#cisco IRC Archive for 2014-02-06

drkat	nah
drkat	im doing training
dioz	nah
dioz	trannying
drkat	yup
drkat	your "mom" is over
dioz	OOOH!
dioz	bobink
drkat	iBoss Active Directory Integration
drkat	so much fun!
drkat	this guy talkin has a very wet mouth
drkat	and fat person breathing
dioz	mouth breathing
drkat	yes
drkat	heavy mouth breathing
drkat	like its such a work out doing the webex
circuit	lol mouth breathing
circuit	i fucking hate those people that refuse to swallow
circuit	and you see the saliva build up on the edges of their mouth
drkat	...
dioz	"clear your throat"
drkat	all bitches that dont swallow
drkat	eat a dick
circuit	almost foaming at the mouth at times
circuit	my professor is the wooooorst
circuit	like buddy SWALLOW
dioz	or spit
circuit	man what am i gonna do for valentines day for my girlfriend
circuit	;\
drkat	try and do a no roofie night?
onefst250r	thats no fun
twkm	spit.
dioz	do what i do
dioz	and do nothing
dioz	and if she makes a big deal about it
dioz	explain to her what the day actually is
dissolve\|	wtf whens valentines day
onefst250r	next friday
onefst250r	feb 14th, just like always
circuit	such a gay fucking day
dioz	gay like christmas
circuit	nono, christmas is acceptable
t0m0_	christmas = delicious food and beer
t0m0_	valentines = blowjob
drkat	i hate valentines
drkat	my wife thinks its fucking christmas
drkat	and i dont even get a bj on valentines
drkat	:(
dioz	you been married a while and you got kids
dioz	i doubt you get bj's anymore
dioz	you said 2 daughters
dioz	i asked my buddy who's been married forabout 7 years now how often he gets a hummer
dioz	he said it's been a looong time
dioz	i lol'd
kuahara	am married, BJs never happen
kuahara	for any reason on any occasion, ever
KickStarRabbit	kua haha
dioz	how do you warm her up?
dioz	to penetrate her?
dioz	"pre heat the oven" so to speak
kuahara	the ex used to give BJs only on special occasions
kuahara	lesson to be learned here is: Don't fucking marry.
circuit	hmmm
kuahara	if you avoid marriages, you can change relationships for free
circuit	i have always prefered sex over bjs
kuahara	completely off topic, but any of you have any experience with tsmuxer? wondering if I can losslessly join two .m2ts files together using the tsmuxer gui
kuahara	circuit: overall, sure. But variety is still nice
circuit	this is true
dioz	nice hostname!
dioz	it isn't actually what it says thp
dioz	tho
dioz	what are rrsig ?
drkat	lol
drkat	umm..
drkat	hummers are non existent
dioz	i assumed
drkat	sort of
drkat	I got one the other day
dioz	from what i've heard from the married people i know
drkat	but its far and in between
drkat	sex isnt as frequent either.. apparently kids + marriage == no sex
drkat	of course I could care less if she does it or not.. I'd rather work
dioz	does your old lady work?
drkat_	yea
drkat_	part time
drkat_	fuckin laptop battery ugh
dioz	idk how my mom never worked
drkat_	different time
dioz	dual income housing is needed now days imo
drkat_	sure is
drkat_	wish i took all my wifes income :)
dioz	i give my gf all the money i make
dioz	she makes more than me and she's a trust fund baby
onefst250r	hwo is dual income housing different than single income housing?
dioz	so...
kuahara	been married to my current wife 3 years and she has never needed a job
drkat_	well I guess it depends
kuahara	that said, she wants to work, so she has an interview tomorrow
drkat_	if the man makes enough etc
drkat_	My wife never used to work
drkat_	but then I said fuck that noise, I hate paying for everything, free loading cunt
circuit	lol trust fund baby
drkat_	ya know what I miss? not having to go to customer sites
drkat_	I wanna build a super bad ass desktop
drkat_	but then I fear I wont use it for its full potential
dioz	i got a gtx570 with a 60gb ssd and a i3
dioz	for gaming
dioz	with 16 gb of ram
dioz	plays any game i want and it was like $500
drkat_	My mom just bought a 8gb of ram i3 with a TB of space
drkat_	you know.. to check email :)
dioz	lol
kuahara	I'm starting to think those are the people that need the most powerful machines
drkat_	well shit.. she was gonna get a 4GB win7 box with a core 2 or some shit
blackOff	who?
drkat_	i told her.. no fuckin way
drkat_	just spend the extra 150 and get a good box
kuahara	You open up msconfig on their PCs and not only are they flooded with bloatware, but every app that has ever been installed on the machine is set to start every time windows starts
kuahara	always the same story, "I just check email and go on facebook"
drkat_	I have a dell inspiron 530 im gonna put win7 on.. it has a dual core processor and 4gb of ram
drkat_	nothing great
drkat_	but good enough for my needs
kuahara	I need to start telling people, "oh for that, you're going to need a large SSD, an extreme edition cpu and 64GB of ram" (so I never have to talk to you again).
drkat_	this pc im on now is an amd athlon 64 with 2gb of ram
kuahara	yea, but you don't require as many system resources as the "I just check email and go on facebook" users
drkat_	this is also true
drkat_	my laptop is a core 2 duo with 3gb of ram
drkat_	i seriously dont do jack shit with my computers
drkat_	i just work and like check my bank and talk on irc
garrettskj	mrrr
garrettskj	drkat_: you are hardcore
drkat_	i know right
dioz	ikr
drkat_	man i just do this shit to get paid i could care less :)
garrettskj	horriblez
Titanium	can you even boot windows in less time than heat death of universe with 2 GB ram?
DavidH	what
drkat_	sure
drkat_	XP boots pretty quick
Titanium	yes it does :)
DavidH	if you cant boot windows with 3GB memory you are not designed for this industry
garrettskj	lol
Titanium	but unlike me, most people have upgraded
drkat_	my win 7 laptop has a 3gbps ssd
garrettskj	if you can't boot windows with 128mb of RAM
garrettskj	you aren't designed for this industry
Titanium	anyone ever boot an OS that pages to tape?
DavidH	I have a win7 netbook with 1GB and it runs smooth
garrettskj	hahahaha Titanium
drkat_	Titanium, eh?
garrettskj	oldest I have ever done was an MFM drive
drkat_	I really AM running XP SP3
drkat_	on this box
Titanium	i only got sp2 :(
Titanium	sp3 is evil
drkat_	meh
drkat_	i bought this pc off craigslist for $100 bucks
drkat_	i dont like to spend money on computers
Titanium	i used to do that
drkat_	my laptop i got for free
garrettskj	I got MFM running with windows NT 3.51 when I was in highschool :/
garrettskj	kinda a challenge really
drkat_	and my other desktop? free
garrettskj	why are you guys not running linux
garrettskj	seriously
drkat_	cuz it sucks?
garrettskj	i will help you guys run it.
garrettskj	it doesn't suck at all
garrettskj	it's freaking great.
circuit	ACTION gasps
drkat_	meh
drkat_	I ran linux back in the day son
garrettskj	lol it's totally a different animal my friend ;)
drkat_	openoffice is gay
circuit	leeeenix
garrettskj	that's becasue no one uses openoffice
drkat_	libreoffice?
garrettskj	you use libre office, or google docs
drkat_	whatever its called now
circuit	libreoffice sucks too
garrettskj	google docs usually
drkat_	they all suck
kuahara	fucking tsmuxer
DavidH	lol
drkat_	MS office is still top dog
kuahara	joined 2 files, specified the right order... it muxes them backwards
DavidH	google docs does everything i need it to
garrettskj	fine fine, run a VM with MS Office.
circuit	how often do you use MS office tough
drkat_	what about orca for msi edits
drkat_	can you run that in linux?
kuahara	I'd imagine a VM is where I'd need to run linux if I had a use for it
drkat_	:P
kuahara	too much windows shit is not meant to be emulated
circuit	umm fuck windows
drkat_	the windows admin running linux ha!
onefst250r	get a mac then parallels your windows
kuahara	ugh
kuahara	I just had a nightmare experience just trying to get osx and windows to dual boot when the original os was osx
kuahara	used bootcamp
onefst250r	fail
onefst250r	parallels
onefst250r	win
garrettskj	05:59 < kuahara> too much windows shit is not meant to be emulated
garrettskj	what
garrettskj	that's ridiculous
DavidH	yeah it is
DavidH	i have virtualized more windows servers than i can count, and ive never had any more problems then with linux or bsd
garrettskj	seriously drkat_ you with your Core2Duo
garrettskj	you are ripe for linux
kuahara	garrettskj, while I don't think I'll have time to game in the foreseeable future, most games are not VM friendly
DavidH	ah
drkat_	heh
drkat_	Ubuntu?
garrettskj	kuahara: vmware workstation has 3D hardware acceleration.
garrettskj	kuahara: SteamOS is built on debian
DavidH	lol
kuahara	great, try playing pretty much anything made by blizzard in a VM
garrettskj	drkat_: ubuntu or fedora
DavidH	trying to sell him on l inux?
DavidH	windows is still for gaming righ tnow
garrettskj	kuahara: like WC3?
drkat_	meh
drkat_	im good
drkat_	i admin windows bro
drkat_	i gotta endorse the product
kuahara	I don't game right now though, so I have no real arguments
kuahara	I spend most of my time (for the last 2 months or so) studying and am guessing that is what I'll spend most of at least the next few years doing
drkat_	shit man im just confused on to use my desktop or laptop
drkat_	thats my dillema
drkat_	:P
garrettskj	i'm happy right now.
garrettskj	Survivorman.
garrettskj	new episodes
garrettskj	yay
circuit	FOOD CHANNEL
drkat_	i remember I had my computer just the way i liked it, my apps, etc etc
drkat_	then bam crashed
drkat_	so now I dont customize shit
drkat_	heh
Titanium	do you at least unhide stuff windows hides?
drkat_	files/folderS?
drkat_	si
kuahara	heh.. every time this guy reads the word "facility" he keeps saying "faculty"
blackOff	http://en.wikipedia.org/wiki/Tropico_5
blackOff	http://en.wikipedia.org/wiki/2014_in_video_gaming
blackOff	april 18
eirirs_	Scrye: are you there?
KickStarRabbit	ahh choo
drkat_	shit i still run office 2003 on this machine
drkat_	damn im outta date
DavidH	.
drkat_	meh
drkat_	time for bed
circuit	nighty night keep your butthole tight
newtmewt	ffs
Titanium	facility was a crappy cpounterstrike map
newtmewt	tonight is shit
newtmewt	our office lines are bouncing
Titanium	i got a week of work done today :)
newtmewt	some remote vpn's site primary connection is shit and no one has showed me how to force them down the backup
Titanium	depending on how you count
blackOff	newtmewt, read the notes/manuals
blackOff	or go home
blackOff	;P
Titanium	im too excited to sleep
Titanium	tomorrow i am going to use my program to figure out how a switch does some of its forwarding that is secret :)
Titanium	and i dont know the answer before i start :0
newtmewt	blackOff: we have no manual lol
newtmewt	and notes are lacking
brucelee	anyone know how i can configure anyconnect vpn to have specific network access (like accessing another VLAN), based on the anyconnect user's windows group?
n1nja	Titanium, what program?
blackOff	sounds like hell newtmewt
Titanium	i wrote it
Titanium	i think it is named Java Application 47
xous	anyone have custom machining stuff done?
xous	I used to get a friend to do shit like that for cheap
xous	but then I moved heh.
xous	need someone to make some rackmounts
Titanium	buy some angle brackets from lowes and a metal bit?
Titanium	if bending a piece of metal and drilling 6 holes in it is 'custom machined part' ...
Titanium	i dont know what to say to you
xous	it's a bit more complicated than that
xous	I need 35" rails for a IBM bladecenter
xous	IBM don't make e'm that keep
xous	so I basically need angle iron with ears wielded on the end
xous	that can hold 400lbs
xous	between the two
xous	if I were at home I'd do it myself with the arc wielder (after afew attempts)
xous	but I dun got one here.
xous	I need two sets... dunno wtf it would cost though
xous	if it's more than $100/pair
xous	fuck that
Azee	i need foot in the door in networrking field. got my ccna last year. currently getting ready to give ccnp switch exam
Azee	what kinda jobs should i be looking for ?
xous	CCNP with no experience?
saq	entry level
saq	experience = king
xous	yeah. CCNP with no experience = resume tossed.
Azee	i dont wana get ccnp without exp
saq	if you picked up ccna and ccnp easily you have a good brain for this stuff and you'll learn quickly
saq	find something that deals with networks that wants to hire somebody like you
saq	get practical experience
xous	Azee: learn how to troubleshoot effectively.
xous	Most people memory shit
xous	memorize shit
Azee	i dont
xous	but fail at troubleshooting
xous	haha
Azee	since age of 15-16 i was into botnets n stuff on irc
Azee	lol
xous	uhh. that is not really something to brag about
jcpeters01	Hello everyone, I am working on a Cisco 1841 router. I have two wan connections and using ip sla to monitor my primary wan (Cable Modem w/DHCP (static is not possible)) and failover to a cradlepoint. When the cable modem recovers, after a logical failure it comes back 'up' but the default route continues to the cradlepoint. Is there a process I can run to make sure that DHCP rebuilds the default route?
xous	any idiot can run a botnet
Azee	i know
Azee	i am a techy person
Azee	this stuff interest me
xous	so find an entry level job
xous	helpdesk
xous	cage tech
xous	noc monkey
Azee	lol
Azee	hey everyone starts from somewhere
Azee	:
jcpeters01	working a noc can be interesting... can also be boring haha
xous	Azee: that's what I just said
xous	try to keep up.
Azee	u used the term monkey .. lol
xous	yes?
Azee	so just defended myself
eirirs_	haha
Azee	that might be my future
Azee	lol
eirirs_	as a monkey
xous	I call our helpdesk guys idiots.
Azee	working at noc
Azee	:P
eirirs_	helldesk
xous	lazy bastards
Azee	i did work as helpdesk before
eirirs_	I never did
newtmewt	ffs this is pissing me off
Azee	for about 2 years
xous	idiot "ZOMG THERE IS AN OUTAGE?????? OMG WTF BBQ?"
xous	I finish what I'm doing. save changes. take a drink
xous	"ZOMG WHAT R U DOING?"
xous	"ok so what is the problem?"
xous	"outage!"
xous	"where?"
xous	"client!"
xous	blarg.
xous	maybe I'm just cranking
xous	cranky*
Azee	damn irc is still full of trolls.. i missed it
eirirs_	when are Scrye awake
xous	eirirs_: scrye is driving right now
xous	so I'd hope he's awake
eirirs_	lol
xous	eirirs_: what do you need?
eirirs_	I need to talk to him
xous	send him an email
xous	that's the best way to get him to do orders and shit.
eirirs_	it aint about orders, just some quesitions
xous	Azee: trolls?
xous	eirirs_: about?
newtmewt	ACTION wishes i knew more about these fucking vpns
xous	I imagine he's not gonna be around on irc for at least a few hours
xous	he's probably 2 hours into a 5 hour drive
kuahara	I will never fucking buy prolific again
xous	kuahara: fucking told you didn't I?
gosi	morning folks
xous	kuahara: get a linux livecd
xous	might work in there
kuahara	this thing is such a piece of shit
kuahara	xous, can I just run it in a vm?
xous	maybe
xous	you'd probably have to remove the windows driver
kuahara	any particular linux distro?
xous	it should be built into the kernel
kuahara	crap, uninstalling this requires a reboot
kuahara	(again)
xous	the module name is pl2303 iirc
kuahara	brb
xous	why does everyone cheap out on the usb2serial shit
drew__	the problem ive had with those usb serial converters is sometimes the usb vendor id is different
drew__	there are really 2 main kinds
drew__	pl2303 and ftdi
xous	drew__: there are shitton of chiness knockoffs
drew__	both work just fine
drew__	all of the chinese knockoffs are pl2303 or ftdi
xous	I've never seen one for ftdi
drew__	even if the usb vendor id is different
xous	I've seen tons of the pl2303 though
drew__	all you have to do is hex edit your pl2303 driver and add the usb vendor id
xous	I had a legit prolific
xous	it started doing screwy shit after 2 months
eirirs_	I like how my support mails are immediately escalated in 99% of my cases
xous	haha
xous	I find if you get VERY specific in tickets
xous	tier1/tier2 panic and escalate
xous	or if they are really dumb they ask you to power cycle and check cpe
xous	like megapath
xous	or misinterpret the results
xous	you know how cisco's ping commands says
xous	"Sending 5, 100-byte ICMP Echos to 8.8.8.8, timeout is 2 seconds:"
xous	and it was followed by "!!!!!"
xous	MEGAPATH moron read that
xous	'it's timing out every 2 seconds. It's your CPE!"
eirirs_	xous: Ilol
xous	I was NOT nice
xous	Ok. Please escalate this to someone who understands basic networking because it's clear you are a moron."
xous	he was a tier 2 manager.
xous	"manager"
kuahara	I think I would have de-escalated
xous	haha
kuahara	pass me down to someone who makes half your salary please
xous	I send a a very angry email to a bunch of people
xous	my boss had to applogize for me
xous	"You can't call people morons and idiots."
xous	"He was a moron."
kuahara	just start repeating shiboleet into the phone over and over
xous	heh
xous	I just make our tier1/tier2 deal with them
kuahara	shiboleet, shiboleet, shiboleet, WHY ISN'T THIS WORKING?!?!! shiboleetshiboleetshiboleet
xous	it's like pokemon
xous	my idiot and their idiot fight it out
kuahara	http://xkcd.com/806/ (in case the reference was missed)
xous	haha
xous	I forgot about taht
xous	I just write down tier 3 numbers when find someone that's not an idiot
kuahara	I tried to chat support once, gave up on this guy and called in. Turns out the guy I called was sitting right next to the guy I'd been chatting with.
brucelee	anyone know how i can configure anyconnect vpn to have specific network access (like accessing another VLAN), based on the anyconnect user's windows group?
dadrc	They were probably like: "Yo, dude, I've got that guy you were just chatting with. He nice?"
kuahara	I don't remember what the support call was about, but he announced it out loud, "ah yea, you were just talking to the guy sitting right next to me"
kuahara	then worrying that the other guy was probably talking shit about me now
xous	haha
xous	I make fun of most of our customers
xous	I've had tier1 come and tell me about a problem
xous	ask one or two questions
xous	then say the customer is lying.
dadrc	"We didn't touch that."
dadrc	"Oh, unplugging stuff counts as touching? Did not know that."
xous	that one the first things I try to beat into them
xous	the customer is almost always gonna lie to you
xous	verify everything
xous	hell. I verify when our techs are on site
xous	"I just plugedd that switch into fa0/24
dadrc	very house-md-y
kuahara	when I was at AT&T, we had a few bad techs call in, but the vast majority of problems were from agents in our center that either can't or refuse to think outside a very small box they live in.
dadrc	Everybody's lying.
xous	nope you plugged it into 22
xous	move it.
xous	"oh, oops"
xous	heh.
xous	dadrc: the question is "about what?"
Oliber	http://davesblog.com/blog/2014/02/05/verizon-using-recent-net-neutrality-victory-to-wage-war-against-netflix/ \| http://bgr.com/2014/02/05/verizon-throttling-netflix-amazon-aws/
Oliber	disgusting
kuahara	I just imagine them sitting there all, "this is what the paper says, I don't care about your real world scenario"
xous	I still make fun of this one client iT guy
xous	we call him dimlights
xous	because he callled in on weekend
xous	"I'm CCNA SWITCH IS DEAD YOU REPLACE NOW!"
TimberWolf_	you make fun of everyone xous
xous	"what's wrong with the switch?" Light's dim."
xous	TimberWolf_: so?
dadrc	xous, cynical, but probably right.
TimberWolf_	oh nothing.
xous	What's life if you can't find something to laugh at?
xous	dadrc: effective.
TimberWolf_	you just don't need to state that you make fun of on guy :P
xro	Hi, is there someone who already had allowed vlan list mismatch between Po and interfaces? what can cause it? normaly Po conf should be sync into interfaces...
kuahara	I'd get escalations from junior agents that would go something like this (and I am not making this up), "this prem tech wants a helper, but says he can't sync up at the terminal because it was hit by a car. I can't approve this if he doesn't sync up at the terminal".
xous	He was a complete idiot. Invoked the 'power of certification' and was completely wrong on several different issues. All stemming from his stupidity.
xous	How does that not deserve mockery?
Oliber	incompetence should be rewarded, with promotions
eirirs_	I hate people that waves with their title, degree or certs and is like "LOOK THIS! I KNOW THIS ALL!"
dadrc	Promote 'em out of the way so the competent people can get some shit done?
xous	I say fire 'em
xous	and laugh when someone calls for reference
TimberWolf_	heh the other day i had tech try and tell me that a user did not exist
dadrc	That'll unfortunately just get you new idiots.
xous	dadrc: interviewing people isn't so boad
xous	bad*
xous	hour away from work
xous	get to destroy someone's self worth
eirirs_	conan the librarian
xous	while playing with my cellphone
TimberWolf_	checked AD and saw the user was there. Turns out someone had spelt the users name wrong in an email and instead of just searching for the user asked me
dadrc	dunno, hiring's not my thing.
xous	TimberWolf_: haha.
xous	dadrc: I kinda forced my way into the hiring process when they kept hiring morons
blackOff	3TB/$95 white lable 1yr warranties
kuahara	"he can't test because of foreign voltage on the line, so I can't approve this".
eirirs_	TimberWolf_: been there, seen this. I spelt Manual instead of Manuel once :( that dude were like "manual username didn't work, btw, why did I get THAT username instead of my username?"
xous	haha
eirirs_	im like, fuck what happended , needs to slow it down
TimberWolf_	heh
xous	that's why I copy and paste shit like that
xous	can't fuck it up.
eirirs_	xous: for me its faster to type manuel instead of copy paste it
xous	yeah
xous	but then you fuck it up
newtmewt	ffs
eirirs_	true lol
newtmewt	i'm a moron righ tnow...
eirirs_	thats my first anyways
TimberWolf_	can't be as bad as our imaging monkey
newtmewt	i spent like an hour(cause i'm in panic mode with like 100 things happening) and all i had to do is set the admin distance on the bouncy wan to higher than the non bouncy wan....
newtmewt	i was trying to fuck with route-maps and shit...
newtmewt	grrrrrrrrrr
xous	do or do not -- there is no try :P
xous	newtmewt: I thought you did all DIA shut
xous	shit*
newtmewt	and this other one was down cause no one ever configured the fucker... GRRRRRRRRRRRRRRRRRR
newtmewt	xous: mostly
newtmewt	one customer we ahve started doing VPN shit for them
newtmewt	back to their data center
Azee	to get a job alot of places require A+ ? worth doing it ? even though its a joke....
xous	Are you gonna touch hardware?
Azee	help desk jobs ...
xous	then it might be advisable
xous	:P
blackOff	you peaked at the book?
xous	certs get you past HR
kuahara	I fucking hate shit like A+
TimberWolf_	our imaging guy fucked up bad this week. We have finally started installing windows 7 and was giving out a loaner to some dude. Turns out the laptop belogned to a VP before the guy never formated the drive so all the VPs files were still on.
kuahara	how many pins does ______ have?
blackOff	A+ is all your basic hardware tech stuff
xous	TimberWolf_: the imaging guy didn't reimage the computer?
blackOff	not going to learn much to do with cisco stuff, but it's a good cert to start with, or a good book to read
TimberWolf_	xous, nope just installed 7 on top of xp without formatting
Azee	i think in this day in age everyone older then 12 knows what A+ teaches...
TimberWolf_	so you get the nice windows.old folder
dadrc	The fuck. That's not imaging :>
xous	TimberWolf_: what's the point of calling him an imaging guy if he doesn't do it.
blackOff	A+ goes through the Windows OS tech also
Azee	lol
blackOff	it's like a 1800 page book
TimberWolf_	xous, he imaged pcs with XP. I just got tasked with creating the process for win 7 like a week ago
kuahara	yea, but it also goes through a bunch of random trivia questions you don't need to know in order to use the related technology.
TimberWolf_	but boss man said start doing win 7 install now anyways
Azee	like what ? windows regiestery ?
xous	TimberWolf_: and it still hasn't got it done?
dadrc	TimberWolf_, I kinda get the impression you guys are a little behind on the tech curve.
Azee	registry*
blackOff	registry too
blackOff	it's a technician cert
xous	heh
kuahara	Azee, like my pin count example question. As if you can't plug something in without knowing the exact number of pins on the end of whatever connection
Azee	i was thinkin ccna date centre
kuahara	and general b.s. just like that
xous	kuahara: you'd be surprised how many people fuck that shit up.
blackOff	i'd get A+ before attempting ccna data center
xous	and you mean you don't know all the pins?
blackOff	or at least read the book
Azee	i gave ccna r&s
Azee	have*
kuahara	xous, no. why bother?
TimberWolf_	dadrc, not so much the tech curv but the staff curv
xous	phone powers up but says ethernet disconnected. it only has an ethernet cable plugged in? What is wrong?
cisconinja	how are you folks doing
blackOff	good, u?
xous	drunk
dadrc	alreadyß
cisconinja	what is one forgot their enable secret 5 password?
TimberWolf_	xous, someone fucked up a cable terminiation?
xous	it's 3am
cisconinja	i think i found a bug in cisco ios
cisconinja	:D
xous	TimberWolf_: exactly. What makes you suspect that?
TimberWolf_	xous, power but no data
cisconinja	and i am not drunk yet :)
xous	because power is passed on pins 7,8
xous	:)
xous	kuahara: that's why you need to know pinouts
xous	haha
xro	any input about "allowed vlan list" mismatch between Po and Phys interfaces? (When i do a switchport trunk allowed vlan add XX to my Po, i didn't see the vlan on the Phys interfaces)
TimberWolf_	had a similar issue with an old analog polycom phone
Azee	this is more like ccna voice then A+
Azee	lol
TimberWolf_	the phone had power but couldn't place calls but would ring
kuahara	xous, in a few specific situations you may
Azee	they dont teach out about voip in A+
newtmewt	ffs shit is breaking everywhere
kuahara	but you don't need to memorize them for every connection type in existence
TimberWolf_	turned out pin 7 was not terminated
xous	we had a customer have all these brand new drops installed. installer only terminated 1,2 4,5 because that's all thats needed for ethernet.
blackOff	they go through voip a little
dadrc	knowing your basic ethernet cabling is good, knowing all the pins in vga is probably useless
xous	maybe
xous	maybe not
blackOff	cisco is all networking
Azee	thats what i wana do
blackOff	a+ is just tech
dadrc	If a VGA cable gives you any trouble, you just dump it and get a new one :>
kuahara	wait, you don't know how many vga pins there are? You're clearly not qualified to plug this in. exam fail, try another career.
blackOff	they're not really comparable
eirirs_	lol
cisconinja	what is one should do if they forgot their enable secret 5 password?
xous	I saved a customers ass once by making a t1 xcover on the fly
blackOff	a+/server+ wouldn't hurt if you're going the comptia route
xous	their IT guy had no fuckign clue
Roq	cisconinja: password reset
xous	kuahara: it's 15 pings, iirc
dadrc	And if you really need the pins for something, you can just look 'em up.
xous	pins*
newtmewt	ACTION wants to run and hide
Azee	www.google.com
kuahara	xous, ok, so I have ubuntu installed in this VM.. wait, shit forgot to count the number of pins on the rs232
dadrc	newtmewt, nobody stoping you :P
cisconinja	Roq: by changing the confreg from rommon right?
kuahara	ok, 9. that solves that.
xous	kuahara: 9
Azee	u can findout all ur pin answers from there
newtmewt	our work fiber connection s maintinace that we were suposidly told about
TimberWolf_	he couldn't even google it?
newtmewt	the backup cable line we have no fucking clue
Roq	cisconinja: usually yes, what device do you have? Just google 'device number password reset'
xous	Roq: password recovery
xous	:P
xous	Azee: internet is not always availible
cisconinja	Roq: i figured how to do it in less than a sec , without changing the confreg
newtmewt	granted the ILEC for for both is the same....
newtmewt	but the clec confirmed on their end they were doing maintiance
newtmewt	so no clue about the cable
Azee	xous: really ?
cisconinja	and without reload the device
xous	Azee: it happens
xous	out in the middle of no where
xous	poor or no cell reception
newtmewt	xous: Azee my office right now......
newtmewt	well not this second
kuahara	anywho... so how do I test this serial adapter on a linux vm?
newtmewt	but tonight lol
Azee	lol
newtmewt	we need to get a diverse connection with a different ilec
Azee	get a new network admin if ur network is down
Azee	lol
xous	Azee: I've walked remote hands through command after command
xous	when there was no other option
blackOff	what if a mouse took it down
newtmewt	the fiber runs over the local cable provider(who also does fiber and stuff)
newtmewt	and the cable.... well runs over the cable provider
xous	haha
newtmewt	the fiber is via a clec in the area
xous	then there was the time our entire office was down
newtmewt	and the cable is straight from the cable co
newtmewt	so IP/routing wise we have diversity
xous	because bell killed the wrong oc12
newtmewt	but plant wise... not so much
lo0	Free /69 IPv6 allocations on Valentine's day? Sweet!
newtmewt	i mean its fiber vs cable plant
Azee	xous r u from GTA ?
newtmewt	but at some point they go back to the same fiber i'm sure
xous	Azee: yes.
Azee	ah cuz i heard bell :{
Azee	:P*
xous	I'm 5 minutes from bloor and yonge
newtmewt	GTA?
Azee	grand theft auto
xous	Greater Toronto Area
newtmewt	ah
Azee	lol
newtmewt	i normally just call it the "the northern neighbor" or "northern snowy neighbor"
xous	it's what they call this jumble of cities that grew together
newtmewt	granted recently we have a shit ton of snow here
newtmewt	the coutny sheiriff shut downt he roads yesterday
Azee	is bell as opennings for freshies ?
xous	hah
Azee	entry lvl ?
xous	fucked if I now
Azee	does*
xous	you wouldn't want to work there anyway
xous	fucking retards.
Azee	then u r kinda the right person to take advice from u know the job market here :P
xous	full of idiots with lots of degrees
Azee	haha
xous	all worthless
xous	had one CCIE voice wanting 75k/year
xous	couldn't even tell me how to get the physical port from a mac address on a switch
eirirs_	degrees and no experience
eirirs_	lol
Azee	wow
xous	he was a friend of an employee too
Roq	xous: i don't understand that, that's ccna level
xous	they train to pass tests
xous	not to actually troubleshoot
xous	if give them a actual problem
xous	and watch them try to work it
xous	they break down and fail hard...
newtmewt	you'll be dead before they figure it out
eirirs_	lol
kuahara	xous, you familiar with ubuntu?
terabit	it sucks!!
terabit	:P
Azee	thats why i am looking for work
xous	I've used it
Azee	i dont wana be a paper ccnp
kuahara	I plugged in the usb to rs232, not sure how to find it in this os
xous	kuahara: type dmesg
Opt1	Azee, did you build a lab at home?
newtmewt	kuahara: do a "dmesg"
newtmewt	and look for the device
xous	you should see something like /dev/ttyS0
xous	or /dev/usbttyS0
terabit	kuahara: /dev/ttyUSB0
xous	or something like that
eirirs_	and then you can access the console using screen
xous	or minicom
Roq	xous: ah yeah i know those too. guy i know memories a downloaded exam, without actually understanding what he memorised
terabit	no ttyS0 is for serial,he's using a sub converter
Azee	just starting to build one at home
kuahara	I saw about 10 pages of bullshit fly by
Roq	He still passed
xous	terabit: I find the naming varies depending on the driver
terabit	kuahara: if ubuntu comes with the driver for usb-> serial converter it should be there
xous	don't forget to makme sure you assign the device to the VM
xous	otherwise it won't work
eirirs_	xous: any suggestions for an alternative to using a old 2500 as access server for cisco labs?
terabit	xous: I've only tried 2 different brands of converters but buth used ttyUSB0
kuahara	when I type dmesg, I get instaspammed with pages of text
terabit	kuahara: that's normal
xous	eirirs_: NM-16A/S
terabit	and dmesg won't tell you that anyways :P
Azee	i used packet tracer at home and there lab at tution
terabit	kuahara: "ls /dev/ttyUSB0"
eirirs_	xous: got a NM-32AS incoming lol
terabit	does that show the file ?
xous	terabit: looking at the dmesg output should be more definitive
kuahara	there is no ttyUSB0
terabit	xous: it won't tell you the dev node
Roq	kuahara: you can type lsusb (or sudo lsusb)
Azee	but for ccnp switching u can use any simulator :(
xous	terabit: does on mine
Roq	kuahara: or lsusb -v
xous	he's doing with inside a vm
terabit	kuahara: then try what xous said use putty and try serial connection to /dev/ttyS0
xous	so this may not work at all
kuahara	when I try that, putty fails to open a port
terabit	oh,ubuntu is in the vm ? windows guest ?
xous	yeah
kuahara	windows is the host
kuahara	ubuntu is the guest
xous	I told him that it may or may not work
xous	kuahara: you sure you assigned the usb device to the vm?
kuahara	I checked, vmware says that it gets it by default
kuahara	and that if I want the host to pick it up, I have to disable that feature in vmware first
xous	do you see it in lsusb?
kuahara	when I try that, it just says no such file or directory
xous	sudo lsusb
kuahara	Bus 002 Device 002: ID 0e0f:0003 VMware, Inc. Virtual Mouse
kuahara	Bus 002 Device 003: ID 0e0f:0002 VMware, Inc. Virtual USB Hub
kuahara	Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub
kuahara	Bus 002 Device 001: ID 1d6b:0001 Linux Foundation 1.1 root hub
newtmewt	ahhh
newtmewt	stop spamming
newtmewt	pastebin
xous	it's not there
xous	SPAM SPAM
xous	none to eat
Roq	kuahara: can check in syslog? 'cat /var/log/syslog \| grep usb'
kuahara	my wife eats that crap all the time
xous	mystery meat
archuser2	Hey. Did anyone work with alcatel lucent?
newtmewt	wow..this customer of ours that is having us do the VPN shit is finding(and we are too) that when we go out a LOT of the locations main switch at the site is actually an old HP hub......
newtmewt	and its not actually HP
newtmewt	ell
newtmewt	well*
kuahara	Roq: http://pastebin.com/reiGdUXN
newtmewt	its HP branded, but is cisco hardware, i think it says "powered by cisco" or something
terabit	kuahara: xous said it's not there
xous	kuahara: yeah. the usb device didn't pick it up
terabit	either you need to do modprobe or it's not connected to the virtual machine
xous	so either you haven't assigned it to the vm
kuahara	crud, moved it to a different usb port and windows is trying to install the driver for it
newtmewt	i suspect you don't have it connected/passed correctly
terabit	don't you need drivers for the guest btw ?
terabit	vmware drivers *
xous	terabit: it picked it up
xous	shows the vmware hub
terabit	cool
xous	he can try modprobe pl2303
terabit	^
xous	but I think it would still show in lsusb
Roq	It should
kuahara	there's no device manager gui similar to what windows uses?
terabit	kuahara: nope
xous	you don't need one
xous	this is fastar
terabit	every driver comes with linux
kuahara	I typed sudo modprobe pl2303
kuahara	it dropped to the next line, no error messages
xous	now do dmesg
terabit	my usb-serial is " QinHeng Electronics HL-340 USB-Serial adapter "
terabit	then it might have worked
xous	and lsusb
xous	pastebin both
dadrc	you can check the loaded modules with `lsmod`, if you suspect that something went wrong there.
kuahara	xous, dmesg produces more text than I can scroll back to see the beginning of
xous	that's fine
xous	we only want the last few lines
eirirs_	kuahara: add \|more on the end if you want to see all
xous	less is more :P
eirirs_	kuahara: I also like to use lshw\|more
dadrc	if you're on ubuntu, there's pastebinit. `dmesg \| pastebinit` will put the whole thing in a pastebin and echo the url
kuahara	http://pastebin.com/AEmFbE8r
dadrc	you'll probably have to install it, package's called pastebinit (surprise)
xous	looks like the driver loaded
xous	but no device found
dadrc	you can also pastebin files, `pastebinit /path/to/file`
kuahara	xous, that mean the adapter is broken?
eirirs_	I've experienced something similar to it, had to blacklist some conflicting modules
xous	probably means usb passthrough isn't working from host to vmware
terabit	kuahara: I seriously suggest dual booting linux
xous	just do a livecd f
dadrc	↑
eirirs_	liveusb
terabit	yup
eirirs_	who hell is using cd these days
dadrc	No need to install stuff, just boot it.
terabit	if it's just for putty why not
xous	eirirs_: who the hell uses more these days :P
eirirs_	xous: me
terabit	haha,while your at it try opensuse :)
xous	less > more
eirirs_	xous: I want more!
terabit	xous: no,specially not with money ,sex and food!
eirirs_	terabit: unless you are xous
terabit	ACTION wonders what else matters.....:P
terabit	eirirs: hope not
terabit	I woke up today and broke my gentoo host ,finally fixed now :(
hjohnson	wow, their power is really sucking today
hjohnson	three major outages probably 8 hours or more
hjohnson	guess the power plant is freezing up
xous	heh
xous	fix it :P
newtmewt	ffs provisioning.. they are putting the ILEC circuit id's into our circuit id field....
newtmewt	grrr
newtmewt	i dont' care about that except at install
newtmewt	after that all i need is the carrier we pay's circuit id
kuahara	grr.. it won't let me select this damn ubuntu image to use with "startup disk creator"
terabit	you may or may not want this but susestudio.com lets you create usb/hdd/iso/vm/cloud images with customized packages and branding and download the images :)
kuahara	doing it in windows instead
kuahara	I assume that if this does not work with the livecd, then the problem is undoubtedly the adapter
hjohnson	xous: it's -8F outside right now...
hjohnson	not much I can do to fix that
xous	make fire!
xous	heh. it's hydro electric?
newtmewt	isn't most stuff near niagra?
xous	newtmewt: he's not here.
newtmewt	o
newtmewt	oh
xous	he's on the other coast
newtmewt	all i know is if our office internet bounces again i'm out
newtmewt	lol
hjohnson	xous: yeah
kuahara	ok, I've got the laptop booted into ubuntu live usb
newtmewt	everytime it bounces i loose ssh to this box i'm IRC'ing on, any work boxes i'm in, and our portal's login(have to re-log)
hjohnson	i'm finally going to put my SHDSL link ito place, but to work around these kinds of power outages
hjohnson	the two main nodes of my network have very large battery banks (8 to 12 hours of runtime)
hjohnson	the middle node that all the traffic has to go through only gets about 3 hours or so
newtmewt	huh, for once the fuckers at level 3 were right...
newtmewt	the circuit i was bitching about the 10 vs 50Mbps
hjohnson	quick, buy a a lottery ticket!
newtmewt	it is in fact a 10Mbps circuit, just with "upgrade rights"
newtmewt	also.. they suck at differenting between Mbps and MBPS
newtmewt	for the same circuit this is the billing: IP:Fixed,10 MbpsFE and Access SEQ1 FE 10 MBPS Offnet
kuanix	ok, new paste is: http://pastebin.com/YnNHjF2H
hjohnson	well, network is goign to die again
hjohnson	power is out, and the UPSes are not liking it at all
kuahara	xous, that look any better?
Opt1	just bought eigrp.co
newtmewt	hmmm and why do we have a NRC of $2.00 on that circuit.. WTF
newtmewt	lol
Oliber	newtmewt: NRC? not seen that acronym about..
newtmewt	Non-Recurring charge
newtmewt	one time fee
Oliber	ah
kuanix	grr... on the live usb version, I can't install putty
onefst250r	also nuclear regulation commission
hjohnson	National Research Council
kuanix	attempting to returns: E: Unable to locate package putty
kuanix	same command I used in the vm
xous	kuahara: use screen or minicom
onefst250r	norwegan refugee council == CuriosTiger?
xous	and does the device exist?
kuanix	says it can't locate package minicom either
xous	screen?
kuanix	xous, I would assume so if it works, I left another paste
kuanix	it found screen
kuanix	wonder why the live version can't install putty
xous	probably no dns
xous	or no internet
kuanix	well, we're chatting :)
kuanix	install screen, but the app doesn't appear to be there
kuanix	from the dash anyway
xous	kuanix: it's command line only
kuanix	mind walking me through testing to see if this works?
xous	screen /dev/ttyusb0
xous	or whatever the device is
xous	heh
kuanix	the new paste of dmesg and lsusb is http://pastebin.com/YnNHjF2H
kuanix	btw
xous	yeah it picked it up
xous	/dev/ttyUSB0
hjohnson	and there it goes
eirirs_	onefst250r: yep
eirirs_	dont forget to specify baud 9600
eirirs_	when starting screen
kuanix	holy shit...
kuanix	shit is working
kuanix	installing ubuntu on this laptop lol
kuanix	I finally have a use for it
hjohnson	tha-tha-tha-tha-that's all folks
xous	lol
kuahara	close to that's all
kuahara	have to google what the work around is to getting into this router
kuahara	since it's requiring a user/pw
xous	model password recovery
xous	it's easy as shit
kuahara	I know there's a reg entry that can be changed
kuahara	Thanks for walking me through all that
kuahara	I know that's frustrating ;)
hjohnson	oh well, tomorrow hopefully they'll get the 1803 setup
kuahara	god, doing side by side installations of windows and linux, linux and linux, or windows and windows is SO much fing easier than doing a side by side install of OSX and anything.
kuahara	resize partition, install new os, done
xro	any input about "allowed vlan list" mismatch between Po and Phys interfaces? (When i do a switchport trunk allowed vlan add XX to my Po, i didn't see the vlan on the Phys interfaces)
kuahara	so if someone sells a router with the user/pw not wiped out and you recover the config, you can get the password in plain text
kuahara	sounds like they might, potentially, be putting their network at risk
newtmewt	you can encrypt them too
newtmewt	some people don't
kuahara	yea, but the encryption used with service password-encryption is pretty much just kiddie encryption isn't it?
newtmewt	you can set the type
newtmewt	you can use type 7 or md5
newtmewt	type 7 is kiddie
mAniAk-_-	type 7 is reversible
newtmewt	md5 is pretty good
newtmewt	its not reversible directly
mAniAk-_-	md5 is fine, though it can be found it with time
dadrc	md5 is worthless, if some wants the password badly enough
newtmewt	of course
newtmewt	but it keeps the kiddies out :D
dadrc	yeah, ok
xous	heh. I broke some shit.
dadrc	an arm and a leg?
mAniAk-_-	kuahara: even if you forgot to wipe it before you sold it you shouldnt have any local usernames anyway, central tacacs/whatever, password on console and enable
xous	dadrc: montreal
xous	well
xous	our montreal pop
xous	kuahara: that's why only noobs sell routers without wiping them
xous	and yeah most companies use tacacs/radius anyway.
dadrc	xous, have you tried turning it off and on again? :P
xous	dadrc: it was taking a weird l2 path through some switches that are acting up
xous	and then there was an mtu issue on the link
xous	heh
dadrc	I swear, sometimes those things are just out to fuck with your day.
xous	the switches?
xous	or mtu?
dadrc	Switches.
xous	heh
xous	well these switches were probably dropped down a few sets of stairs by the looks of them
xous	so I can't exactly blame them.
MrJayPC	lol
kuahara	yea, they used md5
xous	sha512 on modern ios
xous	cisco's md5 is salt+hash so you can't use a pre-computed hash attack on them
dissolve\|	do i really need to memorize the different types of LSAs?
dissolve\|	lol
xous	why not?
dissolve\|	just wondering how important that is
xous	what are you doing?
dissolve\|	judging by your answer it is
dissolve\|	still ccna
dissolve\|	ospf
xous	hrm
xous	not sure if it's required for the CCNA
dissolve\|	quick lsa type 3 what is it!
dissolve\|	ospf
xous	fucked if I remember
dissolve\|	lol
Roq	It's more a ccnp topic, not so much ccna
dissolve\|	kk
dissolve\|	2 months from now then :p
xous	I memorize what I need
xous	I'm lazy.
dissolve\|	i have to make retarded acronyms for stuff i need
xous	besides... cisco seems to think subnetting is the most important shit
bhuddah	the calculation of subnets using nothing but your brain :)
xous	yar
xous	I do it mentally
dissolve\|	yea thats already a must for ccent
kuahara	wife just brought in a sizzling plate of sisig :)
xous	show of hands. who had to google that?
dissolve\|	mine just farted
dissolve\|	lol
bhuddah	here!
dissolve\|	thought u misspelled sausage..
dissolve\|	hmm
dwxreaper	how many feeds of full tables should 1GB of RAM hold, as a very rough estimate?
Oliber	um
xous	isn't it about 600mb now?
xous	I forget
Oliber	ooh, this is #cisco, thought it was a db question..
dwxreaper	ASR router ran out of memory with 2, has 1GB
xous	that prefix length?
xous	what8
dwxreaper	I think it has some templates to not accept more than X routes and X length prefixes
xous	well at le 24 it will be a lot less than le 23
xous	err
xous	bah
xous	I'm tired. I should be sleeping.
eirirs_	no, it's lunch time now
xous	it's 5am here
dwxreaper	that was my plan : )
dwxreaper	I take sleeping bills sometimes, damn that is hard to get up on those!
xous	I'm working
dwxreaper	you work night shift?
xous	no
xous	noon to 20:00
xous	emergency maintenance
kuahara	meh.. xrdp just showing the background only. none of the apps
xous	try rdesktop
xous	could also be video driver issue
kuahara	do I need to remove xrdp?
kuahara	rdesktop doesn't appear to be working at all
dwxreaper	that's something you could use in place of freenx?
xous	kuahara: nope
twkm	rdesktop and xrdp are different, though related things.
xous	different programs
xous	find a program to test your video cards stuff
xous	probably a issue with xorg or the video driver
dwxreaper	I put a few of my computers with puttytray and a usbstick, automatic login with the keys, but I gotta add xming. would be nice to get the full GUI up and running with some client on there
kuahara	xous, rdesktop is only from ubuntu to windows?
kuahara	am trying to remote in the other direction
dwxreaper	I think rdesktop is a remote desktop client, I use it to connect with remote desktop with xming, like rdesktop name in bash
kuahara	compiz crashed when I remoted in with xrdp
twkm	rdesktop is an rdp client. xrdp is an rdp server.
dwxreaper	the new windows rdp gateway services might smooth the video out and what not, sounds like a lot of setup
dwxreaper	that or xendesktop
xous	ah
xous	maybe you want vnc then
kuahara	Literally just read an article that points out why using rdp (this guy also used xrdp) is better than attempting vnc
Azee	xous go to bed lol
Azee	its 5:13 am
eirirs_	xous: I got up from bed at 0530am
xous	haha
xous	I woke up at 16:00
xous	because I accidently slept in 4 hours
xous	but I work from home
kuahara	it says that rdp is aware of controls, fonts, and other graphical primitives and that because of this, the datastream is compressed significantly over alternatives like vnc
xous	so nobody noticed...
dwxreaper	I don't think I could work from home, I just really really don't want to work when I'm at home
dwxreaper	I think I"d make a depressing looking office
xous	heh
xous	I'm usually more productive at home
xous	I get distracted easily.
newtmewt	lol what
newtmewt	you are more productive but get distracted easily?
xous	I get distracted easily at work
newtmewt	ah
newtmewt	i got to work from home last night due to the weather
xous	at work I can screw with the noobs
kuahara	oh jeez. so it looks like someone has posted the solution, but I don't know enough about linux to implement this
Azee	xous are u ccie ?
xous	nope
xous	I'm a drunk
Azee	lol
Azee	5am .. damn
xous	why 4 need at ccie?
newtmewt	they are too lazy to just set up our VOIP boxes to foward the calls to our 877 # to a hunt group or some shit...instead they pay a fucking answering service to answer the call, take a call back # and details, and then call us up and ask if they can connect the call...
newtmewt	retarded
newtmewt	and then the fuckers keep on calling me and my room mate/co-worker until 11am... we were off work at 8:30...
xous	haha
newtmewt	i even answered once and was like "look, stop calling, i'm off the clock"
newtmewt	theydidn't...
kuahara	xous, hate to ask, but... in this paste: http://pastebin.com/B1piLSud Do I just type the 3 commands he included in that post to do what he's talking about or is it more involved than that?
xous	DND
newtmewt	xous: i was getting ready to set them to spam on google voice and let them get the "# has been disconnected" message :D
xous	kuahara: loosk fine.
newtmewt	but i was afraid i would forget to remove them from spam and then next time i had to work from home it wouldn't go well lol
xous	newtmewt: so just bill overtime for the annoyance
newtmewt	hehe
newtmewt	i should :D
xous	I have a rule on my work line
newtmewt	well you have to reemeber these were to personal cells
newtmewt	i don't have a work line
xous	12-0000 it rings and forwards to my cell
newtmewt	ah
xous	other than that
xous	it goes direct to VM
newtmewt	see you have computer intelligance
newtmewt	i was dealing with answering service morons
xous	power button on cell phone :P
newtmewt	i should set up a group on google voice for them alone and set up time rules.....
newtmewt	xous: i was using it for other stuff...
xous	hell you could have just pretended to be a recording
newtmewt	lol
xous	"I'm sorry giggle this line has been disconnected."
newtmewt	lol
newtmewt	i was goign to just get shit faced and start answering :D
xous	hah
xous	they call me on th weekends all the time
xous	when I'm shitfaced
xous	I still fix shit and call 'em noobs
newtmewt	it was actually funny, my roomy(me and him were both working last night) walked in part way thought the night and handed me a smirnoff
newtmewt	it was funny to be able to say "i'm drinking and getting paid to"
xous	I used to do that all the time
xous	at my old job
xous	do like 40 tickets
kuahara	ugh... the refresh rate using this is fing horrible =/
xous	in like 2-3 hours
xous	(everyone else did 20-25)
xous	get drunk and watch movies the rest of the night.
newtmewt	i still tink the funny thing would be to have gotten shit faced as soon as i signed off and then start answering the answering service peeps
xous	probably some outsourced indian shit anyway.
newtmewt	the time i answered they where like "ok i'll skip you and brett and go to Guy"(my boss). i laughted and was "he'll love it too"
newtmewt	xous: they are US based
xous	ah. stupid americans
newtmewt	http://www.mapcommunications.com/
xous	heh. I got a "how do you like your services call" from rogers the other day
newtmewt	i honestly can't imagine what they are paying those fuckers
newtmewt	i would have just fowarded the 877 # to a number on our asterisk box at the colo and then we could foward it how ever the fuck we wanted
xous	"how happy are you with your service?"
newtmewt	fuck they could of even just sent us a couple of the voip phones they are texting
newtmewt	testing*
xous	"we considering I told rogers that the next time they called me when there wasn't a problem with my account I'd cancel...."
newtmewt	the idiocracy amazes me lol
xous	newtmewt: hehe
newtmewt	lol xous
xous	newtmewt: our call flow is fucked.
newtmewt	i mean on a day to day basis it works
xous	newtmewt: they woke me up 6 times in one week
newtmewt	since we have the pbx at the office
xous	I was fucking livid.
newtmewt	but i mean we have been setting up our own voip infrastructure
newtmewt	why not fucking using
xous	newtmewt: stupid is as stupid does
xous	haha
kuahara	(&&$@^#
kuahara	I hate xrdp. Think I am just going to try vnc regardless
kuahara	well, this doesn't make sense. If I type commands into a terminal window, everything shows up just fine.
kuahara	if I use screen /dev/ttyUSB0 and issue commands, it is as if I am typing with echo turned off
kuahara	and I can't see the results of issued commands without closing the terminal window, reopening it, and using screen again to get the update
kuahara	so I'm wondering if the issue is xrdp or screen
xous	heh
xous	why not just ssh into the box
xous	and use screen that way?
kuahara	I'll try it
kuahara	one thing I love about this
kuahara	installing most apps so far is like: "hey, this is going to use another 881k of disk space, is that ok?"
kuahara	and I'm like, "how the hell are you doing that with only 881k of disk space?"
xous	efficently?
kuahara	ok, I used putty to ssh into the linux machine. all is well until I use screen to access the router and now I am getting very similar behavior
kuahara	lines are only half showing up. Stuff I type does not show up right away or does not show up at all
dadrc	try using tmux
colle	screen has done that for me too
colle	use tmux
colle	heh
dadrc	=)
kuahara	fortunately I already went and installed tmux
kuahara	will look up the how-to on that
kuahara	I don't get it... tmux just seems like another version of the terminal window
kuahara	still forcing me to use screen or some alternative to access the router
colle	tmux and screen do almost the same things
kuahara	but how do I tell tmux that I want to connect to my router?
colle	eum, what?
colle	use ssh or telnet?
kuahara	ok, if I have a regular terminal window open, I'd type screen /dev/ttyUSB0
kuahara	and from there I can log into my router
kuahara	if I instead type tmux
kuahara	I just get a new CLI for use with the linux os, not the router IOS
kuahara	so I sit there at a command line doing nothing unless I, perhaps, type screen /dev/ttyUSB0 within tmux
kuahara	but that just gives me the same problem I had with screen before I involved tmux
colle	ok
colle	never done that with tmux
colle	minicom started from within tmux should do the trick I guess
freax	errr sorry winblowz has no telnet
kuahara	it does, you just have to turn it on
kuahara	it's under windows features
colle	kuahara: http://acidborg.wordpress.com/2010/12/30/how-to-connect-to-cisco-devices-via-serial-port-using-gnulinux/
colle	then you don't have to deal with screen at all
twkm	freax: incorrect.
twkm	"deal with". screen is very handy, especially if you are remote and there is any chance you'll lose your connection.
colle	yes, but read the scrollback
twkm	i have.
colle	tmux works far better for me
twkm	kuahara: tmux has no similar facility.
colle	we already know that
colle	hence my link
colle	minicom + tmux
ALucas__	morning gents
kuahara	I have minicom configured
kuahara	it doesn't seem to do what I expected. I saved the config as cisco, then exited and ran: sudo minicom cisco
kuahara	just takes me back to minicom and the only thing I can do is continue editing the config
ALucas__	Did you write mem it? ;P
kuahara	I used "save setup as..." and named it
kuahara	then ran the named file
twkm	sounds like you actually ran minicom -s cisco.
kuahara	typed it exactly as shown on the link colle shared
twkm	in general you want minicom -o ciso.
kuahara	didn't use -anything
twkm	then you should not have been put into the menus, it should be a mostly blank screen waiting for output to display or input to send. (i tend to use -o defensively, in case someone restored all the modem init crap)
kuahara	on the lower right it still says offline
twkm	as long as you don't have a menu pop-up on screen, just try pressing ^U then enter.
kuahara	can't type anything
bhuddah	so you mean it does not work?
kuahara	correct
twkm	at minimum you need to verify the serial port and comms particulars. 9600n1 in general, unless you've done something "odd" (e.g., to upload an image more quickly).
bhuddah	have you tried connecting with screen? (yes, just to make sure the ttyS0 works)
kuahara	yes, but screen is garbage
kuahara	which is why I am trying to use minicom
kuahara	twkm, it is 8600 8n1
bhuddah	define garbage?
bhuddah	did you get a connection?
kuahara	err 9600 8n1
twkm	good. no flow control, of either kind.
kuahara	bhuddah, it doesn't echo everything back. I get half of a line of text that should have shown up. Most to all of what I type never shows up in the CLI
twkm	and of course whatever your serial port really is.
kuahara	if I want to see the results of an issue command, I have to exit the session and screen back in again
kuahara	yea, the port is correct. /dev/ttyUSB0
kuahara	same one I used with screen
bhuddah	this sounds terrible
kuahara	it is
twkm	maybe try a different dongle.
kuahara	I am doing all of this over an SSH session
kuahara	not that that should make a difference
kuahara	I mean if I go directly to the laptop, I can screen in and everything is fine
bhuddah	yay. just make it MORE complicated ...
kuahara	but over xrdp, it is horrible
kuahara	and screen over SSH exhibits the same behavior as it does over xrdp
bhuddah	-.-
kuahara	so the problem seems to be screen
kuahara	someone else, a few min ago, said they get the same behavior with screen
twkm	but you've got poor results using minicom, so that's out. perhaps try some other serial port program.
kuahara	going to try cutecom instead
kuahara	well, cutecom is out too
bhuddah	eventually we will come to the realization that your problem is something else.
colle	it sounds like a charset problem
colle	or maybe $TERM
twkm	so three serial port programs won't work. "try a different dongle"
kuahara	try a different dongle? not even sure what that means. if you're referring to the usb to rs232, it's the only one I have
twkm	oh well.
bhuddah	then get a different one...
kuahara	ok
kuahara	I got minicom working
kuahara	but...
kuahara	same fing behavior as screen
bhuddah	i think around 80% of all cheap rs232 dongles just don't work right.
kuahara	one of the settings I kept changing in minicom kept reverting back to default.
kuahara	I saved it under the cisco profile, changed it again under the dfl profile
kuahara	and logged in again and it kept going back to default
kuahara	changed it like 4 times in a row, saved, and kept checking until it stopped doing that
twkm	minicom is fairly sucky too. anyway, you seem to have ruled out serial comms programs, so that leaves other things (e.g., dongle, cable or device).
kuahara	this is the kind of crap that keeps happening when I try to use screen, minicom, etc.. http://i.imgur.com/wcOAPfB.png
colle	try changing terminal charset from utf8 to iso8859-1
kuahara	the cursor stops exactly where you see it in the screenshot, the line does not fill, and I can't type anything
kuahara	ok
colle	both in putty and your linux host
kuahara	looks like it is already iso8859-1 in putty
colle	change that to utf8 then
bhuddah	then better get your UTF8 going first.
bhuddah	it's about time :)
colle	ubuntu defaults to utf8 I think
colle	but putty does not
kuahara	changed it to utf-8 in putty and reconnected. same behavior
bhuddah	have you verified that utf8 works right now?
kuahara	the cursor is just freezing up at random parts of the line
bhuddah	which locales are installed on that server?
kuahara	I'm changing it under translation btw.. it says, "Received data assumed to be in which character set:"
bhuddah	yeah. but that is only one part of successfully enabling utf-8
kuahara	what is the other part?
bhuddah	googling and following a howto for your linux variant.
colle	is it only through putty that this is not working?
colle	if you use the local linux machine directly, is it ok then?
kuahara	I have only used putty for ssh, but before I use minicom or screen, everything appears to work just fine at the terminal window
bhuddah	emphasis on _appears_
kuahara	well, if I type dmesg for example, I can see everything I type
kuahara	and when I hit enter, I get pages of text
bhuddah	can you walk up to that machine and try it?
colle	do you have a keyboard and screen directly attached to the linux machine?
kuahara	it doesn't unexpectedly cut off and stop echoing at some random char on some random line
colle	if so, check locally first
kuahara	the linux machine is the laptop that is sitting right next to me
bhuddah	why are you using ssh then?
colle	okaay and if you run the command in a terminal on that laptop...
kuahara	screen works just fine on the laptop
twkm	you use putty for ssh. boggle
kuahara	heh... it DID work fine earlier
kuahara	screen is acting like shit on the laptop right now as well
bhuddah	maybe we can simplify the setup to test each part on it's own?
hjohnson	what's wrong with PuTTY?
kuahara	restarting this stupid router rq
kuahara	looks like I am back to square 1
kuahara	earlier when I'd restart the router, all the startup shit would appear on screen just fine
kuahara	now even that garbage is cutting off
bhuddah	either the router or the cable or the serial adapter is the problem.
bhuddah	probably neither putty nor ssh
kuahara	bhuddah, yea, before I ever got started with linux, I assumed the usb to serial adapter was trash
kuahara	that adapter does not work in windows AT ALL
bhuddah	then why don't you try a different one?
kuahara	I only have this one
kuahara	it is a prolific piece of shit
bhuddah	what do you mean by "does not work in windows"?
kuahara	none of the drivers will work with this thing in windows
kuahara	we've been through 30 or so
bhuddah	but it's shown up in the hardware screen?
kuahara	it will either code 10 or code 1 on all drivers
bhuddah	have you googled for the device and vendor id?
kuahara	yea, device manager sees that it is there, but always reports that the device can not start or that the driver is missing
kuahara	yea, this would be my 3rd day troubleshooting this
bhuddah	well. bad luck. a working adapter is only like 5€ ... not worth the trouble. just order some and find one that works for you.
kuahara	until xous suggested doing this in linux earlier, I'd never gotten into the router at all
kuahara	was surprised to see it worked just fine in ubuntu earlier
kuahara	at least for a while
kuahara	wish shit would have been kept simple and we still made laptops and motherboards with serial ports on them
bhuddah	sure. buy a new computer... not gonna be cheaper.
hjohnson	eh, the new USB console ports on cisco gear work pretty well
hjohnson	though I wish they had gone with micro-USB instead of mini-usb
kuahara	I'd need a usb port with 2 male ends
kuahara	er
kuahara	usb cable
kuahara	both type A I mean
kuahara	and of the dozens of usb cables I have, none are those =/
blackOff	anyone up to date on the new CCNP Security courses?
blackOff	300-xxx
blackOff	http://www.cisco.com/web/learning/certifications/professional/ccnp_security/index.html
bhuddah	usb with two male ends is forbidden.
hjohnson	well, all USB cables effectively have male ends
hjohnson	it's just that you have master and slave connectors
hjohnson	that are different
hjohnson	(unless it's a USB extension cable of course0
kuahara	yea, male A to male A is what I was referring to
Norgsy	upgrading switches... yay!
eirirs_	tftp!
blackOff	can't find any material on those certs
Norgsy	I'm using ftp this time
Norgsy	there is a lot to do and I didnt get time to upload the code today
blackOff	wondering if i should just cram for 2 months and grab the current certs
Norgsy	and some I am being lazy and updating direct from ftp
blackOff	i've got enough time to get the current certs
kuahara	ok, so gtkterm works just perfectly on the laptop
Norgsy	25 mins later the switch stack returns.
Norgsy	wow, those stacks of 8 will take a while
Norgsy	that was 3
kuahara	resetting this thing back to factory defaults
freax	hahahha owned http://pastebin.com/NXTHwEUw
freax	rootsec rulez
freax	and i ethically removed the ip's
freax	lol
freax	had any 0days lately
freax	lulz
kuahara	well then
kuahara	so I reset this piece of junk back to factory defaults and everything seems to be working fine now
kuahara	closed the laptop, went back to putty > ssh'd in
kuahara	everything is working as expected
kuahara	I'm wondering why when I do a "sho run", it appears nearly all of the pre-existing config was wiped out with a few exceptions
kuahara	under "logging message-counter syslog", there's a line that reads "enable secret 5 $1$238r8923rf8eawe932"
kuahara	or whatever the pw is, just mashed random keys there
kuahara	heh...
kuahara	appears I had only 1 good session
kuahara	closed that and SSH'd back in, old behavior again
kuahara	ACTION sighs
kuahara	it has to be this adapter
kuahara	gtkterm isn't working anymore either
oister_	try a windoze box
kuahara	oister_ I got this far switching from a windows box after 3 days of assuming this cable was just broken
kuahara	(which it only appears to be partially working in linux)
kuahara	intermittently working rather
kuahara	there are no drivers for it that will produce anything other than a code 1 or code 10
blackOff	anyone have any info on the new ccnp security exams?
eirirs_	Scrye: still driving?
kuahara	(missing driver or device failing to start)
blackOff	EOL?
blackOff	ugh
blackOff	i don't really want to do the new exams
void64	which?
blackOff	300-20x exams, ccnp security
void64	new or recert?
blackOff	new
blackOff	i sorta want to cram for the current ones
void64	how many exams on the security track?
blackOff	4
blackOff	i could do one every 2 weeks, or read the books a couple times, and practice for a month, then read each book before taking the exam
blackOff	or i'll have to wait for the new books
ReGiStRaS	any channels for chat about checkpoint security products? :x
twkm	ReGiStRaS: #help might be able to help you.
mynd	morn'
eepr0m	hi
eepr0m	viva la vida loca
Giant81	CCNP SWITCH test today
Roq	Good luck
Giant81	we'll see how it goes
mynd	gl Giant81
hendrikz	good luck
bhuddah	good luck
Giant81	either way pass or fail I'm moving on to ROUTE after this
Giant81	I already attempted SWITCH once before and just barely did'nt make it, so I'm hoping for better this time
Giant81	but either way I'm getting burnt out studying it
void64	lol thats the way i felt after ie … burned out!
void64	but back on the horse again
void64	chasing DE
^NaLiN^	Giant81, i did switch last year and i was short of time
Giant81	see I never ran out of time, I just got more questions about things I hadn't studied as closely
^NaLiN^	depends how are you doing the sequence of the request stuff is not working or you cannot see it the output
Giant81	I was expecting it to be pretty STP / FHRP / SVI's etc... heavy and it had more wirelss and dot1x in it then anticipated
Giant81	oh I know
Giant81	it doesn't work like IOS
Giant81	I tried removing some extra commands I didn't want, and I could'nt get them out of the
Giant81	'sh run'
^NaLiN^	yes i i made a default interface and typed again and i was not working :(
Giant81	no idea if I got that one right or not
Giant81	only time in a lab I've ever used the comments section
Giant81	where you can leave comments for the test creators
^NaLiN^	yes
Apachez	http://www.youtube.com/watch?v=waEeJJVZ5P8
Giant81	no surprised
Giant81	KAS is charged wtih protection...lol a russian company protecting against russian hackers
Giant81	unless they are in on part of it
MrPocketz	http://www.thegeekstuff.com/2011/09/cisco-asa-high-availability/
Apachez	well and yet KAS was the only ones who informed about stuxnet, so you do the math =)
MrPocketz	So I'm reading through this to figure out how to configure active / standby failover on an ASA 5505, but you don't NEED two seperate WAN IPs configured for active / standby as they have in this example, do you?
Giant81	oh I like KAS tbh, we use it at work
Giant81	works well, doesn't seem to interfere with too much, doesn't crash, easy to manage, and their suport is a little funny but they do get back to you quickly and they do get things fixed
blackOff	yo
blackOff	when the CAM is filled up and you send to known MAC addresses, does the switch still flood?
Giant81	that is a good question, I would say no
blackOff	i think they do
Giant81	it's worth looking up
blackOff	I'm looking right now and don't know
blackOff	haha
Giant81	so if the CAM is filled up it stops using the CAM table?
Apachez	successfully entered HUB mode
Apachez	proceeding...
Apachez	a packet with a mac which the switch doesnt know where this mac is at will be handled as a DLF packet
Apachez	destination lookup failure
mgeorge	looks like a bunch of snipers took out a power station in california but it was never covered on the news
Apachez	such packets will be broadcasted on all interfaces which belongs to this vlan except the interface the packet arrived at
mgeorge	news was too busy with the justin bieber scandal
mgeorge	http://www.businessinsider.com/silicon-valley-power-station-sniper-attack-2014-2
Apachez	mgeorge got an url for that except for the regular conspiracy sites?
mgeorge	i would imagine a couple of cordinated sniper attacks on the grid could easily take down the grid.
Giant81	it wasn't somestic terrorism
Giant81	it was a bunch of drunk rednecks taking pop shots at something
KenMatlock	just find 1 heavily-used line, take it out, and let the grid collapse upon itself trying to resolve it
mgeorge	yeah ken, the grid is very vulerable to attack and the gov does not care
mgeorge	taking out 3 key spots simultaneously in the eastern grid would cause the entire eastern grid to implode
KenMatlock	heh, the grid is 'unstable' in it's normal state, it's constantly having to be re-balanced as loads go up and down
SuperNull	i haev a load to balance.
mgeorge	these locations are heavily protected from intruders
mgeorge	but not bullets
mgeorge	lol
MrPocketz	Anyone set up ASA's for failover?
mgeorge	nope
mgeorge	no one in this channel has ever setup an asa failover pair
Lalufu	we all do SRX clusters secretly
mgeorge	we all hang out here and talk about other shit
Giant81	lol
Giant81	I have aSA failover pairs
blackOff	do we rely on the grid?
Giant81	it's simple
Giant81	oh but there is one gotcha
MrPocketz	So if I set up two ASA5505's as active/standby, does the standby ASA need a seccond WAN IP?
Giant81	the ASA pair will use the phycisl MAC addresses of the Primary, so if the primary fails, the secondary will use the primarys MAC addresses
Giant81	which is fine
Giant81	ACCEPT
MrPocketz	the way i understand it they each have a wan ip on the external interfaces, and if failover occures, the 2nd ASA is activated, but it'll use the 2nd WAN IP. Is that correct?
Giant81	if the primary goes bad, and its replaced, and you install a new primary with new MAC addresses, as soon as the secondary sees a new primary
Giant81	it will immediately switch to new MAC addresses and casue an interuption of traffic
KenMatlock	no, whoever is active has the primary MAC and IP, whoever is standby has the standby MAC and IP
Giant81	the solution is to use Virtual MAC's for all links
KenMatlock	if a failovwer occurs, the IP and MAC swap to the new active
KenMatlock	so you need 2 IP's, but only one carries traffic
Giant81	yup
MrPocketz	Fuck, getting a call from a client. Sorry. One moment.
Giant81	it's the MAC thing that pisses me off...... oh well, live and learn, always use virtual MACs on ASAs
KenMatlock	meh, as long as the MAC isn't duplicated I really could care less what it is :)
Giant81	ahhh yes but if your primary fails
Giant81	you can't get a new primary in place without a down time
Giant81	which is complete FAIL for something that does stateful failover and recovery
Giant81	well you can actually... you can static the virtual MAC to whatever it's using now
Giant81	that's how i did it but still
Giant81	it doesn't gratuitious ARP when it does it either.... so you could be down as long as it takes for your OS/network to ARP timeout
Giant81	"including more than 100 fingerprint-free shell casings similar to ones used by AK-47s
Giant81	"
KenMatlock	can't say I've ever experienced that behavior. I've replaced ASA's before and the gratuitous ARP worked fine for me
Giant81	lol you know what else is "similar" about every rifle cartridge known to man
Giant81	KenMatlock, when failover over it works great
blackOff	that different guns can use the same bullet
KenMatlock	only terrerists use bullets like this!
Giant81	but I wasn't going to take the chance of loss of traffic during day hours
Giant81	ZOMG TERRORISTS!!!!
Giant81	everyone is a terrorist!!!!
Giant81	terrorists everywhere!!!!!
KenMatlock	well, technically anyone that doesn't like the status quo of the govt can be classified as 'terrorist' :)
Giant81	you know that toothless neckbeard redneck drunk that shot up your mailbox? TERRORIST!!!! it was an attack on federal property
KenMatlock	technically it was :P
Giant81	KenMatlock, that would include about 80% of americans
KenMatlock	Giant81: exactly :)
MrPocketz	KenMatlock, that makes sense
MrPocketz	so if it DOES fail over, it take the prmary's MAC, thereby acting as the primary, and our mail and dns records that point to primary IP #1 are uninturrupted.
MrPocketz	if just needs a 2ndary WAN IP for giggles, more or less?
KenMatlock	the MAC is ok to change, that's taken care of during a failover
KenMatlock	but yeah, the other IP is there to be able to manage the standby box, and failure detection (monitor interface <x>)
KenMatlock	so if you have .1 and .2 and .1 is the primary IP, whoever is the primary box will always be .1
KenMatlock	and the standby will always be .2
KenMatlock	if you swap the active/standby the IP's move so .1 is always primary
MrPocketz	got it
MrPocketz	Thanks man.
MrPocketz	should it be possible to impliment this without downtime if one of the ASAs is already in production?
mynd	tanner: gots a question for you 'bout cme and translation patterns
KenMatlock	MrPocketz: not sure, I've always done them in pairs from the start
MrPocketz	A) I'm 2.5 miles away from the client site
KenMatlock	MrPocketz: I'd plan on at least a short 'blip' as it figures the failover out
MrPocketz	B) one of them is already in production
MrPocketz	and C) I've never done this before
MrPocketz	..it'll be fun
KenMatlock	yeah, I'd see if there are docs out there going over he process. I've never done it like that before so I don't know the quirks
mynd	tanner: if i put a translation pattern on the incoming pots dial-peer and then we fall into srst mode, which has its own translation rule
KenMatlock	for the first time I'd want to be consoled into them just in case :)
mynd	tanner: the translation pattern on the dial-peer still takes effect, correct?
MrPocketz	I think ima just try to learn / understand it as much as possible, then schedule an evening to drive out there and knock it out on-the-fly after hours
oister	you're wanting to enable failover remotely? Do you have console access?
mynd	tanner: think i just talked myself through the solution
Giant81	remote console devices are sexy
Giant81	Digi CM32 = best thing ever
oister	Giant81: does it require special cables?
Giant81	well accept for the console server + remote PSU I found
Giant81	no the CM32 just goes from RJ45 to cisco console with a patch cable
Giant81	which is AWESOME
Giant81	we got another digi and it needed a custom pinout.... HUGE pain in the dick
Giant81	but that other digi modle has been discontinued.... no surprise
N3tw0rK	anyone have an 1841 they could grab a working cookie from? I dont think im specifying something correctly
oister	we use avocents which can do that too
Giant81	the ohter ting with the CM32's is that they sell a fuck load of them, and you can get them for fairly inexpensive on e-bay
oister	works with either rollover or straight through serial with an RJ45
Giant81	http://www.digi.com/products/consoleservers/digicm
oister	can auth ports to tacacs too which is cool
Giant81	oister, nice
Giant81	yeah if you can't go patch/rollover to a cisco device, you fail
Giant81	damn now I can't find it
mynd	Giant81: i used a Digi32 (I presume older model) and had to do the custom pinout
Giant81	it was sexy, was an 8 port console server, built into a remote PSU, so plug in your shit, and you get console server + remote PSU in one package
mynd	put worked like a charm afterwards though
Giant81	really? my older CM32 I bought on ebay used patch cables
Giant81	now the one we had to pin out was a ConnectPort LTS 32
Giant81	http://www.digi.com/products/serialservers/connectportlts
oister	older avocents had to do custom pinouts too
mynd	Giant81: not sure of the actual version, but i wrote a blog entry on how to use it: http://justnetworked.wordpress.com/2011/12/05/digi-etherlite-32-as-a-terminal-server/
mynd	Giant81: ahh ... mine were Etherlite's
mynd	we used them as reverse telnet's on our old dialers with dumb terminals
KenMatlock	heh, I used to use the Livingston PM2's
KenMatlock	but those were DB25 serial ports :P
Nispr0	trying to setup eth-channel. I have set one port channel to lacp and mode active. Now when I try to create another portchannel with lacp and mode on it says already part of channel with diffrent type of protocol even doh It is seperate interfaces and port-channels. What am I doing wrong?
Giant81	yeah exactly what a pain in the ass
Giant81	custom pinout console servers make me want to punch babies
Giant81	it's just a ploy for them to sell adaptors
MrPocketz	Hmm
Giant81	so I just put a 24 port patch panel into the rack right above it, and punched down the panel with like 3ft cables, tipped them, and now I just plug patch calbes into the patch pannel
Giant81	Nispr0, I would do a 'show etherchannel' and see what it says
KenMatlock	Giant81: well, those livingston PM2's were circa '93 or so :P
Giant81	it should tell you wha tis at what level
KenMatlock	they were meant as dialup modem boxes
Giant81	ahh
Giant81	the next thing is to shut donw all ports you ar eusing for the port channels first
KenMatlock	but you can repurpose them as 30-port console servers
Giant81	then set it up, then bring it up, ortherwise it was probably defaulted to 'dynamic desireable' and aut-negotiated a dot1q trunk
Giant81	or it auto negotiated a PaGP tunnel
KenMatlock	bah, go with ISL :P
Giant81	well hes talking etherchannel and I was talking both
Nispr0	Giant81: thanks, will try that
envirocbr	Errrrr, my ASR 1001 is setup but a: show otv vlan lists my vlans but they're not "Authoritative"
Giant81	my ISP hates me I'm sure
Giant81	setting up my own linux mirrors
KenMatlock	envirocbr: do you have 2 OTV boxes on the same vlan?
Giant81	so far at 450gb of traffic downloaded in the last few days
envirocbr	KenMatlock: I have an ASR 1001 in one site
envirocbr	Which has a 4510 with a trunked interface to the ASR gi0/0/1 interface
envirocbr	On the other site I have a 7009
KenMatlock	envirocbr: ok, do you have OTV adjacencies?
envirocbr	Yes
envirocbr	Unicast
envirocbr	That shows up
KenMatlock	and the ISIS adjacencies are up?
envirocbr	usdc1-core-OTV L1 Ov1 172.26.6.2 UP 56 usdc1-core-OTV.01
envirocbr	that is a show otv isis neighbors
KenMatlock	and are you learning isis 'routes'?
MrPocketz	so aparently I completely misunderstood this initiative
MrPocketz	they never went through with the 2nd ASA. instead, they got a 2nd ISP connection
envirocbr	KenMatlock: I see nothing in: show otv routes
KenMatlock	are both ends stuck at not 'authoratative'?
KenMatlock	that's odd, you should get an AED on each side
envirocbr	KenMatlock: In my 7k, the vlans are active
KenMatlock	did you set up the service instance, and tie it to the OTV interface, and trunk the vlans to that port?
envirocbr	KenMatlock: I will paste my ASR configuration
KenMatlock	ok, I'll have to go from memory, since we don't do OTV here :)
KenMatlock	but I did OTV at my last place
void64	Someone help me out, whats the big to do with OTV, isn't OTV basically MPLS over GRE?
KenMatlock	sorta, it has some intelligence to it. it uses ISIS as a 'routing protocol' for MAC learning
kmcelroy1	weird
envirocbr	KenMatlock: http://pastebin.com/WdmMRZV9
KenMatlock	kmcelroy1: well, quite slick actually, since ISIS supports TLV's, you can announce anything you want :)
kmcelroy1	right, pretty cool sounding, but strange :P
void64	Just trying to compare it's benefits vs something like l2tpv3 ?
envirocbr	KenMatlock: On the 7k, the VLANs, 7 and 30, are "active"
kmcelroy1	IS-IS seems like a good choice for that sort of thing
envirocbr	void64: Doesn't allow broadcasts to saturate the links
envirocbr	it "routes" the mac addresses
envirocbr	allows for FHRP to be "active/active" at each site
envirocbr	quite slick
envirocbr	KenMatlock: Did I do it right?
void64	I'll check it out
KenMatlock	envirocbr: hang on, going through it :)
KenMatlock	really, OTV is an option for L2 extension
void64	So good or practical to use say point-to-point 10GE links to connect physical sites and use OTV as backup ?
KenMatlock	with unicast mode, it removed the need for multicast end-to-end as well
mrwangmaster	void64: as mentioned no broadcasts to worry about... also no pseudowires to manage. control plane/learning is all multicasted.
kmcelroy1	sounds interesting
kmcelroy1	i never mess with DC shit
KenMatlock	void64: the main issue you have to address is 'tromboning' of traffic
bamsefar	Tromboning?
Titanium	OTV encapsulates broadcasts in multicast
envirocbr	kmcelroy1: I love it, just wish I didn't work for a place who wants you to stand something up on a platform you haven't done it on before
KenMatlock	yeah, traffic for a vlan going to the 'wrong' datacenter, and having to traverse the OTV link instead of hitting the right DC to begin with
envirocbr	Titanium: Yes, but if the MAC address is local to the site, it doesn't allow it across the link
void64	Interesting
void64	the INE topic on OTV seems to be very limited
Titanium	tromboneing is when you have traffic coming in from elsewhere
Titanium	and the destination moves
envirocbr	the NX-OS and Cisco Nexus switching guide has a great chapter about preventing that
Titanium	the traffic still goes to the original location, and then must go over a tunnel to the real location
KenMatlock	envirocbr: at first glance it looks right, le mt see if I can find my old config on it
envirocbr	Inbound traffic conditioning
Titanium	its handled by LISP
envirocbr	KenMatlock: Thanks
KenMatlock	envirocbr: did you give the otv site-id on both sides?
bildz	question... In regards to two-factor authentication. Would having 2 different login-IDs to manage an application qualify as two-factor?
Titanium	no
Titanium	something you know
Titanium	something you have
Titanium	something you are
Titanium	pick 2
Titanium	then you have 2 factor
KenMatlock	envirocbr: the bridge-domain and site-identifier?
envirocbr	KenMatlock:
envirocbr	KenMatlock: Yes, 0x1 for Nexus, 0x2 for ASR
pffs	I'll give SonicWall something
envirocbr	Do I need a bridge-domain for the Nexus side?
KLineMan	Hi, id like to start getting some cisco certs -- but I dont learn well in a classroom, what is the easiest and legal path to get access to ios images to run in a simulator for labs?
Titanium	this ignores that fingers can turn from something you are, into something someone else has :(
pffs	it's easier to parse through 100 very poorly labeled tunnels in there than in a Cisco
KenMatlock	envirocbr: dunno, I did mine on ASR1k-ASR1k
pffs	Fuck naming conventions amirite
pffs	just randomly throw shit in there
pffs	why the fuck do I have 100 isakmp policies.
KenMatlock	envirocbr: but in my configs I had http://pastebin.com/f2ZLA0m2
bildz	Titanium: i need to access the VPN to manage a server. The VPN uses an RSA soft token. If I dont log intp the VPN, I cannot access the server.
KenMatlock	envirocbr: that's multicast mode, but should be almost the same
bildz	that sounds like a factor to me
KenMatlock	envirocbr: gotta run to a meeting, but that's a 'working' ASR1k OTV config, multicast mode
Titanium	depends
Titanium	i consider a soft token something you know
Titanium	its software
Titanium	but people will disagree
Lalufu	It's something you have. You don't know your token code.
Titanium	it can be copied
Titanium	its not a thing
Titanium	a hardware token is a thing
Lalufu	so can a key.
Titanium	secure keys are designed to not be copied
Lalufu	And we know how well that works.
KLineMan	with a fpga i bet you can copy, but its not worth the time
mepholic	^
Titanium	no, it takes a logic analyzer
Titanium	or an osciloscope
Titanium	they are designed to not be copyable, to copy them you need to find a flaw that allows power analysis attacks, or decap it and probe it
Titanium	both of which are har
Titanium	hard
KLineMan	true enough
Titanium	a key is supposed to be hard to copy
Titanium	it just doesnt do a good job
Giant81	not to mention if the little RSA keychain things are probably epoxy dipped so getting to the electronics would be hard
Titanium	anyone with a camera and a file can make one
Lalufu	or... you just take the shared secret from the server. Like at RSA.
Titanium	lol true
Titanium	it pay them to use an insecure algorithm
VLanX	hmmmm guys a little question: I have two router that are supposed to be redundant, but both master and backup advertise the same ospf networks so I tought I could increase the metric of the backup router... would that be good policy?
Titanium	do you want them to share load??
Titanium	or have it switch from one to the other if the primary fails?
Titanium	the answer to your question is specific to you
VLanX	Titanium: no, whitout balancing
Titanium	then increase the metric
Titanium	what type of LSA is it?
VLanX	Titanium: not sure if I need to increase the metric on the backup router or on the routers that receive its networks
Titanium	there are 2 ways
Titanium	you can increase the metric on the interfaces leading to the router (on both sides)
Titanium	or you can change the metric when you redistribute into ospf, or on the summary LSA
VLanX	I don't use redistribution
Titanium	so all type 1/2 in area 0?
VLanX	besides both master and slave are coming from vlan4
VLanX	so I couldnt set the metric there
SuperNull	as a not black man i am offended by your use of master/slave.
Dalton	lol
kmcelroy1	just set a higher metric on the interfaces to the backup router
kmcelroy1	SuperNull: you would be
SuperNull	kmcelroy1 dont hate the game, hate the player.
VLanX	kmcelroy1, Titanium: this is the problem: http://pastebin.com/uqzW1L2U
kmcelroy1	SuperNull: i hate both
VLanX	both vlan4
SuperNull	i hate the analogy.
VLanX	maybe I should have vlan3 for master and vlan 4 for backup
VLanX	maybe I should also summarize
VLanX	maybe I should also use different ospf areas
kmcelroy1	maybe you should just increase the metric on the backup like i said
VLanX	maybe I should just go to study ospf
oister	lol
kmcelroy1	:P
VLanX	kmcelroy1: this doesnt work, I've already tryed
kmcelroy1	you crazy jack
VLanX	kmcelroy1: Id doesnt help since it's not a cisco router
kmcelroy1	you even more crazy jack
Titanium	its not a cisco?
VLanX	how about ip route 192.168.200.34 0.0.0.0 null0 ?
VLanX	blackhole the fucker
oister	0 subnet mask?
pffs	how the fuck does arp on vrfs work
pffs	I have a GRE tunnel on one vrf
kmcelroy1	same as all other arp
pffs	trying to figure out what IPs aren't used in that subnet
kmcelroy1	if you want to see VRF arps, sh ip arp vrf yadayada
pffs	can't find it in that vrfs arp table
pffs	yeah I did that
pffs	the tunnel end points start with 172, and all the entries are 10.
pffs	the tunnel interface shows up in the vrf when I do a show ip vrf
dioz	holy fk sometimes i just wanna take her swimming and hold her under water
dioz	she contradicts everything i say just for the sake of contradicting everything i say
hendrikz	hahahaha
dioz	SO annoying
kmcelroy1	sounds like fun
VLanX	oister: wildcard?
dioz	yesterday i said i'm riding my snow skate all day at the mountain
dioz	she's like "i thought you'd want your snowboard"
dioz	i said "no i'm riding my snowskate"
oister	VLanX: ciscos dont use wildcards for route entries
dioz	she says "i thought you'd ride your snowboard"
dioz	round and round we go!
dioz	it's like talking to a subscriber
korozion	dioz: "let me say it again, maybe you'll understand me this time"
pffs	what the dick is a snowskate
kmcelroy1	or you could just not argue and just do it :P
hendrikz	really
Giant81	no it goes "sure honey, I'll ride my snowboard' .... <leaves it in the car>
dioz	then she asks me about a BILLION questions about everything
dioz	"what are you wearing on your feet? what are you wearing for base layers? what hoodie are you wearing? what mits are you wearing?
KLineMan	canadian for ski?
hendrikz	just a interrogation lol
dioz	OMG #$@$%#$%^%$ can't we just go snowboarding?
Giant81	I suspect a snowskate is a snowbobile?
KLineMan	ahh that could be
hendrikz	its a skateboard, without wheels/trucks
kmcelroy1	canadians say weird shit
hendrikz	but its made of plastic/fiberglass
hendrikz	some wood..
Giant81	so a snowboard
hendrikz	basically
hendrikz	but your not strapped in
KLineMan	short snow board
KLineMan	cool
dioz	http://www.lib-tech.com/snowboards/snowskate-39-complete/ <-- snow skate
Giant81	ahh ok
hendrikz	so you can do flip tricks and what nott
Giant81	so snowboard sans bindings
pffs	sick snow kick flip brah.
KLineMan	that sounds like you would spend a lot of time rolling down the mountain
Giant81	oh fuck yeah bud
Giant81	ok time to go
Giant81	off to my test
VLanX	cisco is so inconsistent about masks and wildcard shit
Giant81	later all
KLineMan	break a leg!
pffs	VLanX: there is a small amount of logic
dioz	naw. it isn't that bad. it holds good edges
dioz	and my old lady is horrible on a snowboard
Giant81	you want to know inconsistant
VLanX	pffs: teach me master
dioz	so this way i have to go slower
Giant81	try priorities
pffs	mask is contiguous bits wildcard isn't
dioz	and we can stay together
Giant81	some are lower = better
Giant81	some higher = better
Giant81	fuck you cisco for such dick move
pffs	or at least I think that's pretty uniformly true
pffs	i.e. you can have a wild card mask that matches only even IPs
pffs	but that wouldn't make sense for a mask
Giant81	like HSRP higher priority = better.... STP = lower priority = better
Giant81	WTF
pffs	yeah priority preference is fucked
pffs	"it has lower preference so it has higher preference"
dioz	hendrikz: you at work??
pffs	Just saying we like it because it has a lower priority or preference is annoying
oister_	or BGP metric lower = better or preference higher = better?
hendrikz	ya
pffs	yeah the BGP selectors are annoying
hendrikz	training some guy
pffs	not even consistent
dioz	08:37 <@pcpnut_> From some random forum: "Half-and-Half" Lobster (approx. 1 in 50 million lobsters develops this, and all are hermaphroditic)
dioz	08:37 <@pcpnut_> http://zaxy.files.wordpress.com/2006/07/lobster.jpg
dioz	weird
Titanium	but what does it taste like?
Apachez	looks fake
dioz	beef
Apachez	the lobster gets its red color from boiling
Apachez	so they put only half of it in boiling water those bastards
KLineMan	wasn't cruel enough the normal way
dioz	http://2.bp.blogspot.com/-CFaTgTMFz2s/UTs5Kpaw4uI/AAAAAAAADFU/iX7L-6yUezM/s640/lobster_boil_human.jpeg <-- made me lol
KLineMan	lol
dioz	same with when they skin catfish live
dioz	shit is taint
dioz	poor aminals
dioz	imagine being skinned alive
dioz	YEEESH
mynd	i'd hope i'd pass out before it got too far
dioz	same
Titanium	boiling is nothing compared to skinned alive
Titanium	given the choice i choose boiling
Titanium	instant death
dioz	given the choice i choose natural death
dioz	TBH
KLineMan	i'd hope to get ahold of the knife and get some vengance before it went too far ;)
Titanium	thats what the rubber bands are for
mynd	f* all that, i'd jump from a plane w/o a chute
KLineMan	try to land on your face...
KLineMan	otherwise i bet there is still lots of pain
mynd	well the plane would be a few thousand feet up, so hopefully it doesn't matter how i land
KLineMan	hehe
Titanium	it doesnt matter
Titanium	terminal velocity
KLineMan	what is the minumum certification / training I need to get access to the ios images on the cisco site?
KenMatlock	none, all you need is to pay them for smartnet
Titanium	i never paid for smartnet and i have access
KenMatlock	Titanium: how long ago did you make your account though? :)
Titanium	it was auto generated
Titanium	they paid me for smartnet lol
KenMatlock	heh
KLineMan	ahhh i see, okay well thats an option... looks like its still once device at a time through smartnet though
KenMatlock	it used to be you could create a CCO login and have access to everything. these days they lock it down (for the most part) to 'entitlement', meaning you only can access what images you have smartnet for :(
KLineMan	ahh wow
KLineMan	its not cheap at all either
KLineMan	i thought certain certs got you acccess to everything...
KenMatlock	because Cisco's morphed into a software, not a hardware company
Titanium	yeah it is cheap
Titanium	ccie has some priviledges
Titanium	but not free software
kmcelroy1	not images though
KenMatlock	ccie's get all the chicks :P
KenMatlock	chicks dig certs
kmcelroy1	not the chicks you want
KLineMan	hahaha
mynd	KenMatlock: i find it annoying to be say the least. many a time I find links in the cisco forums that require me to login. Everytime, and I mean everytime, it says I don't have permissions to view said file
Titanium	why would you buy cisco gear without a support contract?
KenMatlock	mynd: go to google, search for the title and "site:cisco.com" and view the cached version :P
mynd	KenMatlock: no title given though :(
mynd	just a link
KenMatlock	oh :(
Apachez	https://www.quakenet.org/articles/102-press-release-irc-networks-under-systematic-attack-from-governments
mynd	example: http://www.cisco.com/en/US/tech/tk652/tk653/technologies_tech_note09186a00800ae2d1.shtml
KenMatlock	mynd: I can see it just fine, not logged in
mynd	i cna't view that bloody article and its supposed to be about the custom tones on POTs lines
mynd	-.-
mynd	apparently, it's letting me now
KenMatlock	heh
mynd	ahh i see
KenMatlock	yeah, cisco moves shit around all the time on the website
mynd	when i click on it within the forum, i cna't get there
Titanium	how else do you look like you are doing something :)
mynd	but if i copy-n-paste it works
mynd	go figure
KenMatlock	probably the referral-id
KenMatlock	or whatever that is that says where you came from
mynd	ahh ... the linked URL adds "partner/" after "US/"
mynd	but the text (what I just copied and pasted) doesn't have partner ... interesting
KenMatlock	yeah, /partner is only accessible if you're account is flagged as a partner account
mynd	well shit ... a co-worker sent me a link a while back that I couldnb't access ... removing "partner/" from it, i can see it
mynd	sweet
Titanium	isnt that considered a violation of the CFAA?
Titanium	you just hacked cisco's site
KenMatlock	Confederate Flag Association of America?
Titanium	Computer Fruad and Abuse Act
Titanium	oh
Titanium	it only applies to computers related to interstate commerce
Titanium	;)
mynd	Titanium: i was all shaking in my boots
Titanium	when you sent the packets, did you cause someone else's traffic to be delayed that might have been engageing in interstate commerce?
mynd	Titanium: potentially
mynd	i mean if the pipes were near full, i could have cause their packets to be queued
Titanium	or by visiting cisco's site, did you not instead visit another site that is across state lines?
mynd	i'm sure
Titanium	and then miss out on some adds
Titanium	then i think it covers you
mynd	not many sites hosted here in ohio
mynd	so i'm sure i'm crossing all kinds of state boundaries
mynd	so how is the net neutrality going to work with CFAA?
pxed	anyone know if theres a reason not to have radius on a dc?
socomm	on a dc?
mynd	pxed: to me it makes sense, that way it's all centralized
KLineMan	domain controller
pxed	mynd someone in ##windows-server just linked the official decree which says its kosher. but yeah that was my thought as well
pxed	but MS is pretty upity about whats okay to be on a DC.
pxed	so i figured id make sure
straterra	Are you guys aware of any issues with using 5k + FEX + DHCP Helper on 6.2.2?
mynd	pxed: heh we put file shares on our dc :)
pxed	mynd HAH bad life choice
pxed	but not entirely surprising
envirocbr	I see the mac address in the OTV route table
envirocbr	but my 4510R doesn't learn the address on it's trunked interface
envirocbr	:/
socomm	mynd: boss won't shell out for more hardware?
garrettskj	pxed: it should be fine. if you're going to put NPS/IAS on a DC
garrettskj	just make sure it's one with global catalog.
garrettskj	since why put it on a DC, if it hasta continously page other DCs for authentication info
Sedorox	if it helps, I have NPS installed on two domain controllers... one physical, one virtual. So far, no issues
pxed	garrettskj Sedorox thanks :)
mynd	socomm: been here <1yr and hired on for their netowrk and voice. first time touching voice, so i haven't had much of a chance venture outside that and the network
mgeorge	so apparently subway uses azodicarbonamide in their bread
Lalufu	In Europe they don't.
kmcelroy1	wait, so a shitty sub chain uses a flour bleaching agent? say it isn't so
SuperNull	heh.
SuperNull	their food makes my stomach upset like woah.
SuperNull	any of it.
SuperNull	sadly... its still probably the more healthy thing around
mgeorge	sadly its not worse then mcdonalds using pink slime lol
mgeorge	every major food chain uses chemicals that are KNOWN to cause cancers and health problems
Sedorox	pxed: I also don't have a huge load on it right now.. it's for VPN on the ASA (which maybe 10 people access, but not at one time), and 802.1x wifi, which is only used by ~3 people atm
mgeorge	the only way you can eat healthy now days
mgeorge	is to grow your own garden
mgeorge	or buy from a farmers market
kmcelroy1	subway sucks, give me a real deli
KLineMan	better start reading the labels of your ferts ;)
kmcelroy1	and honestly, who is still eating mcdonalds? :P
oister_	kmcelroy1: you should try jimmys in dallas
kmcelroy1	my deli in dallas is weinburgers
kmcelroy1	downtown grapevine
kmcelroy1	chicago german deli, fuck yea
KLineMan	mmmm texas has whataburger
oister_	jimmys is an italian makret.. fucking awesome
kmcelroy1	where is it?
oister_	bryan street
kmcelroy1	last italian market i had closede
kmcelroy1	shit, that is right by the colo :P
kmcelroy1	we were just there yesterday
kmcelroy1	but i am all the way in frisco, hell of a drive for a market
rez410	GraNNy-, hey so I was able to restore my 5.4 backup to 5.5. Now I have another problem. After I run #application start acs it never comes up. when I check the status it just says status not yet available. any ideas?
oister_	kmcelroy1: they make awesome sandwitches and stuff
kmcelroy1	yea, the one i used to go to was an italian family from jersey
mgeorge	sadly azodicarbonmide is banned in nearly every country as a food ingrediant except united states
kmcelroy1	that lady knew how to make italian food, jeez
kmcelroy1	her friggin subs, good god
pollo	Hello everyone
KLineMan	hi pollo
KLineMan	you like chicken?
pollo	I need some info/directions planning a PBX project
terabit	he likes "breaking bad"
KLineMan	ah yeah probably
pollo	Pollos Hermanos, yeah
pollo	would you guys recommend me an embedded solution?
pollo	or simply an Asterisk server hosted at the office...
rez410	anyone have any ideas why I can't get acs app to start after an upgrade and restore to 5.5?
pollo	shut up rez, I was first
KLineMan	lol
mynd	pollo: what are you trying to do?
kmcelroy1	make phone calls i assume
mynd	well there's that too
pollo	just setting up a PBX at the office
pollo	I'm just a developer and my boss told me "You are the IT guy! go get som VoIP stuff"
rez410	pollo, rtfm
pollo	i know, iknow
rez410	or get an IT guy
KLineMan	im not a voip guy but i bet sizing information is important for recommendations
mynd	tanner is the resident voice expert
kmcelroy1	if he told you to just get one, shit, pay a vendor, not worth the headache of learning it, ha
kmcelroy1	voice sucks :P
kmcelroy1	or you can do hosted voip
kmcelroy1	then you just dump a phone on the desk and move on with your life
Kurlon	Is there a config parser for ASAs that can de-spahgetti the config? I'm spoiled by JUNOS's XML style, I'll freely admit it.
terabit	might wanna also ask in ##networking
pollo	I know I should RTFM, and so I'll do. Now I just want to know your opinions about different solutions for small business
tanner	ACTION kicks kmcelroy1
kmcelroy1	:P
kmcelroy1	you should be happy i hate voice, less competition, ha
kmcelroy1	tanner will install one for you
kmcelroy1	just pay him money, he makes it happen
kmcelroy1	tada
tanner	like magic
kmcelroy1	just like magic
pollo	alright...
kmcelroy1	except you have some guy named tanner hanging around
mynd	pollo: knowing the size (number of users, simultaneous calls, etc) and what is expected (auto attendant, conference calls, multi-line phones, voicemail, etc) is pretty important
tanner	I can dawn a cape and magic hat for an extra fee
kmcelroy1	or free if you catch him on the right day
pollo	mynd I have all the specs
pollo	number of lines, and all that stuff
hkkl	what, tanner uses some other clothes than cape and wizard hat?
kmcelroy1	but honestly, it is likely cheaper and easier to just find a solid vendor and let them do it, you will save money in the long run
kmcelroy1	tanner is a vendor and knows what he is doing
tanner	kmcelroy1 its not even about saving money. the platform should be doing that for you in the long run. it's about it getting done right the first time
kmcelroy1	that is more what i meant
kmcelroy1	rather than jack with it for months and months
kmcelroy1	huge headaches, wasted time
tanner	you save $30k on PS by doing it in house, then spend $60k next year getting a vendor to fix it all
kmcelroy1	just pay to have it done and deal with your primary function instead
tanner	yup
KLineMan	pollo, just buy a case of magicjacks
KLineMan	;)
mynd	ha
kmcelroy1	pass them out like oprah
kmcelroy1	YOU GET A MAGIC JACK, YOU GET A MAGIC JACK, EVERYONE GETS A MAGIC JACK
mynd	lol
KLineMan	hahaha
mynd	that's funny shit
kmcelroy1	what can i say, i am a delight
pollo	i think i will quit my shitty job and find another one where I can code quietly
kmcelroy1	pollo: :P
kmcelroy1	or that
kmcelroy1	just send your boss to tanner then quit
oister	Kurlon: write one
envirocbr	In an OTV setup, the non-OTV device behind the edge, is it supposed to see the mac addresses that show up in the: shot otv vlan command?
tanner	pollo is your company looking for a new voice platform?
pollo	yup
envirocbr	err, I mean: show otv route
tanner	pollo number of users, locations? call center? whats your budget look like?
Kurlon	oister: Ideally, this is the only time I'll ever have to look at an ASA. IOS configs I don't mind reading, this ASA's dump however makes my head hurt for some reason. That said, it would be an interesting project, dunno if my perl is up to the task or not...
oister	is it really that hard?
pollo	15 users, more or less...
oister	not much different from IOS
pollo	but scalable
pollo	it is not a call center, just a small software factory
pollo	we develop mobile apps
pollo	my budget is small, very small
kmcelroy1	it always is :P
pollo	no more than 4K
tanner	pollo for your budget you're going to want to look elsewhere than Cisco
Kurlon	oister: nested object groups and names are making it so I'm spending more time backtracking than parsing.
tanner	pollo depending on your needs you might be better off with any number of hosted solutions
pollo	what would be a suitable budget?
peter_	hi
SuperNull	pollo most of your budget alone will get eaten by handsets
kmcelroy1	we sell hosted voip phones :P
tanner	SuperNull++
SuperNull	talk to kmcelroy1
kmcelroy1	like $30 a seat or something
mynd	Kurlon: there was this app a while back that you could upload your config to and it would shoot out what it's doing. I think it was more built for hardening the config, but it could be used to see what's going on too.
tanner	even at $300 a pop you're at $4500
mynd	can't think of the name atm, but tbh, as oister said, just read though it
oister	Kurlon: so its easier to parse junos style? i find that hard to believe
SuperNull	even used handsets are gonna eat most of that..
pffs	my fxo cards are showing in my show inv but not my show voice port summ
pffs	wtf
SuperNull	how many lines per phone pollo ?
Kurlon	oister: For me yes, but I also spend much more time in it now so that's partially just familiarity.
oister	sh access-list \| i whatever will give you whatever you're looking for even with nested objects
oister	then when you find the object sh run object-group \| b <object>
kmcelroy1	well, if you want nested shit, you want to do s instead of i
pollo	1 line per phone, only one of them needs more than 1
oister	pretty damn easy
kmcelroy1	oh wait, that is ASA
pollo	we are a small business
Kurlon	I'm playing third party support on this one, I don't get access to the device, just the conf and I have to gleen why it's not working.
oister	i like the way asa does it
oister	dont have to use section
kmcelroy1	ASA has regular grep
oister	sh run acess-lists just shows the acls, etc
kmcelroy1	i prefer the way NX-OS does it honestly, ha
mynd	oister: for sure
SuperNull	pollo expect to pay $150-200 per handset .. probably. for something 'true' cisco expect MOARRR
kmcelroy1	every grep you ever wanted all the show runs, no newline on ? or tab complete
SuperNull	www.voipsupply.com for proof of price.
razorz	www.tritondatacom.com
kmcelroy1	pollo: just do hosted phones, cheap and easy
mynd	hosted phones??
pollo	hosted phones... interesting...
SuperNull	kmcelroy1 did i see you charge $30 per phone ? a month ?
kmcelroy1	yea son, hosted PBX boyee
kmcelroy1	i think that is the price
kmcelroy1	somewhere around there
razorz	If you need phones come to me
kmcelroy1	it isn't much
SuperNull	including calling ?
kmcelroy1	yea
SuperNull	okay.
SuperNull	so like $500 a month.. with calling for 15 lines..
SuperNull	kmcelroy1 you guys do queuing and stuff to ?
kmcelroy1	SuperNull: you mean like call center shit?
SuperNull	yeah
Kurlon	razorz: You wouldn't happen to be from Florida, at one time operating a scrap recycling business that allowed you to collect some cool old *NIX Iron?
kmcelroy1	yea, it is full featured
kmcelroy1	broadsoft man
razorz	Kurlon: that's me, I remember your nickname lol
kmcelroy1	it can do pretty much everything a PBX can do and more
Kurlon	Hah, long time no see!
kmcelroy1	call center, voice mail, conference
razorz	No shit, not on undernet anymore?
pffs	okay actually for real
kmcelroy1	reroute calls from the web interface
kmcelroy1	so if your DIA dies, you can reroute to cell phones without carrier intervention
pffs	why are my FXO ports not showing up
pollo	allright, it was a pleasure to learn from you guys
pollo	I'm going back to my business
tanner	kmcelroy1 hmm I never really figured, it'd cost about $37/mo for 15 users over 3years
pollo	bye
Kurlon	Nah, haven't been for a few years now. Work switched over to being an ubuntu / windows shop so I eventually stopped hanging out in #freebsd
tanner	kmcelroy1 that's actually not too bad
kmcelroy1	tanner: for what?
Kurlon	Killed my 386, been playing with arm boxes for fun lately.
tanner	kmcelroy1 for a Cisco setup for someone like pollo
kmcelroy1	yea
razorz	lol, nice
SuperNull	kmcelroy1 any pbx eh?
kmcelroy1	it shouldn't be too bad to host your own
SuperNull	but asterisk can .. like
SuperNull	make my coffee
kmcelroy1	broadsoft kills asterisk :P
razorz	I got out of computers for awhile, but now I'm in the biz so my whole office is filled with archaic shit and routers and switches and shit
SuperNull	im just messing.
kmcelroy1	that is what it is made for, kicking ass and chewing bubblegum
SuperNull	feature wise its locked up but .. relability
tanner	kmcelroy1 I don't really want to be in the hosting game. I want my company to known for contact center and related application development/integrations
SuperNull	kmcelroy1 its funny you say that..
razorz	Didn't we both run irc servers for awhile?
kmcelroy1	tanner: yea, makes sense
SuperNull	im on another channel that nieros brought me to for car nerds..
Kurlon	I've switched to road racing outside of work.
SuperNull	my opening statement was 'im here to annoy nieros and chew bubble gum, and im all out of bubble gum' lol
Kurlon	Yup, ngircd for the win! :D
kmcelroy1	ha
kmcelroy1	love They Live
razorz	lol
kmcelroy1	classic
razorz	scary, good times
SuperNull	i havn'
SuperNull	seen it yet.
kmcelroy1	the fuck, really?
SuperNull	yeahhhhh but i know the scene.
kmcelroy1	that shit is awesome, it is on netflix, make it happen
SuperNull	you would imagine a conspiracy guy like me would see it eh?
kmcelroy1	it is great, ha
SuperNull	i bet mgeorge saw it ;) LOL
kmcelroy1	rowdy roddy piper
kmcelroy1	it is so entertaining
tanner	kmcelroy1 i'm going to have to remember that when I start doing outbound prospecting
kmcelroy1	tanner: i think they allow you to still use your PBX with enterprise level stuff and then just use the broadsoft hosted features like rerouting and that
kmcelroy1	so standard sip trunking but nice easy rerouting and that
kmcelroy1	so a mix of the two
tanner	kmcelroy1 or I could just use any number of SIP providers out that that do it for pennies a month :)
kmcelroy1	yea, i think a lot of them do
kmcelroy1	but then again, some of them are terrible :P
tanner	kmcelroy1 I use one for my business, Flowroute
tanner	thus far pretty happy with them
SuperNull	i might be having a caffeine induced anxiety attack uhts.oh
tanner	SuperNull do you have orange juice around? drink a big glass
tanner	or take some vitamin c supplements
pffs	tanner: is there something special I need to do in order to turn an FXO card on?
SuperNull	does that work tanner?
pffs	it shows up in a show inv but can't configure the ports with a voice-port whatever
tanner	pffs well you have to activate it
SuperNull	would snorting crushed vitamin C work quicker?
tanner	SuperNull I doubt it, damn druggie
kmcelroy1	SuperNull: sounds like it should, test it
SuperNull	lol
pffs	I don't see anything in my backup that looks like it activates a card
tanner	SuperNull vitamin c dampens the effects of most amphetamine types, might work for caffeine as well
SuperNull	oh man.
SuperNull	but that would ruin my adderall high.
SuperNull	hahaha jk
kmcelroy1	you normally don't have to activate the FX cards
void64	fuck java
kmcelroy1	only voice wics normally
SuperNull	agreed, fuck dat java.
void64	java = bloatware
pffs	I know you have to activate the t1 vwics
pffs	I wasn't aware of anything like that for an FXO
kmcelroy1	sh diag, do you see it showing up properly?
kmcelroy1	or show inventory
pffs	it's in a show inv
kmcelroy1	show diag, does it show up working properly?
kmcelroy1	and do the interfaces show?
pffs	and show diag
pffs	nope
pffs	Just the card
pffs	actually I don't see a dsp
kmcelroy1	you need DSPs for that i believe
hexhaxtron	I've got some CBT Nuggets about Cisco. Is it worth for me to learn Cisco when I don't have any Cisco device?
pffs	looks like they didn't move the pvdm
kmcelroy1	that would explain it
pffs	would that keep any voice ports at all from showing up?
kmcelroy1	should
kmcelroy1	they require DSPs to work
razorz	lol
razorz	PVDM
tanner	pffs voice-port ? does it let you do anything?
pffs	only 50-50
pffs	I'm thinking it's they didn't move the PVDM to the new router
kmcelroy1	that should be it then
pffs	I'm kind of annoyed an RMA'd voice gateway wouldn't have come with the PVDM
pffs	they sent the vwics
tanner	PVDM's are stupid expensive
pffs	I guess
razorz	Nah
razorz	I have a shit ton of them here
pffs	like 100 bucks?
razorz	PVDM3-64 is $695
razorz	depends on gen and how many channels
pffs	this is a pvdm2-16
pffs	can't be that much
razorz	meh
razorz	http://www.tritondatacomonline.com/products/cisco-module-pvdm2-16
tanner	a brand new PVDM3-32 will run you $1000, $1600 retail
razorz	Never buy retail
pffs	so under 100 bucks
tanner	never pay retail :)
Apachez	are there any limits on which ip address a loopback interface can use ?
tanner	its ~$1000 my cost for a new one
Apachez	im thinking if I already have lets say ip address 10.0.0.1/24 configured on an vlan interface.... can the loopback0 be 10.0.0.2 ?
Apachez	or must it be a completely different ip ?
rsty	make sure you advertise loopback0 as point to point so it only advertises one subnet, assuming the loopback is a 32 bit mask. or else you might have reachability issues
rsty	OSPF?
envirocbr	KenMatlock: You back?
instigator	hey all when creating a openssl certificate, does the challenge password get store in plain text or is it encrypted?
dexta	evening
KLineMan	I think the csr would be plain text
squibby	have no fear. epicdouche is here
pffs	welp, TIL
instigator	KLineMan: so that means it could easily be sniffed?
KenMatlock	envirocbr: sorta, still working on a few things, what's up?
SuperNull	squibby we are all still gelly of your epicdouche host name appearance
SuperNull	maybe just me.
squibby	nickserv registered and everything. yeah buddy.
envirocbr	KenMatlock: I can see the mac addresses of each side in the: show otv route
envirocbr	but if a guy on 10.1.5.223 (in DC1) tries to ping his gateway 10.1.5.1 (in DC2), we get nothing.
SuperNull	i only cared enough to make comment but not actually try to change mine.
envirocbr	I see the mac addresses in the OTV routes, am I supposed to see them on the internal 4510?
KLineMan	no, the csr is what you give to your certificate authority -- the challenge pw is storred on the certificate authority only i believe
squibby	challenge pw?
mynd	Apachez: that won't work. you can't have an interface assigned an IP within the range of another on the same device
KenMatlock	envirocbr: yes, to the 4510's it should look like any more behind a multiport device
KenMatlock	envirocbr: so the 4510 should see the MAC of the other side on the port going towards the ASR/Nexus
oister	mynd: vrf?
pffs	why is it on the one day I'm supposed to work from home on boring tunnel shit everything breaks and they need me
pffs	not fair.
mynd	oister: i think that'd do it
mynd	never messed with it tbh
void64	compiling openjdk from source is worse than watching paint dry on a wall
squibby	this is such fucking nonsense. http://www.usatoday.com/story/news/nation/2014/02/05/no-jail-for-teen/5242173/
mynd	squibby: yea heard about that before
mynd	he's going to get "treatment" though
mynd	for his "illness"
envirocbr	KenMatlock: Weird, I am not seeing it
TheJeeb	come on guys, he was the victum
KenMatlock	so it's his paren'ts fault? send the parents to jail
envirocbr	on the ASR, I see the VLANs from the 4510
envirocbr	but no VLANs on my gi8/34 interface on teh 4510
KenMatlock	envirocbr: and on the 4510 it's a trunk port, and allowing those vlans?
envirocbr	Yes, I have allowed all VLANs just to be sure
KenMatlock	and a 'show int trunk' shows the vlan in the list under 'spanning-tree forwarding state and not pruned'?
KenMatlock	(for 8/34)
envirocbr	all forwarding
envirocbr	spanning-tree portfast trunk too
KenMatlock	envirocbr: and on the ASR, you have the overlay and ethernet port tied through the same bridge-group, same service instance?
oister	squibby: we love our corruption here in TX
squibby	what's the deal anyway? do people suspect she received money? is there pressure not to piss off rich people?
envirocbr	KenMatlock: http://pastebin.com/vmsu9zew
envirocbr	Before I couldn't get them to sync becaues the Cisco documentation was screwed up
envirocbr	I have one guy with a constant ping from DC1 to DC2
TheJeeb	If I recall the Judge was close to retirement, and probably will do so comfortably, but that's just my opinion.
envirocbr	to the VLAN SVI
envirocbr	and no dice
straterra	Hah..what a random issue in 6.0.2
oister	if you're rich enough you can get away with murder... dallas cowboys player josh brent just got off with a light jail sentence for killing his team mate
straterra	ip helper + fex doesn't work for PXE..but works for normal clients
straterra	-_-
KenMatlock	envirocbr: dunno man, looks ok to me, and that pastebin I sent earlier was a known good otv config for multicast, which should be functionally identical to unicast
envirocbr	KenMatlock: yeah, I got it working sonce I saw the site-VLAN needed to be added and trunked to the internal interface
envirocbr	both ends came right up
envirocbr	But still no connectivyt'
envirocbr	for end hosts
envirocbr	hrmmmm
envirocbr	let me check something
KenMatlock	stupid question, windows firewall disabled on the devices on both ends? :P
garrettskj	hrmmm
razorz	Piece of shit SM-NM-ADPTR
SuperNull	wtf.
SuperNull	equallogic san management interface go fail.
ALucas	http://www.tunnelsup.com/cisco-asa-identity-firewall/
ALucas	neato
envirocbr	Yup
envirocbr	KenMatlock: Yes :)
ALucas	I get it's buggy ^^
envirocbr	KenMatlock: The issue is, when I do a: show mac add int gi8/34 on my 4510 (interface towards the OTV internal on the ASR) I don't see any of the addresses learned
KenMatlock	ok, and the ASR on that side sees an ISIS 'route' for the MAC on the other side?
bschip	anyone have a good way to block all website (expect two) from a a user. The kicker is the user is on a terminal service server with other users.
KenMatlock	sure, get a full proxy
ALucas	proxy
ALucas	squid
envirocbr	KenMatlock: how would I see that?
envirocbr	In a: show otv route?
mynd	bschip: proxy or utm firewall
mynd	proxy is prob better tho
KenMatlock	envirocbr: yeah
envirocbr	KenMatlock: Yes
garrettskj	lol bschip web proxy!
envirocbr	In the Nexus 7k, core VDC, I also have the smae issue
envirocbr	when I do a: show mac add vlan 7
hjohnson	ouch, yeah, this is the best use for the DSL... our midpoint station only gets 30 minutes or so of uptime
bschip	web proxy only one user though?
envirocbr	I don't see the learned mac addresses from the internal interface on the OTV VDC
ALucas	or just http://www.tunnelsup.com/cisco-asa-identity-firewall/
ALucas	:P
garrettskj	bschip: if you need per user, on a shared box
bschip	yes that is what I need
mynd	bschip: proxy all users, but use auth to and limit said user
garrettskj	bschip: then you need a web proxy configured on that person's machine.
garrettskj	s/machine/profile/g
ALucas	bschip, Squid is a good free proxy you can try
KenMatlock	envirocbr: http://packetpushers.net/cisco-otv-101-legacy-multicast-mode-mac-learning-process-walk/
KenMatlock	envirocbr: http://packetpushers.net/cisco-otv-implementation-troubleshooting-legacy-multicast-mode/
KenMatlock	for the most part the troubleshooting should be the same
KenMatlock	just ignore hte multicast portions
envirocbr	KenMatlock: I pass all those tests
envirocbr	I just don't see why I am not seeing the mac table for VLAN be populated with the OTv learned routes from the ASR or the OTV VDC in the 7K
peter_	hey, when you ping from a switch, which interface does it exit from?
peter_	it has multiple vlan interfaces
razorz	the default route one?
Bejgli	peter_: the one closest to the destination
peter_	so i have a 0.0.0.0 route
razorz	NULL
peter_	so im trying to set up ntp on my switches, which means i need dns resolution to work aka pool.ntp.org
peter_	i se tmy dns servers to 8.8.8.8 and 8.8.4.4
peter_	but i get no response
peter_	im trying to figure out which interface the requests are coming from
peter_	so i can adjust firewall rules as needed
squibby	how could they not let Matt Damon play Robin? this is tragic
squibby	peter_: explain that
peter_	like, which interface is the dns request coming from
peter_	there are 5 vlan addresses
squibby	peter_: the interface closest to the destination
squibby	can you read?
razorz	Nice, just got an order from nascar.com
KenMatlock	envirocbr: for some reason the service-instances (which are basically bridge-groups under OTV) aren't forwarding them out, or the L2 switch is ignoring them, dunno which
KenMatlock	on more dumb question, on each ASR yo only have 1 'OTV' port (the port going towards your L2), and you've verified it's the right port? :)
KenMatlock	*one
envirocbr	KenMatlock: Well, I have on ASR1001
envirocbr	ther other is a 7009
envirocbr	my "OTV" port
envirocbr	You men, overlay 1?
envirocbr	that is bound to my join interface
KenMatlock	ok, let's take a step back
envirocbr	KenMatlock: You must be referring to my OTV Internal interface?
envirocbr	gi0/0/0 is the join interface
envirocbr	gi0/0/1 is the internal
KenMatlock	you should have 2 distinct interfaces, an 'OTV' interface (that talks L2 only) and an OTV 'join interface' which does the OTV adjacencies and such
envirocbr	Yes
envirocbr	In overlay, I selected gi0/0/0 as the OTV Join interface
KenMatlock	ok, and the OTV interface you're 100% sure goes to the 4510 on G8/34?
envirocbr	Yes, I verified the picture they sent and the CDP information
KenMatlock	in overlay? are you configuring this through a GUI? :P
envirocbr	Hell no :)
KenMatlock	ok, phew :)
envirocbr	CLI FTW
bschip	peter: don't use the DNS name use IP 192.43.244.18
bschip	and also 129.6.15.29
KenMatlock	envirocbr: is this box set up to act as the adjacency server? (under hte overlay interface do you have 'otv adjacency-server unicast-only')?
envirocbr	The configuration I pasted is exactly what is on the ASR
envirocbr	KenMatlock: The 7009 is he adjacency server
envirocbr	shoudl they BOTH be?
KenMatlock	no, only 1 end
envirocbr	Ok, the 7009 is the server
KenMatlock	well, you might be able to do a backup one, hang on
KenMatlock	and 172.26.6.2 is up/up on the 7009, correct?
envirocbr	Yup
KenMatlock	and the ASR can ping that IP?
envirocbr	I can ping across
envirocbr	L3MPLS
envirocbr	they see each other as adjacent
KenMatlock	ok, and what MTU is supported end-to-end?
envirocbr	On the MPLS?
KenMatlock	just end-to-end, from ASR to 7009
envirocbr	I set mtu 1600 on the join interfaces
KenMatlock	and is that supported end-to-end?
envirocbr	1500 on the OTV internal interfaces, because the 4510R doesn't have jumbo frame enabled
envirocbr	Should I just reset it all back to 1500?
KenMatlock	well, is the minimum MTU from the ASR to 7009 at least 1600?
KenMatlock	and also pastebin a 'show otv vlan' on the ASR please
envirocbr	ok
envirocbr	http://pastebin.com/e5R5qwHQ
envirocbr	KenMatlock: I will just set ti back to 1500 to be consistent
KenMatlock	shesh, that all looks right
KenMatlock	yeah, just to make sure
KenMatlock	what vlan are you trying this on?
pffs	passwords that use only two fingers suck
pffs	much typos
pffs	this password is a stupid combo of just 12qwaszx with varying cases
KenMatlock	and now it will only take 32 guesses to get it :P
SuperNull	better idea..
bmoraca_work	n5uv6ht7v
SuperNull	use pastebin urls as your password.
bmoraca_work	two finger password
pffs	those fingers are better
SuperNull	boom: e5R5qwHQ
KenMatlock	I prefer hunter2
envirocbr	KenMatlock: 7
pffs	the pinky middle combo is awful
oister	cisco/cisco
envirocbr	I have a TON on the ASR side
envirocbr	two machines on the 7009 side
SuperNull	******* is the ultimate password KenMatLock
pffs	KenMatlock: you use ******* as a password?
bmoraca_work	i wrote a program that takes a huge dictionary of words and chooses two, capitalizes the first letter of each, puts two digits between, and a special character at the end
bmoraca_work	works awesume
SuperNull	FUCKER
pffs	seems insecure to only have on character
SuperNull	take my 4 seconds of quicker reaspone
MrPocketz	Stupid question
MrPocketz	but with no ACLs on an ASA
SuperNull	ACTION feeds pffs 4 seconds
MrPocketz	what does it do?
pffs	I had to count my astericks :(
oister	use sentences for windoze passwords.. length is the most important
MrPocketz	like, with no outbound ACL, it'll permit all outbound traffic, right?
oister	MrPocketz: depends on version
MrPocketz	~6?
KenMatlock	envirocbr: dunno dude, almost smells like a bug or new config option in later codes. the box it taking the OTV packet, but not spitting it out the L2 :(
mynd	MrPocketz: allows higher level to lower level, but nothing lower to higher can be initiated
oister	6?
pffs	doesn't help that I never use my right shift
mynd	oister: didn't know it depended on version
pffs	so the !@ fuck my hand position
MrPocketz	mynd, thats where the "Security level 0" comes i then yes?
mynd	MrPocketz: yes
MrPocketz	gotchya
oister	mynd: > 8.3 there is no nat control... before on 8.2 you had to have a nat entry for traffic to route
KenMatlock	envirocbr: everything I'm seeing says it should work just fine. you have an adjacency, eaqch side knows it's the AED for the vlan, it learns the MAC, but doesn't bridge the packet to the OTV interface
oister	before 8.3 i mean
MrPocketz	understood
mynd	oister: ahhh ... makes sense. i recall running into issues without a NAT entry that stuff wouldn't route
oister	you could turn off nat control on < 8.3 though
oister	now with 8.3 its just off by default
oister	the acl rules apply though.. only needed for low sec to higher
mynd	oister: gotcha
KenMatlock	envirocbr: I assume you've tried to do the MTU?
KenMatlock	envirocbr: I know it's a long-ish shot, but OTV on the 7009 doesn't support fragmentation, so make sure you can get 1542 (1500 + 42 byte MTU) end-to-end
subz3r0	im just curious... is the ccna security worth its money?
pffs	if it gets you a job
subz3r0	got my ccna... now got the offer to make the ccna security
pffs	certs are only really valuable to you if they get you hired somewhere. Do you desperately need to get hired?
subz3r0	i do my apprenticeship atm
subz3r0	ccna was first cert, then lpic1 now the mcsa 2008 + upgrade on 2012
subz3r0	after the mcsa we will have some freetime... so we got the offer to make the ccna security
loceur	anyone know the gns3 founder guy? he doesn't roam around in here does he?
subz3r0	since my heart beats for routing and switchting, guess it can be that bad to do the security,too? :>
eirirs_	Scrye: wake sesame
subz3r0	heh :p
hjohnson	I wonder if one of my netgears is biting it.
hjohnson	heh
hjohnson	wouldn't shock me
subz3r0	pffs: but im thinking of the future, too... maybe ccnp or cissp when i got the money ;>
pffs	subz3r0: certs typically help get interviews
pffs	so does networking though
subz3r0	or a good company which wanna pay it for me
pffs	so if you hate people or suck at making friends
pffs	go rack up as many certs as you can
envirocbr	KenMatlock: set the MTU on which interface?
envirocbr	the OTV and the join?
subz3r0	but im wondering how this rankings can fit... those say you can earn easily 90k bucks just with the ccna...
subz3r0	that would mean about 70k euros here in .de
KenMatlock	OTV needs 1500, the join, through the MPLS, to the join on the other side need at least 1542
KenMatlock	heh
KenMatlock	CCNA's in the US don't get that much, unless it's in CA or NY
KenMatlock	and for those areas, that's almost minimum wage :P
hjohnson	lol
subz3r0	pffs: so be a misanthrope wont be good? :P
subz3r0	KenMatlock: what does it mean in numbers? :P
KenMatlock	subz3r0: for most places in the US I'd say $40-$50k is normal for a CCNA-level
KenMatlock	(US)
envirocbr	KenMatlock: Yeah, but wouldn't it not form adjacency or at least not populate the tables?
hjohnson	fuck something has gone really unstable...
KenMatlock	if you are in California or NY, the cost of living is MUCH higher
hjohnson	I hate it when this shit happens
loceur	any of you guys backing the 'new' gns3 development?
KenMatlock	envirocbr: I'm not 100% sure. I know OSPF relies on the MTU when forming adjacency, dunno about hte ISIS implementation in OTV
pffs	90k with a ccna and 5 years experience maybe
hjohnson	I'm running into fun, slow oscillations caued by a network switch, a UPS, power outages, and the controller that the network switch connects to.
pffs	or 10 years
subz3r0	KenMatlock: im wondering. since i found some certification rating which says about 90k
peter_	can i force my dns requests to go out a certain vlan interface on my switch?
KenMatlock	subz3r0: if you can find that man, go for it :)
hjohnson	so the UPS is probably completely drained at this point. When it turns on, it starts charging its batteries and won't actually turn on its outputs immediately
subz3r0	-rating +ranking
mynd	peter_: if said switch does routing and you use PBR
hjohnson	this is good,b ecause I don't want to fire up the loads normally until the batteries are somewhat charged
subz3r0	KenMatlock: first need to finish my study ;9
hjohnson	the problem si that the load is a computer system and a network switch
Giant81	well fuck that I'm done
pffs	subz3r0: being a dick generally hurts your job chances, yes
Giant81	I'm burnt out and failed
Giant81	748 and I needed a 790
s1sko_	peter_, ip domain lookup source-interface may work
hjohnson	the computer switch controlls one of the biggest electrical loads in the village, and if that turns on when it shouldn't, that will knock the power out.
pffs	Giant81: which test?
subz3r0	790 for?
hjohnson	it goes back to defaults after it can't contact the master controller.
Giant81	CCNP SWITCH
hjohnson	after 10 minutes
pffs	second time?
hjohnson	it takes 10 mintues for the UPS to fire up.
hjohnson	you can see the problem here.
Giant81	yup second attemp
pffs	man
pffs	I'm going to start studying for that
Giant81	so $400 later and fuck it
subz3r0	Giant81: get some beer and rest :)
pffs	take some shots
Giant81	yeah I've got a buddy coming over this weekend we'll get blitzed and get some sleep
Giant81	probably didn't help I had maintenance Tue night so up till 2am, then email migraiton yesterday so sitl in the office
Giant81	I slept pretty good lastnight
Giant81	it was just little shit that got me I'm sure
Giant81	hte devil is in the details
subz3r0	pffs: i want to work with routers and switches not with ppl... if so, i would work as salesman...
subz3r0	:p
imemyself_	my understanding is the IS-IS adjacencies will not come up with the MTU is mis-matched
mynd	Giant81: it took me three tries on the bcmsn
pffs	subz3r0: you always work with people
mynd	third times a charm :)
subz3r0	pffs: ofc... just kidding ;)
imemyself_	I think it sends some of its messages are padded to match the size of the MTU
pffs	just making sure
Giant81	well fuck it I'm tired and bured out on this right now
pffs	some people don't
Giant81	been thinking of switching gears to ROUTE
Giant81	then come back to it later
pffs	I liked ROUTE
pffs	routers are awesome
mynd	i imagine the hard part about switch is you need physical gear to test on
subz3r0	pffs: im glad that i found a company where i can be as volunteer for 6 month with is specialised in cisco stuff. hope i can learn a lot there
mynd	can't really use gns3 for it
subz3r0	pffs: also working on my first ASA then :p
subz3r0	*which
Giant81	I've got access to some gear
Giant81	but it's 2x 3550's and a few 2950's
Giant81	hell I work as a network engineer of 3750's, 2960's and nexus 5k's
mynd	the company i worked for was a partner, so i was able to login use their labs when needed. I barely passed on the third attempt, and iirc it was wireless where i missed the most
pffs	I have two 3550s and some usb NICs
Giant81	but we don't do anything more advanced so that's what I get bit on
mynd	also, passed about 1 week after ccna expired :(
pffs	and an SRX210 which is sorta switchy
Giant81	look at the bright side
Giant81	I can't afford to take the test anymore times so I guess it forces me to study more until I can
Sedorox	I've been studying SWITCH for a while now... haven't had much luck on the practice exams :/
mynd	Giant81: not sure if it was cisco or pearson, but they had a promotion going on at the time (~2008) that if failed you can retake the exam at no cost
Giant81	mynd, don't think they do it anymore
Dez_Bryant	anyone here
Giant81	no
Dez_Bryant	Giant81: do you know how to program?
Giant81	my practise tests have been ok... 70-75% and I need an 80 to pass, most of the time I've taken practise tests they were harder then the real test
Dez_Bryant	i'm trying to find the best language to learn to do net eng slave tasks
Giant81	got a 75 on the real test
Giant81	depends on the language
Giant81	perl can do anything
Giant81	it might not be the best at everything, but it can do anything
Giant81	i <3 perl
Dez_Bryant	hm
Dez_Bryant	isn't perl complicated syntax wise
dcslv	the trick is to just pick one and run with it
Giant81	defind net eng slave tasks
Giant81	perl is as complicated as you make it
dcslv	perl is a swiss army knife
Giant81	it can be simple, or hard, it grows with you
dcslv	it'll do whatever
Dez_Bryant	log into a .txt of 600 routers and pull stats, mass configurations, etc.
Dez_Bryant	shit like that
Giant81	the better yo uget, the better your code gets, but even with less complicated code, yo ucan sitll get shit done
Dez_Bryant	.txt of 600 router IPs ****
dcslv	i started with bash doing that
dcslv	moved to perl when it got out of hand
mynd	Dez_Bryant: sounds like something for an NMS
Giant81	manipulating txt??? that's what perl is designed for
mynd	nagios or whatsUp ... or something similar
Dez_Bryant	mynd: no
mynd	??
Dez_Bryant	i want to do thing with the output
Dez_Bryant	things**
mynd	sounds dirty
mynd	idk, depending on what you're trying to do, an NMS could help. Nagios has tons of plugins and you can even build your own
SuperNull	yo momma so slow she use internet explorer four point ohhh
hjohnson	it's all about the pentiums?
Giant81	with todays computers, IE 4.0 is probably really fast
mynd	SuperNull: that was super random
Giant81	yo mamma so dirty, she went to Sochi and gave THEM viruses
SuperNull	mynd... i only have one thing to say to that sir...
SuperNull	Beep boop Beep boop.
kmcelroy1	http://www.comedycentral.com/video-clips/qugzj8/kroll-show-tracking-down-spit-decreaux
SuperNull	beep ?
kmcelroy1	watch it bitch
Dez_Bryant	you know what
Dez_Bryant	im gonna go with python
Dez_Bryant	that shit looks easy as fuck
SuperNull	shhhhhhhh
SuperNull	you wnat easy as fuck dez ?
Giant81	yo MAMMA!!!!!
SuperNull	i was gonna say kmcelroy1s cousin but..
Giant81	perl is for real men
SuperNull	but i will allow it
SuperNull	perl is for men from the 1980s
Giant81	python is for skiddies
SuperNull	as in .. used it in the 1980s
Giant81	well I Was born in 1981
SuperNull	PHP is for hipsters baby.
Giant81	real men use COBOL
SuperNull	Giant81 based on your height, we have determined that its impossible to grow that all in that short amount of time.
Dez_Bryant	who is python for
Giant81	yo mamma
SuperNull	loose bitches.
SuperNull	zooschool man.
Giant81	use Ruby on Rails
garrettskj	SNOWMEGGEDDON
Giant81	http://railsforzombies.org/
onefst250r	snowpocalypse
onefst250r	garrettskj: are you guys getting snow down yonder?
Giant81	http://tryruby.org/levels/1/challenges/0
garrettskj	onefst250r: yessir. just starting to accumulate
yq	ruby isn't high level enough
yq	python is more high level
SuperNull	where you guys at?
SuperNull	with the snow fall
Giant81	I still think perl is the defacto swiss army knife of programming/scripting
garrettskj	it's funny you say that
Giant81	you can do anything you need in perl
SuperNull	usually.
garrettskj	I have a tool kit written for our network engineers
garrettskj	all done in Perl
garrettskj	and it's title is "the swiss army knife'
SuperNull	i have libraries for key things all in PHP classes.
Giant81	it's not the perfect language for everything, but it can do anything!!
SuperNull	i hate some of perls.. syntaxes. in other languages it means one thing in perl it goes full retard.
SuperNull	PHP has its fails of course.
SuperNull	like the whole 'needle,haystack' and 'haystack,needle' issue.
Giant81	I neve ruse OO perl
Giant81	just straight perl
SuperNull	one of our previous admins did and im like 'wtf how does this all link together'
Giant81	I like the way they do things with $ @ # etc...
Giant81	%
SuperNull	i like the $ only.
Giant81	it makes it easier to read
SuperNull	hopefully i didnt just call scrye by accident.
Giant81	an array is @, a scaler is $ a hash is % done
SuperNull	funny cause in php ...
SuperNull	$array, $scaler, $hash.
SuperNull	dat consistency.
Giant81	is hard to read
SuperNull	perl has a lot of .. hard coded syntax for hashes/arrays that dont exist.
SuperNull	Giant81 have you worked on a large c/c++ project?
Giant81	npe
SuperNull	you're argument is invalid! SIR!
SuperNull	haha
SuperNull	your
SuperNull	GOD DAMN MY YOURS
MyssT	mm perl.. perl -e '$_ = q ;4a75737420616e6f74686572205065726c204861636b65720as;;for (s;s;s;s;s;s;s;s;s;s;s;s){s;(..)s?;qq qprint chr 0x$1 and \161 ssq;excess;}'
Giant81	I like perl cause I can tell what the object is it's referencing by looking at the way it's called
Giant81	ok obfuscated perl is nuts
SuperNull	not like you could use a useful variable name or something.
mynd	srst is a pain ... let me tell you
MyssT	who's gonna be the first torun that !?
kmcelroy1	SRST is lame
SuperNull	in C/c++ they have variable prefixes for what it is type wise..
SuperNull	if you work on a 'large' open source project hat recognizes it you will see stuff like 'sz' in the variables and stuff
Giant81	yeah but I might WANT to have a $value, @value, and %value an dhave them be different things
SuperNull	LOL!
SuperNull	well
SuperNull	then perl is a winner for you sir
Giant81	lol
SuperNull	i came a little late to the party for perl to be used by me..
SuperNull	and i started as web dev
Giant81	read the book 'learning perl'
Giant81	great book
SuperNull	anyone remember 'Personal Web Server' for windows 98?
Giant81	omg never played with it but I know of it
SuperNull	it was mini IIS
SuperNull	only even worse.
Giant81	I belive it worked up till 2000 then in XP they took it out
Giant81	PWS and access
SuperNull	i used to run PWS on my dialup which i would connect to from my high school ..
SuperNull	bling bling.
envirocbr	I swear, this is frustrating
hjohnson	fucking netgear and their busted-ass spanning-tree
baristaTam_	is not setting up management on a managed switch gonna fuck shit up?
kmcelroy1	just means you can't really remotely manage it
Krugger	no, but it does feel like a waste
hjohnson	yep, looks like one o fmy netgears has gone kerblooie
hjohnson	are we surprised folks?
hjohnson	I'm not.
baristaTam_	just trying to rule out possibilities of another issue
kmcelroy1	who buys netgear switches though? :P
onefst250r	hjohnson: it had a good life. give it a nice send off.
hjohnson	kmcelroy1: my predicessor?
kmcelroy1	ha
hjohnson	onefst250r: 12ga or .306?
baristaTam_	I tried so hard to talk my company out of this netgear switch, but they wanted cheaper
hjohnson	it's a GS108T
hjohnson	it seems to have gone awol
onefst250r	hjohnson: neither. use that exploding target mix stuff you can buy at gun stores.
hjohnson	the links are up, but it's not doing lldp even...
hjohnson	and I can't pass traffic through it
kmcelroy1	sweet
hjohnson	the lights are on but nobody's home
Krugger	imagine a switch with a couple of vlans, and you connect a cable to a port that is configured as switchport access vlan 17 and switchport trunk native 67
hjohnson	the power has been goign out every hour or so because of it as well
Krugger	that takes out the switch
Krugger	what might have happened?
Krugger	I will have to go to the datacenter as I lost remote access
kmcelroy1	Krugger: sounds like something broke
onefst250r	hjohnson: http://tinyurl.com/qbbbfgz
onefst250r	5 lbs ought to do
Krugger	yup, I even asked the guys to turn it off and on again
hjohnson	and this, my friends, is why you don't base mission-critical infrastructure on netgear
mynd	Krugger: depends if either access or trunk mode are staticly set
Krugger	and that didn't work
mynd	either way, the non-tagged traffic will go over either vlan 17 or vlan 67
Krugger	the idea was to have vlan 17 as the default vlan and then have vlan 67 as the tagged vlan
kmcelroy1	native is untagged...
mynd	well that's not how you configure the port
kmcelroy1	so the idea was wrong :P
kmcelroy1	and you can't have access and trunk
kmcelroy1	so what you want is a trunk with native 17
mynd	kmcelroy1: you can configure it and if it fails to com eup as a trunk, it'll be an access port on vlan 17
squibby	what are these randomly generated nicknames in here - 31NAAEE9T , 5EXAAJOQK , 6JTAA6EEN ?
kmcelroy1	right, but that isn't what he described as wanting at all
mynd	true
squibby	should we be concerned about that?
kmcelroy1	you also can't have access and trunk at the same time, so the statement stands
Krugger	I usually just assign a vlan to a port this having a default vlan and a tagged vlan was something new
MrJayPC	squibby, it's only your boss monitoring you
squibby	I was just gonna ask if it's the NSA
Nightstaar	Hi all, question about equipement I'm wondering someone can help me with.
Nightstaar	Does anyone have any recommendation for testlab gear?
Krugger	and in the manual I can configure it because it will trunk and if the trunk is ever removed it will use the default configuration
Nightstaar	I'll be doing my CCNA soon (and continuing on from there)
mynd	kmcelroy1: a port can't be in both states at the same time, but you can configure "switch acc vlan X" and "switch trunk X" all day long
Krugger	I mean the default vlan
kmcelroy1	mynd: right, never said it couldn't
squibby	Nightstaar: pick up two catalyst 3550s for the switches and two 1841s for the routers
mynd	kmcelroy1: reckon i'm not knit picking :-)
squibby	Nightstaar: honestly you're probably better off with just gns3 for a ccna lab
Krugger	so what is the correct way of doing this? defining a default vlan and then adding a tagged vlan?
Nightstaar	Well I've heard that a lot squibby
Nightstaar	I want to get some stuff that'll last for the other certs as well
Nightstaar	heading towards networks and security maybne
Krugger	I was even looking into q-in-q, but that seems not the way to go
Nightstaar	Also I want to use it for personal use if possible
mynd	Krugger: i think you're getting your terms mixed
mynd	Krugger: what are you trying to do
squibby	Nightstaar: yeah then you should invest in the 1841s and some 3550s
Nightstaar	Cool cool.
kmcelroy1	Krugger: i told you, for what you asked for, trunk with 17 as the native
squibby	maybe 3560s or 3750s. depends on what's available out there.
Krugger	we are connecting to a provider network and that is what is in the email
Nightstaar	squibby: I have a 877w that I got from an old job. Keep or sell do you think?
squibby	Nightstaar: no reason you can't continue with gns3 for the ccnp labs though
kmcelroy1	a provider is telling you to trunk to them?
Nightstaar	Yeah of course
mynd	Krugger: ohh ... let me get out the email
Krugger	they didn't tell me to trunk
Krugger	but I will go with trunk with 17 native as suggested
garrettskj	Krugger: go get trunk
kmcelroy1	if they told you to tag a vlan, they told you to trunk :P
garrettskj	lol
Nightstaar	Perhaps I'll keep the 877w for my ADSL and wireless functions
Krugger	and see if I can reach somebody out there :P
kmcelroy1	which is extremely weird
lo0	QinQ for a CE? Without you requesting it? Whaaaaaaat?
mynd	trunking to a provider is odd ... unless it's MetroE or something
lo0	Owait, misread. Disregard <:
mynd	least that's the only time I've seen my equipment setup to trunk towards the provider
mynd	i'm sure there's other use cases out there
kmcelroy1	usually only if the carrier is retarded
kmcelroy1	XO for example
Krugger	well, the provider is giving us temporary ipv4 and ipv6 block and server while we migrate stuff
mynd	ha
Krugger	so we are in the middle of their network
kmcelroy1	if they are giving you a block, have them route the damn thing to you and move on
lo0	That feel when your organization won't purchase IP space through ARIN because it's, "Too hard to figure out."
Krugger	our network gear consists of a switch and borrowed servers
Krugger	we are improvising, adapting and overcoming :P
kmcelroy1	you guys sound like a class outfit :P
garrettskj	jr,,,
garrettskj	hrmm
Krugger	we have lots of borrowed stuff
Krugger	even the gbic are borrowed from another organization
kmcelroy1	maybe you should buy stuff, like a business does
Krugger	I would, but there is no budget. So we are getting creative
kmcelroy1	i think the best part is you are doing a migration with other people's shit
kmcelroy1	what do you have to migrate if you don't own anything?
Krugger	today was building servers with pentium 3 and 4 processores
kmcelroy1	oh, we have these mission critical P3 servers running our pong server
Krugger	to supplement cisco content switches
kmcelroy1	can't let the pong server go down too long
kmcelroy1	the rabble gets restless
Krugger	I think I better not say what the servers will be load balancing, but if it fails it will be on the evening news
kmcelroy1	this sounds like the worst business ever :P
kmcelroy1	based on what i have gleaned so far, it sounds like it will surely fail somewhere
mastermind	P3 servers?
mastermind	wtf?
Krugger	I am sorting what runs and what doesn't
Krugger	whatever runs will be put into production until it fails
hjohnson	man, it annoys me to plan on deploying 3560-24s when I really only need 8 or 12 ports
hjohnson	but the costs just don't justify the smaller switches
hjohnson	damnit
Krugger	at least you have room to expand later
Giant81	look at the bright side
kmcelroy1	this sounds like the worst business in history
Krugger	or you could lacp it :)
kmcelroy1	no budget, P3 servers
Giant81	when they go EoL atleast there will be a good supply of 24 porters
kmcelroy1	borrowed equipment
Krugger	The trick is to keep borrowing from different people
Krugger	or do lots of proof of concepts
hjohnson	Giant81: yes, but it means having fans and so forth in dusty locations that are rearely visited
kmcelroy1	seems like the trick is to quit the company and find a better job, ha
hjohnson	naw, do the office space thing and get laid off. :P
Krugger	well I am sub sub sub contracted
onefst250r	ACTION votes for the quitting thing
hjohnson	so I got laid off... the one guy formmy group left is about to be let go for telling the company that they've changed to producing shit
hjohnson	hehe
Krugger	and what happened is they said they had some networking issues I might help out with
onefst250r	hjohnson: its not that im lazy hans, its that i just dont care
kmcelroy1	"some networking issues"
hjohnson	that's where my buddy is at my former employer
kmcelroy1	the issue is they don't have a network :P
hjohnson	and turns out a bunch of customers have left because i'm no longer there
onefst250r	did they call you?
hjohnson	teh customers?
Krugger	basically there are switches and everything is connected to everything
onefst250r	yeah
hjohnson	yeah, but it would be very difficult for them to hire a single forigner
onefst250r	leave there, call you :)
Krugger	but I am making it better
onefst250r	get a couple of foriegners then
hjohnson	onefst250r: what I'm working on is partnering with one of their other suppliers to do the contracting through them
Krugger	just would be nice to have a couple more IT people around
onefst250r	hjohnson: or theres that
SuperNull	who posted the 90 percent gay comic ? wtf.
Krugger	there are also the server and the applications...
SuperNull	oh .. reddit did.
hjohnson	the other problem is maintaining some of my qualifications
SuperNull	http://www.pidjin.net/2014/02/06/ninety-percent-gay/ enjoy.
Krugger	*servers
SuperNull	its totally not about nieros beard.
Krugger	currently using 3 datacenters
Krugger	with basically no IT staff
mastermind	Krugger: sounds completely insane
Krugger	they have 2 windows guys and 2 helpdesk guys
KenMatlock	wow
Giant81	lol
Krugger	in my first week I expanded the linux applications server by an additional 100 VMs to support the failing applications
hjohnson	Krugger: years and eyars ago, I knew of a company... their primary web server was IIS
hjohnson	they named it Titanic
Giant81	lol
hjohnson	the backup was running Linux/Apache... they named it Carpathia
Giant81	sounds like a bad ohmen
kmcelroy1	they have 3 data centers and P3 servers?
kmcelroy1	what the fuck?
Krugger	I would like to point out the obvious problem, windows guys + linux applications servers
Krugger	I am pulling things out of the old parts warehouse
hjohnson	Giant81: well, it was named due to the stability, not the other way around
kmcelroy1	i don't understand how this company functions
Krugger	I need load balancer, radius server, proxies
Giant81	lol
Krugger	syslog server, nagios
Giant81	so far it seems our jboss on windows servers are the unstable ones
hjohnson	I have to admit I'm pretty damned happy with Active Directory and NPS for my centralized authenticaiton needs
Krugger	I have ran out of storage space, now going for ultra scsi-2 disks
hjohnson	ACTION decides to put some pants on
pxed	hjohnson ++ i never touched radius before, but was able to get it configured in a few hours this morning without too much hoopla
hjohnson	yep
Krugger	trying to build a decent network here, but running short on everything
hjohnson	and it's easy for my on-site tech monkies to manage
hjohnson	Krugger: heh, my own situation, except that I'm doing it for a non-profit
hjohnson	so half the equipment is donated by yours truly
Krugger	We have tons of equipment in storage, the problem is nobody knows what is there
kmcelroy1	you should just build a shitty network and let them go out of business
hjohnson	heh
kmcelroy1	kill the beast
hjohnson	fucking netgear
Krugger	found fiber SAN switches there
hjohnson	god damned peice of shit
Giant81	Krugger, nobody knows it's there = great for a home lab
KenMatlock	ACTION thinks Krugger works with Dilbert :P
lo0	So, EMC gave me a 176 page step by step guide for deploying Avamar.
lo0	And my boss thinks it's DR.
lo0	Wat.
lo0	Why is today a thing?
lo0	Why.
mastermind	EMC sucks
Giant81	dude Avamar is something yo ulet EMC setup
Krugger	actually dilbert comes to mind several times a day
Giant81	fuck that' it's a moster to deploy
Giant81	but once it's setup, it's nice
hjohnson	fuck.. I need to change the licensing on my AD servers too
hjohnson	this is going to be hell
mastermind	but proper FC is nice and "just works"
hjohnson	we're on Server 2k8 Standard, which has a 50 seat limit on radius clients
hjohnson	I'm up to 40
Krugger	but why do the FC disk die so fast?
Krugger	maybe it is because they are old
dcslv	freeradius ftw
Giant81	what gen avamar did you buy?
mastermind	Krugger: do they?
SuperNull	freeradius yeahhhha baby.
Krugger	I was trying to ressurect a SUN fiber storage arey and the disk keep dying
dcslv	beautiful software
mastermind	ACTION likes the new Hitachi HUS-VM we have hear
mastermind	the GUI sucks
garrettskj	hrmm
mastermind	put performance is stellar
mastermind	s/put/but
garrettskj	hjohnson: srsly
garrettskj	i didn't realize there was a limit on radius clients
garrettskj	on 2k8
Giant81	dude
Giant81	it's windows standar
Giant81	it limits EVERYTHING
garrettskj	you have a doc that has the different versions and their limitations?
Krugger	today I found a box with qlogic fiber adapters, but the don't fit in the 1U servers :(
Giant81	as a way to suck more money off of you and force you to ENT
hjohnson	garrettskj: there is in 2k8 standard
hjohnson	2k8 enterprise doesn't ahve the limit
imemyself_	how does it count the radius clients? I know you can specify a prefix instead of an individual IP
lo0	Krugger: dremel
imemyself_	might be able to give up a bit of security to make it work beyond the limit
hjohnson	imemyself_: in the case of 2k8 standard you can't specify a prefix
hjohnson	imemyself_: you have to specify each client individually
imemyself_	oh...that sucks
hjohnson	2k8 enterprise lets you sepcify a range
hjohnson	imemyself_: it's just one of the licensing things... it is what it is
hjohnson	the annoying thing is that I have 4 licenses for 2k8 enterprise
hjohnson	but you can't shift the license of an AD server while its promoted
hjohnson	you have to demote it, change the license, and re-promote it
Krugger	I know it feels like chaos, but I actually enjoy working as this place. I mean I can pretty much do anything I want with the equipment
Krugger	and seems like the servers uptime has increased drastically since I started
hjohnson	fucking hell
Krugger	so managment is very happy
Giant81	Krugger, so can I but I work at a place with millions of dollars of equipment in a DAtacenter
hjohnson	ok, switch came back once I forced a topology change
hjohnson	facepalm
Giant81	brand new Nexus / ASA / UCS / Netapp
Giant81	hell the crap we pull out and I use in my lab are 2811's, IBM 24 ore 128gb ram servers, 3750's, etc..
hjohnson	so instead of connected to the gigabit trunk, it's conencted over its backup 100mbps link, which is running over about 500 feet of cat-5
Giant81	well sitll waiting on a 3750 to come out
Krugger	would like to have that
Giant81	but when it does its into my lab
Giant81	my GNS3 server has 128gb of ram
Giant81	4 sockets and 24 cores
Giant81	it's a fucking monster, I run GNS3 and full VMS of centos / 7 / ubuntu / etc... on it for labs
Krugger	I think that would sum up one of my 48U rack cabinets :P
Giant81	I'm going to start spnking the fuck out of it as I start playing with CCNP ROUTE
Krugger	I actually suggested it would be more energy efficient to buy new servers
Giant81	I'm burned out on SWITCH so fuck it, going to just let it soak in and move to ROUTE for a bit
Giant81	it would be
Krugger	I mean I am using lots and lots of power
Giant81	much
Giant81	get a single server, P2V all those machines, use less power, better preformance, no logical netowrk difference
hjohnson	yeah, for the nonprofit, they bought a nice hP server, and were just going ot use it for a single task
hjohnson	i basically said "uhh guys, ever heard of vmware?
Giant81	ESX baby
Krugger	anyone using xen?
Krugger	I have some esx 5.5 and 4.0 and hyper-v
Krugger	and xen might be added soon
Krugger	to make it more diverse :)
Giant81	no I've been using ESX mostly but wanted to play with KVM at home
void641	ESXi here
void641	Anyone playing with OpenStack at all ?
void641	or have it in production even ?
garrettskj	i just saw a nice article on it?
garrettskj	does that count? ;)
void641	Just want to know how it compares to say vSphere, etc
VLanX	guys, I have two wan ospf routers that advertize the same networks with the same cost to my gateway router; is it possible to change the metric? I cannot use " ip ospf cost 1000" because they're connected to the same vlan.
garrettskj	i'm confused.
void641	VLanX: Same SVI ?
garrettskj	and you can't/won't seperate the vlan
garrettskj	?
kmcelroy1	he won't tell you this now, but one isn't a cisco
VLanX	garrettskj: I would, but the WAN routers share a virtual IP
garrettskj	lol
kmcelroy1	you get to play the detective game
Krugger	damn, just realized how wrong my configuration was
garrettskj	they share an HSRP ip?
hjohnson	esxi is what I play with
hjohnson	mostly because it does the job
VLanX	garrettskj: CARP: they're not cisco routers
hjohnson	Hyper-V is a joke in a mixed platform environment
Apachez	rsty: but other than that it shouldnt be any problem to have loopback set to 10.0.0.2/32 if you already have a vlan interface set to 10.0.0.1/24 on the same box ?
garrettskj	kmcelroy1: and there we go
Apachez	anyone is free to answer that by the way :)
kmcelroy1	garrettskj: told ya :P
kmcelroy1	i went through this earlier when he brought it up, ha
garrettskj	kmcelroy1: tips hat.
garrettskj	ACTION tips hat rather
kmcelroy1	ha
void641	Apachez: why would anyone want to do that ?
SuperNull	our one technician delays calling the company who can support him best until the very last option wtf. we pay for support.. no one here knows this software.. yet... he waffles around on calling the support line.
SuperNull	what the fark.
VLanX	apparently you can't set the cost based off the IP of your neighbour
void641	VLanX: Cost is by link…
kmcelroy1	it isn't cisco, run!
void641	VLanX: if they share the same link, it will be equal, what are you trying to do ?
VLanX	kmcelroy1: actually it is, I have to set the cost to the cisco side
VLanX	void641: one router is supposed to be just a backup, so it shouldnt advertize shit unless it's the master, but I cant change that
void641	what platform are your routers running carp ?
VLanX	pfsense
void641	os
VLanX	bsd
void641	which bsd ? lol
VLanX	freebsd 8.3
kmcelroy1	all the BSD
mastermind	carp is not a bad thing...
RedShift	hey guys, suggestions for accept BGP routes based on IP SLA tracked objects?
VLanX	maybe I could set up a script but I tought it would be easier to increase the cost
void641	No carp is great….
RedShift	or am I going about this the wrong way?
Giant81	man if you can get the company that BUILT the software to SUPPORT it and it's already paid for? why would'nt you?
mastermind	we use openbsd based boxes running carp for a lot of stuff...
void641	VLanX you can check out the port "ifstated", it will do actions based on conditions...
kmcelroy1	RedShift: what are you trying to do exactly?
wp	RedShift: ehm wut? :D
void641	are you using quagge for OSPF ?
Apachez	void641: well because its a device placed on internet perhaps ?
Apachez	and the loopback ip needs to be accessible from internet aswell so cant do a rfc1918
void641	Apachez: why not put the /24 to null0 and create two loopbacks for the /32's ?
Apachez	?
VLanX	void641: yeah, quagga
Apachez	the case is that this device already has 3 vlan interfaces
RedShift	still on my two internet connections, both DHCP internet connections
Apachez	lets say 10.0.0.1/24 10.0.1.1/24 and 10.0.2.1/24 (as example I know these are rfc1918)
RedShift	so I've got VRF A, which leads to ISP A, VRF B to ISP B, and VRF C to the local network
Apachez	the problem with this is if the link is down then the ip isnt accessible
RedShift	VRF C should be getting itself default route to 0.0.0.0 depending on which VRF has internet at the time
Apachez	so I need to setup a loopback int to make some ip always accessible
void641	VLanX: you can use ifstated to check carp to see if it's the master or the standby, and then choose if ospfd runs or not ?
Apachez	as long as at least one link is functional
RedShift	so I've got an ip sla track running in VRF A to test if internet is working, and one in VRF B
kmcelroy1	RedShift: you have BGP on DHCP connections?
Apachez	but it seems that then setting the loopback to an ip from a range that already exists is a bad thing to do?
RedShift	kmcelroy1 no, but you have to use BGP to leak routes between VRF's
VLanX	void641: wouldnt that increase latency for the backup to become master anyways?
RedShift	I think it's called VRF lite
void641	VlanX: It would anyway if you're not sending any LSA's
kmcelroy1	you can leak without BGP
VLanX	void641: ok so you suggest me to do it pfsense-side
RedShift	whatever, I need some way for VRF C to accept its default route depending on the ip sla track
hjohnson	I wonder if the 1803 supports HRSP
VLanX	I'll try... I guess
VLanX	hjohnson: they should if you have the right IOS
kmcelroy1	why are you using VRF lite here?
kmcelroy1	this seems retarded
RedShift	ok, how would you solve this?
hjohnson	VLanX: yeah, CFN indicates as much
kmcelroy1	i would stop using VRFs for a dual DIA/LAN setup :P
void641	VlanX: The other thing is if you can control the next-hop sent via the LSA"s to the router to always be the VIP…. then regardless of what LSA's it gets it would just route to the VIP anyway
sartan	what's a vlan for?
sartan	X?
squibby	xxx
RedShift	kmcelroy1 well I can't figure out how to not do it without VRF's if both connections use DHCP :-(
hjohnson	too bad there's no pastebin type setup for doing quick network diagrams
VlanXXX	void641: which one should I go for?
kmcelroy1	why don't you just do two default routes out and let it CEF balance between the ISPs?
RedShift	because one is strictly backup and doesn't have much bandwidth
kmcelroy1	then set a higher cost and do a tracked object
envirocbr	Brain.Is.Going.To.Explode
void641	VlanX: Not sure on the ospf side with quagge I've only ever used bgp with it
hjohnson	not sure if HSRP is the right solution here though
kmcelroy1	either way it is really simple
hjohnson	stupid modems not supporting dyanmic routing protocols
RedShift	and CEF will still route out to a gateway even if it doesn't have internet
RedShift	I'm supposed to check a host on the internet to determine the alive-ness of the link
kmcelroy1	depends how you want to do it
void641	VlanX: are your route quagga routers all in the same OSPF area ?
hjohnson	RedShift: i'm doing that in my config
kmcelroy1	but you can just use a public DNS server or something
kmcelroy1	4.2.2.2 is a good one to hit
VlanX	void641: yes, for now
kmcelroy1	or use a route reflector
hjohnson	though I just ping the router at the other end of my satellite link
kmcelroy1	they are pretty much always up
kmcelroy1	or find a node in the provider network, use that
hjohnson	or google's DNS
kmcelroy1	or that
kmcelroy1	works fine
RedShift	uh
RedShift	so
kmcelroy1	you have literally taken a simple problem and made it the most over engineered solution ever :P
RedShift	I must be missing something here :-\
void641	VlanX: I would check to see if you can control the next-hop in ospfd … if you can your neighbor would be the actual server IP, but if you can set a different next-hop in the LSA you can just set that to the VIP.. the upstream router should see both…
void641	VlanX: seems like a bit of a hack, not even sure it would work but might be worth a try
RedShift	guess I'll have another crack at it tomorrow
kmcelroy1	put in a default route to the primary, put another one in to the secondary with a higher metric. do a tracked object with an IP SLA and just use like 4.2.2.2 as the endpoint or some other reliable destination
kmcelroy1	tada
kmcelroy1	you can set it up when the SLA object fails, it brings the tracked object down and pulls the primary route
VlanX	void641: ok thanks. I'll try to get it to work
RedShift	how will it come back then?
squibby	or you can go straight to this page - http://www.cisco.com/en/US/docs/ios/dial/configuration/guide/dia_rel_stc_rtg_bckup_ps10591_TSD_Products_Configuration_Guide_Chapter.html
squibby	TADA
squibby	I WIN
void641	VlanX: seeing a small topology of what you're trying to do might help
kmcelroy1	yea, just use squibby's
void641	VlanX: Like if you're routing through the CARP routers to different interfaces
VlanX	void641: https://www.dropbox.com/s/766dfycn26f0r41/network.png
void641	VlanX: but it sounds like you're trying to control OSPF routing based on active VIP on CARP…
void641	VlanX: So .2 and .19 are your carp routers?
VlanX	void641: CARP routers are Aldebran and Bellatrix
VlanX	void641: Fomalhaut is LAN's L3 switch
void641	VlanX: Ok… so why not just increase the cost on the links going to Fomalhaut ?
void641	VlanX: at least traffic would be preferred through one router and not the other…
VlanX	void641: which router should be the one to incerease the cost?
void641	vlanX: whichever router is the standby carp router ?
VlanX	void641: changing the cost on Bellatrix does not affect the cost on Fomalhaut
ALucas	Anyone have a TV setup with like a interactive network map? they just installed a TV in our office and i want to put something cool on it, any thoughts? Any cool software for a network diagram?
kmcelroy1	we have fullscreenradar.com
kmcelroy1	shows map and weather and shit
kmcelroy1	oh, network map
kmcelroy1	we have solar winds :P
ALucas	well, we are supposed to have network related shit... lol
hjohnson	https://www.dropbox.com/s/risjmyg0jjj0wli/Screenshot%202014-02-06%2013.25.56.png so that's my network
hjohnson	the problem is that the switch in the dining hall only runs for about 30 minutes on a power failure
kmcelroy1	thought you were just looking for something to toss up there
ALucas	Which solar winds product? I think they are pretty expensive right?
kmcelroy1	they are reasonably pricey depending on what you get
kmcelroy1	but baseline they aren't bad
hjohnson	ACTION is pretty happy with OpenNMS as his NMS
kmcelroy1	we have unlimited license and a lot of the modules, it was like 50k for us
ALucas	I use observium and nagios right meow
hjohnson	nice and extensible
ALucas	I would like to use Zabbix
peter_	anywhere i can go for some best-practice security commands for my prod switches/router?
kmcelroy1	i like that i don't have to dick around with solar winds
hjohnson	eyah, I have to dick around in XML for a lot of shit in OpenNMS
ALucas	It just works? impossible
Apachez	any of you who have used static routes to push traffic for a specific ip into a specific l2 vlan, that is when using private vlans ?
hjohnson	otoh, the price is right
hjohnson	I used to use WhatsUp Gold for some stuff
kmcelroy1	pretty much, you just add the node and you are pretty much done
kmcelroy1	like 99% of anything you need is already setup for you
Giant81	for weather I found a nice fullpage NOAA page
kmcelroy1	which is how i like my monitoring
ALucas	Apachez: We used static routes for pre-bgp migration and having two outside interfaces.
squibby	ALucas: gtfo meo
squibby	w
kmcelroy1	cause i don't want to fuck around with monitoring customization for the rest of my life
hjohnson	heh I once rigged up a system in the NMS that would kepe track of one of our systems' GPS coordinates
ehnde	rule 1 /.*/ /64718809/ i'm trying to say "take any internal DN and translate to 64718809" did i do that right?
Giant81	I use static routes everywhere in our organization
Apachez	ALucas?
hjohnson	if the system dropped off the air, the system would download the latest weather radar, and then check to see the weather.
hjohnson	ehnde: that's "take any number"
hjohnson	not internal
hjohnson	er not just internal
ehnde	ah ok
ehnde	that would still work
ehnde	maybe i didn't apply it correctly
Giant81	http://radar.weather.gov/Conus/full.php
ehnde	debug msgs look like this From: <sip:2225001@sip.flowroute.com>;tag=24933DC4-1330
Giant81	for our weather page on the dashboard
ehnde	i'm expecting it to be 64718809@sip.flowroute.com
hjohnson	Giant81: in my case I wanted something more specific since I wanted to be able to programmatically spot the red zones over where the node was
RedShift	ACTION feels experimental and just loaded up c181x-adventerprisek9-mz.153-3.XB12.bin on an 1811
hjohnson	anyhow, that was a long time ago now
VlanX	void641: omg I think I've managed to get the script on pfsense's side to behave
VlanX	I think I might shit myself
hjohnson	RedShift: heh... alas my 1803 doesn't have enough RAM to run the latest IOS
hjohnson	I need to get it a DIMM
VlanX	I'm hard right now
RedShift	I took an SO-DIMM from an old laptop
hjohnson	lol
VlanX	oh god yes
RedShift	holy crap it's working
Giant81	oh baby, baby yeah... oh it works so good
RedShift	IOS 15.3 on an 1811, I'm the boss
hjohnson	VlanX: you'll love this
hjohnson	RedShift: slower than snot? :P
RedShift	actually no, it booted pretty quickly
Giant81	it's got to be like running windows 7 on a pentium D
RedShift	cli works fine
hjohnson	heh
RedShift	I don't know about the features but it boots and that's good enough for a lab
Giant81	or because of the mudularity of it, maybe it just has less modules running so it runs well
Giant81	sinde you arne't using many of them
Giant81	does 15.3 not load and run modules that are not needed? or is it just modularity in the licensing modle?
RedShift	isn't that IOS-XR?
RedShift	plain old IOS is monolithic as fuck
Giant81	well I know NXOS runs 'features' I'm wondering if it loads the module for that or not
kmcelroy1	the license model doesn't apply on the older ISRG1 routers
hjohnson	one of the troubles i'm having is monitoring our poop-pump
kmcelroy1	even on 15, it is still the old style
Giant81	ACTION runs to put 15.x on his 3750 stack
Giant81	why not
void641	There is a "modular" version oof IOS< but as AFAIK it only ran on 6500/7600
RedShift	the licensing model sucks
hjohnson	kmcelroy1: I thought cisco had abandoned much of the licensing stuff because it was suh a pita to administer?
kmcelroy1	i put 15 on my 4500 :P
void641	NX-OS loads features as modules
hjohnson	and boom, power's out again
kmcelroy1	they love licensing cause they make actual money instead of people just downloading any image off the internet :P
void641	IOS-XR you install what modules you want
void641	But XR also dynamically loads them based on if you're using them
hjohnson	damn they're not having good luck right now
Giant81	they should
void641	So you can install multicast-routing, but if you're not doing multicast it won't start the process
Giant81	fuck it's all built on a fuckin *nix kernel
Giant81	shoudl be able to dynamicall load/unload kernel modules for different features
void641	Well XE is bascaily IOS on unix
void641	on linux rather
Giant81	and help streamline it when it's not doing much
hjohnson	man I wonder what they're doing
void641	XR is on QNX..
RedShift	hey kmcelroy1 back to my dual ISP and DHCP thing
kmcelroy1	did you read the link squibby gave you? :P
RedShift	how am I going to do static routes that are tracked if I don't know what my next-hop will be?
squibby	go read that link meow
kmcelroy1	^
kmcelroy1	alright meow
RedShift	I CAME HERE TO SOLVE, NOT TO READ
garrettskj	what
kmcelroy1	kinda one in the same
garrettskj	OK. i got a question.
kmcelroy1	read=solve
garrettskj	which I'll prolly lab up if no one has the answer
garrettskj	Cisco DHCP server
Giant81	what link
kmcelroy1	evil
Giant81	labbing is good
garrettskj	... does it hand out addresses in order 1,2,3,4,5,6 etc
Giant81	labbing = learning
RedShift	yes obviously, I'm going through it, I was just illustrating this meme: img.pandawhale.com/47132-I-came-here-to-laugh-not-read-yc6J.jpeg
kmcelroy1	but cisco DHCP is evil
garrettskj	if 1 is released to the pool
garrettskj	will connection #7, get ip of 7, or of 1
kmcelroy1	it normally does try to go in order
Giant81	but does it back fill released addresses?
Giant81	no idea
garrettskj	me either.
kmcelroy1	i believe so
garrettskj	I thought so too
Giant81	remember I failed my CCNP SWITCH test again
Giant81	so I guess it proves I don't know shit
kmcelroy1	ha
garrettskj	well it's not just switch..
garrettskj	but..
garrettskj	I'll find out.
kmcelroy1	damnit Giant81, get your shit together :P
Giant81	no shit
Giant81	fuck it
Giant81	I'm moving on to ROUTE
kmcelroy1	turn off all that static routing and get working on Route
kmcelroy1	then move to switch
Giant81	I'm burnt out on switch
kmcelroy1	route is worse though, cause you are all staticed :P
Giant81	I'll fuck with ROUTE for a bit
hjohnson	VlanX: so get this... I have two links to the intertubes
drkat	huh
drkat	route is worse
hjohnson	a primary and backup
Giant81	meh by doing ROUTE I'll inpliment OSPF or EIGRP
kmcelroy1	switching was the worst when i did CCNP, but that was a long time ago
drkat	for ccnp?
garrettskj	hrmm
kmcelroy1	not sure about now
Giant81	I can lab orute easier then I Can lab dot1x with radius authentication
hjohnson	VlanX: the fundamental problem is that both uplink subnets use the 192.168.0.0/24 and both gateway routers are 192.168.0.1
hjohnson	facepalm
RedShift	http://www.cisco.com/en/US/docs/ios/dial/configuration/guide/dia_rel_stc_rtg_bckup_ps10591_TSD_Products_Configuration_Guide_Chapter.html#wp1065528 <- this article does not explain how you do it when both primary and backup links are DHCP
RedShift	it's always one DHCP and one static (and I can do that) but what if both are configured using DHCP
hjohnson	so I have figured out a failover mechanism... it involes a VRF, double-NAT, and hairpinning a GRE tunnel between the VRFs
hjohnson	it makes me dirty thinking about it
drkat	dhcp route is installed by interface speed iirc?
hjohnson	but it's the mother of all hacks. :)
rsty	So I have a Line Group set up, and it rings 5 phones. When one of the 5 phones answers a call that originated from that Line Group, all calls going forward only flash on the remaining 4 non-busy phones while the first phone is busy, on the phone from the orginated call. Any ideas?
drkat	http://blog.ipspace.net/2007/06/dhcp-response-sets-default-route.html
Giant81	you Mcgyvered something together
hjohnson	yeah
drkat	ip dhcp client default-router distance 200
hjohnson	I really should just change a couple of things though to make it more reliable
VlanX	hjohnson: holy fuck dude
drkat	hjohnson are u labbing this
hjohnson	drkat: no, it's in production
drkat	hmm
RedShift	hjohnson that makes me think dirty in a sexual way
VlanX	RedShift: midget porn?
RedShift	no
RedShift	double NAT
hjohnson	http://pastebin.com/u3iCYkG2
VlanX	hmmmm double nat
hjohnson	the problem is that the backup link is a hughesnet modem
routerpro	anyone have any 3850 rack mount kit available for purchase?
hjohnson	er hughesnet satellite which is locked to 192.168.0.x and does nat
hjohnson	and there's no way around it
hjohnson	and it can't handle anything other than 192.168.0.x
_bradk	have you got your ccnp kmcelroy1?
hjohnson	my primary link (also satellite) is stuck on 192.168.0.x for historic reasons, and doesn't require nat
kmcelroy1	yes
hjohnson	(I do nat later on in the chain)
hjohnson	so yeah, it's ugly as sin
hjohnson	but works
_bradk	niiice
drkat	ugly like a fat chick on her wedding day
RedShift	it's not dirty, it's disgusting
envirocbr	KenMatlock: HEY DUDE!
hjohnson	when the main link goes down, the SLA goes down, causing the router to kill the primary default route
RedShift	I am no longer arroused
drkat	fuck I need my desktop setup
kmcelroy1	i'm still aroused
envirocbr	KenMatlock: The problem...F2E card is supported as an internal interface only
drkat	Im doing it this weekend
envirocbr	which is why the control plane was up but the data plan wasn't working
hjohnson	so the main VRF then gets routed over the hairpin GRE tunnel to the VRF
KenMatlock	envirocbr: ha! so you have to swap the two?
hjohnson	the VRF is configured to NAT that traffic, and send it out via the hughesnet modem
hjohnson	when the primary link comes back up, the track object re-aserts the main default route, and the traffic once again flows over the primary satellite link :)
hjohnson	if I dind't have to deal with the two 192.168.0.x I could have done away with the GRE and the vrf
garrettskj	jsut labbed it
garrettskj	sooo
garrettskj	Cisco DHCP always takes the first available address
kmcelroy1	thought so
RedShift	ok so hypothetically, can BGP be configured to accept certain routes based on ip sla track results?
RedShift	just for ehrm fun
hjohnson	RedShift: I don't know about BGP
hjohnson	RedShift: but if it's rebroadcasting local static routes, then sure
Giant81	that might be something I learn about in ROUTE
hjohnson	I run OSPF for my dynamic routing needs
hjohnson	makes my life easier
Giant81	I'm sorry
hjohnson	(and I didn't want to figur eout how to setup BGP)
envirocbr	KenMatlock: I have to get another ASR or an M series card
envirocbr	hjohnson: BGP is easy
envirocbr	Easier than OSPF IMO
hjohnson	Giant81: well, the dynamic routing is between a 3825, a 4948, and a 1803 :P
Giant81	ISIS so far as I've seen is better then OSPF
kmcelroy1	RedShift: No, you would have to see if you can do anything with communities, but I don't think you can
hjohnson	it's more that i jsut got sick of dealign with the routes
KenMatlock	envirocbr: you can't just swap which interface in hte OTV and which is the jiun interface?
KenMatlock	*join
KenMatlock	holy crap my typing sucks
hjohnson	ACTION beats the IT guy for rebooting the core switch again
drkat	arent you the IT guy?
RedShift	I think you can leak routes between VRF's using OSPF too
drkat	tell him not to reboot the netgear
RedShift	that might be worth a shot
hjohnson	actually when I have the chance, I should move the 3825 up to where the modems are... now that it doesn't have the 36esw in it, I'd just need to repatch a bunch of analog lines
Giant81	wasn't there a cisco live breakout video online about leaking routes between VRFs using BGP?
hjohnson	drkat: I'm the network designer/overseer.
hjohnson	but I'm not on site
drkat	hjohnson so why you using netgears?
drkat	when you get hired?
hjohnson	I'm just a volunteer who knows what he's doing
drkat	oh..
drkat	volunteer
drkat	so you're still on the line like me huh
hjohnson	drkat: non-profit org
hjohnson	drkat: naw I'm actually a director of the organization... they couldn't bring me on as anything other than a volunteer, would be a conflict of interest
drkat	oh so you make money though?
Giant81	https://www.ciscolive.com/online/connect/sessionDetail.ww?SESSION_ID=7679&backBtn=true
Giant81	yeah I think it might have been that
hjohnson	drkat: no
drkat	then umm..
hjohnson	drkat: i'm currently unemployed
drkat	yeah.. that what i meant
drkat	the unemployment line
hjohnson	drkat: it's a non-profit/charitable that I care about deeply...s o I help out where I can
hjohnson	just so happens that I've picked up a lot about campus/satellite networking, and in the end I now run their network
drkat	nice
hjohnson	next spring we'll be deploying fiber for a bunch of the interbuilding links
hjohnson	I'll basically wind up with a gigabit fiber ring :)
hjohnson	and all cisco, so I can run rapid-PVST and put different roots for different VLANs where it makes sense
Giant81	hjohnson, MST
hjohnson	Giant81: either or
kmcelroy1	oh god, layer 2 network, it burns!
drkat	heh
Giant81	hehe
drkat	one big /8?
drkat	dark fiber
drkat	:P
kmcelroy1	never rely on spanning tree for anything other than covering your ass :P
hjohnson	drkat: naw about 5 VLANs
Giant81	oh wait I forgot I don't know anything about MST, I failed...lol
drkat	just make sure to always configure the root ;)
kmcelroy1	fuck that garbage
kmcelroy1	layer 3 boyee
drkat	so.. why would I want my vlan 2 root bridge not my vlan 3 root bridge?
drkat	cuz I'm routing!
drkat	:P
hjohnson	well, hopefully I'm going to be deploying 4 or 5 3560s so I could go all layer 3
hjohnson	er do much more layer 3
kmcelroy1	awwww yea
drkat	i mean honestly how often do we have a real alternate path to switch2 when we're doing a collapsed core?
hjohnson	drkat: in this case, it's more of a ring
drkat	ah
drkat	well p2p routed sounds better
drkat	just saying..
hjohnson	the likelyhood of a switch going down, especially at this time of year is pretty high
drkat	like.. big tits.. or little tits
hjohnson	drkat: yeah, but I do need to ahve a couple of broadcast domains all over the village
drkat	everyone has a choice ;)
Giant81	I like little tits.... A and B cups
drkat	Giant81 me too
kmcelroy1	some of us have service provider networks, so we have many alternates, ha
Giant81	women with bodies like HS/College cheerleaders
drkat	kmcelroy1 pssshhhh
drkat	Giant81 nah
hjohnson	our SCADA/power grid control system depends on being on a single broadcast domain
drkat	ass that will swallow up a g-string and up top? 2 bee stings
Giant81	tight, nubile, athletic,
hjohnson	(so it's off on its own VLAN that no one else can access)
drkat	pvlans
drkat	ftw!
Giant81	ok I'm out
Giant81	later
drkat	:P
kmcelroy1	Giant81: same here
drkat	make your l2 so much better :)
drkat	ok im just joking
Giant81	almost thought about using pvlans in production for storage traffic
drkat	well apparently there some considerations when using iscsi
drkat	i never knew such things
Giant81	put all our SQL servers and other things that need access to storage on an isolated vlan and put the storage ports as the promisuous ports
hjohnson	anyhowyeah, I'm not doing any of that shit
RedShift	mmm promiscious
RedShift	I like that
hjohnson	I finally got them to replace the EMC/iomega NASes with a Synology
drkat	means its easy
hjohnson	which is a step in the right direction
drkat	oh big spender
kmcelroy1	they should call it a whore port
drkat	iscsi?
Giant81	like those B cup cheerleaders
drkat	or nfs
hjohnson	(I really like my synology at home)
hjohnson	ACTION hides his GF from Giant81
drkat	please tell me iscsi
drkat	are you guys virtualized?
Giant81	our ESX is NFS
drkat	booo
Giant81	but our SQL boxes are using iSCSI
kmcelroy1	mmm, small titties and tiny little hips, i am on board
hjohnson	drkat: I have an ESXi host
drkat	nfs to vnx?
hjohnson	but it's using local storage
drkat	oh ok
drkat	so what about HA?
Giant81	later all
hjohnson	(she's 4'11", chinese)
drkat	i bet you feel like a black guy!
hjohnson	drkat: its' HA enough for us :P
Tophat	Is there a packet generator available where I can adjust the QoS values in a packet for verification?
RedShift	Tophat iperf can do that
drkat	lmgtfy
drkat	http://blogs.msdn.com/b/wndp/archive/2009/04/30/qos-traffic-generator-is-now-available-on-connect.aspx
Tophat	lmfym
kmcelroy1	let me finger your mom?
trash80	Tophat: https://code.google.com/p/ostinato/
drkat	fuck..
hjohnson	it's a good question though... should I move my 3825
drkat	fuck your mom
kmcelroy1	did i get it?
drkat	ding ding.. he won
Tophat	drkat :P
drkat	heres an asshat
hjohnson	since we're not going to be using the SHDSL in production now
Tophat	lol
hjohnson	only reason why it needs to be where it is is because of 5 FXS ports
hjohnson	but I have 8 pairs of phone wire I can use
Tophat	thanks trash80 and drkat :]
onefst250r	Tophat: cat karat/ostinato/scapy
hjohnson	(I also feel dirty for using 13 FXS ports in my voip setup)
onefst250r	cat karat is really neat if you dont need tons of pps
onefst250r	mostly beacuse its stupid easy
Tophat	sweet ty
hjohnson	ACTION nearly types in debug all
hjohnson	thank god they put a y/n on that
sartan	u all \| tee flash.txt
squibby	yeah u all is pretty foolproof
Tophat	my boss did that and tried to play it off... 'oh it'll finish'
Tophat	facepalm
hjohnson	so you want fun? here's what our AC power has been doign over the past 24 hours: https://dl.dropboxusercontent.com/u/91153284/graph.png
RedShift	http://www.youtube.com/watch?v=NisCkxU544c
onefst250r	sad part is you own the "power company"
hjohnson	onefst250r: yeah
hjohnson	onefst250r: well, when it's been significantly below freezing for the past 2 weeks, and you're depending on a water supply coming from high in the mountains
hjohnson	this kind of thing happens
onefst250r	get some big ass hair dryers
Tophat	hjohnson: you using cacti for your APCs?
hjohnson	OpenNMS
Tophat	ah
RedShift	I wanna see the wolf of wall street but I don't have a girlfriend and I don't wanna go alone :-(
kmcelroy1	if only you had friends
onefst250r	RedShift: get a high dollar hooker?
RedShift	they all have girlfriends so whenever I send an interrupt request I get ignored
squibby	RedShift: what do you mean, watching movies alone is awesome
garrettskj	RedShift: just go.
garrettskj	RedShift: lots of tits
RedShift	are you kidding? nobody does that here
kmcelroy1	just jerk off in the back of the theater
squibby	"here" ?
RedShift	"did you see the guy that was sitting there all alone"
kmcelroy1	be that guy
squibby	dude that's why you go during the matinee
squibby	go to a 2 pm
squibby	it's actually kinda nice
lo0	Just got a ticket about the N5K management interface not being reachable from the network.
lo0	VRF context was missing a default route
lo0	-facepalm-
onefst250r	hrm
onefst250r	should i use one of the core routers to put in my resignation letter?
onefst250r	have it send the email out?
kmcelroy1	sounds fun
RedShift	why not, I mean, that is what routers do... route messages
kmcelroy1	i like to send weird emails with eem :P
onefst250r	hrm. how to do it on junos...
kmcelroy1	not sure
garrettskj	onefst250r: LOL what
garrettskj	srsly, like old school telnet $ip 25
garrettskj	style?
garrettskj	who has raw smtp anymore
RedShift	I believe 587 is now the standard?
onefst250r	not sure how it woudl work. would be hilarious though.
RedShift	ACTION zzz
dissolve-	!ccna
kmcelroy1	!ccna
kmcelroy1	is this a thing now?
dissolve-	Where's the channel with the sub netting trivia
kmcelroy1	http://www.subnetmask.info/
kmcelroy1	the trivia is can you fill in the blanks
onefst250r	!ccna
onefst250r	weak
onefst250r	was expecting something cool
netmk	!jncia
netmk	;(
kmcelroy1	weren't we all
pffs	!ccna
pffs	I was expecting something
pffs	damn you all for making me disappointed
hjohnson	hrmm.. does the root swithc in spanning tree see a topology change when one of its directly connected leafs switches to a different route?
rostam	HI I use snmp to download the running-config to my server, i.e: http://paste.ubuntu.com/6888032/ . Then I change a port configuration and download the file back to switch. The change does not take place why? thx
pffs	you have it set up to download the config over SNMP?
pffs	that's terrifying.
kmcelroy1	rostam: do you upload it back to running?
hjohnson	rostam: don't do that
kmcelroy1	also, very terrifying
Apachez	rostam use "replace config" or reboot your device after you uploaded it back
Apachez	also you should upload it into startup-config
pffs	RW community strings are scary yo
kmcelroy1	why wouldn't you just make the changes directly though? :P
kmcelroy1	seems weird to change a text file, then load it on
rostam	after reboot or replace config the change will take place?
hjohnson	hehe for some reason no one wanted to have cisco jabber on their iPhones
hjohnson	:P
lo0	p-p-p-private as a RW string?
hjohnson	lo0: what could possibly go wrong?
onefst250r	hjohnson: your loopback0 gets haxored
hjohnson	hehe
hjohnson	everything redirected to goatse.cx
rostam	kmcelroy1, The switch 3560-c will be managed in field through our server, we will not have cli access to system, only snmp..
lo0	Heh.. reminds me of when customer's internal domain was a TLD that they didn't own, so when they took their systems off-prem, browsing to a sharepoint server would redirect to porn.
kmcelroy1	rostam: the question was why
hjohnson	lo0: haha
hjohnson	rostam: that's insanely insecure
hjohnson	rostam: ssh access would be far, far more secure
lo0	Their elegant fix was to deploy a GPO which modified the hosts file of all systems on the domain. I lold so hard.
hjohnson	lo0: lol
rostam	how about snmp -v3, would that be more secure ?
hjohnson	I'm still annoyed that windows doesn't do wired dot1x by default
hjohnson	rostam: only marginally
kmcelroy1	you are dodging why you are doing this :P
kmcelroy1	just SSH into the damn thing and make changes
hjohnson	kmcelroy1: then again, a former IT guy at a former employer thought SSH was highly insecure because it allowed "port forwarding"
hjohnson	of course this was the same guy who was affraid of VLANs
rostam	kmcelroy1, I hope I can explain the why question. We have a server which will have one port connected to this switch, private network.The switch will be connected to android devices which will communicate to the server through switch. The configuration of switch at each customer site might be different, so I need to configure the switch through snmp. I hope that explain it.
kmcelroy1	IT guy, stop listening
hjohnson	so all the switches in the company, including their M&C interfaces were onn vlan1
kmcelroy1	still seems dumb, just do a management port
hjohnson	rostam: that's an incredibly stupid design
kmcelroy1	^^
rostam	thanks
kmcelroy1	no, seriously
kmcelroy1	it is fucking retarded
kmcelroy1	like you would have to really work to make a worse design
rostam	okay I agree, so your suggestion is to use ssh ?
kmcelroy1	yes
kmcelroy1	i have quite a few of those switches in the office, SSH for me
rostam	okay I need to script the ssh access to the switch, are there any references how to ssh to a switch and configure it? thx
onefst250r	read a ccna book
dioz	hjohnson: i work at a place where they had a security person come and talk to me about ssh
dioz	and when he asked me about it he started by telling me it was telnet
dioz	i said "nope it's ssh"
dioz	then he wrote it down on his little piece of paper "s.s.h"
dioz	i lold'
trash80	"security people" are a mixed bag
hjohnson	lol
squibby	dioz: the fuck?
dioz	yah he said "we don't usee ssh around here"
dioz	then is tarted asking him about http over ssl
dioz	and he said "we have ways to see what's going on with http over ssl"
dioz	i said "oh DO you"
dioz	then that is where the conversation ended
squibby	a CISSP?
Krugger	so why do you say he is a security person?
dioz	he had a red badge and he said "my name is so and so from security"
Krugger	was it on his tshirt?
Krugger	ah, a badge
Titanium	lol
Titanium	building security
hjohnson	eh, badges are nothing.
Titanium	not security :)
Krugger	have to put CEO on my card then
hjohnson	if you want to get into a building, just put on a set of coveralls, a hardhat, and carry a clipboard
hjohnson	that will get you anywhere.
civillian	don't forget the hi-vis vest
dioz	when i think about pretending to be maintenance i picture cerial from hackers
dioz	under peopls desks
hjohnson	ok yeah, so totally borked cable
dioz	with the big belt full of toools
hjohnson	too bad I can't tet an envmon trap
garrettskj	lol
hjohnson	(and yes, right now, I'm relying on spanning tree to make my network resiliant)
garrettskj	dioz: red shirt
hjohnson	ACTION puts on the asbestos undies and hides)
garrettskj	lol
garrettskj	i picture cerial from hackers
garrettskj	lol
sartan	dioz: I have ways of seeing what's going on with http over ssl
dioz	sartan: so do i
dioz	i just thought it was weird how candid he was about the whole thing
sartan	i don't like security people for the most par.t
dioz	he said it so "matter of factly"
sartan	subsequently people at work odon't always like me either
dioz	that iwas like "oh DO you?!"
sartan	oh DO you
sartan	i mitm all my outbould httsp
dioz	it isn't hard
sartan	it is, if you don't control the box
dioz	the machines are corp machines
dioz	they control everything
sartan	i'm snacky
sartan	i had a lightl unch a few hours ago, tummy rumbly. maybe i should go to mcdonalds and love some it
dioz	mcdicks
dioz	rotten ronnies
dioz	siiiick
sartan	mcdicks is reserved for change nights when i stumble out of the office at 4 am and there is nothing, nothing, nothing else open.
sartan	at that point, a chicken mcsandwich or whatever is seriously awesome
dioz	no 24/7 walmart?
dioz	i'd rather a box of miniwheats and a 1 litre of milk
dioz	holy fuck is cowtown cold dude
dioz	i came here to snowboard
garrettskj	lol cowtown?
dioz	and i've basically froze my bag off
dioz	calgary california
dioz	i lol'd one day when i called a company that was shipping me stuff
sartan	came here?
sartan	that's current-tense stuff. are you in cowvillage?
dioz	yeah i'm here right now
sartan	i thought i smelled something fetid
dioz	just got back from nakiska 15 minues ago
sartan	cool, how long is your vaca?
dioz	my dads bday on saturday so i'm leaving saturday morning
sartan	it's much warmer today than it was the last few days, you picked a good time
dioz	i've been here since monday
sartan	and you didn't say anything!
dioz	shrug i think i did but i don't know
sartan	i would have remembered something like that
dioz	i got taco some canada olympics mittens
sartan	the bay?
dioz	yah. the guy from here who sent me the aux to utp transceivers
snacky	sartan: hi snacky
snacky	I am snacky
dioz	i finally got him something
sartan	ACTION feels snacky up
sartan	(lol!)
sartan	hm we should have a beer or something while you're here.
sartan	If you don't smell bad
dioz	he's from arizona
dioz	idk what he'll need mittens for
dioz	but shrug
dioz	you never know
sartan	it's funny :)
hjohnson	well, next time you folks are out in lotus land
dioz	sartan: i'm right off old banff coach road
dioz	right by firgus and bix
sartan	i know someone who died on that road =(
dioz	aspen stone area
dioz	a guy i know who tests for xbox wants to mee up tonight
dioz	idk what to do tho
sartan	a professional manchild video gamer?
dioz	haha yes
dioz	i've wondered how much someone would make testing videuh games
dioz	i couldn't see it being much
dioz	considering....
dioz	i imagine anyone would do it
squibby	sartan: I think you mean esports athlete
squibby	sartan: hey man don't knock progamers that shit is serious business. I mean, if you win 1st place MLG prize you get $50K
squibby	for the whole year
squibby	.
garrettskj	!
VlanX	?
squibby	that's my test to see if my web client is still functioning
squibby	it has reliability issues.
epinky	ospf in svi not working
VlanX	do you guys see me flapping?
garrettskj	VlanX: neg
VlanX	I'm testing the redundancy
pffs	flapping so hard you're like a damn humming bird.
VlanX	some states do fail
VlanX	I love humming birds
squibby	epinky: turn on OSPF debugs
dioz	so with stateful firewalling
pffs	squibby: play testing professionaly sucks
pffs	they assign you one tiny chunk to play over and over and over
pffs	and you don't get paid very much
epinky	squibby: no activity at all, all ospf debug turned on
dioz	what should i get my dad for his birthday?
squibby	epinky: you checked for a passive int default statement in your ospf process?
dioz	he's a mechanic
dioz	hes 57 years old
garrettskj	dioz: howabout a wrench
dioz	he likes the montral canadians
dioz	montreal canadians
garrettskj	ok, howabout maple syrup
dioz	mom said to get him something for hiss "man cave"
dioz	idk wtf to get him tho
garrettskj	apple tv
dioz	i don't think he'd use a apple tv
pffs	inflatable doll
dioz	fleshlight
dioz	SICK
garrettskj	yes.
dioz	you got me thinking about my dad having sex and such
dioz	you pervs
pffs	get one custom cast from your asshole.
garrettskj	whats even worse is imagine him telling your mom
garrettskj	that he wants to put it in
garrettskj	pffs: LOL
dioz	my mom looks like barbie
garrettskj	dioz: pics or it's a lie
pffs	tits or gtfo
onefst250r	ACTION lols at "maple syrup"
pffs	maple syrup AND a flesh light
pffs	yeaaaaaah
hendrikz	heh
onefst250r	they call that the "canadian experience"
dioz	last year i got him like $200 worth of booze
dioz	i was told it isn't appropriate tho
garrettskj	that's after dioz gets him the asshole cast fleshlight
dioz	"alchol is not a gift"
pffs	get him a keychain
garrettskj	that's the "canadian experience"
pffs	dioz: by whom?
dioz	me ma
pffs	did you dad complain?
garrettskj	dioz: srsly pics of your mom
garrettskj	or v&
pffs	TO THE VAN
pffs	also lol v&
pffs	what is this, 2005
garrettskj	lol
VLanX	well
onefst250r	/me wonders what v& is supposed to mean
VLanX	pretty sure I flapped there
dioz	same
garrettskj	yep
dioz	what does v& mean?
pffs	it's retarded 4channers who can't even abbreviate banned right
pffs	sorta
garrettskj	http://knowyourmeme.com/memes/4chan-party-van
dioz	not clicking
garrettskj	srsly
garrettskj	ffs
pffs	oh, I don't think I actually ever looked up what it really meant
pffs	I just thought they were retarded
pffs	it's still retarded
MrPocketz	Hmmmmmm
pffs	basically it's being arrested by the FBI
dioz	4chan was blocked at work
dioz	but reddit wasn't
pffs	because you're a moron on 4chan doing illegal things
MrPocketz	Lets say you have a fiber WAN connection that'll allow you to pull as many DHCP leases as you want, but you can't get any statics.
pffs	cp/bomb threats/etc
MrPocketz	could you configure an inside host to 1-1 NAT with a DHCP obtained IP?
garrettskj	?? how would you do it?
dioz	captain pickard?
garrettskj	proxy arp for leases?
pffs	you can do an ip nat inside static blah int blah
dioz	MrPocketz: you could do a layer 2 vpn
dioz	with a bridge
MrPocketz	Layer2 vpn?
MrPocketz	interesting.
garrettskj	lol not even a layer 2 VPN
garrettskj	you could just bridge it
garrettskj	and then transparent firewall it
garrettskj	(if you wanted to firewall that is)
dioz	shrug
MrPocketz	hmm
MrPocketz	fair enough
MrPocketz	was really just out of curisoty than anything
_bradk	garrett is the man with the plan
MrPocketz	I've got on-premise fiber, and the way this condo is patched, all the ethernet runs in the walls go to a switch in the wiring closet in a bedroom, directly to the modem
dioz	i thought he was asking about how to get the ips on other machines
dioz	instead of 1:1 nat
MrPocketz	so if you're not a geek, and haven't fucked with it, anything you connect to the keystone jack in the wall pulls a routable address on the fiber WAN
garrettskj	ok sounds like lots of service provider setups for multi-tenant housing...
MrPocketz	Many do that?
MrPocketz	isn't that kind of, dangerous?
garrettskj	why
garrettskj	if those are in pvlans, they can't talk to each other, who cares.
MrPocketz	oh
MrPocketz	see, here they're not.
MrPocketz	this shit is jus, 100% routable.
garrettskj	you need to correct your terms
garrettskj	routeable addresses are available from everyone
dioz	terminals
dioz	correct them
garrettskj	anywhere.
garrettskj	you plug into your cable modem
garrettskj	you usuaully get a 100% routable IP
garrettskj	if you're talking about the fact that you have access to everyone on the local segment
garrettskj	who is attached at the same service provider PE
MrPocketz	I have access to and from anyone on the local segment, as well anyone over the internet.
garrettskj	then it's just poor configuration on their part, but really not much more dangerous than any other ISP
MrPocketz	Agreed.
garrettskj	it's not a big deal, just put a firewall on your device and be done.
garrettskj	*your side of the connection that is
MrPocketz	Thats precisley what Ive done.
dioz	or take theh whole switch down
dioz	and wreck it for everyone
garrettskj	good job!
MrPocketz	Thanks!
garrettskj	lol dioz go buy your dad a moose
garrettskj	and some jeans.
garrettskj	maybe one of those hats with flaps
MrPocketz	A Yazoo.
dioz	a slide whistle
dioz	what should i eat?
dioz	i hate feeding myself
MrPocketz	Yeah, being an adult sucks.
MrPocketz	Heres another question then, garrettskj.
MrPocketz	In the living room, there is a single fucking ethernet run.
dioz	thatisn't a question
garrettskj	lol
MrPocketz	The modem, has two ports. One for data, the other for televiison.
dioz	also not a question
garrettskj	dioz: <3
MrPocketz	Conundrum, I have a switch on the livingroom's ethernet port delivering network connectivity to the PC, Xbox, etc... off that port, but the TV's cable box must be hard-wired to that 2nd port on the modem.
MrPocketz	Any ideas?
garrettskj	ok
MrPocketz	Other than replacing both switches with cheap managed switches like SG-300s and Vlaning the traffic?
garrettskj	i'm confused
dioz	i'm confused too
MrPocketz	So for the TV to get TV, it needs to be connected to that single livingroom port, which has to be patched into modem port2.
dioz	the scenario is changing
garrettskj	ok. what about port 1
MrPocketz	port1 is internet.
MrPocketz	and they're meutually exclusive (aparently)
garrettskj	ok so still missing the issue here
MrPocketz	I can't hardwire PC in the livingroom AND the TV
MrPocketz	and have the appropriate services wired to them, respectively.
garrettskj	so make your PC wireless ;)
garrettskj	and use a WAP
garrettskj	lots of ways to do this man
dioz	i thought you said you had two ports
MrPocketz	there really isnt any reason why I couldnt.
dioz	one for TV one for internets\
MrPocketz	802.11n bridge
MrPocketz	(PC, voip phone, xbox, all need network connectivity)
MrPocketz	dioz, on the modem. not in the living room.
MrPocketz	i could splut the pairs on the run and only have 100 meg to the data-closet
dioz	oh living room only has 1 jack
MrPocketz	yeah
MrPocketz	why, Why WHY??!!! idiots.
MrPocketz	but, rewiring this brand new condo isn't really an option right now
nemith	i did 4 drops to each room in my house and i wish i would of done 6 :)
garrettskj	i ran conduit to every room.
dioz	i want a MILLION drops to each room
MrPocketz	I could sell a bunch of the shit i don't use, get two SG300s and vlan the stuff.
MrPocketz	that'd be baddass.
MrPocketz	or wifi brige the TV. I tried it with a WRT54G + OpenWRT, but the shitty router couldn't support the throughput the TV needed aparently.
pffs	I vote ripping open walls and running 10G instead
sartan	you can come over and wire my hose
sartan	all you 10g guys
sartan	as long as you drywall paint and shit after
nemith	I am not touching your hose
pffs	is wire your hose some sort of inneundo?
pffs	nemith: why do you need that many drops for each room?
sartan	house! heh
pffs	I'm looking to run cable here soon and wasn't really planning more than maybe 2 max
nemith	pffs: I like cables over wireless. I can graph and see traffic ona a port. So Living room I have: Roku, TV, Receiver (which doesn't have wireless). Office I have 2 PCs, printer and a roamer port
nemith	I will admit i have rooms with no connecvity yet
nemith	OH i also have some PoE phones
nemith	and wireless (although I plan on mounting them on the ceiling soon
sartan	so jealous= (
sartan	fully finished basement
pffs	nemith: why so many ports instead of one into a switch?
pffs	I figured I'd just get a cheap unmanaged gigabit switch for my living room
sartan	vhirrrr
sartan	rrrrrrrr
sartan	rrRrealy?rrrrrwhaRRrrragoodRRRrridea
pffs	well not every switch sounds like a jet engine
squibby	I have an ex4200 at home that I specifically avoid using because of the noise
nemith	pffs: less switch ports to buy. I run managed switches for the reaons above
pffs	my other gigabit unmanaged switches have no fans
nemith	I got two EX2200s
pffs	Yeah I don't have any large gigabit switch
pffs	nothing bigger than 8 ports at this point
pffs	all my lab shit is old 100 meg stuff
nemith	sartan: I have a finished basement as well. I went up through the basement, through the wall to the attic and dropped from the attic down tot he rooms
sartan	heh, syslogs coming in with receipt end time 1 Oct 0174 17:14:05 MST
nemith	it was a pain in the ass with only one box of cable and by myself
sartan	and i'm wondering my rules aren't firing properly
_bradk	you're a time hacker sartan
nemith	took a week for 4 rooms
sartan	i haven't bothered to crawl up to the ceiling yet
nemith	time hacker
nemith	that sounds like a b-rated movie
_bradk	heh
squibby	nemith: too bad you're not an LA city government official - you could have hired a private contractor with public funds to do it and then not even have to explain yourself
_bradk	only if there is a hot tub time machine
nemith	heh
sartan	friends don't let friends get into hot tubs without women being around.
_bradk	haha
onefst250r	sausage stew?
pffs	I haven't figured out how I'm going to run the cable
pffs	My wiring closet is upstairs
pffs	so I can do through the attic to rooms upstairs
onefst250r	have cable between the two?
pffs	but I'm going to probably have to run it in the wall downstairs
onefst250r	i use some MOCA adapters at home to get from the ONT to the office where my firewall is
pffs	I don't have any walls that overlap between upstairs and downstairs
pffs	really the only decent way is to run it through the wall to the stair case, down the wall there, and then through the ceiling
mInrOz	Ok, im taking the CCENT in 12hours... im nearvous as fuck and I have a feeling that I am not quite prepeared. Any tips for the next hours?
_elgato	get some sleep
mInrOz	_elgato: Good advice...
chump	open the study book
garrettskj	hrmm
_bradk	have a few beers
garrettskj	mInrOz: seriously don't worry about it.
garrettskj	mInrOz: you can always retake the exam
garrettskj	it's not a big deal
garrettskj	no one will ever know you failed
garrettskj	i failed my CCNA 3 times when I tried in 2001
mInrOz	garrettskj: True, I just dont like wasting the money :)
_bradk	at the end of the day, as long as you know the content the certifications don't really mean much anyway
_bradk	e.g. someone who knows bgp without their ccnp > someone who doesn't know bgp with their ccnp
envirocbr	Anyone got a ASR 1001 laying around for sale?
nemith	experiance > any cert
envirocbr	nemith: AMEN!
_bradk	yep
_bradk	except if you work in my office
nemith	cert just used to help moronic HR and recuriters to filter through a stack of resumes
nemith	and helps moronic managers justify shit
_bradk	where certifications are the currency of the gods
nemith	you should probably leave any company that values certs over experiance
nemith	:)
envirocbr	nemith: Then don't work for partners
mInrOz	nemith: True, but I have no real life experience with Cisco. Im taking the cert since I want some more documentation and its fun to learn new stuff :)
envirocbr	They want certs; however, the good partners want experience too
_bradk	yeah, we partner with providers
nemith	envirocbr: hah.. partners are different since those are sales tools and requirements from vendors
envirocbr	I have met some partners with paper engineers and some with EXCELLENT resources
_bradk	i think i've told this before but we have 1 guy here with their ethical hacker, ccent, cissp, mcsa 2008 and couldn't find out the validity date of an ssl certificate on a website
envirocbr	I really have no respect for CISSP
envirocbr	Perhaps I have met too many who thought they were technical when they were actually full of shit
envirocbr	I get it is a management certication, but recnognize what it is
_bradk	i've met a few people who have their CISSP who don't feel the need to remind you that they have their CISSP
_bradk	they are pretty good
_bradk	the guy who tells you every 5mins is not
envirocbr	_bradk: We have had different experiences
envirocbr	However, I do work with one guy who has it and I never knew, he is also SUPER smart
_bradk	yeah
_bradk	they are the people who know their stuff rather than just having the piece of paper
pffs	cissp just seems so high maintenance.
squibby	_bradk: haha somebody busted out the Ph.D card in an argument with my wife the other day
squibby	who does that
squibby	I have never once seen anyone try to plant an argument up on having a ph.d
pffs	pretty sure that's a logical fallacy
sartan	%C4K_GLMMAN-3-X2PLUGGABLESEEPROMREADFAILED: Failed to read seeprom on port Te5/1. Reinsert X2 module or configure GigabitEthernet port group if TwinGigConverter is installed.
sartan	....oh, fuck
sartan	two of them
sartan	network is configured properly, the two other ports in the same port-group are 10G. shit, shit
pffs	Argumentum ab auctoritate sayeth the wiki
onefst250r	dirka dirka
sartan	i think i was sold counterfeit optics =(
pffs	chinese knock offs
sartan	i bought them from cdw
sartan	they look like cisc, bark like cisco
trash80	are they cisco branded?
onefst250r	cisc0?
sartan	ya X2-10GB-SR=
pffs	C1SC0
sartan	well, fuck
trash80	c1sco
sartan	at least these weren't the dwdm ones
sartan	only $2500 !
pffs	that's what you get for buying from cdw
pffs	or something.
trash80	i would be counterfitting 100g optics
trash80	if i counterfitted optics
onefst250r	should have bought directly from china. they probably would have worked fine.
pffs	what are you fitting them counter to?
nikogonzo	please excuse my noob question, but are vlans 0-indexed? I'm running ios Version 12.2(50)SG6 on a cat 4948 and have an access port on vlan 20, but tcpdump on the host decodes CDP with native-vlan 19. :S
trash80	socks
sartan	no, nikogonzo
pffs	WORD ISL VLAN IDs 1-4094
nikogonzo	bizzare.
sartan	ok, afk.
nikogonzo	just changed the native vlan to 21 and CDP reports vlan 20. I think this switch is toast.
mInrOz	But then question becomes... can it have sex with another toast and make toast babies?
mInrOz	Delicous toast babies
onefst250r	toast sex makes grilled cheese sammich
squibby	do different countries have overlapping airport codes? uh no, right?
squibby	why does this naming convention make sense country-airportcode-layer/function
_bradk	[11:58] <squibby> _bradk: haha somebody busted out the Ph.D card in an argument with my wife the other day
squibby	why do I need country if I'm using airport codes
_bradk	wow..
Harlock	country is not apparent though with 3 char codes
squibby	_bradk: she herself has a masters degree and so has been exposed to academic types her whole life, first time she's ever encountered that either
baristatam	guys if you have a PhD it means all you have is cold, sad remorse and bitterness and your only option is to be an asshole
squibby	you have to be pretty insecure to use the ph.d card
Harlock	and that might be usefule info on the fly
Harlock	-e
baristatam	So Much Drama in the PhD
squibby	anyway back to my naming conventions question
squibby	why bother specifying country code if you're using airport codes
trash80	Pretty Huge Dickhead
Harlock	i just said
trash80	most phd's we have at my company are also cockbags
_bradk	my preferred convention is <airportcode><number><devicetype><number>
squibby	Harlock: but isn't the airport code itself always unique
squibby	no?
Harlock	sure, but are you goign to memorize every code?
_bradk	e.g "syd1cs01" would be core switch 01 located in sydney
nikogonzo	squibby: maybe because there aren't cohesive enough standards bodies to organize airport codes across all countries, only enough cohesion inside of each country?
GraNNy-	PhD - Pile Higher and Deeper
squibby	Harlock: I guess not - but why would I have ever country code memorized
_bradk	[12:13] <Harlock> sure, but are you goign to memorize every code?
_bradk	it wouldn't be that hard
Harlock	if it is a letter code for country it's usually apparently
_bradk	and in the event that you have offices in multiple countries you would really only need to worry about a few at a time
mepholic	crashoverride
_bradk	crash 'n burn m8
Harlock	i'm just trying to come up with a plausable reason
Harlock	not defending it or something
onefst250r	baristatam: someone needs to make a "So much drama in the UDP"
Harlock	the ICAO 4 char codes have country built in
baristatam	onefst250r, I wrote an IT rap once
onefst250r	OH
onefst250r	or maybe "So much drama in the NTP" given current events
baristatam	onefst250r, do it
onefst250r	we can have scrye record it
onefst250r	him singin the lyrics
baristatam	what I wanna sing
baristatam	he can be backup
squibby	in mah aston martin wit mah UDPs...
Harlock	onefst250r what's going in the ntp world?
onefst250r	Harlock: lots of amplification attacks
onefst250r	squibby: you noob. the am was gone a while ago.
squibby	so
Giant81_	hmmm I wonder if I can get console redirect to serial on my server
Giant81_	then I can plug it into the same console server as my lab
Giant81_	and run everything from one place
jamesd	Giant81_: they make terminal servers for that...
Giant81_	eyah I know I want consol redirection os when I restart it can get into the bios etc
Giant81_	well it is an IBM, I can jus tuse the remote management card I guess
Giant81_	but I typically hate that java crap used for remote KVM through a web browser
MrJayPC	Hmmmm apparently theres another nice storm heading for the UK yay....
_bradk	but you should be used to bad weather, right? :P
MrJayPC	http://www.environment-agency.gov.uk/homeandleisure/floods/142151.aspx
baristatam	damn it where did squib go, I wrote a rap starting with his first lyric
MrJayPC	If we get much more rain I think we'll sink ¬_¬
onefst250r	cry about it a lttle more and you'll push it over the top
MrJayPC	http://i.dailymail.co.uk/i/pix/2014/01/03/article-2532595-1A65A7D700000578-13_964x961.jpg
garrettskj	rain?
garrettskj	snow in PDx
garrettskj	city shut down lol
onefst250r	is it supposed to be bad tomorrow too?
onefst250r	was considering driving down to salem for the weekend
garrettskj	onefst250r: look at the traffic lol
garrettskj	the entire city is broke.
onefst250r	i dont drive a ton in portland, so i dont have a big frame of reference
onefst250r	seattle traffic is shit in comparison to pdx
onefst250r	is the snow just for tonight though, or is it supposed to hit more tomorrow too?
onefst250r	specifically, tomorrow evening
xous	I love CC terms
xous	Not Covered:
xous	13 . Nuclear reaction, nuclear radiation, or radioactive contamination;
xous	. Exotic vehicles, meaning vehicles such as Aston Martin, Bentley, Bricklin, Daimler,
xous	DeLorean, Excalibur, Ferrari, Jensen, Lamborghini, Lotus, Maserati, Porsche, Rolls Royce;
onefst250r	why the hell woudl they care if you bought an exotic car?
xous	card comes with free rental insurance
onefst250r	assuming that you had enough of a limit
onefst250r	oh
onefst250r	thats for rentals
onefst250r	that makes sense
xous	yeah
xous	I was more making fun of the nuclear .*
xous	I called in to get my credit limit raised
xous	they sold me a different card. ://
onefst250r	they want you with a whole bunch of cards!
xous	I only have two
xous	one backup
xous	one primary
xous	I've been spending like $500-1000 of shit on work related expenses
xous	and I put everything on my CC
xous	so I was close to hitting the 3k limit
_bradk	xous: wait till you have a wedding...
xous	fuck that shit
xous	why would I want to give someone half my stuff?
xous	today was 'clean up my banking shit' day
xous	apparently I had a bunch of money I forgot about.
onefst250r	better than the other way around
onefst250r	find bills you forgot about
xous	heh
xous	in the last month I found like 3.5k I forgot
xous	apparently.
onefst250r	how do you have 3.5k you forgot about when you work for monkey salary?
xous	1.5k in rent I overpaid
xous	2k in some bond shit I had at another bank
onefst250r	lesson learned? dont bank drunk?
xous	onefst250r: I don't care too much about money.
xous	I made probably 70k last year if you include all the under the table shit.
onefst250r	suppose thats not too bad
onefst250r	nice part about side stuff is you dont pay the man :)
xous	15k is OT though.
xous	so that's kinda brutal
hjohnson	ACTION misses not having hazard pay
hjohnson	hazard pay let me make bank
xous	heh
onefst250r	dont you mean "not having pay, period"? :)
hjohnson	well, that too :P
xous	onefst250r: I've charged $200-300/h
xous	for side jobs
xous	heh
_bradk	at least you get OT pay
onefst250r	yeah, ot would be so fucking nice
xous	I still get OT
hjohnson	I just didn't work OT.
_bradk	we get time off in lieu here
onefst250r	id probably be making 200k if i made ot
xous	I just did the math. I've spent 69k in rent in the last 3 years.
hjohnson	6? I'm out the door.. doesn't matter if the project isn't done, it just wasn't worth it
_bradk	i would be so much more inclined to do more outside hours work if i was getting OT
xous	I will never do a salary job.
xous	fuck that shit
hjohnson	and jealously guarded my day soff lin lue for when i was on the raod over the weekends
TimberWolf_	what if they paid you more than what you make in OT?
hjohnson	(and it would help if I could spell)
xous	TimberWolf_: there'd have to be a fixed limit on after hours shit.
xous	or flex time
xous	spend a weekend pulling 16 hour days
xous	don't show up next week
xous	kinda thing.
TimberWolf_	you should come work for us
terabit	http://crack.plumbing/
terabit	them new tld's
TimberWolf_	thats pretty much how we roll
xous	work for americans?
_bradk	16 hour days on the weekend?
_bradk	screw that!
xous	_bradk: I did last weekend
hjohnson	weekends are mine
_bradk	^
hjohnson	unless it's a major disaster
TimberWolf_	na comp time
xous	worked friday from 12:00 - 08:00
hjohnson	fuck that shit
TimberWolf_	we rarely work weekends unless something has really blown up
_bradk	i don't mind doing occasional work but fucked if i'd waste my whole weekend
xous	then 23:00 - 07:00
xous	and again sunday/monday.
xous	heh
hjohnson	yeah only time I really worked on the weekends in the last little while was when a customer of mine fell off the air
xous	_bradk: I was fucking with the core network. heh.
terabit	at old job worked weekends but had 2 weekdays off
_bradk	like hjohnson said, weekends are my time
hjohnson	company bought 40 hours a week of mine time
TimberWolf_	i have been lucky so far. Both of my bosses have been against working on weekends unless we really need to
hjohnson	so this idiotic discovery show "Moonshiners"... I don't get it.. wtf don't the cops just sopena the production company to bust 'em all?
xous	heh. shit was broken and we needed to get shit off two switches that were fucking up.
hjohnson	I've lost a long ethernet cable between two buildings
_bradk	xous: sounds like a during office hours job ;D
hjohnson	I think that's what's going on... or an ethernet port has gone wonky
xous	_bradk: core switches
_bradk	xous: still sounds like a during office hours job ;D
xous	heh
_bradk	"did the network just go down?"
xous	_bradk: I did the same shit tuesday night and wednesday
_bradk	"xous: yeah, that bloody spanning-tree!"
xous	_bradk: we do hosted voip and internet
_bradk	ahh
xous	clients would be like "MURDER!"
_bradk	heh
TimberWolf_	wooo broadcom
xous	you should have seen the rats nest in the cable management shit
xous	I got so pissed off towards the end I'd just cut the fiber cable
diozz	what
diozz	oh nice this does work
diozz	sup xous
TimberWolf_	niceee
xous	we were throwing 'em out anyway
xous	don't have the shit to clean/inspect them
xous	so it just goes in the trash
diozz	i wonder how much data this uses
diozz	sprinkler puking
diozz	drag your girlfriend into the washrooom whilst you poop
diozz	look into her soul and let out a nice long grunt
TimberWolf_	o.0
slutz0r	...
slutz0r	dissolve
slutz0r	.
diozz	grab her gand and hold it tight
diozz	hand
diozz	eight oh two dot eleven see
hjohnson	dioz: I really don't need to see that far into your fantasies.
onefst250r	yeah, we dont want to know what glands you're grabbing either
_bradk	there is something disturbing about this channel but i can't quite put my finger on it
onefst250r	stand in front of a mirror and point at it
_bradk	:(
onefst250r	zomg http://seattle.craigslist.org/see/sys/4321831987.html
onefst250r	wonder if there is more than 50 dorra of prescious metal on it
mgeorge	what does the democrat say?
mgeorge	yap yap yap yap yap yap yap
mgeorge	bla bla bla bla bla bla bla
mgeorge	tax tax tax tax tax tax
mgeorge	lol...
jamesd	mgeorge: and palin, is an expert on foreign policy she can see russia from her backyard, and mitt romney is a normal family guy who rents vacation house for 20k for the weekend
mgeorge	i never said republicans are any better lol
mgeorge	they all need to be fired except for a select few
jamesd	so we should move to a 20 party system like parts of europe?
snacky	we should make it illegal for there to be any laws that are bad.
mgeorge	haha
mgeorge	define bad?
snacky	it's like good, but the opposite!
snacky	I guess that means it's unlike good. but you get the idea.
_bradk	so the guy who thought switches by default don't have any vlans is giving network training to the junior engineers
_bradk	i think someone should stop him :/
onefst250r	mgeorge: s/democrat/politician/
civillian	_bradk: I suppose strictly speaking he is right
_bradk	civillian: vlan 1 is still a vlan :]
civillian	_bradk: I think he means a basic switch, in the true sense of the word switch. Not a Cisco switch.
_bradk	nope, the conversation that we had was "i didn't configure a vlan 1 on that switch so there are no vlans running on it"
_bradk	it was a cisco catalyst
civillian	Righto. Yep toss him out.
_bradk	also, he changes vlans by plugging the cable in and out a few times
civillian	wtf
_bradk	"i plugged the cable in and it didn't work, it was configured on another vlan so i removed the cable, put it back in, removed it, put it back in and then it worked"
_bradk	me: how do you know it was on another vlan and did you make any config changes?
_bradk	him: nah, just pulled the cable out and put it back a few times, i knew it was on another vlan cause i couldn't ping straight away
_bradk	me: ahhh...... nice work man.
_bradk	poor guy
civillian	How do these people get into teaching positions
_bradk	well, he's not really a teacher, he's supposed to be a consultant who mentors the junior consultants
_bradk	it's usually pretty funny
_bradk	i sent an IM to one of our other network engineers who sits on the other side of my desk "i think brian mcgahan is in our workshop, listen to him talk about vlans!"
_bradk	i'm horrible..
civillian	lol
Giant81_	omg they let people like that near networking gear?
Giant81_	and here I was down on my self for not passing the CCNP SWITCH test today
Giant81_	mabye I should have just tried unplugging and plugging the cable back in a couple times
Giant81_	here I feel bad for getting a 749 and needing a 790 but that guy makes me feel very secure in my job
_bradk	[15:28] <Giant81_> mabye I should have just tried unplugging and plugging the cable back in a couple times
_bradk	it's a known fact that unplugging and re-plugging a cable in multiple times removes any access vlan configuration on the itnerface
tairikuookami2	ACTION blinks. clearly out of context
drkat_	well it does
drkat_	jeez
dioz_	russiaa
dioz_	russia is better than the usa
drkat_	fuckign NP
drkat_	ghey
dioz_	sup drkat?
drkat_	just finished my hours sheet
drkat_	i hate reporting hours
dioz_	at woork?
drkat_	side work
drkat_	im officially unemployed
dioz_	working is over rated.
Harlock	as much as i don't want to live in the usa i want to live in russia far less
drkat_	in soviet russia, girl fuck you
dioz_	harlock any valid reasons why?
dioz_	i am pretty conservative
dioz_	i really hope russia mops the floor with the usa this year
dioz_	time will tell tho
Harlock	standard of living, corruption, climate
Harlock	drivers
dioz_	what corruption are you making reference.
Harlock	government
dioz_	elaborate
Harlock	i'm sure there is plenty otherwise too
dioz_	more corrupt than the usa for example? heh
Harlock	now i forgot some more bullet points
hjohnson	yuck.. just had a huge hunk of earwax come out of my ear
Harlock	i wish i had asian earwax
hjohnson	lol why?
Harlock	it's flakey not sticky
hjohnson	well, yeah
dioz_	weird
hjohnson	naw, it's a pretty standard mutation in asian and asian-derived peoples
dioz_	anyone watching the olympics?
Harlock	sticky is dominate gene though
Harlock	so my daughter is "stuck" with sticky earwax too
dioz_	my ear wax is usually brown/yellow and very thick
hjohnson	Harlock: yeah so if you have kids with an asian chick, your kids will have the wet type
Harlock	did
Harlock	not if
hjohnson	ahh, heh
Harlock	i have it bad too
dioz_	so bored
Harlock	like have to get it water syringed
dioz_	i spent a night playing with freebsd jails now i wanna play with linux containers
dioz_	lxc
Harlock	i'd go for an eu eastern europe nation long before russia
Harlock	before the usa too i guess
dioz_	bah the internet is boring tonight
Harlock	but that is because i can do paper work in poland to claim citizenship there
_bradk	it's nearly beer'o'clock
_bradk	the internet gets better after beer'o'clock
hjohnson	friend of mine.. her kids all had the mongolian spot
dioz_	poutine is voted the most powerful man in the world now
dioz_	knocking obama to number two