| *** eldarnugaev has joined #openstack | 00:14 | |
| *** allsystemsarego has quit IRC | 00:17 | |
| *** GasbaKid has quit IRC | 00:21 | |
| *** londo_ has quit IRC | 00:33 | |
| *** londo_ has joined #openstack | 00:34 | |
| *** kashyapc has joined #openstack | 00:38 | |
| *** eldarnugaev has quit IRC | 00:44 | |
| *** ar1 has joined #openstack | 01:06 | |
| *** ksteward has quit IRC | 01:14 | |
| *** dizz has joined #openstack | 01:21 | |
| *** ctennis has quit IRC | 01:24 | |
| *** adjohn has joined #openstack | 01:24 | |
| *** kashyapc has quit IRC | 01:37 | |
| *** mdomsch has joined #openstack | 01:44 | |
| *** HugoKuo has quit IRC | 02:01 | |
| *** HouseAway is now known as AimanA | 02:03 | |
| *** DubLo7 has joined #openstack | 02:10 | |
| *** DubLo7 has quit IRC | 02:12 | |
| adjohn | Anyone know the current status of raw-disk-images? https://blueprints.launchpad.net/nova/+spec/raw-disk-images | 02:14 |
|---|---|---|
| *** dubsquared has joined #openstack | 02:23 | |
| *** jimbaker has joined #openstack | 02:23 | |
| *** kashyapc has joined #openstack | 02:24 | |
| *** sirp1 has joined #openstack | 02:31 | |
| *** sirp1 has quit IRC | 02:53 | |
| *** xfaf has joined #openstack | 03:01 | |
| *** rchavik has joined #openstack | 03:22 | |
| *** winston-d has joined #openstack | 03:31 | |
| winston-d | Hi, all. | 03:31 |
| winston-d | Does anyone here had try multi-host Nova installation? | 03:31 |
| dubsquared | winston-d: yes | 03:33 |
| winston-d | Hi Dubsquared | 03:35 |
| winston-d | Did it work? | 03:36 |
| winston-d | I've followed the instructions on wiki.openstack.org, and I've installed Nova on 6 physical machines. I wonder whether I can see a list of Nova components | 03:37 |
| dubsquared | hello, winston-d! what exactly are you looking for? | 03:37 |
| dubsquared | if the nodes have checked in properlyQ? | 03:38 |
| winston-d | Things like how many nodes act as Nova-Compute, what is the status of those specific physical nodes. | 03:38 |
| winston-d | Checked in? How? Wiki and http://nova.openstack.org/adminguide/multi.node.install.html doesn't mention that | 03:39 |
| dubsquared | Well, there is two different installs for Nova…the controller (five+ Nova services), then the nodes (just compute iirc) | 03:39 |
| winston-d | OK. And how does 'the nodes' register or check-in to controller? | 03:40 |
| winston-d | Via configuration file under /etc/nova ? or some commands | 03:41 |
| dubsquared | In /etc/nova/nova.conf, you set the cc host ip | 03:41 |
| dubsquared | then from the controller, you can check on mysql | 03:41 |
| dubsquared | select * from services; | 03:41 |
| dubsquared | and you can see all the compute nodes reporting | 03:41 |
| winston-d | OK. I did added CC host IP in my nodes' configuration file. | 03:42 |
| winston-d | Is there any more convenient way to grab list of compute nodes besides SQL query? | 03:43 |
| *** sirp1 has joined #openstack | 03:44 | |
| xtoddx | you can use `nova-manage service list` to see compute workers | 03:44 |
| winston-d | Err.. Nova-2010.1 release doesn't have this sub-command for nova-manage | 03:45 |
| winston-d | Guess I should branch latest version from launchpad | 03:47 |
| winston-d | Thanks xtoddx | 03:48 |
| winston-d | Another question, do I have to have multiple Nova-API/Scheduler/Network/Volume services to avoid single point of failure? | 03:49 |
| alekibango | multiple nova-api is desirable for best setup | 03:53 |
| xtoddx | winson-d: yes, but should work fine with just one unless you have specific HA requirements | 03:53 |
| alekibango | also db and messaging should be clustered | 03:53 |
| winston-d | alekibango, is there rule of thumb the ratio of nova-api node vs. compute node? such as 1:50? | 03:56 |
| alekibango | i would say 2-4 api servers are enough for most setups | 03:56 |
| alekibango | but i am not the smartest one here :) | 03:56 |
| alekibango | also might change if you are geographicaly distributed | 03:56 |
| winston-d | i see. thanks. | 03:56 |
| alekibango | as you would like to avoid failure of the cloud when just some cluster is under fire (or flood) | 03:57 |
| winston-d | or power shutdown. :) | 03:57 |
| winston-d | is EUCA2OOLS the only way to interact with Nova cloud? | 03:59 |
| alekibango | not the only way, but the only sane one... iirc | 03:59 |
| alekibango | winston-d: are u using some configuration management ? | 04:00 |
| alekibango | like puppet/chef or something like this | 04:00 |
| winston-d | no, not right now. actually I'm very very new to cloud. had no experience of AWS and rackspace. I only played with OpenNebula for a while. | 04:01 |
| alekibango | how did you like opennebula compared to openstack? | 04:01 |
| winston-d | Well, OpenNebula is well documented, relatively easy to setup and use (native commands such as: one node-list, one cluster list...) | 04:03 |
| winston-d | And also easier to subscribe to their mailing list :-p | 04:03 |
| winston-d | But it doesn't have a S3-like storage service. That's why I start looking at OpenStack | 04:04 |
| winston-d | well, time to have lunch. be back soon. Thank you alekibango, xtoddx and dubsquared for helping me out. | 04:07 |
| dubsquared | have fun, anytime! | 04:07 |
| *** daleolds has joined #openstack | 04:09 | |
| uvirtbot | New bug: #685730 in swift "object-replicator: replica deletion decision is wrong if replica_count != 3?" [Undecided,New] https://launchpad.net/bugs/685730 | 04:16 |
| *** david has joined #openstack | 04:18 | |
| *** david is now known as Guest97377 | 04:18 | |
| *** Guest97377 is now known as davidX- | 04:19 | |
| *** rchavik has quit IRC | 04:21 | |
| *** sirp1 has quit IRC | 04:27 | |
| *** jimbaker has quit IRC | 04:36 | |
| *** sirp1 has joined #openstack | 04:41 | |
| *** mdomsch has quit IRC | 04:46 | |
| *** omidhdl has joined #openstack | 04:46 | |
| *** Xenith has quit IRC | 04:51 | |
| *** Xenith has joined #openstack | 04:51 | |
| *** sirp1 has quit IRC | 04:54 | |
| *** iammartian has quit IRC | 04:57 | |
| *** omidhdl has left #openstack | 05:07 | |
| *** rchavik has joined #openstack | 05:12 | |
| *** HugoKuo has joined #openstack | 05:27 | |
| *** maplebed has joined #openstack | 05:29 | |
| *** suchitp has joined #openstack | 05:30 | |
| *** suchitp has left #openstack | 05:31 | |
| *** f4m8_ is now known as f4m8 | 05:46 | |
| *** ctennis has joined #openstack | 06:01 | |
| dubsquared | Is there a latest list of the required packages for nodes? nova-compute, nova-network, etc? | 06:09 |
| *** that1dude has joined #openstack | 06:12 | |
| *** ramkrsna has joined #openstack | 06:13 | |
| *** HugoKuo has quit IRC | 06:24 | |
| winston-d | Has anyone succeeded in building Nova from latest revision? | 06:32 |
| winston-d | I got an import error: ImportError: No module named sphinx.setup_command | 06:33 |
| winston-d | Or anyone can give me a pointer which revision works so that I can revert to older version? | 06:35 |
| *** matiu has quit IRC | 06:35 | |
| *** matiu has joined #openstack | 06:40 | |
| *** matiu has joined #openstack | 06:40 | |
| *** maplebed has quit IRC | 06:49 | |
| *** guigui has joined #openstack | 06:52 | |
| *** HugoKuo has joined #openstack | 06:53 | |
| *** dubsquared1 has joined #openstack | 07:03 | |
| *** dubsquared has quit IRC | 07:04 | |
| *** matiu has quit IRC | 07:05 | |
| ttx | Good morning | 07:23 |
| winston-d | morning | 07:29 |
| *** GasbaKid has joined #openstack | 07:31 | |
| *** arcane has quit IRC | 07:33 | |
| *** daleolds has quit IRC | 07:34 | |
| *** arcane has joined #openstack | 07:34 | |
| *** jc_smith has joined #openstack | 07:41 | |
| *** almaisan-away is now known as al-maisan | 08:20 | |
| soren | winston-d: Install python-spinx, and you should be good. | 08:27 |
| *** ramkrsna has quit IRC | 08:31 | |
| *** guigui has quit IRC | 08:31 | |
| *** guigui has joined #openstack | 08:32 | |
| *** ramkrsna has joined #openstack | 08:44 | |
| *** rchavik has quit IRC | 08:52 | |
| *** befreax has joined #openstack | 09:04 | |
| *** allsystemsarego has joined #openstack | 09:14 | |
| *** jc_smith has quit IRC | 09:20 | |
| *** irahgel has joined #openstack | 09:26 | |
| alekibango | soren: today i would like to rebuild/install some your packages on debian. which packages i should take for debian squeeze (testing)? | 09:35 |
| alekibango | i think you already told me this, but i cant remember your suggestion :) | 09:36 |
| alekibango | you meant building from bzr or from deb sources? | 09:38 |
| soren | Just grab the lastest from the trunk ppa. | 09:45 |
| *** MarkAtwood has joined #openstack | 09:45 | |
| alekibango | so, source packages... ok | 09:46 |
| soren | It's the same stuff. | 09:46 |
| soren | Whichever way to want to retrieve it is up to you. | 09:46 |
| alekibango | i would rather generate it using ubuntu nova branch | 09:47 |
| soren | don't use that. | 09:47 |
| alekibango | k | 09:47 |
| soren | Why would you? | 09:47 |
| alekibango | to be able to do it again at some point in time | 09:47 |
| alekibango | (choosen) | 09:47 |
| soren | Which branch are you referreing to? | 09:48 |
| alekibango | your branch which generates those packages... or it is not ? | 09:48 |
| alekibango | hwo do you make them? | 09:49 |
| soren | Which branch are you referring to? | 09:49 |
| alekibango | i was thinking about https://code.launchpad.net/~nova-core/nova/ubuntu-packaging | 09:50 |
| *** fabiand has quit IRC | 09:50 | |
| alekibango | how are u generating those packages? | 09:50 |
| soren | It's abandonded. | 09:50 |
| *** fabiand has joined #openstack | 09:50 | |
| alekibango | ah ok | 09:50 |
| soren | https://code.launchpad.net/~openstack-ubuntu-packagers/ubuntu/natty/nova/ubuntu | 09:50 |
| *** perestrelka has quit IRC | 10:03 | |
| *** perestrelka has joined #openstack | 10:03 | |
| *** MarkAtwood has quit IRC | 10:21 | |
| *** kashyapc has quit IRC | 10:29 | |
| *** kashyapc has joined #openstack | 10:29 | |
| *** adjohn has quit IRC | 10:30 | |
| *** kashyapc has quit IRC | 10:46 | |
| *** rds__ has joined #openstack | 10:50 | |
| *** rchavik has joined #openstack | 10:55 | |
| *** eldarnugaev has joined #openstack | 11:15 | |
| *** krish has joined #openstack | 11:20 | |
| *** krish has left #openstack | 11:21 | |
| soren | \o/ | 11:55 |
| * soren is very close to having working security groups again | 11:57 | |
| *** jkakar has quit IRC | 11:57 | |
| *** kirkland has joined #openstack | 12:09 | |
| *** omidhdl has joined #openstack | 12:10 | |
| *** ctennis has quit IRC | 12:26 | |
| *** stewart has quit IRC | 12:30 | |
| *** omidhdl has quit IRC | 12:41 | |
| *** stewart has joined #openstack | 12:43 | |
| *** ramkrsna has quit IRC | 12:43 | |
| *** omidhdl has joined #openstack | 12:45 | |
| *** guigui has quit IRC | 12:48 | |
| *** ctennis has joined #openstack | 12:59 | |
| *** ctennis has joined #openstack | 12:59 | |
| zykes- | does Swift have some kind of fault tolerance ? | 13:00 |
| soren | Yeah. | 13:00 |
| soren | That's what it does. | 13:00 |
| soren | Otherwise, we'd just use Apache :) | 13:01 |
| zykes- | ;p | 13:01 |
| zykes- | what does it use for underlying architecture ? | 13:01 |
| soren | Which part of its architecture counts as "underlying" to you? | 13:02 |
| zykes- | ah, nvm | 13:02 |
| zykes- | anyways, soren do you know when they are coming to europe ? | 13:02 |
| zykes- | summit or so | 13:02 |
| soren | "they"? | 13:02 |
| zykes- | OS Summit / Talk | 13:02 |
| zykes- | or event | 13:02 |
| soren | No. There was some chatter about hosting one of the summits next year in Europe, but nothing's certain. | 13:03 |
| zykes- | k | 13:03 |
| zykes- | hoping that they will do that, or at least join in on LinuxTag or something | 13:03 |
| *** kirkland has quit IRC | 13:08 | |
| *** kirkland has joined #openstack | 13:08 | |
| *** Cybodog has quit IRC | 13:24 | |
| *** hazmat has joined #openstack | 13:26 | |
| *** eldarnugaev has quit IRC | 13:27 | |
| *** jfluhmann has quit IRC | 13:27 | |
| *** abecc has joined #openstack | 13:33 | |
| *** abecc has joined #openstack | 13:34 | |
| *** mdomsch has joined #openstack | 13:42 | |
| *** ar1 has quit IRC | 13:42 | |
| *** westmaas has joined #openstack | 13:42 | |
| *** rchavik has quit IRC | 13:43 | |
| *** xfaf is now known as zul | 13:43 | |
| *** omidhdl has left #openstack | 13:46 | |
| *** rchavik has joined #openstack | 13:58 | |
| *** dirakx has quit IRC | 14:04 | |
| creiht_ | zykes-: swift is very fault tollerant | 14:07 |
| *** creiht_ is now known as creiht | 14:08 | |
| creiht | it stores 3 (by default) replicas of each piece of data | 14:09 |
| creiht | we also do a lot to work around failure scenarios | 14:10 |
| *** eldarnugaev has joined #openstack | 14:10 | |
| creiht | for example if a node is not available on write, it will write to a handoff node | 14:11 |
| *** ppetraki has joined #openstack | 14:13 | |
| ttx | creiht: I could use 15 minutes of your time this morning, to confirm https://blueprints.launchpad.net/swift/1.2 -- let me know if you have any availability | 14:13 |
| creiht | we have replicatiom that runs continually that ensures the 3 replicas are where they are supposed to be | 14:13 |
| creiht | ttx: sure, i will ping you when I get into the office | 14:14 |
| ttx | creiht: cool, thanks | 14:14 |
| *** gaveen has joined #openstack | 14:18 | |
| * soren takes off for a couple of hours | 14:22 | |
| *** dovetaildan has quit IRC | 14:26 | |
| *** dovetaildan has joined #openstack | 14:28 | |
| *** zul has quit IRC | 14:37 | |
| *** zul has joined #openstack | 14:37 | |
| *** Podilarius has joined #openstack | 14:39 | |
| *** masumotok_ has quit IRC | 14:40 | |
| *** kashyapc has joined #openstack | 14:40 | |
| *** eldarnugaev_ has joined #openstack | 14:46 | |
| *** eldarnugaev has quit IRC | 14:46 | |
| *** eldarnugaev_ is now known as eldarnugaev | 14:46 | |
| *** gondoi has joined #openstack | 14:47 | |
| *** f4m8 is now known as f4m8_ | 14:53 | |
| *** dubsquared has joined #openstack | 14:56 | |
| *** westmaas has quit IRC | 14:57 | |
| *** aliguori has joined #openstack | 15:03 | |
| *** EdwinGrubbs has quit IRC | 15:09 | |
| *** EdwinGrubbs has joined #openstack | 15:09 | |
| *** guigui1 has joined #openstack | 15:11 | |
| *** daleolds has joined #openstack | 15:14 | |
| *** eldarnugaev has quit IRC | 15:18 | |
| *** befreax has quit IRC | 15:21 | |
| piken | anne if your around, I just updated the wiki with my contributor info. | 15:22 |
| annegentle | piken: thanks Philip. I still need to add my EchoSign info. :) | 15:23 |
| piken | I need to find out what happened with legal at work, they still haven't finished the CLA for the company for some weird reason. | 15:23 |
| *** dirakx has joined #openstack | 15:24 | |
| *** JimCurry has joined #openstack | 15:24 | |
| *** iammartian has joined #openstack | 15:25 | |
| *** dendroba` is now known as dendro-afk | 15:30 | |
| *** dendro-afk is now known as dendrobates | 15:30 | |
| *** dendrobates has joined #openstack | 15:30 | |
| *** ChanServ sets mode: +v dendrobates | 15:30 | |
| *** krish_ has joined #openstack | 15:34 | |
| *** JuanPerez has joined #openstack | 15:35 | |
| *** krish_ has quit IRC | 15:37 | |
| *** eldarnugaev has joined #openstack | 15:38 | |
| *** eldarnugaev_ has joined #openstack | 15:40 | |
| *** eldarnugaev has quit IRC | 15:40 | |
| *** eldarnugaev_ is now known as eldarnugaev | 15:40 | |
| creiht | ttx: ping | 15:45 |
| ttx | creiht: see pm | 15:45 |
| *** ChanServ sets mode: +v creiht | 15:45 | |
| *** sirp1 has joined #openstack | 15:47 | |
| *** eldarnugaev has joined #openstack | 15:47 | |
| *** gundlach has joined #openstack | 15:56 | |
| *** MarkAtwood has joined #openstack | 16:05 | |
| *** guigui1 has quit IRC | 16:08 | |
| *** MarkAtwood has quit IRC | 16:08 | |
| *** jimbaker has joined #openstack | 16:09 | |
| *** MarkAtwood has joined #openstack | 16:09 | |
| *** jbaker has joined #openstack | 16:09 | |
| *** jimbaker has quit IRC | 16:09 | |
| *** jbaker is now known as jimbaker | 16:10 | |
| chmouel | is there some documentation around how to get nova-volumes plugged aside of having a nova-volumes vg created what should I do to be used after ? | 16:14 |
| *** dragondm has joined #openstack | 16:27 | |
| *** dragondm has quit IRC | 16:28 | |
| *** dragondm has joined #openstack | 16:28 | |
| annegentle | chmouel: sorry, I haven't seen any doc about nova-volume yet | 16:30 |
| dubsquared | chmouel: that is one of the items im going to start playing with this week | 16:31 |
| dubsquared | if i get any definitive documentation up, ill let you/annegentle know :D | 16:31 |
| annegentle | dubsquared: woo thanks! There's some discussion about volume groups here: https://answers.launchpad.net/nova/+question/134020 | 16:32 |
| *** kashyapc has quit IRC | 16:33 | |
| chmouel | sweet, was wondering if there was any doco pointers before starting grepping, thanks.. | 16:36 |
| dubsquared | annegentle: awesome thanks! we just got the rest of out lab builtout, and this is a big feature we're going to want to use. ill be in touch throughout the week... | 16:38 |
| *** eldarnugaev has left #openstack | 16:47 | |
| *** kashyapc has joined #openstack | 16:50 | |
| *** reldan has joined #openstack | 16:52 | |
| *** JordanRinke2 has quit IRC | 16:53 | |
| *** littleidea has joined #openstack | 16:56 | |
| *** jimbaker has quit IRC | 16:58 | |
| *** jimbaker has joined #openstack | 16:58 | |
| *** JuanPerez has quit IRC | 17:00 | |
| *** jimbaker has quit IRC | 17:03 | |
| *** jimbaker has joined #openstack | 17:03 | |
| *** JimCurry has quit IRC | 17:10 | |
| *** dagger has quit IRC | 17:14 | |
| *** dagger has joined #openstack | 17:15 | |
| *** finch has quit IRC | 17:16 | |
| *** nijaba has quit IRC | 17:16 | |
| *** uvirtbot has quit IRC | 17:16 | |
| *** finch has joined #openstack | 17:16 | |
| *** ianweller has quit IRC | 17:16 | |
| *** odyi has quit IRC | 17:16 | |
| *** odyi has joined #openstack | 17:17 | |
| *** uvirtbot has joined #openstack | 17:17 | |
| *** ianweller has joined #openstack | 17:18 | |
| *** nijaba has joined #openstack | 17:18 | |
| *** nijaba has joined #openstack | 17:18 | |
| *** sophiap has joined #openstack | 17:20 | |
| *** dagger has quit IRC | 17:21 | |
| alekibango | dubsquared: please start on etherpad, you know how? | 17:25 |
| dubsquared | alekibango: yup | 17:26 |
| alekibango | url? | 17:26 |
| dubsquared | haven't started, yet :D | 17:27 |
| *** dagger has joined #openstack | 17:34 | |
| *** dagger has joined #openstack | 17:34 | |
| *** Ryan_Lane has joined #openstack | 17:38 | |
| *** mdomsch has quit IRC | 17:39 | |
| *** dagger has quit IRC | 17:43 | |
| *** maplebed has joined #openstack | 17:44 | |
| *** joearnold has joined #openstack | 17:45 | |
| *** kirkland has quit IRC | 17:49 | |
| *** reldan has quit IRC | 17:50 | |
| *** dagger has joined #openstack | 17:53 | |
| *** dagger has joined #openstack | 17:53 | |
| *** joearnold has quit IRC | 17:55 | |
| *** dagger has quit IRC | 18:01 | |
| *** jdarcy has joined #openstack | 18:02 | |
| *** hggdh has quit IRC | 18:02 | |
| *** dagger has joined #openstack | 18:10 | |
| *** dagger has joined #openstack | 18:10 | |
| *** BK_man has joined #openstack | 18:16 | |
| *** reldan has joined #openstack | 18:23 | |
| *** reldan_ has joined #openstack | 18:25 | |
| *** reldan has quit IRC | 18:25 | |
| *** reldan_ is now known as reldan | 18:25 | |
| BK_man | vishy: ping | 18:30 |
| eday | ugh, we have 22 outstanding reviews. I think it's time for a review party | 18:30 |
| xtoddx | eday: agreed | 18:33 |
| *** GasbaKid has quit IRC | 18:34 | |
| BK_man | gents, back to OpenSSL issue - it's the same on my Mac. It have OpenSSL 0.9.8l installed and I run genrootca.sh on my mac, not on RHEL6 (OpenSSL 1.0). Any thoughts? | 18:36 |
| BK_man | are there OpenSSL gurus? :-) | 18:36 |
| *** MarkAtwood has quit IRC | 18:37 | |
| *** sirp1 has quit IRC | 18:39 | |
| *** Adiantum has joined #openstack | 18:40 | |
| eday | xtoddx: sorry about the logging branch comments, I'm not trying to be a PITA, just want to share as much as we can sooner than later :) | 18:42 |
| xtoddx | eday: no worries. it was worth me reviewing all the swift logging api to see what the plan should be. | 18:44 |
| *** al-maisan is now known as almaisan-away | 18:45 | |
| *** jakedahn has joined #openstack | 18:46 | |
| *** hggdh has joined #openstack | 18:48 | |
| sandywalsh | Trying to start an instance on xenserver. Compute correctly says "Asking xapi to fetch <image> ..." but xenserver complains with http://paste.openstack.org/show/238/ | 18:49 |
| sandywalsh | looks like a marshaling problem | 18:49 |
| sandywalsh | anyone seen such a thing before? | 18:49 |
| *** joearnold has joined #openstack | 18:57 | |
| _cerberus_ | sandywalsh: I had something similar. I think if you haven't cleared your env recently you probably should. I dropped my db and reregistered images and it worked fine | 18:57 |
| *** JuanPerez has joined #openstack | 18:58 | |
| sandywalsh | hmm, ok, I'll try that. thx _cerberus_ | 18:58 |
| _cerberus_ | sandywalsh: You may want to go as far as recloning the branch as well, and just flying through the wiki instructions. Shouldn't take too long | 18:59 |
| _cerberus_ | I think some bad metadata gets left over from other interactions, though I haven't confirmed | 19:00 |
| sandywalsh | metadata? | 19:00 |
| _cerberus_ | Say from switching from qemu to xenserver perhaps? | 19:01 |
| sandywalsh | hmm, ok, I'll give this one last shot and try that if there's no joy | 19:01 |
| *** Ryan_Lane has quit IRC | 19:04 | |
| *** jakedahn has quit IRC | 19:07 | |
| *** Ryan_Lane has joined #openstack | 19:07 | |
| *** JuanPerez has quit IRC | 19:07 | |
| soren | vishy: Can you ping me when you're around? | 19:13 |
| *** rchavik has quit IRC | 19:14 | |
| xtoddx | soren: i think vishy is going to be offline most of the day | 19:15 |
| soren | xtoddx: Alrighty. | 19:15 |
| soren | xtoddx: Thanks for letting me know! | 19:15 |
| xtoddx | np | 19:15 |
| *** sirp1 has joined #openstack | 19:18 | |
| *** maplebed is now known as green | 19:20 | |
| *** green is now known as maplebed | 19:20 | |
| *** miclorb_ has joined #openstack | 19:22 | |
| *** miclorb_ has joined #openstack | 19:23 | |
| xtoddx | creiht: i know you have a natural aversion for common libraries, but I'd like to get feedback on lp:~xtoddx/nova/newlog if you don't mind | 19:23 |
| creiht | hehe | 19:25 |
| creiht | I'm against common libraries for the sake of having common libraries, but for something that makes sense, I am all ears | 19:26 |
| xtoddx | creiht: well, i think logging makes sense. | 19:27 |
| *** MarkAtwood has joined #openstack | 19:27 | |
| creiht | xtoddx: ok, branch pulled, can you point me to the specific part I should look at :) | 19:27 |
| xtoddx | nova/log.py | 19:28 |
| piken | creiht: common libraries for things are good. Like common logging libraries using logging base class. They make it easy to have all format outputs the same. | 19:28 |
| xtoddx | is a candidate for openstack-common | 19:28 |
| * soren could have sworn "more stuff in common" was one of the arguments why Nova had to move to eventlet | 19:28 | |
| xtoddx | you can see how we use it at nova/api/ec2/__init__.py | 19:29 |
| creiht | soren: I think that argument was everyone wanting to be less twisted :) | 19:29 |
| xtoddx | the variable named LOG is where magic happens | 19:29 |
| creiht | xtoddx: cool... will look | 19:29 |
| soren | bah | 19:29 |
| vishy | soren: I can't stay away | 19:29 |
| soren | vishy: I know that feeling. | 19:29 |
| creiht | piken: Like I was trying to say, I'm for having common libs for things that make sense | 19:29 |
| *** littleidea has quit IRC | 19:30 | |
| soren | vishy: I have a working prototype of an iptables based security groups implementation. | 19:30 |
| piken | BK_man: you around and still needed help with RH? | 19:30 |
| BK_man | piken: yep | 19:30 |
| creiht | bah... standup time | 19:30 |
| soren | vishy: ...but testing it is proving rather annoying. | 19:30 |
| creiht | xtoddx: will look shortly | 19:30 |
| BK_man | piken: found this link: http://old.nabble.com/utf8string-vs-printablestring-mismatch-in-certificate-checking-td27232471.html | 19:30 |
| vishy | soren: i can imagine | 19:30 |
| soren | vishy: Well.. No, I don't think you can :) | 19:31 |
| BK_man | piken: now looking how nova generates CSR in python code | 19:31 |
| *** littleidea has joined #openstack | 19:31 | |
| piken | BK_man: what was the issue you were having? | 19:31 |
| soren | vishy: It's all pretty easy except for a small detail. | 19:31 |
| BK_man | piken: CSR have UTF8-encoded strings and CA cert have PRINTABLE encoded strings | 19:31 |
| soren | vishy: nova.network.linux_net.ensure_bridge() adds a couple of rules to the beginning of the FORWARD chain. | 19:31 |
| vishy | ah | 19:32 |
| piken | BK_man: hmm, I have never run into that issue on our install here. | 19:32 |
| BK_man | piken: my issue: http://paste.openstack.org/show/232/ | 19:32 |
| vishy | soren: we actually cleaned that up a bit | 19:32 |
| BK_man | piken: are you on RHEL6? | 19:32 |
| soren | vishy: Your ideas are intriguing to me, and I wish to subscribe to your newsletter. | 19:33 |
| soren | vishy: Tell me more. | 19:33 |
| piken | BK_man: no, 5.5 which has more issues then I care to deal with because of the older version of ioctl. | 19:33 |
| BK_man | finally found this in code: | 19:34 |
| BK_man | flags.DEFINE_string('credential_cert_subject', | 19:34 |
| BK_man | '/C=US/ST=California/L=MountainView/O=AnsoLabs/' | 19:34 |
| BK_man | 'OU=NovaDev/CN=%s-%s', | 19:34 |
| BK_man | 'Subject for certificate for users') | 19:34 |
| soren | vishy: The troublesome rules are the two ACCEPT rules at the end. | 19:34 |
| soren | vishy: They kind of get in the way of my attempts to block stuff. | 19:34 |
| BK_man | now need to understand why it comes as UTF8STRING to openssl rather than PRINTABLE | 19:35 |
| soren | vishy: If I run nova-network on another box, I'm golden. | 19:35 |
| soren | vishy: ...but I don't. | 19:35 |
| vishy | soren: gotcha the in-interface and out-interface | 19:35 |
| soren | vishy: Precisely. | 19:35 |
| soren | FWIW, I'm working on getting rid of the calls to openssl. | 19:35 |
| vishy | soren: in our current we add them to nova-forward instead of forward | 19:35 |
| vishy | soren: not sure if that helps you | 19:36 |
| soren | vishy: ...and what's the jump condition for nova-forward? | 19:36 |
| vishy | looks like it is unconditional | 19:37 |
| *** rlucio has joined #openstack | 19:37 | |
| soren | vishy: That's a rather limited win then :) | 19:38 |
| vishy | :) | 19:38 |
| soren | vishy: Do you also have an iptables implementation of security groups? | 19:38 |
| soren | vishy: Or is that rule for something different | 19:38 |
| soren | ? | 19:38 |
| vishy | soren: no, we are using yours | 19:38 |
| soren | phew | 19:38 |
| vishy | soren: so the issue only exists when you are trying to run nova-network on the same box as nova-compute | 19:39 |
| soren | vishy: This new one is great. It actually works, and /actually/ applies changes in an atomically safe manner. | 19:39 |
| soren | vishy: Yup. | 19:39 |
| *** schisamo has joined #openstack | 19:39 | |
| soren | libvirt things it's being all atomic and whatnot, but totally isn't. | 19:39 |
| * soren pats himself on the back | 19:39 | |
| vishy | soren: http://pastie.org/1353126 | 19:40 |
| vishy | soren: that is our current setup for nova-network | 19:40 |
| jdarcy | Does anybody have any *good* way to filter Openstack-related email? It's showing up with so many different things in so many different headers that my filters are getting out of hand. | 19:40 |
| vishy | soren: oops ignore that | 19:40 |
| soren | vishy: Too late. Cannot be unseen. | 19:40 |
| BK_man | Gents, that's clear indication why we have openssl issue: http://paste.openstack.org/show/239/ | 19:41 |
| vishy | soren: my pastie script is failing...grr | 19:41 |
| soren | vishy: pastebinit | 19:41 |
| soren | $ echo 'hi vish!' | pastebinit | 19:41 |
| soren | http://pastebin.com/VCdgBHSB | 19:41 |
| soren | Works great. | 19:42 |
| *** mdomsch has joined #openstack | 19:43 | |
| *** kashyapc has quit IRC | 19:43 | |
| vishy | http://pastie.org/1353141 | 19:43 |
| vishy | never had any problem with pastie before :( | 19:43 |
| eday | jdarcy: I filter on * (^TO|^From.*|^Subject:.*|^X-Launchpad.*:.*)openstack | 19:45 |
| soren | vishy: Do you think all your cool stuff will make its way back into nova trunk before the freeze? | 19:45 |
| eday | jdarcy: but also look for nova, swift, and glance (not just openstack) | 19:45 |
| vishy | soren: yes | 19:45 |
| vishy | soren: we have bugs set aside for the gap | 19:45 |
| soren | vishy: Hm... I'm going to trample all over those rules in my iptables secgroup implementation. | 19:46 |
| vishy | soren: they didn't make it into our current sprint, but they are high priority for next sprint | 19:46 |
| soren | vishy: Cool. | 19:46 |
| vishy | (which starts friday) | 19:46 |
| soren | vishy: I can't help but wonder if nova-network could use another bridge (so that the rules wouldn't match).. | 19:49 |
| * soren will look into that once his meeting finishes | 19:49 | |
| *** finch has left #openstack | 19:56 | |
| *** gundlach has quit IRC | 19:57 | |
| *** jc_smith has joined #openstack | 19:59 | |
| *** pothos_ has joined #openstack | 20:04 | |
| vishy | soren: interesting idea | 20:04 |
| creiht | so getting back to this, do other project do i18n logging? | 20:05 |
| *** pothos has quit IRC | 20:06 | |
| *** pothos_ is now known as pothos | 20:06 | |
| creiht | xtoddx: well... my first problem with the logging stuff is that it requires gflags :) | 20:07 |
| xtoddx | creiht: gflags is going away | 20:08 |
| creiht | k | 20:08 |
| xtoddx | we're going to use what jaypipes proposed for openstack-common option processing | 20:08 |
| *** gundlach has joined #openstack | 20:09 | |
| jaypipes | xtoddx: I don't think creiht is pleased with that... I believe he would first want me to add the ability to have an option not show up on the --help output. | 20:10 |
| creiht | xtoddx: so what would flags.DEFINE_string look like after that? | 20:10 |
| creiht | jaypipes: ? | 20:11 |
| *** jbryce has joined #openstack | 20:11 | |
| jaypipes | creiht: you were complaining the other day that all "registered" options show up in help... | 20:11 |
| creiht | jaypipes: I still think it is silly to have a command line option for *every single* config option :) | 20:11 |
| xtoddx | creiht: config.MODULENAME_OPTIONNAME | 20:12 |
| xtoddx | where it is read | 20:12 |
| xtoddx | and there is some sort of define_module_option(...) function for defining options | 20:12 |
| xtoddx | not sure on the syntax | 20:12 |
| creiht | xtoddx: if this becomes common, wouldn't make sense for some of those to not be there | 20:12 |
| creiht | for example, I doubt the 'default_log_levels' would be equal across projects | 20:12 |
| *** hggdh has quit IRC | 20:13 | |
| xtoddx | right. we'd need them passed into _set_default_log_levels or something in that case | 20:13 |
| creiht | k | 20:13 |
| jaypipes | xtoddx: mc = ModuleConfig(__name__); mc.add_option(...) | 20:14 |
| jaypipes | creiht: it's not about having common options set across the project. it's about having one way *of registering and processing options*. | 20:15 |
| creiht | jaypipes: then the easy answer seems to be use python's standard way of doing that :) | 20:15 |
| gundlach | eday: https://code.launchpad.net/~gundlach/nova/compute-terminate/+merge/42874 | 20:15 |
| xtoddx | well, i tend to think that things that are in -common should take things as arguments instead of options. have the client do the lifting of the options and turn them into a dict or something | 20:15 |
| jaypipes | creiht: gah... that's exactly what openstack-common does. | 20:16 |
| *** rlucio has quit IRC | 20:16 | |
| creiht | yo dawg, I heard you like libraries, so I put your libraries in libraries | 20:17 |
| creiht | :) | 20:17 |
| creiht | jaypipes: so why do we need anything extra? | 20:17 |
| jaypipes | creiht: with the benefit that you can add an option in any module and that the openstack.config module takes care of prefixing your option name with the name of the module. other than that, it uses OptParse and ConfigParser. | 20:17 |
| xtoddx | so things can be per-module | 20:17 |
| eday | creiht: so we don't need to register options with both command line opts and config file opts libs | 20:18 |
| xtoddx | and it hides the work of merging cmdline and config files | 20:18 |
| xtoddx | guys, stop beating me to the things i wanna say! | 20:18 |
| creiht | heh | 20:18 |
| * jaypipes was trying to find a common ground between Gflags, getopt, optparse, and ConfigParser usage in swift and nova... | 20:18 | |
| xtoddx | ... and glance! | 20:19 |
| * jaypipes was trying to have a compromise solution... unfortunately, creiht's idea of compromise seems to be similar to the Republicans in the US Senate... ;P | 20:19 | |
| creiht | xtoddx: so for this logging stuff, what does it add? | 20:19 |
| * creiht sighs | 20:19 | |
| jaypipes | creiht: there's no real reason swift must use openstack-common... just let glance and nova use it then | 20:20 |
| xtoddx | a level named AUDIT, something we want to use to track actions with authz/n and security implications | 20:20 |
| xtoddx | a default formatter to dump lots of data | 20:20 |
| xtoddx | the ability to throw even more data into debug level logs | 20:20 |
| xtoddx | and knowledge of a request context, so we can trace a request through the entire system | 20:20 |
| creiht | jaypipes: so what you are saying, is that the main thing it adds is allowing one to easily link command line and conig args? | 20:21 |
| soren | vishy: I'm having trouble grokking this. | 20:21 |
| xtoddx | did this chat go political? | 20:21 |
| creiht | jaypipes makes everything political | 20:21 |
| creiht | :) | 20:21 |
| soren | vishy: The name of the bridge to which an instance's tap device is attached is set in the data store, right? | 20:21 |
| soren | vishy: libvirt_conn.to_xml certainly suggests that that is the case. | 20:22 |
| jaypipes | creiht: yeah, sorry, it's a bad habit of mine... | 20:22 |
| vishy | soren: it is a property of the network | 20:22 |
| eday | creiht: yeah, that's what the openstack-common config module would do.. very thin wrapper over both to link the two | 20:22 |
| xtoddx | jaypipes: just saw your commit on merge prop, who/when/why re: priority loss? | 20:22 |
| soren | vishy: That's a "yes", right? | 20:22 |
| jaypipes | xtoddx: ask dendrobates | 20:22 |
| vishy | soren: yes network.bridge | 20:22 |
| soren | vishy: Ok. | 20:23 |
| creiht | eday: ok cool, swift doesn't need to do that, so I can ignore it... you guys do whatever you want :) | 20:23 |
| soren | vishy: ...and the same bridge name is used by nova-network for something or the other. | 20:23 |
| jaypipes | creiht: yes, that's exactly what it is. | 20:23 |
| creiht | still doesn't change the fact that I think it is silly :) | 20:23 |
| xtoddx | vish: i wonder how many more questions asked of you today will be answered "look at the network model" | 20:23 |
| eday | creiht: I like having every option via both config and command line :) | 20:23 |
| soren | vishy: I'm probably struggling with this because all nova-network has ever done for me is hand me ip addresses :) | 20:24 |
| *** Daviey has quit IRC | 20:24 | |
| *** ramkrsna has joined #openstack | 20:25 | |
| soren | ..so I've never actually assembled the puzzle. | 20:25 |
| *** Daviey has joined #openstack | 20:26 | |
| vishy | np, keep asking questions. It isn't really good if i'm the only person who knows how it works... | 20:26 |
| vishy | i'm sure there are bad assumptions /implementations at various points that haven't been uncovered yet | 20:27 |
| * jaypipes apologized for making everything political... | 20:27 | |
| soren | vishy: So are my assumptions correct? The name of the bridge to which the guests' network interfaces are attached and the name of the bridge through which traffic for a particular network flows (which may or may not be on the same host) is the same? | 20:29 |
| *** reldan has quit IRC | 20:30 | |
| soren | vishy: ...and if so, is there any particular reason why this must remain so? | 20:30 |
| vishy | soren: yes, and on multiple hosts there is no reason why the bridge needs to be the same | 20:31 |
| *** joearnold has quit IRC | 20:32 | |
| vishy | soren: on the same host i'm not sure what the implications of multiple bridges are | 20:32 |
| soren | vishy: You can't bridge bridges. | 20:32 |
| piken | you can't bridge IB interfaces either :( | 20:32 |
| soren | vishy: That doesn't help me at all, then :) | 20:33 |
| soren | gah | 20:33 |
| vishy | soren: all instances in a particular project need to be bridged into the same vlan | 20:33 |
| soren | vishy: Ideas? | 20:33 |
| vishy | soren: (or interface) but the bridge name doesn't matter | 20:33 |
| *** ramkrsna has quit IRC | 20:33 | |
| vishy | soren: the bridge on the network host is for gateway/dhcp | 20:35 |
| vishy | soren: i don't think the bridge name there matters either | 20:36 |
| vishy | soren: so I would think it could have a different name so it wouldn't conflict with the one for the instances | 20:36 |
| *** GasbaKid has joined #openstack | 20:36 | |
| vishy | soren: as long as they are bridged in to the same interface/vlan | 20:36 |
| soren | ..but then dhcp wouldn't work. | 20:36 |
| creiht | xtoddx: so are there any parts of this that you want, to see in swift (for your usage)? | 20:37 |
| soren | vishy: As I said, bridges can't be bridged, and interfaces can't be on more than one bridge. | 20:37 |
| creiht | we already have a lot of logging stuff in swift, and am leary to replace it all just for the sake of replacing it, unless there is some benefit to doing so | 20:37 |
| vishy | soren: ah, I didn't realize you can't attach multiple bridges to the same interface | 20:38 |
| soren | vishy: so back to square one. | 20:38 |
| vishy | soren: perhaps there is another way of setting up the FORWARD rule | 20:38 |
| xtoddx | we'd like to have audits of auth events, and creation of accounts, etc | 20:38 |
| *** rnirmal has joined #openstack | 20:38 | |
| soren | vishy: Possibly. | 20:39 |
| *** westmaas has joined #openstack | 20:39 | |
| vishy | soren: why do those forward rules create problems? | 20:39 |
| soren | vishy: Because they insert themselves at the top of FORWARD and ACCEPT everything. | 20:39 |
| soren | vishy: ...which, obviously, makes blocking things rather difficult. | 20:39 |
| vishy | hmm | 20:40 |
| vishy | they are going in at the end of the forward chain for me | 20:40 |
| soren | vishy: Can I see your _confirm_rule? | 20:41 |
| vishy | _execute("sudo iptables -A FORWARD -j nova_forward") | 20:41 |
| vishy | -A append | 20:41 |
| soren | Fascinating. | 20:41 |
| soren | In my linux_net it calls upon _confirm_rule to actually add it. | 20:41 |
| vishy | oh yes | 20:41 |
| soren | _confirm_rule does _execute("sudo iptables -I %s %s" % (chain, cmd)) | 20:41 |
| soren | Oh, hang on. | 20:42 |
| soren | Hang on, hang on. | 20:42 |
| vishy | yeah, that is why it is useful to have multiple chains | 20:43 |
| vishy | so we have extra rules in a chain called nova-extra which is before nova-forward | 20:43 |
| soren | the thing is that the ACCEPT rule is actually correct in some cases. | 20:43 |
| soren | Err.. | 20:43 |
| soren | Well, of course it is, otherwise you wouldn't have added it. | 20:44 |
| soren | but, what I mean is.. | 20:44 |
| soren | It's actually correct in some cases where a node runs both network and compute. | 20:44 |
| *** dfg_ has joined #openstack | 20:44 | |
| soren | Hmm.. | 20:44 |
| vishy | we had a similar issue with postrouting rules | 20:44 |
| soren | The rule is supposed to allow traffic to pass through the node from whereever to compute nodes "behind" it, and from compute nodes "behind" it to whereever. | 20:45 |
| vishy | where we had to ensure that a new rule was at the beginning of some of the rules, but after other rules | 20:45 |
| soren | Right? | 20:45 |
| soren | Precisely. | 20:45 |
| soren | What if.. | 20:45 |
| vishy | yes | 20:45 |
| vishy | would it help to accept by ip rather than bridge? Just allow the whole private ip range? | 20:46 |
| soren | Yeah, what if we change ensure_bridge to add a chain for local guests? | 20:46 |
| soren | vishy: That wouldn't help. | 20:46 |
| soren | vishy: I'd still be unable to block things. | 20:46 |
| soren | So if ensure_bridge adds a chain that my new iptables secgroup impl can use. | 20:47 |
| soren | ..I win? | 20:47 |
| vishy | so a specific chain for guests on the local box? | 20:47 |
| soren | Well.. | 20:47 |
| soren | Technically, yes. | 20:47 |
| soren | It would add an unconditional jump to that chain. | 20:48 |
| soren | ...and my new secgroup stuff would use that chain for its magic, only adding rules for local guests. | 20:48 |
| *** rbergeron has quit IRC | 20:48 | |
| soren | ..and if they don't match, we go back to the regular scheduled programme^W^W^Wother rules in the FORWARD chain. | 20:48 |
| soren | Sounds like a win to me. | 20:49 |
| vishy | yeah sounds good | 20:49 |
| vishy | chain nova-local or some such | 20:49 |
| soren | ...if there's no local guests, it's a very cheap no-op chain. | 20:49 |
| *** rbergeron has joined #openstack | 20:49 | |
| soren | muhahahah | 20:49 |
| * soren hacks | 20:49 | |
| soren | This is turning out really well. | 20:49 |
| vishy | soren: the main difference in the code i sent you is just that nova-network is creating the nova-xxx chains instead of expecting them to be set up in advance | 20:50 |
| vishy | so hopefully it won't break your stuff too badly | 20:50 |
| soren | You sent me code? | 20:51 |
| soren | Oh, that pastie? | 20:51 |
| vishy | yeah | 20:58 |
| *** zaitcev has joined #openstack | 21:03 | |
| *** eyepv6 has joined #openstack | 21:04 | |
| *** littleidea has quit IRC | 21:08 | |
| *** littleidea has joined #openstack | 21:09 | |
| soren | vishy: Oh, and once this is done, I'll be supporting granting access for other security groups, too. | 21:14 |
| vishy | cool | 21:14 |
| *** arthurc has joined #openstack | 21:14 | |
| *** adjohn has joined #openstack | 21:17 | |
| *** adjohn has quit IRC | 21:18 | |
| dubsquared | anyone want to help me figure out why i can ping my instances on a newly installed node? | 21:24 |
| dubsquared | s/can/cant | 21:24 |
| *** GasbaKid has quit IRC | 21:25 | |
| *** GasbaKid has joined #openstack | 21:25 | |
| *** maplebed has quit IRC | 21:30 | |
| *** maplebed has joined #openstack | 21:30 | |
| JordanRinke | what network manager are you using? and you can ping on the controller and vm's running on the controller but not from the node, or anything on the node? | 21:36 |
| soren | dubsquared: What do you see in euca-get-console-output? | 21:37 |
| *** mdomsch has quit IRC | 21:38 | |
| dubsquared | currently working through some changes with nova.network.manager.FlatDHCPManager | 21:38 |
| dubsquared | soren: using nova-debug, im at a login prompt | 21:40 |
| *** rlucio has joined #openstack | 21:40 | |
| * soren looks at nova-debug and goes "EEEP!" | 21:41 | |
| *** littleidea has quit IRC | 21:43 | |
| *** joearnold has joined #openstack | 21:44 | |
| dubsquared | I'm using the default network manager; the controller can launch instances, and I can ping and ssh to those, anything that launches on the node is unreachable | 21:46 |
| *** jizzo has joined #openstack | 21:48 | |
| uvirtbot | New bug: #686195 in swift "proxy.server.best_response doesn't include response headers" [Low,Confirmed] https://launchpad.net/bugs/686195 | 21:52 |
| chmouel | dubsquared: did you do euca-authorize on the port you want to open ? | 21:54 |
| dubsquared | chmouel: yup | 21:55 |
| dubsquared | well, on the controller, that's the only place that needs to be done ja? | 21:55 |
| dubsquared | iirc that will propagate to all the nodes | 21:55 |
| *** rnirmal has quit IRC | 21:56 | |
| *** rnirmal has joined #openstack | 21:56 | |
| chmouel | yeah seems so | 21:57 |
| *** sophiap has quit IRC | 22:00 | |
| *** jdarcy has quit IRC | 22:04 | |
| *** dragondm has quit IRC | 22:04 | |
| *** eyepv6 has quit IRC | 22:05 | |
| *** sophiap has joined #openstack | 22:07 | |
| dubsquared | going to throw this out there, and if someone could tell me this is accurate —> default network manager is vlanmode, and you must have a switch that supports managed vlans for this to work across nodes. if not, i should run flatDHCP manager mode. | 22:11 |
| *** abecc has quit IRC | 22:12 | |
| *** arthurc has quit IRC | 22:17 | |
| creiht | xtoddx: doesn't seem difficult to add the AUDIT messaging in logging | 22:17 |
| *** joshuamckenty has joined #openstack | 22:18 | |
| xtoddx | creiht: true, but it would be nice to pull the formatting along with it | 22:18 |
| xtoddx | i'll think about it more later when i'm in more of a logging mindset | 22:18 |
| *** westmaas has quit IRC | 22:19 | |
| creiht | hrm | 22:20 |
| *** Ryan_Lane has quit IRC | 22:29 | |
| *** hggdh has joined #openstack | 22:29 | |
| *** joearnold has quit IRC | 22:30 | |
| *** dirakx has quit IRC | 22:30 | |
| *** littleidea has joined #openstack | 22:33 | |
| vishy | dubsquared correct | 22:36 |
| vishy | dubsquared if your switch doesn't support managed vlans you will have no luck | 22:36 |
| creiht | xtoddx: I will ponder it some more as well | 22:36 |
| *** brd_from_italy has joined #openstack | 22:37 | |
| *** dragondm has joined #openstack | 22:38 | |
| *** johnpur has joined #openstack | 22:39 | |
| *** ChanServ sets mode: +v johnpur | 22:39 | |
| JordanRinke | vishy is there anyone that is just a networking god that can just drill in an understanding of all the network managers, how they work and how to configure them like I was a 5 year old? | 22:42 |
| *** allsystemsarego has quit IRC | 22:43 | |
| *** jkakar has joined #openstack | 22:48 | |
| vishy | probably not | 22:49 |
| vishy | :) | 22:49 |
| vishy | JordanRinke: one issue is that we haven't quite figured out how to make flatdhcp manager work properly yet | 22:50 |
| vishy | but i do have an idea involving multiple ips | 22:50 |
| *** GasbaKid has quit IRC | 22:51 | |
| *** dagger has quit IRC | 22:52 | |
| *** GasbaKid has joined #openstack | 22:54 | |
| dubsquared | lol @ vishy | 22:58 |
| dubsquared | vishy: i just started using flatDHCP manager and im pulling my hair out | 22:58 |
| dubsquared | glad to hear it's a 'work in progress' | 22:58 |
| vishy | dubsquared: the current version will only work | 22:59 |
| vishy | dubsquared if you have two separate eth devices | 22:59 |
| vishy | one for instances and one for public | 22:59 |
| dubsquared | well damn. | 22:59 |
| dubsquared | guess ill have to go run some cables tomorrow | 22:59 |
| vishy | i think i might be able to work around it by giving a public and private ip to the same bridge | 23:00 |
| dubsquared | oh yeah, i recall you mentioning that | 23:00 |
| dubsquared | can you do that? did you test it? | 23:00 |
| chmouel | gundlach: about the ostack api in nova how do i specify an image id from a public image ? | 23:01 |
| *** Ryan_Lane has joined #openstack | 23:01 | |
| chmouel | gundlach: and what's a public image? | 23:01 |
| *** brd_from_italy has quit IRC | 23:01 | |
| chmouel | gundlach: the /var/lib/nova/images uploaded stuff ? | 23:01 |
| gundlach | jaypipes: do you have the answer to chmouel's q? you've done work most recently w/ glance and images | 23:01 |
| Ryan_Lane | Any openstack people at the cloudstock event in SF today? | 23:02 |
| gundlach | chmouel: i haven't gotten a public image loaded yet in nova, so i'm not sure :) | 23:02 |
| *** gundlach has quit IRC | 23:02 | |
| chmouel | gundlach: ah k no worries i thought you were the one writting this code :) | 23:03 |
| *** ppetraki has quit IRC | 23:05 | |
| *** gondoi has quit IRC | 23:05 | |
| *** hggdh has quit IRC | 23:06 | |
| spectorclan | Ryan_Lane: Mike Mayo is speaking at the event | 23:07 |
| Ryan_Lane | Yeah. Looks like I missed his talk. I wonder where he is. I'd like to meet him | 23:08 |
| *** BK_man has quit IRC | 23:08 | |
| *** miclorb_ has quit IRC | 23:09 | |
| dubsquared | --ec2_subdomain=ec2 would mean any requests to api.example.org get directed to the EC2 API. —> im getting a 400 bad request when i hit my ec2_subdomain | 23:10 |
| *** ctennis has quit IRC | 23:10 | |
| *** hggdh has joined #openstack | 23:11 | |
| spectorclan | Ryan_Lane: sorry, don't have his number to call | 23:11 |
| Ryan_Lane | It's cool. I'll see if I can find him | 23:13 |
| JordanRinke | dubsquared1: let's try it, give the interface multiple IPs - depending how/if the traffic is tagged it might work | 23:13 |
| *** dagger has joined #openstack | 23:14 | |
| *** dagger has joined #openstack | 23:14 | |
| *** BK_man has joined #openstack | 23:15 | |
| *** irahgel has left #openstack | 23:16 | |
| JordanRinke | vishy: how do we get better doc out there on networking? It seems to be the one thing that is a big mystery right now - and subsequently the biggest hurdle for massive deployments (I am also networking stupid so maybe I just don't understand it) | 23:20 |
| Ryan_Lane | Ah. I didn't miss it. It's happening right now. | 23:21 |
| *** ctennis has joined #openstack | 23:22 | |
| *** ctennis has joined #openstack | 23:22 | |
| vishy | well i guess step one is figure out how to do flatdhcp properly | 23:37 |
| vishy | on multiple machines with one interface | 23:37 |
| vishy | the problem is bridging into the existing interface makes things splode | 23:37 |
| *** iammartian_ has joined #openstack | 23:42 | |
| *** iammartian_ has left #openstack | 23:43 | |
| JordanRinke | once you add the interface to the bridge and set IP info on it, it is fine though | 23:45 |
| *** Podilarius has left #openstack | 23:46 | |
| *** Ryan_Lane has quit IRC | 23:47 | |
| *** iammartian has left #openstack | 23:49 | |
| *** aliguori has quit IRC | 23:50 | |
| *** jkakar has quit IRC | 23:53 | |
| *** MarkAtwood has quit IRC | 23:53 | |
| *** joearnold has joined #openstack | 23:56 | |
| *** GasbaKid has quit IRC | 23:56 | |
| *** jizzo has quit IRC | 23:57 | |
| *** aimon has joined #openstack | 23:57 | |
| *** jc_smith has quit IRC | 23:57 | |
| *** jc_smith has joined #openstack | 23:57 | |
| *** rnirmal has quit IRC | 23:58 | |
| *** miclorb_ has joined #openstack | 23:58 | |
Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!