***: meingtsla has quit IRC (Quit: Leaving)
meingtsla has joined #arpnetworks
Mexicainvexed has quit IRC (Ping timeout: 260 seconds)
[FBI] starts logging #arpnetworks at Wed Oct 17 01:39:38 2012
[FBI] has joined #arpnetworks mercutio: why is the fbi logging this channel? ***: Ehtyar has joined #arpnetworks up_the_irons: kvr27 (beta) server going down for one last reboot...
crap, one more time... mercutio: heh
what are you doing to it? :)
just curiosity not waiting on it or anything
oh it's up anyway
says uptime of 6 minutes ***: hive-mind has quit IRC (Ping timeout: 244 seconds)
hive-mind has joined #arpnetworks up_the_irons: mercutio: kernel patches
while we may still need some openbsd / freebsd testing for the beta VMs, my cacti server VM has been running on it for over two months without issues, so I'm declaring kvr27 production ready. I have provisioned the first Linux customer on it.
(cacti server runs Linux if that wasn't obvious ;)
mercutio: can you re-run the test you mentioned was "it's quite reproducable"
i found the RAID controller write cache was off; this was one reason iowait was high; now fixed
no rush, just whenever... easymac: Do you have any process by which you evaluate a guest OS on a beta system?
(features to try, stress testing, etc?)
I know some issues I've had in FreeBSD VMWare guests that seem fairly reproducable under higher IO situations.
They seem to crop up more frequently when ZFS is involved as well. up_the_irons: easymac: i want to see 1) no guest panic, 2) clean network throughput, 3) decent disk performance
i've seen frequent guest freezing with ZFS and load
less so if a lot of RAM is involed toddf: zfs necessarily requires lots of ram for optimimum performance (I know this and I only admin'ed a freebsd system that used it for a very short time) up_the_irons: yeah
recommendations on a good Intel NIC for FreeBSD? (dual port, gigabit)
so that it uses the em0 driver
igb0 is driving me insane
INSANE toddf: http://www.freebsd.org/cgi/man.cgi?query=em&apropos=0&sektion=0&manpath=FreeBSD+9.0-RELEASE&arch=default&format=html
I'd presume that would be a good list to work from
I can't say I have hardware knowledge from a freebsd perspective ;-) ***: cmeiklejohn has joined #arpnetworks heavysixer: up_the_irons: don't look at me at 6:47PM i'll be gone :-)
up_the_irons: but yes i'll help you rock that app. ***: cmeiklejohn has quit IRC (Quit: Computer has gone to sleep.)
er|c has quit IRC (Ping timeout: 276 seconds)
er|c has joined #arpnetworks
er|c has quit IRC (Changing host)
er|c has joined #arpnetworks
er|c has quit IRC (Ping timeout: 276 seconds)
er|c has joined #arpnetworks
Webhostbudd has joined #arpnetworks
chmod has quit IRC (Ping timeout: 246 seconds)
chmod has joined #arpnetworks
gcw|mbpro has quit IRC (Remote host closed the connection)
HighJinx has quit IRC (Quit: Computer has gone to sleep.) Webhostbudd: is there an ipv6 routing issue im not aware of?
up_the_irons: you there?
my traceroutes are hitting 120 hops
that definitely can't be right
the packets just never get there milki: looooop Webhostbudd: exactly
that's what im thinking
does arp control this router?
13 2607:f2f8:0:102::1 (2607:f2f8:0:102::1) 105.860 ms 105.698 ms 105.629 ms
after that it looks like it loops ***: Ehtyar has quit IRC (Remote host closed the connection) mnathani: Webhostbudd: do you have a sample traceroute with source / destination RandalSchwartz: I'm reaching google.com via ipv6 with no problem Webhostbudd: RandalScwartz: same here
from the vps
however, from my home ipv6 to the vps
i get that loop
just a sec on the full trace RandalSchwartz: and a few others I tried ***: HighJinx has joined #arpnetworks RandalSchwartz: ahh, yes, let me try from my home to here. Webhostbudd: http://sprunge.us/AFAY RandalSchwartz: I can ping6 from home to red.stonehenge.com
traceroute is good too
what's your host? Webhostbudd: 2607:f2f8:a9e4::2
it looks like it is one of the intermediate routers
because it can ping out fine
could i somehow be causing this? RandalSchwartz: I'm checking...
I'm getting stars after a bunch of hops.
let me try from red. Webhostbudd: yea RandalSchwartz: Yeah - I can't get to yours from even nearby
I think it
is your end perhaps. Webhostbudd: weird
alright mnathani: I cant ping 2607:f2f8:a9e4::2 from home Webhostbudd: oddly enough i can ping red just fine RandalSchwartz: I'd still file a support request in case something is broke mnathani: perhaps ICMP are blocked? Webhostbudd: mnathani: nope
it has an almost identical pf ruleset to my other ipv6 box
which can be pinged just fine
pass inet6 proto icmp6 all icmp6-type {echoreq unreach neighbradv neighbrsol routeradv} RandalSchwartz: maybe your default route is busted? mnathani: Well even the ipv6 ping sourced from Sprints looking glass : Success rate is 0 percent (0/5) Webhostbudd: maybe
hmmmmm mnathani: try pinging my home IP: 2001:470:b148::25 Webhostbudd: it just has to be something on my end
works fine from the box RandalSchwartz: no problem reaching you from red
(your home, that is) Webhostbudd: see, it's weird, i can ping out and get response
so routing may be working? RandalSchwartz: sounds like wonky firewall then Webhostbudd: yes it does RandalSchwartz: by the way, if you haven't seen mtr, get it.
it's far slicker than ping or traceroute mnathani: from my ARP VPS: 18 packets transmitted, 0 received, 100% packet loss, time 17582ms Webhostbudd: i just turned off pf
still nothing RandalSchwartz: ... http://en.wikipedia.org/wiki/MTR_(software) Webhostbudd: yea i've used it
and long since forgotten
=p
my rc.conf is pretty simple
ipv6_enable="YES"
ipv6_defaultrouter="2607:f2f8:a8e4::1"
ifconfig_em0_ipv6="2607:f2f8:a8e4::2/64"
nothing?
hmmmm RandalSchwartz: I'm using the 0 address for my box. :)
red.stonehenge.com has address 208.79.95.2 red.stonehenge.com has IPv6 address 2607:f2f8:3080::
shorter to type Webhostbudd: =p
yea
i should actually use the 0
anyway
ill see what i can try and change RandalSchwartz: I also have ipv6_gateway_enable=YES
I think that was to try openvpn over ipv6 though ***: dzup has joined #arpnetworks mercutio: up_the_irons: well the test runs a lot faster :)
round-trip min/avg/max/std-dev = 0.559/1.208/7.285/1.409 ms
and that's not as bad
up_the_irons: speed increase of roughly 4x for my test
where it's twice as fast without the sync commands ***: Ehtyar has joined #arpnetworks twobithacker: anyone else seeing packet loss to their VPS? ***: Ehtyar has quit IRC (Quit: Going!) staticsafe: twobithacker: not noticing anything here, mtr? twobithacker: yeah, it's clean to ge0-arpnet.cust.lax07.mzima.net then about 25~30% packet loss staticsafe: twobithacker: hostname/IP? twobithacker: Comcast on the way there, trying to get a trace back now
174.136.99.74 is my vps, I'm on 17216.146.45.2343
err 216.146.45.243
IRCing from my VPS too, the packet loss is more than mosh can deal with nicely staticsafe: ah yes
I have loss over v4 as well mnathani: 0% loss from Toronto twobithacker: ah, v6 is much better ***: mercutio has quit IRC (Ping timeout: 252 seconds)
mercutio has joined #arpnetworks twobithacker: looks like it's the return path, packet loss as soon as it hits Comcast
maybe someone saturating a link :/ mercutio: go comcast staticsafe: i think the loss just got worse o_o mercutio: heh
i lost connection to freenode
which seems to happen to lots of people frequently staticsafe: http://pastie.org/private/agllzswbtezlpyyjtz2a mercutio: but i was just thinking yesterday how i seem to avoid it staticsafe: from both sides mercutio: wow staticsafe: I think thats why my friend was complaining about not being able to reach his znc session mercutio: that looks like congestion to mzima in genreal
which most outgoing routes go over
until up_the_irons get's his new router staticsafe: znc is still connected to IRC because its over IPv6 mercutio: hmm
happsne here too it seems
ge0-15.as01.lax07.mzima.net
as starting hop
ahh that's same as you staticsafe: yea seems like mzima is having issues
im sshing in through another VPS via IPv6 mercutio: notice how it doesn't seem consistent between hops
i feel like i have slight lag
but smooth ***: solj has joined #arpnetworks mercutio: hmm it's routing via trit
oh hey
how do i do a paste? staticsafe: pastie.org mercutio: http://pastie.org/5075292 twobithacker: I'm guessing v6 is mostly over peering with HE up_the_irons: who's saturating my linkz?! mercutio: i think it's an incoming issue not outgoing
based on that
but the other things i'd found were screwed in both directions
err i mean packet loss all the way twobithacker: telstra must have a different return path that's hitting an unsaturated link qbit: man i am gettin lagielagg mercutio: i can do the reverse path from that ip up_the_irons: oh wow 1 Gbps of traffic, who will i shit can today... mercutio: http://pastie.org/5075303 staticsafe: up_the_irons: O_o mercutio: twobithacker: not telstra return path but yeah
gah
this wind is creepy
let's hope the power doesn't go out again brycec: up_the_irons: who? Thought you limited us to 100Mbps, so that would be 10 users to shitcan... and grammatically speaking, "whom" up_the_irons: things look clearer now mercutio: brycec: it's prob incoming ddos
which can go way over that brycec: probs -: brycec would be interested to know who all is saturating up_the_irons' links too mercutio: some loser kid in his basement i imagine up_the_irons: brycec: you can't limit incoming though
target has been identified and null routed twobithacker: yeah, that's much better from here brycec: swoot mercutio: it does look like it cleared up brycec: yeah I know up_the_irons (unless you either have friends on their end, or like borking the BGP periodically) mercutio: up_the_irons: that write cache thing doubled my performance with and without sync
err actually i think it was 4x staticsafe: up_the_irons: outgoing packet flood? :P mercutio: static: i think it just happened incoming was the same as outgoing for the hops that showed all loss up_the_irons: brycec: we basically give the target IP a null route community and certain important peers / transits cease forwarding traffic to this IP brycec: bingo up_the_irons: mercutio: yeah i'm not surprised, that write cache rocks mercutio: up_the_irons: well, it use to be slower than the old node...
but not by a lot
and a bit variable up_the_irons: mercutio: would you say the performance is on par with the regular VPS' ? mercutio: and now it's obviously faster :)
up_the_irons: i /think/ so up_the_irons: staticsafe: incoming :) staticsafe: ah mercutio: but i ssh into the old vps to get into the new vps
or via ipv6
ipv6 is longer route though up_the_irons: mercutio: oh so it's faster now? mercutio: tar definitely seems faster up_the_irons: nice mercutio: i was disconcerted by the high network ping times when untarring before htough up_the_irons: mercutio: do those high network ping times still occur? mercutio: and vmstat was showing very few interrupts when that was happening
up_the_irons: well highest was 7 msec
in my untar
i assume it's probably a bug somewehre where it's running out of queue slots or something -: staticsafe e-mails friend mercutio: and spinning in the inrerrupt handler
and not receiving network packets while that happens
so teh write cache thing really might alleviate it, and it may not happen at lower load anyway
but yeah it was over 200 msec before the write cache peak up_the_irons: mercutio: roger mercutio: oh the other weird thing is that ping times in general are higher than old vps
like if i ping the ipv6 gateway
but that may be going through an extra switch or something up_the_irons: mercutio: nah same switch
mercutio: how much higher are we talking about mercutio: about 100%
err 50% up_the_irons: so double? mercutio: yeh
but
that's still like half a msec
--- 2607:f2f8:add0::1 ping6 statistics ---
29 packets transmitted, 29 packets received, 0.0% packet loss
round-trip min/avg/max/std-dev = 0.394/0.622/1.158/0.178 ms
that's old one up_the_irons: yeah i don't think i'm gonna be able to do much about mercutio: it may be ethernet coalescing setting
--- 2607:f2f8:add0::1 ping6 statistics ---
27 packets transmitted, 27 packets received, 0.0% packet loss
round-trip min/avg/max/std-dev = 0.696/0.928/1.821/0.263 ms
that's new one up_the_irons: btw, this recent UDP flood was targetting an IP on kvr26, and I recently used my new NOTRACK rules (that we talked about) on that host. Man, even with 1 Gbps incoming, shell over SSH to kvr26 was clean as a whistle, no delays at all. -: up_the_irons is happy about that one mercutio: sweet staticsafe: up_the_irons: nice mercutio: my beta kvm is on kvr27 isn't it? up_the_irons: mercutio: yup mercutio: does that have notrack too? up_the_irons: mercutio: yeah looks like double
mercutio: try IPv4, not IPv6 though. IPv4 is hardware accelerated solj: up_the_irons: any specific target IP on kvr26? mercutio: i first noticed it when thinking it was weird that gateway had much lower ping than the other vm up_the_irons: yeah kvr27 has notrack mercutio: yeh well the ipv4 gateway is congested atm up_the_irons: solj: yeah, the target was identified as a single IP mercutio: err i mean pinging next hop is deprioritised -: solj hopes it wasn't mine then :-/ mercutio: and the ipv4 from the new vps goes through the first vm
so would need to contrast it against something up_the_irons: solj: if you can still reach your vps, it wasn't you :)
mercutio: ah right mercutio: oh up_the_irons ... is kvr27 on 100 megabit atm btw? up_the_irons: yes mercutio: cool
well ipv6 performance to another host in los angeles was basically the same up_the_irons: cool solj: up_the_irons: awesome, thanks! up_the_irons: solj: np mercutio: oh, and your ethernet card issues on freebsd would probably be alleviated by Intel® PRO/1000 PT Server Adapter
they're standard pci-e cards
without the fancy stuff
err withotu the really fancy stuff staticsafe: latency to another LAX VPS from my arpnetworks vps - http://sprunge.us/iVFI
:) mercutio: heh under 1 msec is nice static staticsafe: yep RandalSchwartz: we interviewed the KVM guys today on FLOSS Weekly
pretty active chat room mercutio: that sounds like a dentist magazine RandalSchwartz: oooh, and the audio is already out up_the_irons: Webhostbudd: nothing on ipv6 changed btw. looping is a sign that my router can't see a route to you RandalSchwartz: FLOSS = free libre open source software mercutio: hmm RandalSchwartz: my podcast that gets about 50k downloads a week up_the_irons: mercutio: yeah after a bit of research i also found the PT card and NewEgg'd it already :) staticsafe: latency over v6 is a bit higher cause the other LA host does not have native v6 and is using a HE tunnel mercutio: is it audio only?
up_the_irons: oh cool up_the_irons: RandalSchwartz: nice! i'll have to listen to that one mercutio: static: he.net tunnels aren't likely to be that slow actually staticsafe: it isn't mercutio: for just los angeles traffic up_the_irons: staticsafe: nice traceroute! that VPS at Cyberverse is about 1 mile down the street, so yeah, pings are way low :) staticsafe: :D
thats my friend's box with Chunkhost
mercutio: http://sprunge.us/iRTH mercutio: a lot of that latency's coming from the arp ipv6 router having higher latency
if i trace from another host it's 0.8 msec to that destination
although more hops
http://pastie.org/5075448 up_the_irons: gonna get some air
why is it so hot in LA now? It's almost november! -: up_the_irons takes a walk staticsafe: mercutio: interesting RandalSchwartz: welcome to global warming mercutio: i'm listening to this web cast
about kvm RandalSchwartz: twit.tv/floss ? mercutio: yeh RandalSchwartz: yeah. that's what I sound like :) mercutio: so kvm was made for windows RandalSchwartz: no - there's a version of it for windows mercutio: ok this is too basic for me :) RandalSchwartz: no - wait... we get deeper
I just had to give gradual overview mercutio: i skipped ahead :0
gah i need more coffee
the developer is hard to understand/follow for me
probably partially accent RandalSchwartz: Yeah - they failed to follow our instructions about audio mercutio: it's also partially i think cos of being a geek :) RandalSchwartz: and they're israeli mercutio: rather than public talker
ahh ok ***: valleyfox has joined #arpnetworks RandalSchwartz: My instructions are to have a mic that is no further than six inches from the mouth. they shared a single mic between them that was 2-3 feet away
that makes the sound very muddy mercutio: oh
it reminds me of skype
but with skype you have feedback loop
i use skype on my laptop rather than desktop with some inbuilt mic RandalSchwartz: it *is* skype mercutio: so it probably sounds terrible
oh real RandalSchwartz: yeah mercutio: skype isn't great for audio quality RandalSchwartz: it is if you have enough bandwidth mercutio: really?
i only have 1 megabit upload i suppsoe RandalSchwartz: in fact, it's better than nearly anything else mercutio: but i've never noticed skype being that great RandalSchwartz: the SILKv3 codec is amazing mercutio: i find voip better RandalSchwartz: better than G.729 mercutio: voip doesn't use g729
voip uses g711
or g722 RandalSchwartz: uh - I have voip that goes 729
it depends on your clients
.. http://voip.about.com/od/voipbasics/a/voipcodecs.htm mercutio: yeh some people do voip with g729
g729 sucks
gsm is even worse
g729 is used in some call centres
that's why the music sounds terrible jdoe: er RandalSchwartz: g729 on *good* bandwidth sounds great
I'll just let you keep digging a hole for yourself though jdoe: what he said. RandalSchwartz: I've been to astricon. I've hung out on vuc.me a number of times.
I've even had "the asterisk voice lady" make a promo for me for FLOSS Weekly. :) jdoe: I haven't, but I do have vanity commits in Asterisk, for whatever that's worth ;)
RandalSchwartz: that's pretty cool. mercutio: g729 isn't bad
but you notice it on music
gsm is bad
but g711 is only like 80kbit with sip RandalSchwartz: ... http://soundcloud.com/randal-l-schwartz/allison-smith-floss-weekly
there it is jdoe: mercutio: and when you only run one channel of voice, that's wonderful. mercutio: well if you run lots of channels you can get a e1/t1 cheap anyway
i use voip over adsl with single channel for my normal claling
it does depend on the client a bit
it's pretty good with my linksys phone RandalSchwartz: jdoe - have you seen https://www.tropo.com/home.jsp ? mercutio: as long as you don't upload you're sweet without evne having qos RandalSchwartz: they have a develop-for-free setup... I have a couple of demo apps :) jdoe: RandalSchwartz: heard of it, I use twilio though.
unfortunately I don't really have a business use for it, I just somehow scored ~$80 in credit, so I use it for personal things. RandalSchwartz: tropo is more flexible, I think jdoe: could be... same idea though, looks like. Programmable voice/sms stuff? RandalSchwartz: basically, it binds together any of POTS, VOIP, SMS, and Jabber.
along with voice recognition and menu systems ***: solj has left jdoe: ah. Jabber is neat, I don't think twilio does that.
though nothing prevents you from writing some glue between twilio and jabber, I guess.
what do you apps do? RandalSchwartz: ... http://www.quora.com/What-if-anything-separates-Twilio-from-its-competitors jdoe: that top answer makes me cringe RandalSchwartz: well, the third answer down or so is interesting
tropo seems to be more of a glue
skype and AIM and twitter I forgot about :) jdoe: the Colin one? yeah. Lefty: wow, that guy's name is almost the same as mine jdoe: RandalSchwartz: yeah that's reasonable. I dunno, I think if that was something I was super concerned about I might just DIY the glue bit... You've got me thinking about gluing twilio to my jabber bot now :P
... but right now, I just use it for stupid shit.
like I can text myself a number, and it calls a script which prods asterisk to find me, call the number, and bridge. RandalSchwartz: call (424) 235-1666
that was one of the demos, but it's still cute ***: Ehtyar has joined #arpnetworks Webhostbudd: up_the_irons: any idea why your router might not "see" my node?
up_the_irons: my ipv6 config is the provided config
up_the_irons: so I'm not really sure what I'm doing wrong here brycec: Webhostbudd: just a thought - try using a different address? Also might help if you provided your network settings file (pastebin, or whatever). Webhostbudd: i actually did above
but ill repost brycec: Thanks (too much backlog to sift through) Webhostbudd: http://sprunge.us/UUaW brycec: Webhostbudd: /128? Pretty sure you were given a /64
ifconfig_em0_alias0="inet6 2607:f2f8:a8e4::2/128" Webhostbudd: yea, but aliases should be a single host
always
in bsd
unless ipv6 is different than ipv4 brycec: heh tbh never setup aliases on bsd
*bsd
(well that's not quite true... I've done it on OpenBSD. But this isn't OpenBSD) Webhostbudd: but i mean brycec: Right you are, it would be given a 128 Webhostbudd: i can't even connect to the original IP
the one with /64 brycec: Yeah I would recommend trying a different IP, just to test
eg ::2 Webhostbudd: i did that before
didn't work
im pretty stumped
what's weird is that i can use ipv6 on outbound connections, but no one can connect to me
i even tried disabling pf, nothing -: brycec puzzles for a bit Webhostbudd: it looks like there is a loop in routing to my ip for new connections
which makes no sense
im baffled brycec: I can ping ::0
64 bytes from 2607:f2f8:a8e4::: icmp_seq=0 ttl=59 time=26.9 ms Webhostbudd: wat
you are the only person who can brycec: heh
from an HE tunnel Webhostbudd: no way....
no one else can
WTF
im soooo confused
http://sprunge.us/FeSX
it just loops
and hits max hops brycec: Webhostbudd: do you have any services open? Webhostbudd: such as? brycec: 80, 22, something I can try and open a connection to? Webhostbudd: ssh
22 brycec: doesn't connect :/ Webhostbudd: it should brycec: so I must not be hitting you, or your traffic isn't making the return journey Webhostbudd: shouldnt&
i just changed the ip
need to update sshd
sec brycec: ssh: connect to host 2607:f2f8:a8e4:: port 22: Connection timed out Webhostbudd: yea
it won't
sec brycec: np Webhostbudd: now brycec: still nada, timeout Webhostbudd: hmmmm
but you can ping it? brycec: yes
traceroute hits HE, coresite, then you
I can ping you from my ARP vps too Webhostbudd: see
my packets get stuck at a higher up router
13 2607:f2f8:0:102::1 (2607:f2f8:0:102::1) 99.083 ms 102.662 ms 103.600 ms
that's the last hop that works brycec: I don't even have that hop... Webhostbudd: exactly
that's probably why yours works brycec: and based on address, that would be one of up_the_irons' boxes Webhostbudd: mhmmm
it gets to the gateway fine
what's weird
is that requests to the gateway ip
2607:f2f8:a8e4::1
don't go through that box
does chrome seriously not work with ipv6
now it routes
woah brycec: Yes CHrome does ipv6 Webhostbudd: but i can't type in the url
http://2607:f2f8:a8e4::
it tries to search it brycec: ipv6 urls need to be in []
always Webhostbudd: wat
really brycec: since the browser can't tell what port you're trying. Webhostbudd: ohhhh
good call brycec: ha
just for fun, Webhostbudd... do you have a link-local address on that adapter? (it should be assigned one automatically, just checking) Webhostbudd: yes
what's odd
is that it now magically responds to pings
it's not looping at that router anymore brycec: heh definitely some weird routing going on
hmmm yep everything checks out okay on my end. I get responses from pinging your address, but absolutely no response if I try and ssh.
I'm stumped. Webhostbudd: me too
hmmm brycec: I dare say that maybe the routing holes earlier were a red herring, but can't say for certain. Webhostbudd: yea, who knows brycec: Webhostbudd: do you see any hits from me in your tcpdump? Webhostbudd: let me see brycec: (I've got a ping running on vps3)
If you don't see it, then I'm not really hitting you, and that would explain routing anomalies (and who the hell's IP do you have anyways) :p Webhostbudd: getting the pings brycec: damn. GOing to try ssh now
tbh was hoping you didn't see the pings... would've made life simpler, problems would've been upstream of you.
ping timed out. retrying...
seeing them? Webhostbudd: serc
sec
nope brycec: awesome...
next test I guess - try hitting vps3.cobryce.com
ping or ssh Webhostbudd: PING6(56=40+8+8 bytes) 2607:f2f8:a8e4:: --> 2607:f2f8:a650::3
16 bytes from 2607:f2f8:a650::3, icmp_seq=0 hlim=63 time=3.072 ms
16 bytes from 2607:f2f8:a650::3, icmp_seq=1 hlim=63 time=1.152 ms
16 bytes from 2607:f2f8:a650::3, icmp_seq=2 hlim=63 time=1.137 ms
^C brycec: see your pings Webhostbudd: --- vps3.cobryce.com ping6 statistics ---
3 packets transmitted, 3 packets received, 0.0% packet loss
round-trip min/avg/max/std-dev = 1.137/1.787/3.072/0.909 ms brycec: now ssh?
looks like you made it Webhostbudd: im baffled by this
i get no ssh packets
getting lots of http packets brycec: Webhostbudd: traceroute says ICMP reach you, but NO tcp traffic does. Webhostbudd: http is hitting brycec: 2 * * *
if you say so - I'm not getting it back
but then that might just be traceroute Webhostbudd: yes, my firewall should be rejecting too brycec: (it's traceroute...) Webhostbudd: but if the firewall dropped the packets
you would just get losses
"set block-policy return"
so i would hope it's actually properly rejecting
try hitting me with ssh traffic again? brycec: hitting
not returning Webhostbudd: getting no dumps brycec: imma try port 80... Webhostbudd: wait, now i got some
16:42:50.583604 IP6 vps3.cobryce.com.47136 > 2607:f2f8:a8e4::.ssh: Flags [S], seq 3526079872, win 5760, options [mss 1440,sackOK,TS val 177719508 ecr 0,nop,wscale 6], length 0
16:42:53.582536 IP6 vps3.cobryce.com.47136 > 2607:f2f8:a8e4::.ssh: Flags [S], seq 3526079872, win 5760, options [mss 1440,sackOK,TS val 177720258 ecr 0,nop,wscale 6], length 0
16:42:59.582439 IP6 vps3.cobryce.com.47136 > 2607:f2f8:a8e4::.ssh: Flags [S], seq 3526079872, win 5760, options [mss 1440,sackOK,TS val 177721758 ecr 0,nop,wscale 6], length 0
super late though brycec: (once I install curl)
trying port 80 Webhostbudd: is tcpdump super delayed
or is this router just having trouble? brycec: nope, never been retarded for me Webhostbudd: because i get some packets
but they should up almost a minute late
and all sorts of weird shit mercutio: do you get synack? Webhostbudd: im getting nothing right now brycec: so... traceroute6 -T on ARP got responses back from you Webhostbudd Webhostbudd: now it looks like it might be doing stuff mercutio: i'll see if i can connect to your ssh port
can frmo arp
and can from another location brycec: getting immediate connection refused now from Webhostbudd on 22 mercutio: as well as a 3rd location, so i think it's working now?
oh maybe i'm connecting to wrong locaiton?
i was going to: 2607:f2f8:a650::3 Webhostbudd: hmmm brycec: mercutio: that's me
a8e4 is Webhostbudd mercutio: oh
:1? brycec: srsly though, both ARP and HE I get immediate refusals from Webhostbudd
mercutio: ::0
2607:f2f8:a8e4:: Webhostbudd: now it works
lol
wtf mercutio: # telnet 2607:f2f8:a834:: 22
Trying 2607:f2f8:a834::...
like that?
it's not working brycec: mercutio: you typoed mercutio: it's not even working from arp
oh
oh e not 3
:) Webhostbudd: oh my god mercutio: SSH-2.0-OpenSSH_5.8p2_hpn13v11 FreeBSD-20110503 Webhostbudd: i think i just found out whaty it was
LOL brycec: Webhostbudd: eh? mercutio: works from 3 locations Webhostbudd: 2607:f2f8:a9e4:: brycec: Webhostbudd: another dead hooker clogging the Internet pipes? mercutio: what was it webhost? Webhostbudd: is what my dns records say
2607:f2f8:a8e4::
is correct mercutio: oh heh Webhostbudd: holy mercutio: webhost typo'ed too
i think i misread between 3/e Webhostbudd: ugggh ipv6 mercutio: the addresses aren't very memorable brycec: That doesn't make sense though... we're all haxing with addresses here. DNS shouldn't have played the slightest role in any of this. Webhostbudd: oh god
all of my firewall rules are wrong too
they have the same ip
CRAP brycec: oh well that could explain it some... though you said you'd tried disabling pf, so that should have ruled it out Webhostbudd: yes, but i was using my domain name
to connect after disabling pf
and they were both wrong brycec: LAWL
okay Webhostbudd: SOB
C+P error brycec: mysterIES solved
/dcc Webhostbudd send beer
there there, it's okay Webhostbudd: hahah brycec: up_the_irons: Webhostbudd's IPv6 woes solved. User error, typo.
up_the_irons: Bug report: IPv6 addresses are haaaard and easily goofed up. Webhostbudd: yep
=p
and impossible to see brycec: I figure he'd appreciate knowing things are resolved... and how he could improve them. Webhostbudd: well, i wish non-existant hosts would not be available
but maybe a9e4 is something
at any rate, if that guy doesn't exist, then it should really give a unreachable error
that would have been a huge red flag
in pf
is there any way to do $prefix"2"
so it appends the string inside a rule -: brycec doesn't know Webhostbudd: darn jlgaddis: heh, fyodor's girlfriend just gave me her phone number brycec: I don't think it counts if it's written on the bathroom wall... -: brycec couldn't resist... even though he has no idea who anyone involved is jlgaddis: nmap?
"fyodor" is the pseudonym of the guy who wrote it brycec: heh I meant that I was talking smack about strangers, something I was raised to know better than to do.
regardless, lol kraigu: in the absence of those who raised brycec -: kraigu smacks brycec kraigu: :D brycec: :( kraigu: how about jlgaddis: heh kraigu: BRYCE NO MIDDLE INITIAL C
WHAT DID WE TELL YOU brycec: Man... I want to name my kids "no middle initial" but I'd shorten it to just NMI... and nobody would understand kraigu: or they would and hate the kid'd parents ;) brycec: well some people might... and I'd carry around cookies for those people. pretty stale I imagine. kraigu: haha -: jlgaddis masks your NMI kraigu: hot ***: chmod2 has joined #arpnetworks
chmod has quit IRC (Ping timeout: 246 seconds)
HighJinx has quit IRC (Quit: Computer has gone to sleep.)
HighJinx has joined #arpnetworks
Ehtyar has quit IRC (Quit: Don't follow me)