<onefst250r> ? <jlgaddis> you can put wic-1b-u’s back to back? <onefst250r> maybe? <onefst250r> probably not though…kinda need signaling to come from somewhere. <mead> of the 3 teams I am on the ISP team, we build the network the backbone that the “enterprise” and “medium to large” business teams will connect to. So get to decide how difficult to make it for them <saq> make them use ipx <onefst250r> make it as easy as possible. thats one of the biggest ways to be successful as an isp. <jlgaddis> x.25 ftw <saq> onefst250r: yeah but its not likely to be what they see <saq> mead: give them all a /24 on each link and make them multihome <saq> so that they get routing loop / default gateway problems <saq> 
<mead> and the two rooms were wired together… and second room is a ccna lab. with racks that mirror the ccnp lab. * onefst250r makes sure never to buy transit from saq <saq> onefst250r: im not a transit guy, thats a good example of some BS ive had to deal with <onefst250r> well, note my earlier comment said ‘successful’ <saq> where i had my preferred Route1 out a 50/10 cable connection but had customers that were on the same /24 that i relied on for some site to site voip stuff <mead> there is patch pannel with connections to the racks on the other side of the wall <saq> so i had to set up some fun stuff with PBR so they could send emails to us <saq> as they’d hit our external IP on route1 but our router would go HEY I HAVE THIS ROUTE ON THIS OTHER LINK I’LL SEND IT OUT OVER ROUTE2 <onefst250r> so, get an AS and some IP space. problem solved. <saq> yeah im sure my business cable carrier would love to throw bgp at me <saq> dont have to deal with it anymore <saq> just an example <onefst250r> if there is -really- a business case for it, both ISP’s would do it <onefst250r> but thats contingent on you being willing to pay for it 
<xous> eh? pain in the ass. <xous> $$$ <onefst250r> is comcast selling plane jane ethernet yet? <onefst250r> for businesses? <xous> bah. the one thing I miss about my old job is I could pretty much charge w/e I wanted. <xous> I used to have a “stupid tax” <onefst250r> work for a rural ilec? <xous> nah. hosting provider. <Scrye> eat my ass <xous> haha <Scrye> xous: i just implemented mpls traffic engineering tunnels from atlanta to toronto <Scrye> fast failover biatches * onefst250r hands Scrye a cookie <xous> bah <xous> I’m probably going to spend weeks trying to figure that out. <Scrye> heh <Scrye> months <onefst250r> you fail then <Scrye> show mpls traffic-eng tun tun1000 <Scrye> theres a good start <xous> that I do. <Scrye> xous: csw1.atl, csw3.tor <Scrye> but we’ve got one problem, cant run BFD on a SVI on the 6500 platform <Scrye> fuckin Cisco <Scrye> gotta change all those svis to sub-ints <frogzoo> perl ftw <doughj3> relevancy? <krthnz> perl is always relevant <Scrye> never <doughj3> people still use perl? :X <Scrye> TE-Tunnels are friggen awesome <b0gatyr> http://langpop.com/ <jamesd> yes people still use perl it has some very important functions in a lot sysadmin daily lives <Liquido_> perl was, is and will be the best <Zenion> main benefit of perl… quick to implement problem solving <doughj3> and other scripting languages don’t have that benefit? <Zenion> that being said, im a python guy myself <Scrye> all python guys are nuts <jamesd> where i work python would do little good, if its not installed on any of the servers <doughj3> jamesd: but that’s just because someone at somepoint decided to install perl instead of python. <jamesd> doughj3, the oses I work with everything all come with perl installed by default <Zenion> jamesd last i checked.. python is installed pretty standard on all *nix and bsd flavors <onefst250r> so is bash. but who codes in that? <Zenion> me <Zenion> actually <Zenion> haha <Zenion> hahahah <onefst250r> lewzer <Zenion> im more at home in bash for quick dirty shit than i am with real languages :- <Zenion> im not a programmer tho.. so i suck syntactically with most languages.. and as far as time to implement.. i can usually string shit together in bash with some variables and such quicker <jamesd> Zenion, it doesn’t come standard on Solaris 10, or 9 or 8 or 7 or 2.5.1 all of which make up the majority of my work tasks <Zenion> one of my goals in the next few years is to really become a better programatic thinker and learn a language or two fairly indepth. <Zenion> jamesd: gotcha <jamesd> and i don’t think redhat installs python by default. <Scrye> isnt everything redshat does in perl <Scrye> err python <Scrye> yum is written in python thats why its so slow <xous> yeah <xous> yum is python. <Zenion> HAY NAOW… python is faster than perl in most respects isnt it? <xous> perl is not installed by default. <Zenion> most of the critical modules of python are written in C after all? <xous> at least on a CentOS minimal install anyway. <Zenion> YODA: Code! Yes. A programmer’s strength flows from code maintainability. But beware of Perl. Terse syntax… more than one way to do it… default variables. The dark side of code maintainability are th<xous> haha Session Close: Tue Feb 07 00:52:03 2012 * Disconnected * Attempting to rejoin channel #cisco * Rejoined channel #cisco * Topic is ‘ .:|:.:|:. Welcome to the unofficial #cisco channel .:|:.:|:. wiki – http://inetpro.org/wiki – Pastebin – http://dev.inetpro.org/pastebin‘ * Set by FrFluffyBottom!~con...@farnsworth.fragilegeek.com on Tue Jan 10 07:22:10 <Zenion> OKEWL… linux box just died.. <Zenion> no raid… two HDs of diff size in an LVM <Zenion> volume <Zenion> rofl <Zenion> so funny <danshtr> Zenion: you need a twitter acount <doughj3> karnaa2: sup brah <Apachez> #AntiSec leaks #Symantec source code after $50k extortion not paid bit.ly/AsIx3A #Anonymous #SymantecGotTrolledtoShowHowTheyLie <frogzoo> using a security flaw to blackmail a security company’s dubious services – hmmm sounds dubious <frogzoo> this true about the syrian president’s email password? 12345? <Zenion> danshtr: i has zone <Zenion> wow type fail <Zenion> danshtr: i has one* <Zenion> frogzoo: heh.. most likely <frogzoo> whatever people say about anonymous, when they hack some douche, one feels like cheering <Cottot> doughj3: Verify R5 getting routes via BGP without any summarization. <Cottot> how do i do that <Cottot> i did show ip bgp summary but dont know what i am looking at <doughj3> sh ip bgp summary shows your neighbors. <Cottot> i seethe neighbor but i dont see how to check if is being summarized <doughj3> sh ip bgp shows your routes learned from bgp <Cottot> ok i guess it isnt summarized <Cottot> Configure R5 to announce default to R3 via BGP. that is the prefix list thing right ? <doughj3> Cottot: nope. <doughj3> send me a pm so we dont flood this channel <Cottot> nope <Cottot> dont know how (>.<) <bmoraca_work> son of a bitch <bmoraca_work> finally get my boss to agree to buy a new router and Ingram doesn’t have them in stock 
<alamar> I convinced mine today to buy an old used one for our lab <bmoraca_work> we have old used ones in production <tmbg> damn server weenies that insist on measuring network throughput in bytes piss me off <epicdouche> tmbg: why <tmbg> throughput should always be measured in bits IMO <epicdouche> tmbg: why? how does that help you <tmbg> how does it being in bytes help anyone? <epicdouche> tmbg: because the content being delivered and stored is in bytes <epicdouche> base 2 <tmbg> do you tell people you have a 12.5 megabyte per second NIC? <epicdouche> tmbg: and from the application’s perspective, it doesn’t give a shit how many bits a second your router transmits <epicdouche> no I don’t, but you’re missing the point in giant fashion <tmbg> no, you’re being a douche <tmbg> goes with the territory I guess <epicdouche> because the application doesn’t and should not give a fuck about the transmission rates of the interfaces from poing A to point B <Ancient_> Rnadom question : When doing GRE over IPSEC is there ever a reason to apply the crypto map to the tunnel interface itself? I got the impression it was always on the outbound interface but some people have sa<tmbg> how does displaying in bits or bytes have anything to do with the speed of interfaces? it still wouldn’t know either way <WWMatt> Does anyone know why a Cisco switch would stop responding to external requests from the Internet (behind a NAT router) but still works on the LAN? <epicdouche> yeah but it does know how many bytes it’s getting in and out each second, doesn’t it? <dwxreaper> all that matters is confusion between base10 and base2, like hard drive sizes <dwxreaper> the rest does not matter Mbps MBps <tmbg> dwxreaper: that’s also annoying. I’ve had people tell me network interfaces are in base2 <epicdouche> tmbg: why do people say that the bandwidth of 1000baseT is 1 gigabit? that’s stupid too <epicdouche> because bandwidth has nothing to do with bits <epicdouche> they are not in base 2 <dwxreaper> the interface is putting bits on the wire, not dealing in two’s components, but the sizing is ambigious <epicdouche> network interfaces are base 10 <tmbg> epicdouche: no shit <tmbg> I said I’ve had people tell me that <epicdouche> tmbg: I’m not trying to be a dick to you, but you really need to try to understand that applications and OS kernels do not see network access the same way interface cards do <epicdouche> and rightfully so <tmbg> you’re not trying, only succeeding <epicdouche> why are you mad at me? <epicdouche> this is the truth <epicdouche> tmbg: network interfaces only know about sources and channels <epicdouche> this is a basic engineering concept. and basic abstraction <tmbg> who said I’m mad at you? just stating the fact you’re being a douche. what I’m mad at, is having to multiply by 8 all the time for no damn reason <stretch_> the hell are you two talking about? <tmbg> I’m having a white wine about applications reporting throughput in bytes instead of bits <epicdouche> stretch_: he’s upset that applications do not represent network throughput in bits per second but rather bytes per second. so he has to take the annoying step of applying arithmetic if he’s interested in <tmbg> epicdouche likes it that way, so that he can live up to his nick <stretch> oh <stretch> well, I have to attend a conference call with a customer in an hour to demonstrate failover from one BGP-enabled link to another <stretch> “Pull out that cable. Look, it still works. Now plug it back in. Goodnight.” <JoshH> heh, gotta love “IT guys” at customers who want to “test” the new bgp setup <frogzoo> better – do the conference call on skype 
<epicdouche> tmbg: I’m sorry if I caused offense to you. <tmbg> already told you, not mad at you. mad at programmers and server weenies <epicdouche> I’m on an 802.11g network. the bandwidth of that network is 20 Mhz per channel. why do people like to say that the bandwidth is 54 mbits per second? it’s incorrect. <epicdouche> or that the bandwidth of their 1000baseT card is 1 Gbit/sec <epicdouche> JoshH: why is that a problem? <onefst250r> because IT guys usually have no clue about bgp <JoshH> yes, that <epicdouche> what do they mean by test though <JoshH> also, i hate conference calls, and i hate doing their shit at 3am when they always want to <epicdouche> they want to make sure failover happens? <JoshH> epicdouche: yes, watchign it failover, pinging their stupid branch over some tunnel while it’s failed over, while muttering to themselves in your ear, booting their windows laptops, etc <epicdouche> JoshH: I gotcha. how would you rather things went? no testing? <JoshH> no testing, or testing with somebody else dealing with it <epicdouche> why do you need to be involved? <stretch> bingo <JoshH> because i’m at a small ass company and shit falls on me often <epicdouche> JoshH: so BGP can’t be tested without the assistance of the provider? * onefst250r hands JoshH a tiny violin <JoshH> not if the customer wants an isp guy to be on the phone during the testing, plus a handful of phb’s <epicdouche> maybe RIM didn’t test their BGP. <onefst250r> BGP testing….unplug cable, see if shit still works. <epicdouche> JoshH: I’d want to test my multihoming and failover too. not testing things is kind of irresponsible. but if I could do it in a way that didn’t make ISP engineers stay up until 3 am I would. <JoshH> ya * onefst250r points at earlier comment about IT guys not knowing shit about bgp <JoshH> plus i’m exaggerating a little <stretch> it’s easy overtime for me, but I’m careful to make sure the customer understands that they’re paying me to sit and watch BGP do it’s thing <epicdouche> JoshH: I often have to wait until 12 – 1 am to do simple shit like restarting equipment. <JoshH> it’s not that i fundamentally hate testing or being up late, it’s that i hate listening on a phone while some IT guy mutters things to himself <JoshH> also i don’t really hate it, it was just annoying one time <epicdouche> I also don’t like putting techs into classes <epicdouche> compared to the people who designed and created BGP, ISP engineers probably look like monkeys slinging shit around <onefst250r> you could say that about any protocol <JoshH> a lot of isp engineers definitely do <JoshH> i look like a greek god and astronaut though <epicdouche> and well endowed too <onefst250r> a greek astronaut? yeah right. <JoshH> lol <epicdouche> I read recently that NSFNet required the NAPs that were transitioning networks off of the NSF backbone to support both IP and CLNP routed and routing protocols. <epicdouche> but if any network or NAP that was large enough and doing awesome enough shit, could skip it. <onefst250r> lolwut? <sam_stone> i bought a 7940 phone and ebay and it works but the mac address sticker in the bottom does not match the actual mac address i see in the dhcp request. what would cause that? <epicdouche> I worked a small ISP in the 90s. they told me that NSFnet wanted $35,000 for a T1 installation + 5K monthly. ANS wanted 0 down and 5K monthly. It was such a tough call to make. <tmbg> epicdouche: a lot of protocol designers overlook operational realities <tmbg> there are retards on both sides <epicdouche> onefst250r: http://en.wikipedia.org/wiki/File:NSFNETThreeTieredArchitecture.jpg < circa 1990s <epicdouche> onefst250r: http://en.wikipedia.org/wiki/File:NSFNET-backbone-T3.png <epicdouche> http://en.wikipedia.org/wiki/File:NSFNETTrafficGraph-June1994.jpg <epicdouche> sam_stone: MAC address in DHCP from your comupter or the phone? <sam_stone> there is no pc behind the phone <epicdouche> sam_stone: weird. what is the MAC address you are seeing in DHCP? <sam_stone> its just a phone, i think its got somrthing screwy on it <sam_stone> the phone thinks it is a 7960, buts its a 7940 <bmoraca_work> sam_stone: lots of stuff. likely it was refurbed and the innards are from a different phone <sam_stone> i see <sam_stone> thx <epicdouche> sam_stone: if the MAC address is using the 2nd lowest bit in the second octet then it is an administratively set MAC. <sartan> nmap -sT -P0 <bmoraca_work> ASAs do transparent firewalling pretty well <rawburt> bmoraca_work: agreed <bmoraca_work> it’s about the only thing they DO do well <rawburt> haha <sartan> yea i don’t have an extra one though <rawburt> $400 <rawburt> what’s that to a CCIE six figure dude? <bmoraca_work> buy one, derp! <sartan> all my 5520s+IPS+$$licensing$$ are already active/passive… and i can’t get hardware in time for what i need it for. <rawburt> doesn’t your wife have a job, too? <rawburt> damn son. <sartan> not for home, dumy <rawburt> I know <rawburt> but you got the cashe. <rawburt> kashe* <bmoraca_work> sartan: multiple context? can you add another security context to it? <bmoraca_work> a 5520 should support at least two <sartan> i don’t think you can do l2 and routed at the same time <bmoraca_work> out of the box <bmoraca_work> ahh, you may be right <sartan> and multiple context breaks lots of stuff <rawburt> sartan: hold on, I’ll find out <rawburt> hey. does anyone know if you can do transparent and routed on an ASA? <sartan> last but not least, it’s a vmware g uest. i don’t think i can make vmware bend to my will for this purpose <rawburt> <rawburt> YOU CAN <sartan> actually, i could <sartan> just a sipmle new vlan <rawburt> I read something about Netfilter’s iptables on ESXi <sartan> oh? <rawburt> yes <rawburt> it’s Linux under the hood baby <sartan> it’s on cisco ucs with hardware paravirtualized i/o modules <frogzoo> ilom rconsole over ssh ftw O/ <sartan> seriously though if i can firewall it on ESX without breaking the other 20 guests on the blade that would be awesome <rawburt> Unified Communication Server? <sartan> I can google to!! unified computing servers <sartan> basically cisco blade servers.. like ibm bladecenter <rawburt> lolz <rawburt> right <rawburt> *cough* <frogzoo> ucs is not blade servers :p
Feb 142012
