Abnyone here? Anyone* Uhm How the hell do I partition my new disk I had added to my VPS? fdisk fails wait http://pastebin.ca/1954098 There's the error disklabel? bsdlabel -B -w /dev/ad1 auto <- Like that according to the handbook(?) I could use sysinstall though oh, right Silly me :) Securelevel and stuff :D I should b able to boot the CD, right? And partition from it yeah, but you shuold be able to partition from a live system too I don't think that when I've got securelevel set to 2 oh, possibly not i don't think you can mount with securelevel=2 you could adjust the securelevel and reboot or, as you say, do it from the installer I think I'll change the securelevel so I can reboot, partition AND mount it .P Or I'll have to reboot twice indeed :) anyway. brb then :) 'lo Fuck yeah I've put my jails on a different disk now :D RandalSchwartz: I take it you didn't open your 4.4BSD design book to write the insulation article? ;-) insulation? your last tweet roughly 30 mins ago http://post.ly/11myb oh - "insulates you" I was thinking you were being funny on the word "installation" yes, I sometimes get the BSD lineage wrong i havent ever done jails before on freebsd IPv6Free1y: you'e missing out. ezjail makes it mostly easy what does it gain me? and then you get smarter and stop using that :) IPv6Free1y - it's a full chroot environment sorry... that means nothing to me :P if you run your webserver in a jail, even if someone breaks out of it, they can only mess with tthe webserver think of it as a virtual server "inside" your virtual serer RandalSchwartz: I have to look it up, I wasn't involved at all until roughly a year after OpenBSD was started, slackware then debian was my thing for the first 5+ years of my unix exposure IPv6Free1y: added security in the event of an exploit? oh,*shrug* just a belt to add to your suspenders. :) yea i guess anybody can cut through duct tape with a knife cool i guess, its never something id thought about Man, this new Verizon MiFi is amazing! http://dev.inetpro.org/pastebin/193 I could even run voice over that kinda connection! Check out these BLAZING fast speeds! http://www.speedtest.net/result/977770227.png that resembles my speed over a bluetooth connection to my tmobile blackberry hitting the net at EDGE speeds Indeed. It's a great replacement for home Internet access isn't it? I'm on the lookout for a cheap N900 since my brother got 5mbit/s down via tmobile 3g on his .. and as a bonus it can do IPv6 if you signup for the tmobile public beta of IPv6 ;-) Or at least, since the company I work for decided that rather than paying for my Internet connection at home, they'd be providing me with this. yeouch. so are you permitted to get cost equivalent service elsewhere? Nope. They said "sorry, we're not reimbursing your Intenet anymore, so we're sending you this Verizon MiFi" guess you get to use it whenever work related issues come up and make it clear to them it is the reason you can't handle things in a time efficient manner anymore ;-) They used to reimburse up to $50 of our Internet bill (didnt quite cover mine, but thats okay), and $100 of a cellular bill. They did away with both of those starting Oct 1 The cell thing isn't a huge deal, since they just moved my personal ATT account to their corp account, which doesnt incur a termination fee or anything Though I asked them how theyre gonna handle my international calls and texts.. they said "oh, do you do a lot of international business?" "umm yea, my family and all my friends are international" ... this is why the reimbursement model is the absolute best way to handle this stuff... let me pick my plan. I *LOVE* this company, but this is the first seriously stupid thing they've done since I came on board. well, you know, family and personal calls being international typically is not a company expense, unless they specifically rellocated you into antartica or somesuch nor was it when i was paying my own cell bill oh... heh they want me to move my phone onto their corp plan? fine... but now my personal calls are YOUR problem, not mine. you might find paying for decent inet and doing voip is cheaper for international calls than paying a mobile phone company to do international calling $.05/min to switzerland for example Sure, but now its them paying for it, not me. It WAS me, and I was fine with that. Now that they are requiring me to use their corporate plan, they just better not bitch about my usage patterns. Theyre shooting themselves in the foot. This MiFi plan is capped at 5GB. I intend to make sure I use at least twice that every month. Maybe they'll get the hint indeed I'm just bitching about a rather less-than-logical business decision on their part...sorry. Now, to write some SRX configs... Hmm My jail doesn't seem to be accessible from the outside world is that good? No My DNS server is there My firewall is allowing it Hmm And it's only Ipv4 that isn't working :p try to access 206.125.172.30 and resolve ns1.dxtr.cc With v4 and v6 WHY!? err disregard that "with v4 and v6" :P hmm I just don't get it if all else fails doublecheck your netmasks. had someone have me debug their system that was accessable from everywhere but a few specific places and it turns out they forgot to specify a netmask and an /8 was not their intention of a local ethernet segment in v4 land inet 206.125.172.30 netmask 0xfffffff0 broadcast 206.125.172.31 I didn't ask you to paste it here, just to doublecheck. you know. like think about and verify they make sense? ;-) I don't know what your proper netmask should be, only you do ;-) Yeah, I know :P But can you access that IP or is it just me? Because I seriously can't find anything wrong I can ping it from here I can access it from my host But I can't access it from home define "access" .. ping or http or ? DNS :p I said that a couple of line sup lines up* $ host 206.125.172.30 206.125.172.30 Using domain server: Name: 206.125.172.30 Address: 206.125.172.30#53 Aliases: Host 30.172.125.206.in-addr.arpa not found: 2(SERVFAIL) at least it returned SERVFAIL so I guess that it is reachable Err toddf: Uhm, seems to work if you ask me So... Why isn't nsd logging? I think I might have foudn one error up_the_irons! :) Would it be possible to use a third party as backup DNS for my IP subnet? :D like freedns.afraid.org? I think I'll try I've been using he.net if you have a tunnel with them, they do free backup DNS and you can't get much better than 5 DNS servers around the world :) RandalSchwartz: I'm sing sixxs for my ipv6 tunneling. But I meant for my ipv4 subnet at arpnetworks :P I've only got one server - but I still want to manage my own DNS so either I can have my backup at arpnetworks or I'll be forced to use some third party dxtr - I got a free tunnel from he.net for home, but once you're in the free program, you can have up to 25 forward and reverse domains hosted with them... unrelatd to tunnel RandalSchwartz: Shit damn yes... check out the "host -t ns stonehenge.com", for example and consider those servers are on very fast machines and nets all over the world. :) Where do I sign up? What's the criteria? tunnelbroker.net you have to want it. that's about it. :) hi all, i just dropped an email to preorder but since there's an irc channel i thought i'd drop in greetings, future arp resident! They're sold out again? :P demand exceeds supply thanks RandalSchwartz, currently have a dedicated box with meganetserve but its a huge box that underloaded 0.01, 0.03, 0.03 so time to downsize a bit and save some money VPS are like potato chips though. once you have one, you'll want more. :) I'm up to 4 now with ARP RandalSchwartz: how easy is a future upgrade. I'm guessing its just a call or email to shutdown the vps, icnrease resources and boot again it's like that, yeah though additional disk obviously needs to be mounted somewhere else depends on the filesystem will be freebsd box the host can extend the disk size without disturbing the contents freebsd has many fs so if the guest os can do something about that (most can), then can still be one disk ufs2 i'd imagine I don't recognize ufs2 ffs ? yeah, I think it's ffs yep or zfs, which is what I'm using you addressing some big disks there? RandalSchwartz: I think I'll use that instead then you can grow ufs2, which is cool, never knew that before i presume the routes to europe are good? RandalSchwartz: What should I use for reverse backup? "slave" or "reverse"? :P are you hosting it on your arp box, and you just want he to slave it? as in, where are the master records? "reverse" means the master records are on he.net "slave" means the master records are elsehwere Right so the three choices are domain and reverse (both mastered on he.net) and slave (either a domain or reverse hosted elsewhere) s/hosted/mastered/ Awesome Thank you .) RandalSchwartz: So I will add ns1 through ns5.he.net as backup? RandalSchwartz: I will probably use it as a backup for my domains too :D hey guys any admin here? I'd say no :) haha andrewnemeth - well, we're all admins on some level and users on another pf I just have an easy question you have a pf question? are you really out of stock now? I just need a small vps me personally? no well but yes, I think ARP is backordere again and how about you?:) victims of their own success RandalSchwartz: gosh I really misread that 'backordere' lol andrewnemeth: wait until tonight (PST) when I take off the sold out sign k up_the_irons! are there definitely more vps slots opening up tonight yeah? that's what is said on the website yep, wanted to try and confirm but and was wondering if it was going to be tonight or tomorrow night you're in some kind of hurry? yep hopefuly it all works out for you then :) i have a limited period of time to move all my old stuff from my current server before i enter another billing cycle hope so too what host are you moving from? meganetserve, the box i have there is way to big for my needs any idea how many ip4 addresses come with each vps? 1 or 2 or more? heda: order before provisioning starts .. which is nowish to early am .. and you'll get your vps setup by tomorrow; each vps comes with with 1 ip until you get multiple vps's, just specify what you need in the comments and it'll get provisioned ;-) toddf: thanks, yeah i mailed the preorder address earlier alright, 1 is cool, i can make do with 1 for now ip address that is note you get a /48 of IPv6 addresses but anyway toddf: yeah thats pretty cool, my current provider doesn't give me any ipv6 at all so it'll be nice to get a proper play around with that up_the_irons: Stop being lazy :) hey gus admin here?