#nixos-on-your-router on 2020-09-21

2019-08-19 13:17 eyJhb changed the topic of #nixos-on-your-router to: NixOS on your Router || https://logs.nix.samueldr.com/nixos-on-your-router

01:03 qyliss has quit [Quit: bye]

01:14 qyliss has joined #nixos-on-your-router

03:51 night has quit [Read error: Connection reset by peer]

03:51 NightA has joined #nixos-on-your-router

05:36 NightA is now known as night

09:37 teto has joined #nixos-on-your-router

10:48 <andi-> mdlayher: at this point I'd like to discuss creating a proper network configuration daemon for linux :D

11:11 <q3k> yeah that would be nice

11:12 <q3k> honestly my best experience so far was with gentoo's network configuration system

11:12 <q3k> it was all a bunch of shell scripts but they just worked, and worked without surprises

11:50 <mdlayher> andi-: I'm curious, what do you have in mind?

11:51 <andi-> mdlayher: I am a bit sick of networkd and the lack of testability and how the entire code has grown. I would like to discuss what it would take to have something with a similar declarative configuration but a newer architecture.

11:53 <andi-> Like my latest issue is not being able to declare orders or have a proper introspection. Adding that to the C code base is kinda annoying.

11:55 <mdlayher> Gotcha! Sounds interesting. I think my only concern is that projects like NM and networkd are so far ahead and have tons of developers working on them as is, so it'd take a lot of effort to even begin to create a viable alternative

12:04 teto has quit [Ping timeout: 272 seconds]

12:13 <andi-> mdlayher: that is true but same was said when networkd started out ;)

12:14 <andi-> Like for my use-cases that I encounter most of the time I need: VLANs, bonding, wireguard, ip address configuration, all those need matches on pci path, mac address and/or device name.

12:14 <andi-> I wouldn't even port VRF, ip rules, NAT support, …

12:15 <andi-> obviously DHCP and DHCPv6 support ist a must-have

12:15 <andi-> right now my networkd spents ~2 minutes on DNS timeouts before it configures the uplink interface *IF* if it started with socket activation..

12:25 superherointj has joined #nixos-on-your-router

13:41 ottidmes has quit [Ping timeout: 258 seconds]

13:42 ottidmes has joined #nixos-on-your-router

14:21 teto has joined #nixos-on-your-router

15:21 <NinjaTrappeur> :/

15:54 night has quit [Read error: Connection reset by peer]

15:55 NightA has joined #nixos-on-your-router

15:56 NightA is now known as night

17:08 teto has quit [Ping timeout: 272 seconds]

17:36 <hexa-> can we maybe tackle declarative virtual machines on nixos first?

17:38 <cransom> that's against the rules here at #nixos-on-your-router

17:38 <hexa-> not if I want to virtualize my router(s)!

17:39 <cransom> sure, but that just gives you N broken routers rather than 1

17:39 <hexa-> doesn't that sound appealing?

17:40 <aranea> oh, absolutely

17:40 <aranea> N times the opportunities to hunt bizarre bugs

17:41 <aranea> hmm, actually, that probably goes up superlinearily

17:53 <q3k> yeah, declarative VMs would be neato

17:53 <q3k> i wonder if there's a big hurdle to do that that i'm not aware of

17:53 <q3k> or just nobody really bothered

17:58 <hexa-> what andi- describes sounds like they hit a bug honestly

18:11 <q3k> that's my general experience with systemd

18:11 <q3k> bleh

18:11 <q3k> systemd-networkd.

18:19 <hexa-> i maintain some legacy systems with debian and ifupdown

18:19 <hexa-> systemd-network is pretty dope compared to that

19:18 <andi-> It is most likely a bug and a very odd one.. I'm trying to get some time to debug this but $RL and $dayjob don't help there

19:21 <andi-> we should probably default to networkd soon to uncover all the bugs and make it critical for all companies running NixOS...

19:22 <andi-> evil master plan 🤔

19:38 <aleph-> Heh

19:41 <cransom> if we could work in some kind of kickback from systemd, that would be ideal.

19:45 <andi-> :D

19:46 aleph- has quit [Quit: WeeChat info:version]

19:46 <andi-> I really guess those dropped messages are what is causing my problems: https://gist.githubusercontent.com/andir/48f13de037b5195207fae312ea63622c/raw/10b9b58d2893499f237222bea148b279ae94b95b/networkd.log

19:49 aleph- has joined #nixos-on-your-router

19:49 <aleph-> andi-: So what does networkd get me?

19:50 * aleph- doesn't really care too much as long as he doesn't have to edit his router config too much

19:54 <andi-> aleph-: warm fuzzy declarative feeling

19:55 <andi-> No more racy scripts that run some time during boot.

19:56 <andi-> It also gets you the best dhcpv6 client experience I have seen in open source systems so far. It gets a lot right.

19:56 <NinjaTrappeur> heeeh, I wouldn't go that far as "no racy shennanigans anymore". Definitely a step on the right direction though :) It makes the DHCP and v6 RA config much simpler in my experience as well.

19:58 <andi-> The racy shit I saw with several thousand VLANs is fixed in the latest stable version.

19:58 <andi-> I want more introspection / a Prometheus endpoint next

19:59 <NinjaTrappeur> What kind of prometheus data?

19:59 <NinjaTrappeur> s/prometheus/metric/g

20:01 <andi-> Mostly for dhcpv6: Lease lifetimes, retries, timeouts, next hop reachability

20:02 <andi-> Also I would like networkd to write somewhere (public) what prefixes it currently manages on each interface and what the routes learned from next hop are. Reality often doesn't match with what is configured.

20:03 <andi-> And once that is done maybe a dhcpv6 server in networkd.

20:03 <andi-> So give it another 3 years.

20:04 <andi-> If anyone is hiring to work on networkd: I am in!

20:05 <NinjaTrappeur> Nice.

20:05 <NinjaTrappeur> I sadly do not own a business, can't do that.

20:06 <andi-> NinjaTrappeur: come on! Just trade a few kidneys ;-)

20:12 <NinjaTrappeur> :P

20:41 NinjaTrappeur has quit [Quit: WeeChat 2.8]

20:41 NinjaTrappeur has joined #nixos-on-your-router

22:57 superherointj_ has joined #nixos-on-your-router

22:59 superherointj_ has quit [Client Quit]

22:59 superherointj has quit [Quit: Leaving]