***: LT has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
Ehtyar has joined #arpnetworks
schmir has joined #arpnetworks
Sunil has quit IRC (Quit: leaving)
schmir has quit IRC (Remote host closed the connection)
schmir has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
nesta has quit IRC (Ping timeout: 265 seconds)
nesta has joined #arpnetworks
tuv has quit IRC (Read error: Connection reset by peer)
tuv has joined #arpnetworks
toddf: Sunil: 4.8 and current works fine, just recall to 'disable mpbios'
***: kitkatbar has joined #arpnetworks
kitkatbar: i was wondering, if i can nslookup -type=aaaa six.nullbnc.com from my localbox but ping6 six.nullbnc.com on my local box says "network is unreachable", however, it ping6 fine on my server and i can connect to irc with it... something must be configured incorrectly :(
i'm running debian, any hints or help would be nice :D
***: andrewnemeth has joined #arpnetworks
andrewnemeth: hey guys
need some help with my freebsd
how can I resize the root partition?
***: ziyourenxiang has joined #arpnetworks
kitkatbar: ahh looks like my localhost doesn't support ipv6 at home, no wonder i got network is unreachable
:>
***: andrewnemeth has quit IRC (Quit: andrewnemeth)
zxvff_: ipv6 is nice
i hear it is the future of the internet!!
kitkatbar: ye
can you see if you can "ping6 six.nullbnc.com" ?
nvm
***: BarberRonny has quit IRC (Quit: leaving)
BarberRonny has joined #arpnetworks
BarberRonny has quit IRC (Client Quit)
kitkatbar has quit IRC (Quit: leaving)
BarberRonny has joined #arpnetworks
BarberRonny has quit IRC (Client Quit)
BarberRonny has joined #arpnetworks
BarberRonny has quit IRC (Client Quit)
BarberRonny has joined #arpnetworks
BarberRonny has quit IRC (Client Quit)
mhoran: up_the_irons: How do you share your libvirt config files? Storage, network, VM config, etc across your host servers?
I was considering using git as we do with Xen but that seems to be frowned upon.
***: BarberRonny has joined #arpnetworks
ww: mhoran: iscsi?
-: ww hides
mhoran: Sure, we use iSCSI for block devices, but /etc/libvirt is what I want to share.
And sharing that directory (or at least /etc/libvirt/qemu) is frowned upon -- https://www.redhat.com/archives/libvir-list/2009-October/msg00033.html
Really, all I need shared is /etc/libvirt/storage, since that's where my storage pools live (which are iSCSI).
But to migrate a domain that lives on an iSCSI block devices, the pool must first exist and be started on the remote end, which isn't always the case.
So really, libvirt should just have better support for migrating iSCSI pools. And should start them up automatically when a domain is migrated (though I see why it doesn't do that).
So in the meantime I have to find a way to share my storage pools, and to do that I've checked everything in /etc/libvirt save qemu dir into git.
ww: mhoran: i was being facetious...
... i've not actually looked into the details of qemu much
mhoran: So I think I'm just going to write a wrapper around iscsiadm that automatically creates the poolsfor the available targets ... that seems the best way to do this ... and then let libvirt migrate the domain configs when it wants to.
Unless up_the_irons has a better option for me. :)
toddf: mhoran: up_the_irons doesn't do auto distribution, from what I can see it is a manual migration process
***: schmir has joined #arpnetworks
toddf: and he doesn't do iscsi, he has found physical disks on the servers to be more reliable
nesta: toddf: do you know what OS is used to host the virtual machines?
mhoran: Ubuntu.
toddf: nesta: Linux is all I need to know. ;-)
nesta: hehe
-: nesta prefers a good ole BSD
mhoran: I've found iSCSI to be just as reliable as physical disks, it's just more expensive. Though our iSCSI vendor blows.
It's nice for e.g. live migration.
toddf: nesta: a good ole BSD doesn't do kvm just yet
mhoran: Replication and failover as well.
nesta: toddf: I imagine not :)
toddf: mhoran: check the old logs about iscsi
mhoran: I know, just stating my opinion.
toddf: aka regarding up_the_irons experiences with it
mhoran: Live migration (or even migrating betwen hosts -- what about failed disks) just seems so impossible without iSCSI. Granted, we don't currently have live migration even with Xen, but we do have iSCSI backed storage and can easily move VMs between host servers with no data loss.
Our iSCSI infrastructure is also fully redundant, we've got N+1 replication and then RAID-5 on each cluster node.
We've lost entire iSCSI systems and remained fully available.
Not to mention losing a single disk and being fine.
toddf: as soon as live migration is a requirement, iSCSI makes sense
when the environment is large enough such setups make sense
mhoran: Yup. Well, it is, here. We just can't use it. We just need to be able to migrate between hosts, at a minimum. And that seems too difficult with local storage.
toddf: at arp, there is a bit of common sense, simplicity, and economy in the mix, iscsi tends to take the simplicity and economy out of the equation IMHO
though I don't disagree with the awesomeness of your setup
I wish there was a free software iscsi target that did anything close to what you describe
mhoran: I wish our product did everything it was supposed to do. :p
toddf: as it is the one free iscsi target I can run on OpenBSD (netbsd-iscsi-target ironically) can't even reload the targets config file w/out restarting, severing all iscsi connections in the process .. whee!
mhoran: Damn.
Yeah, considering what it does, it's pretty solid. But sometimes it's really flakey, and it requires a clunky Java GUI to manage it.
Though now it's got some SSH console, but the CLI is undocumented.
toddf: are you able to divulge your 'product' ? ;-) I've got an equalogix array at a customers colo, seems like a very fancy iscsi target...
mhoran: The clustering is awesome, and it supports LACP at the link layer automatically so the NICs are redundant.
HP/LeftHand SANs.
toddf: that sounds a lot like equalogix wannabe
mhoran: Indeed. They were around for a while as LeftHand and then HP bought them. Apparently they've rose to huge success, at least that's their excuse for their shitty tech support.
The whole core was some guys PhD thesis or something.
toddf: ;-)
mhoran: Wish it were open source, it would kick ass.
toddf: yeah
mhoran: The real cool thing is remote replication -- we can replicate our five san cluster to our second datacenter all in a half hour over a dedicated backbone link.
toddf: thats what equalogix touts also
do you do more granularity than 15mb data chunks?
mhoran: I believe so, though I've not tuned any of that.
toddf: it seems rather rediculous if one byte is modified every 15mb .. it transfers the entire 15mb chunk
mhoran: Yeah, looks like LH is 256k.
toddf: much more efficient
mhoran: I'm wondering if the new version of the software fixes some of thes issues we've seen with the version we're running, but I don't think I'm going to get the go-ahead to upgrade ... we've just had major headaches with upgrades in the past, and, if it ain't broke it, don't fix it.
But I know the second I log a support call, they're going to tell me to upgrade.
toddf: heh
mhoran: Oh, of course listStoragePools() and listDefinedStoragePools() are mutually exclusive, why not!
***: LT has quit IRC (Quit: Leaving)
kitkatbar has joined #arpnetworks
up_the_irons: mhoran: the config is not shared
***: heavysixer has quit IRC (Quit: BAMPF!)
kitkatbar: up_the_irons: can you double check some small configs for me?
this is ipv6 part of /etc/network/interfaces -> http://pastebin.com/BKN6usGX
vcs: kitkatbar: shouldn't the netmask for link local be /48
kitkatbar: i'm not sure, i had hell of a time getting it to the point where it is now
:)
vcs: :)
kitkatbar: the mask should be /48 if you are routing a /48 block of ipv6 over link local
also, do you have packet fowarding enabled
kitkatbar: yes
vcs: any crazy firewall rules
kitkatbar: /etc/sysctl.conf i added net.ipv6.conf.all.forwarding = 1
default firewall
vcs: ok
kitkatbar: i even added that protocol 41 i think to iptables
vcs: kitkatbar: has he fowarded the block to you yet?
kitkatbar: yes
i already have reverse delegation to my nameservers
vcs: can you print out "ifconfig" and "route"
kitkatbar: sure one sec
vcs: and pastebin them
kitkatbar: http://pastebin.com/gcFQAvXA
vcs: inet6 addr: fe80::2/64 Scope:Link is incorrect
should be fe80::2/48
your routes look correct
kitkatbar: bout to restart networking or might reboot
to see if the netmask 48 will change things
up_the_irons: vcs: fe80::2/48 is incorrect. link local addresses are /64's
vcs: :X
up_the_irons: kitkatbar: ^
-: vcs slaps himself
up_the_irons: fe80::2/64 is correct
vcs: ::/0 2607:f2f8:34c0::1 UG 1 0 0 eth1
it looks like you have an extra default route for ipv6
that was probobly leftover from your /64
err wait
im not used to non BSD route, lol
***: kitkatbar has quit IRC (Read error: Connection reset by peer)
vcs: 16 bytes from 2607:f2f8:34c0::3, icmp_seq=0 hlim=63 time=1.264 ms
that looks good :)
***: unknown_ has joined #arpnetworks
unknown_ is now known as kitkatbar
vcs: kitkatbar: you had an extra default ipv6 route
that was the problem
;)
::/0 2607:f2f8:34c0::1 UG 1 0 0 eth1
was still loaded
from your /64
so rebooting cleared it out, and now you are on ipv6 ;)
congrats man
kitkatbar: sweet
vcs: hehe
kitkatbar: can you check to see if you can reverse this ip 2607:f2f8:34c0::3
maybe it just hasn't propagated yet, i sure to hell hope i got bind9 configured properly
vcs: Host 3.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa not found: 2(SERVFAIL)
kitkatbar: hmm
vcs: kitkatbar: are you running BIND?
kitkatbar: yea
i get this from my server though
nslookup -type=AAAA six.nullbnc.com
six.nullbnc.com has AAAA address 2607:f2f8:34c0::3
jpalmer: don't use nslookup for debugging or troubleshooting. use dig.
nslookup will make several assumptions about the information you are looking for, and will occasionally work even when things aren't configured properly. if you are troubleshooting, this is not a good thing.
kitkatbar: thx :D i'm not a network guru yet
this one had me baffled
dig says no error when i dig that domain, so i guess it's a propagation issue
jpalmer: kitkatbar: I'm pretty decent with bind. let me scroll up a sec and read from the top.
kitkatbar: i was having ipv6 issues with my interfaces config with the netmask
i think changing it and rebooting solved that problem
jpalmer: kitkatbar: it looks like ns1 and ns2.nullbnc.com are delegated the ip6.arpa for that address space. are those your NS's?
vcs: dig @your.dns.server.com 2607:f2f8:34c0::3 PTR
try that
kitkatbar: yes
http://pastebin.com/ZmuJwBtM
jpalmer: kitkatbar: I'm getting a SERVFAIL from your NS for that record. can you paste your bind config and zone config?
kitkatbar: yes, one sec
http://pastebin.com/VazMSimU
jpalmer: kitkatbar: I'm not seeing anything obviously wrong with the configs/zone. do you see any errors in bind when loading the configs?
kitkatbar: no
i added that ipv6 address to ns1.nullbnc.com thinking it might help
not sure if thats correct, probally should work without it
jpalmer: ahh, your SOA, and origin don't match in the ip6.arpa zonefile
you have a zone definition of: 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa, you have an SOA of: 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa but you have an ORIGIN of: 0.0.0.0.0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa
kitkatbar: ahhh
***: ziyourenxiang has quit IRC (Quit: ziyourenxiang)
kitkatbar: so should which one should i change
lol
sorry
should i add 4 0's to the SOA or remove 4 0's from the origin?
must of been the ipv6 reverse dns zone builders fault, i should've known better than to use it haha
jpalmer: try removing the extra nibbles from the ORIGIN, and add them to the PTR record itself.
kitkatbar: says status: noerror on dig now
instead of nxdomain
but still says answer: 0
hmm i have no idea
i've tried every combination possible with the 0 thingy
***: Sabrii has joined #arpnetworks
Sabrii: keek-a-boo
***: schmir has quit IRC (Ping timeout: 265 seconds)
kitkatbar has quit IRC (Quit: leaving)
fink has joined #arpnetworks
cedwards: anyone use gitosis with gitweb?
***: kitkarbar has joined #arpnetworks
kitkarbar: i'm now getting a response with 'dig @ns1.nullbnc.com six.nullbnc.com AAAA'
but when i try 'host 2607:f2f8:34c0::3' it says servfail
***: schmir has joined #arpnetworks
islandfox has quit IRC (Read error: Connection reset by peer)
islandfox has joined #arpnetworks
Husky has quit IRC (Read error: Connection reset by peer)
mhoran has quit IRC (Read error: Connection reset by peer)
mhoran has joined #arpnetworks
ChanServ sets mode: +o mhoran
jazz57 has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
heidar has quit IRC (Ping timeout: 245 seconds)
jazz57: Anyone experiencing connectivity issues?
***: dxtr has quit IRC (Ping timeout: 264 seconds)
vcs: nope
not yet :X
jazz57: I can't even ping arpnetworks.com
vapor: no pings
vcs: [sundial@puffy ~]$ ping6 arpnetworks.com
16 bytes from 2607:f2f8:0:102::3, icmp_seq=0 hlim=63 time=1.054 ms
ipv6 is up
jazz57: What about ipv4?
vcs: working for me
jazz57: Some of us still use that, ya know.
vcs: :P
i have stuff hosted on ipv4
and its all working ok
arp networks site is up for me
maybe its a routing problem
between you and them
vapor: 11 ae-1-69.edge1.SanJose1.Level3.net (4.68.18.14) 75.912 ms ae-3-89.edge1.SanJose1.Level3.net (4.68.18.142) 76.104 ms ae-4-99.edge1.SanJose1.Level3.net (4.68.18.206) 76.735 ms
12 * * *
13 * * *
dies at level3
mhoran: Yeah.
Having trouble here as well.
Just a few minutes ago.
***: Sheath has joined #arpnetworks
vapor: man I've got 2 vps boxes at softlayer
two times today
no response
argh
jazz57: The level3 to MZIMA link may be down.
mhoran: Yeah.
I can get in over v4 from my house, but not from work.
Home goes over Comcast to Mzima, work goes over L3.
jazz57: My monitoring service is also complaining.
I'm on roadrunner and it dies at the Level3 MZIMA connection.
What does your route look like vcs?
***: dxtr has joined #arpnetworks
jazz57: The link from Trit Networks may still be up.
vapor: Soflayer is going downhill?
They used to have a very good reputation.
vcs: alright, one sec
ill get you a traceroute
on http://pastebin.ca/1986763
***: kitkarbar has quit IRC (Quit: Lost terminal)
vcs: my traffic is being routed over mzima
it appears
vapor: I love softlayer
just don't like random weird issues
I run a small datacenterand we never run into these kinds of problems
-: vapor knocks on wood
vapor: :)
level3 routing issues...those happen a lot
level3 sucks
jazz57: Thanks vcs.
vapor: mzima is good transit
considering they default to level3 mostly
vcs: im supprised i dont go through level3
since im a few miles from them
lol
guess thats a good thing
vapor: level3 has awesome latency but they do run into routing issues frequently
their network is AGED like a fine wine
vcs: i have some servers collocated at their datacenter here
no ipv6 :X
guess thats aged equip for ya
vapor: vcs, yeah they still dont run v6
you have to run tunnels
jazz57: I remember when level3 was considered modern
***: nukefree has joined #arpnetworks
-: RandalSchwartz waves from LA
vcs: jazz57: like 10 years ago?
RandalSchwartz: it's so cool to have 1.1 ms ping times to my VPS from my desk :)
***: nuke| has joined #arpnetworks
nuke| is now known as nuke`
jazz57: Here is my trace: http://pastebin.ca/1986770
dxtr: RandalSchwartz: I've got a couple of hundred
jazz57: I usually get routing through Los Angeles. Now it's going up to SJC and getting lost.
vcs: That sounds about right. :-)
vcs: hurricane electric is cool :)
i like them :)
jazz57: I remember someone recommending Level3 over ATT because the had a new network built from scratch.
RandalSchwartz: a couple of hundred milliseconds?
jazz57: I like hurricane too. ipv6 and they have a cool NTP servers too.
vapor: still seeing lvlt issues
it actually gets to mzima now
so if its bgp then should only take another 60 seconds
jazz57: I'm still getting destination unreachable
***: kitkatbar has joined #arpnetworks
RandalSchwartz: Ooh, my nagios just went nuts
did we have some downtime recently?
kitkatbar: is anyone else experiencing network lag?
jazz57: kitkatbar: I can't get connect at all.
kitkatbar: me either
i've been working all day on my server
jazz57: Me too. :-)
I just through.
RandalSchwartz: I can't figure out why nagios can't even ping its own host
I've got "host down" on localhost. :(
dxtr: And yes, something went down before, RandalSchwartz
toddf: randalschwartz: fd depletion or other dos? firewalling localhost?
RandalSchwartz: no. nothing unusual.
maybe the whole VM was frozen
or at least the network stack outside my view
bad stuff from 1405 to 1426 across multiple VPS
toddf: nagios acts funny if resources take too long to allocate .. wheterh thats sockets or disk blocks etc
since it forks a process to run the check and considers things bad if it doesn't check in so to speak within a certain timeframe
RandalSchwartz: well - that's pointing at VM issues, not guest OS issues
jazz57: Looked like a network issue to me.
RandalSchwartz: so it's Garrey's problem not mine
kitkatbar: any of you guys can help me figure out why my rdns isn't working for my ipv6
***: heidar has joined #arpnetworks
RandalSchwartz: but it's his *because* I'm gonna get yelled at because of it
toddf: randalschwartz: think thundering herd of disk io .. slowing nagios process creation if the sectors happen to not be cached in memory ..
RandalSchwartz: sure. Still sounds like a virtual-hardware fault though
I'd like those to go away
toddf: given my experience with nagaios, I'd expand the timeframe during which individual checks timeout and/or generate warnings by 20-40% ... just because nagios couldn't meet its own criteria of happy days doesn't mean external usage was effected as much as nagios might have you think .. *shrug* .. I've written a replacement to nagios and uninstalled it from my systems due to its inability to stop producing false positives on real hw, leta lone ...
... virtual hw
RandalSchwartz: Yes - I wait 10 checks before I send a hard notice
but I still shouldn't be getting soft notices like this
both mabel and red went nuts at the same time
so I'm gonna blame somethign higher
mind you, 99.96% availability isn't bad
but another 9 wouldn't hurt
especially if it's a fault that Garrey can fix
and it sounds like all of us experienced something odd during that time
that smells of VM
oops. It's Garry, and Dolley
I have a hard time remembering that. Blame jet lag. )
jazz57: Here is my trace now:http://pastebin.ca/1986789
The route has changed back to Los Angeles.
So somehow a partial network outage causes weirdness with the VMs.
toddf: ok, so who here is setting their vm to go 'fritz' when upstream network outages occur? ;-)
kitkatbar: anyone run debian & bind w/ ipv6?
RandalSchwartz: maybe a bunch of console notifications (high uninterruptible priority)
vapor: kitkatbar, dig -x ip +trace is your friend
jazz57: I did get some "runtime went backwards" notices the other day in my logs.
Interrupts may be getting dropped when activity is too high.
Someone suggested dropping kern.HZ to 10.
(assuming freeBSD)
RandalSchwartz: I think it's that already
kitkatbar: maybe it was the mysterious missle launch earlier off the coast of la the caused it
RandalSchwartz: Oh. I have hz = 100
did the missle launch affect the cruise ship that lost power? :)
vcs: maybe the missle took out our route :X
bastards!
RandalSchwartz: that's what I get for putting that info record in!
$ host -t loc stonehenge.com
stonehenge.com location 34 2 53.000 N 118 15 21.000 W 50.00m 1m 10000m 10m
kitkatbar: vcs, can you post your reverse zone for ipv6 please?
wait
vcs: kitkatbar: sure
kitkatbar: i already have the link
i used same generator you did
but my reverses dont work :/
vcs: http://pastebin.com/r5mb6mwn
did you use your own ip /48 range
and not mine
kitkatbar: yes
vcs: perhaps your named.conf file is bad?
kitkatbar: http://pastebin.com/J3VcyXaf
vcs: or you did not run rndc reload
kitkatbar: yes i have
lol
ive tryed everything i know
vcs: 201011090 ; Serial number (YYYYMMdd)
errr
you have only changed to today?
kitkatbar: i've been at this all day
vcs: every time you make a change
it requires an incriment
then rndc reload
RandalSchwartz: Uh - that's not 00
vcs: else it will not realod
RandalSchwartz: 20101109xx
kitkatbar: even for 'host ipv6:address' to work?
oh i see
to check to see if the config has changed
lemme test this
RandalSchwartz: I'm old school... /etc/rc.d/named reload :)
kitkatbar: well i have mostly been restarting it with /etc/init.d/bind9 restart
Lefty: reload is enough
kitkatbar: ah
well i still have a problem then :/
Lefty: and you should alwaysalwaysalways increment the serial
kitkatbar: yes i just did and tested it
same result
but atleast i know in the future when i make a modification, to increment the serial
RandalSchwartz: are there any error messages when bind is reloading?
what does your local soa report?
host -t soa $domain $localhost
toddf: you've checked your /var/log/* logfiles, right?
kitkatbar: no errors when bind is reloading
host -t soa six.nullbnc.com nullbnc.com
Using domain server:
Name: nullbnc.com
Address: 174.136.101.162#53
Aliases:
six.nullbnc.com has no SOA record
RandalSchwartz: no no - the rdns
since that's what you're having trouble with
or am I mixing up conversations here
kitkatbar: no
RandalSchwartz: your bind should report an SOA with the same serial as what you defined
host -t soa 0.c.5.a.8.f.2.f.7.0.6.2.ip6.arpa. localhost
something like that
Wait a second
that SOA is wrong
@ IN SOA your.forward.host.name.here.com your.email.host.com. (
that's what you want
not the reverse
you're defining the authoritative *master* host for *this* domain
for example, I have
@ IN SOA red.stonehenge.com. hostmaster.stonehenge.com. (
-: RandalSchwartz waits until kitkatbar catches up
kitkatbar: so your saying '@ IN SOA 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa. ns1.nullbnc.com. (' is wrong in my reverse-ip6.arpa file?
RandalSchwartz: Yes. Very Wrong.
kitkatbar: guess thats what i get for using damn generator for this reverse file
RandalSchwartz: @ IN SOA master.host.com youremail.youremailhost.com
toddf: hahaha. wrong indeed.
RandalSchwartz: no - you just put the wrong data in
it asked you things, you told it wrong :)
GIGO
kitkatbar: ah
lol
lemme see if this will fix it
RandalSchwartz: and what does your delegation in your master file look like?
kitkatbar: in my nullbnc.com.db file it looks like
@ IN SOA ns1.nullbnc.com. ns2.nullbnc.com.
RandalSchwartz: no... in your named.conf
... zone "0.8.0.3.8.f.2.f.7.0.6.2.ip6.arpa" {
something like that?
kitkatbar: yea
RandalSchwartz: ok - so fix your soa, reload
and then you should be able to check your soa locally
once that's working, you can worry about the right upstream delegations
kitkatbar: host -t soa -i six.nullbnc.com
six.nullbnc.com has no SOA record
toddf: wrong question
RandalSchwartz: indeed
toddf: host -t soa -i nullbnc.com localhost
RandalSchwartz: but I'm asking about the reverse-6 records
he should be able to see his ip6.arpa soa
kitkatbar: host -t soa -i nullbnc.com localhost
Using domain server:
Name: localhost
Address: 127.0.0.1#53
Aliases:
nullbnc.com has SOA record ns1.nullbnc.com. ns2.nullbnc.com. 201011091 86400 1800 172800 259200
RandalSchwartz: kitkatbar - that's still broken
unless your contact email is ns2@nullbnc.com
although, knowing you, it might be :)
@ IN SOA MASTERHOSTGOESHERE YOURCONTACTEMAILGOESHERE (
there... clearer now?
kitkatbar: so now
nullbnc.com has SOA record ns1.nullbnc.com. admin.nullbnc.com. 201011092 86400 1800 172800 259200
RandalSchwartz: ok - that's good for the forward
now check the reverse
... host -t soa 0.c.5.a.8.f.2.f.7.0.6.2.ip6.arpa. localhost
or whatever your numbers are
basically, you should get a SOA record for everything you list in named.conf
as a master
kitkatbar: host -t soa 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa. localhost
Using domain server:
Name: localhost
Address: ::1#53
Aliases:
Host 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa not found: 2(SERVFAIL)
RandalSchwartz: well - there's your problem then
are you *sure* your named.conf is correct?
kitkatbar: pretty sure
jpalmer: kitkatbar: sorry I had to run earlier. work called. did you get ip6.arpa resolution working?
RandalSchwartz: jpalmer - not yet
I smell something wrong with named.conf at this point
kitkatbar: but can't be certain about anything now :p
RandalSchwartz: please pastebin your "zone" entry for that reverse
zone "0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa" {
...
until the end of that block
does it have "type master" and "file '...'" correct at least?
kitkatbar: http://pastebin.com/Hv2UBRpG
yes, the reason i have ip commented under slave is cos i tryed it both ways earlier
RandalSchwartz: and the file is in the right place?
called reverse-2607 blah blah?
kitkatbar: yea, /etc/bind/zones/master/reverse-2607blahblah.ip6.arpa
***: nukefree has quit IRC (Quit: ZNC - http://znc.sourceforge.net)
kitkatbar: reverse-2607-f2f8-34c0_48.IP6.ARPA to be exact :p
RandalSchwartz: wait - I have "master/" in front of mine
is your filename like the others in that file (the ones that work)?
toddf: probably some option to prefix /etc/bind/zones infront
jpalmer: or a chroot
RandalSchwartz: I have file "master/stonehenge.com"
toddf: chroots tend to be in /var/named
RandalSchwartz: and file "master/..." for all the rest
are you sure you don't need "master/..." ?
options { directory "..." }
jpalmer: kitkatbar: what OS, and what version of BIND?
RandalSchwartz: it's relative to that, I think
kitkatbar: debian 5 bind 9
im adding it jus tto see
im curious if i need to go shoot myself for not seeing that
haha
host -t soa 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa. localhost
Using domain server:
Name: localhost
Address: 127.0.0.1#53
Aliases:
0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa has SOA record ns1.nullbnc.com. nullbnc.com. 201011092 86400 1800 172800 259200
RandalSchwartz: kitkatbar - was that it... "master/..." ?
ha ha
kitkatbar: yea
RandalSchwartz: kitkatbar - still wrong SOA
but you're getting closer
kitkatbar: it was thinking it was in the same dir as named.conf
i know
i just fixed it
when i saw it :)
RandalSchwartz: unless your email is "nullbnc@com" :)
kitkatbar: <- slow learner but persistant
lol
RandalSchwartz: <- slow teacher but easily distracted
ok - next step is to see if the delegation is coming at you from above
host -t ns 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa
better yet
host -t ns 0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa 4.2.2.2
so you're not getting a local value
Yeah - it's pointing at ns1 and ns2
so you have to get both ns1 and ns2 to agree on this record now
kitkatbar: but ns2 is just a mirror of ns1 for me
:D
on a different ip
RandalSchwartz: "mirror"?
kitkatbar: lol @ i dont even think ns2 is setup
RandalSchwartz: that's the next step then
make all the errors on this go away, and you'll be done: http://www.intodns.com/0.c.4.3.8.f.2.f.7.0.6.2.ip6.arpa
kitkatbar: yea i was there earlier
had quite a few errs
thx for your assistance
i'll try to finish up
was my goal for today :D
RandalSchwartz: depending on your timezone, you're either just in time for a beer, or now can begin your workday. :)
kitkatbar: i'd be on the side of the beer
lol
tooth: It's always beer o clock
vapor: beer:30
***: jazz57 has left
nukefree has joined #arpnetworks
nukefree has quit IRC (Ping timeout: 245 seconds)
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer
heavysixer has quit IRC (Client Quit)
kitkatbar: so do i really need two nameservers for ipv6 reverses to work?
RandalSchwartz: no - but your ns delegations need to agree
kitkatbar: shit
so
RandalSchwartz: so if you don't want two nameservers, don't let your upstream say that
kitkatbar: if i said ns1 and ns2
on the delegation request
RandalSchwartz: it's all about the upstream
yeah
kitkatbar: i need to email them to remove ns2?
RandalSchwartz: uh, whatever
kitkatbar: can you do that for me? :)
RandalSchwartz: but you really should have a secondary
especailly a secondary that is far far away from you
he.net provides those for free
that's what I'm using
kitkatbar: ok i'll check into it
tunnelbroker?
RandalSchwartz: yes
***: nukefree has joined #arpnetworks
nukefree has quit IRC (Quit: ZNC - http://znc.sourceforge.net)
nukefree has joined #arpnetworks
kitkatbar has quit IRC (Quit: Lost terminal)
fink has quit IRC (Quit: fink)
tinono has joined #arpnetworks
tinono: oh i was looking for kitkabar. just went through the logs. his reverse zone is ok, but he's missing a few zeros in his ptr reconrds.
***: mike-burns has quit IRC (*.net *.split)
sentabi has quit IRC (*.net *.split)
tinono has quit IRC (Quit: leaving)
mike-burns has joined #arpnetworks
ChanServ sets mode: +o mike-burns
sentabi_ has joined #arpnetworks