[00:00] I think I'm running into bug 633392 [00:00] Launchpad bug 633392 in linux "Bridged Guests losing network connectivity" [High,Expired] https://launchpad.net/bugs/633392 [00:00] unfortunately it went unresolved [00:00] I'll try unbonding and see if it solves the problem [00:05] yep, it did [00:05] so I guess bonding + bridging + kvm is broken [00:06] can't say I ever joined bonding + bridging [00:06] bonding + bridging works great on the host OS [00:07] it just breaks stuff with the KVM guests [00:07] not sure where the fault is [00:07] bonding and bridging on the host and normal nic on kvm guest? [00:07] yes [00:07] both normal nic and a guest with a bridge [00:08] same thing happens to both guests [00:08] and firewall rules on the host? [00:08] accept all [00:09] it just has the normal KVM stuff [00:09] or libvirt [00:09] or whatever puts it in there [00:09] just thinking :) I normally put a firewall on the host [00:09] yeah, this is all externally secured [00:10] bonding on the host, not the guest? [00:10] yes [00:10] what sort of bonding? [00:11] balance-rr [00:11] I don't have smart hardware [00:11] unmanaged switch, two different types of NIC [00:11] bonding to a single switch? [00:11] yes [00:12] then why not LACP? [00:12] should work well [00:12] perhaps not to a dumb switch, though [00:13] yeah, I don't think I can [00:13] I just wanted to try and squeeze some more bandwidth out of it [00:13] it's not critical, just annoying that it's broken [00:13] get a good switch [00:13] well, file a bug report [00:14] if enough users/developers think it's a problem, it'll be solved [00:26] hi. could you please help me sonve this issue; "perl: warning: Setting locale failed." Pastebin: http://pastebin.com/p3N17prX [00:27] sonve/solve.. [00:28] MraAlbertina: 'locale -a' will show you the installed locales on your system [00:28] MraAlbertina: I guess one of your locale variables there is not one of the legal values reported by locale -a [00:29] wow... i need to discover where that is [00:30] sarnold: i have a C and C.UTF-8 after 'locale -a' everything else seems ok (all en_**.utf8) [00:31] i have no clue where that C is coming from. might that be the problem? [00:32] MraAlbertina: "C" is the safe fallback :) [00:32] oh [00:32] oh, another entry i have is POSIX, besides that C and all en* [00:35] is it possible to reconfigure locale, in a quick fix, sarnold ? [00:35] pretty sure this one is the problem: LC_ALL = (unset), [00:36] because everything seems ok, with locale -a [00:36] there's a dpkg-reconfigure you can do to set the locale [00:36] I can't remember which package though [00:37] i saw that LC_ALL = (unset) somewhere [00:37] related: http://ubuntuforums.org/showthread.php?t=1720356 [00:37] shows three methods to fix, in the order you should try them [00:37] oh, ya, on the first "warning" i got, in the pastebin [00:38] LC_ALL = (unset), [00:38] okay, thanks so much qman__ [00:39] thanks sarnold [00:39] MraAlbertina: what fixed it? :) [00:40] going for a reboot after editing /etc/environment and i'll tell you :) [00:44] sarnold: adding: LC_ALL="en_GB.utf8" -to- /etc/environment and rebooting solved it [00:44] MraAlbertina: excellent :) thanks [00:44] thanks for discovering that qman__ [01:10] isn't bond-mode balance-tlb going be better than balance-rr? [01:10] balance-rr when using a single switch, can cause out of order packets [01:10] that might be your issue [01:12] the other one, balance-a?? can cause issues with devices that depend on the mac being static (cable modems, some switchs management interface, basically anything using mac for a security cookie) [01:12] qman__: ^^^ [01:12] while that's possible I don't think it's the problem at hand, when watching a tcpdump, the arp requests go through the bridge and get back to my host, but simply don't get to the guests, most of the time [01:13] and the host has no issues at all communicating with the rest of the network over the bridge on the bond [01:14] ya, I imagine the balance-rr issue will be more if you load the interfaces up good [01:14] I believe I have seen that arp issue before [01:14] but it's been awhile [01:15] likewise, real hosts on the LAN can reach the guests just fine, it only applies to the guests trying to initiate [01:16] I've defently seen that before [01:16] but totally can't remember what it was [01:16] I don't use kvm, but used to use xen with bridges like that [01:40] hey everyone. is this the right channel to ask questions regarding nfs on ubuntu? [01:41] i' d be glad if someone could give me a hint regarding posix acls and nfs4 on ubuntu. [01:44] question is: will posix acls be applied if i access a ext3 filesystem with heavy usage of acls using nfs 4 without using kerberos? i have the same userbase both on the client and the server (LDAP) [01:44] yes, but they will be able to bypass it, if they have root on the client. [01:45] hi, xnox :) [01:46] xnox, users don't have root access on the client. furthermore, no_root_squash is not set [01:48] i was just wondering if the nfs4 acls and posix_acls map and if the acls get enforced on the server or on the client side? [01:50] enforced on the client [02:02] guys, can somebody please recommend a shared calendar server/service? [02:02] gmail? [02:02] buengenio: google calendar? [02:02] * resno highfives patdk-lap [02:03] just dunno what a shared calendar server/service is [02:03] like a community calendar? a wordpress plugin? [02:03] no, like a caldav [02:03] or like exchange/outlook? a webmail thing? [02:03] isn't caldav a protocol? [02:03] exchange/outlook type of thing but that can work with Outlook/Thunderbird/Mail, etc.... [02:03] heh? [02:04] good luck with outlook :/ [02:04] outlook does it's own thing [02:04] you can use google cal with those [02:04] I'd love to say that to our boss [02:04] and last I knew thunderbird and that doesn't support calanders [02:04] im still suggest google calendar [02:04] buengenio, install exchange [02:04] no thank [02:04] no thanks [02:04] can you even install exchange in linux? [02:04] buengenio: iirc there's a horrible plugin thingy for outlook to make google calendars work there. I'm sure they did their best, but I don'tthink outlook was meant to have plugins. so. [02:04] but boss is sticking with Outlook till dies irae [02:05] I run exchange 2010 currently, not a big deal [02:05] buengenio, next best thing, outlook365 :) [02:05] isn't there something OSS? [02:05] standards based [02:05] that works everywhere? [02:05] there are standards? [02:06] buengenio: it's the "works everywhere" that fails, outlook doesn't want to play that game. [02:06] outlook has no standards, atleast till outlook 2013, then it can use activesync [02:06] buengenio: and iirc nothing else really speaks exchange [02:06] (client-side) [02:06] owncloud [02:06] I guess you could install horde webmail, setup activesync, then use outlook2013 [02:06] I have not *tested* that though [02:07] theres zimbra [02:07] zimbra the paid versoin speaks it [02:07] there is always openchange [02:07] no idea how well that works [02:07] buengenio: I've heard good things about http://en.wikipedia.org/wiki/Open-Xchange but never used it myself [02:11] I'd be wary of google calendar, their caldav access is on the chopping board [02:12] Their biggest problem is that adding event invitations sent to a non GMail address doesn't work [02:12] At least in Thunderbird [02:12] heh? [02:12] which is what almost everyone uses at the office [02:17] if you had users comfortable with ftp, how would you allow them to upload their files? [02:18] whats a resonable alternative or a secure ftp server? [02:19] resno: I'd get them comfortable with sftp right quick. [02:19] there is no difference between ftp and sftp these days to a user [02:20] except no more baffling image vs text or pasv vs active :) [02:20] hmm, most programs hide that too :) [02:20] just when it won't work, do you have to deal with it :) [02:21] :D [02:21] like my friends router that messed up active ftp :) [02:21] is sftp that much improved over ftp? [02:22] resno, yes and no [02:22] im sure the "s" brings secure, but is it night and day [02:22] personally I hate sftp [02:22] i hate s/ftp [02:22] but it uses a single connection, unlike ftp, fixing nat issues [02:22] and it uses ssh [02:22] so it just works better :) [02:22] oh? [02:23] so, i wouldnt need an ftp server? [02:23] depends [02:23] most ftp servers these days support sftp too [02:23] you give me hope and then snatch it away [02:23] but give you more control than ssh will give you for sftp [02:23] all depends on what goal you have [02:24] use ssh for both [02:24] or use like proftpd for sftp [02:24] I think pure-ftp does it too now, but haven't checked [02:24] theres 3 main ftp servers right? [02:24] what is *main*? [02:26] uhm [02:26] ill look into proftpd [02:26] ive managed to avoid ftp being installed, so i want to make sure its all good and secure [02:27] there is one issue with that :) [02:27] you can't have both proftpd and ssh both listening on port 22 (I believe, maybe they did a passthough thing?) [02:27] so you would have to move normal ssh to another port [02:28] you cant have proftpd listen on another port as well? [02:28] seems like a reciepe for disater [02:28] if you have it listen on another port, it will confuse users [02:28] when they use the default port :) [02:28] man, i'd so much rather just rely on sshd to do sftp rather than get one of the ftpd servers involved. [02:29] sarnold, like I said it depends :) [02:29] the ftp server has more control, than ssh gives you per user [02:29] and personally, I love file upload notifications [02:29] so I can realtime scan and check files people upload [02:30] patdk-lap: do you do that even for trusted users? ie) coworkers [02:30] something that'd be annoying to put together with imcron and sshd over a few thousand users :) [02:30] i dont know your enviroment [02:30] trusted users? those exist? [02:30] anyones account could be compromised [02:30] true [02:30] hmm, i didnt think of that actually === VD is now known as Guest32085 === freeflyi1g is now known as freeflying === smb` is now known as smb [09:36] yolanda_, https://code.launchpad.net/~james-page/python-quantumclient/grizzly-2.2.0/+merge/153512 [09:36] when you get a chance please :-) [09:36] jamespage, meeting [09:37] yolanda_, (I know :-)) [09:54] sarnold: i found this https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1008400 [09:54] Launchpad bug 1008400 in linux "Ubuntu server uses CFQ scheduler instead of deadline" [Medium,In progress] [10:00] jamespage, i'm looking the code at the diff, i see that in changelog * debian/control: Set version minimum for python-cliff (>= 1.3.1). [10:00] but i don't see that reflected in the diff, is that from a previous commit? [10:21] yolanda_, yeah - it needed a tweak in the changelog to drop the ~ [10:21] as changelog and change did not actually match [10:22] approved it [11:39] bug 1155556 [11:39] Launchpad bug 1155556 in maas "HP ProLiant DL380 G7 tftps kernel, but initrd tracebacks in tftp server. DL380 G6 succeeds." [Undecided,New] https://launchpad.net/bugs/1155556 [11:45] adam_g, reviewed and uploaded to folsom CA [11:45] adam_g, I swept that and the django fix through to -updates [12:15] roaksoax, jamespage woot, isc-dhcp in raring with our no maas no-uuid patch. [12:15] er.. what ever that patch was. thansk to stgraber [12:15] smoser, great! [12:43] smoser: nice!! [12:44] roso i guess actualy, in raring you should modify maas to use that. [12:44] in its default config. [13:02] got a couple ubuntu servers both running 12.04.2 here ... one looks like this when logged in "[root@mars ~]#" while the other looks like this "root@saturn:~#" ... why does mars have those brackets ? [13:03] probably cause of the shell your using [13:04] I am accessing them both through the same terminal via ssh ... [13:07] all servers are using bash shell [13:08] weird ... I closed the saturn session and reopened it and now saturn has those brackets ... [root@saturn ~]# [13:26] adam_g, http://people.canonical.com/~jamespage/ca-updates/ [13:26] quantumclient and new version of python-django-compressor for horizon [13:33] what is it about this builder command that I can't ssh or telnet into the host once it's built & started? https://gist.github.com/crankharder/c0063a365996f90b170c [13:39] jamespage: cinder milestone-proposed cut [13:39] ttx, ta [13:39] * jamespage switches configs [13:51] Daviey: There's a question for you(r team) in my post to the tb mailing list earlier today. Would you mind (having one of your minions) taking a look? === wedgwood_away is now known as wedgwood [13:57] soren: I am the minion to the cretins. :) [13:59] Daviey: That's the spirit. [13:59] soren: I'll reply to that.. just not right now. Thanks for raising it [13:59] Daviey: By extension, is... err.. Rick Spencer your minion? [14:00] soren: The higher you go, the least important you become.. so yes :) [14:01] I say jump. and he says, [14:01] "your're fired" [14:05] hmph, on quantal (at least) i see that 'deluser --remove-home' does not remove the home directory, just the files [14:12] Hello guys! I'm trying to install Ubuntu Server 12.04 i386 on a XenServer Virtual Machine, but when I try to install the sistem, I get this error: "Your installation CD-ROM couldn't be mounted. This probably means that the CD-ROM was not in the drive. " [14:12] Any idea? [14:18] hi ho [14:18] i was wondering [14:18] if i could run an ubuntu server OS off a live usb? [14:21] saki`, http://en.wikipedia.org/wiki/Ubuntu_Live_USB_creator [14:23] what is it about this builder command that I can't ssh or telnet into the host once it's built & started? https://gist.github.com/crankharder/c0063a365996f90b170c [14:23] Anyone here is familiar with XenServer? [14:29] thanks melmoth [14:29] maybe i should mention [14:29] i'm going to be trying to run this off it: http://www.sourcefabric.org/en/airtime/download/ [14:31] saki`, the usb creator thingy let you have a "stat" in your live usb system. wich means, any change you make, will be there after a reboot. [14:31] so you can apt-get install or compile stuff you need, and they will be available on the usb stick. [14:31] all you need is... space on the key. [14:32] okay cool, so a persistent install or whatever yeah? [14:32] thanks melmoth. [14:32] indeed. [14:32] when you create the key, you have an option about "casper", that s the persistant stuff [14:33] basically, it ask you how much space you want to allocate to the persitsant storage (if i understand correctly) [14:33] ah ok [14:33] i dont kow the details, i just know it "just worked" last time i needed it [14:34] hmm this seems to require me to compile it somewhere. if this works let me try and use a windows based installer instead. [14:34] as in, if it works anyway [14:38] you wouldn't happen to know of one would you melmoth? the only one i know of is YUMI, and that's for multiboot stuff [14:39] nope, sorry. [14:40] ah no worries [14:40] found one [14:45] in trying to setup glusterfs here I am running into this message and cannot seem to find a fix that works for me: /mnt/gluster or a prefix of it is already part of a volume === wedgwood is now known as wedgwood_away === wedgwood_away is now known as wedgwood === HappyLoaf is now known as Gemma-and-Sp00n === Gemma-and-Sp00n is now known as HappyLoaf === HappyLoaf is now known as Mr_Spock === Mr_Spock is now known as HappyLoadf === HappyLoadf is now known as HappyLoaf [15:33] so to add a rule with ufw I do something like this "ufw allow 8080" , now how can I delete this rule from showint up in "ufw status" ? [15:33] hrenovo: That's... not suppose to be done? [15:34] Why would you add a rule, then hide its existance? [15:34] if I no longer need it [15:34] not hide, just get rid of it [15:34] i gigured it out [15:34] its ufw delete allow 8080 [15:34] like that [15:38] hrenovo: Ah, right. :) [16:45] something weird is happening with my tomcat7 and mysql server. when I add firewall rules with iptables to open the port 8080 and 3306 and add the last rule dropping everything else the communication between tomcat7 and mysql just stops... any thoughts? [16:57] fabiofranco, thoughts without seeing the rules? [16:58] sure, I add: iptables -A INPUT -j ACCEPT -p tcp --dport 8080, iptables -A INPUT -j ACCEPT -p tcp --dport 3306 and finally iptables -A INPUT -j DROP -p tcp [16:59] just those three... and after I add the last one the communication stops immediately [16:59] I add the one open ssh too of course [16:59] you need to add rules to allow all traffic on the loopback interface [17:00] qman__ example pls? [17:00] jamespage, those 2 new CA updates LGTM [17:01] iptables -A INPUT -i lo -j ACCEPT [17:01] iptables -A OUTPUT -o lo -j ACCEPT [17:02] qman__ i see.. gonna give a try [17:03] also, it's conventional to put the -j at the end of each line [17:03] not sure if it affects the rules [17:04] but if it does, your last rule could mean iptables -A INPUT -j DROP, which would certainly not be great [17:04] also, do you have rules for established traffic? [17:04] iptables -A INPUT -p tcp -m state --state RELATED,ESTABLISHED -j ACCEPT [17:05] no, I dont [17:05] you definitely need that too [17:05] gonna apply it right now [17:07] adam_g, great - ta [17:10] qman__ do you think the last rule should be iptables -A INPUT -j DROP? [17:12] it can but that will break all icmp and udp traffic [17:12] so if you want any of either, make sure you allow it first [17:13] qman__ I see... gonna try it [17:17] qman__ it worked... thanks a lot [17:24] adam_g, that horizon oddness with firefox is fixed with the new version of django-compressor [17:25] jamespage, great [17:25] jamespage, which projects are we waiting on for RC1? [17:25] adam_g, most of them [17:26] ah [17:26] quantum and cinder have released rc1's [17:26] I started on quantum [17:27] but noticed the watch file does not work that well and got distracted.... [17:34] adam_g, MP for quantum rc - https://code.launchpad.net/~james-page/quantum/grizzly-rc1/+merge/153606 [17:35] jamespage, nice. [17:35] adam_g, I think all the required deps are in the grizzly-staging PPA now [17:35] there are a few catchups outstanding but nothing critical. [17:36] jamespage, when i got online, saw a precise+grizzly test had just failed on volume creation. hope its something transient. :) [17:36] adam_g, hmm - worked a few minutes ago - I'll try again [17:37] adam_g, btw I'm working on a tool to make backporting easier [17:38] ca-backport-package 'os_series' 'package' 'Comment for Changelog' [17:38] jamespage, hah [17:38] hopefully it will mean the only thing you can get wrong is the changelog comment :-) [17:38] jamespage, i just did this yesterday http://paste.ubuntu.com/5617160/ [17:39] adam_g, lol [17:39] great minds and all that [17:39] we should consolidate stuff [17:39] mines a bit more hacky write now [17:39] jamespage, yeah, what are your thoughts on making this automated, in response to the version_drift failing? [17:40] adam_g, I'd be up for that - I implemented the changes we discussed in the CA archive admin tooling to help support that today [17:40] ca admins now get the change details so can choose to ignore things. [17:41] jamespage, where do you envision the bot pushing the auto-built backports? straight to the staging PPA or somewhere for a human to do that? [17:41] adam_g, cinder looks OK to me - http://paste.ubuntu.com/5617170/ [17:41] adam_g, I think step one would be to put it somewhere for a human to review, sign and upload [17:42] adam_g, but so long as that proves reliable then full automation ++ [17:42] jamespage, thats what i was thinking. a staging-staging-PPA so we can ensure builds, as well [17:43] need to step away. back in 10 [17:43] adam_g, yeah - one that inherits of the staging PPA would be neat [17:44] hmm - that give me a thought [17:44] we could just write a tool that pulls stuff from there, signs the packages and uploads them to the true staging PPA [17:45] actually thats almost an extension of the tool I already wrote for syncs staging->proposed->updates [17:47] adam_g, other thing I have been doing is switching the build configs from master -> milestone-proposed as the branches are cut [17:48] done for cinder and quantum - ttx has been good at pinging me when that has happened [17:50] adam_g, if you agree with the approach I took in the mysql charm re openstack-charm-helpers I'll add that to tha ha-helpers branch, re-sync swift-proxy and start working on keystone on monday [17:51] I guess the unison helper could live in charm-helpers as well. [17:51] And then we can write some unit tests. [17:51] w00t [18:04] jamespage, +1 to all that. do the branches that have a milestone-proposed also have havana version bump in master? [18:04] adam_g, yes [18:04] but due to the way we override the OSLO version number in the lab we don't get busted by that [18:04] i.e. the release created is always 2013.1 [18:05] adam_g, OK - I have to go now [18:05] adam_g, weekend and all that - I will check back in a bit later +3 hr [18:05] ttfn [18:05] jamespage, k, looking at the mysql stuff now. after we merge that i'll sync the helpers branch with those changes + anything else still pending [18:06] adam_g, ahead of you - lp:~james-page/openstack-charm-helpers/ha-python-updates [18:06] feel free to merge - I added headers over the mysql versions to tell people its part of openstack-charm-helpers [18:06] doh! :) [18:35] I'm looking at a resolved help-forum post that seems similar to my problem (http://boards.portforward.com/viewtopic.php?f=3&t=9910&sid=201967eaaef5c2335ed22ea5a811c5d3&start=10) and I don't know what the poster means in his resolution: "I noticed that the net:bind_ip in utorrent was set to a different internal IP address than the static one assigned my computer, so I just cleared this, so the field was blank.". I'm not [18:35] What is net:bind_ip? [18:37] HelloWorld321: you were cut off at "I'm not" [18:37] HelloWorld321: net:bind_ip is the IP address that it binds too. from their website: net.bind_ip: If your computer setup requires that you use a specific LAN adapter for incoming connections, you may specify that adapter's IP address here. [18:37] HelloWorld321: when a program listens on a socket, it binds a socket to a port on an IP [18:39] HelloWorld321: the usual interface is, if no IP address is specified, bind that port on _all_ IPs the machine uses. If an IP is specified, then bind only on that IP, so other IPs on the machine don't expose the service -- or can run a different service. [18:53] thanks. so I can find that in netstat? [18:53] (cut off at "I'm not"): ... using utorrent, I'm trying to set up an ftp as a proof-of-concept, since I figure ftp is pretty standard (maybe a little too standard: I'll disable it for security once I figure out what's going on with my router), ... [18:54] but I don't know what the net:bind_ip is or where to clear it [18:55] HelloWorld321: yikes, ftp is a pain in the butt all around :) active vs passive connections is extremely irritating. [18:55] I was supposiung that it would be easy, because it was so old and so standard [18:55] (afk4lunch!) [19:28] bak [19:28] I'm able to hit the ftp server from inside the network, so I suppose that the hsot is set up properly [19:30] hi. iptables -t nat -A POSTROUTING -s 10.8.0.0/24 -o eth0 -j MASQUERADE [19:30] I have this rule added in iptables [19:30] is there a way to add it in ufw ? [19:30] if I enable ufw this rule is blocked [19:46] My system is listening for ftp on all ip addresses (http://pastebin.com/WjhZtzTX) and I'm having no trouble reaching the ftp server from inside my network, so I believe that my original question about checking/clearing net:bind_ip is not really the issue. Is that correct? [19:52] HelloWorld321, that is correct [19:53] FTP is ancient and poorly designed, and does not play well with NAT [19:53] http://mywiki.wooledge.org/FtpMustDie for more information [19:53] the short if it is, don't use FTP, SFTP is in all ways superior and you probably already have it [19:56] Also ,don't confuse FTPS is not SFTP [19:56] Also ,don't confuse FTPS with SFTP [19:56] * Pici confuses himself sometimes [19:56] er, not with that, with typing the right thing. [19:58] okay, I'll take that into account. But for now, my point isn't actually to set up an FTP server., it's to set up my router. I just want to hit anything inside my network from the world IP address. [19:58] HelloWorld321, FTP is the worst possible protocol to test that with [19:59] becuase FTP specifically will not work over a NAT without lots of hacking [19:59] I used to run a Ventrilo server, but I had to stop when I got a different router, so now all my gamer friends are bummed. [19:59] okay, what's the simplest application to test that with? [19:59] http or ssh [20:00] okay. I have apache running on that same box. [20:00] I'll go open those ports and try that. === rook is now known as Guest12763 [20:01] http is port 80, right? [20:01] yes [20:01] bear in mind that if you have a residential ISP, they may block it [20:01] many block 25, 80, and 443 [20:01] I've thought of that. I asked the support desk. They said they didn't. But they also sounded like they didn't know what "ports" are === Guest12763 is now known as imrook [20:02] and yes, this is on a residential ISP. [20:02] I've never seen one that blocks 22 though [20:03] and you can always try forwarding a high port, like 8080 -> 80 [20:03] I'm trying to build the php5_5.3.10-1ubuntu3.6 source package, but getting "debian/setup-mysql.sh: 44: debian/setup-mysql.sh: USER: parameter not set" during test-results.txt [20:03] is 22 sftp? [20:03] ssh/sftp [20:03] This was fixed back in 3.3 http://irclogs.ubuntu.com/2012/12/21/%23ubuntu-server.html [20:03] Is this a known regression? [20:04] okay, 80 doesn't work with this configuration. [20:05] HelloWorld321: setup ssh and tell us the ip address - unless you have a very bad password, it should be safe to post the address for some of us to test. if you have a bad password, your box will be compromised in hours anyway [20:05] I have just tried to sftp localhost, and ssh to the internal ip, so sftp is setup. My outside ip address is 98.148.120.187 [20:06] o: [20:06] but I haven't opened that port yet: 22 [20:06] hehe [20:06] yeah, it's being dropped [20:08] okay, I think I've opened that port. [20:09] But I also think that that's my problem. I'm not setting up the router properly. [20:09] I got a response [20:09] it's open [20:09] you see me? freaky! yay! [20:09] can you guess my password? :P [20:09] The authenticity of host '98.148.120.187 (98.148.120.187)' can't be established. [20:09] RSA key fingerprint is 86:6a:1b:00:03:2c:85:bd:6e:2e:dc:31:50:47:6a:2a. [20:10]