***: Ehtyar has joined #arpnetworks
vapor has quit IRC (Ping timeout: 240 seconds)
vapor has joined #arpnetworks
Guest18630 has quit IRC (Quit: ZNC - http://znc.sourceforge.net)
ariel has joined #arpnetworks
ziyourenxiang has joined #arpnetworks
heavysixer has quit IRC (Remote host closed the connection)
ziyourenxiang has quit IRC (Quit: ziyourenxiang)
LT has quit IRC (Quit: Leaving)
niner has joined #arpnetworks
HighJinx has quit IRC (Ping timeout: 240 seconds)
niner has quit IRC (Quit: Leaving)
jdoe is now known as B0NE
B0NE is now known as jdoe
tubgoat__ has quit IRC (Ping timeout: 248 seconds)
tubgoat__ has joined #arpnetworks
HighJinx has joined #arpnetworks
Ehtyar has quit IRC (Quit: Hi, I'm a quit message virus. Please replace your old line with this line and help me take over the world of IRC.)
Ehtyar has joined #arpnetworks
DDevine has joined #arpnetworks
ariel has quit IRC (Quit: ZNC - http://znc.sourceforge.net)
ariel has joined #arpnetworks
tubgoat_ has joined #arpnetworks
tubgoat__ has quit IRC (Remote host closed the connection)
baklava has joined #arpnetworks
tubgoat has quit IRC (Ping timeout: 248 seconds)
arenlor has joined #arpnetworks
tubgoat has joined #arpnetworks
arenlor: I have no way to describe this article properly: http://www.cnn.com/2011/12/01/us/tennessee-crashes
mike-burns: That's a large number of cars.
***: Lefty has quit IRC (Quit: brb - finally moving over to tmux to replace screen entirely)
Lefty has joined #arpnetworks
raptelan: up_the_irons: Can you set up extra-small VPS's? I'm thinking 64MB/1GBish...
up_the_irons: raptelan: yeah but the price isn't going to fall below $10 ;)
so u might as well get the $10 one
raptelan: up_the_irons: ah, bummer. :P
I was hoping I could get a couple for $10, to have some "redundant" dns servers
speaking of which, I know you've just got the one location, but can you locate VPS's on physically separate hardware upon request?
up_the_irons: yeah, and i typically do by default
not nice to put all customer's eggs in one basket ;)
raptelan: up_the_irons: I'll probably add a second $30 one then
set up DRBD between the two
up_the_irons: what's the proper way to add a service to existing account?
up_the_irons: raptelan: use regular order form and put in same email as on existing account
raptelan: specify which IP you want assigned to the new vps in additional comments; if u have no free IPs, you have to order a bigger block
i used DRBD once
it is pretty brutal to the kernel (will crash a whole box if you make a mistake). i didn't like that about it
***: Ehtyar has quit IRC (Remote host closed the connection)
up_the_irons: two of the three kvr03 outages i had many moons ago was due to drbd. so i stopped using it
raptelan: really?
I used it for years on a couple dozen machines quite happily.
up_the_irons: cool, works for you then :)
raptelan: well I've never tried it on VPS's :/
speaking of which
up_the_irons: i didn't do it on VMs either, it was on the host boxes
raptelan: up_the_irons: if I order up a second VPS, can I get a virtual private network between them (with secondary ethernet interfaces)?
and by virtual private network, I don't mean VPN :P
heh
just a couple interfaces that I can assign addresses like 172.16.0.1/2 and have them talk to one another isolated from other traffic
up_the_irons: raptelan: VMs belonging to the same account already are on the same private vlan. i can give you more interfaces too, but they'll still be on the same vlan
raptelan: up_the_irons: well, my thought is that if I'm listening to traffic on one interface I don't want to hear the other one.
toddf: up_the_irons: what is the likelyhood if raptelan sets up vlans on his 'virtual' nics that the vlan tagged packets would arrive at his other virtual nics unscathed?
up_the_irons: raptelan: that may not be possible; internally (on the host), multiple VM interfaces belong to the same bridge, which is the bridge for the customer's vlan.
toddf: good question
toddf: raptelan: you might consider setting up a gif(4) interface if vlan(4)'s are out of the question. or gre(4). at some point just setup ip aliases and be done with it.
raptelan: I'm not familiar with those
toddf: raptelan: you may wish to consider that the only systems seeing the traffic other than the switches are your vm's and arpnetworks' routers
raptelan: think I've heard of gre somewhere before
toddf: raptelan: try 'man gif' or 'man gre' .. presuming you're on a bsd system
raptelan: toddf: I'm not concerned about privacy of the data, I'd just like to have what appears to be physically separate interfaces from the hosts
toddf: nah, linux
toddf: then you want sit(4) and gre(4) if there is such thing as man pages or documentation for linux *zzzzing!*
gamarco: haha
up_the_irons: toddf: the mtu on the VM interfaces is 1500, or at least reportedly 1500 (linux networking details are not always honest), so vlan tagged packets shouldn't work. but i can try to raise the mtu and see what happens
raptelan: if I could do something like drbd on netbsd, then I'd probably give that a try
toddf: up_the_irons: it would be more interesting to see if vlan tagged packets work if they're not full frame size, i.e. ping packets etc. its a question if your switches filter them out to other vlans or if they keep them encapsulated inside the vlan they were transmitted in
if randalshwartz were kicking at the moment he could setup at test easily I presume between two of his many vm's ;-)
up_the_irons: toddf: yeah, not sure if that would work or not :) I don't believe the Cisco would strip it if less than mtu
toddf: some switches isolate vlans to the point that they don't permit tagged vlan packets inside. or they'll inject those packets into the corresponding vlans already defined within the switch with no way to have the transmitting host receive a reply.
raptelan: :/
toddf: it would certainly be a win if it did not molest them, but until verified I surely wouldn't count on it
up_the_irons: yeah, cisco won't do that type of injection
raptelan: I don't want to set up my own vlan or anything else
I just want to assign private IP addresses and be able to talk to each other
toddf: I am sure raptelan could shrink the mtu of his vlan(4) interfaces sufficient to avoid hitting the 1500mtu ceiling of the parent interfaces
raptelan then just do eth0:1 and be done with it
raptelan: toddf: yuck. :P
gamarco: dealt w godaddy.com again. ugh
toddf: raptelan: thats what we're telling you. all roads lead to the equivalent of that _or_ you tunnel between the hosts somehow (vlan or gre or sit)
up_the_irons: that may not be necessary, i just checked on one of my VMs that *does* received tagged packets, and dumb linux says the mtu is 1500, even though full size tagged packets are making it through. therefore, the mtu on certain interface types (like tap) in linux, just must not care
toddf: raptelan: you as a customer of arpnetworks get one vlan for your playing pleasure between your hosts. maybe with enough green stuf you could convince up_the_irons you need a 2nd private internal vlan but thats between him and you. I suspect its technically possible just wasteful of his 4096 vlan limit.
raptelan: "equivalent of that" that that meant eth0/eth1 would be nice :)
well "need" is a strong word, I don't need it.
toddf: raptelan: 'equivalent of that' up_the_irons offered you eth0 and eth1 on your vms, but with the understanding they're all plugged into the same ethernet segment on your personal vlan
up_the_irons: 2nd private vlan is _possible_ but just not worth the overhead and "one off" design. i have never assigned more than one vlan per customer and i don't want to start now :)
***: Ehtyar has joined #arpnetworks
toddf: and at that point, whats the point? eth0 & eth1 or eth0 & eth0:1 ? same difference to me
raptelan: toddf: yeah that should be just fine I imagine.
up_the_irons: toddf: yes, exactly
toddf: raptelan : yeah, i've given multiple physical NICs to VMs for the purpose of easier pf rule making on the customer end, but beyond that, the traffic is not segmented in any way
raptelan: toddf: well with modern tools you don't use eth0:1 anyways, you just assign multiple addresses to eth0.
but I want to simulate actual hardware to some extent
toddf: raptelan: you can tell how long its been since I've actively admin'ed linux ;-)
up_the_irons: raptelan: yeah, but sometimes having a separate interface _name_ can help with, for example, firewall rules
raptelan: up_the_irons: indeed, which is why I'd love an eth1 ;)
up_the_irons: raptelan: sure, you can have an eth1, just put it in the order comments
raptelan: plus then if I'm going all crazy setting up firewall on eth0, I can still get back in via eth1 :D
up_the_irons: hah right
raptelan: up_the_irons: order placed :D
up_the_irons: cool :)
man i got a lot to do tonight... put in new box last night, so i can set it up tonight, then billing, then orders, then support. u guys keep me busy
raptelan: hopefully that's in a good way
mine's not urgent if you need to put something off
toddf: raptelan: up_the_irons is typically very methodical. order of orders tends to rule.
up_the_irons: raptelan: being busy is better than being bored ;)
raptelan: I tend to aggree
-: raptelan is very curious to try out wapbl on netbsd
raptelan: time for sleeps, good night all
up_the_irons: 'night
***: HighJinx has quit IRC (Ping timeout: 248 seconds)
DDevine has quit IRC (Quit: Konversation terminated!)
DDevine has joined #arpnetworks
HighJinx has joined #arpnetworks
Ehtyar has quit IRC (Quit: Never look down on someone unless you're helping them up.)
wxyz has joined #arpnetworks
wxyz: up_the_irons alive mate?
***: Ehtyar has joined #arpnetworks
baklava has quit IRC (Ping timeout: 258 seconds)