#networking

it's probably just a cloud product

I like how freenas doesn't care that you swap the mobo/cpu/sata etc underneath it. still works

I'm looking at FreeNAS now, how automated are the plugin installs on there? It has Emby Media server which I've been trying to snag a cheap PC on eBay to install on and that Zoneminder which would remedy these shit programs I'm using right now.

what ever plugins are in the ecosystem are quite easy to install

I run a few transmission clients

Their plugins are alright

lol after upgrading from a avoton c2550 to an e3-1220 freenas ui feels so much snappier

not sure what to do with my old board yet. maybe swap over one of my rpi to it

Sorry, quick question, I'm running a NetComm NF18ACV-TP and it doesn't want to let go of ports 80, 8080, and 437 (it won't let me forward them to my Apache box because it uses them for its admin login) is that common? Is there a way I can replace the software running it to something less bossy?

@willow storm that's fairly common for consumer hardware. Replacing the software depends on if someone has written the firmware for it, and how locked the device itself is

@willow storm if someone has made firmware for it, check dd-wrt for it

cheers 😄

I'm confident that I'm the right combination of foolhardy and rtfm-capable to get this right, especially given we're at the point of just buying a different router.

On that point, I have permission from my ISP to host a site from home, any suggestions on decent fibre-to-the-premisis modem-routers that will allow that level of configuration? or should I just get a modem and set up one of my nix boxes to route?

What do you mean with "that level of configuration"? Hosting a website only requires the modem/router to allow you to set up port-forwarding, nothing else, unless you want to host a website on the router/modem itself

no, that's exactly what I meant. I took port forwarding of all ports for granted until this piece of junk proved me wrong

Now I feel kinda burnt

I understand your reaction though

I really did think it was standard

Your box has ports 80, 8080 and 437 exposed on WAN-side?

I mean, it's irrelevant if they're open on LAN-side

It's the WAN-side that matters

no, everything's behind the router, I can't expose those ports wan-side because the software on the router won't let me set up the forwarding tables to include those ports

Wow, what a piece of shite, really

it won't let me direct them to other ports either

That definitely shouldn't work like that

I know, right?

Never heard of a modem/router that does things like that

I'm not exactly new when it comes to network configuration

hence my bewilderment

Aight. I meant no offense

don't worry, none taken under the circumstances

it really is that baffling

I have encountered all sorts of terrible networking-gear in my life, but this is the first case where I hear of a situation like yours! That said, I have no recommendations to give, unfortunately.

Can the box be configured as a bare bridge? That way you could always use a separate router

yeah that was on the to-do list

I've got enough *nix boxes on this side of it to spare one as a router

Does your ISP allow you to use your own modem?

yeah, we're on speaking terms with the owner, he was the one who recommended that modem weirdly enough

because it is blindingly fast and reliable

which is sad, it is otherwise a fantastic bit of kit

so the bridge idea does appeal

No point in wasting money on another modem, if that one can be configured as a bridge, IMHO

yeah, I'm going to look into whether it can be hooked up that way,

Fair. The only reason I would prefer not having my that extra hop would be to reduce potential troubleshooting spots in the future, and so my edge router would be the one touching the wan

@vast juniper also, is your profile picture a kiwi with a Thompson?

Yes, it indeed is! 😄

Not many people have understood that one

Lol, I love it

That's brilliant

It's also wearing a red Rambo-bandana

Of course, why wouldn't it?

Hm, there's a bug with the moderation-bot. I just tried to explain the story behind the icon and it triggered a warning and censored me

Yeah, it's pretty sensative

I occasionally set it off with too many capital letters, or repeated characters

I didn't even say the word it claims I did, so it's not just sensitive, but triggers on non-existing things

Welp, that definitely puts a damper on my interest in staying here. The fear of random censorship will make me constantly second-guess anything I wish to say

It's not really that bad

I'm using two different internet connection (with different isp's) for streaming. I'm using two pc streaming setup and one of my isp has a great upload speed, while other one has a great download speed and lower ping. So normally I connect the internet with the great upload speed to my streaming pc and the other one to my gaming pc. Recently I started to use a program called voicemeeter, it offer voice sharing via lan network so I can use the same mic/headset for my both pc's. I bought a usb to ethernet cable so now I'm able to connect two different internet to the one pc. The problem is I want to use one internet for general internet access and the other one just for lan sharing. Is there any way for me to achieve this?

anyone use cloudflare's free argo tunnel?

@scenic rose You can set interface preference in network settings

looks like the argo free tunnel has bandwidth limits. guess I can try to set up the same kind of tunnel on a VPS. anyone have any software suggestions

nevermind I settled on using nextcloud with ipv6 and cloudflare. I can just shut down the service when no one wants anything off it

Any UniFi gurus here? I’m looking for some assistance with setting up two WAN DHCP addresses on one physical port on the UniFi Security Gateway 3P, but I’m not sure on how to set this up with the gateway json file. Anyone with some spare time and who’re knowledgeable in this field?
Thanks in advance!

@bold relic kinda wish ubnt could expose more than one ip address in the GUI tools. It seems like an oversight

Tell me about it 😛

I’ve tried to google my issue for a good hour or two but I’m not making any good progress ...

I’ve found some guides, but nothing that helps me with my DHCP issue

Here’s the deal, to somewhat further explain:
My ISP offers their customers 5 dynamic WAN IPs per customer, but since I’ve just plugged their single port in my apartment to my USG’s WAN port, I’m really only able to use one of them.
I figured I could setup another interface on that same WAN port that requests another DHCP IP and my WAN side would now be reachable by two different IPs, and I could offer different resources on the LAN side depending on what IP the request is coming from.
From what I understand the setup is possible, but not with the UI as mentioned, but with a certain configuration in a 'config.gateway.json’ file.
I’m consequently looking for assistance with this file to get that functionality.
I realize this offers no performance increase ...

And I don’t want a switch between the wall and the gateway, which I realize would also be a (more expensive and cumbersome) solution.

a switch is probably way more straight forward though LOL

Yeah, but I’d need to configure a separate port on the USG to act as a WAN2 port and/or VLAN the internal network and it just gets more cumbersome to maintain.

@bold relic sorry I wish I could help. But I also read that even ubnt support team will not assist with any of this

It's only a ubnt forums community support thing

@bold relic yeah I think you are out of luck with the USG

my only idea is to ask on Ubiquiti forums or Discord

hey had a network question

so if for example your getting 500 mbs according to provider but only get for example 50 why could that be?

is it mbps or mb/s for both?

500Mbps (ex. Speedtest and ISP ad) would be around 62.5MB/s (ex. Steam downloads)

500MB/s would be 4000Mbps...aka 4Gbps....holy shit then lol

lol

there's usually at least two reasons you're not getting full speed from an ISP assuming accurate readings. your area is too busy and there's not enough capacity, or the server you're accessing can't push it out

what does a speed test show? try further away locations to see how it changes

try avoiding Speedtest servers ran by your ISP

hey blob how does that work

so 1 giga would equal about 100 mbs then?

500MB/s would be 4000Mbps...aka 4Gbps....holy shit then lol
@rocky badge good point. I wasn't thinking of real life possible speeds. Just wanting to see if it was the same measurements

Yeah

@kind sky /8 or *8

Bytes vs bits

8 bits make a byte

ahh so thats how they getcha

gotta look for their ending

Yeah

make sure they dont mean bytes probally does say bits

lowercase b is bits, uppercase B is Bytes

Most ISPs advertise bits

Larger number

what if they say Mbps though

Then that's megabits

same thing right megabits

Yeah, Gbps, Mbps, Kbps

yea and your saying 100 megabits equals too about 10 megabytes

so 1k megabits or 1 is 100 megabytes

Roughly, that's using 10 base

100Mbps is 12.5MB/s

ah kk really appreciate that info honestly man

really cool stuff thank you

👌 np

do you think better modems/routers help or not really?

Depends

Find what's the issue

I mean it could help but it could not either

yea was just asking and curious but really appreciate the insight

I wouldn't rule anything out as being the problem yet

just check everything

Is there some way to use PFSense to figure out how my phone is accessing the SD card on that WiFi camere I was talking about yesterday?

make a firewall rule with logging enabled for all routed connections from phone to wifi camera

then check the firewall logs for ports and if it used tcp or udp

Hmmm, so From Source camera, to destination Phone? Flipped it either way, not seeing it log anything yet I'm scrolling around recorded videos and days....

I set it to any protocol, any direction.

i have a bottleneck

my computer has gigabit ethernet

but my router is a joke

100mbit router?

take away 1 "0" at the end of 100 lol

Posted this in the tech chat earlier but no answer, so im posting it here where i know there are people who can help.

Are these disk speeds considered ok or slow for a vm in ESXI? The virtual machines always feel slow when doing anything involving writing data. I know it wont be anywhere near as fast as a desktop running ssds

if this is better suited for a different channel, please tell me and i will move it

Little issue I'm running into here.

I've been getting subpar internet speeds on my wired internet. 90mbps usually and I pay for 1gpbs.

Before I go through all of the issues of checking if wires are cat 5e, I wanted to check my computer's network adapter.

I have this adapter:

It says it's gigabit speeds, but after checking this thread: https://forums.tomshardware.com/threads/only-getting-100mbps-with-gigabit-service.2638944/

it says to check the "speed and duplex" in the advanced section in device manager.

Speed and duplex says this:

Only 10 or 100mbps.

Now I'm confused - is my network adapter rated for 1gbps?

mine only goes to 100 too

yep. typically 1000 only operates in auto mode. not every system can be configured for always 1000

@cedar igloo @waxen scroll Well, what should I do then?

I don't mean to give you a massive thread but,

https://linustechtips.com/main/topic/1202534-how-to-tell-if-a-cable-is-cat-5-or-cat-5e

@tribal ferry do you have access to a really long cat 5e or better cable and try plugging your computer directly to router?

That should rule out if it's the cable or the router or something else

I'll try plugging in my laptop.

Laptop I'm not sure if it's 1gbps

make sure they dont mean bytes probally does say bits
@kind sky network speeds are basically always in bits/s

ddr3 ram is so expensive

@vapid dune need some ddr3 ram?

I have like 32gb of it

@nocturne harness Yea I appreciate it I mean a lot of the time I thought they were automatically in bytes you know you see the big number for a typical user they think its amazing when its not bad but yea

lol I was looking to buy some. been looking on amazon and ebay @little schooner

@vapid dune what prices have you seen so far

for 4x8GB probably ~160 CAD which might need shipping

that's more than I spent on the motherboard + cpu lol

network speed is in bits because that's what the hardware transmits

there's no concept of bytes in networking

packets are in bytes

you get nicer numbers if you use bytes ;p

network gear is sometimes rated in PPS

like my ERL advertises 1Mpps

Yeah that's true

@vapid dune oh I only ship in usa

But yeah 160 cad expensive for old ram

ah yeah, that's why I'm shopping around. ebay tends to kill me on shipping a bit lol

it's at least 20-30 to ship it by my estimate

trying to avoid mystery ram from china

packets are not network layer 😛

oops

sorry

What do you mean, that is layer 3

Packets

packets /are/ network layer

Ahh

everything below the network later has no concept of packets

Yes. Data link would be the frames

And then physical

yeah frames and physical

the determining factor in networks is the transport and physical, the latter just being some binary (bit) representation of whatever it's transporting

the whole PPS thing is just the processing speed of the routing hardware

if you look at the RFCs for stuff like ethernet frames you'll see they are specified as a certain number of octets

Is there like a website that makes a general summary of the long rfc documents?

and then when it goes to the physical layer it gets converted into 8b/10b encoding (for example)

Not saying they are bad as they are but for other people to get the idea fast

oh hmmm

wikipedia? lol

(8b/10b encoding is 8 bit words repesenting 10 bit symbols)

Hence why we don't use bytes in network, it starts getting odd

because for gigabit ethernet for example, we transmit 125 MBd/lane, there are 4 lanes in each direction, so we get 500 MBd/second per direction

I think I got a mosquito byte

Does anybody here use OpenWRT?

@little schooner curious what kind of ram are you selling? non-ecc?

It's G.skill F3-1600C9D-16GXM sticks

So they are 8GB each

G.SKILL F3-1600C9D-16GXM Ripjaws X Series 16GB (2 x 8GB) 240-Pin DDR3 SDRAM DDR3 1600 (PC3 12800) Desktop Memory https://www.amazon.com/dp/B007CCV1TI/ref=cm_sw_r_other_apa_i_pR-0EbGDVW88A

That

ah

I see a lot of ECC RDIMM

how much were you hoping to sell 2 kits for anyhow?

Probably like $115

Oh srry

For 2 probably 60

oh lol 160 cad is ~120 usd

Is there a way to increase upload speed without getting a better plan?

Oh dang5

@vapid dune yeah that pricey

For 2

no no for 4 sticks of 8gb

Oh

Yeah I just try to see what they go for on ebay

@vapid dune shipping to Australia for example was like 20 bucks for a Volta cable

I think Canada should be cheaper

I'd rather have the customs forms already pre-made within the label I buy

I don't like filling it out at the office especially now

ah yeah

Is there a way to increase upload speed without getting a better plan?
@last crest not really

if you're getting slow speeds because of your local network, then I guess maybe?

but if you're getting the full speed of your plan then no

Ok

Anyone order any ubiquiti gear recently? curious what the turn-around has been

with the supply chain being hurt by the covid

direct or other?

I'm not sure where my supplier orders from -- i'd assume direct

its a purchase covered by eRate so I can't place it until July 1 😦 Hoping the supply chain has been replenished by then so I can get the gear installed without people in the building.

I ordered mine from Amazon and it was about a 2 week wait

@burnt oasis

ok cool. I'm phasing out some 5406 switches. Ordering 12 of the gen2 48 ports on july 1.

@burnt oasis it's been decent, depends on where you live and where you ship to

@burnt oasis what's reasoning behind replacing Aruba with Ubi?

this is pre-aruba HP gear. Main reason is because all of our AP's and cameras are ubiquiti. I'm not really replacing per say -- i'm just shifting the load. Back in the olden-days they ran 8 or so drops per room, not necessary anymore. So i'm shifting the AP's, cameras and phones to ubiquiti and leaving everything else on the HP gear until it fails.

my core switch will remain Hp/Aruba, I have a brand new 5406zl aruba branded switch I haven't deployed yet. My predecessor didn't make a true core, but instead used a 5412zl to pick up core duties and serve that chunk of the building. So the 5406zl aruba branded will only have the 10G fiber cards going forward and will be a true core.

@burnt oasis "true core" is such a tricky wording :) what's true core in your case? :)

@jaunty talon a true core to me is one that doesn't suffer udp loss the way my switch does

To me a core is a layer 3 switch that all other switch closets/locations come back to. ISP > firewall > core > closets

MDF

Cool! :)

I'd argue a core switch is basically any switch that can do full line rate on all it's ports

i.e. it has enough switching fabric capacity to handle full load

But that can be a switch in the closet then!

yep, there's nothing specifically magical about a core switch

But in the wording of core, it's not very often used for closet switches! :)

Normally a core would also have some level of redundancies (PSU, two in-depended ASICs, etc)

For me core is somewhat traditional, and is in a layout where you have only L3 in core and then do L2 at distribution / access layer!

Fair enough

Most of the work I've done around networks recently have been in a DC setting

so there's no closets 😉

Well in DC the core would be synonymous with the spine

in dc's today there is similar tho, but spine would be "core" and leaf is distribution/access :)

yeah, core, spine

In my case my "core/MDF", is in one building where my fiber comes in from my ISP, and all of the fiber comes in from the outlying buildings.

Generally the stuff deployed as those were just low-latency high-throughput and redundant devices

But mostly for me core is something you can reboot in your network without impact since you only do L3 protocols with redundancy :)

I was a bit removed though since I was working on an SRE team though

Redundancy in my environment is hard to pull off -- though a good chunk of my network will have a full loop of fiber in the next couple of months so if I had a break in a fiber I could theoretically send it the other direction and minimize outages.

I work in a school - we can't afford redundancy in most cases. I usually have enough old hardware laying around where I can make something magical happen if we had a switch go out though.

Please use ERPS and not STP with rings

It will save you a lot of headaches

A ring for me would be manual, i'd have to run down and swap some fiber to make it go the other way. Low-tech-half-ass, the public education way.

The only reason i'll have the ability to do that is we are adding some FEMA shelters and my path to the new closet in those fema shelters was easier to have them bury conduit instead of having to run fiber all the way around to the new addition.

Ohhh fair, I was on an SRE team for a financial software service provider--needless to say we had carte blanche for infra

Recovery should never be physical movement. If the fiber is that close nearby what is stopping configuration?

knowledge, lack of hardware/licenses, to name a few.

also depends on isp and their configuration :)

Also that loop would only pick up part of the building anyways. Basically we have three schools all physically connected with hallways with the "core" in the center. So currently I have fiber going from the center building to the far end of the north building, we are adding onto the south side of that north building, so my cable path is shortened and underground. Allowing me to connect back to the center from the far end north. So the manual way would be for me to walk 200' and swap some plugs. I'm lazy, but not THAT lazy 😄

@jaunty talon I was just joking

But core switch in Cisco language meant backbone, high speed switching fabric that is redundantly connected iirc

I would like a layer 3 switch but not the ones that can't do full router functions

Like the edgeswitch doesn't let you make complex ip acls

I’m not even sure what all the Aruba 5406zl can do. I probably don’t have the license for it if it supports it. We just do basic vlans.

@little schooner For core you want full L3 handling of traffic. This doesnt exclude all the one offs of say just L2 for metro-e or say a line card used for switching.

@hollow marlin what brand offers full L3? Mikrotik for cheap?

Mikrotik does have L3 and as long as fastpath is used its fine. The moment you break it thought performance craps the bed

Eh. Haven’t used acls but some edge routers have layer 2 hw-backed switching: https://www.ui.com/edgemax/edgerouter-12/ in addition to the normal l3 stuff.

Thoughts on fortigate anyone? I have a 600D at work. I probably barely touch the surface of what it’s capable of

Anyone have an idea what could be causing this. I am losing connection to one of my servers randomly daily now. My modem completely drops the ip and wont allow me to connect to it or ping it until I reboot the gateway super strange

Thoughts on fortigate anyone? I have a 600D at work. I probably barely touch the surface of what it’s capable of
@burnt oasis I know this info probably isnt helpful, but never used or configured myself, however i know at my work, they swear by fortigate, and install/configure for almost every client.

It was a pain to setup. First time I ever had to have a contractor come help me. Shitty part is I was so close, I just had one thing keeping it from working.

the support is meant to be one of the best

guys can you help me finding a new lan switch, possibly with at least 8 ports and not too expensive?

just google netgear unmanged 8 port

and find a store in your region that sells them

they should be relatively cheap (like $30 CAD)

thank you very much

NW 🙂

oh

make sure it's a gigabit ethernet switch **

yup

they're all pretty similar at that price point, I would just find the one with the best price/rating

this should get the work done

for another 10 bucks you can usually get some vlans

maybe 20 bucks

idk what they are

oh then you probably don't need it lol.

https://www.amazon.ca/TP-Link-TL-SG108-1000Mbps-déconomie-dénergie/dp/B00A121WN6/
vs
https://www.amazon.ca/TP-Link-Ethernet-Unmanaged-Replacement-TL-SG108E/dp/B00K4DS5KU/

can you explain it lol, im new to networking in general

They're a way to virtually segregate devices on your network

I don't think it's something you really need

mh i reading somethings about it and it's an interesting thing

i wont be using it for now

but can be useful

Yeah, if you want something just for now get a cheap TP Link or Netgear unmanaged switch

and then in the future you can buy more fun gear when you learn more 😉

😁

and i have another doubt/curiosity about a server not showing up in the network

it's a dell poweredge 2900 iii

i tried to use win server 2008 r2 and 2012 but it still wont show up on the network

have you configured static ip ?

do you have a DHCP activated on your router ?

i got it configured back then with the old modem

you don't have an issue with the network card driver ?

with other devices no

bc it goes online

if i open google it works

fun fact i tried all the 4 1gb lan ports on the server

I think you might need to disable "idle state" on the machine

oh

could it be a bios option?

I think it on windows I will check really quick on my vm

thx

idk what it is but when i boot it up it shows a "netmask"

@clear igloo oof https://blob.rocks/JB6JV76moZ.png

I broke it

F

idk what it is but when i boot it up it shows a "netmask"
@pearl patio the network's netmask or something else ?

network

255.255.255

for your "offline server problem" try this

uncheck allow to turn off this device

for your network card

when i can i'll try it

network
@pearl patio I think you let in the bios the option to launch windows using PXE Boot like the machine is given an IP then It can boot up using another server

i hope it work, im excited to see if 15k rpm sas hdd is fast lol

it is indeed but not as fast as ssd

so you're using the dell as a nas ?

kinda

i want to fix this issue so i can use it as nas for files and a streaming server for films or tv shows

now that i think about it one time i used unraid

and i had to acces to it seaching the ip on google

yup that indeed interesting

after if you want to dive into advanced stuff, you can replace the server's ip with a local domain that you can create easily on your w server

something like mynas.local

ill definetly do it

i want to know more about networking😄

it's a vast but still a great domain to explore

keep searching and don't give up on something difficult that's how you can learn and master stuff

What router do you recommend that better then Comcast all in one for 2 gamer and there phone and one office pc and printer

depend on your budget tbh

Something they don't lag when one person upload

I'm using 5400 rpm disks in my NAS

it's not really slow I'd say

each hard drive is like ~100MBps. once you put it into raid your network will become the bottleneck

@hollow marlin it says in fastpath documentation that you can't have any firewall rules configured for it to work

thats disheartening

@raw timber what would your budget be for that router.
And what could also cause the issue is your speed from your ISP (internet service provider). So do you know which speeds you get from your ISP?

@raw timber also important to know is that getting a new router will not likely solve your problem if you still need to have the ISP's modem/CPE infront of the router. this since the modem could very likely be the problem (poor buffers etc).

LMFAO Cisco cancelled Cisco live for today... “In light of all we see going on in the United States and around the world, including feedback from some of you and our customers, we don’t believe the time is right to host an event in the middle of this tragic moment in our history. Our hope is that we can all use this time to process, heal and define the actions we will take to make progress towards a better, more inclusive world.”

I feel like they knew it was going to be bad so they killed it

No reason to cancel a virtual event

companies are cancelling lots of events going on in the next few weeks. PS5 release, COD updates etc

It's all virtue signaling. They don't care. They want the points

These decisions are profit driven some how I'm sure

probably through advertising and sharing posts. while the whole thing is going on in america, thats all over twitter and other socials. theres no room for other companies' posts to be shared

Makes sense

I don't doubt the virtue signalling at all for some, but I dunno. Seems MORE for a lot of em.

@clear igloo thots?

Meh

@little schooner Fasttrack handles firewall rules, just an extension of Fastpath. You know, all super clear in their documentation 🙃

@hollow marlin ouch. They have to step up their doc writing then

@waxen scroll yesterday I was up until 1:30am working on a Logic Gate assignment, designing the diagram based on output expressions. Since when does a network technician use this stuff?

It's the stuff with AND, OR, NOT and NAND gates

Annoying to do when I have like 29372722 different things to do

@little schooner Only 29372722 things to do?

they dont

@clear igloo I was going to use 65535 instead to use it as a joke

But too late

😛

@jaunty talon i was told the isssue was other router not leave room for when you dowload data you computer have to send a small amout back ohter rotuer let some upload to max and not leave any room

@waxen scroll sorry for the lack of context, but yes, my school does self host their webex. Today it says that the webex site is unavailable for my classes

well... no lecture unless they can get that fixed up today

i hate self hosted webex

so many quality issues

@raw timber sorry, not really understanding what you're saying now. :/

is most router are not smart we had the same issue with the isp at my parent home we just put a pfsence router set up correct and with a limit on the speed to right below the max of the isp no more issue

depends on issue I guess. don't really see how limiting your connection under a specific speed would solve the issue? unless your problem is that it lags when you max out your internet connection in which the problem will continue no matter what limitation you put if you reach it

it work thre so many vidoe about people say ot put the limt t osovle the issue is upload get max out and dont leave any room for the computer to say i got the data you can send more

Limiting the upload serves no purpose unless you are doing per client or QoS

it work

https://www.youtube.com/watch?v=iXqExAALzR8

that the type of limt i am talkg about

but that indeed is related to buffers =)

I hate when people claim you can fixed buffer bloat at home

but it work

wtf is buffer bloat

@hollow marlin why do you say it dont work we use to get the issue all the time now we dont all because it go to 300 not 309 or 357

I tried reading the website about it and none of it makes any sense

iqrouter explan it the best it is clien seend too much data for the small isp pipe

and stuff get drop

grand i dont liek them but there explain make sence

@nocturne harness Buffer bloat is when egress buffers are too large and latency increases, somtimes to the point TCP reports lost ACK

Typically with QoS and people who dont know how and when to configure it add large queue sizes

interesting

Not sure why normal TCP congestion control wouldn't solve the issue

but 🤷‍♂️

This is very typical in cheap modems/cpe's from ISP's

"Some communications equipment manufacturers designed unnecessarily large buffers into some of their network products."

This is not in the endpoint, this is in the transport

I don't get your point?

Congestion control works for any part of the path from server to client

Buffer bloat is in the transport...not the customer router, not the modem

Congestion control handles this as you said

it better then nonthnk

and both isp have the issue so it best i can do

wow, I think I've found the first wrong technical description of something on Wikipedia

To TCP, a congested link can appear to be operating normally as the buffer fills. The TCP algorithm is unaware the link is congested and does not start to take corrective action until the buffer finally overflows and packets are dropped.

TCP uses RTT in calculating timeouts, so congested networks would quickly violate the timeout

Timeout = Estimated RTT + 4 * Deviation RTT

and with Tahoe and Reno a timeout results in a new slow start

Keep in mind none of this is impacted by the network between server and client

there's no way for the network to obfuscate congestion to TCP

since it tracks it exclusively on either end

i am still confue it wokr

we use to get lock up oftne when some uplaod a huge file while we use thecomputer live stream have issue now we dont

even simple QOS would probably have solved the issue

now that I think about it you probably aren't using TCP for both, otherwise it could never happen

TCP connections inherently equally share network links due to magic

That description is correct, they are referring to the time it takes until the buffer fills and drops the packet the far end has already thought it was lost and started slow start

TCP connection sometime will share nicely but sometimes will be subject to TCP syncronization. Also with Qbic, Quic, BBR....standard TCP algorithms can be torn apart

on a normal network the RTT should be low enough that this is not a problem, because the timeout should be low that timeout occurs before the local buffer is filled

unlesss you have bad behaving local clients, I can't imagine how it would happen normally

With buffer bloat your buffers can exceed a few 100ms

This is due again to incorrect QoS setup

Agreed, nothing a well setup QoS couldn't solve

Queue gets full so they turn up the queue and all of a sudden you have traffic is 1s latency

QoS is largely useless, as most people dont understand when and when not to use it

Its not needed anymore in 99% of use cases

TCP connection sometime will share nicely but sometimes will be subject to TCP syncronization. Also with Qbic, Quic, BBR....standard TCP algorithms can be torn apart
@hollow marlin this is the only thing I don't know about

but what in the video wokr

form my understanding of tahoe and reno, I can't see how they would not reach an equilibrium

what would

Multiple TCP connections

tahoe and reno are two of the protocols governing how TCP connections transmit data

tahoe is extinct, reno is only used by Netflix as they modded the hell out of it. Cubic is the main TCP used today

Ahh, interesting

didn't realize

Yeah reno is trash but Netflix has such a good job at making it work very well

We only talked about the implementation of tahoe and reno in my networks course--probably because they're simpler to implement

Have you heard about Elastic-TCP

Take some time to look at BBR from google. Will load balance with other BBR streams and will absolutely crush Cubic/reno

Yeah I was just reading up on BBR

I like how Google claims it's fair with Cubic but most other researchers says it's unfair

tbh I'm excited for more IPv6 prevelance

Its a civil war. I am all for full BBR because it eliminates dirty traffic (un-necessary re-transmission) which makes congestions worse

Hopefully it'll give ground for way better CC

Especially with ECN

ECN is used in v4 as well but its only used with QoS

i am still confuse on how this relate to my issue

It was more with a discussion on buffer bloat really

If cutting your upload worked, I have no answer as of why

why doint you know why i think it is 2 difer issue i think the issue is a lot of isp sofware limit i have 300/300 but realy they set it as 309 but it cause isse

becaser it is not as stable at that extra speed

There will typically be a burst allowance for connections whenthere is not much traffic over all.

some isp i thinnk comcaast and some people hate it

it can be long enouth that speed test look great

but you go dowload a file and it not very good

Does anybody have any clue whats going on. I have a server that I connect to everyday via ssh. Everyday since last week it has been completely dropping out connection to it. Only for me this is happening to once I restart my modem I can connect to it again. I have never seen this before

easiest guess is that your modem/router can't maintain the connection for any reason

is 10.0.0.1 the router or your pc?

Sorry for the stupid question, haven't used tracert in a while

my gateway

basically your router states it can't connect with that protocol

yea I mean the ip is completely unreachable

until I restart it

then its good for about 12 hours

very odd

the server is on the same network?

no

its in a datacenter which I have other servers as well this is the only one this happens to

so the network diagram for the connection is: pc -> router -> internet -> DC router -> server

who make the router sound like my issue a long time ago it was old router

shitcast

^ that. It could be a problem with your router or the DC router

or anything in between

yea and its only happening to me other people no issues to this server

i say get a new rotuer

router

time to get rid of this comcast modem anyway

is it all in one care to share image or modle of it

i recoamnd go to this site https://approvedmodemlist.com/

@wild seal that's a protocol problem. Nothing to do with Comcast

yea?

The response is from the router to the local device.

what is weird is the traceroute from the gateway itself looks ok

but no devices on the network can hit that ip

What is the subnet on the server

Ifconfig/ipconfig

did you even check to see if the modem is on the list

pretty sure its a /31

That's why...well mostly if on the same network

matt its approved by them its literally the modem they lease to you ^^

?

is it on the list

they dont lease good one some time

@wild seal When you try pinging the IP from a PC what response do you get

@wild seal look up on google load of people say the modem comcast lease to you is trash

oh I know its trash

Are there any firewall rules? Are multiple networks involved here?

So I have google nest wifi points but im hardwired right to the modem / router

So Modem/Router is all in one then a google nest hub and im hardwired to the modem/router

no firewall rules

Is the server also directly off the modem or on the nest?

server is not located here but it is directly off a modem not behind a firewall

Wait. So do you have any tunnel setup or just a server plugged in on some modem remotely and you are plugged into your modem? Because without a tunnel that will not work

not sure exactly on the server setup since its at a colo but no tunnel just public ip connecting to

I guess I can try connecting to it via local ip when I vpn in

and see if that works

10.x.x.x would be local so you'll need your VPN.

Outside a VPN you'll need the public.

so the 10.0.0.1 is the reply im getting when i ping the public

Yeah, youre getting a response from an 10.0.0.1 within Comcast Network which they have locked down

That's why you are getting the protocol denied message

I mean I literally restart my modem and i can connect again

Without a tunnel or VPN setup within the modem I don't see how that's possible

yea I mean doesnt make much sense has to be something with the modem

I don't think it has anything to do with the modem. If you are plugged in directly to the modem either you have a public IP or you don't, VPN cache is where the 10.x response is from and you should be connecting to 10.0.0.2 over the VPN only

what do you know I restart the modem and I can hit the server again ><

did you talk to who host the sever

yea they want more info just weird that it only happens to me

ill have to dig a little deper

deeper*

thanks for the help guys

yeah i run in to it too people say it must be me since it only hapen to me

my dad blame usless people updat for no reason just becaer it new

and look bestter

better

memtest takes forever. but IPMI to mount the iso is so awesome

@vapid dune yes, especially when that function is very stable

No nonsense working

yeah, pretty happy with it

it's the one thing that bothers me with the raspeberry pi

a bit over kill but finally finished testing 1 round of all 32GB memory

Been a while since i’ve been here but i’ve run into a problem that i can’t figure out for the life of me, been troubleshooting all day.

I pay for gigabit from Xfinity. Wired directly to the network I get exactly that for download. i use pfSense as my router with vlans to a unifi switch and 3 UAP-AC-Lites. wireless speeds is what is a thing to make me flip, I get a max of 150 down no matter what i try and change. I have 2 SSID’s. Guest and Client. Does anyone know what the issue is?

torn off guest?

do speed tests at each interface

tried it, same result

are all the interfaces gb?

Yep

have you tried a speed test within your network?

Tried a linksys router in ap mode and got 450Mbps down and wired to my laptop and got 1.2Gbps down

so. what you're saying is a linksys router is a better AP than UAP

in my current case, apparently so and i don't like it

What make it weird is this just started happening. my speeds used to be perfect

@raw verge Well what devices are connected? If a single device connects at N it will force all other devices to use that band

Looking at the unifi app, I have 5 devices connected. All of which say 5.0Ghz in green

@raw verge Are they connected N or AC though?

150 isn't abnormal is it

how far away are you from the ap

He said with another AP gets 450 while 150 is typical with N band. Im 100% positive a device is connecting with N

I mean I stand in front of my AP sometimes and it doesn't get super crazy speeds on my phone

Did what i didn't want to do and factory reset them and readopted to the controller. they seem to be preforming significantly better at about 350Mbps.

magic

love technology sometimes

@raw verge i love it when it just works

xeon, baby, hi

lol that moment when you realize you were trying to login to the wrong ssh server the whole time

Hmmm, I just got the UniFi AP I ordered, but needing some help on the PFSense side to hook it up. I have a 4 port NIC with port 1 setup as WAN, port 2 as LAN, and 3-4 as OPT1 and OPT2. I have the AP hooked up to OPT1, am I supposed to bridge it with LAN or something? I don't plan on keeping the TP-Link router hooked up once I have this set up, but for now I am.

on an ERL I just run one port to a switch first and plug stuff into that

Honestly I don't have the best locations for this hardware in the house for now, hopefully building on my property soon, so I try to limit how much hardware I'm adding in the dining room! xD

make the ap your table decoration

https://en.wikipedia.org/wiki/Centrepiece

lol somehow I locked myself out of my GCP VPN VM

I mean, it's running just fine but I can't SSH in 😆

https://bgp.he.net/AS14593

https://news.ycombinator.com/item?id=23409063

@waxen scroll I'm no baby but hey

@rocky badge I ended up not getting the unifi switch and went with edgeswitch. It was hard to give up the command line

oof

I didn't like the prospect of editing json

Because it was not supported

weirdo

@waxen scroll I don't like to tinker when I'm doing summer class

whatever.

huh

how often do you need to configure a switch

0

you can deploy a switch with no config

I'm considering getting cameras for my home, but don't know much. I was thinking of getting a few of these (https://smile.amazon.com/gp/product/B07C5JWK4K/ref=as_li_ss_tl?ie=UTF8&psc=1&linkCode=sl1&tag=thehookup00-20&linkId=9f8e83696c83ad3e0cb7c074f9b17881&language=en_US&sa-no-redirect=1#customerReviews or https://smile.amazon.com/Reolink-Outdoor-Surveillance-Security-RLC-420-5MP/dp/B07FQ2T89L/ref=as_li_ss_tl?keywords=RLC-420&qid=1562879547&s=gateway&sr=8-3&linkCode=sl1&tag=thehookup00-20&linkId=92a2a3d1bd6a61fc8312146ee73873c7&language=en_US&sa-no-redirect=1) and upgrading my FreeNAS PC with more storage. I was considering going with Ring or similar, but I want stuff stored locally and don't want to pay a subscription fee. I also have a Unifi system (Dream Machine so no Unifi Protect ; ( ).

@vapid dune more often than I'd like

But with cli, I can launch an ssh script on login to make a set of quick changes and revert them back the same way

If I need to test something quick

fucking hell, I'm stressing out over here bridging ports! 4 port nic, port 1 is WAN, port 2 is LAN, to make port 3 and 4 bridged with LAN I have to do what in PFSense?

Trying to follow this guide and then it loses me at "Navigate back to the Interface Assignments tab and change the LAN interface port to BRDIGE0" : https://protectli.com/kb/how-to-enable-lan-bridge-with-pfsense/

I lose connection but connecting to port 3 and 4, which is supposed to now be assigned to Bridge, should get me back to connection? If so, I'm then supposed to go back in and change what was LAN to OPT3? which should be my 4....wut???

How is that supposed to work, give me connection back on ports 3 and 4, if they're only supposed to be with default settings which means no configuration past enabled....

@valid sonnet You can run RouterOS on the CRS112 without penalty as long as you hardware offload all switching and do not attempt to do any routing, but the switch chip in the CRS1XX series sucks in comparison to the 3XX ones.

Less features, less capable

I wanna use an old router as an extender

can anyone help me

anyone?

depend on the model

So, I ended up having to connect the UniFi AP LR along with the router as I couldn't figure out the bridging last night, it worked as expected but another thing though, issue maybe?, is it does it's own DHCP?

Like my phone, I already had a static IP address addressed to it with PFSense but now connected to the AP it shows a different MAC so now it's once again assigned to a random address in the DHCP pool.

the AP doesn't do DHCP

must mean what ever you plugged into is doing it

I would guess your second router isn't acting as a switch

Why set your phone as a static? Android and iOS have already implemented random MAC add. generation which is why you are seeing a new MAC

oh the mac randomization? it's per AP as far as I know. and default is off

oops missed the part about different mac

Yes. And no, all my Android devices have had it enabled by default

iOS, not sure

oh weird. I didn't explicitly turn mine off on my pixel

I did turn off DoH though lol

lol I would for a few more months when everything slowly gets sorted out

nah I don't use it since I'm using a home vpn

Unless the VPN is being hosted in the cloud or local DNS using DoH, that doesn't really apply

huh?

I mean I'm connecting from my phone to my VPN

Yes, and if you are hosting the VPN at home, your request are still sent out that connection and viewable

yes sure, but there's only a handful of ways to mitigate against that

I don't expect to use TOR at home

finding a trust worthy VPN is also difficult

DNS with DoH or a router that supports it are easy solutions

DoH only moves the problem

That as well

you're still going to be connecting to the IPs lol

I mean if you're worried about DNS security, then unbound with DNSSEC is probably sufficient

Well of course. The main reason people want it is to hide it from their ISPs

I was using DoT for a while

if they want to hide from their ISP then VPN is a better option imo

Which while a cool concept, in practice, meh

I mean it moves the problem onto trusting who ever the VPN uses

I don't think DoH is a good idea really

Why set your phone as a static? Android and iOS have already implemented random MAC add. generation which is why you are seeing a new MAC
@hollow marlin this is only for when searching for wifi networks

aside from the bootstrapping problem

Thats why VPN through Assure or Amazon is the best option

LOL

you're kidding me

Azure or Amazon probably log your traffic just as much

@nocturne harness hmm I think randomized mac per AP is actually default

might just be my legacy connections from migration that don't use it

https://tr2.cbsistatic.com/hub/i/2019/06/04/d390bc2c-33a3-4def-8d19-1d2c49ef2b8d/macb.jpg

not my phone but that's what my screen looks like on my wifi settings

Starting in Android 8.0, Android devices use randomized MAC addresses when probing for new networks while not currently associated with a network. In Android 9, you can enable a developer option (it's disabled by default) to cause the device to use a randomized MAC address when connecting to a Wi-Fi network.
In Android 10, MAC randomization is enabled by default for client mode, SoftAp, and Wi-Fi Direct.

Guess I'm not up to date with Android 10 😆

lol

I mean 11 is around the corner somewhere I think

dayum

prob sept right?

I think it was supposed to be even sooner than that, but likely will be delayed a bit

@nocturne harness Its not just when searching for networks

If connected it will persist with that random MAC

we just covered that o.o

@nocturne harness Its not just when searching for networks
@hollow marlin yeah, it used to be it was just for searching, then in 10 they changed it, scroll up 5 messages 😉

oh lol

all good haha

ugh I'm still not used to working from home with only one screen to RDP

I tried 2x screens and my RDP session blows up horribly

my work doesn't pay for enough VPN servers/bandwidth either .-.

Well please tell me they are using an RDP gateway at least

oh no, I'm just on VPN and directly connecting to my box

ok good. Last few months I can't explain how much RDP traffic im seeing in netflow

oh you mean it's directly exposed to the internet?

lmao

Is it atleast encrypted

yeah but you're gonna get hammered by drive by attacks

Yeah. ISP engineer. Its a concerning amount

😬

oh actually you're a great person to ask this

my ISP modem running in bridge mode is accessible from my desktop by going to a 10.0.0.0 IP

but my internal router only has a publicly addressable IP assigned to it, so I'm not sure why it would think it can access a private network address through the WAN masquerade

Default route and directly connected is why

You router sends all traffic not connected out WAN, modem sees it destined for itself, knows how to get back to your public and sends it back

hmmm interesting

I was just confused because my understanding is that routers don't route private address out

They're normally non-routable address, iirc?

And there's no static or connected route in the EdgeMax UI saying there's a 10.0.0.1 next hop

It's shows 99.230.xxx.x as the next hop

Hmmm, yes. So it's not that the AP is doing any DHCP it's that my phone is showing a new MAC because it's connected to this new device, the AP, it seems. Reason I have static addresses is becasue I am using rules to turn VPN off and on on those devices.

I setup the AP with my phone, should the desktop UniFi controller program give me more settings than what the phone does?

Private routing just applies to BGP

Ahhhhh

that makes sense

You edgemax has a default route 0.0.0.0/0

yeah

Add a 10.x.x.x network to your lan and watch your connectivity drop

that makes sense then

I thought the masquerade would prevent the routing but I guess it's not configured for that

I guess that's more of a firewall policy

Yeah, all IP address are routable, caveats with multicast, but people tend to think private space cannot leave their router

There is a reason why firewall policies use BOGON list for filtering so your local traffic doesnt route outbound

Yeah, I think the confusion is because the private ranges are defined as being not on the public internet

Would there be any issues having the UniFi AP right next to the router? :/ I was seeing 80Mbps on my phone while I had it hooked up in another room, now I'm seeing 30Mbps next to it.

There is a reason why firewall policies use BOGON list for filtering so your local traffic doesnt route outbound
yeah, I realized I'm missing one--not that it's really the biggest of deals for a home network

Its not really. There are "security concerns" but in all reality...

Yeah my wirewall in rn is just allow established/related anyway.. drops everything else

Just inbound, you can still send request out which if blocked would break everything

Yeah, just WAN_IN and WAN_LOCAL rules

Would there be any issues having the UniFi AP right next to the router? :/ I was seeing 80Mbps on my phone while I had it hooked up in another room, now I'm seeing 30Mbps next to it.
@south blade assuming both places give your phone a good connection, it shouldn't matter

Also you phone would not get the static address if it has a different mac

since that's how the DHCP server decides what address to give it

If Unify has a live view of traffic or AP stats it would be good to post a screen shot

If you clone a windows vm, without generalizing them, are they still able to ping each other? I have two cloned vms, same subnet, same SID and different ips but cant communicate

but cant communicate
@cedar igloo I mean they cant ping. if i host a python http server on one, you can get to that on the other machine

UniFi Controller for Windows gives startup error, shows a very helpful "Start-up failed." and blank message window below, what do? 😛

I set it up with my phone but surely the desktop software has more options, no?

Shoot, figured it out port 8443 was being used by something else in the log, nice blank window.

I'm just gonna leave this here

theres two jokes in there

@clear igloo 👀 Xfinity Gigabit Pro is actually 2 Gig/2 Gig AND 1 Gig/1 Gig

@rocky badge lol, wat

it's just metro-e

Ah, ok

the CPE is just a Juniper switch

its basically their business service for home

1 static v4, static /48

Yah, I knew they installed a Juniper switch for the CPE, didn't realize it was metro-e but that makes sense

What Juniper switches are they throwing out there?

Juniper ACX2100

For metro-e we are using MEs and Cienas.

ACX are their barebones routers

I hate them

lmao

the Comcast tech said it was a l2 switch, but yeah it is the router line

Farthest from an L2 switch you can get

Yeah that's what I was thinking lol

its a long process as well lmao

you have to be within a certain range of the node

your project has to be approved, might take 3-4 months between first inquiry and activation

cost savingsssss

$500 install fee $500 activation fee

oof

but they pull fiber, splice it, test it

iirc you also have a SLA lmao

you get 6 strands of fiber

2 active, 4 dark

@rocky badge is the activation fee really necessary?

yes

Do you know what it really covers?

Like town fees?

Permit fee?

Since they own the line, the install fee should of been enough

Gigabit over here is $300 a month

I dunno

@little schooner Probably has to cover running the connection into your house if it isn't, splicing fibers, making sure the connection at the node is spliced / terminated

There's a lot that goes into it

@clear igloo When we get AT&T fiber installed, I'm just gonna let the tech do whatever he wants to lmao And then when he leaves, configure the gateway for bypass

And if he tries to give me the pace gateway, I'll throw it at him and ask for the bgw210 because the pace gateway is shit 💩

Why would you do that when the tech is there?

yup

Nah I'm gonna bypass it when the tech leaves

i do the same

i just shut up while the installer is there unless he tries to put software on my computer

🤢

Eww Comcast tried putting the software on computer on my mom's computer

No need for that junk

lol

I think I'll aim to switch to SFP in the future when I can

in favor of the ONT I'm using

...mainly because it's smaller and eventually I suppose I can get a switch

I could do that....with the local ISP

But their peering and network is shit

@rocky badge Then tell them to peer better 😛

lmao

Because with the local ISP I can get one of these https://store.ui.com/collections/operator-ufiber/products/uf-instant

Since they use UFiber OLTs

The contractor responsible for the trenching work laid off quite a few people so I guess it's gonna be another two to three years before I get fiber. oof.

oof

That's great. The ISP here uses huawei lol.

Lol which isp??

Bell

@clear igloo

Imagine internet connected dishwasher

@nocturne harness They've been using Huawei ONT's since the HH2000, the HH3000 is direct in but still uses the Huawei transceivers

ohhh yeah bell

@dense moat omfgmgmgmgmgg https://cdn.discordapp.com/attachments/679716285927653453/718177831187906600/unknown.png

the UXG-Pro Beta is coming sooooooon

YESSSS

a 10 minute old, clean install of windows 10 pro cannot be pinged from another machine. what are some steps to figure out whats wrong?

Disable the windows firewall?

ill try it, but i thought pings worked straight out of the box

yeah

nope.

nope. both just in esxi server. nothing fancy

yes

both virtualized on same network in esxi

@cedar igloo Pings in windows do not work right out of the box. Firewall needs to be changed

i swear i never needed to do that before. does a default domain policy enable icmp when connected to domain?

Domain policy applies different rules

Disable the windows firewall?
@clear igloo This worked, thanks. honestly, never messed with any firewall ports before and pings just worked

Yah, if Windows classifies the network as domain as opposed to Private then different rules apply. I think it's Private > Domain > Public with how strict the firewall rules are

Sorry to interrupt guys but I’m having an absolute meltdown

I’m trying to use the DHCP server on my pihole but it refuses to work

All devices connected to the WiFi get an IP address assigned, but no access to the internet

What gateway address are they getting?

Make sure its of the router and not the pihole..also make sure its on the same subnet

192.168.2.1 which is the IP address of the LAN port (of the router) it’s connected to

How do I know the subnet of the pihole?

Huh, that’s weird

The WiFi is working on my phone

The subnet is the same on my MacBook (connected to the pihole) and my router so that should be fine

o.O

why do you need DHCP on pihole?

can't get your router to push out the DNS settings?

Because I couldn’t be bothered messing around with the DHCP of the double routers I have

I mean you need to disable both of the DHCP on those routers if you want Pihole to do it

I have

I see

I was having issues with my PC not getting an IP address

bit of a longshot, but if you ping 8.8.8.8, does that work? just thinking it may be a dns issue

Before DHCP servers were enabled on both routers

I was gonna say, you might need to figure out where your DHCP requests are going

and if the pi is responding with it

seems like a hassle

o.o fwiw my router literally has a field you plug in the DNS server that gets pushed out with DHCP. it's simple to change

ok. its not a dns issue

Jesus Christ it’s still going with the timeout messages

unix goes forever with ping requests

Ah

I mean that's from the macbook

it's a DHCP problem

I assume if you assign yourself an IP on the macbook it works?

I can try

diagnosing DHCP problems is a headache

two routers is also a headache

...have you tried picking 1 router. turning the other into a switch. using Pihole as ONLY dns?

Hang on

The router is still set as 192.168.2.1 in the MacBook settings

Maybe that’s the issue?

huh?

it's not DHCP?

I mean the other thing is that if you previously had 2x DHCP servers

the gateway pushed out for each would be different

This when I do it manually what it defaults to

the Pi can't know which gateway to push out if you're on the router 1 segment or the router 2 segment... probably.

I mean you can try to manually configure it. but see previous point about headaches

To be fair 192.168.2.1 is the router port the data would go through. But I’d think you’d want it to go through the pihole first

no

pihole isn't acting as a router

Ah okay

Anyway, manually assigning IP doesn’t work either

maybe change your IP address to the same subnet as the router o.O

Now it just says it’s online... weird

The subnet mask is the same as the router

Or do you mean actual IP address

but your IP address isn't even in the range

It’s in the range of the pi

yes but look at the router

it's on 192.168.2.1

I don’t get what you are trying to say

That the WiFi isn’t connected to that port?

192.168.1.0/24 (or 255.255.255.0) goes from 1.0 - 1.255

LAN2 is what the pi is connected to

can the pi ping 192.168.1.1 (or whatever the default upstream gateway you have specified is)?

If you are using the Pi on a different subnet you need DHCP relay. Its not worth it over just letting the router handle DHCP

^

like I said, best to do: 1 router that handles DHCP, a switch, and pihole as DNS

The issue is my phone works just fine, and that is connected to the same WiFi router the MacBook is

I mean you could hang the pihole DHCP server, but it better be off of the single router

lol what is your phone using? automatic?

Yes

what kind of IP does it get?

192.168.1.226

and the gateway?

But router 192.168.1.1

Alright then

I hate my life

At least it’s working

Thanks guys

:D

Still doesn’t work on my PC though... It has a link with the switch and it’s all set to auto so it should work... but I’ll look at it tomorrow, I’m getting a headache from all this

For some reason it says the cable is unplugged

Doesn’t work on my iPad either. The hell is going on

Hang on

Did I not save the router change to 192.168.1.1 on the pihole

Because my iPad did just connect but the router is set as 192.168.2.1

Yup... good going, me

Alright, it probably definitely works now

throw it all out and restart is my advice

Starting from a clean slate makes things clear. You can make changes one at a time until you hit the problem or the solution

If it was my own house I would lol

But it’s my parents and I don’t think I can really do that

My PC is still complaining about having an Ethernet adapter plugged into it... while the LEDs on the back clearly show a 100mbit link

I wonder what is a good way to run unifi on a server while keeping resource usage low

nevermind. the unifi controller uses a lot of ports lol

oh interesting. docker has a macvlan mode where you can assign mac addresses to individual containers

Each container is already assigned a virtual MAC. You can assign one if absolutely needed

Any idea why an iPhone would have the worst signal to the UniFi AP LR I just got? 😛

The mini PC with the cheap wifi adapter that's sitting not even 5 feet away from it has a better signal.

oops I mistyped. I meant IP addresses

@south blade fully updated and everything? Was it a used model? Does it have a date code within the past year?

I actually ran into some problems with my new flex HD unit

It wouldn't provision correctly and would appear to be stuck for no reason

But after enough tries it finally worked

I love my FlexHD. I did have an issue with it not wanting to update properly but I just had to restart and try again

@fresh copper does it matter if I have mine on the floor?

I don't have a storage shelf thing yet to place it on for better coverage

Probably not too much. I think it's mostly fine as long as it's standing up

hey can someone tell me why my domain, and vps ip dont lead to the same page on the vps?

so http://51.222.19.119/ is my site and so is https://neednot.net/ and my domain is pointed to that ip but they lead to different parts of the vps

here is my .conf

    ServerAdmin need_not@neednot.net
    ServerName http://www.neednot.net/
    ServerAlias http://www.neednot.net
    DocumentRoot /var/www/webApp/webApp/
    ErrorLog ${APACHE_LOG_DIR}/error.log
    CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>```

    ServerAdmin need_not@neednot.net
    ServerName neednot.net
    ServerAlias www.neednot.net
    DocumentRoot /var/www/webApp/webApp/
    ErrorLog ${APACHE_LOG_DIR}/error.log
    CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>```

didn't work

that document root location might be wrong then

the IP uses the default location higher up in the config file

well hold on do i lead it to the .py file or where the .conf file is

because the .conf is /var/www/webApp/

the py is /var/www/webApp/webapp/

maybe this is a better question, wheres the index.php or html, or whatever file located

webApp/webApp

my thing runs off flask in python

your website says

You should replace this file (located at /var/www/html/index.html) before continuing to operate your HTTP server.

did you restart apache after the config edits?

inside the webapp folder is this

did you restart apache after the config edits?
@waxen scroll yes i did

is it a cached result?

it might be since cloudflare

hmm

anyway to tell cloudflare to update

or wait is me who has to update

did you shut it down? i was trying to test and its dead

yeah i tried deleting the a records and adding them back

idk how long it takes for cloudflare to update

so i bypassed cloudflare and it seems like thats not the issue

what

how the heck did you do that

the ip works

neednot.net doesn't

open notepad as admin, then edit: C:\Windows\System32\drivers\etc\hosts

meaning the server is working but the doamin isn't connected

put the following line at the bottom of the file

51.222.19.119 neednot.net

it ignores your DNS on the internet which is cloudflare and uses that IP

hmm

so then what is wrong

go higher in the file and look for "DocumentRoot" thats that set to

its not under the virtual host stuff

in the vps?

or windows

vps

httpd.conf or whatever they call it now

its been years since ive touched it

wait so the location to the default html?

yeah

ok

that seems to be where its pulling your site from

well not anymore

now it's dead

just wanna make sure its the same as the virtual host

it's just /var/www/html/index.html

nothing else here

can you paste the whole line? i dont recall it being set to a specific file

it should just be a folder

yeah

is this it?

that's the index file from earlier

nothing else in that folder

yeah, so for giggles do:

    ServerAdmin need_not@neednot.net
    ServerName neednot.net
    ServerAlias www.neednot.net
    DocumentRoot /var/www/html/
    ErrorLog ${APACHE_LOG_DIR}/error.log
    CustomLog ${APACHE_LOG_DIR}/access.log combined
</VirtualHost>```

make a new .conf file in that directory and put that in it?

nope. you have to edit the existing one

it's an html file

not .conf

ohhh wait

you want to edit the other one

httpd.conf or apache2.conf im not sure what its called now

it's webApp.conf

because the folder name is webAPP

maybe instead pastebin.com the file

also paste a "ps aux" output

wat

although how come neednot.net died all together

not sure, its still loading for me

nothing to see tbh

on the command line type "ps aux | grep apache" , if that doesnt work "ps aux | grep http"

im trying to figure out if its been told to use some random config file

root      1874  0.0  1.1  88964  5564 ?        Ss   12:34   0:00 /usr/sbin/apach                     e2 -k start
www-data  1877  0.2 13.8 913076 69084 ?        Sl   12:34   0:00 /usr/sbin/apach                     e2 -k start
www-data  1878  0.2 13.8 1044436 69512 ?       Sl   12:34   0:00 /usr/sbin/apach                     e2 -k start
root      1944  0.0  0.1  12948   924 pts/0    S+   12:37   0:00 grep --color=au                     to apache

ok so its probably using /etc/apache2/apache2.conf for the config file

oh

it's nothing

try putting your config for the neednot virtual host in there and see what happens

https://pastebin.com/3zyHTNSk

oh damnit this is the stupid new way of doing it

/etc/apache2/sites-enabled

whats in there?

YOU DID IT

it's a mirror of my first super bad .conf file that is in the out dated format

haha

still is dead though

should i remove that thing from note pad