#arpnetworks 2015-05-20,Wed

↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)

WhoWhatWhen
mercutioi thought dpdk was only on linux
and that freebsd had netmap. am i mistaken?
there's a /new/ ssl flaw it seems. logjam.
[02:20]
ahh it's only if you have export grade ciphers enabled [02:26]
...................... (idle for 1h46mn)
up_the_irons...and we have a new website!
although your guys' DNS may take time to update
[04:12]
............ (idle for 57mn)
mhoranOoo, pretty. [05:09]
...... (idle for 29mn)
mercutioit's a lot bolder than the old site [05:38]
..... (idle for 21mn)
dnenice [05:59]
mercutiothose images are pretty impressive looking on 4k
well impressive not on 4k too :)
[06:12]
......... (idle for 43mn)
m0undsup_the_irons: looks nice [06:56]
............ (idle for 55mn)
mike-burnsNice hardware shots. [07:51]
..... (idle for 21mn)
***Seji has quit IRC (Ping timeout: 255 seconds) [08:12]
Seji has joined #arpnetworks [08:24]
brycecup_the_irons: Huzzah!
(Were we always serving the website over v6? If not, yay for that too)
up_the_irons: Just a thought - the hover/highlight/tooltip/alt text on the images in the carousel should be something along the lines of "These are not stock photos but actual ARP hardware."
[08:25]
........................................................ (idle for 4h38mn)
***Seji has quit IRC (Ping timeout: 264 seconds) [13:07]
mnathani_up_the_irons: awesome new site
is it hosted on a dedicated now? Or another vps
[13:11]
@weather yyz [13:17]
BryceBotToronto-Pearson International, Ontario: Partly Cloudy ☁ 63°F (17°C), Humidity: 27%, Wind: From the NW at 9 MPH Gusting to 18 MPH -- For more details including the forecast and almanac, see http://www.wunderground.com/cgi-bin/findweather/getForecast?query=43.67722321,-79.63055420 or re-request this with: @weather -v yyz [13:17]
brycecI suspect it's a VPS. Can't imagine a pretty static website like ours needing 8 cores and 8GB of RAM to serve.
Not to mention it would be a relatively large investment if he used a dedi box from inventory that could normally be earning him monthly income.
Still you have me thinking whether there's a good way to remotely determine whether a host is virtualized
[13:20]
mnathani_if you could find out its MAC address - that would be a start
but you would have to be on the same VLAN
KVM / QEMU Mac vs SuperMicro etc
[13:26]
brycecYeah good thinking
alas the website is behind a router
at least for my ip blocks
[13:27]
mnathani_for dedicated, it could potentially share say a logging server, or backup server rather than its own dedicated "dedi server"
brycec: I think I know another way to test
wget http://arpnetworks.com/100mb.bin from your dedi and see if it exceeds 100mbit
[13:29]
brycecnice [13:30]
mnathani_never mind
404
[13:30]
bryceclol yeah [13:31]
mkbI was going to say it exceeds 100Mbit from my VPS but... [13:31]
brycecI tested it from home and was confused unntil I saw the size :p
up_the_irons: FYI you broke the /100mb.bin speedtest with the new website
[13:31]
***phlux has quit IRC (Ping timeout: 265 seconds) [13:32]
mkbI shoud have realized that even at 30MB/s it didn't take long enough [13:32]
brycecsupport.arpnetworks.com being dog-slow for anyone else or is it jut my connection?
nvm just me
up_the_irons: http://support.arpnetworks.com/kb/main/ip-address-for-ping-tests needs updating (or fixing)
[13:33]
***phlux has joined #arpnetworks [13:34]
............ (idle for 58mn)
Seji has joined #arpnetworks [14:32]
mnathani_anyone come across a firefox / chrome extension that allows you to specify get dns address from authoritative server fresh, rather than use cached responses, would help test while propagation takes place, without resorting to manually editing hosts files [14:38]
brycecmnathani_: what about just clearing Chrome's DNS cache?
chrome://net-internals/#dns
(And of course one could just set the TTL's low ahead of time to minimize most propagation)
[14:41]
mercutiobrycec: i judged based on ping if something is dedicated or vm :/
brycec: it was for me too last night
(support being slow)
oh that speed test worked for me last night when i checked it, but it must have been going to the old server
mnathani_: i just edited /etc/hosts myself :)
but i only did it for www
it seemes the speed test is at .
hmm nz had cable cut for internet
i wonder if that will make my net slow
[14:50]
brycecI didn't need to do anything re:arpnetworks.com's update.
it was "live" when up_the_irons announced it.
(not that I had "www.arpnetworks.com" cached anywhere...)
brycec always forgets about camelcamelcamel.com
[15:03]
mercutioi use camelcamelcamel a lot and forget about it
and then it emails me
[15:09]
bryceclol
Dammit, missed a one-day $20 price drop by just 1 day.
[15:10]
mercutioon what? [15:12]
brycechttp://www.amazon.com/dp/B0073W6YDA/ [15:12]
BryceBotAmazon: "IOGEAR 2-Port Dual-Link DVI Cable KVM with Audio (GCS982U)" [15:12]
mercutiothat kind of thing is probably cheaper on ebay [15:12]
brycecIt was $95 yesterday [15:12]
mercutiooh it does dual-link dvi
not just dual dvi
[15:12]
brycecYeah, bit of a niche product
Though supposedly this will do it for $30 http://www.ebay.com/itm/StarTech-10-ft-4-in-1-USB-Dual-Link-DVI-D-KVM-Switch-Cable-w-Audio-Microphon-/291286882111?pt=LH_DefaultDomain_0&hash=item43d20d173f

I'm weary...
[15:12]
mercutioi just use synergy :/
it's so handy being able to cut and paste etc.
but if you don't have space for another monitor..
[15:13]
brycecWhen most products are $100 and this is $30, I question whether it's accurately listed.
mercutio: Yeeeaaah, or money for another 27" display :P Plus I don't need to use two computers simultaneously with it
I just don't want to unplug-replug when I switch computers
[15:14]
mercutiohttp://www.ebay.com/itm/Thinklogical-Velocitykvm-8-Velocity-8-KVM-Receiver-Extensuon-Dual-Link-DVI-/151449592509?pt=LH_DefaultDomain_0&hash=item23431962bd
i wonder what this is :)
i can't see the back
[15:14]
brycecyes you can [15:15]
mercutiooh click right arrow :) [15:15]
brycecnot sure if UX failure, or mercutio failure :p [15:15]
mercutioyeh it should auto scroll :)
i found a datasheet anyway
[15:16]
brycecI just read the description from the front of the unit [15:16]
mercutioit's not really what you want
still kind of nifty :)
[15:16]
bryceclol, noooo not by a long shot :p
Great if I had to drive a video wall or similar, I suppose
Oh cool it looks like I can find the same $30 dual-link kvm on Amazon (for $30)
actually for cheaper
[15:17]
mercutiomaybe it's worth trying
although is that just a cable?
[15:19]
brycecohshit, no, it's just a cable [15:19]
mercutiohttp://www.ebay.com/itm/StarTech-2-Port-High-Resolution-USB-DVI-Dual-Link-KVM-Switch-w-Audio-/251967162711?pt=LH_DefaultDomain_0&hash=item3aaa69c957 [15:20]
bryceccan't really fault them, they do say it... it just didn't stand out to me.
Yeah probably complements that
[15:20]
mercutiothe other one looked nicer [15:20]
brycecprobably why http://www.amazon.com/dp/B0073W6YDA/ ended up on my list :p [15:21]
BryceBotAmazon: "IOGEAR 2-Port Dual-Link DVI Cable KVM with Audio (GCS982U)" [15:21]
mercutioyeah that's there too
it's more expensive on ebay for me
[15:21]
brycecThough I do tend to prefer detachable cables. [15:21]
mercutiobut if i sort by price it doesn't show stufuf that doesn't ship to me
well you can use normal cables probably
[15:21]
brycec(I wonder if I could just use usb cables I have laying around and cheap DL DVI cables off Monoprice with the $55 switch
lol
[15:22]
mercutioyeh probably [15:22]
brycec3ft cable is $4.31 on Monoprice
and has the benefit of letting me "customise" the length
[15:22]
mercutioi'd want one of mine to be longer than that at least.
ahh.
i wouldn't bother with audio :/
[15:22]
brycecme either
(my tower sits just behind my monitor, so I don't need much length)
[15:23]
mercutioheh i'm using a really really short network cable
i think it's 60 cm
[15:24]
brycecthat's not /that/ short [15:24]
mercutioit is for computer to computer
it's like 2 feet?
[15:24]
brycecyeah 23"
I have something about that long here too. Again, don't need much - I have a switch on my desk
[15:25]
mercutiobut because it's infiniband, it was much cheaper that way. [15:25]
brycecAh IB [15:25]
mercutio32 gigabit :/
i shoudl fix linux on my windows computer and see how fast it can go
i expect to only get like 20 gigabit out of it
but in windows it's more like 10 gigabit with samba
[15:25]
........... (idle for 54mn)
mnathani_mercutio: are you doing ram to ram transfers, if not I would like to know what disks can sustain 10 gigabit reads / writes [16:21]
mercutio/dev/md1:
Timing buffered disk reads: 4606 MB in 3.00 seconds = 1534.74 MB/sec
ssd raid :)
that's basically the limit on onboard sata.
there's 4x pci-e 2 for 20gbit then with 8/10 encoding pushing you to 16 gigabit.
then sata overhead etc
[16:22]
mnathani_i7 processor? [16:23]
mercutioi7-4770 on linux server
i7-3770 on windows desktok
both with ddr3-2000 @ cas 9 latency i'm pretty sure
but samba isn't multithreaded so it can use 100% cpu on one core of i7-4770
i'm using zfs for normal data though
and have lz4 compression enabled..
i have a feeling performance would be slightly higher with ext4.
but higher speeds are just nifty, i more care about not getting slow, snapshots, checksumming, redundancy
and by using ssd's it's easier to backup over the net
because you're not tempted to stick big files on there too much
[16:24]
mnathani_brycec: I could clear my local dns cache, but most likely the upstream recursive dns server (either my ISP or Google DNS) has an old cache entry in there as well [16:28]
mercutiomnathani_: dnsmasq automatically propogates /etc/hosts if you use that.
it's pretty handy for home networks.
[16:30]
mnathani_so I would point local hosts to that designated name server box running dnsmasq? [16:37]
mercutioyeh
and you get a local dns cache out of it too
[16:38]
mnathani_not to mention single point of faliure
s/faliure/failure
[16:39]
BryceBot<mnathani_> not to mention single point of failure [16:39]
mnathani_I guess I could have 2 setup and use as primary and secondary dns [16:39]
mercutiofor home just having single dns is fine
you can alwyas set secondary to an extenral
[16:40]
staticsafei have a local resolver with Google Public DNS as a backup [16:41]
mercutioi don't have any backup on my windows host i think [16:41]
staticsafeDHCP all the things [16:42]
mnathani_staticsafe: did your prefix ever get the right as path via NTT and Cogent? [16:42]
mercutioyeah no backup [16:42]
staticsafemnathani_: haven't checked [16:42]
mercutioi can always change it if i have a hardware meltdown or something
i'd rather fix it if there is an issue though
[16:42]
mnathani_does dnsmasq have a feature where it re-requests records as they are expiring so as to have a perpetual cache? [16:43]
mercutionope
unbound's doesn't really help in home situations much though
it's only if it's requested in the last 10% or something
so it more helps if you have a busy cache.
[16:43]
staticsafeunbound's prefetch feature is indeed useless for small caches
it would be more useful for a ISP running resolver for their clients
[16:44]
mercutiobasically unbound doesn't want to create significant extra dns load
so it's pretty conservative.
and i mean unbound is REALLY popular now.
so if unbound was aggressive people would probably notice.
i mean there's probably still more bind etc than unbound out there
but a lot of isp type situations have shifted to it.
[16:45]
staticsafeyeah tonnes of BIND out there [16:46]
mercutioand it's the more used dns that tend to have moved :) [16:46]
staticsafeespecially since BIND comes preinstalled with some distros [16:46]
mercutio*cough*
i hate bind.
i think arp is using bind and unbound for recursive
i wonder if prefetch is enabled.
i used to do dnsmasq and powerdns to have different servers for recursive.
[16:46]
mnathani_authoritative at arp is poweredns with bind slave [16:47]
mercutiobut now days i just use unbound, and if there's an issue there's an issue.
i'm talking about recursive.
unbound is recursive only.
[16:47]
mnathani_s/poweredns/powerdns [16:48]
BryceBot<mnathani_> authoritative at arp is powerdns with bind slave [16:48]
mercutioi still haven't tried nsd :)
keep meaning to
powderdns recursor isn't too bad. but the authorative looked a bit ick to me
[16:48]
mnathani_mercutio: what do you guys use at $dayjob for recursive [16:50]
mercutiounbound.
*3
[16:50]
mnathani_load balanced? [16:50]
mercutionope.
there's anycast on primary though
but 1 gets all the load.
hmm, haven't enabled dnssec yet though
we've got a list of blocked domains here too.
[16:50]
brycecI love nsd. Don't think I'll ever look back at bind after I started using nsd. Super easy. [16:53]
mercutioit got in the news, becauuse the list added baidu [16:53]
staticsafeI could switch to NSD for my auth. slaves, still need to use BIND for the master though [16:53]
mnathani_if its a simple dns block, cant your subscribers just use google dns or such [16:53]
brycec(And I used to love bind) [16:53]
mercutioit's published by the fbi, then emailed to providers in nz. [16:54]
brycecstaticsafe: What's keeping you on bind, if you don't mind my asking? [16:54]
mercutiomnathani_: yeh they could, but it's really dodgy stuff.
well it's meant to be.
[16:54]
staticsafei use the auto-magic DNSSEC signing ability [16:54]
brycec(There are some things Bind can do that nsd canot) [16:54]
staticsafein BIND [16:54]
brycecAh [16:54]
mercutioi skimmed through it, but it's huge [16:54]
staticsafebut that only needs to exist on the master [16:54]
mercutioi completely missed baidu being on it
probably because it doesn't look like a word to me.
[16:54]
staticsafealmost all of my zones are signed, even my PTR zones for my IPs [16:55]
brycec(I have no idea what automagic dnssec thing in bind you're talking about.)
Nice
[16:55]
staticsafeit automatically signs and maintains signatures on domains
makes DNSSEC much less painful
[16:55]
mercutioi can't even sign my domains, because i use tinydns.
and don't have tcp enabled for dns.
even
[16:55]
staticsafeyuck [16:56]
mercutiowell tcp for dns is yuck :/ [16:56]
staticsafe*shrug* [16:57]
brycecI should look into signing my zones someday...
Seems like it's just one extra step when making changes at least, run ldns-signzone
[16:57]
mnathani_brycec: dont forget to provide your registrar with your zone signing key records zsk to place in the parent zone [17:03]
staticsafeyeah [17:08]
mnathani_hopefully you wont get a rep who goes DNS what? when you mention DNSSEC support [17:09]
staticsafeheh, which is why I use Gandi [17:10]
mnathani_they are a bit more expensive I recall
than say namecheap or godaddy
[17:10]
staticsafeyeah
http://wiki.gandi.net/en/domains/dnssec
[17:11]
m0undsugh, godaddy [17:13]
staticsafem0unds: http://steamcommunity.com/sharedfiles/filedetails/?id=446246422
i need that armor on all my vehicles
[17:14]
m0undsargh, steamcommunity is dragging its ass something fierce [17:26]
bryceclol - first autocomplete when typing namecheap was dnssec
(A quick Google suggests that Namecheap doesn't support DNSSEC, so I'll have to store in DLV)
(Then again looks like DLV is not long for this world either https://ripe70.ripe.net/wp-content/uploads/presentations/81-RIPE-DLV-timeline-20150513.pdf)
[17:29]
staticsafeyeah [17:32]
brycecApparently it's a requirement to be ICANN-accredited
2013 "near future" https://twitter.com/Namecheap/status/294872690102267905
[17:33]
BryceBotTWITTER: @mdjanic Ah, we're adding DNSSEC support in the near future. Hang tight :) (Fri Jan 25 18:21:42 +0000 2013, in reply to @mdjanic) [17:35]
staticsafe2013 heh [17:36]
mnathani_LOL Godaddy: https://twitter.com/GoDaddy/status/294874487713849344 [17:37]
BryceBotTWITTER: @mdjanic We'd certainly love to have your business :) ^C (Fri Jan 25 18:28:51 +0000 2013, in reply to @mdjanic) [17:37]
brycecthat's... wow. I mean, I hate GoDaddy, but how the hell are they the "winner" in this? [17:38]
For what little good it will do me https://twitter.com/brycied00d/status/601185958042697728 [17:43]
BryceBotTWITTER: Hey @ICANN how is @Namecheap still accredited? TWO YEARS since the 2013 RAA and still no DNSSEC - clearly violating their RAA. (Thu May 21 00:41:16 +0000 2015) [17:43]
staticsafei think its because they are still reselling Enom
namesilo is another one I can recommend
[17:44]
brycecyou have a point, eNom is in breach of their RAA
Corrected/tweaked https://twitter.com/brycied00d/status/601187245828263936
[17:46]
BryceBotTWITTER: @ICANN I guess that as @Namecheap is reselling @enom, it's really eNom that is in breach of their 2013 RAA. @icann_president @NameCheapCEO (Thu May 21 00:46:23 +0000 2015, in reply to @brycied00d) [17:48]
brycec(And yes kids, I did double-check that eNom, Inc - the name on my whois record - is on ICANN's accredited list having signed the 2013 RAA) [17:48]
staticsafe++ [17:49]
brycec(ty) [17:53]
staticsafeEnom is probably one of the biggest registrars
due to their resellers
[17:53]
brycecIndeed they are huge [17:54]
mnathani_you would think banks and other institutions would really be a big DNSSEC driver. Preventing Man in the Middle DNS attacks. [17:54]
brycecSo how can we be 5+ years later without dnssec? [17:54]
m0undsimage finally loaded staticsafe - reminds me of the tech-centric gang in saints row 3 [17:54]
brycecExcept that banks etc don't represent a large customer to registrars
Banks are a handful of domains, and a registrar loses <$1000 if a bank changes to a dnssec reg.
[17:54]
mnathani_they probably go to niche registrars online portfolio managers
markmonitor.com etc
[17:55]
brycecI thought ^ was an enom reseller
(Apparently I'm wrong/thinking of something else/it's changed)
Oh look I have a new follower
[17:56]
mnathani_:-) [18:00]
...... (idle for 29mn)
up_the_ironsm0unds: brycec mnathani_ : thanks!
brycec: it was on v6 b4 too
[18:29]
bryceccool [18:29]
up_the_ironsbrycec: i wonder how one sets the toolip/hover text... i'll ask the designer
mnathani_: still vps
[18:31]
mnathani_perhaps the network test file should reside on a dedi for people to burst to 1gig [18:33]
acf__I think the alt attribute for img [18:33]
brycec(There are actually a handful of ways to do it. "alt" was the main method through HTML 4. HTML5 added tooltip and some other stuff, not to mention the things you can do with Javascript and custom elements) [18:34]
up_the_ironsbrycec: fixed speed test link in kb [18:37]
brycecword [18:37]
mercutio+1 for dedicated speed test
maybe have the ookla speed test?
it "kind of sucks" but it tests upload too
[18:37]
brycecup_the_irons: FYI the KB link should be updated to https://
ie. a link you can curl (curl'ing the http:// just returns the 301)
[18:39]
mercutiodon't think kb supports https? [18:39]
brycecI meant the link provided ON the kb
curl -v http://arpnetworks.com/files/100mb.bin == 301
[18:39]
mercutiooh right
there's a blanket rewrite
[18:39]
brycecYea
h
[18:40]
mercutioit's still not a+ on ssleay test :( [18:40]
brycec(Ideally the speedtest would be allowed to be http:// I think) [18:40]
mercutioi'm not sure why it isn't. [18:40]
up_the_ironsbrycec: done [18:40]
mercutiobrycec: ssl compression used to be common, and i really hated https speed tests
because they'd often give false numbers.
i think arp's using random data, not sure though
but shouldn't have ssl compression enabled anyway
[18:41]
brycecI'm maxing 100mbps from the file to my ded :/ [18:41]
mercutioi'm getting 3MB/sec
from vdsl.
4 now.
[18:41]
brycec(And yes that 100mbps was ipv4)
(I got it over v6 too, but that's no surprise)
[18:41]
mercutioyeh it's still on a vm [18:42]
brycecVM's can have GbE connections [18:42]
acf__/dev/null 47%[=========> ] 47.13M 11.1MB/s eta 5s ^C [18:42]
brycecditto ^
The only reason I mention this is that it will look like ARP only has 100mbps connection to the Internet for anyone testing with >100mbps pipe.
[18:42]
mercutioi'm getting 96.8mb/sec [18:45]
brycec(which for all intents and purposes can be rounded up 3.2mbps to 100 :P)
brycec is overlooking that the 'm' prefix is milli. mb= "millibits"
[18:46]
mercutioerr megabytes/sec that is [18:47]
brycecReally?? I'm still maxing at 11.1MB/s [18:47]
mercutioyeh i'm using a different location
http://mirrors.arpnetworks.com/speedtest/100mb.bin
[18:47]
brycecOh ha
yeah I get GbE to the mirror
[18:48]
acf__much better :P
I wonder why that link isn't in KB..
[18:48]
mercutioit is [18:48]
bryceclol the page was *just* updated [18:48]
mercutioheh
yeah
[18:48]
brycec90 seconds ago
I never noticed this before (a 5 year-old KB article) that the VM host machines only have a single 100mbps connection
http://support.arpnetworks.com/kb/vps/what-is-the-uplink-speed-of-a-vps
"Each VPS shares a 100 Mbps uplink with other VPS's running on the same host machine."
[18:49]
mercutiobrycec: that's still the case.
i was a bit apprehensive about that when i first got my vps
but in practice it never seems to be an issue
except if someone ddos's.
[18:50]
acf__I thought there were some people testing gigabit to VPS [18:54]
brycecMy VPS' second NIC is GbE [18:55]
mercutioacf__: it's not the default though [18:57]
brycecI'd always assumed the hosts had GbE and the guests were just limited to 100mbps to keep from overloading the link [18:58]
mercutionope [18:58]
brycec(I understand that assumption was wrong now) [18:58]
mercutioyeh i questioned it when i first got my vps [18:58]
acf__is it because the hosts just happen to have fast ethernet cards [18:59]
mercutionah the hosts have gigabit cards. [18:59]
acf__or is that done intentionally to limit the rate? [18:59]
mercutioit's the switch ports that are 100 megabit. [18:59]
brycecIt's the switch
heh
[18:59]
acf__interesting [19:00]
mercutiothe switch ports are "good" 100 megabit though. [19:00]
brycec(Quality Cisco stuff) [19:00]
acf__there is bad 100 megabit? [19:00]
mercutioie they don't have stupidly short queues. [19:00]
brycecThere's cheap [19:00]
acf__ah [19:00]
mercutioif you have three hosts on a cheap gigabit switch try doing concuurrent access to one port from both
if you send at all more than a gigabit to one port they tend to not behave well.
before switching was common, intel ethernet used to be faster because it was more aggressive.
[19:01]
up_the_ironsvps hosts' primary interface plug into s1.lax, a Cisco 4500 with 48 port 10/100 Mbps linecard. 7 years ago, when I got it, that was expensive. that's why it's not 1gbps :) [19:10]
mercutiocan you get a cheap gigabit line card second hand now for it? [19:11]
acf__http://www.ebay.com/itm/Cisco-WS-X4548-GB-RJ45V-V05-Gigabit-PoE-Line-Card-From-Working-Catalyst-4507R-/191437209907?pt=LH_DefaultDomain_0&hash=item2c928c0133
?
:D
[19:11]
mercutiothat's what i found acf
you don't want poe
[19:11]
acf__can you just turn it off? [19:12]
mercutiomaybe [19:12]
brycecStill ends up being a waste of parts, power (even off), something else to break, etc [19:12]
mercutioalso if there's an issue, there's a lot of dependency on s1 atm [19:12]
acf__yea..
do you know if they hot swap?
[19:12]
brycecbrycec predicts "no" [19:13]
acf__2015-02-28 s1.lax uptime is 6 years, 17 hours, 48 minutes [19:14]
mercutiohttp://www.ebay.com/itm/Cisco-WS-X4548-GB-RJ45-Gigabit-Line-Cards-f-Catalyst-4506-4500-Switch-/291457935757?pt=LH_DefaultDomain_77&hash=item43dc3f298d [19:14]
brycecor http://www.ebay.com/itm/Cisco-WS-X4548-GB-RJ45-CATALYST-4500-Enhanced-48-Port-Gigabit-Module-/311360341076 [19:15]
mercutio50 euro [19:15]
brycec$30 for mine and it's near LA [19:15]
mercutiothat's better
bt it's poe
buuut
[19:15]
brycecis it? didn't see that in the title [19:15]
mercutioit's in the description [19:15]
brycecoh i see in the descr
Did Cisco make these cards withOUT poe?? That's all I'm finding
[19:15]
mercutiowell both have the same model code
maybe they didn't.
[19:16]
brycec(your 50EUR is poe too) [19:16]
mercutioyeah i couldn't read the language
it may have said in english
[19:16]
brycecIt certainly doesn't look like it has enough "guts" to be POE, but what do I know [19:17]
mercutioit'll be 5w per port or something
the newer poe does more power ouutput
[19:17]
brycechttp://www.cisco.com/c/en/us/products/collateral/interfaces-modules/catalyst-4500-series-line-cards/product_data_sheet0900aecd802109ea.html says NOT POE [19:17]
mercutiothe old stuff is fine for phones [19:17]
acf__why would POE be an issue? [19:17]
brycecthe "V" variant is POE [19:17]
mercutiocool
well it says poe in description
[19:18]
brycec(And you can see the difference pictured too - lots of power supply for poe) [19:18]
mercutiobut no V in the model
it's hard to know
how much does a 4500 cost now
http://www.ebay.com/itm/Cisco-Catalyst-4500-Series-Chassis-w-3-extra-cards-2x-1300w-Power-Supplies-/201311024324?pt=LH_DefaultDomain_0&hash=item2edf1274c4
[19:18]
brycecSo assuming the photos are of the actual hardware, you can tell it's definitely not the 'V" [19:18]
mercutioof couurse then there's "getting rid of it" [19:19]
brycecOh wow up_the_irons, only $300, reeeeaal expensive </sarcasm> [19:19]
mercutiowell they only support 100k routes [19:19]
brycecLater gents
(didn't we hit that last year?)
[19:19]
mercutioso they've probably devalued a lot now
we hit 512k last year
[19:19]
acf__that was a fun day [19:20]
mercutiothe first day or the second day?> :)
ie the leak, or when the proper size got to 512k
last i knew it was about 536k now
[19:20]
acf__I don't remember when I noticed all of the problems
but apparently Microsoft, etc... were effected
*affected
[19:20]
mercutiook it's abouut 537 to 547k now for me
hmm 7 years ago is actually a long time
[19:20]
up_the_ironsbrycec: dirt cheap now
brycec: mercutio : they certainly hot swap
[19:30]
mercutioare you planning to migrate off that? [19:32]
up_the_ironsI actually have 2x of the 48 port gigabit cards in storage. but it made more sense to build out s7.lax and slowly migrate there. [19:32]
acf__have you changed plans at all? :P
I remember s7 was acting super strange a while back..
[19:33]
mercutiowasn't it an upstream on s? [19:33]
up_the_ironsit was acting strange so that kinda just got put on hold [19:33]
mercutiooh it was.
hmm
what about using linux and normal layer2 switches?
or layer3 switches and a hybrid
[19:33]
up_the_ironsi dont like software routing cuz they tend to melt under ddos, and considering older cisco gear is still very good and now cheap, why go software [19:36]
mercutiosoftware routing is usually fine with normal levels of ddos, as fine as anything is, really.
ie packet loss, high latency can happen
and blackholing, having enough bandwidth can fix
so if automatically blackholing, it doesn't really matter too much, and takes load off transit links.
[19:36]
up_the_ironsall good in theory [19:38]
mercutiogigabit isn't really an issues with linux, it's multi-10 gigabit where it's not so great.
-s
[19:38]
up_the_ironsi've seen issues
but maybe things have changed since i last tested it
[19:49]
mercutioquite a few things have changed, including in route caches etc.
iptables is still a pita :)
[19:50]
up_the_ironsyup but at least ferm makes it tolerable [19:50]
mercutioit depends what ethernet cards you're using still too.
my most recent issue with opensource and ddos was openbsd with an old hp server with broadcom ethernet, where the ethernet wedged.
it was the old broadcom though. uuhh, before bnx2.
and it recovered fine, and only took down that interface so impact wasn't too bad
adn it came back in a minute or two
[19:50]
up_the_ironsa minute or two downtime on a cisco interface would be unheard of, which is why i like it (except of course, if you loop it and stp disables the int) [19:55]
mercutioyeh s1 has been stable. [19:59]
......... (idle for 43mn)
http://www.ebay.com/itm/Brocade-ICX6610-48-I-Switch-48x1Gbe-4x10Gbe-Uplinks-10GbE-LICENSE-/131356325666?pt=LH_DefaultDomain_0&hash=item1e95727722
what about using something like that?
http://www.brocade.com/products/all/switches/product-details/icx-6610-switch/features.page
layer3 switch, with bgp, ospf, sflow etc.
[20:42]
although i think bgp needs license. [20:49]
........ (idle for 37mn)
brycecup_the_irons: not sure if you care but the 100mb.bin file on the website (eg. the bottom of /vps under "Bandwidth" points to the https_/files/ file not the mirrors.arpnetworks.com file.
And is it just my imagination or did pricing get tweaked on the dedicated boxes?
archive.org says I'm losing my mind. Okay.
Just seems silly - Starter @ $129 + the RAM and HDD to bring it to "All-Purpose" is only $159/mo but All-Purpose is 169/mo
Same goes with Starter->Medium. Difference is a single $10 RAM upgrade, but the difference in price is $20.
[21:26]
acf__ssshhhh! don't tell the customers! :P [21:31]
brycecI guess those who read carefully know to just pay upgrades on a Starter :p
lol acf__
[21:31]
mnathani_I think up_the_irons has mentioned the non linearity for $129 to $149 where its only a $10 upgrade
he always charges $149 for the 16gb box
[21:35]
brycec(it applies to the "large" box too) [21:35]
mnathani_http://irclogger.arpnetworks.com/irclogger_log/arpnetworks?date=2015-02-03,Tue&sel=129#l125 [21:35]
brycecUnless you have a second drive bringin you to All-Purpose (or maybe he just likes me)
holy... I've noticed this before LOL
(I thought this all seemed familiar)
[21:36]
mnathani_dejavu
round and round we go
[21:36]
brycecI've come full circle with #arpnetworks... guess I either quit or idle for eternity. [21:37]
....... (idle for 32mn)
mercutiobrycec: probably my fault [22:09]
.................... (idle for 1h35mn)
***dwarren has quit IRC (*.net *.split)
mnathani_ has quit IRC (*.net *.split)
mnathani_ has joined #arpnetworks
[23:44]

↑back Search ←Prev date Next date→ Show only urls(Click on time to select a line by its url)