On Fri, Mar 28, 2014 at 2:20 PM, Marius Petrescu <marius(a)yo2loj.ro> wrote: It doesn't matter which gateway the return route comes through. Either will work. We handle that routing internally. Tom KD7LXL

Hey Chris, Do you know how timely the multicast RIP announcements are? Are they sent out every time someone re-configures a gateway on the portal? Is there some scheduled re-broadcast of all routes? Also, where is the source code for all this? Thanks for any details, --Bart On 03/28/2014 02:55 PM, Chris wrote:

Not intending to hyjack the thread here.... but isn't this backwards? shouldn't the encap be built from the rip announcements rather than the reverse? I.E. rip being the current reality vs the encap being more of a statement of network architecture. Eric AF6EP On Fri, Mar 28, 2014 at 3:10 PM, Chris <chris(a)g1fef.co.uk> wrote:

I thought the whole point of RIP was that it is a *DYNAMIC* routing protocol. Eric AF6EP On Fri, Mar 28, 2014 at 3:34 PM, G1FEF <chris(a)g1fef.co.uk> wrote: > The RIP announcements are just broadcast from the authoritative source, > which is the portal data, as provided by each and every gateway operator. > > Sent from my iPhone > > > On 28 Mar 2014, at 22:26, Eric Fort <eric.fort(a)gmail.com> wrote: > > > > (Please trim inclusions from previous messages) > > _______________________________________________ > > Not intending to hyjack the thread here.... but isn't this backwards? > > shouldn't the encap be built from the rip announcements rather than the > > reverse? I.E. rip being the current reality vs the encap being more of a > > statement of network architecture. > > > > Eric > > AF6EP > > > > > >> On Fri, Mar 28, 2014 at 3:10 PM, Chris <chris(a)g1fef.co.uk> wrote: > >> > >> (Please trim inclusions from previous messages) > >> _______________________________________________ > >> Brian replicates the portal database in realtime local to where his RIP > >> server is and uses the live database to populate the routing > announcements. > >> I'm not sure how often the RIP software polls the database, but I'm sure > >> Brian can enlighten us... > >> > >> I'm in the process of adding the portal code to a subversion repository > >> and once that has been completed I will probably open source it. In the > >> meantime if anyone wants to assist with developing the portal code or > with > >> translations into other languages, please get in touch. > >> > >> Thanks, > >> Chris > >> > >> > >>> On 28 Mar 2014, at 21:59, Bart Kus <me(a)bartk.us> wrote: > >>> > >>> (Please trim inclusions from previous messages) > >>> _______________________________________________ > >>> Hey Chris, > >>> > >>> Do you know how timely the multicast RIP announcements are? Are they > >> sent out every time someone re-configures a gateway on the portal? Is > >> there some scheduled re-broadcast of all routes? > >>> > >>> Also, where is the source code for all this? > >>> > >>> Thanks for any details, > >>> > >>> --Bart > >>> > >>> > >>>> On 03/28/2014 02:55 PM, Chris wrote: > >>>> (Please trim inclusions from previous messages) > >>>> _______________________________________________ > >>>> Hi Tom, > >>>> > >>>>> Second issue: > >>>> This is not a bug, this is intentional. I have been re-writing > sections > >> of the portal to enhance security following several hacking attempts. > One > >> insecure script I found when I audited the system was the getdata.php > >> script. It has been re-written to be secure, You should not have been > able > >> to access the encap file directly from it in the first place, that kind > of > >> access was never documented, nor was it ever intended to be used like > that. > >>>> > >>>> The correct way to access the encap file remotely by script, is via > >> FTP. I have had a couple of people asking about an API which I may > >> introduce at a later stage, but for now you should access the encap file > >> via FTP. > >>>> > >>>> Regards, > >>>> Chris > >>>> > >>>>> Something changed with the encap file download process. The script > >>>>> that builds our IPIP tunnels uses "curl > >>>>> https://portal.ampr.org/getdata.php" to download the encap data. A > few > >>>>> days ago this was working just fine. Now the returned file is empty. > >>>>> > >>>>> Loading that url with a web browser also returns an empty page. > >>>>> However, if I click the "download encap" link at > >>>>> https://portal.ampr.org/gateways_list.php, it works fine. Some funky > >>>>> session bug, I assume. > >>>>> > >>>>> Please fix this issue, or point me towards the documentation that > >>>>> explains a better way to get the encap data. > >>>> _________________________________________ > >>>> 44Net mailing list > >>>> 44Net(a)hamradio.ucsd.edu > >>>> http://hamradio.ucsd.edu/mailman/listinfo/44net > >>> > >>> _________________________________________ > >>> 44Net mailing list > >>> 44Net(a)hamradio.ucsd.edu > >>> http://hamradio.ucsd.edu/mailman/listinfo/44net > >> > >> _________________________________________ > >> 44Net mailing list > >> 44Net(a)hamradio.ucsd.edu > >> http://hamradio.ucsd.edu/mailman/listinfo/44net > >

On Fri, Mar 28, 2014 at 02:59:45PM -0700, Bart Kus wrote: They are sent out every five minutes and contain all current routing information. - Brian

On 28/03/2014 22:55, Chris wrote: Good idea, but it has serious side effects. You shouldn't make such drastic changes to services that are used by the community, even for the sake of security. The very least would be to announce such a change to this mailing list, so that SysOps can adapt their tools, before the users experience unreachable networks. It upsets people if you proceed like you did, people will complain loudly which probably doesn't Good point. BUT I cannot find the URL to the FTP anywhere on the portal, indeed the portal only provides a link to https://portal.ampr.org/getdata.php So I went on and checked the http://wiki.ampr.org, no link can be found to the FTP server. There is no encap file on ftp://hamradio.ucsd.edu/pub/ either. Google returns http://www.qsl.net/kb9mwr/wapr/tcpip/encap.txt, file date is 2006/05/28 22:00:21 I would be glad if someone could point me to a current encap.txt file. (The version on the portal seemed to be generated on request... let's see how current the FTP version will be...) 73 de Marc

On 29/03/2014 09:47, Chris wrote: The HTTP link was and still is listed prominently on the portal website, the FTP link is secret. Now, make a guess which link is being used. Also if you put something on the portal, I don't think that the natural thing would be to consult with anybody about it's usage... why would you put it onto the portal if we were never ever to use it... 73 de Marc

On 29/03/2014 01:36, Marc, LX1DUC wrote: Well I have been watching the FTP file, it seems from my perspective that the delay is more than 1 hour, or the file has been generated irregularly in the last hours. It's a pity. Networks with dynamic IP addresses changing once a day (disconnect forced by ISP) will be unreachable from other 44net networks for up to the delay of regeneration of the encap.txt file. Those disconnecting more frequently will be unreachable for a good part of the day. The HTTP link allowed me to have an up2date encap.txt whenever I needed it. I would like to suggest to add a 2nd way to access the HTTP link automatically. For example via a "key" provided as an option: https://portal.ampr.org/getdata.php?key=..... The value of the key could be calculated from md5(concat(ftpusername,':',ftppassword)) or md5(concat(portalusername,':',portalpassword)) 73 de Marc

hello Marc i dont have any answer if i ping li1duc.ampr.org ? i get unknow host vy73s André ON4HU Le 29/03/2014 10:51, Marc, LX1DUC a écrit : --

On 3/29/2014 3:07 PM, Chris wrote: As you do this, can you please give consideration to implementing an event-push system as well as supporting polling? The RIPv2 multicast announcements come close, but still have a 5 minute lag and just blast the entire data set, not just the changes. At some point, it would also be good to eliminate UCSD as the single point of failure for all this route distribution. --Bart

Think its a great idea however, I would need someone to tell me how to implement it :-) Andy G0HXT On 31 Mar 2014, at 06:22, G1FEF <chris(a)g1fef.co.uk> wrote:

On 29/03/2014 16:21, Michael E Fox - N6MEF wrote: I saw file versions for today, generated at 03:45 (v3.733) and 15:55 (v3.734). Seems like the file is updated every 12 hours... 73 de Marc

The portal database is realtime, in other words if someone updates their gateway entry on the portal (or via the email robot) the encap file you can download from the portal will contain the new data. There is a cron job that runs every 5 minutes, it checks to see if the encap version is different from the last time it ran, if it is not the script exits, if the version is different it regenerates the FTP encap file and also emails the new encap file to anyone that selected the "Only when changed" option on the portal. There are other cron jobs that run periodically to service the "Daily", "Weekly" and "Monthly" emailing of the encap file. I'm in the middle of a house move, so no Internet ATM, just got 3G on my iPad for email, but I will add a wiki page about the encap file when I can. I will include a more detailed description of the whole process as well as what options are available. Regards, Chris Sent from my iPad

On 3/28/2014 5:59 PM, Marc, LX1DUC wrote: Yup, you're right. We're moving forward with an anycast solution for our IPIP tunnel termination/origination to achieve redundancy. --Bart