***: Hien has joined #arpnetworks grody: is heartbleed still common in the US?
amount of attempts on 443 vs. my entire IP ranges in the UK, am seeing more on my /29 from ARP mercutio: never assume hackers are good at targetting
there's been a general increase of scanning in general though
not only malicious grody: aye, i've seen a lot of "research" companies are contributing the the noise
just glad when i setup this pfsense that i managed to get it's webui to listen on a port other than 443
else i would have probably got admin/admin owned cpet: seems like my bank hates me ***: cpet has left grody: typical.. i tanked my previous CSR/Key for my ssl
i hate revoking ***: Guest56962 is now known as qbit
sjackso has joined #arpnetworks sjackso: up_the_irons: Just saw the new web site, and had to drop by and say congrats. Looks great. ***: ant has quit IRC (Read error: Connection reset by peer)
ant has joined #arpnetworks
ant has quit IRC (Quit: Leaving)
ant has joined #arpnetworks mnathani_: anyone have some documentation for port knocking and how I would go about setting that up on a Linux system? brycec: Like http://linux.die.net/man/1/knockd ?
(There are a handful of promising looking google results) mnathani_: thanks brycec: np (and here I didn't think I was being very helpful :p) ***: ameise has joined #arpnetworks
ant has quit IRC (Quit: Leaving)
ameise is now known as ant
grody has quit IRC (Read error: Connection reset by peer)
grody has joined #arpnetworks mercutio: speaking of port knocking / security. with ipv4 ipsec never really took off for casual use because people's ip's are constantly changing, nat etc..
but i wonder with ipv6 having ipsec policies between ip subnets without any vpn or such will become more popular. pjs: I'm getting like 2KB/s from ARP staticsafe: o_o pjs: oh wait, just picked up a bit mercutio: 2k/sec?!
it looks normal from here fwiw pjs: even using this session for IRC (which is screen'd on an ARP server) is painfully lagged staticsafe: mtr please mercutio: yeah it's probably the route back to you if it's 2k/sec
but it could be either direction
mtr in both directions is good :) pjs: Yea, looking like its in the middle brycec: You might try http://ipv4.speedtest.cobryce.com/index-php.html too which is hosted on ARP. I just ran it and maxed my VPS/ISP's bandwidth. mercutio: middle can mean it's changing paths too
like it returns a good path half way to sending to arp, then hops further along go down a bad path back. -: brycec should move that to box with GbE one of these days mercutio: i'm getting 20/8 from that pjs: installing mtr brycec: Well it's better than the 2k/s that pjs was getting :P mercutio: buut i'm not experiencing issues
use mtr-tiny pjs
if ubuntu
it doesn't have all the gtk dependency crap pjs: mercutio, os x mercutio: oh brycec: (I got just under 100mbps down from it, and 12mbps up to my speedtest, which is ARP's and my ISP's limits, respectively) mercutio: cool. pjs: It won't even run for me :) mercutio: heh pjs: my mtr install seems to have died as well (fetching files) mercutio: hmm
pjs: would you mind telling us your ip? pjs: probably an issue outside of ARP
no doubt mercutio: but yeah sounds like it could be outside arp brycec: Agreed. At least it's probably not limited to just your VPS' host machine or subnet. mercutio: outages says about verizon dallas routing issues
can't see anything else ***: sjackso has quit IRC (Quit: Lost terminal) mercutio: are you using verizon pjs?
because my verizon smokeping went off earlier today too brycec: I do see a Verizon IP hitting my speedtest
(but not starting a test)
from 71.96.0.0/11 mercutio: that's dallas isan't it?
well the .1.1 is :) pjs: mercutio Yes I am.. FiOS mercutio: a /11 is pretty big pjs: I'm in LA :) mercutio: pjs: yeh i think it's probably just a verizon issuue then i'm sorrey brycec: mercutio: It's the netblock whois returned and I didn't want to get too personal with his IP ;P mercutio: brycec: understand :) pjs: Just my luck.. all good.. whatever mercutio: it'll probably clear up soon i imagine
they're talking about issues in NY on outages@
oh and apparently issues on verizon to level3 and ntt
both of which arp use pjs: thanks dude!
that helps brycec: o/ hooray we're a helpful IRC channel. mercutio: heh, we usually are brycec
weird, i have a few mtr's running and they seem to be burning heaps of cpu for some reason
like 2 to 13% cpu each brycec: I've seen mtr do that on long-running instances, eventually grinding to a halt too. mercutio: they probably are long running
i have too many shells open again brycec: (not even 'R' reset cleans it up) mercutio: i was just noticing my load average is a bit high
hmm, i wonder if i should get my window manager tos how how many shells are open
i closed a whole lot, and it's down to 245 on grep for zsh :)
one of tehm shifted to 100% cpu and isn't responding
is that what you meant brycec? brycec: yup mercutio: it doesn't even respond to ^C brycec: I've had exactly that happen mercutio: oh neither does this one
not even ctrl works hmm
second one did the same brycec: ctrl- ? that's a new one to me... mercutio: does a coredump brycec: ah, TIL mercutio: sometimes works when ^C doesn't BryceBot: That's what she said!! mercutio: down to 23 shells, taht's a bit more reasonable :) ***: toeshred has quit IRC (Read error: Connection reset by peer)
toeshred has joined #arpnetworks grody: who do i pester about having my /48 routed to me? BryceBot: That's what she said!! brycec: grody: support@ grody: thanks :) brycec: And be sure you understand how to configure it on your end. support@ has no patience for that kind of nonsense RandalSchwartz: that's what she said. :) brycec: twss BryceBot: Okay! twss! 'that's what she said. :)' brycec: And be sure you understand how to configure it on your end. support@ has no patience for that kind of nonsense
twss BryceBot: Okay! twss! 'And be sure you understand how to configure it on your end. support@ has no patience for that kind of nonsense' brycec: (at least, that's what the FAQ says) RandalSchwartz: I presume ipv6 /48 grody: brycec, indeed.. i've been playing with IPv6 for quite a while.. just never needed more than the /64 on ARP til now RandalSchwartz: if you have a ipv4 /48... scary grody: /48's are easy brycec: The /48 gets routed to a link-local address rather than just being made available on the VLAN. It's quite simple really, but comes as a shock to many. grody: i do have two /32's advertised... it's a &*%^"*! nightmare brycec: v4 or v6 /32? RandalSchwartz: heh... v4 /32 is a single address
"come talk to me at 2.3.4.5!" grody: brycec, yea.. every IP in the scope simply gets sent to the automagic link-local, my end i choose what /64's i want and via link-local on iface brycec: and v6 /32 is ISP-sized subnet
grody: it's a static link-local, but you've got the idea. RandalSchwartz: I have something like 5 /48's now brycec: (You are fe80::2 and ARP is fe80::1) grody: brycec, yea pfsense (freebsd) is piece of piss for networking :)
like teh easiest to get things done impo
just wanna experiment with VPN based load-balancing
have US/EU/UK IP addresses, but ultimately route to a single server blade mercutio: you could run an accelerator in different locations grody?
well for web stuff
what would a v4 /48 even be RandalSchwartz: confusing :)
"my ip address is 2.3.4.5.00132' mercutio: actually port is 2 bytes...
of course that's only tcp/udp