Re: [CentOS] Configuring source-specific routing
Yeah, I've gone that deep. And a tad deeper. I had almost *everything* working by hand, and went to figure out how to convert it to idomatic CentOS network configuration scripts. And took my network down *three times* because of the script-processing stripping things out. The files to use for this in RHEL land are rule-ethX similar to how ifcfg-ethX and route-ethX get used ... ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Configuring source-specific routing
On Wed, May 1, 2013 at 4:52 PM, Michael Mol mike...@gmail.com wrote: Intent is to maintain the old, slow (but has an SLA) connection as a fallback, and migrate services to the new connection piecemeal. Meanwhile, the same DNS server on the new connection can be, e.g. ns3. The same mailserver can have a new MX on the new connection...likely prioritized to it. Note that there are more straightforward ways to do this. One is to pretend you are big enough to have a distributed server farm and actually have independent servers at the other IPs, even if they are VMs. This is fairly easy for mostly-static or database-driven web sites, fairly difficult for apllications that are more statefull but perhaps possible with a common NFS backend. Another is to have application-level proxies or load balancers like haproxy, nginx, apache configured as a reverse-proxy, or even port forwarding with an xinetd 'redirect' configuration. This loses the source ip from the application logs, although the http proxys have an option to pass them. Similarly you could use iptables to source-nat on the receiving side and forward to a backend server.These all have some disadvantages, but with separate hosts each having one default gateway to the internet and static routes for your own local ranges you have a lot less black magic involved. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] trying to recover an audio CD...
On Thu, May 02, 2013 at 12:25:40AM -0400, Ted Miller wrote: On 05/01/2013 11:33 PM, fredex wrote: Fred Smith [hidden email] wrote: Jörg: [snip] - Is it possible to use the original drive that was used for writing? the original isn't a drive per se, it's a professional audio recorder, rack-mounted, that contains a CD drive of some sort. I THINK what happened was the recorder was powered off while writing. Probably made a huge mess of the data, or at least left it in some bad unfinished state. I have used such a recorder, and the one I used WAS capable of recovering a disk from a mess like what you describe. But...it takes a while. It has to read the entire disk (and it is designed to read at 1X), figure out what is on it, and then finalize it. If you can get access to the original recorder, I would suggest you let it try to clean up its own mess. Even better would be to get hold of the manual (paper or online) and see what it suggests for finalizing a disk that has been removed from the recorder. Ordinarily, if you stop recording then remove the drive withouot finalizing the disc, you can simply re-insert the disc then press the finalize button and off it goes. but in this case it fails. I can tell simply by looking at the reflection off the transparent side of the disc that it's been written on (slightly different shade where it's been written), so there definitely is information on it. I'll see if I can scare up the manual, though,... I hadn't thought of that. Fred -- Fred Smith -- fre...@fcshome.stoneham.ma.us - And he will be called Wonderful Counselor, Mighty God, Everlasting Father, Prince of Peace. Of the increase of his government there will be no end. He will reign on David's throne and over his kingdom, establishing and upholding it with justice and righteousness from that time on and forever. --- Isaiah 9:7 (niv) -- ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Configuring source-specific routing
On 05/02/2013 08:57 AM, Les Mikesell wrote: On Wed, May 1, 2013 at 4:52 PM, Michael Mol mike...@gmail.com wrote: Intent is to maintain the old, slow (but has an SLA) connection as a fallback, and migrate services to the new connection piecemeal. Meanwhile, the same DNS server on the new connection can be, e.g. ns3. The same mailserver can have a new MX on the new connection...likely prioritized to it. Note that there are more straightforward ways to do this. One is to pretend you are big enough to have a distributed server farm and actually have independent servers at the other IPs, even if they are VMs. This is fairly easy for mostly-static or database-driven web sites, fairly difficult for apllications that are more statefull but perhaps possible with a common NFS backend. Another is to have application-level proxies or load balancers like haproxy, nginx, apache configured as a reverse-proxy, or even port forwarding with an xinetd 'redirect' configuration. This loses the source ip from the application logs, although the http proxys have an option to pass them. Similarly you could use iptables to source-nat on the receiving side and forward to a backend server.These all have some disadvantages, but with separate hosts each having one default gateway to the internet and static routes for your own local ranges you have a lot less black magic involved. Actually, this is all stuff (well, except for haproxy) we have implemented. 80-90% of my servers don't even need (and, ultimately, won't have) public IP addresses. (And I still won't need NAT, thank god.) Internally, I'm not far from having things set up as a fluid private cloud with scaleable services. Ultimately, for this to work cleanly, anything which requires a public IP (be it a raw authoritative DNS server or a load balancer) will require an IP on both public subnets. The only blocker right now is getting CentOS to do source-policy routing properly. signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Configuring source-specific routing
On 05/02/2013 01:01 AM, anax wrote: On 2013-05-01 22:05, Michael Mol wrote: I'm attempting to configure source-specific routing so that my servers can exist on multiple subnets from multiple upstream providers. A rough diagram of the network layout: ISP1 router (blackbox, routes subnet A, address on subnet A) \ ---eth0(firewall)eth1---((servers)) / ISP2 router (blackbox, routes subnet B, address on subnet B) The aim is to allow the servers to use both subnet A and subnet B. To allow this, any machine on both subnets must have source-specific routing configured, else packets originating from one ISP's AS will be directed at the other's router, and neither ISP cares for that. At the moment, I'm focusing on getting the second ISP properly added to the firewall box. The firewall box is using CentOS 6.4, and normally passes traffic back and forth via proxy_arp. None of my interfaces are NM_CONTROLLED, and NetworkManager is not installed, much less started. I've created a route-eth0:1 file that looks roughly like this: 10.0.0.1 dev eth0:1 \ src 10.0.0.2 \ from 10.0.0.0/29 default via 10.0.0.1 dev eth0:1 \ src 10.0.0.2 \ from 10.0.0.0/29 (Treat indented lines as continuations of the previous line) (No, the ISPs aren't giving me RFC1918 addresses; these are redacted.) If I run ifup eth0:1, ip route show includes the lines: 10.0.0.1 dev eth0 scope link src 10.0.0.2 10.0.0.0/29 dev eth0 proto kernel scope link src 10.0.0.2 default via 10.0.0.1 dev eth0 Note that the from 10.0.0.0/29 clause is missing. With the addition of a second default route on my firewall/gateway without any restriction on which traffic should go that way, my whole network, of course, tanks. I'm surprised it's been such a pain; I would have expected it to be a relatively common configuration. What's the proper way of doing source-specific routing on CentOS? http://www.linuxjournal.com/article/7291 http://tldp.org/HOWTO/Adv-Routing-HOWTO/lartc.rpdb.multiple-links.html might probably help you suomi Read that whole document before writing a line of code. Also of use, in case anyone else comes across this thread: Network Warrior, by Gary A. Donahue The TCP/IP Guide, by Charles M. Kozierok NIST SP 800-800-119, Guidelines for the Secure Deployment of IPv6 IPv6 Network Administration, by Niall Richard Murphy David Malone Content Delivery Networks, edited by Rajkumar Buyya, Mukaddim Pathan, Athena Vakali (In particular, see DNS-based network management) That's most of the relevant network-related stuff I've got in my library. signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Configuring source-specific routing
On 05/02/2013 05:13 AM, James Hogarth wrote: Yeah, I've gone that deep. And a tad deeper. I had almost *everything* working by hand, and went to figure out how to convert it to idomatic CentOS network configuration scripts. And took my network down *three times* because of the script-processing stripping things out. The files to use for this in RHEL land are rule-ethX similar to how ifcfg-ethX and route-ethX get used ... Yup. And if you put a line in route-ethN like: default via 10.0.0.1 dev ethN from 10.0.0.0/24 you're in for a rude shock; running ip route show after bringing up ethN will show something like: default via 10.0.0.1 dev ethN ...having stripped the key from 10.0.0.0/24 portion. I ran into similar problems with table SomeTable. signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] AT-2972SX
Anyone know off the top of their heads if this (AT-2972SX) fiber network card will work out of the box with CentOS 6.x? Sounds like it's a Broadcom-based card, so perhaps it will, or maybe something exists for it in elrepo? Hoping to avoid needing to build custom drivers from source. Ray ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] AT-2972SX
Well, at least they have RPM files for you that you can just install. You could always just try and see what happens :) . http://www.alliedtelesis.com/p-1856.html On Thu, May 2, 2013 at 11:57 AM, Ray Van Dolson ra...@bludgeon.org wrote: Anyone know off the top of their heads if this (AT-2972SX) fiber network card will work out of the box with CentOS 6.x? Sounds like it's a Broadcom-based card, so perhaps it will, or maybe something exists for it in elrepo? Hoping to avoid needing to build custom drivers from source. Ray ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] Kickstart and volume group with a dash in the name
Hi, I'm trying to setup the provisioning of new OpenStack hypervisors with cinder volumes on them. The problem is that kickstart doesn't allow dashed in volume group names? I tried this: volgroup cinder-volumes --pesize=4096 pv.02 and this: volgroup cinder--volumes --pesize=4096 pv.02 but in both cases I end up with a volume group named cindervolumes on the system. Any idea what I have to do to accomplish this? Defining VGs with dashes works perfectly fine on the command line. Regards, Denis ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Kickstart and volume group with a dash in the name
Hi Dennis Did you try to screen it via \ ? i.e. volgroup cinder\-volumes --pesize=4096 pv.02 ? Max On 03/05/13 00:13, Dennis Jacobfeuerborn wrote: Hi, I'm trying to setup the provisioning of new OpenStack hypervisors with cinder volumes on them. The problem is that kickstart doesn't allow dashed in volume group names? I tried this: volgroup cinder-volumes --pesize=4096 pv.02 and this: volgroup cinder--volumes --pesize=4096 pv.02 but in both cases I end up with a volume group named cindervolumes on the system. Any idea what I have to do to accomplish this? Defining VGs with dashes works perfectly fine on the command line. Regards, Denis ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Kickstart and volume group with a dash in the name
On Thu, May 2, 2013 at 12:13 PM, Dennis Jacobfeuerborn denni...@conversis.de wrote: Hi, I'm trying to setup the provisioning of new OpenStack hypervisors with cinder volumes on them. The problem is that kickstart doesn't allow dashed in volume group names? Since LVs can be referenced in a way that contains dashes, I expect dashes may not be allowed. See these examples: /dev/vgname/logvolname /dev/mapper/vgname-logvolname But the following excerpt from man lvm doesn't support my thought. VALID NAMES The following characters are valid for VG and LV names: a-z A-Z 0-9 + _ . - VG and LV names cannot begin with a hyphen. There are also various reserved names that are used internally by lvm that can not be used as LV or VG names. A VG cannot be called anything that exists in /dev/ at the time of creation, nor can it be called '.' or '..'. A LV can‐ not be called '.' '..' 'snapshot' or 'pvmove'. The LV name may also not contain the strings '_mlog', '_mimage', '_rimage', '_tdata', '_tmeta'. I tried this: volgroup cinder-volumes --pesize=4096 pv.02 and this: volgroup cinder--volumes --pesize=4096 pv.02 but in both cases I end up with a volume group named cindervolumes on the system. Any idea what I have to do to accomplish this? Underscores work just fine. You might consider using underscores instead of dashes. Defining VGs with dashes works perfectly fine on the command line. As maxxik suggests, you may consider escaping the hypen/dash. Regards, Denis ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- ---~~.~~--- Mike // SilverTip257 // ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] AT-2972SX
On Thu, May 02, 2013 at 12:05:24PM -0400, Yves S. Garret wrote: Well, at least they have RPM files for you that you can just install. You could always just try and see what happens :) . http://www.alliedtelesis.com/p-1856.html Yep -- definitely. We don't have the cards yet and am just trying to determine if they'll work easily or not or if we should push to order something different. Thanks, Ray On Thu, May 2, 2013 at 11:57 AM, Ray Van Dolson ra...@bludgeon.org wrote: Anyone know off the top of their heads if this (AT-2972SX) fiber network card will work out of the box with CentOS 6.x? Sounds like it's a Broadcom-based card, so perhaps it will, or maybe something exists for it in elrepo? Hoping to avoid needing to build custom drivers from source. Ray ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] AT-2972SX
My gut guess is that it's just going to work. Most of the networking stuff most Linux distros have down pat (unless we're talking about something really rare/weird). I looked at the file itself, the license is GPL. On Thu, May 2, 2013 at 12:45 PM, Ray Van Dolson ra...@bludgeon.org wrote: On Thu, May 02, 2013 at 12:05:24PM -0400, Yves S. Garret wrote: Well, at least they have RPM files for you that you can just install. You could always just try and see what happens :) . http://www.alliedtelesis.com/p-1856.html Yep -- definitely. We don't have the cards yet and am just trying to determine if they'll work easily or not or if we should push to order something different. Thanks, Ray On Thu, May 2, 2013 at 11:57 AM, Ray Van Dolson ra...@bludgeon.org wrote: Anyone know off the top of their heads if this (AT-2972SX) fiber network card will work out of the box with CentOS 6.x? Sounds like it's a Broadcom-based card, so perhaps it will, or maybe something exists for it in elrepo? Hoping to avoid needing to build custom drivers from source. Ray ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] AT-2972SX
What's weird is that they packaged the actual binaries as a bunch of small ISOs. At this point I'd probably build them from source if all else fails :) . On Thu, May 2, 2013 at 12:51 PM, Yves S. Garret yoursurrogate...@gmail.comwrote: My gut guess is that it's just going to work. Most of the networking stuff most Linux distros have down pat (unless we're talking about something really rare/weird). I looked at the file itself, the license is GPL. On Thu, May 2, 2013 at 12:45 PM, Ray Van Dolson ra...@bludgeon.orgwrote: On Thu, May 02, 2013 at 12:05:24PM -0400, Yves S. Garret wrote: Well, at least they have RPM files for you that you can just install. You could always just try and see what happens :) . http://www.alliedtelesis.com/p-1856.html Yep -- definitely. We don't have the cards yet and am just trying to determine if they'll work easily or not or if we should push to order something different. Thanks, Ray On Thu, May 2, 2013 at 11:57 AM, Ray Van Dolson ra...@bludgeon.org wrote: Anyone know off the top of their heads if this (AT-2972SX) fiber network card will work out of the box with CentOS 6.x? Sounds like it's a Broadcom-based card, so perhaps it will, or maybe something exists for it in elrepo? Hoping to avoid needing to build custom drivers from source. Ray ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Configuring source-specific routing
On Thu, May 2, 2013 at 8:14 AM, Michael Mol mike...@gmail.com wrote: Ultimately, for this to work cleanly, anything which requires a public IP (be it a raw authoritative DNS server or a load balancer) will require an IP on both public subnets. No it doesn't, as long as you don't mind losing the source IP for logging or configure your http proxy to pass it. You can use separate front end proxies or load balancers on each public range, with its default gateway pointing toward the ISP handling it. DNS service is simple enough to have standalone servers for each instance you need. Web browsers are actually very good at handling multiple IPs in DNS responses and doing their own failover if some of the IPs don't respond. SMTP will retry following your MX priorities. For other services you might need to actively change DNS to drop IPs if you know they have become unreachable, though. The only blocker right now is getting CentOS to do source-policy routing properly. It's a black art - I'd give up the source IP logging first and rely on the back end servers sending back to the proxy that received the request and only has the default route to that one ISP. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Kickstart and volume group with a dash in the name
On 05/02/2013 12:13 PM, Dennis Jacobfeuerborn wrote: Hi, I'm trying to setup the provisioning of new OpenStack hypervisors with cinder volumes on them. The problem is that kickstart doesn't allow dashed in volume group names? I tried this: volgroup cinder-volumes --pesize=4096 pv.02 and this: volgroup cinder--volumes --pesize=4096 pv.02 but in both cases I end up with a volume group named cindervolumes on the system. Any idea what I have to do to accomplish this? Defining VGs with dashes works perfectly fine on the command line. If you have commands that work on the command line, try adding them to the post install section of the kickstart file. c ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Configuring source-specific routing
On 05/02/2013 01:05 PM, Les Mikesell wrote: On Thu, May 2, 2013 at 8:14 AM, Michael Mol mike...@gmail.com wrote: Ultimately, for this to work cleanly, anything which requires a public IP (be it a raw authoritative DNS server or a load balancer) will require an IP on both public subnets. No it doesn't, as long as you don't mind losing the source IP for logging or configure your http proxy to pass it. You can use separate front end proxies or load balancers on each public range, No, I really can't. And not for reasons I can change until this summer, at the earliest, nor can I discuss them without breach of NDA. with its default gateway pointing toward the ISP handling it. DNS service is simple enough to have standalone servers for each instance you need. This would also require either resources or underlying authorizations I don't have. Web browsers are actually very good at handling multiple IPs in DNS responses and doing their own failover if some of the IPs don't respond. It varies greatly by client software. And given the explosion of unreliable network connections (wifi, mobile), some of that failover logic's margin is already lost in dropped packets between the client and their local network gateway. SMTP will retry following your MX priorities. Yup. MX is a no-brainer, as are NS and SIP/SRV. For other services you might need to actively change DNS to drop IPs if you know they have become unreachable, though. Yup. That's what I was planning on doing, more or less. Start with ordering IPs by route preference, drop IPs by link state. I just wish I could drive it by snooping OSPF... The only blocker right now is getting CentOS to do source-policy routing properly. It's a black art Once you've read the docs and tried a few commands, it's pretty easy to wrap your head around it. My problem is that what I was able to get working by hand gets mangled by the processing logic for /etc/sysconfig/network-scripts/route-ethN. - I'd give up the source IP logging first and rely on the back end servers sending back to the proxy that received the request and only has the default route to that one ISP. I'm not doing any special logging. That one firewall/routing device sits between the ISP routers and _all_ my internal machines. Everything sits behind it. There are reasons for this. signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Configuring source-specific routing
On Thu, May 2, 2013 at 12:31 PM, Michael Mol mike...@gmail.com wrote: with its default gateway pointing toward the ISP handling it. DNS service is simple enough to have standalone servers for each instance you need. This would also require either resources or underlying authorizations I don't have. CentOS VMs are really, really cheap Web browsers are actually very good at handling multiple IPs in DNS responses and doing their own failover if some of the IPs don't respond. It varies greatly by client software. And given the explosion of unreliable network connections (wifi, mobile), some of that failover logic's margin is already lost in dropped packets between the client and their local network gateway. Yes, but typically they can deal with receiving multple IPs from the initial DNS lookup even if some are broken better/faster than getting one IP which subsequently breaks and then having to do another DNS lookup to get a working target. At least the few broswers I tested a while back did... For other services you might need to actively change DNS to drop IPs if you know they have become unreachable, though. Yup. That's what I was planning on doing, more or less. Start with ordering IPs by route preference, drop IPs by link state. I just wish I could drive it by snooping OSPF... I don't think you can count on your ordering reaching the clients or meaning anything to them if it does. And some applications won't ever do a lookup again. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Configuring source-specific routing
On 05/02/2013 02:02 PM, Les Mikesell wrote:
On Thu, May 2, 2013 at 12:31 PM, Michael Mol mike...@gmail.com wrote:
with its default gateway pointing toward the ISP handling it. DNS
service is simple enough to have standalone servers for each instance
you need.
This would also require either resources or underlying authorizations I
don't have.
CentOS VMs are really, really cheap
That's really, truly, seriously not the issue. I don't know if you saw
where I said I was setting up a private cloud.
And, as I said, I can't discuss the problem without breach of NDA.
Web browsers are actually very good at handling multiple IPs in DNS
responses and doing their own failover if some of the IPs don't
respond.
It varies greatly by client software. And given the explosion of
unreliable network connections (wifi, mobile), some of that failover
logic's margin is already lost in dropped packets between the client and
their local network gateway.
Yes, but typically they can deal with receiving multple IPs from the
initial DNS lookup even if some are broken better/faster than getting
one IP which subsequently breaks and then having to do another DNS
lookup to get a working target. At least the few broswers I tested a
while back did...
You missed my point, my point was that your margin is already eaten into
by unreliable networks.
For other services you might need to actively change DNS to drop IPs
if you know they have become unreachable, though.
Yup. That's what I was planning on doing, more or less. Start with
ordering IPs by route preference, drop IPs by link state. I just wish I
could drive it by snooping OSPF...
I don't think you can count on your ordering reaching the clients or
meaning anything to them if it does. And some applications won't ever
do a lookup again.
Yes, intermediate resolvers may reorder responses. That's fine and
pretty normal. If ordering responses doesn't work, I fall back to a
stochastic approach; that's actually rather a given, since an
oversaturated link qualifies as down for the purpose of new connections.
And, yes, there's a lot of client software out there (*especially web
browsers*) which cache responses and disregard TTLs. To those users, I
really can only say have you tried turning it off and back on again?
But here we are, arguing about *load balancing*, when the problem I face
is, frankly, one of taking either of a pair of *known-to-work* sequences
of invocations of ip commands and getting whatever process
/etc/sysconf/network-scripts/{ifcfg-eth*,ifcfg-route*} to maneuver the
kernel into the same resulting state.
Source-based routing frankly isn't that hard! From the perspective of an
edge node (i.e. a server):
# First subnet
ip addr add 10.0.0.2/24 dev eth0 brd 10.1.0.255
ip route add default via 10.0.0.1 dev eth0 src 10.0.0.2
# Second subnet
ip addr add 10.1.0.2/24 dev eth0 brd 10.1.0.255
ip route add default via 10.1.0.1 dev eth0 src 10.1.0.2
and from a router's perspective, it's
# Assuming proxy_arp is set on eth0 and eth1
# Sets up source-specific routing for 10.0.0.0/24
# WAN hangs off eth0. LAN hangs off eth1.
ip addr add 10.0.0.2/24 dev eth1 brd 10.0.0.255 # To LAN
ip addr add 10.0.0.2 dev eth0 # For the benefit of 'src 10.0.0.2' below
ip route add 10.0.0.1 dev eth0 src 10.0.0.2 # For 'via 10.0.0.1' below
ip route add default via 10.0.0.1 dev eth0 src 10.0.0.2 from 10.0.0.0/24
# Assuming proxy_arp is set on eth0 and eth1
# Sets up source-specific routing for 10.1.0.0/24
# WAN hangs off eth0. LAN hangs off eth1.
ip addr add 10.1.0.2 dev eth1 brd 10.1.0.255 # To LAN
ip addr add 10.1.0.2 dev eth0 # For the benefit of 'src 10.1.0.2' below
ip route add 10.1.0.1 dev eth0 src 10.1.0.2 # For 'via 10.1.0.1' below
ip route add default via 10.1.0.1 dev eth0 src 10.1.0.2 from 10.1.0.0/24
That's it! (unless I typo'd or thinko'd something coming up with these
examples.) It took me all of three or four hours yesterday to learn this
much of it. Then the rest of the day discovering the stuff I was putting
in route-ethN wasn't being honored.
My problem has been that the from 10.x.0.0/24 parameter keeps getting
stripped by whatever processes /etc/sysconfig/network-scripts/route-ethN
signature.asc
Description: OpenPGP digital signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] AT-2972SX
To close the loop on this -- the card worked fine with the built-in tg3 driver in RHEL 6. Ray On Thu, May 02, 2013 at 12:55:24PM -0400, Yves S. Garret wrote: What's weird is that they packaged the actual binaries as a bunch of small ISOs. At this point I'd probably build them from source if all else fails :) . On Thu, May 2, 2013 at 12:51 PM, Yves S. Garret yoursurrogate...@gmail.comwrote: My gut guess is that it's just going to work. Most of the networking stuff most Linux distros have down pat (unless we're talking about something really rare/weird). I looked at the file itself, the license is GPL. On Thu, May 2, 2013 at 12:45 PM, Ray Van Dolson ra...@bludgeon.orgwrote: On Thu, May 02, 2013 at 12:05:24PM -0400, Yves S. Garret wrote: Well, at least they have RPM files for you that you can just install. You could always just try and see what happens :) . http://www.alliedtelesis.com/p-1856.html Yep -- definitely. We don't have the cards yet and am just trying to determine if they'll work easily or not or if we should push to order something different. Thanks, Ray On Thu, May 2, 2013 at 11:57 AM, Ray Van Dolson ra...@bludgeon.org wrote: Anyone know off the top of their heads if this (AT-2972SX) fiber network card will work out of the box with CentOS 6.x? Sounds like it's a Broadcom-based card, so perhaps it will, or maybe something exists for it in elrepo? Hoping to avoid needing to build custom drivers from source. Ray ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] repeat command
There is a unix command called repeat. repeat 10 some_command Basically repeats some command ten times. Is it available on Centos 6 and what package provides it? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
Hello Matt try man watch All the best Paul On 2 May 2013 22:05, Matt matt.mailingli...@gmail.com wrote: There is a unix command called repeat. repeat 10 some_command Basically repeats some command ten times. Is it available on Centos 6 and what package provides it? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- * I know one thing: That I know nothing* - Socrates *We're all explorers here* - T S Eliot ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] ECC memory errors
Replying to myself: On Mon, Apr 29, 2013 at 3:41 PM, Peter Peltonen peter.pelto...@gmail.comwrote: The EDAC error msg reports problems with bank0. Can I trust this? I tried installing edac-utils to get more information, but after installation it only generates segmentation fault: # edac-util --report=simple Segmentation fault Replacing the first memory pair made the error messages go away. Edac-util still segfaults though. But as the system seems to be otheriwse stable, I probably will not investigate this further. Regards, Peter ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
Matt wrote: There is a unix command called repeat. repeat 10 some_command Basically repeats some command ten times. Is it available on Centos 6 and what package provides it? Would never have looked for it - for (( i=-; $i 10; i++ )); do echo $i;done mark ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
Hello Matt try man watch All the best Paul What I am trying to do is: http://www.redbarn.org/dns/ratelimits repeat 10 dig @server-ip-address +short +tries=1 +time=1 your-zone.com a Can I do that with watch? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
ok I'd use a script and use sleep On 2 May 2013 22:26, Matt matt.mailingli...@gmail.com wrote: Hello Matt try man watch All the best Paul What I am trying to do is: http://www.redbarn.org/dns/ratelimits repeat 10 dig @server-ip-address +short +tries=1 +time=1 your-zone.com a Can I do that with watch? ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- * I know one thing: That I know nothing* - Socrates *We're all explorers here* - T S Eliot ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
On 05/02/2013 05:05 PM, Matt wrote: There is a unix command called repeat. repeat 10 some_command Basically repeats some command ten times. Is it available on Centos 6 and what package provides it? # yum whatprovides *bin/repeat [snip] No Matches found HTH signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
On May 2, 2013, at 17:34, Michael Mol wrote: On 05/02/2013 05:05 PM, Matt wrote: There is a unix command called repeat. repeat 10 some_command Basically repeats some command ten times. Is it available on Centos 6 and what package provides it? # yum whatprovides *bin/repeat [snip] No Matches found I was going to post the same information about finding out with yum whatprovides. FWIW, repeat is a built-in command in tcsh. Maybe that's where you've seen it before. Alfred ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
On Thu, May 2, 2013 at 4:16 PM, m.r...@5-cent.us wrote: Basically repeats some command ten times. Is it available on Centos 6 and what package provides it? Would never have looked for it - for (( i=-; $i 10; i++ )); do echo $i;done I'm even more old-school with bourne syntax: i=0 while [ $i -lt 10 ] do echo $i i=expr `$i + 1` done Just replace the 'echo $i' whit whatever command you want - or add it on the next line so you can see the iteration count too. -- Les Mikesell lesmikes...@gmail.com ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
On Thu, May 02, 2013 at 04:26:06PM -0500, Matt wrote: repeat 10 dig @server-ip-address +short +tries=1 +time=1 your-zone.com a Can I do that with watch? No. But you can do it with 'seq': for x in $(seq 1 10); do dig @server-ip-address +short +tries=1 +time=1 your-zone.com a; done John -- TURKEY, n. A large bird whose flesh when eaten on certain religious anniversaries has the peculiar property of attesting piety and gratitude. Incidentally, it is pretty good eating. -- Ambrose Bierce, The Devil's Dictionary pgp0BVsAzxaoZ.pgp Description: PGP signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
[CentOS] I Know It's A Stupid Question......
But I'm trying to give my son a cool-yet-kind-of-geeky 13th Birthday Present..he hinted he liked the CentOS logo, but where would I find things that are branded with it?searching the web doesn't really help me much, only because I'm not sure what I need to be looking for...any help would be greatly appreciated! Thanks in advance!! EGO II ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
On 02.Mai.2013, at 23:37, Alfred von Campe wrote: On May 2, 2013, at 17:34, Michael Mol wrote: On 05/02/2013 05:05 PM, Matt wrote: There is a unix command called repeat. repeat 10 some_command Basically repeats some command ten times. Is it available on Centos 6 and what package provides it? # yum whatprovides *bin/repeat [snip] No Matches found I was going to post the same information about finding out with yum whatprovides. FWIW, repeat is a built-in command in tcsh. Maybe that's where you've seen it before. You could use that with CentOS $ csh -c repeat 10 ... $ tcsh -c repeat 10 … $ rpm -qf /bin/tcsh tcsh-6.17-24.el6.x86_64 -- Markus ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
On 03.Mai.2013, at 00:01, John R. Dennison wrote:
On Thu, May 02, 2013 at 04:26:06PM -0500, Matt wrote:
repeat 10 dig @server-ip-address +short +tries=1 +time=1 your-zone.com a
Can I do that with watch?
No. But you can do it with 'seq':
for x in $(seq 1 10); do dig @server-ip-address +short +tries=1 +time=1
your-zone.com a; done
this works but at least with bash you can do it with brace expansion
for x in {1..10}; do … ; done
it's a bashism but maybe more portable, e.g. OS-X has no seq
no fork (for the seq) is necessary as well
--
Regards, Markus
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
On Fri, May 03, 2013 at 01:36:36AM +0200, Markus Falb wrote:
this works but at least with bash you can do it with brace expansion
for x in {1..10}; do … ; done
it's a bashism but maybe more portable, e.g. OS-X has no seq
no fork (for the seq) is necessary as well
True. Thing I like about seq is that it also takes an optional
increment value which can be very handy at times.
John
--
Being with a woman all night never hurt no professional baseball player. It's
staying up all night looking for a woman that does him in.
-- Casey Stengel (1890 - 1975), American baseball player and manager,
BBC The Myths of Sex Before Sport (Jennifer Quinn), 12 August, 2004
pgpWjurWIluEe.pgp
Description: PGP signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
On Fri, May 03, 2013 at 01:36:36AM +0200, Markus Falb wrote:
On 03.Mai.2013, at 00:01, John R. Dennison wrote:
On Thu, May 02, 2013 at 04:26:06PM -0500, Matt wrote:
repeat 10 dig @server-ip-address +short +tries=1 +time=1 your-zone.com a
for x in $(seq 1 10); do dig @server-ip-address +short +tries=1 +time=1
your-zone.com a; done
this works but at least with bash you can do it with brace expansion
for x in {1..10}; do … ; done
it's a bashism but maybe more portable, e.g. OS-X has no seq
no fork (for the seq) is necessary as well
I believe OSX has jot, which is what I used to use with FreeBSD. Fairly
similar, and OSX does use bash so the expansion ought to work. Don't have
a MAC or BSD box to test right now.
--
Scott Robbins
PGP keyID EB3467D6
( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 )
gpg --keyserver pgp.mit.edu --recv-keys EB3467D6
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
On 03.Mai.2013, at 01:45, John R. Dennison wrote:
On Fri, May 03, 2013 at 01:36:36AM +0200, Markus Falb wrote:
this works but at least with bash you can do it with brace expansion
for x in {1..10}; do … ; done
it's a bashism but maybe more portable, e.g. OS-X has no seq
no fork (for the seq) is necessary as well
True. Thing I like about seq is that it also takes an optional
increment value which can be very handy at times.
$ echo {1..10..2}
--
Markus
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] repeat command
On Fri, May 03, 2013 at 02:03:06AM +0200, Markus Falb wrote:
$ echo {1..10..2}
C6's bash supports this; C5 sadly does not. But thank you for pointing
this out to me as I was unaware of this form.
John
--
Failure is not the only punishment for laziness; there is also the success
of others.
-- Jules Renard (1864-1910), French author
pgpByLucFIbKz.pgp
Description: PGP signature
___
CentOS mailing list
CentOS@centos.org
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I Know It's A Stupid Question......
On 05/02/2013 07:26 PM, Eddie G. O'Connor Jr. wrote: But I'm trying to give my son a cool-yet-kind-of-geeky 13th Birthday Present..he hinted he liked the CentOS logo, but where would I find things that are branded with it?searching the web doesn't really help me much, only because I'm not sure what I need to be looking for...any help would be greatly appreciated! Thanks in advance!! Is there someone with a 3D printer or a laser cutter in your area? Check out your local hackerspaces/makerspaces. You could make him a phone hardcase or something. signature.asc Description: OpenPGP digital signature ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I Know It's A Stupid Question......
Not stupid. However, I recommend that you get a better understanding of what it is that you'd like. There are sites like shapeways.com where people can make physical objects of various sizes (within reason). Would you like to give him a physical logo? A t-shirt with the logo? The answer to those questions will help you to look :) . On Thu, May 2, 2013 at 7:26 PM, Eddie G. O'Connor Jr. eoconno...@gmail.comwrote: But I'm trying to give my son a cool-yet-kind-of-geeky 13th Birthday Present..he hinted he liked the CentOS logo, but where would I find things that are branded with it?searching the web doesn't really help me much, only because I'm not sure what I need to be looking for...any help would be greatly appreciated! Thanks in advance!! EGO II ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] Is there a good nntp client for Centos 6 that handles SSL native?
Rock wrote: Is there a good nntp client for Centos 6 that handles SSL native? I like knode (in kdepim rpm) -- rex ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] No more support for chrome/chromium on rhel6
Johnny, there is someone here https://code.google.com/p/chromium/issues/detail?id=227320 who is willing and able to help. On Mon, Apr 15, 2013 at 3:48 PM, Johnny Hughes joh...@centos.org wrote: On 04/15/2013 01:26 AM, Robert Arkiletian wrote: Is there any chance CentOS might add Chromium to extras repo? See below. Post from Hirakendu: https://groups.google.com/a/chromium.org/forum/?fromgroups#!topic/chromium-discuss/I_ZFDJqdiyA --- I have put up some scripts for building current Chromium versions (26 and 27) on EL 6 at https://github.com/hirakendu/chromium_el_builder . See the readme for details. Due to the large file size, the current RPM chromium-26.0.1410.63-192696.x86_64.rpm, built on CentOS 6.4, can be obtained by downloading the project archive.Please note that this is only for the time being and I do not intend to actively maintain it, but I hope it may help others. A couple of patches may be merged as well. Aside, thanks to Paweł for maintaining the excellent chromium ebuilds for Gentoo Linux (which I have been happily using for several years) that helped clarify some of the build steps, in addition to the official build instructions at chromium.org. I will be glad to build it, *IF* I can reproduce what the script does inside an SRPM (looks like I should be able to). One of our rules is an SRPM for everything we release. The problem is, if he is not going to support it later, his gcc patches may not keep working on newer code and we only gain a couple of builds and run out of support. Since I personally use chrome as my browser (and obviously CentOS-6.4 as my OS :D) ... and want to continue to do so ... I will look at this soon. Thanks, Johnny Hughes ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I Know It's A Stupid Question......
Quoting Eddie G. O'Connor Jr. eoconno...@gmail.com: But I'm trying to give my son a cool-yet-kind-of-geeky 13th Birthday Present..he hinted he liked the CentOS logo, but where would I find things that are branded with it?searching the web doesn't really help me much, only because I'm not sure what I need to be looking for...any help would be greatly appreciated! Thanks in advance!! why not take the logo to a t-shirt shop and give him a custom shirt? Dave EGO II ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos -- The problem with being cynical is you can't keep up! -- anon. philosopher ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] I Know It's A Stupid Question......
On 5/2/2013 10:13 PM, Dave Stevens wrote: why not take the logo to a t-shirt shop and give him a custom shirt? computer printed one-of shirts aren't as durable or nice as proper silk screened shirts... and screen printing, you need to be making a few 100 for them to be cheap enough. a couple years ago someone in the UK did a run of shirts. I have a couple, in XL. -- john r pierce 37N 122W somewhere on the middle of the left coast ___ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
