[06:14] *** ziyourenxiang has joined #arpnetworks [06:42] *** qbit has quit IRC (Quit: WeeChat 1.4) [06:51] *** qbit has joined #arpnetworks [07:27] *** ziyourenxiang has quit IRC (Quit: Leaving) [09:45] FYI dns.he.net (and all of *.he.net) are having DNS issues - returning empty zones for all queries. [09:46] (strangely, tunnelbroker.net is unaffected) [09:56] Yeah. Not good. :( [09:58] records are starting to reappear now at least [09:59] Yay. [09:59] I only use them as a slave so I guess they had some catastrophic failure! [09:59] (Not yet my whole zone, but a couple records I've tried so far) [10:00] I once used them as secondary, then decided to stop wasting my time with my own and go 100% them, afterall they've got massive geographic redundancy and such... [10:00] Regretting that now [10:01] Weighing a "proper (paid)" dns provider or running my own+he.net for backup [10:06] Thinking I'll run my own for a bit, that way I can get an idea of queries-per-month and know how much $provider would cost [10:14] well, they returned nxdomain+noerror to queries, so a resolver would cache the response until the negative cache ttl expires and not even try to query another server. so even with other nameservers from other providers some clients would still fail to resolve names under affected domains [10:21] *** dne has quit IRC (Ping timeout: 260 seconds) [10:21] *** dne has joined #arpnetworks [11:13] brycec: I used he.net for dns for a long time. now I pay the 50c/month for amazon route53. [11:14] If only Route53 supported dual-home access [11:14] how do you mean, split views? [11:14] v4 and v6 addresses on their nameservers [11:14] I'm currently setting up CF with a test domain of mine [11:15] (CloudFlare) [11:15] oh, yeah cloudflare is a pretty decent option for dns too. [11:15] Yep, free too [11:15] Which is a plus [11:15] used them for years as well. Kim and Todd were my friends. [11:16] (kim and todd were the names of the 2 DNS servers assigned to my properties.) [11:18] oh, I see. by dual-home you meant dual stack. yeah, R53 isn't available via v6 yet. [11:20] Yeah I mis-spoke, sorry :( [11:21] np, was just confused for a minute. I was like "uhh, if AWS is anything.. they are multihomed.. so what am I missing" lol [12:26] I use dnsmadeeasy - a paid DNS servic [12:26] s/servic/service [12:26] I use dnsmadeeasy - a paid DNS service [14:42] i wish cloudflare didn't need to take over dns :) [15:13] me too [16:08] * dne replaced dnsmadeeasy last year with 3 geographically distributed freebsd virtual machines running nsd [16:09] now I can automate zone updates using a version controlled ansible playbook [16:12] that is what I do as well! I use BIND instead though [16:13] (and Linux) [16:13] I've been happy with my transition to nsd. [16:13] Since BIND was removed from base, I decided not to keep it. [16:13] But I could keep my zone files, which was great. [16:19] i like nsd too [17:03] i shifted from bind 4 to tinydns years ago [17:04] openbsd sticking with bind 4 over bind 8 was interesting. [17:04] but bind seemed to get worse :) [17:05] i've never understood why people wanted to distribute dns when their site was small and non-redundant [17:05] there's a slight performance win if you do anycast, but without anycast what use is having dns up if none of your content works [17:06] it's kind of like when people used to do backup mx to receive mail when their net connection went down, and then all the spam comes in the back door [17:06] although mail delays can be quite bad if you have patchy internet [17:16] distributing DNS is cheaper [citation needed] than distributing HTTP [17:17] (also DNS is not relevant to just HTTP, reliable DNS means things like e-mail, VOIP etc. works) [17:23] not just monetary cost but knowledge cost, distributing DNS is as simple as running two instances of $AUTHDNSSOFTWARE in two separate networks [17:24] HTTP requires knowledge of load balancing basics, HTTP basics, SSL termination etc. [17:25] yeah it's way harder [17:25] but if you have a single location with all of your services, and dns works but nothing else works it doesn't help much [17:26] you don't really need citation, distributing dns is obviously simpler [17:26] :P been stick in paper writing mode for school [17:26] stuck* [17:26] heh [17:26] if you have an intermittent dns server it can create delays [17:27] Having DNS distributed could make it easier to recover from a failure of that single point of failure. [17:27] so if you have dns in two different locations it can actually increase your chances of performance deficits. [17:27] Having your MX record not drop off the face of the earth is pretty good. [17:27] mhoran: now /that/ is true. [17:27] Given it takes time to change records at your registrar, having that distributed and easy to fail over is nice. So That's why I do it, even though everything else is on ARP. [17:27] i have distributed dns, and i do think overall it's a good idea, it's just not necessarilly that important. [17:28] It's a pain in the ass to change shit for my .at domain. [17:28] It requires faxing them things! [17:28] good to know .at is still a PITA [17:28] fax! [17:28] well [17:28] I remember having to do that with Network Solutions, 10 years ago! [17:28] when i first got my own phone line connected i needed to fax them stuff [17:28] i'm like what [17:28] Hah. [17:29] this was a while back, but even then fax wasn't common [17:29] Gandi required me to fax a form once for some ownership change stuff [17:29] I was like ... [17:29] That's what she said!! [17:29] people used to do fax spam [17:29] the other day i added an extra digit to a phone number accidentally and hit a fax or a modem (i can't tell the difference) [17:30] although it sounded more like fax .. as it didn't have that 56k type extra whine in it [17:30] how well does fax go over long distance? [17:31] not sure, I don't think I've ever done that [17:31] I don't think fax works well over VOIP, but I might be wrong [17:31] no inter state faxes? [17:31] well voip is special case [17:31] i tried doing fax from modem ages ago [17:31] actually i think i had my bbs so it could receive faxes [17:32] oh i did, there was some special number you could call and it'd fax back you a report on your phone line quality [17:32] or maybe you had to fax them and they faxed you back [17:35] anybody looking to understand HTTP load balancing should start with reading the haproxy documentation, it is fantastic [17:37] i'd love to have the need :) [17:37] i find things like wikipedia and torrent sites and so on fascinating when they manage to do high load with low resources. [17:38] cache all the things [17:38] put Varnish in front of it! [17:39] and get amiga reliability? [17:39] i'd rather just code my own backend in c :) [17:39] and have fast backend [17:40] there's lots of complications from template based cache systems [17:40] where the code is in one or more places and is all put together and presented by some "cache" [17:41] often what ends up happening is the cache helps when users aren't logged in, then not nearly as much when they are [17:41] because all the dynamic code has to still run, and caching static pages doesn't really help [17:42] and so the idea of templates is to mix some dynamic code with some static code, and be able to remember some useful parts of the page and not have to regenerate [17:42] usually with a ttl.. [17:42] which often means that if you hit the ttl expiry suddenly your page load is slower [17:42] even if the average is good. [17:43] the main local news site here uses varnish, and quite frequently has slow page loads [17:43] yeah Varnish won't save your shitty code, bad SQL query design or other such issues [17:46] apache traffic server actually has a nifty feature called stale-while-revalidate which isn't supported by many browsers. [17:46] but basically on a ttl expiry you can send old content, and then in the background fetch new content for the next load [17:46] :o [17:46] the local news site is using cold fusion.. [17:46] heh [17:47] so yeah i expect shitty code :) [17:47] not that i've seen it. [17:47] but pages randomly don't work [17:47] does anyone know what they've done to completely break tab completion on linux? [17:47] mkb: that's an open-ended question [17:47] I realize that :) [17:47] linux itself doesn't have tab completion [17:47] bash [17:47] i find bash terrible for tab completion [17:48] upgrade to zsh [17:48] half the time I press tab and it doesn't complete [17:48] your problem may magically go away :) [17:48] then I type ls and it shows me the file clearly exists [17:48] are they file names with weird characters in them? [17:48] no ordinary file names like grub.cfg [17:48] i find bash completes file names when i'm expecting it to complete paramaters to the program i'm running [17:48] weird [17:48] grumble... I hate having to configure these things [17:49] try pressing tab twice [17:49] like in /boot/grub i have grub.cfg and grubenv [17:49] I think it's trying to be hyperintelligent and only complete things it thinks can go there [17:49] and so it doesn't complete by default [17:49] no I've pressed it like 20 times [17:49] That's what she said!! [17:49] hah [17:49] chsh [17:49] mercutio, hi [17:49] I've setup the BGP [17:49] solved [17:50] knox: cool [17:50] I've noticed it won't complete directories sometimes... [17:50] zsh shows grub.cfg* and grubenv* just below when i press tab once after /boot/grub/grub [17:50] bash does nothing in the same situation [17:51] if i press twice it shows the two names, then reshows my prompt on a new line [17:51] but it prints it out when you press twice [17:51] or does if I start the line with ls [17:51] but not with grub2-mkconfig -o ... [17:51] That's what she said!! [17:51] yeh i'm starting the line with ls -l [17:51] works for me [17:51] although grub-mkconfig for me [17:51] os? [17:51] arch linux [17:52] aha.. centos here [17:52] hmm [17:52] i've had no problems with completion in years [17:52] but i don't regularly use bash [17:52] mkb: centos should have zsh package :) [17:52] * mkb reboots it and wonders whether it'll come up with the right kernel without me sitting at the console [17:53] mkb: is this centos 6 or 7? [17:53] 7 [17:53] grub2 made configuration a lot more obscure [17:53] oh [17:53] centos 7 is what switched to grub2 isn't it? [17:53] yeah [17:54] yeh i hate grub2 [17:54] i have been using systemd-bootd at home [17:54] they've written a bootloader!? [17:54] i have weird issues with grub having extremely slow output [17:54] it's efiboot [17:54] err gummiboot [17:55] https://wiki.archlinux.org/index.php/Systemd-boot [17:55] and efi only [17:55] * mkb isn't allowed to have fast output [17:55] 9600 baud ! [17:56] % cat /boot/loader/entries/arch.conf [17:56] title Arch Linux [17:56] linux /vmlinuz-linux [17:56] initrd /initramfs-linux.img [17:56] options root=/dev/md1 rw [17:56] how's that for simple? :) [17:57] way better than the maze I have to go through with grub2 [17:57] and sometimes it changes the default on my according to unknown heuristics [17:57] yeah it's refreshingly simple [17:57] i have also set "editor 1", "timeout 3" "default arch" in /boot/loader/loader.conf [17:57] I think yum screws it up [17:57] and have memtest and some other stuff in there [17:58] see I'm working on the kernel, so I'm always building new ones [17:58] and then yum comes along with an update to some super outdated kernel and sets the defaults [17:58] have you considered doing dev in xen or kvm? [17:58] haha [17:58] why centos? :) [17:59] this other guy here does use kvm [17:59] you can actually set the default kernel for grub [17:59] he also doesn't use tab completion because it wasn't in ultrix [17:59] do you have /etc/default/grub ? [17:59] yeah [17:59] but I never did like it [17:59] GRUB_DEFAULT="Arch Linux, with Linux linux" [17:59] you can do something like that [17:59] exactly [18:00] although there's a new more complex way [18:00] it whines when you do it that way but still works :) [18:00] you need the exact string which is hard to get (okay grep 4.5.0+ /boot/grub/grub.cfg) [18:00] at least on arch which does everything recent [18:00] yeah they won't update centos for a few years [18:00] not if use vmlinuz-linux or such [18:00] and don't put your version number in it :) [18:00] we deploy on centos so... that's why I have to use it [18:01] do you have virtual environment? [18:01] though I'm thinking about just using something else anyway.. not like the distro matters when you're working on the kernel [18:01] you can actually tell xen or kvm just to boot a kernel direct [18:01] and then point it at the / [18:01] ooh that would be nice [18:01] then you can continue using your normal userland [18:02] and it bypasses boot loader giving a bit quicker boot [18:02] and you can boot either one by having different templates or command lines [18:02] I'll have to look into that [18:03] i tried witing my own simple OS kernel once [18:03] it was so annoying rebooting to test changes [18:03] I've tried more than once... [18:04] i was using a fast booting 386 with grub booting off a floppy and doing a network load [18:04] I used qemu [18:04] heh this was years ago :) [18:04] it's so much easier now [18:04] if i was to try again i'd just use xen or kvm [18:05] and virtio devices [18:05] no hardware support :) [18:05] people have been doing cool application as an OS stuff on xen [18:05] initrd takes forever... [18:06] don't use it then [18:06] i'm still annoyed i need initrd for mdadm [18:06] you can also use lz4 to make it a bit faster to load if it's cpu bound [18:06] hmm I guess all I need is to compile enough modules in [18:07] yeah you shouldn't need many. [18:07] I'm pretty sure I already do [18:07] make localmodconfig... [18:07] well take it out and see if it breaks :) [18:07] oh that involves learning grub2 :( [18:07] % lsmod | wc -l [18:07] 176 [18:07] haha [18:07] well it's easy enough to test by pulling it out at the boot prompt [18:07] 53 [18:08] crazy eh? [18:08] this is arch default kernel [18:10] you mostly just need disk drivers [18:10] even network should be able to load after it's booted [20:19] *** dj_goku has quit IRC (Remote host closed the connection) [21:10] *** dj_goku has joined #arpnetworks [21:31] *** Lucifer333 has quit IRC (Quit: Leaving)