#networking

Still

but consistency of cli/gui isnt there at all

Lol what they sell IP phones

haha they sell label printers

They look suspiciously like fanvil phones

they sell ip cameras too
might buy a couple

May as well just go straight to china

what supplier tho?

I quite like Dahua atm

their web ui makes my head hurt

Verkada

You don't have to use their NVR

I doubt the FS web ui would be any better

thats ubiquiti "feature"

i might go with tplink vigi

VIGI C400HP-2.8
one costs 35e

On-prem dedicated pbx in 2024, interesting choice

I've spent 2k on an AP before

this is okay price wise

and like $8k on the wireless controller for said aps

enterprise is expensive asf

Hey, I have a weird question -- I just ran a LAN event and now I've got like 150 cables that are largely tangled together. I don't want to spend 20 hours manually coiling them back up -- do y'all know of any machines or tools I could buy to coil them automatically (or at least more easily)?

https://www.schleuniger.com/en/products/peripherals/cable-coiler/cablecoiler-1450/

Likely costs thousands of dollars though so... coiling by hand might be your ticket here.

If they were realllly long cables this might be helpful

but this is really intended for use with other machines that cut and strip wire or

spit out pipe

https://www.schleuniger.com/en/products/crimp/crimping/ct-15/ This would save my hands

man i really cant seem to understand why my performance from a eero pro 6e to be so AWFUL.

Wifi and Wired its just so bad

at the main router or is this through mesh

its just a single pro 6e as my main router

no mesh

goes from nokia fiber ont to eero pro6e

do USB-A to PoE exist? trying to find but all i can see is USB-C

i need it for a really dumb work project

you mean poe to usb a?

you want to recieve power and not send power?

hey is there anything i can do with an ip and mac address to find out information about a device connected to my network ?

Look up mac to see device info

can i kick an ip out of my network /

? ?

unplug it or change your wifi password

usually, yes

though youd actually be kicking the mac adress of the device, not the ip adress

^ the IP is "the network's"

I have been seeing this for a long time and planning to buy 1 to try out 10g. Do all rj45 to sfp+ adapters (huawei, cisco, and whatever the brand is) work the same?

my switch has 2 10g sfp+ ports, would be nice if my main and backup server have a 10g nic for faster transfer speed

is it?

line-rate?

Mostly but they get really hot and you would want to cool them
There are older ones that only work up to 30m and newer ones that do full 100 meters

30m is more than enough for me

If your pc is close to the switch i would recommend using sfp+ card in your pc and dac in between

Or transcievers and fiber

my plan is to use the rj45 10g card, and then connect it to the switch with an sfp+ module

Yes.

@karmic marten This is a 1100AHx4 has 2x full IPv4/6 feeds - The ccr2004 is much more capable than the 1100AHx4

Better to get an SFP+ card.

tbh I have no idea what's best for me if you let me choose between sfp+ and rj45 10g cards

SFP+ DAC is way better than 8p8c 10gig

ouh? enligthen me

And a CCR2004 peered with dual route reflectors

I mean, if you have 8p8c working, who cares, but 8p8c SFP+ modules cost as much as an SFP+ card.

So why spend money on shit that's worse.

Hotter and unnecessary.

8p8c tends to be hotter?

well i just noticed that there is an active cooler on top of the card

lol

It isn't the end of the world though

let me just confirm my "myth" about 10g stuff. Some sfp+ modules are not compatible with some other brand of sfp+ cards. Does that apply to all the DAC cables?

Only really happens with enterprise switches

Yes, but also no 😄

Most likely you'll be fine.

also for example my mikrotik router doesn't "support" DAC SFP+, but on a short run it works fine.

But if you had a longer run or a different device on the other end maybe it would have problems

essentially i want to have a webcam but like 30m away from the PC lmao, the usb spec wouldnt allow for this so i thought can i do it over ethernet, however the issue is the webcam end cannot be powered

You can absolutely buy off the shelf USB extenders that use networking cable.

You could also use HDMI out of a canera

You could also get a USB optical extension cable

You could also use a phone and wifi to do it.

i think this could be a good one

You could also do it with a Poe camera

since intel is one of the most compatible brand for linux

Yep, perfect.

darn it, I just remembered that my server motherboard has only 1 x16 pcie lane

sufficient enough to also power the webcam?

They require power at both ends I believe?

yeah i cant have power delivered to the webcam end is the issue

Why not?

https://en.wikipedia.org/wiki/XY_problem

because it will be 10m off the ground on a forklift

Well that changes things 😆

Soooo, why not just use a Poe camera?

They are literally built to do exactly what you want

Then you can stream it via obs and expose it as a virtual webcam.

couldnt find one that is able to be read by opencv, in an efficient enough way to have ~20 of them running at once

....

i know this sounds like im a madman

Now you're changing the fucking requirements

Jesus Christ

Stop all the fucking about. What are you trying to do?

Make a shitty version of frigate?

i wanna scan ~20 QR codes at once along a warehouse shelf XD

Aisle*

Soooo... Why a webcam? Why not have the edge compute with the camera(s)

Also why 20 cameras? You shouldn't need 20 cams to scan 20 QR codes

the idea is that you drive a forklift with a mast on it, the mast has cameras on it that scan QR codes on the shelves. the logic behind the 20 cameras is so you only need to do 1 pass

You could very easily process 20 Poe cams into opencv

I mean, that's more or less what frigate does.

looking into cheap RTSP PoE cameras now 🥲

But TF and yolo

It'd be cheaper than using USB webcams lol

Cheap rtsp cameras can be sub $50 aud

webcams be like £10 tho

For bottom tier garbage, sure

But you can't power it, and it looks like crap

And they would fail constantly

That too

$50aud and £10 may as well be the same number

Also 10 GBP for the camera..... The extender is going to cost more than the fucking Poe cam!

I mean, I like your style of trying to hack cheap shit into something cool though.

As a rule, cost effective>>>>> cheap.

rough pricing of the PoE route so far is £1619 excl VAT

if you were curious

if the USB route were to work that would be £1331

the price to pay for a working solution 😔

lol

jesus, my friend's ccr2004 was pulling only 2-5G with not even full bgp

At our warehouses this is done by long range rfid scanners and rfid stickers on pallets

https://turckvilant.com/

https://store.ui.com/us/en/category/switching-aggregation/products/ecs-aggregation ay speak of devil ubiqiti 100 gb switch

https://store.ui.com/us/en/category/all-switching/products/ecs-48-poe dis too

https://www.fs.com/products/154827.html?attribute=37260&id=3425578 wonder if this would work for connecting to ubiquitis 100gb qsfp28 ports for the 100gb mellanox nic

Or if i need their cable they sell

Anyone else just using OpenWRT on a simple consumer router?

If you have a specific OpenWRT question just ask it

Just wondering, I'm seeing a load of posts about super enterprise hardware. What about us simple folk with little home routers and OpenWRT

It's a perfectly viable option, particularly if you already have a router that's supported

I went OpenWRT because my Asus Router stopped getting updates

Hey guys I have a question, I currently have a Wi-Fi 5 GHz card in my PCIe slot of my computer and I was wondering if I upgraded to Wi-Fi 6E if it will get bottlenecked by my motherboard that’s only PCIe GEN 3.0

Nah, gen 3 has a 3.938 GB/s throughput on a x4 slot.

usually with routers the big issue is HW acceleration for higher speed WAN. Usually the CPUs in these can handle certain speeds by brute force, but once you want to go above that limit you will need HW offload, which alternative router OS might not have. For example i remember how Asuswrt-Merlin and official ASUS FW had HW offload, while Advanced Tomato had no suport for it. Thus the RT-N66U could do ~180-200Mbps WAN to LAN routing on it's own via CPU power, but above that one needed HW offload

wtf?

Hi, I'm using a VPN that can do multi-bonding - redundancy for multiple networks

The problem is some websites don't allow VPN traffic or they ask puzzles all the time

dedicated servers of this VPN cost $140 per month, which isn't worth it

I was planning to do double VPN, first bonding to this service, then connecting to a dedicated VPS as VPN so it won't be blocked by any websites.

I Installed Open VPN on a Linux server, with a github app and it was working for 10 days, but then, after a while it seems services find my IP behind that VPN and the server IP I've got also gets banned.

What would you suggest?

in short:

Want to make a Dedicated VPN server with Kill switch behind it and IP / DNS Leak Protection and run it on Linux server / use it on Ubuntu system.

UHHHHHMMMMMMMMMMMM

idk what to do woth thoses speeds

Host some shit

Use your desktop remotely

host what per exemple

nextcloud, jellyfin, immich

Anything from here
https://github.com/awesome-selfhosted/awesome-selfhosted

Anyone knows what is going with the response time from PC to a WiFi device?

Reply from 192.168.1.41: bytes=32 time=30ms TTL=255
Reply from 192.168.1.41: bytes=32 time=38ms TTL=255
Reply from 192.168.1.41: bytes=32 time=48ms TTL=255
Reply from 192.168.1.41: bytes=32 time=59ms TTL=255
Reply from 192.168.1.41: bytes=32 time=66ms TTL=255
Reply from 192.168.1.41: bytes=32 time=82ms TTL=255
Reply from 192.168.1.41: bytes=32 time=88ms TTL=255
Reply from 192.168.1.41: bytes=32 time=88ms TTL=255
Reply from 192.168.1.41: bytes=32 time=101ms TTL=255
Reply from 192.168.1.41: bytes=32 time=95ms TTL=255
Reply from 192.168.1.41: bytes=32 time=105ms TTL=255
Reply from 192.168.1.41: bytes=32 time=109ms TTL=255
Reply from 192.168.1.41: bytes=32 time=108ms TTL=255
Reply from 192.168.1.41: bytes=32 time=119ms TTL=255
Reply from 192.168.1.41: bytes=32 time=24ms TTL=255
Reply from 192.168.1.41: bytes=32 time=31ms TTL=255
Reply from 192.168.1.41: bytes=32 time=33ms TTL=255
Reply from 192.168.1.41: bytes=32 time=44ms TTL=255
Reply from 192.168.1.41: bytes=32 time=44ms TTL=255
Reply from 192.168.1.41: bytes=32 time=45ms TTL=255
Reply from 192.168.1.41: bytes=32 time=52ms TTL=255
Reply from 192.168.1.41: bytes=32 time=66ms TTL=255
Reply from 192.168.1.41: bytes=32 time=73ms TTL=255
Reply from 192.168.1.41: bytes=32 time=74ms TTL=255

I noticed a weird behaviour. Starting from low to high.

PC to PC < 1-2ms / Router to PC < 1ms
WiFi to WiFi 112ms / Router to WiFi < 10ms

PC to WiFi this weird thing.

Here's some harden tips for anyone using android as their network

pkg install -y openssl openssh fail2ban
pkg autoremove
set -o noclobber
pkg install apparmor && aa-enforce /etc/apparmor.d/*
su -c "pm disable $telnet" && su -c "pm disable $bluetooth"

because WiFi

That's kinda poor, but WiFi has to deal with the situation it has and WiFi>WiFi kinda doubles that problem.
Could be that one/both devices are far from the router and have a less reliable connection, have poor quality/old standard WiFi cards, could be using a band with contention (incl. your own) or interference...

Forgot the WiFi to PC is like below 15ms

Very small compared from PC to WiFi.
Don't understand why the PC to WiFi is not the same as WiFi to PC

Something something due to the laws of physics and individual characteristics of every WiFi chipset in every device on this planet, WiFi latency will always fluctuate. https://www.wiisfi.com/

Wow what a website. nice

My house has Cat 5e everywhere. My gigabit network switch says my room should be getting 1 gb/s, and a cable tester shows that all 8 lines are working, so why am I only getting 100mbps?

I haven’t tested the connection between my room and the network switch. I have to figure which of the twenty cables is mine

If this is the only connection you haven't tested, welp, there's your problem.

So many in-wall Ethernet runs either use poor quality / uncertified cables, or piss-poor quality RJ45 keystone / wall jacks that cause the connection to be slower than expected.

They were installed around 18 years ago. It was working fine a month ago. I don’t know when it happened since 100mbps isn’t noticeable unless I am downloading a game

Is wifi 6 supposed to be 9mbps near the modem but I'm in My room which is away from the modem and I'm getting 287mbps

wifi highly depends on the enviroment
high radio noise, thick walls and you can easily reduce wifi performance significantly

Yeah I'm still Trying to peice how I'm getting 28x more speed then I was 4 steps away

Also what is the model of your wifi 6 router/ ap

is your network adapter set to Auto-Negotiate or 1000 Mbps Full Duplex or 100 Mbps?

iwconfig wlan0 | grep -E 'Link Quality|Bit Rate'

Well, depending on the house, there's always the possibility something chewed into it

does anyone have any tips on how to make my internet faster through my computer settings

Internet speed is determined by your contract with your ISP, the specs of your Router, and the means by which you're connected to your network (Wi-Fi or Ethernet)

PC settings have little to do with it

My router and network switch should be okay. A pc in another room is able to get 260mbps (my plan is 250mbps)

It was set to auto, I tried switching it to 1gbps full duplex, but it still only ran at 100mbps

Just test the full line
It is most likely broken somewhere

Ax 1800 orbi

sudo ethtool -s eth0 speed 1000 duplex full autoneg off

try that

https://tenor.com/1IXn.gif

yeah that website is great, should be pinned tbh

1G-baseT with autoneg off?

you know that that config violates the standard? 😄

Your right

sudo ethtool -s eth0 speed 1000 duplex full autoneg on maybe this might be right

Some routers would even go into fault mode if you turn off gbase t autoneg

like mikrotik CCR2004

i use gpt as mine

rofl

but yeah ur right

Technically no

interesting tho

Technically yes

Autoneg is REQUIRED for 1gbaset

The devices “shall support” autoneg, not “shall always use”

you're wrong

No, I’m not

Could it be powersaving causing it?

Yes you're

sudo ethtool -s eth0 wol d to disable powersaving if im correct not 100% sure tho

You're reading wikipedia

I'm reading the official ieee.org pdf file..

https://grouper.ieee.org/groups/802/3/ab/public/nov97/mark1.pdf

I read that for Ss7

That is literally the 802.3 pdf

I do web application exploit development

page 4

“Shall support” means you have to be able to do it, not that you must do it

omg

why do you think they wrote it in a different way at 10 and 100baset ?

What does this one mean? cut -f1 -d: /etc/passwd

chatgpt tells you 😛

bc im pretty sure it let's you do things bc it doesn't require write

😉

Correct

That isn’t the actual spec

That’s just a presentation

send me the actual spec then. from the official ieee.org domain

Give me a second :)

Sure. Take your time

https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9844436

IEEE 802.3

I have this one in print too

hmm

hold on, its loading. looks like it's not on a cdn

its 7000 pages

lol

😦 too many pages

goto page 1405

34.1

also page 1492

I got this on my laptop

lol it wont load on this shitty surface im on. Hopefully it lines up with the book print version

It crashed safari on my iPhone

What's a good network logging script / tool for windows jw I'm forcing myself to use windows 10

i mean like other than windivert

hell no, I'm not reading this, even with search function it would take a million years. I just give up and agree with you. you're right 😂

official spec docs should have TLDR docs

CTRL + F?

yea. with ctrl + F, autoneg is more than 1000 finds

That would leave even more room for misinterpretation

loll

The internet used to be a nice place 😦

jk

lol

shouldn't he do this tho sudo ethtool eth0 | grep -i speed

to check his speeds

Then he could force gigabit with auto negotiation enabled by doing something like sudo ethtool -s eth0 speed 1000 duplex full autoneg on
for an example

1000baseT/Full

or am I wrong about that?

bc shouldn't that put the speeds at 1000Mb/s?

sudo ethtool usage
-s, --set             Set device options
  -a, --show-phy-info   Show PHY information
  -i, --show-device     Show device information
  -d, --show-drv-info   Show driver information
  -p, --identify         Blink LED on device
  -e, --get-eeprom      Get EEPROM
  -r, --reset           Reset device
  -h, --help            Show this help message
  -V, --version         Show version information

just an example

not 100% tho

I could most certainly be wrong but just trying to help is all

sudo ethtool --show-device

you really like ethtool don't ya?

It will show them the firmware version

so they don't brick their router

Device eth0
Driver e1000e
Version 3.8.4-k
Firmware-version 1.6-3
Bus-info 0000:00:1f.6
example

na I just used to usb debug and network debug to write game cheats when I was younger lol

:p

Well thats because 1000BASE-T1 uses a single pair of wires

And its not common

1000BASE-T requires it

Thats the normal

Ah

T1

T

1000BASE-T1 is used in automotive ethernet

If you mess around with car wiring you prob have seen this connector before

Surely the transceivers would be much more expensive than regular 4 pair

Slightly more costly

slightly

but the cable is cheaper

and less complexity

Interesting

Actually depending on your needs it may even be cheaper

so lets just say they average the same

the main loss in SPE (Single Pair Ethernet) is distance

Additionally, you lose POE capabilities (Obviously)

Ok i take that back about the PoE

Also there is "multidrop" kinda mode

where you can dasiy chain devices without a switch

meanwhile aircraft ethernet

what are the speeds

No internet, no switch, no router, no DHCP server, not even a crossover cable, just rawdogging CAT5e

auto mdix from early 2000s says hi 😛

100 mbps

ok

ARINC 664

it's actually pretty cool how it eliminates alot of wire runs in aircraft

especially the long ones like nose to tail

Actually is there any mechanism that prevents the 169.254.x.x addresses from clashing between 2 devices? Or is it just a 1/65536 chance that it happens?

yes

In the automatic address configuration process, network hosts select a random candidate address within the reserved range and use Address Resolution Protocol (ARP) probes to ascertain that the address is not in use on the network. If a reply is received to the ARP probe, it indicates the candidate IP address is already in use; a new random candidate IP address is then created and the process repeated. The process ends when there is no reply to the ARP, indicating the candidate IP address is available.

It will arp

@peak cloak lol, beat me to it

too bad there's like no public diagrams on it, these days we use a lot of fiber

https://www.youtube.com/watch?v=VqlQLF1fIWg

well the same logic was implemented in autoindustry
canbus has simplified lots of things but there are still lots of wires in the harnesses

can anyone help me? i just got a power line ethernet adapter, but my ethernet is significantly slower than my wifi. so i have two wifi connections. 5 ghz, and 2.4ghz, and im not sure what the issue is, because i dont know if its my motherboard because it only says 2.5 ghz, or if the adapter cant do 5g

oh yeah, aircraft wiring harnesses are still pretty complex

Does the powerline adapter have to go over long distances to reach each other? Like opposing sides of the house

Or perhaps in different rooms that are wired to breakers that are not near each other in the breaker panel

i mean im upstairs, but theres nothing really there that could affect anything

but do you think that its the fact that my motherboard only says 2.5 ghz on the ethernet port?

When it comes to the powerline stuff, it has to traverse the power lines in your house. If there is a long distance it has to travel across all your powerlines then it can be slow

2.4GHz/5GHz is for WiFi because thats radio frequencies. Ethernet is just... Ethernet

So it doesnt use wifi

oh

so what do you think the issue is because its dropping from 500 mbs, to 30mbs

Are you using WiFi or Ethernet

Its not very clear what you are using

im using ethernet, and im only getting like 30 mbs, but with wifi i get like 500 mb

Your Powerline adapter, is it plugged into a power strip or into the wall?
How far away is the 2 adapters from each other?

its plugged into the wall, and its just 1 floor above

like exactly 1 floor above

Remember, its about the distance of the wiring in the walls, not how physically close it is. If its on different floors, that means its prob a pretty good distance from each other electrically

Do you know if you have a single breaker panel or 2 breaker panels?

im not really sure about the breaker panels

alright. Well it kinda does make sense its slow considering going up and down floors usually is long electrical pathing.

WiFi is faster because you are physically closer to it and it doesnt have to travel over a bunch power lines with tons of potential interference.

so what do you think i should do?

Use WiFi

so you dont think i could use ethernet and get high speeds?

Not with powerline it seems. You could throw ethernet in the walls

alr thanks

500mbps is pretty much best-case for powerline and if you're on a different floor of the house you'll never replicate it. Stick with the WiFi you have unless you have stability problems, in which case fix those rather than moving to a different technology.

Unless you have coaxial cables in your walls and can do MoCa, as that works a lot better than powerline

MoCA is costly as hell

Can be. So is running ethernet through walls properly

I'd do that but I'm aware most do not have that option

A cheaper solution with no benefits vs not having it is also overpriced

0 value is worth $0

He has WiFi

This is a sign to disable IPv6, right?

That's the most disgusting way to describe it

But also accurate lol

clearly

What kind of registrations though

SIP

Lovely

IPv6 in theory opens up tons of awesome possibilities with VoIP

I don't want to know about them :p

TOOBAD

I want my ENUM DNS before IPv6 honestly

rDNS for Phone numbers, begone PSTN

hey
i'm getting a 403 error when running nextcloud desktop client or connecting froom a mobile app
it works fine on website
can anyone help?

Not sure if this is the right place to ask this or if it belongs in #1027757333117415424, but
I'm looking into buying a NAS (4bay) systhem but i'm not sure yet which one.

• Regarding the requirements: A feature like Synology’s Quick Connect is essential—specifically for remote access to files from other PCs or from my phone, which is very important to me. Besides that i'm prob just gonna use the standard NAS features.

• Building my own NAS sounds interesting, but I have concerns regarding power consumption, heat, time investment, and, most importantly, the software question—how well can TrueNAS or Unraid match up with DNS and other similar features offered by other Brands?

• Security is another important aspect. After some research, I’m not entirely sure if QNAP is the best option, given their multiple incidents over the past few years.

• Overall, I’m torn between these four NAS options, with the main question being whether Synology’s software is worth sacrificing the better hardware:

  • QNAP Turbo Station TS-433-4G - https://geizhals.de/qnap-turbo-station-ts-433-4g-a2749367.html?hloc=at
  • QNAP Turbo Station TS-462-4G - https://geizhals.at/qnap-turbo-station-ts-462-4g-a2924145.html
  • QNAP Turbo Station TS-464-8G - https://geizhals.at/qnap-turbo-station-ts-464-8g-a2872932.html?hloc=at
  • Synology DiskStation DS423 - https://geizhals.de/synology-diskstation-ds423-a2915258.html?hloc=at
    (shipable to Austria)

Out of all that you listed, Id pick 2 and put them in this order:
DS423
TS-433-4G

The 462 and 464 are not great

The DS423 is more robust out of all those QNAP Appliances listed

QNAP's larger offerings (rackmount) is where they shine

Building your own x86 NAS won't be as pretty or efficient as the premade ones but can still be respectable with mild tuning, you'd do that for control. I'd personally do that but idk what your bs tolerance is. Otherwise if Synology sounds like your cup of tea and is in budget why not?

TrueNAS is great.

I run a home server for work on a dell optiplex 7090 and running workloads on 4 of 8 cores it's using 50w or so

At idle it'd use closer to 30w

The only real probem I ever had with these is that I cant seem to build me one that has that nice smol size. Even with SBCs because they always lack something 😦

An embedded NAS might use 10w or less at idle

Yeah I think SBCs are a dead end

Too little IO

Pi NAS sounds neat, in practice it's all the joy of 1x pcie lane aka none

The Helios64 was a great project until it died

It did look neat, it proper died?

Well now im looking again

https://blog.kobol.io/2021/08/25/we-are-pulling-the-plug/

Sad but also it wasn't that flexible anyways

In theory, I could use one of those Rockchip or other boards with the NVMe slot on it (one with proper x4 lanes) and put one of those m.2 SATA Expander boards lol

If you wanted one and only wanted gigabit or so that'd be fine

look how cute it is awhhhhh

I mean I'd rather have a mini-itx/matx x86 board that comes with 4 sata ports standard and room for m.2 SSDs

A/E-key is annoying

Generally the only A/E key slot you'll get on a board was intended for a WiFi card

Ive swapped those out on motherboards (Usually the WiFi card is under the IO Shield) for 4G and 5G Modems and once a small FPGA I was using for compute

You can also do some fun jank shit like this

i did a much worse version of that

mPCIe

poor thing runs from PCI-E 2.0 x1

i mean sure, it still has enough bandwidth for two 2.5 gigabit NICs, but still, feels weird

From what i've been seeing and heard so far from asking around is that besides synology non of the others offer a secure option to acess the NAS from outside of your home network or is there an "easy" option with TrueNAS?

the remote access feature is where the insecurity for both QNAP and Synology solutions come from

This

Yeah the Synology one flat out puts the interface on the internet

Use a VPN you setup.

QNAP had major implications whereas Synology has a good track reckord with it so far no? If you set up a good PW with 2fa you should be fine

Irregardless of the track record, its not advisable

until someone finds a hole, which there was one just last week

A vuln was found days ago

https://pcper.com/2024/11/nasty-flaws-in-networked-storage-patch-synology-and-qnap-asap/

Security is achieved by limiting the attack surface

Strong passwords are only one link in the chain

and while yes, they manufacturers often try to patch these as fast as they can, you still need to pull the fixes and sometimes those can still come late

2FA is not foolproof

It is generally very hard to hack a NAS you can't interact with

and NAS is a very valuable target too, due the natuere of the device

Yea thats where the 3. backup should/would come in

I'm using permanent wireguard tunnels for remote access to stuff

The attack surface is very small

The main reason why i want to have acess to it is for using some files (Obsidian notes app) I've got on my PC to sync that also to my Phone so I've got that always accessable and with me

how does that work do you pay a subscription for that?

You host a Wireguard Server

Then expose that to the internet (Port Forwarding and Firewall Rules on your Router)

I use Wireguard myself.

Free and built into Linux and probably both Synology and QNAP by now

your NAS may come with software to host a VPN off of. Those are usually fine to use.

Yeah IIRC they are built into both now

on my NAS?

you need a publicly accessible IPv4 or IPv6 address (public IPv4 can be an issue these days)

Yes. Or on another Server/Device/Whatever. Your NAS prob has a VPN Server Option, many do

yea I've heard that before would i need one for quick connect as well or no?

a VPN lets you connect to your network over the internet as if you were right there connected at home

You just run the client software on your computer/phone and add configs to reach out to your home IP/dns and port forward the right UDP port

Once configured it's near zero fuss

I forget it's running on my phone

no, they act as a middle man to connect you with the NAS. Technically, your NAS has a connection to quickconnect, and QC and your NAS then communicate whatever you say to the Synology server

Login to your router, find the reported public IP. If it starts with 100.X.X.X your ISP prob uses CG-NAT, this will be an issue. If not, then you prob have a static Public IP (Dynamic public IPs are rare now [changes every now and then])

Synology also exposes a UI to the internet via upnp

Fuck UPNP

yea seen that

The QuickConnect server is actually a STUN/TURN server IIRC

and if direct connection is not possible, then

If i put a firewall inbetween setting up the vpn prob just gonna take a bit longer but then it still should be fine right?

Also thoughts on Recertified HDD's? (https://www.jb-computer.de/search?sSearch=ST12000VN0008) ?

Not all routers correctly report the public IP when under CGNAT. cough Amazon and Google cough

Well I guess they do correctly report the public IP, just in an unhelpful way

Yeah there are some that show the "True Public IP"

you have to use tracert to find out if you are on CG-NAT

Also 100.128.0.0/9 and 100.0.0.0/10 are real world routable

yes I know, I was being very broad

ok just did that my 1. one is a 10.0 2. one is a 178 which seems to be from my ISP

pretty sure i set up the 1. one a bit back when i tried out a firewall xD

you can also have a public IPv4 without port forwarding and not be behing CG-NAT... I hate IPv6 DS-Lite 😄

Oh god fuck that noise

Also sometimes you can get away with forwarding via UPnP under CG-NAT

This is actually really funny shit. It usually means the ISP isnt blocking some things they should be upstream

We’re doing 1:1 CG-NAT atm so you could get away with that if we had UPnP enabled

Honestly idk why some carriers even do this. If you are doing 1:1 then you might as well just do the work to pass it through.

Not worth it when it’s going to be one:many CG-NAT in the near future

I don't love them

The recertified part or the seagate HDD'S?

I meant recertified but tbh Seagate's 12tb offering were rather unreliable, no data for that exact model but its predecessors were poor

Maybe all has been fixed

Maybe not

Either way recertified drives are a gamble too far for me

Anyone a current google fiber subscriber? Looking to buy a home that's serviced by them and I'm wondering how using your own router works. With at&t the only way to bypass their gateway to directly use only your own stuff is to get a 3rd party SFP ONT.

It's really not a great feeling when being this close to running out of public address space

Hurry the fuck up APNIC :(

i've used a couple from ebay and had no issues, no bad sectors or anything on the ones i've received

my laptop has this problem where my ping (on valorant at least) is only stable if i have somethig updating in the background, like when nothing's updating the ping will vary from 30-200ms but when something is updating, the ping will be almost a constant 30ms. anyone have any idea why this is happening?

Sounds like bufferbloat

https://www.youtube.com/watch?v=UICh3ScfNWI

oooh i see, thanks 😊

I have an idea for a product that doesn't seem to exist anywhere. I need a 1u rack mountable, 4 port vga usb kvm switch, that can connect to a local monitor keyboard and mouse, but also have ip web client for remote connect, that allows me to lockout or blackout said monitor keyboard and mouse.

well my battle against vpns is making my hair fall out

on positive note today i found out how can i avoid taking out my phone every time i need an OTP (Keepass has an OTP feature)

Here is a gui I made for iptables

Airdroid control

otherwise an Ss7 attack

or you could rat your own phone

I keylog all of my devices

on a side note I found some malware today attacking my system at *com.google.chrome.sharing.fcm,379932496580

it was hiding in \AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption

\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\ofegadkhaapboilkjacpdojpnfphbgpp also in here

witch i found to be odd

and it was coming from metamask

It was trying to web hook me and log to these 2 folders

majorgeek's unlock tool is the only reason i found it

com.google.chrome.sharing.fcm was where it hooked

https://firebase.google.com/docs/cloud-messaging witch brought me to this

Im thinking it was a websocket push to the chrome browsers alerts

just thought someone should know

here is what it was doing btw

@ornate jungle I just got a notice from one of my carriers that a LATA in Chicago is getting torn down to get rid of the TDM Networks and they are switching it entirely to VoIP

TDM Is finally dying

Took you that long?

What?

I dont control what and when the carriers switch over to newer standards

I as saying "you" as in North Americans

Oh

AT&T is to blame actually.

We have now transitioned to a full IP Voice network following the decommissioning of our TDM SS7 Stack to Telstra and connecting directly to their IMS Network as of late February
From one carrier, and the other one did it early last year

There is this fun little standard called ENUM DNS. Its reverse dns for a phone number. Its in use around the world quite a bit now. If you rDNS lookup an IP you get a hostname. If you rDNS a phone number, you get a SIP URI. So instead of having to check the TDM networks and go through them to get to the owner of the phone number, a tel # can be owned the same way a domain name can.

AT&T has been super heavy on the lobbying against this

Between them and another company, thats 70% of their income. They charge states 7 figures each for secure access to the TDM Networks

The second someone brings up the ENUM DNS Registry, AT&T basically dies.

they spend TONS of money trying to stop us from catching up to the rest of the world

the day our Phone Numbers are the same as our emails, I will rejoice

lol

ENUM was a whole bunch of failed promises here

ENUM is a whole bunch of failed promises everywhere until +1 is on it

A bit like STIR/SHAKEN was in the US

Were getting there.

Only in the past 4 months has all the VoIP carriers been appearing in the registry

And thats because the FCC is taking FOREVER going through the applications

Yikes

They didnt realize there was that many VoIP carrier companies out there

There'd be thousands

their approval process got DDoS'd physically

Thank you ACMA and Comms Alliance for regulating quite well in Australia

the big carriers are also finally stopping with signing on behalf of resellers

and requiring them to get their own cert

that was meant to be transitional anyways

The second STIR/SHAKEN dropped, I was on top of it so I got into the mix with ATIS minutes meetings even

It would actually help if carriers knew what the hell the attestation levels actually meant

Some carriers refuse to use the C Level

We just need to figure out SMS - Voice spam and fraudulent CLI overstampped calls are mostly gone

It's funny because telecom things still largely vary depending on where you're located in NA too. For example, Canada doesn't really use LATA like the US does, even though the field technically exists on our telephony systems.

If only STIR/SHAKEN actually worked reliably across all POTS providers. 😄 It sort of does, but also... I've found it to be dodgy at best.

TDM assumes to be "Legit" which sucks because it aint across international gateway providers

they are implementing new standards for this

but its so far behind

ATIS-1000096 was Released on Jul. 21st 2021

which is OOB PASSporT for TDM

ribbon only got around to consulting for it in Jan of 2023

This is the 2 kind of approaches we got

in order to support "both" on both sides you gotta do a boundry approach

This doesnt actually work even though it seems like it would make sense. You would have to have contract with the other service provider on the other side... which cant be garunteed right now

Canada defines as "LATA 888" but IIRC Canada has "LIR"

https://www.amazon.com/TP-Link-TL-SG1008D-Unmanaged-Gigabit-Network/dp/B001EVGIYG?th=1

do you guys think I could use this for a traffic of like 3 servers????

I have a couple of them kicking around the house, they work just fine

alr

it was one I just had on hand

110% this. Unless we treat all phone calls as guilty before being proven innocent, all a scammer has to do is route their spoofed call display calls through an overseas VOIP provider. (Oversimplification but the idea stands.)

An unmanaged 8 Port gigabit switch is an unmanaged 8 Port gigabit switch. So long as it doesn't overheat (due to defects or where you place it), should handle the load of 8 devices. Maybe not full gigabit for 8 devices all at once - usually need a business grade switch for that, but for home / small business use? Yeah, sure, this should work fine.

That said, I am partial to switched that at least use Metal housing for both the greater durability and improved cooling.

• https://www.amazon.com/Ethernet-Splitter-Optimization-Unmanaged-TL-SG108/dp/B00A121WN6/
• https://www.amazon.com/NETGEAR-8-Port-Gigabit-Ethernet-Unmanaged/dp/B07PFYM5MZ/

ok alr

Today I got 10 spam calls in a row, one after another

on a reseller phone number (US Mobile)

using it as second sim because we have no personal device wifi at work and there is basically no cell service, except for the verizon cells they installed

would it be possible to make a program to block certain content on like youtube over my network

????

cause I wanted to get rid of fox news on my network

pi hole

or just a firewall

do y'all fw my proxmox environment?

It's all encrypted until it reaches your computer so you'd either need to set up Deep Packet Inspection with TLS intercept or you'd need a browser extension.

or mitm proxy

One and the same really

Guys so the 763mbps is right next to the router, 363mbps is 100ft away from the router & in my room, 536mbps is about 5ft away from my new AP.

Is the speed that I’m getting from the AP good or should it be in the 600/700mbps download range?

Btw, the number of devices did not change

But I’m purely using the AP in my room because the WiFi is unstable in my room & sometimes it doesn’t work even after replacing the router

I'ma try me luck here again, I have the following issue:
HyperV machine A can ping HyperV machine B fine.
However HyperV machine A can NOT ping any nested HyperV machines inside HyperV machine B.
HyperV machine B can in fact ping the nested HyperV machines fine and vice versa.
But the nested HyperV machines can not ping HyperV machine A

They all reside in the same network and subnet, no Windows firewall involved.
I reconfigured the vSwitch in any combination, external, internal, private to no avail.

Who's got any ideas what else to check?

Every 5 minutes I have some packet loss

And seems to line up with WAN lease time

which is set to 5 min, is that normal ?

And can it be increased on my side ?

Fore reference, the ping plotted

That or some way to configure the router to send trafic while the it's renewing the lease ?

https://cdn.discordapp.com/attachments/387022787480387605/1210996229761273937/image.png?ex=672cf3a0&is=672ba220&hm=021691e3638743e321afbc7988f05552b0e10eb7df043210e017e822a649b51b&

I was using my ONT directly and it was 10min lease time as seen here, but now had to put back (need to get a FTTH CATV splitter since now I have TV and not just network) their router in bridge mode which is even worse at 5 min (I don't think with ONT was that bad, but I never noticed it before)

Any mobile hotspot won’t show up on my pc, does anyone know a fix

i have a powerline adaptor in my room so i can use ethernet and for years ive only ever used one of the ports but i used the other today since i have two pcs in this room now and my down speed is 20mbps better?

why is this

Guys

So I am planning to run my own private network using my dorm's LAN

Since we have a router made for like 6-7 devices but we have 18 devices at peak

So I was thinking of purchasing a simple wifi router, dual band gigabit as usual

Hijack the room's LAN (is separate from the wifi)

And make my own private AP

It should be viable, right? Right?

A fren does so and he has like gigabit coming through instead of the rest

I'm in proxmox, and I made a linux ethernet bond. Link aggr is enabled on my switch for eno3 and eno4, the gigabit ethernet ports. The node is online in the cluster, but I can no longer get to the web UI. How can I fix this?

They ARE showing up in DHCP, but I can't get to them

okay ignore allat, I just need to find the new IP addresses

This is cool

2000 access points is a hell of a real wifi setup

Hello dos somone know tailscale

hi i am eyeing up to buy a new router and I'm tempted to get the Archer BE550, I'm just not buyig it yet cause I've seen some reviews about it being unstable, anyone here used it and if so how is it?

Decided to hijack the LAN for real this time

hallo I have got a good question but I'm not too sure ask
the question is some motherboards got WiFi but are they actually that good the inbuilt ones or could I just buy a Wi-Fi card and just slam into a PCI slot?? better performance out of a dedicated wifi card or inbuilt wifi card? I have looked around and no one's done research on it mmmm

It doesn't matter, just make sure you have an antenna that can be put on top of your computer and not some screw on ones that can't be moved above the metal box and block wifi and reduce performance

usually it is the same thing, just in a different package - typically motherboard wifi modules are just a M.2 key A/E wifi card in a metal shell with holes for antennas, connected to a vertical M.2 key A/E slot

https://dontasktoask.com/

https://www.eurotech.com/products/dynanet-10g-01/

linus type switch

https://www.eurotech.com/products/dynanet-100g-01/

Ive seen something liket his in use before

The switches were inside a massive vacuum chamber being used for testing something for science-y reasons

There is no way to disperse heat normally

I just bought a LRN Dip service only to find out Telnyx has it for free

huh, I haven't seen that way of typing out an IP address, yet

is that notation universal?

Thats actually not an IP Address

That would be a phone number in dot notation

-x actually takes it and reverses it too

ohhh

so it turns into 1.5.6.6.3.7.2.7.2.e164.arpa

This is returning a NAPTR result

https://x.com/DhravyaShah/status/1854642313840279569

I guess this is first time he is met with the issue of speed of light in fiber cable vs distance

Human discovers how the internet works

The best part is apparently he used to work at Cloudflare

maybe as a frontend developer /s

:p

like yeah, if you want fast response in multiple regions, you need to set up distributed backends, database synchronization, have multiple servers (one per region) etc... But that is not as simple as "deploy single DB server, single backend server, single frontend server on one VPS anda call it a day"

Probably tier one support, also ex for a reason

Lol

Idiots gonna id

Fucking developers

Guys can you explain.In the Diffie-Helman protocol.Are all actions (combing keys and creating them)made by communication facility itself? And what can person do if he knows certain data, during that process? Is data encrypted and can be decrypted only with keys owned by persons,when data reach user?

Installed the router and now my internet is 50% faster than default, sometimes 3x faster.

the TPlink utility says my powerline adapters are transmitting at 208 megabits/sec, but when i run a speedtest on my PC it only shows 40. what could be eating bandwidth?

even steam downloads are capped at 40 megabits. i made sure my ethernet chip is locked at 2.5 gbps duplex, i kinda ran out of ideas.

ah nevermind, i forgot about powerline rate conversion.

Guuuys

isn't the whole point that both sides have their own private keys and the parameters are used to create a public key based on private key + parameters ? Only person with private key can do anything with the data

the picture on wiki is self-explanatory

does anyone have a good ref on how to emplement secure websockets for a video calling application?

Hey, I have been thinking about getting into tech flipping. Buying broken tech online and fixing it for profit. Does anyone know some good tech to flip and where would you buy and sell? I love tech and want to make some money from it. I only have $200 to invest in to some sort of tech then buy the parts for it. I believe I have all of the tools for it. If you have any advice dm me when possible.

Sure. Buy stuff with broken capacitors. Replace the capacitors. Sell the stuff. Profit? Honestly, if it were that easy, everyone would buy broken tech to resell. Your other option is buying pallets of returned items from Amazon or another retailer, then sorting through the pallets for things of value that work. This costs more then $200 though, and you end up with gobs of garbage afterward so...

sudo apt update && sudo apt install -y auditd && sudo systemctl enable auditd && sudo systemctl start auditd && sudo auditctl -w /sbin/insmod -p x -k kernel-modules && sudo auditctl -w /sbin/rmmod -p x -k kernel-modules && sudo auditctl -w /sbin/modprobe -p x -k kernel-modules && sudo auditctl -a always,exit -F arch=b64 -S execve -k syscall-exec && sudo auditctl -a always,exit -F arch=b32 -S execve -k syscall-exec && sudo auditctl -w /etc -p wa -k config-changes && sudo auditctl -w /bin -p wa -k bin-exec && sudo auditctl -w /sbin -p wa -k sbin-exec && sudo auditctl -w /usr -p wa -k usr-changes && sudo auditctl -w /usr/sbin/useradd -p x -k user-modifications && sudo auditctl -w /usr/sbin/userdel -p x -k user-modifications && sudo auditctl -w /usr/sbin/usermod -p x -k user-modifications && sudo auditctl -w /usr/bin/sudo -p x -k sudo-exec && sudo auditctl -w /bin/su -p x -k su-exec && sudo auditctl -w /var/log/boot.log -p wa -k boot-logs && sudo auditctl -w /var/log/shutdown.log -p wa -k shutdown-logs && sudo auditctl -a always,exit -F arch=b64 -S all -k syscalls-all && sudo auditctl -a always,exit -F arch=b32 -S all -k syscalls-all && sudo ausearch -m avc -i && sudo ausearch -k kernel-modules && sudo ausearch -k syscall-exec && sudo ausearch -k config-changes && sudo ausearch -k bin-exec && sudo ausearch -k sbin-exec && sudo ausearch -k usr-changes && sudo ausearch -k user-modifications && sudo ausearch -k sudo-exec && sudo ausearch -k su-exec && sudo ausearch -k boot-logs && sudo ausearch -k shutdown-logs && sudo ausearch -k syscalls-all && sudo systemctl status auditd

There's a oneliner I use to audit debian 12 bookworm

Think I have enough spare APs?

I prefer this picture

Hey that's kinda neat as an explanation, might use it

All Meraki? I assume so based on the switch

Mix of meraki and cisco aironet

Do you have the licenses to those?

Yup, I got lifetime free licenses through a friend ;)

Lucky you

For most they'd be near useless

Havent payed for my meraki hardware for 3 years

I got a bunch of aironet APs

I have some 50 aps from them, 10 switches, and 10 routers (meraki)

Which models?

They make great paperweights.

Sorry, I went paperless years ago

not sure. I took them from a now defunct college

Lol

stuffed them into a box and never looked

or ... 12 boxes

Some used aironet kit can be pretty sick if you don't care for the latest and greatest

By chance…could you get the model numbers

Climbing around ripping them off the walls was fun

You can get the 4800 ap for $25 on eBay and get mGig, dual 4x4 5ghz radios, and a lot of features when running Mobility Express

Those aps went for like 2 grand new 5 years ago

2602I-A-K9
2702I-A-K9

that was the first box on the top

Gotcha

IIRC there is like 4 or 5 models total

These days I mostly run the 9100 series aps (wifi 6) with 4800/3802 mixed in when needed

On a 9800 wireless controller

Yeah that's pretty nice

Especially if you've got newish firmware for it

For WPA3 and whatnot

Can build yourself a whole whole hom enterprise cisco wireless network for under 100

Its knda crazy

If you’re interested in selling some of it let me know what models you have in dms

i broke the plastic cover on top of one of my ap-s to have a look at the antenna setup

lap1142n-e-k9

I have a wall of disassembled aps

That's a whole lotta junk 😆

still usable hardware that I'm saving for an upcoming project

https://cdn.discordapp.com/attachments/472495067097989131/1304989294393561158/GLCmR_hWsAAzjEM.png?ex=6731657d&is=673013fd&hm=ed0a7f612a3e3044eb70f1968005ed174f2c81767cfbdd67c80cc683272f420f&

Hi . Got my fibr connection today . Should it be no disconnection ? like random LOS on modem ?

Was expecting to have random LOS or something since new installed .

Can I get some help regarding an IP camera

I'm trying to set one up and I want to activate it

https://dontasktoask.com/

yeah exactly

I mean that they create No-name key , combing their own private with public key of other person

these 2 No-named keys can decrypt info right?

My question is what 3rd party can do if he own any key,it is obvious. But less obvious the fact how data is encrypted. Because the assymetric cryptography is used in multiple concept I want to know what exactly happens here, I guess whole data (their secret) is ecnrypted?

And I would like the concept where GnuPG is used for

( like the Alice and Bob's concept is definently about messenger or any type of transmission )

that is the whole point, the end result is the secret, not the intermediate keys. And then that secret is used for something, in TlS they use it to generate a symmetric key based on that secret, and because they share a secret, they generate the same key.

like https://thecybersecurityman.com/2018/04/25/https-the-tls-handshake-using-diffie-hellman-ephemeral/

How do I improve my signal in my apartment room?

Outside that window is a crummy storage area and a wall with an opening up top (it's fenced with thin bars) separating the apartment and the small road behind the wall. The signal is always very weak no matter what kind of SIM card or modem I try. I resorted to switching the antennas to increase signal, but the difference is very little (the other modem is off and not being used). I'm looking to invest in those big antennas that can be mounted onto the fence bars of the wall's gap above just to improve the signal

Something like this

Idrk if this is the best channel for this. But this is apparently for networking and stuff so yea

There are cell tower base stations that some providers offer, but the simplest would likely be Wi-Fi calling. I'd be surprised if your carrier didn't offer that.

What region are you in?
Also, take a screenshot of the rsrp, rsrq and snr values which can be found in the advanced tab in the web ui

That's not what they want.

No? They seem to essentially want to have a better cell signal.

They are using a 4G modem, and that 4G modem isn't preforming as they expect. A repeater won't do much/any good

Ah very well then.

The antennas are mostly to catch the signal emitted from cell towers. They don't project the actual internet, as I realized from a bit of research

Is it a bad idea to watch YouTube while I'm using crystaldiskmark to try to benchmark a network drive?

Speaking of, would I technically get better access speeds to my NAS if my PC and the NAS were on the same Switch instead of having the PC on the router and the NAS on the Switch that is attached to the router?

Putting the antennas together like that means they won't work together properly - they're supposed to be spaced apart for diversity, all the more crucial if your signal is poor.

That's noted. Thanks

Still planning to invest on bigger antennas tho. My signal is always weak regardless of the position on the window

You can also buy specialised 4G modem routers designed to sit outdoors in the weather so you can just aim it and not lose signal in cables

So you just run ethernet inside

I had customers who tried adding aftermarket antennas on cables like you're talking about and the result simply isn't as good

Depends on your budget a bit

I'm talking something like this on the high end of cost: https://mikrotik.com/product/atl18

Cheaper end: https://mikrotik.com/product/sxt_lte6_2023

Not sure what country you're in, but if it's unsuitable to the above there are other similar options

I'm in the Philippines

Yeah... this thing costs almost as much as my phone 🙃

Guys can you describe me the process using GnuPG

( I didn't find it on Wiki )

That's income disparity for you, from a global perspective that's dirt cheap for what it is and there's few options cheaper bar finding them used or fixing/repurposing junk

Guess you'd better separate those antennas and find a spot with better signal

What if i told you antennae lengths are somewhat specific to the signal they're intended to receive... And just buying longer antenna might make the signal worse.
Also consider, I'm stupid and have no idea what I'm talking about

https://gnupg.org/documentation/index.html

Lol, i like the fact that everyone is thumbs upping the part where i say i have no idea what I'm talking about. Touche.

I thought it was two separate posts

But you are not wrong

Touche for me!

You take the speed of light 299,792,458 and divide it by the frequency (lets say 433MHz)
299792458/433000000 = 0.6924 = 69.24cm
You want the wavelength/2 for the full size of a dipole antenna which I will use in this example
thats 34.62cm (13.6in) for half (L in the diagram)
and 17.31cm (6.8in) for quarter (E in the diagram)
and that give you a dipole antenna tuned for 433MHz

Ah yes, rip out the fibre because your NTD got damaged in a storm and replace it with Starlink, how incredibly smart

Elon meat riders piss me off so much

Um what? Like, sure, having Starlink (or another viable satellite provider) as a backup makes sense in certain situations, but "ripping out what's broken" to install satellite internet is a silly solution. Perhaps, maybe... fix the broken wired connection first? 🤔

And people suggesting Starlink when they have no idea where someone is or what better options are available

Rant over - For now :)

Yeah, something like that. I just remember some blurb that came with my SDR USB kit and about the antennae doesn't work so well if you don't properly extend and place it

Starlink I now trust about 0.0%

?

Because people are stupid?

Unfortunately in some places there is genuinely no better option

A lot of Australia's like that thanks to the very intentional mess that is the NBN

I would argue that less than 4% of premises are better off with Starlink

There are only 84,800 premises connected to the nbn® Sky Muster satellite service, not a whole lot, and performance is probably better than you’d expect

I know it's not what you posted this for, but now I'm wondering how fun/painful it would be to just, build your own wifi antenna, mostly for learning purposes of course
Running the calculations through wolframalpha gives me almost 3cm at 5GHz and 6.25cm at 2.4GHz, which as someone who has basically no idea what they're talking about, you could get wire that length from a paperclip or a staple, surely? Honestly, the more I think about it this question is more about amateur radio than it is about networking lol

yes 6.25cm for the full antenna for the 2.4GHz

Of the ~742,800 premises able to connect to the nbn® Fixed Wireless access network, ~668,500 will be able to achieve peak downstream wholesale speeds of 100Mbps by the end of this year, and ~580,000 will achieve peak downstream wholesale speeds between 250 and 400Mbps

there is an adjustment factor which is the diameter of your conductor

but we are going to ignore that

And that 400Mbps number is quite conservative, I've seen 600Mbps+ with the new V4 WNTD

break apart a wifi antenna if you have one

measure it

well, I have one but, I am kinda using it lol

Starlink early mover advantage is crazy

more seriously there probably is an extra one lying around here somewhere

Got DoD contracts worth billions

Only about ~800 premises have disconnected their nbn Sky Muster service in the last 3 months, too. (Quite a few of these were likely just switched to the Fixed Wireless network after a TQSR)

I think lots of the Starlink uptake is from premises previously on ADSL and NGWL, where it actually makes sense imo.

Transformed aviation and marine internet

It's not just Sky Muster, FTTN performance and reliability is dreadful

Plus with FTTN there's no recourse or upgrade path if you need faster speeds, and this region has lots of "25mbps is all you're getting" households

There will be less than one million FTTN premises by the end of 2025

Or Fixed Wireless

Let me do a speed test for you :)

I'd dare say it's still a lot of houses

A lot of landmass

It is, but it is a remarkable improvement

And N2P upgrades are super streamlined now

Not enough to invalidate Starlink's value proposition

lol you're not getting that in this service area (and the upload is still just punitive)

Most techs are knocking out 2 or 3 a day, whereas just a couple months ago most N2P upgrades required multiple truckrolls

It's FW Superfast, pretty darn impressive if you ask me :)

~6km LOS

This is a premises on a different tower, with the V3 WNTD

For funsies checked my old house on the other side of town

no

Checked for what?

Available service speeds

On FTTN?

Or FW?

FW

What version WNTD?

FTTN hell no I get 50/20 and only barely

Or LOCID?

I'm not that friendly with you yet, good sir

Fair enough :)

What version WNTD?

Probably never seen an upgrade

If it's a V2 measured speeds wouldn't be available

But offering a max of 100mbps plans with speed estimates of 50mbps

What RSP are you looking at?

I picked ABB to check that

Ah. They do offer HSFW now

It is a WNTD v2

Yeah that's the problem :)

The tower's also heavily subscribed

Not as direly as the old mess but still

All AVCs with a V2 are eligible for an upgrade to a V4 WNTD, it's just a ticket away

It covers a lot of ground that really should have been FTTN/P in the first place

Very few towers have congested backhaul nowadays, the problem is more likely the WNTD

There's an entire housing estate pointed at one of the sectors

I'd believe that

Same premises, directly on WNTD

I don't know what the fuck they're doing here with their equipment - Crazy bufferbloat or something

Hello! I am looking for some mini-PC to be used as router, some i5 with dual SFP+ slots and one RJ45 ethernet. Somebody saw that for decent price? I need 4 of these..

ideally with dimensions of some SFF Dell/HP (those with mobile/laptop CPUs)

Do you really need to power of a current gen i5? For a home router?

yeah

Go on…

it's not going to be used as home router. kinda test environment with virtualization + opnsense

should be able to keep up with 10gbps links, IPSec tunnels...

I'v asked this way, because I know there's a lot of small PC's with different configurations, etc..

Minisforum MS-01 is close to what I want, but it's not available here 😦

God that sounds like a nightmare 😆

small hell, yes 😄

https://www.aliexpress.com/item/1005006151773493.html?src=google

that looks almost.. except price for no-name brand which I somewhat don't trust after all those weird devices they sell.. but it's close. Love that 8x2.5gbps 🙂

Topton's are well known in the StH community

Topton is not much less of a brand than Minisforum

If you're uncertain, go look at their benchmarks for the variants on the StH website or Youtube

Not all are great but they're mostly sensible

hmm okay, I will check

awh thats cute

https://store.minisforum.com/products/atomman-x7-ti whoa

its got oculink

holy shit

that's "overcuted" 😄

https://store.minisforum.com/products/minisforum-s100 And this thing supports PoE

That'd be neat for digital signage

thats what it looks like its for

Pity it's not a male HDMI port

I'm going for this due to positive reviews

Bit big and it'd risk breaking off. Better to use a cable and mount this off the back of the display

I suppose, depends on where it's going

the USB C supports Alt DP

id rather use that if possible

but honestly im sure its quite heavy and would bend the hdmi plug if you tried that

Yes

@waxen scroll Apartment core switch be pushing some data around (month timeframe)

Solid. This is a core switch at an apartment complex?

Avg 1 gigabit for constant for 1 month and a peak of 18.6 for ingress +egress hehe

nearly 2x as much out as in is crazy, if that's equivalent to up and down, respectively

If that is aggregate from customer facing ports then stats are reversed

It's his core switch in his apartment, not the complex, lol

He's crazy 🤣

lol that's a silly amount of traffic

AWS is on crack if they think this pricing is actually competitive

Great context :p

Oops I forgot to hit enter

lmao

Its the cost per minute outbound for AWS's Chime SDK service

Heres a proper carrier for comparison

$0.00095/min```

thats 505% more

One of the higher rated zones is this

$0.0228/min Which is costly

but thats rare to see

And odd considering one of their upstream carriers has a switch in there....

oh shit this was installed last month thats why

and thats why high cost zones usually dont stick around long with good carriers

Well duh

Of course AWS is going to be horribly priced for something like that

Also what bullshit to have different rates for so many different zones

everyone has their hands in the pie

Wait until you see what some people are paying here

lol

https://www.reddit.com/r/FiberOptics/s/dN8QGv2PPR

You could literally have exposed glass and it would still work lmao

TP-Link Archer AX12 AX1500 Wi-Fi 6 router is this router good just for gaming?

lmao

lightning proof

/j

Anyone familiar with Global Protect VPNs? One of my users has an interesting use case where he's unable to connect to the VPN IF he attempts to connect through a device that he's RDP'd into. So assume he has a desktop and a laptop. He RDPs from the desktop to the laptop which was the VPN connect software installed. The auth works but then he can't fully connect. However, if he just tries it from the desktop it works fine. Could there be some sort of app-related block on VPN connections?

Once the glass actually gets fully exposed though, itll stop working. If you take the black shield off a pedestal you will notice that internet will drop sometimes. Thats because the light from the sun interferes

The same will happen here

Ohhh

the corrosion is taking hold here by the looks of it, my guess is actual damage will occur that will break it before its exposure to light

If something needs poe++ can you put in poe+++ and it'll lower itself to wutd needed?

Cus ubiquitis coming out with a new high end switch which I'm hoping i can just use instead of pro max

That and if a thing needs 2.5gbe poe++ if i connect one of the 10gb poe+++ will it lower itself to 2.5gbe (like other rj45 ports) aa well as lower itself to only send poe++ instead of poe+++

PoE+++ seems to be some ubnt marketing thing for 90w 802.bt PoE AKA PoE++

So yeah it's fine

The entire premise of the Poe standards and device class detection is based on this

So yes.

"Hi-PoE"

802.3bt type 4

Actually its gonna depend if the switch supports 2.5G negotiation

Some devices will only support 1/2.5/10, some will only support 1/5/10

2.5G is actually 10G operating at Cat5e Bandwidth (100MHz)

10G needs 400Mhz

so 2.5G is running at 1/4 the frequency of 10G resulting in 1/4 of 10G