↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |
Who | What | When | |
---|---|---|---|
Sunil | anyone tried upgrading to OpenBSD 4.8? | [01:10] | |
*** | LT has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection) | [01:18] | |
..... (idle for 20mn) | |||
Ehtyar has joined #arpnetworks
schmir has joined #arpnetworks | [01:40] | ||
............. (idle for 1h1mn) | |||
Sunil has quit IRC (Quit: leaving) | [02:41] | ||
.......................... (idle for 2h8mn) | |||
schmir has quit IRC (Remote host closed the connection) | [04:49] | ||
.... (idle for 19mn) | |||
schmir has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection) | [05:08] | ||
..... (idle for 24mn) | |||
nesta has quit IRC (Ping timeout: 265 seconds)
nesta has joined #arpnetworks tuv has quit IRC (Read error: Connection reset by peer) tuv has joined #arpnetworks | [05:36] | ||
......... (idle for 40mn) | |||
toddf | Sunil: 4.8 and current works fine, just recall to 'disable mpbios' | [06:21] | |
...... (idle for 27mn) | |||
*** | kitkatbar has joined #arpnetworks | [06:48] | |
kitkatbar | i was wondering, if i can nslookup -type=aaaa six.nullbnc.com from my localbox but ping6 six.nullbnc.com on my local box says "network is unreachable", however, it ping6 fine on my server and i can connect to irc with it... something must be configured incorrectly :(
i'm running debian, any hints or help would be nice :D | [06:50] | |
*** | andrewnemeth has joined #arpnetworks | [06:52] | |
andrewnemeth | hey guys
need some help with my freebsd how can I resize the root partition? | [06:52] | |
.... (idle for 16mn) | |||
*** | ziyourenxiang has joined #arpnetworks | [07:08] | |
kitkatbar | ahh looks like my localhost doesn't support ipv6 at home, no wonder i got network is unreachable
:> | [07:18] | |
*** | andrewnemeth has quit IRC (Quit: andrewnemeth) | [07:22] | |
zxvff_ | ipv6 is nice
i hear it is the future of the internet!! | [07:23] | |
kitkatbar | ye
can you see if you can "ping6 six.nullbnc.com" ? | [07:23] | |
nvm | [07:36] | ||
*** | BarberRonny has quit IRC (Quit: leaving)
BarberRonny has joined #arpnetworks BarberRonny has quit IRC (Client Quit) kitkatbar has quit IRC (Quit: leaving) | [07:38] | |
BarberRonny has joined #arpnetworks
BarberRonny has quit IRC (Client Quit) BarberRonny has joined #arpnetworks BarberRonny has quit IRC (Client Quit) BarberRonny has joined #arpnetworks BarberRonny has quit IRC (Client Quit) | [07:47] | ||
mhoran | up_the_irons: How do you share your libvirt config files? Storage, network, VM config, etc across your host servers?
I was considering using git as we do with Xen but that seems to be frowned upon. | [07:55] | |
*** | BarberRonny has joined #arpnetworks | [07:56] | |
ww | mhoran: iscsi?
ww hides | [08:00] | |
mhoran | Sure, we use iSCSI for block devices, but /etc/libvirt is what I want to share.
Really, all I need shared is /etc/libvirt/storage, since that's where my storage pools live (which are iSCSI). But to migrate a domain that lives on an iSCSI block devices, the pool must first exist and be started on the remote end, which isn't always the case. So really, libvirt should just have better support for migrating iSCSI pools. And should start them up automatically when a domain is migrated (though I see why it doesn't do that). So in the meantime I have to find a way to share my storage pools, and to do that I've checked everything in /etc/libvirt save qemu dir into git. | [08:01] | |
ww | mhoran: i was being facetious...
... i've not actually looked into the details of qemu much | [08:10] | |
mhoran | So I think I'm just going to write a wrapper around iscsiadm that automatically creates the poolsfor the available targets ... that seems the best way to do this ... and then let libvirt migrate the domain configs when it wants to.
Unless up_the_irons has a better option for me. :) | [08:16] | |
toddf | mhoran: up_the_irons doesn't do auto distribution, from what I can see it is a manual migration process | [08:19] | |
.... (idle for 19mn) | |||
*** | schmir has joined #arpnetworks | [08:38] | |
toddf | and he doesn't do iscsi, he has found physical disks on the servers to be more reliable | [08:39] | |
nesta | toddf: do you know what OS is used to host the virtual machines? | [08:39] | |
mhoran | Ubuntu. | [08:39] | |
toddf | nesta: Linux is all I need to know. ;-) | [08:40] | |
nesta | hehe
nesta prefers a good ole BSD | [08:40] | |
mhoran | I've found iSCSI to be just as reliable as physical disks, it's just more expensive. Though our iSCSI vendor blows.
It's nice for e.g. live migration. | [08:40] | |
toddf | nesta: a good ole BSD doesn't do kvm just yet | [08:40] | |
mhoran | Replication and failover as well. | [08:40] | |
nesta | toddf: I imagine not :) | [08:41] | |
toddf | mhoran: check the old logs about iscsi | [08:41] | |
mhoran | I know, just stating my opinion. | [08:41] | |
toddf | aka regarding up_the_irons experiences with it | [08:42] | |
mhoran | Live migration (or even migrating betwen hosts -- what about failed disks) just seems so impossible without iSCSI. Granted, we don't currently have live migration even with Xen, but we do have iSCSI backed storage and can easily move VMs between host servers with no data loss.
Our iSCSI infrastructure is also fully redundant, we've got N+1 replication and then RAID-5 on each cluster node. We've lost entire iSCSI systems and remained fully available. Not to mention losing a single disk and being fine. | [08:43] | |
toddf | as soon as live migration is a requirement, iSCSI makes sense
when the environment is large enough such setups make sense | [08:43] | |
mhoran | Yup. Well, it is, here. We just can't use it. We just need to be able to migrate between hosts, at a minimum. And that seems too difficult with local storage. | [08:44] | |
toddf | at arp, there is a bit of common sense, simplicity, and economy in the mix, iscsi tends to take the simplicity and economy out of the equation IMHO
though I don't disagree with the awesomeness of your setup I wish there was a free software iscsi target that did anything close to what you describe | [08:45] | |
mhoran | I wish our product did everything it was supposed to do. :p | [08:46] | |
toddf | as it is the one free iscsi target I can run on OpenBSD (netbsd-iscsi-target ironically) can't even reload the targets config file w/out restarting, severing all iscsi connections in the process .. whee! | [08:46] | |
mhoran | Damn.
Yeah, considering what it does, it's pretty solid. But sometimes it's really flakey, and it requires a clunky Java GUI to manage it. Though now it's got some SSH console, but the CLI is undocumented. | [08:46] | |
toddf | are you able to divulge your 'product' ? ;-) I've got an equalogix array at a customers colo, seems like a very fancy iscsi target... | [08:47] | |
mhoran | The clustering is awesome, and it supports LACP at the link layer automatically so the NICs are redundant.
HP/LeftHand SANs. | [08:47] | |
toddf | that sounds a lot like equalogix wannabe | [08:48] | |
mhoran | Indeed. They were around for a while as LeftHand and then HP bought them. Apparently they've rose to huge success, at least that's their excuse for their shitty tech support.
The whole core was some guys PhD thesis or something. | [08:48] | |
toddf | ;-) | [08:49] | |
mhoran | Wish it were open source, it would kick ass. | [08:49] | |
toddf | yeah | [08:49] | |
mhoran | The real cool thing is remote replication -- we can replicate our five san cluster to our second datacenter all in a half hour over a dedicated backbone link. | [08:49] | |
toddf | thats what equalogix touts also
do you do more granularity than 15mb data chunks? | [08:49] | |
mhoran | I believe so, though I've not tuned any of that. | [08:50] | |
toddf | it seems rather rediculous if one byte is modified every 15mb .. it transfers the entire 15mb chunk | [08:50] | |
mhoran | Yeah, looks like LH is 256k. | [08:51] | |
toddf | much more efficient | [08:51] | |
mhoran | I'm wondering if the new version of the software fixes some of thes issues we've seen with the version we're running, but I don't think I'm going to get the go-ahead to upgrade ... we've just had major headaches with upgrades in the past, and, if it ain't broke it, don't fix it.
But I know the second I log a support call, they're going to tell me to upgrade. | [08:52] | |
toddf | heh | [08:53] | |
mhoran | Oh, of course listStoragePools() and listDefinedStoragePools() are mutually exclusive, why not! | [09:00] | |
.... (idle for 15mn) | |||
*** | LT has quit IRC (Quit: Leaving) | [09:15] | |
kitkatbar has joined #arpnetworks | [09:23] | ||
up_the_irons | mhoran: the config is not shared | [09:29] | |
*** | heavysixer has quit IRC (Quit: BAMPF!) | [09:30] | |
kitkatbar | up_the_irons: can you double check some small configs for me?
this is ipv6 part of /etc/network/interfaces -> http://pastebin.com/BKN6usGX | [09:32] | |
vcs | kitkatbar: shouldn't the netmask for link local be /48 | [09:35] | |
kitkatbar | i'm not sure, i had hell of a time getting it to the point where it is now
:) | [09:36] | |
vcs | :)
kitkatbar: the mask should be /48 if you are routing a /48 block of ipv6 over link local also, do you have packet fowarding enabled | [09:37] | |
kitkatbar | yes | [09:37] | |
vcs | any crazy firewall rules | [09:38] | |
kitkatbar | /etc/sysctl.conf i added net.ipv6.conf.all.forwarding = 1
default firewall | [09:38] | |
vcs | ok | [09:39] | |
kitkatbar | i even added that protocol 41 i think to iptables | [09:39] | |
vcs | kitkatbar: has he fowarded the block to you yet? | [09:39] | |
kitkatbar | yes
i already have reverse delegation to my nameservers | [09:39] | |
vcs | can you print out "ifconfig" and "route" | [09:39] | |
kitkatbar | sure one sec | [09:39] | |
vcs | and pastebin them | [09:39] | |
kitkatbar | http://pastebin.com/gcFQAvXA | [09:40] | |
vcs | inet6 addr: fe80::2/64 Scope:Link is incorrect
should be fe80::2/48 your routes look correct | [09:41] | |
kitkatbar | bout to restart networking or might reboot
to see if the netmask 48 will change things | [09:42] | |
up_the_irons | vcs: fe80::2/48 is incorrect. link local addresses are /64's | [09:43] | |
vcs | :X | [09:43] | |
up_the_irons | kitkatbar: ^ | [09:43] | |
vcs | vcs slaps himself | [09:43] | |
up_the_irons | fe80::2/64 is correct | [09:43] | |
vcs | ::/0 2607:f2f8:34c0::1 UG 1 0 0 eth1
it looks like you have an extra default route for ipv6 that was probobly leftover from your /64 err wait im not used to non BSD route, lol | [09:44] | |
*** | kitkatbar has quit IRC (Read error: Connection reset by peer) | [09:45] | |
vcs | 16 bytes from 2607:f2f8:34c0::3, icmp_seq=0 hlim=63 time=1.264 ms
that looks good :) | [09:47] | |
*** | unknown_ has joined #arpnetworks
unknown_ is now known as kitkatbar | [09:47] | |
vcs | kitkatbar: you had an extra default ipv6 route
that was the problem ;) ::/0 2607:f2f8:34c0::1 UG 1 0 0 eth1 was still loaded from your /64 so rebooting cleared it out, and now you are on ipv6 ;) congrats man | [09:47] | |
kitkatbar | sweet | [09:48] | |
vcs | hehe | [09:49] | |
kitkatbar | can you check to see if you can reverse this ip 2607:f2f8:34c0::3
maybe it just hasn't propagated yet, i sure to hell hope i got bind9 configured properly | [09:49] | |
vcs | Host 3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa not found: 2(SERVFAIL) | [09:50] | |
kitkatbar | hmm | [09:50] | |
vcs | kitkatbar: are you running BIND? | [09:50] | |
kitkatbar | yea
i get this from my server though nslookup -type=AAAA six.nullbnc.com six.nullbnc.com has AAAA address 2607:f2f8:34c0::3 | [09:51] | |
jpalmer | don't use nslookup for debugging or troubleshooting. use dig.
nslookup will make several assumptions about the information you are looking for, and will occasionally work even when things aren't configured properly. if you are troubleshooting, this is not a good thing. | [09:51] | |
kitkatbar | thx :D i'm not a network guru yet
this one had me baffled dig says no error when i dig that domain, so i guess it's a propagation issue | [09:54] | |
jpalmer | kitkatbar: I'm pretty decent with bind. let me scroll up a sec and read from the top. | [09:55] | |
kitkatbar | i was having ipv6 issues with my interfaces config with the netmask
i think changing it and rebooting solved that problem | [09:55] | |
jpalmer | kitkatbar: it looks like ns1 and ns2.nullbnc.com are delegated the ip6.arpa for that address space. are those your NS's? | [09:57] | |
vcs | dig @your.dns.server.com 2607:f2f8:34c0::3 PTR
try that | [09:57] | |
kitkatbar | yes
http://pastebin.com/ZmuJwBtM | [09:57] | |
jpalmer | kitkatbar: I'm getting a SERVFAIL from your NS for that record. can you paste your bind config and zone config? | [09:58] | |
kitkatbar | yes, one sec | [09:58] | |
http://pastebin.com/VazMSimU | [10:03] | ||
jpalmer | kitkatbar: I'm not seeing anything obviously wrong with the configs/zone. do you see any errors in bind when loading the configs? | [10:11] | |
kitkatbar | no
i added that ipv6 address to ns1.nullbnc.com thinking it might help not sure if thats correct, probally should work without it | [10:12] | |
jpalmer | ahh, your SOA, and origin don't match in the ip6.arpa zonefile
you have a zone definition of: 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa, you have an SOA of: 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa but you have an ORIGIN of: 0.0.0.0.0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa | [10:13] | |
kitkatbar | ahhh | [10:16] | |
*** | ziyourenxiang has quit IRC (Quit: ziyourenxiang) | [10:16] | |
kitkatbar | so should which one should i change
lol sorry should i add 4 0's to the SOA or remove 4 0's from the origin? must of been the ipv6 reverse dns zone builders fault, i should've known better than to use it haha | [10:17] | |
jpalmer | try removing the extra nibbles from the ORIGIN, and add them to the PTR record itself. | [10:20] | |
kitkatbar | says status: noerror on dig now
instead of nxdomain but still says answer: 0 | [10:22] | |
hmm i have no idea
i've tried every combination possible with the 0 thingy | [10:32] | ||
.... (idle for 19mn) | |||
*** | Sabrii has joined #arpnetworks | [10:51] | |
Sabrii | keek-a-boo | [10:52] | |
*** | schmir has quit IRC (Ping timeout: 265 seconds) | [11:00] | |
............... (idle for 1h14mn) | |||
kitkatbar has quit IRC (Quit: leaving) | [12:14] | ||
..... (idle for 22mn) | |||
fink has joined #arpnetworks | [12:36] | ||
cedwards | anyone use gitosis with gitweb? | [12:44] | |
....... (idle for 34mn) | |||
*** | kitkarbar has joined #arpnetworks | [13:18] | |
kitkarbar | i'm now getting a response with 'dig @ns1.nullbnc.com six.nullbnc.com AAAA'
but when i try 'host 2607:f2f8:34c0::3' it says servfail | [13:18] | |
*** | schmir has joined #arpnetworks | [13:33] | |
...... (idle for 26mn) | |||
islandfox has quit IRC (Read error: Connection reset by peer)
islandfox has joined #arpnetworks Husky has quit IRC (Read error: Connection reset by peer) mhoran has quit IRC (Read error: Connection reset by peer) mhoran has joined #arpnetworks ChanServ sets mode: +o mhoran jazz57 has joined #arpnetworks schmir has quit IRC (Remote host closed the connection) heidar has quit IRC (Ping timeout: 245 seconds) | [13:59] | ||
jazz57 | Anyone experiencing connectivity issues? | [14:02] | |
*** | dxtr has quit IRC (Ping timeout: 264 seconds) | [14:02] | |
vcs | nope
not yet :X | [14:03] | |
jazz57 | I can't even ping arpnetworks.com | [14:03] | |
vapor | no pings | [14:03] | |
vcs | [sundial@puffy ~]$ ping6 arpnetworks.com
16 bytes from 2607:f2f8:0:102::3, icmp_seq=0 hlim=63 time=1.054 ms ipv6 is up | [14:04] | |
jazz57 | What about ipv4? | [14:04] | |
vcs | working for me | [14:04] | |
jazz57 | Some of us still use that, ya know. | [14:04] | |
vcs | :P
i have stuff hosted on ipv4 and its all working ok arp networks site is up for me maybe its a routing problem between you and them | [14:04] | |
vapor | 11 ae-1-69.edge1.SanJose1.Level3.net (4.68.18.14) 75.912 ms ae-3-89.edge1.SanJose1.Level3.net (4.68.18.142) 76.104 ms ae-4-99.edge1.SanJose1.Level3.net (4.68.18.206) 76.735 ms
12 * * * 13 * * * dies at level3 | [14:05] | |
mhoran | Yeah.
Having trouble here as well. Just a few minutes ago. | [14:05] | |
*** | Sheath has joined #arpnetworks | [14:05] | |
vapor | man I've got 2 vps boxes at softlayer
two times today no response argh | [14:05] | |
jazz57 | The level3 to MZIMA link may be down. | [14:06] | |
mhoran | Yeah.
I can get in over v4 from my house, but not from work. Home goes over Comcast to Mzima, work goes over L3. | [14:06] | |
jazz57 | My monitoring service is also complaining.
I'm on roadrunner and it dies at the Level3 MZIMA connection. What does your route look like vcs? | [14:06] | |
*** | dxtr has joined #arpnetworks | [14:09] | |
jazz57 | The link from Trit Networks may still be up.
vapor: Soflayer is going downhill? They used to have a very good reputation. | [14:09] | |
vcs | alright, one sec
ill get you a traceroute on http://pastebin.ca/1986763 | [14:10] | |
*** | kitkarbar has quit IRC (Quit: Lost terminal) | [14:14] | |
vcs | my traffic is being routed over mzima
it appears | [14:14] | |
vapor | I love softlayer
just don't like random weird issues I run a small datacenterand we never run into these kinds of problems vapor knocks on wood :) level3 routing issues...those happen a lot level3 sucks | [14:14] | |
jazz57 | Thanks vcs. | [14:15] | |
vapor | mzima is good transit
considering they default to level3 mostly | [14:15] | |
vcs | im supprised i dont go through level3
since im a few miles from them lol guess thats a good thing | [14:15] | |
vapor | level3 has awesome latency but they do run into routing issues frequently
their network is AGED like a fine wine | [14:15] | |
vcs | i have some servers collocated at their datacenter here
no ipv6 :X guess thats aged equip for ya | [14:16] | |
vapor | vcs, yeah they still dont run v6
you have to run tunnels | [14:16] | |
jazz57 | I remember when level3 was considered modern | [14:16] | |
*** | nukefree has joined #arpnetworks | [14:17] | |
RandalSchwartz | RandalSchwartz waves from LA | [14:17] | |
vcs | jazz57: like 10 years ago? | [14:17] | |
RandalSchwartz | it's so cool to have 1.1 ms ping times to my VPS from my desk :) | [14:18] | |
*** | nuke| has joined #arpnetworks
nuke| is now known as nuke` | [14:18] | |
jazz57 | Here is my trace: http://pastebin.ca/1986770 | [14:19] | |
dxtr | RandalSchwartz: I've got a couple of hundred | [14:19] | |
jazz57 | I usually get routing through Los Angeles. Now it's going up to SJC and getting lost.
vcs: That sounds about right. :-) | [14:20] | |
vcs | hurricane electric is cool :)
i like them :) | [14:22] | |
jazz57 | I remember someone recommending Level3 over ATT because the had a new network built from scratch. | [14:22] | |
RandalSchwartz | a couple of hundred milliseconds? | [14:22] | |
jazz57 | I like hurricane too. ipv6 and they have a cool NTP servers too. | [14:23] | |
vapor | still seeing lvlt issues
it actually gets to mzima now so if its bgp then should only take another 60 seconds | [14:23] | |
jazz57 | I'm still getting destination unreachable | [14:24] | |
*** | kitkatbar has joined #arpnetworks | [14:26] | |
RandalSchwartz | Ooh, my nagios just went nuts
did we have some downtime recently? | [14:26] | |
kitkatbar | is anyone else experiencing network lag? | [14:26] | |
jazz57 | kitkatbar: I can't get connect at all. | [14:26] | |
kitkatbar | me either
i've been working all day on my server | [14:26] | |
jazz57 | Me too. :-)
I just through. | [14:27] | |
RandalSchwartz | I can't figure out why nagios can't even ping its own host
I've got "host down" on localhost. :( | [14:27] | |
dxtr | And yes, something went down before, RandalSchwartz | [14:27] | |
toddf | randalschwartz: fd depletion or other dos? firewalling localhost? | [14:28] | |
RandalSchwartz | no. nothing unusual.
maybe the whole VM was frozen or at least the network stack outside my view bad stuff from 1405 to 1426 across multiple VPS | [14:28] | |
toddf | nagios acts funny if resources take too long to allocate .. wheterh thats sockets or disk blocks etc
since it forks a process to run the check and considers things bad if it doesn't check in so to speak within a certain timeframe | [14:28] | |
RandalSchwartz | well - that's pointing at VM issues, not guest OS issues | [14:29] | |
jazz57 | Looked like a network issue to me. | [14:29] | |
RandalSchwartz | so it's Garrey's problem not mine | [14:29] | |
kitkatbar | any of you guys can help me figure out why my rdns isn't working for my ipv6 | [14:29] | |
*** | heidar has joined #arpnetworks | [14:29] | |
RandalSchwartz | but it's his *because* I'm gonna get yelled at because of it | [14:29] | |
toddf | randalschwartz: think thundering herd of disk io .. slowing nagios process creation if the sectors happen to not be cached in memory .. | [14:30] | |
RandalSchwartz | sure. Still sounds like a virtual-hardware fault though
I'd like those to go away | [14:31] | |
toddf | given my experience with nagaios, I'd expand the timeframe during which individual checks timeout and/or generate warnings by 20-40% ... just because nagios couldn't meet its own criteria of happy days doesn't mean external usage was effected as much as nagios might have you think .. *shrug* .. I've written a replacement to nagios and uninstalled it from my systems due to its inability to stop producing false positives on real hw, leta lone ...
... virtual hw | [14:33] | |
RandalSchwartz | Yes - I wait 10 checks before I send a hard notice
but I still shouldn't be getting soft notices like this both mabel and red went nuts at the same time so I'm gonna blame somethign higher mind you, 99.96% availability isn't bad but another 9 wouldn't hurt especially if it's a fault that Garrey can fix and it sounds like all of us experienced something odd during that time that smells of VM oops. It's Garry, and Dolley I have a hard time remembering that. Blame jet lag. ) | [14:34] | |
jazz57 | Here is my trace now:http://pastebin.ca/1986789
The route has changed back to Los Angeles. So somehow a partial network outage causes weirdness with the VMs. | [14:38] | |
toddf | ok, so who here is setting their vm to go 'fritz' when upstream network outages occur? ;-) | [14:41] | |
kitkatbar | anyone run debian & bind w/ ipv6? | [14:41] | |
RandalSchwartz | maybe a bunch of console notifications (high uninterruptible priority) | [14:41] | |
vapor | kitkatbar, dig -x ip +trace is your friend | [14:41] | |
jazz57 | I did get some "runtime went backwards" notices the other day in my logs.
Interrupts may be getting dropped when activity is too high. Someone suggested dropping kern.HZ to 10. (assuming freeBSD) | [14:43] | |
RandalSchwartz | I think it's that already | [14:46] | |
kitkatbar | maybe it was the mysterious missle launch earlier off the coast of la the caused it | [14:46] | |
RandalSchwartz | Oh. I have hz = 100 | [14:46] | |
did the missle launch affect the cruise ship that lost power? :) | [14:53] | ||
vcs | maybe the missle took out our route :X
bastards! | [14:54] | |
RandalSchwartz | that's what I get for putting that info record in!
$ host -t loc stonehenge.com stonehenge.com location 34 2 53.000 N 118 15 21.000 W 50.00m 1m 10000m 10m | [14:55] | |
kitkatbar | vcs, can you post your reverse zone for ipv6 please?
wait | [14:58] | |
vcs | kitkatbar: sure | [14:59] | |
kitkatbar | i already have the link
i used same generator you did but my reverses dont work :/ | [15:00] | |
vcs | http://pastebin.com/r5mb6mwn
did you use your own ip /48 range and not mine | [15:00] | |
kitkatbar | yes | [15:01] | |
vcs | perhaps your named.conf file is bad? | [15:02] | |
kitkatbar | http://pastebin.com/J3VcyXaf | [15:02] | |
vcs | or you did not run rndc reload | [15:03] | |
kitkatbar | yes i have
lol ive tryed everything i know | [15:03] | |
vcs | 201011090 ; Serial number (YYYYMMdd)
errr you have only changed to today? | [15:03] | |
kitkatbar | i've been at this all day | [15:03] | |
vcs | every time you make a change
it requires an incriment then rndc reload | [15:03] | |
RandalSchwartz | Uh - that's not 00 | [15:03] | |
vcs | else it will not realod | [15:03] | |
RandalSchwartz | 20101109xx | [15:04] | |
kitkatbar | even for 'host ipv6:address' to work?
oh i see to check to see if the config has changed lemme test this | [15:04] | |
RandalSchwartz | I'm old school... /etc/rc.d/named reload :) | [15:05] | |
kitkatbar | well i have mostly been restarting it with /etc/init.d/bind9 restart | [15:06] | |
Lefty | reload is enough | [15:07] | |
kitkatbar | ah
well i still have a problem then :/ | [15:07] | |
Lefty | and you should alwaysalwaysalways increment the serial | [15:07] | |
kitkatbar | yes i just did and tested it
same result but atleast i know in the future when i make a modification, to increment the serial | [15:07] | |
RandalSchwartz | are there any error messages when bind is reloading?
what does your local soa report? host -t soa $domain $localhost | [15:13] | |
toddf | you've checked your /var/log/* logfiles, right? | [15:15] | |
kitkatbar | no errors when bind is reloading
host -t soa six.nullbnc.com nullbnc.com Using domain server: Name: nullbnc.com Address: 174.136.101.162#53 Aliases: six.nullbnc.com has no SOA record | [15:16] | |
RandalSchwartz | no no - the rdns
since that's what you're having trouble with or am I mixing up conversations here | [15:20] | |
kitkatbar | no | [15:20] | |
RandalSchwartz | your bind should report an SOA with the same serial as what you defined
host -t soa 0.c.5.a.8.f.2.f.7.0.6.2.ip6.arpa. localhost something like that Wait a second that SOA is wrong @ IN SOA your.forward.host.name.here.com your.email.host.com. ( that's what you want not the reverse you're defining the authoritative *master* host for *this* domain for example, I have @ IN SOA red.stonehenge.com. hostmaster.stonehenge.com. ( RandalSchwartz waits until kitkatbar catches up | [15:20] | |
kitkatbar | so your saying '@ IN SOA 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa. ns1.nullbnc.com. (' is wrong in my reverse-ip6.arpa file? | [15:24] | |
RandalSchwartz | Yes. Very Wrong. | [15:24] | |
kitkatbar | guess thats what i get for using damn generator for this reverse file | [15:24] | |
RandalSchwartz | @ IN SOA master.host.com youremail.youremailhost.com | [15:24] | |
toddf | hahaha. wrong indeed. | [15:24] | |
RandalSchwartz | no - you just put the wrong data in
it asked you things, you told it wrong :) GIGO | [15:24] | |
kitkatbar | ah
lol lemme see if this will fix it | [15:24] | |
RandalSchwartz | and what does your delegation in your master file look like? | [15:25] | |
kitkatbar | in my nullbnc.com.db file it looks like
@ IN SOA ns1.nullbnc.com. ns2.nullbnc.com. | [15:25] | |
RandalSchwartz | no... in your named.conf
... zone "0.8.0.3.8.f.2.f.7.0.6.2.ip6.arpa" { something like that? | [15:25] | |
kitkatbar | yea | [15:26] | |
RandalSchwartz | ok - so fix your soa, reload
and then you should be able to check your soa locally once that's working, you can worry about the right upstream delegations | [15:26] | |
kitkatbar | host -t soa -i six.nullbnc.com
six.nullbnc.com has no SOA record | [15:28] | |
toddf | wrong question | [15:28] | |
RandalSchwartz | indeed | [15:28] | |
toddf | host -t soa -i nullbnc.com localhost | [15:28] | |
RandalSchwartz | but I'm asking about the reverse-6 records
he should be able to see his ip6.arpa soa | [15:28] | |
kitkatbar | host -t soa -i nullbnc.com localhost
Using domain server: Name: localhost Address: 127.0.0.1#53 Aliases: nullbnc.com has SOA record ns1.nullbnc.com. ns2.nullbnc.com. 201011091 86400 1800 172800 259200 | [15:28] | |
RandalSchwartz | kitkatbar - that's still broken
unless your contact email is ns2@nullbnc.com although, knowing you, it might be :) @ IN SOA MASTERHOSTGOESHERE YOURCONTACTEMAILGOESHERE ( there... clearer now? | [15:29] | |
kitkatbar | so now
nullbnc.com has SOA record ns1.nullbnc.com. admin.nullbnc.com. 201011092 86400 1800 172800 259200 | [15:30] | |
RandalSchwartz | ok - that's good for the forward
now check the reverse ... host -t soa 0.c.5.a.8.f.2.f.7.0.6.2.ip6.arpa. localhost or whatever your numbers are basically, you should get a SOA record for everything you list in named.conf as a master | [15:30] | |
kitkatbar | host -t soa 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa. localhost
Using domain server: Name: localhost Address: ::1#53 Aliases: Host 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa not found: 2(SERVFAIL) | [15:32] | |
RandalSchwartz | well - there's your problem then
are you *sure* your named.conf is correct? | [15:32] | |
kitkatbar | pretty sure | [15:33] | |
jpalmer | kitkatbar: sorry I had to run earlier. work called. did you get ip6.arpa resolution working? | [15:33] | |
RandalSchwartz | jpalmer - not yet
I smell something wrong with named.conf at this point | [15:34] | |
kitkatbar | but can't be certain about anything now :p | [15:34] | |
RandalSchwartz | please pastebin your "zone" entry for that reverse
zone "0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa" { ... until the end of that block does it have "type master" and "file '...'" correct at least? | [15:34] | |
kitkatbar | http://pastebin.com/Hv2UBRpG
yes, the reason i have ip commented under slave is cos i tryed it both ways earlier | [15:35] | |
RandalSchwartz | and the file is in the right place?
called reverse-2607 blah blah? | [15:35] | |
kitkatbar | yea, /etc/bind/zones/master/reverse-2607blahblah.ip6.arpa | [15:36] | |
*** | nukefree has quit IRC (Quit: ZNC - http://znc.sourceforge.net) | [15:36] | |
kitkatbar | reverse-2607-f2f8-34c0_48.IP6.ARPA to be exact :p | [15:36] | |
RandalSchwartz | wait - I have "master/" in front of mine
is your filename like the others in that file (the ones that work)? | [15:37] | |
toddf | probably some option to prefix /etc/bind/zones infront | [15:37] | |
jpalmer | or a chroot | [15:37] | |
RandalSchwartz | I have file "master/stonehenge.com" | [15:37] | |
toddf | chroots tend to be in /var/named | [15:37] | |
RandalSchwartz | and file "master/..." for all the rest
are you sure you don't need "master/..." ? options { directory "..." } | [15:38] | |
jpalmer | kitkatbar: what OS, and what version of BIND? | [15:38] | |
RandalSchwartz | it's relative to that, I think | [15:38] | |
kitkatbar | debian 5 bind 9
im adding it jus tto see im curious if i need to go shoot myself for not seeing that haha host -t soa 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa. localhost Using domain server: Name: localhost Address: 127.0.0.1#53 Aliases: 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa has SOA record ns1.nullbnc.com. nullbnc.com. 201011092 86400 1800 172800 259200 | [15:38] | |
RandalSchwartz | kitkatbar - was that it... "master/..." ?
ha ha | [15:39] | |
kitkatbar | yea | [15:40] | |
RandalSchwartz | kitkatbar - still wrong SOA
but you're getting closer | [15:40] | |
kitkatbar | it was thinking it was in the same dir as named.conf
i know i just fixed it when i saw it :) | [15:40] | |
RandalSchwartz | unless your email is "nullbnc@com" :) | [15:40] | |
kitkatbar | <- slow learner but persistant
lol | [15:40] | |
RandalSchwartz | <- slow teacher but easily distracted
ok - next step is to see if the delegation is coming at you from above host -t ns 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa better yet host -t ns 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa 4.2.2.2 so you're not getting a local value Yeah - it's pointing at ns1 and ns2 so you have to get both ns1 and ns2 to agree on this record now | [15:40] | |
kitkatbar | but ns2 is just a mirror of ns1 for me
:D on a different ip | [15:42] | |
RandalSchwartz | "mirror"? | [15:42] | |
kitkatbar | lol @ i dont even think ns2 is setup | [15:43] | |
RandalSchwartz | that's the next step then
make all the errors on this go away, and you'll be done: http://www.intodns.com/0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa | [15:44] | |
kitkatbar | yea i was there earlier
had quite a few errs thx for your assistance i'll try to finish up was my goal for today :D | [15:44] | |
RandalSchwartz | depending on your timezone, you're either just in time for a beer, or now can begin your workday. :) | [15:45] | |
kitkatbar | i'd be on the side of the beer
lol | [15:46] | |
tooth | It's always beer o clock | [15:48] | |
..... (idle for 20mn) | |||
vapor | beer:30 | [16:08] | |
.... (idle for 17mn) | |||
*** | jazz57 has left | [16:25] | |
.................... (idle for 1h35mn) | |||
nukefree has joined #arpnetworks | [18:00] | ||
nukefree has quit IRC (Ping timeout: 245 seconds) | [18:09] | ||
.... (idle for 15mn) | |||
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer heavysixer has quit IRC (Client Quit) | [18:24] | ||
kitkatbar | so do i really need two nameservers for ipv6 reverses to work? | [18:36] | |
RandalSchwartz | no - but your ns delegations need to agree | [18:36] | |
kitkatbar | shit
so | [18:36] | |
RandalSchwartz | so if you don't want two nameservers, don't let your upstream say that | [18:36] | |
kitkatbar | if i said ns1 and ns2
on the delegation request | [18:36] | |
RandalSchwartz | it's all about the upstream
yeah | [18:36] | |
kitkatbar | i need to email them to remove ns2? | [18:37] | |
RandalSchwartz | uh, whatever | [18:37] | |
kitkatbar | can you do that for me? :) | [18:37] | |
RandalSchwartz | but you really should have a secondary
especailly a secondary that is far far away from you he.net provides those for free that's what I'm using | [18:37] | |
kitkatbar | ok i'll check into it
tunnelbroker? | [18:38] | |
RandalSchwartz | yes | [18:39] | |
*** | nukefree has joined #arpnetworks | [18:42] | |
nukefree has quit IRC (Quit: ZNC - http://znc.sourceforge.net) | [18:51] | ||
..... (idle for 21mn) | |||
nukefree has joined #arpnetworks
kitkatbar has quit IRC (Quit: Lost terminal) | [19:12] | ||
..................... (idle for 1h43mn) | |||
fink has quit IRC (Quit: fink) | [20:58] | ||
tinono has joined #arpnetworks | [21:10] | ||
tinono | oh i was looking for kitkabar. just went through the logs. his reverse zone is ok, but he's missing a few zeros in his ptr reconrds. | [21:12] | |
*** | mike-burns has quit IRC (*.net *.split)
sentabi has quit IRC (*.net *.split) tinono has quit IRC (Quit: leaving) mike-burns has joined #arpnetworks ChanServ sets mode: +o mike-burns sentabi_ has joined #arpnetworks | [21:16] |
↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |