Jump to content
funtoo forums

romikb

Members
  • Content count

    19
  • Joined

  • Last visited

About romikb

  • Rank
    Member

Recent Profile Visitors

241 profile views
  1. ego 2.6 testing?

    ego-2.6 was missed in tree when I wrote this topic.
  2. ego 2.6 testing?

    There is a announce of ego 2.6 testing on forum. But I can't find it anywhere on git meta-repo. Is it avail for public testing?
  3. Config files for emerge. It does not see any new packages in shared meta-repo without updating config. Yes, "ego-sync --config-only" update config, but it checks for read-only and also crash. ego-2.4.2 python-3.6 I use image from tutorial https://www.funtoo.org/LXD # lxc image info funtoo Fingerprint: 6558977224e0b3b631594e210637a1f65b4a618c492cb201b54cdf49928acc09 Size: 231.97MB Architecture: x86_64 Public: no Timestamps: Created: 2018/05/19 08:13 UTC Uploaded: 2018/05/22 10:28 UTC Expires: never Last used: 2018/05/26 10:24 UTC Properties: description: Funtoo Current Westmere 64bit 2018-05-19 name: funtoo-current-x86-64bit-intel64-westmere Aliases: - funtoo Cached: no Auto update: disabled Containers are in "security.privileged true", because of samba addc (it require real root), so meta-repo owner in container is portage user. # lxc profile show default config: environment.LANG: en_US.UTF-8 environment.LC_ALL: en_US.UTF-8 environment.LC_COLLATE: POSIX raw.lxc: lxc.mount.entry = none dev/shm tmpfs rw,nosuid,nodev,create=dir description: Default LXD profile devices: distfiles: path: /var/cache/portage/distfiles source: /var/cache/portage/distfiles type: disk eth0: nictype: bridged parent: br0 type: nic meta-repo: path: /var/git/meta-repo readonly: "true" source: /var/git/meta-repo type: disk root: path: / pool: default type: disk name: default used_by: - /1.0/containers/addc - /1.0/containers/dc - /1.0/containers/test # lxc config show dc architecture: x86_64 config: image.description: Funtoo Current Westmere 64bit 2018-05-19 image.name: funtoo-current-x86-64bit-intel64-westmere security.privileged: "true" volatile.base_image: 6558977224e0b3b631594e210637a1f65b4a618c492cb201b54cdf49928acc09 volatile.eth0.hwaddr: 00:16:3e:d1:61:d6 volatile.eth0.name: eth0 volatile.idmap.base: "0" volatile.idmap.next: '[]' volatile.last_state.idmap: '[]' volatile.last_state.power: RUNNING devices: {} ephemeral: false profiles: - default stateful: false description: ""
  4. "ego sync" in Funtoo Container work exact as I need. It update configs while meta-repo is read only. My Funtoo installation have no "emerge --update" command.
  5. I have many lxd containers and want to save disk space. I want to share meta-repo and distfiles beetween all of them. Ego sync inside container should only update configs. "Funtoo Containers" have this feature but my funtoo instalation have not. For example in Funtoo Container: # ego sync WARNING: Meta-repo is read-only -- running in config-only mode. Updating /etc/portage/repos.conf... Updating profiles at /etc/portage/make.profile/parent...
  6. I mount meta-repo as read only to lxd container. If I run "ego sync" it crushes: # ego sync ERROR: Ego encountered an unexpected error: OSError ERROR: Full traceback written to /tmp/ego-traceback-3362.txt. # cat /tmp/ego-traceback-3362.txt [Errno 30] Read-only file system: '/var/git/meta-repo/.touch'Traceback (most recent call last): File "/usr/bin/ego", line 120, in <module> EgoModule.run_ego_module(action, econfig, args, VERSION) File "/usr/share/ego/python/ego/module.py", line 102, in run_ego_module ego_module(*args) File "/usr/share/ego/python/ego/module.py", line 87, in __call__ self.handle() File "/usr/share/ego/modules/sync.ego", line 342, in handle self.sync_meta_repo() File "/usr/share/ego/modules/sync.ego", line 192, in sync_meta_repo meta_repo_path.touch() File "/usr/lib64/python3.6/pathlib.py", line 1236, in touch fd = self._raw_open(flags, mode) File "/usr/lib64/python3.6/pathlib.py", line 1044, in _raw_open return self._accessor.open(self, flags, mode) File "/usr/lib64/python3.6/pathlib.py", line 387, in wrapped return strfunc(str(pathobj), *args) OSError: [Errno 30] Read-only file system: '/var/git/meta-repo/.touch' If I set another path for meta-repo: "meta_repo_path = /var/git/meta-repo-local" than ego sync work without issues. local meta-repo and read-only meta-repo are identical. Any chance for ego sync work on read only meta-repo?
  7. ipsec based vpn

    I install and configure strongswan but network packets not going from host, plase help. ipsec.conf conn %default left=%any leftauth=pubkey leftcert=rb-ipsec-server-60.pem leftsubnet=0.0.0.0/0 right=%any rightauth=pubkey rightsourceip=192.168.14.0/24 conn ikev2 keyexchange=ikev2 auto=add Other configs are default. # eix strongswan [I] net-vpn/strongswan [1] Available versions: 5.5.3 (~)5.6.0 5.6.0-r1 (~)5.6.2 {+caps +constraints curl debug dhcp eap farp gcrypt +gmp ldap mysql networkmanager +non-root +openssl pam pkcs11 selinux sqlite strongswan_plugins_blowfish strongswan_plugins_ccm strongswan_plugins_ctr strongswan_plugins_gcm strongswan_plugins_ha strongswan_plugins_ipseckey +strongswan_plugins_led +strongswan_plugins_lookip strongswan_plugins_ntru strongswan_plugins_padlock strongswan_plugins_rdrand +strongswan_plugins_systime-fix strongswan_plugins_unbound +strongswan_plugins_unity +strongswan_plugins_vici strongswan_plugins_whitelist} Installed versions: 5.6.2(04:27:39 PM 05/15/2018)(caps constraints gmp non-root openssl pam strongswan_plugins_led strongswan_plugins_lookip strongswan_plugins_systime-fix strongswan_plugins_unity strongswan_plugins_vici -curl -debug -dhcp -eap -farp -gcrypt -ldap -mysql -networkmanager -pkcs11 -selinux -sqlite -strongswan_plugins_blowfish -strongswan_plugins_ccm -strongswan_plugins_ctr -strongswan_plugins_gcm -strongswan_plugins_ha -strongswan_plugins_ipseckey -strongswan_plugins_ntru -strongswan_plugins_padlock -strongswan_plugins_rdrand -strongswan_plugins_unbound -strongswan_plugins_whitelist) Homepage: http://www.strongswan.org/ Description: IPsec-based VPN solution focused on security and ease of use, supporting IKEv1/IKEv2 and MOBIKE # sysctl -a | grep net.ipv4.ip_forward net.ipv4.ip_forward = 1 Traceroute from android client # traceroute 8.8.8.8 1: hostip 2: * ... 3: *
  8. Samba ADDC

    I have many issues with samba-4.8.x, but samba-4.7.7 works good.
  9. Virtualize Funtoo over Funtoo

    Samba is for example. I need to run 2 instances of complex application with different configuration. And Host should have priority for performance and can you all 100% of host processor resources if needed. I need Samba POSIX ACLs file sharing but it is supported only on Domain Controller Members. So I need run Samba AD Domain Controller in virtual "container", and Samba on host to share files.
  10. Virtualize Funtoo over Funtoo

    I need to run Funtoo over Funtoo host. I need dynamically share performance between them. What is the preferred method for this? I want to run samba as ADDC in virtual machine and samba on host as Domain Member with file sharing feature.
  11. I try to setup ip for server using /etc/conf.d/net.eth0 template="interface" ipaddr="192.168.11.6/24 2a03:xxxx:xxxx:xxxx::6/64" gateway="192.168.11.1" gateway6="2a03:xxxx:xxxx:xxxx::" but interface acquire 3 ipv6 addresses # ifconfig eth0 eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 inet 192.168.11.6 netmask 255.255.255.0 broadcast 192.168.11.255 inet6 2a03:xxxx:xxxx:xxxx:aaaa:aaaa:aaaa:aaaa prefixlen 64 scopeid 0x0<global> inet6 2a03:xxxx:xxxx:xxxx::6 prefixlen 64 scopeid 0x0<global> inet6 fe80::aaaa:aaaa:aaaa:aaaa prefixlen 64 scopeid 0x20<link> ether aa:aa:aa:aa:aa:aa txqueuelen 1000 (Ethernet) RX packets 3448832 bytes 2497999401 (2.3 GiB) RX errors 0 dropped 222 overruns 0 frame 0 TX packets 4594668 bytes 5355598657 (4.9 GiB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 how can I exclude "2a03:xxxx:xxxx:xxxx:aaaa:aaaa:aaaa:aaaa"? PS: neighbor discovery is enable on router and cannot be disabled because needed by other pc.
  12. Samba ADDC

    I just install samba as ADDC not real tests, but tests from install page all successfull. I add this to /etc/portage/package.use net-fs/samba acl addc addns ads gnutls winbind # required by net-fs/samba-4.8.1::net-kit[addns] # required by samba (argument) >=net-dns/bind-tools-9.11.2_p1 gssapi my /etc/resolv.conf is (I replace domain, nameserver is point to localhost) # Generated by resolvconf domain samdom.example.com nameserver 192.168.11.6 I use network configuration from this link https://www.funtoo.org/Networking#Server_Network_Configuration, /etc/resolv.conf is generated after reboot but equal.
  13. ipsec based vpn

    Funtoo Containers are Containers so possible have some restrictions for this. IPsec configuration not trivial so it is better to know what software are compatible.
  14. ipsec based vpn

    What is the prefered software for building ipsec based vpn inside funtoo container? With ikev2 and certificate based auth. PS: move pls to Funtoo Hosting forum.
  15. ANSWERED Reboot Container

    Today reboot is work without issues.
×