ideas1: thanks hubpub
does everything install from source in freebsd?
apache is taking forever jlgaddis: you can install from packages
e.g. "pkg_add -r apache22"
but as a general rule, yes ideas1: thanks
is adding packages via pkg_add frowned upon? jlgaddis: no, but you just get it however it was compiled, which could be without certain options that you may need
from source is always the best option, imo ideas1: sounds like im going to be spending a ton of time reading lol jlgaddis: bookmark: freebsd.org/doc/handbook/ =)
90% of what you need/want to know is there ideas1: thank you ***: robotarmy has quit IRC (Ping timeout: 265 seconds) jlgaddis: also, #freebsd =) ***: nesta has quit IRC (Quit: poit!)
nesta has joined #arpnetworks
ziyourenxiang has joined #arpnetworks
ziyourenxiang has quit IRC (Quit: ziyourenxiang)
fink has joined #arpnetworks
fink has quit IRC (Ping timeout: 265 seconds)
fink has joined #arpnetworks
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer
heavysixer has quit IRC (Ping timeout: 276 seconds)
phlux has joined #arpnetworks phlux: Anyone else having rDNS problems? ***: heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer
heavysixer has quit IRC (Client Quit)
robotarmy has joined #arpnetworks jpalmer: phlux: what kind of problems?
phlux: judging from the IP you joined with, it appears as though ARP is delegating your ip6-arpa to ns1 and ns2.dragonzkeep.com
upon further troubleshooting, I see: dig: couldn't get address for 'ns1.dragonzkeep.com': not found
it looks like your 2 NS's are having issues.
and upon further troubleshooting: dragonzkeep.com is expired. Expiration date: 14 Nov 2010 09:11:39 phlux: I have my DNS delegated to my own NS servers jpalmer: you can either pay for the domain renewal, move the delegation to 2 NS's that work, or let ARP handle PTR phlux: However, as far as I know, arp is still in charge of the rDNS
I don't even know what dragonzkeep.com is :P
but my ipv6 isn't what's in question
It my mail server
the IP is 206.125.169.130 jpalmer: ok, then I'm troubleshooting a problem you don't have. which IP specifically are you concerned with?
ok
dragonzkeep.com are the NS's responsible for the rDNS for the IPv6 address you just joined with, btw. phlux: weird jpalmer: $ dig -x 206.125.169.130 +short
mail.ewnix.net.
seems to be working. what issues are you seeing? phlux: Well, I keep getting e-mails kicked back because the rDNS/DNS is supposedly set up incorrectly jpalmer: (just a headsup, I ave to leave soon to get fitted for a tux.) phlux: For instance, craigslist shoots the following:
<unknown[206.125.169.134]>: Client host rejected:
rDNS/DNS_validation_failed._Please_setup_matching_DNS_and_rDNS_records:_http://www.craigslist.org/about/help/rdns_failure
xabd-4 (in reply to RCPT TO command)
If I do a DNS Report from a website, I get rDNS failures for mail.ewnix.net jpalmer: the A and PTR records seem to match. is it just craigslist kicking an error? or others too? (it's possible the craigslist mailserver is having some DNS flakiness) phlux: Others...for example, my Dad has an AOL e-mail address (STILL...) and he can't receive e-mails from my domain.
My stuff gets kicked into spam for gmail/yahoo because of it jpalmer: ok, which website are you doing the DNS report from, let me see what it says phlux: It's really becoming a nuisance
I've tried several, actually. dnscolos.com, thednsreport.com, intodns.com jpalmer: according to thednsreport.com, ns3 and ns4.ewnix.net are reporting lame delegations. (IE your NS doesn't know about that domain) but when queried directly, it does.
phlux: I have to run, and get fitted for my wedding. I'll be back in a couple hours if you haven't figured this out. the guys in #bind may be able to help in the meantime. phlux: aye, thanks. jpalmer: np. if it helps, the problem appears to be on the ewnix.net side, not on the arp side. but when I get back, I can look into it further. ***: fink has quit IRC (Ping timeout: 255 seconds)
fink has joined #arpnetworks ideas1: when i bring up the console i get a [no, customer is attached] any idea?
i think i may have "firewalled" my self out
it happend after i had locked my self out of by using pf from allow traffic from sms0 to em0 ***: fink has quit IRC (Read error: Connection reset by peer)
fink has joined #arpnetworks
koan_ has joined #arpnetworks
koan has quit IRC (Ping timeout: 264 seconds)
coobra has quit IRC (Ping timeout: 264 seconds)
coobra has joined #arpnetworks
coobra has quit IRC (Changing host)
coobra has joined #arpnetworks
fink has quit IRC (Quit: fink)
merky has quit IRC (Read error: Operation timed out)
merky has joined #arpnetworks
dxtr has joined #arpnetworks
jlgaddis_ has joined #arpnetworks
jlgaddis has quit IRC (Ping timeout: 264 seconds) jpalmer: phlux: ping phlux: hey, jpalmer jpalmer: did you get your DNS issue figured out? ***: jlgaddis_ is now known as jlgaddis phlux: Unfortunately, I haven't been able to look farther into it yet. jpalmer: ok, well.. let me know. ***: schmir has joined #arpnetworks
schmir has quit IRC (Remote host closed the connection)
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer
mattx86 has joined #arpnetworks
htols has joined #arpnetworks htols: is anyone who handles abuse available? RandalSchwartz: I often handle abuse, but not for arp
is there something odd going on? -: jlgaddis beats RandalSchwartz with the python book RandalSchwartz: as long as you indent it properly. :) htols: it's related to abuse going on from arpnetworks network block RandalSchwartz: clarify
what kind of absue?
abuse htols: are you an employee of arpnetworks? RandalSchwartz: and the proper channel to report that is email to support@arpnetworks.com htols: not abuse@arpnetworks.com? RandalSchwartz: maybe that too
probably goes to the same place
what kind of abuse? htols: that's where I sent it
I can't say here RandalSchwartz: why not?
IRC?
spam?
wtf mike-burns: Email support@ and up_the_irons will take care of it ASAP. htols: if you're not an employee it doesn't concern you RandalSchwartz: yes, it does indeed concern me htols: mike-burns: thanks RandalSchwartz: I promote ARP to others
if ARP is a haven of bad guys, *I* need to know htols: I hope it's not RandalSchwartz: then explain
so I know the scope htols: if the ARP handles it there's no need to make it public RandalSchwartz: uh, this isn't public
this is locals htols: bad apples do get onto networks. it's companies that don't remove them that become havens RandalSchwartz: friends
the very people who are most interested
the people that are helping *others* here -: RandalSchwartz hates dealing with 19-year-olds RandalSchwartz: eventually, they'll mellow out, but at 19, they're very "I have the world figured out" mike-burns: He's probably not 19 and just didn't want to argue with you about whether the subject at hand was abuse. RandalSchwartz: I wasn't gonna argue whether it was
just wanted to know the realm
lots of IRC kiddies recently
wondered if it was that
and he's almost certainly 19
"htols is sloth @ college"
that's a 19-year-old handle trick mike-burns: Could be 21. RandalSchwartz: nope
21 they get a cooler nick :) mike-burns: Heh. htols: actually it's post graduate security research going on from this server
but not mine, just have a shell here RandalSchwartz: which doesn't yet disclose your age. :)
you could still be 19
nice play mike-burns: I'm going to assume that htols is a very mature 19 year old and RandalSchwartz is a very immature 49 year old. RandalSchwartz: I've never claimed maturity, so that's irrelevant
I'm just callin' em like I see 'em
and lack of denial from "htols" confirms my claims
an excitable 19-year-old -: jlgaddis yawns RandalSchwartz: probably blowing a bunch of stuff out of proportion
some random IRC script kiddies who have been parking on ARP for a few weeks now
messing up my IP traffic mike-burns: Yeah I gotta go do something interesting. jlgaddis: ditto htols: sorry but I'm dealing with multiple ISPs right now. No time to argue about my age with you right now jlgaddis: htols: student or staff? jpalmer: htols: up_the_irons is the one who will handle your ticket, but from the logs you posted, it appears to be some kind of ftp transfer or similar. are you *sure* this wasn't legit traffic? htols: neither, just have a shell here RandalSchwartz: just ftp!? -: RandalSchwartz sighs
RandalSchwartz grumbles "excitable 19-year-old" htols: jpalmer: right, 100mb/s of FTP jpalmer: RandalSchwartz: I don't know the full story, so I'd recommend not jumping to conclusions ;) htols: UDP FTP no less RandalSchwartz: ftp isn't over udp -: RandalSchwartz consults the RFC htols: wow, you're the smart one jpalmer: hence "or similar" it was all destined to a single port. htols: it wasn't jpalmer: most DoS's, or DDoS's Ive seen, randomize. htols: random port, dest and size RandalSchwartz: there was that crappy "pseudo-ftp" thingy for a while, over udp htols: source port was the same RandalSchwartz: but I knew it was only for bad guys
fsp, that was it
"to make ftp work better"
yeah right htols: jpalmer, are you staff for ARP? RandalSchwartz: jpalmer is an insider, yes.
since you seem to want authority, instead of common sense. jpalmer: htols: I see it now, I was reading the logs backwards. the destination port is randomized.
htols: I don't have the authority or the access to dig into this matter, that'll be up to Garry. I just wanted to verify that this was some misunderstood legit traffic. RandalSchwartz: s/was/wasn't/ jpalmer: heh. amazing how 3 characters can change an entire meaning, eh? jlgaddis: heh, one character is the difference between "Let's eat grandma" and "Let's eat, grandma"
"I helped my uncle, Jack, off a horse" vs ... well, you know.
ahhh, patch cluster is finally done installing. jpalmer: ok, calling it a night. later guys ***: htols has quit IRC (Quit: leaving) RandalSchwartz: my girl, bill
still betting on 19
seemed brash enough phlux: Someome was hitting someone else at 100mb/s from an arp vps?
Wow RandalSchwartz: I've done that to my oversee.net desktop
but I'm only 4 hops 1.2ms from apr
arp ***: heavysixer has quit IRC (Quit: heavysixer) phlux: I've never thought to see what I could push on myself RandalSchwartz: I grabbed about 50GB of download in 30 minutes once :) phlux: I'm 12 hops away :( RandalSchwartz: oversee has dark fiber to one wilshire
which of course is one hop from wilshire annex
so my route is local lan -> fiber -> wilshire hop -> arp
all at a gigabit :) ***: heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer phlux: nice RandalSchwartz: and the dark fiber is to a cage that has gigabit to the internet backbones
so I have gigabit service to my desk :)
right to the "net"
oversee.net's ASN is quite high on most routing tables, apparently jlgaddis: what the hell does that mean? RandalSchwartz: dunno - it just gets a lot of preferred routing
not a lot of hops to anywhere
oversee parks 2.5 million domain names jlgaddis: 17 from here RandalSchwartz: many of which are owned directly, but many from customers jlgaddis: "it just gets a lot of preferred routing" ... dunno what that means either RandalSchwartz: would "closer to the center of the net" make any more sense? jlgaddis: it would RandalSchwartz: ok - that's what I was meaning :)
instead of being three hops out somewhere, it's peering with a lot of main backbones jlgaddis: except that they're only at CIIX
peering w/ uunet, ntt, level3, he, packetexchange, and xeex there, it seems ***: heavysixer_ has joined #arpnetworks
ChanServ sets mode: +o heavysixer_
heavysixer has quit IRC (Read error: Connection reset by peer)
heavysixer_ is now known as heavysixer
heavysixer has quit IRC (Quit: heavysixer)