[09:22:16] <_joe_>	 Emperor: re: conftool on trixie, I hope to have you covered by this evening
[09:36:23] <Emperor>	 thanks :)
[10:42:00] <jynus>	 so because multiple combination of firewalls and ips vs dns, I am having trouble with ipv6 enabled hosts suffering from timeout
[10:42:28] <jynus>	 I wonder if it is a blocker, or something I can try to fix on a future release
[10:42:31] <Emperor>	 dual-stack ones, or v6-only?
[10:42:37] <jynus>	 dual stack ones
[10:42:58] <Emperor>	 I think if there's a way to force v4 for those hosts and thus work around, it's probably OK then :)
[10:43:16] <jynus>	 yes, but that's the thing I want to avoid
[10:43:21] <jynus>	 I mean on the tool
[10:43:33] <jynus>	 because I won't know what the host have
[10:44:21] <jynus>	 it works for ipv6, just I won't know what it will resolve beforehand, will have to behave differently on the 3 cases
[10:44:56] <jynus>	 are ms- hosts dual stack?
[10:52:29] <Emperor>	 at least some of them are (they need v4 'cos all the rings are v4, but then a bunch get v6 anyway)
[10:54:40] <jynus>	 oh, I just spotted a regression with iptables, let me recheck
[11:13:19] <jynus>	 I think the right fix would be to migrate to socat and listen in dual stack
[11:13:58] <jynus>	 but that also means I have to handle the firewall for both, and I have to discover if ipv6 is supported, etc.
[11:15:54] <jynus>	 I think I will leave https://phabricator.wikimedia.org/T308120 for later
[11:16:30] <jynus>	 as technically it works, just one suffers the extra timeout, and it is not that bad unless one runs it with high frequency
[11:20:26] <jynus>	 having at the same time ipv6 and ipv4, iptables and nft, it all makes things more messy
[11:25:47] <federico3>	 (running a cookbook test, no real changes)
[11:26:52] <federico3>	 (ok, done, no alerts)
[11:27:33] <jynus>	 actually, I have a better temporary fix, which is forcing ipv4