#arpnetworks/ 2015-02-22,Sun

↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)
WhoWhatWhen
grodystill need to get around to setting a new vps to run pfsense on, use as a virtual firewall to others [03:50]
................................. (idle for 2h43mn)
***medum has quit IRC (Ping timeout: 265 seconds) [06:33]
........... (idle for 51mn)
abthorpet has quit IRC (*.net *.split)
SpaceDump has quit IRC (*.net *.split)
neish has quit IRC (*.net *.split)
mike-burns has quit IRC (*.net *.split)
tooth has quit IRC (*.net *.split)
raptelan has quit IRC (*.net *.split)
d^_^b has quit IRC (*.net *.split)
dne has quit IRC (*.net *.split)
hazardous has quit IRC (*.net *.split)
up_the_irons has quit IRC (*.net *.split)
ant has quit IRC (*.net *.split)
d^_^b has joined #arpnetworks
d^_^b has quit IRC (Changing host)
d^_^b has joined #arpnetworks
raptelan_ has joined #arpnetworks
SpaceDump has joined #arpnetworks
tabthorpe has joined #arpnetworks
neish has joined #arpnetworks
dne has joined #arpnetworks
up_the_irons has joined #arpnetworks
ChanServ sets mode: +o up_the_irons
tooth has joined #arpnetworks
hazardous has joined #arpnetworks
mike-burns has joined #arpnetworks
ChanServ sets mode: +o mike-burns
ant has joined #arpnetworks 		[07:24]
........ (idle for 39mn)
_Zodiac has joined #arpnetworks
_Zodiac has left 		[08:04]
.......... (idle for 47mn)
m0undsgrody: i'm building stuff on 10.1 as we speak, and it seems to have pretty normal i/o perf for me (w/virtio) [08:52]
***joepie91 has quit IRC (Ping timeout: 252 seconds)
joepie91- has joined #arpnetworks 		[08:55]
grodym0unds, aye.. now i enabled virtio at boot, the io is considerably better
so used to 8.4, it was "as is, or not at all"
to be honest, the difference was only noticeable when doing a portsnap extract
and it was only barely noticable
i am loving ezjails though
my last jail scenario was scarey
still want a small pfsense VPS and i see an ideal one for $10 		[09:07]
m0undsgrody: gotcha [09:15]
grodysorry, i babble a lot :D [09:16]
saddened i lost a 267 day uptime though, was my most reliable MTA/Webserver - hoping my new design will be just as
got a real good route from the UK to ARP 		[09:28]
............. (idle for 1h1mn)
***awyeah has quit IRC (Quit: ZNC - http://znc.in)
awyeah has joined #arpnetworks 		[10:29]
.............. (idle for 1h7mn)
mercutionothign wrong with losing uptime to do upates :/ [11:36]
.... (idle for 16mn)
***neish has quit IRC (Read error: Connection reset by peer)
twobithacker has quit IRC (Read error: Network is unreachable)
gizmoguy has quit IRC (Ping timeout: 265 seconds)
Hien_ has quit IRC (Ping timeout: 265 seconds)
up_the_irons has quit IRC (Ping timeout: 265 seconds)
dne has quit IRC (Ping timeout: 265 seconds)
plett has quit IRC (Ping timeout: 265 seconds)
jpalmer has quit IRC (Ping timeout: 265 seconds)
gizmoguy has joined #arpnetworks
Hien has joined #arpnetworks
plett has joined #arpnetworks
twobithacker has joined #arpnetworks
up_the_irons has joined #arpnetworks
ChanServ sets mode: +o up_the_irons
jpalmer has joined #arpnetworks
dne has joined #arpnetworks
neish has joined #arpnetworks
mkb has quit IRC (Ping timeout: 250 seconds) 		[11:52]
............. (idle for 1h1mn)
grodymercutio, indeed.. went from 8.2 when i first got the VPS, upgraded through the years and only lost uptime because of
now going 10 with a new deploy strategy, the idea is again very few outages
once or twice a year (i did replace the server with temps until i get this back) so overall downtime to service has been 0
plus my script works much better with pkg, so i dont have to fubar things with portupgrade anymore
being overly optimistic, i may never need to shell in again
i mean, im not one for cheese, but from AAISP when i was ping monitoring my servers, when i had 100% uptime on my link, i had 100% connectivity to my ARP
shame UK VPS providers cant offer anything as good :/
(unless you pay WAY over the odds) 		[13:02]
mercutioyeah arp is pretty stable.
i've hit a few network outages over the years, but none of them have lasted very long.
the most recent was coresite having issues. 		[13:24]
..... (idle for 22mn)
grodynever noticed any, even munin running on the VPS hasn't shown obvious signs of outage
quite impressed with latency from UK to LA though (if that is where the VPS is)
rtt min/avg/max/mdev = 174.954/178.944/181.934/1.732 ms on ipv4 & rtt min/avg/max/mdev = 165.530/168.279/177.425/3.382 ms on IPv6 		[13:47]
..... (idle for 21mn)
mercutiouk latency can vary a bit
that seems on the high side to me, but maybe you're on adsl/vdsl with interleaving or such 		[14:09]
grodyvDSL, stock 8ms bs due to PPP
considering it's to the other side of the US, i say thats pretty impressive
i am loaded a little @home atm actually, so not a fair test
http://imgur.com/DsVeCtH 		[14:16]
***jcv has quit IRC (Ping timeout: 264 seconds) [14:21]
mercutio8msec in each direciton?
plus transit to somewhere useful? 		[14:21]
grodyi get 9ms to 8.8.8.8 [14:21]
mercutiooh
that's not much interleaving thnen 		[14:21]
grodyno interleaving on this line
no need 		[14:22]
mercutiothat is hard to read :) [14:22]
grodyim < 100m from the cabinet [14:22]
mercutioi'm more than that from cabinet with vdsl and i get about 5 msec first hop [14:22]
grodyi synch at 79.9 and 19.9 im that close [14:22]
mercutiowow :)
they cap it at 10 megabit upload here :(
and i'm only on like 36/18
well 18 is attainable 		[14:22]
grodyyea they have two types here
40/10 default, 80/20 is usually business 		[14:23]
mercutiovdsl is a lot better than adsl though [14:23]
grodyi have 80/20 plus priority in the network [14:23]
mercutiothere was a shift from atm to ptm at the same time. [14:23]
grodyhell yea [14:23]
mercutiowhich has much lower overhead. [14:23]
grodyin theory vdsl3 can do 150mbit/s, but i only read a rumour, nothing solid [14:23]
mercutioin theory vdsl can do gigabit :/ [14:24]
grodymy ISP can offer GEA via FTTC (vDSL) which loses the latency from PPPoE [14:24]
mercutioit's crazy how much faster wifi is getting
i'm getting over 500 megabit on 802.11ac 		[14:24]
grodybut makes routing IP blocks (esp IPv6) difficult [14:24]
mercutiosame room, but still.. [14:24]
grodyuseful for site-to-site of the same cab tho
yea, a/c is sickening 		[14:24]
mercutiopppoe is very low overhead.
it's an 8 byte header tag. 		[14:25]
grodyi can only manage about 97mbit/s on 2.4
ah, i have a router with minijumbo on the PPPoE 		[14:25]
mercutioi can do faster than that on 2.4 i think [14:25]
grody1508 payload, service supports it
so get full 1500 		[14:25]
mercutiobut 2.4 gets random outages here.
i have no idea what it is 		[14:25]
grodya lot of wifis on 2.4 here [14:26]
mercutiobut it happened at my last house too, so i want to blame my car. [14:26]
grody5 there is only 2
on 5 i can hit 300mbit 		[14:26]
mercutioby outage i mean short breaks in connectivity without losing sync or whatever you call it [14:26]
grodythats maxing out my fastest client [14:26]
mercutiobut enough to be annoying if you use skype or anyhting
are you using 802.11ac? 		[14:26]
grodyi have an ac
but only two clients using it
most are an 		[14:27]
mercutioyeah
my laptop does about the same speed as my tablet
laptop is 433 megabit 802.11ac, laptop is 300 megabit i think
they both do about 250 megabit 		[14:27]
grodymy midrange phone does the best on N
2.4 		[14:28]
mercutiobut the cool thing is, my tablet still manages to do 100 megabit on the other side of the house [14:28]
grodycan hit 70mbit [14:28]
mercutioeven though in the same room 2.4 has dead spots in the room corners. [14:28]
grodybut if the neighbours are on the wifi, 2.4 is useless [14:28]
mercutioit varies heaps by device though
my phone can do 32 megabit fine. 		[14:28]
grodytrying to force everything to 5 [14:28]
mercutiowell from everything i heard about 5 ghz before using it, it was only meant to be for "short" range. [14:29]
grodymy AP has been up 177 days, with my laptop on 'an' connect for 168 days [14:29]
mercutiobut even with lower signal levels it's way more stable and consistent [14:29]
grodythats how blissful 5GHz is [14:29]
mercutioand i think people over dramaticised that. [14:29]
grody2.4 has better permiation through matter [14:30]
mercutiocos at range you're more likely to be closer to neighbours too [14:30]
grody5 is relatively short ranged
although a/c is impressive over distance 		[14:30]
mercutiohmm
they'll both do km's i thought 		[14:30]
grodyline of site, easily [14:31]
mercutio5 ghz can do like 10km can't it? [14:31]
grodybut if there are buildings or walls in the way, 5GHz fails [14:31]
mercutiobut if there are trees it's fine? [14:31]
grodylower frequencies penetrate matter better
even trees 		[14:31]
mercutioyou really don't weant to do 2.4 ghz through buildings though! [14:31]
grodymicrowaves bounce off everything
you, me, glass 		[14:31]
mercutioyeah i understand that 5 ghz bounces al ove rthe place [14:32]
grodyeven 2.4 [14:32]
mercutioand no-one knows how to model it properly yet
so it's really hard to take routers in a building
and say this is what coverage is going to be like 		[14:32]
grodymicrowave ovens reap havock on some wifis
thats why they put 4G/LTE on like 600-800MHz 		[14:32]
mercutiolte is higher than that here
i thnk it's 900 mhz 		[14:33]
grodyalso uses 900, 1200 too [14:33]
mercutiolte is amazing [14:33]
BryceBotThat's what she said!! [14:33]
grodylol [14:33]
mercutiogoogle maps is fast [14:33]
grodyi was hittiing 56/7 on 4g the other day
i was aweing like a kid in a candy shop
pings were amazing too, 30ms 		[14:33]
BryceBotThat's what she said!! [14:34]
grodyso the bot is triggered by..
amazing 		[14:34]
BryceBotThat's what she said!! [14:34]
grodyyep [14:35]
mnathani_is MTU generally the max size of a frame or packet? [14:36]
grodydepends on the L2 type used
ethernet, frame size
ATM, cell size
a packet usually has a prefixed length, carrying the header and payload.. they can vary in size depending on the medium used to transport it 		[14:37]
mnathani_right. [14:38]
grodyusually ethernet uses 1500 MTU, though in a gigabit network payloads of 9000 are often used
add VLAN tags, you incrase the payload/header
use tunnels like L2TP/OVPN, to keep the standard 1500, the initial medium needs to accommodate higher MTUs
like my using PPPoE, usually you have to clamp to 1492, but ISP, medium & my router supports rfc4638, which allows me to use an MTU of 1508, so my actual IP packets can be sent in 1500 payloads w/o fragmenting/mss-clamping 		[14:38]
mnathani_does IPv6 change things quite a bit?
not allowing fragmenting etc 		[14:42]
grodyIPv6 header is larger, so payload is smaller
but even at 1500, it's a whole packet, just a smaller body
but by the time IPv6 becomes mainstream, 1500 MTU will be like dialup 576 (poor analagy, sorry)
im not an engineer, im a tinkerer, so dont take my word on it ;P 		[14:42]
mnathani_nothing wrong with tinkering :-) [14:46]
mercutiogrody: i've never done a speed test, but the "feeling" is good on it [14:48]
grodydiffences are unoticable unless you're obsessive
im just happy it works 		[14:49]
mercutiogrody: 1500 mtu isn't going to increase on the itnernet it seems :( [14:49]
grodynah not in general [14:49]
mercutiogrody: it's night and day difference ehre
that said, i used a different provider that had the faster hsdpa
dual carrier?
i'm not sure it was, but in between. 		[14:49]
grodybut a couple of dedis at sites peer directly with one another and with a nice email, they let you increase MTU to use tunneling protocols between them [14:50]
mercutiolte on my provider changes pings from like 80 msec to 20msec.
oh you mean the mtu difference is unnoticable, yes.
network mtus are going over 9k a little bit now
so you can actually do 9k site to site over mpls etc now days. 		[14:50]
grodyLTE here yields about 30ms, thats what i saw it at on a random test.. for on my phone in a pub as i stopped off from a meeting that was impressive
considering the pub wifi was 80ms and like 6/0.3 		[14:51]
mercutioi've never used good public wifi
the best wifi i used was like 2/10
so i assuem they had a symmetric connection, and people were using the down more. 		[14:51]
grodyHSPA+ (DC) i yield about 17/2 and 90ms [14:52]
mercutioit was about 50 msec for me grody.
with a usb stick. 		[14:52]
grodythe only good network in the UK for data is H3G [14:52]
mercutioi used my provider ina different city, and it was on hspa+ though
i semeed to get much worse battery life in that other city.
does hspa+ use a lot of battery?
i don't get 4g at home here, but there's a bit of coverage. and wifi is fast at home :) 		[14:52]
grodyEE and voda have a superior 4G network, but 3 have the best data service overall (and their 4G (where available) is highly impressive, better then EE and Vodafone) [14:53]
mercutiolte has been here only a year or less i think
but all the providers seemed to hop on at once. 		[14:53]
grodyit's also the only UK network that allows RAW IP
all the others limit to TCP/UDP/ICMP 		[14:54]
mercutiooh [14:54]
grodyso 6in4 tunnels are possible, also GRE and what not [14:54]
mercutiosweet.,
i only care that google maps is fast :) 		[14:54]
grodyhaha [14:54]
mercutiowell i mean i care a little bit [14:55]
grodyi prefer rawness
barebones or not at all
i pay stupid amounts for internet @home and out and about just so i can do all the crazy nerdy stuff when i want to be a crazy nerd
why i ♥ ARP, it's what i love, but over the pond
i think they should get some servers out in EU
:D 		[14:55]
mercutiosounds nice [14:57]
grodyhint hint, nudge nudge, digestive digestive [14:57]
mnathani_what are some applications of using RAW IP? [14:57]
mercutioi think practically speaking east coast is easier than EU
mnathani_: he was just saying... GRE... 		[14:57]
grodymnathani_, simply 6in4 mainly [14:57]
mnathani_ok [14:57]
mercutioGRE, GIF, IPIP. [14:57]
grodywhere native IPv6 isnt available, tunnel it over IPv4 [14:57]
mercutioyou can cat /etc/protocols [14:57]
grodythe other way is using L2TP
which is UDP 		[14:58]
mercutiol2tp is huge overhead.
well l2tp v2
l2tpv3 is being slow to take off 		[14:58]
grodyi dunno
it's used by some ISP's here 		[14:58]
mercutioit'll come
mpls is getting very popular. 		[14:59]
grodyi've used it, but w/o the hardware to utilize it properly, it was needless for me
http://grody.me.uk/blog/tech/openwrt/mpra1
dont mean to spam
but thats an example of RAW IP on 3G networks 		[14:59]
mnathani_I didnt see a picture of the device
I see what you mean about the RAW IP now 		[15:03]
grodyon the openwrt site
there are a variety of these
even seem some with 8MB flash and 64MB RAM, so would be even more useful
with having a /48 allocated by ARP too, and eventually get a pfsense running on here in front of my current, i could use some IPv6 off here just to impress
ideally i want all my pfsense box to be in links, and be able to utilize IP addresses more efficiently
ie: my box @home flaps, openwrt detects this, uses next available tunnel 		[15:03]
mercutioyou can use ip addresses better as /32s than /29s etc.
ipv4 utilisation is a pita 		[15:07]
grodyit is
im trying to minimize IPv4 usage and even trying 6to4 		[15:08]
mercutioi wouldn't be surprised if arp shifts to /31s soon. [15:08]
grodyim not doing well....
6to4 can be highly useful
i just hope they don't up prices for small blocks :D
its ideal having a few for when you run https sites
and the prices of those licences that handle multiple domains off one IP are just shocking
certificates* 		[15:08]
brycecbrycec recommends that users of pfSense consider its more-open, both politically and in source, fork opnsense [15:12]
grodyim confused...
what d'ya mean? 		[15:13]
mercutiobrycec: is it a fork? [15:14]
brycecmercutio: yes [15:14]
mercutiois it based on openbsd? [15:14]
JC_Dentonand what's wrong with pfSense? [15:14]
grodyfreebsd [15:14]
mercutioadmn [15:14]
grodyit;s m0n0wall derived
pfsense works great 		[15:14]
mercutioi found pfsense not too bad [15:14]
brycecmercutio: No, alas. But maybe someday (though it's headed by a couple of DragonFly BSD devs, so...) [15:15]
mercutioi really hate openwrt [15:15]
grodyi use it @home and in a DC for small blade [15:15]
brycecI love pfSense, and use it everywhere. [15:15]
mercutioit pains me greatly. [15:15]
grodymercutio, it is annoying [15:15]
mercutiowhat pains me even more is i really can't find any good alternatives. [15:15]
grodyi only use it for the minijumbos on PPPoE
else it;s a dumb router into pfsense 		[15:15]
mercutioi'm using it for wireless bridging
so yeah it's a dumb wireless bridge 		[15:15]
brycecBut I'm not a fan of where the project leadership is slowly creeping, not to mention one of them I find personally repulsive. [15:16]
grodyi use ddwrt for wifi and a ubi [15:16]
mercutioi was using gargoyle
but it doesn't seem to work well on archer c7 :(
i didn't realise how muuch nicer gargoyle was than openwrt :) 		[15:16]
brycechttps://wiki.opnsense.org/index.php/OPNsense:So_why_did_we_fork%3F is worth a read [15:16]
mercutioi kind of took it for granted.
brycec: did you see openbsd are adding network smp support?> 		[15:16]
grodynot something i've heard of... [15:17]
brycecmercutio: I did, yes. [15:17]
mercutioso yeah that's the main advantage of freebsd over openbsd for firewals... [15:17]
grodybrycec, interesting.. [15:18]
brycecI'm not preaching opnsense yet or anything, I'm not even using it (only tinkering with). But I want to spread the word [15:19]
mercutiohow many speedtest.net sites do you guys have in your cities? [15:19]
brycec(I definitely /want/ to use it, just haven't had the time) [15:19]
mercutioit seems there are /six/ here [15:19]
grodyindeed, not im curious and want to tinker
especially if the captive potal element works
f**king hate pfSenses method 		[15:19]
mercutioand that doesn't count the ookla ones not on speedtest.net [15:20]
grodyand i cant say that any more politer, sorry [15:20]
brycecmercutio: I have 1 speedtest.net location in my metro area. [15:20]
mercutiothere used to be like 3
there's like two circles for my city on top of each other
one of them has 1 speed test, the other has 5..
so i assume there's a limit of 5.
and other regions don't seem to have more than 5 		[15:20]
brycecYou may be right, or it may just be geography with the second circle being listed in a suburb of the other [15:22]
mercutiooh los angeles has the same thing
with 5+1 		[15:23]
brycecAnd Miami
I've been looking around the US, can't find anywhere with more than 5 on 1 dot 		[15:23]
JC_Dentonbrycec: where is pfSense leadership creeping? [15:23]
mercutioand the second one is glovine
which is the same thing that's on auckland
yeah los angeles has 5.. 		[15:23]
brycecJC_Denton: locking it down and closing it off. Not in a "closed source" kind of way, but licensing-wise. [15:23]
mercutiowho the hell are glovine
is miami's 6th golvine? 		[15:23]
JC_Dentonah
well, they want to make money
it's tough for small FOSS projects to do that 		[15:24]
brycecIt would be nice to see code cleanup/improvement [15:24]
mercutiooh miami only has 5?
code cleanup is always nice, buut tends to get deprioritised until necessary 		[15:24]
grodyas backwards as pfsense can be, i much prefer them to junipers [15:25]
brycecI've felt that development on pfSense has languished for awhile. Bug fixes seem to take forever to be committed when it's a simple two-line fix.
Oh and when they pulled the build tools, ooooh that pissed off a lot of people. 		[15:25]
grodyfair that a new dual core w/ 8GB RAM wasn't a fair compromise for an IDP-10, but still
it was cheaper 		[15:25]
mercutiowhy dual core? [15:25]
grodyit;s development side has slopped
it was an OpenVPN server 		[15:25]
mercutioit seems you may as well go quad core these days [15:26]
grodymeh [15:26]
mercutiowell i suppose i3's are cheap and take ecc
and otheriwse you have to jump to e3 		[15:26]
grodyim deferring to an arm project atm [15:27]
mercutioi just got an amd cpu, .. it's really fast at aes, faster than my i7
but most things are really slow on it 		[15:27]
grodya small array of pogo EO2's, load-balanced by a pfsense :P [15:27]
mercutio~50 microsecnd network latency at least.
the joys of realtek not supporting colaescing on linux 		[15:28]
grodymy @home pfsense is a VIA Nehmiah with ancient Padlock aes-ni
yeww
i try to avoid rtl
got intel and via's in the @home 		[15:28]
mercutioi have an intel card i can stick in it
intel ct 		[15:28]
grodypoor little thing can handle about 300mbit/s before it starst throwing a paddy [15:29]
mercutiobut it doesn't have enogh pci-e slots to stick a multiport card in [15:29]
grodycripes, this thing is ancient [15:29]
mercutioi could get > 100 megabit out of a pentium 75
i'm surprised you're struggling with 300 megabit 		[15:29]
grody800Mhz to handle an 80/20 WAN, plus a couple of wifi's and some tunnels [15:29]
BryceBotThat's what she said!! [15:29]
grodyhaha [15:30]
mercutiovia's memory bandwidth really sucks doesn't it
enable coalescing on transmit 		[15:30]
grodyit copes for the most part [15:30]
mercutiohave high transmit queue size.
and do moderate coalescing on receive 		[15:30]
grodyit does IO up on net io [15:30]
mercutiowell actually if you have 80/20 net [15:31]
grodyeven with the intels onboards helping [15:31]
mercutiothen 300 megabit is fine.
the new intel g cpus are pretty amazing btw
if you wnat something cheap
also j1900 are really cheap too 		[15:31]
grodywan, two wifi's, VLANs (with an IGMP proxy) and goodness knows what else [15:31]
mercutioand fanless. [15:31]
grodyOpenVPN too [15:31]
mercutioare you using wifi cards on it? [15:32]
grodyit never gets hotters than 50C [15:32]
mercutiomy i7 keeps hitting 80c :( [15:32]
grodynah, seperate wifi AP in domain
with VLANs for each VAP
that gets fun routing between when using internet
thats when it starts loading 		[15:32]
mercutiolayer3 switch :) [15:33]
grodyhave made some rules stateless, pure routed
yea, i do need one 		[15:33]
mercutiobut yeah j1900 or g series cpu are pretty cheap [15:34]
grodybut even routing it puts a load up [15:34]
mercutiog doesn't do aes though
butr it'll still do aes really fast anyway :/
yeah you can fiddle with coalescing
it can make quite a significant cpu difference 		[15:34]
grodyi probably could route between the wifies on the actual AP [15:34]
mercutiothe newer intel cards are better htan the old ones too. [15:34]
grodybut i prefer the filtering offered by pfsense
yea they are 		[15:34]
mercutioit's a em though i imagine? [15:35]
grodyoriginal dual port was hell maxing out the WAB
this new one seems to only take 20% CPU saturating WAN
fxp 		[15:35]
mercutioyou can adjust em's with sysctl dev.e.m.0
say what?!
stick a gigabit card in it :) 		[15:35]
grodyerr, original fxp, new is em
hah 		[15:36]
mercutiooh [15:36]
grodyit has a single PCI port [15:36]
mercutioyeah em's are the older ones. [15:36]
grodyit's proper old skewl [15:36]
mercutiopci-e?
x4? 		[15:36]
grodyNeoware CA10 [15:36]
mercutiobah
just stick j1900 in instead :/
it says running power use of 28 to 35 watts 		[15:37]
grodycompared to a PC... [15:38]
mercutioyeah j1900s are good
http://www.techspot.com/review/806-amd-kabini-vs-intel-bay-trail-d/page8.html 		[15:38]
grodyi am actually impressed by this thing
intel pro 100 dual port in it atm
plus the onboard via, which isn't as bad as many make out 		[15:38]
mercutioheh
i had a via c3?
or something yaers ago, it had via rhine 		[15:39]
grodyit happily hits 160mbits (duplexing) whilst crapping the cpu out [15:39]
mercutioit sort of worked. [15:39]
grodyi used to have an IDT Winchip Centaur Hauls
technically speaking, if a device is downloading at 60mbis and is then passing out of another interface, that is twice the original speed no? 		[15:40]
mercutiosort of [15:41]
grodyor do i need to lay of the ale and step away from the keyboard [15:41]
mercutioyou don't have to do a memory copy
so it's lower overhead
like you read the packet into memory from one network interface
then you can just give it a pointer to that memory on the other one 		[15:41]
grodyok i dont want to think about the 'real' bandwidthis this sweet old beast does [15:42]
mercutioor if it does have to do a copy for some reason, it'll at least already be inc ache with no context swithces
i bet a lot of the load is from interrupts. 		[15:42]
grodyinterupts are a bitch [15:43]
mercutionewer stuff improved interrupt performance a lot [15:43]
grodyapparently in pfsense, nics that do polling perform better [15:43]
mercutioyou should be able to do 30k+ interrupts per cpu on modern gear. [15:43]
grodybut never been able to test [15:43]
mercutioper second
coalescing is as good as polling usuaulyl 		[15:43]
grodyi doubt this think could handle that [15:43]
mercutiopolling really helped with stuff that didn't support coalescing
but you can disable interrupts on some devices
and just read the data regulraly
but coalescing means it can wake up after 30 micro seconds or such
and give you all oft he packets.
it also means that on intelligent nics it can have priority packets.
that wake it up earlier. 		[15:44]
grodysounds more like a pitfa [15:45]
mercutiowell it's automatic.
there's also this thing called netmap
where people are trying to get even fsater speeds
http://info.iet.unipi.it/~luigi/netmap/
and there's intel ddo on linux
that's freesd. 		[15:45]
grodyand here is me with trunking 100mbit hubs because im too lazy to get gbit [15:47]
mercutioheh
intel nuc's may be more plug and play :)
and quiet/small/low power 		[15:47]
grodywell, i only do it from the fileserver since it resides on two networks [15:47]
mercutioif it's a question of not wanting to put too much effort in [15:47]
grodySTP is stupid fun [15:47]
mercutiostp is a waste of time in home networks. [15:48]
grodynah, routers/switches all do it, it works now it was done right
to a degree 		[15:48]
mercutiomy swithc still has it enabled heh [15:48]
grodyit knows when one port is saturated.. but only when it is literally savaged to hell
all my switches do full speed port port
but some are crapper than others 		[15:49]
mercutioi had problems with using wireless routers as switches
and wanting to do jumbo frames. 		[15:50]
grodytp-link stuff.. cheap, but use atheros, and atheros stuff is usually pretty good [15:51]
mercutiothe switch c hips they use do jumbo frames :/
yheah i use tp-link stuff :/ 		[15:51]
m0undsbrycec | But I'm not a fan of where the project leadership is slowly creeping, not to mention one of them I find personally repulsive.
i wonder if it's the same dude i'm thinking of
haha 		[15:51]
mercutiothey use that 8327N switch chip thing
that does hardware nat 		[15:51]
bryceclol m0unds [15:52]
mercutioand that no-one seems to know how to program properly yet [15:52]
grodyim guilty for that [15:53]
mercutioy'know if i can pass over 500 megabit with my wireless router on it, and it has a slower than 800 mhz cpu
that must mean that via is slower than the cheap wirelss routers. 		[15:53]
grodythats why i never release my code, it's shameful
i find openwrt is shyte for wifi vs. ddwrt on the same hardware
but openwrt is more featureful 		[15:53]
mercutioi had to copy a firmware image
scp firmware-3.bin_10.2.2.39.6-1 root@192.168.1.247:/lib/firmware/ath10k/QCA988X/hw2.0/firmware-3.bin 		[15:54]
grodyopenwrt is sofa king easy to make [15:55]
mercutiothen it was fine. [15:55]
grodyi tinker so much for my devices with it [15:55]
mercutioyeah i was going to build my own image
there's meant to be some transmit batching
for atheros 		[15:55]
grodythese little hame clones im playing with for example [15:56]
mercutioand i want to see if i can raise the speed :/
not cos i need to
but default tp-link firmware does 600 megabit/sec+ 		[15:56]
grodyusing a custom build i can make it a full ipv6 router, or a media server with usb storage support, or even a wireless webcam server
with the usb storage method, can use a usb pendrive for storage to make it a micro-oc
pc*
yea the default firmware on the now ddwrt did perform better
but it lacked IPv6 and VLANs
it's weird, in dd the first wifi (when i force HT40) says 300mbit.. but every VAP shows as 144.44mbit
but yet will accept HT40 clients at (upto) 300mbit
always confused me that 		[15:56]
mercutioi want a vi that doesn't suck
but vim is kind of huge 		[16:01]
grodylike now, a VAP at 144.44 has a STA at 150 down and 75 up [16:01]
mercutiothat's for clients to it? [16:01]
grodyi'll let you into a secret...
i've been using linux since 1998, freebsd since 1999... i've only recently started learning vi(m)
to the 144.44 VAP 		[16:01]
mercutioi been using linux since about then too
and i started with joe
but swithced to vim in like 99 		[16:02]
grodyjoe, pico, nano, edit
(edit is freebsd builtin) 		[16:02]
mercutioi started with pine for email too [16:03]
grodypine, then mutt [16:03]
mercutioso that used pico
yeah i went to mutt too :)
i still use mutt. 		[16:03]
grodymutt is good i still have it too [16:03]
mercutioin '99 i screwed up my fetchmail and setn a whole lot of mail to root@<my isp> [16:03]
grodyim still an mc whore too [16:03]
mercutiooh it was bounces. [16:04]
grodybest fm ever
never liked fetchmail 		[16:04]
mercutioneither, i ran my own mail server with dynamic dns :)
then i got a server in 2001 i think 		[16:04]
grodyalways and still do think it's a twot [16:04]
mercutiopentium pro running openbsd. [16:04]
grodyi had a freebsd 4.11 server for years, even when 6 was RELEASE [16:05]
mercutiowith screen/muutt [16:05]
grodyit never failed me until i went to update gallery2
it broke everything 		[16:05]
mercutioi didn't even have lights out. [16:05]
grodysee i never used screen [16:05]
mercutioit never gave me lots of issues. [16:05]
grodyi always suspend (ctrl+z), bg, do my thang, fg [16:06]
mercutiobut as spam started piling up, i found that i started getting more into swap
spamassassin etc is a memory hog
and 64mb of ram only lasts so long ... 		[16:06]
grodysecret, mail to mta, dumb stattion with a decent client with spam filters and what not, do all the trickery on that client (forwarding and all)
always found that more easier than adding it all into the server 		[16:07]
mercutionah it's nicer on the server
then you can just remote in 		[16:07]
grodyuse SPF, DNSBL etc in the MTA, but apply little on what is received.. if the client filtering (offsite) sees it good, resends it to a preferrfer email address which comes to a designated address with clean SPF and DKIM [16:08]
mercutiosounds complicatged.
i just amavis/spamassasin
works well enough
and i use the same host for email and irc 		[16:08]
grodythe amount of spam and the rate limiting that google applies, it's what i've found workd [16:09]
mercutiowith the same tmux session
so i can easily see if various mail boxes get mail.
i relaly hate google's spam filtering.
it marks things as spam when they're not way too much.
bloody annoying. i hate spam filters more than spam :)
nothing worse than having to check spam folder regularly "just in case" 		[16:09]
mjpi would ask for my money back [16:10]
mercutioi only use gmail for supermarkets etc
that want to send me annoying html mails with specials
that i may or may not feel like reaidng
but that's the kind of thing that can end up in spam folder.
and thre doesn't seem to be a setting to say "be leniant": 		[16:10]
grodyworking with googles spams filters, i ensure i receive all the spam i intend for testing and applying/creating my own filteres
as soon as SPF/DKIM is all sound, Google will allow wtfever 		[16:11]
mercutiohttp://joe.siegler.net/2013/03/turning-off-spam-checking-in-gmail/
oh you can disable 		[16:12]
grodymay work for what you receive
but not for what their MTA's accept 		[16:12]
mercutioyeah gmail doesn't accept my mail sometimes
i bounce normal mail to them 		[16:12]
grodythey rate limit IP's that send bulk emails [16:12]
mercutioand sometimes i have to bounce twice. [16:12]
grodyor appear to send bulk emails [16:13]
mercutiomaybe it's grey listing.
i should get on with thing anyway
nice chat :) 		[16:13]
grodythey post a resonse, it's to limit unsolicited mail to protect users
im suppose to be rebuilding my server :P
i got as far as postfix, dovecot and LAMP
well, FAMP 		[16:13]
mercutioheh
try nginx :) 		[16:15]
grodymeh
i like it
but it doesn't i
i seem to have apache where i want it 		[16:15]
.... (idle for 15mn)
***m0unds has quit IRC (Quit: brb) [16:31]
m0unds has joined #arpnetworks [16:45]
............... (idle for 1h13mn)
m0unds has quit IRC (Quit: WeeChat 1.1.1) [17:58]
........ (idle for 38mn)
m0unds has joined #arpnetworks [18:36]
..... (idle for 24mn)
m0undsbrycec: do you remember what the weechat config var is for setting the character inserted when a user speaks multiple times? [19:00]
brycecRemember? No, but I can dig it up real quick...
weechat.look.prefix_same_nick = "⤷" (default: "")
m0unds: ^ 		[19:00]
....... (idle for 33mn)
m0undsthanks! [19:35]
***m0unds has quit IRC (Quit: bork bork bork)
m0unds has joined #arpnetworks 		[19:36]
brycecwb [19:40]
............................ (idle for 2h18mn)
***toeshred has quit IRC (Read error: Connection reset by peer) [21:58]
......... (idle for 41mn)
toeshred has joined #arpnetworks [22:39]
↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)