00:58:16 <uskerine> https://stackoverflow.com/questions/79422450/why-py-torchvision-fails-in-fresbsd-14-freshport-package
01:09:36 <getz> thorongil: you probably want a nullfs mount
01:23:25 <demido> i put a script in .local/bin/ and chmod +x it. i can type the first few chars of it, tab, and it gets completed. but if i type sudo then the first few chars, it doesn't get completed. is my bash not configured right or the prob elsewhere?
01:24:41 <TommyC> demido: I don't know if "configured" is the right word, but it's a shell completion feature thing.
01:47:15 <demido> ok weird, so i got completion working with sudo, but it says sudo: myscript: command not found. but i can take the oneliner from within the script and run it with sudo and it works fine
01:47:54 <demido> then if i just run myscript, the no permission error msg is right for the oneliner inside
02:05:21 <demido> ah sudo printenv doesn't show /home/demido/.local/bin/ in PATH
02:05:38 <demido> but this works on freebsd 14.1 i think, did sudo behavior change recently or as of 14.2?
02:06:15 <demido> ah secure path
02:08:14 <demido> yep
02:29:38 <thorongil> getz: thanks, that looks like exactly what i need
07:26:25 <demido> im trying to set up a freebsd box to be a wireguard (vpn) server. i created /usr/local/etc/wireguard/wg0.conf and enabled/started the service. from the client i try to ping www.freebsd.org but don't get a response. do i need to do more than what i already did?
07:29:26 <nimaje> is the machine in the server role configured to act as a router?
07:30:45 <demido> ah no. so i added gateway_enable="YES" and net.inet.ip.forwarding=1 to /etc/rc.conf and rebooted. anything else i need to do?
07:31:51 <demido> must be because after reboot ping still isn't working
07:33:52 <demido> add these pf rules? https://paste.debian.net/1348986/
07:44:18 <nimaje> yeah, as you use a private subnet there you need NAT too, can you reach some other host in the subnet of your "server" (should work without nat too if you configured routing for your network correctly (as in that "server" routes the wg subnet))
07:46:29 <demido> got it!
07:46:47 <demido> tyvm
07:56:40 <demido> i have a tiny vm with only 1G ram running zfs just fine. there any problem with setting arc max to something small like 256M?
09:14:17 <demido> im trying to load http://1.2.3.4:40000/ which should hit a vps running wireguard server and forward it to its wireguard client on the same port. python3 -m http.server 40000 on the wireguard client never gets the request and the browser load times out. i'm using pf on wireguard server to port forward and its rule is: rdr on $pubif proto tcp from
09:14:17 <demido> any to $pubip port 40000:40100 -> $wgclientip
09:21:42 <demido> ugh was pf blocked nvm
09:41:39 <demido> wait maybe not
09:41:48 <demido> https://termbin.com/ezqz
10:00:42 <demido> i bet my nat line is the prob
10:17:36 <demido> not sure how tho
10:21:20 <nimaje> well, how is your network structured? how do you want to fit wg into it? (drawing could help)
10:22:13 <demido> from my lan here, a computer (wg client) connects to vps (wg server) to pass all of its traffic through, and the wg server port forwards a certain range back to the wg client
10:24:34 <demido> that's my goal nimaje and only the last part isn't working
10:28:46 <nimaje> so you probably don't have another machine at the vps side to test that it correctly routes stuff coming from/to wg at least?
10:29:57 <demido> nimaje well from the wg client i can ping out and traceroute that it's going through wg server. but from browser machine to wg client through wg server port forwarding, it's not working
10:30:07 <demido> atleast doesn't seem to be
10:44:32 <nimaje> demido: ok, so your network looks something like https://draw.chat/dc2nunxvf91n1m2w6spflu0nnbflmj:a6be1afae1805bef9e24062958130084 and you tested that red arrow, but it didn't work? (and in the other direction it did work?)
10:45:48 <demido> ya
10:47:12 <nimaje> does the package reach the vps?
11:01:53 <demido> man that drawin gtool sucks
11:02:03 <demido> i tried to fill in more info i gotta find something better
11:04:49 <nimaje> was the first working collaborative drawing tool I found and just hoped it is ok
11:45:41 <demido> missing 1 part of wireguard + port forwarding setup please help: doc https://termbin.com/pte0 diagram https://miro.com/diagramming/online/board/uXjVLhjnVEI=/?boardAccessToken=9HFJuZHF2MjcJh7gPSvcOJdUyMgwZNcK
11:48:50 <demido> made mistake in doc...
11:49:01 <demido> https://termbin.com/slr7
12:13:17 <demido> https://termbin.com/qiic updated
12:17:23 <nimaje> hm, the rdr rule seems to be the address translation rule you want, can you test without the nat rule?
12:18:12 <demido> maybe but will that allow laptop wg client traffic out through vps wg server still?
12:19:31 <Aedil> Hi, buds, my MaXX interactive desktop is running great on the second day of use! I have a new screenshot of MaXX on Oracle Linux 9.5 for you: https://gist.github.com/adriankiess/da7ab856a24437e2987c993b2b6f37e4 — MaXX is a re-implementation of the 5Dwm window manager for SGI IRIX. It is also available for FreeBSD! https://docs.maxxinteractive.com/
12:21:07 <demido> nimaje i have tcpdump -i wg0 on laptop wg client, and i can see in it when i ping out from wg client, but nothing shows in it when i try to open url in phone browser. so vps wg server isn't forwarding traffic to wg client?
12:22:31 <demido> nimaje that worked!!!!
12:22:38 <demido> i commented out nat rule and now i can open url
12:23:22 <demido> but now i can't ping out from laptop wg client. so i guess the nat and rdr rules are fighting?
12:23:32 <demido> if the nat rule is too general, maybe i should make it more specific?
12:23:40 <demido> or what's the solution so both can work?
12:25:51 <demido> changing rdr to rdr pass, and enabling nat rule, now it all works
12:25:53 <demido> !!
12:26:01 <demido> but i feel i should still make nat rule more specific
12:28:58 <demido> i have a working wg server, wg client, and port forwarding setup: doc https://termbin.com/uj26 diagram https://miro.com/diagramming/online/board/uXjVLhjnVEI=/?boardAccessToken=9HFJuZHF2MjcJh7gPSvcOJdUyMgwZNcK how can i make it even better though please?
12:29:53 <demido> (nimaje tyvm for help figuring that out)
12:31:29 <demido> crap it was working now it's not again wtf
13:02:38 <demido> stateful pf just needed a restart (not reload) now it's working again heh
13:02:42 <demido> ok i gotta get some sleep and come back and tighten this up. ty for helping so much
13:10:01 <ketas> what needed pf restart eh?
13:11:23 <ketas> that takes every state off, nevermind that fw would be not working then, eg maybe being open
13:12:03 <ketas> can't remember any case where this was required in any of my machines since 5?
13:17:35 <demido> well it wasn't working then after service pf stop/start it was *shrug*
13:18:00 <demido> i'm too tired to finish it tonight tho. gonna sleep and tighten it up tomorow
13:18:02 <demido> gnight
13:24:25 <ketas> might as well reboot box then to verify it works
13:24:37 <ketas> that's reasonable sometimes
14:18:46 <mzar> yes, but only sometimes
14:20:40 <mzar> ketas: we are now in sync, how does your FreeBSD run new sine wave ?
14:20:54 <mzar> *run on
14:21:24 <ketas> not yet
14:23:19 <ketas> 2025-02-09 18:00:00 +02:00
14:23:29 <ketas> :p
14:24:29 <mzar> ha... it's a process
14:27:55 <ketas> i saw swings to 49.6hz and 50.2hz purposefully being done today, never seen it since forever i guess
14:30:47 <mzar> how do you check it? PV plant at home ?
14:32:41 <ketas> nah, sadly i didn't connect any equipment nor do i have any of pv
14:33:08 <ketas> no idea what https://baltic-grid.sympower.net/ uses
14:33:28 <ketas> i think they have dedicated precision tool
14:42:53 <ketas> it would be 24h to prepare island operation, 2h to disconnect from old area, 33h to run independently, of which 3h normal operation, 6h offpeak tests, 6h normal peak hours, 9h offpeak tests, 9h usual + preparing sync with new area, 6h tests in new grid, after which it resumes everyday mode
17:16:41 <CyberCr33p> https://forums.freebsd.org/threads/partition-is-not-aligned-warning.96735/#post-689209 any idea why gpart backup/restore doesn't create the same layout on the 2nd disk ?
22:34:52 <demido> i have a tiny vm with only 1G ram running zfs just fine. there any problem with setting arc max to something small like 256M?
22:36:05 <rtprio> do you need to set it at all?
22:36:09 <rwp> I have not had problems leaving zfs tuning for arc to be totally dynamic.
22:37:24 <scoobybejesus> a couple weeks ago i was able to install sopel, an IRC bot, with pkg on 14.2-RELEASE (latest, but either should work). freshports reflects it exists still. but pkg (2.0.5) can't seem to find the package.  weird
22:38:57 <scoobybejesus> i used pkg install py311-sopel, and it worked fine. now testing in a new jail, it's nowhere to be found
22:39:37 <mason> scoobybejesus: How did you make the new jail? It's a separate world generally.
22:40:40 <scoobybejesus> same command with a different IP. bastille create [name] [IP]. the jail is new, but the pkg repo the two jails use is the same one
22:43:11 <scoobybejesus> bastille create [name] [release] [IP] actually.  but yeah, identical process in each.  and another 15-20 packages were installed fine.  pkg just doesn't see the sopel package
22:45:05 <scoobybejesus> sopel had an update a few days ago. maybe the package is being updated as we speak
22:47:13 <scoobybejesus> i guess i will pip install it in a virtualenv in the meantime, but the pkg sure was convenient
23:37:24 <demido> i guess i'll try leaving arc max dynamic