Monday, 2011-11-21

Kiall	That should have the fix I was suspecting included.. can you pastebin this file from the compute node? /usr/share/pyshared/nova/virt/libvirt/connection.py	00:00
Kiall	(the "pastebinit" command/package is handy for that kinda stuff .. ;))	00:01
zykes-	what's the discussion now on RAX stuf ?	00:01
*** rsampaio has quit IRC		00:02
*** agoddard has joined #openstack		00:04
*** rsampaio has joined #openstack		00:05
stevegjacobs	Kiall http://paste.openstack.org/show/3448/	00:06
*** po has quit IRC		00:06
Kiall	Yea, That has the fix I'm thinking of alright	00:07
Kiall	And you say nova-compute.log has no errors?	00:09
stevegjacobs	not on controller - checking compute node now	00:11
JesperA	http://docs.openstack.org/diablo/openstack-object-storage/admin/content/preparing-the-ring.html <--- What is the point of that many partitions per drive?	00:13
stevegjacobs	only thing in either nova-compute.log after running the snapshot command from dashboard is this every two minutes:2011-11-21 00:11:54,868 INFO nova.compute.manager [-] Updating host status	00:13
Kiall	you should see this straight away: "2011-11-21 00:16:11,323 AUDIT nova.compute.manager [bla bla admin 1] instance 1101: snapshotting"	00:17
Kiall	I don't think there is anything that should prevent that from showing, since the "hard part" of the snapshot happens after that.	00:17
stevegjacobs	This is the command I am running to initiate snapshot from the command line	00:18
stevegjacobs	nova image-create 5 KORE	00:18
stevegjacobs	The server has either erred or is incapable of performing the requested operation. (HTTP 500)	00:18
Kiall	can you try with --debug and pastebin the output?	00:19
vidd	Kiall, so you say that the issue im having has to be with keystone talking with nova and glance	00:22
stevegjacobs	kiall http://paste.openstack.org/show/3449/	00:23
Kiall	vidd: it sounds that way anyway...	00:25
Kiall	stevegjacobs: it looks like its nova-api that is failing.. strange.. anything in nova-api.log on the controller?	00:28
Kiall	what kind of image are you snapshotting? is it the standard ubuntu image?	00:29
*** hugokuo has joined #openstack		00:31
*** rustam has quit IRC		00:33
*** rustam has joined #openstack		00:34
*** dubenstein has joined #openstack		00:34
dubenstein	hi #openstack	00:34
dubenstein	is it possible to integrate keystone with nova 2012.1-dev	00:35
dubenstein	the syntax of api-paste.ini changed a bit	00:36
vidd	dubenstein, it should already be integrated with next year's essex	00:36
dubenstein	MetadataRequestHandler refactored	00:36
*** RicardoSSP has quit IRC		00:36
dubenstein	so the old api-paste.ini doesn't work	00:36
dubenstein	vidd: so it's not an option for now ?	00:37
vidd	dubenstein, you asked about next years release	00:37
dubenstein	nova-manage version says 2012.1-dev	00:38
vidd	2012=next year	00:38
dubenstein	vidd: suggest me a version to flawlessly integrate keystone, glance, nova	00:38
*** rsampaio has quit IRC		00:38
vidd	you are working with the experimental essex release	00:38
vidd	"flawless" hehe	00:39
dubenstein	vidd: «flawless» ;)	00:39
* vidd is trying to aquire that "flawless" exprience		00:40
Kiall	vidd: still having issues with KS+Dash?	00:40
vidd	Kiall, yes	00:40
vidd	i can find no issues anywhere	00:41
Kiall	Okay - Lets take dashboard out of the picture	00:41
vidd	(except that horizon still cant see nova)	00:41
Kiall	remember my obtain_token.sh script?	00:41
vidd	yes	00:41
Kiall	after RAW_TOKEN=bla	00:41
Kiall	add 2x lines:	00:41
Kiall	echo $RAW_TOKEN	00:41
Kiall	exit	00:41
Kiall	then.. ./obtain-token.sh \| json_xs	00:42
vidd	obtain token gives me the auth token	00:42
Kiall	sure, but the RAW_TOKEN field has lots of lovely JSON in it, including the serviceCatalog that dashboard makes use of	00:43
*** rsampaio has joined #openstack		00:44
vidd	The program 'json_xs' is currently not installed.	00:45
Kiall	heh ..	00:46
vidd	is this supposed to be installed already by something?	00:46
Kiall	whatever, it just pretty prints the JSON	00:46
stevegjacobs	Kiall: Here is a paste from nova-api.log after trying to create a snapashot of a small instance: http://paste.openstack.org/show/3451/	00:46
Kiall	http://jsonformatter.curiousconcept.com/	00:46
Kiall	as good..	00:46
Kiall	stevegjacobs: let me compare that to my logs, maybe there is a difference in one of the entries leading up to the error	00:47
*** krow has joined #openstack		00:49
Kiall	stevegjacobs: okay, so it looks like glance is the issue...	00:49
vidd	Kiall, http://paste.ubuntu.com/744858/	00:49
vidd	./obtain-token.sh \| json_xs \| pastebinit FTW	00:50
stevegjacobs	not surprised - the instances I've been using are the ones from before the time I used your scripts to upgrade the system	00:50
Kiall	vidd: http://paste.openstack.org/show/3452/	00:50
Kiall	stevegjacobs: humm	00:50
Kiall	maybe that is related	00:50
*** kaz_ has quit IRC		00:51
Kiall	stevegjacobs: can you wget http://cloud-images.ubuntu.com/oneiric/current/oneiric-server-cloudimg-amd64-disk1.img ?	00:51
vidd	wtf	00:51
stevegjacobs	they launch ok and I've continued to use them	00:51
Kiall	vidd: also.. it still says RegionOne	00:51
stevegjacobs	I think that is the one I've always used	00:51
Kiall	stevegjacobs: Yea, but maybe something is still odd...	00:51
vidd	yeah....so does my nova-config	00:52
Kiall	stevegjacobs: probably not, most people used the .tar.gz version (which is the "best" version to use, as you cant update it kernel.. ever..)	00:52
Kiall	which is NOT the best*	00:52
Kiall	vidd: ah okay ..	00:52
dubenstein	reverted to diablo3, euca-tools do work, but when I try to run an instance it stays pending, i found "ImageNotFound: Image 10 could not be found." in logs	00:52
Kiall	stevegjacobs: anyway, check the glance logs to see if there is an issue there?	00:53
vidd	so something is messed up with my keystone_template	00:53
dubenstein	helo would be appreciated :)	00:53
dubenstein	*help	00:54
Kiall	vidd: can you pastebin that tables contents? Something is wrong in there	00:54
stevegjacobs	I just wget that image - what did you want - what did you want me to do with it?	00:54
vidd	dubenstein, i cant answer you because i have yet to get keystone to behave properly myself	00:54
Kiall	stevegjacobs: upload it now that you are using keystone, and try to snapshot...	00:54
*** tokuzfunpi has quit IRC		00:55
vidd	Kiall, http://dpaste.com/659538/	00:55
dubenstein	vidd: novaclient works, euca-tolls works, is it keystone issue ?	00:55
dubenstein	vidd: i think it's something on nova-compute side	00:56
pvo	Kiall: actually, none of the slicehost code is openstack, though a lot of the lessons we learned are in there.	00:56
vidd	dubenstein, for your issue or my issue?	00:56
Kiall	stevegjacobs: save this as "obtain-token.sh" http://paste.openstack.org/show/3454/	00:56
pvo	Kiall: referencing previous questions....	00:56
Kiall	stevegjacobs: then this as whatever you want.. http://paste.openstack.org/show/3455/	00:57
Kiall	chmod +x the 2, and run the second in the same folder as the .img.. it will upload the image	00:57
dubenstein	vidd: for mine	00:58
vidd	dubenstein, if i ever get my keystone to work, then perhaps i can help you	00:58
dubenstein	vidd: i'll try, tell me more	00:59
* Kiall has maintenance schedule to keep..		00:59
vidd	but you are using experimental version (aka not guarentied to work)	00:59
Kiall	but vidd, those look wrong	00:59
*** koolhead17 has joined #openstack		00:59
dubenstein	vidd: i have keystone, glance, nova working now, but heave some (i think) permission issues with libvirt	01:00
Kiall	vidd: http://paste.openstack.org/show/3456/	01:00
koolhead17	hi all	01:00
Kiall	specifically, there are 2 rows with %tenant_id% and all 3 have is_global=1	01:00
Kiall	vidd: oh and.. the URLs are completely different ;)	01:01
vidd	ok...thank Kiall i will investigate this further.....	01:01
vidd	have to take the boy back to his mother's so be back in a bit	01:02
agoddard	reading the docs, it seems like nova-volume creates an iSCSI target for the compute nodes to use, wondering how this works if you have an iSCSI SAN instead?	01:03
stevegjacobs	umm -I seem to have glance / keystone problems - can't upload image even though I am sourcing my settings file.	01:05
stevegjacobs	glance add name="ubuntu_11_10_64bit" is_public=true < oneiric-server-cloudimg-amd64-disk1.img	01:05
stevegjacobs	Failed to add image. Got error:	01:05
stevegjacobs	401 Unauthorized	01:05
stevegjacobs	This server could not verify that you are authorized to access the document you requested. Either you supplied the wrong credentials (e.g., bad password), or your browser does not understand how to supply the credentials required.	01:05
stevegjacobs	Authentication required	01:05
stevegjacobs	Note: Your image metadata may still be in the registry, but the image's status will likely be 'killed'.	01:05
*** livemoon has joined #openstack		01:06
livemoon	morning	01:07
*** kaz_ has joined #openstack		01:08
Kiall	stevegjacobs: the glance command doesnt make use of the env settings.. did you use the 2x scripts i pastebin'd? They are slightly modified from my openstack-setup scripts and handle manually getting a token from keystone etc	01:09
Kiall	stevegjacobs: http://paste.openstack.org/show/3454/ as "obtain-token.sh" and http://paste.openstack.org/show/3455/ as whatever you want..	01:10
Kiall	(edit the settings in the first)	01:10
Kiall	stevegjacobs: be back in a few mins, upgrading firmware on our cisco FW's, so my VPN is going to flake out!	01:15
*** lvaughn_ has quit IRC		01:16
*** Kiall has quit IRC		01:17
*** Kiall has joined #openstack		01:17
*** lvaughn has joined #openstack		01:17
stevegjacobs	Kiall; nice script but there is an error somewhere http://paste.openstack.org/show/3457/	01:20
Kiall	stevegjacobs: looks like keystone is giving an error rather than a token back...	01:21
Kiall	(There is exactly 0 error handling ;))	01:21
*** JesperA has quit IRC		01:22
Kiall	grab the one nova uses from the keystone api-paste and use that..	01:22
Kiall	it should be admin-token = something in that .ini	01:22
Kiall	just drop it in where the TOKEN=`./obtain-token.sh`line is	01:23
Kiall	brb again, secondary FW about to kick me off again ;)	01:23
*** Kiall has quit IRC		01:24
*** lvaughn has quit IRC		01:25
*** JesperA has joined #openstack		01:25
stevegjacobs	I think I need to quit for the night - I need a snapshots of an already running instances	01:25
*** Kiall has joined #openstack		01:26
*** lvaughn has joined #openstack		01:30
*** rsampaio has quit IRC		01:31
*** ejat has joined #openstack		01:32
*** ejat has joined #openstack		01:32
*** troya has joined #openstack		01:34
troya	hi all	01:34
*** rods has quit IRC		01:38
*** obino has joined #openstack		01:39
smoser	Kiall, i'm here now if you had questions about loader kernel	01:41
Kiall	smoser: yup :) still around in 5? Just finishing up a round of patches	01:42
smoser	sure	01:42
Kiall	cool - thanks	01:42
troya	hi KiAll	01:45
Kiall	smoser: back..	01:46
smoser	k	01:46
Kiall	There is an issue with OpenStack (probably UEC as well) re updating kernels that, if i remember right, you suggested the fix as to use your loader rather than the stock kernel..	01:47
troya	kiAll, i have question about bridge on nova, must i configure bridge on single server installation ? how if not ?	01:47
Kiall	So... I had 2 questions they are in a folder in "lucid-loaders", does that mean they are only for luicd? or just badly named?	01:48
smoser	badly named :)	01:48
smoser	thanks for pointing that out.	01:48
smoser	the kernel that is used is a lucid kernel.	01:48
Kiall	And secondly, How does this kernel allow the instance to use a kernel from inside the image? (I'm just trying to get an understand of what i'm doing, noy how to do it! If you get me..)	01:49
Kiall	understanding*	01:49
smoser	yes, it does.	01:49
smoser	so there is a kernel and a ramdisk there.	01:50
Kiall	troya: that depends, the Flat and FlatDHCP managers need a bridge.. VLAN creates the bridge by itself.	01:50
smoser	you do not want the ramdisk with '-sdb' on it, that is really there for loading a root kernel/filesystem on /dev/sdb.	01:50
*** stevegjacobs has quit IRC		01:51
Kiall	I was wondering what that one was for :)	01:51
smoser	basically that thing allows you to do something like EBS root via manually starting an instance, attaching a volume with a root FS on it.	01:51
troya	kiAll: i use FlatDHCP on my single server	01:51
smoser	the -sdb one waits 5 minutes for a /dev/sdb to show up, and then will boot off it.	01:51
smoser	for th eon-sdb one.	01:51
Kiall	troya: then yes, nova requires you to create the bridge..	01:52
troya	kiAll: but i have problem when running instances, every instances which i run not running well, they only stop on BUILD state	01:52
smoser	kernel boots, ramdisk loads, ramdisk that is provided finds a root filesystem, reads /boot/grub/menu.lst (with awk, so not perfectly), loads the kernel and ramdisk specified there with kexec, and off you go.	01:52
Kiall	smoser: ah okay, so it basically pivots the kernel out with one from the disk?	01:53
*** pradeep1 has joined #openstack		01:53
smoser	well, not pivot, kexec	01:53
smoser	so 2 kernels actually boot in this process	01:53
smoser	but in order to use a kernel from the inside the image, thats kind of necessary.	01:53
vidd	Kiall, thanks for the help...that was the issue =]	01:54
Kiall	I'm not familiar with kexec.. will have to google it in a few! So, does having 2 kernels around have any side affects or performance consequences?	01:54
smoser	for ubuntu images prior to 11.04, you should use this mechanism to boot.	01:54
smoser	there are not 2 kernels "around"	01:55
vidd	horizon now sees nova and glance -]	01:55
smoser	the second completely replaces the first. the first just acks as a bootloader really.	01:55
Kiall	Okay - I'll read up on how kexec works rather than annoy you with more questions :) The	01:55
smoser	the first takes in my experience ~ 5 seconds to boot and load the next kernel, so you have that cost	01:55
Kiall	vidd: and does it actually work? ;)	01:55
vidd	Kiall, give me a bit to test =]	01:56
*** ldlework has quit IRC		01:56
vidd	i need to add an image now =]	01:56
Kiall	smoser: thanks, I think I get it now.. I always hate using something I don't understand! Otherwise, it breaks and I have no clue what is going on :)	01:56
smoser	Kiall, on eucalyptus in 10.10 i added a similar work around that uses grub and a floppy disk.	01:57
vidd	Kiall, so then you know how i feel about not "just use your scripts and move on" =]	01:57
smoser	had i thought of this solution then, i would have used it.	01:57
Kiall	smoser: BTW.. Semi-related, should a note about A) using a loader and B) using the .img versions for 11.04+ not be added to cloud-images.ubuntu.com? (You're involved directly with ubuntu right?)	01:58
Kiall	I've noticed the vast majority of people grab the .tar.gz version and probably don't realize its not optimal...	01:58
*** rustam has quit IRC		01:58
smoser	Kiall, yeah, there should be somethign somehwer that should get you this information :)	01:59
smoser	and you're right about the .tar.gz	01:59
smoser	largley that is just because old documentation was written prior to there being a .tar.gz	01:59
smoser	er... prior to .img in qcow format	01:59
Kiall	Fair enough .. Actually, 1 last question, is there ever really a need update the loader image?	02:01
smoser	Kiall, in 12.04 there is a tool called 'cloud-publish-ubuntu' (which you could easily pull back to other releases) that just does what it should do	02:01
*** mrjazzcat has joined #openstack		02:01
smoser	http://paste.ubuntu.com/744886/	02:01
Kiall	ah nice :)	02:02
smoser	you still have to know to pass '--disk', but hopefully before 12.04 i can make that all "just work". the difficulty is then i have ot know osmething about your target cloud (eucalyptus wont support the .img file, neither will ec2)	02:02
Kiall	Yea.. Thats probably going to be awkward :) I guess you can sniff env var's like NOVA_URL! Bit of a hack though	02:04
smoser	right.	02:04
vidd	Kiall, why did you switch from raw to qcow2?	02:04
*** ejat has quit IRC		02:04
smoser	the other thing for 12.04 time frame is that we're hoping we can get	02:05
Kiall	vidd: read myself and smoser's conversation ;) Its related.	02:05
smoser	a.) in ubuntu packages, some subset of ubuntu images automatically imported into your cloud (which could be disabled)	02:05
smoser	b.) in ubuntu packages awareness of an ubuntu public glance server that would then just show up in your dashboard on installation.	02:05
smoser	ie, click a button, get our images.	02:05
vidd	Kiall, im trying...but it feels like im watching a series finally and never saw any of the previous 5 seasons =]	02:06
*** stevegjacobs has joined #openstack		02:06
Kiall	smoser: B sounds interesting, I wonder if it would be "as simple" as adding an additional glance endpoint to keystone..	02:07
*** winston-d has joined #openstack		02:07
*** ejat has joined #openstack		02:07
*** ejat has joined #openstack		02:07
smoser	thats the general direction we're hoping for. at least at the initial point of conversation the dashboard would need to have support for multiple glance endpoints.	02:08
smoser	but i really have'nt looked at this at all.	02:08
vidd	Kiall, smoser we could "create" a "ubuntu endpoint" and a	02:09
vidd	meathod for dasboard to pull from there and put to local galnce	02:09
Kiall	Yea, I know it can take multiple endpoints from keystone, but I dont know if it simply picks one or if it merges list the images	02:09
Kiall	Either way, It would be interesting to see support for that, you could see all sorts 3rd party image servers popping up.. eg 10gen with a mongo DB image server etc	02:10
*** chomping has quit IRC		02:11
smoser	i've not really looked at all at it, so i'm not qualified for a conversation at the moment. i talked to jay pipes and he is interested in helping us get there.	02:11
Kiall	I guess the harder part of all this, as always, is political ... Managing the trust..	02:11
smoser	yeah.	02:11
smoser	well, you'll have the ability to verify gpg signatures	02:12
smoser	(per jay)	02:12
smoser	that was a request/requirement	02:12
smoser	on ubuntu, you have our signing keys, or at least we have a safe way to get them to you.	02:12
smoser	s/signing keys/public keys/	02:12
smoser	(hopefully you dont have our signing keys)	02:12
vidd	smoser, im sure you are aware of Kiall 's PPA's...any chance they can get reviewed for inclusion into 11.10's official repos?	02:12
vidd	since stock keystone and dash ont work?	02:12
smoser	then you can trust the source, but figuring out what the right source is for something is a different story altogether	02:12
smoser	and one that amazon has really not made an effort at	02:13
*** mrjazzcat has left #openstack		02:13
smoser	i dont' know about Kiall	02:13
smoser	killall's ppas	02:13
Kiall	lol	02:13
smoser	but if there are specific issues that can be addressed, we can/should get them addressed.	02:13
smoser	i think maybe i made an arse of myself earlier with similar discussion	02:13
Kiall	my PPA packages are basically just updated versions of everything, not so much packaging errors.	02:13
*** rsampaio has joined #openstack		02:14
smoser	we can get things fixed in ubuntu	02:14
smoser	but the fixes to stable releases are bound to SRU guidelines	02:14
smoser	https://wiki.ubuntu.com/StableReleaseUpdates	02:14
smoser	so they need to have bugs, and cleanly defined changes.	02:14
vidd	i think the issue is that diablo was released too close to the ubuntu freeze so patches didnt make it into the official repos	02:15
hugokuo	bonjour	02:15
vidd	and i fear the same thing is going to happen in 12.04	02:15
Kiall	smoser: well .. the 2x biggest issues are keystone is a pre-release 2011.3 tag version, and dashboard has a few bugs in its python inclute paths	02:16
smoser	zul is really the person to be talking to about this stuff.	02:16
smoser	vidd, well, the story is that essex "freeze" is supposed to be much better advertised and a much more real "freeze"	02:17
smoser	so that the essex release should actually work	02:17
smoser	then there is time for ubuntu to get that into 12.04	02:18
vidd	12.04 ubuntu is a LTS so its important to get this right this time =]	02:19
Kiall	Yea - I'll be glad to see a full working set in stock ubuntu repos :) At the moment, only nova+glance+swift(I assume) work.. dashboard/keystone are broke	02:19
Kiall	(never used swift myself..)	02:19
smoser	clearly that is our goal also.	02:20
Kiall	smoser: BTW you might know this.. you know that "try ubuntu" in a browser thing, is that backed by EUC/OS instances or something?	02:20
smoser	but we depend on a functional essex releease :)	02:20
vidd	smoser, is that a "recommds" or a "requires" =]	02:21
smoser	i think that one is Depends.	02:21
smoser	Kiall, https://try.cloud.ubuntu.com/ runs instances on EC2.	02:21
*** jog0 has joined #openstack		02:22
smoser	http://www.ubuntu.com/ubuntu/take-the-tour is just html mockup	02:22
smoser	(i'm probably terribly over-simplifying someone's work on 'take-the-tour', but the point is its not a real live thing)	02:22
Kiall	Humm, I was sure there was a Ubuntu Desktop version of https://try.cloud.ubuntu.com/ ..	02:23
Kiall	and that take-the-tour is actually pretty impressive for HTML+CSS+JS ;)	02:24
*** jkyle has joined #openstack		02:26
* Kiall will be even more impressed the the thunderbird mockup actually sends me the email I just did ;)		02:27
Kiall	if the*	02:27
*** pradeep1 has quit IRC		02:28
*** troya has quit IRC		02:32
*** troya has joined #openstack		02:38
*** rsampaio has quit IRC		02:39
vidd	in the "use data" field in dash, can you put ese/password info?	02:46
vidd	*user	02:46
Kiall	kinda..	02:48
Kiall	whatever you put there is accessible via the http://169.254.169.254/something/something address	02:49
Kiall	If you are using ubuntu images, they come with cloud-init which has some decent stuff for parsing the data..	02:49
vidd	Kiall, i must have missed something with this vnc thing	02:50
Kiall	oh?	02:50
*** hugokuo has quit IRC		02:51
vidd	i clicked the link for VNC console, and instead of getting the never-loading-page as normal, i immediately get a fail page referencing trying to access "127.0.0.1	02:51
vidd	the port is correct, but the ip is not	02:51
Kiall	--ajax_console_proxy_url=http://78.153.XXX.XXX:8000	02:51
vidd	where do i set that?	02:51
*** rnorwood has joined #openstack		02:51
Kiall	that should be the nova-vncproxy node	02:52
Kiall	s/be/point to/	02:52
*** jog0 has quit IRC		02:52
Kiall	BTW, this is the kind of thing you can do with cloud-init.. http://bazaar.launchpad.net/~cloud-init-dev/cloud-init/trunk/view/head:/doc/examples/cloud-config.txt	02:52
Kiall	if the data starts with #cloud-config , it gets handed off to a tool which does a pile of work..	02:53
Kiall	or if its starts with #!/bin/bash .. it gets ran.. etc etc etc	02:53
*** dendrobates is now known as dendro-afk		02:53
Kiall	https://help.ubuntu.com/community/CloudInit	02:53
*** chomping has joined #openstack		02:54
vidd	Kiall, eveything is running on one machine so the ip is correct in the nova.conf flag	02:56
Kiall	what is it set to in nova.conf	02:56
Kiall	?	02:57
vidd	--ajax_console_proxy_url=http://192.168.xxx.xxx/:8000	02:57
Kiall	yea.. thats not a valid URL	02:57
vidd	i missed the "/"	02:58
Kiall	misplace the / ;)	02:58
Kiall	misplaced*	02:58
*** osier has joined #openstack		02:58
vidd	im going blind looking at all these things =]	02:58
vidd	i dont know what is scarier...these simple mistakes or that i know exactly which script to update when i fix them =]	03:00
*** JesperA has quit IRC		03:01
vidd	so...i replace 127.0.0.1 with the proper IP and i get my vpn =]	03:02
Kiall	lol	03:04
*** agoddard_ has joined #openstack		03:05
vidd	this key wants a passphrase?	03:06
vidd	i dont understand =\	03:06
Kiall	"this key" ?	03:07
vidd	i shouldnt need a passphrase for a keypair created in horizon...should I?	03:07
Kiall	Eh, it shouldn't	03:08
Kiall	At least, I dont remember it needing one	03:08
Kiall	but i imported my existing key pretty quickly ;)	03:08
vidd	i must have screwed up the xfer from the win-blows machine to the linux box =\	03:08
*** hugokuo has joined #openstack		03:08
*** freeflying has quit IRC		03:12
*** freeflying has joined #openstack		03:13
dubenstein	managed to setup keystone, nova, glance and horizon. Does horizon integrate ajax-console ?	03:14
vidd	in theory	03:15
dubenstein	vidd: horizon authorizes to keystone	03:15
vidd	yes	03:15
*** sdake has joined #openstack		03:16
koolhead17	vidd: hey there	03:19
vidd	hey	03:19
*** troya has quit IRC		03:22
vidd	yep...i wtf'd the transfer of the pem =\	03:23
Kiall	vidd: BTW .. Re that convo around loaders... https://github.com/managedit/openstack-setup/commit/6204bfcd57ed983a25feab6ce7cdbd6b68bdca60	03:24
Kiall	Doing it that way means pre 10.04 images that dont provide a .img version can have their kernels updated..	03:25
vidd	nice	03:25
vidd	have no idea why id be using a pre 10.04 image...but hey...owesome =]	03:25
Kiall	sorry	03:26
Kiall	pre-11.04	03:26
Kiall	(aka the latest LTS)	03:26
*** troya has joined #openstack		03:28
vidd	so 11.04 is already ok but the last LTS is not	03:28
Kiall	yea	03:28
Kiall	Well	03:28
vidd	ok...THAT makes sence =]	03:28
Kiall	if you use the 11.04 / 11.10 .img download, then yes. its fine	03:28
Kiall	if you use the .tar.gz then no. its not.	03:28
vidd	ah	03:29
* vidd is investigating the "custom build" option		03:29
vidd	need to make sure i can update a kernel image that way...or are kernels "modular"	03:30
Kiall	It all depends ;)	03:30
Kiall	if you need to add the image with "glance add ... bla bla... kernel_id=1" then you cant update the kernel	03:31
vidd	when that bridge burns...ill look ya up then =]	03:31
Kiall	unless that kernel_id is the loader kernel ;)	03:31
*** rsampaio has joined #openstack		03:31
vidd	so a "loader" kernel will be more of a grub...saying "image 412 = 12.04/image 511 = 12.10 etc	03:33
*** koolhead17 has quit IRC		03:33
vidd	or did i miss the boat	03:33
vidd	[and the whole shipyard]	03:33
Kiall	something like that .. yea	03:34
vidd	THAT is cool	03:34
*** binarychef has joined #openstack		03:35
*** jkyle has quit IRC		03:36
*** agoddard_ has quit IRC		03:36
*** pradeep has joined #openstack		03:38
Kiall	anyway.. I'm off.. cya	03:38
*** rsampaio has quit IRC		03:41
*** troya has quit IRC		03:42
*** jog0 has joined #openstack		03:53
*** redconnection has quit IRC		03:53
*** thickskin has joined #openstack		03:58
*** rnorwood has quit IRC		04:04
livemoon	bye,Kiall vidd	04:08
vidd	hey livemoon	04:08
vidd	how goes it	04:08
livemoon	I seen Kiall say "off"	04:09
livemoon	I think it's time for you to bed	04:09
vidd	im getting ready to head off to bed myself	04:09
livemoon	why?	04:10
* vidd has had enough frustation for a weekend =]		04:10
vidd	its 23:10 here	04:10
*** lzyeval has joined #openstack		04:10
vidd	[11:10 pm]	04:10
vidd	i have a meeting in the morning	04:11
*** jog0 has quit IRC		04:13
*** Ryan_Lane has quit IRC		04:16
*** rsampaio has joined #openstack		04:22
*** dubenstein has quit IRC		04:22
*** mjfork has quit IRC		04:24
*** jkyle has joined #openstack		04:30
*** troya has joined #openstack		04:35
troya	hi all	04:35
*** vidd is now known as vidd-away		04:35
*** rsampaio has quit IRC		04:35
troya	vidd, are you there ?	04:35
vidd-away	im off to bed	04:36
vidd-away	whats up	04:36
*** dwcramer has quit IRC		04:36
troya	i failed to create network with error message >> CRITICAL nova [-] --bridge_interface is required to create a network.	04:36
vidd-away	you must be using flat networking	04:37
vidd-away	what did you set your bridge to in nova.conf?	04:37
vishy	use --bridge_interface	04:37
vishy	or set --flat_network_interface in nova.conf	04:37
troya	no, if default it's vlan networking,right ?	04:37
troya	or vlan is not recomendded ?	04:38
vishy	or --vlan_interface if using vlan	04:38
troya	what's better vlan or flat dhcp ?	04:39
vidd-away	it all depends on your situation	04:39
*** sdake has quit IRC		04:39
troya	i'm use single node server with one eth0	04:39
vidd-away	then you have the same thing i have	04:39
troya	how about it ?	04:39
vidd-away	im using flat dhcp	04:39
vidd-away	well...im off to bed...i have a meeting in the am	04:41
vidd-away	g'night	04:41
troya	have a nice dream vid :)	04:41
*** jj0hns0n has quit IRC		04:42
*** dendro-afk is now known as dendrobates		04:46
*** rsampaio has joined #openstack		04:46
*** miclorb_ has quit IRC		04:47
*** supriya has joined #openstack		04:47
*** miclorb_ has joined #openstack		04:47
*** jj0hns0n has joined #openstack		04:48
*** lzyeval has quit IRC		04:52
*** lzyeval has joined #openstack		04:53
*** dysinger has joined #openstack		04:58
*** rsampaio has quit IRC		04:59
*** supriya has quit IRC		05:00
*** dysinger has quit IRC		05:02
*** rsampaio has joined #openstack		05:24
*** koolhead17 has joined #openstack		05:30
*** koolhead17 has joined #openstack		05:31
*** rsampaio has quit IRC		05:34
pradeep	trying to setup openstack cloud on SLES 11. fail to sync DB. " nova sync db" failed.	05:35
*** osier has quit IRC		05:36
pradeep	any one trying on SLES ?	05:36
*** shang has joined #openstack		05:37
*** yogi_ has joined #openstack		05:41
*** jkyle has quit IRC		05:49
*** troya has quit IRC		05:55
*** HugoKuo_ has joined #openstack		05:56
*** hugokuo has quit IRC		05:59
*** localhost has quit IRC		06:00
*** localhost has joined #openstack		06:01
*** MarkAtwood has joined #openstack		06:14
*** chomping has quit IRC		06:17
*** jj0hns0n has quit IRC		06:18
winston-d	hi, guys	06:20
winston-d	how can I modify quota for certain user?	06:20
*** troya has joined #openstack		06:26
*** lzyeval has quit IRC		06:26
*** lzyeval has joined #openstack		06:27
*** yogi_ has quit IRC		06:30
livemoon	winston-d: dashboard or nova-manage project can do that	06:30
winston-d	nova-manage project or nova-manage account?	06:31
lzyeval	nova-manage project quota --project=swscloud --key=floating_ips --value=30	06:31
lzyeval	something like this	06:31
*** ejat has quit IRC		06:31
*** miclorb_ has quit IRC		06:32
winston-d	lzyeval : thx. and I found nova-mange account quota --project is the same as nova-mange project quota --project.	06:32
winston-d	they both update 'quotas' table in nova database.	06:32
winston-d	but still i cann't create more than 10 instances, even after i increase the quota to 1024 and restart nova-api services;	06:33
winston-d	do you have any idea?	06:33
livemoon	winston-d: default quota you can set in nova.conf	06:34
winston-d	livemoon : i see. thx.	06:34
*** lmh has joined #openstack		06:35
*** carter has joined #openstack		06:42
carter	anyone here?	06:43
carter	i am new here, i want to confirm that someone could see my words	06:44
*** halfss has joined #openstack		06:44
halfss	hi,is there anybody know how to use libvirt get instance's disk status?	06:45
carter	i dont	06:49
halfss	:)	06:54
*** mdupont has joined #openstack		06:57
carter	in openstack swift, what does partition mean??	06:58
*** kaigan_ has joined #openstack		07:01
carter	in the swift administrator manual, they say "The Ring maintains this mapping using zones, devices, partitions, and replicas. ..."	07:02
carter	what does partions represent?	07:02
*** datajerk has quit IRC		07:04
*** GheRivero has quit IRC		07:08
troya	hi all	07:11
*** binarychef has quit IRC		07:12
troya	hi carter	07:12
carter	ok?	07:13
*** nerens has joined #openstack		07:13
carter	hi troya	07:14
troya	carter, i want to create custom image for openstack. i using reference http://docs.openstack.org/cactus/openstack-compute/admin/content/creating-a-linux-image.html for it	07:14
troya	then on command " kvm-img create -f raw server.img 5G " i'm still confuse about this command, carter	07:15
*** osier has joined #openstack		07:15
troya	carter,can you explains me more about that command ?	07:15
troya	how about it carter?	07:18
carter	wait	07:18
*** ejat has joined #openstack		07:21
*** aryan has quit IRC		07:24
*** guigui has joined #openstack		07:24
carter	troya, my understanding is that this is just a command to create space	07:25
troya	so it is not create storage too ?	07:26
troya	storage for instances which running use that image ?is it wrong ?	07:26
*** mgoldmann has joined #openstack		07:29
carter	i think it will assign storage	07:29
*** mcclurmc has quit IRC		07:31
*** mcclurmc has joined #openstack		07:31
carter	troya, how do you think?	07:32
troya	i think that which that command, openstack will create storage which used for instances which use that image for instances, but i doubt	07:33
troya	if my opinion right, then what's different it with nova-volume ?	07:34
troya	it's which make me litte confuse	07:34
*** krow has quit IRC		07:38
*** fabiand__ has joined #openstack		07:40
*** troya has quit IRC		07:41
*** troya has joined #openstack		07:41
*** datajerk has joined #openstack		07:41
*** siwos has joined #openstack		07:44
troya	hi all	07:45
*** mcclurmc has quit IRC		07:47
*** mcclurmc has joined #openstack		07:47
*** woleium has quit IRC		07:47
*** MarkAt2od has joined #openstack		07:48
*** MarkAtwood has quit IRC		07:51
*** nRy has quit IRC		07:57
*** MarkAt2od has left #openstack		08:02
winston-d	livemoon : around?	08:09
*** rnorwood has joined #openstack		08:12
*** fabiand__ has quit IRC		08:21
*** rnorwood has quit IRC		08:21
*** dnjaramba has joined #openstack		08:25
*** Razique has joined #openstack		08:25
*** reidrac has joined #openstack		08:25
*** TheOsprey has joined #openstack		08:27
*** alekibango has quit IRC		08:30
*** alekibango has joined #openstack		08:30
Razique	hi all :)	08:30
*** dysinger has joined #openstack		08:33
*** jedi4ever has joined #openstack		08:33
koolhead17	hi Razique	08:33
Razique	:)	08:34
Razique	what's up dude ?	08:34
koolhead17	supp	08:34
*** jedi4ever has joined #openstack		08:34
koolhead17	notthing much, lazy monday	08:34
*** jedi4ever has quit IRC		08:34
Razique	hehe	08:34
Razique	enjoyed ur week-end ?	08:34
*** jedi4ever has joined #openstack		08:34
*** javiF has joined #openstack		08:40
Razique	koolhead17: so, have updated the doc bugs ? :p	08:42
koolhead17	Razique, its in todays menu!! LD	08:42
livemoon	hi,all	08:43
koolhead17	hello livemoon	08:43
Razique	livemoon: :)	08:44
troya	Wb Razique :)	08:46
Razique	troya: :)	08:49
*** foexle has joined #openstack		08:50
Razique	what's up ?	08:50
*** pixelbeat has joined #openstack		08:50
troya	Razique: now i trying to create custom image with ubuntu 11.04, i following reference from http://docs.openstack.org/cactus/openstack-compute/admin/content/creating-a-linux-image.html	08:50
*** HugoKuo__ has joined #openstack		08:50
troya	then when i try command >> sudo kvm -m 256 -cdrom ubuntu-11.04-server-amd64.iso -drive file=server.img,if=scsi,index=0 -boot d -net nic -net user -nographic -vnc :0	08:51
*** guigui has quit IRC		08:51
troya	error message like this >>http://pastebin.com/yHfvVY6B	08:51
troya	it's appear that i need custom ip addrss	08:51
Razique	yup	08:51
Razique	troya: replace vnc:0 by -vnc:10	08:51
*** dysinger has quit IRC		08:52
*** nacx has joined #openstack		08:52
troya	i have replace it, but console output still error >> kvm: pci_add_option_rom: failed to find romfile "pxe-rtl8139.bin" and then blank on below of it	08:53
*** HugoKuo_ has quit IRC		08:53
*** dysinger has joined #openstack		08:54
Razique	ok that means u need that drivers	08:55
Razique	it's no biggie, u can ignore it	08:55
Razique	does kvm start anyway ?	08:55
Razique	if no, l've the drivers, u awnt em ?	08:55
troya	still blank cursor	08:55
troya	razique: thanks, how i get it from you ?	08:56
Razique	blank cursor -> means the command stopped, or is it sill running ?	08:56
Razique	troya: mmmm can I ssh to ur server, so I scp them ?	08:56
*** miclorb_ has joined #openstack		08:56
troya	still running, but only blank	08:56
Razique	of do u have a ftp ?	08:56
Razique	troya: ok that means u can connect :)	08:56
Razique	it's a bug in ubuntu pacakge, drivers are missing	08:56
troya	can or cannot ?	08:56
troya	ok, so i must get driver first	08:57
Razique	can*	08:57
troya	so it's success ?	08:57
Razique	well, you can add them, but still works without them	08:57
Razique	yup, it the command is running (means u haven't get the shell back)	08:58
Razique	u can VNC to the kvm instances	08:58
Razique	intance*	08:58
troya	yees, i get it. but what's username and password to login into ?	09:00
troya	Razique,what's default username and password, i have tried use my local system password but failed	09:06
Razique	no user/ no password :)	09:08
Razique	and port 5910 :)	09:08
Razique	vnc:0 : 5900	09:08
Razique	vnc:10 : 5910	09:08
Razique	vnc20: 5920 etc...	09:08
troya	vncviewer 192.168.2.55:0, right	09:08
troya	it's need login on me	09:09
*** guigui has joined #openstack		09:10
Razique	troya: no u don't need any login	09:10
Razique	what the client u are using ?	09:11
*** SpamapS has quit IRC		09:11
*** SpamapS has joined #openstack		09:12
troya	i work on ubuntu 11.10	09:12
Razique	how do u connect to vnc ?	09:12
troya	vncviewer 192.168.2.55:0	09:12
troya	2.55 is my ip	09:13
troya	but now when i execute it error like >> main: unable to connect to host: Connection refused (111)	09:13
Razique	the port is the wrong one :)	09:13
Razique	192.168.2.55:10	09:13
Razique	or 192.168.2.55:5910	09:13
troya	oo	09:13
troya	hehe,,,,it's appear now	09:14
*** dachary has joined #openstack		09:14
troya	ubuntu installation :)	09:14
troya	you are cool ")	09:14
troya	:)	09:14
Razique	great :)	09:15
Razique	don't hesitate if u have any question	09:15
koolhead17	troya, :)	09:15
troya	i have question again, firstly i execute command : kvm-img create -f raw server.img 5G	09:16
troya	is it mean that i create file system of my new image with size 5Gb ?	09:16
Razique	yah$	09:16
Razique	yah	09:17
Razique	but I would advise qcow2 instead of raw	09:17
Razique	that file will be seen as the hard drive for the image	09:17
troya	why ?	09:17
Razique	troya: because u'll be able to do thin-provisionning	09:17
Razique	eg qcow of 50gb -> the image sees 50gb	09:17
Razique	but if it only uses 2 gb, then the image into ur store will weight 2 gb	09:18
Razique	Maybe the raw allows this also, but haven't tested ^^	09:18
troya	razique: what's you mean eg,	09:19
Razique	u'll be able to create a file the size u want	09:21
Razique	let's say 50 gb kvm-img create -f qcow2 server.img 50G	09:21
Razique	now during the install, ubuntu will see 50 gb	09:21
Razique	at the end of the installation, it the system occupies 3 gb	09:22
Razique	the file itself won't weight 50gb but 3 gb	09:22
*** jedi4ever has quit IRC		09:22
Razique	into the glance repo, that means u gain 47 gb :)	09:22
*** jedi4ever has joined #openstack		09:23
troya	oo..so system only take 3 Gb and the others (47 GB) for storage, right ?	09:23
*** dobber has joined #openstack		09:23
Razique	troya: no, that's not what I mean ^^	09:24
Razique	actually u are creating an ubuntu image	09:24
Razique	u assign it a disk via kvm-img create $disk	09:25
troya	yes,	09:25
Razique	that disk is the one your image will see	09:25
Razique	by using qcow2 you can give it a bigger size	09:25
troya	yes, i will see it on my installation procedure	09:25
*** foexle has quit IRC		09:25
Razique	for instance 50gb	09:25
Razique	but on the host, the size will be the real one	09:25
Razique	the effective one	09:25
Razique	at the end of ur ubuntu installation, u won't use 50gb, but most commonly around 3gb	09:26
Razique	so the file u create with kvm-img create will only weight 3 gb	09:26
Razique	not 50 gb	09:26
troya	so hm..what different if i use raw with size 50 G ? is it same ? i can assign partition when installation procedure to determine between /, /home or the others ?	09:28
*** rustam has joined #openstack		09:28
*** foexle has joined #openstack		09:29
Razique	troya: with raw, i don't know if the size will be dynamic	09:29
Razique	maybe with raw, u'll end up with a 50 gb file	09:30
Razique	even if the ubuntu install only used 3 gb	09:30
troya	hehehe	09:30
Razique	http://forum.proxmox.com/threads/2537-quot-qcow2-quot-vs-quot-raw-quot-KVM-Disk-Format	09:31
*** jedi4ever has quit IRC		09:31
troya	may be will be clearly if i try directly :D	09:31
troya	Razique: when i execute command : " kvm-img create " to create storage.Is Size of my file system will be reduce too ?	09:38
*** redconnection has joined #openstack		09:38
*** jedi4ever has joined #openstack		09:38
Razique	nope that command only creates an empty file	09:39
Razique	but if you install an OS on it, yes it'll grow	09:39
troya	then how about network configuration ? if on installation i choose DHCP, is it will get DHCP from controller or from router on my network ?	09:40
*** scottjg has quit IRC		09:49
*** littleidea has joined #openstack		09:51
*** bourke has joined #openstack		09:54
Razique	troya: for the install u can choose the conf u want	09:55
Razique	at the end, don't forget to use DHCP	09:55
Razique	the dnsmasq proces (managed by nova-network) will send an ip adress	09:57
troya	yes, it have finished, now i upload it to nova	09:58
doude_	Hi all, some one use the OpenStack API extension 'flavor extra spec' ?	09:58
troya	Razique: after i execute this command >> sudo kvm -m 256 -drive file=server.img,if=scsi,index=0,boot=on -boot c -net nic -net user -nographic -vnc :0 , so must i connect with vncviewer again ?	09:58
*** Zhann has quit IRC		09:59
Razique	troya: u used raw ?	10:00
*** Zhann has joined #openstack		10:00
troya	yes, i have not to change to qcow yet	10:01
Razique	ok ok u use scp for transfer ?	10:03
livemoon	bye,all	10:04
livemoon	I will go home	10:04
*** livemoon has left #openstack		10:05
troya	razique :ubuntu driver do you mean ?	10:05
troya	livemoon: bye	10:06
*** darraghb has joined #openstack		10:12
troya	razique: what's the meaning 1048576 on >> losetup -f -o 1048576 server.img	10:14
*** GheRivero has joined #openstack		10:16
*** jedi4ever has quit IRC		10:22
*** foexle has quit IRC		10:23
*** jedi4ever has joined #openstack		10:27
*** lzyeval has quit IRC		10:29
Razique	troya: it's used if u want to extract the data partition	10:29
troya	then 1048576, what size is it ?	10:30
Razique	it's the end of the data partition	10:30
Razique	that value depends on ur install	10:30
Razique	don't use the same as the doc	10:30
Razique	:p	10:30
troya	oo..	10:30
troya	where i can get that number ,	10:30
troya	from fdiks ?	10:31
troya	or any other rules?	10:31
Razique	mm the guide explain before as far as I recall ?	10:33
troya	o..ya..i get it	10:35
Razique	;)	10:37
*** foexle has joined #openstack		10:45
*** coli has joined #openstack		10:53
*** junaid has joined #openstack		10:53
*** ug has joined #openstack		10:55
ug	can Keystone be configured for using syslog ?	10:55
*** troya has quit IRC		10:58
foexle	hey guys, why shows me "euca-describe-instances" all instances in running state although many instances are shut off ?	11:00
foexle	i'ts after a reboot of compute-node	11:00
foexle	normally should the compute node update the database or ?	11:01
*** ahasenack has joined #openstack		11:02
*** miclorb_ has quit IRC		11:04
*** ug has quit IRC		11:04
Razique	foexle: hehe man :)	11:05
Razique	nope, after a node reboot, the database ain't updated	11:05
Razique	i wrote somehting about this here http://docs.openstack.org/trunk/openstack-compute/admin/content/nova-disaster-recovery-process.html	11:06
*** ejat has quit IRC		11:09
*** guigui has quit IRC		11:10
*** DuncanT has joined #openstack		11:10
*** pothos has quit IRC		11:11
foexle	Razique: hey Razique :) how are you ? :) .... so i read your doc, but this are not practicable in big clouds. Only a question: why don't destroy any relationships for all vms and other stuff like ip's, volumes ... for this compute node automaticly ?	11:14
foexle	this vms are stateless, so i have a clean db after a crash and can spawn simply new vms	11:15
Razique	foexle: how are you suppose to know when the node goes down ?	11:16
Razique	that explains why the db ain't updated	11:16
*** guigui has joined #openstack		11:17
Razique	that is linked to nova HA mecanisms that we are debating here for weeks	11:17
Razique	today nova clearly lacks one some HA parts	11:17
Razique	for instance, today if a node goes down, it's a nightmare	11:17
foexle	hmmm	11:17
Razique	nova should be able by itselft to power on the instance elsewhere	11:17
*** ug has joined #openstack		11:18
ug	how to configure Keystone to use syslog	11:18
Razique	ug: into keysone.conf	11:18
Razique	use_sylog : true	11:18
Razique	then restart Keystone	11:19
ug	I don't see the entry 'use_syslog' in keystone.conf	11:19
foexle	this is autohealing ... so yeah would be a nice feature :) .... but again, this will be the second step (autospawning), but the first should be keep the cloud clean without db hacking	11:19
foexle	or ?	11:19
Razique	foexle: thought if u have any idea to automatically mograte instance when the node goes down, then let me know :)	11:19
Razique	foexle: can't happen today	11:19
ug	Razique: you mean I will need to add the entry use_syslog ?	11:19
Razique	nova doesn't update the database	11:19
*** littleidea has quit IRC		11:20
Razique	ug: no, let me find out the setting	11:20
ug	Razique: ok	11:21
Razique	ug: you are right	11:23
Razique	I mixed with other projects conf	11:23
Razique	https://github.com/openstack/keystone/blob/master/etc/logging.cnf	11:23
foexle	Razique: this can be a indicator to clean your database after a disaster (Found 4 in the database and 1 on the hypervisor.)	11:23
foexle	found this in the log on the compute node	11:23
Razique	foexle: not really, since u can have an instance spawning	11:24
Razique	when an isntance is being started, the instance has an entry into the DB	11:24
Razique	but not running yet	11:24
Razique	if so, you have that message	11:24
ug	Razique: I updated the 'handlers' in etc/logging.cnf to 'production' only and restarted Keystone	11:25
*** jedi4ever has quit IRC		11:25
*** PotHix has joined #openstack		11:25
ug	but the start up logs still go into keystone.log	11:25
Razique	ug: maybe syslog is not supported yet :	11:26
Razique	:(	11:26
ug	ok, thanks Razique	11:26
Razique	i'll check the commits	11:26
foexle	but i think, cloud = instance not running => don't have DB entry, because all instances are stateless and i can spawn a new one. So if a instance in db but not running, delete in db. Or compute and network reads from db all attributes and this services recover it self. Like spawn all instances they are in db and make network settings	11:27
Razique	mmm nothing about syslog	11:27
*** dysinger1 has joined #openstack		11:28
foexle	or maybe a CLI command or somethink like that	11:28
foexle	but it should be automated	11:28
Razique	foexle: complicated.... because you suppose instances have two states only 1 : running 2 : not running	11:29
Razique	in reality, an instance could be resizing, migrating, powered off, paused etc...	11:29
*** dysinger1 has quit IRC		11:29
ug	Razique: thanks	11:29
*** guigui has quit IRC		11:29
Razique	so that justifies a DB entry just after you request a spawning	11:29
*** dysinger has quit IRC		11:29
Razique	foexle: plus, suppose you loose connectivity to the node for let's say 5 mn	11:30
Razique	what nova should do, update the database, remove the entry ? that means when the node recovers connectivity, u end up with a running instance, but unreferenced :)	11:31
*** junaid1 has joined #openstack		11:31
Razique	another use case would be the network part : nova-network uses the database in order to create the routing rules for the instances	11:31
*** junaid has quit IRC		11:31
foexle	Razique: yeah i know :D ... i think you dont understand what i mean ;) .... so node goes down => node comes up => node read all attributes from database (instances, ips, volumes etc.) => node will autoheal it self like spawning instances, making network, attach volumes and ...	11:31
Razique	removing the entry doesn't remove the current iptables rules of the instance :/	11:31
Razique	Yah, that 's the ideal behaviour that doesn't happen today	11:33
Razique	thus the all-by-hand hack of mine =D	11:33
foexle	ahhhhhhhhhhhhh ok :D .... so this point are on the roadmap	11:33
foexle	?	11:33
Razique	I don't know... doesn't look so	11:34
Razique	hehe, that is my biggest fear man todayt	11:34
Razique	if a node goes down, it's a real noghtmare	11:34
Razique	because the "controller" doesn't do anything	11:35
Razique	the disk are still marked as attached, instance as running	11:35
Razique	even worse.... I've seen one day after a node failure	11:35
Razique	that nova decided to remove all files that belong to the instance (/var/lib/nova/instance/instanceXXX) since it was not running	11:36
*** livemoon has joined #openstack		11:36
foexle	hmmm yeah why not ? ... so you can make a CLI command like nova-manage service clean <ID> to delete all db entries of this service (only instance, IP, volumes) and tell this services delete all files	11:39
foexle	its a dirty workaround	11:40
foexle	but you dont get inconsistency in your db	11:40
*** katkee has joined #openstack		11:40
*** frankon has joined #openstack		11:42
*** ug has quit IRC		11:42
Razique	foexle: that should do it	11:44
*** ZX-14 has joined #openstack		11:44
Razique	if u run it manually yah	11:44
*** ZX-14 has quit IRC		11:44
Razique	but automatically requires a bit of reflexion	11:44
*** cereal_bars has joined #openstack		11:44
Razique	what would be the criterias for such case	11:44
Razique	I've a node on which run 40 instances, If I loose connectivity, should I remove everything ?	11:45
Razique	of course not...	11:45
Razique	that is why it's a bit complicated	11:45
foexle	if you get a timeout > "conf settings" => yes	11:45
foexle	the second step was to autrespawn this instances on a other host	11:46
foexle	auto	11:46
Razique	wouldn't be the first step ?	11:46
Razique	1 : I losse connectivity, instances respawn on a connected node	11:47
Razique	2- remove everything from the second node	11:47
Razique	3- now suppose the server is still up (the loste node)	11:47
Razique	what happens when it regain connectivity ? i'll still have the instances running on it	11:48
Razique	4- another thing to consider is the data, in such case you loose the data (that happened to me :D )	11:49
foexle	1: loose connectivity, tell "recover service" => I loose connection of this node, please repair	11:49
foexle	2: this services looks into the db, which ip's are using, volumes and all informations	11:50
foexle	3: this services tells nova-api spawn instance xxx (same attributes as the old one)	11:50
*** Hakon\|mbp has joined #openstack		11:51
foexle	4: setting a new "Flag" in the DB which indenticates this is a broken instance => after starting instace on a new node setting this flag to True	11:51
foexle	5: other compute node is up again	11:51
foexle	6: compute node tells DB which instances i have	11:52
foexle	7: compute node see => ok all my instances, route settings volumes etc. will be broken => destroy all	11:52
Razique	foexle: what about the data ?	11:52
foexle	8: you have auto healing and a clean node if they comes up again	11:52
foexle	which data ?	11:53
Razique	contained inside the running instainces	11:53
Razique	the files u put etc...	11:53
foexle	it's a cloud, it's stateless you can use blockdevice like iscsi or swift to upload datas. But all datas on each vm disk should be stateless	11:54
Razique	that the things, it's never really stateless	11:54
foexle	why?	11:54
Razique	users u have created, packages you have installed etc...	11:54
foexle	thats not your problem	11:54
Razique	hostname of the server	11:54
foexle	for this tasks do you can use chef	11:55
foexle	or puppet	11:55
foexle	or complete images	11:55
foexle	if you look at ec2 you have vm disk space, but this is completly stateless	11:55
foexle	if you need a storage	11:56
foexle	you can attach iscsi or use swift	11:56
*** stevegjacobs_ has quit IRC		11:56
*** osier has quit IRC		11:58
Razique	foexle: need to luch	11:59
Razique	i'll think about that while eating	11:59
foexle	Razique: ok :) good hunger	11:59
Razique	that 's a very intereting debate	11:59
foexle	:)	12:00
Razique	dunno today into which measure is it possible to have isntances stateless	12:00
Razique	my customers today clearly don' t have stateless ones	12:00
Razique	cya later foexle :)	12:00
foexle	cu Razique :)	12:00
*** javiF has quit IRC		12:03
*** stevegjacobs_ has joined #openstack		12:07
*** dnjaramba has quit IRC		12:12
*** dnjaramba has joined #openstack		12:13
*** ejat has joined #openstack		12:13
*** ejat has joined #openstack		12:13
*** Hakon\|mbp has quit IRC		12:14
*** Eyk^off is now known as Eyk		12:14
*** redconnection has quit IRC		12:17
*** redconnection has joined #openstack		12:18
*** abecc has joined #openstack		12:21
*** redconnection has quit IRC		12:22
*** bsza has joined #openstack		12:31
*** junaid1 has quit IRC		12:43
*** dnjaramba has quit IRC		12:46
*** dnjaramba has joined #openstack		12:46
smoser	Kiall, there was a desktop version of try.cloud.ubuntu.com, but it did not end up going live. only to a beta at one point.	12:47
Eyk	(Swift) I have created rings with a replication of 2 and want to increase it to 3. Can I simply recreate the ring without losing any data?	12:48
*** javiF has joined #openstack		12:49
* koolhead17 leaves .		12:49
*** halfss has quit IRC		12:50
*** pradeep has quit IRC		12:50
*** dysinger has joined #openstack		12:51
*** dwcramer has joined #openstack		12:52
*** dysinger has quit IRC		12:56
*** koolhead17 has quit IRC		12:56
*** vernhart has quit IRC		13:03
*** jedi4ever has joined #openstack		13:04
*** Eyk is now known as Eyk^off		13:05
*** jedi4ever has quit IRC		13:05
*** dwcramer has quit IRC		13:07
*** nerdstein has joined #openstack		13:09
notmyname	Eyk^off: yes and no. if you completely change your ring like that, you won't lose any data, but it will all become unavailable (because the data won't be rehashed). when you chnage the ring like that (same thing if you change the partition power) all of the data must be migrated (ie GET(old)+PUT(new)). it can be done, but it will take your own dev work	13:11
*** javiF has quit IRC		13:12
notmyname	Eyk^off: perhaps one possibility would be to manually edit the ring file to remove one of the replicas. I'm not sure how well that would work, though, because that doesn't change the builder file (which it required for ring updates)	13:12
notmyname	Eyk^off: basically, you could probably reverse engineer it (and I'd support that). but the simple answer is "no, don't do that"	13:13
*** redconnection has joined #openstack		13:14
foexle	do anyone have a problem with attaching ssh keypair ? http://pastebin.com/awh3BkNy	13:19
foexle	start the instance normally with -k <keypair-name>	13:19
foexle	priv_key.pem are genrated by openstack	13:19
*** guigui1 has joined #openstack		13:20
*** praefect has joined #openstack		13:33
*** chomping has joined #openstack		13:34
*** jedi4ever has joined #openstack		13:40
*** bonzay is now known as zz_bonzay		13:43
*** zz_bonzay is now known as bonzay		13:44
*** osier has joined #openstack		13:44
*** jedi4ever has joined #openstack		13:47
*** mattray has joined #openstack		13:49
*** MarkAtwood has joined #openstack		13:50
*** sdake has joined #openstack		13:50
*** livemoon has left #openstack		13:50
*** PeteDaGuru has joined #openstack		13:51
*** lts has joined #openstack		13:53
*** GheRivero is now known as GheAway		13:55
*** mrjazzcat has joined #openstack		13:57
*** mrjazzcat has left #openstack		13:57
*** marrusl has joined #openstack		14:01
*** dgags has joined #openstack		14:02
*** markvoelker has joined #openstack		14:04
*** martine has joined #openstack		14:05
*** martine has quit IRC		14:07
*** martine has joined #openstack		14:07
*** lorin1 has joined #openstack		14:09
*** Shentonfreude has joined #openstack		14:10
*** vernhart has joined #openstack		14:12
Razique	back	14:13
foexle	Razique: wb	14:14
*** hadrian has joined #openstack		14:15
Razique	foexle: ok ok u literally make me thing during my whole lunch time :D	14:16
foexle	:D	14:16
foexle	i'm sorry ;)=	14:17
Razique	I think ur point of view is excellent	14:17
Razique	but kinda hard to apply	14:17
Razique	ok let's say a customer install a new application	14:17
foexle	yes	14:18
Razique	now ur node crashes, u respawn, puppet etc...	14:18
Razique	how do you restore his files ?	14:18
foexle	you need to ask you, which files need this user	14:18
foexle	you have application files	14:19
foexle	like images	14:19
foexle	or attachments or other files	14:19
foexle	this files can you handle wiht swift	14:19
foexle	you have log or db files	14:19
foexle	then you need block storage => glance	14:19
foexle	sry	14:19
foexle	iscsi	14:19
foexle	so you dont need any persistent storage on each vm	14:20
foexle	so lets focus on instance types	14:21
Razique	glance doesn't manage block storage it's just a delivery service	14:21
Razique	u mean nova-volume	14:21
foexle	yeh iscsi	14:21
foexle	i'm sorry	14:21
Razique	what about configuration let's say /etc/apache	14:21
foexle	chef	14:21
foexle	or puppet	14:21
foexle	we do all this things with chef	14:22
foexle	und we distinguish between application instances, utility intances and db instances for each project	14:22
foexle	so we know	14:22
foexle	this instances goes down in this security group	14:23
foexle	it was a application instace maybe	14:23
foexle	openstack "autoheal" an spawning a new instance in the same security group	14:23
Razique	ok, now if my customer updates an apache vhost	14:23
Razique	something that I wouldn't be aware of	14:24
foexle	so we can handle this with chef "please load role for application instace by project"	14:24
foexle	yeah a good example	14:24
foexle	you customer say to you .... please change my vhost	14:24
foexle	or add a new application on the same hosts	14:24
foexle	you need only one time to change this todo on your chef server	14:25
*** lorin1 has quit IRC		14:26
foexle	and all running instances with this role or recipe will change this settings	14:26
foexle	and new instances too	14:27
Razique	foexle: that the thing	14:27
*** lorin1 has joined #openstack		14:27
Razique	customers don't report that :d	14:27
foexle	?	14:27
Razique	they create users, update configurations	14:27
Razique	install stuff in /opt	14:27
Razique	so in fact sometimes you are not aware when the server files evolve	14:28
foexle	but this are not the normal cloud domputing logic	14:28
foexle	if you test, ec2, hp-cloud, vm sphere you will see every instance are stateless	14:28
foexle	you can mapp storage devices or put some files to S3(swift)	14:29
foexle	but all instances are stateless	14:29
foexle	everytime	14:29
Razique	foexle: on a pure "logical" approach I 100% agree with you :)	14:30
Razique	but on a more "pragmatical" way	14:30
*** lorin1 has quit IRC		14:30
Razique	you have production, a node crashes, the customer doesn't care about the "state of art about cloud"	14:31
Razique	you see what I mean ?	14:31
*** vernhart has quit IRC		14:31
Razique	my priority is to make sure I'm quickly able to restore data, if i can't, I'm not allowed to simply say "You should have told me about that new directory that contains hyper important stuff"	14:31
foexle	yeah but then need this customer support .... you can not build a fucking good tool set for stupid or ignorant customers	14:32
Razique	foexle: hehe good point here but you are as aware as I am that in real life, they sometimes can be stupid	14:32
Razique	that don't make them no customer	14:32
Razique	that is why I was thinking into which measure I could turn these instance as stateless as possible	14:33
Razique	maybe having a script that crawls the instance and reports the changes ?	14:33
foexle	Razique: i know ... i know :) .... but with this way, if you say a customer can save datas in each vm and this datas cant be lost, you can't realize a autohealing or autoscaling and this two points are one of the unique selling points of ec2	14:34
Razique	foexle: I think Openstack shouldn't be considered as an opensource ec2 cloud	14:35
Razique	it has more potential	14:35
Razique	foexle: here we are trying to have the flexibility of ec2	14:35
Razique	and features of vmware :d	14:35
foexle	:D yeah thats nice i hope so :D	14:35
Razique	foexle: regarding the datas, I already use nova-volume	14:36
Razique	for mysql, apache, etc...	14:36
foexle	yes	14:36
*** CatKiller has quit IRC		14:36
Razique	openstack has implemented a "suspend" mode	14:36
Razique	that allows you to power off the instance	14:37
foexle	thats the correct way .... if the instance craches, fireing up a new instance and map the existing volume to the new one	14:37
Razique	foexle: one day I've lost an instance	14:37
foexle	and you have all persistent datas in each vm	14:37
Razique	I recreated it, reattached the volume	14:37
Razique	two things took me time	14:37
foexle	yes this should be automatically	14:38
Razique	1- Reconfigure the server, and 2- explain to all customer that the SSH id has changed	14:38
Razique	yah	14:38
foexle	1: Instance goes down	14:39
*** jedi4ever has joined #openstack		14:39
foexle	2: new instance will spawn	14:39
foexle	3. attach volume	14:39
foexle	4: starting chef with correct role	14:39
*** swill has joined #openstack		14:39
foexle	5: chef are done, automatically send email to customer list	14:39
foexle	3.1 attach correct pub ip	14:40
Razique	foexle: have u written a script for that ?	14:40
Razique	if not I could try one	14:40
foexle	we do that with chef	14:40
Razique	somehting you would cron, that would check the nodes regularly	14:41
Razique	no I mean the node failure detection	14:41
Razique	does chef has recipes for opentack ?	14:41
Razique	openstack*	14:41
*** rods has joined #openstack		14:41
foexle	so i dont run openstack in prod .... i'm in testing phase :) .... this described steps are on ec2	14:42
Razique	ah ok	14:42
foexle	i think amazon have a service and check the insances with keepalived	14:42
foexle	and if a instance goes down this services grap all infromation of the "broken" instance and fire up a new one	14:43
Razique	foexle: I'll try to script something similar	14:43
Razique	I've used GlusterFS in order to sync. instances accross nodes	14:43
Razique	so if a node goes down, you simply reboot the instance on another node	14:43
*** carter has quit IRC		14:44
Razique	thus you don't losse data	14:44
Razique	loose*	14:44
*** reidrac has quit IRC		14:44
*** mdomsch has joined #openstack		14:44
*** stuntmachine has joined #openstack		14:44
*** MarkAtwood has quit IRC		14:44
foexle	but you have more net traffic with permanently syncing	14:44
Razique	foexle: the overhead is not that big	14:44
phschwartz	Hey all, I am closer to having a working environment. I can spawn nodes, but when doing the following action. waiting for metadata service at http://169.254.169.254/2009-04-04/meta-data/instance-id The intances timeout 100 times then fail to setup keys.	14:44
phschwartz	any idea?	14:44
Razique	moreover a networks that doesn't work doesn't exist =D	14:44
foexle	but useless if you have stateless instances	14:45
Razique	foexle: totally	14:45
foexle	and you are more flexible	14:45
Razique	foexle: why is that ?	14:45
Razique	phschwartz: check the iptables rules, does a nat exist	14:45
Razique	169.254:80 redirects to $nova-api-ip:8774	14:45
foexle	so you can install a new compute node in 5 min and you can directly spawn instances on this node	14:46
*** nerens has quit IRC		14:46
foexle	without syncing or image transfer	14:46
foexle	you use glusterfs	14:47
phschwartz	Razique: DNAT tcp -- anywhere 169.254.169.254 tcp dpt:www to:127.0.0.1:8773	14:47
foexle	wich fs do you use ?	14:47
foexle	so yo need gfs/gfs2 or ocfs2	14:47
foexle	to handle simultaneously write access	14:48
Razique	foexle: I use glusterFS	14:48
Razique	in fact it's speeder since the files are already present on all nodes	14:48
foexle	this is verry susceptible .....	14:49
Razique	for spawning, the image needs to be sent to the compute nnode	14:49
*** deshantm_laptop has joined #openstack		14:49
Razique	what do u mean ?	14:49
foexle	glusterfs are not a filesystem ... which filesystem do you use in glzusterfs?	14:49
Razique	phschwartz: run netstat -tanpu \| grep 8774	14:49
*** siwos has quit IRC		14:50
Razique	foexle: glusterFS is a filesystem actually	14:50
phschwartz	Razique: http://paste.ubuntu.com/745166/	14:50
Razique	phschwartz: ok is the instance run on another node ?	14:50
phschwartz	no, it is all a single node	14:51
Razique	foexle: shouldn't we start to think about HA mecanisms a write a doc ?	14:51
Razique	start -> continue :D	14:51
Razique	phschwartz: ok can I see the output of "euca-get-console output $instance"	14:52
foexle	sure	14:52
Razique	or let's continue here, i'll save the log and write a doc after based on what we said	14:53
foexle	ok	14:53
Razique	foexle: so at Amazon, if you create a file on let's say /opt	14:53
Razique	and amazon node crashes, you loose the file ?	14:53
phschwartz	Razique: This is an instance setup using Kiall's scripts. I am new to openstack, how can I generate an EC2_ACCESS_KEY. I started the node using dashboard/keystone	14:53
Razique	phschwartz: nova-manage project export	14:54
foexle	Razique: yes	14:54
Glacee	razique: if its on local storage yes.. not on ebs	14:54
Kiall	Razique, nope... doesnt work with keystone	14:54
foexle	Glacee: :D	14:54
Razique	Kiall: oh yes, my bad	14:54
Razique	since it's Keysone which handles the tenants	14:55
Razique	sorry	14:55
Kiall	phschwartz: you need to add EC2 creds to keystone, from my scripts you can see an example at the end of keystone_data.sh.tmpl	14:55
Kiall	Nova/Keystone will not generate a key for you... You have to pick them youself and tell keystore what they are	14:55
Glacee	foexle: ebs has been so slow lately though..	14:55
Razique	foexle: Glacee i was also thinking about automatiing the creation of images from running instances	14:56
phschwartz	kiall: if I used your generated data script to initialize it, any I dea what it would be?	14:56
Razique	thus if a node fails, I spawn an instance based on that image	14:56
Razique	that mean, in worst case scenarios I loose a day of conf. (since the datas are on the volume)	14:57
Kiall	phschwartz, my data adds 1 key for the admin user.. Access key = admin_$admin_password and Secret_Key = admin .. if i remember right	14:57
foexle	if a node fails you can look in your db	14:57
foexle	ther are all informations	14:57
foexle	of all instances on this node	14:57
Kiall	phschwartz, or add new ones with something along the lines of`keystone-manage credentials add $username EC2 $access_key $secret_key $tenant`	14:58
foexle	so you can spawn with all things (volume, pub ip, image type ....) on other instances	14:58
phschwartz	kiall: ok, that got me further. I did the euca-get-console-output and got the following error: EC2_URL not specified. Trying http://localhost:8773/services/Eucalyptus	14:58
foexle	Razique: the next good thing if you have stateless instances	14:58
Kiall	phschwartz, 1 sec.. let me grab the template novarc I use	14:59
*** mjmac has joined #openstack		14:59
foexle	Razique: you can say .... i need every time 5 instances on this project, if i loose one please spawn a new one"	14:59
*** mjmac has left #openstack		14:59
foexle	time to go quickly some a cigarette ;)	15:00
foexle	smoke	15:00
Glacee	is there a reason why I cant find the swift-stat system section on the new dev doc version> 1.4.5? is it being removed?	15:01
*** lionel has quit IRC		15:01
Kiall	phschwartz, http://paste.openstack.org/show/3461/	15:01
*** lionel has joined #openstack		15:02
Kiall	bear in mind, that example file uses a different EC2 access/secret key.. I changed the format of mine so there was less settings...	15:02
*** bsza has quit IRC		15:03
*** chemikadze has quit IRC		15:03
foexle	ok back	15:04
phschwartz	Kiall: I think I got it set right for me. But using the euca command again I get: Warning: failed to parse error message from AWS: <unknown>:1:0: syntax error	15:04
*** egant has joined #openstack		15:04
Kiall	try with --debug (or is it --verbose) and see what the error is	15:04
phschwartz	hmm, The server could not comply with the request since it is either malformed or otherwise incorrect.	15:05
*** martine_ has joined #openstack		15:05
foexle	Kiall: if start a instance with a keypai and attach a public ip, i can't connect with the correct private key http://pastebin.com/awh3BkNy	15:06
*** martine has quit IRC		15:06
foexle	Kiall: do you know what happens?	15:06
*** chemikadze has joined #openstack		15:07
*** PiotrSikora has quit IRC		15:07
Kiall	foexle, that looks like you are using the wrong type of SSH key... but, I've never seen anything like that...	15:08
Kiall	(the givaway .. debug2: key_type_from_name: unknown key type '-----BEGIN'"	15:08
foexle	yeah but its a correct type	15:08
foexle	-----BEGIN RSA PRIVATE KEY-----	15:09
*** PiotrSikora has joined #openstack		15:09
*** bcwaldon has joined #openstack		15:09
Kiall	Well, SSH doesnt agree ;)	15:10
phschwartz	kiall: the error: http://paste2.org/p/1788747 my novarc: http://paste.ubuntu.com/745178/	15:10
foexle	i know .... but i dont have change this keypair :( and last week this works well -.-	15:10
*** kbringard has joined #openstack		15:11
Kiall	foexle, honestly.. It sounds like a valid SSH key, its your local install of SSH rejecting it, not nova or the intance.. Thats all I can tell!	15:12
*** dubsquared has joined #openstack		15:12
Kiall	phschwartz, honestly, I dont know.. I would bet the key or secret is wrong...	15:12
Kiall	Anyway - I've got work to do.. cyas	15:12
foexle	Kiall: my local ssh client ? .... hmmm i try it from 3 machines :( .... ok i'll look	15:13
foexle	thx	15:13
Kiall	probably means its the keyfile so...	15:13
Kiall	foexle, did you by any chance pass that key via a windows box?	15:14
foexle	no	15:14
Kiall	(I have no idea oif mucking up the unix line endings would cause an issue, just a guess)	15:14
foexle	only linux	15:14
Kiall	Ah well - scratch that idea then..	15:14
phschwartz	Razique: is there any other way to get the console output you want other then with euca2ools? I cant ge them working at the moment and not sure why.	15:15
*** nerens has joined #openstack		15:15
phschwartz	I can get the console log from dashboard	15:15
foexle	phschwartz: virsh console <domain>	15:15
*** kbringard has quit IRC		15:15
phschwartz	how can I get the domain?	15:17
foexle	virsh list --all	15:17
phschwartz	ty	15:17
phschwartz	Razique: the console reports error: internal error character device (null) is not using a PTY	15:17
*** CaptTofu has joined #openstack		15:19
*** Razique has quit IRC		15:19
_rfz	Hi guys, I'm using FlatDHCP network and I can't ping or access my VM's - i've added the euca-authorize -P icmp -t -1:-1 default and ssh	15:19
*** Razique has joined #openstack		15:19
foexle	_rfz: iptables -L -t nat	15:19
foexle	_rfz: look if the roules are set correctly	15:19
Razique	foexle: ok back	15:20
Razique	coffee for me, I'm no smoker :p	15:20
foexle	Razique: :D wb	15:20
foexle	Razique: do you have a soloution of my problem ?	15:20
Razique	which one ? :D	15:21
Razique	sorry I've missed something hjere :D	15:21
foexle	if start a instance with a keypai and attach a public ip, i can't connect with the correct private key http://pastebin.com/awh3BkNy	15:21
_rfz	foexle - they rules seem to fine	15:21
foexle	even ssh key i use the same issue	15:21
foexle	_rfz: can you ping from host ?	15:22
Razique	foexle: display the file	15:22
Razique	is it a private key ?	15:22
foexle	Razique: yeah	15:22
foexle	-----BEGIN RSA PRIVATE KEY-----	15:22
*** j^2 has quit IRC		15:23
*** dendrobates is now known as dendro-afk		15:23
_rfz	foexle I can't ping or access the VM on the public IP - I can ssh and ping on the internal IP	15:23
foexle	_rfz: do you have assotiated the pub ip to the vm ?	15:24
Razique	foexle: telnet the instance on port 22	15:24
*** j^2 has joined #openstack		15:24
Razique	sounds stupid but we never know	15:24
foexle	Razique: telnet output SSH-2.0-OpenSSH_5.8p1 Debian-7ubuntu1	15:24
Razique	ok	15:25
foexle	yeah i have seen this never before	15:25
_rfz	foexle yep, it has the public IP assigned to the VM	15:25
_rfz	INSTANCEi-00000009ami-00000002192.168.1.1810.10.0.6	15:25
foexle	_rfz: i cant see a public address	15:25
*** chemikadze has quit IRC		15:25
foexle	192.168 are reserved for local networks	15:26
foexle	in w3c standard	15:26
Razique	foexle: how did u generate the keypair ?	15:26
foexle	Razique: thats the same keypair that you have generated :D	15:26
*** hallyn_ has joined #openstack		15:26
_rfz	foexle so I need to use a real publlic IP range?	15:26
Razique	foexle: ah ok via nova-manage project export then	15:26
foexle	Razique: yes	15:27
Razique	foexle: which image are u using, the one we retrieved ?	15:27
*** dendro-afk is now known as dendrobates		15:27
foexle	Razique: yes all the same	15:27
foexle	Razique: i have only change the server ips ... but that can't be the problem	15:27
Razique	nope, not really	15:27
*** kbringard has joined #openstack		15:27
foexle	_rfz: if you login from extern yes ... if you try it from the same box not	15:28
*** krow has joined #openstack		15:28
_rfz	foexle - let me change it :) thanks	15:28
Razique	foexle: regenerate a new set of keys	15:29
*** ejat has quit IRC		15:30
praefect	hi everybody, anyone has a good pointer to setup a multi-zone environment? I don't even know where to start, can I have 2 zones with a single EC2 API url?	15:30
*** ejat has joined #openstack		15:31
*** ejat has joined #openstack		15:31
foexle	Razique: yeah :D i'm looking for the command ;) wait	15:32
*** bourke has quit IRC		15:32
foexle	can i get the pem of existing keypair ?	15:33
*** bourke has joined #openstack		15:33
*** ejat has quit IRC		15:33
Razique	foexle: not sure	15:34
*** keekz_ is now known as keekz		15:36
foexle	Razique: ok runs	15:38
*** lorin1 has joined #openstack		15:38
foexle	Razique: so i think the failure was, the server have not generated a server key	15:38
foexle	Razique: i mean this one -----BEGIN SSH HOST KEY FINGERPRINTS----- ... this output was not by the other key	15:39
foexle	instance output	15:39
*** hallyn_ has quit IRC		15:40
*** dprince has joined #openstack		15:40
Razique	foexle: I've already seen that	15:43
foexle	* Starting execute cloud user/final scripts [ OK ]	15:44
foexle	this is the last line	15:44
foexle	by the other key	15:44
foexle	°°	15:44
*** ldlework has joined #openstack		15:44
*** sticky has quit IRC		15:45
Razique	sounds good	15:45
*** code_franco has joined #openstack		15:46
*** jeremy has joined #openstack		15:49
*** cereal_bars has quit IRC		15:50
*** javiF has joined #openstack		15:52
*** rnirmal has joined #openstack		15:53
*** primeministerp has joined #openstack		15:54
*** osier has quit IRC		15:54
*** sticky has joined #openstack		15:55
*** andrewbogott has joined #openstack		15:55
*** adjohn has joined #openstack		15:56
*** jkyle has joined #openstack		15:58
kbringard	hey Razique	15:59
Razique	hey kbringard	15:59
Razique	how are you ?	15:59
kbringard	I'm OK	16:00
Razique	enjoyed ur week end ? :)	16:00
*** dragondm has joined #openstack		16:00
kbringard	heh, I've had better :-)	16:00
dragondm	rkeleb	16:00
kbringard	dad had a heart attack, so I ended up driving 1400 miles from Colorado to California	16:00
*** jkyle has quit IRC		16:00
kbringard	he's fine, but now I'm friggin tired	16:00
Razique	ow	16:01
kbringard	but, at least I get to spend Thanksgiving with the family :-)	16:01
Razique	great	16:01
kbringard	hey, if you have a moment, nerdstein is having an error when he tries to euca-describe-images	16:02
Razique	sure	16:02
Razique	what's the output ?	16:02
*** TheOsprey has quit IRC		16:03
annegentle	kbringard: oh so sorry to hear it. That's a long drive too. Glad to hear he's ok, hope you can catch up on sleep this week.	16:03
Razique	hey annegentle :)	16:04
kbringard	annegentle: thanks	16:04
kbringard	it's even longer with a 3 year old and a 1 year old in the car :-D	16:04
annegentle	kbringard: oh yeah believe me I know :)	16:04
kbringard	hey nerdstein	16:05
kbringard	come over here	16:05
kbringard	Razique may be able to help you out	16:05
Razique	i'm pm with him ^^	16:05
*** po has joined #openstack		16:05
kbringard	ah, OK	16:05
nerdstein	kbringard: im good	16:05
nerdstein	thanks :)	16:05
kbringard	thanks… I was trying to help but I'm a little distracted and not much good at the moment :-)	16:06
*** obino has quit IRC		16:08
*** andreas__ has joined #openstack		16:08
Razique	kbringard: it's cool	16:10
foexle	Razique: verry suspicious issue .... i'll try to find out why the server don't generates fingerprints when i use this keypair	16:10
Razique	take care of urself :)	16:10
*** freeflyi1g has joined #openstack		16:11
*** ahasenack has quit IRC		16:11
*** jedi4ever has joined #openstack		16:12
kbringard	thanks	16:13
*** kbringard has quit IRC		16:13
*** freeflying has quit IRC		16:13
_rfz	still can't ping or access my VM's - even tho I have a public ip and internal ip's correctly setup	16:18
Razique	does glance from 2012.1 use s python 2.7 ?	16:18
foexle	_rfz: traceroute <ip>	16:18
*** bourke has quit IRC		16:19
foexle	_rfz: look where the package stops	16:19
*** bourke has joined #openstack		16:19
_rfz	foexle - stops at the VM	16:20
foexle	_rfz: hmm hmm	16:21
foexle	_rfz: can you login via ssh ?	16:21
*** dwcramer has joined #openstack		16:22
_rfz	I can on the internal IP	16:23
_rfz	let me see if the image has FW rules	16:24
*** imsplitbit has joined #openstack		16:25
*** dendrobates is now known as dendro-afk		16:25
*** rsampaio has joined #openstack		16:26
*** dendro-afk is now known as dendrobates		16:27
*** kaigan_ has quit IRC		16:28
*** jedi4ever has quit IRC		16:29
*** adjohn has quit IRC		16:31
*** rods has quit IRC		16:31
*** Bobbi has joined #openstack		16:33
foexle	where can i find url commands to using swift with keystone ?	16:33
*** dobber has quit IRC		16:34
Bobbi	Hey guys. I am trying to create an image of an instance with euca-create-image but I get error "Image 1 could not be found". I can confirm that the instance id I am using is valid. The images are also there because I can create new instances using them. Any hints?	16:35
_rfz	foexle - i'm losing a lot of packets in the internal network	16:37
*** vladimir3p has joined #openstack		16:37
foexle	_rfz: which network type do you use ?	16:38
_rfz	FlatDHCPManager	16:39
*** clayg has quit IRC		16:40
*** clayg__ is now known as clayg		16:40
*** pweiss has joined #openstack		16:40
*** clayg_ has joined #openstack		16:41
*** dwcramer has quit IRC		16:43
*** GheRivero has joined #openstack		16:47
foexle	Razique: do you know where i can find curl commands to use swift with keystone ?	16:52
foexle	i get tokens and all informations but dont know how i can upload files	16:52
*** obino has joined #openstack		16:53
*** nRy has joined #openstack		16:53
*** guigui1 has quit IRC		16:54
*** obino has quit IRC		16:57
*** obino has joined #openstack		16:57
*** krow has quit IRC		16:57
Razique	foexle: I've never used swift	16:57
Razique	shame on me :(	16:58
*** krow has joined #openstack		16:58
Razique	have u looked over the docs ?	16:58
annegentle	foexle: have you looked at http://docs.openstack.org/api/openstack-object-storage/1.0/content/ - then go to Troubleshooting chapter and you'll find some curl examles	17:01
foexle	yes its only with swift client	17:01
annegentle	examples that is. They're generic but the token works like X-Auth-Key if memory serves me	17:01
*** dendrobates is now known as dendro-afk		17:03
*** dolphm has joined #openstack		17:03
*** Bobbi has quit IRC		17:05
*** ohnoimdead has joined #openstack		17:05
*** Eyk^off is now known as Eyk		17:06
*** MarkAtwood has joined #openstack		17:06
*** negronjl_mobile has joined #openstack		17:07
*** negronjl_mobile is now known as negronjl		17:07
*** pweiss has quit IRC		17:10
*** jog0 has joined #openstack		17:11
*** juddm has joined #openstack		17:13
*** katkee has quit IRC		17:14
*** negronjl_mobile_ has joined #openstack		17:14
*** negronjl_mobile_ has quit IRC		17:16
*** negronjl has quit IRC		17:17
*** jedi4ever has joined #openstack		17:18
*** cereal_bars has joined #openstack		17:19
*** negronjl_mobile has joined #openstack		17:20
*** dolphm has quit IRC		17:20
*** rnorwood has joined #openstack		17:20
*** negronjl_mobile_ has joined #openstack		17:20
*** negronjl_mobile has quit IRC		17:21
*** negronjl_mobile_ is now known as negronjl		17:21
*** negronjl has joined #openstack		17:22
*** Ryan_Lane has joined #openstack		17:22
*** oubiwann has joined #openstack		17:24
*** jedi4ever has quit IRC		17:25
*** negronjl has quit IRC		17:25
*** negronjl has joined #openstack		17:26
*** rnorwood has quit IRC		17:28
*** cereal_bars has quit IRC		17:30
*** cereal_b_ has joined #openstack		17:30
*** foexle has quit IRC		17:31
*** jdg_ has joined #openstack		17:34
*** Bobbi has joined #openstack		17:35
*** cereal_bars has joined #openstack		17:36
*** cereal_b_ has quit IRC		17:36
*** jdurgin has joined #openstack		17:40
*** adjohn has joined #openstack		17:42
*** n0ano has joined #openstack		17:45
*** ejat has joined #openstack		17:45
*** ejat has joined #openstack		17:45
*** n0ano has quit IRC		17:45
*** vidd-away is now known as vidd		17:45
*** n0ano has joined #openstack		17:46
*** MarkAtwood has quit IRC		17:47
*** dillon-w has joined #openstack		17:52
dillon-w	hi guys, I really need some help here.	17:52
dillon-w	when i start a instance, it never got allocated ip from network service.	17:52
*** maplebed has joined #openstack		17:52
*** n8 has joined #openstack		17:54
dillon-w	from the network service log, i can see when network received RPC call from compute, network service then generated another RPC call, which i think isn't needed.	17:54
*** n8 is now known as Guest51120		17:54
*** dragondm_ has joined #openstack		17:54
dillon-w	maybe someone could help me understand the correct work flow for network service?	17:55
Guest51120	Has anyone seen a potential 'bug' in dashboard whereby the Allocable Storage under System Panel->Services for the node controller does NOT equal the used and physical?	17:55
Guest51120	dillon-w: I have a log of an instance startup across all services…the only thing it's missing is the glance activities since my instance's image was already cached on machine	17:55
*** Guest51120 is now known as n88		17:56
n88	In my compute node entry in dashboard it reads: Allocable Storage: 9.8TB (18.0GB Used, 144.0GB Physical)	17:57
n88	… don't quite know how you get 9.8 TB from 144.0GB - 18.0 GB	17:58
dillon-w	n88 : thx. i got similar log (that networkservice is working) too. from that log, i can see when network service received RPCcall to allocate ip, it didn't generate any more RPCcall.	17:58
n88	dillon-w: here's what I got: http://paste.openstack.org/show/3463/	18:01
n88	dillon-w: I'm guessing you're getting around lines 1.629 and 1.630 (in my time offset) but not the next few lines where IPs are allocated...correct?	18:02
*** pweiss has joined #openstack		18:02
n88	is there anybody here who's working on the dashboard project?	18:02
dillon-w	n88 : thx. that's nice log. how do you generate cross service log?	18:03
n88	dillon-w: I basically let my cloud sit 'idle' for a while….then fired an instance and grabbed the logs across all the services/machines and then dumped them into Excel	18:04
n88	I wanted to know all the steps across all services…I also made a flow diagram of the process across the services	18:04
uvirtbot	New bug: #850462 in horizon "Pause/Unpause a VM instance" [High,Confirmed] https://launchpad.net/bugs/850462	18:06
dillon-w	n88 : that's useful, i should do that. and yes, my network service stops at offset 1.630.	18:07
dragondm_	.	18:09
n88	dillon-w: so the usual set of questions now is…what type of network mode are you using?	18:10
*** darraghb has quit IRC		18:10
*** krow1 has joined #openstack		18:11
uvirtbot	New bug: #893226 in horizon "double dashboard - dashboard dashboard dashboard" [Undecided,New] https://launchpad.net/bugs/893226	18:11
dillon-w	n88 vlan	18:11
n88	dillon-w: ok…I've only been using FlatDHCP so my logs probably won't help you much…sorry should've asked that first…I'm sure some of the steps are the same, but for instance you won't get a floating IP	18:12
n88	dillon-w: I'm assuming you've got all the right settings in your nova.conf files like vlan_interface	18:12
n88	bridge_interface	18:12
*** egant has quit IRC		18:13
dillon-w	n88 : yeah, bridge_interface is correctly set.	18:13
*** redconnection has quit IRC		18:13
vidd	Kiall, you here?	18:13
Kiall	yea - give me a few mins	18:14
*** redconnection has joined #openstack		18:14
vidd	take whatever time you need =]	18:14
uvirtbot	New bug: #893229 in horizon "Allocable Storage Value Incorrect (not matching used, available resources)" [Undecided,New] https://launchpad.net/bugs/893229	18:15
*** GheRivero has quit IRC		18:16
n88	dillon-w: hmm…so you're not able to ping?	18:17
dillon-w	n88 : ping what?	18:17
n88	your instances?	18:17
n88	dillon-w: sorry I came into the chat room mid-convo so I'm not sure what your actual issue is :-)	18:18
dillon-w	n88 : my instances never got allocated ip.	18:18
*** redconnection has quit IRC		18:18
dillon-w	n88 : network service failed to allocate ip for instance, so compute never actaully start it.	18:19
n88	dillon-w: yes…if networking doesn't give it an address, it just stops and you get that error msg 'Found 1 instance in db and 0 instances on hypervisor'	18:19
n88	dillon-w: you created a private network range?	18:19
Razique	hey n88 :)	18:19
Razique	hey dillon-w :)	18:19
dillon-w	n88 : rite.	18:20
Razique	hey vidd	18:20
dillon-w	hey Razique, really need some help here.	18:20
vidd	wave Razique	18:20
n88	Here's Kiall's nova.conf template…he uses VLAN: https://github.com/managedit/openstack-setup/blob/master/nova.conf.tmpl	18:20
Razique	always cool to see u here guys ;D	18:20
Razique	dillon-w: let me go home	18:20
Razique	i'll be there in 30 mn tops	18:20
vidd	n88 i think i got my scripts all good to go	18:20
Razique	dillon-w: is it critical ?	18:20
*** Razique has quit IRC		18:21
dillon-w	Razique : well, i've been debugging for al day. and it's 2 am in the morning. :(	18:21
n88	dillon-w: you need a fixed_range setting, vlan_intefface, (possibly public interface)…as well as all the correct settings for DHCP	18:21
n88	(brdige_flagfile, bridge executable, forece_dhcp release if you want it to release internal IPs immediately)	18:21
dillon-w	n88 : you mean fixed range setting in nova.conf?	18:22
n88	dillon-w: you do need an internal private network even with VLAN mode	18:22
vidd	dillon-w, in nova.conf and also in nova database	18:22
*** adjohn has quit IRC		18:22
n88	dillon-w: yes you should have a fixed range setting in nova.conf as well as a private network created using the nova-manage command, i.e.: nova-manage entwork create private XX.XX.XX.XX/24 1 256	18:23
n88	your XX.XX.XX.XX/24 should be similar to your fixed range mask	18:23
dillon-w	i think i don't have fixed range setting in nova.conf , let me check	18:23
*** bengrue has joined #openstack		18:24
*** TheOsprey has joined #openstack		18:24
uvirtbot	New bug: #893234 in horizon "System Panel Services showing deleted Services" [Undecided,New] https://launchpad.net/bugs/893234	18:26
n88	the fixed_range setting can be a larger 'set', so you might do —fixed_range=192.168.0.0/16 in your nova.conf	18:26
n88	but your first network you may create as 192.16.4.0/24 using the nova-manage command	18:26
n88	(192.16.4.0/24 is contained by '192.168.0.0/16'	18:27
n88	vidd: awesome! Finally got all the pieces working?	18:27
*** JesperA has joined #openstack		18:27
vidd	n88, just about =]	18:28
*** bcwaldon has quit IRC		18:28
*** stuntmachine has quit IRC		18:29
dillon-w	n88 : well fixed_range covers the network I create	18:29
*** jakedahn has joined #openstack		18:30
*** bcwaldon has joined #openstack		18:31
uvirtbot	New bug: #893236 in horizon ""Error: Bad token, please reauthenticate" going from diablo to essex" [Undecided,New] https://launchpad.net/bugs/893236	18:31
*** MarkAtwood has joined #openstack		18:31
dillon-w	n88 : can you show me how the networks table looks in your setup?	18:33
*** Pr0toc0l has joined #openstack		18:33
uvirtbot	New bug: #893219 in horizon "clicking logo takes you to login form" [Undecided,New] https://launchpad.net/bugs/893219	18:33
dillon-w	output of SQL quiry like 'select * from networks';	18:33
*** cereal_bars has quit IRC		18:33
*** lorin1 has quit IRC		18:35
uvirtbot	New bug: #893243 in nova "Access IP4/6 values ignored in rebuild request" [Undecided,New] https://launchpad.net/bugs/893243	18:35
n88	sure: http://paste.openstack.org/show/3465/	18:35
n88	the columsn don't line up well in pastebin but you could copy to excel	18:36
dillon-w	n88 : that's good enough. thx!	18:36
*** Ryan_Lane has quit IRC		18:39
*** stuntmachine has joined #openstack		18:40
*** stuntmachine has quit IRC		18:40
*** stuntmachine has joined #openstack		18:40
*** Ryan_Lane has joined #openstack		18:41
*** scottjg has joined #openstack		18:43
*** dolphm has joined #openstack		18:46
dillon-w	n88 : didn't find any surprise in my network setting compared to yours.	18:46
*** CaptTofu has quit IRC		18:47
dillon-w	n88 : i should dig into source code	18:47
n88	dillon-w: hmm…and you're using a network switch taht supports vlan tagging?	18:47
n88	(if not running on a single box?)	18:47
*** Ryan_Lane has quit IRC		18:47
dillon-w	n88 : yeah, it worked before i upgrade to Diablo.	18:47
*** Ryan_Lane has joined #openstack		18:48
vidd	dillon-w, did you follow razique's upgrade guide?	18:48
dillon-w	vidd : i don't know of that.	18:48
vidd	http://docs.openstack.org/diablo/openstack-compute/admin/content/migrating-from-cactus-to-diablo.html	18:48
*** anotherjesse has joined #openstack		18:49
*** dachary has quit IRC		18:49
vidd	dillon-w, check that guide and see if you missed something =]	18:49
dillon-w	vidd : oh, that one. i looked into that and let me do that again.	18:49
*** hezekiah_ has joined #openstack		18:49
*** jaypipes has joined #openstack		18:50
vidd	n88 the issue i currently have is that i added the nova-volume stuff after i finished nova and horizon...	18:51
vidd	and now that nova-volume is up (it workes with euca) i cant see it in horizon	18:51
vidd	the service is listed in the services page, but its not on the menu on the left	18:52
n88	vidd: you mean you can't see the service in system panel?	18:52
n88	vidd: crap…wait is volumes supposed to be listed on the left?	18:53
vidd	yes	18:53
n88	crap…looks like I'm in the same boat	18:53
vidd	hehe its how you are supposed to assign volumes to instances	18:53
n88	vidd: but that's odd b/c my nova-volume service was running before i installed horizon	18:54
dillon-w	vidd n88 do you what '--multi_host' flag does?	18:54
*** frankon has quit IRC		18:54
n88	dillon-w: it allows you to install nova-network on all your nova-compute nodes	18:54
*** rods has joined #openstack		18:54
n88	dillon-w: to prevent a single point of network failure	18:54
vidd	dillon-w, if you have nova-network running on each compute node, you need to set that on	18:54
dillon-w	i see. so for now, i don't needit.	18:54
*** rods has quit IRC		18:55
n88	dillon-w: are you running nova-compute and nova-volume on a single box?	18:55
dillon-w	n88 : yea, for debugging purpose	18:55
n88	vidd: you can still assign volumes via command line...	18:55
n88	vidd: is that a service you need to have in keystone's services table?	18:56
vidd	n88 yes....but still...its kinda important =]	18:56
*** llang629 has joined #openstack		18:56
*** llang629 has left #openstack		18:56
*** Razique has joined #openstack		18:56
n88	vidd: it's odd b/c under my System Panel->Services it shows nova-volume enabled and UP	18:56
n88	and even a way to disable it	18:56
dillon-w	Razique : hey	18:56
Razique	dillon-w: yup	18:56
n88	vidd: and I guess re-installing dashboard didn't help huh?	18:56
vidd	i never had it there b4 and it worked before...but i dont know if that was from git or if it worked correctly with kiall's ppa =\	18:56
Razique	so what's the status here ?	18:56
vidd	satus=1	18:57
vidd	=]	18:57
vidd	n88 yeah...i have it under the services	18:57
dillon-w	Razique : so the problem i encounter is, when i start a new instance, 'compute' does a RPC call allocate_for	18:57
vidd	but there is supposed to be a menu for it as well	18:57
Pr0toc0l	i have a quick question regarding running nova-volume on a separate ubuntu server, what other packages must i install other than nova-volume? nova-common? nova-api?	18:58
n88	vidd: sigh it never ends, does it?	18:58
dillon-w	allocate_for_instance to network requesting for IP allocation, when network service got that, it doesn't actually do the allocation.	18:58
n88	vidd: have you looked into dashboard's manage.py commands? like reset? purge? clear, etc?	18:58
dillon-w	but instead, do another RPC call.	18:58
vidd	n88 and i made the mistake of telling the powers that be what swift can do....i could hear the drool over the phone =]	18:58
Razique	dillon-w: ok, can I see both nova-network and nova-compute logs ?	18:59
dillon-w	sure	18:59
Pr0toc0l	...	19:00
vidd	n88, im waiting for kiall to become available...i wanted to see if he had the issue before i start playing with things i dont understand =]	19:00
Kiall	lol	19:00
Razique	Pr0toc0l: nova-volume and iscsitarget is enough	19:01
vidd	Kiall, does your dashboard have a menu option for volumes?	19:01
Pr0toc0l	thank you razique for the clarification	19:01
Razique	sure :)	19:01
Kiall	No. Thats the essex dashboard, and a pre-diablo version	19:01
*** dragondm has left #openstack		19:02
vidd	ok...so NO to the playing with stuff i dont understand =]	19:02
n88	Kiall: Whew! No more trouble then	19:02
Kiall	vidd, lol	19:03
*** stuntmachine has quit IRC		19:03
Kiall	n88, was it you who had the issue upgrading my older nova-volume package after the tgt vs iscsitarget issues?	19:04
_rfz	I need help :) I can't ping or ssh into my VM's from remote - local IP works fine. I've done opened up ICMP + SSH on nova, the rules are there but nothing	19:04
dillon-w	Razique : this is for nova-compute	19:04
dillon-w	http://paste.openstack.org/show/3470/	19:04
*** dolphm has quit IRC		19:04
Razique	dillon-w: weird log :D	19:05
*** dpippenger has joined #openstack		19:06
dillon-w	Razique : and this is for nova-compute http://paste.openstack.org/show/3471/	19:06
vidd	_rfz, you can ping/ssh to the private ip but not the floating ip ?	19:06
dillon-w	Razique : weird in which way?	19:06
Razique	dunno it's like they don't contain enough information	19:06
Razique	which version are u using ?	19:06
_rfz	hi vidd, yep that's correct	19:06
Bobbi	Hey guys. I am trying to create an image of a running instance with euca-create-image but I get an error: "Image could not be found". I can confirm that the instance id I am using is valid. The referenced image is also available as I can create new instances using it. Any hints?	19:08
vidd	_rfz, interesting...i just tested mine and im having the same issue =\	19:08
*** bcwaldon has quit IRC		19:09
vidd	Bobbi, have you tried "snapshot"?	19:09
_rfz	I've tried with flatdhcp and vlan - both are the same	19:09
*** stuntmachine has joined #openstack		19:11
Bobbi	vidd, no didn't think of it	19:11
n88	bobbi: look into the nova manage command	19:11
n88	nova manage image-create	19:11
dillon-w	Razique : i'm using diablo RHEL packaging from griddynamic	19:12
Razique	dillon-w: ow ok	19:12
Razique	I knew something were slightly different :p	19:12
dillon-w	Razique : same version works on another setup here.	19:12
Bobbi	n88: thanks, I will give it a try	19:13
Razique	dillon-w: can you spawn a new instance and send me both logs while doing it ?	19:14
*** adjohn has joined #openstack		19:14
_rfz	kiall, are you able to ping the public IP address in your setup? (I used your debpackages)	19:14
Razique	dillon-w: what is weird here is that the network set up the routes and stuff	19:15
dillon-w	well, the log i paste just now is exactly what you wanted	19:15
vidd	n88, i tried to add a security rule via horizon and get "Error adding rule security group: Invalid cidr 0.0.0.0.0/0."	19:15
Kiall	_rfz, humm>	19:15
vidd	_rfz, do you have security rules listed for your "default" group?	19:15
*** praefect_ has joined #openstack		19:16
Kiall	everything bar the instance itself can ping the floating IPs, assuming the sec group allows for it	19:16
_rfz	PERMISSION1defaultALLOWSicmp-1-1FROMCIDR0.0.0.0/0	19:16
_rfz	and same for tcp	19:16
Razique	dillon-w: yah sorry i figured	19:16
Razique	dillon-w: i'll eat while reading the logs	19:17
*** chomping has quit IRC		19:17
Razique	be back soon	19:17
dillon-w	Razique : thx.	19:17
*** javiF has quit IRC		19:17
*** krow1 has quit IRC		19:17
vidd	_rfz, are you using dashboard?	19:17
*** cmasseraf has joined #openstack		19:17
Kiall	_rfz, and where are yout pinging from?	19:17
n88	vidd: odd…are you admin for that tenant?	19:17
*** praefect has quit IRC		19:18
vidd	n88, yes	19:18
dillon-w	Razique : the weird thing i found is, when network service received the RPC call 'allocate_for_instance' it then do another RPC call. that's...	19:18
*** coli has quit IRC		19:18
vidd	192.168.0.0/16 worked just fine	19:18
n88	speaking of admin….does anybody know the set of 'roles' keystone 'supports'? using Kiall's packages I have admin, member, KeystoneAdmin, KeystoneServiceAdmin…are there any more?	19:19
vidd	_rfz, are you using dashboard?	19:19
n88	vidd: that's really odd. You sure you didn't mistype the CIDR?	19:19
n88	have an extra period or slash? space	19:19
Kiall	_rfz, Keystone supports pretty much any role you want...	19:19
_rfz	vidd, nah I'm using ecuatools but dashboard works also	19:19
Kiall	its the other services that need to know what to do with them..	19:19
_rfz	kiall I'm pinging from my home network	19:19
Kiall	and right now, thats it AFAiK	19:19
*** coli has joined #openstack		19:19
vidd	_rfz, you DO have dashboard turned on though...right?	19:20
_rfz	vidd - yes	19:20
*** JesperA has quit IRC		19:20
Kiall	_rfz, dashboard makes no difference to ping'ing an instance ;)	19:20
Kiall	vidd, *	19:20
vidd	_rfz, check to see if dashboard "inherited" the default security group...mine did not, and i hade the same issue	19:20
n88	Kiall: Ah…so the roles can be anythign that another openstack 'service' can handle or expects	19:20
n88	like projectmanager	19:21
vidd	i added it to horizon, issue resolved (dorta)	19:21
n88	for nova	19:21
_rfz	the default security group in dashboard is "default"	19:21
vidd	_rfz, right...does it have any rules in it	19:21
Kiall	n88, exactly	19:21
vidd	bet you dollars to donutes it does NOT	19:21
*** jedi4ever has joined #openstack		19:21
n88	Kiall: Ok….is there a list of all the roles for each service? Also, is there any way to make new 'roles' by assigning permissions or does that get into code modifications?	19:22
*** bonzay is now known as zz_bonzay		19:22
_rfz	vid it does not	19:22
*** ayyansam has joined #openstack		19:22
Kiall	n88, code changes.. and I dont know of such a list	19:22
Kiall	I think it will eventually be easier to make new roles etc.. but I havent looked into the essex keystone updates	19:22
*** ayyansam has quit IRC		19:23
*** clopez has joined #openstack		19:23
n88	Kiall: got it. Thanks for the answers	19:23
vidd	_rfz, i dont care what Kiall says...dashboard having no rules trumps euca (dunno why, it juyst does)	19:23
*** jedi4ever has quit IRC		19:23
_rfz	vidd, I've just added the rules and still nada	19:23
Kiall	vidd, I can explain that..	19:23
*** JesperA has joined #openstack		19:23
vidd	add your rules via the dashboard and your problem will go away	19:23
Kiall	2x tenants, euca using 1, dash using another	19:23
*** dolphm has joined #openstack		19:24
n88	Kiall, vidd: yeah there's no way to tell euca what tenant, corrrect?	19:24
Kiall	both the euca, nova and dashboard edit the same set of rules. Assuming they are using the same tenant.	19:24
n88	I've found that the euca-* commands are good for some things and should be avoided at all costs for others :-P	19:24
*** lorin1 has joined #openstack		19:24
Kiall	n88, by using the correct credentials, you can	19:24
*** lorin1 has quit IRC		19:24
*** lorin1 has joined #openstack		19:24
n88	Kiall: you're right…there is a project name you can set	19:24
*** bcwaldon has joined #openstack		19:24
Kiall	the euca tools, for admin users, never resrict to a single tenant. if i remember right.. PITA	19:25
_rfz	VIdd, still same problem	19:25
n88	Kiall: it's just somewhat annoying too that Openstack components use the concept of 'project' but Dashboard has tenants	19:25
vidd	_rfz, is that security group assigned to the instance in horizon?	19:25
*** sdake has quit IRC		19:25
Kiall	n88, yea, that should be fixed in essex	19:25
Kiall	remember, that horizon is not an offical project in diablo	19:26
*** clauden_ has joined #openstack		19:26
*** dirkx_ has joined #openstack		19:26
*** Bobbi has quit IRC		19:26
_rfz	vidd, yep default is assigned to that instance	19:27
vidd	n88, you were right...i messed up the cidr address...had an extra ".0"	19:27
vidd	_rfz, disassociate the floating ip and then reassign it	19:28
vidd	see if that helps	19:28
*** dendro-afk is now known as dendrobates		19:28
*** sdake has joined #openstack		19:28
vidd	Kiall, does this mean with essex, we are going to have to do all this all over again?	19:29
*** juddm has quit IRC		19:29
* vidd is looking to a long July with upgarding to essex		19:29
Kiall	Ask the dev's ;) But - I would be very suprised if it wasnt an easy-ish upgrade	19:29
Kiall	vidd, book your holiday time ;)	19:29
_rfz	vidd same thing- still no ping or ssh	19:30
*** krow1 has joined #openstack		19:30
*** nacx has quit IRC		19:31
vidd	_rfz, this is going to sound stupid....is your floating range accesable to your network?	19:31
_rfz	it is	19:31
_rfz	I think :)	19:31
*** jdg_ has quit IRC		19:32
vidd	for example, my home network is on the 192.168.15.x range so if my floating ip's are in the 192.168.1.x range, my local network will not be able to access it	19:32
*** cp16net has joined #openstack		19:32
*** negronjl_mobile has joined #openstack		19:33
*** MarkAtwood has quit IRC		19:33
_rfz	My floating addies are 200.XX.XX.XX my local network is 192.160.0.0	19:33
vidd	_rfz, there is your issue	19:33
*** GheRivero has joined #openstack		19:33
vidd	your loacal network able to see the 200.x.x.x range?	19:34
vidd	(before i conclude this is actually the issue)	19:34
_rfz	Yeh it should be able to	19:35
_rfz	i can ping both ranges from withtin the VM	19:35
vidd	what is the IP address of the controller node? 200.x.x.x?	19:35
*** rnorwood has joined #openstack		19:35
*** Ryan_Lane has quit IRC		19:36
uvirtbot	New bug: #791444 in horizon "Display keypair in instance detail" [Medium,Confirmed] https://launchpad.net/bugs/791444	19:36
vidd	_rfz, your VM is INSIDE both ranges	19:36
_rfz	I've got everything on 1 machine for now	19:36
_rfz	the controller node is 200.xx.xx.xx	19:36
vidd	hrm =\	19:37
*** Bobbi has joined #openstack		19:37
vidd	can a second computer inside your local network ping the controller?	19:37
_rfz	I reverted back to a single machine setup to elimate errors	19:38
_rfz	the 200.xx.xx.xx yep	19:38
vidd	_rfz, i must say i'm baffled	19:39
*** bengrue has quit IRC		19:39
*** bengrue has joined #openstack		19:40
_rfz	what type of network setup are you using ?	19:40
* vidd is using flatdhcp		19:40
_rfz	and you have it working?	19:41
*** clauden_ has quit IRC		19:41
vidd	yep	19:41
_rfz	Okay	19:41
_rfz	let me try flatdhcp	19:41
*** sdake has quit IRC		19:41
*** dachary has joined #openstack		19:41
uvirtbot	New bug: #893270 in horizon "delete keypair should be "red"" [Undecided,New] https://launchpad.net/bugs/893270	19:41
*** clauden_ has joined #openstack		19:41
*** sdake has joined #openstack		19:41
vidd	Kiall, i still do not understand why horizon wants to use "127.0.0.1" for the ip of vnc	19:43
*** coli has quit IRC		19:43
Kiall	because thats the defaults for --vncproxy_url=http://78.153.XX.XX:6080	19:44
*** nelson1234 has quit IRC		19:44
*** scottjg has quit IRC		19:44
Kiall	you pasted yours yesterday, and it was an invalid URL.. I'm betting is still is ;)	19:44
vidd	but i changed that	19:44
*** nelson1234 has joined #openstack		19:44
Kiall	double check it ;)	19:44
_rfz	vidd/kiall- do you have a nova.conf with a flatdhcp configuration? I coud use?	19:45
praefect_	hey, libvirt.xml changed a lot since cactus, now that I use diablo, how can I know I'm using virtio as the network driver for my VMs ?	19:46
vidd	_rfz, apparently not =]	19:46
praefect_	the libvirt.xml of the running instance does not list anything except a bridge interface...	19:47
dillon-w	Razique : it's too late. i don't want to do a whole nighter. so I'm leaving for bed... will check with you tomorrow. thank you in advance	19:47
_rfz	:)	19:47
*** MarkAtwood has joined #openstack		19:50
*** jedi4ever has joined #openstack		19:51
*** jedi4ever has quit IRC		19:51
*** dillon-w has quit IRC		19:52
cmasseraf	has anyone ever seen this error? http://pastebin.com/dDvwm0dm	19:52
cmasseraf	it happens with all nova-manage calls	19:52
*** bcwaldon has quit IRC		19:53
vidd	cmasseraf, root should not be making "sudo" calls	19:53
vidd	cmasseraf, what version on nova?	19:55
cmasseraf	sorry	19:55
cmasseraf	wrong copy	19:55
swill	has anyone gotten swiftauth to work with swift beyond just the admin account? I have the admin account working, but no other account works (500 Error).	19:55
cmasseraf	but the newest in the apt-get	19:56
*** mdomsch has quit IRC		19:56
*** Ryan_Lane has joined #openstack		19:56
vidd	cmasseraf, did you add Kiall 's ppa which has fixes for most know issues?	19:57
swill	I have confirmed that using the swift -A command will create tokens on the keystone side.	19:57
swill	i can then do curl commands to get auth details for the token it creates, but the swift command returns an error.	19:57
cmasseraf	no	19:58
*** hggdh has quit IRC		19:58
cmasseraf	what do I add?	19:58
vidd	cmasseraf, are you also trying to integrate keystone?	19:58
cmasseraf	no	19:59
vidd	cmasseraf, check out https://github.com/managedit/openstack-setup	19:59
vidd	cmasseraf, do you plan to include keystone?	20:00
*** mdomsch has joined #openstack		20:01
phschwartz	Ok, I am back to square one. I can launch instances, but they all fail to get cloud info from 169.254.169.254. The nat rule is in iptables, but I am not sure why it is doing it. Anyone able to point me in the right direction?	20:01
cmasseraf	yes	20:01
cmasseraf	but I'm trying to get the openstack to run before adding anything (I'm trying withou success since last week)	20:02
vidd	cmasseraf, then i highly recommed following Kiall 's scrpts to get it all running	20:02
vidd	with good connection speeds, all done in < 3hours	20:03
cmasseraf	ok, the thing is... it uses 2 NIC and I only have one in the servers (it's a university lab cluster for computations)	20:04
phschwartz	cmasseraf: I ran into the same issue. I just set both to the same nic and I can spawn instances	20:05
*** hggdh has joined #openstack		20:05
vidd	my scripts are highly experimental, and are designed for single eth	20:05
vidd	but are based off Kiall 's scripts	20:05
vidd	https://github.com/vidd/openstack_installer	20:05
phschwartz	I am not sure if the issue I am having with the access to 169.254.169.254 is related to the fact that I have one nic.	20:06
*** jedi4ever has joined #openstack		20:06
cmasseraf	phschwartz: oh, perfect... then they all get assigned statically or by DHCP?	20:06
*** jedi4ever has quit IRC		20:06
*** redconnection has joined #openstack		20:06
phschwartz	Actually, it is doing it via vlan with a fixed ip range.	20:06
phschwartz	Works nicely for it at the moment.	20:06
vidd	for one eth per server i recommend flat networking...not vlan	20:06
*** Bobbi has quit IRC		20:07
*** dnjaramba has quit IRC		20:08
vidd	Kiall, so i set --vncproxy_url=http://$nova_host:6080 and now the vnc console does not come up at all	20:09
Kiall	heh	20:09
vidd	should i take down the --vncproxy_port=6080	20:09
Kiall	Well, I dont have that setting.. so maybe?	20:10
vidd	$nova-host is the same machine running NoVNC	20:10
Kiall	I think thats the default BTW	20:10
vidd	and you said --vncproxy_host=0.0.0.0 ...right?	20:10
*** lorin11 has joined #openstack		20:10
Kiall	all i have in my config re VNC is: --vncserver_host=0.0.0.0	20:11
Kiall	--vncproxy_url=http://%HOST_IP%:6080	20:11
vidd	sweet =]	20:12
vidd	we have contact =]	20:12
Kiall	lol	20:12
*** lorin1 has quit IRC		20:12
Kiall	what was it?	20:12
*** mdomsch has quit IRC		20:13
vidd	i dropped the --vncproxy_port	20:13
Kiall	weird.. wonder why that caused it	20:13
vidd	and added the --vncproxy_url	20:14
Kiall	oh, vncproxy_url wasnt set? that explains it ;)	20:14
*** rnorwood has quit IRC		20:14
vidd	my thinking is it was doing vncproxy_url + vncproxy_port	20:15
*** rnorwood has joined #openstack		20:15
vidd	so making an address like 192.168.X.X:6080:6080	20:15
*** rnorwood has quit IRC		20:15
Kiall	humm. weird..	20:15
Kiall	rmk, ping	20:16
*** dotdevops has joined #openstack		20:16
vidd	when i had no vncproxy_url, but did have vncproxy_port, i was getting url with 127.0.0.1	20:16
vidd	so i had to replace the ip with the correct IP	20:16
vidd	when i added the vncproxy_url and left the vncproxy_port, i was getting a timeouit	20:17
Kiall	Okay - so vncproxy_port is the port the service binds on	20:17
Kiall	while vncproxy_url is the full URL (inc :6080) to access the service	20:18
vidd	right...but apearently you cannot set the URL AND the port	20:18
phschwartz	So I found my issue. for single nic with kiall's in vlan mode, you can't use the localhost ip, you need the public ip of the system. so no 127.0.0.1	20:18
phschwartz	instance came up perfect with it set to the real ip.	20:18
Kiall	vidd, actually, both are needed, vncproxy_port defaults to 6080 while vncproxy_url defaults to http://127.0.0.1:6080	20:19
vidd	phschwartz, did you look at my scripts at all?	20:19
Kiall	phschwartz, dooh.. yea.. avoid 127.0.0. pretty much everywhere ;)	20:19
vidd	Kiall, that is obviously NOT correct...i had both and it timed out	20:20
phschwartz	yes, Issue I see is the actual configuration differences between single nic with vlan and flat is not far off. I modified with 2 config flags from vlan to flat after the install.	20:20
Kiall	vidd, they are used by 2 different parts of nova	20:20
* Kiall adds --vncproxy_port=6080 to test		20:20
vidd	Kiall, you said 10 minutes ago that you do NOT have --vncproxy_port set in your .conf	20:21
Kiall	I dont..	20:21
Kiall	hence why I'm adding it to test	20:21
Kiall	But - I've read the code, and I belive both are needed	20:21
Kiall	It just so happens the default --vncproxy_port was the correct value for me	20:21
phschwartz	to have vnc to it, is there any special services I need to install? your talk has me intrigued :)	20:21
* vidd read the code too [have no idea how it works....but ive read it ]		20:21
Kiall	phschwartz, your using my packages you said?	20:22
phschwartz	kiall: your latest correct	20:22
Kiall	If you are.. just openstack-novnc and nova-vncproxy on the controller node	20:22
phschwartz	used the all in one script.	20:22
Kiall	(or the VNC node if you have lots of hardware)	20:22
Kiall	phschwartz, then VNC should already be working	20:22
*** adjohn has quit IRC		20:23
*** anotherjesse_ has joined #openstack		20:23
*** adjohn has joined #openstack		20:23
vidd	phschwartz, im forking Kiall 's code for my own uses (like having different database usernames and passwords)	20:23
*** dirkx_ has quit IRC		20:23
n88	Kiall: So then I just point my web browser to the VNC URL using say chrome?	20:23
phschwartz	Only issue I see is your fork isn't in sync with his. He has made some nice changes to his recently that looked to be missing from yours.	20:24
* vidd does not like the "use root for your database usernames and let root be available from everywhere		20:24
* Kiall doesnt mind it for "install quick", them customize to suit		20:24
phschwartz	kiall: hmm openstack-novnc is installed, nova-vncproxy is not running and stops the moment it is started.	20:25
*** anotherjesse has quit IRC		20:25
*** anotherjesse_ is now known as anotherjesse		20:25
Kiall	phschwartz, any error?	20:25
vidd	phschwartz, what changes do you see that i dont have?	20:25
* vidd has been busy ironing out bugs to add new stuff		20:25
phschwartz	Kiall: not that I see in the nova-vnc log	20:26
Kiall	right soo.. dpkg -l \| grep nova-vncproxy ?	20:26
phschwartz	ii nova-vncproxy 2011.3+20111111-0mit3 OpenStack Compute - VNC proxy	20:27
Kiall	thats the latest package alright.. weird	20:27
n88	Kiall: how do I get the URL from the API…the vnc doc page doesn't have the right command	20:27
Kiall	n88, I've never actually needed it from the API.. Always just clicked the dashboard link ;)	20:28
phschwartz	meh, I will leave it at this. I never have the need for a graphical install so no need for me to worry about it.	20:28
*** nelson1234 has quit IRC		20:28
Kiall	vidd, well.. for a moment, I thought you were right	20:28
Kiall	But instead you've shown up a bug in my firewall rules ;)	20:29
Kiall	Need to allow 6080 without the VPN connection ;)	20:29
vidd	hehe then perhaps i have the same bug	20:29
*** dirkx_ has joined #openstack		20:29
n88	Kiall: oh…gotcha. The 'in progress' doc page mentions a bogus command that you should be able to use from the nova api to get the url	20:30
n88	but I will look at it via dashboard	20:30
*** JesperA has quit IRC		20:31
Kiall	Yea - Cant get VNC going from outside the office ;) Not sure what port I've missed..	20:31
*** negronjl_mobile has quit IRC		20:31
Kiall	OMG. Thats a test instance on a node a shutdown earlier -_-	20:32
Kiall	No wonder	20:32
*** nelson1234 has joined #openstack		20:33
Kiall	vidd, yup. it 100% works with both set	20:33
*** dendrobates is now known as dendro-afk		20:34
*** JesperA has joined #openstack		20:35
vidd	where did you set the firewall rule?	20:35
Kiall	on our firewalls ;)	20:36
vidd	so NOT the controller	20:36
Kiall	we have a pair of cisco FW's front and center, it was blocking 6080 from the outside world	20:37
*** sfvg has joined #openstack		20:37
*** pweiss has quit IRC		20:38
*** GheRivero has quit IRC		20:38
*** dprince has quit IRC		20:39
*** n0ano has quit IRC		20:39
sfvg	hello....what is the best script for testing openstack in a vm?	20:39
*** dendro-afk is now known as dendrobates		20:40
Kiall	sfvg, devstack is great + well tested for a quick and dirty test	20:40
vidd	Kiall, i dont understand why it works for you and not for me =\	20:40
*** cereal_bars has joined #openstack		20:40
Kiall	add it back, and i'm betting it will still work ;)	20:40
Kiall	you probably had a typo or something!	20:40
Kiall	Wouldnt be first time	20:40
Kiall	I seem to remember a "--vncproxy_url=http://127.0.0.1/:6080" ;)	20:41
vidd	--vncproxy_port=6080	20:41
sfvg	kiall: thanks...once I get past devstack...what is the best scripts for getting everything installed for a proof of concept?	20:41
vidd	Kiall, there was never a --vncproxy_url=http://127.0.0.1/:6080 it just wasnt there	20:41
Kiall	sfvg, that depends I suppose, if you want keystone+the dashboard, probably mine ;) Othewise, The stock ubuntu packages work well	20:42
sfvg	kiall: i need to test the entire stack	20:42
swill	wow this is messed up. in swift_auth, i have narrowed down my error to the line conn = http_connect(...). the strange thing is that if i run the same exact thing from a python console it works, but it fails in the script.	20:42
Kiall	well, this gives you keystone+dashboard+nova+glance on ubuntu oeniric http://github.com/managedit/openstack-setup	20:43
Kiall	I've never had a need for swift, hence there is nothing in that repo for it	20:44
sfvg	kiall: thanks....is this diablo?	20:44
Kiall	yea - its the stable/diablo branch	20:44
*** GheRivero has joined #openstack		20:44
sfvg	perfect...i do need to test swift also...can I just add that?	20:44
Kiall	Yea - It should be possible to just set that up manually, its not required by anything else so it should be find to add after the fact	20:45
vidd	Kiall, yes...they work together...horizon jut thought compute and nova-network was down -=	20:45
vidd	restarted both, all is well and good in the world	20:45
sfvg	kiall...thanks for all the info	20:46
Kiall	If you want a quick and dirty OS test with that, give ./all-in-one.sh a go in a VM with 2x NIC's eth0 = something public, and eth1 just needs to exist for a single server test with my scripts	20:46
Kiall	(edit the settings file first...)	20:46
vidd	Kiall, i think mys cripts are ready for prime-time =]	20:46
sfvg	ok..i will give that a go	20:46
Kiall	vidd, we'll see ;)	20:46
vidd	Kiall, going to give them a go?	20:47
Kiall	Yea - If they actually work yet ;)	20:47
vidd	just pushed the vnc-proxy fix =]	20:48
vidd	should be good to go	20:48
*** odyi has quit IRC		20:48
vidd	i have not added all your new-and-improved glance uploads yet though	20:49
*** krow1 has quit IRC		20:49
n88	vidd/Kiall: for vnc this document is not entirely correct, but does highlight the settings/flags correctly I think: http://nova.openstack.org/runnova/vncconsole.html	20:49
vidd	and these scripts are currently designed for single eth	20:49
Kiall	n88, I've had VNC working for ages ;) Was just checking something for vidd	20:50
* vidd needs to go snooping through Kiall 's scripts for more improvements =]		20:52
Kiall	I dont think I've chnaged anything other than the default images	20:53
vidd	you fixed your broken ec2 creds	20:53
rmk	Kiall: here now	20:53
Kiall	did i?	20:54
Kiall	rmk, where was that PPA of your's buried with the replacement vncproxy?	20:54
vidd	keystone-manage credentials add admin EC2 'admin:admin' %ADMIN_PASSWORD% admin is not going to work i think	20:54
vidd	the ' marks will be put into the database	20:54
Kiall	vidd, no they wont...	20:55
vidd	should probably be keystone-manage credentials add admin EC2 admin:admin %ADMIN_PASSWORD% admin	20:55
rmk	Kiall: It's an ugly package -- you're welcome to redo any part of it	20:55
Kiall	meh .. the quotes are fine.. standard bash parameter handling	20:55
*** krow1 has joined #openstack		20:56
rmk	Kiall: btw your glance build doesn't seem to auth against keystone without passing a token via -A	20:56
Kiall	rmk, I just wanted to have a quick go and see how it works in chrome	20:56
rmk	Kiall: cool -- yeah it should "just work"	20:56
Kiall	rmk, I was under the impression that was required?	20:56
rmk	Kiall: Nope, should not be required if the OS_ variables are present	20:56
rmk	There was a fix for that somewhere, I thought it made its way into stable.	20:57
vidd	rmk, i dont hink Kiall passes the OS_ variables	20:57
Kiall	well, its the latest version of stable/diablo .. at least, it was a few days ago	20:57
Kiall	vidd, I do in my novarc file.. Just not in the scripted stuff	20:57
Kiall	Anyway - rmk, you wouldnt remember fix? I'm pretty sure there has been no stable/diablo fixes for glance until very recently..	20:58
Kiall	And thats if any of them have made it past gerrit yet..]	20:58
rmk	Kiall: Your last glance build was 10/21	20:59
rmk	Kiall: There are a bunch of commmits there now	20:59
Kiall	rmk, they were only merged very recently :)	20:59
rmk	yeah just noticed	21:00
rmk	checking if any of those commits fix it	21:00
Kiall	But since they are cherry picked from master, they look older	21:00
Kiall	rmk, it looks like they are very recent..	21:01
Kiall	as in the oldest chance was merged Mon, 21 Nov 2011 18:55:26 +0000	21:02
Kiall	thats like.. 3 hours ago ;)]	21:02
*** llang629_ has joined #openstack		21:02
rmk	Hrm, look at the nov18 commits.	21:02
rmk	There are patches from a while ago.	21:02
rmk	Committed recently, authored a month ago.	21:03
Kiall	They were comitted to master a while ago	21:03
Kiall	merged to stable/diablo a few hours ago ;)]	21:03
rmk	ah right	21:03
*** mikeyp has joined #openstack		21:03
*** PotHix has quit IRC		21:04
*** mikeyp has quit IRC		21:06
rmk	This might just be a pipeline issue	21:06
*** MarkAtwood has quit IRC		21:07
Kiall	rmk, really? Let me know what you find!	21:07
*** mikeyp has joined #openstack		21:07
*** mikeyp has left #openstack		21:07
*** nerdstein has quit IRC		21:09
*** hggdh has quit IRC		21:10
*** jj0hns0n has joined #openstack		21:10
*** Razique has quit IRC		21:11
*** hggdh has joined #openstack		21:16
*** llang629_ has left #openstack		21:16
*** krow1 has quit IRC		21:19
*** clopez has left #openstack		21:19
*** mikeyp has joined #openstack		21:20
*** krow1 has joined #openstack		21:22
*** martines has quit IRC		21:24
*** mgoldmann has quit IRC		21:25
*** andrewbogott has quit IRC		21:25
*** primeministerp has quit IRC		21:28
uvirtbot	New bug: #893333 in openstack-integration-tests "Add test get large object in 995_test_swift.py " [Undecided,New] https://launchpad.net/bugs/893333	21:31
*** andrewbogott has joined #openstack		21:31
*** martines has joined #openstack		21:32
*** lorin11 has quit IRC		21:37
*** miclorb_ has joined #openstack		21:37
*** MarkAtwood has joined #openstack		21:38
rmk	Is anyone using cloudpipe?	21:38
_rfz	Vidd - you are 100% right - you need to add the rules to the seurity groups via dashboard	21:39
_rfz	I've got flatdhcp working	21:40
_rfz	rmk not yet	21:41
Kiall	_rfz, no no no. vidd is absolutely not correct! The dashboard+euca2ools+novaclient all edit the same set of rules.	21:42
Kiall	Assuming you are logged into the same tenant	21:42
Kiall	-_-	21:42
_rfz	let me see	21:42
_rfz	I'm tennant 1	21:42
_rfz	on dashboard	21:42
*** praefect_ has quit IRC		21:43
Kiall	_rfz, were you using the euca tools? or novalcient?	21:43
_rfz	eucatools	21:43
_rfz	I've your setup	21:43
*** hezekiah_ has left #openstack		21:43
_rfz	I can't type	21:43
_rfz	I've used your packages kiall	21:43
_rfz	so all the end points are as per you've defined	21:44
_rfz	and I when I use ecua2ools they rules don't do anything	21:44
*** dendrobates is now known as dendro-afk		21:44
Kiall	Do you only have 1 tenant?	21:44
*** clauden_ has quit IRC		21:45
_rfz	3	21:45
*** clauden_ has joined #openstack		21:45
_rfz	admin, demo and one of mine	21:45
_rfz	all tenants and endpoints have been created from your script	21:45
Kiall	then euca is connected to one of those other tenants	21:46
Kiall	go check their default groups for those rules you added ;)	21:46
_rfz	tennant 1	21:46
_rfz	GROUP1defaultdefault	21:46
_rfz	PERMISSION1defaultALLOWSicmp-1-1FROMCIDR0.0.0.0/0	21:46
*** clauden_ has left #openstack		21:46
_rfz	that is with euca2ools	21:46
_rfz	via dashboard it's 2	21:46
_rfz	so it's demo	21:47
Kiall	yea - so euca2ools was connected to the wrong tenant, assuming you wanted them to talk to the "demo" rather than "admin" tenant	21:47
_rfz	Yes, I see your right	21:47
_rfz	100% right	21:48
_rfz	I was logged in as demo	21:48
Kiall	vidd was saying that adding rules via the CLI doesnt work.. It does.. Just euca2ools doesnt have a tenant dropdown, you need the right env variables	21:48
_rfz	I've just logged in as admin (1) and I can see the rules I created via euca2ools	21:48
Kiall	:)	21:48
_rfz	what a head f**k :)	21:49
Kiall	If you switch your EC2* variables to something associated with demo (2), they will appear there instead...	21:49
vidd	_rfz, what you add in euca will ONLY affect the specific user you have in your env at the time you do it	21:49
Kiall	exactly - thats not what you said earlier though ;)	21:50
_rfz	Yep I understand now	21:50
_rfz	and my euca2ools env is tennant 1	21:50
vidd	Kiall, am i now no longer allowed to learn? =]	21:50
_rfz	let me try bring up another node	21:50
Kiall	vidd, nope. from now on, you get beaten each time you slip up!	21:51
_rfz	haha	21:51
* vidd has gained a greater understanding [and hatred] of horizon		21:51
Kiall	_rfz, you in? ;)	21:51
Kiall	vidd, lol .. Overcomplicating stuff again? ;)	21:51
_rfz	I'm in for the learning :)	21:52
vidd	Kiall, it IS complicated	21:52
vidd	methinks you oversimplify	21:52
Kiall	horizon has exactly 3 setting that ever needs changing DB, Swift=off, Quantum=Off, how is that complicated? ;)	21:52
_rfz	Do I need to create a bridge device on my compute nodes also?	21:53
Kiall	_rfz, I thought you were using VLAN mode?	21:53
_rfz	I gave up :)	21:53
Kiall	ah.. fair enough	21:53
_rfz	and switched to FLAT	21:53
Kiall	then yea, every node needs it	21:53
rmk	Horizon can't really be blamed for much.	21:53
vidd	Kiall, its not horizon...its keystone	21:53
vidd	keystone is evil	21:54
*** jdg has joined #openstack		21:54
rmk	I have one major problem with Horizon and that's when you have a lot of instances.	21:54
_rfz	Kiall, I don't think my switch has vlan tagging activated - so it won't work anyway	21:54
rmk	It just gets progressively slower.	21:54
jdg	Has anybody tried using the devstack.sh script on a physical machine rather than a VM?	21:54
WormMan	that's ok, the euca API service gets really angry when you have lots of instances :)	21:55
vidd	jdg, yes...i did...like a month or two ago	21:55
jdg	vidd: How did it go? Recommend, or run away?	21:55
*** stuntmachine has quit IRC		21:55
vidd	jdg what doi you plan to do after it runs?	21:55
jdg	I've been having a heck of a time getting everything configured/working manually.	21:56
vidd	if you are going for the learning experience...go for it	21:56
jdg	What I was thinking was I'd set it up then copy the nova.conf to a second machine and add it as a compute node	21:56
jdg	I've used it in VM's a number of times with good succes.	21:56
*** MarkAtwood has quit IRC		21:56
jdg	My physical installs however have been another story.	21:56
vidd	if you want it to do actual work, go with kiall's script (or mine if your adventurous)	21:56
jdg	vidd: Hmmm... which script is Kialls?	21:57
*** rnorwood has joined #openstack		21:57
Kiall	jdg, devstack is short for development stack .. Its completelty and utterly unsuitable for production use.. even as a base for production use..	21:57
*** dgags has quit IRC		21:57
vidd	https://github.com/managedit/openstack-setup jdg	21:57
Kiall	I put my install scripts up here .. http://github.com/managedit/openstack-setup	21:57
*** MarkAtwood has joined #openstack		21:57
Kiall	they install eveything from packages, rather than git clones etc...	21:58
_rfz	jdg - use Kialls repo - it works great	21:58
vidd	my scripts use Kiall 's repo's as well	21:58
*** miclorb__ has joined #openstack		21:58
_rfz	and vidd's work great also :)	21:59
Kiall	_rfz, actually.. you just setup FlatDHCP with my scripts? or just with my repo?	21:59
jdg	vidd: Can you point me to said script?	21:59
vidd	https://github.com/vidd/openstack_installer	21:59
jdg	Or Kiall... didn't see you there. :)	21:59
_rfz	I used your repo to setup openstack with VLAN, it didn't work so I did the nova.conf manually, reading the network documentation and reading vidd's scripts	21:59
Kiall	Sure, All my stuff is @ https://github.com/managedit/openstack-setup ..	22:00
Kiall	_rfz, ah okay	22:00
_rfz	Once I have FLAT working I will go back to vlan	22:00
Kiall	Never gonna happen ;)	22:00
*** miclorb_ has quit IRC		22:00
jdg	Ok, thanks all. I will take a look at the two of these and maybe start over with one of them.	22:00
vidd	Kiall, my scripts do work	22:00
jdg	Hopefully things will go better this time!	22:00
Kiall	vidd, huh?	22:01
Kiall	vidd, oh yea.. I was joking earlier ;)	22:01
*** imsplitbit has quit IRC		22:01
vidd	i know =]	22:01
rmk	Cloudpipe documentation references "wget http://169.254.169.254/latest/user-data -O /tmp/payload.b64", to run out of a script in the VM. Question is, what is that IP? Looks like a link local address but I don't see anything of the sort up on my hypervisor nodes.	22:02
vidd	jdg, if you have any issues ...or comments...or recomendations regarding my scripts (if you choose to try them) let me know	22:02
Kiall	rmk, its the EC2 metadata URL	22:02
Kiall	each nova-network node NAT's that to the EC2 api on the nova-api server	22:03
jdg	vidd: So maybe I should ask beforehand...	22:03
jdg	I'm attempting to set up a Cluster Controller with multiple compute nodes.	22:03
* vidd will soon be investigating adding a vlan option to it		22:03
jdg	I have 2 Nics in each system, one 1GB and one 10GB	22:03
jdg	The idea was that the 10GB would be use for iSCSI volumes	22:03
uvirtbot	New bug: #843049 in keystone "Verify: feedback/fixes from Bryan addressed" [High,Confirmed] https://launchpad.net/bugs/843049	22:03
rmk	Kiall: ok I actually do see it, I need to stop using ifconfig ... ever. It shows up via ip addr.	22:04
jdg	Does that sound like something your script might be able to help me with?	22:04
vidd	which eth port is which?	22:05
vidd	eth0=?	22:05
jdg	eht0 is 1Gig and eth2 is 10Gig	22:05
jdg	eht0 == eth0	22:05
vidd	no eth1?	22:05
Kiall	vidd, lol.. tell me you didnt hardcode that in your scripts? lol ;)	22:06
Kiall	b rb	22:06
jdg	It's present but no cable	22:06
rmk	Kiall: So, is it doing pat also to port 80 on the api server?	22:06
_rfz	Alright! 2 nodes working :)	22:06
jdg	Problem is I'm out of ports on my 1 GB switch :)	22:06
vidd	Kiall, yes it is hard-coded	22:06
rmk	Kiall: In other words, 80 on link local to ec2 port on the api server?	22:07
*** nerens has quit IRC		22:07
*** anotherjesse has quit IRC		22:07
vidd	jdg, you will need to modify the nova-settings file	22:07
jdg	Ok, just swap eth1 to eth2 correct?	22:08
vidd	run my nova-preload.sh to build the nova-settings file, then modify it to use vlan and to set the eth ports properly	22:08
jdg	Ok, I'm going to give it a go this afternoon. One other question, I don't see any requirements regarding Ubuntu version? 11.10 Ok or should I use something else?	22:09
vidd	i adjusted the scripts to look to see if there is a nova-settings file first, and give you the option to use it, modify it or destroy it and use my defaults =]	22:09
jdg	Excellent	22:10
*** GheRivero has quit IRC		22:10
vidd	i went with the latest	22:10
vidd	it has NOT been tested on 11.04	22:10
_rfz	hmm - I've added the iptables rule to the compute node, but i'm still getting this error DataSourceEc2.py[WARNING]: 'http://169.254.169.254' failed: url error [[Errno 111]	22:10
jdg	vidd: Ok, so 11.10 it is. I'll get the system imaged and get going. I'll let ya know how it goes. Thanks!!	22:11
Kiall	rmk, 80 on 169.254 -> $nova_ip:8773	22:11
vidd	ill be here for at least another 5 hours so if you run into any questions ill be here =]	22:11
*** deshantm_laptop_ has joined #openstack		22:11
jdg	Thanks!!!	22:11
rmk	Kiall: Nods testing it now. Thanks, that really did clear it up for me.	22:12
Kiall	_rfz, is it seperate compute node and controller node?	22:12
_rfz	kiall - yes	22:12
Kiall	does each one take a few seconds to timeout? or does it whizz through the 100 or so attempts?	22:13
_rfz	100 or so attempts	22:13
vidd	jdg, also, make sure you run the "prep_db.sh" before you run the nova-preload script =]	22:13
Kiall	_rfz, but - do each attempt take about 2 seconds? or are the instant-ish?	22:14
_rfz	kiall - sorry it takes a few seconds on each to time out	22:14
Kiall	Okay.. Weird, I personally install nova-compute, nova-network and nova-api on each of the nodes	22:15
*** deshantm_laptop has quit IRC		22:15
Kiall	but, If the NAT rule is in place, it should work...	22:15
*** lts has quit IRC		22:16
rmk	nova meta 141 set foo=bar -- complains that the server doesn't exist, which it of course does	22:17
rmk	Kiall: Can you see if you can set metadata?	22:17
Kiall	rmk, its a bug with stable/diablo as far as I know..	22:17
rmk	wonderfu	22:18
Kiall	I've not had a need for it so havent looked too far into it.. but it gave the same error for me	22:18
*** Ryan_Lane1 has joined #openstack		22:18
*** Ryan_Lane has quit IRC		22:18
*** Ryan_Lane1 has quit IRC		22:18
*** Ryan_Lane1 has joined #openstack		22:18
*** Ryan_Lane1 is now known as Ryan_Lane		22:18
vidd	Kiall, what is the benifit of vlan over flat?	22:18
vidd	besides support for more than 1 network	22:18
Kiall	support for more than 1 network isn't enough?	22:19
Glacee	vidd: I would say.. customer segmentation?	22:19
Glacee	security.. if you dont use sec groups	22:19
rmk	Kiall: Don't suppose you know of any patches? I'll go digging if you don't know off hand.	22:20
Kiall	I havent looked to be honest	22:20
Kiall	i tried it out of curisoity, but havent had an actual need so moved on	22:20
vidd	for my current use case, im creating a private cloud for a single user	22:20
rmk	Kiall: I can see a lot of use cases for this -- but mainly Cloudpipe.	22:20
_rfz	kiall - i don't have novi-api installed on my compute node	22:20
rmk	Maybe I can add it via nova-manage.	22:20
vidd	external customers will be on a different cloud controller and nodes which will of couse need to be vlan	22:21
*** dolphm has quit IRC		22:21
Kiall	see - planning on running 2x openstacks sounds silly to me, unless of course you are doing geo redundancy...	22:21
vidd	but if only one customer will have access to all services flat is fine	22:21
*** sfvg has quit IRC		22:22
Glacee	vidd: If you dont need specific cidrs.. I would go flat	22:22
vidd	Kiall, the 2x openstacks are "company A" and "company B"	22:23
*** haji has joined #openstack		22:23
haji	hello	22:23
vidd	finacial isolation =]	22:24
Kiall	vidd, sounds like both will waste money on the overheads ;)	22:24
*** GheRivero has joined #openstack		22:25
vidd	my company will need to have the ability part ways if the partnership they are involved in goes south =]	22:25
haji	hey kiall, i see you updated the scripts, any important changes?	22:26
Kiall	vidd, sounds like your company is doing a pile of work for something that will never work ;)	22:26
*** GheRivero has quit IRC		22:26
vidd	and having "thier stuff" and "our stuff" running on the same OS stack has the potential for issues	22:26
Kiall	haji, the only real changes were the image uploads..	22:26
*** clauden has joined #openstack		22:26
haji	kk	22:27
Kiall	The older way used the .tar.gz ubuntu downloads, which aren't 100% suitable for openstack.	22:27
Kiall	(You can't upgrade the kernel inside them.. Whatebver version is has is what its going to stay!)	22:28
Kiall	The newer one's let you "apt-get upgrade" the kernel inside the instance correctly	22:28
stevegjacobs	Kiall, whats the link to your scripts again?	22:28
haji	nice!	22:29
Kiall	Its safe to delete the current images you have (it wont affect running VMs based on them), and re-run ./glance-upload-oneiric.sh && ./glance-upload-loader.sh && ./glance-upload-lucid-loader.sh	22:29
Kiall	stevegjacobs, https://github.com/managedit/openstack-setup	22:29
Kiall	Anyway - Back to my TV.. IRC keeps popping up on-top ;)	22:30
*** jdg has quit IRC		22:30
vidd	Kiall, quick question....will your pin servive a do-release-upgrade?	22:31
Kiall	do-release-upgrade is to go between 2 ubuntu versions?	22:32
Kiall	No idea what that has to do with my packages!	22:32
vidd	right	22:32
*** CaptTofu has joined #openstack		22:32
vidd	when you do a do-release-upgrade, all packages get updated to the newer virsion in that release	22:33
Kiall	Oh - will it survive, I've no clue. Frankly the last time i trusted an "upgrade" was about 8 years ago.	22:33
vidd	so will your pin keep us with your ppa or will new ubuntu ones over-ride them	22:33
Kiall	I've quite literally not "upgraded" a server in 8 years. I reinstall them ;)	22:33
Kiall	If the pin package is kept, then yes, if do-release-upgrade removes it.. then no	22:33
Kiall	You want to upgrade to precise already??	22:34
vidd	no...im looking to 12.04	22:34
*** markvoelker has quit IRC		22:34
vidd	you know how much confidence i have in the *buntu boys to get this right =]	22:35
Kiall	Oh, when 12.04 rolls around, I'm hoping my packages won't be needed. If they are, I'll update the PPA to include precise packages	22:35
cmasseraf	after installing openstack throught Kiall script what would be the default dashboard user?	22:35
Kiall	I would imaging they should survive the upgrade	22:35
Kiall	cmasseraf, "admin"	22:35
cmasseraf	with pass = to the one setted in the settings file right?	22:36
Kiall	yea	22:36
*** sdake has quit IRC		22:39
vidd	now...my next task it to figure out the best way to take a running-on-bare-metal server and "convert" it to a vm image to run on OS	22:40
vidd	without destroying the original =]	22:41
Kiall	boot from CD	22:41
Kiall	vidd, dd if=/dev/sda1 of=/usbdrive/some_file.img	22:41
Kiall	qemu-img conver -c -O qcow2 /usbdrive/some_file.img /usbdrive/some_file.qcow2	22:42
Kiall	qemu-img convert -c -O qcow2 /usbdrive/some_file.img /usbdrive/some_file.qcow2*	22:42
Kiall	that should handle the very very basics for a linux server...	22:42
*** rsampaio has quit IRC		22:42
*** rnorwood1 has joined #openstack		22:43
*** sdake has joined #openstack		22:43
Kiall	But really - You're doing it wrong ;) Re-provision the server, use this as a test of your deployment docs etc etc	22:43
*** GheRivero has joined #openstack		22:43
Kiall	(or, more likely, use it to write those deployment docs)	22:43
*** rnorwood has quit IRC		22:43
vidd	Kiall, im not sure im following you	22:44
Kiall	create a raw disk image of the / partition, then convert from that to a compressed qcow2 image to shrink it	22:45
vidd	take server down first	22:45
Kiall	then edit all sorts of crap like fstab, network stuff etc etc	22:45
vidd	boot from a live cd	22:45
Kiall	then upload to glance exactly the same way as my oneiric script	22:45
vidd	then run the if=/of=	22:46
vidd	conver	22:46
vidd	convert*	22:46
vidd	upload to glance/swift	22:46
Kiall	well - edit some stuff in the image somewhere between if=/of= and the upload...	22:47
* vidd has thrown that part into the "convert" heading =]		22:47
vidd	but this SHOULD leave the original server intact, and preserve hashed passwords etc	22:48
Kiall	basically, make sure /etc/udev/rules.d/* is deleted, ensure it uses DHCP, and a script to download SSH keys from 169.254 couldn't hurt... (or install cloud init_	22:48
vidd	in the new virtual image	22:48
vidd	not all these are running ubuntu	22:48
Kiall	Yea - The original server will "think" it just had a reboot, and the image of the server should boot up, get a DHCP address and sing along as if nothing happened.	22:48
vidd	most are etch [or older] debian	22:48
vidd	im not too sure i want to even play with the windows servers	22:49
*** negronjl has quit IRC		22:49
Kiall	The hard part is getting the image to boot and get network, which is basically just "rm /etc/udev/rules.d/70-pers*", giving the partition a label (eg e2label /dev/loop0 cloudimg-root) and editing thr Fftab to detected the root via LABEL=cloudimg-root	22:50
Kiall	The windows server.. are umm... going to be harder ;)	22:50
Kiall	Anyway - You should probably reprovision the servers, rather than trying to clone them...	22:51
_rfz	do you need to install nova-api on a compute node?	22:51
vidd	Kiall, what i "should" do and what they "want" me to do are not always the same thing =]	22:52
*** krow1 has quit IRC		22:52
Kiall	lol	22:53
vidd	but there are user accounts on some of these machines we have no records of that we inherited from other companies we urchased in the past	22:53
vidd	so reprovisioning will be "problematic" at the least	22:53
Kiall	lol.. nice	22:54
stevegjacobs	Kiall, I want to update my lucid image - there are several new upload scripts in your setup	22:54
stevegjacobs	which do I use?	22:54
Kiall	stevegjacobs, yea.. i should document them :)	22:54
Kiall	./glance-upload-loader.sh followed by ./glance-upload-lucid-loader.sh	22:54
vidd	last time we had to do a forced reprovisioning [hardware failure] the phone would stop ringing for a month	22:55
Kiall	the loader can be reused for other pre-11.04 images, hence its kinda seperate	22:55
*** bsza has joined #openstack		22:55
*** GheRivero has quit IRC		22:55
cmasseraf	whats the equivalent to euca-describe-instances in keystone?	22:55
*** dolphm has joined #openstack		22:56
vidd	cmasseraf, keystone does not do that kind of work	22:56
*** chadh has quit IRC		22:56
*** Shentonfreude has quit IRC		22:56
vidd	keystone is more like the traffic cop that say "you can go" and "you cant go"	22:57
cmasseraf	oh... i see	22:58
cmasseraf	I misunderstood it's working...	22:58
*** syah has quit IRC		22:58
vidd	cmasseraf, what you need to do is get your EC2 creds into keystone so that when euca checks with keystone, they get the green light to run the command	22:58
cmasseraf	euca is not installed	22:58
*** rnorwood1 is now known as rnorwood		22:59
cmasseraf	I just finished installing and the image halts on Build state	22:59
cmasseraf	(started thtough the dashboard)	23:00
*** bsza has quit IRC		23:00
*** Eyk is now known as Eyk^off		23:01
vidd	cmasseraf, try browsing away and comoinmg back	23:02
cmasseraf	tryed, it's been like this for 15 minutes already	23:03
*** chadh has joined #openstack		23:03
*** negronjl has joined #openstack		23:03
vidd	if you dont have euca installed, then try nova client	23:04
vidd	Kiall, 's script install that but i dont know the command for it	23:04
*** negronjl has quit IRC		23:05
vidd	cmasseraf, you did use Kiall 's scripts right?	23:05
*** negronjl has joined #openstack		23:05
vidd	i know you didnt use mine (otherwise euca would be installed)	23:05
stevegjacobs	cmasseraf - the command to see the status of all instances is 'nova list'	23:06
cmasseraf	I used kiall's	23:06
stevegjacobs	then 'nova show <ID>' to see detailed info	23:06
cmasseraf	it's not launching	23:12
cmasseraf	it keeps pending	23:13
Kiall	cmasseraf, check the nova-compute and nova-network log files	23:15
Kiall	they will likely tell you whats wrong (even if its a tad cryptic sometimes ;)	23:16
_rfz	Oky, I got the passed the http://169.254.169.254 but it only works when the VM has a public ip assigned to it	23:18
*** chadh has quit IRC		23:18
Kiall	_rfz, aha.. i know the issue, 1 sec	23:19
Kiall	grab the DMZ and Fixed range setting from this: https://github.com/managedit/openstack-setup/blob/master/nova.conf.tmpl	23:19
Kiall	settings*	23:19
Kiall	and set them to your fixed IP range	23:20
Kiall	restart everything, and it should work	23:20
_rfz	okay let me try :	23:20
cmasseraf	Kiall: there's a exception in nova-compute: http://pastebin.com/9tVd6teH	23:23
*** PeteDaGuru has quit IRC		23:25
*** TheOsprey has quit IRC		23:28
*** llang629_ has joined #openstack		23:29
_rfz	kiall - so I put my fixed ranged in dmz_net (10.0.0.0/24) and netmask in dmz_mask (255.255.255.0) ?	23:29
*** vidd-away has joined #openstack		23:31
*** vidd-away has joined #openstack		23:31
*** rustam has quit IRC		23:31
*** vidd has quit IRC		23:31
*** mattray has quit IRC		23:31
*** rustam_ has joined #openstack		23:31
*** rnorwood has quit IRC		23:31
*** chadh has joined #openstack		23:33
*** rnorwood has joined #openstack		23:34
*** vidd-away is now known as viidd		23:34
*** viidd is now known as vidd		23:35
rmk	gflags.IllegalFlagValue: flag --vpn_image_id=ami-00000010: invalid literal for long() with base 10: 'ami-00000010'	23:36
rmk	Docs indicate it wants an image ID in ami notation...	23:36
vidd	rmk, did you copy that from the image list?	23:37
rmk	I copied it from euca-describe-images	23:37
rmk	Since the docs specify ami-xxxxxxx	23:37
rmk	http://docs.openstack.org/diablo/openstack-compute/admin/content/creating-a-cloudpipe-image.html	23:37
_rfz	still getting the same error	23:37
Kiall	rmk, i would bet its meant to be an int..#	23:39
rmk	Yeah I would have thought it would want a glance image index id.	23:39
rmk	Which is what I gave it now that it failed.	23:39
rmk	But all the docs are wrong if that's the case.	23:39
*** krow1 has joined #openstack		23:40
Kiall	Well, if they are, I think annegentle looks after the docs :)	23:40
*** benner has quit IRC		23:41
*** andreas__ has quit IRC		23:41
cmasseraf	Kiall, there's a exception in nova-compute: http://pastebin.com/9tVd6teH	23:41
cmasseraf	when I try to load a instance	23:42
*** jkyle has joined #openstack		23:42
jkyle	sometimes i see bugginess in an instance, like it'll auto-shutdown and refuse to reboot. what logs are the best place to look for debug output during that process?	23:43
Kiall	cmasseraf, thats likely unrelated	23:45
Kiall	i would bet that is the result of asking for the console log of the instance before its active..	23:45
Kiall	Boot a new instance, click nothing else and check the end of the logs..	23:45
*** benner has joined #openstack		23:47
rmk	I guess it doesn't matter what image I specify.	23:48
rmk	Auth to keystone fails from nova-manage.	23:48
Kiall	nova-manage doesnt auth against keystone?	23:48
rmk	http://paste.openstack.org/show/3485/	23:49
*** rnorwood has quit IRC		23:49
*** misheska has joined #openstack		23:49
cmasseraf	Kiall, http://pastebin.com/2Utm1QC4	23:50
rmk	Under normal circumstances, no, but it looks like it is here.	23:50
*** coli has joined #openstack		23:51
vidd	nova-manage does not auth against keystone, it auths against the database	23:51
rmk	Come on.	23:51
rmk	I obviously know that.	23:51
rmk	Look at the trace.	23:51
vidd	rmk, Kiall appeard to believe it did	23:52
rmk	I'm saying there's authentication failing to glance here.	23:52
rmk	Glance is probably looking for a keystone auth token and not getting one.	23:52
rmk	And it's coming as a result of a nova-manage command. This log snippet is from nova-manage.log.	23:52
*** benner has quit IRC		23:53
*** benner has joined #openstack		23:54
*** MarkAt2od has joined #openstack		23:54
*** lzyeval has joined #openstack		23:55
*** dolphm has quit IRC		23:56
vidd	rmk can you paste your glance-api for me?	23:56
vidd	you can blot out the auth gode [verify it is correct of course]	23:57
*** jeremy_ has joined #openstack		23:57
*** jeremy has quit IRC		23:57
*** jeremy_ is now known as jeremy		23:57
*** MarkAtwood has quit IRC		23:58
vidd	rmk, also verify your --keystone_ec2_url=http://x.x.x.x:5000/v2.0/ec2tokens in nova.conf is correct	23:59
*** dubsquared has quit IRC		23:59
vidd	and that the region in keystone matches the region in nova.conf	23:59
_rfz	vidd, did you get vnc working ?	23:59

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!