[00:00] argh that sucks, until recently, most of my traffic went: Akl->Wellington->Akl->Whereever [00:00] haha [00:00] you know on telstraclear cable in chch to get to paradise in wellington it routes through auckland [00:00] the pains of having an ISP thats Wellington based [00:00] so if you traceroute to www.paradise.net.nz it goes via auckland [00:00] what isp is wellington based? [00:00] haha, thats smart... [00:01] merky: Actrix [00:01] oh [00:01] yeah they've been around for ages [00:01] snap route everything through christchurch [00:01] but i'm in chch so i'm ok with that [00:01] in the US [00:01] routing to phoenix is really bad [00:01] yeah, switching to Orcon was a massive Latency buster [00:02] i was surprised [00:02] i thought the US was a lot better than us [00:02] but they still have some issues in various cities it seems [00:02] hmm, [00:02] and it looks like once I get my Arp VPS setup the way I want it, I can shave another 30ms off my VPS traffic [00:02] yeah, i actually wanted to ask some stuff about arpnetworks [00:02] i want to do complicated shit [00:03] and i dunno if it's possible with them or not [00:03] but for some reason, the speeds from arpnetworks to nz are relaly good [00:03] like 2 megs/sec on dsl [00:03] ha I just got mine, so I prob can't answer [00:03] i've just done that 100 mb test [00:03] yeah, pretty fast, as fast as accessing Citylink servers for me [00:03] i used to think dsl in nz was shit [00:03] but things ahve got a bit better now [00:03] and I'm 5km from the exchange ;) [00:03] ahh yip [00:04] i'm on a cabinet at hoem [00:04] 2Mbit/s [00:04] 2 megabit? [00:04] yep [00:04] i get about 18 megabit/sec [00:04] nice [00:04] and about 1.09 up [00:04] but yeah [00:04] my connection REALLY sucked until i got it shifted to EUBA [00:04] argh, you are bringing back memories of when I was living in Brisbane last year ;) [00:04] like i was getting 30k/sec internationally [00:05] made a world of difference [00:05] it felt like cable [00:05] like ssh was smooth [00:05] non jumpy [00:05] peppy responsive [00:05] but yeah, now i want to do complicated shit [00:05] basically i want to proxy through the US [00:05] which makes sense to do in LA [00:05] as far as pings go [00:06] i've got a VPS in la already umm .. budgetvm [00:06] but the speeds aren't as good [00:06] like 1 meg/sec to nz [00:06] but i had a vps in phoenix before that [00:07] and hardly any sites had small ping [00:07] and the routing sucked, and it was openvz, and they kept trying to inject their lame dns servers [00:07] which made the pings even worse [00:07] actually it was level 3 dns [00:07] but like level 3 dns made google 60 msec instead of 20 etc [00:09] wow my la vps is giving 3.2 to 35.9 msec to google, wild fluctutaions [00:09] what kind of pings to google do you get from arp? [00:09] merky: proxy via LA, for things like Hulu etc? [00:09] nah for US content in general [00:10] i figure with persistent connections to the US [00:10] should be able to speed up web brwosing [00:10] round-trip min/avg/max/stddev = 0.794/0.889/1.019/0.082 ms [00:10] cos like in my testing etc [00:10] ping to google.com [00:10] web sites don't get up to speed internationally very qucikly at all [00:10] yeah - that's good [00:11] notice how the fluctuations are fine? [00:11] large fluctuations usually mean congestion [00:11] but yeah , i have vps in chicago too [00:11] yeah everything looks relatively stable [00:11] and like accessing slashdot via chicago vps is way faster [00:12] so i'm actually thinking of this complex scheme [00:12] where bounce through la or chicago [00:12] depending where the site is [00:12] which means figuring out where to send it to [00:12] which means i want a bgp feed too [00:12] 62ms to /. [00:12] well that's the easier way [00:13] can you do time curl http://slashdot.org/ > /dev/null [00:13] twice [00:13] wow this vps is going REALLY slow for disk i/o or smoething [00:13] http://pastebin.com/7Lj8xgLS [00:14] yeah it's 300 msec [00:14] ish [00:14] 280 [00:14] persistent connections to there could still help [00:14] it's like 900 to 1100 msec from home for me [00:14] see how much higher than 62 msec it is? [00:15] i get 375 msec off this other la vps btw [00:15] and 59 msec ping [00:16] and from chicago it takes 23 msec [00:16] with a 2 msec ping [00:27] *** nuke- has quit IRC (Ping timeout: 264 seconds) [00:30] *** nuke- has joined #arpnetworks [00:45] *** DDevine has joined #arpnetworks [01:34] *** _Ehtyar has joined #arpnetworks [01:49] *** Ehtyar has quit IRC (Remote host closed the connection) [02:08] Mmm... Amazon S3 does DNS now. [02:09] Bah not S3, AWS. [02:10] up_the_irons: any reason console attempts would show Connection Refused from kvr14? [02:16] *** schmir has joined #arpnetworks [02:42] *** amdprophet has joined #arpnetworks [03:47] *** merky has quit IRC (Quit: Leaving.) [05:25] *** ziyourenxiang has joined #arpnetworks [05:37] *** ziyourenxiang has quit IRC (Quit: ziyourenxiang) [05:37] *** DDevine has quit IRC (Remote host closed the connection) [07:31] *** fink has joined #arpnetworks [08:03] lame - new amazon "route 53" nameservers are *not* ipv6 accessible yet [08:05] lol [08:05] no excuse [08:09] ... but they scale! [08:11] well, duh. IPv6 isn't scalable! [08:22] Ha. [08:22] haha [08:22] ipv4 and nat is the future [08:23] it allows infinite layers of NAT [08:25] I can't wait for the days of NAT loops. you're behind ISP1 who nat's, trying to communicate with someone on ISP2 who nat's, both ISP's have the same backbone, who NAT's.. and something is slightly amiss in the configuration, and it all goes to hell. [08:27] yeah jpalmer [08:27] if they dont eventually move to ipv6 [08:27] the ISP's wont be able to do much [08:29] and there's only so many 1918 nets [08:29] I've had collisions before [08:30] captive portals like 192.168/16, for example [08:30] so if I'm also using that for a tunnel, I lose. [08:31] RandalSchwartz: yup, has happened to me [08:33] I now often pick the /12, since that seems too confusing for most people to use. :) [08:33] people stick with 10/8 or 192.168/16 [08:33] *** vapor has quit IRC (Ping timeout: 260 seconds) [08:33] I note that "mywi", the iphone tethering software, prefers the /12 [08:34] RandalSchwartz: right, and if your openvpn happens to conflict with mywi…then you're screwed [08:34] hehe [08:34] also happened to me [08:34] has happened to me as well [08:34] had to move all my internal subnets [08:34] to more obscure ones [08:34] mywi should have a flag to change that [08:34] because it was conflicting with peoples home wifi [08:34] lol [08:35] i guess it was to be expected [08:35] have you guys ordered hd's from amazon? i'm reading about lots of packaging problems [08:35] *** vapor has joined #arpnetworks [08:35] yes - mywi has a setting for that [08:35] with also a few 10 and 192.168 choices as well [08:36] not infinitely flexible, but probably good enough [08:36] RandalSchwartz: it does?? i missed that, thanks [08:37] yeah, it's on both the USB and wifi tethering menus [08:38] under "advanced" [08:38] ahh, no 10.x choices [08:38] just 192.168. 20, 30, 40 [08:38] and 172.10 20, 30, 40 [08:39] nice... the USB ranges are +1 [08:39] 192.168. 21, 31, 41 [08:39] better than nothing; great! [08:40] RandalSchwartz: you use your iphone w/bluetooth or wifi mostly? [08:40] tethering, that is [08:40] USB mostly [08:40] has to be hooked up to charge anyway [08:40] so I save radio power and just usb tether [08:41] RandalSchwartz: maybe you know…the usb and bt network pref panes for iphone tethering lack a lot of options, specifically the proxy settings [08:41] you mean apples? or mywi? [08:41] or osx? [08:41] too many meanings for pref pane. :) [08:41] and proxy [08:42] RandalSchwartz: osx's network settings prefpane [08:42] I can't get to them right now, but I seem to recall them being full prefpanes [08:43] everything interesting under "advanced", like proxy [08:43] if you go to the 'advanced' section for ethernet or airport, there's a 'proxies' tab [08:43] hmm, mine doesn't have it; can you check the next time you're using it? [08:44] e.g.: if i select the 'iphone bluetooth' or 'iphone usb' interface, i only see two tabs: 'tcp/ip' & 'dns' , no proxy tab or anything else [08:44] i wanted to set up a transparent caching polipo proxy, to speed up my tethered connection, and stay under att's radar [08:45] I just checked... [08:45] my "en2" which is my USB tether has "advanced" with "proxies" [08:45] huh [08:45] i'm on 10.6.5 [08:45] yeah, me too [08:46] maybe the cocoadev guys will know where these settings are stored [09:00] so when I turn on USB tether, I get an en4 now. weird. [09:01] well - I can't keep playing. $dayjob beckons [09:16] *** amdprophet has quit IRC (Ping timeout: 240 seconds) [09:16] *** mhoran_ has joined #arpnetworks [09:16] *** ChanServ sets mode: +o mhoran_ [09:16] *** mhoran has quit IRC (Read error: Operation timed out) [09:18] *** mhoran_ is now known as mhoran [09:51] *** cubelogic has joined #arpnetworks [10:11] *** heavysixer has quit IRC (Quit: heavysixer) [10:19] *** schmir has quit IRC (Remote host closed the connection) [10:21] *** fink_ has joined #arpnetworks [10:21] *** fink has quit IRC (Ping timeout: 240 seconds) [10:21] *** fink_ is now known as fink [11:19] wonder what would happen if wikileaks was referred to arpnetworks... [11:21] the US government would shut it down quickly with cease and desist orders. [11:22] http://v.gd/WvsAm [11:22] amazon didn't even get legal notice just caved under pressure [11:22] imho 2 things would happen [11:22] a) arp would get some temporary if not long term business from wikileaks [11:23] b) arp would get some publicity which would case unparalleled growth to arp... [11:23] toddf: we should set up a mirror [11:23] fink: a mirror of what exactly? [11:24] one of the wikileaks mirros [11:25] well, unless they've changed nameservers, the NDS host (everyDNS) has dropped them, so.. there are no mirrors. [11:25] err, non on the wikileaks.org domain [11:26] ugh - arp doesn't need that kind of publicity *or* growth [11:26] or risk to my business operations. [11:26] please don't do unwise things. [11:27] RandalSchwartz: thought you were a free speech supporter [11:27] I am, but I can't bet my company on it. [11:27] not in this climate [11:28] how can it be a risk when it would mean more staff, more hardware, more bandwidth, more stability for arp .. maybe a little growing maintenance windows, but the quality that is arp IMHO would be to take it slow and make the new guys wait while those of us that have been around get to enjoy the continued stability, aka they'd do it right IMHO [11:28] apparently, you haven't been on the wrong end of a government enforcement action before. [11:28] I have. [11:29] all hypotehtical of course since I'm just a customer but .. would make sense from what I've seen so far [11:29] I'm very sensitive to kicking a sleeping dog. [11:29] ah. [11:30] toddf: it MAY mean all of those things, eventually. in the near term, it means DDoS targets, unwanted government notice, and such. and I'm not sure about anyone else.. I don't want my business services interuppted because someone put a random wikileaks.org mirror up. [11:30] For example, hosting wikileaks at ARP could get the gov'mint to immediately cease *all* of ARPs machines. [11:30] Bad bad bad idea. [11:31] Keep in mind, the concept of a VPS may completely elude the people crafting the warrants. [11:31] But physical boxes are easy to understand. [11:31] *IF* ARP were to consider hosting a mirror, I think it should be up to the sole discression of ARP staff. [11:31] seize, not cease. [11:31] I'm sure up_the_irons would consider our input. [11:31] stupid homonyms :) [11:32] don't get me wrong, I'm all for free speech. but this whole issue goes far beyond that simple concept. [11:32] I'm sure the last few minutes have already demonstrated our firm commitment to not be at risk. [11:33] yes - this case goes a long ways beyond free speech [11:34] for example, if you steal someone's printing press, the courts will *not* protect you under the first amendment to use that press to make your flyers :) [11:34] it also demonstrates the threat of fear from the government causes speech that is not desirable by the government to be less free to find hosting and dns services. [11:35] on the other hand, the controversy and mainstream news reporting actually has introduced wikileaks to people who have never heard of it before. [11:35] do we need more transparency in government? Yes. should we commit *illegal* acts to get that transparency? no. [11:35] Additionally, I like my servers being online. [11:36] instead, we should elect congress critters with backbones [11:36] it's *their* job to make this kind of stuff public [11:36] that's the proper route [11:36] when it's pretty evident that the things you are speaking of, is stolen.. It becomes a liability issue of having that information on your machines. It's not the "freedom of speech" in question. it's hard to find web hosting, and DNS hosting because of the legality of doing said hosting. [11:36] anyway, off to lunch. [11:36] it'd be nice if I could fugure out how to fix oklahoma's voting places to permit writeins. they only permit republicans and democrats on the ballot. hard to find a character with backbone in those restricted lists. [11:37] i guess it's smarter to have the mirror in a country where us laws do not apply [11:37] personally, I don't think this is the appropriate place to discuss our political views ;) so with that, I'll gracefully exit the conversation. [11:38] hehe its been a tangential cascade, no worries [11:38] jpalmer: nytimes doesn't seem to have a problem finding servers to post parts of the wikileaks materials [11:38] jpalmer: ok, disregard [11:39] Let's discuss IPv6 instead. I'm sure that can get heated on its own. [11:44] G: fixed Connection Refused, sorry. [11:49] *** cedwards has quit IRC (Ping timeout: 240 seconds) [12:12] mike-burns: ffff:you :( [12:15] Heh. [12:23] *** fink_ has joined #arpnetworks [12:24] *** fink has quit IRC (Ping timeout: 240 seconds) [12:24] *** fink_ is now known as fink [12:25] *** _Ehtyar has quit IRC (Remote host closed the connection) [12:29] *** heavysixer has joined #arpnetworks [12:29] *** ChanServ sets mode: +o heavysixer [12:39] up_the_irons: ahhh nice, and nice console method, thanks :) [12:41] i really don't like being OT (jpalmer said it right, heh), but, if arp were to mirror, i would have to leave. too much at risk for me. and, cum grane salis, as one of those nontransparent gov't workers ... let me just say that 1 person will tell 10 people about a bad experience whereby out of 10 good experiences, perhaps 1 person will say so [13:29] the 'states is not a good place to have that stuff. [13:29] in the old days we would have been able to say "neutral common carrier, go talk to the customer" [13:30] but that's pretty much gone these days. [13:31] fink the nytimes has a bit more political clout than arp (or amazon) [13:34] sorry for OT... just finishing the scrollback [13:34] mandatory operational content: up_the_irons if you get any flak for spaghetti graph here: http://river.styx.org/ww/2010/12/cablegraph being on your network, let me know and i'll move it [13:35] i'd be *very* surprised if you did [13:50] G: no prob! [13:50] ww: roger that [13:52] *** schmir has joined #arpnetworks [13:54] *** nakano_ is now known as nakano [13:55] up_the_irons: Drugs are bad mkay? [13:55] for the record guys, I'd never want to host a wikileaks mirror. I'm all for free speech, but I also don't want my network to go down from a DDoS [13:56] yes [13:56] nor do i! [13:56] lol [13:56] or 99.9% of your other customers for that matter gary [13:57] up_the_irons: PRQ ;) [13:57] You should be more like them :D [13:57] .. but cheap [13:57] http://www.prq.se/?intl=1 [13:58] (TPB etc. if you didn't know) [13:58] haha [13:59] even PRQ could not host it [13:59] thats when you know you have a problem [13:59] I heard Bahnhof is hosting (one of) wikileaks servers [13:59] (one of/some of) [14:00] vcs: Problem is the media industry bribed some law enforcement guys so they took a shitload of servers from their server hall just to get TPBs server [14:00] And the other affected companies were lucky if they got anything back after a couple of years [14:00] haha [14:00] brutal [14:01] Kind of [14:01] they seem to have three addresses at the moment, one at bahnhof, the ovh france one is still there and a third at serverius in the netherlands... [14:01] It wasn't the polite "We want these servers" and accept that PRQ couldn't point out that server [14:02] (severius seems to be direct peer or customer of he.net fwiw) [14:03] in fact... traceroute to 178.21.20.9 is hanging right off of a he.net router in amsterdam... [14:24] *** fink has quit IRC (Quit: fink) [14:40] *** schmir has quit IRC (Remote host closed the connection) [14:44] *** o_o has joined #arpnetworks [14:45] *** o_o is now known as Guest21300 [14:46] *** Guest21300 has quit IRC (Remote host closed the connection) [14:47] *** whitefang has quit IRC (Ping timeout: 272 seconds) [14:50] *** schmir has joined #arpnetworks [14:51] *** amdprophet has joined #arpnetworks [14:53] *** schmir has quit IRC (Remote host closed the connection) [14:58] *** wallshot has joined #arpnetworks [15:01] *** richardquisumbin has joined #arpnetworks [15:07] noticed the increase from 50GB to 100GB in the order page, does this apply also to existing vps? [15:08] I think he mentioned something about maybe offering people a one-time payment to update it. [15:09] ... I would hope so, otherwise there's not a lot of reason for people not to just close and re-order, which is no doubt a pain in the ass for him. [15:18] jdoe: http://twitter.com/#!/bsdvps/status/11645878834036736 [15:20] ah, there you go [15:25] thanks [15:40] *** o_o has joined #arpnetworks [15:40] *** o_o is now known as Guest73644 [15:48] *** DDevine has joined #arpnetworks [15:48] Anybod have an opinion on Qmail or Qmail Toaster? [15:49] fuck qmail. [15:49] fuck it marginally less now that it can be packaged/patched into something you might actually want to use. [15:49] *** whitefang has joined #arpnetworks [15:49] (imo) [15:51] It has an uncomfortable feel for me. Its a bit strange that it is public domain software instead of a proper open source project. [15:58] I just popped in, what software are you speaking of DDevine? [16:01] qmail [16:01] I share the opinion that it is crap [16:08] qmail was neat in the 90's [16:09] it's such a pain to patch and keep updated though [16:09] i moved on to postfix about 6 or 7 years ago and was thrilled with the change [16:09] which also makes some nice toasters [16:10] with much of the same tools. it doesn't need vpopmail i don't think, but you can toss together postfix+mysql+courier-imap+cyrus-sasl toaster with ssl/tls smtp/imap/pop3 [16:11] qmail's async bounces of undeliverable mail kinda bugged the crap out of me too [16:11] spam comes in to nonexistent address at my domian. from/returnpath are nonexistent spammer lies. qmail accepts for delivery, then tries to async bounce, fails to async bounce, and drops double-bounced into postmaster's mailbox [16:12] imo, those should have never been accepted for delivery [16:12] whitefang: Qmail (and Qmail Toaster) [16:14] wallshot: I was a bit curious. I think I might avoid it. [16:16] i did have happy times for a while running qmail toaster [16:17] but all the post-install patching and hacks to make it work had me a bit nervous about port upgrades mucking with it [16:17] Easily upgradable is very important. [16:17] with postfix toaster there were no hacks, just normal config file adjustments, and the stored make config options [16:18] so i felt much more confident when i rolled a postfix update that it wouldn't randomly undo some hacks i'd implemented [16:18] since, you know, there were no hacks i had to implment with postfix :) [16:18] yeah i'm pretty keen on stuff that upgrades nicely with ports [16:18] exim is another possibility. [16:18] ... or if you have background with sendmail, you could always stick with that. [16:19] it sucks dramatically less than it used to. [16:19] yeah sendmail isn't the sadness it was in the 90's from what i gather [16:20] m4 configuration? Yuck. [16:21] shrug. [16:21] could be worse. [16:24] Exim? I used that piece of crap once [16:25] to each their own :P [16:25] Never tried sendmail. Been using postfix for a while now [16:25] It has everything I need - plus postgrey :P [16:26] I used it for a long time here. I ended up ripping it out because I needed to expose the mail stuff to the world and wasn't convinced I knew enough about what I was doing for that to be safe :P [16:26] (but up until that it worked fine...) [16:27] So I'm considering buying PGP Whole Disk Encryption [16:29] dxtr: For *BSD or Linux? [16:29] DDevine: OSX [16:29] oh. Whatever. [16:30] Wtf? :p [16:31] Anyone here familiar with bitcoins? [16:40] only that "it's a terrible and stupid idea" [16:41] I don't really get it [16:41] Yeah I don't really know how it works. [16:41] Create a virtual currency, that gains value if people accept it as a currency.. But all the clients are generating "blocks" [16:41] Wtf are these blocks? [16:41] I read the FAQ over and over again [16:42] And I still don't get it :P [16:43] 21 million bitcoins... But there is more than 21million potential users. That's a bit strange. [16:43] I'm more curious as to how they're going to stop people from manipulating the value of it... [16:43] oh you can do fractions of a coin [16:45] https://ripplepay.com/ [16:46] a much nicer idea... maybe has some np-complete problems to chew on... but i think it is resilient against people manipulating it [16:46] I doubt anybody understands it. [16:56] I kind of understand bitcoin useage because it is just a distributed hash table and you pass the coins around by using keys, but I don't understand why they let you generate coins with a network node. [16:56] There's probably an IRC channel we cak ask in. [17:02] Oh it turns out my suspicion was right. Allowing nodes to generate is a way to encourage people to set up network nodes and get teh currency into circulation... [17:02] And the number of coins is capped at 21 million so it won't always be that way. [17:12] ? [17:22] *** nakano is now known as nakano_ [17:22] *** nakano_ is now known as nakano [18:06] *** Guest73644 is now known as robotarmy [18:10] Ah I was wondering when my VPS would be provisioned - and then I checked my admin@ account and there it was. They must have re-used details form the last time I was with them because I don't recall using my admin@ address this time. Ah well. [18:26] *** wallshot has quit IRC (Remote host closed the connection) [18:32] DDevine: come to think of it, yeah, we used the account that was already on file [18:51] *** cubelogic has quit IRC (Remote host closed the connection) [18:53] *** cubelogic has joined #arpnetworks [18:54] *** amdprophet has quit IRC (Read error: Connection reset by peer) [19:24] *** nakano is now known as nakano_ [19:39] *** amdprophet has joined #arpnetworks [20:14] *** fink has joined #arpnetworks [21:10] *** blovett has joined #arpnetworks [21:24] *** nakano_ is now known as nakano [21:29] *** nakano is now known as nakano_ [21:30] Just speculation, but CentOS 6 may be ready around christmas. http://www.linux.com/news/enterprise/biz-enterprise/386181:it-may-be-a-centos-christmas [21:38] *** fink has quit IRC (Quit: fink) [21:39] *** merky has joined #arpnetworks [21:39] up_the_irons: I can't seem to log into the portal [21:39] With the details provided in the email [21:45] *** wacker has quit IRC (Ping timeout: 260 seconds) [22:55] *** toddf has quit IRC (Ping timeout: 276 seconds) [22:55] *** toddf has joined #arpnetworks [22:55] *** ChanServ sets mode: +o toddf [23:40] *** wacker has joined #arpnetworks