Tuesday, 2011-08-23

« Monday, 2011-08-22 Index Wednesday, 2011-08-24 »
*** tryggvil___ has joined #openstack00:00
*** tryggvil has quit IRC00:00
*** tryggvil___ is now known as tryggvil00:00
*** CloudKyle has quit IRC00:02
*** bcwaldon has joined #openstack00:02
*** bradhedlund has quit IRC00:03
*** bradhedlund has joined #openstack00:03
*** clauden has quit IRC00:06
*** LiamMac has quit IRC00:06
*** jfluhmann has joined #openstack00:15
*** bengrue_ has joined #openstack00:16
*** nati_ has joined #openstack00:16
*** ncode has joined #openstack00:17
*** szaydel has joined #openstack00:17
*** soosfarm_ has joined #openstack00:19
*** RichiH_ has joined #openstack00:19
*** h1nchtastic has joined #openstack00:19
*** timr__ has joined #openstack00:20
*** kim0_ has joined #openstack00:20
*** klumpie_ has joined #openstack00:20
*** cereal_bars has quit IRC00:20
*** karmabot` has joined #openstack00:22
*** soosfarm has quit IRC00:22
*** bengrue has quit IRC00:22
*** bz has quit IRC00:22
*** karmabot has quit IRC00:22
*** nati has quit IRC00:22
*** timr_ has quit IRC00:22
*** zorzar has quit IRC00:22
*** kim0 has quit IRC00:22
*** CatKiller has quit IRC00:22
*** h1nch has quit IRC00:22
*** exlt has quit IRC00:22
*** klumpie has quit IRC00:22
*** Archeron has quit IRC00:22
*** bengrue_ is now known as bengrue00:22
*** RichiH has quit IRC00:22
*** CatKiller has joined #openstack00:22
*** jj0hns0n has joined #openstack00:23
*** jj0hns0n has quit IRC00:23
*** Archeron has joined #openstack00:24
*** Univ1 has quit IRC00:26
*** zorzar has joined #openstack00:26
*** deshantm_laptop has joined #openstack00:27
*** bz has joined #openstack00:27
*** exlt has joined #openstack00:28
*** mnour has quit IRC00:28
*** bradhedlund has quit IRC00:29
*** deshantm_laptop has quit IRC00:30
uvirtbotNew bug: #831704 in nova "No validation of arch type on image upload" [Undecided,New] https://launchpad.net/bugs/83170400:31
*** szaydel has left #openstack00:32
*** mandela has joined #openstack00:33
*** mandela123 has joined #openstack00:33
*** bcwaldon has quit IRC00:34
*** bengrue has quit IRC00:35
*** vladimir3p has quit IRC00:37
*** mandela has quit IRC00:38
*** mandela123 has quit IRC00:38
*** mandela123 has joined #openstack00:38
*** mrjazzcat has quit IRC00:41
*** nati has joined #openstack00:50
*** zul has quit IRC00:51
*** nati_ has quit IRC00:51
*** hisaharu has quit IRC00:51
*** lionel has quit IRC00:55
*** maplebed has joined #openstack00:55
*** deshantm has joined #openstack00:57
*** Ryan_Lane has quit IRC01:01
*** tryggvil___ has joined #openstack01:02
*** tryggvil has quit IRC01:02
*** tryggvil___ is now known as tryggvil01:02
*** dprince has joined #openstack01:06
*** maplebed has quit IRC01:07
*** aimon has joined #openstack01:08
*** zul has joined #openstack01:09
*** zul has quit IRC01:09
*** aimon has left #openstack01:09
*** zul has joined #openstack01:09
*** rods has quit IRC01:11
*** dprince has quit IRC01:11
*** Ryan_Lane has joined #openstack01:11
*** bcwaldon has joined #openstack01:14
*** infinite-scale has quit IRC01:15
*** primeministerp1 has joined #openstack01:22
*** Ryan_Lane has quit IRC01:28
*** Ephur has quit IRC01:30
*** huslage has quit IRC01:32
*** obino has quit IRC01:35
*** BK_man has quit IRC01:46
*** alekibango has quit IRC01:47
*** alekibango has joined #openstack01:47
*** alekibango has quit IRC01:49
*** alekibango has joined #openstack01:49
*** alekibango has quit IRC01:51
*** alekibango has joined #openstack01:52
*** miclorb_ has quit IRC01:52
*** anotherjesse has quit IRC01:53
*** anotherjesse has joined #openstack01:54
*** nati_ has joined #openstack02:03
*** nati has quit IRC02:03
*** obino has joined #openstack02:04
*** anotherjesse has quit IRC02:05
*** alekibango has quit IRC02:05
*** alekibango has joined #openstack02:05
*** Ephur_ has joined #openstack02:07
*** worstadmin has joined #openstack02:13
*** miclorb_ has joined #openstack02:13
*** bcwaldon has quit IRC02:14
*** tryggvil has quit IRC02:18
*** msinhore has joined #openstack02:19
*** MarcMorata has joined #openstack02:20
*** hadrian has quit IRC02:20
*** Ephur_ has quit IRC02:28
*** Ephur has joined #openstack02:28
*** osier has joined #openstack02:29
*** MarcMorata has quit IRC02:30
*** jakedahn has quit IRC02:34
*** dragondm has quit IRC02:35
*** nati has joined #openstack02:40
*** nati_ has quit IRC02:40
*** reed has quit IRC02:42
*** obino has quit IRC02:46
*** msinhore1 has joined #openstack02:57
*** msinhore has quit IRC02:57
*** tryggvil has joined #openstack02:58
*** miclorb_ has quit IRC03:02
*** miclorb_ has joined #openstack03:11
*** tryggvil has quit IRC03:12
*** lborda has quit IRC03:16
*** rsampaio has joined #openstack03:17
*** jakedahn has joined #openstack03:17
*** rustam has joined #openstack03:23
*** bcwaldon has joined #openstack03:32
*** nati has quit IRC03:39
*** RDove has joined #openstack03:49
*** adjohn has quit IRC03:55
*** ejat has joined #openstack03:56
*** ejat has joined #openstack03:56
*** obino has joined #openstack03:56
*** jakedahn has quit IRC04:06
*** nati has joined #openstack04:09
*** openpercept_ has joined #openstack04:19
*** adjohn has joined #openstack04:19
*** amccabe has joined #openstack04:20
*** amccabe has quit IRC04:22
*** openpercept_ has quit IRC04:22
*** amccabe has joined #openstack04:23
*** amccabe has joined #openstack04:23
*** openpercept_ has joined #openstack04:24
*** openpercept_ is now known as Guest167404:24
*** ejat has quit IRC04:25
*** Guest1674 is now known as openpercept04:29
*** openpercept has joined #openstack04:30
*** ejat has joined #openstack04:31
*** ejat has joined #openstack04:31
*** rustam has quit IRC04:36
*** ejat has quit IRC04:37
*** primeministerp2 has joined #openstack04:40
*** primeministerp1 has quit IRC04:40
*** ejat has joined #openstack04:41
*** ejat has quit IRC04:41
*** ejat has joined #openstack04:41
*** reed has joined #openstack04:45
*** grapex has quit IRC04:49
*** BK_man has joined #openstack04:59
*** BK_man has quit IRC04:59
*** msinhore1 has quit IRC04:59
*** miclorb_ has quit IRC05:01
*** reed has quit IRC05:09
*** obino has joined #openstack05:16
*** martine has quit IRC05:19
*** mgoldmann has joined #openstack05:27
*** ejat has quit IRC05:28
*** ejat has joined #openstack05:29
*** ejat has joined #openstack05:29
*** kashyap has joined #openstack05:32
*** hingo has joined #openstack05:32
*** Ryan_Lane has joined #openstack05:37
*** ardi2_ has quit IRC05:41
*** YorikSar has joined #openstack05:43
*** JoseBravo has joined #openstack05:44
*** JoseBravo has quit IRC05:45
*** troys has joined #openstack05:51
*** adjohn has quit IRC05:51
*** miclorb_ has joined #openstack05:57
*** adjohn has joined #openstack06:00
*** rsampaio has quit IRC06:00
*** openpercept has quit IRC06:10
*** jjohndrow has joined #openstack06:18
*** miclorb_ has quit IRC06:25
*** mat_solar has joined #openstack06:31
*** npmapn has joined #openstack06:34
*** siwos has joined #openstack06:36
*** javiF has joined #openstack06:41
*** YorikSar has quit IRC06:46
*** adjohn has quit IRC06:50
*** troys has quit IRC06:51
*** disco has joined #openstack06:57
*** reidrac has joined #openstack06:57
*** bcwaldon has quit IRC06:58
*** eviscares has joined #openstack06:58
eviscaresgood morning06:59
*** caribou has joined #openstack07:01
*** arun has quit IRC07:06
eviscaresI have some questions regarding swifts operating procedures, does anyone know if containers and the objects they contain are placed on the same nodes?07:07
eviscaresAnd is there any way to find out which nodes an object has been placed on?07:07
mandela123so far,there is not a way to know  which node an object has been placed on07:09
eviscaresgreat… thanks.07:09
redboThey're distributed in a random looking way among drives.  The only way to find out where they're at is to ask the ring.07:09
eviscaresI guess that is what happens if I do a swift download call, right?07:10
redboyeah, that's how the proxy server knows where they are07:10
eviscaresbugger all… I would like to test failure tolerance, but without knowing which nodes to shut down, that would be just guessing and testing07:11
redboif you just want to know where one object is, there's a command "swift-get-nodes [account] [container] [object]"07:12
eviscares ah, thank you. that was what I had been looking for.07:13
eviscaresand it returns an error. do I have to do a -A -K there?07:14
*** miclorb_ has joined #openstack07:15
*** javiF has quit IRC07:15
redbooh I missed an argument, "swift-get-nodes [/etc/swift/object.ring.gz] [account] [container] [object]"07:15
redbofor an object, or "swift-get-nodes /etc/swift/account.ring.gz [account]" to find out where an account lives, etc.07:16
eviscaresHandoffs is what it would move to if other nodes fail, right?07:17
redboyes07:17
eviscaresthanks a ton07:18
eviscaresHm… funny.. there should be something on a node but there is not.07:20
*** alekibango has quit IRC07:22
*** guigui1 has joined #openstack07:23
*** guigui1 has left #openstack07:24
*** guigui has joined #openstack07:24
*** amccabe has quit IRC07:25
*** rdj has joined #openstack07:28
*** perestrelka has joined #openstack07:29
*** bengrue has joined #openstack07:32
*** rustam has joined #openstack07:38
*** DuncanT has joined #openstack07:38
*** DuncanT has quit IRC07:40
*** DuncanT has joined #openstack07:40
*** vdo has joined #openstack07:43
*** DuncanT has quit IRC07:47
*** nacx has joined #openstack07:48
*** DuncanT has joined #openstack07:51
*** ejat has quit IRC08:09
*** stewart has quit IRC08:11
*** stewart has joined #openstack08:12
*** Ephur has quit IRC08:18
*** bengrue has quit IRC08:19
*** stewart has quit IRC08:19
*** dirkx_ has joined #openstack08:27
*** miclorb_ has quit IRC08:28
*** hingo has quit IRC08:30
*** zigo has joined #openstack08:31
*** ejat has joined #openstack08:31
*** ejat has joined #openstack08:31
*** mies has joined #openstack08:33
*** javiF has joined #openstack08:35
*** rustam has joined #openstack08:35
*** dirkx_ has quit IRC08:36
*** Ryan_Lane has quit IRC08:39
*** jeffjapan has quit IRC08:41
*** npmapn has quit IRC08:45
*** npmapn has joined #openstack08:46
*** ejat has quit IRC08:46
*** ejat has joined #openstack08:49
*** ejat has quit IRC08:49
*** ejat has joined #openstack08:49
*** npmapn_ has joined #openstack08:55
*** nati has quit IRC08:56
*** npmapn has quit IRC08:56
*** stewart has joined #openstack08:56
*** arun has joined #openstack09:01
*** dgags has quit IRC09:04
*** mnour has joined #openstack09:08
*** nati has joined #openstack09:10
*** JohnTheSon has joined #openstack09:14
*** dirkx_ has joined #openstack09:15
*** caribou1 has joined #openstack09:25
*** MarcMorata has joined #openstack09:27
*** hingo has joined #openstack09:27
*** caribou has quit IRC09:28
*** ejat has quit IRC09:31
*** nati has quit IRC09:37
*** worstadmin has quit IRC09:39
*** eviscares has quit IRC09:41
*** stanchan has joined #openstack09:41
*** stanchan has quit IRC09:41
*** arun has quit IRC09:41
*** arun_ has quit IRC09:41
*** stanchan has joined #openstack09:42
*** nati has joined #openstack09:42
*** arun has joined #openstack09:42
*** arun has joined #openstack09:42
*** arun_ has joined #openstack09:45
*** stewart has quit IRC09:46
*** JohnTheSon has quit IRC09:47
*** JohnTheSon has joined #openstack09:47
*** stanchan has quit IRC09:50
*** dirkx_ has quit IRC09:52
*** nati has quit IRC09:57
*** tryggvil has joined #openstack10:03
*** Oneiroi has joined #openstack10:06
*** rods has joined #openstack10:09
*** viraptor has quit IRC10:10
*** viraptor has joined #openstack10:10
*** irahgel has joined #openstack10:11
*** mat_solar has quit IRC10:16
*** eviscares has joined #openstack10:21
eviscaresIs there a page where I can look up the different usergroups like .admin and what their permissions are? Preferably for 1.4. Thanks10:24
*** zigo has quit IRC10:31
*** RichiH_ is now known as RichiH10:52
*** miclorb_ has joined #openstack11:01
eviscaresOr to rephrase, how do I create new users?11:07
agyeviscares: 'nova-manage' command should let you create users11:11
*** msinhore has joined #openstack11:12
eviscaressorry, I was unclear there. I am working on creating a swift cluster.11:12
agyoh11:13
*** jaypipes has quit IRC11:14
*** MarcMorata has quit IRC11:15
*** markvoelker has joined #openstack11:18
eviscaresAnd I must admit, I'm quite as a loss. even though I can create users, unless they are admins, they can't do anything.11:20
viraptoris there some way to create different default quotas without changing the sourcecode?11:22
*** jfluhmann has quit IRC11:23
viraptorah... I see it now actually, nevermind :)(11:23
*** rods has quit IRC11:23
*** infinite-scale has joined #openstack11:30
*** nerdstein has joined #openstack11:31
*** jaypipes has joined #openstack11:31
*** nerdstein has quit IRC11:34
*** caribou1 has left #openstack11:39
*** caribou has joined #openstack11:40
*** Gaurav___ has joined #openstack11:44
*** mfer has joined #openstack11:46
*** ncode has quit IRC11:48
*** PeteDaGuru has joined #openstack11:56
*** msinhore has quit IRC11:56
*** vdo has quit IRC12:02
*** zigo has joined #openstack12:03
*** joesavak has joined #openstack12:06
*** kim0_ is now known as kim012:06
*** kim0 has joined #openstack12:06
*** jsavak has joined #openstack12:14
*** lts has joined #openstack12:15
*** rods has joined #openstack12:16
*** joesavak has quit IRC12:16
*** zul has quit IRC12:21
*** zul has joined #openstack12:22
*** nerdstein has joined #openstack12:22
*** jsavak has quit IRC12:23
*** ncode has joined #openstack12:28
*** ncode has joined #openstack12:28
*** mandela123 has quit IRC12:29
siwoshello all12:32
siwosanybody using SSD with compute nodes?12:32
siwosI came across a paper from dell (Openstack reference architecture)12:32
siwosdell recommends 10k RPM SAS drives for compute12:32
siwosfrom my experience the i/o is the first boundary you hit in the virtualization world12:33
siwoswhich one do you recommend ssd vs SAS?12:33
*** hggdh_ has joined #openstack12:36
reidracI've been very happy with 15k rpm SAS disks, but they're quite expensive12:36
reidracI agree with the io boundary :)12:36
siwosi tested ssd lately12:37
siwosworks better than sas definitely12:37
siwosdone some i/o benchmarks - ssd-s were 2 times faster than 10krpm sas12:38
siwos4 machines running simultaneously on one disk12:38
reidracI don't know if I would take into account Dell's recommendation on hw12:39
reidracif you know what I mean...12:39
siwosthey published their reference arch lately12:39
siwosbased on 610012:39
siwosnodes12:39
siwosc610012:39
siwosfor me the nodes are way too huge to run vm-s effectively12:40
siwos16 cores , 96gb of ram per each node - this means potential problems with process scheduling12:40
siwosand i/o12:40
*** bsza has joined #openstack12:41
siwosi'm thinking of running openstack on a bunch of HP 2x220c blades (8cores + ssd)12:42
*** miclorb_ has quit IRC12:42
*** rsampaio has joined #openstack12:43
*** yinzen has joined #openstack12:45
*** yinzen has quit IRC12:48
*** mattray has joined #openstack12:56
smoserok... lets say i did a crazy thing and ran a windows instance on  a public cloud12:57
smosersince this next 1 hour will entail about 50% of my windows usage in the past 10 years, i'm hoping someone here might be able to help me.12:57
smoserhow would I know what filesystem type was a on disk in windows?12:57
smoserie, in linux /proc/partitions or 'file --special-files /dev/XXX' would tell me.12:58
*** statik has joined #openstack12:58
mahogony@smoser are you currently booted up on the windows disk?12:59
larissamahogony: Error: "smoser" is not a valid command.12:59
*** hadrian has joined #openstack12:59
smoseri will be in 10 minutes or so13:00
smoseri'm wanting to know the FS of an ephemeral disk13:00
smoserbut knowing fs of all would be very appreciated13:00
*** rsampaio has quit IRC13:01
mahogonyif you have the disk in a mochine that is currently booted up to linux you can use parted or fdisk to scan the drive. it should report back the fs type. OR13:01
*** cereal_bars has joined #openstack13:02
smoserits really going to be in windows with no ooption to boot linux.13:02
mahogonyif booted to the disk right click my computer and select properties -> disk management -> right click boot partitiion and general tab will show fs type13:02
*** rsampaio has joined #openstack13:03
mahogonyie ntfs, fat32,...13:03
*** msivanes has joined #openstack13:04
*** Oneiroi has quit IRC13:06
smosermahogony, thank you.13:06
notmynameeviscares: http://programmerthoughts.com/openstack/swift-permissions/  <--- /very/ basic info on creating users and permissions in swift13:06
mahogonyyup13:06
*** dirkx_ has joined #openstack13:07
*** Oneiroi has joined #openstack13:07
eviscaresnotmyname: thanks13:09
*** med_out is now known as medberry13:09
*** hggdh_ has quit IRC13:10
eviscaresnotmyname: I must admit that I consider the unwieldiness of Swifts User Accounts one of its biggest drawbacks13:12
*** ahasenack has joined #openstack13:13
*** Gaurav___ has quit IRC13:15
*** zigo has quit IRC13:16
redboeviscares: how do you consider them to be unwieldy?13:18
*** zigo has joined #openstack13:18
eviscaresredbo: I find it exceedingly painful to add new users and somehow manage their permissions. Maybe I have not found the part of 1.4's Documentation that explains it, but setting Permissions via Post seems a bit arcane to me.13:21
*** mattray has quit IRC13:23
*** martine has joined #openstack13:23
*** mattray has joined #openstack13:23
*** Ephur has joined #openstack13:24
*** imsplitbit has joined #openstack13:27
notmynameeviscares: what would be better?13:27
eviscaresnotmyname:  I would prefer a config file where I could assign Containers to users with permissions.13:28
reidraceviscares: but the users can create/delete containers at will13:30
*** mahogony has quit IRC13:30
eviscaresreidrac: actually, this doesn't work for me13:30
reidrac:)13:30
*** hggdh_ has joined #openstack13:30
eviscaresreidrac:  I created another user after the Admin, and he can't create folders13:31
reidracfolders? but does it have write permissions on the container?13:32
eviscaresI meant containers.13:32
reidracof course it cant13:33
eviscaresIf I have him upload something into a container that didn't exist before, it returns a 401 for Auth get.13:33
eviscaresSo then they can't create/delete at will.13:33
reidracthe point it's that the admin can create containers and assign users an ACL to containers13:33
reidrac*and13:33
eviscaresYes, and I consider these ACL unwieldy13:34
reidracwhy?13:34
reidracdo you want the users to create containers too?13:34
reidracI can't understand, they can create folders inside the container13:34
eviscaresBecause I consider the ACL manipulation via Post very weird13:35
reidracit's like a file system in which the admin controls the root directory, and then creates user directories (containers)13:35
*** dirkx_ has quit IRC13:36
reidracin our implementation you can create an account, then create a container and enable a user to upload files there (and ONLY there)13:36
reidracthat's an extra access layer, I think is an advantage over other solutions13:36
reidracactually I think is one of the best features of swift13:36
uvirtbotNew bug: #831995 in nova "EC2 API noauth user_id is invalid" [High,New] https://launchpad.net/bugs/83199513:37
eviscaresThen maybe I'm doing something wrong, because this fails me. I did a swift […] post -r 'system:trudat' -w 'system:trudat', and it doesn't work.13:37
reidracsystem is the account, trudat is the user13:38
reidracand you're doing that on an existing container of system account, aren't you?13:38
eviscaresyup13:38
reidrachave you tried to retrieve the container ACLs to see if the POST worked?13:39
reidracdid work?13:39
reidracif it worked, then you need to check your auth server to see if it's returning the right ACL13:40
eviscareshow would I retrieve the container ACL?13:40
reidracsuch as X-Auth-Groups: system:trudat13:40
*** gnu111 has joined #openstack13:41
*** jjm has quit IRC13:41
reidraccheck: http://docs.openstack.org/cactus/openstack-object-storage/developer/content/retrieve-container-metadata.html13:41
eviscaresdoes this also apply for 1.4?13:41
reidracit's a HEAD request13:42
reidracI think so13:42
reidracwe're using 1.4.x13:42
reidracif it's a minor version it will be OK13:42
*** JohnTheSon has quit IRC13:43
eviscaresso it would be: "HEAD /1.4.2/system/[Container] http/1.1"?13:43
reidracyou need to include a valid auth token I guess13:44
reidracthe X-Auth-Token header, you know13:44
reidrac:)13:44
reidracbut yes... the you should get X-Container-Read and X-Container-Write headers13:45
reidracin the response13:45
*** huslage has joined #openstack13:45
eviscaresI'm sorry, I'm feeling very stupid right now. Would that make it a curl request?13:45
eviscaresI'm really new to this.13:45
*** grapex has joined #openstack13:46
*** mdomsch has joined #openstack13:46
uvirtbotNew bug: #831999 in nova "Instance not found message poorly formatted" [Undecided,New] https://launchpad.net/bugs/83199913:46
uvirtbotNew bug: #832012 in nova "OSAPI list servers causes 'AttributeError: use_ipv6'" [Medium,In progress] https://launchpad.net/bugs/83201213:46
reidracOK, 1st ask for a token to the public auth service: http://docs.openstack.org/cactus/openstack-object-storage/developer/content/authentication.html#d6e22313:46
reidracin that way you get an auth token that needs to be used in any request13:47
reidrac(you're getting the ACL of the container, so use the account admin user)13:47
reidracswift docs are reasonably good, but sometimes it's hard to get the big picture :(13:48
*** yinzen has joined #openstack13:49
*** jfluhmann has joined #openstack13:49
statikdoes nova networking FlatDHCPMode always require 2 ethernet devices? I'm wondering whether it's possible to set up a test environment at home using some mac minis running ubuntu - they only have a single ethernet port. I'm interested in having multiple physical compute nodes but not too worried about security in this environment13:51
*** amccabe has joined #openstack13:51
eviscaresI got that token, but somehow I fail to understand how the request should be phrased13:52
eviscaresThis is all a bit overwhelming.13:52
reidracit's all right13:53
*** dirkx_ has joined #openstack13:53
reidracyou need to add a header to your curl request13:54
reidraccurl -I -H "X-Auth-Token: YOURTOKENHERE" http://yourproxy:port/whatever/system/container13:55
agystatik: 1 ethernet device will work with FlatDHCP for your compute nodes13:56
eviscaresah ok thank you13:56
reidracif I'm not wrong, that's a curl HEAD request using the token in the X-Auth-Token header13:56
*** mrjazzcat has joined #openstack13:56
statikagy: thanks!13:56
statiki've been confused by reading about the bridges that are required13:57
statikhttp://unchainyourbrain.com/openstack/13-networking-in-nova13:57
*** Capashen has joined #openstack13:57
statikagy: does the "compute controller" or device running nova-network require multiple nics?13:58
agystatik: nova-network should work with one interface, but i've not tried it tbh13:59
*** pfibiger has joined #openstack14:00
statikagy: thanks for suffering my newbie questions - so with a single interface, would I still need to configure a bridge, and then I'm basically just forgoing having a private network and all network traffic from the VMs is on the same net?14:00
eviscaresreidrac: thanks, but this doesn't seem to be working eiher.14:02
reidracwhat's the answer you get?14:02
agystatik: something like that. the nova-* packages are pretty good and will create the bridged interfaces for you. you may need to add an aliased address for your "private" networks14:02
*** bcwaldon has joined #openstack14:02
*** ldleworker has joined #openstack14:02
eviscaresI get nothing. I sent the request and it is taking a long time now.14:03
*** shentonfreude has joined #openstack14:03
*** mrjazzcat has quit IRC14:04
eviscares-v shows that the connection gets accepted and that it sends the token.14:05
reidrac1 sec14:06
eviscaressure take your time, I'll go for a smoke.14:09
*** joesavak has joined #openstack14:09
*** jsavak has joined #openstack14:11
reidraceviscares: here you have an example: http://paste.openstack.org/show/2255/14:11
reidracignore the X-Container-Meta-* headers in the HEAD response, that's related to our CDN implementation14:11
*** anotherjesse has joined #openstack14:12
*** lvaughn has quit IRC14:12
*** viraptor has quit IRC14:13
reidrac1. ask the public auth service for a token, 2. go to the proxy with that token and make a HEAD request to the container, 3. profit!14:13
*** LiamMac has joined #openstack14:13
*** joesavak has quit IRC14:14
*** shentonfreude has quit IRC14:15
*** shentonfreude has joined #openstack14:16
*** siwos has quit IRC14:18
*** javiF has quit IRC14:19
*** hggdh_ has quit IRC14:23
*** hggdh_ has joined #openstack14:23
eviscaresreidrac: the public auth service request is this? curl -k -v -H 'X-Storage-User: system:root' -H 'X-Storage-Pass: testpass' https://[MyProxiesIP]:8080/auth/v1.0?14:23
reidracno sure, are you running an auth service on that IP/port? can you paste the response headers? (add -D -)14:24
reidracI mean, first you should validate your installations: create an account/admin user, get a token, perform a HEAD request in the account, that sort of things ;)14:26
eviscaresYeah, did all that and It worked. Now I get an AUTH_[longthingie] back14:27
reidracthat's your storage token, kewl14:28
*** zigo has quit IRC14:29
eviscaresok… when I run the second command from the paste, I get a 50314:29
eviscarescurl -k -I -H "X-Auth-Token: AUTH_tk934dbbea9fca4b46a741ae7b45696364" https://[MyProxiesIP]:8080/v1/AUTH_system/timosfiles/14:30
reidracservice unavailable, that may mean your storage node(s) aren't there14:30
*** zigo has joined #openstack14:30
reidraccheck the proxy server logs, you'll find something there14:31
reidracor may be the proxy server failed to contact the private auth service to validate your token14:31
eviscaresProxyserver logs are in /var/log?14:31
reidracdefinitely, you need to check the proxy logs14:31
reidracswift uses syslog, it depends on your conf... but /var/log/syslog it's a safe bet14:32
eviscaresyeah… the connection times out...14:33
*** vladimir3p has joined #openstack14:33
eviscaressomething is rotten in the state of denmark...14:33
reidracwhen speaking with?14:33
*** daysmen has joined #openstack14:33
reidracthe private auth service or the storage nodes?14:33
eviscareswhen speaking with the container server on the storage nodes14:33
reidracso you got it :)14:34
reidracnow you know what to fix14:34
eviscaresthanks for walking me through this.14:34
reidracyou're welcome14:34
eviscaresCould this be a problem due to an older python version?14:36
reidrachow old? :D14:37
eviscaresUbuntu 10.10 install14:37
reidracdon't know, I guess other services would fail too... not only the container-server14:37
eviscaresRunning it on freshly installed Ubuntu 10.10 VM's14:38
reidracwhat does python --version say?14:38
reidracprobably not the problem, it should be 2.6.something, and that's OK14:38
eviscares2.6.614:38
reidracperfect14:38
*** hggdh_ has quit IRC14:39
reidracthe same we're running on debian squeeze14:39
reidractry to run the container server by hand an see what's the problem14:39
reidracmay be you missed any dependecy14:39
*** hggdh_ has joined #openstack14:40
*** Oneiroi has quit IRC14:42
eviscaresI guess when swift doesn't show up at all in the syslog it could be bad.14:42
*** reed has joined #openstack14:43
*** Oneiroi has joined #openstack14:43
*** Oneiroi has joined #openstack14:43
*** mattray1 has joined #openstack14:44
*** rustam has quit IRC14:44
*** ivoks has joined #openstack14:44
eviscareswait… I rebooted the nodes and now the HEAD works14:44
*** mattray has quit IRC14:44
*** rustam has joined #openstack14:45
*** ameade has joined #openstack14:45
notmynameclayg: abuelo.dfw1.rackspace.corp. 30INA10.7.192.13014:45
ivoksare there any additional docs for D3 or should i just use those for cactus?14:45
reidraceviscares: so you win!14:45
*** rnirmal has joined #openstack14:45
eviscaresyep thanks to you14:45
*** grapex has quit IRC14:47
eviscaresI guess I'll tear down the cluster, and start over. Find out what went wrong this time14:47
*** osier has quit IRC14:47
*** Alowishus has left #openstack14:47
*** mdomsch has quit IRC14:48
annegentleivoks: you can browse at http://docs.openstack.org/trunk for the current (D3) doc14:49
*** code_franco has joined #openstack14:50
*** hub_cap has joined #openstack14:50
*** mattray1 has quit IRC14:50
ivoksannegentle: thanks14:52
eviscaresreidrac: would you be willing to answer some more questions, regarding design decisions and operating procedures of swift?14:53
reidracsure14:53
reidracyou can always ask in the channel, there are some smarts guys here ;)14:54
reidracor send an email to the mailing list for a more elaborated asynchronous question/answer14:54
*** MarkAtwood has left #openstack14:55
eviscaresWhy are names hashed?14:55
reidracs/smart guys/smart people/  (sorry girls)14:55
gnu111my netadmin says vlan tagging is enabled in the switch. how do I make sure packets are going back and forth from my node?14:55
reidraceviscares: names hashed, what do you mean?14:56
eviscaresFrom a failure recovery perspective I would think that it would be easier to hash them for location but then place them under their respective name.14:56
eviscaresreidrac: turned into something cryptic.14:56
notmynamenames are hashed to get good (even) distribution in the cluster14:56
reidraceviscares: speaking of smart people, notmyname knows his stuff14:57
reidrac(and I'm off work in 3 minutes!)14:57
eviscaresThen I'll bug him. Thanks again for the help.14:57
reidraceviscares: you're welcome14:57
*** ccustine has joined #openstack15:00
ivoksannegentle: well, not so current :)15:00
ivokshas anyone experienced an issue where all the services are running, but port 8773 isn't open?15:01
*** reidrac has quit IRC15:04
*** dragondm has joined #openstack15:04
*** guigui has quit IRC15:05
*** gaurav__ has joined #openstack15:08
*** grapex has joined #openstack15:11
*** grapex has left #openstack15:14
*** Ephur has quit IRC15:17
*** caribou has quit IRC15:17
*** alekibango has joined #openstack15:19
*** eviscares has quit IRC15:19
*** Ephur has joined #openstack15:20
*** javiF has joined #openstack15:20
*** nijaba has quit IRC15:24
*** nijaba has joined #openstack15:25
*** michael_ has joined #openstack15:27
*** jsavak has quit IRC15:30
*** infinite-scale has quit IRC15:30
*** joesavak has joined #openstack15:30
*** javiF has quit IRC15:32
*** javiF has joined #openstack15:33
*** dgags has joined #openstack15:34
*** lvaughn has joined #openstack15:34
*** mattray has joined #openstack15:37
*** gaurav__ has quit IRC15:37
*** rods has quit IRC15:37
*** jj0hns0n has joined #openstack15:39
uvirtbotNew bug: #832096 in nova "Instance rebuild fails due to admin_pass AttributeError" [Undecided,In progress] https://launchpad.net/bugs/83209615:41
*** ejat has joined #openstack15:42
*** mrjazzcat has joined #openstack15:44
*** mattray has quit IRC15:46
*** anotherjesse has quit IRC15:46
*** troytoman-away is now known as troytoman15:47
*** galthaus_ has joined #openstack15:48
*** rods has joined #openstack15:49
*** jsavak has joined #openstack15:53
*** obino has quit IRC15:54
*** joesavak has quit IRC15:54
*** amccabe has quit IRC15:58
*** amccabe has joined #openstack15:58
*** lborda has joined #openstack15:59
*** jsavak has quit IRC16:01
*** dendrobates is now known as dendro-afk16:02
*** JoseBravo has joined #openstack16:05
JoseBravoHello16:05
*** adjohn has joined #openstack16:06
undertreeHello, I am trying to figure out why my compute nodes will not assign addresses to the VM's.  I get a NoMoreAddresses error like: http://pastebin.com/C51bZ3J9 but I have not assigned any.  I have a class C available for fixed addresses.  Any ideas on where to look to find the issue?16:06
JoseBravoOpenStack compute uses a SAN/NAS to storage the VM volumes or use the disks of each hardware node?16:07
medberryundertree, I'd look at your database and see what's going on. Did you do a nova-manage create network somewhere along the way?16:08
*** marrusl has joined #openstack16:08
*** galthaus_ has quit IRC16:08
DuncanTJoseBravo: Yes.16:08
*** huslage has quit IRC16:08
DuncanTJoseBravo: It can be set up either way16:08
*** maplebed has joined #openstack16:08
*** maplebed has quit IRC16:09
*** maplebed has joined #openstack16:10
*** mnour has quit IRC16:10
*** ejat- has joined #openstack16:11
JoseBravoDuncanT, thanks16:11
JoseBravoIs OpenStack offering commercial support and training?16:12
*** ejat has quit IRC16:12
*** ejat- is now known as ejat16:12
*** ejat has joined #openstack16:12
DuncanTJoseBravo: No idea on the support front16:13
reedJoseBravo, google found this for training http://www.rackspace.com/cloudbuilders/openstack/training/16:13
reedJoseBravo, and support is also mentioned on http://www.rackspace.com/cloudbuilders/services/16:14
undertreeJoseBravo, nova-manage network list shows http://pastebin.com/e10HYHsp16:14
reedI think there are also other companies that offer both16:14
*** Capashen has quit IRC16:16
*** mattray has joined #openstack16:18
*** dendro-afk is now known as dendrobates16:19
JoseBravoLast question, If I need to deploy a minimal test cloud with OpenStack how many servers I need?16:20
DuncanTJoseBravo: You can run it on as few as one16:20
DuncanTJoseBravo: More realistically, one infrastructure node and a couple of compute hosts might give a more realistic feel for the system16:21
WormManI found seeing the interactions and stuff, 3 is nice(2 compute, 1 for everything else)16:23
JoseBravoinfraestrcuture node is like the "controller" ?16:23
*** stewart has joined #openstack16:24
*** hisaharu has joined #openstack16:24
*** adjohn has quit IRC16:25
*** aliguori has quit IRC16:25
*** nacx has quit IRC16:25
*** Ephur has quit IRC16:26
DuncanTJoseBravo: Yes.16:26
*** Ephur has joined #openstack16:27
*** mszilagyi has joined #openstack16:29
*** zigo has quit IRC16:31
*** alandman has joined #openstack16:31
*** mdomsch has joined #openstack16:32
*** mdomsch_ has joined #openstack16:32
*** mszilagyi_ has joined #openstack16:36
*** mszilagyi has quit IRC16:37
*** mszilagyi_ is now known as mszilagyi16:37
*** sulicny has joined #openstack16:39
*** Eyk^off is now known as Eyk16:41
*** pfibiger` has joined #openstack16:42
*** Alien_Freak has joined #openstack16:42
*** dirkx_ has quit IRC16:42
*** pguth66_ has quit IRC16:42
*** pfibiger has quit IRC16:42
*** Glacee has quit IRC16:42
*** hggdh_ has quit IRC16:42
*** jaypipes has quit IRC16:42
*** csgeek has quit IRC16:42
*** Glacee has joined #openstack16:42
*** jaypipes has joined #openstack16:43
*** romans has quit IRC16:43
*** xzu has quit IRC16:43
*** xzu has joined #openstack16:44
*** mgoldmann has quit IRC16:44
*** romans has joined #openstack16:44
*** pguth66__ has joined #openstack16:45
*** mtaylor has quit IRC16:46
*** mtaylor has joined #openstack16:46
*** mtaylor has quit IRC16:46
*** mtaylor has joined #openstack16:46
*** ChanServ sets mode: +v mtaylor16:46
*** jcapel has quit IRC16:46
*** viraptor has joined #openstack16:47
*** jcapel has joined #openstack16:47
*** Martz has joined #openstack16:48
*** hggdh_ has joined #openstack16:49
undertreemedberry, nova-manage network list shows http://pastebin.com/e10HYHsp as the available networks16:50
*** errr_ has joined #openstack16:50
*** errr has quit IRC16:51
*** cereal_bars has quit IRC16:51
*** cereal_bars has joined #openstack16:51
*** dirkx_ has joined #openstack16:51
*** errr_ has quit IRC16:51
*** errr_ has joined #openstack16:51
*** jeblair has quit IRC16:51
*** errr_ is now known as errr16:51
*** OutBackDingo has quit IRC16:52
*** termie_ has joined #openstack16:52
*** medberry is now known as med_out16:53
*** nhm_ has joined #openstack16:54
*** mattt_ has joined #openstack16:55
*** nati has joined #openstack16:55
*** zedas_ has joined #openstack16:56
*** WormMan has quit IRC16:56
*** johnmark has joined #openstack16:56
*** termie has quit IRC16:56
*** nhm has quit IRC16:56
*** mattt has quit IRC16:56
*** zedas has quit IRC16:56
*** jeblair has joined #openstack16:57
*** WormMan has joined #openstack16:57
*** shentonfreude has quit IRC16:57
*** shentonfreude has joined #openstack16:57
*** ecarlin has joined #openstack16:58
*** npmapn_ has quit IRC16:59
*** Ryan_Lane has joined #openstack17:00
*** npmapn has joined #openstack17:00
*** mdomsch_ has quit IRC17:01
*** mdomsch has quit IRC17:01
*** Alowishus has joined #openstack17:02
*** alperkanat has joined #openstack17:02
*** joesavak has joined #openstack17:02
*** rustam has quit IRC17:04
*** ecarlin has quit IRC17:05
*** ecarlin has joined #openstack17:07
*** yinzen has quit IRC17:11
*** alperkanat has quit IRC17:15
*** stanchan has joined #openstack17:15
*** obino has joined #openstack17:15
*** joearnold has joined #openstack17:17
*** tryggvil__ has joined #openstack17:18
*** Cyns has joined #openstack17:18
*** fabiokung has joined #openstack17:19
*** irahgel has left #openstack17:19
*** mfer is now known as mfer-lunch17:20
*** jj0hns0n_ has joined #openstack17:21
*** dirakx1 has joined #openstack17:22
*** ncode_ has joined #openstack17:23
*** ncode_ has joined #openstack17:23
*** cereal_bars has quit IRC17:24
*** galthaus_ has joined #openstack17:24
*** kjoller_ has joined #openstack17:24
*** jtanner has joined #openstack17:26
*** tryggvil has quit IRC17:26
*** tryggvil__ is now known as tryggvil17:26
*** dirakx has quit IRC17:26
*** ncode has quit IRC17:26
*** ncode_ is now known as ncode17:26
*** jj0hns0n has quit IRC17:27
*** jj0hns0n_ is now known as jj0hns0n17:27
*** kjoller has quit IRC17:27
*** jaypipes has quit IRC17:27
*** msinhore has joined #openstack17:30
*** jaypipes has joined #openstack17:30
*** jaypipes has quit IRC17:31
*** daysmen has quit IRC17:31
*** dgags has quit IRC17:33
*** jaypipes has joined #openstack17:34
uvirtbotNew bug: #832200 in nova "iscsiadm cmd failure" [Undecided,New] https://launchpad.net/bugs/83220017:34
*** csgeek has joined #openstack17:37
*** adjohn has joined #openstack17:39
*** dh has quit IRC17:40
*** dh__ has joined #openstack17:40
*** Alien_Freak has quit IRC17:40
*** mfer-lunch is now known as mfer17:40
*** notmyname has quit IRC17:40
*** notmyname has joined #openstack17:40
*** ChanServ sets mode: +v notmyname17:40
*** cole has joined #openstack17:41
*** kjoller_ has quit IRC17:41
*** kjoller has joined #openstack17:41
*** huslage has joined #openstack17:43
*** chriswong has joined #openstack17:45
chriswongso, where do i download the st utility?17:45
*** joesavak has quit IRC17:46
*** Cyns has quit IRC17:48
*** alekibango has quit IRC17:48
*** rustam has joined #openstack17:49
*** Ryan_Lane has quit IRC17:50
*** Ryan_Lane has joined #openstack17:52
*** bengrue has joined #openstack17:56
*** dendrobates is now known as dendro-afk17:57
*** obino has quit IRC17:58
*** chriswong has quit IRC17:58
*** obino has joined #openstack17:58
*** dendro-afk is now known as dendrobates18:00
*** tjikkun has quit IRC18:01
*** caribou has joined #openstack18:01
*** zedas_ is now known as zedas18:01
*** anotherjesse has joined #openstack18:04
*** dh__ has quit IRC18:04
*** rustam has quit IRC18:06
*** Gmi has joined #openstack18:07
*** dh has joined #openstack18:07
*** jakedahn has joined #openstack18:09
vishychriswong: it was renamed to "swift"18:15
vishysome time ago18:15
*** aliguori has joined #openstack18:16
*** leob has joined #openstack18:16
leobhi does anybody have experience with Dashboard integrated with Keystone i.e. using Keystone for authentication?18:18
*** javiF has quit IRC18:22
*** troytoman is now known as troytoman-away18:23
*** arun_ has quit IRC18:30
*** jsavak has joined #openstack18:30
*** adjohn has quit IRC18:30
*** andy-hk1 has joined #openstack18:31
*** mattray1 has joined #openstack18:31
*** adjohn has joined #openstack18:32
*** adjohn has quit IRC18:32
*** rustam has joined #openstack18:34
*** mattray has quit IRC18:34
*** fabiand__ has joined #openstack18:36
*** rustam has quit IRC18:37
*** progma has joined #openstack18:38
*** Ephur has quit IRC18:43
*** arun_ has joined #openstack18:44
*** leob has quit IRC18:44
*** Ephur has joined #openstack18:44
*** leob has joined #openstack18:45
*** adjohn has joined #openstack18:48
gnu111I associated a public ip to my instance. I can only ping and ssh to it from the nova controller. what did I miss?18:51
uvirtbotNew bug: #832259 in nova "os_api authenticate fails for non-unique access_keys" [Undecided,New] https://launchpad.net/bugs/83225918:51
*** _adjohn has joined #openstack18:52
*** huslage has quit IRC18:52
*** adjohn has quit IRC18:52
*** _adjohn is now known as adjohn18:52
Gmignu111: check the "euca-describe-group" output and make sure you added rules to allow ssh18:56
*** caribou has quit IRC18:58
gnu111Gmi: i have icmp  and port 22 allowed for the project. i am not sure if I have the route setup properly.18:59
Gmignu111: you can ssh to the instance from the nova controller and start a tcpdump while you ssh from the other host, at least you'll know if the traffic from outside reaches your instance19:01
*** dirkx_ has quit IRC19:01
*** ecarlin_ has joined #openstack19:02
*** arun_ has quit IRC19:03
leobanybody here who has experience with Dashboard using Keystone for authorization?19:03
gnu111Gmi: I can't ping outside now. I was able to do that before associating the public ip. tcpdump shows novalocal to the public ip.19:04
*** undertree_ has joined #openstack19:05
*** undertree has quit IRC19:05
*** undertree_ is now known as undertree19:05
*** undertree_ has joined #openstack19:05
*** undertree has quit IRC19:05
*** undertree_ is now known as undertree19:05
*** fabiand__ has left #openstack19:05
*** ecarlin has quit IRC19:06
*** ecarlin_ is now known as ecarlin19:06
gnu111Gmi: I did this. not sure if this was needed " route add -host <public_ip> gw <eth1_Ip>" eth1 is my --public_interface19:06
*** jbryce has joined #openstack19:07
vishygnu111: where are you trying to access it from?19:08
jsavakhi leob - what seems to be the problem?19:10
leobwell i can't login into dashboard even though i'm fairly sure that user/pwd are correct but i'm not sure how to analyze the problem maybe anyone has some useful pointers19:12
leobso in the webserver/dashboard logs i first see auth_api connection created using url "http://localhost:5000/v2.0/"19:13
leobthat is the Nova API endpoint i think so it's not keystone yet, maybe it doesnt even reach keystone19:13
gnu111vishy: I can access it from the controller which runs nova-network. But outside of that machine, i can't access that instance with the public ip.19:13
vishygnu111: is the ip routable on the interface from other machines?19:14
jsavakleob - a couple people had similar problems in the past few days and resolved it by updating nova & keystone from trunk - are you up to date?19:14
leobthen i see a Python stacktrace ending in openstackx/api/connection.py and then the message Unauthorized (HTTP 401), it suppose that's the HTTP response from Nova API19:14
*** tryggvil__ has joined #openstack19:15
leobright well that is very useful info, it's exactly what this forum is so useful for19:15
leobi installed from the bazaar/lp repo a few days ago, should i update only dashboard or everything? i.e. just rerun the install from source19:16
leobright, nova and keystone you said19:16
*** arun_ has joined #openstack19:16
gnu111vishy: probably not, that's the part I am confused about.  10.0.1.0/24 is my nova network. I assigned the public ip to 10.0.1.1719:17
vishywhat is the public ip?19:18
*** tryggvil has quit IRC19:18
*** chrism has joined #openstack19:18
chrismhola19:19
*** andy-hk1 has quit IRC19:19
chrismi've got a bit of a weird one here19:19
gnu111vishy: 149.165.159.17019:19
*** mszilagyi has quit IRC19:20
gnu111vishy: i have two nics, flat_interface=eth0 and public_interface=eth1.19:20
chrismpreviously working configuration, fairly standard, 2 compute nodes, 1 controller node (scheduler/api/network).   This was working fine until a reboot happened on the controller this morning.    Now I can ping the fixed_ip of the instances, but I can't SSH to them from outside of the openstack servers19:20
leobi have a very general question about openstack, it's about current or planned features - are "advanced" features in the planning like dynamically moving VM workloads from one physical host to another or would that be thord party stuff built on top of Openstack19:20
chrismit should be noted that if i'm on either of the compute nodes or the controller node, i can ssh to the instances fixed_ip.    Also if i bind a floating IP tot he instance, I can get to that from outside of the openstack cluster just fine19:22
*** cereal_bars has joined #openstack19:22
vishygnu111: and is that 149. an address that if you gave it to the network host on eth1, it would be routable?19:24
vishyleob: right now it is on top, hopefully that stuff moves down into openstack eventually19:25
vishychrism: how were you getting to them before?19:25
leobokay but the architecture would allow it19:25
gnu111vishy: no, eth1 has a different address.19:26
leobjust curious, i'm still noob at all of this19:26
chrismI could route to them from outside of the cluster.  Our office layout has several vlans, and you can route between the vlans fine.19:26
vishygnu111: hmm but if you added it there19:26
vishyis it routable?19:26
gnu111vishy: ip addr show eth1 shows that public ip address. how do I make it routeable? :D19:27
*** undertree has quit IRC19:27
*** undertree has joined #openstack19:27
*** mdomsch has joined #openstack19:28
vishygnu111: is that an ip you own?19:28
vishyis it assigned to you by your isp, etc?19:28
gnu111vishy: yes.19:28
gnu111vishy: yes. i own it and it's free.19:28
*** Ryan_Lane has quit IRC19:28
*** cereal_bars has quit IRC19:28
vishygnu111: so if this was another box plugged in to your router, you could give it that ip and it would work?19:29
gnu111gnu11: yes correct.19:29
*** cereal_bars has joined #openstack19:29
gnu111vishy: yes, that is correct19:30
vishyhehe19:30
vishyand is that where eth1 is plugged in?19:30
*** cereal_bars has quit IRC19:30
gnu111vishy: currently ip addr show eth1 showing two addresses. one with /24 and one with /32.19:31
*** clauden has joined #openstack19:32
vishyand those are both public ups?19:33
vishyips!19:33
gnu111vishy: yes!19:33
vishyand where are you trying to ping from?19:33
gnu111vishy: from the nova controller it worked. from the compute nodes and any other machine, it didn't19:34
*** undertree_ has joined #openstack19:34
*** undertree has quit IRC19:34
*** undertree_ is now known as undertree19:34
*** undertree_ has joined #openstack19:35
*** undertree has quit IRC19:35
*** undertree_ is now known as undertree19:35
*** cole has quit IRC19:35
*** mszilagyi has joined #openstack19:35
*** undertree has quit IRC19:35
*** undertree has joined #openstack19:36
*** cole has joined #openstack19:36
*** dirakx1 has quit IRC19:37
vishycan you ping the other ip for the controller from other machines?19:37
gnu111vishy: yes, the main eth1 ip is pingable and that is my --public_interface in nova.conf19:38
vishyand you have set up sec groups to authorize ping from anywhere?19:38
gnu111vishy: yes, euca-describe-group shows FROMCIDR0.0.0.0/019:39
*** nelson____ has quit IRC19:39
*** msinhore has quit IRC19:40
vishydo you have ip_forward set?19:40
vishycat /proc/sys/net/ipv4/ip_forward19:40
*** msinhore has joined #openstack19:40
gnu111vishy: /proc/sys/net/ipv4/ip_forward says 119:41
vishysigh, guess you have to start tcpdumping19:41
vishyfind out what happens to the packet19:41
*** nelson____ has joined #openstack19:41
vishy* packets19:41
gnu111vishy: I have this in iptables (under nova-network-PREROUTING) DNAT       all  --  anywhere             149.165.159.170     to:10.0.1.119:42
gnu111and nova-network-OUTPUT DNAT       all  --  anywhere             149.165.159.170     to:10.0.1.1719:42
vishyhmm19:43
vishyis the first one actually 17?19:43
*** undertree_ has joined #openstack19:43
*** undertree has quit IRC19:43
*** undertree_ is now known as undertree19:43
gnu111vishy: yes. sorry. DNAT       all  --  anywhere             149.165.159.170     to:10.0.1.1719:43
vishyif you do it with a -L -n -v, does it show packets hiding that rule?19:43
vishys/hiding/hitting19:44
vishyok this autocorrect is starting to piss me off, time to disable it19:44
gnu111vishy: yes. only 84 byes....19:46
gnu111s/byes/bytes19:46
vishyso start off a ping19:46
*** andyb has joined #openstack19:46
vishyand start tcpdumping for icmp traffic19:46
vishysee where it disappears19:46
gnu111vishy: ping from outside?19:47
vishyyeah19:47
vishytcpdump -i eth1 icmp19:48
vishyverify it makes it onto the bridge19:48
vishyand onto the compute host19:48
vishyetc.19:48
vishykeep dumping interfaces until you see it disappear19:48
*** mdaubs has quit IRC19:49
gnu111vishy: when I ping the eth1 address i see stuff in tcpdump but nothing when I ping the other address.19:49
*** dirkx_ has joined #openstack19:49
*** dirkx_ has quit IRC19:50
*** BK_man has joined #openstack19:50
*** andyb has quit IRC19:50
*** BK_man has quit IRC19:50
*** johnpur has joined #openstack19:50
*** ChanServ sets mode: +v johnpur19:50
vishyaha!19:50
vishyso it sounds like you have an issue in your router config then19:50
gnu111vishy: when I ping from the controller node. it responds to the ping but nothing on the dump.19:50
vishypackets aren't actually getting to the controller on that ip19:51
gnu111ok.19:51
*** Gmi has quit IRC19:51
vishyif you fix that part, the rest should work :)19:51
gnu111vishy: ok. is it using the route add to fix this?19:52
*** marrusl has quit IRC19:52
*** rwsu has joined #openstack19:52
rwsuhi, I have a question on hardware requirements: http://docs.openstack.org/cactus/openstack-compute/admin/content/compute-system-requirements.html19:53
*** andyb has joined #openstack19:53
rwsu2x2TB disks is listed for volume storage, is that the bare minimum, or is there a smaller size one could get by in a dev environment?19:54
annegentlerwsu: absolutely, those are suggestions for deployment19:55
annegentlerwsu: not for a dev enviroment.19:55
vishyrwsu: i test on a dev vm with about 30G disk :)19:55
annegentle"minimum production deployment"19:55
*** susanb has joined #openstack19:56
susanbhi everyone19:56
rwsuI see, what's the size of a vm image?19:57
susanbhave a quick usecase question for swift, can anybody help? TIA19:57
vishyrwsu: depends.  We have a tiny one for testing that is about 25mb19:57
notmynamesusanb: ask away19:57
susanbwe're looking to build a large, distributed video trasncoding solution. Currently the arch is to ship gigantic files back & forth from NAS to transcoders and back again.19:58
susanbarch kinda sucks therefore19:58
*** ecarlin has quit IRC19:59
susanbi was curious whether instead of shipping huge mezzanine quality video to/from, we can instead send a VM containing software to where the data lives19:59
susanbis this something nova/swift can help with or is this a bad application?19:59
*** ecarlin has joined #openstack19:59
notmynamesusanb: a great application, but perhaps not yet. swift and nova don't currently work together to have compute near the storage. several people are working on stuff like this, but it's not done now20:00
notmynamesusanb: but for just the storage, that is a great use case for swift20:00
susanbhmm... ok.20:00
susanbbut what happens when a transcoder attempts to access a media file?20:01
rwsuvishy, annegentle: thanks, that's helpful, trying to size a hardware order20:01
susanbwhatever's local will be local but whatever's remote will be shipped over the LAN?20:01
susanbtransparent to the transcoder?20:01
susanbright now we're severely IO bound from the NAS20:01
notmynamesusanb: right now you'd have to accept the data going over the network between a swift cluster and a nova cluster. a long-term ideal would be to have nova spawn a VM on the same box where the data is living20:02
notmynamesusanb: IO bound by disk or by network?20:02
susanbnetwork20:02
susanbrather... both!20:02
susanbnetwork we can fix I think (RDMA or Infiniband or smth similar)20:03
susanbdisk IO is more difficult20:03
notmynamesusanb: depending on why you are limited, the swift architecture may be able to allow you to have higher throughput in and out of your storage cluster20:03
susanb(or 10G ethernet even)20:03
*** mattrobinson has quit IRC20:03
*** nerdstein has quit IRC20:03
notmynameswift scales horizontally as the cluster grows and is designed to handle many streams at once20:03
susanbbut even the in future, a large file will be spread out throughout the cluster, right?20:04
susanbor does swift have a notion where it "clusters" a given file geograhically closer? pieces closer to each other?20:04
chrismso seeing what vishy was talking abotu earlier, I ran some traces on SSH connections to the instance from my workstation.   I can see the instance respond with the SSH banner, but the responses never make it past the nova-network host20:05
notmynamesusanb: data is spread across the cluster, but each object is stored as one file on disk20:05
chrismany ideas?20:05
susanbwhat if file exceeds the disk space?20:05
notmynamesusanb: the objects are limited* to 5GB (*just a constant in the code). but it's possible to tie many objects together into one logical object20:06
notmynamesusanb: so split your 100GB file into 100 1GB chunks and tie them together into one logical object20:06
susanbwho does the splitting?20:06
susanbswift itself?20:06
notmynamesusanb: the client20:07
notmynamesusanb: (but we provide a smart client that can do it for you)20:07
chrismare there outbound iptables rules that need to be in place for an instance to send a response packet?20:07
notmynamesusanb: more advantages of splitting objects are that you can upload and download the parts concurrently20:08
susanbas long as i dont have to do the splitting myself that's ok i guess20:08
susanbi was thinking of HDFS type setup where HDFS chunks the file by itself20:08
leobsounds like something for hadoop ?20:08
*** galthaus_ has quit IRC20:08
susanbleob: exactly... that's what i'm more familiar with20:08
*** mattray1 has quit IRC20:08
susanbbut will hadoop allow me to send compute to where the data is?20:09
leobthat is the idea of hadoop and hdfs20:09
leobit tries to optimize for data locality20:09
susanbbasically, i'm looking f or a way to avoid footballing 100gb files back & forth20:09
leobfits the bill for you if you ask me20:09
susanbthat's what i'm starting to think also..20:10
leobwell you need to upload your files into hdfs once and download them once processed20:10
susanbsure20:10
leobwhat kind of processing you need to do on the video files?20:11
susanbwe get super HQ quality from studios20:11
susanbProRes 4444  type files20:11
susanband we need to transcode in a large variety20:11
susanbh.264/webm20:11
susanbflash20:11
susanbmobile, etc..20:11
susanbstandard HD for consumers..20:12
leobwell yes it sounds like something for hadoop20:12
susanbok.. thank you everybody VERY MUCH.20:13
leoblarge scale parallellizable massive batch file processing that's really the thing for hadoop20:13
chrismanyone in here knowledgable about nova-network?20:16
*** susanb has quit IRC20:20
* vishy hides.20:21
chrismlol20:21
chrismmind if i bug you for a minute on this routing issue I'm seeing since a reboot this morning of the network controller?20:21
*** mdomsch has quit IRC20:22
vishysure20:22
chrismlong story made super short.    3 servers.   2 compute/volume nodes, 1 network/scheduler/api.  Vlan networking config.  eth1 on all boxes are tied to trunk ports, eth0 are the "public" ips of th emachines.20:23
chrismThis was working fine until a reboot on the controller this morning20:23
vishywhat isn't working anymore20:23
vishycontroller has ip_forward set?20:24
chrismi can ping an instance, and get a response.   When I try to SSH, I can see the packets get to the instance, and the instance reply back with the SSH banner.  The banner makes it to the nova-network controller, but the response packets never make it past there20:24
chrismyes20:24
chrismroot@os-controller:~# cat /proc/sys/net/ipv4/ip_forward20:24
chrism120:24
vishyare you pinging over floating ip?20:24
chrismfixed IP20:24
vishyare you running trunk code?20:24
chrismif I tie a floating IP to it, it's fine20:24
chrismnah, not trunk20:25
chrismwhatever ubuntu ships now under stable20:25
vishyso where are you pinging from?20:25
chrismbut yeah, if I assign a floating IP, I can route to that just fine, ssh into the instance, etc20:25
chrismworkstation here at the office20:25
chrismwe have multiple vlans which can route between eachother20:25
vishyand that machine is using the controller as the gateway for the fixed range?20:26
chrismyes20:26
*** michael_ is now known as michael20:26
chrismwell actually tbh i'm not 100% sure20:26
*** michael is now known as scalability_junk20:27
chrism=\20:27
chrismI believe so, yes.20:27
vishyso it should be ipconntracking the connection on the controller20:28
vishycan you make sure you can ping your workstation from controller20:28
vishymaybe it has no route back20:28
chrismyeah from the controller back is fine20:28
chrismfrom the compute/volume nodes, i can ping/connect back to the workstation fine20:29
vishyon the ip that it is showing the packets coming from?20:29
vishyso probably your traffic is getting snatted to the public ip20:29
chrismI have seen a few odd instances of the public ip fo the controller responding back20:30
vishyand if you have routing rules set up, you don't really want that traffic to be snatted20:30
chrismI should open up the snaplength and see if those are the packets i'm expecting20:30
chrismhrm20:30
vishyso there is a flag to skip snatting to range20:30
chrismoh yeah/20:30
chrismer ?20:30
*** ccustine has quit IRC20:30
vishydmz_cidr20:31
chrismaah gotcha20:31
vishywhich will tell nova-network not to snat packets to that cidr20:31
chrismI'll give that a shot20:31
vishyyou might try that20:31
vishykill nova network flush tables20:31
vishyand restart20:31
chrismk20:32
*** Ephur has quit IRC20:32
*** msinhore1 has joined #openstack20:33
leobjust installed latest Openstack version using "nova.sh branch/nova.sh install" with USE_GIT=0, but still getting django_openstack.auth:Error authenticating Unauthorized (HTTP 401) when trying to log into Dashboard while i'm sure that user/pwd must be right, does anyone have an idea how i could go about analyzing the problem? look in certain logfiles, try to log details of the service request (keystone?) which dashboard is issuing when20:33
*** Ryan_Lane has joined #openstack20:33
*** mszilagyi has quit IRC20:34
*** pfibiger` is now known as pfibiger20:35
*** maplebed has quit IRC20:35
leobjust looking, i might change something in keystone/etc/logging.cnf to get more detailed logging20:36
*** cole has quit IRC20:36
*** jmckenty_ has joined #openstack20:37
*** msinhore has quit IRC20:37
*** msinhore1 has quit IRC20:37
*** aaagirl has joined #openstack20:38
*** msinhore has joined #openstack20:38
*** msinhore has joined #openstack20:39
*** maplebed has joined #openstack20:39
*** aaagirl has quit IRC20:39
Archeronjust a request for opinions: Is crowbar worth looking into further?20:39
jtannerArcheron, if you are a 100% dell hardware shop, yes20:43
jtannerand 100% ubuntu20:43
chrismvishy: that did it!   For what it's worth, i have zero idea how this was working before the reboot this morning20:44
chrism=P20:44
chrismI've never seen taht dmz_cidr option before20:44
chrismlol20:44
chrismbut thank you very much. :)20:44
vishyhehe20:44
vishyyw20:44
*** ameade has quit IRC20:45
*** blamar_ has quit IRC20:46
*** jsavak has quit IRC20:47
*** termie_ is now known as termie20:51
*** termie has joined #openstack20:51
*** mies has quit IRC20:52
*** mies has joined #openstack20:53
andybHi, need help solving installation problem. See http://paste.openstack.org/show/2261/20:54
*** tylesmit has joined #openstack20:55
*** aliguori has quit IRC20:55
Archeronjtanner, 100% dell... just dell or do I need to be 100% C-series gear as well?20:55
*** liemmn has joined #openstack20:58
jtannerArcheron, dunno20:59
*** daysmen has joined #openstack21:00
chrismso vishy, that works for about 1 minute and then my connection to the instance locks up. =\21:01
chrismlol21:01
vishyorly?21:01
vishyssh?21:01
chrismyeah21:01
*** alandman has quit IRC21:01
vishydo you have mega amounts of traffic?21:01
chrismshould I disperse that dmz option to the nova.conf on the compute nodes as well?21:01
chrismnah21:01
chrismnot at all right now21:01
vishyyou might need to update nfconntrack limit21:01
vishychrism: computes shouldn't need it21:01
chrismk, it's the default 65k value now21:02
chrismhr but net.netfilter.nf_conntrack_count is only at 12421:03
*** mdomsch has joined #openstack21:03
vishychrism: nasty, not sure why it would be blowing up21:04
chrismyeah tbh i'm kind of lost here right now21:04
chrismthis has been fine for like a week until this reboot21:05
chrismlol21:05
chrismmind if I do the generic pasting of configs/iptables rules/routes and see if you can spot something that maybe I'm missing?21:06
*** msinhore1 has joined #openstack21:06
*** lts has quit IRC21:07
*** ejat has quit IRC21:08
reedchrism, you can use http://paste.openstack.org/21:08
*** aliguori has joined #openstack21:08
chrismsure thing21:08
*** msinhore has quit IRC21:09
*** asomya has joined #openstack21:09
*** ABLomas has quit IRC21:10
*** gnu111 has left #openstack21:10
*** jsavak has joined #openstack21:10
*** jakedahn has quit IRC21:10
*** ABLomas has joined #openstack21:11
*** jakedahn has joined #openstack21:11
*** daysmen has quit IRC21:11
chrismvishy: http://paste.openstack.org/show/2263/21:11
chrismor whoever wants to take a stab at it21:11
chrism=P21:11
*** jsavak has quit IRC21:12
*** daysmen has joined #openstack21:13
*** hub_cap has quit IRC21:14
*** msinhore has joined #openstack21:15
*** msinhore1 has quit IRC21:15
*** troytoman-away is now known as troytoman21:15
*** JoeJulian has joined #openstack21:17
*** dendrobates is now known as dendro-afk21:17
JoeJulianI'm following the "3.5. Installing OpenStack Compute on Red Hat Enterprise Linux 6" guide for the first time. I'm going to follow the directions for this first test verbatim but I presume this data can be stored in other data stores instead, right?21:22
*** jakedahn_ has joined #openstack21:23
*** msivanes has quit IRC21:24
*** daysmen has quit IRC21:24
*** jakedahn has quit IRC21:25
*** jakedahn_ is now known as jakedahn21:25
uvirtbotNew bug: #832369 in nova "glance/keystone integration" [Undecided,New] https://launchpad.net/bugs/83236921:26
*** liemmn has quit IRC21:26
*** ejat has joined #openstack21:27
*** daysmen has joined #openstack21:31
*** bcwaldon has quit IRC21:32
*** clauden has quit IRC21:39
*** cereal_bars has joined #openstack21:39
*** jmckenty_ has quit IRC21:40
*** johnpur has quit IRC21:40
*** Ryan_Lane has quit IRC21:45
*** jsavak has joined #openstack21:45
*** Ryan_Lane1 has joined #openstack21:45
*** gohko_nao has joined #openstack21:46
*** dirkx__ has joined #openstack21:47
*** amccabe has quit IRC21:47
*** imsplitbit has quit IRC21:47
*** gohko_na_ has joined #openstack21:48
*** buzzzard has joined #openstack21:49
*** Ryan_Lane1 is now known as Ryan_Lane21:51
*** gohko_nao has quit IRC21:51
*** Ryan_Lane has quit IRC21:51
*** Ryan_Lane has joined #openstack21:51
*** buzzzard has quit IRC21:52
*** buzzzard has joined #openstack21:54
*** AhmedSoliman has joined #openstack21:55
*** comstud_ is now known as comstud21:55
*** jbryce has quit IRC21:56
*** aliguori has quit IRC21:58
*** dirkx__ has quit IRC22:02
*** tylesmit has quit IRC22:02
bszaCan anyone one tell me the swift superadmin account:user under swauth?  tnx22:05
*** mfer has quit IRC22:06
*** jsavak has quit IRC22:08
*** leob has left #openstack22:09
*** msinhore has quit IRC22:16
*** tryggvil has joined #openstack22:17
*** clauden_ has joined #openstack22:18
*** ldleworker has quit IRC22:19
*** gohko_na_ has quit IRC22:21
*** npmapn has quit IRC22:22
*** mfer has joined #openstack22:22
*** andyb has left #openstack22:23
*** code_franco has quit IRC22:28
*** chrism has quit IRC22:29
*** bsza has quit IRC22:32
*** rustam has joined #openstack22:33
*** msinhore has joined #openstack22:35
*** ejat has quit IRC22:35
*** ejat has joined #openstack22:38
*** ejat has joined #openstack22:38
*** ejat has quit IRC22:38
*** tcampbell has joined #openstack22:40
*** scalability_junk has quit IRC22:41
*** scalability_junk has joined #openstack22:42
*** msinhore has quit IRC22:42
*** hisaharu has quit IRC22:42
*** mies has quit IRC22:45
*** miclorb_ has joined #openstack22:50
*** asomya has quit IRC22:50
*** jfluhmann has quit IRC22:52
*** hisaharu has joined #openstack22:52
*** jobicoppola has joined #openstack22:53
*** freeflying has quit IRC22:54
*** mfer has quit IRC22:57
*** markvoelker has quit IRC22:57
*** jj0hns0n has quit IRC22:58
*** jj0hns0n has joined #openstack22:58
*** carlp has joined #openstack23:01
*** OutBackDingo has joined #openstack23:04
*** PeteDaGuru has left #openstack23:05
*** AhmedSoliman has quit IRC23:05
*** freeflying has joined #openstack23:06
*** fcarsten has joined #openstack23:09
*** jeffjapan has joined #openstack23:11
fcarstenTrying to install Swift 1.4.3 by following http://swift.openstack.org/howto_installmultinode.html . End up with 1.2 being installed :-(. What am I doing wrong?23:11
*** Ryan_Lane has quit IRC23:17
*** daysmen has quit IRC23:18
*** maplebed has quit IRC23:19
*** Ryan_Lane has joined #openstack23:20
JoseBravoHello23:22
*** jbryce has joined #openstack23:23
*** jbryce has quit IRC23:23
JoseBravoI just installed the OpenStack and created an instance, I assgined one IP but I can't ping or ssh it. How can I check what is wrong with it?23:23
JoseBravoI also tried to ping from the controller and it's not respondig..23:23
*** cereal_bars has quit IRC23:24
*** joearnold has quit IRC23:25
*** maplebed has joined #openstack23:26
kpepple_JoseBravo: a few ideas ...23:26
*** maplebed has quit IRC23:26
*** maplebed has joined #openstack23:27
*** joearnold has joined #openstack23:27
kpepple_JoseBravo: look in your /var/log/nova/nova-compute.log and make sure it actually booted23:27
kpepple_JoseBravo: make sure you opened up the correct security group settings if you launched it with euca-tools23:27
*** maplebed has quit IRC23:28
kpepple_JoseBravo: make sure you set up networking with nova-manage23:28
*** jj0hns0n has quit IRC23:28
*** jj0hns0n has joined #openstack23:28
*** rnirmal has quit IRC23:29
JoseBravokpepple_, in the log file it appears to start ok, and with euca-describe-instances it show is running23:29
*** maplebed has joined #openstack23:29
JoseBravokpepple_, I lanched with euca-tools but I gave SSH and ICMP to the group "default"23:30
*** mfer has joined #openstack23:31
*** undertree has quit IRC23:31
*** huslage has joined #openstack23:31
*** tryggvil has quit IRC23:31
*** ncode has quit IRC23:32
*** jj0hns0n has quit IRC23:33
*** mfer has quit IRC23:34
kpepple_JoseBravo: does it have a public, routable IP address ?23:36
*** dendro-afk is now known as dendrobates23:39
JoseBravokpepple_, yes23:41
*** martine has quit IRC23:42
*** Cyns has joined #openstack23:45
kpepple_JoseBravo: hmmmm ... what do you get with a euca-get-console ?23:50
*** ejat has joined #openstack23:51
*** ecarlin has quit IRC23:54
*** huslage has quit IRC23:55
*** huslage has joined #openstack23:57
*** worstadmin has joined #openstack23:57
*** Eyk is now known as Eyk^off23:57
*** worstadmin has quit IRC23:59
JoseBravowget: cant't connect to remote host 169.254.169.254 Network is unreachable23:59
JoseBravokpepple_,  it's the error I'm getting23:59
« Monday, 2011-08-22 Index Wednesday, 2011-08-24 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!