#networking

DHCPv6 requires the RA. That is where you obtain the O,M flags for DHCPv6

unless you set it to not wait for RA..... 😉

Yeah you can configure DHCPv6 to solicit immediately

and this is how i know there is no RA, which is strange to put it mildly.....
why enable dhcpv6 just to cripple it by not enabling RA? 🤔

It's not crippled entirely, just cripples certain devices

If you look at your Pfsense routing table you should see a ::/0 route if you obtained your /64 or /56 via DHCPv6

i dont think ipv6 can route anything without default gateway.....

nope

(maybe the HE tunnel causing it but idk)

Depends on the device vendor. This is why RA's should be enabled but in cases where it's not, some vendors have configuration to add a default route based on the neighbor address

And v6 does not require a default gateway to route, that simply an endpoint concept.

🤦‍♂️

is this network stuff or just electrical stuff @meager ginkgo

or any of this?

And? Or was your context just from the view point or your router?

that looks like possibly coax? can't tell from this distance. Weird to put it outside

the green box in the top right may be used for network stuff

What’s that silver stuff

coax most likely

Black is coax I’m pretty sure

It looks like that's just part of the bundle of coax

Maybe got painted at some point?

ah that might be it

Didn’t think of that

https://www.amazon.com/NETGEAR-Nighthawk-12-Stream-Router-RAX120/dp/B07P3FGKYD?dchild=1&keywords=Netgear%2BNighthawk%2BAX12&qid=1630720281&sr=8-3&th=1&linkCode=ll1&tag=reviewsorg-20&linkId=58706df585198e86e0e2a910b2400d8c&language=en_US&ref_=as_li_ss_tl

highly suggest this router.. my at&t router that the tech for at&t came and installed/setup when I got at&t 2.5gb/s fiber plan... crapped out on me today. Wouldn't boot up/power up at all. So I had bought that NETGEAR router for myself last February for my birthday - just plugged this baby in and configured/checked the gateway settings.. and SHES A BEAST! 🙂

56

I also realized for the first time my v4 address changed

setup v6 on lan and everything is working fine

with HE I had issues

😡

Sweet. I checked and nothing yet

i want ipv6

Hi! I have 2.5Gbs fiber now and i'm looking to buy a new switch (I can't connect directly to the router...multiple PC, cable running trough my wall...). But it's like... so expensive 250-300$

Am I missing something or 2.5Gb switch are simply expensive?

I found a bunch under 200 USD on amazon

Yeah, so I'm not dreaming.
Guess I will buy this one https://www.amazon.ca/dp/B08XWK4HNT

ah CA

Yep, sorry canadian dollars!

its not cheap. I'm at 2.5gbs a second with Fiber at the moment. Haven't had it that long but its a huge difference.

Yeah, yeah, was just wondering. Like my 1Gbs switch cost me like...50-60$ few years back.

I was like "Am I missing something or 2.5Gbs is just way more $$$"

yeah gigabit has been the fastest thing available for consumer products for so long that they've gotten prices down remarkably low

2.5 Gbps is still pretty new relatively speaking, and still pretty niche compared to the massive install base of gigabit hardware

so its unfortunately just naturally gonna be disproportionately expensive for at least a few more years until it starts to be the new standard cheap home network speed

I'd rather everyone just skip to 10 gigabit

There are increasingly cost-effective solutions for doing so, 2.5 gigabit is a decade too late imo

it wont happen. cant even get 5ghz in IOT devices

offices and even homes are shifting to mostly wireless now

hell my new sony OLED cant even support 1gbit

I bet that TV linus bought is in the same position

4k streaming doesn't need more than a gigabit and quite often not more than 100mbps

yeah but vendors are ditching 100mbps support

Though I do think that not even putting gigabit in is a bit shit

I get that slow CPU cant support 1gbit speed but come on

More often than not it's just included in the SoC

Vendors haven't ditched 10mbps

I doubt they ever will

I have cisco switches that cant do 10/100

With rj45 ethernet interfaces?

yep

What are they?

would have to dig because I dont remember. They're nexus line cards

that reminds me... @clear igloo you people

you came out with high end line cards for n9k that are some how worse than n7k stuff

has like no TCAM

https://www.cisco.com/c/en/us/products/collateral/switches/nexus-7000-series-switches/datasheet-c78-733366.html

I think these are one of the models (with an rj-45 SFP) that cant do 10/100

I cant find the details on speeds though

Yeah, found a few

I'd like to know why.... licensing? it does not make sense

maybe theres a hardware clock thats just too fast for it?

That has SFP

I know there are some constraints around interface speeds for SFP/+ modules

I've definitely encountered gigabit-only SFP cages

I don't know why that is the case

But I remember seeing them

did you know they basically stopped supporting fexes now? only a single n9k model can be a fex and its $$$$$$$$$

I have huge networks on fexes and now have to deal with refreshing away

go from only having 8 CLIs to deal with to 1 CLI per rack

🙈

Never heard of it

Googling suggests stacking on steroids?

yep, exactly

stacking over fiber with no need to console the switch being stacked

all of your management is in a central location

what card?

Let me make a wild guess: Cisco has a cloud solution they'd like you to use instead

actually they just started pushing one, yes

Perhaps a subscription-based one?

Everything is a subscription these days it seems

Yep, makes sense to me

Although funny enough the licensing, even smart stuff, is still honor based 😛

Aside export controlled encryption stuff, that you need codes and whatnot for

I'm not at work today but if I remember its N9K-X9736C-EX

EX was weird

It has TCAM but not near what the FX has

we started loading PBRs for migrations and its falling on its face'

but you do ACI too so it might be different compared to NXOS TCAM on the EX

its NXOS

Hmmm, it's got TCAM as I've got a few but I know it's more slimmed down compared to FX linecards

its our bridge between ACI and rest of network(tm)

the bridge to possible? 😄

it was until tcam

we're doing layer 2 right now for our SVIs

moving to ACI l3 way later

Did you carve out the right amount of TCAM from ing-racl space?

we were told dont touch it

we're pushing back to see if we can

AHA! That's why, it's got a default carving you need to change for pbr

we are waiting for them to tell us what we're robbing from

So.... what are we robbing from?

hardware access-list tcam region ing-racl most likely

or vacl space, I forgot what the default is for that stuff

anyway a strong email was sent to them yesterday

lol, I touch TCAM all the time, whoever is telling you not to is an idiot

the advanced services team.. or maybe TAC. I dont know. this has been going on for a while and im not the person infront

Although racl would be what you want the most of, PBR does use routed ACLs so maybe someone touched it already and that's the issue

pretty confident its all at defaults. all we did was a COPP tweak

Yah, let the higher ups and account team or TAC sort it out, lol

so I'm gonna buy a new router (specifically TP-Link Archer C6 v3.2), my use case is to install OpenWRT on there to have more usage out of the router itself (idk how safe is it to not brick it). What I'm worried or curious about is the version of the router, I'm gonna get v3.2 while they support v3 (https://openwrt.org/toh/tp-link/archer_c6_v3), is it gonna work? The router has 128MB flash and 16MB RAM so it should be?

just a reaction to your glaring lack of knowledge, no network can route without knowing where the "gatekeeper" is regardless of ip version....

It's odd how my lack of knowledge has managed to advance my career as a network engineer in the service provider industry. So much so that I was lead project engineer for a statewide deployment of IPv6 for thousands of customers.

I guess I should not have put 1000s of hours into understanding BGP/OSPF/EIGRP in depth and should have just used default routes everywhere

yall think i'd need mesh for 2,900sqft 3 floors

static default routes all the way baby!! 😄

LMAO, honey

Lurick, Juan engineer networks with hundreds of routers and switches.

this conversation got me

I've done 300k user networks myself

i haven't done a single network 😃

We all have to start somewhere 🙂

i'm probably going to do a 4 user one soon though

my house

The best place to start

really just wondering what hardware i should use

my current network is a 3 user lol

Yeah just not with ipv6

we only got like 10 devices or so but the isp provided shit is horrible

i want ipv6 😡

lol

got 45 dhcp clients rn

i have ipv6 💪

my isp doesn't give me ipv6 😡

less go

@clear igloo i still want new switches

but $$$$

Any solution to make this dns work, because Google hates when you add a \ to the url

no it just hates DoH

in which case there is nothing you can do

Highly doubt that....

anyone know why my linksys velop mesh node is limiting my download speed to 200mb when plugged into it via ethernet?
i get faster speeds on wifi for some reason

I found alternative, but it says its for the Netherlands but I'll take what I can get

He is correct, technically speaking there is no need for default route

At an endpoint yes

That was my point. He said IPv6 cannot route anything without a default gateway. I said that is merely true for endpoint/host.

Out of our 525 core routers/switches, there are only a few devices in which you will find a 0/0 or ::/0

I was trying to explain that with DHCPv6, there is no default gateway field. Its all via the RAs or if your vendor supports it, using the neighbor address on the interface the DHCPv6 reply originated.

this guy networks

I warned you

?

i never said he didnt

You were warned regardless 😄

@clear igloo @waxen scroll We just got approved for the 100G project due to the acquisition due to the increased throughput we are expecting to see once we take over engineering of their network. Time to make use of the 24x100G MX10003 ports finally

this is hilarious sorry. you should at least take like 5 seconds to check who you're talking to before you humiliate yourself

Nice, is that 24x100g per card?

Per chassis, 2 cards (MICs) each

MX10k3 are used for our P/PEs. Amazing flexibility in a 3RU form

Ah, was about to say that doesn't seem too dense but 3U isn't bad for 24x100g ports

dual supervisors?

Yep or RE's in Junos speak

Routing Engines?

Yep

Nice, about equal to the ASR9903 then

We have always had the blades but never had the licenses because we made use of the QSFP+ for 10G density and ECMP for geo diversity. If you want it supports up to 144 10G interfaces.

But now since we have the fiber to locations we need, we're going dual 100G between the backbones for the time being

when you say backbones what kind of distance do you operate over?

like metro area or more regional

We operate in the NE US. Majority of our coverage in NY

Backbone links go brrr 😄

Lot of speed buffer for now I'm sure but you'll look back in a couple years with 400 or 800g links and laugh

Although for backbone stuff more links is always better than a single fast link

100% this. Makes maintenances and the dreaded backhoes have little impact. 2+ links + LFA + MPLS FRR for the win.

they cheat and use zayo fiber

We actually have use Zayo fiber for our secondary NYIIX peering lol

Of which that transport has gone down twice for 6+ hours in the past 2 months

Yep

We have huge zayo issues

Always attacked by machines

@waxen scroll Scratch that. 4 times in the past 2 months. These are the primary and secondary NYIIX peers. Second light blue line was their optical gear requiring a restart of the chassis. 4th was a broken fiber in their CO, which I believe they even tried to charge us as they had to dispatch their techs to repair it. We don't even have badge access to the entrance of the building, let alone to COLO

yikes...

Lan Sharing from windows
And im looking if you guys know a good Android app that can See/Download/Upload files thru Lan/Wifi Network...
Already was searching on Google Play, but im looking for some decent good looking app where i will not have speed limitation when i will not sponsor the app...
Anyone have some app recommendation?

Ok decided, after 12 years of managing a network i'm tired of the imposter syndrome, i'm going ot start the process to get my CCNA.

It's nice to hope CCNA can solve imposter syndrome

Idk about today's ccna but when I did it I learned really quick that you need ccnp knowledge to actually do network yourself

yup, that's why i said "hope"

Yah, today's CCNA is crazy, it's got all the towers involved 😦

It's a start.

Yeah, i regret not doing it earlier when it was more focused.

I’m just about to graduate from a college networking program, we went through all of Cisco netacad and did a bunch of other courses like Windows Server admin and Linux server admin, also AWS. That could be an option for you too since those are kind of intertwined.

Takes longer though, 3 years.

Whatever you do, use Anki for your studying, it’s a great free flash card program.

So I'm looking for a cheap wifi extender that can be powered off a USB battery bank, any ideas? Bonus points if it's got its own battery and is water proof. Don't need it to be fast or anything, just need a tablet to stay connected to the wifi to use the security program I need to get into the computer system of a broken excavator that is about 100 yards too far across an open field to connect to

Some dumbass changed the standard security override password without realizing what he was changing. I don't want to have to rip out all the wiring just to reset a password

That I know,TP Link and just plug it in outlet

or maybe you can find on amazon some cheap chinese usb powered wifi extender

like this

https://www.amazon.com/TUOSHI-Extender-Repeater-Universal-Amplifier/dp/B07ZYWXB66/ref=sr_1_4?keywords=usb+wifi+extender&qid=1660229584&sr=8-4

but dont know if it works,cant recommend

I have underneath my desk two 10 Gbit ports going directly to my router, but I have multiple devices (two of them 10Gbit, three of them 1 Gbit). I have an 8-port 10 Gbit switch. What would be better - directly hook up my workstation to one of the wall ports, hook up the rest of the stuff to the switch connected to the other 10 Gbit port? Or perhaps hook up both my 10 Gbit devices into 10 Gbit switch and get a second 1 Gbit switch for the 1 Gbit devices? A friend of mine told me it's usually better not to mix 10 Gbit and 1 Gbit in the same switch.

NEW VIDEO:https://www.youtube.com/watch?v=wWltASCJO-U

Question about steam caching: is there a way to configure it such that it'll automatically cache game updates when they're available without having to manually download it the first time? (i.e. When my main desktop is turned off)

Some quick googling says no but those results were from a decent bit ago, so I was wondering if it's something that's been implemented since?

I want to set up a minecraft server, i have a spare motherboard with an i5 2400, 8gb of ddr3 ram (1333mhz cuz the board limits it to that) that i could use for it, but here is where the trouble begins:
I dont have a wired conection in my room and so i would need to place that near our familly router. My parents turn it off for the night, and i want the server to work 24/7. So my plan is simple, but here is also my biggest concern. I would plug in another routet, and plug the fibre optic cable into it, disable wifi on it, and make it connect to the server and the router than is currently in use that delivers wifi. The only problem is, that the router that would be plugged in after the first one is a fibre optic router too. And so my question is:
Is delivering internet by ethernet cable to a fibre optic router going to work?

• its not about networking, but is a 2400 with 8gb of ram enough for a mid size minecraft server with datapacks?

you need to have the router on that has the cable coming in from the isp most of the time that is the isp box and swapping that for your own isn't easy depends on the isp most consumer isp's block it tho

as for those specs depends on what you expect of it it can run a mc server tho minecraft really wants high clockspeed on the cpu and 8gb of ram is enough for at least a lot of connections for sure if it's just friends

Instructions unclear, ate toilet paper

But for real

so the cable that comes in to the main router needs to be in there you can really swap it out

and if you plug a cable into the router and into your own router it won't work if the main router is on and you will have trouble port forwarding as double nat

I can easily swap the cable between the routers, im asking if a router that normally gets the connections from the fibre optic will work if it gets connected by an ethernet cable

depends on the router but the way you would want it is the router you have now is the router and you disable the wifi on that and leave it on 24/7 and use a different router on it in acces point mode

and you need access to the main routers config to port forward for the server

sounds like you should figure out why they unplug the router at night first

you’re over complicating it..

They fear hackers that could hack in during the night, magicial radiation or some bullshit
Its all about wanting to ground all pc's for the night and having excuses cuz why not

💀

If your parents are worried about that I don’t think they’ll like you setting up a server

just my 2 cents

you should tell them unpluging it is really bad for the device but yeah if you setup a public minecraft server at home that's how you will be open for hackers

if you just want a server for friends yeah it's okay. also that the router restarts every day will make your ip address change as well it's out for multiple hours and your ip is probably dynamic

My IP is dynamic through AT&T and it hasn’t changed in 4 years (since we got it)

usually that’s CGNAT that consistently changes

it most of the times changes if your modem is gone for minimum 2 hours

tho it depends on the isp some have it at 4 hours or longer

my internet has been out for 4 days once

and depends if you swap the router also

well depends on the isp a lot

i have had my ip chance ones but was as swapping hardware out from the isp but still not good to have it unpower for sure if you run a server

@meager ginkgo 💀 I forgot the creds to these airos devices

💀

i don't have the passwords saved anywhere

damn

that sucks…

Same

My IPs never changed except for 2 days ago

When they deployed dual stack

No reset?

it's remote

Oh

Password manager time..

At work every single credential to various clients is in 1password, kinda scary when I first got access to it

sso is the real answer

problem is that a lot of commercial/open core apps set up their pricing so SSO is only available on the max price "enterprise call for a quote" plan

if a vendor is trying to make basic security features a paid addon instead of a fundamental part of the design it says a lot about their (lack of) appropriate attitude towards security

https://sso.tax/

unfortunately a lot of our infrastructure is on cloud foundry (🤮) which doesn't seem to have sso support

it's a mess idk who decided to go with it originally but now it's too ingrained in our network

Can't really do that on network devices no?

i mean, sure why not? you should be able to! but yeah you generally don't have that option. one decent option is to have bastion hosts with SSO in front of that, or set up SSO for ssh auth in some way

https://smallstep.com/blog/use-ssh-certificates/ you can do this with SSO

that said, I'm not a network engineer - and there are other solutions for network devices that work fine in practice

I mean a lot of this stuff is not just network

It's a bunch of various logins for random stuff

I guess we could setup sso for all our WordPress sites

But is it really worth it?

Most of the time for me

my only stuff that's SSO is public facing

https://mail.google.com/a/ryois.me
https://sso.ryois.me/aad/aws
for example lol

I guess I could bring it up, but why fix it if it's not broken

both of those go to MS for SSO

i mean, yes in an ideal world everything is in SSO

it's not (just) about user convenience, it's about a single source of truth

I try to use MS for auth wherever possible though

(minus break glass kind of procedures of course)

i have ldaps back to azure for vsphere and shit on prem

not exactly "sso" but same idp

Yeah, we could look into it. I think we have at least 50 websites

Windows Logon requires TOTP & your password (same as azure ad)

WiFi is also using azure ad

Azure goes does...

I think i just have a static ip lol

ip never changed until we got a new modem

then nobody gets WiFi! :P lol

but as long as you don't have to reauth, you should be fine

(or router? i have no clue which one matters in this case just the stupid isp combo)

but the way i have it setup, it doesn't go down bc azure went down

unfortunately it's pretty unlikely that they actually have given you a static IP for free - usually they want to charge you for that. they probably just have their DHCP set up to automatically give you back the same one on every renewal unless you change MACs

A project I suggested to to get a lot of the sites static

To save on server costs

lol

I experimented with sso locally with authentik

It's nice, but another thing to maintain

If the MS login requirement is being shown because of Cloudflare Access, i can access it internally without MS auth

but if the app is redirecting to MS, the only non MS auth is probably a local login (if enabled)

Sorry to interrupt but I'm looking for a new router as we are going to be switching ISP's soon and want a good router without paying $200 for what is likely a extremely bad router

Things I'll be doing

Mainly streaming game dev while being connected to a computer via RDP and also streaming on my own personal device as well.

Downloading movies (legally through apps like Disney+ and the like)

Streaming movies and other general things most people use there internet for

It must be able to do gig speeds and would like to but not required run custom firmware (dd-wrt specifically)

How much does ms sso cost?

$0

By default, a maximum of 50,000 Azure AD resources can be created in a single tenant by users of the Azure Active Directory Free edition. If you have at least one verified domain, the default Azure AD service quota for your organization is extended to 300,000 Azure AD resources.

https://docs.microsoft.com/en-us/azure/active-directory/enterprise-users/directory-service-limits-restrictions

you don't get the fancy Azure AD security features like conditional access and branding without a subscription, but that's included in some M365 subscriptions

but technically my tenant is Azure AD Free

Ah

My server can only be accessed when my laptop is on, does anyone have any idea what might be causing this?

your laptop is secretly your server

It will be just for my friendgroup so dont worry

• i may just link a domain cuz why not, if i do that even is someone from outside gets it they will think its hosted on a hosting service

Being told little, we know little. Either: You were running your services on said laptop and whatever you thought your server was happened to be incorrect (So you can fix by getting a real server and running your stuff on that), or you started them on the server using SSH and with your SSH session, which means they'll die when your session does.

wait wtf i could've sworn i looked like 3 months ago and it was $5/usr/month... is this new? or is there somewhere else i have to look to get this free edition?

My guess is this part: "If you have at least one verified domain". The calculator prob wont count it. I need to check my Azure too 🤔

It's been free for a few years, at least since 2019.

Found people online talking about it in 2016

you need ms 365 tho

@sudden kayak

wait so ms 365 includes the second tier right? but i thought this was the first tier

Azure Active Directory comes in four editions—Free, Office 365 apps, Premium P1, and Premium P2. The Free edition is included with a subscription of a commercial online service, e.g. Azure, Dynamics 365, Intune, and Power Platform.

that second sentence makes it sound like any paid azure service also gets you a free AAD tenant?

The server is on 192.168.1.207 with a bunch of services running, the management console is at 215 and my laptop 163.

This didn't happen until yesterday.

Hi can someone help me with some internet stuff?

yes this is the channel for that - just describe the problem and someone will probably be able to help

I've honestly never heard of this happening and I have no idea what might be causing this.

I recently got fiber from frontier and the guy gave me a eero 6 .Which is in our living room.He gave me a second eero for my room.But the problem is i get half the speed in that eero and the guy said its cause they are in close proximity and they competing.Now my question is it better to have the one eero in the living room and connect my ethernet to that so that i dont get any packet loss or higher ping?or do i connect it to the eero in my room?

oh yeah

not just 365

You are going to need to keep the eero in the living room. Try moving the eero in your room closer to the main eero.

If that doesn’t work, consider using moca if you have cable tv jacks in your room/living room to hardwire the eero in your room

So the eero in my room is gonna have packet loss issues?I dont mind the reduced speed,my main concern is ping and packet loss

theoretically i wonder if that includes like. a single 1k text file in azure blob storage or something 😂

the specific IP addresses aren't really the important thing, but how is everything connected & laid out? wifi, Ethernet, moca? are things plugged directly into your gateway or do you have any switches etc?

also what is the server hardware wise

Ethernet and switches.

It's a poweredge.

Did the gateway on the server change to point to the laptop for some reason?

The laptop and server plus a other things are connected to one switch, that switch is connected to a second one with other devices connected which is connected to the router/switch/modem.

Do you run Linux on it?

I didn't change any settings on anything until the problem started.

Yes.

Do you manage it via SSH?

Yeah, or the iDRAC if needed.

Do you start your applications from your SSH session, or use a service manager like systemd?

The crazy thing is, you can't access the iDRAC with my laptop sleeping either.

I use systemd, docker and libvirt.

Use a machine other than your laptop or server, ping the server, ping the laptop and then get the MAC address from arp for both.

It must be in the same subnet.

I'll have to look up how to do that and borrow a computer later.

It would make sense if ARP caches got corrupted.

I did power cycle the switch both of these devices are connected to thinning that might fix it.

I'm planning on turning all of the networking stuff off and then back on later in the day, but I'll check ARP first.

Ping I’d recommend either running a cable to the main eero or using moca

What is a moca?

IP over coax.

or a raspberry pie could be configured to run a simple website with the help of something like Ubuntu server for arm

I'm not sure how a Pi or what you can do with one is relevant to those troubleshooting options, but ok.

I was just saying that could be a solution Meagus

to get it off there laptop and onto another device of some sort

They said they have a Dell PowerEdge

oh alright never mind then

I apparently can't read lol

If you have a coax internet port by both the frontier eero in the living room and one by the eero in your room you can rewire the coax and run Ethernet through it with $40/each adapters

You would need to locate where all your coax goes and connect it together. It likely goes outside by your utility meter

It sounds more complicated than it is lmao

Hey y'all so I'm looking at WiFi 6 routers meant for streaming and can anyone give me a opinion on a

NETGEAR R6700AX WiFi 6 router (it can do up to 1.8 GBPS at least according to the listing and only costs around $80)

that 1.8gbps you will never get. Lol. In simpler terms all the “AX1800” AX3600 etc is just marketing

realistically on a good client I’d expect 300-500

mbps

out of a good AX1800 router

ya alright well we are going to be going with Century link which is known for getting really close to there proper speeds and I'm honestly just looking for a good streaming router that can do 2 streams at once

What speed from CL?

and I'm talking about twitch streaming

940MBPS

that's what I'll be paying for at least

Are you streaming or watching streams?

streaming to twitch

Also - if you can’t hook anything up to Ethernet 940mbps is extremely overkill

ya but I also plan to do a lot of torrenting (mainly linux distros and other legal things to torrent like out of copyright movies)

or just movies that never had a copyright in the first place

If you’re using WiFi you’re going to be limited by that unless you get something with 160mhz or 6ghz band

The client and the router have to be both 160mhz capable / 6ghz band capable

Cost adds up quick 😉

hence why I don’t recommend gig for most people

ah ya we are a small game studio though so uploading large projects to the cloud without taking 4 hours would be very nice

I’d highly recommend trying to hardwire the pcs then whatever way you can

Or spend more on a WiFi 6e router and WiFi card for each pc

alright uh except for 1 problem it's in the cloud and my computer can't be hardwired (no ethernet jack)

laptop?

yep

You can get a USB to gigabit Ethernet adapter

it’s around $15-30

I was explaining earlier how to use coax cables for Ethernet if that interests you

so without buying a usb type c (mac) to ethernet adapter I'm stuck with WiFi

and I would have no way of plugging in a coax cable into my PC

They make coax to Ethernet adapters

but if you’re uploading lots of stuff I highly don’t recommend wifi

It costs more money than it’s worth.. even wiring a place with Ethernet would be less

oh well once we switch (due to Century Link being fiber not coax)

I'll look into that unless we have to send the router back and everything

You don’t need to have active coax. It’s actually better if it’s not

ah I was talking about using the cable from the old router

👍

unless we have to ship it all back as it's a ISP router

But yeah - if you’re a game studio (no matter the size) I’d highly recommend some type of wired connection

it will benefit you greatly

yep I had a usb type C to ethernet adapter (+ it had stuff like HDMI and a few USB ports on it)

I have a thunderbolt dock (usb c with more bandwidth) at home and it’s great

but don't know where it went when we cleaned and reorganized the place

One cable and everything connects to my M1 MacBook Air

nice I can't afford that space as I don't have a desk atm (place is only 215 Square Feet)

so I'll probably just get a good but cheap (probably from Anker) adapter that can do ethernet and HDMI and a few other things like that

is it an apartment studio or something similar? MoCA may not work then

all of the cables probably go to somewhere you don’t have access to

oh and USB is going to be awesome as I have a USB hard drive inclosure

it's a micro studio

so a bit smaller then a normal sized studio

and yes once I get on SSI I am out of here

or HEN which ever comes first

Ah. I mean 215sqft is a pretty small space, I’d just run some temporary Ethernet cables

ya but I'm probably going to be moving out of here in a year maybe 2 at most (depending on when HEN finally opens back up)

or depending on when I get SSI

as I'm planning on moving to a 2 bedroom apartment (for me and my roommate/co-owner of our small studio)

I wouldn’t worry about WiFi then.. just get some cheap cat6 cables off of Amazon and run them somehow that doesn’t damage anything

you can use the ISP router if you wish.. range shouldn’t matter much

we have 1 that came with the router

just make sure it’s long enough and at least CAT5e

And you should be fine

and we are literally on a shoe string budget (living on food stamps atm)

oh it is

Totally understand. 🙂

WiFi should be the least of your worries then

yep

and our WiFi isn't bad it's about a 100MBPS down (get usually around 113MBPS) and 10MBPS up (usually get around 11 MBPS up)

Just remember, wired is ALWAYS better than wireless, only in rare/ unusual circumstances is it better

Not bad.

yep I know and after I move I plan to buy a few cheap cat5e cables and run them (probably with some command strips as not to damage the walls) to both of our computers and if I can get a 3 bedroom then I'll just run them into our office space

/guest bedroom

sounds like a good plan.

and then I'll buy a proper docking station that can do everything I need the only thing is I think this computer has thunderbolt 3 as it's from 2018

if it’s a newer Mac it definitely has TB3

Any Mac with USB C also has thunderbolt iirc

wait a minute I can buy us both a docking station

1 normal USB (as my friends laptop doesn't have any thunderbolt ports)

and

1 TB3 docking station

and I just realized so we have a old computer that is acting as our next cloud instance and that can be hooked into ethernet at all times

as to make sure it never goes offline unless the router dies

oh and what speed would you recommend for 2 simultaneous twitch streams as I am a penny pincher lol

anything even 100mbps should be fine with fiber as long as you wire them

100megabit would be my lowest recommendation. Ping and everything will stay the same no matter the plan. Only thing that changes is your speeds

okay

but I thought for streaming upload was more important then download

It is. But you said it’s fiber right?

Fiber should be symmetric.

if your doing twitch or youtube and ya it will be fiber and alright (the lowest plan I can get with Century link is 200MBPS with fiber)

so I'll go with that

yep sounds good

only time I’d recommend the highest plan is with cable or dsl internet

ah alright

thanks for your help Blueion

I do appreciate it

How do I check the ARP stuff from Windows?

Found it.

Looks fine from this machine. The mac addresses match.

No

Its always been like this

To use Azure AD, you never needed a subscription

turns out we are going to be doing after I get some reviews Ziply Fiber as according to the Century link website the most we can get here is 6MBPS which can barely run a stream now days

just hope our ethernet jack is good enough lol (it should be but this place feels like they cut so many corners it's not funny

Any working connection will be faster, Ethernet starts at 10.

basically any fiber will be waaay faster than DSL

that would help a lot

I'll just get a long ethernet cable and run it to the living room eero from upstairs or might call the guy to come back and move the eero from living room to upstaris

neat, good to know. i was thinking about self hosting keycloak or something but AAD is less headache

They say you need to pay for something no?

no

Azure AD is free lmao

you just have a modest 50K object service limit without a verified domain

I'll try it later

They way it's worded is kinda weird

Not sure who might be able to help, or if there is anyway to fix my issue. I get 1000 down, 40 up yet downloading a game from Epic Games downloads at most 500kbps and Steam never makes it above 5mbps. I'm connected via ethernet as well so don't know where the bottleneck might be. When I do a speedtest I get 800mbps on average but downloading games is so slow. Fall Guys took about an hour to download and it's not a large file game.

If anything was using your upstream bandwidth, that will have a negative impact on your downloads

That's what confuses me, I did it after restarting my pc so no other application was running, however in the bedroom where my partner has her setup, she gets far faster downloads than I do, she was able to download Witcher 3 in 5 minutes

Please describe the network situation to me?
How are your PC and your SO PC connected to the router.

Yeah a network description would help, but you already have two setups you can compare and try to track down what is different about your setup that is impacting your downloads

@clear igloo finally labeled my rack

i still need to order longer fs patch cables to match with the other ones i have

the other end for the runs lol

fs bags tho 😩

that's a lotta packaging!!

@clear igloo

I shutdown any ports not being used lmao

Good, best practice 😄

I also do that at clients too lol

if they want to enable more ports, that's change request LMAO

Nice

if I have a coaxial in the wall under my desk and I wanna connect directly, do I need a full router and so on or can I get away with just plugging in a modem and wiring my pc to it directly? and on the topic of finding a modem I've been checking thrift stores but I've only really seen routers which do not have the coax in the back, that's not really a question tho, I just thought that was interesting

nah

you need to sell him ISE

@clear igloo

holy shit VMware download servers are crazy

wot

its still free?

broadcom does not have their claws dug in yet

Yeah

I can download ESXi/vCSA/vSphere stuff with my account

my server stopped being supported by vmware like.... 3 versions ago

i've been using workstation to use VMs on demand instead

6.7.0 runs on my R620 while 7.0.3 runs on my DL360pG8

i have an r710

The R620 could run 7.0.3 if I had a H710

instead of a H310 Mini Mono

also have H700

Do you have an existing modem?

yes, but in the other end of the apartment, I'm moving in with my great aunt for college and if possible I don't wanna mess with the existing setup

give it time
crab only knows he's dead when dropped in hot water
bring water slowly to boil with crab inside and you have good meat

pls hurry

power outage

UPS

battery malfunction!!

lmao

woo

Nice!

Then no you can't without buying additional service

What you can do however is use moca

Add a filter to where cable enters, and then use moca to transport the output from the router/modem back into the coax and to your coax port

so it doesn't matter that there's already internet going to the apartment, I'd have to pay for the particular coax want to use to get service?

I mean I do have access to really long ethernet cords, but I'd kinda like to avoid that option

Most of the time yes in that scenario

Now if it was your OWN house you could use MoCA, but since it's an apartment unless you have a structured media panel you're SOL

I mean I find a cheap modem at a thrift store I'll probably still try it, may as well if I can

but like I said, I see far more routers than modems second hand

Yes because second modem = basically new line

probably also cuz of the "return our hardware" part of most contracts for internet

Service is per modem basically

I just have own router and modem/ont is isp

Worst is the combo units

like what my parents have that I need to reboot at least once every month

that doesn't have a reset button for some reason

goal is a year

Friends! Just got my first "real server" and it is pretty old!

Also it looks like it was once property of ubisoft

hmm, I thought the pictures would be nested together

Even if it is old, the network card is gigabit, two working 700w psus, I think I can make it work as firewall/router thing

I am checking the specs, it uses DDR2!! Damn it is old

This probably belongs in the "trash" in the US, but here is Brazil everything is so expensive, it was the best I could get

unfortunately, you will probably be paying a lot for power

it's basically junk at this point

from what I read it's around 300w idle at best

It is still being sold at double what I paid in our "ebay"

But yes, it can draw a lot of power, I think the processor predates turbo boosting, so it is locked to its base clock

But seriously, if I take its PCI express network card, and the couple HDDs that are inside, I have made the money I spent 😅

So I am not too worried

As I am pretty new, bought this one to learn and fail, can I put another processor there, that isnt the exact same as the other one?

Just checked online, that is a NO 😛

you can think of it as the coax in the wall/outside being all "outside" your house - each modem gets provisioned with one public IP address and that's what you're paying for. everything else is sharing that one public IP with a gateway doing NAT (at least for ipv4). if you want a second modem, you'd have to pay for a whole separate second internet plan & it would be a separate network (barring site to site VPN setups which are a whole different beast)

it's not that you have to pay for each coax jack separately - it's just that the modem is effectively the boundary between the public Internet and your home network

^

it gets complicated with moca where you are basically injecting your network on a separate frequency

than dociss, which is the internet "in"

right moca is where you put a filter on the place the ISP's network comes into your house - and then you can use separate moca frequencies as your LAN inside the house

hi guys, im not very skilled in the networking area but I need some advice on VPN tunnneling to set-up a coop game session with my friends, does anyone have any basic guides on setting up something like this?

Update on my networking woes.

I have rebooted every piece of networking equipment with a power cycle and the server still can't be reached when my laptop is sleeping.

What in the world would cause this?

Any ideas @pseudo blade?

90% of that stuff is re-usable in a modern system! You should def do a modern re-work using the same case and as many of the same components as you can.

Some more information from debugging this.

The machines on the same physical switch can talk to the server when the laptop is sleeping but not the WAN, while the other devices on different switches can not talk to the server but can talk to WAN.

Any good videos on that friend? That bay thing where I can shove HDs is SO AWESOME, is like having a NAS 😄

Just replace the motherboard and use a modern one. PSU and all the rest should be re-usable, apart from ram, CPU, And MoBo, since your replacing it.

I think it's E-ATX FF.

I will look into it 😄 Thanks!

Just make sure to measure your motherboard to see the exact size and then get a chart of motherboard sizes to see what FF it is.

Just checked the insides, the RAID controller is a daughter board instead of a PCI card 😢

Im pretty sure there are PCI to PCI-E adapters.

it is as fully custom board

custom conector and everything, the conector is on the underside of the daughterboard

I would need to buy a HP Raid PCI controller

tomorrow my power metter is arriving, if this sucks too much energy I will sell its parts, its 700w power supplies are pretty valuable

Sure. You could keep the case and turn it into a custom server though!

Yes! I will try to use every bit of it

1 - Check the power usage
2 - Check if I can make the fans spin a little quieter by setting the target temp higher

3 - see how this goes 😅

Mhm!

Every part that I google is mad expensive, this is supposed to be literal trash but people try to milk a buck out of then knowing it is probably some big company looking for spare parts

this is just going to be for experiments, it is 100x cheaper to just put a PC in a 2u/3u/4u box 😛

Oh

my

god.

My laptop dock DOSes my network when my laptop goes to sleep.

That explains all of the symptoms.

Can managed switches throttle stuff like this and report it?

Yeah but free PC case.

And HDD's/SATA SSD'S.

How did you even find that OUT?!?

lmao your dock can send multiple fake packets attack or sum

how did that dock even dos'ed your network

Mabye drivers

Suggest me some WiFi routers.

What kind of area do you need to cover, and at what speed?

Have a budget?

Any features needed?

Probably a packet capture

Thing is servers are pretty custom

Interface counters is a very easy way to do it

I noticed the lights on a switch were going bonkers.

I am trying to make a mc server and I want to make it secure via the firewall how would I do that?

@clear igloo Edgecast CDN is so shitty

Any recommendations on what to use to setup an access point to increase the wifi coverage across the house? I am looking for something that meshes in with the current network and does not need to be separately connected to

BRUH why are domains so confusing

What so confusing about them?

seeting them up on a pc and all the connection and all that

You making a virtual lab?

no its a pc its windows server r2

2008 r2

In windows server it's overcomplicated for a newbie

If you are talking about ad

Did you set up pdc role?

Really all you can do it only allow the mc port

we pay for 300mbit internet, often get 350-370 and have download speeds that exceed that in steam and stuff

anyone know what is happening here?

Just isp rate limiting being generous I guess

could be

but you would think our modem/router that we got from isp would hard limit that?

and that has only started recently going above our paid speeds

No

From what I understand it's on isp's routers, not at the customer endpoint

And it's usually not just a simple hard limit

i see

well lucky me then

it's a combination - your modem gets a bootfile from the CMTS that tells it how to rate limit

but usually it's also happening in other places

also yeah typically we provision like 20% over so that you're sure to get the speed you're paying for, even if there's some packet loss or reduction in speed

i see, thanks for the explanation

Any advice for a decent .ca registrar?

i found an old router in my basement and i was wondering if i could plug it into my ethernet cable upstairs in my room (running from a router we already have plugged into our modem) but it has 2 coax cable spots and i wanna know if i can use it without them plugged in

unfortunately it depends - if it's something from your ISP it may not have the option to set it up in AP mode and turn off NAT or DHCP. if that's the case, plugging it in will mess up your network

if you do have the option to configure it as an AP, it should work fine without the coax plugged in, just ignoring the modem functionality

unfortunately if it's old, it might not be worth using - depending on age it could make things worse

im not sure what an ap is, its just other than my gaming pc all my computers are in my room and i wanna be able to run my nas, mc server, and xbox at the same time

ah then you just want a switch

an AP is essentially a "wifi broadcaster"

none of my pcs up there have wifi they all use ethernet

if you already have ethernet then yeah you just want a switch they're like $20

example https://www.amazon.com/Ethernet-Splitter-Optimization-Unmanaged-TL-SG108/dp/B00A121WN6

this is a perfectly good one (in fact i have several) but there's nothing special about the brand or model. just get any gigabit ethernet switch (5 or 8 ports depending on how many other things you want to plug in)

from what you said 5 is technically enough but the price difference is so small that its probably better to have a few spare ports

alright

thanks

no prob!

gandi, porkbun?

never heard of em, thanks!
Anything stick out about either?

Porkbun does not do .ca :/

att is upgrading us to XGSPON / multi gig I think | update: just appears to be installing new service 😞

Then again you can just use like

a Super small ff PSU and like

A threadripper CPU and mobo

Or whatever

he's talking about existing rackmount servers

i.e. they are not compatible with standard PSUs and mobos and you can't really use the parts in standard PCs

Would port forwarding do that

What Andrew said, yeah you can use whatever for a server. However hardware like dell poweredges are pretty custom and not standard

Can really put in any old atx motherboard without adapters and such

And some functionally won't work, such as the front little display

Yes

But a basic port firewall won't protect against any exploits within Minecraft itself

See log4j

That wasn't a MC exploit.

Does anyone know of a decent guide for setting up wireguard on my server for Android and Linux clients.?

Correction: exploit in mc

Doesnt wireguard give a qr code you can just scan on android

That's what I did

yes

Exploit in a library that Minecraft used. It was a really stupid one too. .-.

MC itself is actually fairly resilient to attacks, I've been modding it for years.

Interesting, I didn't know it was so well integrated into Android.

I don't see anything for WG.

Use the app

That's not wg

That's IPsec

WG is a VPN and this is the "add a VPN" dialogue.

Still.

WireGuard isn't in the OS

Yes, but it's not supported by android natively

https://apps.apple.com/us/app/wireguard/id1441195209?ls=1
https://play.google.com/store/apps/details?id=com.wireguard.android

I wonder if there's kernel support. How do you check that?

WireGuard is in the Android Linux kernel but its not accessible to the user

The WireGuard app on Android does not use the kernel module

Those two things are mutually exclusive.

If it's an enabled kernel module it's accessible.

The WG kernel module requires root, which Android does not allow the user to access.

Mine does.

Then why did you ask ¯_(ツ)_/¯

Because I haven't done WG stuff and I assumed someone might know of a guide, sorry I asked.

Use the app, it's the easiest way

idk, if you knew there was kernel support it didn't seem logical to ask if there's kernel support.

Blob is such a networking nerd

@peak cloak @meager ginkgo I'm finally setting up redundant DNS

finally lmao

Actually recommend me some brands. I'll look into the models according to my needs.
The area to cover is couple of rooms. The speed isn't much to mention. Will upgrade a bit in the future. Budget is under 150$. Mid range or below routers. No features needed but wouldn't mind any.

Question, we seem to have router issues here at home, we have to regularly reset it, running a r8000, but I'm thinking we just might not have a router capable of handing our traffic. There can EASILY be 6 active wired connections, and 6-10 wireless. We regularly pin 300mbps service. (checking 3 peoples usage (3 wired, 2 wireless) are at nearly a tb/month. Any sugestions/advice?

You on the latest firmware on it? less than 20 connections isn't all that much honestly.

yeah a higher end consumer combo router should be able to handle that kind of traffic

could be a firmware issue, or something thermal - where is it located?

Thats what I've always figured, but I have always had issues with routers. I can't update the firmware, as there is a permemant dns issue past the one I'm using that's basically denied by netgear. Only thing I can think of is that this router might just be crap.

Basement, center of the house, half way up the wall. I ran all my own wire, crossed power at 90, avoided it where I could, disconnected unused runs at the switch. Removed the ISP router/modem from the loop so this one runs right off the oni. We are currently thinking of just replacing yet another router.

yeah that doesn't sound like a hardware problem then? maybe it's just crap, or maybe the firmware is bad

you could try openwrt or something? if it's supported

looks like it's supported but with caveats about broadcom wifi support? https://openwrt.org/toh/netgear/r8000

@clear igloo i hate how stuff handles 2 dns servers

poorly in most cases 🙂

dns1 vs 2

Yup

most clients don’t even use dns2 unless dns1 doesn’t respond

What do the specs say should happen?

Round robin?

i think officially it's supposed to be dns2 is a fallback for clients? iirc

Yah, I think it's somewhat down to the OS implementation for a lot of things rather than a spec in this case also

Yeah, ik it varies a lot.

What should I do to get started making my home network more like a commercial network

Wire CAT6/6A in your home

change your network to a class A network, divide things up in different VLANs, have multiple WiFi SSIDs for various device groups, use something like RADAR for authentication on your network, buy commercial grade networking equipment (not necessarily in this order)

classless 😉

buy an actual /8 forget residential ISPs

also you need at least a juniper mx2020 for your home network

FoMoCo you don't need that /8, give it to me

or DoD, you don't need that many /8s

Xerox used to have 9.0.0.0/8 but gave it up

who's gonna be the first to pull off a classic heist movie but steal a /8

HP used to have 15.0.0.0/8

AT&T, Apple, FoMoCo, Cogent, USPS, Comcast, Prudential have /8s

DoD has 14 /8s

i think we only have one /8 but a couple of /12s

oh yeah you already said that lmao

I have a /16

the higher ups want to sell half of it and dont even have ipv6 working

You mean RADIUS?

oh yeah, my bad!

😛

in my defense, I've come across the option and briefly looked at it - pointless for a home network, at least my home network 😂

Ok, im moving into a place and I will be a bit far from the Modem and wifi, so i thought of using some poweline adapters, BUT. Im just curious does it still work if the internet and the room im in are on separate circuts?

yeah, it should, although it's optimal on the same circuit - expect some latency and slower connection

@peak cloak Have you moved in yet lol

and are you still taking a router

No

In 8 days

dang, mine's in 4, Thursday

Yes

No ap for now

I've decided to not

I might as well, aren't using it

my friend got lucky

He got a room with an AP in it

imagine not having radius

Pointless for me too

Just a pita I don't want to maintain

idk why I would bother ngl

but also I haven't even bothered separating stuff to separate VLANs, so there is that 😂

I do have vlans

Cameras

Wan servers

Main lan
Guest

@peak cloak I wonder 👀

dual "WAN" router, tunnel back to home

Combine two student's internet bandwidth allowance into one network

for 200/200 instead of 100/100

I can get at least 300/300 to and from my uni and home

you guys are both moving into college dorms for the first time right? @peak cloak @rocky badge good luck

Just make sure you get a good set. Not the cheapo sets you often see under $80

they're probably fine for like... sub 300 mbps

but yeah definitely get the nicest set you can afford

The cheap ones I’ve seen are like 100mbps Ethernet ports and only pull around 25mbps on that port lol

they should work on different circuits but you might have to try multiple spots

I’ve seen power line pull 300+mbps though on nicer adapters

oh really? i guess i haven't seen the really really cheap ones my bad

yeah I usually don’t recommend powerline if you can avoid it though

i had powerline for a while

putting a router in wifi to ethernet bridging mode was faster

then i finally ran cat6 in the house

@meager ginkgo @sudden kayak The dorms have fucky networking lol

it's so interesting

you're on a /26

lmao

Each student is on their own /26

wat

you have your own PSK because the APs are doing PPSK

that is so weird lol

Apogee calls it Personal Area Network

its basically a VLAN

https://www.apogee.us/

https://www.apogee.us/residential-networks/

They are using Ruckus APs

The university still owns the IP ranges used by Apogee (64.189.140.0/23)

but they have a PTR of Apogee's domain

In the older dorms at least each room gets it's own public

i fucking wish 😩

Firewall still

All of Apogee is NAT

and the uni's main wifi network NATs too

But they are blocking multicast and arp and shit between clients

that is such a weird setup. i feel like it would be significantly easier to just operate like a regular residential ISP with each building or floor getting its own LAN with some kind of client isolation

@peak cloak this is what I love though

Uni -> Home

that's not bad at all

It's not managed by the uni at all

oh yeah i mean like - it would be easier for the uni to just do it themselves

Apogee is managing it all so I guess as far as the uni is concerned, they don't care

The uni used to provide resident network

The wifi is shared and you can't have your own ap technically

but ITS got tired of supporting it

right

i think my school did something similar but i got out of the dorms asap so it was several years ago

dorms are cheaper than apartments/etc around the area

actually this sounds familiar enough that it was probably also apogee, or someone doing something very similar

Apogee is like the main one yeah

oh weird. i wanted to get out of the dorms asap precisely because they were like double the cost of the apartments in the immediate surrounding area

The cost of apartments in the area went up a shit ton

or like the same cost as a much nicer apartment in a nicer part of town

uni housing didn't go up at all

yeah i guess they already own all the buildings and just operate the dorms as a service to students

MyResNet Start Here captures MAC address and gets SSO iirc

Then you connect to MyResNet-5G/2G

i think some schools (mine included) are actually primarily real estate investment organizations with just a little education on the side

😂

Housing at mine goes from 3000 to 6000 a semester depending on the hall and room

$3k???

Yes

that sounds convoluted but I'm sure it's the best solution given the multitudes of non tech savvy students moving in all at once on the same day

to $6k????

Yeah

It's like 5,400

They have a hand out explaining how to join net

For a private room

oh yeah private rooms are expensive

oh double rate

Cheap

And I got one of the nicer dorms

i ended up paying like $1100/month if you average it out over the time you actually stay there during a regular semester

It's like 4000 for a newer double

Apartments in the area are like 1000ish a month

that was for 4 people in a suite with our own bathroom but shared two person bedrooms

i got a solo studio apartment in a nicer part of town for $100 less

But you need to stay on campus till 21 apparently

ahhhh that's the racket

I'm helping with my uni's esports team lol

oof, i'm not required to live on campus

but its just easier and cheaper

they have a shit ton of network drops in the room lol

that's how they get you lol... but if it's actually cheaper why not

Yeah

Also like the required meal plan

Look at all of those network drops

my bf's little brother is also starting college in the fall and he has a similar requirement. kinda turns it into a racket even if the actual tuition is a decent deal

24 in that pic alone

amazing

i wouldn't be surprised if that room takes up a whole 48 port or more

i wonder if they actually knew it would be a network heavy room when they designed the building

They did

even if they couldn't anticipate esports in particular

It was in the redesign of the center

This entire building was renovated in 2020

ohhh yeah that makes sense then, easy to fix

Its packed full of tech

WiFi 6 APs, drops everywhere, TVs with student accessible HDMI/AirPlay, plenty of power, etc

great I'm moving in

bruh the wifi is so good too

200-300Mbps when packed

damn

the whole place is littered in APs

One room alone has 10 APs

Surely the TX power is turned down though

What is the first thing I should do to make my home more like a commercial network

As I want to get into network architecture

And haven't the slightest clue where to start

And my whole home is wired

I'd start with a server. Doesn't have to be much, an old PC or Pi will do. Put a router in so you can isolate/secure it from your home network and give it a dedicated subnet. If you have Windows Pro licenses, set up Samba and AD on your "server".

Preferably set up a hypervisor on the "server"

This is too low level for me and I have no experience with androids NFC. I stumbled upon this while searching for this 'NFCC message' being somehow possible over socket connections, since it said something about these messages being layer 4 in the stack. But then I saw this: https://android.googlesource.com/platform/system/nfc/+/android-8.1.0_r18/halimpl/pn54x/hal/phNxpNciHal.c#2294

All I know is it's to do maybe with firmware updates I think over NFC? Then the line number I linked is a function called phNxpNciHal_china_tianjin_rf_setting

What are you trying to do?

This code also has methods to set clock, turn display and device on/off and write to ROM. Regardless, NXPLOG_NCIHAL_E("GET_CONFIG_RSP is FAILED for CHINA TIANJIN"); lol

If you're talking to me, I'm trying to find a way to proof of concept a CVE that affects android 10,11,12 at the very least. It's an unchecked write and has potential to execute code remotely apparently

You're probably better off in #development (or waiting until you actually find solid evidence of a vulnerability and then responsibly disclose it rather than posting here)

But there's no practical known exploit yet. It took me to this file https://android.googlesource.com/platform/system/nfc/+/master/src/nfc/tags/ce_t4t.cc

Which I have no clue about what's happening there, but it's nfc-related and a quick search said its some sort of networked 'objects' being sent

Nah I'm not going to bother asking and dev questions on this. The target was going to be my phone because it's definitely vulnerable. Minimally over network like my laptop opening socket connection to whichever port listens for this stuff. If it at all exists and is open.

If there's something listening on all androids in some nfc service for these nfc messages on tcp/ip, that would be kinda dumb. Means you can basically 'tap' over network without actually tapping

Oh derp. It's AIDs which are hardware embedded sometimes. The protocol is lower than network or on the same level max.

Mentions of sending frames somehow but I don't see anything for MACs. Just AIDS and memcpy

Hey guys, I'm looking for some help. I currently have 1100Mbps (down) on my internet, but I am still using the modem/router from my provider, they don't provide any customisation to the router really at all. So I want to get a new one that can allow me to change setting easier, prioritize certain devices manually, add a vpn, and such. Do you have any suggestions my budget is around £4-500 ($483-604) I only use Ethernet mostly.

Internet works completely fine until i open a game with a medium amount of internet requirements. I have 500~ megabytes of download speed and its only MY pc that disconnects while a game is open.
This is not game-specific. if it was, this problem would've been solved long ago.
Video is an example of scrap mechanic and chrome.
this issue has plagued me for so long and my friend told me to get help here
i feel like i've tried everything in my knowledge to fix this but literally nothing changes.
I know its router-specific, because this issue doest happen at my dad's house.
(and yes i have tried the blatantly obvious router restart numerous times)
If you want some more evidence just ask

best troubleshooting would be a packet capture

to see what is actually happening

Do you guys know of a small tool (for windows) to change adapter mac address and actually restart the adapter ?
I found a batch script called ChMac but it seems to fail when it tries to restart the adapter

did you run it as admin?

I did

it makes use of devcon and it doesn't seem to be doin much

how would i do that?

what you can is install this program called wireshark and record when you try to access a website

save it and you can dm it to me

kk

kk

jaja

Hey network enthusiasts! My company, a small NYC-based video post production facility, is looking for a sysadmin/network engineer/all-around computer person and I was wondering if anyone might have some advice on where a good place to post a job opportunity like this would be. Our needs are a little unconventional due to our size and due to our video post production focus - we've tried the mainstream channels like LinkedIn and Indeed with mixed results. We are really hoping to find someone enthusiastic about tech and would be excited about what we are doing.

im in F500 networking and we have the same issues. It takes a very long time to find/hire in this market. You might have faster results using 3rd party recruiters. Probably going to be expensive though. At least if the person is bad its easier to end that relationship and you can take bigger risks on people who are on the fence skill wise

Appreciate that insight! Thank you!

I also exclusively find jobs using linkedin. I'm not sure about others. Either I found it and applied or a recruiter reached out cold

Last time I tried other sites I got calls about selling insurance

That’s also super helpful, really really appreciate it.

Oooooof

Any quick firewall alternatives. Was looking at picking up a couple of netgate hardware platforms but out of stock in all but the small sizes.

Fortigate?

was trying to avoid expensive licensing as i have no doubt i will forget to renew in a few years. but it does seem the next most likely.

could use pfsense though, but it sounds like you're more after the hardware than the software?

Yeah i really wanted to try pfsense hardwre platform

I haeva pfsense forewa;; running in the network already for local stuff but was after a hardware platform if i could

you can also repurpose an old PC, assuming you have network cards in it supporting it

ahh, I see

is it gonna be any significant difference compared to an ok computer with a good network card?

Only in the amount of effort required for the setup.

ngl I would never deploy pfSense in a business

Never really liked pfsense

I'd buy the netgate boxes for the lab. I like pfsense on random hardware for quick projects that i can rip back down again. Never used them outside of an engineering environment.

fair yeah

lab its probably fine but prod i'd never

Looks like im going down the fortigate route though as netgate don't have much stock. I've never used them before.

:P I am using a fortigate at home

you like? Most of my experaince is either with big cooperate stuff of opensource.. never much in the middle.

Yeah

cool, will grab one to learn on and one to install. 60F model

how much do you really benefit with a enterprise grade firewall solution at home?

let's say in comparison to a Dream Machine Pro's built in stuff

i had a udmp

replaced it with a fortigate 40f

the fortigate has better firewall capabilities, vpn, and traffic inspection

not to mention reliability

my UDMP has been pretty solid, but I guess we're still talking in comparison to

I'd say that depends on what you want it to do lol

mine would constantly drop packets

ah, haven't really checked packet loss, but haven't really noticed anything off either

I was planning to do some more with my home network, like separate VLANs for starters

Default deny > default allow firewall

(the udmp is default allow between lans which is annoying)

I think the UI is annoying overall with configuring VLANs in the first place

fortigate firewall config UI is way nicer

dang, my past month traffic

UDMP/UniFi

this looks so much nicer to work with from this screenshot, but it's probably a user "error" on my part, or lack of effort 😛

Aye, don't let me catch you slippin your public IP out. I may break your router lol.

none of those include the public IP?

I know

They're LAN IPs

Fortigate just has more config options too

I have never found a vlan GUI that works the same way my mind works vlans.

full send! my IP is 127.0.0.1

My IP is 127.0.0.1-

Loopback IP

lol

lol