[Server-devel] 10AM NYC Time: XS(CE) Thurs Community Call
Seems some people forgot to take a Christmas/New Year/Etc break and we have an awful lot to talk about January 2nd, whether or not Cubox + XSCE 0.5 + Internet-in-a-Box will be sold at every Walmart in Haiti for $99, but perhaps not before Thursday arrives :-) See you then, 10AM NYC Time this Thursday! DIY Agenda: https://docs.google.com/document/d/1o6QtzLb6e58YKWqMf_junux2XyBRLFm31un8YLcYslg Send your skype username or phone number if you can join us in the new year, thanks so much- -- Unsung Heroes of OLPC, interviewed live @ http://unleashkids.org ! ___ Server-devel mailing list Server-devel@lists.laptop.org http://lists.laptop.org/listinfo/server-devel
Re: [Server-devel] [XSCE] XSCE 0.5
In order to change from a appliance machine to a gateway machine, the playbook and ansible will need to rewrite the iptables, and get the ports right so that dansguardian properly filters content that comes from the internet. I doubt very much that all this would work, without running ./runansible again. When I was loading 0.5 on a x86-64, the adapters were not discovered properly. The quickest way to discover this, for me, is to type iptables-save in a root terminal. Look at the masquerade line. The output -o needs to be the wan adapter, and the -i the lan. I'm not understanding why you would want to change appliance - gateway without running ansible? On Mon, Dec 30, 2013 at 8:18 PM, Curt Thompson curtathomp...@gmail.comwrote: Just to recap for server-devel@lists.laptop.org, In virtualbox using XFCE and installing XSCE 0.5, a problem appeared with idmgr when doing ./runansible -the solution was to first run yum -y update audit and then rerun ./runansible. After this, XSCE seemed to be working normally with the exception of the IIAB link being active despite no IIAB device attached. New Info: Setting the network adapter in Virtualbox to bridged made XSCE accessible from other devices on the LAN. Rerunning ./runansible was not necessary (previously the adapter was in NATmode). Appliance mode' seems to work quite smoothly and is easy to set up, in VirtualBox at least (will try on physical hardware later tonight). I had previously disabled SELinux, reenabled it to see if disabling it was necessary. Many errors pop up when SELinux is enabled. Set it back to disabled I enabled a second network adapter and booted up to see what would happen. Everything seems to work locally, portal is still accessible from other machines on the host's network. Next question: However, XSCE does not seem to be acting as a server/gateway. Would the best solution be to rerun ./runansible now that two network adapters are connected? My understanding is that ./runansible will detect that there are two available adapters, one of which is an internet gateway, and set itself up in gateway mode. Is that about right? Would it be easy enough to do without rerunning ./runansible? (Just get dhcpd going, for example?) ((I'm sort of imagining a real-world scenario where we got XSCE installed with one network adapter, then internet was cut off, then someone came through with a second USB network adapter - some scenario like that. Could we get it going so that the machien would work as a router/gateway when internet came back... easily?)) On 12/30/2013 4:29 PM, Anna wrote: As far as accessing it from other machines on your LAN, I've had success with configuring the VM's network for Bridged mode and specifying the host machine's adapter. Can't remember if I needed to rerun ./runansible, but it seems like I didn't have to (though it wouldn't hurt anything). I also can't remember if I needed to disable SELinux on the host machine or not. Sorry, I just got back home after a week with the family and my head's not quite back in the game yet. On Mon, Dec 30, 2013 at 6:20 PM, Adam Holt h...@laptop.org wrote: Curt, Can you share your conclusions more publicly on server-devel@lists.laptop.org or http://wiki.laptop.org/go/XS_Community_Edition or similar? On Mon, Dec 30, 2013 at 7:11 PM, Curt Thompson curtathomp...@gmail.comwrote: Anna, George, Tim, Braddock, Thank you, ansible finished without issue after yum update audit, rebooted, and I seem to have XSCE 0.5 running in appliance mode - quite easy. URLs schoolserver and local IP 10.0.2.15 bring up portal as expected. semi-bug? Internet In A Box link appears active and is clickable though no IIAB device is attached. Next: What would I need to do to convert this into a Gateway-style install of XSCE? I could enable another adapter in VirtualBox and rerun ansible, but the install documentation seems to hint that rerunning ansible may not be necessary. On 12/30/2013 3:28 PM, Anna wrote: Oh, you're right, Braddock, Miguel resolved that with pr/103: https://github.com/XSCE/xsce/pull/103 So updating the audit package on FC18 should be the only workaround for a successful install, now. On Mon, Dec 30, 2013 at 5:22 PM, Braddock bradd...@braddock.com mailto:bradd...@braddock.com bradd...@braddock.com wrote: On 12/30/2013 03:20 PM, Anna wrote: I've used that ISO and for idmgr had to do: yum update audit Then there's a conflict with IIAB (which is currently being addressed, I believe) but in the meantime, the workaround is: What is the conflict, and am I the one addressing it? I don't recall it off hand. -braddock On Mon, Dec 30, 2013 at 5:11 PM, Curt Thompson curtathomp...@gmail.com mailto:curtathomp...@gmail.comcurtathomp...@gmail.com mailto:curtathomp...@gmail.com curtathomp...@gmail.com mailto:curtathomp...@gmail.com curtathomp...@gmail.com wrote:
[Server-devel] How do the clients find a School Server in appliance mode
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi guys, I was introduced to XSCE Appliance Mode, which raises some great possibilities, but also some difficulties which need to be addressed, and which Internet-in-a-Box appliances have already faced. If a school server is installed on a network in appliance mode, and does not serve as the network's DNS provider, then it becomes very difficult for client XO's to find it since it has no name. We have faced the same issue with IIAB appliances, and compensate for it by providing mDNS/avahi and Samba NMB naming services. - From any Windows, Linux, or Mac when an IIAB appliance is on the network it is accessible from either http://know (Windows) or http://know.local (Mac or Linux) - our hostname is always know. Installing these services is just a matter of `apt-get install samba avahi-daemon' (Debian - something yum in Fedora). A big problem we've faced with IIAB appliances on XO deployments is that the OLPC OS does not turn on mDNS name resolution by default in /etc/nsswitch.conf (although the necessary software is installed). On the XO laptop, all that is required is a `yum install nss-mdns` to rectify the situation. If you are creating a new image for the XO laptops, I strongly urge you to install nss-mdns to activate mDNS resolution. It will make School Server, IIAB, or other content sources on the network running in an appliance mode practical without the need to resort to difficult DNS modifications and static IP addresses. The XSCE installer should similarly install samba and avahi-daemon on the school server to publicize the host name. If XSCE can be used in appliance mode with mDNS and NMB name resolution, I would be seriously considering discontinuing our (Debian-based) IIAB appliance hardware in favor of IIAB running on XSCE on something like a Cubox for all our IIAB deployments. I raised this issue on the OLPC devel mailing list last summer and it favorably received: http://lists.laptop.org/pipermail/devel/2013-July/037559.html - -braddock -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJSwkd5AAoJEHWLR/DQzlZuM9MIAJ2tYe3gDvA9vm9KvG4z3U6m WsnEQKXIDOSljqxdrVitDGgcxBLjKFFUXzevpBsr+ibhG2QdF2kN3IcihYv1hT00 ScChTpxqYcc3/PXipSoeZE8jUz+H8t/B6sI2+YpJQIf5ffAVP0PkAS+2rgmBdIWF 5zfs26pYnJVB00opZHFyKOes4GNNZqGnbpmVocKDS+o3jBYvxiTE98e51hB48dWu Fof95sKYg2S7FH3Z1LRQF/IiIZsDRqmezfqLgxykEBkW34g3RZfDadBcFxxNqkrv FJH/G2lMhpjGierfszVT8cf0LlCC4mUze7yMF8So6GdthL+zjBqzYcVVx85SkHw= =yHKO -END PGP SIGNATURE- ___ Server-devel mailing list Server-devel@lists.laptop.org http://lists.laptop.org/listinfo/server-devel
Re: [Server-devel] a kernel for our solidrun protos?
After a few false starts: - Putting the microsd card upside down does not work. - The microusb console connector is really intermittent (does not seat well with my connector body). - My hdmi to vga adapter causes the monitor to jitter I was not able to get the stock u-boot that Rabeeh provides to boot. I downloaded the git repo, and selected the i4 make version. Then for drill, I compiled his git repo kernel, and put it on partition 1. I untared the rootfs onto a second partition. At this point it's not clear that the kernel is able to get into the rootfs, though the console messages say that it has discovered the mmcblk device, and that it has mmcblk0p1, and mmcblk0p2. I may need to change the kernel command line (I got to this point without any modification of partition 1). More play tomorrow On Sun, Dec 29, 2013 at 10:45 AM, Jon Nettleton jon.nettle...@gmail.comwrote: George, Start out running the u-boot and kernel that Rabeeh has provided, that is based on the current stable kernel sources provided by Freescale. I have a 3.10 based kernel that is more performant but I have not run it on the i4 hardware yet. Getting a baseline on the standard we can then better diagnose bugs or performance issues one way or the other with the new kernel. For the second partition feel free to untar the F18 armhfp base image. Changing the kernel command line can be done using a uEnv.txt file on the first partition of the SDHC port. If we need anything more advanced I can write a u-boot boot script, or custom u-boot to handle loading things. We may want a fallback kernel or something similar. Let me know if you have any questions or problems. Jon ___ Server-devel mailing list Server-devel@lists.laptop.org http://lists.laptop.org/listinfo/server-devel
Re: [Server-devel] How do the clients find a School Server in appliance mode
On Mon, Dec 30, 2013 at 08:26:33PM -0800, Braddock wrote: [...] A big problem we've faced with IIAB appliances on XO deployments is that the OLPC OS does not turn on mDNS name resolution by default in /etc/nsswitch.conf (although the necessary software is installed). On the XO laptop, all that is required is a `yum install nss-mdns` to rectify the situation. This is tracked as OLPC #12730 and a fix has been pushed for olpc-os-builder. If you are creating a new image for the XO laptops, I strongly urge you to install nss-mdns to activate mDNS resolution. Agreed. OLPC has no plans to make a new image at the moment, but deployments may consider adopting the fix in their olpc-os-builder usage. [...] -- James Cameron http://quozl.linux.org.au/ ___ Server-devel mailing list Server-devel@lists.laptop.org http://lists.laptop.org/listinfo/server-devel
[Server-devel] Upgrade many machines
Is there a good way to upgrade allot of XO's (1.5 + 1.75) from a custom unsigned 12.1 to an unsigned custom 13.2 using the server? If so: - What do I need from oob? - What do I do on the server? - What do the kids do on the laptops? ___ Server-devel mailing list Server-devel@lists.laptop.org http://lists.laptop.org/listinfo/server-devel
