Back to Home / #linode / 2015 / 01 / Prev Day | Next Day
#linode IRC Logs for 2015-01-13

---Logopened Tue Jan 13 00:00:25 2015
00:03-!-hfb_ [~hfb@] has quit [Quit: Leaving]
00:06-!-seanh-corona [] has quit [Quit: Leaving.]
00:06-!-learner [] has quit [Quit: Leaving]
00:10-!-Dedalo [] has joined #linode
00:25-!-NoXzema [] has quit [Remote host closed the connection]
00:25-!-Dedalo [] has quit [Remote host closed the connection]
00:25-!-NoXzema [] has joined #linode
00:25-!-Dedalo [] has joined #linode
00:26<synapt>I can't recall if I asked this in here yet or not, but I figure there are some tech-saavy cPanel users in here. Any of you manage to get PHP-FPM+Apache working without a ton of effort under cPanel? And/or also got SPDY with apache working under cPanel?
00:31-!-nick [~oftc-webi@] has joined #linode
00:32<nick>where to find sub-domain configuration?/
00:32<nick>please help me.
00:33-!-Dedalo [] has quit [Ping timeout: 480 seconds]
00:33-!-shortdudey123 [~textual@] has joined #linode
00:35-!-acald3ron [~acald3ron@] has joined #linode
00:36-!-priti [~oftc-webi@] has joined #linode
00:37<priti>where to find sub-domain configuration?
00:38-!-Kellin [] has quit [Ping timeout: 480 seconds]
00:43-!-seanh-corona [] has joined #linode
00:47-!-priti [~oftc-webi@] has quit [Remote host closed the connection]
00:47-!-nick [~oftc-webi@] has quit [Remote host closed the connection]
00:47-!-hfb [] has joined #linode
00:48-!-MJCS [] has joined #linode
00:51-!-seanh-corona [] has quit [Quit: Leaving.]
00:53-!-shortdudey123 [~textual@] has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]
01:07<zifnab>synapt: does 'tech-saavy' and 'cpanel' ever go together?
01:13-!-jgrant [] has quit [Remote host closed the connection]
01:14-!-anuvrat [~chatzilla@] has joined #linode
01:17-!-shingshang [] has joined #linode
01:30-!-acald3ron [~acald3ron@] has quit [Ping timeout: 480 seconds]
01:35-!-socoolby [~oftc-webi@] has joined #linode
01:38-!-zivester [] has quit [Ping timeout: 480 seconds]
01:43-!-mgorbach [] has quit [Ping timeout: 480 seconds]
01:43-!-Asandari- [] has joined #linode
01:45-!-Asandari [] has quit [Ping timeout: 480 seconds]
01:56-!-mgorbach [] has joined #linode
01:57-!-Asandari [] has joined #linode
02:00-!-Asandari- [] has quit [Ping timeout: 480 seconds]
02:01-!-PhoenixPerf [~oftc-webi@] has quit [Remote host closed the connection]
02:02-!-PhoenixPerf [~oftc-webi@] has joined #linode
02:07-!-_ez_ [] has joined #linode
02:07-!-_ez_ [] has quit []
02:08-!-_ez_ [] has joined #linode
02:10-!-Asandari- [] has joined #linode
02:13-!-Asandari [] has quit [Ping timeout: 480 seconds]
02:17-!-antix [] has quit [Ping timeout: 480 seconds]
02:19-!-Kellin [] has joined #linode
02:22-!-CompWizrd [] has quit [Ping timeout: 480 seconds]
02:28-!-Kellin [] has quit [Ping timeout: 480 seconds]
02:28-!-Asandari [] has joined #linode
02:31-!-Asandari- [] has quit [Ping timeout: 480 seconds]
02:39-!-raghu_ [~oftc-webi@] has joined #linode
02:40<raghu_>i have load balancer question - it supports 10000 concurrent connection for it to support 100000 concurrent connection do i have to add it 10 times?
02:40<Peng>You'd have to get 10 NodeBalancers, yes.
02:41<Peng>And use DNS so you can load balance your load balancers.
02:41-!-Asandari- [] has joined #linode
02:42-!-Trinity [] has joined #linode
02:43-!-_ez_ [] has quit [Quit: bbl]
02:43<Trinity>can someone please direct me towards the right phrases to ask? I downloaded an httpserver and it's supposed to be an API for ActiveTick. I ran the executable and I get basically default details. What am i doing wrong?
02:43<raghu_>in my account do i have option to add 10 times?
02:44-!-Asandari [] has quit [Ping timeout: 480 seconds]
02:45<Peng>raghu_: probably?
02:46<raghu_>thanks peng
02:46-!-raghu_ [~oftc-webi@] has quit [Quit: Page closed]
02:48-!-CompWizrd [] has joined #linode
02:55-!-Asandari [] has joined #linode
02:58-!-Asandari- [] has quit [Ping timeout: 480 seconds]
02:59-!-socoolby [~oftc-webi@] has quit [Remote host closed the connection]
03:11-!-Trinity [] has quit [Remote host closed the connection]
03:14-!-Turl [] has quit [Remote host closed the connection]
03:15-!-Turl [] has joined #linode
03:27-!-larsdesigns_ [] has joined #linode
03:29-!-larsdesigns [] has quit [Ping timeout: 480 seconds]
03:31-!-timbur [] has quit [Read error: Connection reset by peer]
03:32-!-timbur [] has joined #linode
03:45-!-larsdesigns_ [] has quit [Quit: Leaving]
03:50-!-Sputnik7 [] has quit [Quit: -=SysReset 2.53=-]
04:02-!-MaliutaLap [] has quit [Remote host closed the connection]
04:10-!-jimgroome [] has joined #linode
04:12-!-mrpoundsign [~oftc-webi@] has joined #linode
04:12-!-shortdudey123 [~textual@] has joined #linode
04:12<mrpoundsign>hello everyone :)
04:13<mrpoundsign>so running into a small issue -- I can't seem to get IPV6 to work on my ubuntu linodes. It's been a problem for quite a while but I haven't had a chance to look into it until now. They're set to DHCP, and I am not seeing anything in UFW logs about anything being blocked. The problem persists even if I disable ufw.
04:15<AlexC_>mrpoundsign: You don't use DHCP with IPv6
04:16<AlexC_>mrpoundsign: may help you
04:16<mrpoundsign>it seem to be trying to use it.
04:17<mrpoundsign>like with apt-get update, it's trying to use ipv6 addresses. It also seems to have the ipv6 address shown in the manager.
04:18<Peng>IPv6 is supposed to work automagically via autoconfiguration, similar to a lightweight magical DHCP.
04:18<mrpoundsign>$ ifconfig eth0 | grep 2600:3c01::f03c:91ff:fedb:3f5c inet6 addr: 2600:3c01::f03c:91ff:fedb:3f5c/64 Scope:Global
04:19<Peng>Pastebin `ip -6 a`, `ip -6 r`, `ip6tables-save` and...
04:19<Peng>`sysctl -a | egrep 'accept_ra|autoconf|forwarding|use_tempaddr'`
04:22<Peng>mrpoundsign: Okay, your system is configured to automatically bring up temporary privacy addresses. Linode's network doesn't let you use IPs that aren't yours, so everything dies.
04:22<Peng>mrpoundsign: Check /etc/sysctl.d/10-ipv6-privacy.conf
04:23<mrpoundsign>aah set them to 0 instead of 2?
04:25<mrpoundsign>Trying it now. I am hopeful. Thanks! :)
04:26<mrpoundsign>that was it, thanks so much!
04:30-!-Pupeno [~pupeno@2001:8b0:811:4387:b529:9e14:b665:67ae] has quit [Remote host closed the connection]
04:31-!-Pupeno [~pupeno@2001:8b0:811:4387:54a1:5d91:49c9:2828] has joined #linode
04:31-!-MaliutaLap [] has joined #linode
04:35<mrpoundsign>Peng, thanks so much. Have a great night, everyone!
04:35<mrpoundsign>and thank you Alex_C for trying to help as well!
04:35-!-mrpoundsign [~oftc-webi@] has quit [Quit: Page closed]
04:46-!-Pupeno [~pupeno@2001:8b0:811:4387:54a1:5d91:49c9:2828] has quit [Remote host closed the connection]
04:46-!-Pupeno [] has joined #linode
04:59-!-PhoenixPerf [~oftc-webi@] has quit [Remote host closed the connection]
05:11-!-shingshang [] has quit [Ping timeout: 480 seconds]
05:12-!-Asandari- [] has joined #linode
05:15-!-Asandari [] has quit [Ping timeout: 480 seconds]
05:26-!-Asandari [] has joined #linode
05:28-!-Asandari- [] has quit [Ping timeout: 480 seconds]
05:31-!-cnanakos_away is now known as cnanakos
05:39-!-Asandari- [] has joined #linode
05:41-!-RumpledElf [] has joined #linode
05:42-!-Asandari [] has quit [Ping timeout: 480 seconds]
05:49-!-niemeyer [~niemeyer@] has joined #linode
05:57-!-Asandari [] has joined #linode
05:59-!-Aneesh_ [~oftc-webi@] has joined #linode
06:00-!-Asandari- [] has quit [Ping timeout: 480 seconds]
06:00-!-Aneesh_ [~oftc-webi@] has quit []
06:09-!-shortdudey123 [~textual@] has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]
06:10-!-Asandari- [] has joined #linode
06:13-!-Asandari [] has quit [Ping timeout: 480 seconds]
06:22-!-sara [~oftc-webi@] has joined #linode
06:24-!-Asandari [] has joined #linode
06:27-!-Asandari- [] has quit [Ping timeout: 480 seconds]
06:36*sara slaps nb around a bit with a large fishbot
06:36<Peng>Please don't do that.
06:37-!-Asandari- [] has joined #linode
06:40-!-Asandari [] has quit [Ping timeout: 480 seconds]
06:41<Yaakov>Ugh. Zenoss and Logstash are my immediate future.
06:41<Yaakov>I... need more staff.
06:48<kuzetsa>I'm probably not a good sysadmin
06:49<kuzetsa>if this was still going on (2 weeks after the fact) I think something bad would've occured by now
06:49<kuzetsa> <<< did anyone else get DoS'd or otherwise large network spike for new years a few weeks ago?
06:50<kuzetsa>I only just noticed my email [quote] "Your Linode, yurizoku_tk, has exceeded the notification threshold (15) for inbound traffic rate by averaging 119.08 Mb/s for the last 2 hours." <<< Thu, 01 Jan 2015 06:15:26 -0800 (PST)
06:54<Peng>Do you have a vague memory of torrenting something big?
06:55<kuzetsa>Peng: I do not have any torrent-related packages on my linode
06:55<kuzetsa>never have
06:56<kuzetsa>maybe my boyfriend's little sister was up to something funny
06:57<kuzetsa>she has a shell account on my linode now to do ssh-type port forwarding and such because her college's wifi has bizzare filtering policies which block, of all the weird things, research tools like google scholar and various sites which are useful for college students
06:58-!-Thorn [~Thorn@] has quit [Quit: Textual IRC Client:]
06:58<kuzetsa>though I can't imagine what she could've possibly needed 120 Mb/s (average rate over 2 hours)
06:58<Peng>6 Mbps outbound at the time too.
06:59<kuzetsa>I sure hope it wasn't a weird-ass worm or something which fetches its payload via bittorrent or similar :(
07:00*Peng nods
07:00<kuzetsa>[repeat / quote] "did anyone else get DoS'd or otherwise large network spike for new years a few weeks ago?"
07:00-!-sara [~oftc-webi@] has quit [Remote host closed the connection]
07:01<Peng>I didn't, but that doesn't mean much.
07:01<kuzetsa>I'm inclined to think it was some joker trying to do either NTP or DNS reflection (or some other reflection) and just happened to try using my linode in their VERY IMPORTANT!!!! efforts to waste people's time and resources
07:01-!-hfb [] has quit [Ping timeout: 480 seconds]
07:02<kuzetsa>last audit I did there aren't any active reflection exploits in anything I have running, but I'll probably check more carefully before the end of Q1 2015
07:02<Peng>Well, you weren't doing so much in the way of *outbound* traffic.
07:02<AlexC_>I sat there pressing F5 ... sorry bro
07:03<kuzetsa>Peng: indeed. hence my wording "[...] TRYING to do [...] reflection"
07:05<kuzetsa>AlexC_: your joke had me giving the screen a funny look for a minute, 'cause I'm pretty sure a flood of http requests would've had more outbound than inbound.
07:06<Peng>Maybe AlexC_ was POSTing something
07:10-!-steveski [] has joined #linode
07:11-!-hfb [] has joined #linode
07:11-!-Cromulent [] has joined #linode
07:11-!-dmarr [] has quit [Remote host closed the connection]
07:11<Peng>A two-hour average of 100 Mbps likely means you really got a much larger amount of traffic briefly, no?
07:16-!-RumpledElf [] has quit [Quit: My Mac has gone to sleep. ZZZzzz…]
07:18-!-koodit [] has joined #linode
07:18<koodit>hi everyone :)
07:18<koodit>anyone from the help desk is online? :(
07:19<koodit>i have some questions about dns configurations
07:19<AlexC_>koodit: This is community support, not official, but ask away
07:19<koodit>yeah i know that but im not really good on dns configurations
07:20<Cromulent>koodit: I'm sure someone here will be able to help
07:21<AlexC_>The Linode chat page should really mention that this is community support, not official. A lot of folk recently come in expecting to be a "live sales person" type of support, or so it seems
07:21<koodit>i bought a domain on godaddy and what im trying to do is to point the domain to the webserver on my linode, i added a domain zone and the domain works good but since then the email service stopped, whats the right way to point the domain to the linode machine and keep my emails on godaddy?
07:22<koodit>I know that wrong informations could lead to problems obviously but i was looking more for a suggestion than a fix to a problem :)
07:22<AlexC_>koodit: Simply set the DNS A records to be the IPv4 address of your Linode
07:22<koodit>dont i have to change my dns to ecc?
07:22-!-kaare_ [] has quit [Ping timeout: 480 seconds]
07:22<AlexC_>koodit: No, you only need to do what if you want to use Linode DNS service. Which I would suggest you do, as it's a great service
07:23<koodit>ok, but then how wold i keep my emails working on godaddy?
07:23<AlexC_>koodit: Keep/configure the MX record so that point to GoDaddy
07:24<jimgroome>koodit: Sounds like you set the nameserves to Linode, which is what it tells you to do in the documentation
07:24<koodit>yeah exactly+
07:24<AlexC_>Your domain registrar, nameservers that you use, and server, are all separate. You could have your domain registered with GoDaddy, your nameservers with Company X and your server with Linode
07:24<AlexC_>koodit: What is your domain?
07:25<jimgroome>What I'd do: Log in to the Godaddy DNS panel and see if it's kept the (now overridden) MX records. Then log in to Linode's DNS manager and set the MX records to what they were on Godaddy
07:25<koodit>my domain is
07:25<AlexC_>jimgroome: He's not using Linode DNS
07:26<AlexC_>koodit: You have 2 options. Keep using the nameservers you're using, and edit the DNS records there. Or use ns[1-5] and use Linode DNS
07:26*jimgroome shuts up
07:28<koodit>this looks more clear now, so basically the options are [Godaddy Domain with A record to Linode IP] and [Godaddy domain with NS records to Linode Dns + Linode Dns Mx record to godaddy
07:29<AlexC_>Which ever solution you pick, the DNS records would be the same
07:32<koodit>ill try, thanks for your help guys, much appreciated
07:46-!-Issa [] has joined #linode
07:46<Issa>where is your data center?
07:46-!-EyePulp [~EyePulp@] has joined #linode
07:47<Cromulent>Issa: 3 in the US 1 in the UK and 1 in Japan
07:47<AlexC_>Issa: - 6 to choose from
07:48-!-EyePulp [~EyePulp@] has quit [Remote host closed the connection]
07:51-!-Dedalo [] has joined #linode
07:58-!-lionmac [~lionmac@] has joined #linode
08:00-!-fstd [] has quit [Remote host closed the connection]
08:00-!-fstd [] has joined #linode
08:03-!-Yaazkal [] has joined #linode
08:07<Issa>where is your data center?
08:07<Issa>I need to take vps do you have any discount?
08:08<Issa>Do you have one in Amsterdam?
08:08<Peng>No, but it is in London.
08:09<Peng>One of them is, anyway.
08:09-!-Cromulent [] has quit [Quit: KVIrc 4.2.0 Equilibrium]
08:09<Peng>Issa: AlexC_'s link above lists the locations.
08:10<Issa>is the money always $
08:10<Issa>do you have VAT on top or it's including?
08:11<Peng>No VAT.
08:11<Issa>how about the backup?
08:12<Issa>I want to use for small open source search engine
08:12-!-dmarr [] has joined #linode
08:12<Peng>What about it?
08:13<Issa>500 Mbit Network Out
08:13<Issa>what does this mean?
08:13<Issa>most of the cloud are 1GB
08:14<Issa>why your's is 500MB?
08:14-!-soraver [] has quit [Quit: WeeChat 1.0.1]
08:14<Peng>Linode runs a better network than most of them.
08:15<Peng>So Linode offers real quotas instead of saying "We put you on an overloaded 1 gigabit network".
08:15<Issa>so it that means you are fair on bandwidth
08:16<Issa>are your competitors but I need more ssd space
08:18<Issa>what is the uptime ?
08:18<Issa>can I use for a web hosting
08:18<Peng>very good
08:18<Issa>how about the backup?
08:18<Peng>What about it?
08:19<Issa>is there a daily backup that I can recover in case of disaster
08:19<Peng>Yes, but it's a separate service that costs extra.
08:19<Issa>How much ?
08:20<Peng>It costs a quarter as much as your VPS does. So for the $40/month VPS, for example, the backup service is another $10/month.
08:20<Peng>I point out that you should also have off-site backups for disaster recovery anyway.
08:21-!-dmarr [] has quit [Ping timeout: 480 seconds]
08:21<Issa>how much that will cost ?
08:21<Peng>That's up to you.
08:21<Peng>I mean using an external, non-Linode backup service.
08:22<Peng>Well, you could *also* arrange some sort of backups in another Linode data center.
08:23-!-Issa [] has quit [Remote host closed the connection]
08:27-!-stevepiercy is now known as stevepiercy_away
08:28<buhman>heh, never realized DO's disk space doesn't increase geometrically with price.
08:28<Peng>Me neither. 20 GB for $5 is pretty nice though.
08:30<pronto>i've heard some pretty bad reliability issues with DO (...from NOT linode elitists/fanpeople)
08:32-!-bbankes [] has joined #linode
08:41-!-warewolf [] has quit [Remote host closed the connection]
08:42-!-ido_ [] has quit [Remote host closed the connection]
08:42-!-ido [] has joined #linode
08:44-!-Jordack [] has joined #linode
08:47-!-anomie22 [~Adium@] has joined #linode
08:47-!-anuvrat [~chatzilla@] has quit [Ping timeout: 480 seconds]
08:47<anomie22>Hey, I'm trying to set up zoho mail. I've changed the MX records, waited an hour but zoho still isn't recognising it? It's for the domain
08:56-!-Netsplit <-> quits: jpettit, DrMacinyasha, lahwran, Conjuro, Navi_, @marques, SirFunk, buhman, HalJordan, Peng, (+400 more, use /NETSPLIT to show all of them)
08:58-!-mrosabal [~chat@2600:3c03::f03c:91ff:fedb:9791] has quit [Quit: WeeChat 1.0.1]
09:00-!-bencaron [] has joined #linode
09:00-!-mrosabal [~chat@2600:3c03::f03c:91ff:fedb:9791] has joined #linode
09:00-!-warewolf [] has joined #linode
09:00-!-sphenoid [] has joined #linode
09:00-!-ezraw [] has joined #linode
09:00-!-Netsplit over, joins: arlen, technoid_, Rudy, blindsight, fstd, monokrome, RiverRat, NiTe, anomie22, Jordack (+32 more)
09:00-!-ServerMode/#linode [+oo mrosabal msanderl] by
09:00-!-Netsplit over, joins: Kamilion, ivan`, yano, SelfishMan, Paul_, JamesTKirk, KindOne, squircle, Yoda, nb (+356 more)
09:00-!-wrf [] has quit [Max SendQ exceeded]
09:00-!-mode/#linode [+v ekrout] by ChanServ
09:00-!-mode/#linode [+v mmustac] by ChanServ
09:01-!-wrf [] has joined #linode
09:01-!-anomie [] has joined #linode
09:06-!-Centrixx is now known as PrincessPeneleSpade
09:08-!-learner [] has joined #linode
09:09-!-Yaazkal [] has quit []
09:10-!-toastedpenguin [] has joined #linode
09:10-!-Alan [~alan@] has joined #linode
09:10-!-EyePulp [~EyePulp@] has joined #linode
09:11-!-koodit [] has quit [Remote host closed the connection]
09:14-!-toastedpenguin [] has left #linode []
09:17-!-anomie22 [~Adium@] has quit [Quit: Leaving.]
09:17-!-tanja84dk [] has joined #linode
09:19-!-anomie22 [] has joined #linode
09:23-!-sphenoid [] has quit [Quit: sphenoid]
09:25-!-bencaron [] has quit [Remote host closed the connection]
09:28-!-zivester [] has joined #linode
09:30-!-The-spiki [] has quit [Remote host closed the connection]
09:30-!-The-spiki [] has joined #linode
09:31-!-bbankes [] has quit [Ping timeout: 480 seconds]
09:31-!-donspaulding [] has joined #linode
09:32-!-cnanakos is now known as cnanakos_away
09:44-!-abishek [~Abishek@] has joined #linode
09:47-!-abishek [~Abishek@] has quit []
09:50-!-abishek [~Abishek@] has joined #linode
09:52-!-tanja84dk [] has quit [Quit: Leaving]
09:54-!-Alex [] has joined #linode
09:54-!-acald3ron [~acald3ron@] has joined #linode
09:57-!-Alex [] has quit []
09:59-!-toastedpenguin [] has joined #linode
10:00-!-toastedpenguin [] has left #linode []
10:19-!-zivester [] has quit [Ping timeout: 480 seconds]
10:25-!-hfb [] has quit [Quit: Leaving]
10:27-!-seanh-corona [] has joined #linode
10:28-!-antix [] has joined #linode
10:45-!-bbankes [] has joined #linode
10:45<KamiNuvini>Has anyone here used a custom kernel with pv-grub? I used this: but also needed the kernel headers so I added make kernel_headers as well and rebooted, however kernel headers are stil not found. Is there anything else required?
10:45<KamiNuvini>I need it for r1soft/idera
10:49<buhman>the issue could be anything from the kernel headers not existing to the running kernel version not matching the kernel headers, to the build system looking in the wrong place
10:49<buhman>without more context and/or output that demonstrates your exact issue, one could only guess.
10:57-!-seanh-corona [] has quit [Quit: Leaving.]
11:01-!-RoLaren [~RoLaren@] has joined #linode
11:14-!-hfb [~hfb@] has joined #linode
11:30-!-Yoda [Yoda@2607:5300:60:1ba8::3] has quit [Quit: YourBNC - (]
11:30-!-Roeland [] has joined #linode
11:31<Roeland>heya! is there a way to download one of my linode backups?
11:32<hawk>Afaik you need to restore it somewhere first, then you can download it from there.
11:32-!-anuvrat [~chatzilla@] has joined #linode
11:32<Roeland>theres no way to pull it from the web gui?
11:33-!-Thorn [~Thorn@] has joined #linode
11:33<Roeland>when you say restore it first.. how would i download the actual backup?
11:35-!-RoLaren [~RoLaren@] has quit [Ping timeout: 480 seconds]
11:35<Peng>After restoring it to a node, download it however you like.
11:36<Peng>Booting up rescue mode and using dd or rsync are simple options.
11:38<synapt>zifnab: I assume I'm hardly the only one in a system administration position where cpanel usage is enforced in case I'm ever gone and they want to keep it simple for future people who may not be as good :P
11:41<@rohara>synapt: I haven't gotten PHP-FPM working properly on a cPanel system. I recommend against it. EasyApache won't play well with it.
11:43<synapt>rohara: Ner
11:43<synapt>I like how I'm supposed to implement more performant things to this box but I'm limited by the one thing we have to keep, lol
11:46-!-RoLaren [~RoLaren@] has joined #linode
11:49<@rohara>Use a different server and change the DNS...they'll never notice!
11:57-!-learner [] has quit [Remote host closed the connection]
12:05-!-shortdudey123 [] has joined #linode
12:06<trippeh_>ahh. consumer protection laws: a "assissin for hire" was just fined by a court for not doing a murder he got paid to do. eg committing fraud.
12:07<buhman>trippeh_: link
12:07<trippeh_> ;)
12:10-!-zackiv31 [] has quit [Quit: Leaving]
12:10<synapt>That actually sounds like a great career choice
12:10<synapt>he got 60k to do the kill, and only had to pay a 10k fine for not doing it?
12:11<synapt>50k in the pocket while the original dude gets 2 years
12:11<synapt>shit I'm about to move there and start doing that
12:12<@rohara>I bet his reaction will be awesome when the contractor gets out of prison in two years.
12:12<synapt>dude will probably be gone after screwing a few more people out of 60k :P
12:12<synapt>off to some nice island country
12:13<Nivex>doubt he can pull that off twice. his name will be pretty well known
12:14<synapt>I imagine 50k can get you a different name :P
12:18-!-f00b44 [] has joined #linode
12:22<zifnab>synapt: my assumption is that they'd hire someone equally competent if you ever leave
12:22-!-stevepiercy_away is now known as stevepiercy
12:22<zifnab>and if not, fuck em
12:24<+linbot>New news from forum: Traffic between nodes in Linux Networking <>
12:24-!-seanh-corona [] has joined #linode
12:25-!-seanh-corona1 [] has joined #linode
12:32-!-seanh-corona [] has quit [Ping timeout: 480 seconds]
12:34<+linbot>New news from forum: Traffic between nodes in Linux Networking <>
12:49-!-Bass10 [] has joined #linode
12:54<+linbot>New news from forum: Email Issues After Moving Domain to New Linode in Email/SMTP Related Forum <>
12:55<zifnab>akerl: any idea why ctrl+aaa won't work on xen 4.4?
12:57<akerl>What tty are you on?
12:57-!-Roeland [] has quit [Quit: Page closed]
12:59<akerl>Interesting. and you do ctrl-a ctrl-a ctrl-a and nothing happens?
12:59<@rohara>zifnab: is it accepting input at all?
12:59<zifnab>rohara: yeah, i'm working on shit in tty1
13:00<akerl>idk if there's a config that says "only do this on certain ttys"
13:02<zifnab>i can't even find any documentation talking about that feature
13:02<zifnab>what's it called?
13:02<akerl>Heh, one sec
13:03<zifnab>rohara: thanks
13:04<akerl> also, conswitch
13:05-!-kaare_ [] has joined #linode
13:06<Yaakov>I hate computers and everything about them.
13:07<MotoHoss>so the ipv6 addy in the remote access tab do I just add that address verbatim to the eth0 interface with the ip command... (and to make it permanent put it in the interfaces file)?? using the linode docs -
13:09<zifnab>akerl: its definitely enabled, 'xl dmesg' shows 'Type ctrl-a three times to switch input to xen'
13:10<akerl>I feel like the secret is the serial input bit, then
13:11<zifnab>yeah i guess, wonder if i can fake a serial device
13:12<akerl>Could just loop it?
13:12<zifnab>i'm demoing something on an thinkcenter, lack of any real ports
13:12<akerl>attach to /dev/ttySO?
13:12<akerl>screen should know how
13:14<zifnab>cool, now to just actually set it up to use that serial
13:16<MotoHoss>one confusing thing I have is one of my nodes ahs nothing ipv6 related in the interfaces file and the one I am attempting to configure... the ip acommand says there is no 'global' scope v6 address. :(
13:17<akerl>These are two Linodes?
13:17<synapt>I know this might be an odd question to ask #linode but, anyone have any remote-desktop software suggestions that are entirely local-based (ie; not teamviewer like), and can be multi-platform? :P
13:17<MotoHoss>two linodes.
13:17<akerl>So one of them has working IPv6 but nothing about v6 in the network config files, yes?
13:17<MotoHoss>nothing n the interfaces file that I can see....
13:18<akerl>Ignore that one for now. On the one that isn't working, run `iptables6-save`, `ip -6 addr`, `ip -6 route`, and `sysctl -a | grep ipv6` and pastebin them
13:18<zifnab>akerl: i can get to it through xl: 'xl debug-keys' followed by 'xl dmesg'
13:18<zifnab>this works for now, thanks
13:18<akerl>Yea, that works too
13:18<akerl>Warning: some of those keys have *lots* of output
13:18<akerl>like spam for days output
13:19<zifnab>i'm not sure *why* i wanted this
13:21-!-dmarr [] has joined #linode
13:21-!-aforster [~aforster@2600:3c03::f03c:91ff:fe73:602a] has quit [Quit: Bye]
13:22<zifnab>mostly 'knowledge isn't useless and it will rpobably be handy some day'
13:23-!-aforster [~aforster@2600:3c03::f03c:91ff:fe73:602a] has joined #linode
13:23-!-mode/#linode [+o aforster] by ChanServ
13:24-!-nthint [~oftc-webi@] has joined #linode
13:25<nthint>Hello, is it appropriate to ask a couple questions about migrating from shared hosting to Linode here?
13:25<+linbot>hello - certainly
13:28<nthint>I am using a Symfony app on a shared hosting and I am connecting to it from a couple Windows VPS computers through simple GET requests to get some data from the DB. On average there are 1-2 requests sent per second each pulling one string of data from the DB. I started getting problems with shared hosting when I had a bug in my SF app that was creating cache files non stop. On shared hosting they automatically blocked the IP addresses that I was accessing f
13:28<nthint>I would like to ask what happens on a Linode, if I take the lowest spec?
13:29<nthint>I want to make sure that if such an issue happens I can work on it without having my account blocked
13:29<nthint>am I sharing resources with other users on Linode, hence there is a chance I will use more than I am allowed?
13:29-!-dmarr [] has quit [Ping timeout: 480 seconds]
13:30<MotoHoss>akerl :
13:30-!-stevepiercy is now known as stevepiercy_away
13:30<zifnab>your node has a cap, the 1g is limtied to 1 cpu/1gb ram
13:30<zifnab>you *can't* go over that
13:31<akerl>MotoHoss: net.ipv6.conf.all.forwarding = 1
13:31-!-shortdudey123 [] has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]
13:31<nthint>ok, that was my concern, since it took me a week with their support to get the account running again
13:31<MotoHoss>oky, thanks akerl
13:32<nthint>if I have 3 websites, 2 WP blogs and 1 SF app, what happens if I have such an issue in my SF app? The other 2 websites will be affected?
13:32<akerl>MotoHoss: When you turn that on, it stops your system from accepting Router Advertisements, which are how StateLess Address AutoConfig works
13:32<nthint>is it possible to limit resources for this SF app while I am debugging it?
13:32-!-jstewart [~jstewart@2600:3c00::f03c:91ff:fe73:3705] has quit [Quit: That's not gone well.]
13:33<akerl>nthint: You get a Linux system and root access. You're welcome to configure your sites however you want
13:33-!-stevepiercy_away is now known as stevepiercy
13:33<MotoHoss>I may have done that way back when... the client that node (the bad one) didn't want ipv6 and now they are gone... I had forgotten about it.
13:34<zifnab>yay legacy undocumented fixes
13:34<nthint>thank you, akerl. Is the lowest Linode comparable to the resources you get on an average shared hosting?
13:34<MotoHoss>zifnab, you mean we are supposed to take notes?
13:34<akerl>nthint: That's apples and oranges
13:35*MotoHoss ducks.
13:35<zifnab>MotoHoss: i'm guilty too, haha
13:35<zifnab>i'm still confused how my xen box is breaking RFCs
13:35<zifnab>, still a major 'wut'
13:36<zifnab>erm, that ones fine
13:36-!-learner [] has joined #linode
13:36<zifnab>here we go
13:36<zifnab>seriously spent about an hour yesterday trying to replicate whatever network shit they have upstream, none of our cisco gear would accept it as valid
13:37<akerl>You're bringing up a /32?
13:37<nthint>well, I am not concerned about less disk space and I can have unlimited websites on Linode. I am also not concerned with traffic. Do you think 1 CPU and 1 gb ram is sufficient to run 2 WP sites with ~1000 visitors a month and that SF app that pulling data from DB a couple times a second non stop (very little data is being pulled)?
13:37<zifnab>akerl: it works! and thats straight from OVH's documentation
13:37<akerl>nthint: potato
13:38<nthint>akerl: which means..? should work fine? :D
13:38<zifnab>nthint: the real answer would be 'test it, if it doesn't work resize, test it again'
13:38<akerl>nthint: Benchmark it and find out. What you can do on a VPS has *way* more to do with what you are capable of (and willing to learn)
13:38<zifnab>ab is great if your api is just GET
13:39<akerl>That said, if your API is just GET... fix your API :P
13:39<zifnab>what i think these guys did: ip route interface-id on cisco
13:39<nthint>lol, that's in the plans :D I need to pull that data now and I do not have a server-client app working yet. But that is another reason to have my own server
13:39<zifnab>but, our stuff drops the packets
13:40-!-Cromulent [] has joined #linode
13:42<zifnab>xen is so much nicer than fighting hyper-v
13:42<nthint>thanks a lot akerl, zifnab. I am going to get the lowest spec today and move just my SF app there, see how it works. If everything is fine will move my 2 blogs as well and start learning :)
13:42<zifnab>nthint: awesome, if you need help this channel is here
13:42<zifnab>most of us are helpful, just don't click Eugene's links
13:43<nthint>yes, I try not to click any links in IRC :D
13:43-!-jstewart [] has joined #linode
13:43-!-shortdudey123 [~textual@] has joined #linode
13:44-!-fergtm [] has quit [Remote host closed the connection]
13:44<nthint>ok, thanks again and have a great day everyone, I will start working on it right now.
13:45-!-nthint [~oftc-webi@] has quit [Quit: Page closed]
13:45-!-jstewart [] has quit []
13:46-!-jstewart [] has joined #linode
13:46-!-acald3ron [~acald3ron@] has quit [Quit: Leaving]
13:47-!-jstewart [] has quit []
13:48-!-seanh-corona [] has joined #linode
13:49<zifnab>i feel like i have to warn them
13:51-!-jstewart [] has joined #linode
13:52-!-seanh-corona1 [] has quit [Ping timeout: 480 seconds]
13:53-!-jstewart [] has quit []
13:53-!-jstewart [~jstewart@2600:3c00::f03c:91ff:fe73:3705] has joined #linode
13:53-!-_ez_ [] has joined #linode
13:58-!-laser` [] has joined #linode
13:59-!-ezraw [] has left #linode [QUIT :Leaving.]
13:59-!-stevepiercy is now known as stevepiercy_away
14:03-!-stevepiercy_away is now known as stevepiercy
14:04<MotoHoss>very nice akerl, thank ye.
14:05<MotoHoss>didn't even have to reboot..
14:06<zifnab>dat xl
14:06<zifnab>or however they're doing it
14:06-!-lionmac [~lionmac@] has quit [Remote host closed the connection]
14:06<akerl>doing what?
14:06<zifnab>in place IP changes
14:06<akerl>? nah, he just stopped dropping RAs and suddently got his v6 addr via SLAAC
14:08<akerl>Does openvpn do v6?
14:09<buhman>better v6 support landed in 2.4, where they abolish the udp vs udp6 nonsense.
14:09<akerl>one of these days I might as well add magicvpn so containers don't have to think about what VM they're on
14:14<zifnab>we all know ipv6 is dead: long live ncp!
14:15<zifnab>you can send, you can recieve, but you can't do both
14:16<MotoHoss>akerl, oh yeah.. might as well rib ya while'st I can... "iptables6-save" doesn't work "ip6tables-save" does ;)
14:18<f00b44>who deals with pending accounts?
14:18<akerl>This is the user community
14:18<f00b44>support tickets only?
14:18<f00b44>No. This is Sparta!
14:18*alexf kicks akerl into a bottomless pit
14:19<MotoHoss>elastic support can be found here, it stretches from time to time....
14:20<zifnab>and, like elastic search, its not guaranteed to ever work how you want it to!
14:21-!-niemeyer [~niemeyer@] has quit [Ping timeout: 480 seconds]
14:22<MotoHoss>no warranty expressed nor implied... except to say that one should not get on linbot's bad side.
14:22-!-stevepiercy is now known as stevepiercy_away
14:25-!-anomie22 [] has quit [Quit: Leaving.]
14:25-!-_ez__ [] has joined #linode
14:25-!-_ez__ [] has quit []
14:29-!-anomie22 [] has joined #linode
14:31-!-niemeyer [~niemeyer@] has joined #linode
14:39-!-ctpdump [~tcpdump@2602:ffda:da:2:216:3eff:feae:d69c] has joined #linode
14:40-!-Sputnik7 [] has joined #linode
14:51-!-rodrigo_Aiello [~oftc-webi@] has joined #linode
14:54-!-_ez_ [] has quit [Quit: home!]
14:57-!-Sophira [] has joined #linode
15:00-!-rodrigo_Aiello [~oftc-webi@] has quit [Quit: Page closed]
15:03-!-Pupeno [] has quit [Remote host closed the connection]
15:04-!-Pupeno [] has joined #linode
15:04-!-shingshang [] has joined #linode
15:07-!-larsdesigns [] has joined #linode
15:10-!-Pupeno [] has quit [Remote host closed the connection]
15:10-!-anomie22 [] has quit [Read error: Connection reset by peer]
15:11-!-Pupeno [~pupeno@2001:8b0:811:4387:54a1:5d91:49c9:2828] has joined #linode
15:15-!-okoca [~oftc-webi@] has joined #linode
15:17-!-lionmac [~lionmac@] has joined #linode
15:17-!-PlasmaDuck [~PlasmaDuc@] has joined #linode
15:18<okoca>Your email address appears invalid
15:18<okoca>linode Create a free account refusing my mail address :))
15:19<okoca>refusing yahoo mail address exacly my mean.
15:20<arlen>my email address is valid
15:20<arlen>try a different one
15:21<PlasmaDuck>A VPS hosting question, if your host restricts the total number of MySQL databases you can have is that truly VPS hosting? (this particular web app can't be transferred to linode as its requires window server :-( )
15:21-!-abishek [~Abishek@] has quit [Read error: Connection reset by peer]
15:22<Cromulent>PlasmaDuck: I'd expect full admin access if I had a VPS server so they wouldn't be able to restrict you
15:22<Cromulent>PlasmaDuck: plus restricting the number of MySQL databases on VPS hosting is retarded
15:22<psandin>you can have a VPS without root, technically... but why would anyone want that
15:22<okoca>plasmaduck whay u see exacly db limit?
15:23<PlasmaDuck>That was what I though, though my knowledge is limited in this area.
15:23<PlasmaDuck>The host limits to 10 MySQL databases
15:23<atrus>PlasmaDuck: vps... but not really IaaS maybe.
15:24*okoca slaps PlasmaDuck around a bit with a large fishbot
15:24*Nivex slaps okoca around a bit with the O'Reilly Sendmail (bat) book
15:25<dwfreed>> sendmail
15:25-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
15:25<Nivex>Pages: 1312
15:26<Cromulent>even OpenBSD has moved away from sendmail
15:27-!-RumpledElf [] has joined #linode
15:28<dzho>what do they like, exim?
15:28<Eugene>two cups and a string
15:30*MotoHoss always blames sendmail
15:30<okoca>can buy 1000 vps account for 1hour, with 0.015 * 1000account = 15$
15:30<okoca>its possible ?
15:30<Cromulent>dzho: OpenSMTPD
15:30-!-Jverk [~oftc-webi@] has joined #linode
15:31<Jverk>Hello! I noticed you offer 20 cores, but are they 20 core physical or with hyperthreading?
15:31-!-_ez_ [] has joined #linode
15:32-!-steveski [] has quit [Remote host closed the connection]
15:32<dwfreed>Jverk: for any purpose, that's irrelevant
15:33<dwfreed>you see 20 cores; as far as your Linode is concerned, those are real cores
15:33<Jverk>20 physical cores means 40 with hyperthreading
15:33<dwfreed>you don't get hyperthreading inside your Linode
15:33<dwfreed>you see 20 cores
15:35<synapt>I believe as far as linode allocates cores, hyperthreaded cores are allocated like normal cores
15:35<synapt>so those 20 cores you get may technically be HT cores
15:35<okoca>dwfreed what is the one core speed mhz ghz ?
15:35<dwfreed>okoca: 7
15:35<Jverk>then can I get 40 cores?
15:36<okoca>1core is 7ghz ur mean ?
15:36<gparent>dwfreed ur mean
15:36<synapt>7GHz cores
15:36<dwfreed>okoca: the point is that the speed is irrelevant
15:36<synapt>god damn linode is onsome cutting edge hardware
15:37<dwfreed>synapt: it's liquid helium cooled
15:37<okoca>so what the 1core compute power? exual to with cpu?
15:38<dwfreed>that's not something that is fixed
15:38<dwfreed>it depends on your workload
15:39<okoca>another account workloads affecting my cores ?
15:39<dwfreed>they can, but that is unlikely
15:39<dwfreed>the host only has so much CPU power, and that is shared by all Linodes on the host
15:40<okoca>can i buy 1000 vps account for 1hour, with 0.015 * 1000account = 15$
15:41<okoca>linode can supply this count account?
15:41<dwfreed>you can try; whether or not Linode has that much available capacity I do not know
15:42<synapt>okoca: There have to actually be 1000 available for one thing
15:42<synapt>personally I admit curiousity at what you need 1000 for
15:43<okoca>can i use it for multi thread clustering application.
15:45<dwfreed>you can use your Linode(s) for whatever legal purpose you want
15:45<dwfreed>you should read the ToS:
15:46-!-Yoda [] has joined #linode
15:48-!-xjgrant [] has joined #linode
15:48<xjgrant>Is there not a way to change my username, on Linode?
15:49<okoca>for example, country coury get terorist computer and encrypted files, so require to access document cracking to hash, so cracking to hash with linode accunts, not vil be any tos violation.
15:49-!-nthint [~oftc-webi@] has joined #linode
15:49-!-msanderl [] has quit [Quit: WeeChat 1.0.1]
15:49<okoca>i want to be understand what is total capacity linode service.
15:50-!-zoid_ [~zz@] has quit [Quit: Konversation terminated!]
15:50<dwfreed>xjgrant: yes, go to the account tab, users & permissions, and edit yourself
15:50<okoca>for this point, google cloud can more good alternation.
15:50-!-acald3ron [~acald3ron@] has joined #linode
15:51<nthint>hello, I would like to connect to my linode without a domain name, just by the IP address. How do I change where default IP points? Right now it just shows "Index of /"
15:51<xjgrant>dwfreed: Ah, ty!
15:51-!-RoLaren [~RoLaren@] has quit [Quit: Leaving]
15:55<akerl>nthint: In your web server config
16:22-!-steveski [] has joined #linode
16:22-!-msanderl [] has joined #linode
16:22-!-mode/#linode [+o msanderl] by ChanServ
16:32<+linbot>New news from linodelibrary: LAMP Server on CentOS 7 <>
16:32<sirpengi>rip freenode
16:34<Ikaros>lol they're just rehubbing it
16:41-!-PlasmaDuck [~PlasmaDuc@] has quit [Quit: Leaving...]
16:47<+linbot>New news from forum: How to generate and install an SSL certificate on Linode? in General Discussion <>
16:48-!-steveski1 [] has joined #linode
16:49-!-Bass10 [] has quit [Quit: Leaving]
16:50-!-RumpledElf [] has quit [Quit: My Mac has gone to sleep. ZZZzzz…]
16:50-!-SubOracle [] has quit [Quit: Godbye!]
16:51-!-SubOracle [] has joined #linode
16:51-!-technoid_ [~Technoid@] has quit [Remote host closed the connection]
16:51-!-technoid_ [~Technoid@] has joined #linode
16:52-!-steveski [] has quit [Ping timeout: 480 seconds]
16:54-!-lionmac [~lionmac@] has joined #linode
16:56-!-dmarr [] has joined #linode
17:00-!-steveski1 [] has quit [Quit: Leaving.]
17:00-!-steveski [] has joined #linode
17:02-!-anomie [] has quit [Quit: Leaving]
17:02-!-Jverk [~oftc-webi@] has quit [Quit: Page closed]
17:02-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
17:04-!-dmarr [] has quit [Ping timeout: 480 seconds]
17:09<+linbot>New news from forum: Email Issues After Moving Domain to New Linode in Email/SMTP Related Forum <>
17:15-!-steveski [] has quit [Remote host closed the connection]
17:21-!-acald3ron [~acald3ron@] has quit [Ping timeout: 480 seconds]
17:24-!-Jordack [] has quit []
17:28-!-Kellin [] has joined #linode
17:29-!-anuvrat [~chatzilla@] has quit [Ping timeout: 480 seconds]
17:29<zifnab>seeing as i already ask all my linux questions here (whether or not they're related to ilnode)
17:29<zifnab>lets say by some magic i have a disk thats connected to two machines, and i want to make it HA
17:30<zifnab>i've gotten that far
17:30<buhman>go on
17:30<zifnab>for part two: icsci mounts from said disk
17:30<zifnab>in a HA fashion, so I can reboot either node and it remains up
17:30<zifnab>or NFS, or smb, or anything really
17:30<zifnab>i can do the failover ip with pacemaker
17:31<buhman>nfs + ip failover would be ok
17:31-!-lionmac [~lionmac@] has joined #linode
17:32<zifnab>doesn't nfs have some sort of state though?
17:32<zifnab>'this client is connected on this port and has access to this', won't that die when the IP does its failover magic
17:32<buhman>yeah probably, and clients will probably hiccup
17:32<buhman>they should recover though
17:32<zifnab>if you're doing something like VMs though, that hiccup would turn into a kernel panic
17:33<buhman>ehh not really
17:33-!-xjgrant [] has quit [Remote host closed the connection]
17:33<buhman>are the VM's doing root-on-NFS?
17:34<zifnab>(btw i'm not doing any of this atm outside of storage, i'm just curious)
17:34-!-fstd [] has quit [Remote host closed the connection]
17:34<zifnab>lets say the VM is a disk image on an nfs share
17:34<buhman>and the nfs share is mounted on some 'vm execution' box, right?
17:34<zifnab>long story short: i've been doing lots with hyper-v recently
17:34<zifnab>and its staying hyper-v (sadly)
17:34<zifnab>but i'm curious how you'd get the same thing set up in linux
17:34-!-fstd [] has joined #linode
17:35<zifnab>we have 2 boxes on fiber channel doing storage (server 2012 r2 storage server, failover cluster + smb3.0 scale out file server), then 42 nodes connected to those via infiniband
17:35-!-bbankes [] has quit [Read error: Connection reset by peer]
17:35<zifnab>it seems like windows/vmware have kinda 'won' this market, but i feel like it could easily be done with xen (with the right tools)
17:35<zifnab>or kvm, or $INSERT_VM_SOFTWARE_HERE
17:37<buhman>there's really no way around ip failover without the client doing something special.
17:37<buhman>the vm execution box should be able to recover, and the guests would just have a blip of iowait.
17:37-!-cps_ [] has joined #linode
17:38-!-cps [] has quit [Read error: Connection reset by peer]
17:38-!-cps_ is now known as cps
17:38<zifnab>its a weird market that seems to be owned by microsoft: licensing sucks ass
17:39<zifnab>you go with vmware, there's a 990/socket fee. you go with microsoft, no per-socket-fees, but you get hit with CALs
17:39-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
17:41<buhman>zifnab: you could also try gluster
17:41<dwfreed>zifnab: or use the vmware keygen, and not pay a dime :D
17:42<buhman>I've never tried making the server not-replicate, but you should be able to make it work.
17:42<buhman>the gluster client can poll multiple servers and do the RightThing.
17:42-!-anuvrat [~chatzilla@] has joined #linode
17:42<zifnab>buhman: but then you're stuck to using linux exclusively, unless there's a windows glusterclient
17:43<zifnab>not really "stuck"
17:43<@rohara>*Obligatory WINE reference*
17:43<buhman>zifnab: glusterfsd can also export nfs mounts.
17:43<zifnab>and it looks like cifs via samba
17:43<buhman>mount.cifs is a little crusty though
17:44<buhman>whereas native windows does the right thing (using smb3 by default), samba and mount.cifs don't.
17:46<zifnab>buhman: so there is the option somewhere to treat cluster as a shared-block-device-fs instead of a replicated-clustered-fs?
17:46<buhman>probably; rtfm ;p
17:46<zifnab>i am
17:47-!-MaliutaLap [] has quit [Remote host closed the connection]
17:47<buhman>if I were doing this, I'd probably nuke GFS2 and split up the iscsi.
17:48-!-lionmac [~lionmac@] has joined #linode
17:48<buhman>on the other hand, your storage hardware can probably replicate faster than the network can.
17:48<zifnab>haha, 20gbit fiberchannel
17:49<zifnab>buhman: it actually mounts the same block device to both storage servers
17:49<zifnab>so its a shared block device, instead of doing some weird replication thingy
17:49<zifnab>replication is done via raid, which is crazy fast
17:49<buhman>I mean the physical disks
17:49<buhman>yes, that == faster than gluster probably.
17:50<zifnab>the issue is finding a filesystem that can deal with shared block devices
17:50<buhman>you said you had gfs2 going
17:50<zifnab>and then doing some sort of front end failover
17:50<zifnab>in my test stuff i'm working on it now
17:50<zifnab>i have it installed at least
17:51<buhman>oh; you're going to have a lot of fun then ;p
17:51-!-userme [~oftc-webi@] has joined #linode
17:51<zifnab>mostly i'm in a 'i have no work to get done, lets fuck around' mode
17:52-!-sphenoid [] has joined #linode
17:56-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
17:57-!-sphenoid [] has quit []
17:57-!-userme [~oftc-webi@] has quit [Remote host closed the connection]
17:57-!-okoca [~oftc-webi@] has quit [Quit: Page closed]
18:03-!-lionmac [~lionmac@] has joined #linode
18:05-!-laser` [] has quit [Remote host closed the connection]
18:05-!-VsioZaebis [] has joined #linode
18:07-!-learner [] has quit [Quit: Leaving]
18:07-!-_ez_ [] has quit [Quit: zzzz]
18:10-!-timbur [] has quit [Ping timeout: 480 seconds]
18:11-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
18:19-!-lionmac [~lionmac@] has joined #linode
18:27-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
18:29<+linbot>New news from forum: How to generate and install an SSL certificate on Linode? in General Discussion <>
18:30<MajObviousman>buy some randomness
18:30<James_T>use havege
18:33<MajObviousman>what's a term for all the "extra" mail provider things that are expected for those running mail servers?
18:33<MajObviousman>like SPF records, TXT records, etc etc
18:33<Cromulent>MajObviousman: you mean SPF, DKIM and DMARC?
18:33<MajObviousman>yeah. If you had to label the equivalence class of all those things, what would it be?
18:33-!-glamb [] has quit [Remote host closed the connection]
18:33-!-wizonesolutions [] has quit [Remote host closed the connection]
18:33-!-Techman [] has quit [Remote host closed the connection]
18:33-!-homagetohomer_ [] has quit [Remote host closed the connection]
18:33-!-lionmac [~lionmac@] has joined #linode
18:34<Cromulent>MajObviousman: email authentication - i.e making sure email from a domain is authentic
18:34<James_T>SPF and DKIM don't do much without DMARC
18:34<Cromulent>I have my DMARC record locking down everything hard
18:35<James_T>i use dmarcian
18:36-!-VsioZaebis [] has quit [Read error: Connection reset by peer]
18:36<Cromulent>no need to pay just use this: "v=DMARC1; p=reject; sp=reject; pct=100; adkim=s; aspf=s; fo=1;;"
18:37<MajObviousman>thanks folks
18:39<James_T>Cromulent: I don't pay
18:39<James_T>Cromulent: I'm using the dmarcian free plan
18:39<Cromulent>oh right
18:40<Cromulent>I just use Google Apps for Business and read the xml my self every now and again
18:40<James_T>Most people stay on it, unless they're running a business that actually has email volume
18:40-!-trvz [] has quit [Remote host closed the connection]
18:40-!-hellschreiber [] has quit [Remote host closed the connection]
18:40-!-petris [] has quit [Remote host closed the connection]
18:40<James_T>yeah, you can also just forward the xml's into dmarcian to make them human readable :)
18:40<Cromulent>so far I've never had a DMARC forensic report sent to me though
18:40<Cromulent>only the standard report
18:40<James_T>google doesn't do forensic reports
18:41<James_T>some providers do tho
18:41<James_T>I do <3 dmarc tho
18:41-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
18:42<Cromulent>yeah I have it set so that only emails sent via my google apps account or Amazon SES are accepted - also I've noticed that if you pass all tests for SPF, DKIM and DMARC your email is less likely to be marked as spam
18:42<Cromulent>certainly haven't had any spam issues so far
18:45<zifnab>buhman: ocfs2 + pacemaker/corosync/resource-agents/heartbeat, failover icsci is working
18:45<zifnab>there's a 5s io lock on failover
18:46-!-fergtm [] has joined #linode
18:46-!-acald3ron [~acald3ron@] has joined #linode
18:46<buhman>where's your network'ed fs?
18:46<zifnab>as stated, ocfs2
18:46<zifnab>you create a cluster with it
18:47<buhman>that's a local filesystem though, right?
18:47<zifnab>local to both nodes, same fs
18:47<buhman>23:46:24 buhman where's your network'ed fs?
18:47<zifnab>erm, 'i could add nfs or something if i care'
18:47<buhman>wasn't that the whole point of what we were talking about earlier?
18:48<zifnab>all i needed was a filesystem that acts like windows cvfs
18:48<zifnab>iscsi works just as well
18:48<buhman>well then
18:48-!-lionmac [~lionmac@] has joined #linode
18:53-!-EyePulp [~EyePulp@] has quit [Remote host closed the connection]
18:54-!-bbankes [] has joined #linode
18:56-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
18:57-!-spiki [] has joined #linode
18:59-!-The-spiki [] has quit [Ping timeout: 480 seconds]
19:03-!-lionmac [~lionmac@] has joined #linode
19:06-!-Dedalo [] has quit [Remote host closed the connection]
19:07-!-hellschreiber [] has joined #linode
19:11-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
19:11-!-trvz [] has joined #linode
19:16-!-lionmac [~lionmac@] has joined #linode
19:17-!-petris [] has joined #linode
19:19*drussell stretches
19:20-!-Techman [] has joined #linode
19:21*rsdehart calls for the rack to be tightened
19:22<@drussell>Am I caged now?
19:23-!-Kellin [] has quit [Ping timeout: 480 seconds]
19:23<@drussell>dwfreed: Ah right, seems unpleasant.
19:23<rsdehart>I'd imagine it is
19:24<@drussell>It's weird that my IRSSI actually hilighted "torture" though, because of the %2 around it.
19:24<rsdehart>uh huh
19:24<nthint>I have LAMP Stack with PHP on my linode but when I try to run php command in in ssh it says "command not found". Php is working fine though (pages work correctly) How do I register php command globally?
19:24<rsdehart>I bet that's why
19:24<@drussell>rsdehart: Lol. I mean like, not hilighted but made green
19:24-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
19:25<trippeh_>nthint: debian/ubuntu? apt-get install php5-cli
19:25<zifnab>do non pygrub boots support custom kernel modules?
19:25<nthint>ubuntu - is it ok that PHP already installed, or php5-cli will only install command line tool?
19:25<zifnab>its been so long i can't remember
19:26<James_T>zifnab: yes
19:26<trippeh_>nthint: as long as its installed from the official ubuntu repos, it should be safe
19:26<James_T>zifnab: err, use pvgrub
19:26<James_T>pygrub sucks
19:26<@drussell>James_T: pvgrub isn't much better >_>
19:26<trippeh_>nthint: if you have some self compiled php or something, mixing with apt-get could end badly
19:26<James_T>drussell: at least it's grub2.0
19:27<James_T>in current xen
19:27<@drussell>Fair enough.
19:27<nthint>trippeh_: I installed LAMP stack using StackScripts in Linode Manager
19:27<nthint>together with MySQL, Apache and Ubuntu
19:28-!-homagetohomer_ [] has joined #linode
19:29<zifnab>James_T: pygrub is too?
19:29<nthint>trippeh_, thanks, works perfect after I ran that command
19:29<trippeh_>nthint: from what I can see, it seems the stack script uses the proper repos, so apt-get install php5-cli should be safe
19:29<zifnab>James_T:, supports 1, 2, lilo, and extlinux
19:30<James_T>zifnab: but pygrub needs grub inside the domU, pvgrub is a xen kernel that lives outside
19:30<James_T>which is what linode does
19:30-!-lionmac [~lionmac@] has joined #linode
19:30<zifnab>i'll look at it
19:30<nthint>argh, I need at least 5.3.3 to run Symfony! What command do I run to update php?
19:30<James_T>need a recent grub to build the grub-xen shim tho
19:31-!-glamb [] has joined #linode
19:31<James_T>(but only really need that on the dom0... i guess)
19:31<nthint>by default it installed 5.3.2
19:32<zifnab>dependso n the os
19:32<zifnab>depends on the os*
19:32<@drussell>Isn't 5.3 EOL?
19:32-!-Kellin [] has joined #linode
19:32<@drussell>Pretty sure you should use 5.4
19:32<zifnab>does php ever EOL anything?
19:32<@drussell>zifnab: It does.
19:32<nthint>yeah, you are right
19:32<@drussell> <
19:32<trippeh_>ah. the linode lamp stack script is limited to ubuntu 12.04 as the newest supported, which uses php 5.3
19:33<nthint>so do I have to re-install or is it possible to update?
19:33<trippeh_>linode: plz add 14.04 to it ;)
19:33-!-steveski [] has joined #linode
19:34-!-kaare_ [] has quit [Ping timeout: 480 seconds]
19:34<trippeh_>nthint: you could do a ubuntu distro upgrade to ubuntu 14.04 LTS. but the apache parts can be a bit painful for 12.04 -> 14.04
19:35<nthint>I think this will work fine?
19:35<MajObviousman>anyone here have Verizon FiOS and have done "things" to move the default router out of the way?
19:35-!-wizonesolutions [] has joined #linode
19:36<MajObviousman>which option did you select and why?
19:36<trippeh_>nthint: I'd be careful with 3rd party repos (ppa's) - things like security support and later distro upgradeability can suffer.
19:37<nthint>is there official repo with PHP 5.4 or 5.5?
19:37<trippeh_>nthint: going to ubuntu 14.04 LTS is better long term. it ships with PHP 5.5.x
19:37<MajObviousman>PHP deliberately doesn't maintain its own repos
19:37<MajObviousman>it wants the distros to do that chore
19:38<MajObviousman>it only provides source
19:38<trippeh_>and win32 binaries :>
19:38-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
19:39-!-stevepiercy_away is now known as stevepiercy
19:39<nthint>trippeh_: thank you for the advice. I am not ready yet to upgrade linux, since it is my first day working with any VPS and I need to learn the basics before going there. I will rebuild this linode later in any case
19:40<trippeh_>drussell: update stack script for 14.04 plz :)
19:41<trippeh_>Compatible with: Ubuntu 10.04 LTS, Ubuntu 12.04 LTS, Debian 7 32bit, Ubuntu 10.04 LTS 32bit
19:43-!-lionmac [~lionmac@] has joined #linode
19:43<Ikaros>06:36:22 PM <MajObviousman> which option did you select and why? <-- Option 6, I've always used ethernet lines on my LAN and I wanted it for WAN too. That and I don't trust the Actiontec crap they gave me to be a primary. I would trust any other router over that garbage to be my primary.
19:43<dwfreed>trippeh_: 14.04 is apache 2.4, isn't it?
19:43<MajObviousman>yeah, I'm of the same opinion
19:44<trippeh_>dwfreed: yup. Candidate: 2.4.7-1ubuntu4.1
19:44<MajObviousman>you still get guide data et al?
19:44<MajObviousman>6 and 7 look pretty similar, with 7 being a superset functionality of 6
19:44<dwfreed>trippeh_: then it's going to have to be a whole new stackscript, or a lot of work will need to be done to the convenience library
19:44<arlen>when I had fios you still needed the actiontec
19:44<Ikaros>Yes, because the Actiontec is still utilizing MoCA for local data.
19:45<Ikaros>The only thing not supported in that setup is what is specified on that page - the CPE interface
19:45<Ikaros>Which I really don't give a damn about
19:46<trippeh_>dwfreed: a fun project! :)
19:46<Ikaros>Because screw Verizon. Enough said
19:46<MajObviousman>I'm not even sure what that is
19:46<MajObviousman>but I probably won't care for it
19:46<Ikaros>MajObviousman: It's a remote CPE access interface for Verizon techs to remotely do things with their router at your premises
19:46<trippeh_>MajObviousman/Ikaros: I'm glad my ftth provider lets me plug the fiber into my own switch with my own optics :)
19:46<MajObviousman>oh fuck that, absoultely no fuck ing way
19:47<MajObviousman>yeah, nope no CPE
19:47<MajObviousman>Customer Premesis E-something
19:47*MajObviousman will also likely be going for option 6 then
19:47<Ikaros>Customer Premises Equipment
19:47<trippeh_>a $15 SFP module and boom, WAN link
19:48<MajObviousman>I would kinda like that
19:48<MajObviousman>except I'm getting more than just internet from it
19:48<Ikaros>Thing you have to bear in mind though, is this - you will need to put Verizon's router back as primary if you ever need support from them.
19:48<trippeh_>we got the tv signals on a different fiber
19:48*MajObviousman had to do that every time he called TWC
19:48<trippeh_>one fiber for data, another for tv
19:48<MajObviousman>trippeh_: I'm a fan of that
19:49<Ikaros>But Option 6 is what I'm using now, and guide, VOD, all that STB jazz works fine
19:49<MajObviousman>is it local coop fiber?
19:49<MajObviousman>Ikaros: thank you very much for explaining
19:49<MajObviousman>you saved me some time :)
19:49<trippeh_>MajObviousman: sorta - housing coop put down the fiber and rents out out to a layer1-2 broker
19:49<acald3ron>linode configure its nt working. some perl package i need.
19:50<trippeh_>MajObviousman: so its also open access.
19:50<Ikaros>If your WAN is currently set to coax though you'll need to call Verizon's FSC first and have them switch it to ethernet, you'll need to verify with them that you've done the setup for that yourself.
19:50<zifnab>i sucessfully have vrrp and iscsi running between two nodes with a shared disk
19:50*MajObviousman was out looking at the ONT today
19:50<MajObviousman>while I was discovering that I had a different power grid provider than my current address
19:50<MajObviousman>and therefore couldn't just change addresses at my current company
19:50<Ikaros>It was easy for me to do because my ONT is indoors (I'm in an apartment)
19:51<MajObviousman>the cat5 is run right up to it, just clipped at the end instead of plugged in
19:51<MajObviousman>it'll be <5 min to get it ready to go
19:51-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
19:51<Ikaros>There's a hub mounted on the side of the building I'm in, the ONT gets its link through that.
19:51<acald3ron>linode cli any help:
19:51<MajObviousman>so if you really wanted to piss neighbors off, take an axe to that box
19:52<MajObviousman>I think somebody has broken into my former apartment and set up a grow op in there
19:52<Ikaros>I'd piss off about 8 different families.
19:52<Kellin>my FiOS ONT is in my neighbor's basement
19:52<MajObviousman>the power usage suddenly leapt to about $25 a day last week
19:52*Kellin was displeased with that, but there was no way to run it into his apartment with how stuff is wired.
19:52<Ikaros>No, 16
19:52-!-shortdudey123 [~textual@] has quit [Quit: My MacBook Pro has gone to sleep. ZZZzzz…]
19:52<@drussell>acald3ron: Might be worth opening a support ticket on that one.
19:53<MajObviousman>it's been vacant for over a month
19:53<acald3ron>MajObviousman, ok thanks !
19:53<Ikaros>Counting the number of wifi networks in range and the SSID naming schemes, more than 90% of this damn complex has FiOS running
19:53<MajObviousman>acald3ron: I don't recall giving you any advice
19:53<dwfreed>MajObviousman: why didn't you have the power turned off, then?
19:54<MajObviousman>because I was playing fast and loose
19:54<Ikaros>The rest I can probably assume are Time Warner crap.
19:54<MajObviousman>vacant, smoke damaged, clearly uninhabitable
19:54<MajObviousman>I figured that surely nobody would go in there
19:54<MajObviousman>and since the power co was going to charge me $150 to terminate my contract early ... I figured I'd just let it ride for a month and then do change-of-address
19:54<MajObviousman>but that's backfired on e
19:54<dwfreed>> contract
19:54<dwfreed>what is this?
19:55<Ikaros>I remember when the FiOS tech was in here checking the coaxial...he pulled out the existing plug and said "Heh. Time Warner garbage."
19:55<MajObviousman>well, when a mommy power company hates her child user very very much ...
19:55<MajObviousman>she makes him sign a contract to get power at a not-ridiculously-overpriced rate so that he'll keep getting power from her for a year
19:55<Kellin>my FiOS techs have all been pretty bad - they don't listen to what I want and just wire it anywhere they want / anyway they want =/
19:55<Ikaros>Pulled that plug off, installed a new one with new outlet faceplate and everything.
19:55<MajObviousman>one of the less savory aspects of Texas-style power deregulation
19:56-!-lionmac [~lionmac@] has joined #linode
19:56<Ikaros>Yeah, Kellin, the guy I dealt with was thorough and always checked with me when there was the option of doing something different, e.g where I wanted to place things.
19:57<MajObviousman>it's ok though, at the new house, I'm locked in to buying power from a local coop that I'm absolutely positively certain will NOT mistreat me
19:57<Ikaros>Not to mention he was early.
19:57<MajObviousman>yay local monopolies
19:57<MajObviousman>some day soon, I'm going to move the fuck out into the country side, buy some land, and build my own frickin power plant
19:58<Ikaros>But yeah. Only thing missing with them that I have yet to see here...native IPv6
19:58<Ikaros>Another driving reason I wanted to put my router up as primary.
19:58<MajObviousman>FiOS doesn't do native IPv6?
19:58<trippeh_>hm. I use about $2/day for power.
19:58<MajObviousman>trippeh_: do you hang dry your clothes?
19:59<MajObviousman>run a dryer for an hour, see how much power you spend
19:59<Ikaros>MajObviousman: They were supposed to be working on that since, oh, 2012 or so.
19:59<trippeh_>MajObviousman: no. power is just cheap over here.
19:59<MajObviousman>or dry your hair with a blow drier
19:59<MajObviousman>must be nice
19:59-!-seanh-corona [] has quit [Ping timeout: 480 seconds]
19:59<Ikaros>I can't speak for other FiOS markets obviously but I know I haven't seen it on the Dallas market yet
19:59<Peng>trippeh_: wtf, do you live in a coal mine?
20:00-!-fstd [] has quit [Remote host closed the connection]
20:00<Ikaros>I'm actually using IPv6 now, but a tunnel, if you checked my current address you'd see that probably.
20:00<trippeh_>in our neighbour country - denmark - power sometimes have negative price ;)
20:00-!-fstd [] has joined #linode
20:01<MajObviousman>so it is
20:01<trippeh_>not quite that cheap here, though.
20:01<trippeh_>we got lots of hydro
20:02*MajObviousman is also Dallas area, NE ish
20:03<MajObviousman>hopefully I have a similar experience in techs that you did
20:03<MajObviousman>it gets installed on Monday, along with all my shit being delivered
20:03<MajObviousman>it's going to be a busy day I think
20:03<MajObviousman>errr, stuff. Getting my stuff delivered.
20:03*MajObviousman coughs quietly
20:04<Ikaros>Well I've not had a negative experience with them here thus far. I will say that much.
20:04-!-shortdudey123 [] has joined #linode
20:04-!-stevepiercy is now known as stevepiercy_away
20:04-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
20:05<MajObviousman>what quadrant of Dallas, if I may ask?
20:05<Ikaros>And I'm tech-inclined so one huge pet peeve of mine is being talked to like I'm some sort of newbie in that regard.
20:05<Ikaros>They actually came to my level.
20:05<MajObviousman>that's quite nice
20:05<MajObviousman>a great change from TWC
20:05<MajObviousman>after 20 calls to their tech support line in 4 months, they just started connecting me straight to the L3 guy
20:06<MajObviousman>who magically got things more or less fixed
20:06<Kellin>yeah - I had that relationship with the vendor in Norman when I lived in OK
20:07<Ikaros>07:05:07 PM <MajObviousman> what quadrant of Dallas, if I may ask? <-- Roughly western/northwestern quadrant (Irving)
20:07<Tea>So I have an SSL cert for - how come it's flagging as invalid when being used as the IMAP server? Can one SSL not be used for both IMAP and HTTP? Because I also have it validating my webmail
20:07<MajObviousman>ahh yes
20:07<MajObviousman>good connectivity over there
20:07<Ikaros>Tell that to my cell phone.
20:07<MajObviousman>fiber heaven!
20:07<MajObviousman>you can't throw a rock without hitting a data center
20:07*MajObviousman lays it on thick
20:08<Ikaros>Being near the airport kinda has a downside. So having the connectivity that I do makes my phone happy when it's connected with my wifi. Sad when on cell data.
20:08<Tea>oh wait - i had it wrong. forgot to restart dovecot
20:09<Ikaros>Don't matter if I have 3G or even LTE connectivity, the throughput is crap because I'm likely bouncing off a tower that's god knows how many miles away.
20:09-!-lionmac [~lionmac@] has joined #linode
20:11<James_T>Ikaros: my town has... two towers
20:11<James_T>both are over capacity
20:11<rsdehart>and that huge glowing eye causes major interference
20:12*James_T curses Sauron
20:12<Peng>and those marching armies of orcs have no respect for shallow buried cables
20:13-!-luckst0rr [] has joined #linode
20:14<Ikaros>But yeah, all in all phone <3's my FiOS connection.
20:14<rsdehart>I"m looking forward to FiOS
20:14<rsdehart>gotta move to the bottom of the freakin world to get it
20:15<rsdehart>actually if my info is right, I'll be living a block over from the extent of the fiber, so once again I'll be SOL
20:15-!-The-spiki [] has joined #linode
20:15<Ikaros>Which another thing I'd like to point out - the wireless N on the Actiontec is a joke. My router has simultaneous dual-band N and, soon as I get my tax refund (I'll be among the first after the 20th, I just filed today), I'm going 802.11ac
20:16-!-luckst0r [] has quit [Ping timeout: 480 seconds]
20:16<devilspgd>You could have saved some typing... Just drop "the wireless N on " and you're good.
20:17<MajObviousman>Ikaros: have you selected your AC hardware of choice?
20:17-!-shortdudey123 [] has quit [Ping timeout: 480 seconds]
20:17<Ikaros>Not just yet.
20:17*dwfreed suggests the Asus RT-AC68U
20:17<akerl>dwfreed: heh
20:17-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
20:17<akerl>I was just going to suggest ASUS for their solid security
20:17<dwfreed>akerl: I finally put tomato on mine; needed VLANs
20:18<James_T>rsdehart: no, you'll get some airfibre and get fios that way
20:18<James_T>Does any AC hardware work with openwrt
20:18<rsdehart>James_T: I plan to figure something out
20:18<dwfreed>there's some draft AC hardware that does
20:18<MajObviousman>with modern wifi, I'm starting to get comfortable with NOT putting my fileserver on a wire
20:18<James_T>ah ok
20:19<James_T>>modern wifi
20:19<James_T>>not using wires
20:19<devilspgd>Modern wifi is next generation. Always next generation, never today.
20:19<James_T>What speed does AC do
20:19<James_T>through a faraday cage
20:21<trippeh_>James_T: 4-500 typical in good conditions AFAIK
20:21<trippeh_>Mbps TCP throughput
20:21-!-learner [] has joined #linode
20:21-!-istvan [] has joined #linode
20:22<James_T>is that real-world or theoretical
20:22-!-istvan [] has quit []
20:22-!-lionmac [~lionmac@] has joined #linode
20:22-!-spiki [] has quit [Ping timeout: 480 seconds]
20:22<trippeh_>the wikipedia is theoretical, 4-500 is more realistic
20:22<trippeh_>my phone does 200Mbps with one antenna on
20:23<Ikaros>Well hence the word "Theoretical"
20:23<trippeh_>most laptops is 2 to 3 antennas
20:23<MajObviousman>James_T: the choice used to be 1 gig ethernet or 108 Mbit draft N, where you only ever got about 55-60
20:24<MajObviousman>that ain't enough if you're slinging around huge files to and from a file server
20:24<James_T>get some 10gig ethernet
20:24<MajObviousman>I think my house is wired for cat5, but I'll be dropping some cat6 into places
20:25<Peng>I have some Cat 6, and, like, 100 Mbps Ethernet. :|
20:25-!-PhoenixPerf [~oftc-webi@] has joined #linode
20:25<MajObviousman>Peng: that's because ipv6 doesn't do well on cat5 :)
20:26-!-sphenoid [] has joined #linode
20:26<MajObviousman>all those extra address bits get lost
20:27<devilspgd>You need at least 6 cats for IPv6. Obviously.
20:27<Peng>I only have one cat, but she's kind of fat.
20:28-!-f00b44 [] has quit [Remote host closed the connection]
20:30<James_T>MajObviousman: yeah, you can do 10gig over decent cat6 no problems
20:30<James_T>(make sure it's actually copper, and not cooper clad aluminium)
20:30*James_T fell for that
20:30-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
20:31*MajObviousman is reading up on how ISO/IEC connects are supposedly supplanting EIA/TIA connects
20:31<MajObviousman>but so far I haven't seen any up close
20:32-!-steveski [] has quit [Remote host closed the connection]
20:32-!-zivester [] has joined #linode
20:32<James_T>what? confuse
20:33<MajObviousman>yeah I am too
20:34<MajObviousman>so far I'm not seeing a listed difference, but it's probably buried in the standard somewhere
20:35-!-lionmac [~lionmac@] has joined #linode
20:35<MajObviousman>so, looks like you can run 10g just fine across typical cat 6 or 6A
20:35<James_T>need cat6 to do it
20:36<MajObviousman>but if you want to push it to 40 or 100, you'll need this new connector standard or whatever, and you've got limited lengths, 40m and 15m respectively
20:36<James_T>gets a reasonable range too afaik
20:36<MajObviousman>instead of 100m
20:36-!-nthint [~oftc-webi@] has quit [Quit: Page closed]
20:36<James_T>mmm yup
20:36<MajObviousman>and I expect the newish 400g is fiber only
20:36<James_T>10gig switches aren't too expensive either
20:36<MotoHoss>so how fast do ssd's write?
20:36<James_T>faster than a gigabit ethernet connection can handle
20:37*MajObviousman was aiming towards an ubqt edgerouter
20:37<James_T>afaik you can do 10gig on cat5e... but...
20:37<zifnab>James_T: cat6 required
20:37<dwfreed>depending on the controller, you're often more limited by the bus it's running across
20:37<MajObviousman>I think you'd be getting issues with cat5e
20:37<James_T>zifnab: lol
20:37<MotoHoss>MajObviousman, they are nice.
20:37<James_T>MajObviousman: yeah
20:37<dwfreed>you can use quality cat5e for 10gig
20:37<zifnab>and a line speed 10gbit switch is going to be a shit ton
20:37<MajObviousman>define quality :)
20:37<MajObviousman>crossbar switch, here I come!
20:37<zifnab>sure, you can get one that has 10gbit throughput in total for cheap
20:37<James_T>dwfreed: so, solid core copper?
20:38<MajObviousman>define cheap
20:38<MajObviousman>e.g. can you link a product?
20:38<buhman>MajObviousman: like $10
20:38<zifnab>but good luck not spending 5-10k on a 10gbit copper switch that does throughput
20:38<dwfreed>it basically has to handle the frequencies of cat6a and cat7
20:38<zifnab>MajObviousman: the only one i have is from some weird chinese website, no idea what model o ranything
20:38<MajObviousman>right, so wiring for cat 6A is not a bad idea, but wait on the rest
20:38<buhman>10gbit switch fabric is like a 48-port 100Mbit/s switch
20:38<MajObviousman>give it a few years to catch up
20:39<zifnab>buhman: 4500x ftw
20:39<zifnab>but its fiber or their weird sfp copper
20:39<MajObviousman>not exactly consumer grade
20:39<zifnab>tbh i'd just pick up a cheap 10gbit fiber switch
20:39<buhman>ancient 'enterprise' grade == consumer grade
20:40<MajObviousman>I was exploring wiring certain rooms with fiber
20:40<MajObviousman>but then you've got radius issues and it's so much more finicky
20:40<MajObviousman>still too early for that also
20:40-!-donspaulding [] has quit [Quit: donspaulding]
20:40<James_T>You can buy a TP-Link
20:40<James_T> for <$2000
20:40<James_T>derp, where'd that newlines come from
20:40<zifnab>routerboard used to have a 24x 10gbit sfp switch for ~1100
20:40<zifnab>not sure where it went
20:40<MajObviousman>point is, when I run the cat6A, I'll also run a spare piece of rope and secure it at either end so I can then come back later much easier
20:41<buhman>I bet James_T has a pair of 42U switches in his basement
20:41<MajObviousman>and if/when a new cabling standard comes along which I need to hop to, I'll be ready
20:41<zifnab>buhman: i have a nexus at work, they make way too much noise fo rmy house
20:41<James_T>MajObviousman: :D
20:41<zifnab>cisco n7010, they're fucking loud
20:41<zifnab>too many fans
20:41*MajObviousman reiterates the desire for CONSUMER or PROSUMER grade gear
20:41<James_T>But yeah, copper 10gig for <$1300 is a thing
20:41<MajObviousman>a very new thing?
20:42<James_T>not new, really
20:42<MajObviousman>ebay: a trusted seller of ultra high end networking equipment since 1998
20:42<James_T>been a standard for ages but people just didn't use it
20:42<James_T>totally trusted
20:42<James_T>;) ;) ;)
20:43<MajObviousman>I imagine the ASICs in these run pretty hot to keep up
20:43-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
20:43-!-anuvrat [~chatzilla@] has quit [Ping timeout: 480 seconds]
20:43<James_T>hence the fans
20:43<MajObviousman>you said you had one
20:43<MajObviousman>or somebody did?
20:44<MajObviousman>whoever owns a 10g copper speak up and tell us how loud it is
20:44<MajObviousman>inquiring minds want to know!
20:44<James_T>Put it in your garage?
20:44<James_T>and look! also has two SFP+ ports
20:44<MajObviousman>sawdust complications
20:45<MajObviousman>mini cleanroom in the garage perhaps?
20:45-!-niemeyer [~niemeyer@] has quit [Ping timeout: 480 seconds]
20:45<MajObviousman>I kinda sorta want to buy a house in the country and pay to have LR fiber trenched to the home
20:45<MajObviousman>a nice 500/500 and then split it out to neighbors
20:46<MajObviousman>I figure the trenching would be 15-20k
20:46<MajObviousman>depending on how far
20:46<MajObviousman>where I'm thinking is only 10-15 miles "off grid"
20:46<MajObviousman>and solid ground, not many faults or swamps or anything
20:47<Kellin>at least not until you go digging up all the ground!
20:48<MajObviousman>that's what I pay somebody else for
20:48-!-lionmac [~lionmac@] has joined #linode
20:48<MajObviousman>so when their dumb ass hits a water main, they get to file the insurance claim not me
20:48<ctpdump>I can't seem to find out if I need to tinker with SOA-EDIT (in powerdns) if I use a bind-backend. Anyone?
20:48<ctpdump>and non-powerdns slaves (eg: linode)
20:49<buhman>ctpdump: what are you actually trying to do?
20:49<ctpdump>ah, that would help, yes. DNSSEC
20:50<buhman>if pdns is your master, it's like two commands to make it do the RightThing™
20:50<rsdehart>obey your master
20:50<ctpdump>pdns is the master, linode is slave
20:50<buhman>and all you want to do is start auto-signing all the things in some zone?
20:52<buhman>you can't just do pdnssec secure-zone $foozone ?
20:53<ctpdump>I can but based on the documentation:
20:53<ctpdump>Warning: If you have DNSSEC-signed zones and non-PowerDNS slaves, please check your SOA-EDIT settings.
20:53-!-jincai [~oftc-webi@] has joined #linode
20:53<ctpdump>under master operation
20:53-!-anuvrat [~chatzilla@] has joined #linode
20:54<buhman>I can't see how the defaults could possibly cause anything to go wrong
20:54<buhman>ctpdump: did you try it?
20:54-!-jincai [~oftc-webi@] has quit []
20:55<ctpdump>not yet. apparently if you don't set the SOA-EDIT correctly, zones will not update after a while
20:55<zifnab>test it out - you don't *have* to point yoru domain at it
20:55<MajObviousman>rsdehart: chop your breakfast on a mirror
20:55<ctpdump>zifnab: how could I test it non-live?
20:55<zifnab>ctpdump: set your dns server to
20:55<zifnab>it won't do recursive
20:55<zifnab>but you should be able to test it
20:56<zifnab>or 'dig domain'
20:56<rsdehart>MajObviousman: tbh I don't actually know the lyrics haha
20:56<ctpdump>wouldn't I need to put the DS records at my registrar first?
20:56-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
20:56<zifnab>you can skip that step entirely and it won't b elive
20:56<MajObviousman>demmit now I want to listen to that song
20:56<buhman>ctpdump: you can skip DS until you're ready.
20:56<zifnab>dig in ns; dig in ns
20:56<ctpdump>dig -4 +dnssec -t soa shows the RRSIG records
20:56<ctpdump>so it looks to be fine
20:57<ctpdump>but there are some warnings on using non-powerdns slaves and the need of SOA-EDIT
20:57<MajObviousman>rsdehart: haha, awesome youtube comment: "Lars is the only drummer in the world that plays drums better without a drum kit."
20:58<buhman>ctpdump: what's your current serial?
20:58<ctpdump>manually set in the bind-like zone file
20:59<rsdehart>MajObviousman: I personally think he belongs alone in a soundproof box
20:59<MajObviousman>with no mics inside?
20:59<MajObviousman>while another drummer plays along side him
20:59<MajObviousman>and is mic'd
20:59<MajObviousman>maybe stick a camera and a little A/C unit in there so he still feels like he's a part of things
20:59<buhman>ctpdump: 02 == not-INCEPTION
20:59<buhman>ctpdump: which means you're good
20:59<ctpdump>not sure what you mean?
21:00<ctpdump>hang on, that's a serial number I incremented manually in the zone file
21:00<ctpdump>it was 01 when I started the day (as it should)
21:00<ctpdump>but I'm using a bind backend, not mysql
21:01<zifnab>i like the windows method: start at 1, increment by 1 for every change
21:01<buhman>I have no idea what you're doing
21:01<zifnab>less chance of a fuckup
21:01-!-lionmac [~lionmac@] has joined #linode
21:01<buhman>zifnab: unless the slaves are already >1 ;p
21:01<zifnab>good point!
21:01-!-dmarr [] has joined #linode
21:01<zifnab>you could nuke the slaves and start over (i think?)
21:02<buhman>too much work
21:02<ctpdump>one more thing, where the heck do I setup the SOA-EDIT?
21:02<buhman>ctpdump: in mysql there's a 'domainmetadata' table
21:02<buhman>you insert a row
21:02<ctpdump>that's the thing, I don't use mysql
21:02<ctpdump>this is why it all started
21:02<buhman>you've mentioned this ;p
21:02<ctpdump>I use bind-backend
21:03<ctpdump>hence the confusion ;)
21:03<buhman>not to derail your question, but why bind-backend?
21:03<buhman>seems like that's probably much less efficient than mysql?
21:04<zifnab>ha, efficiency of zone files
21:04<ctpdump>since the serial is "hard coded" in the zone file I don't think soa-edit might work..
21:04<ctpdump>for simplicity more than anything
21:04<buhman>zifnab: efficiency is important as the size of zones approach infinity.
21:04<ctpdump>and 'vi' is much better than all powerdnswebadmins
21:04<zifnab>buhman: on the slave they're loaded into ram anyways?
21:04<ctpdump>I tried poweradmin and it was horrific
21:04<zifnab>idr how bind actually does its magic
21:05<buhman>when you do dnssec in bind-proper, the serial in signed zone doesn't necessarily match the zone file.
21:05<zifnab>and using the linode servers kind of me makes me not care what my master is running
21:05<buhman>bind manages that
21:05<buhman>it should definitely not match what's in your zonefile after the first key update
21:06<ctpdump>ok, so I need SOA-EDIT after all
21:06<ctpdump>if they don't match
21:06<ctpdump>the keys update weekly if I read correctly?
21:06<buhman>you can change that too
21:07<ctpdump>When serving this zone, modify the SOA serial number in one of several ways. Mostly useful to get slaves to re-transfer a zone regularly to get fresh RRSIGs.
21:07<MajObviousman>did someone put efficiency and bind in the same sentence?
21:07<buhman>MajObviousman: the opposite
21:07<MajObviousman>ok, that's good
21:07<ctpdump>I guess as a last resort I can update the serial daily and force an update to the slaves
21:07<MajObviousman>preach the truth brotha!
21:07<ctpdump>nasty hack but may do it
21:07<dwfreed>MajObviousman: BIND is actually pretty efficient, given what it does
21:07<dwfreed>MajObviousman: runs at least one of the root nameservers
21:07<MajObviousman>it's just reading bits out of files and returning them
21:08*buhman doesn't see what's wrong with doing insert/update queries and/or nsupdate.
21:08<MajObviousman>and a web server is just taking file requests and returning files in response
21:08<MajObviousman>buhman: on a small scale? Absolutely nothing
21:08<MajObviousman>but people tend to go Big
21:08<MajObviousman>100k entries in one zone file? WHY NOT
21:08<buhman>if you're going Big you're probably not using your fingers to do the actual zone updates.
21:08<MajObviousman>we were at 30k and increasing by 200-500 per day at my last job
21:09<MajObviousman>due to extremely poor decision making up front
21:09-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
21:09<MajObviousman>also frequency of updates/commits starts to play a role
21:09-!-dmarr [] has quit [Ping timeout: 480 seconds]
21:09<MajObviousman>when you have either tons of zones or tons of entries in a single zone
21:10<MajObviousman>it approaches the classic database performance issues without any of the classic database performance helpers
21:10<MajObviousman>well, that's not true. If you set it to not immediately write changes, then that's kinda like a DB cache layer
21:13<buhman>ctpdump: what's your bind-dnssec-db ?
21:13<buhman>ctpdump: apparently you make separate special database for the dnssec metadata to play with the SOA-EDIT.
21:13<buhman>ctpdump: says 'Autoserial: No' which looks pretty scary.
21:14-!-lionmac [~lionmac@] has joined #linode
21:14<buhman>ctpdump: #powerdns probably knows ;p
21:14<MajObviousman>yeah, I think we're stretching beyond the boundaries of what this channel can help with
21:14<MajObviousman>which isn't to say it's not interesting
21:14<ctpdump>autoserial - no because they are plain files and need to be manually updated
21:15<buhman>hybrid bind-mode sounds interesting
21:16<ctpdump>This mode is only supported in 3.0, 3.0.1 and 3.4.0
21:16<ctpdump>I have 3.3 which came with ubuntu 14.04..
21:16<buhman>sounds like your distribution is failing to provide the packages you need
21:17-!-shortdudey123 [~textual@] has joined #linode
21:19<ctpdump>I was following this guide
21:19<ctpdump>he's using bind backend and mentiones the need of soa-edit
21:19<buhman>did you do that?
21:20<buhman>sounds like you should fire up sqlite and poke around in that metadatadb ;p
21:20<MotoHoss>why not just use bind?
21:20<ctpdump>I was thinking about that, let's see
21:21<ctpdump>aha, I think this is it
21:22<ctpdump>sqlite> .tables
21:22<ctpdump>cryptokeys domainmetadata tsigkeys
21:22<ctpdump>sqlite> select * from domainmetadata;
21:22-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
21:22<ctpdump>so I probably need to put it here
21:22<ctpdump>good stuff, thanks ;)
21:23-!-sphenoid [] has quit [Remote host closed the connection]
21:24<ctpdump>I'll just register a domain for one year to tinker around and not mess around with a live domain..
21:24<ctpdump>as it looks not to be quite straight forward
21:26-!-MaliutaLap [] has joined #linode
21:26-!-lionmac [~lionmac@] has joined #linode
21:34-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
21:38-!-lionmac [~lionmac@] has joined #linode
21:41<zifnab>good plan
21:41<zifnab>so whats stopping me from just ignoring dnssec entirely
21:42<akerl>nothing, really
21:42<buhman>zifnab: naysayers like akerl
21:43<akerl>zifnab: DNSSEC offers some solutions to some problems. If you or your users have those problems, it's possible DNSSEC is the solution for you.
21:46<zifnab>i meant the other side
21:46-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
21:46<zifnab>registrar has a public key, records are signed with the public key
21:46<zifnab>can i just ignore the signature?
21:47<akerl>signed with a private key, but yea
21:47<zifnab>er, yeah
21:47<akerl>But yes, DNSSEC validation is definitely not mandatory, and I'm trying to remember if there are any platforms that actually do it by default
21:48<zifnab>i could see a few interesting uses
21:48<buhman>like DANE
21:48<zifnab>if DANE ever kicks off, sure
21:49<akerl>Most people end up with DNSSEC validation by nature of their ISP or Google's resolvers doing it, which is probably a net gain except that MITM between them/resolver still leaves them in the cold
21:49<buhman>zifnab: SSHFP
21:50-!-PrincessPeneleSpade is now known as ChasedSpade
21:50<zifnab>buhman: memorize your fingerprint
21:50<+linbot>New news from forum: homepage not updating in General Discussion <>
21:50<buhman>sure; how about memorizing 9000 fingerprints?
21:50-!-lionmac [~lionmac@] has joined #linode
21:50<trippeh_>All my puters have local dnssec validators. Boooya.
21:51<buhman>trippeh_ ftw
21:51<akerl>In all the cases I've run into, OpenSSH's CA support ended up being much saner to work with
21:51<akerl>Primarily because I didn't need to link the authentication system in with the DNS systems
21:51<trippeh_>only missing on my TV and phone.
21:51<zifnab>personally i like my 'lets all be nice' idea
21:52<zifnab>all traffic *should* be able to be plaintext without someone snooping
21:52<buhman>trippeh_: toaster?
21:52<zifnab>obviously perfect world
21:52<akerl>zifnab: Reminds me about the codinghorror article about becoming a deity
21:53<zifnab>personally, i don't know why i should trust comodo or startcom to tell me that google is google
21:54<buhman>you shouldn't
21:54<zifnab>lets start a p2p ca
21:54<zifnab>i accept any keys for people i know, and one step out from that (people they know)
21:54<buhman>nor any of the other few hundred CA's mozzila has anointed so far
21:54<akerl>zifnab: lol
21:54<akerl>zifnab: You realize that's a thing, yes?
21:54<zifnab>akerl: oO really?
21:54<akerl>cacert, I think?
21:55<zifnab>thats just another CA
21:55<buhman>cacert isn't really p2p
21:55<zifnab>just a free one that doesn't do validation
21:55<zifnab>(or very limited validation)
21:55<zifnab>i have that too on startcom
21:55<MotoHoss>honest zifnab, honest achmed's second cousin twice removed ?
21:56<buhman>Assurers and the cacert root CA breaks the peer to peer thing.
21:56<zifnab>akerl: i'm thinking no CA whatsoever, no central authority
21:56<zifnab>maybe a blockchain style list of signatures somewhere
21:56<zifnab>(i had to throw bitcoin in here to piss off everyone)
21:56<zifnab>although from a data standpoint
21:56<buhman>x509 has no concept of 'web of trust'
21:57<zifnab>bitcoin is kinda cool
21:57<zifnab>just the data behind it
21:57<akerl>21:54:18 <zifnab> lets start a p2p ca
21:57<zifnab>oh god
21:57<zifnab>i'm so sorry
21:57<zifnab>lets call it a p2p certificate chain
21:57<buhman>sure, where zifnab's authority is zifnab
21:57<buhman>that works
21:57<Cromulent>zifnab: how about just getting all major browsers to support DAME
21:57<Nivex>zifnab: so, GPG?
21:58<zifnab>Nivex: doesn't gpgp have a central server still?
21:58<Nivex>there are keyservers, but that's for convenience only
21:58<Nivex>all the actual signing is pure WoT
21:58-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
21:58<buhman>I think gnutls can do GPG
21:59<akerl>Making a thing that signed certs with GPG keys and then handling loading them into a browser would be trivial, but actually using it would be an ungodly pain in the ass
21:59<MotoHoss>Nivex, I have something of interest for you... mind a pm?
21:59<zifnab>akerl: I'm doing the normal thing, coming up with good ideas and ignoring the implementation
21:59<Nivex>MotoHoss: just got back from the local hackerspace. go ahead.
22:00<akerl>zifnab: That said, I do highly recommend OpenSSH CAs for for host keys. I'm not 100% sold on them for user keys, but they do work there too
22:01<zifnab>akerl: if i had more than one or two servers with public ssh, i'd look into it
22:01<zifnab>atm i have 2, and i know both the fingerprints well enough (at least the last 6)
22:01<learner>zifnab, any certificate that can't carry financial implications is null in terms of "trust" value when it comes to business
22:02<learner>how would you expect people to trust their money to a PGP
22:02<buhman>how would you expect people to trust their money simultaneously to hundreds of random CAs?
22:02-!-donspaulding [~donspauld@] has joined #linode
22:02<buhman>I'd trust a WoT over x.509 PKI any day.
22:02<learner>buhman, I wouldn't I would only trust it with a properly documented entity's CA
22:02<zifnab>i wonder if a CA has ever aid out
22:03-!-lionmac [~lionmac@] has joined #linode
22:03<akerl>"properly documented entity's CA"
22:03<akerl>buhman: I didn't think learner knew how to troll, but I think he's trolling you
22:03<buhman>well then
22:04<akerl>zifnab: Not that I'm aware of
22:04<zifnab>better question: i wonder if they have small print
22:04<zifnab>"We only pay out of if we choose to"
22:04<learner>buhman, you need a financial firm's backing, a properly channeled, rigorously evaluated company registry checking, financial record checking etc system, before issuing an acceptable certificate
22:05<learner>and certificate trust is relative
22:05<zifnab>"If we can find any possible reason that it was your fault, including keeping your private key on a server connected to the internet, it is 'Not Our Fault'(tm)"
22:06<learner>zifnab, that's financial fraud, yes not every insurance company can be trusted
22:07<learner>and in the end everything works to a relative trust
22:08-!-tzi [] has joined #linode
22:08<learner>would you trust a bank with an initial investment of 1 billion dollars to handle a 10 billion dollar wire transfer?
22:08<learner>definitely not!
22:09<tzi>Hello - just wondering, is anyone else seeing weirdness with DHCP on boot, but not whet running dhclient manually? My Ubuntu machine’s not acquiring an address on boot (times out), but after logging in, dhclient completes successfully straight away!
22:10<learner>tzi look into yor bashrc / whatever shell you're running's config
22:10<buhman>tzi: sounds like your interface may not be up.
22:11-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
22:11<learner>maybe you have something there that makes your interface go up when you log in
22:11<ctpdump>buhman: success, the insert into the sqlite3 database worked
22:11<MotoHoss>how do you log in without an ip on a linode?
22:11<ctpdump>sqlite> insert into domainmetadata values ("1","","SOA-EDIT","INCREMENT-WEEKS");
22:11<ctpdump>and dig now shows another serial
22:11<tzi>Interesting theory! I’ll have a look
22:11<zifnab>MotoHoss: lish!
22:12<ctpdump>have tried with EPOCH instead of INCREMENT-WEEKS and the serial was updating (obviously) every second
22:12<buhman>well, lish is still 'an ip'
22:13<buhman>ctpdump: heh
22:14<buhman>ctpdump: I was wondering why that section didn't say which was the default
22:14<buhman>clearly the default is null
22:14<ctpdump>there is no default apparently
22:14<ctpdump>it's up to you which one you should use
22:14<ctpdump>at least they've put a warning not to use EPOCH if you have slave servers :)
22:14<ctpdump>as they would continously refresh
22:14<buhman>are you actually spamming notifies?
22:15<buhman>that would be extremely hilarious.
22:15<ctpdump>heck yes
22:15<ctpdump>I've left it on INCREMENT-WEEKS
22:15-!-lionmac [~lionmac@] has joined #linode
22:16<ctpdump>serial now looks 2015013851
22:16<ctpdump>if I increment it in the zone file (which is 2015011503) it will become 2015013852
22:16<ctpdump>in dig
22:16<ctpdump>so it's a bit of magic
22:17<tzi>Nothing present in bashrcs (systemwide or local) that appears to touch networking; I’ve certainly made no networking changes, too. Mystery continues =)
22:18<tzi>I see “resolvconf pre-start process (1432) terminated with status 127” and “init: networking pre-start process (1960) terminated with status 1”, nothing else of interest in syslog/dmesg
22:19<buhman>upstart is all kinds of fun
22:21<tzi>During boot, after the above resolvconf message pre-start/post-stop messages, it reports “Waiting for network configuration... / Waiting up to 60 more seconds for network configuration... / Booting system without full network configuration…”, so I’m wondering if resolvconf is related
22:21<learner>tzi, send your linode to reboot while logged into lish, see what errors you get when it comes back up
22:22<tzi>Yup, that’s where I just come from learner - here’s what I see:
22:22<learner>tzi, if that's the case look into /etc/resolv.conf and /etc/resolvconf/ files
22:23-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
22:25<learner>also pastebin your /etc/network/interfaces
22:25<learner>are you sure it's configured right
22:26<tzi>Looks correct to me, yeah!
22:26-!-ctpdump [~tcpdump@2602:ffda:da:2:216:3eff:feae:d69c] has quit [Quit: Leaving]
22:26<tzi>Resolvconf stuff looks correct too;, and 5...
22:27<tzi>I presume that’s all coming from dhcp anyway
22:27<learner>tzi while on lish, do this: ifdown -a && ifup -a and see if you get any errors
22:27<learner>tzi, yep that looks ok
22:27-!-lionmac [~lionmac@] has joined #linode
22:28<tzi>Yeah, that looks fine too:
22:31<tzi>Hmm - could iptables rules be interfering with dhcp setup, in a way that *doensn’t* interfere once boot has completed?
22:31<learner>yep that's my next thing to look at
22:31<tzi>I guess I could disable my iptables setup and reboot to find out, but it’s an active and fairly busy server, so I’m loathe to pull it down
22:31<learner>pastebing iptables-save
22:31<learner>yeah don't pull it down
22:34<learner>-A FORWARD -j DROP that might be the culprit
22:35<jrhunt>for DHCP?
22:35<tzi>Yeah, could be (wouldn’t it be the “-A INPUT” line though?) - but wouldn’t that kill DHCP after boot, too?
22:35<tzi>I can’t figure out why it’d not work during boot, but work fine afterwards (once iptables is all set up)
22:36-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
22:36<jrhunt>order of operations of the upstart?
22:37<learner>tzi, tail -50 /var/log/syslog
22:37<tzi>Yeah, but surely running dhcpcd *before* setting up iptables should work fine, and after shouldn’t, then?
22:38<jrhunt>i highly doubt your forward chain is involved at all in DHCP
22:39<tzi>Yeah, ditto
22:39<tzi>That final DHCP procedure was initiated manually, after logging in via lish
22:39-!-lionmac [~lionmac@] has joined #linode
22:40-!-Kellin_ [] has joined #linode
22:40-!-Kellin [] has quit [Ping timeout: 480 seconds]
22:41-!-HedgeMage [~HedgeMage@2600:3c00::f03c:91ff:fe93:c0df] has quit [Quit: Real life calls.]
22:41<tzi>Here’s that interaction, too:
22:42<learner>tzi, Jan 14 14:04:07 nettle kernel: bridge: automatic filtering via arp/ip/ip6tables has been deprecated. Update your scripts to load br_netfilter if you need this.
22:42<zifnab>cat /etc/network/interfaces
22:43<zifnab>make sure its 'dhcp' not 'dhcpd' or 'dynamic' (it might be 'dhcpd')
22:43<zifnab>er, dhcp or dhcpd is right i can't ever remember
22:43<tzi>ifdown/up works with that, so it seems to be correct
22:43<tzi>Hmm, br_netfilter, huh… reckon that’s it?
22:46<learner>tzi, I think the problem is with your longview set up
22:46<learner>you might've broken something there
22:46<Peng>Longview can break networking?
22:47-!-HedgeMage [~HedgeMage@2600:3c00::f03c:91ff:fe93:c0df] has joined #linode
22:47<MotoHoss>why not go with a static config on the node?
22:47<tzi>I did have to manually install it, as the package wasn’t available for this particular ubuntu distribution
22:48-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
22:48<tzi>Yeah, I could go static - it just felt better to figure out why DHCP was breaking, as I was worried it might be doing other weird stuff too
22:49<MotoHoss>curiosity is valid. :)
22:49<tzi>What makes you think longview might be the cause, learner?
22:49-!-chrislerum [] has joined #linode
22:51-!-chrislerum [] has quit []
22:51<learner>tzi, a hunch, because it uses the bridge thingie to connect
22:51-!-roamingdog [] has joined #linode
22:52<tzi>Ah, right! Okay, I’ve just updated my apt source - I’m on Utopic, was using the Trusty dist for; turns out Utopic is now supported, so I’ve updated that, and it looks like there’s no new version of the linode package
22:52-!-lionmac [~lionmac@] has joined #linode
22:52<roamingdog>Peng: problem is actually intermittent, just now i did ssh in, after about 20 'connection refused'
22:52<learner>tzi, remove the package, purge, and install again
22:52<roamingdog>Peng: after logging in, the terminal froze though..
22:53<tzi>Righto, will do
22:54<tzi>Okay, that’s done - hopefully that’s it =)
22:54-!-Mamizou [~Mamizou@] has quit [Quit: Leaving]
22:54<tzi>Won’t know ‘till next reboot, which may be months away with any luck
22:55<tzi>So, will leave it there for now. Thanks very much for the assistance!
22:55<tzi>I guess I can always setup static networking if it’s still busted
22:58<tzi>Okay, on that note, it be lunch time - cheers again, have a lovely day!
22:58<learner>tzi, enjoy :)
22:58-!-tzi [] has quit [Quit: tzi]
22:59-!-Mamizou [~Mamizou@] has joined #linode
23:00-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
23:04-!-lionmac [~lionmac@] has joined #linode
23:12-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
23:17-!-stopple2 [] has quit [Quit: stopple2]
23:18-!-lionmac [~lionmac@] has joined #linode
23:19-!-stopple [] has joined #linode
23:26-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
23:30-!-lionmac [~lionmac@] has joined #linode
23:33-!-Thorn [~Thorn@] has quit [Quit: Textual IRC Client:]
23:33-!-jacob [] has quit [Quit: WeeChat 1.0.1]
23:33-!-jacob [] has joined #linode
23:38-!-lionmac [~lionmac@] has quit [Ping timeout: 480 seconds]
23:54-!-Rash [] has joined #linode
23:54-!-lionmac [~lionmac@] has joined #linode
23:54<Rash>Greetings ALL
23:56<learner>hello Rash, should i call Ointment over too
23:57<Rash>ive set up my linode account and linode server with mysql and nodejs, I would like to know how to connect to my server via my app which i have created in titanium
23:58<Rash>lol unless u throwing shots at my name lol
23:58<learner>Rash, what is your exact problem there, does your app on the server have an API?
23:58<learner>is it listening on a port?
23:59<learner>is the firewall allowing access to it
23:59<learner>can you AJAX/AJAJ to it?
23:59<learner>you haven't given even 10% of the details needed to help you
---Logclosed Wed Jan 14 00:00:26 2015