[00:55] *** djkrikke-2 has joined #arpnetworks
[02:55] *** anisfarhana has quit IRC (Ping timeout: 244 seconds)
[05:14] *** gluffis has quit IRC (Ping timeout: 250 seconds)
[05:21] *** gluffis has joined #arpnetworks
[06:10] *** NiTeMaRe has quit IRC (Ping timeout: 245 seconds)
[06:11] *** NiTeMaRe has joined #arpnetworks
[09:53] *** dj_goku has quit IRC (Ping timeout: 252 seconds)
[10:19] <RandalSchwartz> ahh, can't run xen on freebsd
[12:57] *** dne has quit IRC (Remote host closed the connection)
[12:57] <mercutio> randal: you can't run the base vm on xen, but you can run subsequent ones.
[13:00] <RandalSchwartz> I guess I don't understand that yet.
[13:00] <RandalSchwartz> xen isn't like virtualbox?
[13:00] <mercutio> the first dom0 is sepcial in that it by default provides the network/disk for vm's.
[13:01] <brycec> xen is not like virtualbox
[13:01] <brycec> xen is like vmware esx
[13:01] <mercutio> apparently it can actually pass that stuff onto to  other vm's.
[13:01] <mercutio> brycec: it's not quite like either of them really.
[13:01] <mercutio> well it's more like esxi.
[13:01] <brycec> Yeah, ther's a term for it, I can't seem to recall
[13:01] <brycec> something about layers
[13:01] <mercutio> so you have a hypervisor that runs a series of virtual machines, but the first one gets "direct" access.
[13:02] <mercutio> and it then has a memory window or such to pass data to other virtual machines for disk/network.
[13:02] <brycec> Ah here we go https://en.wikipedia.org/wiki/Hypervisor
[13:02] <mercutio> i wonder if i'm making it sound more complicated.
[13:02] <BryceBot> Hypervisor :: A hypervisor or virtual machine monitor (VMM) is a piece of computer software, firmware or hardware that creates and runs virtual machines.  A computer on which a hypervisor is running one or more virtual machines is defined as a host machine. Each virtual machine is called a guest machine. The hypervisor presents the guest operating systems with a virtual operating platform and manages the execution of the guest operating...
[13:03] <brycec> Yeah, dom0 is technically a vm but it's treated special. It's similar, but not identical to the way esx works with having a base OS+Hypervisor
[13:03] <mercutio> brycec: well esxi runs linux ..
[13:03] <mercutio> you can actually get a linux shell
[13:03] * brycec knwos
[13:03] <mercutio> so it may actually be quite similar, i haven't really looked uunder the hood much
[13:04] <mercutio> it has very limited drivers unlike linux
[13:04] <mercutio> you can't even do software raid with esxi (grr)
[13:04] <brycec> For the sake of simplicity and explaining things to RandalSchwartz...
[13:04] <mercutio> so if you want a test server it's kind of annoying.
[13:04] <mercutio> brycec: true.
[13:04] <mercutio> ok yeah, it's like sxi :)
[13:04] <mercutio> esxi
[13:05] <ant> btw: vmware is currently getting sued for violating the gpl in esxi
[13:05] <mercutio> you can actually host a virtual machine inside esxi that provides storage to esxi.
[13:05] <mercutio> ant: makes sense.
[13:05] <brycec> virtualception
[13:06] <mercutio> people were doing solaris/opensolaris/etc with zfs inside a virtual machine, then doing nfs from that for the esxi data store.
[13:06] <RandalSchwartz> so I could run xen on my freebsd box, and use linux for the first vm, and freebsd for the other ones?
[13:06] <mercutio> using vt-d to pass through a scsi controller generally, but i don't think that part is /necessary/ it just improves performance.
[13:06] <brycec> Probably. (I don't know much about FreeBSD Xen compatibility)
[13:06] <mercutio> randal: yeah, but you'd do a linuux install, then a xen install, then rnu a freebsd vm.
[13:07] <brycec> (I guess so https://wiki.freebsd.org/FreeBSD/Xen)
[13:07] <mercutio> tbh i don't relaly think for most people xen is any better than kvm.
[13:07] * brycec dislikes Xen
[13:07] <brycec> Much happier with KVM and the ilk, they don't require any guest customisations
[13:07] <mercutio> it wsa better on older hardware as it had paravirtal vm's.  but modern cpus have really accelerated extensions for normal vm's.
[13:07] <mercutio> and now it's faster to have non paravirtualised.
[13:07] <brycec> If I can't run MSDOS as a virtual machine, what use is it? :P
[13:08] <mercutio> vmware took out it's paravirtal functionality.
[13:08] <mercutio> i think in esxi 5
[13:08] <mercutio> xen now has paravirtual, hvm, and a hybrid.
[13:08] <mercutio> hvm is full virtualisation like kvm.
[13:09] <mercutio> the only real advantage i find with xen is it makes it easy for me to host kernels outside the virtual environment and boot specific kernels.
[13:09] <grody> oh wow that was not worth it
[13:09] <brycec> twss
[13:09] <BryceBot> Okay! twss! 'oh wow that was not worth it'
[13:09] <mercutio> there's also better support for video/pci device passthrough.
[13:10] <grody> i actually went win 2k8 with hyperv 2012 and it makes xen super user friendly
[13:10] <mercutio> but kvm is working to improve their stuuff, and it's mostly because xen forked qemu.  but they're going back to non forked.
[13:10] <mercutio> so if you want to do video passthrough on xen, at least before, it worked better to use the "legacy" qemu option.
[13:11] <grody> video passthrough on this lenovo in xen was fun
[13:11] <mercutio> by better i mean "it worked" rather than "it failed".
[13:11] <brycec> The way I see it, at least in my workloads, there are two types of useful virtualisation: full machine a la KVM, or containerised a la OpenVZ. Everything else outside that scope is just more complicated than it's worth.
[13:11] <brycec> heh
[13:11] <mercutio> brycec: i actually like xen
[13:12] <grody> windows hyperv is fast, but i am seriously disliking it
[13:13] <grody> freebsd guests are still faster in xen tho
[13:13] <mercutio> grody: were you doing paravirtual or full virtual for xen in freebsd?
[13:13] <grody> even more so when you PV fbsd
[13:13] <mercutio> i've tried freebsd with xen and vmware
[13:13] <mercutio> xen has this annoying problem with mtu's above 1.5k
[13:13] <grody> firstly hvm then pv
[13:13] <mercutio> grody: you should hvm.
[13:13] <mercutio> it actually works better.
[13:14] <mercutio> the pvhvm thing should be better still
[13:14] <grody> not hit that yet, doung pfsense with tagged vlans in xen and it seems fine
[13:14] <mercutio> but yeah, there's a hvm kernel config.
[13:14] <mercutio> grody: this was real larger mtu's
[13:14] <mercutio> maybe vlan doesn't add enough
[13:14] <grody> ah
[13:14] <mercutio> there's a hard coded limit in some driver.
[13:15] <mercutio> it's fixable
[13:15] <grody> yea im still legacy 10/100 here
[13:15] <mercutio> i still couldn't do over 2k
[13:15] <mercutio> but slightly larger worked.
[13:15] <mercutio> it always erks me when i seem to hit lots of "weird" problems, and other people don't.
[13:16] <grody> haha and you google high and low only to find your question asked but never answered
[13:16] <mercutio> grody: that's what i say haha
[13:16] <mercutio> grody: and then ytou find out it's been happening for years.
[13:16] <mercutio> i remember when i heard about the windows uptime bug
[13:17] <mercutio> it crashed after 48 days of uptime or something with a wrap around.
[13:17] <mercutio> i'd never hit that buug :/
[13:17] <mercutio> (i did use that dirty windows for a bit)
[13:17] <grody> xen 4.1 says my mobo doesnt do iommu, but 4.5 is ok with it, couldnt find that one anywhere
[13:18] <grody> i went evil buying a new tablet
[13:19] <grody> i got the linx8 win8.1 .. now running arch
[13:19] <mercutio> grody: it's probably because new motherboard and old scipset.
[13:20] <mercutio> also 5520 is blackedlisted.
[13:20] <grody> getting a vkeyboard up was fun, had to ssh most of it
[13:20] <mercutio> err blacklisted.
[13:20] <mercutio> and so vt-d is strictly possible, but things disable it
[13:20] <mercutio> not that you're using that chipset
[13:20] <grody> mercutio, no idea it is a pain of a lappy
[13:20] <grody> lenovo s205
[13:21] <grody> uefi is skiwiff too
[13:21] <mercutio> i was doing vt-d on z77 for my gpu pass through
[13:21] <mercutio> not all motherboards supported it.
[13:22] <mercutio> oh amd
[13:22] <mercutio> you like amd don't you grody :)
[13:22] <grody> wel for a fraction of pruce to get eq.
[13:22] <grody> its the pepsi of cpus
[13:23] <mercutio> i have ex-lease laptop, it was old when i got it
[13:23] <mercutio> and a chromebook
[13:23] <mercutio> i am thinking of sticking that special boot thing on it
[13:23] <mercutio> linuxbios?
[13:23] <mercutio> err coreboot it seems now
[13:24] <mercutio> it has the google one, but if it runs low on battery then it reverts to only booting chromeos.
[13:24] <mercutio> and it's booting in legacy mode and you have to press ctrl-l as you boot
[13:25] <mercutio> i kind of wish coreboot was used more by now.  i kind of hoped it'd take off.  it is interesting that google are using it though
[13:25] <mercutio> uefi isn't really that wonderful.
[13:25] <BryceBot> That's what she said!!
[13:25] <mercutio> and it's huge and complicated.
[13:26] <mercutio> really the boot loader should just be doing the init system, then providing resources to the initial os.
[13:26] <mercutio> err hardware init
[13:26] <mercutio> i'm ok with things like a little gui to overclock, and update bios from the gui etc.
[13:26] <mercutio> but in the normal course of boot it should juust do the minimum, and not have a hugely massive api
[13:28] <mercutio> http://www.uefi.org/sites/default/files/resources/2_4_Errata_B.pdf
[13:33] *** grody has quit IRC (Ping timeout: 240 seconds)
[13:36] *** grody has joined #arpnetworks
[13:36] <grody> that was fun
[13:42] <mercutio> what was?
[15:14] <brycec> This turned out to be pretty entertaining http://www.therestartpage.com/
[15:14] <brycec> (click things, move windows, fiddlw with stuff. It's interactive.)
[15:36] <RandalSchwartz> heh... that's cute
[15:36] <RandalSchwartz> I'm booting openstep
[15:36] <RandalSchwartz> Steve's Soul powers these machines. :)
[15:49] <grody> ok i hate windows hyperv
[15:49] <grody> im going back to debian xen
[15:50] <grody> it lags like hell running freebsd guests
[15:50] <grody> linux is fast as hell mind
[15:59] <mercutio> network lag?
[16:12] *** dne has joined #arpnetworks
[16:55] *** kevr has quit IRC (Excess Flood)
[16:57] *** kevr has joined #arpnetworks
[23:38] <mercutio> is anyone else seeing ping spikes to 4.2.2.2 but fine to 4.2.2.1.  i assume 4.2.2.2 is probably getting ddos'ed or something, it's just curious and my usual "test ip"
[23:44] <brycec> I don't monitor it... But I'm not surprised
[23:44] <brycec> 4.2.2.2 is the ip "everybody" knows and hits
[23:44] <brycec> 4.2.2.1 is far less-known
[23:44] <acf_> mercutio: 4.2.2.2 has always had terrible ping latencies for me
[23:45] <acf_> http://kremvax.acfsys.net/smokeping.cgi?target=Remote.l3dns
[23:45] <mercutio> acf: it's been mostly fine for me before
[23:45] <mercutio> i don't monitor to it i just check internet stuff with it at the time
[23:45] <mercutio> wow it's really bad for you since like the end of june
[23:45] <mercutio> but before that it was fine
[23:46] <mercutio> is that on a vm?
[23:47] <acf_> no, that's ARP Metal
[23:47] <mercutio> interesting
[23:47] <acf_> yea, it's super strange
[23:47] <mercutio> i was just lookig athe localhost ping time
[23:47] <mercutio> i suppose it's pretty stable, it jut seems high
[23:48] <mercutio> mine sits around 10u on an i3-2100
[23:48] <acf_> http://paste.unixcube.org/k/479429
[23:48] <mercutio> yeah i'd already tried from arp native
[23:48] <mercutio> well vm on arp
[23:48] <acf_> yea, it's not going through anything strange afiact
[23:48] <mercutio> but i did manage to test from one location that seemed better
[23:49] <mercutio> it was better when it hit san jose 4.2.2.2 rather than los angeles 4.2.2.2
[23:49] <acf_> ah right, that's anycast
[23:49] <mercutio> yeah, but los angeles seems worse than san jose
[23:49] <mercutio> like way worse
[23:49] <acf_> maybe I should start monitoring 4.2.2.1
[23:49] <mercutio> i haven't got historic data, and you do  :)
[23:50] <mercutio> i wondered if it was some new ddos or something
[23:50] <mercutio> i had weird slow gtt behave earlier today
[23:50] <mercutio> then i saw someone reporting about gtt issues on outages
[23:50] <acf_> is *that* what that was
[23:50] <mercutio> oh you noticed weird gtt shit?
[23:50] <mercutio> it was pretty chronically bad.
[23:50] <acf_> I didn't have much time to debug at the time
[23:51] <acf_> but something was clearly not right
[23:51] <mercutio> i still don't know who gtt is compromised of properly.
[23:51] <mercutio> but their network seems a badly managed hodge podge atm
[23:52] <mercutio> i think it's gtt, tinet, nlayer, mzima, and someone else
[23:52] <acf_> something like that
[23:52] <acf_> I guess gtt just bought everyone up
[23:52] <mercutio> what
[23:52] <acf_> and didn't really try to integrate anything
[23:52] <mercutio> try goign to www.gtt.net
[23:52] <acf_> umm
[23:52] <mercutio> it's not loading, and saying "checking your browser before accessing gtt.net"
[23:52] <acf_> yea
[23:52] <mercutio> and to allow up to 5 seconds
[23:53] <mercutio> it's been way more than 5 seconds.
[23:53] <acf_> appears to be some Cloudflare anti-ddos thing
[23:53] <mercutio> yeah
[23:53] <mercutio> so gtt had massive ddos attacks today i imagine
[23:53] <mercutio> i thought gtt were bigger than cloudflare
[23:53] <mercutio> it's kind of scary when gtt are doing anti-ddos protection with cloudflare and their main web site doesn't even work
[23:54] <acf_> I think cloudflare are super experts at anti-DDOS though
[23:54] <mercutio> what's that web host tracker thingy
[23:54] <acf_> for HTTP anyway
[23:55] <mercutio> the one that usedd to say about apache vs iis
[23:55] <acf_> netcraft?
[23:55] <mercutio> that's it
[23:55] <mercutio> oh www.gtt.net loads now
[23:55] <acf_> it did for me, after > 5 seconds :P
[23:56] <mercutio> http://toolbar.netcraft.com/site_report?url=http://www.gtt.net
[23:56] <mercutio> so it looks like it was self hosted 5th feb 2015
[23:57] <acf_> huh yea
[23:57] <acf_> just clicked refresh there
[23:57] <BryceBot> That's what she said!!
[23:57] <acf_> then the CloudFlare one showed up
[23:57] <mercutio> it only recently changed from windows to linux too
[23:59] <mercutio> https://www.staminus.net/gtt-stops-offering-flowspec-what-this-means-to-ddos/
[23:59] <mercutio> cloudflare use ntt
[23:59] <mercutio> at least what i've noticed for communication to origin web sites