[00:03] *** smokey has quit IRC (Ping timeout: 260 seconds)
[00:10] <IPv6Freely> i wonder if he was doing a survey
[00:19] *** IPv6Freely has quit IRC (Remote host closed the connection)
[00:21] *** adxp has quit IRC (Read error: Connection reset by peer)
[00:21] *** adxp has joined #arpnetworks
[00:41] *** nesta has quit IRC (Remote host closed the connection)
[00:46] *** nakano_ is now known as nakano
[00:54] *** nesta has joined #arpnetworks
[00:55] *** nesta has quit IRC (Client Quit)
[00:55] *** nesta has joined #arpnetworks
[00:58] *** LT has joined #arpnetworks
[01:19] *** dbgi-- has joined #arpnetworks
[01:20] *** adxp has quit IRC (Read error: Connection reset by peer)
[01:21] *** adxp has joined #arpnetworks
[01:23] *** dbgi has quit IRC (Ping timeout: 276 seconds)
[02:19] *** dbgi-- is now known as dbgi
[02:19] *** dbgi has quit IRC (Changing host)
[02:19] *** dbgi has joined #arpnetworks
[02:23] *** adxp has quit IRC (Read error: Connection reset by peer)
[02:23] *** adxp has joined #arpnetworks
[02:26] *** schmir has quit IRC (*.net *.split)
[02:26] *** jn has quit IRC (*.net *.split)
[02:27] *** jn has joined #arpnetworks
[02:40] *** schmir has joined #arpnetworks
[03:27] *** adxp has quit IRC (Read error: Connection reset by peer)
[03:27] *** adxp has joined #arpnetworks
[03:44] *** nuke` has quit IRC (Ping timeout: 258 seconds)
[04:22] *** nuke` has joined #arpnetworks
[04:28] *** adxp has quit IRC (Read error: Connection reset by peer)
[04:28] *** adxp has joined #arpnetworks
[05:16] *** adxp has quit IRC (Read error: Connection reset by peer)
[05:16] *** adxp has joined #arpnetworks
[05:29] *** schmir has quit IRC (Remote host closed the connection)
[05:53] *** ziyourenxiang has joined #arpnetworks
[06:00] *** nakano is now known as nakano_
[06:06] *** schmir has joined #arpnetworks
[06:07] *** adxp has quit IRC (Ping timeout: 276 seconds)
[06:11] *** adxp has joined #arpnetworks
[06:12] *** nakano_ is now known as nakano
[06:23] *** schmir has quit IRC (Remote host closed the connection)
[06:43] *** fink_ has joined #arpnetworks
[06:48] <awyeah> mornin'
[06:49] *** awyeah has quit IRC (Quit: Reconnecting)
[06:49] *** awyeah has joined #arpnetworks
[06:50] <awyeah> hrmph.
[06:53] <bob^^> just upgraded my VPS to freebsd 8.1 \o/
[06:53] <bob^^> went smooth as it could, i love freebsd-update :)
[06:53] <RandalSchwartz> zfs gpt boot?
[06:53] <bob^^> nope
[06:53] <bob^^> i'm not crazy
[06:53] <RandalSchwartz> ahh, simpler. :)
[06:53] <bob^^> :)
[06:53] <bob^^> i need things to 'just work'
[06:54] <RandalSchwartz> me too.  but I like snapshots and rollbacks
[06:54] <bob^^> oh yeah, zfs is nice... i'm just not happy to use it in production *just* yet
[07:00] * RandalSchwartz wanders off to $DAYJOB
[07:03] *** adxp has quit IRC (Read error: Connection reset by peer)
[07:03] *** adxp has joined #arpnetworks
[07:03] <bob^^> :q!
[07:03] <bob^^> lol
[07:05] *** dbgi has quit IRC ()
[07:11] <dxtr> So
[07:11] <dxtr> How would I secure my fresh, new freebsd installation?
[07:12] <dxtr> If I don't have enough space to jail my users
[07:13] *** vtoms has joined #arpnetworks
[07:13] <ziyourenxiang> on arpnetworks? should have enough space :-)
[07:13] <RandalSchwartz> yeah - even the smallest plans can run a jail
[07:13] <RandalSchwartz> they nullmount back to your existing /bin etc
[07:13] <RandalSchwartz> or rather a bin built for all jails
[07:13] <bob^^> dxtr: http://erdgeist.org/arts/software/ezjail/
[07:16] <fink_> ezjail rocks
[07:17] <bob^^> +1
[07:17] <bob^^> :D
[07:18] <awyeah> dxtr: Get rid of the users
[07:18] <awyeah> Then shutdown -h now
[07:19] <RandalSchwartz> heh... I'm stuck on the guru level of he.net ipv6 certification
[07:20] <RandalSchwartz> turns out, using he.net as a secondary for my domain is actually stopping me from getting he.net certification!
[07:20] <RandalSchwartz> ns1.he.net is ipv4 only (!!!)
[07:20] <RandalSchwartz> so my nameservers aren't all reachable from v6
[07:20] <RandalSchwartz> "a clever trap they have laid, and I fell for it!"
[07:22] *** woremacx has quit IRC (Ping timeout: 260 seconds)
[07:24] <ziyourenxiang> the handbook's method to construct jails is quite straightforward as well.
[07:24] <bob^^> ezjail just makes it way easier to manage afterwards, plus bringing up a new jail just takes a few seconds
[07:25] <bob^^> but yes, the handbook method is fine too if you're just after one or two standalone jails
[07:31] <fink_> bob^^: i've done both and i find ezjail really saves on the drudgework
[07:32] <bob^^> agreed :)
[07:34] <ziyourenxiang> i'll give it a try then. :-)
[07:39] *** adxp has quit IRC (Read error: Connection reset by peer)
[07:39] *** adxp has joined #arpnetworks
[07:39] *** woremacx has joined #arpnetworks
[07:57] <dxtr> Is it safe to compile a new kernel with a new cnofiguration without first rebuilding world?
[07:57] <dxtr> It's the same version and everything. Just a different kernconf
[07:57] <bob^^> if it's the same version and nothing's been updated, you'll be fine
[07:57] <dxtr> Cool
[07:57] <bob^^> just don't let kernel and world get out of step... Bad Things (tm) will happen
[07:57] <bob^^> :)
[07:58] <dxtr> Hehe
[08:00] <dxtr> I don't need support for "USB Serial Devices", right? :P
[08:00] <bob^^> are you using USB Serial Devices?
[08:00] <dxtr> On the VPS?
[08:00] <bob^^> you never said it was for your vps :)
[08:00] <bob^^> i wouldn't think you'd need that, no
[08:01] <dxtr> I thought it was obvious, sorry :)
[08:01] <bob^^> :)
[08:01] <dxtr> Do I need any USB support for thinks to function?
[08:01] <dxtr> things*
[08:01] <bob^^> i'm not sure
[08:01] <bob^^> let me check on mine
[08:01] <dxtr> yeah :)
[08:01] <bob^^> i've not *noticed* any USB (apart from a usb mouse, but i don't need/use that nayway)
[08:02] <dxtr> I wanna disable as much as possible
[08:02] <bob^^> don't see anything in dmesg.boot that looks to use USB
[08:03] <bob^^> you're not going to save a huge amount by removing those sorts of things though imho
[08:03] <bob^^> these days i tend to run everything with GENERIC tbh
[08:03] <dxtr> hehe
[08:03] <dxtr> Just playing around :)
[08:04] <bob^^> hehe
[08:04] <bob^^> it's not quite the same as the old days where saving a couple of MBs made a huge difference when your box only had 16mb to start with :D
[08:04] <dxtr> Hehe
[08:05] <cedwards> yeah. I run GENERIC, but I change the name is all.
[08:05] <cedwards> I used to bother pulling modules on my *old* sparc machine, but now it's not worth it.
[08:05] <bob^^> exactly :)
[08:11] <ziyourenxiang> cedwards, i suppose you don't use freebsd-update, since you rename GENERIC to something else?
[08:11] *** adxp has quit IRC (Read error: Connection reset by peer)
[08:11] *** adxp has joined #arpnetworks
[08:13] <bob^^> i <3 freebsd-update so very much
[08:18] <cedwards> ziyourenxiang: I build everything.
[08:19] <cedwards> with ccache it really doesn't take long. On one machine I can do a kernel in <1m and world in <5m.
[08:20] <ziyourenxiang> i like freebsd-update, but i also want IPsec, so i can't run GENERIC... bummer... any suggestion for a user-space site-to-site VPN thingie? i know of openVPN.
[08:21] <bob^^> openvpn is superb, i can highly recommend it
[08:22] <ziyourenxiang> somehow it feels a bit "impure" to run TCP over SSL (assuming that's what openVPN does)
[08:22] <RandalSchwartz> not really ssl
[08:22] <RandalSchwartz> it has its own encryption
[08:22] <RandalSchwartz> and yes, I highly recommend openvpn as the best solution
[08:22] <RandalSchwartz> since it tunnels using UDP, not TCP
[08:22] <RandalSchwartz> tcp over tcp is troublesome
[08:23] <ziyourenxiang> ah, it uses UDP? didn't know that. ok, will give it a whirl.
[08:23] <RandalSchwartz> and you can use either layer 3 or layer 2
[08:23] <RandalSchwartz> with layer 2, it's a bit fatter packets, but you can tunnel *anything*
[08:24] <RandalSchwartz> eseentially, your interface looks like a participant on the remote net
[08:25] <ziyourenxiang> i'm looking to tunnel something like zero MQ or one of those AMQP thingies among 2-3 servers.
[08:25] <cedwards> I really need to learn openvpn too. something on my (long) list of topics.
[08:26] <RandalSchwartz> the one thing that won't work is behind-NAT to behind-NAT
[08:26] <RandalSchwartz> the server has to have a public face
[08:26] <RandalSchwartz> the client can be behind-NAT though
[08:26] <bob^^> well.. behind NAT to behind NAT will work, with port forwarding
[08:26] <bob^^> it works fine providing you configure it correctly
[08:26] <RandalSchwartz> presuming you have a public IP too
[08:26] <bob^^> well yes
[08:27] <RandalSchwartz> there are some ISPs that never give you a public IP
[08:27] <bob^^> my advice there would be
[08:27] <RandalSchwartz> "it's NATs... all the way down!"
[08:27] <bob^^> move to an actual ISP
[08:27] <ziyourenxiang> at the moment my two servers are all arpnetworks VPS. at some point i expect to have one or more linux 64bit servers (to run GLASS). any of you guys run linux on arpnetworks?
[08:28] <RandalSchwartz> indeed.  but there are some solutions (like hamachi) that don't require public IPs
[08:28] <RandalSchwartz> jus' sayin'.
[08:28] <bob^^> meh
[08:28] <bob^^> i'd hardly call hamachi a solution
[08:28] <bob^^> but whatever floats your boat
[08:28] <RandalSchwartz> well *I* would never use it either
[08:28] <bob^^> ziyourenxiang: i'm sure plenty of chaps use linux around here too :)
[08:29] <bob^^> openvpn works fine on linux as well - i've done freebsd > linux > windows with openvpn, no problems at all
[08:30] <ziyourenxiang> hmm, if all my machines are on arpnetworks maybe i might just use GRE for tunneling and rely on higher layers to provide security.
[08:30] <RandalSchwartz> GRE is tcp over tcp though, right?
[08:30] <bob^^> you'll have openvpn up and running in five minutes :)
[08:30] <ziyourenxiang> GRE is anything-over-ip
[08:30] <bob^^> indeed it is
[08:31] <bob^^> i've done some horrible things with GRE in my time :)
[08:31] <bob^^> but they work!
[08:32] <ziyourenxiang> ok, i'll try openvpn next. i've done GRE before too and know that it surely works.
[08:33] <RandalSchwartz> of course it works, and stop calling me shirley. :)
[08:33] <ziyourenxiang> heh
[08:55] <jdoe> feh, tcp tunnels.
[09:01] *** adxp has quit IRC (Ping timeout: 260 seconds)
[09:01] *** vtoms has quit IRC (Quit: Leaving.)
[09:01] *** adxp has joined #arpnetworks
[09:04] <fink_> +1 openvpn
[09:08] *** IPv6Freely has joined #arpnetworks
[09:08] <IPv6Freely> well... i learned the hard way that binary system updates dont play well with zfs at this point.
[09:09] *** nakano is now known as nakano_
[09:12] <IPv6Freely> I ran across this issue: http://forums.freebsd.org/showthread.php?t=8958  (except the accepted fix doesnt want to work for me)
[09:15] *** LT has quit IRC (Quit: Leaving)
[09:23] <dxtr> Err
[09:23] <dxtr> Did console.cust.arpnetworks.com just go down?
[09:24] <dxtr> Oh no it didn't
[09:24] *** BeBoo_ has joined #arpnetworks
[09:24] <BeBoo_> about how long does it take for a vps to be setup?
[09:24] <IPv6Freely> usually under 24 hrs
[09:26] <BeBoo_> Cool. I'm excited :D
[09:27] <IPv6Freely> It's pretty awesome, that's for sure. Except for me having to wipe mine and start over because im an idiot :P
[09:27] <BeBoo_> :o
[09:27] <BeBoo_> Thats not good. What happened?
[09:28] <IPv6Freely> I rebuilt w/ ZFS, and apparently freebsd's binary system upgrades (to go to 8.1) dont play well with zfs
[09:28] <IPv6Freely> http://forums.freebsd.org/showthread.php?t=8958  <--- that, except their fix doesnt work for me
[09:29] <BeBoo_> excuse the ignorance but what's different about ZFS?
[09:30] <IPv6Freely> hell if i know... its supposed to be better :P
[09:30] <IPv6Freely> was just about to read this: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/filesystems-zfs.html
[09:30] <IPv6Freely> not that ill understand a single word of it
[09:33] <fink_> IPv6Freely: you should ask RandalSchwartz
[09:34] <IPv6Freely> fink_: about my broken system or about zfs in general?
[09:34] <fink_> yours
[09:39] <IPv6Freely> humph... i dont know whats the deal with my vps, i connect w/ chicken of the vnc and it appears to connect but i get no window
[09:39] <BeBoo_> love that program
[09:40] <BeBoo_> doesn't seem to work with VirtualBox though
[09:40] <BeBoo_> virtualbox's vnc that is
[09:41] <fink_> IPv6Freely: i like cotvnc too, but i've had better luck with jollysfastvnc w/arpnetworks
[09:42] <dxtr> IPv6Freely: I got that too earlier with tightvnc
[09:42] <dxtr> Just connect a couple of times
[09:43] <IPv6Freely> hmmmm
[09:43] *** BeBoo_ has quit IRC (Quit: ::: (tekN1X) :::)
[09:43] <IPv6Freely> frustrating
[09:44] <IPv6Freely> no luck :( fail
[09:45] <IPv6Freely> there we go.. shut down the vps and booted. now i can get in
[09:45] <IPv6Freely> RandalSchwartz: awake? :)
[09:48] <IPv6Freely> booted into fixit... says to chroot into my installation, which should just be "chroot /zboot" right?
[09:48] <IPv6Freely> zroot rather
[09:51] <nesta> hehe
[09:51] <nesta> you guys and your ZFS
[09:51] <nesta> I don't understand why you love heart ache so much
[09:51] <nesta> UFS rox
[09:52] <fink_> lol@ufs
[09:52] <fink_> zfs=future
[09:52] <nesta> yeah well guess what
[09:52] <nesta> it's present day
[09:52] <nesta> :)
[09:52] <nesta> the future is yet to come :P
[09:52] <DaCa> nesta: it's great, on a dedicated server, but to use it on a vps looks downright ridiculous to me
[09:52] <nesta> yes DaCa
[09:53] <fink_> DaCa: i'm using it now on root on an arp vps
[09:53] <IPv6Freely> yea i think im just gonna build a standard install
[09:53] <IPv6Freely> i dont think ill get anything out of it
[09:53] <fink_> zfs snapshot management rules
[09:53] <nesta> does ZFS just get installed to /root ?
[09:53] <nesta> I am kinda confused about that
[09:53] <nesta> what about multiple partitions
[09:53] *** dxtr has quit IRC (Changing host)
[09:53] *** dxtr has joined #arpnetworks
[09:53] <fink_> there's a tutorial on the freebsd wiki
[09:53] <IPv6Freely> no idea
[09:53] <IPv6Freely> http://wiki.freebsd.org/RootOnZFS/GPTZFSBoot
[09:53] <IPv6Freely> i just followed that
[09:54] <nesta> yeah I saw it but it does not really makew it clear about multiple paritions
[09:54] <nesta> unless I totally missed it hehe
[09:54] <nesta> whihc is likely
[09:54] <IPv6Freely> no clue.
[09:54] <nesta> dxtr: how was the re-install? great success?
[09:56] <dxtr> nesta: Yeah. Been doing stuff for a couple of hours now
[09:56] <nesta> ah okay, did you get all the seperate partitons okay?
[09:58] <IPv6Freely> hmm now i cant even do a default install
[09:58] <IPv6Freely> unable to find device node for /dev/ad0s1b in /dev! The creation of filesystems will be aborted
[09:59] <fink_> IPv6Freely: the first time i followed that tutorial; the second time i did this: http://anonsvn.h3q.com/projects/freebsd-patches/browser/manageBE/create-zfsboot-gpt_livecd.sh
[09:59] <fink_> that was with 8.0 release
[09:59] <fink_> it was pretty awesome
[10:00] <IPv6Freely> cool but that doesnt help me with either issue im having
[10:03] <nesta> whats your issue? you can't do an install?
[10:03] <nesta> just erase you disk man
[10:04] <IPv6Freely> well first the zfs was broken, then i tried wiping and starting over and it wont let me
[10:05] <IPv6Freely> how do i erase a disk? ive always just done that and partitions in sysinstall
[10:08] <IPv6Freely> I think... im just going to cancel my account.
[10:09] <nesta> sounds a bit hasty
[10:10] <nesta> they provide you with a perfect working installation
[10:10] <IPv6Freely> and i break it
[10:10] <nesta> people decide to do all sorts]
[10:10] <nesta> yeh
[10:10] <nesta> you can easily fix
[10:10] <nesta> :)
[10:10] <IPv6Freely> apparently not
[10:10] <nesta> are you booted to cd?
[10:10] <IPv6Freely> i was
[10:10] <nesta> well go back, why give up?
[10:10] <IPv6Freely> now im at a boot: prompt
[10:10] <nesta> the devil loves a trier
[10:11] <IPv6Freely> i have no idea how to reboot from here
[10:12] <nesta> log into your webpanel that Arp provides for you, IPv6Freely
[10:12] <IPv6Freely> ok
[10:12] <nesta> you can shut it down there
[10:12] <nesta> and then boot it
[10:12] <IPv6Freely> booting..
[10:13] <IPv6Freely> okay in the sysinstall main menu
[10:13] <nesta> okay
[10:13] <nesta> do a standard install
[10:13] <nesta> when you go to the disk part don't do anything just shout me :)
[10:13] <IPv6Freely> yeah im in that part
[10:15] <nesta> okay you select the drive yeh?
[10:15] <nesta> then it brings you to black screen
[10:15] <IPv6Freely> yea
[10:15] <IPv6Freely> the fdisk partition editor
[10:15] <nesta> see the middle line? it has 'freebsd' on it
[10:15] <nesta> press down arrow to get to it
[10:15] <nesta> then press d
[10:15] <nesta> then press a
[10:16] <IPv6Freely> i have "unused, unknown, unknown, unknown, unused"
[10:16] <nesta> ok
[10:16] <nesta> just delete
[10:16] <nesta> all
[10:16] <nesta> basically
[10:16] <nesta> go to all them
[10:16] <nesta> and press
[10:16] <nesta> d
[10:16] <nesta> once
[10:16] <IPv6Freely> k all unused. this is how i normally do it
[10:16] <nesta> tell me when you done that
[10:16] <nesta> k
[10:16] <IPv6Freely> done
[10:16] <nesta> press arrow back up to top
[10:16] <nesta> then press
[10:16] <nesta> a
[10:17] <IPv6Freely> yep
[10:17] <IPv6Freely> now i have ad0s1 freebsd
[10:17] <nesta> cool
[10:17] <nesta> go to that one
[10:17] <nesta> and press
[10:17] <nesta> s
[10:17] <IPv6Freely> done
[10:17] <nesta> press q
[10:17] <IPv6Freely> k
[10:17] <nesta> now choose yes for the bootmanager
[10:17] <nesta> like the top option is fine
[10:18] <IPv6Freely> ya
[10:18] <nesta> done?
[10:18] <nesta> k
[10:18] <nesta> now
[10:18] <nesta> what size is your hard drive
[10:18] <IPv6Freely> 20GB
[10:18] <IPv6Freely> i usually just do auto here too
[10:18] <nesta> is that what you would like to do?
[10:18] <IPv6Freely> sure why not
[10:19] <nesta> you can carry on now as normal
[10:19] <nesta> it should fdisk just fine
[10:19] <nesta> if not then you got me :)
[10:19] <nesta> yeh go with auto
[10:19] <nesta> just auto and then q to get out
[10:20] <IPv6Freely> auto and then q
[10:20] <IPv6Freely> now i was gonna use "user" here since im gonna cvsup src anyway
[10:20] <nesta> yeah sure
[10:21] <nesta> jsut get to the fdisk hehe
[10:21] <IPv6Freely> asking where to install from, i pick CD obviously
[10:21] <nesta> yep
[10:21] *** nakano_ is now known as nakano
[10:21] *** nakano is now known as nakano_
[10:21] *** nakano_ is now known as nakano
[10:21] <IPv6Freely> okay, the final yes/no window. "last chance, are you sure?"
[10:21] <nesta> YES
[10:21] <nesta> :D
[10:22] <IPv6Freely> same error as before
[10:22] * nesta crosses fingers
[10:22] <nesta> lol
[10:22] <nesta> wow okay ZFS really *is* evil
[10:22] <nesta> hey IPv6Freely don't worry when up_the_irons is here he will reinstall for you np :)
[10:22] <nesta> its part of the contract
[10:23] <IPv6Freely> http://a.imageshack.us/img401/2599/screenshot20100804at102.png
[10:23] <nesta> wowee
[10:23] <nesta> thats a funny one alright
[10:23] <IPv6Freely> *thumbs up*
[10:23] <nesta> I am sure there is some sensical explanation
[10:23] <nesta> okay, IPv6Freely .. ya got me.
[10:23] <nesta> :)
[10:23] <nesta> lol
[10:24] <IPv6Freely> had zfs, zfs broke, tried to install normally, and failsauce. Thats the summary of my last two days :P
[10:24] <nesta> I have thus far steared clear of it
[10:24] <nesta> for I knew all of this lay before me
[10:24] <nesta> :D
[10:24] <nesta> I heeded the warning calls of others lost in the wilderness
[10:24] <IPv6Freely> i made the mistake of trying to do a binary upgrade from 8.0 to 8.1, which apparently is broken if you use zfs
[10:25] <nesta> ah yes I never binary upgrade
[10:25] <IPv6Freely> id never done it before, i figured id try it
[10:25] <nesta> I always upgrade via fresh source and build it
[10:25] <nesta> its much more fun
[10:25] <nesta> freebsd-update is boring imho
[10:25] <IPv6Freely> me too, though i dont find it fun :P
[10:25] <nesta> :P
[10:25] <IPv6Freely> i didnt know binary upgrades even existed
[10:26] <IPv6Freely> until a couple days ago
[10:26] <nesta> ya gota make it fun hehe, dangerous kernel options etc..
[10:26] <IPv6Freely> ha. no.
[10:26] <IPv6Freely> im not a tinkerer
[10:26] <nesta> playing with MAC and ACL and ttoally breaking your shit
[10:26] <IPv6Freely> i want it to just work
[10:26] <nesta> like I did the other night
[10:26] <nesta> lol
[10:26] <IPv6Freely> i hate computers, i have zero interest
[10:26] <nesta> aww come on
[10:26] <nesta> thats not true clearly
[10:27] <IPv6Freely> no really... if i ever had to do sysadmin shit id go nuts
[10:27] <nesta> you have a FreeBSD vps
[10:27] <nesta> most 'normal' people
[10:27] <nesta> ]have NOidea what that is
[10:27] <IPv6Freely> the only reason i got a vps is because the shell i have gets rebooted every night and therefore sucks for screen+irssi.
[10:27] <nesta> rebooted every night?
[10:27] <nesta> dang
[10:27] <IPv6Freely> sometimes not
[10:28] <IPv6Freely> but when i log in and do screen -r and it says no screen to be resumed... man does that ever piss me off
[10:28] <nesta> but you don't care about computers
[10:28] <nesta> :P
[10:29] <IPv6Freely> i dont. i care about irc :P
[10:29] <nesta> hahaha
[10:29] <IPv6Freely> i want my irc and dont want to have to mess with shit to get it
[10:29] <IPv6Freely> a shell is also super useful for testing my networks from the outside
[10:34] <dxtr> Hmm...
[10:34] <IPv6Freely> but otherwise i hate computers. thats why i use a mac, because everything just works and i can spend my time doing my work rather than dicking with my OS
[10:35] <dxtr> Exactlt what is "cputime" in login.conf? I'm thinking it essentially says how long a proccess can run ("Use the cpu")
[10:39] *** Lefty has quit IRC (Remote host closed the connection)
[10:39] *** schmir has joined #arpnetworks
[10:41] *** koan has quit IRC (Read error: Connection reset by peer)
[10:41] *** koan has joined #arpnetworks
[10:41] *** fink_ has quit IRC (Quit: fink_)
[10:42] *** cedwards has quit IRC (Read error: Connection reset by peer)
[10:43] *** cedwards has joined #arpnetworks
[10:44] <ziyourenxiang> IPv6Freely, whatever i want to do on my VPS, i try first on a vbox instance on my laptop... if nothing else i get familiar with the procedure and screens.
[10:45] <ziyourenxiang> oh ok, didn't see that bit where you say you don't do sysadmin :-)
[10:46] <IPv6Freely> heh yea
[10:49] <awyeah> Next project: OpenVPN on my VPS.
[10:49] <awyeah> So I can have "local" network access to it.
[10:49] <IPv6Freely> That's probably pretty easy.
[10:50] <IPv6Freely> About to configure VPN today actually.
[10:50] <IPv6Freely> Though, its a Juniper SSL VPN appliance, so slightly different :P
[10:51] <awyeah> heheh yeah.
[10:51] <awyeah> purpose-build.
[10:51] <awyeah> built.
[10:51] <awyeah> Although, JunOS is based on FreeBSD I think.
[10:51] <IPv6Freely> sort of
[10:51] <IPv6Freely> It runs on top of freebsd
[10:52] <IPv6Freely> not really based on it
[10:56] *** schmir has quit IRC (Remote host closed the connection)
[11:00] <RandalSchwartz> heh... got an answer back from he.net about how to pass their test
[11:00] <RandalSchwartz> "remove ns1.he.net from your list"
[11:00] <RandalSchwartz> great. :)
[11:00] <up_the_irons> lol
[11:00] * up_the_irons anticipates a support ticket
[11:01] <up_the_irons> RandalSchwartz: want me to remove it from your rdns?  i happen to be in my name server right now...
[11:01] *** Lefty has joined #arpnetworks
[11:03] *** vtoms has joined #arpnetworks
[11:04] <dxtr> Hey, you guys can help me :D
[11:04] <dxtr> Exactly what is "cputime" in login.conf? I'm thinking it essentially says how long a proccess can run ("Use the cpu")
[11:05] <nesta> hiya up_the_irons :)
[11:05] * up_the_irons has no idea what cputime is
[11:06] <nesta> man login.conf
[11:06] <jdoe> dxtr: I believe that is the case.
[11:07] <jdoe> but it's not how long it can run, it's how long it can RUN
[11:07] <jdoe> ie actually be on the cpu.
[11:07] <bob^^> man login.conf says it's a limit on cputime
[11:07] <bob^^> ;)
[11:07] <jdoe> right.
[11:07] <nesta>  it actually says "CPU USage Limit"
[11:07] <nesta> :P
[11:08] <nesta> which does indeed explain it a bit more
[11:08] <RandalSchwartz> up_the_irons - I think it only matters on the forward
[11:08] <RandalSchwartz> so lemme see if that fixes it yet
[11:08] <up_the_irons> RandalSchwartz: roger
[11:08] <RandalSchwartz> since I'll put it back in after I get my badge. :)
[11:09] <nesta> any idea why a line like this won't work .. pass in quick log on $ext_if inet proto tcp from group { bakeneko } to $iplist port $ssh flags S/SA keep state
[11:09] <up_the_irons> heh
[11:09] <nesta> seems to be an issue with the group part of the rule
[11:10] <nesta> man page is useless and google is like 'what?'
[11:10] <nesta> >_<
[11:15] *** ziyourenxiang has quit IRC (Quit: ziyourenxiang)
[11:26] *** adxp has quit IRC (Read error: Connection reset by peer)
[11:26] *** adxp has joined #arpnetworks
[11:30] *** nakano is now known as nakano_
[11:35] *** nakano_ is now known as nakano
[11:37] *** BeBoo_ has joined #arpnetworks
[11:37] <BeBoo_> =]
[11:38] <nesta> hi BeBoo_ :)))
[11:38] <nesta> long time
[11:38] <BeBoo_> hey nesta, how are ya
[11:38] <nesta> super duper
[11:40] <BeBoo_> great to hear
[11:41] <BeBoo_> just waiting for my new vps to be created :D
[11:41] <BeBoo_> (impatiently)
[11:41] <nesta> niiiice
[11:41] <nesta> FreeBSD?
[11:41] <BeBoo_> lol
[11:41] <BeBoo_> of course
[11:41] <nesta> excellent
[11:41] <BeBoo_> yeah, element talked me into getting my own VPS since i keep taking his over
[11:42] <nesta> haha
[11:42] <BeBoo_> so i figured if i'm getting my own, i want a freebsd one, not linux
[11:42] <nesta> how is he doing?
[11:42] <nesta> hell yeh
[11:42] <BeBoo_> pretty good, we've both been busy busy
[11:42] <BeBoo_> his b'day is coming up
[11:42] <nesta> anything exciting?
[11:42] <nesta> ahhh
[11:42] <BeBoo_> we're goin to the shore
[11:43] <BeBoo_> not really exciting... bought a PS2 and a bunch of games we miss playing
[11:43] <BeBoo_> lol
[11:43] <RandalSchwartz> feh.  even after removing ns1.he.net from stonehenge.com, it's still failing
[11:50] <jdoe> so much for your global redundancy ;)
[11:50] <jdoe> bah. Another day, another "rdns still not setup properly"
[11:50] <jdoe> classless delegation is hard :(
[11:58] *** Jestre has quit IRC (Read error: Operation timed out)
[12:00] *** phlux_ is now known as phlux
[12:02] *** adxp has quit IRC (Read error: Connection reset by peer)
[12:02] *** adxp has joined #arpnetworks
[12:03] <RandalSchwartz> woo hoo... I'm a Sage! http://ipv6.he.net/certification/cert-main.php
[12:03] <RandalSchwartz> ... http://ipv6.he.net/certification/scoresheet.php?pass_name=merlyn
[12:04] <nesta> well done :)
[12:05] <IPv6Freely> woohoo
[12:05] <IPv6Freely> i dont know the systems side of ipv6 :(
[12:05] <nesta> its easy :)
[12:05] <nesta> well
[12:05] <nesta> actually
[12:06] <nesta> I retract that
[12:06] <IPv6Freely> i guess ill find out
[12:06] <nesta> lol
[12:06] <nesta> but adding your ipv6 aliases for arp with FreeBSD .. is easy
[12:06] <nesta> :)
[12:06] <nesta> # ipv6
[12:06] <nesta> ipv6_enable=YES
[12:06] <nesta> ipv6_defaultrouter="2607:f2f8:12c0::1"
[12:06] <nesta> #ipv6_ifconfig_em0="2607:f2f8:12c0::2 prefixlen 48"
[12:06] <nesta> #ipv6_ifconfig_em0_alias0="2607:f2f8:12c0::3 prefixlen 48"
[12:06] <nesta> #ipv6_ifconfig_em0_alias1="2607:f2f8:12c0::4 prefixlen 48"
[12:06] <nesta> just change to your info and put this in /etc/rc.conf
[12:06] <IPv6Freely> ask me to configure OSPFv3 over point to multipoint frame relay... no problem. Configure on a desktop? completely lost.
[12:06] <nesta> and reboot
[12:07] <IPv6Freely> yea i had v6 on my vps, but no idea how to be able to actually use it... i wasnt able to resove hostnames to ipv6 addresses and such
[12:08] <nesta> oh well you have to relegate your vps dns to some servers fo your choice
[12:08] <nesta> then email up_the_irons the info
[12:08] <nesta> the sets them
[12:09] <nesta> you make the AAAA records and set the ipv6 as above for the addresses you set the AAAA Records for
[12:09] <nesta> and ba da bing
[12:09] <nesta> the=he
[12:09] <IPv6Freely> yea im lost.
[12:09] <IPv6Freely> i dont understand dns
[12:09] <nesta> tell ya what
[12:10] <nesta> me either but I can help you
[12:10] <nesta> do this sir, make an account on afraid.org
[12:10] <nesta> sign up with them
[12:10] <nesta> don't have to pay just make an account
[12:10] <IPv6Freely> heh
[12:10] <IPv6Freely> URL blocked
[12:10] <nesta> ?
[12:10] <IPv6Freely> The URL that you are attempting to access is a potential security risk. Trend Micro Core Protection Module for Mac has blocked this URL in keeping with network security policy.
[12:10] <IPv6Freely> damn corp laptops
[12:10] <nesta> bhaha
[12:10] <nesta> ignore that
[12:10] <IPv6Freely> i cant
[12:10] <nesta> o
[12:11] <nesta> hmm
[12:11] <nesta> do
[12:11] <nesta> nm
[12:11] <IPv6Freely> heh
[12:11] <nesta> you can do it wiith he.net
[12:11] <IPv6Freely> dont worry about it
[12:11] <nesta> now I think
[12:11] <nesta> make an account there
[12:13] <IPv6Freely> on tunnelbroker.net?
[12:15] <IPv6Freely> okay account created, now logged in
[12:16] <nesta> sorry IPv6Freely
[12:16] <nesta> https://dns.he.net/
[12:16] <nesta> thats the one
[12:16] <nesta> prolly works across board
[12:16] <nesta> your login
[12:16] <nesta> anyway they do dns now
[12:16] <nesta> fpr ipv6
[12:16] <nesta> free
[12:16] <BeBoo_> IPv6Freely: why do you have AV on your Mac?
[12:16] <IPv6Freely> yep works
[12:16] <IPv6Freely> BeBoo_: because they put it there
[12:16] <nesta> so just give up_the_irons the info... ie. the he.net nameservers ip addresses
[12:17] <BeBoo_> "they"?
[12:17] <IPv6Freely> BeBoo_: work
[12:17] <BeBoo_> ah
[12:17] <BeBoo_> interesting
[12:17] <IPv6Freely> if its not there, i cant log into vpn
[12:17] <nesta> yeh fucking wierd
[12:17] <BeBoo_> silly IT dept
[12:17] <IPv6Freely> indeed
[12:17] <BeBoo_> Macs don't get virii
[12:17] <BeBoo_> :D
[12:17] * BeBoo_ hugs his MacBook Pro
[12:17] * IPv6Freely hugs his too
[12:18] <BeBoo_> hug yours too nesta
[12:18] <BeBoo_> do it now
[12:18] <IPv6Freely> i7 yummyness
[12:19] <IPv6Freely> nesta: so just ns1-5.he.net
[12:19] <IPv6Freely> ?
[12:19] <nesta> sure
[12:19] <nesta> email him all them
[12:19] <nesta> how many ever they have
[12:19] <BeBoo_> sorry to butt in but are you talking about dns mgmt for ipv6?
[12:19] <nesta> ask him to set them for your ipv6 dns
[12:19] <nesta> sure BeBoo_
[12:19] <BeBoo_> reverse or just NS?
[12:19] <IPv6Freely> no idrea
[12:19] <IPv6Freely> idea*
[12:19] <IPv6Freely> im just doing as im told
[12:20] <nesta> haha
[12:20] <nesta> wel I dunno how he.net
[12:20] <nesta> works
[12:20] <nesta> I am just trying to help
[12:20] <nesta> :X
[12:20] <BeBoo_> Element was telling me that up_the_irons doesn't have any DNS manager that I either have to do it myself or have him forward to somewhere
[12:20] <nesta> butr I know for sure
[12:20] <RandalSchwartz> oooh.  I get a t-shirt for being a sage
[12:20] <IPv6Freely> no worries. i think im gonna get food
[12:20] <nesta> nah BeBoo_ you can make tons of subs of afraid.org
[12:20] <nesta> or your own ones
[12:21] <nesta> it's eeeeasssssy
[12:21] <BeBoo_> you can't do reverse on afraid.org, can you?
[12:21] <BeBoo_> i want reverse
[12:21] *** arenlor has joined #arpnetworks
[12:22] <phlux> yeah you can
[12:22] <IPv6Freely> doesnt help that i dont know how to config ipv4 dns either
[12:22] <phlux> I do
[12:22] <arenlor> Anyone know how to place an upgrade order? Just email support@ or is there a form?
[12:24] *** adxp has quit IRC (Read error: Connection reset by peer)
[12:24] *** adxp has joined #arpnetworks
[12:25] <BeBoo_> I'm gonna have fun setting my vps up :D
[12:28] <nesta> hehe
[12:34] <BeBoo_> I'm blanking, what's this character called: ~
[12:34] <arenlor> Tilde?
[12:34] <BeBoo_> i thought thats what ` was
[12:34] <arenlor> I call that a back tick ^_^'
[12:35] <arenlor> http://en.wikipedia.org/wiki/Tilde
[12:35] <BeBoo_> yup, it's a tilde. thanks ^;
[12:35] <BeBoo_> ^^;
[12:46] <awyeah> woot!
[12:47] <arenlor> You mean \/\/|-|0()t don't you? ;)
[12:49] <awyeah> Sure.
[12:55] <RandalSchwartz> he.net will forward and reverse domains (including v6 records) for up to 25 domains, *and* they have 5 servers all over the world
[12:55] <RandalSchwartz> I'm moving everything away from afraid.org to he.net
[12:55] <RandalSchwartz> ... https://dns.he.net/
[12:56] <nesta> there ya go IPv6Freely ^
[12:57] <nesta> RandalSchwartz: whats the story with subdomaains on he.net ?
[12:57] <nesta> do they have free one like on afraid.org ?
[12:57] <RandalSchwartz> that question doesn't make sense to me
[12:57] <RandalSchwartz> you handle your own subdomains
[12:57] <RandalSchwartz> using your own master files
[12:58] <nesta> on afraid.orf there is tons of domains available for people to use
[12:58] <nesta> everyone knows this and uses them subsequently
[12:58] <nesta> you are probably aware
[12:58] <nesta> :)
[12:58] <nesta> yeah so am sasking of he.net has similar
[12:58] <nesta> I do not imagine so
[12:58] <RandalSchwartz> oh - those crappy little vanity domains?
[12:58] <RandalSchwartz> I wouldn't trust anything I couldn't re-register
[12:59] <nesta> right, those crappy lil vanity dmoains
[12:59] <nesta> domains
[12:59] <nesta> k
[12:59] <nesta> for IRC its not such a big deal to me
[12:59] <nesta> :)
[13:01] *** adxp has quit IRC (Read error: Connection reset by peer)
[13:01] *** adxp has joined #arpnetworks
[13:07] *** nesta has quit IRC (Remote host closed the connection)
[13:10] *** nesta has joined #arpnetworks
[13:16] *** arenlor has quit IRC (Quit: Leaving)
[13:17] *** Jestre has joined #arpnetworks
[13:22] *** _Ehtyar has quit IRC (Remote host closed the connection)
[13:22] *** _Ehtyar has joined #arpnetworks
[13:24] *** adxp has quit IRC (Read error: Connection reset by peer)
[13:34] *** nesta has quit IRC (Quit: leaving)
[13:35] *** nesta has joined #arpnetworks
[13:36] *** nesta has quit IRC (Client Quit)
[13:39] *** nesta has joined #arpnetworks
[13:41] <IPv6Freely> nesta: heh thanks, but i still have nfi about any of that :P
[13:42] <RandalSchwartz> time to learn!
[13:42] <RandalSchwartz> try http://lmgtfy.com/?q=dns+tutorial
[13:43] <nesta> hehe
[13:43] <IPv6Freely> heh
[13:43] <IPv6Freely> bleh
[13:43] <IPv6Freely> feh
[13:43] <IPv6Freely> and finally meh
[13:44] <RandalSchwartz> try http://lmgtfy.com/?q="words+that+end+in+'eh'"
[13:44] <IPv6Freely> lmgtfy is awesome
[13:44] <RandalSchwartz> oops, that broke
[13:44] <RandalSchwartz> bad-encoding
[13:46] * RandalSchwartz wanders off
[13:47] <IPv6Freely> fail
[13:47] <IPv6Freely> :P
[13:47] <IPv6Freely> up_the_irons: wake up :P
[13:50] *** BeBoo_ has quit IRC (Quit: BeBoo_)
[13:51] <RandalSchwartz> what do you need from him?
[13:52] <IPv6Freely> my vps to be rebuilt
[14:01] *** _Ehtyar has quit IRC (Quit: IRC is just multiplayer notepad)
[14:03] *** Ehtyar has joined #arpnetworks
[14:05] *** schmir has joined #arpnetworks
[14:13] *** vtoms has quit IRC (Quit: Leaving.)
[14:13] <RandalSchwartz> rebuilt?
[14:13] <RandalSchwartz> was it configured wrong?
[14:17] *** Lefty has quit IRC (Ping timeout: 265 seconds)
[14:18] <IPv6Freely> i broke it
[14:23] <jdoe> that happens.
[14:24] <IPv6Freely> indeed
[14:25] <IPv6Freely> but i cant even wipe it and start over anymore
[14:25] *** AndChat has joined #arpnetworks
[14:25] *** AndChat is now known as Guest30393
[14:25] *** Guest30393 is now known as gregdolley
[14:27] <nesta> ah yes you can :)
[14:27] <awyeah> woot!
[14:27] <awyeah> I now have VPN tunnels from my apartment's router to my VPS, my parents' router to my VPS, and it's fully routed.
[14:27] <awyeah> So next time my mom can't do something on her computer, it's just a VNC click away ;)
[14:28] <nesta> nice one awyeah
[14:28] <nesta> that sounds cool
[14:28] <bob^^> i do that with my parents too :)
[14:28] <bob^^> it is *very* useful
[14:28] <bob^^> you will not regret the time spent setting it up awyeah ;D
[14:28] <awyeah> heh
[14:28] <awyeah> It wasn't so bad.
[14:28] <awyeah> Actually the hardest part was getting DD-WRT to listen to me.
[14:29] <awyeah> Because once I got it set up, the openvpn client kept dying, so I had to figure out how to make it restart properly.
[14:29] <bob^^> i've just started using dd-wrt here too
[14:29] <bob^^> not got it terminating my VPNs yet though
[14:29] <bob^^> they still arrive in to a freebsd box that sits underneath my router :)
[14:29] <bob^^> my aim is to get it all onto the dd-wrt though and save some power ;)
[14:30] <awyeah> Yeah, I don't use my BSD box here for any of that stuff either, it's just a local server
[14:30] <awyeah> well... it also handles my IPv6 tunnel to he.
[14:30] <awyeah> but no other internet routing.
[14:32] *** gregdolley has quit IRC (Ping timeout: 240 seconds)
[14:33] <IPv6Freely> nesta: heh no i cant... we already tried :P
[14:33] <RandalSchwartz> yeah IPv6Freely - you can boot from a totally wiped disk
[14:33] <RandalSchwartz> just use the VNC console
[14:34] <RandalSchwartz> in fact, that's the first thing I do when I get a new VPS here.  Wipe the disk entirely.
[14:35] <RandalSchwartz> just go to the VNC console, hit F12 during the bios boot, and select the DVD
[14:39] <IPv6Freely> cant do that man
[14:39] <IPv6Freely> i tried wiping it
[14:39] <IPv6Freely> you know how it says "are you sure you want to do this?" right at the end of the sysinstall process?
[14:40] <IPv6Freely> When i select YES, I get this: http://a.imageshack.us/img401/2599/screenshot20100804at102.png
[14:40] <nesta> IPv6Freely: can't what?
[14:40] <IPv6Freely> cant wipe it and start over. up_the_irons needs to fix it :P
[14:41] <nesta> well as I said.. it can be fixed. :)
[14:41] <IPv6Freely> yea, just needs somebody else to fix it :P
[14:41] <nesta> I told you that earlier. ;)
[14:41] <IPv6Freely> i know :)
[14:44] <RandalSchwartz> just use the fixit shell
[14:44] <RandalSchwartz> and wipe it diretly
[14:44] <RandalSchwartz> that's pretty easy
[14:44] <IPv6Freely> oh? do tell :)
[14:45] <RandalSchwartz> try http://lmgtfy.com/?q=freebsd+fixit+shell
[14:45] <IPv6Freely> well thats not very helpful
[14:45] <RandalSchwartz> sure it is
[14:45] <RandalSchwartz> you're gonna have to learn some day
[14:45] <RandalSchwartz> get into the fixit shell
[14:46] <RandalSchwartz> use gpart to reconfig the disk
[14:46] <RandalSchwartz> fixit shell is in the first menu of sysinstall
[14:46] <RandalSchwartz> there.  everything you need, handed to you on a platter.
[14:46] <RandalSchwartz> happy?
[14:46] <IPv6Freely> ill have to go find out what gpart is
[14:47] <RandalSchwartz> yes. "man gpart"
[14:47] <RandalSchwartz> So. Very. Hard.
[14:47] *** schmir has quit IRC (Remote host closed the connection)
[14:47] <IPv6Freely> unable to find the file /etc/manpath.config
[14:47] <RandalSchwartz> I bet there's even some tutorials on THAT if you google
[14:47] <RandalSchwartz> or even sections of the handbook
[14:47] <IPv6Freely> im sure there is
[14:48] <IPv6Freely> none of which i will understand
[14:48] <RandalSchwartz> learn or hire.
[14:48] <IPv6Freely> ill just have up_the_irons fix it
[14:48] <RandalSchwartz> pay with your time, or your money
[14:48] <nesta> it's amazing. the plethora of info on the net. it's ... almost like it .. was designed for .. that?
[14:48] <nesta> :P
[14:48] <RandalSchwartz> and I hope up_the_irons charges you consulting for that.
[14:48] <RandalSchwartz> that's Above And Beyond
[14:48] <IPv6Freely> to restore my vps to a default image?
[14:48] <RandalSchwartz> he keeps the prices low because he can keep his labor to a minimum
[14:48] <up_the_irons> http://support.arpnetworks.com/faqs/vps/what-is-supported
[14:49] <IPv6Freely> im aware
[14:49] <IPv6Freely> up_the_irons: ive seen it.
[14:49] <up_the_irons> i will reset a vps back to "factory defaults" if requested
[14:49] <IPv6Freely> up_the_irons: nesta said earlier that youd restore it
[14:49] <RandalSchwartz> he may give you this one as a freebie. :)
[14:49] <IPv6Freely> im just going to cancel
[14:49] <up_the_irons> RandalSchwartz: factory default resets are actually free.
[14:50] <RandalSchwartz> I suppose, because it's just a button push or two.
[14:50] <up_the_irons> nobody has really come back and wanted it done ten times or anything, so i kinda don't care
[14:50] <IPv6Freely> up_the_irons: can you just kill my account?
[14:50] <up_the_irons> IPv6Freely: if you want to cancel, send an email to support@arpnetworks.com with your vps uuid and it'll be taken care of
[14:51] <IPv6Freely> thanks
[14:51] <up_the_irons> np
[14:52] <IPv6Freely> it was worth a try, i guess vps isnt for me
[14:53] <IPv6Freely> thanks anyway up_the_irons , you had good prices. i appreciate the help.
[14:54] <up_the_irons> IPv6Freely: no problem
[14:55] <IPv6Freely> cancellation email sent
[14:58] *** IPv6Freely has left 
[15:03] <awyeah> never read that URL before.
[15:03] <awyeah> So, do you guys add custom contacts to nagios? Like, if i'd like to be notified if it loses ping?
[15:04] <up_the_irons> no, we don't, just staff gets the email
[15:04] <awyeah> gotcha
[15:04] <RandalSchwartz> "thy rod and thy staff, they comfort me" :)
[15:04] <awyeah> I suppose I should probably be monitoring it on my own anyway ;)
[15:05] <awyeah> oh, up_the_irons, that reminds me, I need to file a support ticket to validate my reverse DNS delegation
[15:05] <awyeah> I spent hours yesterday trying to figure it out and I Still don't have things working
[15:05] <RandalSchwartz> I kept telling you, paste it to me. :)
[15:06] <awyeah> i'm pretty confident that my nameserver response authoritatively to those requests
[15:06] <up_the_irons> awyeah: just so you know, I will show you what I have in my DNS for your delegation, and I will make any changes requested.  But as for your setup, you're on your own :)
[15:07] <awyeah> Understood.  I just want to validate what you have.  I'm sure it's right, but I need to do it for piece of mind ;)
[15:07] <up_the_irons> yeah i understand
[15:09] <awyeah> Randal: I don't want to paste all that crap in the channel...
[15:11] <RandalSchwartz> try http://lmgtfy.com/?q=pastebin
[15:14] <awyeah> I love lmgtfy.com.  I use that on my boss all the time.
[15:15] <awyeah> okay so I'm going to use the ipv4 stuff first, it's also not working... and it's easier to remember stuff.
[15:16] <awyeah> http://pastebin.com/a8YQUzen
[15:18] <RandalSchwartz> 2010 08 03 *001*???
[15:18] <RandalSchwartz> I think your int is too big
[15:18] <RandalSchwartz> I've always used just "01" "02" "03" in that last piece
[15:19] <RandalSchwartz> RFC1912 section 2.2
[15:19] <RandalSchwartz> that might be why your nameserver doesn't consider itself an authority :)
[15:20] <RandalSchwartz> did you check the errors when you reload or restart?
[15:20] * RandalSchwartz waits for awyeah to catch up
[15:21] *** Lefty has joined #arpnetworks
[15:22] <RandalSchwartz> awyeah?
[15:22] <awyeah> hmmm
[15:22] <awyeah> no errors.
[15:22] <RandalSchwartz> so, first, fix that though
[15:22] <awyeah> but i'll reduce the size of the serial. stand by.
[15:22] <RandalSchwartz> 10^11 > 2^31 :)
[15:23] <RandalSchwartz> there's a reason they chose YYYYMMDDss
[15:23] <bob^^> no one chose that though
[15:23] <awyeah> okay, reload
[15:23] <bob^^> you can use 1, 2, 3, 4 if you like ;)
[15:23] <RandalSchwartz> bob - see RFC referenced above
[15:23] <RandalSchwartz> it *is* the recommendation
[15:23] <bob^^> it's just easier to use YYYYMMDDxx to prevent the serial rolling back
[15:23] <bob^^> it's a recommendation
[15:23] <bob^^> not a requirement
[15:23] <RandalSchwartz> yup
[15:24] <RandalSchwartz> I didn't say requirement
[15:24] <RandalSchwartz> you can *choose* a recommendation :)
[15:24] <bob^^> pfft ;)
[15:24] <RandalSchwartz> SHOULD not MUST :)
[15:24] <bob^^> having 001 at the will probably cause it to roll over though i'd have thought... i can't imagine BIND liking that much ;)
[15:24] <bob^^> *at the end
[15:26] <awyeah> you know what...
[15:26] <awyeah> that may be why I see unrelated serial numbers in my logs.
[15:26] <RandalSchwartz> heh!
[15:26] <RandalSchwartz> yeah, 2^31 overflow
[15:26] <bob^^> hehe
[15:26] <RandalSchwartz> that'll do nasty things
[15:26] <bob^^> yup
[15:26] <RandalSchwartz> I found that within 30 seconds
[15:26] <RandalSchwartz> you could have had those 30 seconds yesterday :)
[15:26] <RandalSchwartz> but no, you didn't want to paste. :(
[15:27] <RandalSchwartz> next time, trust me.
[15:27] <RandalSchwartz> New Pairs Of Eyes Are Always Better
[15:27] <bob^^> true that :)
[15:27] <RandalSchwartz> especially if it's "spooky fail"
[15:27] <awyeah> well, let's see if it works now...
[15:27] <RandalSchwartz> it might not
[15:27] <RandalSchwartz> your slaves might need kicking
[15:27] <RandalSchwartz> because you've done weird serial things
[15:28] <RandalSchwartz> there *is* a technique to force a reset of serial no matter what it is
[15:28] <RandalSchwartz> but you didn't do that just now. :)
[15:28] <RandalSchwartz> and it takes 2 * TTL times to do it
[15:29] <RandalSchwartz> hopefully your TTL is small-ish
[15:30] <awyeah> I just forced my secondary to reload it, twisted4life allows that... stand by
[15:30] <RandalSchwartz> eww.  twisted?  I used them a long time ago
[15:30] <RandalSchwartz> moved to afraid about six months ago
[15:30] <RandalSchwartz> you realize twisted is in aspac space, right?
[15:30] <awyeah> I think I only use them for my reverse stuff
[15:30] <RandalSchwartz> apnic space
[15:30] <awyeah> Fine by me
[15:30] <RandalSchwartz> whatever the name is
[15:33] <RandalSchwartz> interesting - dig +nssearch 173.125.206.in-addr.arpa.
[15:33] <RandalSchwartz> still says arp's serving it
[15:33] <awyeah> hehehe
[15:33] <awyeah> Aug  4 15:25:28 excelsior named[43094]: zone 173.125.206.IN-ADDR.ARPA/IN: zone serial has gone backwards
[15:34] <RandalSchwartz> yeah - you're toasty for a while
[15:35] <RandalSchwartz> at least twisted has the same SOA
[15:35] <awyeah> okay.  secondary's got it.
[15:35] <RandalSchwartz> so in this case, you're mostly there.
[15:37] <RandalSchwartz> that "dig" is odd though
[15:37] <RandalSchwartz> I'd get that fixed first
[15:37] <RandalSchwartz> looks like arp isn't delegating it yet
[15:40] <awyeah> if you do @206.125.173.26 on your queries, you do get authoritative responses.
[15:42] <RandalSchwartz> so the problem may be with arp
[15:42] <up_the_irons> $ dig +trace 206.125.173.26
[15:42] <up_the_irons> ...
[15:42] <up_the_irons> 26.173.125.206.in-addr.arpa. 3600 IN    CNAME   26.24-31.173.125.206.in-addr.arpa.
[15:42] <up_the_irons> 24-31.173.125.206.in-addr.arpa. 3600 IN NS      206.125.173.26.
[15:42] <up_the_irons> 24-31.173.125.206.in-addr.arpa. 3600 IN NS      202.157.182.142.
[15:42] <up_the_irons> ;; Received 125 bytes from 208.79.89.9#53(ns2.arpnetworks.com) in 0 ms
[15:43] <up_the_irons> does that look right?
[15:43] <up_the_irons> the only thing that makes me scratch my head is that the delegation NS are IPs, not hostnames
[15:43] <up_the_irons> not sure if that matters
[15:44] <awyeah> probably not
[15:44] <awyeah> anyway I need to eat dinner now, I gotta feed the beast
[15:44] <awyeah> i'll be back in a bit.
[17:02] *** ziyourenxiang has joined #arpnetworks
[17:23] <jdoe> up_the_irons: ping.
[17:24] <jdoe> up_the_irons: so I've got xmonad and I'm slowly making peace with the key bindings... except I can't make Evolution behave.
[17:24] <jdoe> I can shift it to its own workspace, but I can't identify the various windows.
[17:24] <jdoe> ie I want to have the main window fullscreened and everything else floating.
[17:25] <jdoe> ... except evolution doesn't give me any useful info for differentiating them :/
[17:26] <up_the_irons> jdoe: it may be difficult to enumerate every window.  you can find the window class names with 'xprop | grep WM_CLASS' and then click on the window.  but if i were doing what you just described, i would tell xmonad to always float Evolution as a whole.  I do this with GNUCash, b/c of all the little popup windows
[17:27] <jdoe> having to maximize it myself kinda bugs me though.
[17:28] <jdoe> but if that's the only way, shrug.
[17:28] <jdoe> I dunno, it's a little irritating that they consider preferences a dialog window, but not compose etc.
[17:29] <up_the_irons> jdoe: what is a dialog and what is not is somewhat a mystery to me.  most of the time, it "works".  if I maximize gnucash, it opens up maximzed again.  evolution doesn't do the same?
[17:31] *** BeBoo_ has joined #arpnetworks
[17:31] <jdoe> haven't tried floating it yet.
[17:31] <jdoe> I don't remember how it opened before.
[17:31] <jdoe> ... works nicely for pidgin though.
[17:32] <jdoe> stole that example xmonad.hs with split 6:1 screen for conversations + buddy list
[17:32] <up_the_irons> you have pidgin floated?
[17:32] <up_the_irons> oh i c
[17:32] <up_the_irons> shit, i need to look at that.. ;)
[17:34] * BeBoo_ dances around the channel
[17:34] <jdoe> no, pidgin isn't floated
[17:34] <jdoe> the screen is split 6:1, 6/7ths for the chat window, 1/7th for the buddy list.
[17:35] <jdoe> dedicated im workspace.
[17:35] <jdoe> the only stuff that's explicitly floated right now is firefox dialogs.
[17:35] <up_the_irons> oh i c
[17:35] <up_the_irons> what class is firefox dialogs?  i never tried to float those..
[17:35] <jdoe> they're actually dialogs.
[17:36] <up_the_irons> ah
[17:36] <jdoe> ... so if you're just floating those anyway, shrug.
[17:36] <up_the_irons> some end up floating, some don't.  prefs doesn't, but most others do
[17:39] <RandalSchwartz> on OSX, the "green" button means only "toggle between two strange sizes"
[17:39] <RandalSchwartz> there's no "maximize" buton, and there should be.
[17:39] <RandalSchwartz> green is like "change the size somewhat, and move around so you have to find the green button again"
[17:40] <BeBoo_> RandalSchwartz: It's not really a maximize button, it's a "fit to content" button
[17:40] <up_the_irons> first size: the size that it is set to open up as, second size: the size that "optimally" fits the screen
[17:40] <up_the_irons> given what is around it
[17:40] <RandalSchwartz> Well - in practice, it never does what I want
[17:40] <up_the_irons> haha
[17:40] <RandalSchwartz> I want a maximize button
[17:40] <BeBoo_> then send an email to steve mobs
[17:40] <BeBoo_> err jobs ;p
[17:41] <RandalSchwartz> it's the "randomize this window for no damn reason" button most of the time
[17:43] * BeBoo_ pokes up_the_irons 
[18:01] <DaCa> up_the_irons: xprop will tell you which class
[18:18] <jdoe> RandalSchwartz: the maximize button varies depending on app. Firefox behaves as you'd expect. Safari tries to have maximize "fit all the user content and no bigger"
[18:24] <BeBoo_> nesta cat
[18:24] *** fink_ has joined #arpnetworks
[18:46] *** ziyourenxiang has quit IRC (Quit: ziyourenxiang)
[18:54] *** heavysixer has quit IRC (Quit: heavysixer)
[18:57] *** heavysixer has joined #arpnetworks
[18:57] *** ChanServ sets mode: +o heavysixer
[19:01] *** heavysixer has quit IRC (Client Quit)
[19:45] <jdoe> RandalSchwartz: I agree though, the behaviour of the default osx apps is... crazy. Completely unintuitive.
[19:53] <jdoe> up_the_irons: lol the best suggestion from #xmonad was a secondary haskell script that stringified the window icon and calling that from xmonad.hs. Terrifying.
[20:52] *** fink_ has quit IRC (Quit: fink_)
[21:18] *** BeBoo_ has quit IRC (Quit: BeBoo_)
[22:49] *** IPv6Freely has joined #arpnetworks
[23:05] *** nakano is now known as nakano_