| 27 Aug 2025 |
|  bktej joined the room. | 03:19:54 |
|  @nullcube:matrix.org left the room. | 12:19:43 |
|  matthewcroughan changed their display name from matthewcroughan to matthewcroughan @ nix.camp. | 18:54:06 |
| 28 Aug 2025 |
|  sbc64 changed their profile picture. | 14:23:16 |
|  @redbeardy_mcgee:matrix.org left the room. | 16:35:55 |
|  Charles changed their profile picture. | 17:59:28 |
| 29 Aug 2025 |
|  vulnix changed their profile picture. | 00:46:39 |
| vulnix changed their profile picture. | 00:57:39 |
|  @luna-null:matrix.org left the room. | 02:40:33 |
|  @zeorin:matrix.org left the room. | 07:02:48 |
| Charles changed their profile picture. | 19:12:27 |
|  magic_rb changed their profile picture. | 19:31:33 |
| 2 Sep 2025 |
|  haras-unicorn joined the room. | 15:53:10 |
| haras-unicorn | Redacted or Malformed Event | 16:09:59 |
| 3 Sep 2025 |
|  ghpzin joined the room. | 18:27:22 |
| 4 Sep 2025 |
|  curious_cuttlefish joined the room. | 04:41:59 |
|  qbit joined the room. | 20:18:09 |
 clerie | Hi, does anyone have a working Dual Stack Lite CPE setup for NixOS and wants to share the configs with me? | 20:31:20 |
| 6 Sep 2025 |
|  SomeoneSerge (back on matrix) changed their display name from SomeoneSerge (Ever OOMed by Element) to SomeoneSerge (@nixcon & back on matrix). | 09:22:04 |
| matthewcroughan changed their display name from matthewcroughan @ nix.camp to matthewcroughan @ nixcon. | 09:37:46 |
 kraem | i've created a systemd service which joins a network namespace, but i can't get it to use a specific dns server instead of the hosts. i've tried BindReadOnlyPaths but i can't get it to work. did anyone here successfully do this?
here's what i have so far: https://paste.rs/FWI2h.txt
(i've verified it joins the netns and it uses it successfully) | 17:35:38 |
| kraem | * i've created a systemd service which joins a network namespace, but i can't get it to use a specific dns server instead of the hosts. i've tried BindReadOnlyPaths but i can't get it to work. did anyone here successfully do this?
here's what i have so far: https://paste.rs/FWI2h.txt
(i've verified the service joins the netns and it uses it successfully) | 17:38:20 |
 Jassuko | Is the resolv_conf destination thing wrong? or how does that work? | 22:13:25 |
| kraem | i just found out how to verify that it actually is mounted correctly:
systemd-cgls --unit wg-netns-test0 (lists pids running in the container) nsenter -a -t $pid cat /etc/resolv.conf (inside the nsenter) gives me the correct contents (which is different than my hosts)
so for some reason the processes inside the service isn't using the nameserver resolv.conf specified in the resolv.conf .. | 23:00:27 |
| kraem | do i need to run a separate resolver inside the service somehow, may | 23:01:57 |
| kraem | * do i need to run a separate resolver inside the service somehow? maybe the processes are calling into my hosts networkmanager resolver which is running with the hosts resolv.conf configuration? | 23:03:27 |
| kraem | i just found out how to verify that it actually is mounted correctly:
systemd-cgls --unit wg-netns-test0 (lists pids running in the container) nsenter -a -t $pid cat /etc/resolv.conf (inside the nsenter) gives me the correct contents (which is different than my hosts)
so for some reason the processes inside the service isn't using the nameserver specified in the resolv.conf .. | 23:05:20 |
| kraem | interesting. dig actually uses the bind mounted /etc/resolv.conf in the service but the python script i was testing with used my hosts nameserver.
i was using this script (https://gist.github.com/Tugzrida/6fe83682157ead89875a76d065874973) which uses socket.socket(socket.AF_INET, socket.SOCK_DGRAM), which should be using glibc if i understand correctly, which in turn makes it very strange because glibc should be reading the resolv.conf mounted inside the service? | 23:46:24 |
| 7 Sep 2025 |
| Jassuko | what does your nsswitch.conf look like? | 00:53:30 |
 hexa (clat on linux when) | https://www.servethehome.com/qnap-qsw-m3216r-8s8t-16-port-10gbe-managed-marvell-switch-review/ 🤔 | 01:02:15 |
