#arpnetworks 2013-03-06,Wed

↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)
WhoWhatWhen
***ant has quit IRC (Remote host closed the connection) [00:04]
........ (idle for 37mn)
ant has joined #arpnetworks
isuldor has joined #arpnetworks 		[00:41]
............... (idle for 1h10mn)
mnathani has quit IRC () [01:52]
................ (idle for 1h15mn)
isuldor has quit IRC (Read error: Connection reset by peer) [03:07]
.............................. (idle for 2h26mn)
mercutio has quit IRC (Ping timeout: 250 seconds) [05:33]
.... (idle for 17mn)
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer 		[05:50]
.... (idle for 18mn)
heavysixer has quit IRC (Quit: heavysixer) [06:08]
..... (idle for 24mn)
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer 		[06:32]
............. (idle for 1h2mn)
mercutio has joined #arpnetworks
dzup has joined #arpnetworks 		[07:34]
...................... (idle for 1h47mn)
heavysixer has quit IRC (Quit: heavysixer) [09:24]
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer 		[09:29]
..... (idle for 23mn)
heavysixer has quit IRC (Quit: heavysixer) [09:52]
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer 		[10:03]
........... (idle for 54mn)
hazardous has quit IRC (Ping timeout: 276 seconds) [10:57]
hazardous has joined #arpnetworks [11:04]
.............. (idle for 1h7mn)
heavysixer has quit IRC (Quit: heavysixer) [12:11]
.... (idle for 18mn)
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer 		[12:29]
....... (idle for 30mn)
avj has quit IRC (Quit: ircII EPIC5-1.1.5 -- Are we there yet?) [12:59]
avj has joined #arpnetworks [13:12]
heavysixer has quit IRC (Quit: heavysixer) [13:19]
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer 		[13:24]
notion has quit IRC (Ping timeout: 252 seconds)
teneightypea has quit IRC (Ping timeout: 246 seconds)
up_the_irons has quit IRC (Ping timeout: 246 seconds)
toddf has quit IRC (Ping timeout: 256 seconds)
twobithacker has quit IRC (Ping timeout: 246 seconds)
bGeorge has quit IRC (Ping timeout: 276 seconds)
mikeputnam has quit IRC (Ping timeout: 264 seconds)
medum has quit IRC (Ping timeout: 276 seconds)
medum has joined #arpnetworks
mike-burns has quit IRC (Ping timeout: 276 seconds)
mikeputnam has joined #arpnetworks
toddf has joined #arpnetworks
ChanServ sets mode: +o toddf
notion has joined #arpnetworks
teneightypea has joined #arpnetworks
bGeorge has joined #arpnetworks
twobithacker has joined #arpnetworks
up_the_irons has joined #arpnetworks
ChanServ sets mode: +o up_the_irons 		[13:29]
....... (idle for 30mn)
wallshot has joined #arpnetworks [14:09]
wallshottempted to re-open and reply to 1.5 year old support thread
seems easier than providing all the background for a new one
naw that's a bit rude even for me 		[14:11]
mercutioit sounds less rude if it has relevant data to me
but you could just reference it 		[14:12]
wallshottrue, but it wipes out that sense of closure up_the_irons gets from closing tickets :)
yeah i think I'll just link the original one 		[14:13]
mercutioyeh [14:13]
***DiaboliK has quit IRC () [14:15]
wallshot*facepalm* of course i submit ticket and then see this nice tool to do what i want myself w/o harrassing the staff
so i *am* rude! 		[14:22]
brycechaha
brycec is curious what that tool is 		[14:22]
wallshotreverse dns delegation
last time i tweaked reverse dns, i don't recall seeing this, and Garry handled the config, it was just after i had signed up
but it looks like i can edit them myself now :D 		[14:23]
brycecah [14:25]
mercutioheh
i think i should use it :)
as the years go by i seem to care less and less about reverse delegation
unless it's a mail server
i'd by happy if it was just <ip>.arpnetworks.com or something 		[14:25]
brycecyeah that would be pretty nice
Gets ARP's name out there a bit 		[14:26]
mercutioi think that part of the issue is that often there are multipel things happening on one IP
so you end up with just a hostname 		[14:26]
brycecAnd gives users a solid/working rDNS out of the box [14:26]
wallshotyeah mail is the only thing that forces you to care about reverse
that and your IRC /whois results ;) 		[14:26]
mercutiobut the hostname you know from the forward lokoup what IP it goes to anyway [14:26]
brycecIRC is a distant second
crap laptop, quit lagging 		[14:26]
mercutioirc i don't care about
my irc reverse lookujp doesn't even seem to be there
even though it's working
i know cos i set it up /years/ ago for reverse for irc :)
actually 		[14:27]
wallshotmaybe someone redelegated your PTRs :) [14:28]
mercutioi'd like it to tsay <ip>.static.arpnetworks.com
my irc isn't on arp
and 4.2.2.2, 8.8.8.8 work with it
freenode just sucks :)
actually i like it when routers say their location too 		[14:28]
wallshotgotta love hating freenode. the worst irc network i ever loved [14:29]
plettwallshot: Don't worry. If you're the sort of person who worries that they're rude in a tech support query, you aren't rude :) [14:29]
mercutiowallshot: it's actually only as bad as undernet used to be
actually it's better than underent used to be
it's like undernet without the "lag"
and people coming in on diff servers and see themselves talk, and being like i said that 5 minutes ago! 		[14:29]
wallshotooh the big old netsplits [14:30]
mercutioit seemed to be slow with netsplits though
i think internet was slower back then too 		[14:30]
wallshotyeah undernet grew faster than bandwidth capabilities [14:31]
mercutionah they had ddos issues
dunno how efnet survived
undernet was big here
mercutio is in NZ
there usde to be NZ irc server even
but then that went away cos too many ddos issues
and had to use EU servers
cos the US servers blocked non-US IP 		[14:32]
***Ehtyar has joined #arpnetworks [14:35]
...... (idle for 25mn)
heavysixer has quit IRC (Quit: heavysixer) [15:00]
up_the_ironsmercutio: wallshot : i really don't mind if a 1.5 year old ticket is re-opened
brycec: mercutio : i really should have rDNS working upon new account signup; just another little thing to do... 		[15:09]
mercutioup_the_irons: good to know.
heh my yearly bandwidth is nearly at my monthly bw quota
it doesn't seem to be on my cp
not that it really matters 		[15:11]
brycecha congrats [15:14]
up_the_ironsheh [15:26]
mercutioi wonder what average utilisation is like
is it normally like 1/10th i imagine? 		[15:29]
***mike-burns has joined #arpnetworks
ChanServ sets mode: +o mike-burns
easymac_ has joined #arpnetworks
easymac_ has quit IRC (Client Quit)
easymac has quit IRC (Read error: Connection reset by peer) 		[15:32]
........ (idle for 39mn)
easymac has joined #arpnetworks
easymac has quit IRC (Changing host)
easymac has joined #arpnetworks 		[16:16]
up_the_ironsnixbag: data center day tomorrow. the huge chassis i was telling you about arrived and i need help racking it. [16:22]
wallshottranslated: you get to be my forklift. and my makita. [16:23]
.... (idle for 18mn)
brycecOkay, question for those more knowledgeable in IPv6, BGP, etc... wtf is wrong with m0n0.ch? (m0n0wall's website). Their IPv6 interface has been b0rked (or sloooow) for as long as I can remember. Tried connecting today, timed out... Threw their address 2a02:200:3:1::101 into HE's looking glass and they can't reach it. So, what's up with them? Can anyone else reach them?
(I googled and didn't see any mentions of their website failing to load over ipv6) 		[16:41]
pjsok, I know I'm retarded, but when I have my pf firewall enabled, I can't get out using ipv6? for instance, "telnet www.google.com 80" tries to use ipv6 first. Disabling the firewall works fine. Now, this is the same pf.conf I have in play in other fbsd 9 VPS... I feel like I've ran into this and forgot the solution. Anyone? [16:42]
brycecpjs: can you post a copy of your pf.conf? [16:42]
pjssure, one sec (though, like I said, it's literally the same (minus IP network) as all my other VPS's) [16:43]
bryceccould be a lot of things... starting with wrong addresses, blocking IPv6 services like NDP (equiv of blocking ARP), or something stranger
pjs: Other VPS' on ARP? 		[16:43]
pjsYea [16:43]
staticsafebrycec: m0n0.ch seems to work fine from my HE tunnel at home
MTR looks alright too 		[16:44]
brycecwat, really? [16:44]
staticsafeindeed [16:45]
pjsbrycec http://dpaste.com/1014581/ [16:45]
brycecstaticsafe: lg.he.net's traceroute gave two he.net hits then bombed out * * * [16:45]
staticsafeactually wait
nvm mtr is dying
i guess firefox fell back to v4 		[16:45]
bryceclol yeah FF does that
my squid proxy at work defaults to ipv6
which is neat, but prevents things like ff from falling back to ipv4 		[16:45]
staticsafeone sec lemme do a mtr from all my boxes [16:46]
brycecthx staticsafe
just wondering if I'm losing my mind... 		[16:46]
up_the_ironswallshot: lol [16:48]
pjshrmm.. comparing that pf.conf (http://dpaste.com/1014581/) with another from a different fbsd 9.1 VPS the only difference is the ext_net.. [16:49]
staticsafebrycec: http://sprunge.us/HgeM seems like it may not be reachable via HE for some reason [16:49]
up_the_ironspjs: my guess is you are blocking NDP [16:49]
***phrac has quit IRC (Quit: Lost terminal) [16:49]
staticsafemy ARP box can't reach it [16:50]
pjsup_the_irons possible.. but I wonder why my other VPS's dont seem to have this issue [16:50]
up_the_ironsup_the_irons shrugs [16:50]
staticsafebrycec: makes no sense either
the AS that IP is in is peered with HE too 		[16:54]
pjsup_the_irons possible to have the kernel default to v4 when making a connection? v4 works fine with the rules I have configured [16:57]
up_the_ironspjs: no idea how to do that [16:57]
mercutiopjs: it's application not kernel that does that [16:57]
up_the_ironspjs: why not just disable ipv6 on your NIC?
if ipv6 is turned off, apps won't try to use it 		[16:57]
mercutioor what up_the_irons said [16:58]
up_the_ironson Linux, it's some sysctl param [16:58]
mercutiodisable_ipv6
sysctl -a | grep disable_ipv6
net.ipv6.conf.all.disable_ipv6 = 0
set that to 1 on linux.. 		[16:58]
pjsgrrr, I hate to disable it.. but I guess they wont be using it [16:59]
staticsafethats a step backwards imo, you should fix your pf rules [16:59]
mercutioif it's pf it's not linux :) [16:59]
pjsstaticsafe I agree
Yea, it's FreeBSD 		[16:59]
mercutioi'm yet to do ipv6 on freebsd [17:00]
staticsafe:O
pjs: i would ask around in ##freebsd or something, probably something simple :P 		[17:00]
mercutiotry google first i'd reckon [17:00]
pjsYea, I suppose.. I'm googling :)
Trying some things. Just odd that the same pf file, literally the exact same (except the ext_net variable) works fine 		[17:00]
brycecsorry pjs I got dragged away by a power crisis.
pjs: what about the other files that your pf.conf includes?
are those identical across hosts?
notably, badhosts
also, dumb question (because I'm not a pf guru) but I see a lot of pass in inet, but what about inet6? 		[17:03]
pjsbrycec yes, they are. It's a cronjob that gets sync'd every couple hours.. just blocked IP's that have been trying to ssh in to frequently
I wonder if this is the culprit: net.inet6.ip6.v6only: 1 		[17:04]
brycec(I seem to recall there's a sysctl that equates inet6 and inet, a la ffff::ipaddress) [17:05]
up_the_ironsit sucks to disable ipv6
step backwards, like staticsafe said 		[17:05]
pjsup_the_irons right, I don't want to do that [17:05]
up_the_ironsthe new backup service will be v6 only for direct links
i'm not even enabling v4 for it
time to get serious about v6 		[17:06]
brycecYeah pjs net.inet6.ip6.v6only is that sysctl [17:06]
up_the_irons(Portal will clearly describe this on the service page) [17:06]
brycecpjs: so what's net.inet6.ip6.v6only set to on the other boxes? :p [17:07]
pjsbrycec yea, it's sysctl.. but the setting is the same on a working fbsd 9.1 box (same pf.conf) [17:07]
staticsafeup_the_irons++ [17:07]
brycec(darn, hoped that was it) [17:08]
up_the_ironssweet, i just got +1'd
don't think that has ever happened b4 		[17:08]
brycecNot according to my logs [17:09]
up_the_ironsshit [17:09]
brycec(so, not since Sep 30, 2012) [17:09]
up_the_ironsbut according to my memory...
wow, indeed, it has happened 4 times
http://irclogger.arpnetworks.com/irclogger_log_search/arpnetworks?search=up_the_irons%2B%2B&action=search&error=0 		[17:09]
brycecha
Poor up_the_irons went all of 2012 without one 		[17:10]
up_the_ironsup_the_irons cries [17:11]
***heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer 		[17:12]
brycecup_the_irons+=100
There there, feel better.
(and that's a first) 		[17:12]
up_the_ironswow
up_the_irons turns into The Hulk 		[17:13]
***dzup has quit IRC (Remote host closed the connection) [17:13]
pjsAdding these 2 fixed it
pass out on $ext_if inet6
pass out on $ext_if proto ipv6 		[17:17]
up_the_irons:) [17:17]
pjsGrrr, gonna drive me up the wall why its required here and not on my others [17:17]
staticsafeo/ [17:17]
up_the_ironsso it was blocking v6 outbound [17:17]
pjsYea :-/ [17:17]
wallshotwell that's a way better fix than disabling ipv6! ;) [17:18]
pjshah for sure [17:18]
***koan has quit IRC (Read error: Connection reset by peer)
koan has joined #arpnetworks
avj has quit IRC (Ping timeout: 252 seconds) 		[17:30]
wallshoti'm saving those pf rules to look at later. they make mine look sloppy as heck, all nicely sorted, with timeout rules and labels on everything [17:31]
pjswallshot :) [17:36]
***hive-mind has quit IRC (Ping timeout: 248 seconds) [17:44]
wallshot has quit IRC (Remote host closed the connection) [17:55]
..... (idle for 24mn)
HighJinx has quit IRC (Ping timeout: 245 seconds) [18:19]
HighJinx has joined #arpnetworks
hive-mind has joined #arpnetworks 		[18:24]
.... (idle for 15mn)
toorop has quit IRC (Ping timeout: 264 seconds)
toorop has joined #arpnetworks
heavysixer has quit IRC (Quit: heavysixer)
toorop has quit IRC (Ping timeout: 252 seconds)
toorop has joined #arpnetworks
toorop has quit IRC (Changing host)
toorop has joined #arpnetworks 		[18:43]
.... (idle for 17mn)
heavysixer has joined #arpnetworks
ChanServ sets mode: +o heavysixer 		[19:07]
DiaboliK has joined #arpnetworks [19:12]
heavysixerany JS nerds in here
? 		[19:22]
jbergstroemwould nerd in your case imply something good? :) [19:24]
...... (idle for 25mn)
heavysixerjbergstroem: yes but i figured out my own answer
jbergstroem: didn't think to check #javascript first ;-)
super nerds in that channel haha 		[19:49]
jbergstroemdamn nerds!
oh yeah, and the answer is probably: have you upgraded the jquerys? 		[19:52]
heavysixerjbergstroem: heh no the answer was closure are created during instantiation of a function not invocation [19:54]
***mnathani has joined #arpnetworks [19:58]
nixbagup_the_irons: what time will you need help? [19:58]
***heavysixer has quit IRC (Quit: heavysixer) [20:08]
nixbagsomeone has been trying to brute force my ssh connection this week. well about 3 different people have it seems. [20:08]
mercutionixbag: that's normal
welcome to the internet :) 		[20:09]
nixbagmy first time looking through my auth logs in awhile :) [20:10]
jbergstroemnixbag: just run sshguard/fail2ban. gets them after a few attempts [20:20]
nixbagjbergstroem: i'm using fail2ban at the moment. it's already done it's job twice since this morning.
mercutio: "welcome to the internet" reminds me of this http://www.quickmeme.com/meme/35ukyz/ 		[20:21]
mercutioheh
but yeah it's all over the palce now 		[20:36]
***mjp has quit IRC (Quit: leaving)
mjp has joined #arpnetworks 		[20:49]
..................... (idle for 1h42mn)
Ehtyar has quit IRC (Quit: There are two major products that come out of Berkeley: LSD and UNIX. We don't believe this to be a coincidence.) [22:35]
↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)