Nahum Shalman

Silly SmartOS hack: ipf/ipnat in lx zones

Someone on IRC in #smartos was asking about how to turn on NAT in lx branded zones. I was pretty sure it should be possible, and found myself nerd-sniped into figuring out the exact solution. I don't think I particularly recommend doing this, but

ZFS send/receive

A few weeks back I needed to migrate an entire ZFS pool from one machine to another. I used raw send to keep the stream compressed, and I used mbuffer to smooth out the send/receive (see the reference link at the bottom) First,

smartos

Tailscale for illumos

A while back, Josh Clulow did an initial port of wireguard-go to illumos. I was able to make some small modifications to it sufficient to get it to point the Tailscale client code at it and build tailscale binaries for illumos. Here's how to build them yourself:

ghost

Migration Notes

Some notes I took down as I stood up my new zone hosted by https://mnx.io.

Upcoming Downtime

Just a heads-up that I have to migrate my domain off of the JPC and there will probably be a downtime of my blog and other services for an unknown duration (though I'll do my best to keep it as short as possible) to

Wireguard - Android Road Warrior

Motivation There are a lot of blog posts and wiki pages about how to set up Wireguard, but I still had to do a bunch of trial and error to come up with a configuration that worked for me. I have two goals: Secure

Silly tricks with Docker in the JPC

Message from 2018: I was going through my blog post drafts and found this post. I've made few small tweaks to it that seem to be what I was hoping to add before publishing. If you've ever wanted to replace your SSH access to

IPMItool for Termux (Android / Chromebook)

This is a follow up to my previous post outlining my chromebook setup. I managed to get IPMItool to compile in my Termux environment. Here's how you can too. (So far I've only been able to get this to work on an x86 Chromebook,

Chromebook Adventures

A chromebook you say? I've been in need of a new personal laptop for a while and inspired by this post from @kennwhite I decided that I would get a Chromebook. I put a couple of different models on a wishlist including the one

Running OmniOS under KVM on on-prem Triton, Part 1

The first VM I wanted to build was OmniOS 014. While the system was able to see a virtio disk, the installer was not, so I did the initial installation on a virtual IDE drive. JSON spec for the installation VM: { "alias"

Enabling DTrace on macOS Sierra

I was doing some work on my Python bindings for libusdt which reminded me about how annoying it is when DTrace isn't working. The solution (as I noted here) is pretty simple: Reboot into Recovery Mode (hold down ⌘R during boot) Launch a shell

Sometimes it's the little things

If you run an illumos distribution that uses beadm (e.g. OmniOS) in production, you may have run into illumos bug #5943. As you might imagine, we at OmniTI run a lot of OmniOS systems. Recently a machine was being upgraded and on reboot

ZFS used space hidden in more than one snapshot

Someone was asking about this on IRC This is mostly for myself for later: hidden_in_snaps(){ bc -l <<<"( $(zfs list -H -p -o usedsnap ${1}) - $(zfs list -H -p -t snapshot -r -d 1 -o used ${1} | awk

PXE Booting NixOS

I've been outed on Twitter: Thanks to some awesome work from @nahumshalman, we'll soon have a PXE bootable #NixOS installer! https://t.co/WHHwP1Bm5i — Charles Strahan (@charlesstrahan) April 21, 2016 I've been working on this pull request for the past couple

Mistify is now Cerana

Just a quick note that Mistify is being rebranded as Cerana. I'm busy getting settled into my new team and having a great time. You can be sure I'll either be posting here or at least linking from here over to more information as

mistify

OmniTI

Long time followers are aware of how much time and energy I've poured into SmartOS and the SmartOS community which might make what I'm about to tell you all the more surprising. You may want to sit down. Today was my first day at

smartos

Running a Tor relay with Docker in the JPC

Jessie Frazelle did some really nice work wrapping up Tor into a Docker image. I tried running it in the Joyent Public Cloud (JPC) back in January but ran into a bug in the LX implementation. As I noted in the bug report today,

smartos

Recent smartos-discuss posts Feb 2016 edition

Some of my recent posts to the smartos-discuss mailing list may be of interest to any readers who for some reason read this blog but aren't on the mailing list: On the subject of cpu_shares, cpu_cap, and vcpus Booting SmartOS in rescue

smartos

SmartOS ZFS Boot Media

Someone recently asked about this on the mailing list so I decided to get this out of the drafts folder and published. I used these instructions to create a ZFS formatted USB stick with a pool name of smartos that I use in my

smartos

Running SDC CoaL on SmartOS

Motivation I don't have any machines that run VMware but I do have a nice SmartOS machine. I have some SDC features I want to test. I want to test my own changes to SDC to make sure that they are safe, and I

smartos

SmartOS on SmartOS everywhere for LX brand testing

TLDR? Click here for the quick set of commands to run on your SmartOS machine to try this stuff out. Hot on the heels of my previous blog entry comes a KVM bootable image containing my latest SmartOS build with some extra tooling to

smartos

SmartOS on SmartOS in the JPC

What now? We begin with Xzibit: Okay, really, what? Log into the JPC portal Provision a CentOS 7 VM Use any package that gives you more than 1 VCPU (try "High CPU 1.75") Only give it one VNIC on the public

smartos

The SmartOS lx brand is coming along nicely.

I can't take any credit for the actual work, but I did help in two ways: I started a wiki page to help people learn how to test it while it's under development. I set up my home machine to rebuild SmartOS regularly when

smartos

Exploring epoll on SmartOS

Introduction Back in April, Joyent added an implementation of the epoll API to their downstream tree of illumos. This is interesting because it means that many otherwise portable applications that depend on this (formerly) Linux-specific API can now be built and run on SmartOS.

Tricks With Joyent's Manta Service: Tarballs

The Use Case Let's say you're backing up a directory of files into Joyent's Manta service with Dave Eddy's manta-sync tool. You're happily backing up your files regularly, but one day you need to get the whole directory back out. You notice that "