#networking

They 100% are

they deliberately do not roll out networks in other regions

$150 for 150/150 no cap

They've been caught bribing and handing laws to politicians saying "Pass this" and the politicians have done it

That's $1 for a mbit

59 euros for 250/250mbit no cap ofcourse

But my plan with all the extras, comes to around 120/month

@clear igloo thats what they use the FCC for

its ment to protect consumers

but not really

Good on paper

You mean the organization that said "ISPs are friends"?

😛

ISP are friends and not food

FDA approved internet

GMO free I hope

How good am I at derailing the convo

That is my idea! NOBODY STEAL!!

patents GMO free internet plans

https://www.uspto.gov/

Intellectual property

@unborn sluice https://i.imgur.com/hIKqTzH.png

love how easy some of these things are :)

https://i.imgur.com/o8eJFhb.png

router with built in DoS tools

Flood Ping

Where can I use that though

https://i.imgur.com/ho3iQBQ.png

Btw, is this the hap ac2

nah thats my RB4011

lemme get the specs from the hap

https://i.imgur.com/6o9JJbH.png

the hAP doesnt have a lot of storage space

but it has a usb port

Isn't hap supposed to be better

RB4011 is better than the hAP

My current router does have a usb port

But I don't fuck with that

the usb is either for filesystem or an LTE modem

https://i.imgur.com/TKd3dwZ.png

Filesystem but I don't really care much

Cause I don't know what's the use for

This is the interface view of my hAP

wlan1 and 2 are 2.4 and 5GHz

But in typical dual band setups, you use the same SSID

and the device decides on 2.4 or 5

I don't

Don't want the dual band on the same name

you can configure it otherwise

Yea

but its just how I do it, lot easier if you have a lot of APs

I got dual band
Then one 2.4 ( in my room)

3 AP suffices

All with a different name

yeah on mtiks youd give same name

and let CAPsMAN handle the roaming

@unborn sluice if you want to maximize the range on your AP, set the country of origin to "Democratic Republic of Congo"

they dont have regulations on max transmission power

though keep in mind

this is illegal

xD

That's a weird configuration lol

Time to congo

https://i.imgur.com/vHJL86m.png

I think mine is configured for us

lol, my phone's public hotspot

FBI SURVEILANCE VAN

I'd definitely ask my fbi agent for the password

So I get free WiFi everywhere

12345678

@unborn sluice remember KRACK ?

https://www.krackattacks.com/

My memories are hazy

MITM attack on WPA2's key exchange

then

was mostly fixed

but they came up with WPA3

which was supposed to fix WPA2's problems

https://wpa3.mathyvanhoef.com/

Fixed, but I bet most consumer don't even update

Enter, dragonblood

So, WPA3, had a "downgrade" for backwards compatability

so older devices could still connect

so attacker requests WPA2 downgrade

Oh nice security flaw compatible

and uses that to exploit the WPA3 network

I just wish ap stop shipping with wep altogether

WEP must be killed

WEP not even an option on mtik

https://i.imgur.com/z9vMTgV.png

This should be the situation for all

Instead of using wep, just remove the wpa2 passphrase altogether

@unborn sluice I had a script in early 2015, for WPA (not wpa) networks

all you needed was a crappy LTE connection

could crack any WPA network in ~20 mins

It used a deauth attack, to force a client to reconnect to the network

it then, sniffs the packets

Ah yes I also use that deauth attack

and brute forces them, using hashcat on an Amazon S3 server

the most expensive one they have

I like that anyone can deauth everyone

Really nice

they charge you per minute, so the script would create an S3 instance

Imagine using deauth in public wifi

run your hashcat

then delete the instance

costs maybe.. 2-3 bucks for 1 wifi network

S3?

oh wait not s3

Isn't it supposed to be EC2 or ecs

EC2

ye

the ones with 4 GPUs in them

s3 is just storage yo

I got confused ;)

S3 is the new serverless

that's ironfunction

which is AWS lambda's open source brawler

if it's compatible with AWS's lambda sdk

i'm gonna lose it

AWS Lambda seems...

a stupid platform to develop for

you make yourself 100% dependent on their platform

and code isnt compatible with other tools

Hmmm

same with Azure based solutions

I forgot where I got the info

I don't even know if it's fake

They say Azure runs on hyperv platform

@unborn sluice so happy that WSL turned out to be a big fail

because Embrace Extend Extinquish

But I still use it in the office

oh, in those situations

I either use cygwin (mingw)

or run a VM in the background

and use terminal

I also have cygwin and mingw

@unborn sluice have you got Xming?

Yup

its great isnt it ? :)

Yea, I love that I'm fucking myself by using Linux in windows

lol

my previous employer was insisting that everyone use windows

because of some government regulations (cus we had government as client)

they needed ESET antivirus

on every machine

My company laptop is locked to windows

It's either macbook or windows

yea...

Hell nawh apple

well

to be fair

if I had to choose a workhorse

I'd rather have a macbook

than a windows box

because mac at least has gcc, brew, macports

and a sane system layout

I'd choose MacBook also if I would do my work in a coffee shop

I'd be the hip programmer

I'd be the hip programmer
@unborn sluice
ok doya gao

OSX has a lot of exploits right now, but so does windows

https://soranews24.com/2014/01/20/the-doya-gao-phenomenon-and-where-youre-most-likely-to-see-it/

Atleast apple is objectively better

Apple builds crappy hardware

shafts their customers at every opportunity

I meant os wise over windows

Not the whole machine

microsoft's close source model is just annoying

https://soranews24.com/2014/01/20/the-doya-gao-phenomenon-and-where-youre-most-likely-to-see-it/
@elfin socket would try this one out

keeping machines alive with windows on them, is harder than it should be

if a linux machine breaks somehow

you can usually fix it

and once configured, it never really breaks itself

unless you are on arch maybe

if people want bleeding edge of linux, get a bunch of programs you normally dont get via package manager

the AUR is perfect place

We still use centos for our application servers

CentOS was the first linux distro I ever ssh'ed into

operated by someone else

was first minecraft server I got console access to

in 2011

xD

Awww the good memories

yum install

I remember

and it had built in anti ddos features

firewall config was quite extensive

Firewall CMD?

I dont remember

Must be

it was during setup

this is long time ago

after that

its just debian

Debian/Ubuntu have ufw
Centos have firewallcmd

or debian forks

yeah

I use ufw

my private VMs use my WAN IP to expose services

all the big things like public facing webservers

those have their own public IP

My first Linux was ubuntu, so no matter how bad people say it is, I just can't hate Ubuntu

so private vms: NAT

;D

but there's a reason for that

since I have other people using my internet

You have more than 1 public ip

I have a contract

where they sign over the IP address

this excludes me from any liabiltiies

cus if they start downloading cp

its my name

It's time for you to create a tor node

what

Wrong click

Create a tor exit node if you're brave enough

I dont want to draw unwanted attention

I know weed is legal

but if they do a full search :/

I see you don't want anti privacy letters every monday

there's probably vials of some old stuff from years ago

idk

but if they do a full search :/
You got a butt ton then

I dont really go on benders like that anymore

I got my shit in line

fulltime work

hangovers don't work well with that

I dont have a lot

So consumption is legal but not sale hmmm

no

I mean

I never got used to getting knockout drunk

always had to be DD

sucks being the eldest.

I dont really drink alcohol

I feel like it literally makes me stupid

i want to cook when i do.

What's dd

I also never got Knock out drunk

The farthest I got is migraine drunk

My head is throbbing, e.g. you can feel your pulse in your head

That's not a good experience imo

ive havent gotten so drunk in so long. kinda iffy about getting pass out drunk

@unborn sluice I don't drink so the aforementioned side effects described have not the chance to formulate in me

hey folks and friends XD

changed the PSU and it seems like that was some sort of case that destroyed the system slowly...new PSU and now lets see if i can get that smbd running again 🙂

Why does my VPN connect better to the American Servers than the Canadian ones? (I live in Calgary)

It depends on where each server is located and the path taken

Peering

@lunar spade because the laws of physics

I am looking into getting 10gb internet for my home (just because I can, not because I need it). I am trying to figure out what type of router I need to handle that speed so that I can get the full 10g speed to my pc. I can find plenty or routers with SFP+ ports but I'm not sure they would let me have the full 10g throughput. Would it be best for me to build a router myself (maybe with pfsense)? The ISP just provides and SFP+ module.

I wouldn't build a router since it can't use hardware acceleration. Mikrotik has nice routers

@strong violet building your own router would be the fastest, affordable option yes. But pfsense can't do 10g from what I heard. That's where their tnsr platform comes in

Like an 8 core Intel 9th gen can handle it

i would argue its not affordable at all... you'll prob pay $300 for the hardware anyway and $10/m in power bills because its not efficient to use a desktop computer for networking

I wish power could be cheaper

I pay like 9 cents already

It's too much

@little schooner mines 6.5ish

That rate is nicer

Hah, did you know it cost more for them to deliver me the electricity then it does to consume it? @waxen scroll

It's madness

If I could build a router for around 600 or 700 that can comfortably handle the speed, then that is fine. I'm not so worried about the power cost. I will only be running one of them.

@waxen scroll what 10g router do you know that cost around @strong violet price range?

Or @clear igloo

Or anyone else really

i would say https://store.ui.com/collections/unifi-network-routing-switching/products/udm-pro TBH

but im trying to find the throughput specs to confirm

if you dont want an ecosystem product i think theres a cheaper one

hmm i wonder if they are selling the 10G edgerouter anymore. its not stocked

the infinity router is $1.8k and i feel like the dream machine provides way more benifet lol

@strong violet ubiquiti has support so I would open a ticket asking what can do what you need. the only other cheaper option is mikrotik but thats not my wheelhouse

im mostly a cisco person so thats gonna hurt your wallet lol

I have a very simple setup, so I won't need the ecosystem. The throughout is the main thing for me. The dream machine pro looks good if I turn off the filtering. Looks to be a max of 8gbps.

I haven't looked at cisco yet. I am mad enough to spend money on it. Lol

i believe the ISR 4461 is the cheapest one you're gonna get for 10G throughput . 1001-X is likely next

@waxen scroll Look at r/ubiquiti and all the love for the UDM Pro. It can, sometimes, do 10gig

i dont doubt it can but you need to not have any features on

Comment was sarcastic, forgot the /s

so what about mik ?

So cisco comes in at 15,000 usd. Lol

On the cheap you can do it with the 4011 but that is only on a ROAS setup. So a 10G switch will be needed

thats before discount

everyone gets a discount

lol

i dont remember the default discount, its like 25% or something

higher volume customers get like 65%+

a 10G switch is needed anyway cause he wants 10G all the way to the desktop

@rocky badge layer 2 UBNT distro switch. your favorite

With the UDM Pro it has a 10G LAN that could be used for a single desktop connection. But seeing the issues people have with it I would say its a no-buy

@little schooner my router does 10G, though it has only 1x 10G and 10x 1G

$180 RB4011

and that's 10G routing

10G on with ROAS though, switch chips are still only like 2.5 or 5gig links

@hollow marlin you are right

5x 1G on 2.5G

two 2.5G links

I have a couple of the little Mikrotik 10g switches with 4sfp+ ports

@strong violet CRS305?

4x SFP+ 1x 1G

I got that paired with my RB4011 for more 10G connectivity

Yes. That's the one.

If you already have a 10G switch I would go 4011 if all you need is routing and a basic FW

easy -> hard
ufw -> mtik -> iptables

as someone whose made iptables systems for routing.... yeaaaahhhhh

iptables is like, when all else fails

but damn is it powerful

@waxen scroll first time I tried adding a 'New Rule' in my mtik firewall

I nearly died

https://i.imgur.com/7HExW5V.png

^ lel

thats basically iptables GUI afaik

Never configured IP tables but its similar to MT other than syntax

IPtables just difficult to read

and then grasp what it is it does

mtik is middle ground

most of the time now, I just copy existing rules and modify them

4011 only has one SFP+ port though. I would need two. One for WAN and one for LAN.

Thats why it needs to be setup as ROAS (router on a stick)

VLAN for the WAN and VLAN for the LAN.

but thats only 5g

we demand 10

No its 10g

Not using the switch chips

o

Its a waste and which they just added a 3 switch chip for another SFP+ port

So I would plug my ISP's transceiver into my switch. Plug my 4011 into the switch with a DAC (plus everything else on my 10g network). Set up a VLAN for the WAN so it passes straight through to the router. And then a VLAN for the LAN so it comes straight out again. And that would give me the full 10g through?

Cool!

Looks like it will be fun to configure

I enjoy a challenge

all you'd do on the CRS305 is some port mapping for the vlan

@hollow marlin you'd do this with bridge vlans right?

https://i.imgur.com/uxTttIt.png

because that's how I did it on my CRS305

even tested it with a 2gbit/s stream, with like 2% CPU usage

to make sure it was hardware accel

Bridging is software based though, isn't it? @tame carbon

Offloading on the older mikrotik gear doesn't make sense to me

Way too confusing to configure

@tame carbon Yeah, in the CR3xx series youll want to do it under bridge.

@little schooner Only the CR3xx series support bridged VLAN configuration with hardware acceleration. The older series does not. I don't think any other product lines support it. Again why my biggest gripe with MT is VLAN configuration

@hollow marlin how so?

I've done some vlan stuff before, but always hated configuring it

on mtik, its quite ez

Obscurity between product lines, some bridged, some on switch chips, some switch chips can only do specific function like only read the header, etc. Config is not hard its just a mess

@hollow marlin I see

yeah

vlan config on my RB4011

is different

I registered them as interfaces

https://i.imgur.com/OxeHIDQ.png

and then if you go to bridge ports, you'll find those vlans are dynamically configured

and I guess, this 'dynamic' configuration, can be a bit... confusing

as on some occassions I have seen dynamic rules in places, but was never able to find out where its coming from

Router rip

Rip

what causes these

your ISP had an outage and you should contact them for a credit

the answer is based how much time do you want to put into your system

@unborn rover what's your internet service at home?

to me, most all-in-one home routers suck

oh noe, we'll never recommend all-in-one routers here

consumer trash begon

that being said you can do stuff really cheaply but require a lot of tinkiering, or buy fully fleshed out products that do a lot of the grit for you

but they usually cost $$$

cringe

cringe harder

asus has good ideas, their hardware and firmware just don't support it

ike the guy behind the merlin firmware was finally like lol i'm done

okay, we'll now you get to decide which routing operating system you like the most

UnTangled vs Pfsense vs OpnSense vs vyos vs more traditional routing operating systems such as Cisco's iOS

your choice in ISP depends on the choices and the reliability in your area

in my area Comcast's network is a dumpster fire

@topaz quarry need to dub it down a bit, don't think he understands, justs wants an all-in-one

maybe it's better in your area

if people want to learn why not give stuff to lookup

mikrotik routers are nice if you are willing to learn

oh microtik stuff is the best

but that's 9 levels of complicated

I made the mistake of buying an ER-X

oh fuzzz

it works for now

if i'm getting something like that i'm just gonna go microtik or roll my own box

looking for a cheap second-hand server racks to rack my things up

plus to finally be able to use a d-link switch I got for free

@unborn rover https://www.youtube.com/user/TheTecknowledge/playlists

he's really good at explaining a lot of these very difficult networking concepts in plain english

no

cisco flattened that brand

if you want to actually utilize your connection, the following routing brands will provide a large hill to climb (I'm not saying they can't do it but you will need to network guru). Netgear, ASUS, linksys, TP-Link

this is not to say they don't have hardware that isn't usable but if you look at their routers they can perform very poorly. A lot of people think they need a better internet plan

when all they need is a better router

pfsense/opnsense can be installed on almost anything

@unborn rover you need a better router or wifi?

b/c fundamentally a router doesn't provide wifi access

that is correct

that's an Access Points job

internet connectivity = Access Point + Router + Modem

if you put them all in one box

all 3 roles perform poorly

most consumers don't want to shell out for discrete parts

which is why ISPs do this

ISP provides modem

^sometimes

good ISPs provide modems

it depends on your area

@unborn rover https://broadbandmap.fcc.gov/

so look up all the Internet Providers in your area

check your area

middle of America isn't specific enough

you have to look it up yourself

like down to the county/city level

if you're in rural America the chance of having good internet are low

also @peak cloak I recently got a https://www.amazon.com/gp/product/B07NFXN4SS/ref=ppx_yo_dt_b_asin_title_o01_s00?ie=UTF8&psc=1 to help my five node cluster with 10 a gigabit backhaul for IO

i can't wait to test this thing lol

wow, that's a nice switch

lots of sfp+

you can put in your address and it will tell you all ISP's for that location

FCC broadband map

Ex:

show the ISP name as well

1000/35 is probably Comcast. Or Cox cable.

ah ok

I would go with the first one, but check thier local website and the price

small ISP's usually have better support

Ah yes, Blackspot Telephone Company. Just uhhh don't forget to pay your bill on time, or they'll give you the black spot and the kraken will get you on your next sea voyage.

Was making a joke about the name of the first company in your list having a black spot over it.

But yeah I agree with @peak cloak - check into their pricing, and suss out how their support is should anything go wrong.

that's good

100/month for gigabit is good

we pay 160 over here

as long as they don't raise it later like verizon does

they advertise 80/month, but in reality it's higher

do you really need 1g though

I used to have 300/30, and it works fine

@peak cloak no. i downgraded to 100/10

you can't have 0 ping

it's impossible

yeah probobly

depending on their network, but fiber has better latency than copper

Signals are transmitted at 2/3 the speed of light in fiber optic cables. In copper it can be faster than that.

@hollow marlin daaaa

fiber has basically no interference

interference doesnt = latency

interference = bad CRCs, etc

@waxen scroll yeah your right

@rocky badge spanning tree priority 0

check your connection directly out of the modem

just to check how bad/good the internet is

is your modem seperate from your router

wait, how does your network look like at home?

with coax input?

oh

so it's just a wifi issue

not an internet issue

check the speed directly from the router using an ethernet cable

they are on wifi right?

yeah, as I said before hook up directly to the router using ethernet using a laptop or something and run a speedtest

wifi sucks

results?

I just want to see how bad is it

what do you pay for?

yeah but what speeds are you paying for?

and it's an ISP provided box?

by box I mean router

complain to the ISP

hmm, yeah then I would try switching to the other local ISP

yeah

first I would switch ISP's

then work out router

actually

you may be able to reduce the cost by buying your own router

fiber providers don't use modem

depends on what your local ISP does

FiOS for example uses a GPON network, so they install ONT's on your house for "free"

Other ISP's may use a more conventional network and then if you have a router with an SFP port, they could just connect directly to the router

you could ask them

@unborn rover good video on fiber https://www.youtube.com/watch?v=BHrBq1iuiI4

just don't bend the fiber

Fios is NGPON. Upgrades the PON from 2.4/1.2 to 40gig optics. NGPON for us has been in design plan for way too long

hmm, good to know I guess? what's the difference

Functionally the same. NGPON uses a QSFP with 4 different wavelength at 10G each to use by a range of ONTs. GPON is just a single freq. that uses TDM for each ONT.

GPONs real world limit is 32 ONTs per PON all sharing the same 2.4/1.2g of bandwidth vs 32 ONTs separated in blocks of 4 with each block sharing 10G each

ah ok

@waxen scroll lol

@unborn rover you can do powerline networking or moca networking

the magic of using wires you probably already have

Problem with moca is that the adapters are expensive

lol the adapters can be expensive yea

lol Ghost wait until you get into true networking magic

your world will open up

or your brain will become mush

I was looking into it, but in the end I ran ethernet

i run 4 networks in my house for various reasons

WIFI, Powerline, Moca, ethernet

Ended up putting my AP in the middle of the house

my house legit has rebar everywhere

and they fight the wifi

Europe?

so like my house has hotel style wifi with a backhaul

no just a well made house in the US

Nice

i'm in hurricane alley

Yeah, that's good to have

like in my old house i was using one those all in one solutions

and it would like sorta work

it just kinda went naw

this house is to much

I started running ethernet in the home when my mom would have stability issues with the wifi b/c of a broken driver on her school laptop. It just kept disconnecting so I ran ethernet to her office and it started from there. Before, the modem, ER-x and netgear switch were all in the same place next to my pc

so like

networking is literally the hardest part of technology

like literally network engineers are viewed at monty python bunnies in the tech industry

get to close and you vanish

im one and i get TRIGGERED when a server person blames the network with no troubleshoot on their part

Network engineers be like

a monty python bunny has joined the fray

like we have entire ochestration suites

just to manage one aspect of technology

yeaaa the network is slow cause your SQL server is over a 10ms link

and you're the idiot who designed it that way

hey, hey you ever get a cockroach-db problem

or more generally

a distributed SQL server problem

those problems are da best

or AWS s3 bucket problems

where they're like but it's slow

worst ive had was self hosted exchange DB problems

because you're getting from a bucket in california and you want it to go to Florida

exchange db is an actual dumpster fire

Oregon servers accessing in Asia

I prefer getting severs not working rather than enterprise reaching out to me because they lost a single ping out of 10000

server not working is easy to fix.... its the "its slow" thats the worst

the k8s answer to this is

is it working to slowly

restart it

Just throttle their speed then slowly increase it when they say it's slow

if i did BOFH at any of my workplaces and got caught i would get fired

lol

lol wut

if this is a business case just hire a contractor

then learn how to do it yourself

Hire lzdanger or phoenix then

Those are exclusives

yes, well you can't vanish yoru siblings

so you'll have to fix the wifi

Wdym phoenix

black bag em

Make them use 2.4ghz wifi

or . . . just deploy your wifi correctly

and use QoS to prefer game traffic

so everyone can be happy

QoS preferring his device

he said when he connected by ethernet it was still slow

so idk

lol just buy your own line then

or maybe it wasn't done right

if you're making money off your internet

idk

What is your uplink speed btw

So basically I’m= pro esports player ?

no monies?

yea your internet is defined by download and upload

if to many people are downloading stuff it can tank your upload

especially if you have like a 200/10 plan

or something like that

Oh wow

ISPs don't sell 100/1

that literally makes no sense

How symmetrical is that

is that what they sell or is that what you get

100/1

well then either fix the wifi

or find another way to get to the gateway

you'll need a government agency for that

or find the modern version of pablo esocabar

and have him blag back your siblings

idk you said you "So basically I’m= pro esports player My wifi = lag stopping me from winning money. "

i assumed you were actually winning and getting prize money

well then enjoy what you have

All I just read is I am pro but not really because lag but I would be if it was fixed

If you want to go "pro" then its wired or nothing

;p

;p

even my chromecasts are wired

I tried projecting to my roku, but apparently (miracast I think it's called) is only a direct wifi protocol

miracast over infrastructure exists as well but it was a pain to setup

Is there an alternative to xrdp or a method used to make it very reliable when installed on something like Ubuntu Desktop or Kali Linux? I find that it doesn't always load the desktop or user profile correctly. Sign out feature is also hit or miss and the session never ends when a user is finished. Lastly, I get Color Profile prompts when a user does rdp into the machine that requires user to enter their password again

VNC?

@peak cloak I have trouble with VNC too. It works but it isn't consistent

It's not stable like it's windows counterpart

spice?

I haven't tried spice

or x2go?

tiger vnc?

could not get vnc to work on my win 7 box but could get tiger vnc to work. /shrug

My AP

looks like a router

Because it originally was

configured as AP I assume

Yep

in bridge mode?

It can also double as a NAS, and a PBX

And, a DECT base station

yeah using my buffalo dhp1750 as an AP too.

These old FritzBoxes are quite versatile

My AP

simple TP-Link Omada

The key to the electrical closet(where the main modem is)

And I lost the padlock key

My diy network closet

Soon to be racked up

Hacksaw time, I guess

Nvm. It fell off my desk

My ISP provided modem

Cable

yeah same, top left in my pic

how is that being held on

looks sketchy

Screw

Leaning against the doorsill

oh

it has a mount

makes more sense

Yep

Also, when was the last time you saw a USB of this size

I use it for firmware updates only

oh wow, that's small

Check #build-a-pc in a sec

@neat agate is that a white superhub 3? how’d you get that

oh wait... different provider. looks exactly the same as my router

It's a Ziggo ConnectBox

yeah... it’s called a Virgin Superhub 3 in the UK

A.K.A Arris TG2492LG

@peak cloak is it?

mine

that's 64gb

he meant that it's really small as in storage size

o

yeah. sometimes i have to partition an 8gb or something on this cause network devices dont like it

stupid cisco

he meant that it's really small as in storage size
@peak cloak indeed

@waxen scroll very tiny usbs

https://www.bbc.com/news/amp/uk-wales-54239180

@waxen scroll https://blob.rocks/cuFwHuajhy.png

They want RJ45 on this..... https://blob.rocks/7xcyNqyGka.png

heh. yeah. ive done it too

but if they want all ports RJ-45 then LOL

wait what... they have an L3 agg switch now?

🤔 🍆

"layer 3 lite" or layer 3

https://blob.rocks/Ikm9WjcIIB.png

https://blob.rocks/YMdVjYsMVx.png

LMAO

eNtErPrIsE

ADVANCE FEATURES

Is this a business plan? I have not heard that fios offers 2gig

@waxen scroll

im surprised theres no VRF support since linux supports it natively

If DHCP and static routes are advanced, wonder what Unfi considers BGP and MPLS

@waxen scroll https://blob.rocks/Ol5Prsc3qB.png

https://blob.rocks/FpB1fC0XgN.png

UbIqUiTi ShOuLd MaKe PrOdUcTs FoR mY nEeDs

He knows what SFPs are right?

10GbE on copper is nice on paper

until you realize how expensive the NICs are

nevermind the 25 meter limit and interference issues

Due to power and heat. Its why over 10G for copper is not going to be a thing for sometime.

BuT mY mAcS wItH rJ45 10gIg

one day

we get plastic optical fibers

short distance, 10gbit

consumer oriented.

so TOSLINK ?

@rocky badge i use toslink on my computer

👌 🧐

sometimes I look at this channel and pretend I know what I’m looking at to feel smart

blob has that effect

networking is the only thing I do not have a decent grasp on

what do you have a decent grasp on

<-#nothing

^

i know how a computer works and how to build them

but the concept i am talking to someone via radio frequency through a box

across the world

amazes me

I know about networking within a LAN, but routing outside of the LAN is sort-of alien to me

basically me ^

lol

I know

Data goes from
A —— B

i stopped using B, i use Z now

Speaking of which, I'm trying to figure out why when tracerouting to google.com it is going though a private ip address 10.240.164.201 even though I am not using the 10.x.x.x subnet

A-Z is the only way

@peak cloak Where is it in the traceroute

And is this on AT&T

No, Optimum

i hear CTL had private IPs sometimes too

I know ATT does CGNAT

https://blob.rocks/qRKjUVh0fD.png

question

Because my friend on AT&T has a similar hop

Response in TR private IP from a provider is normal

how does Ethernet work

so probably your ISP?

yeah

https://blob.rocks/UyjQqy3xFs.png

would it cause problems if I would use a 10.x.x.x subnet at home?

it shouldn't afaik lol

Responses are generated with a source of the egress interface. You can configure it to respond with the loopback

only one hop in Level 3

Nope

you mean lumen

MPLS

🤔

It might appear to be 1 hop but with MPLS you are not decrementing the TTL until its egress the tunnel. Unless you configure it to decrement

ah

yeppppp @rocky badge my site in china has lots of hops but the trace is 2

lol

If you didn't have Unifi you could use MPLS to get a traceroute with MPLS labels with some sneaky configuration

i only use MPLS as a CE, last job i used it proper but new job doesnt

@hollow marlin UniFi router? I'm not using that as my main router lol

or any UniFi lol

We do not have MPLS at the CE. PE/P are all MPLS.

MPLS for life

yes, i meant i only peer with an MPLS router. i dont think about MPLS anymore

my friend has 12ms ping to a MC sever I'm hosting at home

But how are sysadmins going to put MPLS on their resume?

do they?

Way too much

Even when they do not run MPLS, they manage a router on an MPLS circuit/L3VPN and still put it on their resume

well

i dont disagree with that BUT

it needs to be more than just "i plugged a router in"

Woah, thats asking a lot

MPLS is only getting you from A to Z, theres a lot of engineering that can go into the design and MPLS is just a small part of it

Im just referring to sysadmins and the resumes I have seen

if you dont use the word MPLS on the resume its not as easy to identify what you did for people who arent admins

they know they need to look for MPLS

lol

also supposedly hiring for networking is hard 💁

last company told me "yeah those basic questions you answered on the verbal test.... most people fail"

oooooooooook

everybody lying i guess

when i graduated i was also encouraged to lie and refused

"you took an active directory class right? So why isnt it on your resume?"

really?

one class. barely touched it

I've been thinking if I should go into IT/networking as a career vs. mechanical engineering

lol mechanical eng was one thing i thought about too but i didnt wanna deal with all the math involved and its a very competitive field

Like I like "engineering" at home as in building things, but as in working at a company, idk

thats how i feel about dev

its easy when its your project that you have a passion for... but an employer?

I'm 63 and worked in IT/IS for multiple major global companies. I went from an engineer to a Director and CIO. I have a passion for technology, so I really never worked a day in my adult life doing something I loved. IT/IS is a sh*T job in major companies, ONLY when you get laid off. That happens a lot as the companies in source and outsource every 5-10 years. If your ready for change, awesome, if your not, find what your passoinate about and do that.

haha

i switched to major companies years ago and i love it. screw smaller places 😄

but yeah i have been laid off before, thats the downside

hahaha, yep, gotta love what your doing, when that happens and be willing to do other stuff in IT/IS as well.

6000 jobs at Kraftfoods moved out to EDS(HP) 3000 jobs moved from Johnson Controls to Infosys. I can do on. I also love large companies, but I also like learning, so I built an IT/IS organization which was bought out by Trenity Industries. STuff happens but it was great while they lasted.

i got hit by Capgemeni at one company and TATA at another

they always say "its operational" and then all the engineers get hit

I fired Infosys, pissed of a VP, and later another VP hired Infosys and F^%ed everybody.

I did with 10 people, what Infosys had 100's doing, and did it for 5% of the cost, and 1000 times more work produced.

oof

i had 300k of equipment ordered and on the dock for datacenter network equipment that was end of support and they kicked me out, no turnover

better than training my replacement!

😄

nice...

I took all the signing keys away from the developers, for ANdroid, iOS, and Windows, and was out sourced. I offered to hand the keys over and they said never mind. LOL I did give them to my team, anyway, because without them, every application was going to fail, costing over $100 Million. No IT/IS idiots....

🤣

After what they did to IT/IS, I should have kept them and charged them for signing...

now the new trend is "we refuse to hire non-senior". Automate away the non-engineer contractors. Reduce novice labor.

current company is doing it

I'm 63 and get told, I'm to old, and experienced. cuts both ways.

i dont know how american IT novices are going to get real experience now... between outsourcing and senior only... all they can do is work at smaller companies

then [Surprised Pikachu] "Why cant we find anyone senior to hire???"

reminds me of that job listing that wanted like 5 years experience with certain software, when it was released 2 years earlier

Yep. Amazon director, told me he didn't think I could manage in the data center walking around for 2 hour shift. He was 400lbs, and I just finished 168 out of 690+ people on a 35 mile ultra marathon. I later learned he was afraid I would take his job.

BTW, I use Arch Linux, nothing is over 10 days old....lol

Working a smaller companies in networking would be preferred because you get "more experience" or at least a wider range of responsibilities. Large companies tend to silo and I have seen people burned for being so narrow focused that the moment they need to step outside their day to day they collapse

As far as larger companies hiring only seniors will bite them in a few years

i started my 100% networking career in a big pharmas operations.... you dont silo there and have chances to touch *

i imagine other NOCs are the same

Most providers we work with a 100% silo'd. Not saying it applies to all but have seen many with very limited flexibility

@hollow marlin You can be correct. I was lucky in that we rotated our people to different teams, to keep them sharp. I managed developers, but still installed servers, and applications, as well as networking, in a 50 Billion dollar company. I also did a lot of things in Phillip Morris, when they were 500 billion. I was the go to guy for technology and worked with the CTO, which helped.

@hollow marlin i wanna do nothing but layer 2. can you hire me?

xD

@waxen scroll @hollow marlin I just want to work. I'll pull cables to manage global teams. I really just want to work. I'm easy....

@signal mantle Securitas datacenter security

get paid for checking people in and reading reddit

lol, maybe a little more technical. If you stop moving you die.

Headed to the gym... You guys are great... Have a good day...

Just remember, hire someone to take the interview for you and cover your mouth so they can't tell while you're on video. That's big brain moves 😄

@rocky badge ill do one for you

Lol

@waxen scroll https://blob.rocks/9j1zqMUItA.png

can I upload to Google Drive faster pls https://blob.rocks/20dxnv0s4P.png

Any FreeNAS & NextCloud people around and able to help?

I setup NextCloud with SSL from this guide - https://www.youtube.com/watch?v=fvmxl30pC6Y

The SSL isn't working, and I can't access the service outside my network 😦

@mellow heart that looks like a tutorial for self-signed SSL certs. You need to install the public key on your computer that you want to use to access it. If you want HTTPS from anywhere you need to get a free SSL cert from letsencrypt

Do you have a domain?

I don't have a domain

😦

I can't access nextcloud outside my network

yeah, that's expected unless you port forward

Do you know netoworking basics?

like what NAT is?

I know how to port forward

I'm a web developer so I know some things

but not stuff I wouldn't deal with when making a website

so you port forwarded? (I personally wouldn't recommend this for security reasons without some sort of authentication though a reverse proxy or a VPN)

Sorry for my lack of knowledge

so you port forwarded? (I personally wouldn't recommend this for security reasons without some sort of authentication though a reverse proxy or a VPN)
@peak cloak I don't know what this means lol

I just want to make a DropBox like system for my family

I'm using an old machine I had laying around

when you port forward you are forwarding requests to nextcloud directly. Then the nextcloud machine does the authentication (password to access nextcloud). A reverse proxy w/ some sort of authentication middleware can be an additional layer of security

Is it something I need to worry about for something simple like this that's just meant for family use?

It can fine for a bit, but I wouldn't keep it as a permanent solution

If there is nothing sensitive, it should be fine

Nah, just videos, pictures etc

plus I would isolate the nextcloud machine from your LAN

Okay, clearly I don't know enough about networking to do this

What are my options?

The goal here is this

I may be overcomplicating things, but I guess I'm just a bit strict about security. You don't need to these things but I like to.

To have a NAS so I can offload recorded videos to save space on my gaming machine. To allow access to family so they have personal dropboxe - and most importantnly, setup Plex so you can watch videos in a specific folder if someone wants to share recorded gameplay that is too big for Discord

I had this all working before, but I switched to a larger HDD and now setting it all up again it doesn't work

Is there someone I can pay or get help from to walk through this?

You can get it setup, but it wouldn't be THAT secure.

So you have the machine port forwarded, is that correct?

@mellow heart just put freenas on it

It has FreeNAS

then use the plugin directory to install nextcloud

That's what I did

its easiest

if you get that to work

I had port forwarding working before switching HDD @peak cloak

you can then consider, maybe if you want to get more savvy

because done properly, you'd go with some linux distro, and then install the software manually

because you dont need freenas to do what you are trying

@mellow heart sounds like the dhcp lease expired

what's the machine's ip

Let me check

If you want to not care about dhcp

^ just setup a static ip

give the machine a static IP, and then make sure the router's DHCP pool is not in that range

most dhcp servers on home routers, you can set the range of IPs it gives you

or some routers can map a static ip

yeah

you can also do static leases

where the dhcp server just remembers the MAC address of the device

@peak cloak ever seen ipfs?

https://ipfs.io/

This is what I have

https://i.imgur.com/mH3TeJm.png

you blurred out all the useful parts

xD

Oh, I thought that was sensitive info lol

Sorry

just your public IP

and your phone # if you have one

https://i.imgur.com/ZcQ25S5.png

Like that?

Damn, I'm at a total loss

this is a cancerous router

I think I'm just too stupid for this 😦

no

ISP routers

are always garbage

Well yeah

I don't have a choice

I can't afford a new one

see if you can find DHCP somewhere

The server is directly connected via wire

its probably in "advanced"

I've helped someone on a Verizon router

Good

then I can go take a leak

brb

It's under advanced - port forwarding

Wait, what am I trying to do here?

@hallow nimbus did you see 👀

How can I tell what port Next is on?

its probably on 80

I was pinged 👀

I finally got off of shitty cable a couple of weeks ago lol @hallow nimbus

HEUJ

And now 👀

Port 80 is the standard http port

How many gigibyes 👀

this is on WiFi 😂

@mellow heart webservers run on port 80, HTTP. For HTTPS people use port 443

Thats atleast work it

So that = 600Mbit

Nice

gigabit 👀

You got gigabit 👀

boo

wifi

Jealus

only 600mbit?

And yes Crystal correct

😂

I'm going to try reinstalling the plugin

Still good for WiFi when the AP is only 3x3

@mellow heart wait

I don't know what's going on 😦

And it's not even in the same room

chat is moving too fast

@mellow heart do you know the current ip of your server?

yes

just put that in your webbrowser locally

http://192.168.0.0/

0.0 whatever it says in your router

yeah

That works

then you dont need to reinstall nextcloud

I can see the NextCloud client

Datacap @rocky badge ?

How do I make it accessable outside my network?

nope @hallow nimbus

That's the main goal

@mellow heart so your public IP, is pointing to the router

@mellow heart currently, the router doesnt know what to do with data on port 80, so it just ignores it

Thats how i like to see it @rocky badge

by port forwarding, you tell the router to forward traffic on port 80, to port 80 on a local IP

that local IP, is the one of your server

@hallow nimbus And it's cheap 😄

Imagine having a datacap

And I get multiple WAN IPs

And fiber being cheap

WAIT WHAT

I cant get multiple wan ips 😂

I haven't ran into a port that's blocked yet

LOL

I can just open every port i want

😂

I can too

but then ISP called me up

https://i.imgur.com/01VuQD6.png

22, 80, 443, 25565, 19999, 8443, 8080

HEY: get rid of that DNS server

Like this?

That's all I've tested so far

Lmao @tame carbon 😂

@mellow heart yeah.

because most of my stuff goes through a proxy

@hallow nimbus I have 3 IPs right now

@hallow nimbus firewall rule for the local FW, was also applying to my routed subnet

@hallow nimbus so the dns server on my /29

yeah..

@hallow nimbus I have 3 IPs right now
@rocky badge Why even 😂

isp not happy

xD

You ware prob causing problems in thier systems

😂

I have 9, total, 1 WAN and a /29

OOF

@hallow nimbus why not

Tru

Doesn't work 😦

How is the upload tho 👀

@rocky badge

@hallow nimbus only costs me additional 16 euros/month for that /29

Last time it had a port like 8282 or something

500Mbps on residential not bad

plan is 250/250

a better upload than Spectrum 10Mbps

@hallow nimbus only costs me additional 16 euros/month for that /29
@tame carbon Not bad

plan is 250/250
@tame carbon I have 250 down 25 up feking ziggo

I want more up

😂

And more down

😂

500Mbps on residential not bad
@rocky badge Not bad at all

@mellow heart you can put the port for the public IP on a different one, but then you also have to put that in your browser

abusing that unlimited Google Drive @hallow nimbus https://blob.rocks/q8r0jgKDRY.png

@mellow heart you can put the port for the public IP on a different one, but then you also have to put that in your browser
@tame carbon That's what I did before