-
ketas:p
-
ketaswhat in the world!
-
mosaidHi
-
mzaris anyone experiencing "etcupdate -B" failures on stable/15 ?
-
mzarclean "etcupdate" always runs fine, but with -B it fails on few of machines
-
michael-onot documetned here: wiki.freebsd.org/IRC/Channels
-
nimajehm? what is not documented?
-
michael-oWrong channel, sorry
-
mzarwiki.freebsd.org/IRC/Channels is almost up to date
-
josephholstenAnyone been playing with the podman on freebsd work? I'm able to get containers running, but seems like jail networking isn't being set up for me when I try this on my cloud vm instances. Here's a cloud-init/user-data that should get the point across: pastebin.com/Jkm1Fb1w
-
FatalNIXDamn it.
-
FatalNIXI was counting, and we almost made it 24 hours since I rejoined that anyone has said anything.
-
josephholstenmuhahaha!
-
FatalNIXjosephholsten: I played with it a little while back, perhaps about 4 months ago or so. I was really frustrated with the expectation that NAT was present for networking to function, because I have a lot of virtual NICs from an SR-IOV card and I just ... wanted to attach them to interfaces for the containers.
-
FatalNIXIt did in fact work
-
FatalNIXpodman in general, that is
-
FatalNIXThe other thing if I remember correctly was that it wanted to use pf, but I use ipfw because I am a heathen.
-
FatalNIXOf course none of this is helpful.
-
FatalNIXLooking at your script here, I'm guessing you've already confirmed that your pf setup is working as intended?
-
josephholstenno, it's definately not working as intended. But this is the script provided in /usr/local/etc/containers/pf.conf.sample, with the appropriate interface used (vtnet0)
-
josephholstenbut it's more than that. `jls` is showing no ip addresses attached to the buildah jails, which is very special and beyond my ken.
-
josephholstenit does show an eth0 within the jail, and `route get 1.1.1.1` shows that interface is configured to route out. But you try a fetch and it cries that it doesn't support that host address family
-
josephholstenI'm nearly at the edge of my ability to drill down short of debugging fetch to find the exact call that's exploding. and once I have that, I'll be completely at the wall.
-
josephholstenoh, I guess I should actually learn how to do this with dtrace like I've been meaning to.
-
josephholstenooh, so I can confirm the podman jail's fetch is sending out DNS UDP packet, but not getting any in return