Re: Internal error: couldn't generate list of packages to download

2020-09-25 Thread Fabien Roucaute 
Le 25/09/2020 à 13:48, Stephen P. Molnar a écrit :
> I am running up-to-date Buster, unfortunately there seems to be a bit of
> a problem.
> 
> Normally I run the update process several times a week with the command
> sudo apr update && sudo apt upgrade. This morning this resulted in the
> error
> 
> The following partially installed packages will be configured:
>   brscan4
> No packages will be installed, upgraded, or removed.
> 0 packages upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
> E: Can't find a source to download version '0.4.8-1' of 'brscan4:amd64'
> After unpacking 0 B will be used.
> E: Can't find a source to download version '0.4.8-1' of 'brscan4:amd64'
> E: Internal error: couldn't generate list of packages to download
> E: Perhaps the package lists are out of date, please try 'aptitude
> update' (or equivalent); otherwise some packages or versions are not
> available from the current repository sources
> 
> I reinstalled the Brother printer drivers, apparently barscan4 was not
> included. I contgaced Brother tech support, but was told that they did
> not support Linux.
> 
> I tried:
> 
> sudo mv /var/lib/apt/lists /var/lib/apt/lists.old
> sudo apt-get clean
> sudo apt-get update
> 
> This resulted in a long list of get: (ellipses)    followed by my user
> prompt. Unfortunately, update generated the same errors.
> 
> At this point I don't have the faintest idea as to how to proceed.
> Pointers towards a solution to the problem will be much appreciated.
> 
> Thanks in advance.
> 

Look like a package that is a dependency to barscan4 have been updated
to version that need barscan4 to be at least the version 0.4.8-1, but
barscan4 is not on the debian repositories. I think you have to download
it and install it manually.

Re: dhcp bridge for virtual machines using KVM

2020-09-23 Thread Fabien Roucaute 
Le 23/09/2020 à 13:50, James Allsopp a écrit :

> Yes, it's a bit odd,but the reason I want to do it like this is that the
> wifi is pretty fast and the ethernet is constrained by powerline
> networking to about 50Mbps. However, I can't run a bridge over the wifi,
> so I'm trying to run all the host activity over the wifi and reserve the
> ethernet just for the vm bridge.
> 
> In answer to your question;
> ❱ ip r                                                                    
> default via 192.168.1.1 dev br0
> default via 192.168.1.1 dev wlan0 proto dhcp metric 600
> 172.17.0.0/16  dev docker0 proto kernel scope link
> src 172.17.0.1 linkdown
> 192.168.1.0/24  dev br0 proto kernel scope link
> src 192.168.1.206
> 192.168.1.0/24  dev wlan0 proto kernel scope link
> src 192.168.1.174 metric 600
> 
> Thanks
> James

You really should answer to the list email address ;)
The only problem he can see is that the vnet0 interface seems to be tied
to the bridge br0, it seems odd and it could be the cause of the problem
even if I'm not 100% sure. Try to delete the virtual network named
'host-bridge'. And where did you bind the "bridge" in the forward mode
for a virtual network? I can't find it in the libvirt documentation.

Re: dhcp bridge for virtual machines using KVM

2020-09-22 Thread Fabien Roucaute 
Le 22/09/2020 à 22:57, James Allsopp a écrit :
> 
> 
> On Tue, 22 Sep 2020 at 17:58, Fabien Roucaute  <mailto:fabien.rouca...@free.fr>> wrote:
> 
> Le 22/09/2020 à 18:50, James Allsopp a écrit :
> >
> > I've tried that but I get the same result.
> > Thanks
> > James
> >
> 
> You need to answer to the mailing-list email address, not mine.
> If it still doesn't work, we need more information, like the result of
> the following commands (you should modify the public IP that appears in
> if it's the case)
> 'ip a'
> 'iptables-save'
> 'brctl show'
> 
> 
> Here's ip a
>  ip a
> 1: lo:  mtu 65536 qdisc noqueue state UNKNOWN
> group default qlen 1000
>     link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
>     inet 127.0.0.1/8 <http://127.0.0.1/8> scope host lo
>        valid_lft forever preferred_lft forever
>     inet6 ::1/128 scope host
>        valid_lft forever preferred_lft forever
> 2: eth0:  mtu 1500 qdisc pfifo_fast
> state DOWN group default qlen 1000
>     link/ether 00:1d:7d:0d:2a:9f brd ff:ff:ff:ff:ff:ff
> 3: eth1:  mtu 1500 qdisc pfifo_fast
> master br0 state UP group default qlen 1000
>     link/ether 00:1d:7d:0d:2a:9d brd ff:ff:ff:ff:ff:ff
> 4: wlan0:  mtu 1500 qdisc noqueue state
> UP group default qlen 1000
>     link/ether b4:ee:b4:84:37:2a brd ff:ff:ff:ff:ff:ff
>     inet 192.168.1.174/24 <http://192.168.1.174/24> brd 192.168.1.255
> scope global dynamic noprefixroute wlan0
>        valid_lft 27656sec preferred_lft 27656sec
>     inet6 fde6:4511:f54::a55/128 scope global noprefixroute
>        valid_lft forever preferred_lft forever
>     inet6 fde6:4511:f54:0:f195:8361:215d:5f17/64 scope global noprefixroute
>        valid_lft forever preferred_lft forever
>     inet6 fe80::4bf0:ca57:25f0:ed7f/64 scope link noprefixroute
>        valid_lft forever preferred_lft forever
> 5: br0:  mtu 1500 qdisc noqueue state
> UP group default qlen 1000
>     link/ether 00:1d:7d:0d:2a:9d brd ff:ff:ff:ff:ff:ff
>     inet 192.168.1.206/24 <http://192.168.1.206/24> brd 192.168.1.255
> scope global dynamic br0
>        valid_lft 27655sec preferred_lft 27655sec
>     inet6 fde6:4511:f54:0:21d:7dff:fe0d:2a9d/64 scope global dynamic
> mngtmpaddr
>        valid_lft forever preferred_lft forever
>     inet6 fe80::21d:7dff:fe0d:2a9d/64 scope link
>        valid_lft forever preferred_lft forever
> 6: docker0:  mtu 1500 qdisc noqueue
> state DOWN group default
>     link/ether 02:42:12:5f:1a:5e brd ff:ff:ff:ff:ff:ff
>     inet 172.17.0.1/16 <http://172.17.0.1/16> brd 172.17.255.255 scope
> global docker0
>        valid_lft forever preferred_lft forever
> 8: vnet0:  mtu 1500 qdisc pfifo_fast
> master br0 state UNKNOWN group default qlen 1000
>     link/ether fe:54:00:8a:6e:57 brd ff:ff:ff:ff:ff:ff
>     inet6 fe80::fc54:ff:fe8a:6e57/64 scope link
>        valid_lft forever preferred_lft forever
> 
> 
> Here's iptables -L
>  iptables -L
> Chain INPUT (policy ACCEPT)
> target     prot opt source               destination        
> 
> Chain FORWARD (policy DROP)
> target     prot opt source               destination        
> DOCKER-USER  all  --  anywhere             anywhere            
> DOCKER-ISOLATION-STAGE-1  all  --  anywhere             anywhere            
> ACCEPT     all  --  anywhere             anywhere             ctstate
> RELATED,ESTABLISHED
> DOCKER     all  --  anywhere             anywhere            
> ACCEPT     all  --  anywhere             anywhere            
> ACCEPT     all  --  anywhere             anywhere            
> 
> Chain OUTPUT (policy ACCEPT)
> target     prot opt source               destination        
> 
> Chain DOCKER (1 references)
> target     prot opt source               destination        
> 
> Chain DOCKER-ISOLATION-STAGE-1 (1 references)
> target     prot opt source               destination        
> DOCKER-ISOLATION-STAGE-2  all  --  anywhere             anywhere            
> RETURN     all  --  anywhere             anywhere            
> 
> Chain DOCKER-ISOLATION-STAGE-2 (1 references)
> target     prot opt source               destination        
> DROP       all  --  anywhere             anywhere            
> RETURN     all  --  anywhere             anywhere            
> 
> Chain DOCKER-USER (1 references)
> target     prot opt source               destination        
> RETURN     all  --  anywhere             anywhere     
> 
> and brctl show
> 
> bridge name     bridge id               STP enabled     interfaces
> br0             8000.001d7d0d2a9d       no              eth1
>                                                         vnet0
> docker0         8000.0242125f1a5e       no
> 
> Thanks!
> James

I forgot to ask for the routing table, could you post the result of 'ip
r' ? Otherwise, can I ask why you think you need a Wifi connection and
wired one but assigned to them ip addresses that are in the same subnet?
Because you can access the host and the VMs on different IPs with only
the wired NIC.

Re: dhcp bridge for virtual machines using KVM

2020-09-22 Thread Fabien Roucaute 
Le 22/09/2020 à 18:50, James Allsopp a écrit :
> 
> I've tried that but I get the same result.
> Thanks
> James
> 

You need to answer to the mailing-list email address, not mine.
If it still doesn't work, we need more information, like the result of
the following commands (you should modify the public IP that appears in
if it's the case)
'ip a'
'iptables-save'
'brctl show'

Re: dhcp bridge for virtual machines using KVM

2020-09-22 Thread Fabien Roucaute 
Le 22/09/2020 à 18:26, James Allsopp a écrit :
> Hi,
> I've got a computer that I'm running debian 10 on with KVM. The machine
> is connected to a OpenWRT router which provides DHCP and DNS to the
> network, via a wifi link used for the host and an ethernet connection on
> eth1 used for a bridge
> 
> I've set this file up for the bridge in /etc/network/interfaces.d/br0
> auto eth1
> auto br0
> iface br0 inet dhcp
> bridge_ports eth1
> bridge_fd 0
> bridge_stp off
> 
> ifup br0 brought it up nicely and it got an IP address in the range I'd
> expect. So far so good. The only problem is now, I can't get any of the
> VM's I create to use this network. When creating a VM using Virtual
> Machine Manager, it gives me the option to specify shared device name
> for the network source. One of these is for a network I already created
> in virsh;
> 
> 
>   host-bridge
>   
>   
> 
> 
> However, if I set the network to either 'host-bridge' or br0 directly,
> the route is never set and I can never get  a dhcp setting. I've checked
> ip_forward is set to 1.
> 
> I'd just like to set it up this way, as it seems really inefficient to
> have a dhcp and then use difficult to remember static IP's everywhere.
> 
> Thanks
> James
> 
> 
You don't need to create a virtual network to 'plug' your vm on the
brigde using the host NIC. Just select the br0 bridge as the source on
the VM's NIC hardware settting.

Re: ssh fingerprint mismatch for one single client

2020-09-20 Thread Fabien Roucaute 
Le 20/09/2020 à 18:59, Beco a écrit :

> I mean the numbers are completely different.
> PUTTY: not only different, but it appears to get a ED25519 which is not
> on the server.
> SSH powershell: It gets ECDSA, which is the algorithm accepted, but a
> completely different hex code.
> 
> If I run on my notebook the command:
> My answer is OK
> 
> $ nmap -p22 -n --script ssh-hostkey the.server.in.question
> Starting Nmap 7.70 ( https://nmap.org ) at 2020-09-19 19:12 -03
> Nmap scan report for the.server.in.question (198.200.100.50)
> Host is up (0.0055s latency).
> PORT   STATE SERVICE
> 22/tcp open  ssh
> | ssh-hostkey:
> |   2048 33:44:55:66:77:88:99:11:22:33:44:55:66:77:aa:bb (RSA)
> |   256 cc:99:11:22:33:44:55:66:77:88:99:aa:bb:cc:dd:ee (ECDSA)
> Nmap done: 1 IP address (1 host up) scanned in 1.05 seconds
> 
> My notebook (external) shows correct server IP and the 2 accepted
> fingerprints.
> 
> 
> 
> On Bob's notebook:
> 
> $ nmap -p22 -n --script ssh-hostkey the.server.in.question
> Starting Nmap 7.70 ( https://nmap.org ) at 2020-09-19 18:12 -03
> Nmap scan report for the.server.in.question (198.200.100.50)
> Host is up (0.0055s latency).
> PORT   STATE SERVICE
> 22/tcp open  ssh
> | ssh-hostkey:
> |   2048 12:34:56:78:9c:cd:dc:cd:de:ef:f0:01:12:13:14:15 (RSA)
> |   256 5b:6b:4b:3b:2b:1b:8b:2b:7b:9b:9b:0b:3b:5b:4b:3b (ECDSA)
> |_  256 a1:a2:a3:a4:a5:a6:a7:a8:a9:a0:a1:a2:a3:a4:a5:a6 (ED25519)
> Nmap done: 1 IP address (1 host up) scanned in 1.05 seconds
> 
> All wrong.
>

Very strange, could be a router in your network that NAT  his connection
to the wrong server. Have you tried to scan other servers in your
network to look for the same fingerprints?
I can't see how he can get back answering packets with the right IP but
not the right fingerprint if a network device wasn't changing the IP
somewhere on the route between him and the server.

Re: libvirt guest bridge configuration

2020-09-19 Thread Fabien Roucaute 
Le 19/09/2020 à 16:03, Lucio Crusca a écrit :

> 
> I can actually have a console access over IP via a Lantiq console, but I
> have to know in advance what to do with that, because it's billed per
> hour of use. So, if you know how what I should check when it does not
> work, you can assume there is a console and explain to me what to do.
> 
Need the output of 'systemctl status networking.service' and 'ip a', and
the complete text of /etc/network/interface (with the public IPs
anonymized) and if it exists the content of the files in
/etc/network/interface.d/

Re: libvirt guest bridge configuration

2020-09-19 Thread Fabien Roucaute 
Le 19/09/2020 à 14:38, Lucio Crusca a écrit :

> 
> After fixing those mistakes and rebooting, the system is not reachable
> anymore. Unfortunately I can only reboot it with a live system, but I
> can't look at it while it runs on that config from remote to tell what's
> wrong with the configuration you suggested.
> 
Well sorry, I didn't know you were working on it via the net.
Did you set the firewall (iptables or nftables)?
I have no idea how you can fix the issue without having access to a
console now though.

Re: libvirt guest bridge configuration

2020-09-19 Thread Fabien Roucaute 
Le 19/09/2020 à 10:24, Lucio Crusca a écrit :
> 
> 
> Il 19/09/20 10:03, Fabien Roucaute ha scritto:
>> Le 19/09/2020 à 08:21, Lucio Crusca a écrit :
>>> Il 19/09/20 00:54, Dan Ritter ha scritto:
>>>> auto eno1
>>>> iface eno1 manual
>>>>
>>>> auto virbr10
>>>> iface virb10 inet static
>>>>     bridge_ports eno1
>>>>     bridge_stp off
>>>>     address 2.4.6.8
>>>>     netmask 255.255.255.224
>>>>     gateway 2.4.6.1
>>>>
>>>> the bridge eats the eno1 interface.
>>>
>>> Using that configuration it actually brings up eno1 with the correct IP
>>> address, but I have no bridge at all:
>>>
>>> # ifconfig -a
>>> eno1: flags=4163  mtu 1500
>>>  inet 2.4.6.8  netmask 255.255.255.224  broadcast 2.4.6.31
>>>  [...]
>>>
>>> lo: flags=73  mtu 65536
>>>  inet 127.0.0.1  netmask 255.0.0.0
>>>  [...]
>>>
>>> # brctl show
>>> #
>>>
>>> I'm puzzled: how does it manage to work if there's no bridge at all?
>>>
>> eno1 still has an IP address, try to shut it down and up with 'ifdown
>> eno1;ifup eno1' and see if it still have an IP.
>>
> 
> Sorry, I forgot to mention the situation above is what I get after reboot.
> 
Yes, there some mistakes in your interface file:
delete the 'auto eno1' and add inet in the line beneath to get that
'iface eno1 inet manual'

Re: libvirt guest bridge configuration

2020-09-19 Thread Fabien Roucaute 
Le 19/09/2020 à 08:21, Lucio Crusca a écrit :
> Il 19/09/20 00:54, Dan Ritter ha scritto:
>> auto eno1
>> iface eno1 manual
>>
>> auto virbr10
>> iface virb10 inet static
>>    bridge_ports eno1
>>    bridge_stp off
>>    address 2.4.6.8
>>    netmask 255.255.255.224
>>    gateway 2.4.6.1
>>
>> the bridge eats the eno1 interface.
> 
> Using that configuration it actually brings up eno1 with the correct IP
> address, but I have no bridge at all:
> 
> # ifconfig -a
> eno1: flags=4163  mtu 1500
>     inet 2.4.6.8  netmask 255.255.255.224  broadcast 2.4.6.31
>     [...]
> 
> lo: flags=73  mtu 65536
>     inet 127.0.0.1  netmask 255.0.0.0
>     [...]
> 
> # brctl show
> #
> 
> I'm puzzled: how does it manage to work if there's no bridge at all?
> 
eno1 still has an IP address, try to shut it down and up with 'ifdown
eno1;ifup eno1' and see if it still have an IP.

Re: VirtualBox - vboxpci

2020-09-06 Thread Fabien Roucaute 
Le 06/09/2020 à 11:17, Klaus Jantzen a écrit :
> Hi,
> 
> I am trying to run VB 16.1.14 r140239 on my laptop under Debian Buster.
> 
> After sucessfully signing vboxdrv, vboxnetflt and vboxnetadp I installed
> the extension package.
> 
> Now I have to additionally sign vboxpci.
> 
> However, this module was not installed. Where do I get it from?
> 
You need to sign these modules because you have enabled 'secure boot'.
Try to run this script
https://github.com/Majal/maj-scripts/blob/master/vboxsign

Re: Need help -- Virtual Machine Manager

2020-09-05 Thread Fabien Roucaute 
Le 05/09/2020 à 19:27, Dennis Wicks a écrit :

> Yes, everything is in the same box/host. I need to know how to mount a
> physical CD!
> TNX!
> 

You go in the menu View-> details-> CD-ROM, and then you select the
physical drive in the list (usually /dev/sr0)

Re: Need help -- Virtual Machine Manager

2020-09-04 Thread Fabien Roucaute 
Le 05/09/2020 à 01:57, Dennis Wicks a écrit :
> I'm running Win10 with Virtual Machine Manager on Deb 10.4. How to I
> attach my CD drive to Win10 so I can install some software?
> 
> Many TIA!
> Dennis
> 

Either the ISO or the CD-ROM need to be on the host. If KVM/libvirt
doesn't run on the machine running Virtual Machine Manager, you need to
create a pool for the ISO and upload the ISO there or to insert cd-rom
in the host CD drive.