#networking

the copper version is 30m at $60

I would expect fiber to be cheaper in most cases since glass is less expensive than copper

i see

I know that for short runs, a DAC cable can be a bit cheaper

oh let me look for that instead

oh but they dont go long distances

I also think that the logic for the converter from SFP+ to copper is more complex but I don't know for sure

its like 1m or 0.5m

aww DAC is too short

Yea, DAC is only meant for inside a rack

The cables are also huge

Anything much longer and you pretty much want to go for fiber

i think ive mentioned how my servers are at my school, well, half the point is allowing other students to have servers too. so, i said, lets get a US-48 as primary switch here, and it was ordered a few months ago, thx governemnt for being slow

I didn’t quite see that but it definitely makes sense in your case

you said DAC cables are huge, i have a couple SFP+ 2m dac cables, they are tiny, is it the longer ones that get really big?

I wish that my school let us have servers. The CS department has some servers that we can use for basic stuff but it would be nice to have my own server. Currently just got one at home and one coloed with someone else.

I was exaggerating a little bit but they are usually thicker than even UTP cables. I think in terms of the really huge ones are the QSFP ones or the 100G

i actually have a QSFP+ 40G .5m cable on teh way, so, i guess ill get to see

yay IB link between a couple servers

im pretty sure my nics can do 56gbps

@fresh copper so, I am looking for LC Multi-mode fiber cables?

what doesn't make sense to me is how they got glass to be flexible

Some glass is flexible, some glass is brittle

The actual fibers are very thin which helps as well. Most of the thickness of the cable is from padding

The answer why SR and even LR is cheaper on 10G than copper, is simple. You barely manifacture any 10G copper compared to fiberoptics which means much more R&D is done on SFP+/SFP28 :)

@little schooner are you looking for a specific type of MM cable or just a regular LC-LC Patch?

@jaunty talon I think just regular lc to lc cable

As long as cable type for sfp+module says MMF, I should be using an multimode lc to lc cable I presume

OM3

@waxen scroll I saw that but I didn't know what it meant

I could Google it I suppose

aqua colored fiber

I see it goes up to om4

But I don't need like long distance

if you did, why are you buying multimode

@waxen scroll I was just buying the cheaper one

Idk

My fiber knowledge is limited

I remember a tidbit that said single mode is like 80km reach

And that the price is basically above 100

Also I learned that network card interfaces DO make a difference. Like intel's DA, LR, and SR interfaces

If I bought the wrong card , a cable medium just wouldn't work with it

I was so close to hitting buy on the wrong thing lol

@waxen scroll does it make sense to run VMs over network?

it makes sense to run them whereever max performance is

@waxen scroll currently it's over 10g and I saw max speed of 212mbps

But you think it would behave more stable over fiber?

Like it feels it stutters but that could be because copper is high latency?

@little schooner https://www.fs.com/de-en/products/41730.html

FS has a good pricepoint vs quality :) We use them a lot at Embark and I used them a lot at DreamHack also! :)

@jaunty talon thanks. And yes I've heard good things about fs. I was this close to buying their poe switch but they were plagued with supply issues during that time

All the way from August to December it would take to be available

But cables say they ship next day. That's pretty awesome

I couldn't find a video online that compared latency between fiber and copper while used in a vmware virtual machine situation

i guess it was very specific and that I would have to test it myself if I wanted answers

i dont recall the true answer for that but its nothing someone like you will notice

its a sub milisecond difference, probably in microseconds

and that comes down to platform level too

I see

So running vm over a SAN is basically similar to copper vs fiber

Well I wasn't saturating my connection too

it should be, but like i said its platform specific

thats good to know

At least the prof will be happy with the news

We asked the network administrator for the college to run some new fiber

quick fast we got declined

for example, i might have an ASIC that runs 8 copper ports shared 5gbit and then an asic for 2 fiber ports thats line rate

I love it when things are line rate

ignoring the platform at short distances theres almost no advantage to fiber

Yes. that means I can save some cash

awesome

it would be a pain to re-run everything

especially the junction between upstairs and downstairs

oof, that was a tough one

I was about to say something and then I caught myself

Synology NASes dont do 10G for writes at the small business level

but for reads, they do. Still...

it would be nice if they beefed up the NAS a bit

@waxen scroll ohh, did i tell you? My prof is sending in another quote for new equipment but guess what? it has things in the quote of stuff we already bought

I tried telling him to send it to me before replying to the email going forward with it but I still didnt get a look at it

so whats gonna happen is it will be processed and we are getting duplicate things we dont need

This was said a week in advanced before they needed him to reply back

sometimes I dont know what to do with stuff like that

someone, please give me fiber

no

and the file size is wrong. It should read like 998 GB

I deleted a lot of old stuff

@waxen scroll syncthing is one interesting piece of software.

i prefer one drive

@waxen scroll but with my connection, it would barely work

no fiber

I have VMs on SL and want to make sure they are backed up every week

onedrive works great for my mom

i thought we agreed no fiber needed

I will still have dreams about it

Fiber connection.

Hmmm, fiber

Yeah it's pretty allright

meanwhile im unhappy with 300mb and want to downgrade to 100m

Yeah after a point the raw speed doesn't do anything considering most sites aren't going to serve you at that rate

I did try to downgrade a little while ago... and they were like, no no! please let us give you the gigabit for a lower price!

they keep bumping our speeds for free but raising prices when renewal comes

if i drop to 100m its only $30/m

Well that sure can't be here

at least its unlimited

they took unlimited away from everyone and put it behind a $50/m fee

How much would you get with that $30 rate?

1TB

i only use about 350gb/m, but if family is visiting its possible to blow 1TB

Yeah, same for me. Man I would happily give up unlimited to save some money but that isn't an option

@waxen crystal I just want better upload speed

Should I complain to my lawmakers

if anyone knows much about the quanta lb4m switch, im having issues with the web console on mine

portscan shows nothing

alright boyez i got a big change tonight and im gonna put on the christian music to get right with the lord

no outage pls

got the web interface, appears the new firmware it came with didnt have it, but the older one does, go figure

@waxen scroll gl, I know that if I told my professor that, he would of said "just leave it the way it is, I don't want to use vacation time to fix something that shouldn't of broke"

@deep verge well maybe it was a module that had to be installed with firmware.

no avoiding it!

I remember Cisco doing that

its easy to set a classroom and leave it

Yeh

no, its was straight up removed in 1.1

but 1.0 has it

@deep verge I guess because they knew casuals probably didn't use it

I mean...

idfk

vxware 5.5 or 6.6, doesnt really matter, both are old

I meant to say that it was internal decision

It was a lot of work to add new options in GUI after adding them in cli

@deep verge I'm so happy for 6.7, it's all html5

Finally, something worth using

Powercli extremely limited without vcenter

Basically nothing useful can be done with esxi without vcenter

Not even making clones or snapshots

That's vcenter api feature with powercli

i didnt say anything about vmware

i said vxware

which is the wrong name

its vxworks

5.5 or 6.6 though, version numbers are correct

remember, this is a network switch

now i have a problem where the 10g links aren't working

Well if no change was made, it shouldn't just suddenly break

But you upgraded firmware?

Yes that is breaking change

its not a new problem

its just now i get to deal with it

I would call it a show stopper if it was reoccurring

10g should always work all the time

neither of the sfp+ ports are working it appears

could be the cables, i never got them to show up a link either

regarldess of what they were plugged in to

I pretty much have the fastest possible internet in tucson thats dsl

Any1 know how to boost LTE router speed?

Yeah install a better antenna.

Does it have external antenna ports or can the antennas be unscrewed? If so you can buy a large directional antenna if you have line of sight to the tower or a omnidirectional antenna if not.

Installed on the roof free of obstruction in all directions is best. However you can install it on the side of the building too. Just find out where your local tower is and make sure you put it on the correct side.

I have an LTE backup router and just by chaning the small antennas to a large omnidirectional one on the outside of the building I went from about 50mbps to 90.

Make sure to get a mimo antenna. Poynting makes good ones.

anyone run one of these? https://atlas.ripe.net/about/probes/

@vapid dune Yah, I got one

nice. which version did you get

v3 I think

What are the considerations for having LTE for the house? Anything that snags people?

@vernal gust it makes for a good backup internet connection if copper lines are down or in places where running wire is more expensive than wisp deployment

I'm mainly looking for an alternative to my dsl connection, 6 down .5 up for 5 years isnt doing hot

Rural area and all that

I'm assuming I can get some higher bandwidth through LTE, and drop the expensive Directtv plan in favor of internet media services

it should be a small bit faster if you have a good lte connection

@vapid dune Yeah, I have one of those as well. V3 according to the atlas site. 😛

Is it difficult to get one? I applied, just curious if I will get one

Well, if you don't have any, it should be a matter of availability. They want as many as they can afford to deploy. So if you apply for the first, there's almost a guarantee that you'll get it. Especially if the network, on which you plan to deploy it, has none already. But they DO priorities increasing coverage in places where there's not already.

I have one too lol. no difficulty imo

Just plug it in.

I mean mines not just plugged in but isolated @little schooner

@waxen scroll I ran into a confusing concept. If I want to use vlan 1 as native vlan, having an SSID that isn't tagged would mean I have to make sure that the port connected to the AP is tagged for vlan 1?

Even though it shouldn't be?

Which is why I stopped pushing vlan 1 onto my switches

untagged SSID means it goes to vlan 1

@waxen scroll but the port is already untagged for ap for management vlan

then the ssid uses the management vlan

Yeah, so in this case, it not work for me

It was easier to just tag a different vlan as native and get desired behavior

@little schooner Unless you setup the port on the switch to accept vlan tags from the AP, the AP will behave as any other client, except maybe for the number of MAC addresses on the port. If you configure the AP to tag packets with a VLAN ID, it will do so, and the switch will either accept that, and put the packets on that VLAN, or it will reject the packets.

@craggy parcel hmm see that's the thing though. The SSID is untagged BUT because it's an AP, it's technically still "bridge" traffic, which then means if vlan 1 is untagged, that is still valid because SW to SW is tagged traffic as it travels through towards the end point

Meaning it could still work even if I don't tag the SSID vlan 1

But it was confusing to think it that way

Made a typo and fixed it

I would say, that depends on the configuration of the switch. If the switch is configured to allow and respect VLAN tags, it will pass the traffic on whatever VLAN the AP tags it with. If the switch does NOT allow tagging, eg. the port is in access mode on a cisco switch, it should either strip the tag, and pass it on the default vlan, or reject the packet.

So, if you do setup the AP to not tag packets with VLAN ID, and configure the switch with a default VLAN, the packets from the AP should be passed to whatever VLAN the port has as it's default/native/untagged (Or whatever your switch calls it)

Yes. Currently that is 99 for management of ap

Also yes, there is a setting that controls how switch handles the tag and whether or not untagged stuff in that same vlan is allowed to pass as well

Vlan filtering I think it's called. I can have it on strict mode or pass all

I think a combination of that setting would solve my problem

In edgeswitch, then it becomes a general port

I'll leave how everything is now but when 10g switch comes in, time to redo

I just upgraded my internet.

50 mbps up is a lot better than what I got

My isp will give at most 10 up. But you can get gigabit down.

My ideal speed would be at least 100 mbps up and 150 down

That would be amazing. At school I can get 100 mbps up and down if I plug in.

thats fairly normal for old dsl companies they used to do a percentage and have not changed it to match modern times

100/10 any way

Recently i've lost a lot of speed on my powerline adapter
Used to work fine a month ago then suddenly i'm only getting 5mbp/s
and its very unreliable
i've been using the exact same adapter for 3 years and i've only found issues recently

Get any new appliances recently?

mmm not in the room im in..

but we did get a sodastream in the kitchen..

I doubt it's the sodastream

hmm...

Try unplugging it anyhow lol

ill try unplugging stuff when i get back home to see

what's a good price for a normal 1gbps network switch?

managed or unmanaged an how many ports

What does managed do? Can't I just use my router for that?

8 port

i guess you just want more port's right so 8 port unmanaged

arround 20 a 30 usd you can find one

ok

Is managed if you have like 24/48 port?

Managed is if you have a GUI/CLI to configure it

managed can be had on all port configs but for just having more port's you don't need it it's more for in a business or if you have an complex network

ok

managed is also a lot more expensive then unmanged

Like if I have 1gbps line but 200GB cap limit

so I could cap download speed

not like that it's more if you have vlans

a vlan is a virtual network on your actual network like you have an entire network for guest and they can't come on your pc's if there is a vlan

ok

I was at a Lan and they were managing the switches...we did have an Apex dc ++ server running

For the average user managed switches are not needed right?

yeah you don't need it as you only want more ports

So i'm also having issues with my wifi, its been very unreliable as well recently. I only have a modem that has routing capabilities, is it worth investing on an access point? A friend advised me to get one but I just have no idea on what I should be getting to improve signals and not lose speeds

@drowsy sierra an access point or wireless repeaters can be used to improve signal coverage. But without a site survey, its hard to say exactly how many you need and where to place them

We technically have 2 floors and a basement, we're hardly in the basement so we need stable signal on first and second floor

The modem/router is in the 2nd floor

I talked to one of my co workers and they said its not a good idea to go for an access point and a router should be good enough

@drowsy sierra well, they are assuming that you somehow have the router in the center of your home somewhere so signal can evenly reach corners of your home or something

If the router doesn't have a strong array of far reaching antennas, then an access point makes a lot of sense

In fact, if the walls between floors is not solid and mostly wood structure, one AP closest to the center in your home should be great to reach the 1st floor

As for the basement, from my experience, it doesn't reach that well or signal is spotty. I'd recommend running a wire to a second access down down there

My basement has concrete

Apparently my modem/router combo is trash lol

so i need a dedicated router

Which router were you thinking of getting

I have not done any research...

i haven't gotten the time to do so yet

Well you either get a nice one and somehow place it near center of your home or

Buy an access point that can be ceiling mounted anywhere

And get better results

Give me an idea on what to look for

That or buy wifi repeaters

atleast the type of router and access points

I have most of my lights connected to my router and some tvs and google homes

Ubiquity has nice APs if you're willing to go that route

Ubiquity is what one of my friends told me to get

but its close to $200 CAD

A couple of AC lites can do the trick

Even 1 might do the trick depending on it's location

Yes. Like the basement

I need just two for this house

How are access points set up?

https://www.amazon.ca/dp/B01GBVMIWE/ref=cm_sw_r_fm_apa_i_qLO7DbW7K41PC

This is the one that was recommended to me

@drowsy sierra from their Android or iPhone app. Or with unifi controller you install on computer

oh interesting

That's the expensive version but that's what I have in home

So you're saying I can just get this and not worry about a router?

Ubiquiti UAP-AC-LITE UniFi AP AC LITE 802.11ac Gigabit Dual-Radio PoE https://www.amazon.com/dp/B01DRM6MLI/ref=cm_sw_r_cp_apa_i_3J68DbN79DNM1

If you have a decent router now then just the one AP will do

welp lol

i have the modem with routing capabilities from my isp

It was ok

Ah, yah, then you'll be fine

but now its terrible

https://www.amazon.ca/dp/B01DRM6MLI/ref=cm_sw_r_cp_apa_i_3J68DbN79DNM1

Its the whole reason why I've been looking at other options

speed test on my phone on the 2.4ghz one is only giving me 41mbps

when i have 1gb

I mean...

Your never gonna get 1gbps on 2.4ghz

it used to give me about 200+

2.4ghz doesn't even go up to 200 mbps

or maybe that was the 5ghz..

Probably

but i know it was never 41mbps

it was higher before

You tried restart all the equipment?

yep

i've done all the troubleshooting I could before I went to ask lol

I see

I'll brb

Okay take your time

Gotta step out for a bit

Ty for the advise though, we can continue whenever you have time

Ubiquiti APs are nice

I have one at my house, one at my Dad's house, one at my Mom's house, and one at my Dad's company. They are amazing.

you don't really need to run the controller software all the time. just for setup

Even the app you can setup ad hoc without controller

how much better is the non lite version

@drowsy sierra 2ghz and 5ghz are slightly faster with more streams

None of the hardware, except amplifi alien , is future proof. They still are on 802.12ac wifi

I mean even the current wifi 6 stuff won't be good for at least 1-2 years

Also very few devices that support AX yet

so hardly worth it to upgrade if your devices can´t use the benefits of it

it's arguably not that mature yet either

@shadow shoal all my phones and laptops support ax

I'm definitely going to benefit from it

Oh nice

But yes, like my friends, they only have N or AC gear

So yes little benefit

yeah everything AC here

its gonna take me another 3 years to get AX

5 if im not feeling it

@little schooner right?

@waxen scroll right, if it's ubnt. Yes

HP has ax aps and rukus too

@waxen scroll unless you talking about client adoption, yes

5 years

@waxen scroll case in point, only recently did 2gig security panels implement 5GHz wifi connectivity for my alarm company

And 5ghz has been around for ages

mine doesnt do wifi

its serial to ethernet

@waxen scroll sounds very legacy

@waxen scroll ever use a label maker that requires the battery to not be in the unit in order for it to charge?

no

Bmp21-plus

A good label maker with terrible engineer oversight

oh you

I mean, was it really that hard to implement circuitry to detect when you plugged in for AC power or battery?

It's so dumb that they didn't think of that

depends on your budget

Well it cost like $200

I would think they would put it in

I guess I have to always keep expectations low then

@waxen scroll but seriously though, that is the least thing I would ask about a manufacturers product

Like I expect it to work like other charging devices

It's an odd question or trait to discover that doesn't work

Amazon would honor the return for me but I have to use persuasion

if im replacing antennae for an R6700, do i need specific antennae?

yes

nope. a coat hanger should work as long as you mount it right

my dad has a rack of servers and cisco routers and switches

but half of it is off

what is the difference between a server and a nas?
dumb it super down for me plz. lol. fundamentally, it seems like the size ? thanks in advance for any help

A nas is more home based with a simple interface and a server is more enterprice with more advanced options and mostly no interface in 9/10 times

A NAS is a server, but servers are not NAS's

And that ofc

The term "server" is just a broader term

NAS stands for networked attached storage. It's a type of server that allow for access of a file system over a network. It is essentially a hardrive that you can connect to over a network.

Or multiple hard drives

thank you that helps. i like the explanation from @vernal gust . thank you all for the help . looks like im on the right track in my research

Wait but some businesses use "NAS" as a server. One distance learning platform we used made us download all vms from a synology public facing http server

They can be used interchangeable but is more commonly used for storage purposes

thats basically the root of what im trying to find out. can i use a nas as a small business server

and it seems like the answer is super yes

@little schooner The fun only really begins, when you use the NAS as a frontend device for a SAN. This industry's terminology is pretty confusing at times.

@zealous burrow That kinda depends on what that server would be doing.

o.o

I use a nas to put my files on it

@zealous burrow yes you can. Synology sells beefy ones where you can even virtualize things

But again that is more expensive than just buying dell server

too much beef isn't good for you lol

@vapid dune what about turkey

@craggy parcel yes very confusing

Just how SD Wan is confusing

im attempting to do it on an old intel that does have virtualization

Yeah, I'm not sure I've totally understood how SD networking works, with physical infrastructure.. Every time I read a description, they either talk about VXLAN or make it sound like it's just a central management solution for switches, routers and access points, but still tries to make it sound like it's MUCH more than that. 😉

needs more network UPS

yeah the network switches seems to be a thing of concern

ill have a UPS for it for sure

@zealous burrow What kind of services do you want the machine to require? Virtualization needs a LOT of RAM and diskspace, so does databases. A fileserver, just needs a lot of network bandwidth (You want the network to be the bottleneck, not the server), while managing a windows domain, needs a Windows server, which can be physical or virtual. So if your NAS can do the job for you, depends on your requirements, and the NAS you have. 😉

right right thats what im looking at . a nas seems fine for the duties i need it to do. im researching what would necessitate a big boy server.

huh

what do you need it to do

basically what a nas does. file sharing over a network. nothing big. images and docs

@zealous burrow Images can be QUITE big. I've seen photoshop documents in the gigabyte range...

so big that it would necessitate a big server? with all the bells and whistles?

Depends on how the files are accessed. If they are used as a common storage solution, with people working on the files directly from the NAS, you would like lots of RAM and network bandwidth. Also you need a CPU capable of filling the network pipe to it's limit. (Most CPUs made within the last few years, should be able to)

yeah i figured out the ram part but how would i increase network bandwidth? a 10gig switch?

its an 8600k. not the best kuz it doesnt have hyper threading

thank you chano. i appreciate your time. i see you typing. thanks for the information

If you've got a few people working with images in the GB range, like for billboards, posters etc. you really need it to deliver the data FAST with random access. I suppose Photoshop would perform well, if you can deliver at least 30 megabyte per sec, which amounts to about 300 megabit per concurrent user. And yes, network bandwidth can be increased with better network cards, and switches. Also remember, that 10 people each needing 300 megabit, will require a server with a network interface able to deliver at LEAST 3 gigabit, however, each individual client only needs to be able to receive and send with 300 megabit. So the NAS and the server, in that case, will need 10Gbit, so will the switches. But your client computers will only need 1Gbit. Just something to remember, before upgrading to 10GBit all the way. 😉

As for CPU's I have absolutely no clue what you'd need. When I need gear for my job, I just call my supplier, give them my requirements, and get a quote. 😉

very nice. thank you

that information helps me a lot

My knowledge of PC chips don't even allow me to select a new graphics card for my PC without doing a lot of research to at least make sure it's better than what I have. 😛

haha i get that. naming schemes are all over the place these days

doing research before buying stuff is also always good

100%

Yeah, and then there's the funny thing about money. I play games from time to time on my PC, but mostly games a few years old. And not enough hours that I'm willing to spend a good chunk of my monthly paycheck on the graphics card. Not making things easier.

@shadow shoal Agreed, but for work, the money are usually better spend just paying someone else to do the research, even though we all know their profit on the equipment they sell also influences their recommendation, than me doing my own research. It's just a funny balance of knowing when your time, and the company's money, are better spend on paying a little extra for new equipment, or you doing research to save a few 100 dollar.

plus that way you usually are covered in warrantys

Yeah i would only do that for myself, friends or family

But if it was for work they can just pay people for telling them what to buy

yup

I wonder when 10 gig ethernet will become consumer cheap

@shadow shoal Yeah. But it does not ALWAYS go well. I've had a bad recommendation for a firewall, cost us about 2200 USD in equipment, licenses and service, for a firewall that's collecting dust on a shelf. They somehow failed to understand what kind of traffic we had. I specifically stated we had about 40 megabit of constant VoIP traffic, which is very small packets. And they sold us a firewall that could easily handle all the traffic, but not that amount of packets. So not only did we have to pay a consultant to tell us, that the only thing we did wrong, was getting an underpowered firewall, but also had to buy another one, that could actually handle the task.

But at least I had MY ass covered. 😉

Never buy ASA

)))

Funny, I don't thing I ever specified the brand... But yeah, an ASA it was.

lmao

Also the consultant said exactly the same, the architecture of the platform just sucks.

@craggy parcel 40mb of voice traffic? Call center?

yeah ASA is still years behind Palo Alto and Fortinet

Just a heap of crap atm

@hollow marlin Nope, telephony provider.

@craggy parcel make more sense. I'd say, 40megs high. Our SRX550s handle our trunks without a sweat.

@shadow shoal Yeah, instead of integrating the inspection part, they just bought a software solution, put in an ESX server, and forwards the the traffic to the virtual machine for inspection.. Some bright mind must have thought "Oh, no this can not impact performance negatively, in ANY way!"

lol

@vapid dune 10 gig fiber is already cheap.

define cheap

you can do it for less than $300

do what?

A 10 gig switch, NIC for two PCs, transceivers, and the fiber

that's not cheap lol

@hollow marlin Yeah, we have quite a number of ISP's that needed phone service for their customers, and all those cable modems needs to tell us where they are at short intervals, also as IPv4 is quite limited, we use tunnels and internal IPs for the traffic, and therefore not only the SIP traffic, but also the RTP traffic will pass through our network. And the classification and inspection of all those tiny 20milisecond RTP packets will put quite a load on the firewall. 😉

@vapid dune $300 is cheap if it includes the entire network. That is cables, switches, routers and computers.

https://www.amazon.com/MikroTik-CRS305-1G-4S-Gigabit-Ethernet-RouterOS/dp/B07LFKGP1L/
https://www.ebay.com/itm/MNPA19-XTR-10GB-MELLANOX-CONNECTX-2-PCI-E-10G-SFP-NETWORK-CARD-W-BOTH-BRACKET/131634470127
https://www.ebay.com/itm/GENUINE-Cisco-SFP-10G-SR-V03-10-2415-03-Transceiver-Module/182733551590

That's $226. Then add the cost of the fiber. (two connectx-2, 4 transceivers)

Way cheaper than what 10 Gig fiber was, and still is.

@rocky badge There's NO WAY, I'm gonna believe that a "GENUINE" cisco SFP can be purchased for $8.90. A price in that range, for a cisco transciver really sounds fishy to me.

I have two :p

@craggy parcel we're a regional ISP primarily focused on business hosted PBX and have anywhere around 150-200megs of SIP traffic throughout during the day. We had to move our metaswitch off some of the core MXs because the line cards with some of our policies couldn't handle the traffic. I've been there before.

I see they are quite low power, which could explain some of the price. Or the seller stole them from somewhere.

is mikrotik terrible or would you recommend?

@hollow marlin Yeah. Too many people focus on the speed rating in bits/sec, when they really should focus on processing speed in packets/sec.

@shadow shoal I don't like there cli

I'm personally a big Ubiquiti fan 😄

I've heard quite a few people, I regard as competent in networking, say mikrotik devices are great. However, never tried them myself.

Packets/sec is all we look at anymore. Some vendors are moving that way I'm data sheets as well @craggy parcel

@little schooner Who has EVER made a CLI that's impossible to hate? 😛

(Web interfaces are far worse, though.... )

Mikrotik is a love hate relationship

@craggy parcel I like Cisco and Edgerouter

@hollow marlin Ya, at school we're moving everything to IP based...The throughput was fine, it was pps.

yeah i only have experience with cisco and edgerouter atm

I've not really used the Edgerouter one, but I don't like the cisco one either.

I love UniFi more than EdgeMAX, but I have an ER-X I'm using as a switch.

@hollow marlin Yeah, I've also noticed that trend. However, I've also seen WAY too many datasheets not telling the size of the packets. 😉

also its terrible trying to find information regarding cisco shit

god

The only thing using POTS in the district now is the intercoms at the high school and the backup lines 😩

Actually I think cisco has quite a lot of easily available data on thier website, that's well indexed by google. 😉

@craggy parcel I don't mind it as I can just multiply by 64 and get worse case scenarios

Haha...

@rocky badge Why keep the intercom on analog?

I guess costs.

All of the other schools in the district are using IP based intercoms.

but those deployments were rather "small"

Well, it's only cheaper till someone needs to service the old system, and no spares are available. 😉

Yeah lol

Each school has to have the appliance, each analog intercom has to be replaced, new racks and switches for the intercoms, etc.

Even moving from the old phone system to CUCM was troublesome for the high school

Same thing applies whenever my boss says "Well, if you make this feature in our software in this shitty way, it will take less time, and cost less". The answer usually goes like this "Sure, but there are these risks of things going wrong, the chances are ... Is this acceptable for you?" and if he insists on the shitty solution, he gets it, and when it breaks, and he complains, all I have to say will be "Told you so" 😛

😄

Just like someone tagging the switch uplinks incorrectly so all of the intercoms go down at a school

There is always no time and budget when setting it up but there is unlimited time and budget when it breaks

@rocky badge You can get quite cheap IP phones, that can be placed in classrooms and whereever intercom devices are needed, and for PA there's quite cheap solutions as well, even IP phones with autoanswer, or PA features built in. (Most SNOM IP phones has but autoanswer, and multicast features)

@hollow marlin Well, fixing stuff that broke is on the maintenance budget, not the development budget. 😛

The intercoms are from audio enhancements. IP phones are either Cisco or Alcatel Lucent

Oh, they have some sort of brand loyalty?

One time, someone was like, "Why isn't the gateway 10.0.0.1, it's configured for 10.0.0.3...and they changed the gateway IP.

Stuff with their gateways set statically broke...rip that guy

@craggy parcel Yeah lol

LOL.. Yeah, that's funny, it is USUALLY the first in the IP range, but not ALWAYS.

Nothing's actually 10.0.0.1

10.0.0.2 is the primary DC, 10.0.0.3 is the gw

Haha.. Made to annoy. 😉

10.20.0.1 is the gateway configured for the intercom VLAN

I once setup a network using the LAST IP of the scope as the gateway. Lots of comments like "The gateway MUST be the first address" and the like, from people not knowing what they're doing. 😉 Also at the office one of the gateways has .160 or something like that, in a /24. Mostly because it was the first available non-dhcp address in the scope. 😉

Yeah, my guest VLAN gateway at home is 192.168.10.254

https://blob.pcmr.rocks/aebb48cb.png

I don't have such a fancy networking setup at home, mostly because I just live by myself anyways, work with IT daily, so when I get home, I can't be bothered messing about with my own network. 😉

😄

Also funny how people don't understand it when you buy a specialized device, instead of "making it yourself cheaper, with a raspberry pi". When you spend 8 hours a day doing systems administration and software development, doing another 4-6 hours when you get home, without being paid, is not exactly the first thing on your mind, when you can get a specialized device for less that what you would get paid for working the same hours.. 😛 Many simply doesn't get that you don't like EVERYTHING that's got to do with IT, and find it all funny. Yeah, I'd gladly spend hours messing about writing a hd44780 decoder plugin for my logic analyzer, that's something I see a fun challenge in, but spending hours putting together something that allows me to send stuff from my phone to the TV? No way, I'll just buy an apple TV for that. 😛

Yeah, most of my IoT is stuff like Nest, Hue, etc. But Home Assistant to add more functionality to them

https://blob.pcmr.rocks/842bc10b.png

Haha.. I spent about 1 hour looking at Home Assistant, realizing that it might do exactly what I wanted (Mostly datalogging from the hue motion sensors), but that it would take WAAAY to long to configure, and I'll just live without the datalogging. 😉

Hmm.. What TV have you integrated with?

Roku

Aaah... Didn't know they made a TV as well. 😉

oh, it's a TCL TV with Roku built in lol

it's just using the Roku local device API

Ok.

Hmm... Seems like my Samsung TV might be one of the supported models, as well. 😉

Hmm.. I kinda had a planned to get to bed before midnight, which was two hours ago.. So I better go now.. Bye...

my samsung tv was on the fritz so I had to unplug the smart tv. best thing to unplug imo

Oof. Only one thermostat @rocky badge ?

@craggy parcel the problem with HA and non alarm sensors is that it might not be instant

Mine is communicating with a traditional alarm and sensor reporting is instant

My buddy tries controlling lights with non alarm for occupancy like in a commercial building and there's a delay before the lights turn on

@little schooner this is the serial to Ethernet I told you about

Ghetto but instant

You don't want hass logging motion sensor data on an rpi BTW. If you're planning on using an sdcard, just walk away

I don't allow any of my motions to keep a log

I just do exterior doors, windows, or other sensors that only go off a few times per day

woah that's a lot of sensors

what is that

@waxen scroll ya just one lol

@vapid dune home assistant?

oh I see

I tried using the antennae from my Cisco AP, but the connector are too large...lol

the stuff I have to deal with

yes they used emojis in an ssid

but that's 2.4GHz :p

Use 5Ghz 👌

@waxen scroll Well, the data I want to log from the motionsensors are not the motion, but temperature and light levels. I suppose they don't trigger quite as often, as motion. 😉

depends what you want light levels for

im doing the same with an all in one sensor... i just want it for light level

i have it at fastest polling (5min) but i dont log it

personally i dont use HA as a human interface, even though I made a GUI the whole point is never to look at the GUI xD

it should be like an AI and know what you want and when

i dont think blobby is using it that way 😦

like for example my front outside lights turn off at 9pm but what happens if i have a party and it runs late? simple! if the front door is unlocked, do nothing, then if it locks turn them off 2min later

an actual manual process you have to think about automated!

not this "i can turn them off from my couch" stuff

xD

also @rocky badge why hue? whats the benefit of turning your whole room blue for $70/bulb versus normal non-smart lighting (or zwave switch) over LED light strips that provide RGB accent lighting under cabinets, etc?

i dont get why so many people want an entire area an obnoxious color and be able to change it instead of actually doing theming light strips that enhance the furniture in the room

@clear igloo maybe im too old

my friend got hue lightbulbs and hue rgb strips to match the rgb keyboard animations

a bit overkill i'd say

hah

arent those strips like $70/20 feet too, and god forbid you cut them shorter and make it $70/5 feet

i just use chinese stuff

$10/25 feet

i have a 15$ sonoff switch to turn on my bedroom lights and a blue led strip from google assistant etc

happy so far

interesting... that fits in the box? i dont see that working in my houses boxes

kind of cramped for space

there are smaller models made to fit inside the switch housing

mine is hidden in the storage room

its been like 5 years and i havent expanded my switches. i only have two. now they're outdated

should be easier to install one behind the switches

dont you have drywalls?

i do

cant you just slide it in the wall?

against code and that also means i need to do drywall repair and repainting which can turn into a big deal... you cant just paint a small area you have to do a whole wall or more

i was thinking of dropping it in the wall from the hole where the switch is mounted

we're not allowed to have high voltage wiring outside of conduit and the boxes here

maybe you are, idk

there are conduits in drywalls?

yep

i didn't know that

some places wont even allow you to have cat6 outside of conduits and boxes

looking at my utp cat5e going into the electrical wiring

@waxen scroll in the lab, it's a wire cable guide that's like a flat tray. It's all exposed

I guess our lab didn't fall under this requirement

yeah but what happens when it goes through walls

probably conduits

@waxen scroll I didn't check specifically that but yeah

is it a bad idea to adapt different size antennae connectors?

Probably

But antennas are antennas

As long as the actual shit going through the wire is compatible and doesnt fry your stuff you're good

@little schooner /31 ?

Can someone help me. I just got the NETGEAR Nighthawk XR500, and when I try to connect to discord I get a message saying RTC Connecting and then it saying No Route. I also cant load into games, but i am able to connect to the internet and watch videos and browse the web.

@waxen scroll hehe. So technically he hasn't responded back to me yet since he is grading work to submit the final grades for the 4 courses he's teaching

Not yet. But soon tm

lame

@waxen scroll the tray thing I saw months ago

So I remembered it

@waxen scroll on the flip side, the Chem teacher didn't want to fail most of his class, so he curved the grade for F to 53%

lmao

So many of us passed

With d- or moved up to C

@little schooner show us your home assistant install

@waxen scroll Just finished final paper work for new home. Soon ill be able to wire shit up the way I want to

hopefully closing at the end of Jan

o_o

sensors on everything

@hollow marlin I have: 33 alarm sensors, 1 multipurpose, 4 temp/humid thermostat addon sensors, 4 thermostats, 2 zwave switches, 4 zwave LED appliances, 1 smart lock

the system is mostly automating light states depending on many variables like security activity, time of day, inside natural brightness levels

some small HVAC automation as well

and even smaller, safety automation. it'll know if theres smoke or a verified fire

so like i warned before, if this logging isnt filtered RIP most SDcards

Jesus man, I cant wait to do the same

RIP your wallet

Rip everything

im debating on selling my house in 2-4 years, so im not sure i wanna continue to invest in that

i will prob rip all of it out TBH when i move

except the hard wired security stuff

im not about to support HA or anything else for normies

they can put their alexa in and be happy controlling two bulbs xD

😂

An yet here are you sitting with ur everything being able to be controlled while having it secured

you arent able to override the security portion if you got access

its just a service reading and writing to a socket to the security stuff in the background and you cant just tell it "disarm" without credentials

so like, you hack it and get the front door lock to open.... thats great, but then a separate system is going to trip if you open that door

lol this is what I think when people who go all in sell their house: https://vancouver.craigslist.org/van/sys/d/vancouver-home-automation-system-price/7029975201.html

lmao

that looks like ancient stuff

since its brand name that had to have cost a fortune

oh i see the prices at the end

yep.

would have loved to see wtf this system was doing. i can hardly believe it was in a house

tons of A/V

anyone used homeseer? wondering how that is vs the free stuff

looks like crap AFAIK

@waxen scroll I have HomeSeer currently. V3 needs some work, but hs4 should hopefully make it better with mobile push alerts

Support gets back to me quick when I have questions

I didn't see zwave first alert carbon and monoxide detector support for HA

link to product?

https://www.firstalertstore.com/store/products/z-wave-smoke-and-carbon-monoxide-alarm-zcombo-g.htm @waxen scroll

oh really

mines ghetto lmao

[Smoke Detectors] -> ALARM INTERLINK BUS <- Smoke Alarm Relay Module -> Generic time delay relay board [10sec] -> Alarm Panel -> Serial to ethernet -> Home Assistant

Lots of links

i dont have carbon hooked up but you can buy a carbon module and do the same thing

its a lot of links but its 100% reliable ignoring the points of failure

zwave isnt always

i also have a water flow device to detect if a fire sprinkler went off

if HA notices that one of those things went off it'll unlock the front door and turn off any fan within its control

How much did the whole system cost you

what do you refer to

Well everything

the sprinklers and interlinked smoke detectors were here when i bought the place

the rest of it i estimate about $2k but thats with me doing tons of labor

if someone else did it, much more

one of the problems was i bought an advanced alarm system and the base unit and the modules for it arent cheap at all

this was because i wanted an all in one automation platform with advanced rules

i had no idea I would be using something like HA instead

for example, each keypad is about $200.... ethernet support, $200-300

if i expand the hard wired zones, thats another $100 or so

but its wayyyyyyyy more reliable and instant than zwave is

since zones are simple and dont communicate actual data, you can basically plug and play a crapload of sensors and then import them as objects into HA

as far as i can tell, the speed at which HA realizes a sensor changed state is under 1sec

@waxen scroll that's true. I know my zwave units have a delay

Like 5 seconds or something like that

But it did alert me when I left the stove on

bad boy

That was a close one lol

lmao

@waxen scroll had it not been for HomeSeer sending an email, the house would of started fire in kitchen

if mine got to the point of alerting the monitoring center would be sending the fire dept

At first I tried to sync the fire alarm with the monitoring company but

They said they don't support anyone's zwave gear except their branded products

It's really stupid and they call it Zwave ready

Lies.

thats another plus of doing it the way i did it. its supported as long as it connects to the panel

if i did this again, i might consider running a honeywell alarm at half the cost since i dont need it to be "smart" other than an ethernet

What happens when I plug a Gigabit switch on a 10/100 Access Point/Router?

Does it Gigabit or not?

The speed of the link is always the speed of the slowest interface

1000Mbps --> 100Mbps = 100Mbps

If you're asking about the ENTIRE switch, it's a port by port basis

Having one port running at 100 won't make the entire switch run at that speed

Just that link

I mean, if I connect the input of the switch to a 10/100 Router, is it still gigabit or no?

The switch itself will usually still allow gigabit communication between any devices connected to that switch, however, anything travelling along the network cable to the 10/100 router will only operate at 10/100 speeds.

That makes sense, thanks 👍

assuming the switch doesn't need to go to the router for routing

eg vlan

I'm gonna assume an AC1750 Nighthawk is not a good upgrade if I already have an AC1900 "Linksys"

I think I cocked something up.

I bought a Cisco 3560G switch. Works fine. But the OS was last updated in 2004.

So I got the new OS and flashed it on. Switch is working but the web interface requires a username/password now.

I tried running this in the console

config
username admin privilege 15 password admin
end
wr

But it hasn't fixed it.

Anyone have experience with Cisco stuff?

I'm not particularly experienced, but did you do login local?

No, what does that do?

I used show run | i username to check the account I made exists. It does.

I'm just rebooting the switch now. Some suggested restarting the web service might help.

You need login local and i hope you did copy Running config startup config

login local instructs the switch to login from the local user database, the combination username and password you entered

I did. I mean copy running to startup

login local just returns Invalid input detected at '^' marker.

Gotta set it on the vty lines if I recall correctly

I am using putty and the console port

I don't know what vty is

line vty 0 15, login local

vty lines are the virtual terminals used for telnet, ssh and http connections

Ill try running that then

Nah it says invalid input again

https://i.imgur.com/tObI7iT.png

Finally hit 30%

More widely adopted now since we are running out of ipv4's all the time

Yes, but are those stats for external IPs? because I see a lot of places, even universites, still using IPv4 internally

yes they are

Is there a need to adopt IPv6 internally?

yep

Why is that?

some companies are running out of internal ipv4 (mine), if you decide to NAT and do protocol translation because you're not deploying it internally, thats a performance hit, perhaps in more ways than one

it also likely increases network management complexity as well

it makes business to business connections much easier as well since theres plenty of public space available

many businesses dont like to NAT and so when you have a private circuit often times they advertise a public IP space to you

your problem is then maybe you dont have space to advertise back

since IPv4 is gone, getting it is expensive

Ripe is also out of ipv4 now

Only afrinic and the other one that has ipv4 left

oh wait lacnic also has some tiny amount left

i keep trying to get places i work for to transition but everyones so lazy and doesnt want to kick off a project that big

Most companies are probably going to wait until the last time to implement ipv6 unfortunately

yep!

i got super close at one job to the point we were placing ipv6 orders with our providers and one person killed it because they didnt want to deal with it

Thats also a huge problem, people don´t want to put the effort in to learn

But i´ve found that ipv6 isn´t much more complex than ipv4

i think its easier

hex is great

Yeah it’s not. People just assume it will be harder.

Yeah i thought it would be if i´m being honest

But after i started i realized its not

the way you can subnet it and identify regions, countries, sites, then vlans is amazing

yeah ipv6 is legit amazing

I´ve been rolling dual stack at home now for more than a year and love it

The thing is that you could just do a partial rollout internally. It doesn’t have to be everywhere right away.

Yeah you should definitely do it in phases and plan it well

Should not be in just one go

for the confused here... <assigned prefix> : <region of world> : <country> : <site/vlan> : host:host:host:host ..... 2001:0db8:0000:0000:0000:8a2e:0370:7334

so you just look at it and know if you memorized

nibble boundaries are also great

https://meetings.ripe.net/see2/files/IPv6 Addressing Plans.pdf

Even myself with only a /44 for personal stuff can do some pretty decent subnetting. I can carve out a /48 for up to 16 announcements and then still be able to separate those up into as many individual/64 networks as I could ever need. I could split those subnets up in some fancy system by nibbles if I needed to as well. If you have a /32 which is a common end-user allocation then you can do something more complex like LZ mentioned.

Yeah i have a /48 and that is enough forever

it seems like LMG doesn't have ipv6 yet

i mean, im pretty sure they deleted all vlans and went with one flat network because their usual network guy wasnt able to do the refresh so they got confused

so no, im not surprised that theres no v6

yikes

very sad

it is

in some ways it might be better that way though... having editors on the same vlan/subnet as the servers

with their limited budget it probably helps to keep it switched

it's not so safe though

if they get hit by say ransomware

if all these editors are on 10G sweeping videos and all this other stuff, that would require a super expensive layer 3 switch

it is cheaper to get a powerful router that can route 10G - something like a mikrotik CCR1036 or CCR1072

or you can give the servers with the network drives IPs on both subnets

a flat network is a horrible idea from a security perspective

also don´t need a layer 3 10g switch

can you reasonably pull fiber at home for 10g?

10G is so fast that most customers cannot really utilize it. I work for an ISP remotely and we have many customers who buy 100Mbps service and consistently only use like 5-10Mbps

The dream would be to be all layer 3 mm

I saw their 10G upgrade video and am a little puzzled by why they have an edgerouter and a pfsense

They don't now afaik

It's some pfsense thing

@tender hazel 10G router is not cheap

@waxen scroll I'm eager to know what grade I got for physics. I need to know if I passed it or not. My degree is 6 classes away

Obviously you passed

Then I can go for masters in cyber and info assurance

In Chem I passed

But physics teacher is quiet

Tell them to curve it lol

He doesn't respond to. Emails now

Oof

It's like vacation started for him immediately

@waxen scroll this was the Chem teachers response for ppl asking to curve/make it better

Please do not send any personal or group request for 'extra credit' assignments or grading scale modification (such as curving) at this stage. No such requests will be entertained. Also, moving border-line people to the next group is entirely at my discretion.

But in the end, he did it anyway

Kek

You need to graduate and get a job before the market crashes again

Don't wait on masters degree

lol

depends on the industry really

comp sci is pretty solid pay and job wise

hes doing IT

aint no "heres 80k" out of college

eh really

@little schooner a CCR1072 is $3k USD

which is pretty cheap for a 10G router

thats bold claiming line rate on all interfaces

Who said line rate on all interfaces?

they have 8x10g, the marketing says 80gb throughput

Total real world routing capacity of that device is 20Gbps

You can get more in certain configs

But I would say you can count on 20Gbps total routing performance at least.

i guess it depends if it keeps a cached routing table

i dont know about their OS

Route caching doesn’t really help performance like you might think. It was removed from newer Linux kernel versions.

The newer routeros beta 7 is on a newer kernel so no route caching.

But the FIB lookups are efficient enough that it shouldn’t matter.

I’m a mikrotik certified trainer actually.

Whenever you look at mikrotiks specs you get the best idea of the real world performance from the benchmark of routing with 25 ip filter rules, 512 byte packets benchmark

That’s generally what you can get realistically with that device

@waxen scroll I just had a deja vu moment right now. And I recall seeing the exact event happen three months ago

It's scary to see into the future like this

?

The same notifications and mail I received at 5:01

I remember going through this already

im telling you forget the masters, go get a J.O.B.

o_O

@waxen scroll oh. I know. I can't start masters right away

I will get job

PRIORITY

@clear igloo get him jr solutions engineer

@waxen scroll LUL

I don't really get why pfsense is so popular actually

@tender hazel because it's so simple to use

And they sell affordable appliance

the appliances don't look to me to be much cheaper than mikrotiks - if anything it is more expensive for a comparable box

I can't really comment on the ease of use aspect since they don't have an online demo

so all I can see are screenshots

and some other admins I trust often complain about how horrible pfsense is

I think I tried it once, and the interface didn't impress me, and the ease of use also didn't seem to be there.. but that was a long time ago

I'll install the new version in virtualbox

@tender hazel well, yeah they are not as cheap as building a small minipc box

But for a small business for drop in solution, it works I guess

@tender hazel you are talking about the quad core boxes on Amazon?

no, in general, compared to the mikrotik boxes you can buy

I mean mikrotik will run on x86 too

but I'm just looking at the throughput that the box for that price will support

https://www.amazon.com/dp/B01GIVQI3M/ref=cm_sw_r_em_apa_i_fjf-DbX6HTG70

Like that one

I didn't know mikrotik sold their own x86 boxes

What model are they?

They dont, its a CHR image you slap on any box you want

yup

Oh. But then why did you say it was comparable?

If they don't make it

or you can download the x86 version, but they are trying to replace it with the VM version where possible

comparable in terms of you pay a certain price for an x86 version of pfsense that can handle a certain bandwidth, but there is a comparable mikrotik (not necessarily the same architecture) that will handle the same bandwidth for the same price

Agreed. Unless you bring IPS into the picture, hAP ac2 basically destroys any router/firewall up to a gig.

4011 if you need extra rules or non-fasttrack

Also dont forget power consumption

yup - I wasn't really counting IPS.. I mean the problem is that if you introduce IPS you decrease potential throughput a lot

@tender hazel I prefer the asr9000 series to mikrotik

Just personal pref

😘

cisco? if you want to spend a fortune

we moved from cisco to mikrotik

for core devices that handle lots of Gbps Cisco still makes sense

@waxen scroll https://www.youtube.com/watch?v=Z8MWl9UGwQo

We have a massive discount and 400k doesn't make my manager flinch

that's fine

but I work for an ISP that used to have to buy a $3000 Cisco to service <40 customers that a $500 MikroTik easily outperforms

Lmao I'm passing this around tomorrow

so our WISP saved like many thousands of dollars by moving from Cisco and we provide faster speeds for our customers

our bandwidth usage increased from like 350Mbps for our entire network to like 750Mbps just by replacing the Ciscos with MikroTiks.. because when we used Cisco we had to buy underpowered Cisco that could not handle the bandwidth we needed

What was your discount

discount? I don't think we got a special discount from Cisco

That's the problem. Current job and others have been over 50% off

even with 50% off, still not worth it

I had wanted to offer VPLS on our network years ago with the Ciscos.. but it turned out we could only do that with their high end carrier gear

we offer it now to business customers everywhere

We're doing mpls on ours

yup, but you can only do MPLS L3 VPN on most ciscos

not L2 VPN

@tender hazel it's just mikrotik needs to make a better cli

It's confusing GUI too

And bridge logic

You love GUIs don't you

@waxen scroll no, just the bridge logic should be done at factory for me at least

Like how dell, juniper, Cisco and everyone else does

@little schooner I don't necessarily understand what you mean there

@tender hazel setting up vlans is more complicated

Unnecessary complicated

I used to agree

Because you have to make your bridges yourself

but once they added bridge vlan filtering

it made it similar to other products

It's backwards thinking

I never had to do such a thing

Even on the Cisco switch that isn't even a thing

mikrotik switches you already have a bridge with all ports connected

you add your VLANs there

where is the difference?

That's not true

it is true

If it's fully blank, it's not there

No

fully blank?

the factory default config for mikrotik switches is to have all ports connected with a bridge

with bridge vlan filtering enabled

As in even the factory defaults can be deleted by mistake too

Why is that a thing?

um because it depends on how you want to set it up

if you really want to throw away the factory defaults and set it up in some super custom way, you can

Yeah. Im just not used to it

I'm used to being spoiled by business supported hardware

business supported hardware?

you do know that their support basically gives you free support forever, right?

@tender hazel I know, I make a lot of mistakes but I mean vendor support and phone to call

And get quick response

And

Software is made so you don't need to make bridges

Every port is already in a bridge

😂

and what if you don't want that?

like I could understand your complaints if the factory defaults didnt have that

but you are basically complaining that if you choose not to go with the factory defaults that the mikrotik allows you to do that?

that it gives you the flexibility of not going with the factory defaults if you choose not to?

I just never viewed flexibility as a negative

@tender hazel I only remember my experience setting up the first one

It wasted more time than I could afford

when was that, and what model?

Powerbox pro

Umm... I think that was in July or something

oh god, you are talking about one of those models that has hardware switching separate from the software config

@tender hazel maybe my mistake was I used routerOS instead of switchOS

routeros is better

but the problem is that if you don't have a crs3xx model you have to deal with the old really confusing way of setting up switching

which most people could not figure out

Yes I couldn't figure this one out

At first anyway

yeah I don't blame you

that was the old method

But that's what I was complaing about

they've replaced it in the crs3xx series

Nice

So it should be better now for me to try I bet

you can use the new method on the powerbox pro BUT you lose the hardware acceleration, the bridging goes through the CPU

often I use the new method even on the old devices because it is much easier, it makes more sense

and usually the throughput loss is more acceptable than the more complex configuration

@waxen scroll hopefully I still make a good intern

@tender hazel true

but yeah, any of the CRS3xx models of switches use the new configuration method out of the box

and it is very similar to cisco or HP vlan configuration instead of the old style

the old style of VLAN config I was also complaining about for years

I was thrilled when they came up with the new method

so if you are considering any CRS3xx model device, I would say yes, the vlan configuration is much easier than anything mikrotik you worked with before

and in general I would always advise routeros and not swos

even for a switch

you lose too many capabilities with swos

it is maybe easier to set up but it is missing a bunch of crucial features

@little schooner have you heard of RoMON?

to me, RoMON is one of mikrotiks best features

hands down

and nobody really talks about it enough

we do networking inside of many schools in rural and remote areas and are replacing our cisco switches with mikrotik ones mostly because of romon

@tender hazel what does romon do?

Also why is swos bad?

it is a management network formed over layer 2

you can access any mikrotik device from any other connected over layer 2 even with completely wrong IP configuration

so for instance we have had problems where some customer starts to unplug everything and plug everything in into random ports

and with romon we can actually still get into all the switches and figure out how the customer has connected things

and how to correct it, all remotely

Sounds pretty handy

it especially makes IP changes really easy

because if we connect to a switch over romon, we can change its IP to a different subnet without losing connection

even if we delete the IP by accident we are still connected

so there are a few reasons I don't like swos

one, it is web browser only, you can't use winbox, and winbox is a really handy tool

another, it doesn't support romon

it also doesn't support MSTP, only RSTP at best

also with routeros you get certain troubleshooting tools in the UI like being able to take packet captures remotely etc.. with swos there is none of that

and I also find swos quite buggy to upgrade - I try updating it to a new version and most of the time it fails, and routeros is the opposite

routeros can do CDP and LLDP, swos doesn't support that

so you lose tons of useful features, and the only benefit is a simplified UI for config

I have to explain that in our situation, we are so far from our customers that if we have to fly to a school client of ours to fix something it is like over $1000 round trip just for the airfare cost

so anything we can do to prevent such travel saves us a huge amount of money

we cover an area near the size of Texas from a single office

so it isn't like we can just drive a half hour if something goes down

Using mikrotik still gives me a brain bleed every time I use one, years and years has totally wired my brain 100% Cisco like so when it's not a Cisco rip off my head BSOD's and takes a good 10 minutes to reboot lol

@strange silo lol

@strange silo The more I'm working with other vendors the less Mikrotik stands out. Some of their awkward configuration is similar in Juniper, ciena, Calix, Versa... Cisco has simplified the configuration more than any vendor which makes it seem mind boggling when even in Junos I need to specify the same parameter in 3 locations

@hollow marlin what other config do you find awkward (besides the old VLAN stuff that was mentioned)?

@tender hazel what's an easy way to get hardware switching performance in routerOS?

@tender hazel My biggest gripes with Mikrotik is L2 configuration by far. Bridge and switch feel as if I am repeating too many of the same actions. But like I said, Junos and Versa are almost identical in terms of L2 configuration to tiks

Everytime I did it, it took my access away

The docs online are not good

@little schooner newer switch models (CRS3xx) are already configured for hardware switching with vlans etc

what model are you using? is it the powerbox pro you talked about before?

But I need to know for powerbox pro

Because I always had it lock me out

@tender hazel I am not saying I dont like tiks, I love them. As an ISP we have 1000s of them deployed. Just can be frustrating at times

@little schooner ok so with powerbox pro there are two ways of setting things up - there is the old way which gives you full wirespeed switching but is more difficult to set up, and the newer way which is easier to set up but will not give you wirespeed switching. Set up the new way you can get 1.6Gbps total switching speed on that powerbox. If you need more than that you'll have to set it up the old way

the new way is called bridge vlan filtering

which method are you trying to use?

hey everyone

which task you are solving?

@floral thorn Hola, we're solving all the things

sounds cool

looks like PowerBox Pro has QCA A8337 Gigabit Switch Chip

https://wiki.mikrotik.com/wiki/Manual:Switch_Chip_Features

@tender hazel well I want the old way because that's how I get wire speed on all other vendor switches

Why is wire speed hard to implement?

ok one sec.. I assume you want VLANs yes?

Yes and a management vlan

Last time I tried doing it, always got locked out.

ok one moment, I just have to refresh my memory of the config

Call me noivce or something

Sure

If you has problems with access drop just use

@floral thorn what does safe mode do?

it rollback all your changes if WinBox lose access to RouterOS

@floral thorn I'll remember that when I touch it again.

it's "reload in" as it shoud be

No shit, I never knew that! Thanks for that

QCA 8337 supports vlans with routeros, was just verifying that first

so this should be the correct reference for the config

https://wiki.mikrotik.com/wiki/Manual:Basic_VLAN_switching#Other_devices_with_built-in_switch_chip

yes, safe mode is always good to use when you are doing something dangerous

it's easy to configure bridge thinkin about it as a separate switch with "bridge" as interface connected to the router

the really important thing there is that switch1-cpu has to be added as a port for whatever management vlan id you are using

switch1-cpu is what connects the vlan with the vlan interface

it is like vlan 99 vs. interface vlan99 on a cisco switch

on cisco they are connected together by default but on mikrotik you have to include switch1-cpu as a port to connect vlan99 wih interface vlan99

everything on there is safe to do and won't lock you out until you get to /interface ethernet switch port near the end

so I would turn on safe mode just before you start changing the interface ethernet switch port settings

you can turn it on before you begin if you like, but turn it off and on again before you get to interface ethernet switch port

that way you won't roll all your changes back if they were partially successful

make sure bridge vlan filtering is turned OFF for the bridge

as an aside, (different topic) the support for ipv6 in consumer routers is really horrendous