merky: haha
you know on telstraclear cable in chch to get to paradise in wellington it routes through auckland G: the pains of having an ISP thats Wellington based merky: so if you traceroute to www.paradise.net.nz it goes via auckland
what isp is wellington based? G: haha, thats smart...
merky: Actrix merky: oh
yeah they've been around for ages
snap route everything through christchurch
but i'm in chch so i'm ok with that
in the US
routing to phoenix is really bad G: yeah, switching to Orcon was a massive Latency buster merky: i was surprised
i thought the US was a lot better than us
but they still have some issues in various cities it seems
hmm, G: and it looks like once I get my Arp VPS setup the way I want it, I can shave another 30ms off my VPS traffic merky: yeah, i actually wanted to ask some stuff about arpnetworks
i want to do complicated shit
and i dunno if it's possible with them or not
but for some reason, the speeds from arpnetworks to nz are relaly good
like 2 megs/sec on dsl G: ha I just got mine, so I prob can't answer merky: i've just done that 100 mb test G: yeah, pretty fast, as fast as accessing Citylink servers for me merky: i used to think dsl in nz was shit
but things ahve got a bit better now G: and I'm 5km from the exchange ;) merky: ahh yip
i'm on a cabinet at hoem G: 2Mbit/s merky: 2 megabit? G: yep merky: i get about 18 megabit/sec G: nice merky: and about 1.09 up
but yeah
my connection REALLY sucked until i got it shifted to EUBA G: argh, you are bringing back memories of when I was living in Brisbane last year ;) merky: like i was getting 30k/sec internationally
made a world of difference
it felt like cable
like ssh was smooth
non jumpy
peppy responsive
but yeah, now i want to do complicated shit
basically i want to proxy through the US
which makes sense to do in LA
as far as pings go
i've got a VPS in la already umm .. budgetvm
but the speeds aren't as good
like 1 meg/sec to nz
but i had a vps in phoenix before that
and hardly any sites had small ping
and the routing sucked, and it was openvz, and they kept trying to inject their lame dns servers
which made the pings even worse
actually it was level 3 dns
but like level 3 dns made google 60 msec instead of 20 etc
wow my la vps is giving 3.2 to 35.9 msec to google, wild fluctutaions
what kind of pings to google do you get from arp? G: merky: proxy via LA, for things like Hulu etc? merky: nah for US content in general
i figure with persistent connections to the US
should be able to speed up web brwosing G: round-trip min/avg/max/stddev = 0.794/0.889/1.019/0.082 ms merky: cos like in my testing etc G: ping to google.com merky: web sites don't get up to speed internationally very qucikly at all
yeah - that's good
notice how the fluctuations are fine?
large fluctuations usually mean congestion
but yeah , i have vps in chicago too G: yeah everything looks relatively stable merky: and like accessing slashdot via chicago vps is way faster
so i'm actually thinking of this complex scheme
where bounce through la or chicago
depending where the site is
which means figuring out where to send it to
which means i want a bgp feed too G: 62ms to /. merky: well that's the easier way
can you do time curl http://slashdot.org/ > /dev/null
twice
wow this vps is going REALLY slow for disk i/o or smoething G: http://pastebin.com/7Lj8xgLS merky: yeah it's 300 msec
ish
280
persistent connections to there could still help
it's like 900 to 1100 msec from home for me
see how much higher than 62 msec it is?
i get 375 msec off this other la vps btw
and 59 msec ping
and from chicago it takes 23 msec
with a 2 msec ping ***: nuke- has quit IRC (Ping timeout: 264 seconds)
nuke- has joined #arpnetworks
DDevine has joined #arpnetworks
_Ehtyar has joined #arpnetworks
Ehtyar has quit IRC (Remote host closed the connection) DDevine: Mmm... Amazon S3 does DNS now.
Bah not S3, AWS. G: up_the_irons: any reason console attempts would show Connection Refused from kvr14? ***: schmir has joined #arpnetworks
amdprophet has joined #arpnetworks
merky has quit IRC (Quit: Leaving.)
ziyourenxiang has joined #arpnetworks
ziyourenxiang has quit IRC (Quit: ziyourenxiang)
DDevine has quit IRC (Remote host closed the connection)
fink has joined #arpnetworks RandalSchwartz: lame - new amazon "route 53" nameservers are *not* ipv6 accessible yet vcs: lol
no excuse mike-burns: ... but they scale! jpalmer: well, duh. IPv6 isn't scalable! mhoran: Ha. vcs: haha
ipv4 and nat is the future
it allows infinite layers of NAT jpalmer: I can't wait for the days of NAT loops. you're behind ISP1 who nat's, trying to communicate with someone on ISP2 who nat's, both ISP's have the same backbone, who NAT's.. and something is slightly amiss in the configuration, and it all goes to hell. vcs: yeah jpalmer
if they dont eventually move to ipv6
the ISP's wont be able to do much RandalSchwartz: and there's only so many 1918 nets
I've had collisions before
captive portals like 192.168/16, for example
so if I'm also using that for a tunnel, I lose. fink: RandalSchwartz: yup, has happened to me RandalSchwartz: I now often pick the /12, since that seems too confusing for most people to use. :)
people stick with 10/8 or 192.168/16 ***: vapor has quit IRC (Ping timeout: 260 seconds) RandalSchwartz: I note that "mywi", the iphone tethering software, prefers the /12 fink: RandalSchwartz: right, and if your openvpn happens to conflict with mywi…then you're screwed vcs: hehe fink: also happened to me vcs: has happened to me as well
had to move all my internal subnets
to more obscure ones fink: mywi should have a flag to change that vcs: because it was conflicting with peoples home wifi
lol
i guess it was to be expected fink: have you guys ordered hd's from amazon? i'm reading about lots of packaging problems ***: vapor has joined #arpnetworks RandalSchwartz: yes - mywi has a setting for that
with also a few 10 and 192.168 choices as well
not infinitely flexible, but probably good enough fink: RandalSchwartz: it does?? i missed that, thanks RandalSchwartz: yeah, it's on both the USB and wifi tethering menus
under "advanced"
ahh, no 10.x choices
just 192.168. 20, 30, 40
and 172.10 20, 30, 40
nice... the USB ranges are +1
192.168. 21, 31, 41 fink: better than nothing; great!
RandalSchwartz: you use your iphone w/bluetooth or wifi mostly?
tethering, that is RandalSchwartz: USB mostly
has to be hooked up to charge anyway
so I save radio power and just usb tether fink: RandalSchwartz: maybe you know…the usb and bt network pref panes for iphone tethering lack a lot of options, specifically the proxy settings RandalSchwartz: you mean apples? or mywi?
or osx?
too many meanings for pref pane. :)
and proxy fink: RandalSchwartz: osx's network settings prefpane RandalSchwartz: I can't get to them right now, but I seem to recall them being full prefpanes
everything interesting under "advanced", like proxy fink: if you go to the 'advanced' section for ethernet or airport, there's a 'proxies' tab
hmm, mine doesn't have it; can you check the next time you're using it?
e.g.: if i select the 'iphone bluetooth' or 'iphone usb' interface, i only see two tabs: 'tcp/ip' & 'dns' , no proxy tab or anything else
i wanted to set up a transparent caching polipo proxy, to speed up my tethered connection, and stay under att's radar RandalSchwartz: I just checked...
my "en2" which is my USB tether has "advanced" with "proxies" fink: huh
i'm on 10.6.5 RandalSchwartz: yeah, me too fink: maybe the cocoadev guys will know where these settings are stored RandalSchwartz: so when I turn on USB tether, I get an en4 now. weird.
well - I can't keep playing. $dayjob beckons ***: amdprophet has quit IRC (Ping timeout: 240 seconds)
mhoran_ has joined #arpnetworks
ChanServ sets mode: +o mhoran_
mhoran has quit IRC (Read error: Operation timed out)
mhoran_ is now known as mhoran
cubelogic has joined #arpnetworks
heavysixer has quit IRC (Quit: heavysixer)
schmir has quit IRC (Remote host closed the connection)
fink_ has joined #arpnetworks
fink has quit IRC (Ping timeout: 240 seconds)
fink_ is now known as fink toddf: wonder what would happen if wikileaks was referred to arpnetworks... jpalmer: the US government would shut it down quickly with cease and desist orders. toddf: http://v.gd/WvsAm
amazon didn't even get legal notice just caved under pressure
imho 2 things would happen
a) arp would get some temporary if not long term business from wikileaks
b) arp would get some publicity which would case unparalleled growth to arp... fink: toddf: we should set up a mirror toddf: fink: a mirror of what exactly? fink: one of the wikileaks mirros jpalmer: well, unless they've changed nameservers, the NDS host (everyDNS) has dropped them, so.. there are no mirrors.
err, non on the wikileaks.org domain RandalSchwartz: ugh - arp doesn't need that kind of publicity *or* growth
or risk to my business operations.
please don't do unwise things. fink: RandalSchwartz: thought you were a free speech supporter RandalSchwartz: I am, but I can't bet my company on it.
not in this climate toddf: how can it be a risk when it would mean more staff, more hardware, more bandwidth, more stability for arp .. maybe a little growing maintenance windows, but the quality that is arp IMHO would be to take it slow and make the new guys wait while those of us that have been around get to enjoy the continued stability, aka they'd do it right IMHO RandalSchwartz: apparently, you haven't been on the wrong end of a government enforcement action before.
I have. toddf: all hypotehtical of course since I'm just a customer but .. would make sense from what I've seen so far RandalSchwartz: I'm very sensitive to kicking a sleeping dog. toddf: ah. jpalmer: toddf: it MAY mean all of those things, eventually. in the near term, it means DDoS targets, unwanted government notice, and such. and I'm not sure about anyone else.. I don't want my business services interuppted because someone put a random wikileaks.org mirror up. RandalSchwartz: For example, hosting wikileaks at ARP could get the gov'mint to immediately cease *all* of ARPs machines.
Bad bad bad idea.
Keep in mind, the concept of a VPS may completely elude the people crafting the warrants.
But physical boxes are easy to understand. jpalmer: *IF* ARP were to consider hosting a mirror, I think it should be up to the sole discression of ARP staff. RandalSchwartz: seize, not cease. mike-burns: I'm sure up_the_irons would consider our input. RandalSchwartz: stupid homonyms :) jpalmer: don't get me wrong, I'm all for free speech. but this whole issue goes far beyond that simple concept. RandalSchwartz: I'm sure the last few minutes have already demonstrated our firm commitment to not be at risk.
yes - this case goes a long ways beyond free speech
for example, if you steal someone's printing press, the courts will *not* protect you under the first amendment to use that press to make your flyers :) toddf: it also demonstrates the threat of fear from the government causes speech that is not desirable by the government to be less free to find hosting and dns services.
on the other hand, the controversy and mainstream news reporting actually has introduced wikileaks to people who have never heard of it before. RandalSchwartz: do we need more transparency in government? Yes. should we commit *illegal* acts to get that transparency? no. mike-burns: Additionally, I like my servers being online. RandalSchwartz: instead, we should elect congress critters with backbones
it's *their* job to make this kind of stuff public
that's the proper route jpalmer: when it's pretty evident that the things you are speaking of, is stolen.. It becomes a liability issue of having that information on your machines. It's not the "freedom of speech" in question. it's hard to find web hosting, and DNS hosting because of the legality of doing said hosting. RandalSchwartz: anyway, off to lunch. toddf: it'd be nice if I could fugure out how to fix oklahoma's voting places to permit writeins. they only permit republicans and democrats on the ballot. hard to find a character with backbone in those restricted lists. fink: i guess it's smarter to have the mirror in a country where us laws do not apply jpalmer: personally, I don't think this is the appropriate place to discuss our political views ;) so with that, I'll gracefully exit the conversation. toddf: hehe its been a tangential cascade, no worries fink: jpalmer: nytimes doesn't seem to have a problem finding servers to post parts of the wikileaks materials
jpalmer: ok, disregard mike-burns: Let's discuss IPv6 instead. I'm sure that can get heated on its own. up_the_irons: G: fixed Connection Refused, sorry. ***: cedwards has quit IRC (Ping timeout: 240 seconds) jdoe: mike-burns: ffff:you :( mike-burns: Heh. ***: fink_ has joined #arpnetworks
fink has quit IRC (Ping timeout: 240 seconds)
fink_ is now known as fink
_Ehtyar has quit IRC (Remote host closed the connection)
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer G: up_the_irons: ahhh nice, and nice console method, thanks :) azmarco: i really don't like being OT (jpalmer said it right, heh), but, if arp were to mirror, i would have to leave. too much at risk for me. and, cum grane salis, as one of those nontransparent gov't workers ... let me just say that 1 person will tell 10 people about a bad experience whereby out of 10 good experiences, perhaps 1 person will say so ww: the 'states is not a good place to have that stuff.
in the old days we would have been able to say "neutral common carrier, go talk to the customer"
but that's pretty much gone these days.
fink the nytimes has a bit more political clout than arp (or amazon)
sorry for OT... just finishing the scrollback
mandatory operational content: up_the_irons if you get any flak for spaghetti graph here: http://river.styx.org/ww/2010/12/cablegraph being on your network, let me know and i'll move it
i'd be *very* surprised if you did up_the_irons: G: no prob!
ww: roger that ***: schmir has joined #arpnetworks
nakano_ is now known as nakano dxtr: up_the_irons: Drugs are bad mkay? up_the_irons: for the record guys, I'd never want to host a wikileaks mirror. I'm all for free speech, but I also don't want my network to go down from a DDoS vcs: yes
nor do i!
lol
or 99.9% of your other customers for that matter gary dxtr: up_the_irons: PRQ ;)
You should be more like them :D
.. but cheap
http://www.prq.se/?intl=1
(TPB etc. if you didn't know) vcs: haha
even PRQ could not host it
thats when you know you have a problem dxtr: I heard Bahnhof is hosting (one of) wikileaks servers
(one of/some of)
vcs: Problem is the media industry bribed some law enforcement guys so they took a shitload of servers from their server hall just to get TPBs server
And the other affected companies were lucky if they got anything back after a couple of years vcs: haha
brutal dxtr: Kind of ww: they seem to have three addresses at the moment, one at bahnhof, the ovh france one is still there and a third at serverius in the netherlands... dxtr: It wasn't the polite "We want these servers" and accept that PRQ couldn't point out that server ww: (severius seems to be direct peer or customer of he.net fwiw)
in fact... traceroute to 178.21.20.9 is hanging right off of a he.net router in amsterdam... ***: fink has quit IRC (Quit: fink)
schmir has quit IRC (Remote host closed the connection)
o_o has joined #arpnetworks
o_o is now known as Guest21300
Guest21300 has quit IRC (Remote host closed the connection)
whitefang has quit IRC (Ping timeout: 272 seconds)
schmir has joined #arpnetworks
amdprophet has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
wallshot has joined #arpnetworks
richardquisumbin has joined #arpnetworks richardquisumbin: noticed the increase from 50GB to 100GB in the order page, does this apply also to existing vps? jdoe: I think he mentioned something about maybe offering people a one-time payment to update it.
... I would hope so, otherwise there's not a lot of reason for people not to just close and re-order, which is no doubt a pain in the ass for him. G: jdoe: http://twitter.com/#!/bsdvps/status/11645878834036736 jdoe: ah, there you go richardquisumbin: thanks ***: o_o has joined #arpnetworks
o_o is now known as Guest73644
DDevine has joined #arpnetworks DDevine: Anybod have an opinion on Qmail or Qmail Toaster? jdoe: fuck qmail.
fuck it marginally less now that it can be packaged/patched into something you might actually want to use. ***: whitefang has joined #arpnetworks jdoe: (imo) DDevine: It has an uncomfortable feel for me. Its a bit strange that it is public domain software instead of a proper open source project. whitefang: I just popped in, what software are you speaking of DDevine? Lefty: qmail
I share the opinion that it is crap wallshot: qmail was neat in the 90's
it's such a pain to patch and keep updated though
i moved on to postfix about 6 or 7 years ago and was thrilled with the change
which also makes some nice toasters
with much of the same tools. it doesn't need vpopmail i don't think, but you can toss together postfix+mysql+courier-imap+cyrus-sasl toaster with ssl/tls smtp/imap/pop3
qmail's async bounces of undeliverable mail kinda bugged the crap out of me too
spam comes in to nonexistent address at my domian. from/returnpath are nonexistent spammer lies. qmail accepts for delivery, then tries to async bounce, fails to async bounce, and drops double-bounced into postmaster's mailbox
imo, those should have never been accepted for delivery DDevine: whitefang: Qmail (and Qmail Toaster)
wallshot: I was a bit curious. I think I might avoid it. wallshot: i did have happy times for a while running qmail toaster
but all the post-install patching and hacks to make it work had me a bit nervous about port upgrades mucking with it DDevine: Easily upgradable is very important. wallshot: with postfix toaster there were no hacks, just normal config file adjustments, and the stored make config options
so i felt much more confident when i rolled a postfix update that it wouldn't randomly undo some hacks i'd implemented
since, you know, there were no hacks i had to implment with postfix :)
yeah i'm pretty keen on stuff that upgrades nicely with ports jdoe: exim is another possibility.
... or if you have background with sendmail, you could always stick with that.
it sucks dramatically less than it used to. wallshot: yeah sendmail isn't the sadness it was in the 90's from what i gather DDevine: m4 configuration? Yuck. jdoe: shrug.
could be worse. dxtr: Exim? I used that piece of crap once jdoe: to each their own :P dxtr: Never tried sendmail. Been using postfix for a while now
It has everything I need - plus postgrey :P jdoe: I used it for a long time here. I ended up ripping it out because I needed to expose the mail stuff to the world and wasn't convinced I knew enough about what I was doing for that to be safe :P
(but up until that it worked fine...) dxtr: So I'm considering buying PGP Whole Disk Encryption DDevine: dxtr: For *BSD or Linux? dxtr: DDevine: OSX DDevine: oh. Whatever. dxtr: Wtf? :p
Anyone here familiar with bitcoins? jdoe: only that "it's a terrible and stupid idea" dxtr: I don't really get it DDevine: Yeah I don't really know how it works. dxtr: Create a virtual currency, that gains value if people accept it as a currency.. But all the clients are generating "blocks"
Wtf are these blocks?
I read the FAQ over and over again
And I still don't get it :P DDevine: 21 million bitcoins... But there is more than 21million potential users. That's a bit strange. jdoe: I'm more curious as to how they're going to stop people from manipulating the value of it... DDevine: oh you can do fractions of a coin ww: https://ripplepay.com/
a much nicer idea... maybe has some np-complete problems to chew on... but i think it is resilient against people manipulating it DDevine: I doubt anybody understands it.
I kind of understand bitcoin useage because it is just a distributed hash table and you pass the coins around by using keys, but I don't understand why they let you generate coins with a network node.
There's probably an IRC channel we cak ask in.
Oh it turns out my suspicion was right. Allowing nodes to generate is a way to encourage people to set up network nodes and get teh currency into circulation...
And the number of coins is capped at 21 million so it won't always be that way. jdoe: ? ***: nakano is now known as nakano_
nakano_ is now known as nakano
Guest73644 is now known as robotarmy DDevine: Ah I was wondering when my VPS would be provisioned - and then I checked my admin@ account and there it was. They must have re-used details form the last time I was with them because I don't recall using my admin@ address this time. Ah well. ***: wallshot has quit IRC (Remote host closed the connection) up_the_irons: DDevine: come to think of it, yeah, we used the account that was already on file ***: cubelogic has quit IRC (Remote host closed the connection)
cubelogic has joined #arpnetworks
amdprophet has quit IRC (Read error: Connection reset by peer)
nakano is now known as nakano_
amdprophet has joined #arpnetworks
fink has joined #arpnetworks
blovett has joined #arpnetworks
nakano_ is now known as nakano
nakano is now known as nakano_ DDevine: Just speculation, but CentOS 6 may be ready around christmas. http://www.linux.com/news/enterprise/biz-enterprise/386181:it-may-be-a-centos-christmas ***: fink has quit IRC (Quit: fink)
merky has joined #arpnetworks DDevine: up_the_irons: I can't seem to log into the portal
With the details provided in the email ***: wacker has quit IRC (Ping timeout: 260 seconds)
toddf has quit IRC (Ping timeout: 276 seconds)
toddf has joined #arpnetworks
ChanServ sets mode: +o toddf
wacker has joined #arpnetworks