joobzhey guys.. anyone decent with libreswan debugging in v7 redhat? Can't seem to get my ipsec tunnel connected
AndyCapYes, this naming scheme is awesome. Plug in usb network adapter on one side, get enp0s20u2u2, plug in on other side, get enp0s26u1u2u1
joobzhey guys.. been debugging an IPSEC connection and managed to get it right through to phase 2, but having troubles now getting this last bit. I keep getting "processing informational INVALID_ID_INFORMATION (18)" .. I've played with the leftid and rightid and tried to sync them with all sorts of combinations (connecting openswan to fortinet), no joy.. any help appreciated
trae32566[w]joobz: you'll have better luck between 8 - 5 M-F CST. I have no idea on that issue ^
joobzahh k
joobzthanks Trae32566
joobzcant figure this out
joobz "mysubnet" #1: ignoring informational payload INVALID_ID_INFORMATION, msgid=00000000, length=12
Ussatinteresting, not a SUSE fan but seems 13 uses BTRFS as a default
MerlinTHPAIUI, they turn off a bunch of the less stable features.
Ussatso, what exactly is the difference between apparmor and selinux ? I am not familiar with apparmor at all
ashpapparmor is like a budget, fairly terrible, version of selinux
ComnenusDoes any other distro use app armor? hah
ashpi love how the ansible irc channel gets grumpy about ansible tower questions
ashplike it's some kind of non-ansible product out to get them
AndyCapComnenus: I thought it was suse and ubuntu
Comnenusubuntu does too? heh
Comnenusashp: maybe they just don't like you
ashpmakes sense
UssatDont know, was just cureious
Ussatwe have one install of it here, not us as in the Unix team but a professor has one we manage
Ussatand being the only real Linux guy here, well, its been put in my lap
ComnenusWhy did he want ubuntu?
Comnenusfor a while I could understand why a lot of people would default to ubuntu, but the last few times I tried it, the quality was noticeably worse.
Comnenuswonky UI's, things that seemed to be ubuntu's selling point in the past.
Ussatnot ubuntu, suse
UssatWe are converting it to RHEL on Power here in a few months, thats the plan anyway
lupin_the_3rdRHEL on Power = winning.
AndyCaplupin_the_3rd: for IBM
Ussatfor RH also, its income
Ussatquite a bit actually, RHEL for power is a tad more expensive than for X86
Ussatand I would suspect sup[port costs would be minimal compared to X86, anyone running RHEL on Power can most likely support themself
ComnenusWhy on Power?
Ussat Why not ?
Comnenusseems like you would have a case to use Power, especially since it is more expensive, not the other way around.
Ussatbecuase we have the resources to do so, we have the equipt, have the liscenses already
ComnenusThousands gather in Glasgow to protest the UK's trident nuclear program. Huh... nice use of a Saturday afternoon.
UssatThats nice.....
Comnenusmore for us?
ComnenusYesterday I watched that movie about the Cuban Missile Crisis.
ComnenusWhich was interesting, because I don't think I have taken a single history class that covered it.
UssatYea, its a pretty interesting part of history
lupin_the_3rdPower is faster than x86, so if your application requires a large amount of CPU for a single OS instance, Power is the king. Big Pharma is a large RH on Power customer, they use it for molecular simulations and drug behavioral modeling.
MerlinTHPX-Men First Class?
Comnenusdoes centos compile for power as well?
lupin_the_3rdIf you a break your problem into many small chunks, you can use cheaper "Beowulf" style cluster on x86, but there are plenty of problems that cannot be subdivided in this way, and thus require a single big machine.
MerlinTHPComnenus: not currently
UssatComnenus, no, I offered the Centos team a lpar and some resources to get one goin, but never herd back after the initial contact
Comnenusoh Evolution, get off your lazy ass and start working on centos on power.
Comnenuslupin_the_3rd: I wish I could find a decent book on cpu architectures, and what to use when... tbh I'm completely clueless on the subject.
UssatI even had permission from the UNI etc
Ussatbut I have re-purposed them as of about a month ago....
lupin_the_3rdComnenus: It's a lot simpler today than it was 15 years ago. Alpha, MIPS, PA-RISC, Itanium, all are defunct or nearly so. Your only real choices today are Power or SPARC for huge monolithic machines. x86-64 for midrange. or ARM for low power.
Comnenuslupin_the_3rd: I just found out a couple months ago that SGI actually does still make systems.
Comnenusmaxamillion: ping
lupin_the_3rdComnenus: Yeah, but they're a shadow of their former self. They abandoned MIPS years ago, dabbled a little in Itanium, and today everything they sell is intel Xeon x86.
Comnenuslupin_the_3rd: what's the point, then?
lupin_the_3rdComnenus: They also abandoned IRIX and everything they do today is Linux. The value-add is the same as big Hitachi x86 machines. Commodity Dell/HP/IBM x86 servers only scale to 8 sockets. Hitachi and SGI make big x86 systems with as many as 256 sockets.
Comnenusso applications that need an absurd amount of cores.
lupin_the_3rdYes exactly. The difference is Dell/HP/IBM use the intel reference design, and intel bridge chips. Hitachi and SGI design their own bridge chips from scratch that scale x86 to way beyond the intel reference design.
lupin_the_3rdWith an appropriately large $price $tag to go with it. Basically it's a competitor to large SPARC and Power systems.
UssatIBM is expensive, but SGI stuff is more generally
joobzhey guys.. anyone able to help debug a "INVALID_ID_INFORMATION" error with IPSec?