<gchristensen>
andi-: no luck , borrowing your config
<gchristensen>
starting up wireshark on a pcap ...
<Shados>
I'll need to start playing around with IPv6 setup soon too... my isp apparently assigns a single address by dhcp, along with a /56 prefix delegation
<clever>
2019-04-30 19:36:18 < pterp> I'm trying to get the initrd to load on multiboot2, but it complains with a kernel not found error, even though boot works. The module command is "module /boot/initrd initrd" and it is after the command to load the kernel. What's happening?
<clever>
2019-04-30 19:39:28 < zid> have you tried putting it... before?
<clever>
Shados: might this be related to some issues you had?
<clever>
2019-04-30 19:41:30 < pterp> Ah. I just realized I should use module2 when using the multiboot2 spec.
<gchristensen>
Shados:what is your ISP?
<Shados>
clever: No, I was using module2, as per the stuff I linked. I haven't tried putting the module2 commands prior to the multiboot2 commands in the menu entry, but I think that would either make no difference or not work... I'm pretty sure Xen is actually getting the modules, it complains if it doesn't.
<Shados>
gchristensen: Aussie Broadband
<clever>
Shados: ah
<gchristensen>
ah
<clever>
something interesting, is that my ISP doesnt have v6 at all
<clever>
but strangely, my dads ISP has native v6, and the v4 dhcp server keeps crapping out, leaving him with no dns and half the devices dead :P
<Shados>
Actually had IPv6 working with my previous ISP, but they got eaten by a foreign company, then their residential fixed-line division was sold off to another company. Everything basically went to shit, lost my static IP, IPv6 support was dropped, etc. Chose a different ISP when I moved to a new apartment -_-.
<gchristensen>
how novel, "choice"
<Shados>
Yeah, we have choice again, for now.
<clever>
we also get choice up here, 2 or 3 people to pick between
<Shados>
Until our government once again sells of their telecom monopoly and we go back to getting reamed...
<gchristensen>
I get the "choice" between Spectrum Cable or ...
<clever>
but ive heard how aussie land ISP's force eachother to cap their clients
<gchristensen>
Dialup
<Shados>
No?
<andi->
3G? 4G? :-)
<Shados>
The situation here is very complicated. Could give you guys a deep dive on it if you want. Fuck all to do at work currently, kinda worryingly quiet the last few months :o.
<gchristensen>
andi-:lol.
<Shados>
gchristensen: Satellite?
Guanin_ has quit [Quit: Leaving]
<Shados>
Fixed wireless?
<Shados>
USB drive by carrier pidgeon?
<gchristensen>
fixed wireless would take 5 hops to get to a decent connection
<gchristensen>
satellite is terrible
<andi->
Everyones favorite topic.. Internet connections in different areas... I used to say "build your own". Did that and quit networking entirely.. It is an expensive undertaking here and it doesn't pay of to do all of that juts for a few residential customers.
<gchristensen>
I tried to actually
<gchristensen>
that is why I know it is 5 hops :)
<andi->
Satellite really depends on your use case and the ISP... Did that for a few years and it can be decent for standard "browsing" but SSH is unuseable. Even with mosh it isn't fun.
<Shados>
andi-: For now, anyone and their dog can start an ISP here. NBN has made things pretty easy in that regard by being a universal middleman. Although if you wanna do things well and/or have any real control over service, you still end up needing to run your own fibre between POIs...
<andi->
Shados: being an ISP means running my own cables/last mile connections/last mile wireless/… to me
<andi->
all the other stuff is just moving numbers around
<Shados>
Yep. NBN now does the last mile for everyone, almost, kinda.
<andi->
Had a 3y law-suite with my city regarding accessing their infrastructure... We've a law over here (Germany) that allows public telecommunication companies to share infrastructure to lay cables throughout the city... They are really trying to make it easy by passing proper laws but then the actual decision makers are not complying.
<clever>
in this region of canada, there are 2 main internet providers, aliant and rogers
<clever>
aliant originally did DSL (and was also the phone company), but now they are switching to fiber, and 1 fiber does tv+phone+internet
<clever>
rogers was originally only tv service, but have since branched out into internet via cable modems
<clever>
so both companies had pre-existing last-mile infra, and just had to upgrade the hardware to allow more over the existing wires
<andi->
typical DOCSIS model.. they paid for the cables once and can now add some more "value" to thei investments
<clever>
until alient switched to fiber, and redid the entire network
<gchristensen>
and that is how you get internet over MPEG...
<andi->
MPEG-TS ;-)
<clever>
but funnily enough, alient is now reusing coax for the "last 20 feet"
<andi->
166 bytes at a time
<gchristensen>
aye
<clever>
aliant*
<clever>
the problem, is that they now have iptv boxes, that need ethernet
<clever>
but most houses lack ethernet infra
<Shados>
...Fibre to the curb, seriously? You guys too?
<clever>
Shados: fiber to the furnace room :P
<clever>
so, they use HPNA, which is ethernet (100mbit?) over coax
<andi->
fiber to the basement.. and through the entire house.. Took me 5 days to lay it all down and splice..
<Shados>
If it is at least terminating in the basement, that's not too bad
<clever>
so, the "router" can take the signal from the modem, and then inject ethernet into your house's existing coax infra
<clever>
and then the STB's can connect to the coax, and get mpeg-ts/rtp packets
<clever>
Shados: i believe its called a passive optical network, 6 modems feed into a single passive optical splitter/merger, and then 1 fiber goes to a headend port on a nearby switch
<Shados>
Our government has done progressively more insane things basically for the sake of having a different plan than the opposition, which has resulted in "fibre to the curb", wherein they roll individual fibres up to the street outside your house, then connect a terminating device to the fibre and to existing phone line to your house. You then have to power this terminating device... over the phone line... which you also use to talk to it... over VDSL.
<clever>
so, within that 1 fiber, you are timesharing the lightwaves
<andi->
GPON... yeah
<Shados>
Why time-division multiplexing?!
<andi->
one malicious fiber and a whole street is offline..
<clever>
andi-: i think legally, the modem and fiber belongs to the telco, and i can get in major trouble for that :P
<gchristensen>
cransom: do you have a dhcpcd config whic does ipv6 to share?
<clever>
Shados: downstream traffic is encrypted per-house, except for multicast traffic, upstream traffic is based on timeslots, so the upstream bandwidth is staticly allocated, but downstream is dynamic
<andi->
clever: well, YOU would never do that. ;-)
<andi->
clever: I can tell from *stories* that it is fun to see the technician search through 600 appartments to see which one is bad.
<clever>
heh
<clever>
but its not 600 way here, just 6 way
<clever>
the splitter is just outside, at the top of a nearby pole
<Shados>
._., surely wavelength-division multiplexing would be saner
<Shados>
And also not induce unnecessary extra latency
<andi->
Shados: well neither of the multiplexing make much sense. It is a <5$ cost difference in hardware + a few cents per meter per customer
<clever>
64 bytes from 142.166.182.21: icmp_seq=3 ttl=63 time=3.92 ms
<clever>
the ping to a machine 1 hop beyond my router
<andi->
64 bytes from 1.1.1.1: icmp_seq=1 ttl=58 time=1.43 ms from bed via wifi through a wall..
<clever>
64 bytes from 1.1.1.1: icmp_seq=8 ttl=57 time=27.3 ms
<clever>
passing thru the rest of the telco infra and stuff, is where the cost comes
<andi->
cache.nixos.org (fastly) in about 1.7ms :-)
<clever>
64 bytes from 151.101.126.217: icmp_seq=2 ttl=52 time=39.7 ms
<clever>
cache.nixos.org ^^
<cransom>
the only hitch that ive found, that i ahve no tracked down, is that something, somewhere likes to remove the link local address from my wan interface, which confuses dhcpcd thoroughly and breaks ipv6. add one back in and it figures it out.
<clever>
the other weird thing with my fiber link, is the vlans
<clever>
the fiber goes into a device i'm calling a "modem"
<clever>
its technically a router, but the ISP disabled all routing features, and i have no way to control it :P
<cransom>
is it gpon?
<clever>
its a box with 1 GPON fiber input, 2 phone jacks, and 4 ethernet jacks
<clever>
but, only 1 phone and 1 ethernet work, and there is no admin IP available
<gchristensen>
this is driving me batty :(
<clever>
that "modem" also has a dedicated battery backup box (for 911 reasons)
<Shados>
haha
<clever>
and if the battery starts to run low, it disables the ethernet port, to keep the telephone port alive
<Shados>
we have a similar termination device/modem for fibre to the premise deployments
<clever>
coming out of the ethernet port, is 802.1q tagged vlans
<Shados>
although you can actually make use of the extra ethernet ports by hooking up separate connections to them -- which is pretty useful if you want to try out another ISP, or add some redundancy
<clever>
vlan 34 is iptv service, dhcp gives you a 10.x.y.z IP
<clever>
subscribe to the right multicast group, and the ISP practically DoS's you with an rtp stream containing mpegts :P
<clever>
if your on wifi, it can bring your wifi down
<Shados>
yeah don't do multicast over wifi
<clever>
its more to do with the bandwidth then the protocol
<clever>
i only have 54mbit wifi
<clever>
second main vlan, is vlan 35
<clever>
dhcp gives you a single public ip, and then binds to your mac
<clever>
dhcp will then ignore any other mac until you either release the lease, or wait a day or 2
<clever>
NAT away and your done
<clever>
the router the ISP provides, will create 2 uplinks, over vlan34 and vlan35, then choose which uplink to use, based on a routing table
<cransom>
i've wanted a provider with mcast video streams for so long. now i probably don't care, but it would be nice.
<gchristensen>
May 01 01:09:41 lord-nibbler dhcpcd[2783]: enp1s0: delegated prefix 2604:6000:e6c1:d400::/56
<gchristensen>
!
<gchristensen>
andi-: ^
<andi->
\o/
<andi->
what did it?
<gchristensen>
copy-pasta'ing cransom's config
<andi->
the indention?
<gchristensen>
literally no idea
<clever>
the scarry part, is that there is a 3rd vlan i discovered
<clever>
which the isp router, will bridge into the internal lan!
<andi->
I was hesitant to ask the earlier because the docuemtnation had that and you didn't but that would be stupid?!
<cransom>
i don't think the indentation matters.
<cransom>
but, i've never had it unindented. and i'm totally not changing it now because it will then be another 3 hours as i bring it back to life because it failed for other weird reasons
<gchristensen>
I hate that this works now
<andi->
can't you use AFL to "bisect" all the valid configurations? ;-)
<gchristensen>
lol
<clever>
due to stability issues with my isp provided router, i have replaced it with nixos
<clever>
but ive not gotten multicast to pass thru nixos
<clever>
so i need to run 2 routers on the same modem
<andi->
clever: pass through or routed multicast?
<gchristensen>
thank you for your help cransom :x
<gchristensen>
I'm glad it works, I just hate that I have no idea why. time to diff.
<clever>
andi-: a dumb gigabit switch, that just links both routers to 1 modem
<clever>
andi-: and then i intentionally misconfigure the isp router to pppoe mode
<clever>
and it then tries to do pppoe over vlan 34, lol
<clever>
so the isp router fails to get a public ip, and only the tv vlan works
<clever>
and the nixos router does dhcp on vlan34, and gets internet
<clever>
and for extra fun, i then run a pppoe server on vlan 34, facing the modem and isp router
<clever>
so it can get an IP, and double-nat
<clever>
but tv service isnt double-nat'ing
<andi->
how do you even have time for TV? :D
<clever>
i dont even turn it on :P
<clever>
and every time my dad tries to cancel the tv service, they claim the bill will go up!
<gchristensen>
curl 'http://[2604:6000:e6c1:d402:8e89:a5ff:fe10:53f0]:3000' does this work for anyone?
<cransom>
nadda
<gchristensen>
same, externally
<gchristensen>
seems I have more work to do.
<gchristensen>
(not just this. for ipv6 in general. computer -> router, router -> interent works, but computer -> internet is broken. but for now, bed.
<gchristensen>
radvd is sending out IPs as is appropriate according to the config dhcpcd has setup, afaict
<gchristensen>
back in 10min
<andi->
Yeah ::/64 works like one wants it to.. Great simplification :)
<gchristensen>
should my public IP be part of that /56 ?
<gchristensen>
(of the router)
<clever>
probably
<gchristensen>
will asigning my public interface a /64 do ...something weird?
<gchristensen>
and should it also get the other public IP/
<clever>
possibly
<clever>
you may be picking IP's you dont "own" and the ISP is filtering the outbound
<gchristensen>
I don't think so, because the /128 is assigned and works
<gchristensen>
and the /64 is delegated to me by the ISP
<cransom>
it probably wouldn't hurt anything, but it would be... 'weird'. if you wanted a /64 for the box, you'd put it on a loopback
<gchristensen>
I don't really want a /64 on this box :P
<andi->
You get two addresses.. One /128 for the ISP facing interface. The subent (/56) will be routed towards that address (usually) and you add the subnet to a local interface (as a sink). Add /64's as required to other interfaces.
<gchristensen>
yeah, so that is what I have now, right andi-?
<andi->
Yes
<gchristensen>
so my packets are getting out but nothing is coming back for my /56