the guest, but there is a problem with pam. From /var/log/secure: Oct 13 12:06:02 v015 sshd[24429]: Accepted password for root from 10.0.0.215 port 47168 ssh2 Oct 13 12:06:02 v015 sshd[24431]: error: PAM: pam_open_session(): Cannot make/remove an entry for the specified session I did a bunch of googling for this, and tried commenting out the pam_limits.so from /etc/pam.d/system-auth, but to no avail. Any pointers would be appreciated! Thanks, jorgy ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver -- Chuck ...and the hordes of M$*ft users descended upon me in their anger, and asked 'Why do you not get the viruses or the BlueScreensOfDeath or insecure system troubles and slowness or pay through the nose for an OS as *we* do?!!', and I answered...'I use Linux'. The Book of John, chapter 1, page 1, and end of book ___ Vserver mailing list Vserver@list.linux-vserver.org http://list.linux-vserver.org/mailman/listinfo/vserver
