02:24:56 hello 02:28:33 hi 02:29:38 hello 03:32:28 hi 03:55:02 hello 08:35:15 servus! 08:35:24 need some basic networking advice... 08:35:44 I picked up some fast NICs and will be doing some testing on them 08:36:12 they're dual port 100G & 25G NICs, but I only have a 10G switch 08:36:37 so plan is to have the 2 servers connected both directly (100G or 25G speed) 08:36:52 and also via the 10G switch via the 25G 08:37:21 so A <> B and also A <> switch <> B 08:38:01 I would need to have separate IP subnet for the A <>B part I guess 08:43:27 but what I'd really like is traffic to go over the faster path automagically 08:43:32 from anywhere in my network 08:44:15 the only idea I came up with, is on each box with a direct link, to add an /etc/hosts entry with the fast IP address in it 08:44:21 and everywhere else can use normal dns 08:44:25 is there a smarter way? 09:01:16 you could also configure the same ip-addresses as /128 (/32 for v4) on the fast nic and add some extra routing table entries 09:01:58 this way also routed traffic would go the fast path 09:03:28 alternativ go with extra routes over the 2. ip-subnet 09:08:16 dch: is 100G link supposed to work as a bridge between hosts only or larger network segments, behind that hosts ? 09:11:50 satanist: ok that sounds like a better solution then 09:12:02 mzar: its just host to host 09:12:29 I was planning on replacing a mellanox nic and I saw a 2nd hand pair of 100G NICs + SFP and cables for less than the mlx one 09:12:33 I COULD NOT RESIST IT 09:13:07 I have nothing that needs that throughput but its a great opportunity to do some testing 09:13:32 in particular what jail <> host <> host <> jail throughput do i get 09:16:09 are you using vnet jails and if yes, routed or switched? 09:44:08 satanist: for this testing I will vary between all the options 09:44:42 right now I just use host alias jails over zerotier (a bit like wireguard) with fixed ipv6 in each jail 09:45:20 but I will consider wireguard with separate vnet interfaces for each jail 10:23:30 hello, I have created a VM using qemu but there is no internet in the VM. This issue is new to me since VM connects to interenet automatically when I use qemu 10:23:56 I think I have to do some extra steps for interenet but I don't know what to do 10:25:08 ghodawalaaman: share how you invoke qemu 10:25:44 here's a (sadly complicated) example of using qemu with UEFI firmware and accessing a tap0 interface for network 10:26:06 https://www.irccloud.com/pastebin/l9ZxElr6/qemu.sh 10:27:00 you probably need something like `-nic user,model=virtio` in there 10:27:13 here is the command: qemu-system-x86_64 -cdrom archlinux-x86_64.iso -boot order=d -drive file=arch_image,format=raw -m 4G 10:27:51 ok so you need some network stuff then 10:28:01 https://docs.freebsd.org/en/books/handbook/virtualization/#qemu-virtualization-host-guest actually covers this *much* better than me 10:29:01 ok I will read it first 11:03:35 Been trying to get FreeBSD to run atop of Openstack. But it always ends up with FreeBSD not getting IP address from DHCP and thus being unable to speak to metadata-server. 11:04:05 I've been trying both the official cloud init images as well as https://bsd-cloud-image.org/ 11:04:32 Also tried setting virtio settings on the images to no avail 11:15:14 oh, why the random? 11:15:26 is it just slower to gather random data in a VM or am I gonna be generating bad SSH host keys 11:29:37 Ove_: what happens when you run dhclient on the interface? 11:34:50 zip: I don't think it should be slower. What's the kern.random.random_sources OID set to? 11:35:21 And what's kern.random.harvest.mask_symbolic set to? 11:35:25 debdrup: Same thing - it times out. Doesn't get an IP address from DHCP server. 11:36:26 Ove_: then the problem is lower down the stack; is the interface up, and can you do arp requests on it? 11:36:38 what I'm asking is if I should be adding that `-object rng-random` line to my `qemu` setup 11:36:46 debdrup: nothing at all in the arp table. 11:36:57 * Ove_ is going to check neutron logs 11:36:58 I have not done so before and I was wondering if it's an important thing to do 11:37:26 zip: TLDR yes but its not critical. It only matters on very first boot, when there is a risk of delay while $RANDOM bits come in 11:37:27 zip: I don't know for sure, but I can't see the harm in trying. 11:37:39 fair enough 11:37:44 debdrup: Also long time no speak. 11:38:18 zip: on a normal system you have better entropy on the nic, keyboard, etc, and not all of these are either available in a vm, or possibly dont have the random chatter that a real system would do 11:38:21 Ove_: true true. 11:39:28 Ove_: do you have a dev..0.debug OID? 11:39:38 I shoudl probably have an efi variable storage device set up too 11:40:18 incidentally I had a lot of trouble getting it to run with `-cpu host`, but once I figured out my exact CPU I could get it running. I think I had the same issues with windows 10, but I abandoned that project because basically I don't give a shit if I can't boot windows 10 11:40:29 debdrup: Depends on image I use. if I use the ones from bsd-cloud-image I am not able to get a prompt (because cloud init will overwrite whatever passwords where there originally). 11:40:33 I'll check 11:41:04 I can't say I'm too familiar with cloud-images... 11:41:59 Spinning up machine now. It'll take a while until it fails. 11:42:32 oh, oops, this is running off a 4GB image so now I have to remember how to resize a zpool 11:46:29 debdrup: Nope - not seeing any debug oid 11:50:09 there we go, got ot 11:51:29 https://www.irccloud.com/pastebin/tyS5jEmN/ 11:51:57 oh, missed one. also a `gpart repair` 11:52:28 `gpart repair` lets it rewrite the table so it knows about all the extra space at the end of the virtual disk, `gpart resize` makes the final partition take up that space, `zpool online -e` tells zpool to expand to fit 11:53:01 I think I've not booted this VM up before, it's a decompression of FreeBSD-14.1-RELEASE-amd64-zfs.qcow2.xz 11:53:10 debdrup: tcdumping I can actually see that DHCP is answering 11:54:26 Curiouser and curiouser. 11:58:41 debdrup: dhcpdump confirms it. It is getting an ip back 11:58:59 * Ove_ loves a good mystery 11:59:15 Ove_: net/dhcpcd? 11:59:24 Can you give it a static IP? 12:01:27 I can try 12:03:13 debdrup: Yup works 12:03:20 And I can reach intarwebz also 12:03:24 Huh. 12:03:32 What version of FreeBSD is these images using? 12:05:00 14.2 12:10:13 debdrup: dhcpcd worked great. 12:11:03 Right, but I'm wondering if dhclient in 15-CURRENT might work better. Are those images available? 12:14:39 Ooooh 12:14:39 Soo 12:14:52 Our whole network is basically L3. 12:14:56 I wonder if that plays in somehow 12:15:11 It's the KVM host that answers with dhcp replys 12:15:27 So arp _should_ work between kvm host and guest 12:32:28 debdrup: seems to have to do with checksuming 12:33:17 KVM host is linux. And it doesn't actually add checksum to the udp packages which dhclient tries to validate (it calculates it's own and tries to match it with dhcdp servers non existent checksum). 12:39:30 debdrup: iptables -A POSTROUTING -t mangle -p udp --dport bootpc -j CHECKSUM --checksum-fill on the kvm host made dhclient work 15:24:36 so i just updated from 14.0 to 14.2 using the guide and now the pkg manager seems busted: `pkg: An error occured while fetching package` 15:24:46 using -d suggests the system's ssl certs are screwed 15:24:51 what can i try? 15:39:11 try using pkg-static instead 15:56:36 rtprio: same with `pkg-static update` 15:57:02 there's an env var to ignore the tls errors, but i can't be doing that long term 15:58:08 vext01: out of curiosity is your date/timezone showing correct? 16:07:51 Tenkawa: huh, no, it is not! 16:07:56 it's an hour out 16:08:21 That could be causing part of the problem 16:08:30 set your time/tz ad try again 16:08:33 er and 16:09:05 I had to do that to get the ssl handshake in tolerances a few times 16:10:01 offset +1988486.208442 sec (lol) 16:10:11 why would updating freebsd cause this though? 16:10:32 and the pkg errors are gone 16:10:38 Tenkawa: thanks 16:20:17 vext01: no problem... mine had a failed battery on its rtc... you working with a desktop or laptop? 16:21:19 it's an old desktop i use as a file server 16:21:48 I wonder if it doesn't have a good cmos battery anymore 16:21:53 has freebsd become a linux distribution? i'm doing this https://www.reddit.com/r/foss/comments/1hcomg3/linux_user_survey_responses_needed/ and it asks at some point what linux distribution have i used, and freebsd is listed there. 16:22:04 no others bsds listed. 16:34:22 i had a cmos battery "randomly" die. it was after the first power down in probably 4 years 16:40:24 rtprio: not much surprising after 4 years of PSU power 16:40:56 i was lucky to have had a spare 16:41:07 rtprio: so once you powered down you only just ended up running into that issue, at least that's my assumption 16:41:57 yep-- the system was also pretty old 16:52:59 that definitely sounds like a cmos battery 16:55:50 What happens if I connect two PCs to a switch and then my ISP fiber modem to the switch? Will the fiber modem allocate DHCP addresses to each device connected to the switch? 16:57:59 it probably won't work 16:59:58 ok, thanks 17:08:16 Ove_: so nothing to do with FreeBSD afterall. :P 18:50:23 hello 19:13:17 Sometimes its good to create symlinked packages (I have no better name for this) for packages which have versions in the name. For example, bacula11-client. For automated scripts, I want to specify bacula-client, and have it install whatever I've decided is the 'latest' - it might be bacula13-client, it might be bacula-14-client. I have not tested anything else, but I'm thinking about symlinks in the All/ directory 20:02:20 dvl: You can use the post-installation section to do that. Whatever is installed the "latest" (even if it's bacula11-client instead of say, bacula13-client) would get symlinked. 20:03:45 TommyC: Since asking, I've become aware of a simple solution: create a new [local] port which has one dependency - the port you want installed. 20:04:34 TommyC: the post hook would also need to update the packagesite files... etc. The beauty of a meta-port (which is what we already call such ports here in house) is poudriere takes care of all that.