#networking

Been watching linus videos for years

ur welcome

I know very little on vmware side...i deal with core infrastructure

Routers and switches and firewalls

the cool stuff

What kind of router/switches? Data center switches and PE/CE type routers or more access/edge stuff?

Vm's seems to start automatically, i dont want my mom to accidentally overload the ups and shut down everything when i'm not home xD

lol, nice 😃

ikr

first my dad tried to shut them off 2 days before, now this

she was so pissed off cause "there is an alarm going off in your room and internet is down"

@clear igloo , baby, hi. Can you confirm if I swap in a different model n7k card that the VDC assigned ports from the old card are wiped out even if I don't desire that?

I believe so, yes

Ugh

TAC told me the same. But it was from a document and I didn't fully believe it

Same for same should save it but different will wipe it

I wonder if suspending the VDC will prevent config loss and I can just put the ports back in before it boots again

In theory that could work

Though if I'm willing to do that i can just reboot it into the old running config

Yah

@clear igloo i mess with datacenter and core and edge and access

I even deal with a10 load balancers

Nice, I spend a lot of time on data center and core stuff mostly but I've worked on just about everything from campus wireless to some security stuff to 4G and branch routers/access switches all the way to the backbone. Haven't really done any voice stuff though, lol

The model of card could also differ on config

Voice is a different animal on its own

I try to help our voice guy and my head hurts afterwards

Yah, like I can make a VoIP call with some help and know enough to poke around in some of the configs but that's about it. I let the voice people handle most of it 😛

Same

I don't do voice, wireless, or firewall. Thank God 🙏🙌

Let the peasants do it

You just shutdown the ports to secure it, duh 😛

When in doubt just do reload and hit enter

I don't do cabling or racking either

reload= 5 review boards and 3 weeks

Lol

I have to get permission from most application owners to do anything that risky unless it's an outage situation already

Yeh same here....CR hell

Lab is love, lab is life 😛

Taking ccnp switching on tuesday

Nice, routing next or is that done already?

Yes then routing

Fyi they are redoing cert program feb 20 2020

Yup

@random saddle good luck man

So i need to pass routing switching by that time

I was going to try and redo my CCIE but figure I'll just wait for the new stuff to drop since I probably won't have time to finish it all by then

Thanks...suck at testing

You just have to do training to renew

Nobtesting required

Yah but to get it the first time you have to test 😦

Yes

I missed my Data Center by like a small percent on the last lab and then they changed it >.<*

Ccie is op anyways

Also ENCORE was supposedly counted as "taken" so I get to go straight to IE lab in Feb

Woop woop

Nice

Ccnp is gold ticket

Most companys dont require ccie unless they need a discount

Yah, or you're usually doing some form architect level work for a company at which point they probably paid for you to get it anyway

Yep

So i will be happy to get ccnp enterprise

Yah, CCNP is a very nice accomplishment

Going to struggle on routing i just know it

Letting all my Cisco certs expire this month

Just remember, the BGP bone is connected to the pain bone. The MPLS bone is connected to the suffering bone, and the multicast bone is connected to the stabby knife in your chest 😛

If you have tons years exp then your probly ok

Yah, I let mine expire a bit ago. Just going for the DC IE because I failed to get it last time and I must slay the beast

Goals are good

It's too expensive for no gain at this time. I'm 10 years IT, 6 years specifically only networking. Never did networking for small companies, all have been massive

Can be interesting

I do small and bigger stuff

If I went in again, I would like it to start being useful from day one, versus getting it now and letting the validity tick away as I'm still employed

I dontind juniper but man these things drive me f-in crazy sometimes.
Why, why do the interfaces just not exist anymore, oh you forget them..

Wat

@pseudo blade Sorry for the delay, ease of use isn't to important for me. I care more about performance

@west sonnet What kind of bandwidth do you want, how big's the area you're covering?

400 mb/s down, 20 mb/s down. I need coverage for a medium sized home, and a node for a basement with lots of stone

Can you cable to the basement?

Or full mesh?

I can cable

Maybe a few of these? https://mikrotik.com/product/hap_ac2

Will look into it, thanks!

@waxen scroll Multicast! O_O

no.

I'll send you some (*,G) later 😉

Might even toss in a few (S,G)

sorry, my provider doesnt have it enabled

😛

my coworker touches it sometimes, we normally leave it alone

Senders > Cat6K > A9K > MPLS Cloud > A99K > Receivers
Works just fine
Flip the senders/receivers around, doesn't work

IGMP and PIM is all correct in both cases

its the firewall.

It's the Cat6K imo

even xeon knows to start wiresharking right away

A99 > A9K works with senders/receivers on both sides and in both directions

No firewall in the network so it's clearly not that 😛

its an access list

I wish

its sun spots, they wont RMA, im sorry

I blame @rocky badge for causing solar flares

ive been informed yesterday afternoon we had more problems

and it affected the alarm monitoring center

problems with the alarm panel?

i dont remember the model switch(es) but if you look at a wireshark, some IPs on the affected subnets are sending data to the default GW, but the dest mac address from specific IPs are using the incorrect mac

if you change those devices to another IP, it starts working fine

o.O weird

also FML i heard the affected devices this time are ethernet to serial

those are the WORST

ewww, like T1 serial?

alarms talk serial, the main panels can use ethernet to talk to the serial converter instead of direct serial

RS-485, etc

its like the bus between alarm keypads and panels

smart devices

i had a different problem at a different jobs global alarm monitoring center years ago

unicast flooding at 1Gb was killing serial converters because they ran at 10Mb

the SOC people got drove crazy by all the fault alarms (not just computer but actual beeping)

so im sitting in there and all of a sudden the beeping just stops.... "WHAT DID YOU DO?!"

i turned off the port on a server that was replicating in their damn alarm subnet

lol

it was switch firmware issue

this one though, its technically not my problem

but i promised someone on another team ill review the capture of the second occurrence of it

so im curious to see if the mac is wrong again

That would be interesting

@little schooner the packets never lie

also ill have you know bouncing the port and resetting the server didnt fix the wrong mac address thing last time

so why the hell does changing the IP work

and putting it back, it fails again

New ARP entry perhaps?

they even put a laptop on there with the bad IP

same issue

it was flooding the frame because it didnt know the bad mac... thats why i saw at the GW it was getting it but on the wrong mac

so ping didnt reply

this was 2 months ago so i dont remember anything else... like the OUI of the bad mac

i think it was cisco

@clear igloo oof

@random saddle hardest network troubleshooting story?

Oh man....ummmm

Given we have 3 datacenters....we have an issue with when doing dr failover bgp routes were not propgating properly and had to go manual

So had to locate interfaces and shut down and turn up ports to get routing to redirect

Hardest stuff would be traceing down a specific mac that is causeing an issue but showes up no where in the arp and mac tables

so are you THE PERSON for the network or just one of many?

the chosen one

no u

@waxen scroll we all are THE PERSON, you know that

Does anyone know a good modem? My setup currently is I'm paying for 1 gigabit and I have a crappy modem that im renting and I have a Google WiFi with the 3 spots plz dm links <3

Is your connection fiber or coaxial cable?

Maybe provide more information so we can help? Also don't expect people to DM you either if you can't provide enough information or stick around long enough to answer questions 😃

@clear igloo is it true that when you get paid more, you work way less?

Depends on the person 😛

< raises hand

i had to hustle until i reached low 70s

i think my managers boss makes like 130k and does 0 work

@clear igloo holy hell, wanna see a train wreck job description?

Sure

https://www.linkedin.com/jobs/view/1420656232/

all those deadlines are impossible IMO

Ain't nobody got time to login for that

its too big to paste here

its worth it

unless you have no account

I did but don't anymore

https://pastebin.com/YMQkRsKs

Holy crap, and they want all that with just 2 years experience!

...but they have a game room!

Within 3 months of hire, establish processes for streamlining B2B provisioning and onboarding.
what the hell

"design an automated system that will automatically backup the configuration of all infrastructure networking devices." this one in particular is a bitch

Within 3 months of hire, develop a plan to seamlessly failover redundant links via OSPF in less than 200 milliseconds.
Tune your timers and use BFD, done

im reading this as they dont want to pay for products, so they want all custom stuff

Within 5 months of hire, engineer the network to automatically provision new customers from Sonar.
Like what the hell, some of these might as well say "3 months after conception, give birth to a fully grown man with beard"

and if they did pay it still takes a long ass time to get your devices into it

they only want mikrotik and ubnt experience too.... im scared to know what kind of ISP they're running

But hey, they'll pay up to $30/month for your Hulu/Netflix/etc and $35/month for gym fees

@hollow marlin LE CLICK the link up there. you do ISP ^^^

imma tell ya'll, especially xeon.... 3 months is not even enough time for training to end

legit shops give new net people up to 6 months to get their feet wet and learn business process

some even 12

Yah

"4. Unlimited opportunities for promotion." yeah, i get those at every job. i go beyond and never get promoted or bonus

so i quit for more $

😄

@waxen scroll Jesus, that sounds like the expectations of my last job. The ISP infrastructure would have to be incredible small to learn it all int 3 months. Last and current are medium sized and after a year I was still putting all the pieces together due to lack of documentation.

ive been at current place 2 years and still dont know half of it. i just take it day by day

They sound very familiar setup wise with my last job.....maybe hit them up to get an offer for my own raise

sure. remote is remote. dont die

"Regular team building activities." i dont consider that a perk 😦

i hope they dont make the poor remote engineer come in for those

one of my early jobs had mandated team activities

you could get out of it, but it was highly frowned on by mgmt

my old company flew everyone in for teaming building stuff

though every year one of them is a ski trip

so no ones really complains heh

Do we have a wireless networking guru that might have some input on an upgrade from an RT AC-1200 Asus router?

in vc

@cinder path What are you using to test it? Some speed tests arent capable of maxing out your 1 gigabit connection

https://www.asus.com/us/Networking/RTAC3200/

What do people think of this router.

After some consideration I am considering getting this.

https://www.microcenter.com/product/443759/rt-ac3200-ac3200-tri-band-gigabit-wireless-ac-router

dunno. many people in here arent buying all in ones. i havent in years, so i didnt say anything xD

i use best boy UAP‑AC‑HD at home

That thing doesn't support vlans so it's already a no go for me

@hallow lintel

same

i have an AC-66U as a backup router and it only does vlans on the WAN 😦

i assume the software is the same

i'm looking to buy a new router

but i'm split on those two

this refurbished R7000

https://www.newegg.com/global/sa-en/netgear-r7000-ieee-802-11ac-ieee-802-11a-b-g-n/p/N82E16833122675

and Asus RT-AC68U

https://www.newegg.com/global/sa-en/asus-rt-ac68u-ieee-802-11a-ieee-802-11b-ieee-802-11g-ieee-802-11n-ieee-802-11ac-ipv4-ipv6/p/N82E16833320174

which one do you recommended for me ?

i'm kinda afraid of the refurbished of being defective

also does the network wifi card ac-number have to match the router's

Now I haven't read reviews but just on a surface level lookover of those two, they seem pretty equal in terms of performance on paper,
What i can say is that generally Asus's web config page is better.
I think for a deeper look you'll have to look up the reviews @earnest rose

i'm afraid of the refurbishment

I wouldn't be tbh

I've never had a bad refurbishment unit yet

But I made sure it was not seller refurbished and always manufacturer refurbished

i think i'll choose the asus one

also does the network wifi card ac-number have to match the router's

?

Nope

Those numbers are just the max speed it can theoretically achieve

ok

i might go with the asus one

Thanks guys

you were really helpful

i'll research a little more

I have used an Asus Router RT16 and it performed quite well using 400mb internet as it has a gig wan port.

@random saddle gig port doesn't always mean full gig routing. Most consumer routers can only route ~500 before their single core chips begin to sizzle

You are correct aswell as i had ran in to that with an older one.

Can anyone help me out

I’m trying to get the Ethernet port in my room to work

And whoever wired my house really shit the bed

The wire that is supposedly my room is coming out of the network switch however it’s not lit up

Even though I have something plugged into it

best way is to borrow a ethernet tester

to see if one innerline line is broken

or the whole cable

@somber copper a cheap cable Tester may help you. There are some rudimentary ones available on Amazon for cheap

@little schooner I don't test my drops at home

Do it live

Guys I have a problem with my home network: basically I can't access with any device connected to the first combo unit the web interface for the second combo unit. I've set up two different IP addresses (xxx.xxx.x.1 for the first and xxx.xxx.x.2 for the second one), the second combo unit has a static IP address and the first unit gives IP addresses from xxx.xxx.x.3.
It seems like I can access the second unit (D-Link DSL-2750B rev. D1) web interface only when I'm connected to it. I've tested the entire system before many times and it has Always worked fine (I could access both the interfaces while being connected to the first unit (leased from ISP). I don't know what went wrong

Sounds like you used the wan port on the second one instead of using the switch ports to go to the first one

Nope. Both are using switch ports. Port 2 (1st router) to port 1 (2nd router).
I've noticed that the 4th port on the second router (that I used to configure it) now seems not to be working correctly. It blinks for activity (mening it's working fine) for 2 seconds then turns off for a bit then blinks again for 2 seconds
I don't know what went wrong

They are connected via a 12 m CAT6 S-FTP running in the electrical line tubes with the 568A cabling method

@ me To reply to me, please I have all the other notifications turned off

VPN on PFSense works pretty well if you have an AES-NI CPU. Which I should recommend getting. 1G is pretty easy to get with modest consumer hardware. If you are going for 100G or more, then you are looking at those crazy expensive Intel CPUs that have the direct networking connection. I think they call it infiniband or something. At that point you are really looking for dedicated router hardware which would be much cheaper (but still very expensive because it’s 100G)

@ornate notch pfsense cannot handle even 10gig on current code (I can't remember the name but an update will boost this to 100gig) and 400gig is not hitting production until later this year.

As Bryce said, choose the right chip and gig should be easy

It depends on packet sizes etc

TNSR is what netgate are building on now that will support more bandwidth, but that is not opensource

1G any of the 4 lates i5's will do without problems with an intel NIC

TNSR, that's what it was!

Couldnt remember it

Doing 1G VPN however will require some more CPU

But also depends on the client

If you have an AES-NI CPU (and software that supports it which PFSense does) then 1G VPN is pretty easy

Yeah 1G VPN is easy to get

@jaunty talon line rate 1gb 64 byte packets please

Anyone play with Hyper-v here?

having issues with hyper-v manager from my desktop to my server

I can edit the virtual switches for some reason but Won't let me touch vms

Haven't seen that before but that error looks like as if the hypervisor didn't have permission to read the drive in which the vms are stored on or the path is unavailable at the moment

Or maybe the hyperv service isn't running?

I can edit the switch settings

so maybe?

I can also try to make a new vm, but for some reason it will let me see drives to put the new disk but then give an error about not enough space

non domain

followed about 12 guides to try and get things working to make permission issues go away but I am stumped at this point

At this point getting tired of 2 layers of remote desktop

the things I can think of is either make a domain

or just swap the hypervisor to v-sphere

High speed file transfer

3 years later 😛

Ok, so a TTL of 255 sounds absolutely ridiculous, like how many visible hops are you actually going to make on your way to literally anywhere else in the world? Like maybe 30 at max. The worst case scenario, is Satillite LTE, where you also have to register with an ISP for WAN, where there are government internet filters, and everything is NATed, like NK, then travelling via short range microwave hops, to the other side of the world. That would be about 39 hops, taking into account the bad routing structure.

8 hops for Country wide NAT, 3 hops for Government Surveillance, 6 hops for internal ISP peer routing, 12 hops for short distance Microwave peers, 10 hops for destination country routing between destination and Microwave peer.

What's the question?

TTL is there for loop prevention

Sure 255 is a lot, but does it matter?

is the Archer T6E outdated?

Yes, it kind of does matter, because we can save 2 bits per packet by changing the ttl to 6 bits instead of 8.

TCP/IP is super bulky.

@fleet widget it was hard enough to get the world to adapt tcp/ip. It's like near impossible to make major changes to it without cooperation. This isn't talking about Ipv6 either

I'm not talking about internet1, I'm talking about internet2, HPC.

There honestly needs to be a light weight TCP/IP protocol, with the same reliability.

@waxen scroll is there a term for when an implemented solution creates a new problem that was not foreseen?

looking for a new network card for my xps 15. What's a good replacement, or what should I be looking for. Beyond the fact 2.4 and 5ghz exist, I've been out the loop on wifi developments

@fleet widget can't take 2 bits away, packets are broken up into bytes and nibbles for processing efficiency. I don't think I have ever seen a 6bit segment.
While TCP/IP seems bloated, it's competition was not far off. IPv6 fixes a lot of this bloat (wasted reserved bits) while being a larger header because it can be processed faster than v4. Also add on the fact it has proper MTU scaling built it means once everyone finally upgrades, larger packets can be sent dynamically giving a better header to data ratio

Ah, ok. That just won't happen in the next 10 years though. They are still teaching ipv4 as the primary thing in the tech schools.

More like 20-30 years. IT tends to move in generations as older people who cant bother with change leave and new minds enter

It's akin to radio. We still use it even though it's more than like 80 years old

They still haven't changed that much in the car

What if the Copper SFP+ module is about 1 meter longer past the 10G length limit? It'll still function right? Just like at 934MBps or something?

Probably nothing. Or you might start getting crc errors or something

Okay well I'll find out soon enough once the equipment arrives

Thing is, I couldn't measure the distance since the network admin is on vacation and our grant guy asked us to send him the things we would like to buy asap

I really hope it is under 40m

I thought Cat6 could do up to around 55m

internet2 isnt real, its just a provider who provides links like everyone else

🤔

@clear igloo i could call my work MPLS internet3

@waxen scroll wait, like internet2 wasn’t a joke... please don’t tell me it’s a thing

its a thing

but its not what people probably think

https://www.internet2.edu/

2 companies ago we were engaged with them about some pipes

its a peering exchange for research people but you can also connect to internet and other things

its not some new network internet with special sauce and special TCP

Should Ethernet drop this much signal

Anyone familiar with Cisco 2811 network switches? I am needing to do a quick basic configuration that has atleast 2 VLANs so I can demonstrate my NetPi project for class. I have a Cisco 2811 switch. Just not 100% sure what commands to issue once I'm in the configuration terminal to create the VLANs. If anyone can help with a list of the commands I will need to issue, please feel free to DM me.

pretty sure it's just
vlan [x] with whatever number you want being the x

or int vlan x

   name [OPTIONAL]
!
vlan [number]
   name [OPTIONAL]
!
interface [ROUTER]
[like what you see? paypal $45 to unlock]
!
interface [DEVICE1]
[like what you see? paypal $45 to unlock]
!
interface [DEVICE2]
[like what you see? paypal $45 to unlock]
!```

also pretty sure 2811 isnt a switch, but whatever

@hollow marlin u been quiet today

i pasted you the sauce

@bold karma 2811's a router, can we have pictures?

@pseudo blade it’ll be Saturday before I can get pics. I left it at the school instead of lugging it back and forth

@waxen scroll I begged and begged and they refuse to spend the money to run fiber for our SAN

Also they were saying that they wanted all of the grant bought equipment servers to only be in the server room, not classroom

And we just finished racking up 3 full racks of gear

I'm not about to move everything again

This rack doesn't even have wheels and to get maintenance involved takes weeks

Wow

Servers are loud though. Why have then in class

@waxen scroll they are pretty quiet with the door closed. The teacher uses them for lab activities with his forensics, ethical hacking and Linux students

It's like a non prod server that he can let students mess with here and there

The vms on it, that is.

The doors are thick and heavy. Some sound does get through but it's still quiet to teach regularly

anyone have any recommendations for what i should do about this. Basically its been like this for days. And nothing has changed except for getting a new desktop. Do they really just passively eat bandwidth or something?

@cobalt cradle what is the speed your isp is supposed to give you?

im not sure on that, that's something i'm still looking into. Im looking at firmware settings on the router. It says im getting 13 mbps on download speed

and .988 on upload speed

which im the only using wifi atm

using wireless a factor that has multiple variables of a reason for slow speed

have you used an ethernet cable and tested again?

nope, I actually did try to find my ethernet cable, don't have a clue where it went. Well thanks for some recommendations. Still have to look into if my ISP slows down connections if a limit has been hit. As far as ik they don't have data limits but that doesn't mean they can't throttle connections after a specific amount

hello @clear igloo and @little schooner

Morning 😉

just bought 600 SFPs

cant wait to see what that shipment looks like

lol

😍

but Lurick....

only 120 were cisco branded

😛

;X

They will come in an ESD bag, inside a padded bag, inside a tube, inside a box

we have a new SFP policy. no more ciscos for server to switch

only switch to switch

even that might change

we get SR's from another vendor for under 100/ea

Nice

https://www.addonnetworks.com/product/SFP-10G-SR-AO

we cant use FS

oof

FS doesnt use vars

i dont know the story behind that... its probably because it takes forever to certify a new vendor on our end

https://www.fs.com/products/11552.html

like those are $18, so we'd save a crapload even over what we are buying now

yah

@waxen scroll teacher dropped a brand new unifi AC pro about 15 feet down from a shelf.

I hope it still works

@little schooner no reason it shouldnt. Be more worried about the software

LMAO you troll

@waxen scroll
https://media.tenor.com/images/9f76f3d5e514cfe533bd0df27314eb5e/tenor.gif

Hah good one @hollow marlin

@waxen scroll is it safe to say that most commerical vendor solutions are not built to scale big?

By big you mean massive? No they're not

define scale

most network management products dont work at my job

and by dont work, i mean cannot support all devices, netflow streams, etc without buying multiple of the product

a lot of the time sales people get greedy and refuse to cut deals. they see the license for 80,000 devices and drool. when we say we dont want to pay in multiples and that we want to pay only for one system to handle everything, their pride makes them stop talking to us. no sale is better than half a sale!

Massive, yes

we are willing to have multiple instances in some cases, but we dont want to pay for multiple systems. the product should support as advertised

I see.

lots of these vendors toss out "yeah, our product supports 100,000 devices"

then when push comes to shove and you're the first customer with 60,000 devices and the system is choking.... lmao?

another problem is vendors who serve niches

riverbed is a big one

the people who buy their products are mostly huge companies, so they're priced that way

@clear igloo muh ixia. muh spirent

😛

Spirent 😄

you should see riverbeds netflow tool

I've heard

holy fuck is it complex. it has to calculate what you want in real time if you dont set up pages that automatically calculate what you want every hour or so

so its super slow in getting the data. it doesnt scale well

to its credit, when it does load, its one of the better netflow ive seen

their sales people are sharks too

they know when you're bleeding just a little

"hey, can we talk about [another new product]?"

i havent worked with solarwinds sales yet. thank god

i read reddit. thats my nightmare

They are horrible

I made a mistake of asking for a quote once

xD

i made the mistake of giving them my work email for a free tool

pretty confident it got sold to some list

at this point i cant even put my job on my linkedin because within days its scraped and i get spams

yah

Is it safe to give out the Google voice number as a burner to sales rep? Or you think they can reverse that too?

Veeam didn't want me to sign up with a personal email, so I contacted them and they got a database admin to make a special exception

But it was only for my email, not the entire public domain

I was dealing with a teething issue of my Veeam backups being unrestorable

So I was backing up for fun while dealing with blue screen bug it does when I try to restore

Wasted time, wasted electricity, nothing is worse really

@little schooner working at an ISP I just create a number to give to a sales rep then delete it after. We have a pool just for this. After they get the number is not in service they stop calling altogether

That's actually pretty smart

I like it

Lol can a vendor really do this in order to.
Maintain support?

They taped off the hdmi and vga port

what the hell

This is at a dentist office

if you're in the US those could be illegal

"warranty void if removed" stickers, that is

Yes I'm in US

interesting

Probably the most strangest placement of a warranty sticker I've seen at least

They basically took the video access away from the board

Use the serial

Say fuck it and jam the VGA into the port. Pins should pierce and work. Then tell them you technically didn't remove the sticker

If they want to play that game

that's wack

probably. the sticker isnt touching the case cover

Hello. I had a question about networking. So I am planning on building a new gaming pc for me. If i get multiple HDDs and made them a drive on the network so any pc connected to it could access the files. Does that work too with phones? and if so. how does it work?

Any one here can help with domestic networking?

yes... @clear igloo is great with T1/ethernet MPLS, DWDM, layer 2 point to point and more

mynameisjuan knows radio

I'm a fresh ham op so I know very basic radio

Seems I sorted it! Well, I'm more informed.

Issue was many flats ethernet ports leading to a patch panel, then a single domestic router, WiFi and integrated switch.

I wanted to know how to access the network, seems as simple as connecting the switch to the patch panel and the port to my Pc.

My friend’s SpeedTest server got in an LTT video!

oo this is on float plane?

gonna see that video soon then

It probably is I assume. I was sent it by another friend who sent it to our group chat

Yea it's on floatplane

Why do so many places think the best place to install network equipment is the place you need to be a catortionist to get to

Never seen a place like that

Worst is 100 feet in the air

@waxen scroll almost all sites I have to go to install a circuit is like that. Very few have decent closets or even a CO

Anyone have experience with Juniper MX204 routers?

@clear igloo one of our ASR9k was fans 100% today

so loud

I am setting up a WISP/FTTH/Colo business and have a 10G transport back to the datacenter where I peer with the internet exchange (SIX in this case) and the rest across 1 (and at some point) more providers. I've been looking at the MX104 but I fear Juniper's lower end routers like the MX80 and MX104 are older and use very old, slow PowerPPC CPU's that take 15-20 minutes to process a full BGP routing tables.

im not aware of any juniper users here

maybe juan, idk

@full gorge juniper is our main platform. We still have a couple mx80s, they’re slow. Takes forever to do anything on them, not just converge. But other than that we have Mx 10003s that handle BGP, huge step up. I don’t know how fast a 204 because I have no experience with them. A quick search did show 204s converging in about 15s.

I presume the timeframes involve downtime whenever the router needs to write a new static router, null a route, etc? I come from the data center colo side of things. Learning a lot about the core network

Hopefully my logic makes sense!

@full gorge the time frames are only on convergence. Adding a static route or nulling introduces an additional route into the RIB along side the BGP route. AD takes over at that point, no downtime because the BGP route is still the best path and doesn’t need to be re calculated.
I’m the opposite, I’m in the service provider world and no nothing about datacenter design

I’ve been told by another ISP that Each CPE Radio, MPTP access point and FTTL OLT would have its own IP address which will be used for legal compliance, spam monitoring and malware detection, etc. ipv6 is free and v4 inexpensive to lease. I presume the Juniper could handle DPI for both stacks ? Or am I totally backwards ?

I wouldn’t do DPI on the MX. if you want DPI I would go with a vendor that has better signatures like Fortigate. Most DPIs on vendors like Juniper are just thrown together and we tried it on an SRX cluster and it really caught nothing durning a DDoS.
By law here in NY we need to have a way to trace an IP to a customer, but that doesn’t apply to the ONTs/CPEs. The IPs you are referring to are just for management.
As far as dual stacking Juniper handles it just fine

Ahh. I didn't see anything for WA laws. Issue is it'll be difficult to trace the malware/spammer/abuser/botnet, etc back to a specific computer. Its bound to happen with hundreds of customers. I've got a stack of servers in my garage from my last company that could use a home. Perhaps they could do DPI at the tail end of the circuit and just let the MX handle the routing between bandwidth providers. I'm just going to lease IPs at $1/mo each for now and later buy a /22 at auction.. hopefully before its $30,000

We're pushing gigabit wireless to a bunch of houses, condos and business in a small port town

@full gorge I have worked with MX80, MX204, MX960, MX10003

Thy whom dies with a lot of IPs wins to some degree.

I'm new to them. I just came from Meraki, hated it.. good riddance

MX204 is a awesome router tbh, for pricepoint and performance

I use Ubnt at home.. but for commercial I think its not good to cut corners

If I would run a MX80 or other PowerPC based stuff, I would do default route from transit and then just take in the routes from IX

and just set a local-pref on IX prefixes

You lost me at IX local-perf. lol

I know enough to be dangerous

local-pref is a bgp setting that you put, which will tell which preferred way you want the router to send traffic to routes installed in the machine

if you put a higher local pref than the default route, all traffic that matches routes from IX peers will over IX and not transit

Ahh. I have traffic from two places. 1G CDR from one provider and a cross connect to SIX for netflix, facebook, youtube, amazon, blizzard and valve

10Gbps to SIX though

and in this case all traffic that doesnt go over SIX will go over CDR?

in that case the CDR is your transit provider, and I assume you want to send all traffic you can over SIX as it will be better for you?

99% of it it will. The rest has to go over another provider or MPLS blend for the test of the web

If that's the case, I would ask for a default route from CDR

Yeah. With that said, I wonder if I can get away using some older hardware. I have 1/8 cab. might end up just going full cab for the small difference

In that case you could do it with an MX80

I have that setup on one MX80 setup

https://pastebin.com/gECP4sDY

I have two transit providers in that case that both send me default route and one peering session with cloudflare over netnod

about $3500/ea on ebay

yeah

I might as well as let the DC cool the big loud hardware

how many peers do you have at SIX?

do you see yourself growing SIX peers?

Sure do

lots of KPUD resellers who pay $10/mbit (just IP)

I get bandwidth far cheaper

if you can't compete with FTTH, sell them b/w!

packetmaster.jnasty.lol.ca

there are a few other ISPs on the same backbone that goes through the county, so they buy really expensive IP where I'm just getting as 10 Gbps transport and getting cheaper b/w to sell to them.

who is us?

i spent 2 years making youtube full time.. no thanks

Thanks for all the info

Ayyo guys, are they anybody who has work with some Cisco before?
Plz dm me, I kinda need help

I won't DM you but I'll help you here 🙂

guys please tell me about static ip if it ensures least packet loss ig??

no

static IP will not reduce packet loss

Yea, not at all. It’s used for business running publicly accessible servers

Is it normal to see 10/100mbps switches all around in small business environments?

The dentist office we upgraded had so many of them everywhere

But the main switch in the closet was gigabit

Dlink 16-port unit

The server was running server 2008

Zero patches installed since 2013

Wouldn't surprise me, no

It's my first time doing a office upgrade outside of a school environment

I'm glad that they were so willing to just spend money for all the good stuff. Like O365, new desktops, new networking switch and backup system

All on the spot once we identified problem areas

It was like a dream come true. No hassle with price about the required new hardware they needed

definitely an ideal selling scenario there, nice

Bleh, RouterOS bugs. bad dynamic route from nowhere, went away when I disabled and re-enabled the link.

Came across a router today, users were complaining that they couldn't access remote services of certain protocols. Found out the router in question was NATing all packets to a specific port regardless of direction or interface to a specific local host on that port.

@pseudo blade Yay NAT!!!! Was this a Mikrotik?

Yes.

That is a mikrotik bug?

@pseudo blade

I got to make a new CAT 5e cable run today in my room, because my connection keeps downgrading to 100mbps

Or maybe I should just buy a replacement cable.

@little schooner Not a bug, it was configured that way.

@pseudo blade who I'm their right mind would configure it that way and how has it been working

My employer configured it that way. Since late last year.

It was obviously a mistake, you wouldn't do this intentionally.

That's weird how it was working before though

If it still works configured wrong, that is bug

But it's nice that mikrotik is basically super stable. I am still using the one you recommended me outside

That thing basically never needs a restart

It's been in 1 F and as hot as 105 F and it functions the same

I have a question about sharing an ESXi environment with end users (not other administrators). From a management perspective, is it even possible?

@little schooner I don't get how it's working for a year with little problems by the sound of it.
Also yes, Mikrotik is the shit, I love it and have next to no problems with our customers using them

@unreal wedge it's time to come back

We miss you

@waxen scroll esxi, sharing with end users. A lost cause?

The way to do it is having like vnc or remote desktop where they jump to and then go from there?

i dunno what you mean by sharing esxi

it sounds like you want remote desktop, but then it also sounds like you want to share the admin panel

@waxen scroll I just want to share the Vms with end users, but don't want them to be able to reconfigure VM, or see anything that isn't assigned to them in vcenter

yes, thats possible. managing it would be annoying, but whatever

The last time I tried it, it showed too much information still

As if vcenter wasn't designed to share with end users, but rather admins

But this was some time ago

Maybe it's changed since? I don't know but it's something in one lab we want to implement

@waxen scroll yes the user management was a pain

Because each student would have to be assigned one every semester

And what if they were part of two classes? It gets complicated. Maybe it wasn't the right way to do it

my school was doing non-VMs... we got a removable hard drive caddy with an XP install

each student was assigned one

xD

i think citrix + individual VMs might be the answer here, but if you dont already have citrix its not cheap

citrix is able to start VMs that have been shutdown by the user as well if i recall

remote desktop services on windows server might do it too? i know very little about it

Hmm alright. Yeah Ill keep the options on the table. This project is for the winter break.

I got some time

hey network devs, i have a couple questions about setting up an openvpn server that handles heavy processing but no ftp

basically vm server that handles everything on the host

i don'

i don't need to worry about resouces

but as a newbie to networking some of the setup is a bit confusing to me

Are you looking at a dedi box or vm? And whats the purpose of the server?

autocad over vpn

What autocad version and whats the VPN speed?

right now 100mbps and 2016 autocad

i would be running a host os with vm for the client

I have never heard or worked with autocad so I got no clue for you mate.

2016 autocad will only run on windows 10 so just think of the application as a heavy steam game

Yea its like a a blueprint drawing almost I looked it up, but I don't have any experience using it.

I would need to actually see the software to be able to help

the software is not the problem

oh?

just setting up a server as a vpn is the larger issue

its cause your hosting on a vm?

yes

pci passthrough is relativly easy

but the hard part is setting up the enviroment to be accessed outside of my computer

err i mean server

Like remote connection?

similar

What OS?

right now ubuntu server

but im open for suggestions

I have barely worked with ubuntu, installed on old computer cause I didn't wanna pay for windows license after I did a hardware change and I couldn't figure out how to set up docker so I got nothing for you man.

well thanks for trying

Yea sorry networking isn't my field

what do you do normally

I would rather build

i see

Building servers looks hype though

yes

i have a server right beside me right now

my room feels like the bahamas

Fucking eh that must suck.

I just keep two fans beside me thats all I need

well with 40 cores it gets a bit hot

Hopefully someone can help you out man. Im going to eat so maybe after some food I can help you out

sweet thanks

Np

@prime prairie are you guys planning any ubuntu server video anytime soon?

Hello,
Can anyone with better skill with ipv6 and iproute2 than me can look into this ? :/

https://www.reddit.com/r/ipv6/comments/cv8aed/tunnelbroker_use_ipv6_from_routed_64_debian/

i dont believe " post-up ip route add 2001:470:1f0b:307::/64 dev ens192" is necessary unless they told you to do that. as far as putting a default route in, usually there's different commands for v6. for example ipv4 might be "ip route" and ipv6 might be "ip6 route".

also since this is debian or ubuntu, its possible they depreciated iproute2 for another command set

ip route does work in ipv6 (it autodetect the format)

and it wont let you add a default?

The default use the address from the he-ipv6 interface :/

yeah, its supposed to

it points to 2001:470:1f0a:308::1, right?

That is the server at he.net

My server is ::2

yeah, thats correct

default needs to point to server at HE

Yeah but how can I use my routed /64 by default then? 🤔

so is the goal to just use that as an exit or is it to use the linux box as a router for other computers for the /64?

It's a standalone vm directly with it's own public ipv4
The goal is to use a address from the routed /64 for ipv6 connectivity (so in and out)

ok, i get it now. i dont think you can just do this simply.... if you host services on the box using ::1 i believe it will work just fine, but with the way the kernel works I think it uses the address closest to the next hop when you request to open connections. im not sure off the top of my head how i would force it without a ton of hacks

perhaps multiple routing tables, perhaps iptables mangle, perhaps traffic marking

its not really easy

hopefully someone else can chime in

Yep ~~

The setup is kind of a mess to begin with so it doesn't help

i did something similar to this with two paths and two gateways back in 2009 but if i did save those configs its so buried in archive folders / zips i dunno if ill ever find it

¯_(ツ)_/¯

tu put it really simply here's the setup

(don't have visio on hand so mspaint :'])

(pfsense has a public v4 + a /29 public v4 routed and the only /64 that Hetzner offer)

(vm 1 and 2 have their own ipv4)

(but no native v6 since it's routed to the pfsense)

i found the document. its not relevant to what you're asking. it was to use two IPs in the same vlan/subnet across two interfaces and it was meant for hosting, not connecting from the server to other things

@jaunty talon maybe this is in your wheelhouse?

Is 3 feet a good enough extra cable to add to a run that has been measured?

Or should I do like 6 feet or something?

For a home setting

i do 10-15'

but thats with me having a bulk box of 1000'

usually after i cable manage it i end up with 5' left

if some how you managed to measure it cable managed, then 6 feet i guess

ok i found the solution

(reddit but it works)

https://www.reddit.com/r/ipv6/comments/cv8aed/tunnelbroker_use_ipv6_from_routed_64_debian/ey2sdtl/

(i feel super dumb right now)

@waxen scroll no looks like you were right. After cable management, I only had 2 feet left. I did 4 extra feet

Next time I am doing like 10 like you said

I also have the 1000feet box

It's not cat 6 but it'll do for cameras I guess

@little schooner you don't need cat6 unless you are pushing max length

And if the distance is really low, 10g can be possible too

I’ve done 10gig at 30m on cat5e

sure, STP ;p

Just overclock your cable

Linus did a video on that

I'm in the testing phase of the new copper cable for the cable modem to see if that was the cause of the downgrading from gbps to 100mbps

If it happens again, I will have to blame the Edgerouter

I've replace modem and cable but not router

@little schooner turn off auto neg and force gig/full

@hollow marlin I'll give that a try. I tried that with a Cisco switch last time and it ended up failing

I hope it works better with this situation

With Cisco and most vendors you need to it on both ends or it just doesn't work

But auto neg fucks things up more than not

Oh. Oops I only did it on one end

hello xeon!

did you know that on many new cisco datacenter products, copper wont work unless you manually set the speed?

🤔

Didn't know that

But so far since the cable swap, the link hasn't downgraded yet. I'm waiting for that first and will then do the manual set.

If it ever happens

Is Edgerouter supposed to run hot?

It's been running like hot hot since I bought it a few years ago

Is it fanless?

it will run warm, but not uncomfortable to touch hot

my arris modem runs like 2-3x hotter than my router

@waxen scroll That's a 5500 and N7K issue 😛

you call it an issue, but your bosses call it a feature

😄

it got me pretty bad before i knew about it

my laptop was having link lights and the interface said down

First time I see something like this in an hotel room

its cute

xD

Lol is there a way to bypass the login thing that appears when connecting to their network

Yeah we use those little APs at the college I manage

i suppose you can maybe snoop a mac address of someone active and assign it to yourself

depends how it works

Can't people just rip those off the wall?

@hollow marlin yes it is fanless

But it's too hot for my taste

And it's sitting on top of an edgeswitch, which also gets hot

But gets hot from the router's bottom.

I wonder if it's because PoE electronics are always on 24/7

I should of sticked with an Edgerouter lite

@little schooner unless it's throttling dont worry too much. Like out SRX300s we deploy run at a toasty 67c with no load.

Network equipment runs hot without any cooling

ER-L is old news

https://www.ui.com/edgemax/edgerouter-4/

i use this sexy baby

my ER-L died on me after like 5 years lol

just look at all the holes for venting!

@waxen scroll SRX300 is a sealed chassis as well. Case is the heatsink.

ER-L and ER-4 just work

set it. leave it.

now UBNT wireless, we can debate

actually theres an * for ER devices

if you dont UPS them, they might blow up after too many power outages

the flash file system is kinda eh

Just realized all the devices in this network are all in the same subnet. Isn't that kinda risky?

no

usually theres a mechanism where they cant talk to eachother

I mean, I can ping them

The dentist office did not want vlans, so they said put everything into one subnet

What happens if I don't ground the networking switches that have a nut to attach a ground cable to?

Is that really necessary?

no. ive never done it

generally the cabinet its going in should be grounded and the device can get ground from either the outlet or from the rack ears attached to the grounded cabinet

okay. Well that makes me feel better of just putting it on top of a ceiling tile then

I grounded my edgerouter just cause I had a ground wire nearby

its the only thing in there really.

I remember my DGL-4500 router was shocking me just by touching it when it was powered on

that was not good

But as lzdanger said, switches are internally grounded to the plug

Lol

yeah, mine doesn't have the three prong

but, somehow not getting shocked so its grounded somewhere i suppose

When I touch my cisco switch without connecting the ground wire I actually feel a little bit of current flowing

Dont think its normal

i hated working with ground wires when i was at my first two jobs

crimping them onto the bus was hell

You mean crimping that metal thing with a hole to bolt it to the bus bar?

yes

I've never crimped such a cable yet

you usually are on a tall ladder or under the floor to get it done and its a bit hard to get leverage that way

I dont think i'll ever do it

maintenance can handle that

XD

also those same facilities cut out the electrical unions and i got to install new circuits

:X

Are you also an electrician?

nope

Oh

Didn't knew these things were handled by networking engineers

you take these boxes, go up to the bus, twist in

Usually electricity related things have to be handled by certified electricians and stuff

that bus bar has a large amount of amps in it, i dont recall how much but could be easily 1000a

so dont get your fingers in there

Oh damn

LOL

I just jammed a pen into these uk sockets to be able to plug in the charger lol

also i wasnt a network engineer at those jobs

i was a datacenter tech

anything from installing new racks, wiring bulk cat6, doing server configs if the customer asks

Ye I still don't know the difference between all the networking positions

theres only 4 generic network positions

fits 90% of everything i would say

operations, implementation, design, architecture

what i was doing was not in this realm of job duties

its also a lesson i learned the hard way. not once but twice

dont apply to a company thinking you'll use your position to get the one you want

rarely works

😄

Oh lol

Ye that doesnt work does it

i was super naïve that i could take dc tech jobs and grow it into a network engineer job

Did you got another job then?

yeah. ended up pushing too hard for a promotion and got fired

Oh wow

landed in a network tech job at a massive company 2 months later

Didn't even took that long to find a new one

nope. and the job found me.

random recruiter found my info and called me

😄

the job i have right now... same deal. got called one day

the sad part is i have more success with random recruiter than people i know whose companies are hiring

getting hired in network is a pain heh

Ur scaring me now

i thought you already work in network

moral of the story seems to be to push for a promotion so hard you get fired and then a job will find you

lulz

at that same job i had an active CCNA and they made me take an internal "CCNA" test that an engineer of theirs made to even get enable access

that was insulting

well uh

i understand why they would do that i guess

Well there are some people that just buy the exam dumps to pass

So I kinda get it

@waxen scroll I did an intern in the IT department (that's where the network room pic came from) of a big company. I'm also 17 so.I cant work yet I dont even have ccna

o

Ye

I really liked working there

Even asked to extend my period

though bold of you to assume just a CCNA will get you a Networking job ;)

It definitely helps (?)

Ik ccna is nothing compared to what u need to know

its really not

but i havent seen the new ccna version that just came out

i assume same problem since its no longer just route/switch

what is it now

dunno. just heard it covers more topics like wireless

more topics means less time on others

my CCNA Sec covered a bit of wireless

not sure if that was just my teacher deciding to do it, or if it was part of the course

Yeah new NA covers more topics but less R/S. Which is dumb because R/S is the core of networking

@waxen scroll
oof
https://www.tomshardware.com/news/globalfoundries-files-patent-lawsuits-tsmc,40240.html

OOF

Doing away with the core skills is not that good.

What is cisco thinking?

That the workforce is disposable and people just need to specialize in a specific thing instead of looking at the whole picture?

should I do this update?

i mean they're not removing r&s content

oh.

I haven't read up on it much but I would imagine they will apply R&S concepts to more areas instead of having it standalone since R&S isn't just by itself. It applies to Wireless, Data Center, etc.

wireless is the future though, it's not like you don't apply routing and switching concepts with wireless

it's just the same thing

Yah

Would like Docker help....

I have a Synology NAS with two Ethernet ports, and I have an IOT network that is separate from the rest of the main network, the NAS is connected to both, how do I get a docker container to only work on the IOT network or second Ethernet but not the main network or first Ethernet?

@clear igloo @little schooner you should specialize!

thats how money gets made

why get abused as jack of all trades for $50k when you can do datacenter switching all day for $100k

specialization also = no end user support

you strictly support IT users

I will specialize, I just haven't pinpointed it yet in what

I did like working with the cloud solution like the office 365 admin center. But i haven't used the other cloud providers yet

something with cloud, I think I will enjoy

i like networking because its hard to get rid of if you're experienced IMO

bla bla cloud.... you know what the business cant get rid of?

their own networks.

most of them dont want 100% work at home

I cant say i've done advanced network deployments, just the small business and school ones

but yes that is something im good at setting up too

the office likes their gigabit network now

also server admins have a tough time in cloud when it comes to network as far as i can tell

still need a network person on staff to help

yes

the two cloud migrations ive seen were actually quite complex network-wise and i dont think a server person with limited route knowledge would pull it off

load balancer too

there was a business thats sole job was to sell load balancers to people

somehow they make it profitable

specialization in exchange is pretty good too?

if you can even do data recovery too

no, i dont think so

it was.... not anymore

oh

What about databases

im noticing a lot of exchange moving to 365

we did that for the office we upgraded too

They like it better. now its a professional email too

DBA idk TBH.... i think they're still relevant but i cant say for how long

Im not sure who did it, but I got hold of a DBA at Veeam to permit my personal email address into their registration system

they made some kind of exception statement or something

many of the DBA i know are lazy and only admin the DB servers versus actually being a partner who analyzes queries, makes recommendations, etc

DBA at TestOut also helped me change the name on the IT certificate

that was pretty strange how the guy did it casually

Typical DBA speak: "my server is FINE... its your network"

they dont like when wireshark makes them work

yeah. and thats when you throw in the The packets never lie expression

@waxen scroll what do you think about having 20 different vlans for 20 different groups of virtual machines?

Does that make sense to do?

Basically a student is isolated to a set of VMs

that cant talk to other VM sets

it honestly doesnt matter and if they're "groups" thats good for security reasons if you have a firewall in there..... but if the VMs are doing a lot of chatting amongst themselves it might be smarter not to because then a router has to process all of it

Okay, so what if the switch could also route? The processing could be isolated to the lab switch for all the stuff

then maybe the only traffic from student PCs would be remote desktop?

but its one way, student-initiated

yes

So the only traffic im expecting to hit our core switch, the one that needs to stay up

doesn't suffer from the load from VM traffic

if i was your network admin, i wouldnt want that exiting the lab to my routers....

Right it wont, there will only be one rule to allow rdp in just to be able to see the screen

but nothing can come back out the other way

seems like it can work? or still risky?

thats how many places do lab

RDP/SSH allowed in, nothing out

lol not this lab unfortunately

the problem though is updates, authentication, etc

my labs had their own AD, internet, etc

Hmm... okay. So we happened to have two ways to access the internet. One hits the datacenter in IT office and the other one is controlled by the unversity

but of course, the university blocked our room before June

They didn't even tell the professor why

So we have a janky fix by going through our datacenter that the grant money paid for and run everything through that

with at least three different switches

its just terrible.

By our datacenter, I just mean the space allocated in the IT office. Our section

the rest of it owned by university

you have a shitty situation, my labs looked similar to non-lab.... datacenter and all

;p

also, after we racked up everything, the supervisor THEN told us that we could have all our equipment in a new, accessible-to-us-only private room.

are they not going to let the lab have internet?

but we just moved everything and cabled it up

@waxen scroll That is correct

They said because the professor doesn't want IT to manage the room

that we can do what we want

and then this happens

theres a compromise for this

they just take internet

its sketchy

Well, its just lab equipment really in there

like 2960, 1921s, dell optiplexs

console cables, copper and wire making stuff

you can put a device on their internet segment (needs public IP), make a tunnel to a device in your lab, then route internet through that tunnel

A tunnel, as in like openvpn or something?

or if the internet is in the same building, you can vlan it into your lab

The issue is their internet also blocks all ports on the outside, so we cant tunnel in from somewhere else

a GRE tunnel

i think openvpn can do one? i dont remember

They blocked it

All the ports outside

nahhhhh

Well im not too sure

if its some advanced config thing

when you have public IP it should be before their FW unless they decided to do a DMZ thing

but even then they cant argue to unblock all ports to lab

its airgapped

Well, when we plug directly into the wall, it gives us another IP within the 10.x /22 range

it doesn't directly hit the internet yet

There is like another router on the other end

haha but then guess what? they only allow static IP addressing there on the port now

next time you get funding go purchase a comcast link for $50/m

thats all you need

That would really help us. because man oh man, these people make it hard to make it better for the students

management doesn't see the value add this has for the students

EVEN WHEN we are getting the grant money like nothing

i was the IT person saying NO to a professor once

lol

I believe it

he didnt realize it, but he taught me 10 years ago

he wanted similar to what you want

I just couldn't believe that my professor was the only one who requested and got away with this

unfiltered internet access from a lab

i told him he would need to buy comcast because it wasnt possible to safely do what he asked

I see it too, yeah.

I like to reshape my thinking if I can

Dont want to put the wrong thing into prod/lab

he wanted to link labs at many campuses together over the internet for teaching purposes

thats kinda hard to do

securely

its easy to do securely if you have your own internet

good point

ive put many such links in

even from hong kong!

accomplishments i see

Yeah, I still haven't done stuff like that large scale

ill get somewhere eventually

i think we could have maybe hacked him together something IF the campuses werent on T1 or other crappy circuits

Yeah... our IT department would say "Its not our problem, we can't support your lab"

they wouldn't even attempt to offer help

At one point, he wanted to run Moodle platform instead of one like Blackboard

And then he find out that he was liable for all lost student work if it were to get deleted or someting

and he dropped the idea

you'd need a dedicated team to support that. the full time IT staff have too much on their plate to constantly get tickets about adjusting the lab

Your right. I think just over this past summer, there has been at least 50 different adjustments

whether its with cabling, software installed, scripts to run, or maintenance of the profiles on the machines

oh and the request of classroom management Veyon software

like a lot of changes

IT would hate us.... so much

@unreal wedge page #2

@thick minnow sounds like you have the hardware already; if so I would say test it out. Routing 1000/1000 at line speed is tough to do but that quad core part should be able to do it.

I can't speak to the software, however all of that is just a fancy GUI for iptables, iproute2, and tc. Sooooo you can get the same performance doing a basic as hell config in CLI. End of the day use the one with the most features

Hello

@clear igloo rightttttt?

@waxen scroll it makes it a hard sell for a small business that doesn't have IT staff but a person who can navigate a GUI

The dentist office had a person who does the IT stuff but she was a little reckless

But she works as a dentist person for profession

She just happen to know IT too

i know a company who i wont name who does very important building architecture work.... no dedicated IT team, 200 people, offices in US and overseas

They make it work somehow

barely.

i know someone who works there as a friend.... and my company also hires their company

Well lol

That's a nice situation

Hehe

he asked if i want to go to the CEO and try to be the IT person

i was like.... uhhhhh

Yeah I would say the same

the budget is going to be like $0

lol

Uhhhhhhhhh well about that...

nothing centralized

Yeah definitely no

NO

Need budget to do anything proper

i'd maybe do it if an MSP.. and i mean a legit MSP.. came in and overhauled before i take over

not small biz MSP.... big biz MSP

Yeah one that doesn't depend on like a few customers to run their entire operation

Because once they are gone, msp going downhill

Is it profitable to run a fiber isp?

If you don't count the harassment from competition like Comcast, Frontier and others

i wanted to start a fiber isp TBH

but my business model would PISS OFF comcast and ATT

i might get sued into nothing

isp is the wrong word for it too... more like NSP

@little schooner imagine FTTH where you arent locked into one provider

you ever use a travel site?

thats how mine would work