[03:21] *** phlux has quit IRC (Ping timeout: 264 seconds) [03:28] *** phlux has joined #arpnetworks [06:59] *** mhoran1 is now known as mhoran [07:03] *** avj has joined #arpnetworks [07:34] oooook [07:35] oh, didn't realize the routing to arp via comcast went back to normal on the 12th [09:05] Yes, about the same PPS as when I had 200+ targets with 500B pings. (86pps or so) [09:05] ^ 21:35:19 < mercutio> iyou're probably still doing a lot of pps [09:06] I don't recall when I added packetsize=500 but it wasn't yesterday. Might have been two days ago when I added a bunch more hosts, might have been earlier. 21:35:26 < mercutio> were you at defaults prior? [09:07] Today (now yesterday) went from 500B to 32B pings 21:36:03 < mercutio> whther you'd shifted to 500 byte packets today [09:07] And yes, I'll have to figure out the DNS woes. Someday. [09:08] But for now, we're settling for using better DNS servers. Hopefully we'll see improvement. [10:37] haha [10:37] i just use IPs for smokeping stuff and an external monitor that uses dns to resolve the hostname [10:39] I would too. However, some of the hosts I monitor are known to change their IPs [10:40] mercutio: One possible solution for pseudo-caching would be a script that [daily, hourly, whatever] did the DNS lookups and dumped the results in /etc/hosts [10:40] ah, gotcha [10:40] At the very least, it wouldn't hold up FPing [10:41] m0unds: Things like Tunnelr nodes, HE endpoints, my gateways and DNS servers are all easily static. But mirror sites and nlnog ring nodes may change [10:41] Or at least, there's no amount of guarantee they won't change. [10:42] :( better DNS servers did not fix Chunkhost's gaps [10:49] Oh cool! A useful log message! FPing: WARNING: smokeping took 85 seconds to complete 1 round of polling. It should complete polling in 60 seconds. You may have unresponsive devices in your setup. [10:49] It doesn't tell me WHAT or anything :/ [10:50] But it's a start [10:53] I think I'll stop monitoring mirrors. [10:53] They were just there to provide more geographical data, which nlnogring is doing too [10:54] nlnogring? [10:55] oh, that [10:55] heh [10:57] https://atlas.ripe.net/ [10:58] ^ eh, up_the_irons? [10:58] that project seems less skeevy to me than a shared shell [10:58] but i'm paranoid [10:59] haha [10:59] not to say that anyone /would/ abuse it, but meh [10:59] I like the transparency of NLNOG. I don't know *what* I'm hooking up to my network with RIPE [10:59] And if the RIPE device/network is compromised in some fashion?? [10:59] At lest with the shell, I have eyes on it, I can monitor it etc [11:00] And I suspect it's easier to kill a VM than to shutoff a switch port in some remote DC [11:00] well [11:01] Speaking as someone that admins a shared shell, with the right configuration, you've nothing to worry about. [11:01] conf t >> int gi1/0/1 >> shut [11:01] assuming you have access to the switch in question [11:01] which, if you're a network op, i'd assume you do :) [11:01] Of course you also have to connect to the switch :p [11:01] that's a given [11:01] Or if you're up_the_irons, I'm sure he has some management portal up and ready to click the right name. [11:02] (Switch: you also have to figure out the right port) [11:02] (and login) [11:02] But I digress. Hooking up a little black box to my network makes me nervous. [11:03] Also nlnog++ for just requiring a VM, and not requiring you to rack hardware [11:03] request remote hands to cut the cable, CUT IT [11:04] DO IT NAO [11:10] the old gen ripe dongle is 2x3x1" [11:11] http://probev2.ripe.net/ [11:11] lolol [11:12] "If you find this device and are unaware of its purpose" [11:12] http://probev3.ripe.net/ [11:12] shit if I came across that in a closet, I'd be *pissed* (at least until I knew what it was [11:12] yeah - NSA probably loves those little embedded linux server dinguses [11:12] http://www.lantronix.com/device-networking/embedded-device-servers/xport-pro.html [11:18] That is insane... The same fping takes 23s on ARP, takes 59s on Chunkhost. [11:18] (oh 61s that time) [11:22] i had a chunkhost box once [11:22] it was some kind of slow, horrid abomination [11:22] lol [11:23] In the very beginning, they were cool [11:23] i think [11:23] they did some free server giveaway [11:23] ended up getting shit on because they didn't actually give any out apart from one or two [11:23] then ended up getting shit on more whe nthey spammed the poeple they didn't gvie anything out to [11:24] chunk host...vomit host? sweet. [11:24] I'm unaware of that... They did offer (do still?) a "free" tier though, a way to pack host machines fuller, the instance was culled if detected idle for too long, and I think it was v6 only. [11:25] they paid for this ad http://www.reddit.com/comments/1lcxo4/get_a_superfast_cloud_server_with_ssd_hard_drives/ [11:25] And I do know people who took advantage of that (briefly) [11:25] it was crapped on immediately [11:25] because it was a giant, blatant lie [11:25] heh [11:25] the title was SSD hard drives and 8GB of RAM for just $9/month. WHAT?! (chunkhost.com) [11:25] it was $9/monht and something like $2500 setup fee [11:26] Yep, you "purchase" the hardware [11:26] or some crap like that [11:26] except you dont' actually own any of it [11:26] and it's still shared [11:26] so that's a huge douchemove [11:26] Yep. [11:26] Unique idea, but only becausepeople don't usually share the bad ideas. [11:26] what i really want to know is [11:27] (Okay, it's not DNS that's slowing fping down) [11:27] what the hell was chunkhost thinking when they decided to put a blatant lie for an ad in r/programming and r/sysadmin [11:27] like, maybe minecraft or something with less competent people would work [11:27] but come on [11:28] https://scontent-a.xx.fbcdn.net/hphotos-ash3/t1/1656358_278087589008207_569417404_n.jpg one of hte positive aspects of working @ a tribal enterprise [11:28] what is that [11:28] indian tac! [11:28] *taco [11:28] i see beans and .. not sure if that's pita [11:28] well, in the long term, is $2500 setup fee and $9/mo cheaper than $100/mo or so for equivalent elsewhere? [11:28] Fried tortilla [11:28] vegeterian taco? [11:28] frybread [11:28] yeah [11:28] toddf: well it's an 8 gb vps, so yes [11:28] sounds like someone is playing with the pricing models to see who will bite at what pricepoints [11:28] and it's also oversold to death and complete crap [11:29] what is frybread [11:29] m0unds: looks like you got valentine's fruitsnacks too? [11:29] oversold, well, thats kindof par for the course with chunkhost right? [11:29] i wiki'd it but i'm not sure what its equivalent is [11:29] yeah, hahaha [11:29] http://en.wikipedia.org/wiki/Frybread [11:29] Frybread :: Frybread (also spelled fry bread) is a flat dough fried or deep-fried in oil, shortening, or lard. The dough is generally leavened by yeast or baking powder.[citation needed] Frybread can be eaten alone or with various toppings such as honey, jam, or hot beef. Frybread can also be made into tacos, like Indian tacos. It is a simple complement to meals. History According to Navajo tradition, frybread was created in... [11:29] is it like those things at county fairs that have tons of powdered sugar on them [11:29] or is that called something else [11:29] m0unds: I work in a 1-man office. Now I feel very alone :( [11:29] * nb: i've never travelled outside of ultra-urban areas anywhere in the US [11:29] hazardous: Ever been to a carnival/fair? [11:30] brycec: too bad the valentines fruit snacks didn't have TO: and FROM: written in :< [11:30] bummer. i rarely eat anything people bring, except today because i had no idea frybread was egg-free (i'm allergic to eggs) [11:30] brycec: nope, never [11:30] *** jpalmer has quit IRC (Quit: leaving) [11:30] hazardous: so basically I have to put this in terms of taco bell, mcdonalds, and wendy's? [11:30] hahah [11:30] pretty much, yeah [11:30] *** jpalmer has joined #arpnetworks [11:30] i've seen a parade or two but those msotly consist of naked gay people and the sisters of perpetual indulgence here [11:30] m0unds: Okay, easy. IT"S TASTY. [11:31] m0unds: awesome, very lucky. I bet you get lunch for free too :( [11:31] like i'm trying to picture fried bread, but the only thing i can think of is french toast [11:31] i've had frybread before, but before i realized i was allergic to eggs (i grew up in CO/NM) [11:31] m0unds: wow, that must .. suck.. [11:31] there was red chile too, but it had meat in it [11:31] doesn't that exclude almost everything made commercially [11:31] yeah [11:32] i remember seeing a lot of WARNING: MADE IN A FACILITY THAT ALSO PROCESSESS x,y,z,a [11:32] and it's something like nuts, wheat, eggs, gluten? [11:32] yeah, eggs are a common ingredient in stuff. it just means i eat less shit than most people, since crappy food tends to have a lot of egg in it [11:32] crappy as in lacking in any nutritional value [11:33] so we tend to buy vegan stuff mostly, as it doesn't require diligent label checking [11:33] i wish i could eat cilantro, but it tastes like soap and it sucks because i like mexican food and they never remember to leave it off when i ask [11:33] it's not an allergy or anything but it just tastes vomit inducing and revolting [11:33] maybe something is wrong with my tongue [11:33] yeah, cilantro is great [11:33] hahaha [11:33] DEFECTIVE [11:33] hazardous: a lot of people think cilantro tastes like soap.. [11:34] they're WRONG WRONG WRONG [11:34] m0unds: no, it's actually in how they process the flavor [11:34] their processing of the flavor is wrong [11:34] cilantro is over-used as a crutch by crappy and wannabe "mexican" places [11:34] m0unds++ [11:35] it is a genetic thing no? [11:35] it could be [11:35] http://www.huffingtonpost.com/2012/09/20/cilantro-aversion-gene-study_n_1901124.html [11:36] http://www.nytimes.com/2010/04/14/dining/14curious.html?_r=0 [11:36] staticsafe: there is no formal proof that it is genetic, but that is what they are studying. they suspect it might be. [11:36] * staticsafe nods [11:37] I often hear "soap" along with chemicals, hand lotion, etc. [11:37] (ie, it smells or tastes like chemicals) [11:38] A Japanese study ... suggested that crushing the leaves will give leaf enzymes the chance to gradually convert the aldehydes into other substances with no aroma. [11:38] cilantro pesto as a way to enjoy cilantro [11:40] oh man. http://www.huffingtonpost.com/2011/10/27/roasted-vegetable-tofu-a_n_1057197.html [11:57] m0unds: you're veegan? [12:15] food wise, yea [12:15] lifestyle stuff makes my head hurt [12:52] brycec: you can judge some dns servers to set minimum ttl [13:05] s/servers/recursors/ [13:05] brycec: you can judge some dns recursors to set minimum ttl [13:05] s/judge/set/ [13:05] brycec: you can set some dns servers to set minimum ttl [13:05] oh i need both heh [13:05] i shouldn't be on irc before coffee [13:08] wow ubuntu is going to change to systemd apparently [13:08] it's not april 1st hmm [13:20] lol [13:20] mercutio: But I've determined that it's not the DNS lookup choking that one host, so yay that. [13:21] Tested with time fping... a whole bunch of IP's, still took much longer on Chunkhost for no discernible reason (same results) [13:25] weird [13:25] you want to pastebin me the command? [13:26] i could see if i can figure out what causing it [13:27] i found a ntt looking glass [13:28] I could, sure, but I don't think you'll see anything. I run smokeping on 5 hosts, and Chunkhost is the only one being poopy. [13:28] but it seems to be going amazingly slow [13:28] http://www.us.ntt.net/support/looking-glass/ ? [13:28] yeh [13:28] @ddg ntt looking glass [13:28] m0unds: I'm sorry, the DDG Zero-Click API returned no results. As this is a Zero-click Info API, most deep queries (non topic names) will be blank. Quite frankly, I suck cocks. [13:29] Sorry, the Looking Glass is currently unavailable. Please try again later. [13:29] oh, that' sright [13:29] i thought it may show up in more detail the ntt issues [13:29] chunkhost along is making it take more than 60 seconds? [13:30] alone [13:30] as a destination? [13:31] mercutio: source [13:32] running http://sprunge.us/eAhL takes forever [13:32] ^ on a chunkhost VM [13:32] forever in the linked case is 61s [13:32] oh that was from a chunkhost vm not to chunkhost [13:32] (And yes that's one with hostnames, it was quick/easy for me to post) [13:33] what do you get on arp? from NZ it took 37 seconds [13:34] real 0m23.240s [13:34] nice [13:34] i should try agian [13:34] I try it every 60 seconds :P [13:34] yeh [13:34] so more are cached i meant [13:35] heh, in my debugging earlier, I tcpdumped the DNS lookups, didn't take more than 3s [13:35] ^ On Chunk [13:35] oh curious [13:35] 22.7 seconds second time in nz [13:35] I then tcpdumped icmp... that was a mistake :P [13:35] so dns definitely makes a diff when a whole lot of uncached stuff [13:36] haha [13:36] i use strace sometimes [13:36] Yeah, but only 50% in your case. [13:36] I did that too, didn't show anything obvious [13:36] you're doing 20 pings [13:36] But strace doesn't have timing [13:36] that means it'll take 20 seconds for the pings at least [13:36] way less diff between cached/uncached on arp [13:37] and 22.7 sconds again heh [13:38] nice [13:38] so chunkhost is blowing chunks? [13:38] what dns server are you using on chunkhost? [13:38] and what location is it? [13:38] mercutio: I was using HE's DNS earlier, switched to using Google's DNS. No difference. [13:39] mercutio: LAX1 [13:39] (It's vps1.cobryce.com) [13:39] ahh [13:39] 8.8.8.8 isn't close in la :/ [13:39] maybe try 4.2.2.2? [13:39] i think he is close but not very good [13:39] Again: DNS lag has been taken out of the equation completely. Tcpdump says DNS only took ~3s. Trying without DNS lookups at all still takes 50+ seconds. [13:39] i did namebench ages ago [13:40] mercutio: ^^ [13:40] (Oh my bad, I'm using Chunkhost's own DNS right now) [13:40] which ARE close :P [13:40] sbc global is the other one that was good [13:40] heh [13:40] maybe they throttle you [13:40] it's not openvz is it? [13:41] Must be something like that. [13:41] mercutio: Xen [13:41] that nz host was xen [13:41] xen should be fine normally [13:41] * brycec is going to throw a ping -f at things and see how it does. [13:41] uhh [13:41] add -c 10 [13:41] or something [13:41] mercutio: yes [13:41] but later [13:42] because I have important shit to get done when I'm on the clock ;p [13:42] cos ping -f could be considered abusive behaviour [13:42] ok [13:42] Network throttling is the only thing that makes sense at this point, but I don't have a good way to test for that. [13:43] *** kevr has quit IRC (Ping timeout: 252 seconds) [13:43] smokeping? :) [13:43] umm usually http download and look at packet dumps [13:43] cos http has back off behaviour [13:44] it is recent version riht? [13:44] recent version of? [13:45] fping [13:45] there were soem updates at some point [13:45] just reading changelog now [13:45] And I was thinking they're only throttling icmp [13:45] i doubt it [13:45] good question, it's Debian Squeeze so no [13:45] fping sohuld timeout [13:45] is it 3.2+ ? [13:46] * Performance optimization for big select timeouts (#10, Andrey Bondarenko) [13:46] i wonder if that make sa diff [13:46] fping: Version 2.4b2_to $Date: 2002/01/16 00:33:42 $ [13:46] hmm [13:46] is arp using same version? [13:46] arp is 3.2 [13:46] as are my other nodes [13:46] hmm... [13:46] i'll tackle that later [13:47] you can probably just install the later debian package [13:47] but good call [13:47] if it breaks it only breaks fping :) [13:47] newer fping not in backports, so there may be a reason [13:48] that someone didn't get around to it [13:48] you can often just wget the package and dpkg -i it [13:48] *** kevr has joined #arpnetworks [13:49] for single programs with no dependencies [13:49] * brycec thinks mercutio is way more invested in this than he [13:51] real 0m34.709s [13:51] quite an improvement [13:56] heh [13:56] i like clean graphs :) [13:56] ok so fping bug :) [13:57] is mirrors.arpnetworks.com down? [13:57] weird it works from another location [14:01] ha! mercutio was slightly wrong, it did break fping slightly :P ERROR: fping ('/usr/bin/fping6 -C 1 ::1') could not be run: /usr/bin/fping6: /lib/libc.so.6: version LIBC_2.15' not found (required by /usr/bin/fping6) [14:01] what version was that [14:01] glibc can be the biggest bitch [14:02] apt-get source fping may be necessary :( [14:02] if that's 3.2 [14:02] fuck, nvm... In spite of dpkg giving an error when I tried installing fping 3.8, it went ahead and installed it. [14:02] it's whether smokeping minds [14:02] 3.2 back installed and working [14:02] * brycec shakes a fist at dpkg [14:03] *** kevr has quit IRC (Read error: Operation timed out) [14:04] Fun fact: http://sprunge.us/LZAT doesn't mean that it didn't install the package anyways. [14:04] oh [14:04] i thought you were going to 3.2 [14:04] 3.2 should be fine [14:04] mercutio: I did, then I tried 3.8 for shits and giggles. [14:05] ahh ok [14:05] It shat more than he giggled [14:05] it works with ubuntu from debian packages too sometimes [14:05] https://github.com/schweikert/fping/blob/master/ChangeLog [14:05] I get the libc thing... I just figured "ERROR installing" meant "I didn't actually install it, you still have 3.2" [14:05] things are less interesting from 3.2 to 3.8 [14:05] yip [14:05] but when you do other updates it can be a bitch [14:06] It's squeeze, there will never be another update to fping on it :P [14:06] no ot other packages [14:06] what does apt-get -f install say atm? [14:06] 0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded. [14:06] oh cool [14:06] it not complaining [14:07] ok [14:07] the real question is did smokeping fix itself [14:07] Once 3.2 is on, yes [14:07] 3 minutes' data and counting [14:07] cool [14:08] *** kevr has joined #arpnetworks [14:52] m0unds: brycec i like the NLNOG; since you get an actual shell, you have access to more tools; way better than a looking glass [14:58] up_the_irons: what about ARP hosting a RIPE probe? [14:58] (I'm skeptical, but worth asking) [14:58] s/worth asking/curious) [14:58] (I'm skeptical, but curious)) [14:59] brycec: a possibility [15:09] https://atlas.ripe.net/targets/ringnodes/map/ [15:10] whoa [15:10] there's already one at ARP! [15:10] that's from nlnog [15:10] ohduh [15:10] it's the probe target map [15:10] so RIPE hits NLNOG? [15:10] yeah, you can select those as user-configured probe destinations [15:11] or targets [15:11] * brycec wonders why RIPE doesn't just link to NLNOG's site? [15:11] they do [15:11] it's kinda buried [15:11] it's right at the top [15:11] Like RIPE has their own list of nodes [15:12] * brycec should stop browsing with zoom=50% [15:12] lol [15:12] it's the third line of text above the map "visit nlnog project" or something [15:12] hahaha [15:12] Yeah, but it's only ONE [15:12] the whole thing should be links [15:12] Why did RIPE make their own list and own map? [15:12] why should someone click off the site to look at the map when it's right there? [15:12] heh okay so you understand my point :p [15:12] BAD UX BRAH [15:13] why should someone take the time to scrape(?) another site for information when you could just send the user to the source? [15:13] BAD BRAH [15:13] heh [15:13] doubt there's scraping going on [15:14] maybe some shovelling [15:14] or they're paying some bloke to update it :( [15:22] the coordinator for nlnog is a commitee member at ripe [15:22] and he works for atrato [15:25] croneyism! [15:25] MUST BE [15:25] also, i'm guessing he's trying to get exposure for nlnog [15:25] but mostly cronyism [15:25] whoa, we're already in the Atlas target list [15:26] yeah, nlnog ring target [15:26] cool [15:43] brycec: there's a way to get output of root-servers locations [15:43] with dns [15:45] dig nodes.l.root-servers.org txt +tcp | [15:45] brycec: just put in your Targets file with some modifications, smokeping takes a while to start up heh [15:45] s/|$// [15:46] s/\|$// [15:46] gah [15:46] but how's that for a list bryce [15:47] smooooooooooooke [15:47] it's ok to ping them i seem to recall too [15:47] i can't find confirmation of that though [15:49] it's kind of crazy how well the root serrvers are overprovisioned these days [15:49] i think it's pretty unlikely for the root servers to not be reachable, while the internet works now. [15:53] Fri Feb 14 15:51:44 2014 - FPing: probing 158 targets with step 300 s and offset 249 s. [15:53] Fri Feb 14 15:51:44 2014 - FPing6: probing 47 targets with step 300 s and offset 181 s. [15:53] hm [15:53] zomg [15:54] welcome to the smokeping age, staticsafe [15:54] i wonder how much icmp traffic is on arp from people running smokeping :) [15:54] mercutio: nice idea [15:55] hahaha [15:55] brycec: i was surprised that was out there. [15:55] it's all isc infrastructure afaik [15:55] lol well I'm currently responsible for about 150kb/s of ICMP traffic :P [15:56] TRIPLE IT [15:56] hm the smokeping webapp is pretty damn slow now [15:56] m0unds: You may recall I did more than triple it... [15:56] what is the secret to your speed brycec? [15:56] staticsafe: cgi? fastcgi? other? [15:56] staticsafe: fastcgi [15:56] im passing it through fcgiwrap [15:56] nginx [15:57] I'm not familiar with fcgiwrap [15:57] I'm running it from spawn-fcgi [15:57] I was responsible for at least 1mbps of ICMP traffic :P 15:54:42 < m0unds> TRIPLE IT [15:58] s'kb/'kbp [15:58] lol well I'm currently responsible for about 150kbps of ICMP traffic :P [15:58] s/kbps/gbps [15:58] TRIPLE IT AGAIN [15:59] I'd rather not, thanks. I came awful close to 20% of my monthly bandwidth at that rate [15:59] And by awful close, I do mean still far from [15:59] * staticsafe gives spawn-fcgi a shot [16:00] brycec: boooooooo [16:01] staticsafe: here's mine http://sprunge.us/POVj [16:01] But I was on track to hitting 200GB/mo which is quite a bit more than I normally do [16:01] jeez [16:03] i got my burst usage up quite high once, which disconcerted me, as i wnated to stay under 200gb/month. but it didn't last. [16:03] up_the_irons: "feature request" https://graphs.arpnetworks.com/ ought to redirect to https://graphs.arpnetworks.com/cacti/graph_view.php instead of giving a Forbidden error. Unless that's intentional? [16:03] i've used...140GB since the middle of nov [16:03] 254.9GB in the past 12mo [16:03] s/9/69 [16:03] 254.69GB in the past 12mo [16:05] 64.67GB according to vnstat. Hey what's the deal with this, is up_the_irons trying to rob me of my bandwidth? :p [16:08] ... https://twitter.com/ScanBC/status/434469138325831680 [16:08] TWITTER: #Coquitlam LaFarge park RCMP investigating a report of someone attempting to steal a duck (Fri Feb 14 23:28:09 +0000 2014, retweeted 123 times) [16:08] DAMNIT THAT'S MY DUCK [16:10] UNHAND MR. MALLARD [16:10] SIR QUACKSALOT WILL NEVER BE TAKEN ALIVE [16:11] http://brewvival.com/beer/whiskey-chub?utm_source=twitterfeed&utm_medium=twitter [16:12] want. [16:14] whee spawn-fcgi works much better brycec [16:14] brycec: well i don't think there's anything at graphs.arp*; everyone's Cacti graphs link in the Portal shows a complete URL [16:14] congrats staticsafe [16:15] up_the_irons: Maybe I'm not following a link from the portal ;) [16:15] Maybe I'm typing in the URL and expect to be greeted with the login [16:15] brycec: then put '/cacti' on it [16:15] maybe I will! [16:15] brycec: there are other things on graphs that are not meant for customers :) [16:16] heh, I thought that might be the case [16:18] but since i was JUST in that apache config updating the SSL, maybe... [16:18] lol [16:18] * up_the_irons scratches his head thinking about an Apache redirect [16:18] IT'S BEEN TOO LONG [16:18] redirect ^/$ /cacti/ [16:18] I think [16:18] (because it's been so long since I've had to much with Apache. NGINX FOREVER. Also lighttpd is okay.) [16:19] nginx por vida [16:19] staticsafe: The reason fcgiwrap was slow is because it acts as fastcgi to nginx, but it's still executing the cgi for each and every request. [16:19] buddy of mine works for the utah MLS (real estate MLS) and lighttpd really shines at delivering static content on their web frontend [16:19] it was nearly 15% faster than nginx w/the same content [16:19] staticsafe: whereas fastcgi loads and runs once and leaves it running for multiple queries [16:20] faster than nginx? Wow [16:20] yeah, that's the only load where that was the case too [16:20] brycec: i think that would also rewrite other things [16:20] he uses nginx on everything else [16:20] up_the_irons: the pattern would match requests to / only [16:20] up_the_irons: would not match /pr0nstash for instance [16:20] oh [16:21] m0unds: Is it "dynamic" static content? ie. something that could pass back X-SendFile? I've found that to be wicked fast in nginx. [16:21] * up_the_irons hopes he won't lose his /pr0nstash [16:21] *yoink* [16:21] E_CONNREFUSED looks like graphs is down and up_the_irons has lost is /pr0nstash [16:22] *his [16:23] brycec: i have no idea [16:23] Well, good for lighttpd anyways. [16:24] When I abandoned Apache, I went to lighttpd. It was a learning curve... But I liked it and its configurability over Apache immensely. When I upgraded to Wheezy, I moved to nginx and I'm instantly in love. I can't explain it, but I love nginx. [16:25] brycec: there, it works [16:25] up_the_irons: yep the redirect works. And now I have a Cacti "access denied" page [16:25] i like contextual configs a lot [16:25] that's all the Apache work I will do for a week [16:26] And clicking login gives me access denied again [16:26] stupid Cacti [16:26] nginx configs remind me of junos, so i like them [16:26] hahaha [16:26] lol [16:26] brycec: hmm.. i can login [16:26] up_the_irons: going directly to my graphs.php URL works fine [16:26] up_the_irons: So I'm gussing it's user permissions [16:26] the only time i used lighttpd was just as an exercise to see how it worked, and that was just to handle static images for a site [16:26] "bryce is not allowed to see the Cacti index" [16:27] lighttpd and nginx configs are similar, which is good [16:27] i returned to my graph url and i'm seeing: GRAPH DOES NOT EXIST [16:27] (by no means interchangeable... but similar, esp. comared to Apache) [16:27] lol m0unds srsly? [16:27] yeah, just reloaded it [16:27] haha [16:28] ok, logged out and in and it's ok [16:28] * m0unds shrugs [16:28] haha [16:28] i dunno if you're able to go to graphs.php directly [16:28] /graph_view.php [16:28] is the one that works [16:28] and is what you get redirected to after login [16:28] argh, lastpass broke form filling again [16:28] dammit [16:28] i'll leave it this way for a bit and if i get complaints, i'll just put it back [16:28] to the way it was [16:29] Yeah must be cacti perms. If I logout, I'm greeted with the ARP login page for Cacti at "/cacti/", if I'm already logged in and visit "/cacti/" Cacti gives me access denied and links me to login. [16:29] and brycec will simply have to type "/cacti" ;) [16:29] but that's so much work! [16:29] i've had cacti permission issues on multiple different cacti instances. i think cacti has some kind of cookie or such bug. [16:29] (mmmm cookies) [16:29] sometimes if i login to cacti, and click on a graph, it will bring up the login again. [16:29] and then it'll work [16:30] brycec: i can't imagine it would be any different from before if you hit '/cacti' directly. i mean, the redirect just redirects to that way... [16:30] *anyway [16:30] it worked fine for me - logged out of the portal, then logged in and went through the links to get to graphs that way [16:30] logged in to cacti, saw my vlan and my graphs [16:30] up_the_irons: I'm sure it's exactly the same as if I hit /cacti directly. [16:31] k [16:32] heh /home/garry/www/cacti/rra/ [16:32] now we know where the RRDs are kept [16:42] Can anyone else from an ARP IP ping hitchcock.freenode.net ? [16:45] According to https://smokeping.cobryce.com/?target=Internet.FreeNode.hitchcock4 it has dropped off the map for two hosts, both hosts traceroute through NTT. (And another working host traceroutes through peer1+init7) [16:47] nada here [16:47] can't get to dest [16:47] i can't get to it from home either [16:47] it's in bulgaria? [16:47] it may be the destination [16:47] can't telnet on port 6667 too [16:47] i'd say the host is just offline maybe due to ddos or hardware failure [16:48] maybe, but I can reach it from a TWC and Comcast connection :p [16:48] well i'll still blame them [16:48] actually maybe it ntt [16:48] quite a bit of stuff to me returns via ntt [16:49] yeah, it's fine via comcast for me [16:49] via level3 [16:49] well my forward route from home is via cogent :/ [16:49] Morelikely NTT, http://sprunge.us/aWhZ [16:49] but dunno what reverse route is [16:50] What's important to me is that it's not my Smokeping that's broken :p [16:50] ok [16:50] well i don't think it is [16:50] I didn't either - that's the purpose to having a diverse set of slaves - but I wanted to check anyways [16:51] SLAVES [16:51] Hooray for slaves [16:51] There, I said it. [16:51] For history and ignominy [16:51] @log_search slaves [16:51] 11 results found. Here's #6 Feb 14, 2014 16:49:29 I didn't either - that's the purpose to having a diverse set of slaves - but I wanted to check anyways [16:53] i can reach hitchcock.freenode.net from my smokeping master but not from my 2 slaves [16:53] ntt is unable to reach it via their sofia pop (which is the last one i see in my traceroute before it fails) [16:53] ntt looking glass is working again? [16:53] yep [16:53] Ahaha I wonder if Comcast is doing this intentionally (and yes it's only the Comcast slave) https://smokeping.cobryce.com/images/__navcache/139242549325735_1392425493_1392382260.png [16:53] it's gross htough [16:53] though [16:54] heh [16:54] hahahah [16:54] "it's that brycec guy again.." [16:54] it's not packet lossy [16:55] It's actually pretty regular... https://smokeping.cobryce.com/images/__navcache/139242558525735_1392425585_1391820660.png [16:55] hahaha, awesome [16:55] To be clear, I was accusing Comcast of "throttling" Netflix [16:55] looks like verizon graphs :/ [16:55] brycec: accuse netflix of not having enough capacity [16:55] actually verizon changed a little [16:55] it seems shorter now [16:55] i don't think comcast participates in that cdn program they have though [16:56] mercutio: I would, but it's perfectly stable on TWC, Orbit, ARP, and Chunkhost [16:56] Actually, I think they must [16:56] why does spawn-fcgi just keep dying? o_o [16:56] so is verizon on non ntt forward path :/ [16:56] staticsafe: because aids? [16:56] you have to feed it or it starves [16:56] you can't just spawn things willy nilly [16:56] they'll die without care [16:56] it just depends if you hit some congested link or not [16:56] lol m0unds [16:56] but at least verizon got better partially [16:57] "better" is a relative term w/vzw [16:57] err [16:57] vz [16:57] probably vzw too [16:57] i think things will get worse over tiem not better [16:57] yeah, but i didn't want to confuse anyone [16:57] ddos attacks are becmoing more and more common [16:57] vzw is garbage in the SW US because they're the dominant carrier and are super oversubscribed [16:58] no reason to change? [16:58] that'd cost money [16:58] VZW is dominant in the SW? [16:58] welcome to net neutrality [16:58] In the PHX area, it was not. [16:58] now you can have degredation to everywhere [16:58] it is in CO, UT, NM, and NV [16:58] for sure [16:58] no idea about PHX specifically, but i know more people and businesses that use vzw in flagstaff and tucson than anything else [16:59] My impression growing up in PHX was that ATT was dominant [16:59] a ton of their subs in NM and CO are former alltel subs [17:00] Oh well that's sortof cheating :p [17:00] "I'll become dominant, not by people choosing me, but buy buying up those that people chose.) [17:00] it's how the world works [17:01] unfortunately [17:01] (Reviewing more of my Smokeping graphs, it's clear that Comcast has a few saturated routes. It's not limited to Netflix.) [17:02] Comcast<->Cogent, Comcast<->Tata [17:02] * brycec has much work to do in order to make his Smokeping more useful and friendly, like finishing the traceroute integration... And aggregating graps by slave... [17:02] heh [17:03] i had an idea about that btw bryce.. [17:03] brycec: it's because alltel's rural network was much larger than VZW or Sprint's, and VZW was having to eat tons of roaming charges (their customers just see everything as native) [17:03] if ttl changes it probably means route changes [17:03] so if you don't want to do heaps of traceroutes, you can prioritise when ttl changes [17:04] it wouldn't always work [17:04] heh, I could... [17:04] For now, I plan to run traceroutes hourly [17:04] and would do some false positives [17:04] i been planning to do my own monitoring thing [17:04] what was the ping target for that ramped comcast graph? [17:04] but there's a lot of work involved... [17:04] so i mostly just been thinking about it so far [17:04] m0unds: netflix's nlnog node [17:05] Just need to come up with a decent UI, and fix the config parser. [17:05] i want to start by doing passive monitoring of normal traffic [17:05] active monitoring doesn't necessarily hit the things that are failing [17:05] and it can be hard to know what to monitor [17:06] good luck :) [17:07] i think one problem with heaps of hosts is it's hard to get an overview of the state of things [17:07] if it can come up with something like "paths out via ntt seem broken" [17:07] it could be useful [17:08] and so if traceroute starts feeding out bound paths, you can start collecting information [17:08] and have some intelligence [17:08] So it would need to have some intelligence to udnertand the paths being taken [17:08] but return paths is still a pain unless you have multiple targets doing the same in reverse [17:08] yeh [17:08] traceroute -A may be the simplest.. [17:09] i want something that can work in a couple of minutes [17:09] when there are isuses [17:09] and looking at smokeping for that is hard [17:10] so i'll probably start with just measuring at the time [17:10] using a mesh system to be able to communicate with hosts even if they're unreachable by one route... [17:12] http://krebsonsecurity.com/2014/02/the-new-normal-200-400-gbps-ddos-attacks/ [17:13] there's also snmp problems [17:14] that aren't being exploited yet [17:14] i suspect if ntp gets widely patched they'll move on [17:14] there's probably some unknown vector too [17:15] i'm surprised there aren't bots that try and buy things on amazon or such from peoples hosts using generated credit cards or such [17:15] Isn't there always an unknown vector? [17:16] yeh [17:16] it seems most attacks target networks atm rather than hosts [17:16] that have lots of db activity etc [17:17] it's easier to block network attacks atm i expect [17:17] more people are ready and waiting to respond [17:17] whereas application level stuff could lead to longer outages. [17:17] amazon probably has people on hand though [17:18] but i imagine lots of banks don't for instance [17:18] well not at short notice at 3 am etc [17:18] nah, they do [17:18] all of them? [17:18] that's silly [17:18] i suppose large ones will [17:19] but what about those little in between things [17:19] i know people who work at local banks and national banks, and both have people on call to respond to that stuff [17:19] they don't necessarily have people with expertise to be able to figure out who is real and who isn't [17:19] and they can do application level filtering? [17:19] maybe i underestimate [17:19] you do [17:19] absolutely [17:20] that country where banking is really strong got hit by ddos's hard [17:20] slovenia? [17:20] somewehre near there at least [17:20] sweden? [17:21] it was somewhere with really high internet banking penetration [17:21] so probably somewhere cold, but i don't think it was sweden [17:21] they had government enforced id cards i know [17:21] that had crytographic pgp type keys [17:21] for identifying [17:21] * milki wants [17:22] so it's like everyone of their population had a pgp key [17:22] Lithuania [17:22] maybe have been there [17:23] https://www.lb.lt/cyber_attacks_were_used_to_interrupt_the_provision_of_the_bank_of_lithuanias_online_services [17:23] maybe it was that [17:24] not finding out much in search but that my country has hackable transport cards :) [17:24] ahh estonia [17:25] http://en.wikipedia.org/wiki/Estonian_ID_card [17:25] Estonian ID card :: The Estonian identity card (Estonian: Isikutunnistus) is a chipped picture ID issued in the Republic of Estonia by the Citizenship and Migration Board of the Ministry of Internal Affairs. It is officially a primary-picture ID in Estonia, and is therefore recognised by all member states of the European Union or the Schengen Area and some other European countries as an official travel document. For travel outside the EU... [17:26] Today 99.6% of banking transactions are done electronically and the number of users of the Estonian Internet banks is more than 1.8 million clients, a bit more than the whole population of Estonia ??? 1.3 million. [17:26] 99.6%?! [17:26] uhh [17:26] most older people don't seem to like electronic banking [17:28] my in-laws only recently started using any online banking [17:28] exactly [17:28] apparnetly only 75% of people are on the internet there [17:28] but i suppose 99.6% includes non-internet electronic too [17:28] and 75% is still damn high [17:29] it's a country i know very little about [17:30] but they seem to be quite advanced techonology wise [17:31] i imagine it's not as hard to push tech when your country's population is that tiny [17:31] not necessarily [17:32] i wonder if they're rich [17:34] it'd likely be easier to push stuff like that into service in a country w/1.3m population than it would be to push it into service in a country with half a billion poeple [17:34] people [17:35] takes just as much effort to create [17:35] but distribution is easier [17:35] heh [17:35] probably more that there's less things in the way [17:35] exactly [17:35] apparently they're the richest east european country [17:35] cool, tallest midget [17:36] i never really hear about east surope [17:36] europe [17:37] GDP of estonia is (according to 2012 data) 20bn USD [17:38] is that high or load [17:38] nominal [17:38] they're near east europe so they can prob get some stuff cheap [17:38] nz is 140 billion [17:38] with like 4 millionpopulation [17:39] my state is 80bn with 2m pop [17:39] http://www.numbeo.com/cost-of-living/country_result.jsp?country=Estonia [17:39] it doesnt' loko cheap [17:40] but i don'w know value of euros exact [17:40] change the exch rate [17:40] hmm internet is like $24usd/month [17:40] err, exch currency [17:40] oh cool [17:40] these sites are often not very accurate i've found [17:40] when i look at my own country [17:41] "And everybody looks like a hobbit" [17:42] https://www.youtube.com/watch?v=AGF5ROpjRAU [17:42] YouTube Music: "Leonard Nimoy - The Ballad of Bilbo Baggins [FULL VERSION] - best quality" by SputnikMonkey (2m 21s), 1,147,193 views, 9,488 likes and 105 dislikes. Uploaded 2011-09-07T06:23:34.000Z. [17:42] it's a bit hit and miss [17:43] they have amazingly cheap rent epr month here compraed to what is normal [17:43] so some people look like hobbits and some don't? [17:43] no hobbits here [17:46] m0unds++ [17:47] sigh. http://krqe.com/2014/02/07/recent-nm-skinwalker-photo-ignites-fear/ [17:49] Stay New Mexican, New Mexico. [17:49] yeah. [17:49] like the kinda shit that you'd hear about on coast to coast [17:49] heh [17:49] https://fbcdn-sphotos-a-a.akamaihd.net/hphotos-ak-prn2/t1/1891280_486670144770622_1185801086_n.jpg [17:50] hahaha [17:50] Seems uncomfortable [17:53] yeah probably not pratical [17:53] but if it's just to scare your neighbours :) [17:54] i'd have to do it with red paint because we haven't been getting any snow [17:54] sigh [17:54] damn [17:54] it doesn't snow here [17:55] we usually get a bunch of snow from dec-feb [17:55] we just get rain [17:55] but it's gonna be 24C tomorrow [17:55] i don't particularly like the snow used to get in my old city anyway [17:55] there was never enough to be fun, just enough to turn to slosh [17:56] 24c in winter? [17:56] yeah [17:56] nice [17:56] ridiculous [17:56] it's 24c here right now [17:56] @weather ABQ [17:56] There is 1 weather alert in effect for your area! There is a Fire Weather Watch. [17:56] Albuquerque International Sunport, NM: Mostly Cloudy ☁ 62°F (17°C), Humidity: 23%, Wind: From the NNW at 12 MPH -- For more details including the forecast and almanac, see http://www.wunderground.com/cgi-bin/findweather/getForecast?query=35.04166794,-106.61472321 or re-request this with: @weather -v ABQ [17:56] @weather Kiwi-land [17:56] oh i read that at first as a "fine weather watch" [17:56] Error, No cities match your search query [17:56] @weather auckland [17:56] Auckland, New Zealand: Clear 72°F (22°C), Humidity: 60%, Wind: From the SW at 16 MPH -- For more details including the forecast and almanac, see http://www.wunderground.com/cgi-bin/findweather/getForecast?query=-37.00805664,174.79167175 or re-request this with: @weather -v auckland [17:57] oh it says 22c. [17:57] i am sure the wind is not 16mph [17:57] @eather waitakere [17:57] @weather waitakere [17:57] Waitakere, New Zealand: Clear 74°F (23°C), Humidity: 62%, Wind: From the NE at 1.0 MPH Gusting to 4.0 MPH -- For more details including the forecast and almanac, see http://www.wunderground.com/cgi-bin/findweather/getForecast?query=-36.857498,174.520554 or re-request this with: @weather -v waitakere [17:57] lol [17:57] windy in the big city [17:57] it's not really a separate city, it's just a part of the city. [17:57] @weather 99019 [17:57] There is 1 weather alert in effect for your area! There is a Areal Flood Warning. [17:57] Liberty Lake, WA: Clear 44°F (7°C), Humidity: 72%, Wind: From the ESE at 6.9 MPH Gusting to 10.1 MPH -- For more details including the forecast and almanac, see http://www.wunderground.com/cgi-bin/findweather/getForecast?query=47.666508,-117.100792 or re-request this with: @weather -v 99019 [17:57] i read that as "waithere" [17:58] * brycec wonders how to pronounce waitakere [17:58] i think it's wai-tak-a-rear-e [17:58] s/wai/why/ [17:58] i think it's why-tak-a-rear-e [17:58] Don't you know? Aren't you there? [17:59] i think wai is probably thought of as whey normally [17:59] You know, just for that I'm going to put on Flight of the Conchords [17:59] i'm not from around here [17:59] i live here [17:59] lol [17:59] lots of places are miscomonly pronounced here [17:59] err commonly [17:59] gah commounly mispronounced [17:59] my brain don't work right [17:59] weather underground is forecasting a much more (still not terribly) reasonable high tomorrow [17:59] of 72F vs 77F from accuweather [18:00] Why-tahk-ah-reh) [18:00] see i was wrong [18:02] it's becuase they use native words, and where i was from didn't haev natives [18:03] http://www.shelleymunro.com/blog/2010/03/04/place-names-that-roll-off-the-tongue/ [18:03] how's that for confusing [18:03] I'm sure it's perfectly easy once you're accustomed to it. [18:04] Hawaiian names are similarly frightening to see, but easily picked up [18:04] i dunno, news reporters here mispronuce placenames [18:04] god i'm mistyping words even today [18:05] some place names have actually hard to say names, because they use uncommon speech [18:07] there's a lot of wonky tiwa (rio grande valley-area dialect) native names near here [18:09] p'oswaugueh, tesuque, ohkay owingueh, tlur pa, ba shi'ie [18:09] pee-o-swaga? [18:09] no idea about second [18:09] tee-suck? [18:09] teh-soo-kay [18:09] tee-sook? [18:09] ahh [18:09] i like the third one [18:10] okay oh-winga? [18:10] okay ohwingay [18:10] oh-ween-gay [18:10] i'm terrible at this [18:11] the spanish version of the first one is pojoaque, po-wah-kay [18:12] tlur-pa is t-lur pah, last one is bah shee-eh [18:17] http://www.itnews.com.au/News/372345,cisco-stung-by-switch-memory-glitch.aspx [18:17] uhh [18:18] sounds nasty [18:19] i wonder if that is at all related to up_the_irons issue :/ [18:19] (cos it showing some memory issue, it hard to know if OS bug or memory problem though) [18:20] hmm [18:20] HMMMMMMMM [18:20] it's kind of scary, 7 years of memory problems [18:21] yeah [18:22] i still think it was an IOS bug. after removing the Any2 port, no more crashes. with the Any2 port, crashed 3 days in a row within 5 minutes of 05:30 PST. WAY too much of a coincidence for memory problems. [18:22] that said most of these problems seem to be triggered by power cycling [18:23] yeh i think it probably ios bug too [18:23] i wonder who cisco uses for memory [18:24] omfg. [18:24] that's the issue i had with 3 whole stacks of 2960s in july [18:24] good thing i don't power cycle my cisco's much ;) [18:24] m0unds: ouch [18:25] all had multiple-years' worth of uptime, all went down because of an enormous systemic power failure during a huge storm [18:25] m0unds: looks like you'd get free replacement memory / gear now :) [18:25] do you still have them? [18:25] i suppose you just claimed insurance? [18:25] we still have 30 of them in service - i revived 9 out of 12 of them [18:25] nah, they just did RMAs [18:25] or does that not work there [18:26] it was just a power down, no voltage craziness or anything [18:26] ahh [18:26] 2960 is confusing, there are multiple versions of them :) [18:26] through many years [18:26] yeah [18:26] when i think 2960 i think old [18:26] but they're still selling new ones [18:27] mine are....WS-C2960S-48FPS-L [18:27] 3 years old [18:27] s is newer than g i think [18:27] yeah g is 2005 [18:27] m0unds: so they powered down b/c of the power failure then refused to come back up properly? [18:27] that is f'in scary [18:28] it was a pre-emptive shut down? [18:28] or just protected feed? [18:28] cos you can still get spikes sometimes that are short [18:29] managed shutdown [18:30] eek [18:30] prior to UPS gear running out of juice (generator failed to start, it cooked its battery harnesses) [18:30] and yeah, powered down and when it came back up, it would dump the second IOS finished booting [18:31] full on crash and boot loop [18:31] up_the_irons: are you using 2960s? [18:32] mercutio: no [18:32] just straight into router? [18:32] mercutio: yeah our topology is very flat [18:33] nice [18:33] i don't like 2960s :) [18:33] VM -> VM Host -> (trunk port) -> s1.lax (or s7.lax for the GigE ports) [18:34] so when there's two ports on dedicated servers they both go to s1? [18:34] directly in? [18:34] or do they have switches? [18:36] oh, no, the dedi's have an edge [18:36] s8.lax, s9.lax for dedi's (each have dual 1 Gbps, to each switch), then to either s1 or s7 [18:37] ahh [18:37] thanks so much for linking that stuff (the blog post and whatnot) [18:37] just passed it on to our casino ops IT director and neteng guys [18:37] cool. [18:38] it sounded like another of those times when buying things at different periods of times or from different vendors could help [18:38] it's like when peopld do raid with mirrors, and all their hard-disks come from the same lot [18:38] and they all fail at once [18:38] yeah [18:38] i use different vendors ;) [18:39] but it's a pita to multivendor [18:39] 1x Hitachi, 1x WD RE4 [18:39] yep, especially with a time-constrained large project [18:39] (pair) [18:39] ahh cool. [18:39] also, we got our 2960s from 3 different vendors [18:39] i didn't realise you were doing that [18:40] i think our 6500s came from two different vendors too [18:40] but same timeframe [18:40] it can be hard to get diff lots. [18:40] yep [18:40] i have my ssd's with different lots :/ [18:40] well at least diff looking model numbers [18:40] we had a bunch of cisco-brand SFPs just croak this year too [18:40] it's been a rough year for cisco at my facility [18:40] haha [18:41] why use cisco sfp? [18:41] oh you cisco shop? [18:41] on top of our IT/ops guys having tons of issues with their new 7000-series stuff [18:41] because it was what was specced [18:41] heh [18:41] if it was up to me, we wouldn't have used any cisco gear, but our VMS vendor prefers cisco and won't certify installs that don't use cisco gear [18:41] cisco tax is quite a lot on sfp's though [18:41] yep, it's absurd [18:41] m0unds: i heard bad stuff about the 7k series too [18:42] i mean i'm more ok with cisco where it matters. [18:42] not that i necssarily agree iwth it, but i can understand not wanthing to change. buf sfp isn't going to be a problem with non cisco [18:42] up_the_irons: i've been hearing they're already trying to forget about it in favor of the newer 6xxx chassis' [18:42] have they considered changing vendors? [18:43] well, cisco actually changed suppliers for their sfps because of rampant failures [18:43] apparently huwai are trying quite hard to compete with cisco now days. not that i know anything about them [18:43] but juniper have qutie a bit of market share now [18:43] huawei tried really hard to reverse engineer a lot of competitors' products because their own os and stuff was garbage [18:43] apparently juniper doesn't have smp support yet [18:43] m0unds: the newer 6xxx being the 65xx-E or..? [18:43] i was surprised. [18:43] oh and apparently openbsd is adding smp support in kernel now [18:44] they done audio, now doing disks and network interfaces i think, before making the network and disk interfaces smp.. [18:45] cos one of juniper's present-day issues is being slow at taking bgp tables, reconverging etc. [18:45] however much cisco may have issues, for the cpus they use they have a damn fast bgp implementation. [18:46] i mean you were saying bird is fast up_the_irons .. but the cpu on that bird machine i bet is way faster than the cisco. [18:46] mercutio: well that's true too :) [18:46] rpki is going to slow bgp down soon too if people start implementing it [18:47] that and when ipv6 takes off more [18:49] up_the_irons: 6800 [18:49] m0unds: ah [18:51] kinda weird considering the nexus stuff should just be better :/ [18:51] should [18:51] they are different platform [18:51] but such horrible teething problems with it on the software side have wrecked credibility [18:52] would be nice if this stuff could be open source :) [18:53] wher epeople still might pay to get issues fixed [18:53] or for support [18:53] facebook was doing some open switch thing, i think that's as close as it gets [18:54] hmm ok probably expensive, it's 48 10 gigabit ports and 4 40 gigabit ports [18:56] shuttleworth announced ubuntu will now go with systemd. [18:56] i heard of a juniper (or was it cisco?) version of that [18:56] grepidemic: godamnit [18:57] http://www.opencompute.org/blog/progress-in-opening-up-the-network-/ [18:57] so i guess upstart is gonna end [18:57] grepidemic: i actually said this earlier today :) [18:57] but yeah, it looks legit [18:57] well, i didn't like upstart much either. so we're going from "meh" to "meh" [18:57] i won't panic [18:57] it is on shuttleworth's b;pg [18:57] i assume they don't want to focus on maintaining upstart [18:57] too busy with mir and ubuntu phone [18:58] there's mellanox intel boradcom and cumlus networks all doing open soruce switches [18:58] i don't know much about mir. i am guessing it is mostly for mobile linux? [18:58] it's for desktop too [18:58] it's like wayland but different [18:58] with a lot of ambiguity about why [18:59] https://github.com/Mellanox/SwitchX-interfaces/tree/master/SwitchX-2/source [18:59] the only things i know about wayland are from a conference video 1 hour. the guy is mostly talking about how it is better than X. [19:00] grepidemic: yeh i heard about better than X stuff being necessary for 15 years [19:00] but X is still around, and doesn't seem to be struggling that badly [19:00] i have no problems with X. but maybe i'll disagree with myself after using wayland. [19:01] X can be kind of bad over high latency links [19:01] but for local desktop it's fine [19:01] it may be more efficient whatever they're doing [19:01] but i assume they'll cover that all up in layers of abstraction. [19:02] there were some security concerns about applications being able to impede other applications once upon a time, i assume they're still valid. [19:03] i know netscape 4.7 used to sometimes lock X up until you sshed into from remote host nad killed it. [19:03] i think wayland will have something similar to "ssh -X" which will be more efficient than X11 forwarding. [19:04] i was playing with X forwarding the other day. skype seems to resize slowly when using it. [19:04] but other than that it seems just like being local. [19:04] but that's on lan. [19:04] on wan it still sucks. [19:04] but i think people moving to web for that stuff now anyway [19:05] maybe desktop OS's will just become a client for web apps. [19:05] like chromeos? [19:05] and everything will be cloud. [19:05] haha [19:05] now i know you taking the mickey. [19:05] the new MS guy is a cloud person. [19:05] my condolences. [19:06] heh [19:06] well private cloud is fine [19:07] i never used chromeos, but i'm not really too fond of cloud services. i like using a vps for storage and running my own services, but i don't like the idea of EVERYTHING being stored over the internet. [19:07] it seems even technology focused companies are sometimes using things like AWS now. [19:07] grepidemic: i kind of do.. but.. [19:08] as soon as your net goes down you lose everything. [19:09] bbl [19:09] the only cloud thing i use (that im aware of) is Steam client. [19:13] haha. http://t.co/S3ZKrxcf2g [19:13] http://t.co/S3ZKrxcf2g -> http://twitter.com/HistoricalPics/status/434488522704441344/photo/1 [19:41] steam's cloud sync is terribly unreliable [19:41] but their normal stuff is just straight cdn i'm prettty sure [19:43] origin does a pretty good job of detecting and resolving local/remote save conflicts [19:43] * brycec has never had an issue with Steam Cloud Sync [19:43] steam just says "there's a conflict, if you start the game you'll lose your save" [19:43] How can there be a conflict? It's not like you can play the game in two places at once [19:44] like..you were playing and the game crashed, and steam didn't sync [19:44] so your save is different than the one in TEH KLAUD [19:44] Huh. Odd. [19:44] yeah, only game i've seen it with was the walking dead (telltale) [19:44] it ended up eating my save so i had to start over [19:45] It's always appeared as the sync was part of Steam, not the game, and when Steam detects the game has closed, it syncs the relevant data. But that's total speculation based on what I've seen (notably, the "sync" popup is Steam's, and it shows in the Steam "Downloads" page briefly) [19:45] Bummer [19:45] yeah, i think that's how it does it [19:45] it has like a local glob of save data [19:45] and it pushes it up when the title closes [19:46] but when your game mangles it or it gets mangled in transit somehow, then you have that weird condition that might lead to losing the save altogether [19:46] i just flipped off steam cloud saves for that game and set spideroak to back it up since it versions files [19:47] m0unds: not ime [19:47] s/versions files/saves versions of files/ [19:47] i just flipped off steam cloud saves for that game and set spideroak to back it up since it saves versions of files [19:47] but i dunno my games are stuck in not syncing [19:47] dunno what to tell you [19:47] blow the hobbits out of your cpe [19:47] i dunno i just choose don't sync [19:47] then next time i choose don't sync again [19:48] the syncing is just key bindings etc for things like dota2 [19:48] i did kind of want my key bindings, and once it actually worked. [19:48] steam has various issues [19:48] like i used to find every time i started steam it wanted to download a huge update to do with big picture [19:48] which i don't even use. [19:49] lol, a nuissance but not an "issue" :p [19:49] they just keep their program up to date [19:49] now i play dota2 heaps i use steam way more, so steam updates seem less frequent, but dota2 updates can still be multiple updates a week [19:49] well it's like 80mb+ download i think [19:49] i like it how chrome got their update sizes down. [19:50] i'm not necssarily opposed to updates, but when they're huge, and you have to wait for them at startup, they're kind of annoying [19:50] chrome is good, because it doesn't make you wait for the update, and they're small. [19:50] https://twitter.com/bsdvps/status/434532130480082945 [19:50] TWITTER: OpenBSD 5.4 is now available to order (Sat Feb 15 03:38:27 +0000 2014, retweeted 1 times) [19:50] *finally* [19:50] now if only ubuntu would do dif udpates [19:50] Just as 5.5 is on the verge [19:50] 5.5 is going to break things [19:51] Yes :D [19:51] Can't wait [19:51] it's suggested that people wanting to update soon go to snapshots atm [19:51] which is curious [19:51] (if i really couldn't wait, I'd install a snap...) [19:51] i'm using 5.3 [19:51] Why not 5.4? [19:51] why 5.4? [19:51] 4:50PM up 257 days, 4:15, 1 user, load averages: 0.19, 0.17, 0.16 [19:52] Because you're s'posed'a upgrade! :P [19:52] Also 5.3 will be dropped from most mirrors once 5.5 is out [19:52] i dunno i have one host much further behind [19:52] not to mention "support" [19:52] only if you have problems [19:52] now i have to do FreeBSD 10 [19:52] i quite like freebsd 10 [19:52] FreeBSD doesn't really matter... :P [19:53] how do you find out openbsd release? [19:53] oh right uname -a [19:53] ok this host is openbsd 4.8 [19:53] uptime of over 1000 days [19:54] going to replace hardware and shift to freebsd 10 though [19:56] the mirrors thing is intresting [19:56] i haven't installed anything on it recently but id idn't have issues getting packages last time i did [19:57] curiously where i was installing packages has 4.9 packages but not 4.8 [19:58] PKG_PATH=http://mirror.internode.on.net/pub/OpenBSD/4.8/packages/i386/ [19:59] oosp [19:59] PKG_PATH=http://mirror.internode.on.net/pub/OpenBSD/4.8/packages/i386/ [19:59] gah [19:59] cut and paste issues [19:59] http://ftp.vim.org/OpenBSD/ [19:59] that has old openbsd to 2.0 [20:04] freebsd 10 has been good so far - only issue i had was w/pkgng which i don't really use too frequently [20:05] i reading openbsd 5.4 changes [20:05] nothign really strikes out as requiring me to update [20:06] i liked pkgng [20:06] i hit a compile time bug with trafficserver [20:06] due to clang [20:07] but that was fixable, and due to bad code [20:07] http://www.openbsd.org/cgi-bin/man.cgi?query=ppoll&sektion=2 [20:07] the only pkg i've installed was to work around a compile time issue with something, i don't remember what [20:07] actually that looks cool [20:08] and is new in 5.4 [20:08] i might jump to a snapshot of 5.5 now [20:16] hmm em0 watchdog timeout [20:17] disable mpbios [20:17] it's in the installer [20:17] is it just mpbios that causes that? [20:17] Oh, weird. [20:17] i'm pretty sure i had it a while back without mpbios [20:18] Ive never had it hapen in the installer. [20:18] maybe it was doing it before, and i didn't do enough network traffic [20:18] I just installed a snapshot a few weeks ago. [20:18] i'm downloading from mirrors.arpnetworks.com [20:18] ahh cool, i doing snapshot [20:18] figure it's not worth jumping to 5.4 [20:18] i normally don't do update using bsd.rd [20:18] but 5.5 requires it, so i figure may as well. [20:18] err encourages it heavily. [20:19] I always use bsd.rd. [20:19] it varies for me [20:20] I can't think of a reson not to, as long as you have a bootloader installed, and network access. [20:20] hmm got another on boot [20:20] and some pf syntax errors [20:21] damnit, it wont' login [20:21] first time i've had an issue actually [20:22] oh 5.5 i smeant to not actually run earlier binaries iirc [20:22] so it prboably doesn't liek my zsh [20:23] zsh is for wizards [20:23] YER A WIZARD m0unds [20:23] ahahahah [20:25] i love zsh [20:27] heh so do i [20:28] damn [20:28] still not working [20:29] so it's working for you CaZe ? [20:36] ohhh [20:36] my fault [20:37] i didn't read instructions, apparently you have to do some stuff upgrade doesn't do [20:43] network isn't working at all hmm [20:43] caze: are you on virtio or legacy? [20:45] @smokeping [20:45] https://smokeping.cobryce.com/ [20:45] @uptime [20:45] Bot uptime: 15 days, 21 hours, 45 minutes, and 17 seconds. [20:45] @mnathani [20:45] mnathani: Have you checked whether Windows Firewall is enabled and dropping packets? [20:45] 451 results found. Here's #366 Feb 09, 2014 13:06:24 5 packets transmitted, 0 received, 100% packet loss, time 4101ms ( 0.v.freedaemon.com ) [20:45] @uptime host [20:45] host uptime: 141 days, 21 hours, 58 minutes, and 44.800000000745 seconds. [20:45] oh that was just needing to disable mpbios [20:45] precision [20:45] almost get to walk a quarter mile to my car. muahahaha. [20:49] i'm half tempted to shfit to freebsd now :) [20:50] apparently downgrading to 5.4 isn't supported too [20:52] doh [20:53] Downgrading is never supported by OpenBSD. Might be "possible" but never "supported." [20:55] i'm hopeful i can make it work anyway [20:55] i think it's something to do with the password database [21:02] step by step.. [21:02] it seems i wasn't forcing shell right [21:09] woot got it [21:23] mercutio: legacy [21:23] it was just mpbios making ethernet fail in the end [21:23] i've used self-compiled kernels for ages so haven't really noticed [21:24] i dunno why installer works [21:24] and editing /etc/passwd and /etc/master.passwd didn't seem to work to change shell from zsh [21:24] in the end i just upgraded zsh [21:25] You have to regenerate the db. [21:25] i did [21:25] that's the strange thing [21:25] otherwise i think things wouldn't work at all? [21:25] i did pwd_mkdb i think [21:25] yeh pwd_mkdb [21:26] Well, there's vipw. [21:26] weird, now it works [21:26] bbl [21:26] i ran it again and it set it to zsh [21:27] yeh i normally do vipw [21:45] i think openbsd 5.5 is slightly quicker