| ↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |
| Who | What | When |
|---|---|---|
| *** | ziyourenxiang has joined #arpnetworks | [03:39] |
| ......... (idle for 44mn) | ||
| ziyourenxiang has quit IRC (Quit: Leaving) | [04:23] | |
| ................................................................................ (idle for 6h35mn) | ||
| freekevin has quit IRC (Changing host)
freekevin has joined #arpnetworks | [10:58] | |
| freekevin has quit IRC (Quit: vagina)
freekevin has joined #arpnetworks freekevin has quit IRC (Changing host) freekevin has joined #arpnetworks | [11:09] | |
| ........................ (idle for 1h58mn) | ||
| mercutio | i can't help but be fascinated by the linode ddos attacks. | [13:08] |
| .................................... (idle for 2h56mn) | ||
| *** | carvite has quit IRC (Ping timeout: 250 seconds) | [16:04] |
| carvite has joined #arpnetworks | [16:09] | |
| JC_Denton | mercutio: why? | [16:15] |
| mercutio | JC_Denton: they've been ddos'ed since xmas.
with a multi-targeted attack. | [16:15] |
| JC_Denton | ah, yeah. the continuing presence is pretty crazy.
i wonder who they irked. | [16:15] |
| mercutio | i dunno sometimes you hear of sites getting ddosed for a day or two
but a week for a vm provider i find kind of interesting. i also wonder how many customers they have lost | [16:15] |
| JC_Denton | probably a few
i know a few linode users and it sounds like the support staff have been somewhat unsympathetic | [16:16] |
| forgotten | it's not their fault their getting ddosd by some pricks.. | [16:27] |
| ........................... (idle for 2h14mn) | ||
| mercutio | JC_Denton: it's actually pretty hard to be sympathetic when you're actively dealing with issues.
JC_Denton: what often happens is someone who doesn't know what is happening so well responds to messages, while someone else deals with the problems. and so you're left with incomplete responses, but at least some kind of response, and not tying up people dealing with the issue. | [18:41] |
| .... (idle for 19mn) | ||
| JC_Denton | oh, i agree
but you shouldn't be snarky | [19:00] |
| mercutio | oh i didn't realise they were being snarky | [19:00] |
| JC_Denton | i actually choose ARP over Linode, because i didn't like support's unusual IPv4 space justification requests | [19:00] |
| mercutio | they were getting ddosed for many days though, so there may have been some sleep deprivation involved.
heh well linode is he.net in california too. | [19:00] |
| JC_Denton | i have my ipv6 he.net shirt ... somewhere | [19:01] |
| mercutio | i actually chose lots of providers originally
it's more like who i dropped :) but i have this weird fascination with liking to see how the internet performs from different vantage points.. which i suppose is like being fascinated with the weather in various locations around the world :) | [19:01] |
| JC_Denton | yeah, i remember what it was. to get additional IPv4 space, they wanted me to send them the SSL certificates i intended to use.
very weird. | [19:03] |
| mercutio | oh what | [19:03] |
| JC_Denton | and i'm like, guys, it's a /28 not some huge block
i've bounced around providers before | [19:03] |
| mercutio | i think asking for justifaction for a /28 is reasonable
but don't have to get ssl certs. | [19:04] |
| JC_Denton | stuck with slicehost for a good long while until they got absorbed | [19:04] |
| mercutio | slicehost were terrible | [19:04] |
| JC_Denton | justification, sure. but i'm not giving you certs. | [19:04] |
| mercutio | they were using these amd opterons that performed very slowly
and often had disk i/o issues | [19:04] |
| JC_Denton | they also apparently scan their customers with additional space to verify you're "using it correctly"
and i'm like, no... | [19:05] |
| mercutio | heh i heard about that happening in a wide way one time.
i have never seen any proof though | [19:05] |
| JC_Denton | i had a big enough slice that i was virtually dedicated
got in early and had really, really good pricing that was grandfathered | [19:05] |
| mercutio | but lots of people are sitting on unused /24s etc | [19:05] |
| JC_Denton | when rackspace came in, they didn't honor that deal
definitely | [19:05] |
| BryceBot | That's what she said!! | [19:05] |
| mercutio | the thing is that lots of people are misusing /16s.
and the /16s matter so much more than the huge volume of /24s | [19:05] |
| JC_Denton | the old ISP i used to work for would routinely sell /24s without asking
to their credit, they were really, really prompt with canning abuse | [19:06] |
| mercutio | i kind of wish i got a /24 early | [19:06] |
| JC_Denton | but you'd get old school folks who sat on their /24s
or did silly stuff | [19:06] |
| mercutio | or like a /22 | [19:06] |
| JC_Denton | we had a guy who had a /24 routed to his DSL line and he gave like 10-20 of his machines public addresses
these were Windows XP machines, no less | [19:06] |
| mercutio | eek
actually that was really common years ago because dialup etc would give people direct connection and the first adsl, cable modems and so on just gave a single computer a direction connection. s/direction/direct/ | [19:07] |
| BryceBot | <mercutio> and the first adsl, cable modems and so on just gave a single computer a direct connection. | [19:08] |
| mercutio | on cable networks there was also often broadcast enabled
and you could sniff other computers on your lan lots of people ran web servers etc on their cable connections too | [19:08] |
| JC_Denton | after he got dcom'd, he asked for a custom firewall, which the company was all too happy to provide (lots of money from custom stuff and consulting) | [19:08] |
| mercutio | so you could do a port scan on the cable network and find lots of web servers
ahh | [19:08] |
| JC_Denton | heh, i run a small web server on my cable connection, but it's pretty much for my use | [19:09] |
| mercutio | yeah it was popular originally
then it wasn't, and now it is a bit i just scp stuff personally | [19:09] |
| JC_Denton | the problem is if you get popular, you get hammered a bit
and your upload tanks | [19:10] |
| mercutio | yeah
well i have cloudflare in front of mine, and still my own server | [19:10] |
| JC_Denton | i'm not rich enough to multi-home my home connection
but i've known folks that have done it | [19:10] |
| mercutio | i'm half multi-homed | [19:10] |
| JC_Denton | usually cable + dsl, with the dsl being a backup
or it being the "server" half of the connection | [19:10] |
| mercutio | ie the same addresses on two dsl connections
but i'm default routing out and have to manually change default route to change connections and because they're both dsl, they can both go down at once like both of them got cut a few months bakc because people weren't sensible when digging | [19:11] |
| JC_Denton | yeah, that manual change stuff is meh
i've got comcast and my v4 address rarely changes, but my v6 subnet will sometimes change for no apparent reason | [19:12] |
| mercutio | i don't mind manual change at all for home | [19:13] |
| JC_Denton | so i've got to finangle some configs around
mostly routing + my vpn server | [19:13] |
| mercutio | i could automate it
and they terminate in two places at least for home use i figure there's no reason to need things to instantly keep working as long as you can fix it in a timely fashion and i have backup route over the other connection for getting in from remote | [19:13] |
| JC_Denton | ^^ | [19:14] |
| mercutio | @weather auckland | [19:18] |
| BryceBot | Auckland, New Zealand: Partly Cloudy ☁ 73°F (22°C), Humidity: 64%, Wind: From the ENE at 3.0 MPH Gusting to 8.0 MPH -- For more details including the forecast and almanac, see http://www.wunderground.com/cgi-bin/findweather/getForecast?query=-36.943710,174.771622 or re-request this with: @weather -v auckland | [19:18] |
| mrsaint | note to self. Do not reboot boxes when drunk :) | [19:30] |
| JC_Denton | "best" mistake i've seen someone do like that | [19:34] |
| BryceBot | That's what she said!! | [19:34] |
| mrsaint | I have 14 servers around the globe with quagga. I have ONE refusing to reuse saved config for quagga its the arp server.. It sucks.. better fix it some day | [19:35] |
| JC_Denton | clusterssh session with two netapps
one in the process of being decom'd and the other taking its place vol destroy. on both filers. | [19:36] |
| mrsaint | at that time its good to know the backups are tested and working. | [19:36] |
| mercutio | eek
this is why i like undo functionality 14 servers around the globe with quagga is brave 4 servers with quagga is brave good chance 1 of them has issues :) you know you want to start the migration to bird :) but on a serious note, i found with quagga if you use the central config file it's more reliable than using bgp, ospf etc configs. i used to have random problems with quagga/zebra crashing and so forth, and it'd leave all these routes in the routing table | [19:44] |
| mrsaint | haha they are rocksolid stable.. been running quagga for the last 15 years almost
but been using cisco also.. but went back to quagga. | [19:49] |
| mercutio | curious
how come you have stability did you ever try using ospf with quagga? | [19:50] |
| mrsaint | yeah.. but I dont need ospf on local nodes just exporting 1 /24 for anycast. | [19:50] |
| mercutio | oh
so you don't have route tables in there | [19:50] |
| mrsaint | and my core routers talk bgp between so no need
yeah 0/0 :) | [19:50] |
| mercutio | maybe that's why you have stability :) | [19:51] |
| mrsaint | yeah..
but I tell you.. ipv6 and quagga sucks very much I just HATE it | [19:51] |
| mercutio | going to openbgpd was so amazing | [19:51] |
| BryceBot | That's what she said!! | [19:51] |
| mercutio | and i had no-one to tell haha | [19:51] |
| mrsaint | yeah we do openbgp for our netnod and ix routers in general | [19:51] |
| mercutio | most people don't even know what bgp is | [19:51] |
| mrsaint | but I like quagga | [19:51] |
| mercutio | i like bird's performance
but i prefer openbgpd's config | [19:52] |
| mrsaint | I like cisco style..
easier.. | [19:53] |
| .... (idle for 17mn) | ||
| mercutio | think with just a /24 anything is easy | [20:10] |
| .... (idle for 15mn) | ||
| mrsaint | yeah but those are the anycast nodes.. my normal routers have plenty more networks :) and multiple 10g connections..
and traffic do flow very good when even over 5gig on one box :) | [20:25] |
| ........ (idle for 36mn) | ||
| *** | jbergstroem has quit IRC (Remote host closed the connection)
jbergstroem has joined #arpnetworks | [21:01] |
| ↑back Search ←Prev date Next date→ Show only urls | (Click on time to select a line by its url) |