Re: [Vserver] [OPoll] BME inclusion into next stable release

[Benedikt Boehm]

OPINION POLL


please check (X) all points which apply ...
(according to your opinion)

 [ ]  I had no idea about this issue/deficiency
 [X]  I did already know about it

 [X]  I'm already using BME (or similar) patches 
 [ ]  I will start using BME patches now
 [ ]  I do not need/use this 'feature' at all

 [X]  I think this SHOULD get into the next
      stable Linux-VServer release because ...

      [X]  I am using it/want to use it
      [ ]  It's more a bugfix than a feature
      [X]  I like the idea of ro --bind mounts

 [ ]  I think this should NOT be included into
      the next stable release because ...
      
      [ ]  it is not thoroughly tested
      [ ]  it is not mature enough
      [ ]  it adds unnecessary code 
      [ ]  it should better be fixed in
           the mainline Linux Kernel
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] Re: [OPoll] BME inclusion into next stable release

[Christian Aichinger]

On Fri, Jan 06, 2006 at 11:15:06PM +0100, Herbert Poetzl wrote:
> OPINION POLL
> 
> 
> please check (X) all points which apply ...
> (according to your opinion)
> 
>  [ ]  I had no idea about this issue/deficiency
>  [X]  I did already know about it
> 
>  [X]  I'm already using BME (or similar) patches 
>  [ ]  I will start using BME patches now
>  [ ]  I do not need/use this 'feature' at all
> 
>  [X]  I think this SHOULD get into the next
>   stable Linux-VServer release because ...
> 
>   [X]  I am using it/want to use it
>   [ ]  It's more a bugfix than a feature
>   [X]  I like the idea of ro --bind mounts
> 
>  [ ]  I think this should NOT be included into
>   the next stable release because ...
>   
>   [ ]  it is not thoroughly tested
>   [ ]  it is not mature enough
>   [ ]  it adds unnecessary code 
>   [ ]  it should better be fixed in
>the mainline Linux Kernel

Cheers,
Christian


signature.asc
Description: Digital signature
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] [OPoll] BME inclusion into next stable release

[Daniel Hokka Zakrisson]

Herbert Poetzl wrote:

OPINION POLL


please check (X) all points which apply ...
(according to your opinion)

 [ ]  I had no idea about this issue/deficiency
 [X]  I did already know about it

 [ ]  I'm already using BME (or similar) patches 
 [X]  I will start using BME patches now

 [ ]  I do not need/use this 'feature' at all

 [X]  I think this SHOULD get into the next
  stable Linux-VServer release because ...

  [X]  I am using it/want to use it
  [X]  It's more a bugfix than a feature
  [X]  I like the idea of ro --bind mounts

 [ ]  I think this should NOT be included into
  the next stable release because ...
  
  [ ]  it is not thoroughly tested

  [ ]  it is not mature enough
  [ ]  it adds unnecessary code 
  [X]  it should better be fixed in

   the mainline Linux Kernel


--
Daniel Hokka Zakrisson
GPG id: 06723412


pgp06Fc7uy5yi.pgp
Description: PGP signature
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] [OPoll] BME inclusion into next stable release

[micah]

> OPINION POLL
> 
> 
> please check (X) all points which apply ...
> (according to your opinion)
> 
>  [ ]  I had no idea about this issue/deficiency
>  [x]  I did already know about it
> 
>  [ ]  I'm already using BME (or similar) patches 
>  [ ]  I will start using BME patches now
>  [x]  I do not need/use this 'feature' at all

or if i could add an option:
   [x]  I do not need/use this 'feature' right now, but might in the future

>  [x]  I think this SHOULD get into the next
>   stable Linux-VServer release because ...
> 
>   [ ]  I am using it/want to use it
>   [x]  It's more a bugfix than a feature
>   [x]  I like the idea of ro --bind mounts
> 
>  [x]  I think this should NOT be included into
>   the next stable release because ...
>   
>   [ ]  it is not thoroughly tested
>   [ ]  it is not mature enough
>   [ ]  it adds unnecessary code 
>   [x]  it should better be fixed in
>the mainline Linux Kernel


signature.asc
Description: Digital signature
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] [OPoll] BME inclusion into next stable release

[John Francis Lee]

> OPINION POLL
> 
> 
> please check (X) all points which apply ...
> (according to your opinion)
> 
>  [X ]  I had no idea about this issue/deficiency
>  [ ]  I did already know about it
> 
>  [ X]  I'm already using BME (or similar) patches 
>  [ ]  I will start using BME patches now
>  [ ]  I do not need/use this 'feature' at all
> 
>  [ X]  I think this SHOULD get into the next
>   stable Linux-VServer release because ...
> 
>   [ ]  I am using it/want to use it
>   [X ]  It's more a bugfix than a feature
>   [ ]  I like the idea of ro --bind mounts
> 
>  [ ]  I think this should NOT be included into
>   the next stable release because ...
>   
>   [ ]  it is not thoroughly tested
>   [ ]  it is not mature enough
>   [ ]  it adds unnecessary code 
>   [ ]  it should better be fixed in
>the mainline Linux Kernel
> 
> 
> TIA,
> Herbert
> 
> ___
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver
-- 
John Francis Lee
1/9-10 Thanon Trairat
Muang Chiang Rai 57000
Thailand

___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Vservers and quotas

[Michael S. Zick]

On Fri January 6 2006 17:12, Herbert Poetzl wrote:
> On Fri, Jan 06, 2006 at 03:47:56PM -0600, Michael S. Zick wrote:
> > On Fri January 6 2006 14:19, Herbert Poetzl wrote:
> > >
> > > no, the different taggings work equally well, it's
> > > unfortunate that there is no xid aware backup and
> > > restore tool, otherwise the transition could be 
> > > seamless ...
> > > 
> > Herbert,
> > Seamless backup and restore of xid between different
> > xid marking systems leads me to a dumb question:
> > 
> > Is there a flag or token indicating which tagging
> > system is in use?  In the inode?  In superblock?
> 
> no
> 
> > In kernel?
> 
> yes, the kernel (on 2.x) knows about the tagging
> info and exports that information to userspace
> (the testfs.sh scripts reports that)
>
Meaning it is not practical.
Since the kernel (and what it exports) can be changed
independently of how the files are recorded.

You got three inode bits to use for indicators
of which xid system was used?  (inode.xid.version?) 

Yes, I think it has to be at the inode level.

Consider a ro bind mount...

Kernel-1; xid-method-1; root=/dev/hda
auxiliary mount: /dev/hdb

Kernel-2; xid-method-2; root=/dev/hdb
auxiliary mount: /dev/hda

Now bind mount the two trees together, I don't
see where anything other than an inode.xid.version
will do the job.  Otherwise one of the file systems
will be read/restored incorrectly depending on which
kernel is running.

The above example is perhaps extreme, but the same
thing can happen over time...

Backup files.
Change Kernel.
Restore files.

Sequence would work.

Change Kernel.
Backup files.
Restore files.

Now the filesystem is trash.

Mike

> this is the relevant code (bash):
> 
> INFO=(`sed 's/.*:\t//' /proc/virtual/info 2>/dev/null || echo ''`)
> case ${INFO[2]:1:1} in
>   0) TAGI="none"  ;;
>   1) TAGI="uid16" ;;
>   2) TAGI="gid16" ;;
>   3) TAGI="ugid24";;
>   4) TAGI="intern";;
>   5) TAGI="runtime"   ;;
>   *) TAGI="unknown"   ;;
> esac
> 
> best,
> Herbert
> 
> > Just point me in the right direction to the appropriate
> > source code - I will see if I can figure something out.
> > Most likely a tag<->text conversion such as used for
> > ACLs.
> > 
> > Mike
> > ___
> > Vserver mailing list
> > Vserver@list.linux-vserver.org
> > http://list.linux-vserver.org/mailman/listinfo/vserver
> 
> 
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Vservers and quotas

[Herbert Poetzl]

On Fri, Jan 06, 2006 at 03:47:56PM -0600, Michael S. Zick wrote:
> On Fri January 6 2006 14:19, Herbert Poetzl wrote:
> >
> > no, the different taggings work equally well, it's
> > unfortunate that there is no xid aware backup and
> > restore tool, otherwise the transition could be 
> > seamless ...
> > 
> Herbert,
> Seamless backup and restore of xid between different
> xid marking systems leads me to a dumb question:
> 
> Is there a flag or token indicating which tagging
> system is in use?  In the inode?  In superblock?

no

> In kernel?

yes, the kernel (on 2.x) knows about the tagging
info and exports that information to userspace
(the testfs.sh scripts reports that)

this is the relevant code (bash):

INFO=(`sed 's/.*:\t//' /proc/virtual/info 2>/dev/null || echo ''`)
case ${INFO[2]:1:1} in
  0) TAGI="none";;
  1) TAGI="uid16"   ;;
  2) TAGI="gid16"   ;;
  3) TAGI="ugid24"  ;;
  4) TAGI="intern"  ;;
  5) TAGI="runtime" ;;
  *) TAGI="unknown" ;;
esac

best,
Herbert

> Just point me in the right direction to the appropriate
> source code - I will see if I can figure something out.
> Most likely a tag<->text conversion such as used for
> ACLs.
> 
> Mike
> ___
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] VServer logo?

[Herbert Poetzl]

On Fri, Jan 06, 2006 at 10:56:58PM +0100, Guenther Fuchs wrote:
> Hi there,
> 
> anyone graphically talented created a logo for VServer yet or wants
> to? I guess, there's not only me wanting to show a "powered by Linux-
> VServer" on their page ;-)

hmm, yes, maybe there is somebody who can/will do that ...

in case not, I spent  a few minutes with gimp and you can 
find a very simple powered by (just text) here:

http://vserver.13thfloor.at/Stuff/LOGO/powered_by_LVS.png
http://vserver.13thfloor.at/Stuff/LOGO/powered_by_LVS.xcf

(together with older ideas)

best,
Herbert

> -- 
> regards,
> 
> Guenther Fuchs
> 
> ___
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] [OPoll] BME inclusion into next stable release

[Guenther Fuchs]

Hi there,

on Friday, January 6, 2006 at 23:15 there was posted:


HP> OPINION POLL
HP> 

HP> please check (X) all points which apply ...
HP> (according to your opinion)

HP>  [ ]  I had no idea about this issue/deficiency
HP>  [X]  I did already know about it

HP>  [ ]  I'm already using BME (or similar) patches 
HP>  [ ]  I will start using BME patches now
HP>  [ ]  I do not need/use this 'feature' at all

HP>  [X]  I think this SHOULD get into the next
HP>   stable Linux-VServer release because ...

HP>   [X]  I am using it/want to use it
HP>   [ ]  It's more a bugfix than a feature
HP>   [X]  I like the idea of ro --bind mounts

HP>  [ ]  I think this should NOT be included into
HP>   the next stable release because ...
HP>   
HP>   [ ]  it is not thoroughly tested
HP>   [ ]  it is not mature enough
HP>   [ ]  it adds unnecessary code 
HP>   [X]  it should better be fixed in
HP>the mainline Linux Kernel

Identified as: I'd like to use this, it should be fixed in mailine
Kernel, but it would be more than nice if VServer pre-fixes this, as
with VServer it becomes more an issue than with mainline.

-- 
regards,

Guenther Fuchs

___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] [OPoll] BME inclusion into next stable release

[Christian Heim]

On Friday 06 January 2006 23:15, HP wrote:
OPINION POLL


> please check (X) all points which apply ...
> (according to your opinion)
>
 [ ]  I had no idea about this issue/deficiency
 [X]  I did already know about it

 [X]  I'm already using BME (or similar) patches
 [ ]  I will start using BME patches now
 [ ]  I do not need/use this 'feature' at all

 [X]  I think this SHOULD get into the next
   stable Linux-VServer release because ...

  [X]  I am using it/want to use it
  [ ]  It's more a bugfix than a feature
  [X]  I like the idea of ro --bind mounts

 [ ]  I think this should NOT be included into
   the next stable release because ...

   [ ]  it is not thoroughly tested
   [ ]  it is not mature enough
   [ ]  it adds unnecessary code
   [ ]  it should better be fixed in
 the mainline Linux Kernel

As I said earlier, IMO it's a must feature (at least for me) for the next 
stable release. But I really tend to agree with Eyck, it should really get 
fixed/pushed to mainline ...

> TIA,
> Herbert

Christian

-- 
Christian Heim <[EMAIL PROTECTED]>
Gentoo Linux Developer - vserver


pgpgDU41lDRhl.pgp
Description: PGP signature
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] [OPoll] BME inclusion into next stable release

[eyck]

OPINION POLL


please check (X) all points which apply ...
(according to your opinion)

 [ ]  I had no idea about this issue/deficiency
 [X]  I did already know about it

 [X]  I'm already using BME (or similar) patches 
 [ ]  I will start using BME patches now
 [ ]  I do not need/use this 'feature' at all

 [X]  I think this SHOULD get into the next
  stable Linux-VServer release because ...

  [X]  I am using it/want to use it
  [X]  It's more a bugfix than a feature
  [X]  I like the idea of ro --bind mounts

 [ ]  I think this should NOT be included into
  the next stable release because ...
  
  [ ]  it is not thoroughly tested
  [ ]  it is not mature enough
  [ ]  it adds unnecessary code 
  [X]  it should better be fixed in
   the mainline Linux Kernel

-- 
Key fingerprint = 40D0 9FFB 9939 7320 8294  05E0 BCC7 02C4 75CC 50D9
 Total Existance Failure
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] [OPoll] BME inclusion into next stable release

[Herbert Poetzl]

Hi Folks!

The new year isn't very old yet, and already there
are questions over questions regarding the future
direction linux-vserver will take ...

anyway, interesting times and so I once again try
to get your opinion on a specific patch, the so
called Bind Mount Extensions (short BME)

(the hasty reader can skip to OPINION POLL)


what is it?
===

simple, the Linux kernel supports a few 'magic'
tricks in the vfs (virtual filesystem) layer, which
can be used to 'create' different views of the
underlying filesystems ... those are better known
as --bind and --rbind mounts, but also --move
mounts belong to this category.

what can I do with it?
==

they basically allow you to 'copy' or 'move' the
'view' of an entire directory to a different point
in the vfs hierarchy, let's take an example here:

 mount --bind /var/tmp /tmp

the result is that both /tmp and /var/tmp point to
the same directory (/var/tmp) in the filesystem,
even if they originally (e.g. var) are on different
filesystems

why would I need BME?
=

well, unfortunately the kernel design is flawed,
or better incomplete, in that way, that it does
not honor certain mount attributes, like read only
or noatime, more than that, it silently ignores 
them ...

 mount --bind -o ro /tmp /mnt/
 touch /mnt/foo



OPINION POLL


please check (X) all points which apply ...
(according to your opinion)

 [ ]  I had no idea about this issue/deficiency
 [ ]  I did already know about it

 [ ]  I'm already using BME (or similar) patches 
 [ ]  I will start using BME patches now
 [ ]  I do not need/use this 'feature' at all

 [ ]  I think this SHOULD get into the next
  stable Linux-VServer release because ...

  [ ]  I am using it/want to use it
  [ ]  It's more a bugfix than a feature
  [ ]  I like the idea of ro --bind mounts

 [ ]  I think this should NOT be included into
  the next stable release because ...
  
  [ ]  it is not thoroughly tested
  [ ]  it is not mature enough
  [ ]  it adds unnecessary code 
  [ ]  it should better be fixed in
   the mainline Linux Kernel


TIA,
Herbert

___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] VServer logo?

[Guenther Fuchs]

Hi there,

anyone graphically talented created a logo for VServer yet or wants
to? I guess, there's not only me wanting to show a "powered by Linux-
VServer" on their page ;-)

-- 
regards,

Guenther Fuchs

___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Vservers and quotas

[Michael S. Zick]

On Fri January 6 2006 14:19, Herbert Poetzl wrote:
>
> no, the different taggings work equally well, it's
> unfortunate that there is no xid aware backup and
> restore tool, otherwise the transition could be 
> seamless ...
> 
Herbert,
Seamless backup and restore of xid between different
xid marking systems leads me to a dumb question:

Is there a flag or token indicating which tagging
system is in use?  In the inode?  In superblock?
In kernel?

Just point me in the right direction to the appropriate
source code - I will see if I can figure something out.
Most likely a tag<->text conversion such as used for
ACLs.

Mike
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] fedora core 4 and ibm 336

[Herbert Poetzl]

On Fri, Jan 06, 2006 at 06:19:37PM +0100, jean-marc pouchoulon wrote:
> Bonjour,
> 
> I try to use vserver on an ibm 336 server and fedora core 4. 
> Ibm 336 does not seem to support 2.6.14 kernel and by extension 
> 2.6.14 vserver kernel

does not seem? why do you conclude that?

> Only 2.6.11 boots correctly.
> Any solution to find a vserver 2.6.11  rpm  kernel ?
> a vserver patch to 2.6.11 ?

there have been several, but they are outdated
by now ... nevertheless if that is your choice

http://vserver.13thfloor.at/Experimental/OUTDATED/

best,
Herbert

> thanks in advance.
> 
> 
> Jean-Marc
> 
> 
> 
> 
> ___
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Vservers and quotas

[Michael S. Zick]

On Fri January 6 2006 14:19, Herbert Poetzl wrote:
> 
> no, the different taggings work equally well, it's
> unfortunate that there is no xid aware backup and
> restore tool, otherwise the transition could be 
> seamless ...
> 
?
What about Joerg Schilling's star?


I have been digging through the documentation -
It reads as if, when using 24-bit uid/gid it will
handle the xid properly -

But it might not translate from one type of xid
tagging into another.

Mr. Schilling claims it can be easily tweaked for
such a purpose. (in the README)

Have not done any testing yet myself.

Mike
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Vservers and quotas

[Herbert Poetzl]

On Fri, Jan 06, 2006 at 08:22:41PM +0100, Grzegorz Nosek wrote:
> 2006/1/6, Herbert Poetzl <[EMAIL PROTECTED]>:
> >
> > well, they are for linux 2.4 and the quota patches, so
> > on linux 2.6 you can use them to turn quota on and off
> > but that's it ...
> 
> Oh :( Could you please provide some insight wrt. what will the
> following actions do (I will try them when I have some time but if you
> know the answer offhand, it will be very appreciated, especially in
> the multi-guest scenario - will multiple guests step on each other
> toes somehow?):
> 
> 1)
> host# quotacheck -cmu /vservers ; quotaon /vservers
> guest# edquota someuser ; quota someuser

should work fine and apply to the specified uid/gid
in and outside of the guests ...

> 2)
> host# quotacheck -cmu /vservers ; ln /vservers/aquota.user
> /vservers/guest/aquota.user
> guest# quotaon / ; edquota someuser ; quota someuser

very likely to fail, as the device is required for
the quota tools to issue the syscalls, if done with
the cqtools that might even work, but it will not
allow to have more than one such guest which controls
the quotas 

> 3)
> guest# quotacheck -cmu / ; quotaon / ; edquota someuser ; quota someuser

the quotacheck might work to some degree (depending 
on tools and configuration) and write quota files
inside the guest, which are unlikely to work ...
(without per context quota support, that is)

> > in your case, it just means that you have to set and
> > maitnain the quota on the host, and let the guests
> > suffer from the limitations :)
> 
> Well, it means I have to hack my way around this limitation as I need
> to set quotas from within the vserver... I have already made some
> progress but I need to sum up and clarify my findings.
> 
> BTW, How will the system react if I change the xid-tagging option from
> UID24/GID24 to internal (I'm using ext3 exclusively)? I mean I can
> chxid the files to proper values after the change but are there any
> unobvious consequences? I think I'll change this setting (or turn off
> tagxid altogether) as repquota -a on the host is mostly unreadable
> right now.

no, the different taggings work equally well, it's
unfortunate that there is no xid aware backup and
restore tool, otherwise the transition could be 
seamless ...

> > but let me know if you are interested in per-context
> > quota for 2.6, if there is a certain demand, I will
> > implement it ...
> 
> (as usually) count me in :)

okay ... :)

> Best regards,
>  Grzegorz Nosek
> ___
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] fedora core 4 and ibm 336

[jean-marc pouchoulon]

Bonjour,

I try to use vserver on an ibm 336 server and fedora core 4.
Ibm 336 does not seem to support 2.6.14 kernel and by extension 2.6.14 
vserver  kernel

Only 2.6.11 boots correctly.
Any solution to find a vserver 2.6.11  rpm  kernel ? a vserver patch to 
2.6.11 ?


thanks in advance.


Jean-Marc




___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] Vservers and quotas

[Grzegorz Nosek]

2006/1/6, Herbert Poetzl <[EMAIL PROTECTED]>:
>
> well, they are for linux 2.4 and the quota patches, so
> on linux 2.6 you can use them to turn quota on and off
> but that's it ...

Oh :( Could you please provide some insight wrt. what will the
following actions do (I will try them when I have some time but if you
know the answer offhand, it will be very appreciated, especially in
the multi-guest scenario - will multiple guests step on each other
toes somehow?):

1)
host# quotacheck -cmu /vservers ; quotaon /vservers
guest# edquota someuser ; quota someuser

2)
host# quotacheck -cmu /vservers ; ln /vservers/aquota.user
/vservers/guest/aquota.user
guest# quotaon / ; edquota someuser ; quota someuser

3)
guest# quotacheck -cmu / ; quotaon / ; edquota someuser ; quota someuser

>
> in your case, it just means that you have to set and
> maitnain the quota on the host, and let the guests
> suffer from the limitations :)

Well, it means I have to hack my way around this limitation as I need
to set quotas from within the vserver... I have already made some
progress but I need to sum up and clarify my findings.

BTW, How will the system react if I change the xid-tagging option from
UID24/GID24 to internal (I'm using ext3 exclusively)? I mean I can
chxid the files to proper values after the change but are there any
unobvious consequences? I think I'll change this setting (or turn off
tagxid altogether) as repquota -a on the host is mostly unreadable
right now.

>
> but let me know if you are interested in per-context
> quota for 2.6, if there is a certain demand, I will
> implement it ...
>

(as usually) count me in :)

Best regards,
 Grzegorz Nosek
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] [Arch] powerpc aka. ppc64

[Herbert Poetzl]

On Fri, Jan 06, 2006 at 06:48:10PM +0100, Joel Soete wrote:
> >
> > Thanks to the Debian Folks (espeically Bastian Blank)
> > for providing a quad Power5 test machine!
> >
> > initial power support looks good so far, but could
> > only be tested with 32bit userspace (yet), which
> > seems to work quite fine after a few adjustments.
> >
> > enjoy,
> > Herbert
> >
> runing this new testfs.sh-0.12 with the same kernel:
> # uname -a
> Linux patst007 2.6.15-vs2.1.0.2-pa1-d32up #1 Fri Jan 6 16:42:46 CET 2006
> parisc GNU/Linux
> 
> (a 32bit up kernel on parisc-linux ;-)
> 
> I got near same results:
> Linux-VServer FS Test [V0.12] Copyright (C) 2005-2006 H.Poetzl
> Linux 2.6.15-vs2.1.0.2-pa1-d32up parisc/0.30.209
> VCI:  0002:0001 263 03000116 (ugid24)
> ---
> testing ext2 filesystem ...
> [000]. (ext2 format)
> xid related tests ...
> [001]. [002]. [011]. [012]. [014]. [015]. [019].
> [020]. [021]. [022]. [023]. [024]. [025]. [026]. [027]. [028].
> [033]. [034]. [035]. [037].
> xattr related tests ...
> [101]. [102]. [103]. [104]. [106]. [108]. [109].
> [112]. [113]. [114]. [115]. [116]. [117]. [118]. [119].
> [121]. [122]. [123]. [124]. [199].
> 
> ---
> testing ext3 filesystem ...
> [000]. (ext3 format)
> xid related tests ...
> [001]. [002]. [011]. [012]. [014]. [015]. [019].
> [020]. [021]. [022]. [023]. [024]. [025]. [026]. [027]. [028].
> [033]. [034]. [035]. [037].
> xattr related tests ...
> [101]. [102]. [103]. [104]. [106]. [108]. [109].
> [112]. [113]. [114]. [115]. [116]. [117]. [118]. [119].
> [121]. [122]. [123]. [124]. [199].
> 
> ---
> testing xfs filesystem ...
> [000]. (xfs format)
> xid related tests ...
> [001]. [002]. [011]. [012]. [014]. [015]. [019].
> [020]. [021]. [022]. [023]. [024]. [025]. [026]. [027]. [028].
> [033]. [034]. [035]. [037].
> xattr related tests ...
> [101]. [102]. [103]. [104]. [106]. [108]. [109].
> [112]. [113]. [114]. [115]. [116]. [117]. [118]. [119].
> [121]. [122]. [123]. [124]. [199].
> 
> ---
> testing reiser filesystem ...
> [000]. (reiserfs format)
> xid related tests ...
> [001]. [002]. [011]. [012]. [014]. [015]. [019].
> [020]. [021]. [022]. [023]. [024]. [025]. [026]. [027]. [028].
> [033]. [034]. [035]. [037].
> xattr related tests ...
> [101]. [102]. [103]. [104]. [106]. [108]. [109].
> [112]. [113]. [114]* [115]. [116]. [117]. [118]. [119].
> [121]. [122]. [123]. [124]. [199].
> 
> ---
> testing jfs filesystem ...
> [000]. (jfs format)
> xid related tests ...
> [001]. [002]. [011]. [012]. [014]. [015]. [019].
> [020]. [021]. [022]. [023]. [024]. [025]. [026]. [027]. [028].
> [033]. [034]. [035]. [037].
> xattr related tests ...
> [101]. [102]. [103]. [104]* [106]. [108]. [109].
> [112]. [113]. [114]* [115]. [116]. [117]. [118]. [119].
> [121]* [122]* [123]* [124]* [199].
> 
> So seems to confirm that reiser fs pb is a parisc-linux issue ;-(

no, it _was_ a linux-vserver issue actually,
please either look/test with 

 http://vserver.13thfloor.at/Experimental/patch-2.6.15-vs2.0.1.2.diff
 http://vserver.13thfloor.at/Experimental/patch-2.6.15-vs2.1.0.3.diff

or manually apply this patch:

 http://vserver.13thfloor.at/Devel/PAT-2.1.1/delta-reiser-fix01.diff

best,
Herbert

> Anyway seems it changed a bit:
> previous test shaws:
> verify /mnt/test/file_2618: -+(-)-i-+(-) ~ -
> [114]# failed.
> 
> this new shaws:
> verify /mnt/test/file_1062: -+(-)-i-+(-)?(E)+(-) ~ -
> [114]# failed.
> 
> (I don;t care of the file name obviously ;-) )
> 
> Thanks and hth,
> Joel
> 
> 
> ---
> A free anti-spam and anti-virus filter on all Scarlet mailboxes
> More info on http://www.scarlet.be/
> 
> ___
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re:[Vserver] [Arch] powerpc aka. ppc64

[Joel Soete]

>
> Thanks to the Debian Folks (espeically Bastian Blank)
> for providing a quad Power5 test machine!
>
> initial power support looks good so far, but could
> only be tested with 32bit userspace (yet), which
> seems to work quite fine after a few adjustments.
>
> enjoy,
> Herbert
>
runing this new testfs.sh-0.12 with the same kernel:
# uname -a
Linux patst007 2.6.15-vs2.1.0.2-pa1-d32up #1 Fri Jan 6 16:42:46 CET 2006
parisc GNU/Linux

(a 32bit up kernel on parisc-linux ;-)

I got near same results:
Linux-VServer FS Test [V0.12] Copyright (C) 2005-2006 H.Poetzl
Linux 2.6.15-vs2.1.0.2-pa1-d32up parisc/0.30.209
VCI:  0002:0001 263 03000116 (ugid24)
---
testing ext2 filesystem ...
[000]. (ext2 format)
xid related tests ...
[001]. [002]. [011]. [012]. [014]. [015]. [019].
[020]. [021]. [022]. [023]. [024]. [025]. [026]. [027]. [028].
[033]. [034]. [035]. [037].
xattr related tests ...
[101]. [102]. [103]. [104]. [106]. [108]. [109].
[112]. [113]. [114]. [115]. [116]. [117]. [118]. [119].
[121]. [122]. [123]. [124]. [199].

---
testing ext3 filesystem ...
[000]. (ext3 format)
xid related tests ...
[001]. [002]. [011]. [012]. [014]. [015]. [019].
[020]. [021]. [022]. [023]. [024]. [025]. [026]. [027]. [028].
[033]. [034]. [035]. [037].
xattr related tests ...
[101]. [102]. [103]. [104]. [106]. [108]. [109].
[112]. [113]. [114]. [115]. [116]. [117]. [118]. [119].
[121]. [122]. [123]. [124]. [199].

---
testing xfs filesystem ...
[000]. (xfs format)
xid related tests ...
[001]. [002]. [011]. [012]. [014]. [015]. [019].
[020]. [021]. [022]. [023]. [024]. [025]. [026]. [027]. [028].
[033]. [034]. [035]. [037].
xattr related tests ...
[101]. [102]. [103]. [104]. [106]. [108]. [109].
[112]. [113]. [114]. [115]. [116]. [117]. [118]. [119].
[121]. [122]. [123]. [124]. [199].

---
testing reiser filesystem ...
[000]. (reiserfs format)
xid related tests ...
[001]. [002]. [011]. [012]. [014]. [015]. [019].
[020]. [021]. [022]. [023]. [024]. [025]. [026]. [027]. [028].
[033]. [034]. [035]. [037].
xattr related tests ...
[101]. [102]. [103]. [104]. [106]. [108]. [109].
[112]. [113]. [114]* [115]. [116]. [117]. [118]. [119].
[121]. [122]. [123]. [124]. [199].

---
testing jfs filesystem ...
[000]. (jfs format)
xid related tests ...
[001]. [002]. [011]. [012]. [014]. [015]. [019].
[020]. [021]. [022]. [023]. [024]. [025]. [026]. [027]. [028].
[033]. [034]. [035]. [037].
xattr related tests ...
[101]. [102]. [103]. [104]* [106]. [108]. [109].
[112]. [113]. [114]* [115]. [116]. [117]. [118]. [119].
[121]* [122]* [123]* [124]* [199].

So seems to confirm that reiser fs pb is a parisc-linux issue ;-(

Anyway seems it changed a bit:
previous test shaws:
verify /mnt/test/file_2618: -+(-)-i-+(-) ~ -
[114]# failed.

this new shaws:
verify /mnt/test/file_1062: -+(-)-i-+(-)?(E)+(-) ~ -
[114]# failed.

(I don;t care of the file name obviously ;-) )

Thanks and hth,
Joel


---
A free anti-spam and anti-virus filter on all Scarlet mailboxes
More info on http://www.scarlet.be/

___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] How to vunify/vhashify on Gentoo

[Herbert Poetzl]

On Fri, Jan 06, 2006 at 01:47:41PM +0100, Wilhelm Meier wrote:
> Hi,
> 
> I'm using Gentoo as a host and also Gentoo as VPSs. If I try to 
> vunify/vhashify two VPS, I get:
> 
> gs vservers # ln 
> -s /etc/vservers/vs01 /etc/vservers/vs01c/apps/vunify/refserver.00
> 
> gs vservers # vserver vs01c unify
> Can not determine packagemanagement style
> failed to determine configfiles
> gs vservers #
> 
> So, how can I fix this?

no idea, Enrico might know ...

but you can use vhashify (manually) which was
reported to work fine on gentoo

HTH,
Herbert

> 
> --
> Wilhelm Meier
> email: [EMAIL PROTECTED]
> ___
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] network config with VLANs

[Herbert Poetzl]

On Fri, Jan 06, 2006 at 01:38:55PM +0100, Oliver Welter wrote:
> Hi Folks,
> 
> I have some problems with "vlans" and vservers..
> 
> I have a box that has one physical Interface that hosts two VLANs,
> both are official Addresses and reachable from the Internet. The main
> host hast conectivity on both networks .
>
> 1) What should I but in "interfaces/0/dev" ? eth0 or vlan1 fails,
> I get a message: creation of VLAN_PLUS_VID_NO_PAD devices is not
> supported; please create them before starting the vserver and use the
> 'nodev' flag then
>
> When I put "nodev" in the "dev" file I get a warning - I put an empty
> file "nodev" in the interface directory - seems to work, is this
> correct?

if the IP on the interface is already there, then you
do not specify 'dev' just 'nodev' as the tools are not
concerned with the IP creation ...

btw, using eth0.10 or similar for vlan interface should
work quite fine, for bonding and normal interfaces

> 2) I have a problem with routing - if the vserver guest has only
> addresses in one of the networks, I cannot ping across the networks
> because the hosts routing table show up in the guest, but the devices
> shonw there for routing dont exists. I am fiddling around with
> iptables and got some aspects to work, but not all  is there
> another trick ?

http://archives.linux-vserver.org/200311/0470.html

HTH,
Herbert

> I run everyting on gentoo with up to date tools
> Kernel: 2.6.14-vs2.0.1-gentoo
> VS-API: 0x00020001
> util-vserver: 0.30.209; Jan  2 2006, 22:49:56
> 
> Oliver
> -- 
> Diese Nachricht wurde digital unterschrieben
> oliwel's public key: http://www.oliwel.de/oliwel.crt
> Basiszertifikat: http://www.ldv.ei.tum.de/page72



> ___
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver

___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] How to setup FSS?

[Herbert Poetzl]

On Fri, Jan 06, 2006 at 10:18:49AM +0100, Wilhelm Meier wrote:
> Hello,
> 
> how do I setup fair share scheduling? I've read 
> http://linux-vserver.org/Scheduler+Parameters
> and I understand, that if all contexts have running processes, the
> fillrate/fillinterval gives the "share" of cpu capacity the context
> gets (roughly, if you neglect the effect of the other parameters).
> But what happens, if only one context has running processes. Is this
> context then able to use the rest of cpu capacity, or is it waiting ?

the pages will be soon updated, the fair scheduling
is implemented in the 'new' scheduler present in
the development branch ... basically it adds a second
pair of interval/rate values, to 'adjust' the fair
sharing and avoid idle cpus (it is also per cpu)

HTH,
Herbert

> 
> --
> Wilhelm Meier
> email: [EMAIL PROTECTED]
> ___
> Vserver mailing list
> Vserver@list.linux-vserver.org
> http://list.linux-vserver.org/mailman/listinfo/vserver
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] Re: Vserver Digest, Vol 22, Issue 10

[stefan julius]

For sure I have an own vhost directory, but when I look on some help sides at the vserver project there are always some hints to these config files, 
I thought I do not need them, but maybe there could be something that they necessary


here is my output


tcp    0  0 my host ip:22    0.0.0.0:*   LISTEN

also sshd is running in the vserver.

thanx for ur help, I will try it with ur informations.




Am Freitag, den 06.01.2006, 16:19 +0100 schrieb [EMAIL PROTECTED]:


Send Vserver mailing list submissions to
	vserver@list.linux-vserver.org

To subscribe or unsubscribe via the World Wide Web, visit
	http://list.linux-vserver.org/mailman/listinfo/vserver
or, via email, send a message with subject or body 'help' to
	[EMAIL PROTECTED]

You can reach the person managing the list at
	[EMAIL PROTECTED]

When replying, please edit your Subject line so it is more specific
than "Re: Contents of Vserver digest..."


Today's Topics:

   1. Re: Vserver Digest, Vol 22, Issue 9 (stefan julius)
   2. Re: can't access ssh (Oliver Welter)


--

Message: 1
Date: Fri, 06 Jan 2006 16:03:46 +0100
From: stefan julius <[EMAIL PROTECTED]>
Subject: [Vserver] Re: Vserver Digest, Vol 22, Issue 9
To: vserver@list.linux-vserver.org
Message-ID: <[EMAIL PROTECTED]>
Content-Type: text/plain; charset="us-ascii"

Skipped content of type multipart/alternative-- next part --
A non-text attachment was scrubbed...
Name: smiley-4.png
Type: image/png
Size: 822 bytes
Desc: not available
Url : http://daffy.hulpsystems.net/pipermail/vserver/attachments/20060106/03dc42b8/smiley-4-0001.png

--

Message: 2
Date: Fri, 06 Jan 2006 16:18:50 +0100tcp    0  0 85.214.22.240:22    0.0.0.0:*   LISTEN
From: Oliver Welter <[EMAIL PROTECTED]>
Subject: Re: [Vserver] can't access ssh
To: vserver@list.linux-vserver.org
Message-ID: <[EMAIL PROTECTED]>
Content-Type: text/plain; charset="iso-8859-1"

Hi Stefan,

please use the original Thread to answer...

 > Also have no idea how to make my vservers over dns reachable, because
 > they are only local reachable.

I meant that your Guest should have proper setup Name-Resolver, means 
reachable nameserver entries in /etc/resolv.conf or disable dns-lookup 
in SSH, otherwise your ssh will try to resolv the incoming IP Adress to 
a hostname and it might not accespt the connection when it cant resolv 
(depends on configuration but I have seen such configs, dont know debian 
behaviour)

Can you please do a
netstat -nlt | grep :22
on the host and send the output...

You wrote that you can "access the guests ssh from the host" - you didnt 
answer my questions regarding that...so
* Can you confirm that the SSHd is running inside the guest ?

 > I also wanted to know if it is necessary to create a vhost00.conf int
 > the /etc/vservers dir, I have done it but it also failled.

eerrrgh - you should have an own directory for the server, if you dont 
have, your server wont work at all

Oliver

PS: Do you hav access t the IRC, than go irc://irc.oftc.net/vserver can 
help you there




___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

Re: [Vserver] can't access ssh

[Oliver Welter]

Hi Stefan,

please use the original Thread to answer...

> Also have no idea how to make my vservers over dns reachable, because
> they are only local reachable.

I meant that your Guest should have proper setup Name-Resolver, means 
reachable nameserver entries in /etc/resolv.conf or disable dns-lookup 
in SSH, otherwise your ssh will try to resolv the incoming IP Adress to 
a hostname and it might not accespt the connection when it cant resolv 
(depends on configuration but I have seen such configs, dont know debian 
behaviour)


Can you please do a
netstat -nlt | grep :22
on the host and send the output...

You wrote that you can "access the guests ssh from the host" - you didnt 
answer my questions regarding that...so

* Can you confirm that the SSHd is running inside the guest ?

> I also wanted to know if it is necessary to create a vhost00.conf int
> the /etc/vservers dir, I have done it but it also failled.

eerrrgh - you should have an own directory for the server, if you dont 
have, your server wont work at all


Oliver

PS: Do you hav access t the IRC, than go irc://irc.oftc.net/vserver can 
help you there

--
Diese Nachricht wurde digital unterschrieben
oliwel's public key: http://www.oliwel.de/oliwel.crt
Basiszertifikat: http://www.ldv.ei.tum.de/page72


smime.p7s
Description: S/MIME Cryptographic Signature
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] Re: Vserver Digest, Vol 22, Issue 9

[stefan julius]

Thanx for fast answer,


sorry I have forgotten to explain how the connection fails, also have forgotten to inform my host system is installed with Debian Sarge stable.

I only have access to the host system, and also I don't understand how to access the vserver from outside is it right how I have configured the 
vserver domainname vhost00.my.hostdomain.name?

Also have no idea how to make my vservers over dns reachable, because they are only local reachable.

Sorry I know I must learn more about networking.

Please give me some informations and I will make it !

I also wanted to know if it is necessary to create a vhost00.conf int the /etc/vservers dir, I have done it but it also failled.



Thanx for ur help.








Am Freitag, den 06.01.2006, 15:27 +0100 schrieb [EMAIL PROTECTED]:


Send Vserver mailing list submissions to
	vserver@list.linux-vserver.org

To subscribe or unsubscribe via the World Wide Web, visit
	http://list.linux-vserver.org/mailman/listinfo/vserver
or, via email, send a message with subject or body 'help' to
	[EMAIL PROTECTED]

You can reach the person managing the list at
	[EMAIL PROTECTED]

When replying, please edit your Subject line so it is more specific
than "Re: Contents of Vserver digest..."


Today's Topics:

   1. network config with VLANs (Oliver Welter)
   2. can't access ssh (stefan julius)
   3. Re: can't access ssh (Oliver Welter)


--

Message: 1
Date: Fri, 06 Jan 2006 13:38:55 +0100
From: Oliver Welter <[EMAIL PROTECTED]>
Subject: [Vserver] network config with VLANs
To: vserver@list.linux-vserver.org
Message-ID: <[EMAIL PROTECTED]>
Content-Type: text/plain; charset="iso-8859-1"

Hi Folks,

I have some problems with "vlans" and vservers..

I have a box that has one physical Interface that hosts two VLANs, both 
are official Addresses and reachable from the Internet.
The main host hast conectivity on both networks .

1) What should I but in "interfaces/0/dev" ? eth0 or vlan1 fails, I get 
a message:
creation of VLAN_PLUS_VID_NO_PAD devices is not supported; please
create them before starting the vserver and use the 'nodev' flag then

When I put "nodev" in the "dev" file I get a warning - I put an empty 
file "nodev" in the interface directory - seems to work, is this correct?

2) I have a problem with routing - if the vserver guest has only 
addresses in one of the networks, I cannot ping across the networks 
because the hosts routing table show up in the guest, but the devices 
shonw there for routing dont exists. I am fiddling around with iptables 
and got some aspects to work, but not allis there another trick ?

I run everyting on gentoo with up to date tools
Kernel: 2.6.14-vs2.0.1-gentoo
VS-API: 0x00020001
util-vserver: 0.30.209; Jan  2 2006, 22:49:56

Oliver
-- 
Diese Nachricht wurde digital unterschrieben
oliwel's public key: http://www.oliwel.de/oliwel.crt
Basiszertifikat: http://www.ldv.ei.tum.de/page72
-- next part --
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 5146 bytes
Desc: S/MIME Cryptographic Signature
Url : http://daffy.hulpsystems.net/pipermail/vserver/attachments/20060106/f8478d71/smime-0001.bin

--

Message: 2
Date: Fri, 06 Jan 2006 15:17:10 +0100
From: stefan julius <[EMAIL PROTECTED]>
Subject: [Vserver] can't access ssh
To: vserver@list.linux-vserver.org
Message-ID: <[EMAIL PROTECTED]>
Content-Type: text/plain; charset="us-ascii"

Hello sorry for the boring questions, about connection to a vserver via
ssh, 
but i am working on it for more than one week and it won't be work.
Maybe someone can help me.


My system:

P4 3GHz

2000 MB RAM

Kernel2.6.14.3-vs2.1.0-rc10

util-vserver-0.30.209

two NICs eth0 connected to the internet, it is a dedicated server, also
there is a NIC eth1, 
without connection throught the net, but I though I use this for my
local network, and performed 

vserver vhost00 build -m skeleton --hostname vhost00.(here my
domainname) --netdev eth1 --interface v00=192.168.1.110/24 --context 50

after that I tarballed a preconfigured system sarge stable!

Installation and all others works fine I have access to the vserver,
also have connection to the internet with, I can perform apt-get update,
also ssh and xinetd installation works fine.

Accessing vserver with ssh from the host system also works fine.

configured the sshd on the vserver to the local ip 192.168.1.110, on
port 22 also on port 


Using OpenSSH_3.8.1 on the host and also on the vserver, set the
ListenAdress on the host as mentioned to my host ip on port 22, I also
tried it on port 

alias device is shown and all seems to be ok

have installed Shorewall firewall, configured 
won't work, maybe here is the problem, or 

Re: [Vserver] can't access ssh

[Oliver Welter]

Hi Stefan,

IIUC you can access the vServer from the host system, so the SSH is 
working ?

Can you ping the vServer from outside ?
Perhaps you have a problem with DNS resolution or so and cause a timeout 
on the connection because the guest tries a lookup on the connecting host...


Try shutting down the shprewall for testing, perhaps this is an issue - 
networking with vServer is a bit strange sometimes..


Oliver/vserver

--
Diese Nachricht wurde digital unterschrieben
oliwel's public key: http://www.oliwel.de/oliwel.crt
Basiszertifikat: http://www.ldv.ei.tum.de/page72


smime.p7s
Description: S/MIME Cryptographic Signature
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] can't access ssh

[stefan julius]

Hello sorry for the boring questions, about connection to a vserver via ssh, 
but i am working on it for more than one week and it won't be work.
Maybe someone can help me.


My system:

P4 3GHz

2000 MB RAM

Kernel    2.6.14.3-vs2.1.0-rc10

util-vserver-0.30.209

two NICs eth0 connected to the internet, it is a dedicated server, also there is a NIC eth1, 
without connection throught the net, but I though I use this for my local network, and performed 

vserver vhost00 build -m skeleton --hostname vhost00.(here my domainname) --netdev eth1 --interface v00=192.168.1.110/24 --context 50

after that I tarballed a preconfigured system sarge stable!

Installation and all others works fine I have access to the vserver, also have connection to the internet with, I can perform apt-get update, also ssh and xinetd installation works fine.

Accessing vserver with ssh from the host system also works fine.

configured the sshd on the vserver to the local ip 192.168.1.110, on port 22 also on port 


Using OpenSSH_3.8.1 on the host and also on the vserver, set the ListenAdress on the host as mentioned to my host ip on port 22, I also tried it on port 

alias device is shown and all seems to be ok

have installed Shorewall firewall, configured 
won't work, maybe here is the problem, or I have problem to configure my "Local Network", is it possible to use the onboard NIC without connection to the network as device for my Local network?

here are my conf files maybe it will give further informations

interfaces:

loc	eth1	detect	routefilter,tcpflags
net	eth0	detect	dhcp,routefilter,tcpflags

masq:

eth0:"my host ip"	eth1
eth1:v00	eth1!85.214.22.240	192.168.1.110

nat:

"my host ip"	eth1	192.168.1.110	no	no

policy:

all	all	ACCEPT

net	$FW	ACCEPT	info
$FW	net	ACCEPT	info

loc	$FW	ACCEPT
$FW	loc	ACCEPT

loc	net	ACCEPT
net	loc	ACCEPT


routestopped:


eth0	"my host ip"
eth1

rules:


##
#ACTION SOURCE  DEST    PROTO   DEST    SOURCE  ORIGINAL
#   PORT    PORT(S) DEST
#
#   Accept DNS connections from the firewall to the network
#
ACCEPT  fw  net    tcp 53
ACCEPT  fw  net    udp 53
ACCEPT  net fw tcp 53
ACCEPT  net fw udp 53

#   Accept SSH connections from the firewall to the network

ACCEPT  fw  net tcp 22
ACCEPT  fw  net  udp 22
ACCEPT  net fw  tcp 22	# Ausgang zu anderen Rechnern

ACCEPT    	net    	fw:192.168.1.110	tcp    22

ACCEPT 	net    	loc:192.168.1.110   tcp   22

DNAT    	net    	loc:192.168.1.110  	tcp    22		22	"my host ip"
85.214.22.240


#   Accept Webmin connections from the firewall to the network

ACCEPT  fw net tcp 777
ACCEPT  fw net udp 777
ACCEPT  net    fw  tcp 777


#   Accept FTP connections from the firewall to the network

ACCEPT  fw net  tcp 21
ACCEPT  fw net  udp 21
ACCEPT  net    fw   tcp 21
ACCEPT  net    fw   udp 21

#
#   Accept SSH connections from the local network for administration
#
#ACCEPT   net    fw tcp 22
#   Allow Ping To And From Firewall
#
ACCEPT  loc fw  icmp    8
ACCEPT  net fw  icmp    8
ACCEPT  fw  loc icmp    8
ACCEPT  fw  net icmp    8


ACCEPT  loc   fw    udp 53
ACCEPT  loc   fw    tcp 80



zones:


loc	Local	Local Internet
net	Net	Internet

won't work, maybe here is the problem, or I have problem to configure my "Local Network", is it possible to use the onboard NIC without connection to the network as device for my Local network?


also tried 

inetd/xinetd
You can't bind inetd to a interface, replace it with xinetd.
config file: xinetd.conf
defaults
{
bind = "my host ip"
}




also tried to make the host interface and IP available in a vserver http://deb.riseup.net/vserver/usage/.



maybe someone can give me more informations how to access my vservers.







Greetinx and thanx for ur help!

Stefan




___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] network config with VLANs

[Oliver Welter]

Hi Folks,

I have some problems with "vlans" and vservers..

I have a box that has one physical Interface that hosts two VLANs, both 
are official Addresses and reachable from the Internet.

The main host hast conectivity on both networks .

1) What should I but in "interfaces/0/dev" ? eth0 or vlan1 fails, I get 
a message:

creation of VLAN_PLUS_VID_NO_PAD devices is not supported; please
create them before starting the vserver and use the 'nodev' flag then

When I put "nodev" in the "dev" file I get a warning - I put an empty 
file "nodev" in the interface directory - seems to work, is this correct?


2) I have a problem with routing - if the vserver guest has only 
addresses in one of the networks, I cannot ping across the networks 
because the hosts routing table show up in the guest, but the devices 
shonw there for routing dont exists. I am fiddling around with iptables 
and got some aspects to work, but not allis there another trick ?


I run everyting on gentoo with up to date tools
Kernel: 2.6.14-vs2.0.1-gentoo
VS-API: 0x00020001
util-vserver: 0.30.209; Jan  2 2006, 22:49:56

Oliver
--
Diese Nachricht wurde digital unterschrieben
oliwel's public key: http://www.oliwel.de/oliwel.crt
Basiszertifikat: http://www.ldv.ei.tum.de/page72


smime.p7s
Description: S/MIME Cryptographic Signature
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver

[Vserver] How to vunify/vhashify on Gentoo

[Wilhelm Meier]

Hi,

I'm using Gentoo as a host and also Gentoo as VPSs. If I try to 
vunify/vhashify two VPS, I get:

gs vservers # ln 
-s /etc/vservers/vs01 /etc/vservers/vs01c/apps/vunify/refserver.00

gs vservers # vserver vs01c unify
Can not determine packagemanagement style
failed to determine configfiles
gs vservers #

So, how can I fix this?

--
Wilhelm Meier
email: [EMAIL PROTECTED]
___
Vserver mailing list
Vserver@list.linux-vserver.org
http://list.linux-vserver.org/mailman/listinfo/vserver