Why isn't http://tools.ietf.org/html/rfc3514 used?
lol
Things like that have to be a standard before they even would work
pretty difficult to convince people to go out of their way to implement something when 1 large entity choosing not to makes the whole thing useless
Ofcourse http://tools.ietf.org/html/rfc5841 could be used instead
With the "evil" flag set
lol
Err.. HOw come nickcolor.pl doesn't work in irssi? :(
it does?
i've not used it for years, but it certainly used to
http://scripts.irssi.org/html/nickcolor.pl.html
Well for me it doesn't
:(
:(
Hey, RandalSchwartz
hey dtr
dxtr even
You know that project report I had to make?
The other day
I don't recall
"project report" isn't ringing a bell
maybe you used different words
Oh yeah
You know the log book?
That was part of a report to my school project
again... not recalling "log book"
maybe you used different words there. :)
or maybe you were talking when I wasn't reading the channel
Yeah, Maybe I did
i stay camped here, but I never read the scrollback
so if I'm not actually responding, I am probably not seeing it
But anyway, got an A on a 13 page report I did in a couple of hours
cool
I made the report about a project that took a couple of hours but wasn't allowed to take less than 100
I wonder how come I always get an A when I throw together stuff last-minute but when I actually do it right I get something lower
Am I really that bad?
you're gonna be in for a bigger shock in the real world :)
hehe
weird. I can't seem to get to google from my VPS?
but others work.
do you have firewalls in place?
is your rDNS correct?
are you trying ping or something else?
telnet www.google.com 80
times out.
And no pf rules that would filter outbound packets.
host www.google.com works?
up_the_irons: any known issues atm?
what about rDNS
Yeah I can resolve it.
no known issues
i can't get to arpnetworks.com or any of our servers, same with everyone else here :(
google may be having problems:
n
$ traceroute www.google.com
traceroute: Warning: www.google.com has multiple addresses; using 72.14.213.103
traceroute to www.l.google.com (72.14.213.103), 30 hops max, 40 byte packets
1 s1.lax.arpnetworks.com (208.79.88.1) 0.898 ms 0.773 ms 2.237 ms
oooh dns related?
2 ge0-15.as01.lax07.mzima.net (67.199.135.101) 7.667 ms 0.463 ms 0.447 ms
3 google.com.any2ix.coresite.com (206.223.143.41) 0.454 ms core1-0-1-0.lax.net.google.com (198.32.146.46) 0.511 ms google.com.any2ix.coresite.com (206.223.143.41) 0.544 ms
4 216.239.43.14 (216.239.43.14) 0.701 ms 0.692 ms 0.658 ms
not dns related
5 * *
just getting there
it hits google over Any2 IX, then stops
eeks, alright
amdprophet: you'll need to provide a traceroute
amdprophet: but in the end, probably not much i can do. if some network between you and me is having problems, I have to wait for them to fix it
works fine from oversee just down the street
to google that is
yea i understand
but not hitting any2ix
it appears google just came back
ping6 ipv6.google.com works
but not ping www.google.com
heh
so just use ipv6 for a bit
damn ipv4
http://pastie.org/975124
already running out of bits, it seems :)
up_the_irons: i'm getting stopped at xe2-0.cr01.sjc01.mzima.net
route flappage at the third hop
that's never good
route flappage indicates some routing issues
and it's outside ARP, so you'll just have to wiat
wait even
probably getting split route coming back
so not able to roundtrip
yeah
not my first network :)
:)
I managed the second 56k line into intel.com in 1989
we had an entirely different net number just so that we didn't need to figure out how to deal with two internet routes. :)
in 1992, intel was compiling pieces from 25 divisions to create a massive 70k-line /etc/hosts file for the company
updating it 3 times a day
I guess they weren't comfortable with DNS yet. :)
one entire division's hosts were rejected from insertion... they had used underscore in the host names
I said "that won't go into dns, so it doesn't go into /etc/hosts here either"
they said "can you fix dns please?" :)
apparently the idea of world wide didn't occur to them
so is the issue a problem with mzima's routes? i was able to get a bit further this time
amdprophet: I just sent a support req to Mzima, and I'll report when I know more
thanks :)
np
how's the ps3?
amdprophet: sucking my productivity dry
haha
haha.
i can relate, if video games didn't exist i would have had all of my projects done 2 years ago
my COD: MW2 "you-have-no-life-o-meter" reads like 2d 11h. I think you know which meter I'm talking about
i think i was up to like 30d or something lol
was really addicted
amdprophet: OMG i feel so much better
haha
"At least I don't have 30d like amdprophet" is what I'll keep telling myself
write it on a sticky note, "At least I'm not as bad as amdprophet"
i tell myself i'm not as bad as my friend, he's got like 20,000 hours in WoW
jesus
amdprophet: is he really fucking good?
i'm probably exaggerating a bit but it's definitely in the thousands of hours
i don't think he's that good, no, he just does a lot of raids
up_the_irons: What does his sexual skill have to do anything with wow? ;)
LOL
dxtr: I think sexual skill and video games skill may have an inverse relationship
True
up_the_irons, noticed any issues getting to google from your network?
route through mzima seems busted.
blovett: yes, I have
it's not mzima, it gets through to Any2
216.239.43.12 <-- works
216.239.43.14 <-- dies
ah, well yeah.
blovett: ipv6.google.com? :D
I have end users complaining. :(
"STFU AND USE IPV6!"
blovett: 216.239.43.14 is google so they have a broken "something"
yeah, I see this.
thankfully this is why we have multiple paths.
*sigh*
but if whatever makes the decisions on their end puts you to .12, it works
up_the_irons: gimme a job!
up_the_irons, so. I'm looking at finally ditching my colo and getting another vps. what would it cost for additional disk space? I'm only thinking going from 40 -> 60GB.
but don't need the additional RAM.. Unless it would cost the same as the vps with 2GB, in which case. :)
blovett: send me an email at support@ and I'll get back to ya. I try not to "break up" the plans now, because it gets confusing having a lot of custom plans.
fair enough. I'll do that. thanks
up_the_irons: any updates on that ticket?
amdprophet: nothing yet, I sent them some more traceroutes from other networks. Can you PM me your phone number, Mzima wants to talk to someone on the Shaw network that is having problems.
sure, 778-829-3041
OK, I'll forward this along, thanks
np
server is responding REALLY SLOWLY
It keeps slowing down quite a bit
well, at last I can connect via ipv6 :p
amdprophet: Meanwhile in the bat cave...
rofl
i just moved to the other room actually, the bat cave is too loud and hot
all those servers...
server rooms make poor bat caves
why are you waiting for a phone call>?
it's true
What's a phone call?
;)
RandalSchwartz: up_the_irons gave my phone # to mzima because there's a routing issue somewhere inbetween my isp and arpnetworks
your isp is google?
can't get to www.google.com from arp either
it's not just your personal problem. :)
I presume there are already a dozen people pulling their hair out trying to solve this issue
I'll make millions! Mwahaha!
hair today, gone tomorrow
heh
razorluv:
er, waT?
Accidentally, press r, "opps! better erase it", touch TAB for some reason, "Wtf?", miss backspace
Accidentally press r
I can't type nowadays.
I wonder if it's the stress from school messing with my head
Hmm. my connection from ARP to freenode just went bad
My connection was laggy before
To freenode
Other than that I haven't noticed much
I'd say there's some general routage issues today
I wonder if I can connect via v6
the tubes are clogged is all.
oh - looky there.
I can
i'm always connect via v6
... /server ipv6.chat.freenode.net
ahh verne is still in the US though.
-verne.freenode.net- Your host is verne.freenode.net[2001:19f0:feee::dead:beef:cafe/6667], running version ircd-seven-1.0.1
I like that... 'dead:beef:cafe"
it's a popular one
my WPA password is "adeadbeefbabe"
they said it needed to be 13 chars.
I thought they meant hex chars :)
hehe
but it's an easy one to remember
"burger girl" :)
RandalSchwartz: my isp is shaw, there's nothing inbetween my isp + mzima
and that's also where google times out
so yeah, it's probably mzima
need to get IPv6 running so i can contact it, any suggestions?
I need to do the same.
"contat it"?
which "it"
I hope this issue is not a sign of things to come, now that PacketExchange has bought Mzima. I'm working with this support engineer over there, and he keeps telling me he's unable to reproduce the problem. W.T.F.
what do you mean "get ipv6 running"
you have a /48 on your box already. :)
ugh, packetexchange :/
when my contract is up, I should buy from Level3 directly
bob^^: you have experience with them?
only anecdotal up_the_irons
bob^^: bad?
from other ISPs here in the UK
not good
oh shit
cheap
ugh
they exchange working packets for dead ones. :)
i had them described to me as 'cheap and cheerful'
they send all the packets through Exchange. :)
which i take to mean... 'poor service'
Mzima was always very good, never had an issue; used them for almost 10 years
IP-over-SMTP
had good service from l3 and gblx though if that helps :)
bob^^: yeah i ran a gblx circuit once, was good
i should buy from l3 and gblx, bet that'd be a good mix
:D
I don't know why I'm saying this here but apparently the province I live in has a name in english :P
i can't really talk atm, my employer takes transit from only one supplier :/
which i find very disturbing indeed
ouch
http://www.robtex.com/as/as25178.html#graph
i've been jumping up and down to get l3 in as apparently they have presence near our core network now... so we should definitely be buying from them imho
my graph is funny: http://www.robtex.com/as/as25795.html#graph
transit from those guys is *very* good though, which helps
yeah
hehe
looks a lot more healthy than mine :)
not right now
;)
hehehe
hey up_the_irons - if you do speak to l3, i'd be interested to hear what they quote per mbit
for comparison to their UK charges
up_the_irons - you're providing 6to4?
192.88.99 ?
or is that just because you're peering with others who do?
RandalSchwartz: i was, but that router was taken offline when i decomissioned my Xen instances
it was just a linux + quagga setup, kinda stupid but it worked :)
so traffic is heading towards you recklessly? :)
or does it just get bounced to the next guy somehow
is there something i can throw on my openbsd router to handle the routing of IPv6 traffic (over IPv4 on the WAN)?
I use a tunnel broker for that
at home that is
yes. you can get a free tunnel from he.net
I use sixxs :)
I'm using that with my Airport Extreme at hime
sixxs wasn't compatible with Airport Extreme
so I just cancelled mine with them
Not sure how good he.nets routing is to Sweden :)
amdprophet: just tunnel through your vps
he.net is all over the world
But sixxs works for me now
up_the_irons: can't get to my vps :p
bah :(
amdprophet: But yeah, try he.net or sixxs if you want ipv6 connectivity at home :)
... http://tunnelbroker.net/
dxtr: any preference?
I use sixxs, RandalSchwartz is using he.net
Both works so... Nah :)
... (Fremont, CA; New York, NY; Dallas, TX; Chicago, IL; London, UK; Frankfurt, Germany; Paris, France; Amsterdam, NL; Miami, FL; Ashburn, VA; Seattle, WA; Los Angeles, CA; Hong Kong; Toronto, ON
are any of those near you? :)
RandalSchwartz: Toronto, ON was the last one
So... No
seattle is
i'm about 3 hours from seattle
Amsterdam, NL was the closest for me
there ya go
select Amsterdam then
amdprophet: I think he.net is better in the US
I have a /48 at home thanks to he.net
Because I don't think sixxs have that many nodes in the states
And half of them seem to be down
i'll try he
I've got a /48 at home thanks to sixxs, RandalSchwartz ;)
yeah - and sixxs requires a lot more work
as in, not compatible with Airport Extreme
Actually I haven't done anything since I set it up
all I had to do was type a few addresses into the confnig
with sixxs, I would have needed a machine dedicated to being the broker
I'm using an openbsd router, RandalSchwartz :)
Yeah, I don't have any home computers
just my laptops
and the tivo, and the ps3
Hehe
I've got two laptops plus the router (An intel atom 330) plus two more laptops (Mom and dad) plus my brothers stationary
And my girlfriend brings her laptop here
So.. I've still got plenty of addresses
I've gotten quite used to using Miredo (Mac Teredo) on my laptop as I travel now too
so I'm almost always hooked in to here via v6
even when in a v4-only internet cafe
shutting down Mzima session; hold onto your seats
i lost my seat, what do i hold on to?
RandalSchwartz: differences between a regular tunnel and a bgp tunnel?
amdprophet: I can reach your IP now
:)
woot
amdprophet: the Shaw one, that is
it works!
fucking Mzima
err, Packet Exchange
the fix should not involve me turning off the circuit
you need a bgp tunnel if you also ahve other ways to the internet
if you have only one way out, no need
you can simply take the default route approach
thx
or if you want to run more than one net behind your connection
you have to exchange "I have xyz, you have what?" handshaking if so
amdprophet: I assume Mzima never called you?
if you have only one net, they already know it, and they'll route to you for that, and you route to them for everything else
up_the_irons: you assume correctly :)
How the hell do Teredo work?
bah
I never got that
it works quite well!
up_the_irons: sounds like PacketExchange is going to be a fun time for you
But it's meant for casual connections. if you're permanently wiring up 6 over 4, then you should use a broker like he.net
with teredo, you get an IPv6 depending on the nearest globally routed v4
so as I move around, I have different v6's on my laptop
right
and I think there's randomizing... so if I'm off the net for a bit, I get a new v6
like right now, I'm 2001:0:4137:9e76:0:1ec7:33f2:5cdb
the "2001:0" is the clue that I'm Teredo
if you ever see that somewhere else, that's what it is
the last four bytes encode my ipv4 address
Ah
that's how the he.net machine (which happens to be the biggest teredo server as well) knows where to route my v4 packets
But.. How do all routers know where to route the ipv6 packets?
Is it done over ipv4?
yes
ipv4 to he.net, and they unwrap it and put it on v6
when it comes back, they wrap it back in v4, send it back
And how do the clients find the nearest teredo tunnel?
they contact the One True Tunnel Broker
... teredo.ipv6.microsoft.com
of all things. :)
Interesting
The service is actually contracted out to (you guessed it) he.net :)
see.. he.net wants your ipv6 business
but this is how all Vista and windows 7 machines get "free" ipv6
they all have teredo on by default
and they contact the microsoft.com address to get routed
I see
the microsoft.com is just a NAT bridging solution... they figure out a nearby he.net machine based on your source IP, then get the two of you to talk to each other using NAT-traversal
works most of the time... can possibly fail if you're double-NATted
anyway, I just have a Miredo prefpane that I leave enabled
within about 5 seconds of me getting an ipv4, I also have an ipv6
you just exponentially increased my understanding of Teredo
I've read some about Teredo before but never gotten it. But they seem to have improved the wikipedia article now :)
well, remember "1/2" is an exponent. :)
Funny guy :P
that's why I like people saying "for a fraction of the cost" without realzing that "3/2" is a fraction :)
"So it's only -50% cheaper?"
"no that's 50% less off!"
hah
omgosh my nick!
"wait... are you saying '50% less' or '50% off'?"
"that's right, I'm saying 50% less off!"
:D
your nick?
is he here? :)
I've been "underscored"
You know what I just realized, RandalSchwartz?
http://upload.wikimedia.org/wikipedia/commons/4/4d/Root_graphs.svg <- It looks like an onion
yay
onions are roots, yes
onions are like my ex
or, my ex is like an onion
She's a vegetable?
i wish she was
no. onions are fruits.
onion is a fruit?
but they smell like shit
RandalSchwartz: I have them in a salad and on burgers therefore they are vegetables
you never have tomatoes or fruit salad? :)
I roast them and have them on my hot dogs - therefore they are vegetables!
What are you saying? That you have onions in your fruit salad?
dxtr: science?
... http://en.wikipedia.org/wiki/Tomato#Fruit_or_vegetable.3F
fink: They are vegetables too
dxtr: yes, i know
RandalSchwartz: i think onions are veggies
I know. I was kidding.
aiming for "50% more less knowledge"
fink: Not many know that sciences are vegetables
dxtr: err…
I'm just tired ;)
Hmm... water and ice cream perhaps
yummy
sandwiches
a soup and half salad combo
see - now my v6 is 2001:0:4137:9e76:0:1f21:b4cd:9c23
woot, got Linux up and running on my work laptop.
I gotta say. For a desktop OS, Ubuntu really got it right.
linux feh
yeah, ubuntu's not bad
except that it's linux :)
freebsd will run linux binaries just fine
no emulation needed
then you get all of linux plus all of a good OS
but it passes the girlfriend test
you can install it for your girlfriend and she can use it
that's a good desktop OS
silly linux
pcbsd works for that
freebsd with a user-friendly skin
have you ever tried to get a good solid desktop OS running on a laptop with wifi and soft volume controls and all that stuff?
on BSD?
it's a painin the ass, even pcbsd.
RandalSchwartz: Any disk encryption in pcbsd?
who needs a gf when you have a real UNIX?
nobody knows what pcbsd is.
I'm with awyeah. Linux is simpler on the desktop/laptop than BSD.
pcbsd = freebsd + some good desktop stuff
nice installer, etc
lots of pre-installed goodness
*BSD sucks on laptops.
think of it as the ubuntu of BSDs
Arch Linux, linux with bsd style init and a ports like system
Wraithan: Arch ++
awyeah: you've got it backwards; laptops suck, and bsd is awesome
It's a huge pain in the ass to get it to work well. And forget about battery life ;)
BSD rocks on the server side, given the choice I wouldn't use anything else.
are you sure? have you tried recent BSDs?
batteries are for suckers
"would you rather have a battery life or a real life?"
I keep meaning to install FreeBSD and use clang to compile it all
RandalSchwartz: exactly
a gpl-less existence sounds sexy
i want my ps3 controller to have long battery life so that i can have no real life
if it doesn't run bsd well, it sucks,
LOL
up_the_irons: what is a real life?
Wraithan: they don't make it anymore
having said that - I'm trading my 2-hour late 2007 MBP for a 6-8 hour new MBP very soon
up_the_irons: ah ok
Wraithan: Are you on acid?
as soon as I can afford it
he's on *battery* acid :)
I actually laughed irl
*glug glug glug* mmm
is ipv6 supported inside jails? if so, how do I assign an address to a jail?
"We do believe whatever routing issues appeared earlier this afternoon have cleared." -- PacketExchange. They want me to turn up the session again.
hold onto your seats
Anyway, just about everything worked really well on this machine out of the box without having to f*ck with it
hahaha. "We believe"
cedwards: in rc.conf, or in the jail's conf if you're using ezjails
be sure you get a full day's credit
i'm just kidding, i think ubuntu is great
fink: do you have an example of the syntax for ezjail?
cedwards: well, no i've never using ipv6 with jails :( sorry
but it should be the same as with ipv4
you have to manually modify the ezjail conf for the jail if you want multiple ips for the jail anwyay
ah, mzima's route to google works again
or google works again
hah
routes to abovenet work again
amdprophet: how's your connectivity?
up_the_irons: seems to be working great, thanks! :)
amdprophet: can you pastie a traceroute?
sure
http://pastie.org/975489
amdprophet: great thanks, rockin
yea :)
RandalSchwartz: is there any reason to request a /48 over a /64? don't they both have a ridiculously high amount of available ips?
like /48 is pretty much pointless is it?
amdprophet: if you want more than 1 subnet, you'll want a /48
amdprophet: /64 is for one and only one subnet
amdprophet: which is kinda limiting :)
yea definitely, alright cool
all "sites" should get a /48, to be divided up within different subnets / vlans within that site
you can have different "sites" geographically, even a block down the road
i need to buy myself a vlannable switch
amdprophet: low end: cisco 2924XL are like $20 on ebay now ;)
and little higher end: cisco 2950 w/ EMI is like $150
do they support ipv6 for vlans?
well, vlan and ipv6 are on different layers
yea, but don't you have to assign an ip to each vlan?
it's been like 6 years since i've worked with the cisco ios
you can run ipv6 on top of vlans, no problem
amdprophet: ah, you are then thinking of more than just a switch
you want a router or "multilayer switch"; a lot more expensive
shoot you're right
i was thinking of router-on-a-stick
if you don't have super high traffic req. i would just use a PC-based router (pop on FreeBSD, OpenBSD, Linux, w/e)
and then a layer-2 vlan switch connected to it
yea i'm using that rackmount atom 330 box i showed you before
with openbsd, it's great
run whatever you like on the router (quagga, openbgpd, etc...)
amdprophet: oh nice! yeah, i have openbsd on it too
the perfect combo
super easy to do vlans on openbsd
$ cat hostname.vlan160
inet6 2607:f2f8:XXXX::1 48 vlandev em0
for example
awesome!
... ipv6_ifconfig_em0=2607:f2f8:3080::/48
in my /etc/rc.conf
which is why my box is actually ::0 :)
but hey, why waste an address?
it's ::1 for the router, and ::0 for... *me*
...
gawd I hate it when people do that
either talk, or be quiet. stop wasting a line
it provides *zero info* to us
except "hey look at me I'm so vain I need to let you know I'm still here"
RandalSchwartz: i feel the same way
I know it came from gaming
but it has no more place on IRC than SMS speak does
"..." came from gaming?
that's what I'm told
i c
"if you're being charged by the character for IRC, sucks to be 'u'"
i miss mIRC and it's troutness
how did ORL get ahead of BOS?
did they bench all the good players just to save them for Q4?
haha
thanks RandalSchwartz
no more phishing!
Hmm. overdue update to emacs, apache, and postgresql
feh
gotta wait for a downtime window
cool!
i think i need to set up dns forwarding for ipv6 in my dns server now
just make a local caching server
then both v6 and v4 will connect locally
and then use v6 or v4 outbound to do the right thing
i use a local caching name server on my laptop
just unbound
works great
queries are super fast
i love finding a company like this and then blocking their whole /22 in my new postfix setup -- http://edithroman.com/
"a premier mailing list supplier"
hahaha
nice
so I think I've configured bind to listen on ipv6, but I'm unsure how to actually query over ipv6.
I know how to query for an ipv6 record (AAAA), but not how to query over.
google?
I've tried dig -6.. maybe I screwed up the syntax.
host ipv6.google.com ::1
that'll open localhost va ipv6
and then look for ipv6.google.com with that
yay for ipv6
that works, but trying to query at my actual ipv6 address doesn't.
it's probably not listening on the public address
I don't have any AAAA records populated yet, but I figured I could query for an A record over ipv6.
you generally have to add that
use netstat -an | grep 53
[root@bubbles ~]# sockstat -6
USER COMMAND PID FD PROTO LOCAL ADDRESS FOREIGN ADDRESS
bind named 12732 20 tcp6 2607:f2f8:46c0::30:53 *:*
so that should be listening
try that
host ipv6.google.com 2607:...
that gives me refused.
then you've got some sort of permission error
bind?
you have to permit public addressses to use you
if I query for something within my zone file it just times out..
otherwise, they don't work
but localhost always works
allow query any on my external view.. any includes ipv6?
Hmm. I don't see what I did for this
but I think mine works
looking in named.conf
so you have listen-on
and listen-on-v6 ?
listen-on-v6 { 2607:f2f8:46c0::30; };
my internal view is just a forward only, allowed only from myself. my external view handles all my domains (slave) and is open to !localnets, !localhost, any.
maybe that's part of my problem..
multiple view permissions can get hairy
hmmm
I've even added 'allow query { ::; }' and I still can't query
but if I add an address explicitly (my second vps), queries respond as expected.