#arpnetworks 2010-05-12,Wed

↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)
WhoWhatWhen
up_the_ironslucky: i'll be ordering a new server in beginning of June, putting it together, and popping it online; i will have slots open up before then, most likely, and preorder@arpnetworks.com is your friend [00:05]
................. (idle for 1h24mn)
***schmir has joined #arpnetworks [01:29]
..... (idle for 24mn)
dxtr_ has quit IRC (Read error: Operation timed out)
nakano_` has quit IRC (Read error: Operation timed out)
nuke- has quit IRC (Read error: Operation timed out)
Jestre_ has quit IRC (Read error: Connection reset by peer)
Jestre has joined #arpnetworks
nakano_ has joined #arpnetworks
j3m has quit IRC (Read error: Operation timed out)
nukeAFK has joined #arpnetworks
dxtr has joined #arpnetworks
dxtr has quit IRC (Changing host)
dxtr has joined #arpnetworks
j3m has joined #arpnetworks 		[01:53]
........................ (idle for 1h59mn)
ziyourenxiang has joined #arpnetworks [04:01]
.... (idle for 17mn)
dxtr[6~
Opps 		[04:18]
infraredfail [04:21]
dxtr:( [04:23]
..... (idle for 24mn)
***Yamazaki-kun has quit IRC (*.net *.split)
leander has quit IRC (*.net *.split) 		[04:47]
leander has joined #arpnetworks
Yamazaki-kun has joined #arpnetworks 		[04:55]
.............. (idle for 1h7mn)
vtoms has joined #arpnetworks [06:02]
hsbt has quit IRC (Quit: Tiarra 0.1: SIGTERM received; exit)
hsbt has joined #arpnetworks 		[06:10]
..... (idle for 23mn)
DaCaRandalSchwartz: well, we all know perl sucks :p [06:35]
cedwardsthems fightin words [06:44]
luckyup_the_irons: aye, I sent an email there about a week ago
up_the_irons: to which I received a reply this morning :) 		[06:46]
..... (idle for 22mn)
cedwardsuhh.. I may have just fixed my issue with ccache on amd64.
blame it on me installing 'minimal' and missing the lib32 libraries :( 		[07:08]
............ (idle for 59mn)
***schmir has quit IRC (Remote host closed the connection) [08:08]
....... (idle for 32mn)
dxtrHmm.. How would one easily manage nsd and/or outbound? If I, for example, want to put them in separate jails [08:40]
cedwardshow do you mean manage? [08:45]
dxtrs/outbound/unbound/
cedwards: Zone files for nsd :)
I guess there's not that much administration with unbound once you get it up and running 		[08:45]
***ziyourenxiang has quit IRC (Quit: ziyourenxiang) [08:46]
cedwardsi run bind in a jail at home...
just point my client(s) to the jail IP, and ezjail-admin console jailname to get in and update things. 		[08:47]
dxtrRight
But I thought it would be cool with some kind of interface for it :) 		[08:48]
cedwardsnice. with my distcc/ccache setup (all P4 machines), my buildworld is down to about 4min and my buildkernel is under 1min [08:59]
.... (idle for 15mn)
dxtrCool
I'm still amazed that I have less ping to the vps over ipv6 than ipv4 		[09:14]
..... (idle for 20mn)
bob^^routing is fun ;) [09:35]
.......... (idle for 47mn)
dxtrhehe
bob^^: The thing is I don't even have native ipv6 at home .D
Got it through sixxs
(Wich btw I think is awesome) 		[10:22]
bob^^yeah, i still haven't bothered with ipv6 at home either [10:23]
cedwardsI can't get ipv6 (tunneled) at home because my router sucks.
i think it's time to get a new one. 		[10:24]
dxtrcedwards: What connection do you have? [10:24]
cedwardsdxtr: DSL at home. leasing the crappy router they had. [10:25]
dxtrI've got a wrt54gl flashed with Tomato if you wanna buy it :D [10:25]
cedwardsdxtr: my ISP doesn't support ipv6 either, so I'd _have_ to tunnel, but I need a new router first. [10:25]
dxtrOfcourse I live in Sweden. If you come get it in person I'll buy you a beer
You'll the the router for $30, the trip might cost $1000 (+/- some).. But you'll save in $4 by getting a beer for free
You'll get the*
Sounds like a decent deal 		[10:25]
mike-burnsThat's better than the deal JetBlue was offering! [10:27]
dxtrVacation is priceless :D
mike-burns: Hm? 		[10:27]
cedwardsor perhaps you deliver it personally and I'll buy you a beer [10:27]
dxtrcedwards: Unfortunately I don't do home deliveries
... But if I did it would probably be the best home deliveries in the world 		[10:27]
mike-burnsdxtr: JetBlue was offering $10 plane tickets the other day. US-only I think, and no router or beer. [10:28]
dxtrmike-burns: well that sucks
it sucks that I'm the only Swede here (And one of few europeans.. Or am I wrong?)
I rarely meet people in my area on IRC. Would be awesome to go to Waynes, drink some coffee and IRC
o/ 		[10:28]
bob^^i'm in the UK
but yeah, i think most in this channel are US-based 		[10:40]
dxtrI think I need more coffee [10:49]
bob^^i know plenty of swedes who use irc though - they're all over on quakenet :) [10:50]
dxtrYeah, I know loads of swedes both on Quakenet and EFNet :p
But Sweden is huge 		[10:52]
jdoedxtr: and ircnet. [10:52]
dxtrGah. I want a job! [11:01]
...... (idle for 29mn)
awyeah_beh [11:30]
***awyeah_ is now known as awyeah [11:30]
awyeahhrm wtf is my nickserv password. [11:31]
cedwardshunter2 is my guess [11:35]
awyeahheh. [11:43]
***awyeah has quit IRC (Quit: Reconnecting)
awyeah has joined #arpnetworks 		[11:44]
awyeahohh. their DNS resolution isn't working ;) [11:44]
jdoe? [11:57]
***schmir has joined #arpnetworks [11:58]
.... (idle for 15mn)
schmir has quit IRC (Ping timeout: 265 seconds)
Wraithan has left "WeeChat 0.3.3-dev" 		[12:13]
........ (idle for 36mn)
leander has quit IRC (Remote host closed the connection) [12:53]
.... (idle for 18mn)
dxtrSay something fun one can do with a freebsd box and a openbsd box
Preferrably connecting them together somehow :) 		[13:11]
cedwardsuse either as a network gateway and use pf to route to the second for a set of services in jails? [13:24]
dxtrActually the openbsd is a router
But with a little more capacity than my router needs
Dual-core atom 330
1GB RAM
300GB hdd
Etc, :P 		[13:25]
cedwardstorrent seed box? :) [13:26]
dxtrI've thought the thought so to speak
But that's not cool enough :P 		[13:27]
cedwardscreate your own private tracker? ..i dunno. [13:28]
dxtrI've got rtadvd, ntpd, unbound, nsd, dhcpd and an httpd running on it [13:28]
***leander has joined #arpnetworks [13:28]
dxtrOh yeah... rtorrent too :D [13:29]
cedwardsi still need to try unbound/nsd. [13:30]
dxtrThey are just plain awesome
I can honestly say I don't regret throwing out bind :)
By the way, what I'd like to do with the boxes are somehow distributing the resources (distcc would be awesome for my ports needs!) 		[13:30]
cedwardsI setup ccache/distcc over the last two days. my builds are fast now. [13:33]
dxtrCool :) [13:33]
cedwardswhich reminds me I need to submit my port for ccache-3.0pre1. [13:33]
dxtrOh yeah, cedwards
I'm having problems with openvpn. I'm guessing it's a firewall problem.
Do you have any experience with ip forwarding in freebsd? 		[13:34]
cedwardsI've not used openvpn before.. another one on my list.
do you have the net.ipv4.forward (or whatever) set to 1 in sysctl? 		[13:35]
dxtrnet.inet.ip.forwarding = 1
And I've got a NAT rule in pf
http://www.dxtr.cc/~dexter/pf.conf
That's my pf rules 		[13:35]
cedwardstail the pflog while you try to connect to verify if it is a firewall issue.. [13:37]
dxtrRight :)
I'll do that 		[13:39]
cedwardsor tcpdump and make sure it is actually hitting the interface [13:39]
dxtrYeah, I've tcpdumped
I makes it from tun0 to em0
But stops there 		[13:40]
***coil-desktoppcwi is now known as scort [13:41]
dxtrAnd I've pinged another server of mine, tcpdumped there and got nothing
So the packets definitly gets lost at em0
Any ideas?
I've got gateway_enable="YES" in rc.conf too - but that won't do anything until I reboot 		[13:41]
cedwardsmaybe you need to reboot [13:43]
mike-burnsYOu just have to run /etc/rc.d/routing to activate that thing. [13:44]
dxtrmike-burns: Right
No luck :/ 		[13:44]
.... (idle for 18mn)
***dxtr has quit IRC (Read error: Operation timed out) [14:04]
awyeahbtw. pkg_cutleaves > * [14:07]
***schmir has joined #arpnetworks [14:07]
bob^^useful :D
not seen pkg_cutleaves before 		[14:08]
awyeahIt really helps you clean up when you delete packages. [14:09]
***dxtr has joined #arpnetworks
dxtr has quit IRC (Changing host)
dxtr has joined #arpnetworks 		[14:15]
up_the_ironspf syntax is quite readable [14:22]
dxtrHmm... STILL no luck
Rebooted the vps (For several reason)
What's funny is that I can't even access the ip addresses on em0 (Ping them that is)
So... what could be the problem? :P 		[14:25]
RandalSchwartzfreebsd? [14:26]
dxtrYeah [14:26]
RandalSchwartzcan you pastebin your /etc/rc.conf section?
or if it's really short, just add it here? :) 		[14:27]
dxtrWhat section of it? :) [14:29]
RandalSchwartzthe part related to em0
you said you're having problems with ping, right?
or is it a pf problem? 		[14:30]
dxtrIt's a pf and openvpn problem :P [14:30]
RandalSchwartzahh
yeah - I have openvpn and pf too 		[14:30]
dxtrSo... How'd you do it? :D [14:31]
RandalSchwartzwhat have you tried? [14:31]
dxtrWhat haven't I tried? [14:31]
RandalSchwartz... vpn_net = "10.77.77.0/24"
... nat on $ext_if from $vpn_net to any -> ($ext_if:0)
ext_if = "em0" 		[14:31]
dxtrYeah, I'm familiar with pf and nat [14:32]
RandalSchwartzthat's the essentials [14:32]
dxtrnat on em0 from 10/8 to any -> dxtr.cc [14:32]
up_the_ironswhat is the meaning of "->" in pf?
up_the_irons is a pf noob 		[14:32]
dxtrThats how mine looks
up_the_irons: It kinda means "read the man page" ;) 		[14:32]
RandalSchwartzit's just that part of the nat syntax
it could probably be left out. mostly syntax sugar I think 		[14:32]
up_the_ironsup_the_irons hits dxtr with a large trout
ok 		[14:32]
RandalSchwartzmight be that you can put more things after "any"
and it needs to know when you're done :) 		[14:33]
dxtrNo, but seriously up_the_irons, I think '-> addr' generally means "translate to this address" [14:33]
up_the_ironsdxtr: ok [14:33]
dxtrMassivel simplified, etc.
Massively*
I've never really given it a thought. It's so obvious to me 		[14:34]
RandalSchwartzI just cut-n-paste it
so what's the problem? Does the link come up? 		[14:34]
dxtrRandalSchwartz: I can connnect, I can access the vpn server (10.9.8.1)... but that's it
I can't access anything outside tun0
Holy shit I know what it is 		[14:35]
RandalSchwartzwhat does your openvpn conf have?
heh
always helps to describe it 		[14:35]
***dxtr has quit IRC (Read error: Connection reset by peer) [14:38]
RandalSchwartzRandalSchwartz waits for the suspense
oops - he's gone
must've worked :) 		[14:38]
cedwardsOk. I am total fail at CVS, yet I'm trying to submit a port update.
I've downloaded the original tarball from cvsweb.
what I need to do is create a cvs diff of the original and my version. any suggestions?
(note: I've lightly used svn, but mostly used git, so cvs seems.. strange to me) 		[14:42]
***dxtr has joined #arpnetworks
dxtr has quit IRC (Changing host)
dxtr has joined #arpnetworks 		[14:44]
vtoms has quit IRC (Quit: Leaving.)
heavysixer has quit IRC (Quit: heavysixer)
dxtr has quit IRC (Read error: Operation timed out) 		[14:49]
jdoeheh
if you can't see the other side of the vpn it means your routing and/or forwarding on the other side is fucked up.
if he ever comes back he needs to post vpn configs as well as the pf config. 		[14:54]
***vtoms has joined #arpnetworks [15:01]
vtoms has quit IRC (Quit: Leaving.)
dxtr has joined #arpnetworks
dxtr has quit IRC (Changing host)
dxtr has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
dxtr has quit IRC (Quit: I'm outta here)
visinin has joined #arpnetworks
dxtr has joined #arpnetworks
dxtr has quit IRC (Changing host)
dxtr has joined #arpnetworks 		[15:09]
dxtrOkay
Got it working!
:D 		[15:24]
RandalSchwartzwhat was the problem? [15:34]
cedwardserg! [15:42]
jdoepebkac ;) [15:43]
cedwardsI can't get this send-pr to go through because it's coming from username@hostname.domain.tld, and hostname isn't resolvable/valid. [15:47]
freakin' sendmail [15:52]
up_the_ironsthinking of redoing my mail server. Right now I use qmail, dspam, and some rbls. Suggestions on software? (postfix, exim, dovecot, etc...) I'm looking for something well documented, simple, and good on spam :)
I haven't gone down this road in a long time... 		[15:57]
RandalSchwartzpostfix + dovecot + amavisd-new + postgrey
I've set that up repeatedly now
could even help out if you got stuck
postfix is the state of the art in mail delivery
all the right knobs, but mostly correct in defaults 		[15:57]
cedwardsI setup a slick postfix + dovecot + postgresql + webmail + amavis + postgrey + rbl/xbl + strict postfix filtering +... [15:58]
RandalSchwartzyeah - I use zen rbl [15:59]
cedwardszen.spamhaus.org helps quite a bit, as does postgrey [15:59]
up_the_ironsnice [15:59]
cedwardspostgrey actually helps a ton. [15:59]
RandalSchwartzyup, until you can't get mail from a multi-outbound host :)
so the whitelists unfortunately have to be applied to the big ones
and those are also a big source of spam
postgrey doesn't implement mapping, sadly
just whitelist 		[15:59]
cedwardsok. I don't know how I'm supposed to submit this freebsd PR if I can't get stinking mail to work right :( [16:00]
RandalSchwartzI've seen others that say "if you see it from any of 3.4/16, that's the same as any other 3.4/16"
is the PR about mail? :)
if so, ho ho the irony 		[16:00]
cedwardsRandalSchwartz: ha ha. it's a port update, but as I said it's showing it's coming from my unresolvable internal hostname so freebsd.org rejects it. [16:01]
RandalSchwartzssh machine.that.is.properlyconfigured.net sendmail -t <yourmsg [16:02]
DaCaI use OpenBSD spamd for greylisting, and whitelist with dnswl.org [16:02]
RandalSchwartzI've done that before [16:02]
cedwardsi forget, in sendmail, how to make it strip the hostname and just come from user@domain [16:02]
RandalSchwartzin fact, for a while, I had a local sendmail script that just ssh'ed every message like that :)
simpler than setting up local sendmail 		[16:02]
cedwardsi've got SMARTHOST setup to relay through my mail server, but it's still not working.
..and I don't feel like installing postfix for this one-off. 		[16:03]
RandalSchwartzI tell ya. ssh it over :) [16:06]
***heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer 		[16:08]
up_the_ironsRandalSchwartz: do you have any build log of your "postfix + dovecot + amavisd-new + postgrey" setup? [16:10]
RandalSchwartzno - I most spent time getting everything just right on the old machine
and then carefully copied it to the new machine
I'd be happy to go over all the moving parts though
also involved in moving from old to new was moving insightcruises.com one way, and the other domains the other
so that also made it tricky 		[16:10]
up_the_ironsyeah
i may play around with it some tonight 		[16:11]
RandalSchwartzI also got rid of a pre-queue amavis-d filter, and replaced it with a postgrey and a post-queue amavis-d
that was the new advice
from the docs 		[16:11]
up_the_ironsah [16:12]
cedwardsup_the_irons: i have pretty detailed docs on my setup, if you want
up_the_irons: i designed it for work, so it's really scalable and managable. 		[16:13]
RandalSchwartzthe tricky part for me was getting the dovecot set up just right to use my password file even after being chrooted [16:13]
jdoeup_the_irons: I can give you a postfix+dovecot config
RandalSchwartz: funny, I just switched to pre-queue SA
jdoe would rather reject than accept and drop 		[16:13]
RandalSchwartzyeah - that generates more blowback thoguh
too many bystandards
bystanders 		[16:14]
jdoenah [16:15]
RandalSchwartzif it's crap, just absorb it [16:15]
jdoeyou're rejecting while the session is still open
no innocent bystanders 		[16:15]
RandalSchwartzyes, but it often gets relayed before that [16:15]
up_the_ironscedwards: sure, if you don't mind, send it over :) gdolley@arpnetworks.com [16:15]
RandalSchwartzso the upstream has no option but to blow it to me [16:15]
cedwardsas soon as I get this stupid PR submitted.. [16:15]
up_the_ironsjdoe: sure, i'll take your config too :) [16:16]
jdoeRandalSchwartz: here's my take on it... assume the mail is 100% spam: if it comes directly to me from the spammer, I reject it during the session. No collateral damage, reject goes right to them. If they proxied through a legit mail server, that mail server should get the rejects, otherwise they might never know they had a problem.
RandalSchwartz: on the other hand, if it's a legit email that's flagged incorrectly, I *want* the sender to get a bounce, otherwise they might never know what happened to it, and that's annoying.
.... also, note that at no point does the email ever make it to someone not directly involved in it coming to me.
which all seems reasonable, I think. 		[16:24]
dxtrhttp://www.youtube.com/watch?v=UO2zrCExdrU [16:25]
jdoealthough I guess it sounded more pompous than I'd intended it to ;) [16:25]
dxtrHmm [16:25]
RandalSchwartzjdoe - that's not how it happens
evil guy -> middlehost -> me 		[16:25]
jdoewho is middlehost? [16:26]
dxtrRandalSchwartz: Probably some firewall rules .) [16:26]
RandalSchwartzan egress mailer, for example
for a large corp 		[16:26]
jdoealright, so where's the problem? large corp sends you an email, you reject it.
what they do with the bounce is their problem. 		[16:26]
RandalSchwartzright, and egressmailer then bounces it to... "From:"
and the "From:" guy gets a blowback
I don't want to blowback 		[16:27]
jdoethat's a problem with egressmailer though, not you. [16:27]
RandalSchwartzYeah - but it's still Very Real
I know, I get a lot of blowback like that
keep in mind, I've been merlyn@stonehenge.com for almost two decades 		[16:27]
jdoeno doubt, but... still. You're (hypothetically) bouncing something correctly. Someone else is dropping the ball. [16:28]
RandalSchwartzso I'm in almost every list of "use these million names for fake from" [16:28]
jdoethey should fix that, it's no reason for you to cripple your setup. [16:28]
RandalSchwartzI'd rather just swallow the virus [16:28]
jdoeto each their own, I guess :) [16:28]
RandalSchwartzok - then the equivalent is me doing post-queue
it's exactly the same setup
me doing post queue is exactly the same as mail coming through an egress mailer
both can lead to blow back unless they are set to DISCARD
there's no way around blowback 		[16:28]
jdoeer... that's true, but it's a misleading statement
both can lead to blowback, but only one is actually your fault. 		[16:29]
RandalSchwartzfault isn't to be assigned here
it's part of a larger system
if you return spam, you risk blowback
no matter at what level 		[16:29]
jdoewell it sort of is, otherwise reductio ad absurdum, I won't deliver to internet hosts because it might lead to blowback [16:30]
RandalSchwartzand as a victim of a lot of blowback, I won't be creating more of that [16:30]
jdoefair enough. [16:30]
***fink has joined #arpnetworks [16:37]
dxtrHmm
How would I do in openbsd to route certain IPs (eg 192.168.0.17/28) through a certain interface
And route the rest through another? 		[16:46]
.... (idle for 19mn)
cedwardsI know the Linux way. Not sure how similar it is.. [17:06]
RandalSchwartzroute add, I think
as in, it's part of the routing table
route add 10/8 tun0 		[17:07]
jdoeI think how well that works varies by OS. I know Solaris is a dick about routing subnets [17:14]
cedwardsdon't get me started on Slowlaris. I've got a guy at work who swears it was coded by the almighty himself. [17:20]
dxtrsudo route add -host 192.168.2.4 10.9.8.13
That didn't work
And tun0 instead of 10.9.8.13 didn't work
My problem is: I want to route some LAN clients through my openvpn interface 		[17:20]
RandalSchwartzmaybe you want to rdr them?
no - that decides based on outgoing
you want nat, which rewrites it
wait. what are you trying to do?
if you want it to work, you'll need to nat them
since the packet has to know where to return
so the outbound IP better be your external IF
this all gets so much simpler with v6
no more nat. thank gawd. 		[17:23]
dxtr:d
So this isn't possible with ipv4? 		[17:26]
RandalSchwartzit is
but you have to NAT 		[17:26]
dxtrJust nat it to tun0?
Sounds reasonable 		[17:26]
RandalSchwartzwell - I'm still not getting the topolgy
can you draw it with "graphviz" for me? :) 		[17:26]
dxtrSure.
Hold on a minute :) 		[17:29]
***RandalSchwartz has quit IRC (Remote host closed the connection)
RandalSchwartz has joined #arpnetworks 		[17:30]
.... (idle for 18mn)
dxtrRandalSchwartz:
http://www.dxtr.cc/~dexter/pub/topology.png
That's kinda what I want to achieve 		[17:49]
RandalSchwartzI have no idea what net numbers you want there, or why openvpn is in th emix
or why uroboros has two ways to the internet
or whether openvpn is running *on* uroboros, in which case, not sure how dir655 gets to it without talking to uroboros
so I'd say, diagram, mostly fail :(
anyway, gotta drive. see ya later 		[17:53]
dxtrhaha, I couldn't come up with a good way to illustrate that I wanted just dir655 to go from uroboros through openvpn
Alright :) 		[17:54]
RandalSchwartzlayers, man... colored layers
/me goes 		[17:56]
dxtrYeah, right [18:01]
jdoethat graph is a nightmare ;)
I think what you're trying to say
is that you have a lan on 192.168.2.0/24, of which uroboros is the gateway
and uroboros and bowser are linked by openvpn on 192.168.3.0/24?
... except inexplicably you have a second 192.168.3.0 behind dir655? 		[18:02]
***visinin has quit IRC (Quit: word) [18:13]
dxtrjdoe: oh, you saw the second test graph I did :p
But yeah, I wanna route 192.168.3.0/24 over openvpn 		[18:14]
jdoeI can't give any useful suggestions because your graph is crazy-confusing ;) [18:15]
dxtrHaha, yeah :D
I've never done any real graphs before.. And I generally suck at making explanatory stuff (Is it called explanatory?)
But in short: Uroboros is my router, bowser is my vps
192.168.3.0/24 is my wlan
And I want to route 192.168.3.0/24 through tun0 in uroboros (openvpn) 		[18:16]
jdoeso what's 192.168.2? [18:19]
dxtrThose are my own stuff connected with a wire
And there are no specific reasons for doing this - It's just educational )
:) 		[18:20]
jdoethere are some reasons not to though, I think having different subnets will fuck up broadcast traffic, for example.
uh... sec, maybe my openvpn config can be of some assistance... 		[18:22]
dxtrIn this situation I don't care that much for broadcast traffic between 192.168.2 and 192.168.3 [18:23]
jdoehttp://pastebin.com/Cq0j8Wbp
if you want it, copy it now because it expires in a day.
I only have a single subnet at home, but what that does is
openvpn server on 11.22.33.44
openvpn client running on my home gateway.
gateway's ip is 10.200.0.1 (and as far as the tunnel is concerned, also 10.100.100.2) 		[18:26]
dxtryeah [18:28]
jdoewhen it's running, server is accessible from the lan as 10.100.100.1 and the entire lan is accessible from the server by their real ips.
(10.200.0.whatever) 		[18:28]
finkjdoe: any particular reason why you have openvpn in /etc rather than /usr/local/etc? [18:28]
jdoefink: because it's linux and that's where it goes on linux
adjust paths for your os as necessary :) 		[18:29]
finkoh, sorry i thought you were bsd [18:29]
jdoemy vps is
vpn endpoint is another machine, it and the gateway are debian. 		[18:29]
finkdo you find that confusing , switching between setups/ [18:30]
jdoeno
I admin linux, solaris, bsd and windows machines on a daily basis.
you get used to it, I guess. And you make a habit of using things that are the same between oses
... like pkill and friends. <3
well, and it helps that I'm pretty new with Solaris, stops me from wading in over my head ;) 		[18:31]
dxtrhehe [18:46]
***heavysixer has quit IRC (Quit: heavysixer) [18:49]
dxtrWell, I'm going to bed now [18:53]
***bill``` has joined #arpnetworks [18:56]
bill```hi, what should i do if the vnc details provided in my control panel do not actually work?
tried with three different clients 		[18:56]
finkbill```: error? [18:57]
bill```nothing, the remote just hangs up
none of the three clients provided an error
i can telnet to the host/port in question and am able to successfully establish a connection, but no dice when using an actual vnc client 		[18:58]
up_the_ironsbill```: what is your VNC host and port [18:59]
bill```1 sec
up_the_irons: kvr08.arpnetworks.com on port 6029
i had asked in a support ticket about this a few days ago, but no reply 		[18:59]
up_the_ironsbill```: http://support.arpnetworks.com/faqs/vps/out-of-band-management
bill```: note the "only one connection" part
appears you have another connection open somewhere. given you've used three clients, this seems fitting :) 		[19:01]
bill```yes, i had read about that before, but i had never initiated a vps connection the first time and it still failed
so any infected host on the internet port scanning machines could in theory lock me out from using vnc on my own server?
:-| 		[19:01]
up_the_ironsbill```: right now it is hanging, which usually means it needs to drop whatever it is holding onto. I think I remember your support email, and I replied saying I connected fine :)
bill```: no, the connection must actually be established. if they don't know your password, it cannot be established 		[19:02]
bill```gotcha
since it's been days, and you were the first person to successfully connect, shouldn't it have timed out by now? 		[19:03]
***bill``` has quit IRC (Quit: leaving) [19:06]
up_the_ironsand he ran... [19:06]
***fink has quit IRC (Ping timeout: 258 seconds) [19:08]
up_the_ironsbill```: I think there is a bug in the timeout. If the connection is not properly shutdown (you kill your VNC client instead of telling it to end the session), it may hang [19:09]
***fink has joined #arpnetworks [19:16]
............. (idle for 1h1mn)
ballen has quit IRC (Ping timeout: 240 seconds) [20:17]
.... (idle for 19mn)
fink has quit IRC (Quit: fink) [20:36]
Guest40267 has quit IRC (Quit: Leaving) [20:45]
....... (idle for 33mn)
infrared has quit IRC (Ping timeout: 246 seconds) [21:18]
.............................. (idle for 2h29mn)
up_the_ironsDaCa: so behind your OpenBSD spamd, what are you running as the MTA? [23:47]
↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)