*** ccustine has joined #openstack | 00:01 | |
*** Ryan_Lane has joined #openstack | 00:03 | |
*** pvo has joined #openstack | 00:06 | |
*** ChanServ sets mode: +v pvo | 00:06 | |
*** ArdRigh has joined #openstack | 00:13 | |
*** abecc has quit IRC | 00:15 | |
*** allsystemsarego has quit IRC | 00:19 | |
*** rsampaio_ has quit IRC | 00:20 | |
*** rsampaio has joined #openstack | 00:21 | |
*** rsampaio_ has joined #openstack | 00:25 | |
*** rsampaio has quit IRC | 00:25 | |
*** rsampaio_ has quit IRC | 00:30 | |
*** neogenix has quit IRC | 00:30 | |
*** adjohn has quit IRC | 00:33 | |
*** joearnol_ has quit IRC | 00:37 | |
*** littleidea has quit IRC | 00:38 | |
*** Gibby is now known as Gibby_away | 00:39 | |
*** rsampaio has joined #openstack | 00:44 | |
*** miclorb has joined #openstack | 00:47 | |
*** JordanRinke has quit IRC | 00:47 | |
*** johnpur has quit IRC | 00:50 | |
*** anotherjesse has quit IRC | 00:54 | |
*** littleidea has joined #openstack | 00:58 | |
*** ccustine has quit IRC | 00:58 | |
*** michaeldreamhost has quit IRC | 01:02 | |
*** miclorb has quit IRC | 01:04 | |
*** littleidea has quit IRC | 01:07 | |
*** iammartian_ has joined #openstack | 01:08 | |
*** daleolds has quit IRC | 01:23 | |
*** littleidea has joined #openstack | 01:24 | |
*** neogenix has joined #openstack | 01:25 | |
*** maplebed has quit IRC | 01:28 | |
*** AimanA is now known as HouseAway | 01:43 | |
*** neogenix has quit IRC | 01:56 | |
*** pvo has quit IRC | 02:00 | |
*** littleidea has quit IRC | 02:01 | |
*** pvo has joined #openstack | 02:07 | |
*** ChanServ sets mode: +v pvo | 02:07 | |
*** dragondm has quit IRC | 02:13 | |
*** matiu_ has joined #openstack | 02:14 | |
*** matiu_ has joined #openstack | 02:14 | |
*** matiu has quit IRC | 02:14 | |
*** matiu has joined #openstack | 02:14 | |
*** matiu__ has joined #openstack | 02:15 | |
*** neogenix has joined #openstack | 02:16 | |
*** matiu_ has quit IRC | 02:18 | |
*** matiu has quit IRC | 02:19 | |
*** matiu__ is now known as matiu | 02:19 | |
*** anotherjesse has joined #openstack | 02:52 | |
anotherjesse | anyone know if running linux / nova / swift on a cluster of macmini's would work? | 02:52 |
---|---|---|
anotherjesse | wanting something that supports hardware virtualization and pxe install in my kitchen ;) | 02:53 |
*** schisamo has quit IRC | 02:58 | |
*** sophiap has quit IRC | 02:59 | |
*** rbergeron has quit IRC | 03:02 | |
*** itaifrenkel has quit IRC | 03:02 | |
*** rbergeron has joined #openstack | 03:02 | |
*** anotherjesse has quit IRC | 03:07 | |
spy | i don't see why it wouldn't, you might run into so problems trying to pxe boot the minis though | 03:23 |
*** sophiap has joined #openstack | 03:28 | |
*** pvo has quit IRC | 03:30 | |
*** hazmat has quit IRC | 03:36 | |
*** ptremblett has quit IRC | 03:37 | |
*** neogenix has quit IRC | 03:38 | |
*** dubsquared has joined #openstack | 03:45 | |
*** dubsquared has quit IRC | 03:48 | |
*** dubsquared has joined #openstack | 03:48 | |
*** ptremblett has joined #openstack | 03:58 | |
*** ArdRigh has quit IRC | 04:00 | |
*** rsampaio has quit IRC | 04:02 | |
*** sirp1 has quit IRC | 04:12 | |
*** matiu_ has joined #openstack | 04:24 | |
*** littleidea has joined #openstack | 04:27 | |
*** matiu has quit IRC | 04:27 | |
*** matiu_ is now known as matiu | 04:27 | |
*** hornbeck has quit IRC | 04:28 | |
*** hornbeck has joined #openstack | 04:33 | |
*** littleidea has quit IRC | 04:37 | |
*** joearnold has joined #openstack | 04:52 | |
*** iammartian_ has quit IRC | 05:05 | |
*** pvo has joined #openstack | 05:05 | |
*** ChanServ sets mode: +v pvo | 05:05 | |
*** kashyapc has joined #openstack | 05:11 | |
*** zaitcev has quit IRC | 05:11 | |
*** neogenix has joined #openstack | 05:13 | |
*** masumotok_ has quit IRC | 05:31 | |
alekibango | award | 05:38 |
alekibango | ? | 05:38 |
alekibango | oh :) | 05:39 |
alekibango | thanks... | 05:39 |
*** Ryan_Lane is now known as Ryan_Lane|sleep | 05:42 | |
*** Ryan_Lane|sleep has quit IRC | 06:03 | |
*** neogenix has quit IRC | 06:09 | |
*** pvo has quit IRC | 06:10 | |
*** heckj has joined #openstack | 06:13 | |
*** maplebed has joined #openstack | 06:13 | |
alekibango | jaypipes: i think you deserve one much more than me :) | 06:14 |
*** hornbeck has quit IRC | 06:16 | |
alekibango | i mean much more than i do. my early morning english is weak :), still holding my cup of tea... | 06:19 |
*** maplebed has quit IRC | 06:20 | |
*** arthurc has joined #openstack | 06:20 | |
*** heckj has quit IRC | 06:22 | |
*** perestrelka has quit IRC | 06:33 | |
*** littleidea has joined #openstack | 06:35 | |
*** nevele has quit IRC | 06:36 | |
*** perestrelka has joined #openstack | 06:36 | |
*** Ryan_Lane has joined #openstack | 06:42 | |
*** kw1 has joined #openstack | 06:54 | |
*** kw1 has left #openstack | 06:55 | |
*** aimon has joined #openstack | 07:05 | |
*** littleidea has quit IRC | 07:06 | |
*** aimon has quit IRC | 07:11 | |
*** aimon has joined #openstack | 07:11 | |
*** joearnold has quit IRC | 07:11 | |
*** guigui has joined #openstack | 07:37 | |
*** ibarrera has joined #openstack | 07:41 | |
*** Nacx has joined #openstack | 07:42 | |
*** rbergeron has quit IRC | 07:43 | |
*** rbergeron has joined #openstack | 07:43 | |
ttx | Good morning | 07:47 |
ttx | jaypipes: http://eavesdrop.openstack.org/meetings/openstack-meeting/2010/openstack-meeting.2010-11-16-21.01.html sums it up well. | 07:50 |
*** littleidea has joined #openstack | 07:57 | |
*** joearnold has joined #openstack | 08:01 | |
*** ArdRigh has joined #openstack | 08:14 | |
*** jfluhmann has quit IRC | 08:15 | |
*** doude has joined #openstack | 08:21 | |
*** joearnold has quit IRC | 08:23 | |
*** arcane has quit IRC | 08:29 | |
*** _FeliXdk is now known as FeliXdk | 08:34 | |
*** stewart has quit IRC | 08:37 | |
*** joshuamckenty has left #openstack | 08:46 | |
*** stewart has joined #openstack | 08:49 | |
*** stewart has quit IRC | 08:55 | |
*** arcane has joined #openstack | 08:57 | |
*** allsystemsarego has joined #openstack | 08:59 | |
*** allsystemsarego has joined #openstack | 08:59 | |
*** guigui has quit IRC | 09:04 | |
*** ramkrsna has joined #openstack | 09:04 | |
*** stewart has joined #openstack | 09:08 | |
*** colinnich has joined #openstack | 09:09 | |
*** BK_man has joined #openstack | 09:13 | |
*** colinnich has quit IRC | 09:18 | |
*** colinnich has joined #openstack | 09:19 | |
doude | Hi all | 09:20 |
doude | I've some questions on VLAN network mode, can you help me ? | 09:20 |
*** MarkAtwood has joined #openstack | 09:39 | |
*** ptremblett has quit IRC | 09:54 | |
*** littleidea_ has joined #openstack | 09:55 | |
*** littleidea has quit IRC | 09:56 | |
*** littleidea_ is now known as littleidea | 09:56 | |
*** aimon has quit IRC | 10:05 | |
*** ArdRigh has quit IRC | 10:05 | |
*** littleidea has quit IRC | 10:10 | |
*** littleidea has joined #openstack | 10:10 | |
*** littleidea has quit IRC | 10:15 | |
*** nijaba is now known as nijaba_afk | 10:23 | |
*** dizz has joined #openstack | 10:24 | |
*** dizz is now known as dizz|away | 10:24 | |
*** nijaba_afk is now known as nijaba | 10:50 | |
*** ptremblett has joined #openstack | 10:57 | |
*** miclorb has joined #openstack | 11:04 | |
*** miclorb has quit IRC | 11:15 | |
*** aliguori has quit IRC | 11:17 | |
*** kashyapc has quit IRC | 11:25 | |
alekibango | doude: i think i cant, but it still might help to throw in the real question... | 11:37 |
*** littleidea has joined #openstack | 11:51 | |
*** littleidea_ has joined #openstack | 11:53 | |
*** perestrelka has quit IRC | 11:54 | |
*** Podilarius has left #openstack | 11:54 | |
*** MarkAtwood has quit IRC | 11:55 | |
*** littleidea has quit IRC | 11:57 | |
*** littleidea_ is now known as littleidea | 11:57 | |
*** perestrelka has joined #openstack | 11:58 | |
sandywalsh | morning! | 12:01 |
soren | It used to be. | 12:08 |
patri0t | hey all, I have couple of networking problems | 12:12 |
patri0t | http://paste.openstack.org/show/143/ | 12:12 |
patri0t | virtual interfaces are not up, so I can not connect to my instances | 12:12 |
patri0t | hi soren, can you take a look at it? | 12:13 |
soren | That doesn't seem network related, actually. | 12:22 |
soren | can you pastebin a bit more? | 12:22 |
soren | anything from that file within the preceding, say, 5 minutes? | 12:22 |
soren | It smells like something went wrong with the virtual disks. | 12:23 |
patri0t | http://paste.openstack.org/show/144/ | 12:23 |
*** littleidea has quit IRC | 12:23 | |
patri0t | not sure, but the point is | 12:23 |
*** littleidea has joined #openstack | 12:23 | |
patri0t | there is no net-interface to connect me to the VM | 12:24 |
*** littleidea has quit IRC | 12:28 | |
*** iammartian_ has joined #openstack | 12:28 | |
*** ctennis has quit IRC | 12:35 | |
soren | patri0t: What's the image? | 12:42 |
soren | patri0t: Where did you get it? | 12:42 |
soren | patri0t: sorry, was looking into something else.. | 12:43 |
patri0t | the same image you created | 12:44 |
soren | Which one is that? | 12:44 |
*** littleidea has joined #openstack | 12:44 | |
patri0t | http://c2477062.cdn.cloudfiles.rackspacecloud.com/images.tgz, aki-lucid | 12:46 |
patri0t | soren: you think the problem is because of the image? | 12:46 |
soren | Could be. | 12:47 |
soren | Let me check. | 12:47 |
soren | Yup, that's it. | 12:48 |
patri0t | so, the image is corrupted or some misconfig? | 12:49 |
soren | Hang on.. | 12:49 |
soren | The image is fine. | 12:49 |
soren | It's a nova bug. | 12:49 |
soren | the problem is that /etc/network doesn't exist in the image. | 12:50 |
soren | ...so trying to write to /etc/network/interfaces fails. | 12:50 |
patri0t | aha | 12:50 |
patri0t | is it patched in trunk?/ possible solution? | 12:51 |
soren | It's a simpe fix. | 12:51 |
soren | Someone just needs to do it. | 12:51 |
patri0t | can I change the image to add /etc/network? | 12:52 |
soren | Sure. | 12:53 |
patri0t | but Im not sure howto | 12:53 |
soren | The image is in /var/lib/nova/images somewhere. | 12:53 |
patri0t | yeap | 12:53 |
soren | Find it. | 12:53 |
soren | Then do: | 12:53 |
*** ctennis has joined #openstack | 12:54 | |
soren | sudo mount -o loop /var/lib/nova/images/ami-blahblah/image /mnt | 12:54 |
soren | sudo mkdir /mnt/etc/network | 12:54 |
soren | sudo umount /mnt | 12:54 |
patri0t | ok, so just mount and add the directory | 12:54 |
soren | Done. | 12:54 |
patri0t | neat | 12:54 |
soren | Neat would be if it just worked :) | 12:54 |
patri0t | :D | 12:54 |
patri0t | nice, that problem is solved | 12:56 |
patri0t | but still I can not connect to the VM | 12:57 |
patri0t | soren: I dont know why there is no interface for that | 12:59 |
soren | There could be half a million reasons why :( | 13:01 |
soren | did you fiddle with security groups at all? | 13:01 |
soren | Try this: euca-authorize -p 22 -s 0.0.0.0/0 default | 13:02 |
patri0t | no | 13:03 |
patri0t | nothing "PERMISSION default ALLOWS tcp 22 22 FROM CIDR 0.0.0.0/0" | 13:04 |
*** littleidea has quit IRC | 13:04 | |
soren | ...and it still doesn't work? | 13:04 |
patri0t | nope | 13:04 |
soren | Do you have a bridge set up? | 13:04 |
soren | I forget if that happens automatically. | 13:04 |
patri0t | I create it manually, also put the br100 record in the db | 13:05 |
patri0t | (using PPA currently) | 13:05 |
soren | Ok. | 13:12 |
soren | I'm not sure. It could be routing, firewalls, kernels... Lots of things. | 13:12 |
soren | Sorry, I'm kind of in the middle of something, so I can't really guide you through debugging it. | 13:12 |
patri0t | tnx, Ill figure it out | 13:13 |
*** ramkrsna has quit IRC | 13:34 | |
*** abecc has joined #openstack | 13:36 | |
*** abecc has joined #openstack | 13:36 | |
*** piken_afk is now known as piken | 13:37 | |
ttx | annegentle: about https://blueprints.launchpad.net/nova/+spec/improve-install-docs -- should we consider it an "informational" session or do you want to submit a full spec for it for bexar or cactus ? | 13:40 |
*** ramkrsna has joined #openstack | 13:47 | |
*** ramkrsna has joined #openstack | 13:47 | |
piken | Stderr: "iptables v1.4.10: option `--to-source' requires an argument\nTry `iptables -h' or 'iptables --help' for more information.\n" | 13:57 |
piken | \ | 13:57 |
piken | anyone have an idea? | 13:58 |
piken | Command: sudo iptables -I POSTROUTING -t nat -s 10.0.0.0/8 -j SNAT --to-source | 13:58 |
*** zul is now known as ep | 13:59 | |
*** ep is now known as zul | 13:59 | |
*** BK_man has quit IRC | 14:00 | |
*** ramkrsna has quit IRC | 14:02 | |
*** doude has quit IRC | 14:04 | |
*** perestrelka has quit IRC | 14:06 | |
*** perestrelka has joined #openstack | 14:07 | |
piken | hmm, new one. error: Error while building firewall: Some rules could not be created for interface vnet1. | 14:08 |
soren | :( | 14:08 |
piken | man, things are just been a hassel for me | 14:08 |
piken | nova uses --to-source which is not a valid flag in iptables that is standard on centos5 | 14:09 |
piken | so I had to compile 1.4.10 | 14:09 |
piken | But now I get errors like that | 14:09 |
*** ppetraki has joined #openstack | 14:11 | |
*** openstackhudson has joined #openstack | 14:13 | |
soren | piken: Oh, you're trying to run it on CentOS? | 14:14 |
piken | yeah | 14:14 |
soren | I didn't realise. | 14:14 |
soren | That's going to be no fun at all :) | 14:14 |
piken | I know | 14:14 |
piken | We are really close though. stuck at network issues with spawning | 14:15 |
*** matiu has quit IRC | 14:18 | |
piken | http://paste.openstack.org/show/146/ there is the actual error we are getting, any ideas? | 14:19 |
dendrobates | piken: fedora release a set of newer packages for RHEL, called EPEL, would that help you at all? | 14:22 |
dendrobates | I have been told Rhel admins regularly install these. | 14:22 |
soren | piken: You need a very new version of libvirt. | 14:23 |
soren | piken: 0.8.1 or later. | 14:23 |
piken | libvirtd (libvirt) 0.8.5 | 14:26 |
soren | ok | 14:26 |
* soren runs off | 14:26 | |
piken | dendrobates: Yeah, we use epel a lot here | 14:26 |
piken | maybe it is an issue with 0.8.5 | 14:35 |
*** theron has quit IRC | 14:38 | |
*** theron has joined #openstack | 14:38 | |
*** matiu has joined #openstack | 14:39 | |
*** pws has joined #openstack | 14:40 | |
pws | Hi folks... We're trying to evaluate a number of ways of running a private cloudey infrastructure in our office. I've been reading the openstack website, but one thing's not completely clear to me - does openstack do relocation and resource pool balancing stuff? | 14:44 |
alekibango | pws: work on this is underway. live migration is not yet working.. but in few months i think you will have it | 14:45 |
alekibango | resource balancing can be customized when you will write your own 'scheduler' | 14:46 |
alekibango | pws: see https://blueprints.launchpad.net/nova/ | 14:50 |
*** f4m8 is now known as f4m8_ | 14:50 | |
alekibango | pws: there you see where we are moving to in next release (bexar) | 14:51 |
pws | fair enough, that's what I wanted to know. Thanks! :-) | 14:54 |
alekibango | pws: imho openstack is the most explosive cloudy project out there... | 14:55 |
*** kashyapc has joined #openstack | 14:55 | |
*** ramkrsna has joined #openstack | 14:56 | |
pws | alekibango: I've been quite impressed with what I've heard... but $BOSS wants us to push ahead with things ASAP... and UEC and XCP both speak about resource balancing magic... | 14:56 |
piken | soren: any other ideas as to what is going on? | 14:56 |
pws | although they don't have as good a storage model as openstack | 14:56 |
sandywalsh | piken, soren had to run for bit | 14:57 |
alekibango | pws: openstack is not only 1 project, its mix of different technologies, which are currently blending into one in this big mixer... but still it needs some polishing... still i think there is no real other alternative... | 14:58 |
*** dendrobates is now known as dendro-afk | 14:59 | |
alekibango | pws: the project is moving forward very fast. a month is nothing in this area.. it might be worth to test it now and wait/contribute/test/write blueprints+bugs | 14:59 |
*** dendro-afk is now known as dendrobates | 14:59 | |
alekibango | pws: for now, afaik, the balancing is pretty static. but it will be there soon, believe me... | 15:00 |
*** doude has joined #openstack | 15:12 | |
*** jfluhmann has joined #openstack | 15:12 | |
doude | Hi all, | 15:12 |
*** hggdh has quit IRC | 15:12 | |
doude | I'm looking to distribute Nova on multiple hosts | 15:13 |
*** Podilarius has joined #openstack | 15:13 | |
doude | I can't determinate which daemon need or not to run on each hosts | 15:13 |
*** hggdh has joined #openstack | 15:14 | |
doude | I think one host is the master with nova-api, nova-scheduler and nova-objectstore | 15:14 |
alekibango | doude: have you seen this? http://etherpad.openstack.org/NovaMultinodeInstall | 15:14 |
doude | and all hosts (master and slave) need to run nova-compute and nova-network | 15:15 |
alekibango | or relevant wiki pages... | 15:15 |
sandywalsh | euca-run-instances giving Duplicate Entry in mysql ... seen this? How to fix? http://paste.openstack.org/show/147/ | 15:15 |
alekibango | sandywalsh: thats multinode install? | 15:16 |
sandywalsh | nope, single machine | 15:16 |
alekibango | sandywalsh: looks like you have such instance id in database :) -- cant tell why | 15:17 |
sandywalsh | tried to create an image yesterday, it failed. I removed the instance in .../instances ... tried again today, get this message. Odd, since the internal_id it's complaining about is different than what's being passed in. | 15:17 |
doude | yes I saw this doc | 15:18 |
doude | is-it to use VLAN network mode in the multinode infra ? | 15:18 |
doude | is it possible to use VLAN network mode in the multinode infra ? | 15:18 |
*** sirp1 has joined #openstack | 15:24 | |
doude | in the doc http://etherpad.openstack.org/NovaMultinodeInstall, the nova-network binary runs only on one node. How the network will be configure on the other node ? | 15:24 |
*** jfluhmann has quit IRC | 15:26 | |
*** ramkrsna has quit IRC | 15:34 | |
*** johnpur has joined #openstack | 15:35 | |
*** ChanServ sets mode: +v johnpur | 15:35 | |
ttx | annegentle: if you have some free time, please consider reviewing http://wiki.openstack.org/BlueprintsLifecycle to make sure it makes sense :) | 15:37 |
*** czajkowski has quit IRC | 15:37 | |
uvirtbot | New bug: #676531 in swift "st tool needs proper bash exit codes" [Undecided,New] https://launchpad.net/bugs/676531 | 15:42 |
*** jdarcy has joined #openstack | 15:45 | |
sandywalsh | ebiptables ... is there a special build of libvirt required for this? | 15:45 |
*** jfluhmann has joined #openstack | 15:46 | |
*** JordanRinke has joined #openstack | 15:47 | |
*** westmaas has joined #openstack | 15:54 | |
*** daleolds has joined #openstack | 15:54 | |
*** dkocher has joined #openstack | 15:58 | |
*** gundlach has joined #openstack | 15:59 | |
*** dragondm has joined #openstack | 15:59 | |
sandywalsh | anyone? ebiptables? (ebtables is installed) | 16:08 |
jaypipes | vishy, soren: ^^ ? /me has no clue | 16:08 |
sandywalsh | seems to be a common issue, lots of paste references to same exception | 16:09 |
annegentle | ttx: will do. and on the "improve-install-documentation" I meant for that to be for Austin | 16:11 |
JordanRinke | what was the question? | 16:11 |
ttx | annegentle: ok, should I mark it "Delivered", then ? | 16:11 |
JordanRinke | sandywalsh: what was the question? | 16:12 |
sandywalsh | on instance create I get this from compute: http://paste.openstack.org/show/148/ | 16:12 |
sandywalsh | the only reference to ebiptables I can find is a patch from ibm in March to libvirt | 16:13 |
annegentle | ttx: yep, Delivered. | 16:13 |
sandywalsh | JordanRinke, http://web.archiveorange.com/archive/v/8XiUWSaDAQFpqh2Y9nPx | 16:13 |
*** mdomsch has joined #openstack | 16:13 | |
sandywalsh | ebiptables seems to be some sort of script | 16:15 |
*** joearnold has joined #openstack | 16:17 | |
*** jdarcy has quit IRC | 16:18 | |
*** joearnold has quit IRC | 16:19 | |
*** damon__ has joined #openstack | 16:22 | |
*** joshuamckenty has joined #openstack | 16:25 | |
*** jdarcy has joined #openstack | 16:26 | |
JordanRinke | i see no mention of ebiptables in this article? | 16:29 |
sandywalsh | whoops <checking> | 16:30 |
sandywalsh | sorry, that was a bad link. It's here they talk about it being something written to /tmp http://www.spinics.net/linux/fedora/libvir/msg26158.html I'm looking at libvirt.py now for insights. | 16:32 |
JordanRinke | what are you attempting to do that you need it? | 16:34 |
sandywalsh | just create an instance | 16:34 |
JordanRinke | are you having a problem creating an instance? | 16:35 |
JordanRinke | sorry I am a bit lost, I am sure once it all clicks I will have no idea how I was confused initially | 16:35 |
Ryan_Lane | sandywalsh: what error are you getting? | 16:36 |
sandywalsh | yes, simply attempting ' euca-run-instances ami-tiny --kernel aki-lucid --ramdisk ari-lucid -k nova_key' | 16:36 |
sandywalsh | and compute fails with http://paste.openstack.org/show/148/ | 16:36 |
Ryan_Lane | sandywalsh: after installing ebitables, did you restart libvirt? | 16:37 |
Ryan_Lane | /etc/init.d/libvirt-bin restart | 16:37 |
JordanRinke | ahh now everything makes sense lol | 16:37 |
*** ranjib has joined #openstack | 16:37 | |
sandywalsh | Ryan_Lane, ah, good point ... didn't realize libvirt was a daemon ... thought it was just a library | 16:38 |
sandywalsh | hold that thought | 16:38 |
* Ryan_Lane grabs hold | 16:38 | |
*** dkocher has quit IRC | 16:39 | |
JordanRinke | brb | 16:39 |
*** JordanRinke has quit IRC | 16:40 | |
Ryan_Lane | you may also need to restart the nova services too: for i in /etc/init.d/nova-*; do $i restart; done | 16:40 |
sandywalsh | ok, this is going to take a little longer ... but I'm sure that's the problem. Thanks Ryan_Lane, et al ! | 16:40 |
Ryan_Lane | np | 16:40 |
dabo | I'm using vishy's nova.sh script to install and run nova on an Ubuntu 10.10 Cloud Server. All goes well until I try to run an instance; the API window shows a 'String too long' error: http://paste.openstack.org/show/149/ | 16:42 |
dabo | the command I ran was simply: "euca-run-instances -k test -t m1.tiny ami-tiny" | 16:43 |
dabo | any idea where to find what string was too long, and how it got that way? | 16:43 |
sandywalsh | Ryan_Lane, just heard from the libvirt guys, they confirm that the tools check is only done on startup. | 16:45 |
Ryan_Lane | sandywalsh: ok. did restarting any services help? | 16:45 |
Ryan_Lane | (that's how it fixed the problem for me) | 16:46 |
Ryan_Lane | you can also trying the it crowd method, and reboot | 16:46 |
sandywalsh | <building> should know soon | 16:47 |
*** hazmat has joined #openstack | 16:52 | |
sandywalsh | Ryan_Lane, that solved it! owe ya one! | 16:54 |
Ryan_Lane | great | 16:55 |
*** MarkAtwood has joined #openstack | 16:57 | |
*** hornbeck has joined #openstack | 17:00 | |
piken | ok, I am back to trying to figure out my error | 17:00 |
piken | error: Error while building firewall: Some rules could not be created for interface vnet1. | 17:01 |
piken | anyone? | 17:01 |
piken | It looks to be either a network setup related error or libvirt | 17:01 |
piken | but I can't seem to figure it out. | 17:01 |
*** ranjib has quit IRC | 17:03 | |
*** heckj has joined #openstack | 17:04 | |
annegentle | dabo: I haven't seen that error, but I haven't run the latest so it's entirely possible it's a newly introduced error. That command's the right one, I double-checked it. | 17:07 |
annegentle | dabo: let's see if vishy or jaypipes have ideas | 17:08 |
dabo | annegentle: running the exact same command a second time doesn't raise the error | 17:08 |
annegentle | annegentle: ok, good! try try again :) | 17:08 |
gundlach | dabo: i see that error each time i do euca-run-instances after a nova.sh run, but the api servers still seem to get the request, the scheduler tries to schedule, etc. | 17:09 |
gundlach | dabo: so i've been ignoring it. how far does your system get along the path to starting up a VM? | 17:10 |
dabo | gundlach: after running the call a second time, I get this: http://paste.openstack.org/show/150/ | 17:12 |
dabo | They sit in 'scheduling' state forever. | 17:13 |
dabo | and yes, the scheduling service seems to be running OK | 17:13 |
gundlach | dabo: hmm, i can get past that to 'pending'... does your scheduling window show any interesting output? | 17:15 |
gundlach | dabo: or compute or network while we're at it? | 17:15 |
dabo | gundlach: nothing stands out to my eye: the output since startup: http://paste.openstack.org/show/151/ | 17:18 |
dabo | gundlach: ugh - you were right - there's an error in compute: http://paste.openstack.org/show/152/ | 17:19 |
dabo | I hit this yesterday, but hadn't seen it on this install until now | 17:20 |
*** doude has quit IRC | 17:24 | |
gundlach | dabo: hmm, i hit that but i thought i got past it somehow. trying to remember... | 17:25 |
gundlach | dabo: ah yes -- use Flat networking instead of VlanNetworking. | 17:25 |
gundlach | dabo: modify nova.sh run to add '--network_manager=nova.network.manager.FlatManager' to the nova-compute and nova-network programs. | 17:25 |
gundlach | (you need it in nova-compute because the compute worker calls directly into the network code to do some work.) | 17:26 |
dabo | gundlach: ok - gimme a few to try that out | 17:26 |
gundlach | there may be a better way to specify this flag, e.g. putting it in manage.conf, but when i tried that i still saw it loading VlanNetworking. | 17:26 |
sandywalsh | gundlach, I'm running into issue after issue with libvirt (ebiptables first, no iptables) ... I may have to switch to flat as well. | 17:27 |
sandywalsh | s/no/now/ | 17:27 |
gundlach | sandywalsh: i'd be happy to just get a VM up and running and ssh-able, so i jumped to FlatNetworking as soon as it was suggested :) | 17:28 |
gundlach | sandywalsh: are you using nova.sh now or still hand-rolling everything? | 17:28 |
sandywalsh | from source ... that's working fine for me and teaching me the mechanics | 17:29 |
*** jc_smith has quit IRC | 17:29 | |
dabo | sandywalsh: after doing the from source route a half-dozen times... the nova.sh script is most welcome! | 17:31 |
*** gundlach has quit IRC | 17:32 | |
sandywalsh | it's fast for me, the only issue is having to wipe mysql on a failure. That's my next problem to tackle. | 17:33 |
piken | to use flatmanager what settings are needed in the flagfile? | 17:36 |
*** kashyapc has quit IRC | 17:36 | |
piken | I can't seem to get it to create the bridge when it uses it and I want to as I think that will solve my error as it is using vlanmanager right now | 17:36 |
annegentle | piken: there's an example flag file setup here: http://wiki.openstack.org/NovaAdminManual | 17:37 |
sandywalsh | soren, jaypipes, vishy This 'missing iptables' bug is hitting me: https://code.launchpad.net/~soren/nova/ec2-security-groups/+merge/36119 what are the additional packages required (I'm building from source) | 17:37 |
sandywalsh | I have ebtables, iptables, gawk installed | 17:37 |
sandywalsh | what's the bit about app-armor? | 17:37 |
*** colinnich has quit IRC | 17:38 | |
sandywalsh | ah, app-armor would be installed with 10.10-64 ubuntu anyway | 17:38 |
vishy | sandywalsh: you need bleeding edge libvirt | 17:39 |
sandywalsh | ah | 17:40 |
sandywalsh | on it | 17:40 |
sandywalsh | after lunch :) | 17:40 |
vishy | the odd thing is ai thought that was in maverick | 17:40 |
vishy | did you restart libvirt-bin after installing iptables ebtables and gawk? | 17:41 |
*** ibarrera has quit IRC | 17:42 | |
eday | termie: you around? | 17:43 |
*** joearnold has joined #openstack | 17:46 | |
piken | annegentle: I have used that with no successs. I have followed those settings and get no bridge br100 found, but it is there | 17:47 |
piken | and when I don't use flat, I still get the libvirtError: Error while building firewall: Some rules could not be created for interface vnet1. error | 17:49 |
*** kashyapc has joined #openstack | 17:51 | |
*** gundlach has joined #openstack | 17:51 | |
zul | soren: im going to upload a newer snapshot to natty tomorrow | 17:51 |
zul | ill ask for a merge into the ubuntu branch after im done | 17:52 |
*** dubsquared1 has joined #openstack | 17:52 | |
*** rlucio has joined #openstack | 17:53 | |
*** sirp1 has quit IRC | 17:54 | |
*** sirp1 has joined #openstack | 17:56 | |
*** sirp1 has joined #openstack | 17:57 | |
*** patri0t has quit IRC | 17:58 | |
*** damon__ has quit IRC | 17:58 | |
annegentle | piken: well crum I was just going to add it to http://nova.openstack.org/adminguide/network.flat.html | 17:58 |
*** damon__ has joined #openstack | 17:59 | |
*** maplebed has joined #openstack | 18:01 | |
*** hazmat has quit IRC | 18:03 | |
*** BK_man has joined #openstack | 18:04 | |
*** hazmat has joined #openstack | 18:04 | |
sandywalsh | vishy, yes I restarted libvirt-bin | 18:16 |
*** zul has quit IRC | 18:20 | |
*** zul has joined #openstack | 18:20 | |
*** zul has quit IRC | 18:22 | |
*** zul_ has joined #openstack | 18:22 | |
*** BK_man has quit IRC | 18:23 | |
sandywalsh | dabo did you figure out your "string too long"? | 18:27 |
*** mdomsch has quit IRC | 18:28 | |
*** EdwinGrubbs is now known as Edwin-lunch | 18:32 | |
sandywalsh | yeesh, changed to flat networking, then tried to go back to vlan by commenting out flat in config (bad idea) and now everything is busted real good. | 18:38 |
*** doude_ has joined #openstack | 18:41 | |
vishy | i have a nova blueprint that is superseeded by a common blueprint | 18:42 |
vishy | can't mark superseeded, should i just delete it? | 18:42 |
*** jdarcy has joined #openstack | 18:42 | |
rlucio | sandywalsh: you will need to go back to nova-manage and update your project/network to use vpn mode.... and if you previously set up the flat network fixed_ip block (via nova-manage) you probably need to clean up that from the db | 18:44 |
*** zaitcev has joined #openstack | 18:44 | |
*** BK_man has joined #openstack | 18:44 | |
rlucio | sandywalsh: in other words, you need to make sure your db matches your planned vpn config | 18:45 |
sandywalsh | rlucio, awesome, thanks | 18:45 |
rlucio | sandywalsh: np, hope that helps | 18:46 |
*** zul_ is now known as zul | 18:48 | |
*** zul has joined #openstack | 18:48 | |
sandywalsh | I think I'm learning more from how things break than looking at the source right now :) | 18:49 |
vishy | :p | 18:51 |
vishy | soren: any ideas on piken's libvirt error on centos? | 18:51 |
*** kashyapc has quit IRC | 18:54 | |
*** jc_smith has joined #openstack | 18:55 | |
*** doude_ is now known as Paulo | 18:56 | |
*** Paulo is now known as Doudouyam | 18:56 | |
Doudouyam | Hi, is it possible to use the VLAN network mode on multiple node ? | 18:58 |
*** kw1 has joined #openstack | 18:59 | |
*** theron has quit IRC | 19:01 | |
sandywalsh | rlucio, that worked ... thx again | 19:04 |
* sandywalsh would like to announce that he now has an instance running thanks to nova! | 19:05 | |
rlucio | :) | 19:05 |
* sandywalsh passes out | 19:05 | |
*** kashyapc has joined #openstack | 19:06 | |
*** theron has joined #openstack | 19:10 | |
*** kw1 has left #openstack | 19:10 | |
*** xfaf has joined #openstack | 19:12 | |
*** zul has quit IRC | 19:13 | |
*** xfaf is now known as zul | 19:13 | |
soren | piken: Sorry, can you give me the summary again? What's the problem you're seeing? | 19:14 |
soren | sandywalsh: You need iptables, ebtables and gawk. | 19:15 |
soren | zul: If you wait until Thursday, I'll have autobuilt packages ready that will just need to be re-signed. | 19:16 |
zul | soren: yeah although i spent sometime getting the configuration right since of the changes since maverick | 19:16 |
soren | vishy: Which blueprint is that you want superseded? | 19:16 |
soren | zul: Great. | 19:17 |
*** burris has quit IRC | 19:17 | |
zul | soren: but what do you mean by autobuild? | 19:17 |
*** JordanRinke has joined #openstack | 19:17 | |
soren | zul: For every commit, Hudson will generate packages, and shove them into a PPA. Whenever we feel like it, we can grab one of those and upload to Ubuntu, too. | 19:19 |
soren | mtaylor: ping? | 19:19 |
zul | soren: right but what happens when we add some canonical branding? | 19:19 |
soren | zul: stuff | 19:19 |
soren | zul: Ideally, that could live in a separate package. | 19:20 |
soren | zul: Makes it easier for everyone. | 19:20 |
soren | zul: It depends on what "some canonical branding" is. | 19:20 |
*** damon__ has quit IRC | 19:20 | |
zul | soren: i have no idea either though | 19:20 |
soren | zul: It's hard to give a concrete answer to an abstract question. | 19:20 |
vishy | soren: https://blueprints.launchpad.net/nova/+spec/better-configuration | 19:21 |
soren | vishy: It's superseded already. | 19:21 |
vishy | soren: i just marked it superseeded without specifying what it was superseeded by | 19:21 |
*** damon__ has joined #openstack | 19:21 | |
soren | vishy: Ah. | 19:21 |
zul | soren: i agree...im just saying we might not want to pull from the ppa to put in the archive is all what im saying | 19:21 |
vishy | soren: piken's error is this one libvirtError: Error while building firewall: Some rules could not be created for interface vnet1 | 19:22 |
soren | zul: Let's deal with problems once they exist. There's plenty of interesting problems to solve that already exist :) | 19:22 |
piken | vishy: beat me to it. lol | 19:22 |
vishy | :) | 19:22 |
piken | It is driving me nuts. lol | 19:22 |
soren | vishy: With KVM guests? | 19:22 |
mtaylor | soren: pong | 19:22 |
zul | soren: sure...but it might drive me nuts ;) | 19:22 |
piken | soren: yes | 19:22 |
*** kw1 has joined #openstack | 19:23 | |
soren | piken: Hard to say. You can try running libvirt with LIBVIRT_DEBUG=1 and put the logs somewhere. Maybe I can find a good hint. | 19:23 |
piken | http://paste.openstack.org/show/153/ | 19:24 |
soren | piken: Not virsh. libvirtd. | 19:25 |
soren | piken: libvirtd is what does all the hard work. | 19:25 |
*** kw1 has left #openstack | 19:25 | |
soren | mtaylor: I was looking at hudson earlier.. | 19:25 |
soren | mtaylor: Found the nova-ppa job. | 19:25 |
piken | what would the command be to run it from libvirt directly? | 19:26 |
soren | mtaylor: ...it builds packages and all that, and even uploads them, but they never turn up in the ppa. | 19:26 |
soren | mtaylor: as best I can tell, it's because you never associated the GPG key with the hudson account on lp. | 19:26 |
soren | mtaylor: ...but it's guesswork. What do the reject mails say? | 19:26 |
mtaylor | ya | 19:26 |
soren | piken: Kill the existing libvirtd. | 19:26 |
soren | piken: And do: | 19:26 |
soren | piken: sudo LIBVIRT_DEBUG=1 libvirtd -v > /tmp/a_gift_for_soren.txt 2>&1 | 19:27 |
mtaylor | soren: looking | 19:27 |
soren | mtaylor: ta. | 19:27 |
piken | soren: should I then launch it with virsh and send the log along | 19:27 |
soren | piken: Sounds like a plan. | 19:27 |
mtaylor | soren: http://launchpadlibrarian.net/59216032/buildlog_ubuntu-maverick-i386.nova_2011.1~bzr399-0ubuntu0ppa1~maverick1_FAILEDTOBUILD.txt.gz | 19:28 |
mtaylor | soren: it's (I think) due to old v. of python-sphinx | 19:28 |
soren | piken: Looking at the libvirt code, I have a reasonably good guess where the problem is (in terms of lines of code), but what specifically fails, I'm not sure, but I will be able to tell from the log. | 19:28 |
soren | mtaylor: Err.. | 19:28 |
soren | mtaylor: Nono... Swift. | 19:28 |
mtaylor | the sphinx-build portion seems very unhappy :) | 19:29 |
soren | mtaylor: I meant swift. | 19:29 |
mtaylor | oh. well that's different :) | 19:29 |
soren | mtaylor: I didn't even realise we had one for nova. | 19:29 |
piken | soren: http://paste.openstack.org/show/155/ | 19:29 |
soren | mtaylor: hudson builds nova packages and uploads them? Really? | 19:29 |
zul | soren: can you look at the debian changes in lp:~zulcss/nova/natty-ubuntu-packaging for me? | 19:29 |
soren | zul: In a little bit, but yes, certainly. | 19:29 |
mtaylor | soren: cp: cannot stat `debian/tmp/usr/bin/swift-auth-create-account': No such file or directory | 19:30 |
mtaylor | soren: has done for quite a wihle | 19:30 |
soren | mtaylor: I'm lost. | 19:31 |
soren | mtaylor: Ok, hang on for a bit. | 19:31 |
soren | mtaylor: Ok, so here's what I see. Tell me where I'm wrong: | 19:32 |
soren | mtaylor: http://localhost:9000/job/swift-ppa/85/console shows it succesfully building a source package and uploading it. | 19:33 |
soren | mtaylor: Signed by 32EE128C, which I don't see as owned by anyone of the usual suspects on LP. | 19:33 |
soren | mtaylor: Oh, and it uploads to swift-core/trunk | 19:33 |
soren | mtaylor: /me types and clicks | 19:34 |
soren | mtaylor: Looking at https://launchpad.net/~swift-core/+archive/trunk/+packages I see a swift package.. | 19:34 |
soren | mtaylor: Uploader says "no signer", which AFAIK can only mean it's built by a recipe. | 19:35 |
soren | mtaylor: its version is 0+126~lucid1 | 19:35 |
soren | mtaylor: The version hudson uploads is 1.0.1blahblahblah, which is higher than 0+126~lucid1. | 19:35 |
soren | mtaylor: So at least the source package should be superseded. | 19:36 |
soren | mtaylor: Where does my reasoning fail? | 19:36 |
mtaylor | so... 32EE128C should be the hudson user's gpg key | 19:36 |
soren | piken: iptables is broken somehow. | 19:36 |
soren | mtaylor: I looked an launchpad and didn't see it. | 19:36 |
soren | mtaylor: Let me look again. | 19:36 |
mtaylor | soren: that's very very odd... but it's certainly possible | 19:37 |
*** ptremblett has quit IRC | 19:37 | |
soren | mtaylor: You don't get reject mails? | 19:37 |
soren | mtaylor: https://launchpad.net/~hudson-openstack doesn't show any gpg keys at all. | 19:37 |
mtaylor | soren: I get _SO MANY MAILS_ from the hudson-openstack user | 19:38 |
*** zul has quit IRC | 19:38 | |
*** zul has joined #openstack | 19:38 | |
soren | mtaylor: Sounds familiar. | 19:38 |
soren | mtaylor: Yet, for once, I'm /lacking/ info :) | 19:38 |
mtaylor | lemme upload gpg key | 19:39 |
soren | mtaylor: Long story short (if that's not too late)... I think we should add that key to the lp account. | 19:39 |
soren | mtaylor: Right. Lovely. I'm sure that'll make everything better. | 19:39 |
soren | Does this failure look familiar to anyone? https://code.launchpad.net/~soren/nova/2011.1-bump/+merge/41039 | 19:40 |
mtaylor | sigh. must upload key to keyserver blah blah | 19:40 |
soren | I seriously doubt bumping the version will make anything fail. | 19:40 |
piken | soren: ty, time to look at iptables even though they did appear to be working | 19:41 |
soren | piken: The problem is that.. | 19:41 |
soren | piken: hm... hang on. | 19:41 |
soren | piken: Which version of iptables is this? | 19:41 |
*** Edwin-lunch is now known as EdwinGrubbs | 19:42 | |
mtaylor | ok. me go get coffee ... back in a sec | 19:42 |
soren | mtaylor: enjoy | 19:42 |
*** Ryan_Lane is now known as Ryan_Lane|food | 19:43 | |
*** mdomsch has joined #openstack | 19:46 | |
soren | piken: Sorry if I already asked once. As you may be able to tell, I'm juggling quite a few balls at the same time here :) | 19:46 |
piken | soren: I compiled 1.4.10 fresh this morning and then restarted libvirt | 19:47 |
soren | piken: The logs reveal that it's --ctdir that's missing. That was added in 1.4.1, IIRC. | 19:48 |
soren | piken: Perhaps the kernel module for xt_conntrack was already loaded? | 19:48 |
soren | piken: The old one without ctdir in it, I mean. | 19:48 |
notmyname | any cloudscaling people have an email address for littleidea? /msg me please | 19:49 |
piken | hmm, if I do `iptables` it shows 1.3.5 which was the original centos5 one. | 19:49 |
piken | if I do `which iptables` it shows /usr/local/sbin/iptables | 19:50 |
piken | which when run shows 1.4.10 | 19:50 |
*** joearnold has quit IRC | 19:55 | |
vishy | soren: those were from my tests which merged yesterday | 19:57 |
soren | vishy: So why am I the lucky one the get bitten by them? | 19:57 |
* soren cries | 19:57 | |
vishy | soren: not sure what could cause it to fail though | 19:58 |
mtaylor | soren: any chance you have a few moments to upload a package to ubuntu for me? | 19:58 |
soren | It's the Y2K11 bug, cleary. | 19:58 |
soren | mtaylor: What is it? | 19:58 |
mtaylor | soren: librabbitmq | 19:59 |
soren | mtaylor: Sounds like fun. Is it a new package? | 19:59 |
mtaylor | soren: it is. I uploaded to debian, but their new queue is ... ugly at the moment | 19:59 |
vishy | lol only one fail this time | 19:59 |
soren | vishy: This is r401? | 20:00 |
piken | soren: mind taking a look at another log. I rebooted for the hell of it and at least iptables reports as 1.4.10 now. | 20:00 |
piken | http://paste.openstack.org/show/156/ | 20:00 |
mtaylor | soren: bzr bd-based packaging is all at lp:~mordred/librabbitmq/debian | 20:00 |
*** westmaas has quit IRC | 20:01 | |
soren | piken: I think you may have messed up the iptables build. It doesn't seem to include conntrack. | 20:01 |
vishy | soren: yeah i will try to debug, wasn't getting any failures locally on the last version. Is the db wiped between builds? | 20:01 |
mtaylor | soren: gpg key for hudson-openstack is uploaded | 20:02 |
* soren hugs mtaylor | 20:02 | |
soren | We don't hug enough in this channel. | 20:02 |
soren | vishy: I believe it is, but I'm not sure. | 20:02 |
mtaylor | soren: that's because of the US fear of sexual harrassment ;) | 20:03 |
piken | soren: I built it with the normal configure, make, make install. I just looked at configure and there is no option for conntrack. Any help pointing in the right direction for it would help a lot. | 20:03 |
soren | piken: What's the version of iptables in centos by default? | 20:04 |
*** westmaas has joined #openstack | 20:04 | |
piken | 1.3.5 | 20:04 |
piken | really old | 20:04 |
soren | holy crap. | 20:04 |
piken | yeah | 20:04 |
soren | Pardon my French. | 20:04 |
piken | I dl'ed from netfilters site, 1.4.10 and built it | 20:04 |
piken | well centos5 is actually just over 5 years old. lol | 20:05 |
vishy | symlink old one to new one? | 20:05 |
vishy | :) | 20:05 |
soren | piken: Can you check if there's an xt_conntrack.so anywhere? | 20:05 |
soren | At least, i believe that's the name it should carry. | 20:05 |
soren | $ dpkg -L iptables | grep conntrack | 20:05 |
soren | /lib/xtables/libxt_conntrack.so | 20:05 |
piken | hmm don't see it any where | 20:06 |
mtaylor | centos is the oldest thing ever | 20:06 |
vishy | wth? python run_tests.py is trying to load fakeldap again? | 20:07 |
soren | KILL IT! | 20:07 |
dubsquared1 | with fire. | 20:07 |
soren | vishy: Oh.. | 20:08 |
soren | vishy: Err.. Yes, it does. I made it so :) | 20:08 |
soren | vishy: I realised that when I switched to the dbdriver by default, the entire LDAP thing was untested. | 20:08 |
soren | vishy: So the auth_unittests runs twice. Once with fakeldap, once with the dbdriver. | 20:08 |
piken | ah, ok. xt_conntrack is a kernal module. but I don't have a lib for it, just the module that is loaded. | 20:08 |
vishy | it skips if redis isn't running, but it still fails if python-redis isn't installed | 20:09 |
soren | piken: You need both. | 20:09 |
soren | vishy: Oh. | 20:09 |
soren | vishy: You should fix that :) | 20:09 |
vishy | yeah :) | 20:09 |
*** jdarcy has quit IRC | 20:09 | |
vishy | so i don't get that error | 20:10 |
vishy | :( | 20:10 |
soren | piken: there's a kernel module that implements it in the kernel, and there's userspace library that implements the cmdline parsing and whatnot. | 20:10 |
soren | vishy: You think it's related? | 20:10 |
vishy | soren: trying with redis running now | 20:10 |
soren | vishy: Er... I mean related to those two failing unit tests? | 20:10 |
piken | soren: it looks like on centos it is part of netfilter-nat, so I will install and rebuild iptables. | 20:10 |
piken | is there a way to test that it is there? | 20:11 |
soren | sudo iptables -m conntrack | 20:11 |
vishy | soren: they don't fail for me locally in current trunk, let me try merging your branch and see if i can get a failure | 20:11 |
soren | if that doesn't explode, you're fine. | 20:11 |
soren | piken: It should say something like: iptables v1.4.4: conntrack: At least one option is required | 20:11 |
soren | piken: And not iptables v1.4.4: Couldn't load match `conntrack':/lib/xtables/libipt_conntrack.so: cannot open shared object file: No such file or directory | 20:12 |
soren | vishy: If bumping the version makes a difference, I'm going to quit and become a bushman. | 20:14 |
vishy | hehe | 20:14 |
vishy | yeah no fail here | 20:14 |
piken | hmm, still iptables v1.4.10: unknown option `--ctdir' | 20:14 |
soren | phew. | 20:14 |
vishy | i can't get it to break | 20:14 |
soren | vishy: Do you have a login on the hudson box? | 20:15 |
vishy | soren: no | 20:15 |
soren | vishy: You want one? | 20:15 |
vishy | soren: sure, i could login and try running the tests there i suppose | 20:15 |
*** schisamo has joined #openstack | 20:15 | |
soren | vishy: exactly. | 20:15 |
dabo | Finally got an instance running in nova, but I can't ssh into it - ideas? http://paste.openstack.org/show/157/ | 20:16 |
* soren blames security groups | 20:16 | |
soren | euca-authorize -p 22 -s 0.0.0.0/0 default | 20:16 |
soren | See if that helps. | 20:16 |
dabo | soren: nope | 20:17 |
dubsquared1 | can you ping it? — same principle applies — security groups | 20:17 |
*** arthurc has quit IRC | 20:18 | |
dabo | dubsquared1: no, ping gets no response | 20:18 |
dubsquared1 | euca-authorize -P icmp -t -1:-1 default | 20:18 |
dabo | still no love from ping after that | 20:18 |
JordanRinke | what does a euca-get-console-output (I think) show ? | 20:19 |
termie | eday: nopes | 20:19 |
termie | eday: will be in som ehours, however | 20:19 |
*** mdomsch has quit IRC | 20:20 | |
dabo | JordanRinke: you want the whole thing? It's pretty long | 20:20 |
JordanRinke | just the last few lines, use paste.openstack.org | 20:21 |
eday | termie: ahh, was curious about status/outlook for the unified arch blueprint | 20:21 |
dabo | JordanRinke: http://paste.openstack.org/show/158/ (the whole thing) | 20:22 |
JordanRinke | looks like you are not getting a dhcp response | 20:22 |
dubsquared1 | no ip? | 20:22 |
JordanRinke | i am not familiar enough with how dhcp works on nova | 20:23 |
dubsquared1 | neither am i, what ip are you ssh'ing to? | 20:23 |
dubsquared1 | or trying to ping | 20:23 |
dabo | dubsquared1: 10.0.0.3 | 20:23 |
dubsquared1 | that is an available ip in the fixed_ip's table? | 20:24 |
JordanRinke | dubsquared1: he isnt getting an ip | 20:24 |
JordanRinke | the console output shows it trying to do a dhcp discover over and over | 20:24 |
dabo | dubsquared1: here's the describe info: http://paste.openstack.org/show/157/ | 20:24 |
dubsquared1 | ah | 20:24 |
JordanRinke | dabo: what networking manager are you using in your .conf files? | 20:24 |
dabo | JordanRinke: nova.network.manager.FlatManager | 20:25 |
JordanRinke | and you have br100 setup for dhcp? | 20:26 |
dabo | JordanRinke: yes | 20:26 |
JordanRinke | when you ifup br100 does it get an IP? | 20:26 |
dabo | and in the .conf: --dhcpbridge_flagfile=/etc/nova/nova-manage.conf (if that helps) | 20:26 |
dabo | JordanRinke: I get: Ignoring unknown interface br100=br100. | 20:27 |
JordanRinke | does ifconfig show the interface / does it have an IP? | 20:27 |
dabo | but I ran: brctl addbr br100 | 20:27 |
JordanRinke | did you also add eth0 or whatever your public nic is to br100? | 20:28 |
dabo | JordanRinke: FWIW, I'm using the nova.sh script that vishy created. The 'brctl' stuff are things that others have told me to add to get past previous problems | 20:29 |
JordanRinke | yeah, so you need to brctl addbr br100 which you did | 20:30 |
dabo | JordanRinke: I don't know what you mean by 'add eth0 or whatever your public nic is to br100', so I guess I didn | 20:30 |
dabo | didn't do it | 20:30 |
*** joearnold has joined #openstack | 20:30 | |
JordanRinke | and then (I dont have a box to check rgiht now) you need to do something like brctly addif br100 eth0 | 20:30 |
JordanRinke | brctl not brrctly :) | 20:31 |
vishy | dabo: is dnsmasq running? | 20:31 |
vishy | dabo: ps aux | grep dnsmasq should show exactly two dnsmasqs with a lot of command line options | 20:32 |
dabo | JordanRinke: I ran "brctl addif br100 eth0 | 20:32 |
*** westmaas has quit IRC | 20:32 | |
dabo | JordanRinke: and now I can't reach the server at all! | 20:32 |
*** westmaas has joined #openstack | 20:33 | |
*** Ryan_Lane|food is now known as Ryan_Lane | 20:33 | |
dabo | vishy: can't check right now - my access to my server just got hosed. :( | 20:34 |
vishy | dabo: oops | 20:34 |
vishy | :( | 20:34 |
JordanRinke | yeah, my fault | 20:34 |
*** burris has joined #openstack | 20:34 | |
JordanRinke | brctl addbr br100 | 20:34 |
JordanRinke | brctl addif br100 eth0 | 20:34 |
vishy | dabo: i hope you have ipmi | 20:34 |
JordanRinke | so, now eth0 doesnt have an assignment | 20:35 |
vishy | dabo: if you are using default networking you shouldn't have to mess with the bridge | 20:35 |
dabo | vishy: I'm using the flat networking | 20:35 |
vishy | ah ok | 20:36 |
JordanRinke | using flat you still need a bridge | 20:36 |
vishy | flat dhcp or flat? | 20:36 |
dabo | vishy: nova.network.manager.FlatManager | 20:36 |
JordanRinke | dabo: note if you reboot that server should come back up your interfaces file should over ride the brctl command | 20:38 |
dabo | JordanRinke: yeah, already did that, and I'm back in | 20:38 |
dabo | vishy: I changed the line that runs compute and network to: screen_it compute "$NOVA_DIR/bin/nova-compute --flagfile=/etc/nova/nova-manage.conf --network_manager=nova.network.manager.FlatManager" | 20:38 |
dabo | (similarly for network) | 20:38 |
JordanRinke | I wish there was more doc on the network managers... from what I know, using flat networking... the bridge basically exposes those directly to the net so you either need to assign them IPs or you need to have a DHCP server running | 20:39 |
JordanRinke | I could be wrong though | 20:39 |
*** ptremblett has joined #openstack | 20:40 | |
vishy | dabo you need to do it api as well | 20:40 |
dabo | vishy: ok, I changed it in the nova.sh | 20:41 |
JordanRinke | brb | 20:42 |
*** JordanRinke has quit IRC | 20:42 | |
piken | Soren: no matter what I try I can't get conntrack to work with the built iptables I have. | 20:42 |
piken | iptables v1.4.10: Couldn't load match `contrack':/usr/local/libexec/xtables/libipt_contrack.so: cannot open shared object file: No such file or directory | 20:43 |
piken | and no clue how to fix it | 20:43 |
dabo | head | 20:43 |
*** burris has quit IRC | 20:43 | |
dabo | oops | 20:43 |
dabo | was going to say: | 20:43 |
dabo | head's about to explode - time for a break | 20:44 |
*** pvo has joined #openstack | 20:45 | |
*** ChanServ sets mode: +v pvo | 20:45 | |
soren | piken: Building iptables is a pain. | 20:49 |
* soren used to maintain it in Ubuntu | 20:49 | |
gundlach | dabo: i realized that a better place to change it in nova.sh is in the creating of the manage.conf file -- so you can change to FlatManager in one place instead of 3 | 20:49 |
* soren takes a break | 20:52 | |
*** littleidea has joined #openstack | 21:01 | |
*** littleidea_ has joined #openstack | 21:02 | |
*** mdomsch has joined #openstack | 21:05 | |
*** littleidea has quit IRC | 21:06 | |
*** littleidea_ is now known as littleidea | 21:06 | |
*** aliguori has joined #openstack | 21:08 | |
*** JordanRinke has joined #openstack | 21:11 | |
gundlach | JordenRinke: so since 'brctl addif br100 eth0' isn't the right command, do you know what is? | 21:12 |
*** jdarcy has joined #openstack | 21:13 | |
comstud | what's not right about it? | 21:14 |
JordanRinke | that is the right command, to add the interface to the bridge | 21:14 |
JordanRinke | it just adds it without a config :/ | 21:14 |
* comstud nods | 21:14 | |
comstud | eth0 might not be right... if that's not the interface you want to bridge into your guest | 21:15 |
JordanRinke | true | 21:15 |
*** burris has joined #openstack | 21:15 | |
sandywalsh | gundlach, is it just brctl addif br100 | 21:15 |
comstud | that command is addbr | 21:15 |
comstud | addbr == create a bridge interface | 21:15 |
comstud | addif == add interfaces into the bridge | 21:16 |
gundlach | sandywalsh: i had done brctl addbr br100 already -- i thought addif required an interface. i'll try that. | 21:16 |
comstud | addif requires the bridge interface and the interface you want to add | 21:16 |
tr3buchet | sandywalsh: followup error: (i installed parted) http://pastie.org/1306725 | 21:16 |
* gundlach sees now that sandywalsh says 'is it' and not 'it is' | 21:16 | |
sandywalsh | tr3buchet, it worked. Now you have another issue (same as gundlach) | 21:17 |
gundlach | JordanRinke: not right in that it hosed my connection as well to the box, requiring a reboot. | 21:17 |
tr3buchet | yeah i was going to say this chat looks to be going over my issue | 21:18 |
JordanRinke | you have to set the IP info for the bridge | 21:18 |
JordanRinke | so brctl addbr br100 | 21:18 |
tr3buchet | that's what i did | 21:18 |
tr3buchet | and got the error pasted above | 21:18 |
comstud | then ifconfig br100 | 21:19 |
comstud | then brctl addif | 21:19 |
comstud | i guess | 21:19 |
JordanRinke | ifconfig br100 1.2.3.4 netmask 255.255.255.0 gateway 1.2.3.1 | 21:19 |
JordanRinke | etc | 21:19 |
tr3buchet | ah | 21:19 |
JordanRinke | and then brctl addif br100 eth0 | 21:19 |
sandywalsh | (updating wiki) | 21:20 |
JordanRinke | that *should* work | 21:20 |
* tr3buchet refreshes wiki | 21:20 | |
JordanRinke | it might still knock you out, since the br100 interface might not be up, but adding the interface to it should bring it up if it wasnt already | 21:20 |
JordanRinke | know that on a reboot though, those changes go away | 21:20 |
JordanRinke | you would need to set it up in your interfaces file | 21:20 |
gundlach | hmm, i tried 'brctl addif br100 eth1' since i've got an eth1 on my slice, with a default gw/netmask/ip already set. | 21:21 |
JordanRinke | but brctl and ifconfig is a good way to test it, since if you commit the changes in your interfaces file and they are wrong... i hope you have a kvm | 21:21 |
gundlach | should that have been enough? or do i still need to explicitly config br100 and then attach an interfac eto it? | 21:21 |
JordanRinke | you need to configure br100 | 21:21 |
gundlach | k | 21:21 |
JordanRinke | when you add the interface to it, it erases that interfaces config | 21:21 |
JordanRinke | if you ifconfig now you will see that you have eht1 and br100 with no config | 21:21 |
gundlach | ifconfig eth1 still shows gw/netmask/ip, brctl show shows br100 tied to eth1, ifconfig br100 still shows no gw/netmask/ip (i haven't run "ifconfig br100 [etc]" yet) | 21:22 |
* gundlach hasn't worked with bridges in 2 or 3 years and is having vague deja vu | 21:23 | |
JordanRinke | hmm it always erased my settings, but i usually restarted networking too | 21:23 |
comstud | this is easier when you're not bridging your main interface | 21:24 |
comstud | hehe | 21:24 |
JordanRinke | lol true | 21:24 |
JordanRinke | even having done it a few times, I still find it trial and error | 21:24 |
gundlach | comstud: yeah, so i'm trying to figure out the right settings to put in that will allow me to ssh in over eth0 still, while bridging my VMs onto eth0 thru br100 as well :) kinda confusing! | 21:24 |
comstud | yeah | 21:25 |
JordanRinke | but your IP config info on br100 | 21:25 |
JordanRinke | you will be able to SSH to it still | 21:25 |
JordanRinke | and your vms will use it as their interface | 21:25 |
JordanRinke | (be sure to enable ipv4 forwarding) | 21:25 |
comstud | yeah, probably what you really want to do is | 21:25 |
comstud | add eth0 to your bridge, not eth1 | 21:26 |
comstud | but the gotcha is that you ahve to copy your IP info from eth0 to br100 | 21:26 |
comstud | before you add eth0 to br100 | 21:26 |
sandywalsh | guys when you figure out that flat networking stuff can you update the bottom of this page please: http://wiki.openstack.org/InstallFromSource | 21:26 |
comstud | so right before you do brctl addif br100 eth0 | 21:26 |
comstud | you'd see br100 and eth0 with the same IP on both interfaces | 21:26 |
sandywalsh | 'cause I gotta run | 21:26 |
gundlach | comstud: right, i just tried "ifconfig br100 173.203.107.170 netmask 255.255.255.0 gw 173.203.107.1 && brctl addif br100 eth0" (doing the && in case the first alone would have knocked me off of ssh) but my ifconfig command isn't perfect yet | 21:27 |
gundlach | sandywalsh: yep | 21:27 |
comstud | ifconfig doesn't know 'gw' | 21:27 |
gundlach | jordanrinke: how do i enable ipv4 forwarding? on what? | 21:27 |
comstud | that's a 'route' command | 21:27 |
comstud | remove the 'gw 173.203.107.1' | 21:27 |
gundlach | comstud: "gateway" doesn't work either. ohh maybe i'm thinking of windows route | 21:27 |
gundlach | comstud: is it 'route add br100 default gateway 173.203.107.1' maybe? | 21:28 |
comstud | your default gateway will already be there still | 21:28 |
JordanRinke | look at your sysctl.conf file | 21:28 |
sandywalsh | 'night guys ... thanks for all the help today! | 21:28 |
comstud | so you don't need to do anything with that | 21:28 |
JordanRinke | in there it will have ipv4 forwarding commented out, uncomment it | 21:28 |
tr3buchet | you too sandy | 21:28 |
comstud | just ifconfig br100 173.* netmask 255.* | 21:28 |
JordanRinke | i am not on a box I can check rgiht now so this is from memory | 21:28 |
comstud | your default route will still point to .1 | 21:28 |
gundlach | comstud: i don't buy it, because 'route' shows my default gw as being on 'eth0' interface... but: | 21:29 |
JordanRinke | and once you uncomment that do sysctl -P | 21:29 |
gundlach | i just did "ifconfig br100 173.203.107.170 netmask 255.255.255.0 && brctl addif br100 eth0" and have now lost ssh. guess that wasn't quite right :) | 21:29 |
comstud | gundlach- that'll be okay | 21:29 |
comstud | or well, it _should_ be okay | 21:29 |
comstud | but | 21:29 |
JordanRinke | I think you need to set a gatway for the interface | 21:29 |
comstud | if it's not... you have to do something more fun | 21:29 |
gundlach | jordanrinke: oops, i forgot to do ipv4 fwding before that command -- why is this needed? | 21:29 |
comstud | like | 21:29 |
vishy | https://code.launchpad.net/~vishvananda/nova/fix-trunk/+merge/41099 | 21:29 |
*** olivier_ has left #openstack | 21:29 | |
JordanRinke | your VMs wont be able to route ARP commands etc | 21:30 |
vishy | fixes the annoying race condition in trunk stopping merges from going through. | 21:30 |
JordanRinke | you will be able to SSH and fix it | 21:30 |
JordanRinke | but your VMs wont see the internet | 21:30 |
piken | Why are people in most distro's irc channels royal ass'es? | 21:30 |
notmyname | normal person + anonymity | 21:31 |
piken | Never ask for help on something that is none standard, like updating an out of date package on the distro. I mean why the fuck should I ever think to want to do that. | 21:31 |
JordanRinke | normal person + anonymity + they have something you need/want | 21:31 |
JordanRinke | I use my real name so I am just normal person ;) | 21:32 |
comstud | gundlach, you could try this: | 21:32 |
comstud | 1) brctl addbr br100 | 21:32 |
comstud | 2) ifconfig br100 IP netmask NETMASK | 21:32 |
comstud | 3) ifconfig eth0 0.0.0.0 | 21:32 |
comstud | 4) brctl addif br100 eth0 | 21:32 |
comstud | 5) route delete default | 21:32 |
comstud | 6) route add default IP | 21:32 |
comstud | i guess linux wants 'gw IP' maybe for route | 21:32 |
gundlach | comstud: won't step 3 hose my ssh conn? i guess i can do all these in a script | 21:32 |
comstud | right, do it in a script | 21:32 |
comstud | redirect stdout | 21:33 |
comstud | when you run it | 21:33 |
tr3buchet | won't it have to be a script in a screen? | 21:33 |
tr3buchet | or backgrounded? | 21:33 |
comstud | just redirect stdout and you're okay | 21:33 |
gundlach | tr3buchet: good call, i'll nohup it | 21:33 |
comstud | so output doens't try to go to your terminal and halt the script because it can't write to the terminal | 21:33 |
tr3buchet | comstud that's the only reason things halt when you are disconnected? | 21:34 |
gundlach | comstud: huh, i didn't think that was sufficient to keep a process from dying when i closed my connection... | 21:34 |
gundlach | comstud: i thought it was that bash is killed, and its child processes are killed | 21:34 |
comstud | hm, i don't think it'll close your connection | 21:34 |
tr3buchet | ./2nd | 21:34 |
gundlach | anyway, i'll use nohup :) | 21:34 |
tr3buchet | haha | 21:34 |
comstud | yeah | 21:34 |
comstud | i'm pretty sure your connection will not drop | 21:35 |
comstud | it'll just be stick momentarily | 21:35 |
comstud | stuck | 21:35 |
* gundlach had a typo in 'addbr', hard rebooting... :) | 21:36 | |
*** maplebed has quit IRC | 21:36 | |
* gundlach forgot to nohup, hard rebooting... | 21:38 | |
JordanRinke | lol | 21:38 |
tr3buchet | haha | 21:38 |
comstud | hehehe | 21:38 |
JordanRinke | i dont feel so bad for accidently not giving you all the info before the addbr command earlier now :-D | 21:38 |
gundlach | ok i nohup'd and have stuck for at least 5 secs... | 21:38 |
gundlach | not responding to ping | 21:38 |
*** MarkAtwood has quit IRC | 21:38 | |
comstud | what xen does is actually interesting | 21:39 |
comstud | it renames eth0 to peth0 | 21:39 |
comstud | creates brXX and renames it eth0 | 21:39 |
comstud | and moves IP to the new eth0 | 21:39 |
JordanRinke | it could take up to 30 seconds for br100 to come up | 21:39 |
* gundlach looks at his watch | 21:39 | |
JordanRinke | if that doesnt work, your script may need to restart networking / ifup br100 after it sets everything | 21:39 |
gundlach | comstud: interesting | 21:39 |
comstud | did you redirect output from the script so you can see what the errors are after you hard reboot? | 21:39 |
comstud | =D | 21:39 |
gundlach | comstud: that'll be next time :D | 21:40 |
comstud | stdout and err, i guess | 21:40 |
comstud | hehe | 21:40 |
comstud | this is easier to play with when you have working console :) | 21:40 |
JordanRinke | yeah I used a direct console to get my interfaces file figured out | 21:41 |
comstud | another thing to check is whether or not there are any iptables rules loadded | 21:41 |
JordanRinke | then just blew it out to all my nodes and rebooted them | 21:41 |
comstud | you may want to iptables --flush before you try again | 21:42 |
gundlach | "SIOCDELRT: No such process | 21:43 |
gundlach | SIOCADDRT: No such device | 21:43 |
gundlach | " | 21:43 |
* gundlach is out of his depth | 21:43 | |
comstud | ah, the route commands are wrong | 21:43 |
comstud | i guess | 21:43 |
comstud | i might be thinking solaris | 21:44 |
comstud | what did you use? | 21:44 |
gundlach | ubuntu 10.10 slice | 21:44 |
comstud | i mean | 21:44 |
comstud | what are your route commands? | 21:44 |
gundlach | oops | 21:44 |
gundlach | http://paste.openstack.org/show/159/ | 21:44 |
comstud | ah yeah | 21:45 |
comstud | try: route add default gw $GW | 21:45 |
gundlach | same error | 21:45 |
comstud | solaris doesn't want the explicit 'gw' in there... | 21:45 |
comstud | i get them reversed sometimes | 21:45 |
*** sirp2 has joined #openstack | 21:45 | |
comstud | hm | 21:45 |
gundlach | yeah, i can never remember those friendly "English-esque" syntaxes | 21:45 |
comstud | route add default gw $GW br100 ? | 21:45 |
JordanRinke | add a /etc/init.d/networking restart | 21:45 |
comstud | that'd only work if he set up 'interfaces' | 21:46 |
gundlach | comstud: SIOCADDRT: No such device | 21:46 |
JordanRinke | yeah | 21:46 |
soren | Why are you doing this from scripts? | 21:46 |
comstud | gundlach, huh | 21:46 |
comstud | hm | 21:46 |
JordanRinke | so... | 21:46 |
soren | This is what /etc/network/interfaces is for. | 21:46 |
comstud | soren- we're bored :) | 21:46 |
soren | Fix bugs :) | 21:46 |
tr3buchet | soren if he screws it up he'll still be able to access? | 21:46 |
gundlach | soren: because i'm trying to get br100 running on a box i'm ssh'd into, and i have to point eth0 to that bridge which breaks my ssh connection -- and if i used /etc/network/interfaces then a hard reboot of my VM wouldn't let me back in. | 21:46 |
comstud | soren, ya, he has no console, so | 21:47 |
gundlach | soren: i *am* fixing bugs ;) nova.sh doesn't let me start new instances, so i'm debugging it. | 21:47 |
*** jdarcy has quit IRC | 21:47 | |
soren | a) don't mess it up, then. Easy :) | 21:47 |
comstud | hahaa | 21:47 |
soren | b) Use logical names for things so you can test them without making them the default that would be applied on reboot. | 21:47 |
* tr3buchet wants to a see of paste of soren's example /etc/network/interfaces file | 21:47 | |
comstud | i wonder if you need a ifconfig br100 up | 21:48 |
tr3buchet | ah his b is a good idea | 21:48 |
soren | a) is better. | 21:48 |
soren | Really. | 21:48 |
soren | :) | 21:48 |
tr3buchet | hehe | 21:48 |
JordanRinke | just put this in interfaces | 21:48 |
JordanRinke | http://paste.openstack.org/show/160/ | 21:48 |
*** sirp1 has quit IRC | 21:49 | |
JordanRinke | and restart networking | 21:49 |
JordanRinke | warning: if that is wrong, you wont have access | 21:49 |
JordanRinke | so, have some type of KVM access | 21:49 |
gundlach | JordanRinke: that's ok, i'll destroy the slice and make a new one :) | 21:49 |
soren | Why are you hooking things up to eth0? | 21:49 |
soren | They're differnet subnets anyway. | 21:49 |
openstackhudson | Project nova build #245: SUCCESS in 56 sec: http://173.203.104.204:8080/job/nova/245/ | 21:50 |
comstud | i suppose that's a good point | 21:50 |
gundlach | soren: who is 'they'? | 21:50 |
comstud | nova will give VMs a private IP | 21:50 |
soren | gundlach: "the intarwebz" and "your vm's" | 21:50 |
soren | gundlach: Your vm's will get addresses on 10.0.0.0/8 unless you changed it. | 21:51 |
JordanRinke | well | 21:51 |
soren | And the internet is how it is. | 21:51 |
JordanRinke | depending on what network manager he is using | 21:51 |
JordanRinke | which i guess we havent asked | 21:51 |
soren | So you have two distinct networks to deal with anyway. | 21:51 |
gundlach | FlatManager | 21:51 |
soren | Regardless. | 21:52 |
gundlach | because the default complained of 8021q module not existing. | 21:52 |
soren | if this is running on the rackspace cloud, you're not going to have a stack public IP's you can assign to your VM's, so I don't completely understand the point of this exercise. | 21:52 |
tr3buchet | i think it started as, get an instance to be running | 21:52 |
gundlach | soren: yes, i'm on the rackspace cloud, and so far i'd be content with getting an instance up | 21:53 |
comstud | soren, you're right | 21:53 |
comstud | i'd use eth1 | 21:53 |
comstud | for your bridge | 21:53 |
comstud | or | 21:53 |
soren | tr3buchet: So why make it this complicated? | 21:53 |
gundlach | soren: i'd be ok e.g. sshing into the slice, and then sshing from there into the VM. | 21:53 |
soren | That's the thing. | 21:53 |
comstud | just assign no interfaces to your bridge | 21:53 |
comstud | :) | 21:53 |
soren | gundlach: You will have to do that anyway. | 21:53 |
dabo | soren: I've gotten an instance running on my cloud server; I just can't ssh into the instance | 21:53 |
soren | dabo: From whence? | 21:53 |
dabo | that's what started this whole thing | 21:53 |
dabo | from the cloud server | 21:53 |
tr3buchet | soren: no reason.. it just ended up being complicated. | 21:54 |
gundlach | dabo: do you have the set of brctl commands you used to get past the network errors? | 21:54 |
comstud | dabo- brctl show | 21:54 |
*** ctennis has quit IRC | 21:54 | |
soren | dabo: That's not going to change by making your bridge setup needlessly complicated :) | 21:54 |
JordanRinke | if flatmanager makes a sep network for the VMs then why does it do injection from the fixed_ips table? | 21:54 |
JordanRinke | I setup 300 nodes, using public IPs that were injected, each VM was statically assigned the IP and accessed the internet through the bridge... no additional vlans/networks etc AFAIK | 21:54 |
soren | JordanRinke: How are those two statements related? | 21:54 |
dabo | gundlach: just "brctl addbr br100" | 21:55 |
soren | JordanRinke: Put another way: | 21:55 |
comstud | dabo, gundlach, yeah, don't do a 'addif' | 21:55 |
dabo | soren: I really like complicated! | 21:55 |
comstud | but make sure br100 is ifconfig'd 'up' | 21:55 |
comstud | ifconfig br100 | 21:55 |
comstud | is it up ? | 21:55 |
dabo | soren: actually, I'm just going along until I get stuck, and turn here for help | 21:55 |
gundlach | comstud: erm, i had added 'brctl addbr br100' to nova.sh run, and was getting the network errors. thus this rabbit hole i'm down :) | 21:55 |
soren | JordanRinke: How does using a separate network make it less needed to do the injection thing? | 21:56 |
comstud | ahh, sorry, i just kind of jumpe din the middle and made some poor assumptions | 21:56 |
gundlach | JordanRinke: /etc/network/interfaces approach has set up br100 with the IP that eth0 used to own... let's see what happens when i try to start an instance :) | 21:56 |
comstud | gundlach, yeah, as soren said, we don't want to do that.. | 21:56 |
comstud | there's not a point to it in the rackspace cloud | 21:56 |
soren | Or most anywhere else, really. | 21:57 |
soren | The argument is just simpler in this context. | 21:57 |
comstud | the only reason for doing that is if you had a 2nd public IP on the same netblock to throw onto the VM | 21:57 |
tr3buchet | by the way | 21:57 |
soren | Even so, the answer is routing. | 21:57 |
dabo | comstud: all I want to do is shell into the instance from the cloud server | 21:57 |
comstud | dabo, yep, got it... so let's look at what you have | 21:58 |
comstud | since you got your VM up | 21:58 |
dabo | well, I'm getting it back | 21:58 |
tr3buchet | gundlach you can get a running instance by just brctl addbr br100, and then ifconfig br100 up | 21:58 |
comstud | okies | 21:58 |
tr3buchet | but i think now i have dabo's issue | 21:58 |
comstud | yeah, i suspect br100 is just not up on dabo's | 21:58 |
dabo | after the last time I had to hard reboot the server (thanks, JordanRinke!) | 21:58 |
comstud | it's created, but not 'up' | 21:58 |
tr3buchet | i set mine to up | 21:58 |
tr3buchet | but otherwise unconfigured | 21:59 |
gundlach | tr3buchet: thanks, trying that after i get my server to its earlier state | 21:59 |
comstud | tr3, yes, good, sounds right | 21:59 |
comstud | tr3, were YOU able to get a vm instance running? | 21:59 |
comstud | the other thing you will need is an IP on br100 tho | 22:00 |
comstud | or somewhere on the box | 22:00 |
comstud | otherwise you have no way to talk to your VM | 22:00 |
JordanRinke | soren: I am not saying a sep network makes less need - I am saying that the VMs are not contained. I injected them with public IPs on FlatManager using a bridge to a public port | 22:00 |
JordanRinke | and they came up etc | 22:00 |
JordanRinke | there was no sep network | 22:00 |
tr3buchet | comstud yes it's running | 22:00 |
comstud | tr3, cools | 22:00 |
comstud | what's your VM IP ? | 22:01 |
tr3buchet | it's a 10 | 22:01 |
comstud | i assume you can't ssh into it | 22:01 |
tr3buchet | correct | 22:01 |
gundlach | ok, tried 'brctl addbr br100 && ifconfig br100 up' before nova.sh run, and euca-run-instances still gives "NotFound: No network for bridge br100" | 22:01 |
comstud | do you have any 10.* configured at all on the host side? | 22:01 |
soren | gundlach: That's not related to your network configuration. | 22:01 |
tr3buchet | comstud no | 22:01 |
comstud | tr3- ok, that's why you can't ssh | 22:01 |
tr3buchet | comstud was just looking into that | 22:01 |
comstud | there's no route to your VM from the host side | 22:01 |
dabo | comstud: ok, here's what I got: http://paste.openstack.org/show/161/ | 22:02 |
tr3buchet | right | 22:02 |
comstud | is your VM IP a .2 or something? | 22:02 |
comstud | if so, ifconfig a .1 on your box | 22:02 |
gundlach | soren: ok, i was misled by the error message sounding a lot like it was related to my network configuration. do you know what's going on there? | 22:02 |
comstud | dabo- yeah, i think i know the issue.. am working it out with tr3 | 22:02 |
dabo | kewl | 22:02 |
comstud | problem is.. your VM has a 10.* IP | 22:02 |
comstud | but your host doesn't | 22:02 |
comstud | the host has no way to reach your 10.* VM | 22:02 |
soren | gundlach: Well, it's network configuration, but configuration of nova. Not of your system. | 22:03 |
soren | Yeah, what comstud says. | 22:03 |
soren | ..is also true. | 22:03 |
comstud | if you ifconfig a 10.* IP from the same subnet onto your host.. | 22:03 |
comstud | you should be working | 22:03 |
comstud | ifconfig it onto br100 i guess | 22:03 |
soren | but if you get complaints about no network for bridge br100, it's because there aren't any networks configured in nova that are attached to br100, which it's configured to use. | 22:03 |
soren | Did you run "nova-manage network create"? | 22:04 |
comstud | ahh, that'd be why it's not there | 22:04 |
soren | gundlach: ^ | 22:04 |
gundlach | soren: not if nova.sh doesn't... lemme go check. | 22:04 |
soren | gundlach: No idea if it does. | 22:04 |
JordanRinke | it was a bug, it still is a bug if you install from the PPA | 22:04 |
tr3buchet | comstud: i'm also a bit out of my depth here, use route to add the 10.s ? | 22:05 |
JordanRinke | nova.sh does, it creates that 10. network | 22:05 |
dabo | soren: nova.sh has: $NOVA_DIR/bin/nova-manage network create 10.0.0.0/8 3 16 | 22:05 |
comstud | tr3- there's some sort of nova command that's supposed to do this stuff for you | 22:05 |
comstud | as soren said | 22:05 |
JordanRinke | you need to edit the db | 22:05 |
tr3buchet | oh.. | 22:05 |
tr3buchet | here i was reading the wrong docs.. | 22:05 |
*** ctennis has joined #openstack | 22:06 | |
*** ctennis has joined #openstack | 22:06 | |
comstud | tr3- but the manual way is really only: ifconfig br100 10.x.x.1 netmask whatever up | 22:06 |
comstud | or something like that | 22:06 |
soren | dabo: Not sure what went wrong then. | 22:06 |
JordanRinke | update nova.networks set bridge="br100" | 22:06 |
tr3buchet | nova.networks already has bridge set to br100 for one of the 3 entries | 22:08 |
tr3buchet | why i have 3.. | 22:08 |
comstud | try running the above nova-manage network create command again? | 22:08 |
gundlach | soren: nova.sh does " $NOVA_DIR/bin/nova-manage network create 10.0.0.0/8 3 16" | 22:09 |
soren | gundlach: Yes, dabo pointed that out. | 22:09 |
soren | gundlach: What's in the db? | 22:09 |
gundlach | soren: sorry, i see that, was afk | 22:09 |
tr3buchet | that gives me an IndexError | 22:10 |
tr3buchet | it didn't the first time i ran it however | 22:10 |
*** miclorb has joined #openstack | 22:10 | |
soren | gundlach: One of the columns in the network table says which bridge it's to be connected to. | 22:10 |
soren | gundlach: If they don't say br100, that's your problem. | 22:10 |
soren | Oh.. | 22:12 |
soren | create_networks does something different depending on the manager. | 22:12 |
gundlach | can't remember how to get column names in sqlite3, but i see no reference to br100: http://paste.openstack.org/show/162/ | 22:12 |
soren | So if you changed the manager after that was run, thay may be why it doesn't match up. | 22:12 |
soren | gundlach: Nuke 'em, and re-run "nova-manage network create 8" or something. | 22:13 |
gundlach | soren: no, i modified --network_manager in /etc/nova/manage.conf, so nova-manage should have used FlatManager | 22:13 |
dabo | hmmm... sqlite3 isn't installed. Yeah, python has sqlite access, but still... | 22:14 |
gundlach | dabo: apt-get install sqlit3 | 22:14 |
gundlach | *sqlite3 | 22:14 |
dabo | gundlach: well, yeah - just thought it was odd | 22:14 |
gundlach | soren: so i shouldn't need to nuke, right? as 'nova-manage network create' already is running under FlatManager. | 22:14 |
openstackhudson | Project nova build #246: SUCCESS in 55 sec: http://173.203.104.204:8080/job/nova/246/ | 22:15 |
soren | I'm not sure. | 22:15 |
gundlach | JordanRinke: thanks, your SQL got me past the current error, though i'd like to understand why nova.sh failed so i can patch it appropriately. is nova-manage not coded to work with flat networking, perhaps? | 22:18 |
JordanRinke | the last mention of it in the wiki said it was a bug that was fixed 10/27 - I havent looked to see where it was actually fixed or if it is merged etc | 22:19 |
gundlach | JordanRinke: link? | 22:19 |
JordanRinke | http://wiki.openstack.org/NovaInstall/MultipleServer | 22:19 |
JordanRinke | "Update: This has been resolved w.e.f 27/10 but the fix is not available in the PPA, so you still need to manually set a bridge device. With the fix, the network is marked as bridged automatically based on the type of n/w manager selected. " | 22:20 |
gundlach | JordanRinke: thanks. i had read that earlier, but breezed over it because i hadn't gotten to this error so it didn't stick! | 22:21 |
soren | We have per-commit nova tarballs now, by the way: http://nova.openstack.org/tarballs/ | 22:22 |
JordanRinke | soren: so maybe I dont understand this.. the FlatManager, it does or does not vlan the vms off? As I understood it FlatManager just injected them with whatever IP was specified in fixed_ips and connected them to the bridge | 22:23 |
soren | JordanRinke: Does not. that's what its for :) | 22:24 |
soren | JordanRinke: If you just want the injection thing, that's a separate setting (in the db). | 22:25 |
soren | It's generally a bad idea, though, but there you go. | 22:25 |
JordanRinke | ok, so I dont understand what we were debating earlier in terms of setting up the bridge, setting up the primary nic on the bridge with an IP would allow you to SSH the host, and allow VMs to have public IPs if you had them available | 22:26 |
*** pvo has quit IRC | 22:26 | |
JordanRinke | i must have just gotten a few convos mixed up | 22:26 |
vishy | guys | 22:26 |
soren | DHCP is almost 20 years old. It's well understood. No need for Debian-(and derivatives)-specific hacks to do network configuration. | 22:26 |
vishy | is someone trying to use ami-tiny with flat network again? | 22:27 |
JordanRinke | lol | 22:27 |
JordanRinke | nah, their instances load | 22:27 |
vishy | i think i need to fix flatdhcp so it actually works | 22:27 |
JordanRinke | they just cant access them | 22:27 |
soren | Oh.. Is that what people are using? | 22:27 |
soren | That's to be expected. | 22:27 |
soren | It's not debian based. | 22:28 |
vishy | JordanRinke: that will happen with flat network and ami-tiny | 22:28 |
soren | So debian-specific hacks won't work. | 22:28 |
JordanRinke | vishy: when I tried flat network with ami-tiny they wouldnt launch because the injection failed | 22:28 |
vishy | they will still launch | 22:28 |
Ryan_Lane | JordanRinke: A patch was merged for that yesterday | 22:28 |
vishy | now | 22:28 |
*** allsystemsarego has quit IRC | 22:28 | |
JordanRinke | lol | 22:28 |
JordanRinke | i see | 22:28 |
vishy | but they will try to dhcp and fail | 22:28 |
Ryan_Lane | not that it heps with tny | 22:29 |
vishy | :) | 22:29 |
Ryan_Lane | heh | 22:29 |
JordanRinke | that is indeed what his console output was doing | 22:29 |
JordanRinke | sooo | 22:29 |
JordanRinke | that might be the case | 22:29 |
JordanRinke | I didn't know it was fixed so I didn't even think to ask what image | 22:29 |
Ryan_Lane | that image immediately tries to dhcp when it starts, it doesn't even use /etc/network (which is why the injection was failing without the patch) | 22:29 |
soren | Ryan_Lane: Right, injection will fail, and there's no dhcp server => no network (and no biscuit) | 22:30 |
vishy | someone should test the ttylinux from ubuntu | 22:30 |
Ryan_Lane | JordanRinke: you can use this documentation to create a new image: https://help.ubuntu.com/community/UEC/CreateYourImage | 22:30 |
dabo | vishy: you could have saved me an afternoon of banging my head on my keyboard | 22:31 |
vishy | dabo: sorry, why are you using flat anyway? trying to do multinode? | 22:31 |
soren | vishy: Testing on rackspace cloud. | 22:31 |
JordanRinke | dabo: I did the same thing, spent a half a day working on it | 22:31 |
vishy | soren: it should work with vlan on one box | 22:31 |
soren | vishy: Except no vlans on rackspace cloud. | 22:32 |
soren | vishy: No kernel support. | 22:32 |
JordanRinke | Ryan_Lane: yeah, I have made a number of images since then | 22:32 |
vishy | soren: really, there is no image with vlans? | 22:32 |
vishy | doh | 22:32 |
JordanRinke | Ryan_Lane: that is a great resource for it | 22:32 |
soren | vishy: ack | 22:32 |
soren | vishy: Not that I know of. | 22:32 |
JordanRinke | soooo | 22:32 |
vishy | soren: weaksauce :) | 22:33 |
JordanRinke | you could flatmanager with another public IP | 22:33 |
soren | But that's ok, because it provides motivation to fix flatdhcp. | 22:33 |
JordanRinke | not with that image though :/ | 22:33 |
vishy | ok i'm going to fix flatdhcp | 22:33 |
vishy | the only thing missing is create_network | 22:33 |
soren | a.k.a. the tricky bit? | 22:33 |
rlucio | heh | 22:35 |
*** gundlach has quit IRC | 22:36 | |
*** gundlach has joined #openstack | 22:49 | |
*** mdomsch has quit IRC | 22:54 | |
gundlach | dabo: fwiw, i gave up and used ant's boxen, and w/o FlatManager or brctl or any of my other nova.sh hacks, an instance starts up complacently, no problem. | 22:54 |
tr3buchet | .. | 22:55 |
*** schisamo_ has joined #openstack | 22:56 | |
*** daleolds has quit IRC | 22:56 | |
*** matiu has joined #openstack | 22:57 | |
dabo | gundlach: no pain, no gain | 22:59 |
dabo | :) | 23:00 |
gundlach | dabo: no gain, no gain | 23:00 |
*** schisamo has quit IRC | 23:00 | |
*** schisamo_ is now known as schisamo | 23:00 | |
dabo | gundlach: I keep telling myself that with all this pain, there's gotta be *some* gain! | 23:01 |
*** johnpur has quit IRC | 23:02 | |
*** damon__ has quit IRC | 23:03 | |
tr3buchet | me too | 23:05 |
*** Doudouyam has quit IRC | 23:06 | |
*** gondoi has quit IRC | 23:06 | |
*** westmaas has quit IRC | 23:11 | |
*** ppetraki has quit IRC | 23:14 | |
*** HouseAway is now known as AimanA | 23:16 | |
*** gundlach has quit IRC | 23:26 | |
*** piken_ has joined #openstack | 23:29 | |
*** piken has quit IRC | 23:31 | |
*** miclorb has quit IRC | 23:35 | |
*** miclorb has joined #openstack | 23:35 | |
*** Podilarius has left #openstack | 23:37 | |
*** dubsquared1 has quit IRC | 23:38 | |
*** miclorb has quit IRC | 23:40 | |
*** miclorb_ has joined #openstack | 23:40 | |
*** Cromulent has joined #openstack | 23:45 | |
*** miclorb_ has quit IRC | 23:45 | |
*** annegentle-web has joined #openstack | 23:51 | |
annegentle-web | soooo... yeah. about the man page. I can't get Sphinx to spit out one even after changing conf.py and adding /doc/source/man/novamanage.rst. If anyone wants to take a look, it's at https://code.launchpad.net/~annegentle/nova/novaman. | 23:57 |
annegentle-web | gonna eat some dinner now, but will be back in a few hours | 23:57 |
Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!