jack_rip_vim: anyone here? forgotten: sort of jack_rip_vim: I need a vps server. but I don't know where I can get a good one. ant: jack_rip_vim: here: http://www.arpnetworks.com/vps jack_rip_vim: I can't open the page ant: what's the error message? it works for me just fine jack_rip_vim: I want to put a social network website. So the server must be best one.
NO error, just can't be open ant: hm..well..according to your ip address you are in china. maybe the great firewall is blocking it because it's using encryption jack_rip_vim: OK, Fine! how can i use your server.
? ant: i have no idea. jack_rip_vim: aws is too expensive
fuck firewall ant: also i guess if you intend to target chinese users with you social network you better host it inside china jack_rip_vim: no,I want whole the world can enjoy my website.
I make a video chat website. and it is free. I want all the people can enjoy it.
I don't know if I can use ssh to connect to your server. can I have a try? ant: you can try to connect to 206.125.175.202 (that's my personal server at arp networks) jack_rip_vim: let me have a try.
it is ok.
the terminal ask me the password. ant: still the great firewall might terminate the connection after some time.. jack_rip_vim: so maybe one day, the firewall will block the ip? ant: i think that's possible jack_rip_vim: where is your vps-server location? ant: los angeles
btw: i'm just an arp networks customer, i don't run the service jack_rip_vim: I can run it myself. ant: no, i mean i don't work for arp networks
(of course you can run your own vps) jack_rip_vim: OK!
How you feel about the server? I want to know more about it?
the page can be opened now. but show error 404. ant: well, it's reliable. that's pretty much all i want from a vps service
that's strange...maybe the 404 comes from the great firewall jack_rip_vim: I think maybe is DNS problem. ant: for your reference:
www.arpnetworks.com has address 208.79.89.246
www.arpnetworks.com has IPv6 address 2607:f2f8:0:102::501 jack_rip_vim: I ping the ip address. it is OK.
I can connect to it.
I think maybe I can order one to have a test. if one day the ip was blocked, then I make other plans.
now the big problems is, how can i make a order?
i think i need a vpn to solve this problem. JC_Denton: jack_rip_vim: you are likely being blocked by the Great Firewall ***: Guest97359 is now known as pjs mercutio: "great?"
it's curious they'd block it, but arp does have https-only forced on JC_Denton: it's the aphorism for it
great wall / great "fire"wall mercutio: oh right
i'm actually surprised the site would be blocked ant: maybe they just block everything that uses encryption mercutio: that's get neraly everything now
even thigns like wikipedia use encryption i think now? mike-burns: openbsd.org doesn't! That might be it. mercutio: yeah wikipedia seems to force encryption
so this use https all the time thing got encouraed ant: there are lots of chinese clones of popular non-chinese websites in china, so i would guess that wikipedia might not be that important
https://en.wikipedia.org/wiki/Censorship_of_Wikipedia#China BryceBot: Censorship of Wikipedia :: Censorship of Wikipedia has occurred in several countries, including China, France, Iran, Pakistan, Russia, Saudi Arabia, Syria, Thailand, Tunisia, the United Kingdom and Uzbekistan. Some instances are examples of widespread internet censorship in general that includes Wikipedia content. Others are indicative of measures to prevent the viewing of specific content deemed offensive. By country China Chinese.. mercutio: ahh
so it could be the https thing ant: however china has their own certificate authority so they could just intercept https traffic by active mitm
hm..but that would get that ca removed from every browser... mercutio: it's ipv6 20th birthday mike-burns: Maybe someday IPv6 will make something of itself! mercutio: well it's up to 10% adoption apparently gizmoguy: let me just check
$ ping6 google.com
64 bytes from syd09s01-in-x0e.1e100.net: icmp_seq=1 ttl=52 time=27.0 ms
yes. v6 does still work in 2016 mercutio: google don't have ipv6 nameservers yet i think gizmoguy: you appear to be right :( mercutio: they don't even have any nameservers close to new zealand yet. gizmoguy: I'm less concerned about that
my local resolver is pretty close mercutio: true, you'll usually get a cached result
i mostly find it curious that a company as big as google still isn't putting nameservers closer to users.
even with using low ttl's mhoran: I tunneled all my traffic through my arp VPS when I was in China last month.
The firewall is really crippling, but only for westerners.
Everything has been reimplemented behind the firewall.
But my employer uses Google Apps, which don't work in that country at all. mnathani_: mhoran: did you use openvpn, or ssh tunneling socks proxy? mhoran: Ssh socks tunneled through SSL via apache. mnathani_: did DNS lookup get tunneled via the ARP vps also? mhoran: Yup
Firefox can do that for you ***: milki_ is now known as milki
freekevin has left "Leaving" mercutio: socks can pass through hostname and port through the proxy
so that the whole thing is done on the other end
so it's also more efficient if you have a high latency link etc mhoran: Ah.
Well I guess the Firefox proxy doesn't do that, because to get it to work behind the firewall I had to enable DNS tunneling via SOCKS.
Otherwise, nothing works. mercutio: oh
maybe it can do both mhoran: Anyway, I wouldn't trust DNS in China at all.
Better to just tunnel that. mrsaint: yeah china do run dns enforcing.. for the traffic.. soo their goverment dns-servers are the ones needed to be queried. mhoran: twitter.com, for example, resolved to a DoD IP address... mrsaint: I do openvpn over https when Im in china. works good.
and I go now on sunday for 2 weeks to china :( Luckily Volvo do have mpls network to sweden so we are outside the rules for china.. :) mercutio: looks like you need socks5 rather than socks4 for names through it
i was playing with this socks proxy that used udt once
udt was this high bandwidth alternative protocol that gave faster speeds over the internet
although it seemed to kind of die in the water, and normal tcp/ip has improved since then
it was before tcp fast open and high initial window sizes etc were around
but i suspect that systems like that with encrpytion overlayed could probably perform pretty well from china ***: jack_rip_vim has quit IRC (Ping timeout: 250 seconds)