[00:13] *** LT has joined #arpnetworks
[01:45] *** adkaruil has joined #arpnetworks
[02:48] *** adkaruil has quit IRC (Ping timeout: 255 seconds)
[03:44] *** nbari|away is now known as nbari
[03:44] *** nbari has left 
[04:15] *** ziyourenxiang has joined #arpnetworks
[04:57] *** ziyourenxiang has quit IRC (Quit: ziyourenxiang)
[04:59] *** ziyourenxiang has joined #arpnetworks
[05:13] *** jlgaddis has quit IRC (Read error: No route to host)
[05:19] *** jlgaddis has joined #arpnetworks
[06:15] *** vmmello has joined #arpnetworks
[06:17] *** ziyourenxiang has quit IRC (Quit: ziyourenxiang)
[08:22] *** tuv_ is now known as tuv
[08:22] *** tuv has quit IRC (Changing host)
[08:22] *** tuv has joined #arpnetworks
[08:26] *** B3nj1 has joined #arpnetworks
[08:26] <B3nj1> anyone to talk to about a purchase?
[08:28] <bob^^> probably best to just ask B3nj1 :)
[08:28] <B3nj1> I want to talk about pricing/costs so easier probably to do it pvt
[08:28] <bob^^> depending on what your question is we might be able to help - up_the_irons is the only ARP employee
[08:28] <bob^^> (the rest of us are just customers i think)
[08:29] <B3nj1> ah kk
[08:37] *** fink has joined #arpnetworks
[08:41] *** vmmello has quit IRC (Quit: cd ../)
[08:43] *** robotarmy has joined #arpnetworks
[08:50] <toddf> b3nj1: if your question is generic we can perhaps help here, but the website lays the groundwork for costs in general
[09:11] *** LT has quit IRC (Quit: Leaving)
[09:11] *** robotarmy has quit IRC (Remote host closed the connection)
[09:35] *** jpalmer has quit IRC (Quit: leaving)
[09:35] *** jpalmer has joined #arpnetworks
[09:35] *** jpalmer has quit IRC (Client Quit)
[09:38] *** jpalmer has joined #arpnetworks
[09:42] *** HighJinx has quit IRC (Ping timeout: 276 seconds)
[10:16] *** HighJinx has joined #arpnetworks
[10:58] *** jlgaddis has quit IRC (Read error: Connection reset by peer)
[10:58] *** jlgaddis has joined #arpnetworks
[11:11] *** heavysixer has joined #arpnetworks
[11:11] *** ChanServ sets mode: +o heavysixer
[11:14] *** jlgaddis has quit IRC (Read error: No route to host)
[11:14] *** jlgaddis has joined #arpnetworks
[11:19] *** cedwards has quit IRC (Ping timeout: 240 seconds)
[11:23] *** cedwards has joined #arpnetworks
[11:25] *** w0ls0n has joined #arpnetworks
[11:25] <w0ls0n> afternoon all
[11:25] <fink> hi
[11:25] <w0ls0n> question for you all. I have ipv6 working on pfsense and I can ping ipv6.google.com. There are docs in the handbook about setting up a static ipv6 address but I cannot do that. Is there a way to set it up so routing works if freebsd is assigned an ipv6 address?
[11:26] <w0ls0n> I am using ht.net for my ipv6 tunnel
[11:26] <w0ls0n> and I am also curious if there is a way to make ipv6 work on winblows XP
[11:26] <Sheath> yes
[11:33] <w0ls0n> ...
[11:34] *** robotarmy has joined #arpnetworks
[11:35] <jpalmer> w0ls0n: on XP from a command prompt (administrator access)  type "ipv6 install"
[11:35] <jpalmer> ipv6 is installed,  it's just disabled on XP.
[11:36] <coobra> S
[11:36] <coobra> ohh
[11:37] <w0ls0n> I did do that already
[11:38] <w0ls0n> ipv6.google.com just times out
[11:38] <w0ls0n> it does ping from pfsense though
[11:38] <jpalmer> are you passing protocol 41?   is your pfsense sending RA's?  does your XP machine have an address other than the link-local?
[11:39] <w0ls0n> in order ... probebly not. I would have to check and all the XP machines get 2 2001:470: ips
[11:40] <w0ls0n> is protocol 41 something I can forward as a rule in pfsense?
[11:40] <jpalmer> I don't use pfsense,  so i can't answer that.
[11:40] <jpalmer> you'll need to pass protocol 41,  and make sure pfsense is set to pass packets from one interface to the next.
[11:41] <w0ls0n> hmmm
[11:44] <w0ls0n> Ok I see a box that says
[11:44] <w0ls0n> NAT encapsulated IPv6 packets (IP protocol 41/RFC2893) to:
[11:44] <w0ls0n> I would put my ipv4 WAN address there
[11:45] <jpalmer> I don't use pfsense,  I'm not sure what thats for in particular.
[11:45] <w0ls0n> it's the only section I see for Protocol 41
[11:46] <w0ls0n> googled around and found this
[11:46] <w0ls0n> http://www.mail-archive.com/support@pfsense.com/msg19106.html
[11:46] <jpalmer> I'd suggest consulting the #ipv6 channel,  or the #pfsense channel (or both)
[11:46] <jpalmer> there ae some guys from he.net on #ipv6,  and I'd hope the people on #pfsense are more familiar with it than I am ;)
[11:46] <w0ls0n> ok
[11:46] <w0ls0n> thanks for trying :-)
[11:46] *** w0ls0n has left 
[11:59] <toddf> Dual Stack is bad.
[12:00] <toddf> er ..
[12:01] <toddf> IPv4-compatible IPv6 address is bad. block them with prejudice.
[12:07] <toddf> rfc2893 talks of A6 which is deprecated and no longer used even
[12:15] *** robotarmy has quit IRC (Remote host closed the connection)
[12:19] *** robotarmy has joined #arpnetworks
[12:19] <jdoe> toddf: "ipv4-compatible ipv6"?
[12:20] <jpalmer> I believe he's referring to the ::ffffff:1.2.3.4 style addressing.   similar to the one bit.ly accidentally published to DNS not that long ago.
[12:22] <toddf> NAT encapsulated IPv6 packets (IP protocol 41/RFC2893)
[12:22] <toddf> unless that means 'ipv4 header ip-protocol-41 ipv6 tunnel' stuff ..
[12:23] <toddf> if you're doing filtering with pf and ipv6 beware that you must not block icmp6 otherwise ndp won't work (v6 equivalent of arp); you can block no more than this for things to work:
[12:23] <toddf> match out inet6 proto icmp6 icmp6-type { neighbrsol routersol echoreq timex } tag ICMP
[12:23] <toddf> match in inet6 proto icmp6 icmp6-type { neighbradv neighbrsol routeradv echoreq echorep fqdnrep timex unreach } tag ICMP
[12:23] <toddf> pass     tagged ICMP
[12:24] <jpalmer> dig AAAA forvo.com  <-- heh
[12:24] <toddf> (obiously other ways to skin that same cat of behavior, but that's from a `working' system of mine
[12:24] <toddf> )
[12:24] <toddf> yecht
[12:25] <crazed> i need to fix my pf rules
[12:25] <crazed> so lazy though
[12:33] <up_the_irons> toddf: i'm not very familiar with pf syntax, but given pf is so "readable", i actually understood exactly what those statements mean;  pf ftw
[12:36] <toddf> ;-)
[12:37] <toddf> the echoreq/echorep is not mandatory but I personally consider it so considering it gives more false warnings than true security and/or usefulness
[12:44] <up_the_irons> ah
[12:48] *** robotarmy has quit IRC (Remote host closed the connection)
[14:01] *** amdprophet has joined #arpnetworks
[14:28] *** vapor has quit IRC (Ping timeout: 260 seconds)
[14:29] *** vapor has joined #arpnetworks
[14:40] *** amdprophet has quit IRC (Ping timeout: 240 seconds)
[14:47] *** amdprophet has joined #arpnetworks
[14:47] *** amdprophet has quit IRC (Client Quit)
[14:47] *** amdprophet has joined #arpnetworks
[15:08] <shatt> What would a /96 from 2a00:dd0:0:17::1/64 be?
[15:08] <shatt> if I wanted to split 2a00:dd0:0:17::1/64 into a bunch of /96s.. what would it be?  this ipv6 calc i am using sucks
[15:43] *** robotarmy has joined #arpnetworks
[15:44] <up_the_irons> 2a00:dd00:0000:1700:0000:0000:0000::1/96
[15:44] <up_the_irons> i believe
[15:46] <up_the_irons> actually
[15:47] <up_the_irons> 2a00:dd00:0000:1700:0000:0000::/96
[15:47] <up_the_irons> 2a00:dd00:0000:1700:0000:0001::/96
[15:47] <up_the_irons> 2a00:dd00:0000:1700:0000:0002::/96
[15:47] <up_the_irons> 2a00:dd00:0000:1700:0000:0003::/96
[15:47] <up_the_irons> etc...
[15:47] <up_the_irons> shatt: ^
[15:47] <up_the_irons> scratch the first
[16:17] <jdoe> I think you still have an extra... not octet... extra... whatever.
[16:19] <jdoe> no I'm wrong, ignore me.
[16:19] <jdoe> shatt: http://en.linuxreviews.org/IPv6_subnet_matrix_table too.
[16:27] *** amdprophet has quit IRC (Ping timeout: 255 seconds)
[16:37] *** vapor has quit IRC (Ping timeout: 272 seconds)
[16:37] *** vapor has joined #arpnetworks
[16:44] <crazed> does pf have a way of testing rulesets before applying them?
[16:45] <Sheath> yes
[16:45] <Sheath>      -n      Do not actually load rules, just parse them.
[16:46] <Sheath> a manual is a wonderful thing.
[16:51] <crazed> that it is
[16:51] <Sheath> thats pfctl btw if you haven't figured it out :)
[16:54] <crazed> hehe i did, i figured it was that
[16:54] <crazed> don't know why i asked instead of manualing first
[16:54] <Sheath> its easier to ask i guess
[17:03] *** Sheath is now known as muskyhusky
[17:05] <crazed> any tips for this ruleset? http://arpnetworks.pastebin.com/97d1xHY5
[17:06] <crazed> hm i guess i could drop $ext_if and just use egress everywhere
[17:16] *** crazed_ has joined #arpnetworks
[17:17] *** crazed has quit IRC (Ping timeout: 260 seconds)
[17:18] <fink> crazed_: service pf check
[17:18] <fink> (on freebsd 8)
[17:22] *** crazed has joined #arpnetworks
[17:23] *** crazed_ has quit IRC (Ping timeout: 260 seconds)
[17:24] *** crazed has quit IRC (Read error: Operation timed out)
[17:26] *** crazed has joined #arpnetworks
[17:28] <crazed> damn.. state table
[17:44] *** amdprophet has joined #arpnetworks
[18:02] *** Zuul_ has joined #arpnetworks
[18:04] *** Zuul has quit IRC (Ping timeout: 250 seconds)
[18:25] *** cubelogic has quit IRC (Remote host closed the connection)
[18:50] *** zeshoem has joined #arpnetworks
[18:57] *** HighJinx has quit IRC (Ping timeout: 240 seconds)
[19:47] *** HighJinx has joined #arpnetworks
[20:01] *** HighJinx has quit IRC (Read error: Connection reset by peer)
[20:03] *** HighJinx has joined #arpnetworks
[20:13] *** jdoe has quit IRC (*.net *.split)
[20:13] *** zeshoem has quit IRC (*.net *.split)
[20:13] *** zxvff has quit IRC (*.net *.split)
[20:13] *** vapor has quit IRC (*.net *.split)
[20:13] *** crazed has quit IRC (*.net *.split)
[20:13] *** cmeiklejohn has quit IRC (*.net *.split)
[20:13] *** nuke` has quit IRC (*.net *.split)
[20:13] *** toddf has quit IRC (*.net *.split)
[20:13] *** Jareth has quit IRC (*.net *.split)
[20:13] *** Ehtyar has quit IRC (*.net *.split)
[20:13] *** tuvwx has quit IRC (*.net *.split)
[20:13] *** hsbt has quit IRC (*.net *.split)
[20:13] *** ajwak95 has quit IRC (*.net *.split)
[20:17] *** cubelogic has joined #arpnetworks
[20:17] *** zeshoem has joined #arpnetworks
[20:17] *** crazed has joined #arpnetworks
[20:17] *** vapor has joined #arpnetworks
[20:17] *** Jareth has joined #arpnetworks
[20:17] *** Ehtyar has joined #arpnetworks
[20:17] *** ajwak95 has joined #arpnetworks
[20:17] *** tuvwx has joined #arpnetworks
[20:17] *** cmeiklejohn has joined #arpnetworks
[20:17] *** nuke` has joined #arpnetworks
[20:17] *** toddf has joined #arpnetworks
[20:17] *** hsbt has joined #arpnetworks
[20:17] *** zxvff has joined #arpnetworks
[20:17] *** jdoe has joined #arpnetworks
[20:17] *** calvino.freenode.net sets mode: +o toddf
[20:19] *** crazed has quit IRC (*.net *.split)
[20:19] *** cmeiklejohn has quit IRC (*.net *.split)
[20:19] *** nuke` has quit IRC (*.net *.split)
[20:19] *** toddf has quit IRC (*.net *.split)
[20:20] *** cubelogic has quit IRC (Ping timeout: 240 seconds)
[20:20] *** crazed has joined #arpnetworks
[20:20] *** cmeiklejohn has joined #arpnetworks
[20:20] *** nuke` has joined #arpnetworks
[20:20] *** toddf has joined #arpnetworks
[20:20] *** calvino.freenode.net sets mode: +o toddf
[20:21] *** HighJinx has quit IRC (Read error: Connection reset by peer)
[20:23] *** HighJinx has joined #arpnetworks
[20:34] *** robotarmy has quit IRC (Remote host closed the connection)
[20:41] *** HighJinx has quit IRC (Read error: Connection reset by peer)
[20:43] *** HighJinx has joined #arpnetworks
[21:01] *** HighJinx has quit IRC (Read error: Connection reset by peer)
[21:03] *** HighJinx has joined #arpnetworks
[21:03] *** Zuul_ is now known as Zuul
[21:14] *** fink has quit IRC (Quit: fink)
[21:21] *** HighJinx has quit IRC (Read error: Connection reset by peer)
[21:23] *** HighJinx has joined #arpnetworks
[21:24] *** garrydolley has joined #arpnetworks
[21:24] <garrydolley> Hello from android
[21:29] *** robotarmy has joined #arpnetworks
[21:41] *** HighJinx has quit IRC (Read error: Connection reset by peer)
[21:43] *** HighJinx has joined #arpnetworks
[21:56] *** garrydolley has quit IRC (Ping timeout: 272 seconds)
[21:57] *** garrydolley has joined #arpnetworks
[22:01] *** HighJinx has quit IRC (Read error: Connection reset by peer)
[22:03] *** HighJinx has joined #arpnetworks
[22:05] *** garrydolley has quit IRC (Ping timeout: 255 seconds)
[22:06] *** robotarmy has quit IRC (Remote host closed the connection)
[22:21] *** HighJinx has quit IRC (Read error: Connection reset by peer)
[22:23] *** HighJinx has joined #arpnetworks
[22:41] *** HighJinx has quit IRC (Read error: Connection reset by peer)
[22:43] *** HighJinx has joined #arpnetworks
[22:55] *** HighJinx has quit IRC (Read error: Operation timed out)
[23:03] *** HighJinx has joined #arpnetworks
[23:11] *** adkaruil has joined #arpnetworks
[23:15] <adkaruil> Can I pay with paypal?
[23:19] <Jareth> adkaruil: http://support.arpnetworks.com/kb/billing/do-you-accept-paypal
[23:20] <adkaruil> :(
[23:20] *** nerdd has quit IRC (Ping timeout: 240 seconds)
[23:21] *** HighJinx has quit IRC (Read error: Connection reset by peer)
[23:22] <up_the_irons> adkaruil: we are looking into adding PayPal support, but right now we don't support it, sorry
[23:23] *** HighJinx has joined #arpnetworks
[23:24] <adkaruil> I'm looking forward to it, do you have any timeframe for pp support?
[23:27] <up_the_irons> adkaruil: not yet
[23:39] *** HighJinx has quit IRC (Read error: Operation timed out)
[23:41] *** amdprophet has quit IRC (Quit: amdprophet)
[23:41] *** zeshoem has quit IRC (Ping timeout: 246 seconds)
[23:41] <G> up_the_irons: I thought PayPal was full of risks?
[23:43] <up_the_irons> G: it is, but i'm looking to double in size this year, and one way to do it is to accept paypal.  dealing with the risks will become another task, hopefully outweighed by the increase in business
[23:43] *** HighJinx has joined #arpnetworks
[23:44] <adkaruil> Yeah, some people out there don't have credit card. ^_^
[23:50] *** amdprophet has joined #arpnetworks
[23:51] *** nerdd has joined #arpnetworks
[23:55] *** amdprophet has quit IRC (Remote host closed the connection)
[23:55] *** amdprophet has joined #arpnetworks