#networking

i'm sure if you enable host for your CPU type instead of Linux-KVM and use SR-IOV it'll probably lower the CPU usage a ton

most of these hardware vendors simply assume you have hardware acceleration

you know what doesnt have hardware acceleration?

java?

your toaster

@topaz quarry lol who cares about that stuff with java

better CPUs

xD

business applications do not really need the added speed

right tool for the job

hello, I have a issue. Twitch is buffering. it freeze every few seconds. I turned of the hw acceleration and low low latency mod but no luck. My down around 10mbps and up 2mbps

are you streaming or consuming?

@hollow marlin you're going to buy a 3950x? What price are you waiting for it to drop to

@little schooner it wont be much but hopefully on the 5th itll drop maybe $50-75

dont know if this is the right place to ask but im trying to port forward and i did this but the port still isnt open, i dont know what i did wrong.

windows firewall open?

yes.

how do you know it's not open? are you using one of those websites? You need to have the server/software running

yes

i have the server running

and nobody can connect to it

what's your ISP?

and i use a port checker site too it says its not open

uh idk

drei

choose a port above 10,000

like 35,000

or some seemingly high port

what

why would that change anything

ISP's block ports

it looks like normal web traffic if you do that

welcome to the land of networking

http://www.zerotier.com

if you wanna tap out

wow was it that easy all along

let me do it

ill see

nope

that doesnt work...

you still need to do port forwarding at your router

http://www.zerotier.com/ if you don't wanna bother with port forwarding

uh

how do i use this

what is this

a NAT whole puncher

you creaete a network on website

get people to download app

give them network ID

and they join

so hamachi but more complicated?

no idea what hamachi is

https://www.youtube.com/watch?v=Bl_Vau8wtgc&t=648s

hamachi is a VPN I think

oh this is more than what hamachi is

zero-tier makes everything act like it's on the same network

instead of all of you going through logmein servers

it automates port opening for you

zerotier is quite nice

So its basically DMVPN

there's an extra step though

in the case of an public facing IP address change

the nodes in the cloud act as ochestrators between the multiple nodes

eg all spokes can have DHCP address from their ISP, have them change in the middle of the tunnel creation

Yeah thats what NHRP does in DMVPN phase 3

and simply reset it

oh does it?

Yeah, build tunnel to hub, map NHRP from public to tunnel IP, in phase 3, if a spoke wants to reach out directly to another remote peer it will send the mapping to the spoke

oh you're talking about the peer to peer tunnel building process

what if your public IP changes after the tunnel to the hub has been created?

They will then build a tunnel to each other. This is it essential the same but instead it "pokes holes" in the firewall and just used IPIP

In DMVPN the hub is all that needs the static IP. Same with this software. The tunnels in DMVPN between spokes are temporary

you mean a static internal mapping?

as opposed to a public facing static ip address?

Hub has to have a public facing static and tunnel

ahhh, then this is what zero-tier adds

since it allows everyone's IPs to flip flop

Zero-tier is the hub with the static IP though

The spokes in DMVPN can use DHCP

the instances of zero-tier are the hub yea

All I am getting at is this is a recreation of DMVPN with IPIP. Not dissing it but nothing ground breaking

the fact that it requires no real configuration is brilliant part

you basically get the comparable of an OAuth token

and it provides pre-fabed authentication

there's other coolio sutff you could do like vxlan, or automated wg tunnels

it's just a way to lower cognitive load

Ya boi just got a win10/server2016 KMS key good for 1001 activations

grats

Hi guys

Does anyone know what this problem is about?

I am using Wireless Broadband with CPE on the the Roof, and the problem started a week ago.

Ok I need some help. I have a bunch of vif interfaces created on what is supposed to be a trunk link to my core switch. The problem is that when I connect to any of the interfaces on the switch that I have untagged on a specific VID, it doesn't have connectivity. The switch web ui however does work

What switch model is this?

dgs-1210-10P

Can you copy the "vif" config?

wdym? from the edgerouter to paste in here?

and for the switch it seems the config is a binary file

Port 1 is to the router

2 will go to the AP

I'm trying to plug into port 3, I have a DHCP server setup, but no success. Even with a static IP I can't seem to ping the router

and this is a portion of the router config https://hastebin.com/ihiduhuxac.yaml

@hollow marlin

It all looks correct. Are you testing with your laptop on port 3?

yeah

If you have wireshark, plug your laptop in, filter for ARP and on the router try pinging a random IP in vlan 20 like 10.0.20.50

Just to see if you are getting the traffic

don't have wireshark, but I'll get it rn

Ok, so when I do that I have a bunch of Who has 10.0.20.50 tell 10.0.20.1

@hollow marlin can you remind me what you can learn from arp requests for troubleshooting? Does the router return back to the pinging client that no network device has that ip?

@peak cloak ok good, so you are getting traffic. Can you screen shot the packet in the middle section of wireshark

@little schooner wireshark with arp is a quick and dirty way to generate traffic to capture for tshooting. Nothing will respond but it will guarantee you have l2 communication

@hollow marlin

Ok I just want to make sure it wasn't tagged vs what was configured. So set your NIC to an IP in the range and try pinging the router

Ok, now I have internet conectivity

idk why it wasn't happening before

but now, dhcp

Sweet, yeah just remove the static but before applying make sure wireshark is running

just filter with dhcp

thanks

ok, now it works 🤔

I did a wireshark filter on dhcp before

But with no response from the router

Thank you, wireshark is now a must have for me

Wireshark is a must have the moment configs look correct but its outcome is not

What is the best VPN to buy ? And also the cheapest

hey guys
can anyone help me with a certain problem
basically when i have recently turned off my pc WOL works
when it has been off for like 2 hrs wol doesnt work

Oh no. I just got WoL working and I only tested on recently shut down machines.

well im gonna try using this

? Are we still working on WoL?

well

i'll try wol with this thing from my router

The virtual server won’t help with that.

windows 10 ? yeah it doesn't really shutdown when you tell it to shut down it goes into hibernation mode then turns off after bit. technically WoL should only work on machines in hibernation or sleep mode. to test this shut down and kill the power to the machine immediately (turn the power supply off leave it off for a minute turn it back on) then test your WoL - bet it will not work.

dunno

i have a friend that can always turn his pc on

from anywhere in the world

Well, I can too, but I don’t expose a port to the world.

From what I understand, WoL uses the broadcast and you have to specify the MAC address in the WoL request packet. No IP addresses are involved.

well

any idea where i can do that

Most routers don’t have the ability to send WoL. I use a Linux server myself. I use the command “wakeonlan -i 255.255.255.255 (MAC address)”

Does WoL make you specify a local IP?

yup

I’m in unfamiliar territory then.

ok

there is one more thing

there is one more thing i wanted to ask
i just bought a nintendo switch but the wifi in my room is trash
is there a way to share my ethernet connection with the switch somehow?

@vagrant trail WOL in the router is being used just via IP then look up your DHCP lease time in the router, what does it give?

So that's about 2.5hrs when it will flush the lease and no longer have the permanent ARP stored in memory, hence cannot send the magic packet because it doesn't know the MAC. Increase it to 24hrs (86400) and it shouldn't be an issue anymore, at least if the PC is on once a day. Use it further if needed

what is the max lease time

It's how long a lease is valid. If a renewal is not received before that time it's invalid and flushed from the router

i mean

how much is the max

Depends on the router

well if that screen cap is accurate his lease is already 7 days.

Oh, its in minutes. Didn't catch that

can you guys help me with the switch problem

does the computer that is hooked up with ethernet have a wireless adapter?

if not then you would have to buy one for the computer and then use it as an Access Point for the switch.

well

i have one

not sure if it will work

i mean

it can connect

and browse the internet

http://woshub.com/how-to-create-a-wi-fi-access-point-on-windows-10/

the mobile hotspot in win gives me an error

it cant get the ip

did you the netsh wlan show drivers from an admin command prompt?

you also might need the actual drivers for the motherboard manufacturer.

the adapter is Tenda w541u

i cant find legit drivers for it

well

i have connected to the hotspot

but it says not internet

OH MY GOD

you are jesus

thank you

i can finaly play rocket legue in peace

https://www.tendacn.com/en/service/download-cata-10.html

doesnt have it

anyways it worked

thank you

yeah I noticed so started looking for more info. seems its a very old usb adapter - you should be able to call up the isp and ask for a newer one if it was supplied by the isp.

nah we bought it waaaay back

in like 2012 or sth

i mean

it was sitting in a cupboard

and now has a purpose again

Do you know what you can do in the internet

you can buy ltt merch at lttstore.com

isn't it against the rule to spam multiple channels

Spam is against the rules anyways

@unborn sluice report to mods by tagging

How do I find my 2nd ip?

It says my WAN IP is this for example.

12.34.56.78.910/11

What does the /11 part mean?

(Fake IP for an example)

That's not even a valid IP, lol
/11 is a subnet mask notation

Its a example.

But it says /22 after the IP.

What does that mean?

255.255.252.0 is your subnet mask then

Ok.

Are you trying to find the gateway address for your subnet or?

No.

Im just trying to find out if I have a 2nd IP.

Do you pay your ISP for one?

I dont think so.

Then no you do not

Ok.

Thanks for the help.

What does UPNP and SIP ALG mean?

UPNP can die in a fire, it's basically auto open ports as devices need them, very insecure

Ok.

So its bad.

SIP ALG, if I remember right, is for VoIP (voice) stuff

Yah, lots of vulnerabilities with UPnP as well

SIP ALG was designed to help with NAT and SIP, but in literally every vendor instance it ends up breaking SIP

Sounds about right, lol

@drowsy frigate Where did you find that IP, in your router?

That's the subnet of your IP, if the destination of a packet is outside the subnet it goes to the gateway

google won't know that info, while you router NEEDS that info in order for it to function properly

It's usually supplied by an ISP DHCP server

so got a question i got a router/modem from my ISP and they have the thing locked cant get into the settings to change the password is there a way to reset it I've searched everywhere to figure it out

can you specify the router

or the ISP

or call the ISP?

@plain siren help bigboy out, oh great one

Who is the ISP

And what is the All-in-one Modem/Router/AP model?

ticket creation 101

Hello, this is ISP support. We have opened case VTY-863047 and your tech @clear igloo will be contacting your shortly

Lurick: Hello can you provide the details? My shift ends in 20min

@plain siren i have a TAC case open right now where the person seems to be confused around the concept of VRF

We all joke about this but it seems like all network issues occur near end of day

so you open TAC and thats the response

@flint venture usually there is a factory reset button somewhere

i have held the reset button for a few minutes never reset the ISP is a local company called Decatur Telephone Company they over charge for 3Mbps down

i have called the ISP and they told me they cant give the password or username for security reasons

wow. dick move

they cant even remote reset?

Might be why they have 1.6 star rating, lol

Yeah that's umm

Their modem is literally locked to shit

go to where they are based with the modem and light it on fire at their doorstep

if u have no internet

lol

bruteforce/dictionary attack the password

lol yes that too

Try admin and no password and hit enter

lol

access granted

big brains only

why does the IPv4 address on my windws 10 pc keep changing on its own?

my router uses a static ip

I use SMB to connect my phone and pc to share files

and the address chaning like this causes issues

By your router uses a static IP address, is that a static public IP? If you want your PC to keep its IP forever, you are best setting it on the interface settings as a static IP

@thick minnow you have a public static IP, or did you give your PC a static DHCP lease?

no idea

@cedar igloo I wouldn't recommend doing that, use DHCP leases instead

what do you mean?

@thick minnow go into the router and give your PC a static IP

you mean go to the router's settings?

yeah

this?

no

that's wan

uh

also unless you are paying for a static IP, you don't want to have that static

oh got it

we are paying

nice

I wish I had that too

this?

um idk, I need to see the ip

private ip's aren't sensitive

uh okay

that's the IP of the router

so what should I do?

this??

Address Reservations

thats just this

Yup, add new and put in the MAC address of the PC and IP you want for the PC

I tried doing that in DHCP settings

That's the addresses the router hands out to all the clients on the network

is this fine? the PC reports the same IP address

That's the addresses the router hands out to all the clients on the network
@clear igloo OOOo

192.168.0.10 (start)
192.168.0.150 (end)
120 (leas time)
192.168.0.1 (gateway)

Then you can use 192.168.0.151-254 for reserved addresses if you want to set statics, it doesn't really matter much but it's cleaner that way 🙂

what is gateway?

That's the IP of the router, I would assume, since it says optional, the router will use itself if not specified

Oh

okay I think thats why my phone can't connect anymore lololol

Yup 🙂

wait so

the start end thing

is the IP address my router gives out to my devices?

right?

and in address reservation, I can reserve IP's for specific devices

Yes

okay what does that DNS thing do?

the DNs server in my wan is different

That's the DNS servers your local network will use

You can stick to 1.1.1.1 1.0.0.1 if you want or any other DNS servers you want that aren't your ISPs. If you want to use what your ISP provides just blank those out

why would my local network want to connect to some DNS server out there in the world to connect to my deviceS?

Faster lookup times, load times, privacy, etc.

okay so whats the difference between this DNS server and

this

they both are for the router right?

One is what your router will use locally to do lookups for anything it might need, the other would be for your devices

Like some routers have VPN stuff and other smart home features, they would need DNS servers to resolve hostnames to IP addresses

oh so mine is a stupid router

it won't do anything on its own right?

Yah

so whatever DNS I provide in the second screenshot

is what my devices would use to access say hotvideos.com

correct

okay I see

can I do something like

enter cloud fare's dns server in the first field

and google's in the second?

cause often cloud fare goes down while google stays up

Yup

so if i say nuke cloudfare's servers I would still be able to connect to the internet and same if i nuke google right? I am serious and I am sorry if I don't sound so lmao

For your static IP reservation btw, to get the MAC address of your PC you can do start > cmd.exe > 'ipconfig /all' (without the ') > Look for Physical Address of the NIC you want to assign a static address to. I'm going to assume you're hard wired on your PC. My MAC for that adapter is 04:D9:F5:7D:00:80 so you would put that for MAC address if you wanted to reserve the IP of your choice to that interface on your PC

Yes, that's exactly right, first is where it goes and if it can't find it then it goes to the second on the list 🙂

For your static IP reservation btw, to get the MAC address of your PC you can do start > cmd.exe > 'ipconfig /all' (without the ') > Look for Physical Address of the NIC you want to assign a static address to. I'm going to assume you're hard wired on your PC. My MAC for that adapter is 04:D9:F5:7D:00:80 so you would put that for MAC address if you wanted to reserve the IP of your choice to that interface on your PC
@clear igloo my router told me the IP address in the DCHP client list

@clear igloo my router told me the IP address in the DCHP client list
@thick minnow Even easier then 🙂

🤔

lol, that's odd but yes, that's right on the second picture

i guess i need to restart

Yah, it won't hurt anything 🙂

true brb

ok everything works perfectly

now

thanks

awesome 😄

Any suggestions on what else to use a pi4 as a network appliance for? I've already got: DHCP & DNS with pi-hole and unbound, samba (though the drive is sitting over here on my desk atm), with nginx running to serve the pi-hole admin page (and hopefully soon a wordpress instance alongside it). I'm planning on: openRADIUS, openLDAP, and OVPN/Wireguard. Anything big I'm missing?

just go thorugh dockerhub and choose applications you want to deploy

the portainer templates usually give good ideas

i use minio and nextcloud for a bunch of stuff

I feel so stupid coming here and not understanding any conversations 😂. Ok but anyways here's my question. Is it a commom feature for modems being able to receive an internet connection through another modem WITHOUT becoming an access point slave (doesn't process any data just passes on to internet modem). Use case for virtual desktop and want to keep its LAN data transfers seperate from main modem but it kept defaulting to access point slave. If so is there a term for this feature? Thanks 😂

Please ping me if you do reply as I'm gonna be asleep on mute

you can use VLANs to keep network segmented

get a real router that supports VLANs and put your modem in ip passthrough mode

Thanks. Internet modem is a generic crap ISP zyxel modem, modem intended for virtual desktop is an Asus ac55u

Will check up on how to do this roughly, tomorrow 👌 thanks again

Anyone able to help with a Drobo 800fs NAS?

I just watched a networking video that was probably 25 mins of harping on making sure you have redundancy.
Then I looked at my homelab...

https://tenor.com/view/umm-um-ummm-ummok-puppet-gif-17038634

I only have one node, lol

I've beefed up to 5 esxi hosts, and my networking is very....

It works.

one router, one switch, one isp, one gigabit port on my node, very redundant I would say

You mean you don't have dupes of everything? /s

He also was going hardcore on how nice L3 switches were

my core switch is only L2

Yeah, all of mine are

Don't have nearly the Traffic, even internally, to warrant one.

esxi?

clearly proxmox is master race

@thorny vector not as much as L3 switches as much as L3 itself. L2 bad, L3 good

@hollow marlin L3 is nice. I'm very happy the days of L2 troubleshooting is geeeeenerally behind us

That being said, just yesterday I had a fight with my work ISP because I had to change our edge router out, and it took forever for them to reset port security

Well in the ISP space L2 is still heavily relied on no matter how much in my designs I try to eliminate it

Fortunately I don't build infrastructure like I used to.

the answer is automate infastructure

instead of having fragile infastructure

Hah. You would weep at some of the stuff I've walked in on.

fixable

Fix a legacy token ring network

Automation only works on very particular use cases

No matter how many people try to market it it always fails in the long run

automation can work in almost any use case

even with switches you can only ssh into

it just requires someone who is willing to put in the time

and understand their architecture

Still only for very specific monotonous task

no?

you can reconfigure an entire network dynamically

if you so choose to

just because you do not understand how does not mean you cannot

I understand what you are getting at, I don't think you realize how much wasted time companies are putting into automation that ends up flopping.

again just because people don't understand how does not mean it's not possible

yes if you put a bunch of IT gophers or python miscreants on the network automation team

the endeavor will fail

Hell SD-WAN is basic under the hood but any complex designs brings it to it's knees

SD-WAN is a buzz word

most companies don't want to pay for real IT automation

so they end up waisting time

you are correct on that point

Yes, I know. My point is SD-WAN revolves are the automation mindset.

It's a lot of dynamic routing in the overlay

it's a buzzword thus provides no value to the conversation

your indicated problem that companies want to overly simplify concepts

yes that creates problems

A healthy combination of automation and manual config should be the goal.

you can automate networks without network overlays

yes you need to give the automation direction

Yes I get that but its still a very narrow spectrum of what can be automated

I do not think you understand how much this is being pushed already

reasonable minds can disagree

you can automate full L2 networks

without spamming vxlan (which is dumb)

and without spamming overlay networks

but that requires thought

spamming python for every IT automation causes a lot of problems

Spanning L2 and not using overlays is the worse design decision to make

i never said span them

If you do not want scalability, sure

I'll put in from the cybersecurity side as well that automation can be a god-send to an attacker. On stuff I've red teamed, sometimes all I had to do to get persistence or access is edit whatever automation they had, and it never got found because its a native application that they set and forgot.

i said they can be automated

if you put in correct checks

automation can be very difficult to deal with

yes if you just literally automate stuff without security in mind

yes that's a problem

many developers think of security last

so it's an after thought

If I have root, then it doesn't matter what security you have protecting it

i can deploy applications so if you have root your access is meaningless

again just because you don't understand how

does not mean you cannot

People think just because its containerized something is safe. If I control a host/manager, I can change what I want

The correct checks are already in place, designed into the protocols. Automating a network design is still not anywhere within reach. Cisco, Juniper, Arista, Fortinet, Calix all tossing billions into it with little to show

no, i can design a system in general

installed on bare metal

to which you can do nothing with

with root access

being able to change whatever you want does not help when you don't understand what it is that you're looking at or to what extend it goes

many people have adopted the windows philosphy in networking

so if you corrupt one node everything crumples

if you break up services into invidvidualized segments and do not literally replicate all data sets like a nob

then red teams have legit problems with it

many configs are in plain text and stored in the same spot

for example (this is one example amongst many)

https://gravitational.com/teleport simply prevent the automation from changing at will

only allow given moments which have to be literally approved by a physical human somewhere in the stack

security in depth is how you protect stuff.

and to your point microVMs are an evolution on the concepts of containers to make it even harder

Automation that works so well you need to insert manual approval

Pretty much sums up my point

But you have to design a system from the ground up for all of this. If you try to just drop this into the majority of existing networks, it's not cost effective

your point was that it can only be done in very narrow contexts

In networking, yes

reasonable minds can disagree

if you ask a bunch of python toddies to do it

sure they'll have problems

because they want to spam yaml files everywhere for configuration

Cisco, Juniper, Arista, Fortinet, Calix How are these companies python toddies?

legit these systems cannot be automated on their own

you do not install stuff on hardware level networking equipment to do the automation

having automation in the edge in the way you're probably thinking is dumb

you rotate keys with the actual automation tool

arista supports docker on some switches

it shouldn't

that's dumb

go look up what ansible is and think of how you could safely and securely automate switches with it

also at least from a cloud native landscape (https://landscape.cncf.io) these companies don't truly partipate in the ecosystem

so of course their security will be worse because their code isn't auitable

I know what ansible is, I know its capabilities, I literally am an ISP network engineer that focuses heavily in design. I know what limitations exist, I work with people that automate, I speak with devs that live in ansible and kuberneties.

lol Spectrum is ran by python toddies

like the people in charge of the IT automation

have no clue what they're doing

Who said I work at Spectrum?

i didn't

i just gave you an example

of something i know about

I know how to scare @topaz quarry

i'm not scared

i use fpgas with random stuff all the time

btw unless you legitametly understand k8s

which is a very small bunch

securing it is unbelievably hard

most ISPs at least in the US

don't want to pay for real help

so they end up getting 2nd or third rate help

c0GenT coMmUniCatIonS

no offense but like a lot of ISPs focus to heavily on python as a mainstay (at least in the US) and don't go into use C++/Go/Rust and having auditable practices

I think you need some exposure to ISP environments and employees before going after their devs. I work with many providers and know their engineering/devs quite well. Business decisions shape a product more than the people behind it.

i've talked with some of these devs

they end up being python toddies

r/gatekeeping vibes here

like between At&T, Comcast, and Spectrum they're seems to be a misunderstanding of what security first actually means

well at it's core python is not a language designed for security

it never was and never will be

man my isp is operated by python toddies thats agreeable at least. imagine havifn an ISP that blocks VoIP calls (free online calls...)

I was not talking about security as thats a whole other topic. I am strictly talking about design and operation

security is a part of design and operation

this is my point

yall think of afterwards

and then act surprised when bad stuff happens

your original point was that automation has narrow applications

that was your original point

and to your credit you sound education

i just don't agree with you

reasonable minds are allowed to differ

Security is a part of design and operations, but if you cannot automate a simple collapsed core then you'll never get around to the security part

If you use clumsy primtives, rely to much on dynamic allocation, rely to much onf plain text configuration files, do not harden applications at the application level while they are being designed and made

use a secure core while you're designing infastructure yes you will have a bad time

You're making an apple pie by first creating the universe. Fine and all in concept, but most of the time you don't have the time/resources to set everything up. Products still have to be sold, services still have to be hosted. They can't be held up by a long dev cycle.

Sometimes you have to work with store bought ingredients. (Most of the time)

^

no? we have a bunch of secure product

you just have to understand how to secure them

just because you two and most developers at ISPs do not understand how

again does not mean it is not possible

to your point(s)

developers at ISPs are both undereducated and underpaid for what they're asked to do

i'm not saying the ones I met aren't smart

or well educated in different regards

but when it comes to designing secure applications at lest the ones I've met from Comcast, At&t, Spectrum, and Arris are quite clueless

like it's so bad that At&t champions OSSIM for direct intervention

Ill reiterate, if Cisco and Juniper are running into difficulties in full automation, then please apply to show them how its done.

Secure products that have to be paid for. Documentation that has to get written. Training that has to be done. Old infrastructure that has to get swapped out with minimum impact to customer. It's not feasible.

why would I apply to Cisco?

they want me to move to their crumpy HQ in cali

the reason why they can't get good help is because they're obbssed with people being onsite

with people not being allowed to live in their own ecosystem and just perform their job

Yeah that is the farther from the truth

btw I have applied to Cisco, they literally demanded that I move to Cali

and i was like naw

like i don't believe you because i've gone through the process.

I have 6 good friends that work in engineering/architect that are all remote

good for them

every ISP i know demmands engineers to be onsight

Cisco (not just for me) has demanded for people to be o nsight

(btw work from home) is not remote

WFH != Remote

Maybe for certain departments but its definitely not all

it's a big company

i'm telling you everyone i know has personally been demmanded to move

a lot declines and not taking the offer

Well all 6 of my friends live in my state literally across the US. Never were asked to move.

dunno

Hey guys
yesterday someone helped me make a wifi repeater using an old wifi adapter , but the network is unstable
its using netsh wlan start hostednetwork

any tips?

sometimes my switch connects to the repeater , sometimes it doest

They want you to move cause middle management wants to prove they're effective managers by 'shoulder watching'

@vagrant trail its probably disconnecting when your ethernet connection gets reset. not much to do other than restart the wireless adapter. and it is not something you should leave running all the time anyways. only when you want to use your Nintendo Switch.

why ?

cause wifi specially with that old adapter is easy to crack encryption on.

idc really

no hackers around my area

no hackers around my area

i live in a town

with mostly elders

XD

but

if i want a more stable connection i have to buy a better adapter?

what's your equipment again

basically yeah. something from 2018 at least 😄

but

do i have better options than an adapter?

he's got a computer that is ethernet connected a usb dongle from like 2012 acting as a hotspot. it only has 56mb speed.

nah

30 mbps

cant i make sth that will boost the signal so that it can make it to the 1st floor?

where my pc and switch are?

Hello

i wanna know any reputable brand whic makes good ethernet boot heads

you could buy an ethernet switch and a couple ethernet cables and an AP. take the cord from the computer plug it into the switch take the an extra cord plug that into the computer from the switch use another cord from the ethernet switch and connect that to the AP.

the jacks

sounds too expensive

@vagrant trail it isnt

a switch cables and a router

atleast 100 euros

yeah probably about 150 all said and done.

yeah

too much

@vague storm where in the world are you?

India

eastern europ

e

yup don't know any suppliers for there.

nah

im in school

just bought the switch

i have no leftover money

lol

Just a question, how long do you think it will be until I need to upgrade from Cat5e to a higher cable around my house?

Probably when you exceed the speeds that Cat5e is rated for. Unless you have a reason to need faster than 1gbit on your LAN, probably not for a long time.

is there a way to use my phone's bluetooth on my pc

i want to use a bt controller on my pc

but i don't have a bt don't

dongle*

yes but all the answers are dumb

why?

https://theithollow.com/wp-content/uploads/2020/07/image-2-1024x912.png

Gotta hate it when termites get in your wifi 😄

Nice setup but all those strain relief boots having to do work makes me feel

@ornate jungle okay thank you. My main hub is around 70m from my pc so I covered the house in spare Cat5e that we had lying around so I can have it ethernetted in as well as installing a Linksys mesh system too for the WiFi. The only problem is, we have fibre optic coming into the village to the splitter where it goes to all the houses but from the splitter to the houses it is just copper wiring so unless we get an upgrade on the wiring, we’re at max speed anyway!!

Cat5e 1G < 50 meters afaik

Amount of cables and other electrical devices also plays a role

unshielded cables can suffer from crosstalk

this increases with length of cable

I run fiber optics here at home for the LAN backbone

50 meters fiber is more reliable than 50 meters of copper

and cheaper too

@topaz quarry It completely depends on which dept you apply for. If it's TAC or engineering they want you on site and it completely depends on which area you apply to. They have TAC hubs in San Jose, Richardson Texas, and Raleigh in the US. With the pandemic though that's changed completely. Sales is all over the place but recently, before pandemic, were moving to a more central on-site model as well with travel instead of having offices everywhere with a couple people using them.
With the pandemic though it's completely remote and they're moving to a much more fluid/remote model

I think before newbs come in here asking questions, I found this and I really like it, he explains things really well even for novice networking users and I highly would recommend pinning this.
https://www.youtube.com/watch?v=wwwAXlE4OtU&ab_channel=NetworkChuck

^ why not

I mean, you limit a network segment to 1G

and single point of failure is kinda moot in nonenterprise networks

since the equipment isnt on backup power anyways

Here is a question, one I could answer but prefer to get a quicker response.
Is it possible to get a WAN port to function as a Lan Port? I honestly have not tried but it would save me having to duel nic my server.

@somber granite that doesnt really merit any response

Well I just wanted to try it

a wan port and lan port are both ports

doesnt matter which is which

just depends on how you address them, and then route over them

Because my WAN port is 2.5gbit so is my PC nic the other ports 1gbit so I need to bridge two

Yeah but it would also be how the router handles that option wise it may not be exposed

in consumer grade

in most consumer routers, LAN and WAN are on the same bridge

and only the firewall keeps seperation

that's how you configure a network gateway

does not matter anyway because its a behind the modem

I use the WAN port to the Modem

yeah, so WAN, Wider Area Network

is the network that is beyond your LAN

Yeah I know

You speak of how you wanted 2.5G on your WAN port.. but does your modem even have that kind of uplink?

I just wanted to see if I could get the port to talk to my PC just because I wanted to see how much data I could push through 2.5gbit

Right now I have to use 2 nics both of them are 2.5gbit but the Router ports are 1gbit so I ended with that 2 ethernet link method

two cables to two interfaces?

I never messed around with aggregate links

Yeah

I just go straight for 10gbit/s

aggregated to the router

from 1 machine

switches aggregate, routers route

Its both

Wifi Switch/Router

Yeah, but its the switch in the router that does that ;)

dedicated

Well yeah but that is me not wording things lol

Consumer space is confusing

we both know what is going on

because they sell "Routers"

Yeah but they do it all

but really, its a modem, router, NAT, wifi AP and all

and then they sell Routers!

that just route

not even that

they just do NAT

thats it.

Tell me about it

Well there is supposed to be a name for that

ISR

or something

well, its just a gateway with src-nat

https://i.imgur.com/wKebeiO.png

but to make it sound friendly they call it a router

I mean, I have that too on my router

^

See line 8 ?

masquerade

I see what is going on there.

is that a server doing this?

Thats my home router :P

oh right

It also takes care of part of a business network

So its higher grade then with proper setups

I mean

Its mikrotik

I was wondering why it looked like that

not that expensive, but its got it all

many many features

Me, I just have the old Telstra Broadcomm chip NBN modem sitting at front

https://i.imgur.com/U9r91Cg.png

with a tp-link AX6000 behind that

This is all the interfaces ^

that are connected to the router

oh yep you segregated the LAN yeah into two subnets?

Home shit vs office shit

This router routes on like 6 subnets xD

Yeah just looking at now

But thats just interfaces

you can't see what networks it does from here

Roughly how long would it take to set up a VLAN?

conf t
vlan 7
int Gi0/0/1
switchport
switchport mode access
switchport access vlan 7

About that long

https://i.imgur.com/PCY9Ryx.png

Commands may vary based on vendor but that's CLI for a single VLAN, pretty easy

Oh right I don't really understand so probably a few hours 😂 thanks

Need to support CLI first

Another thing some consumer stuff does not do at least not in a obvious way.

@somber granite most home routers only have that 0.0.0.0/0 rule with srcnat

@somber granite since 0.0.0.0 = all IPs

hmm

ofc, the other rule most routers have

Ah right, is there any other ways to set up VLAN if that's not an option?

is the LAN rule

192.168.0.0/16

or 10.0.0.0/8

honeslty if I could find a Switch with Wifi that had higher than 1gbit ports and was not ubiquity I prob would try.

@somber granite I mean, I would suggest mikrotik

but that requires a bit of know-how to use

@toxic citrus Depends on your switch or other device being used

@toxic citrus Depends on your switch or other device being used
@clear igloo Asus dsl-ac55u

if I am not mistaken, Linus' home server rack actually has a mikrotik in it

As the secondary modem

seen the white panel of a typical cloud core router

@clear igloo Asus dsl-ac55u
@toxic citrus Does that even support VLANs?

oh cool POE

I sure as hell hope so

Argh

https://i.imgur.com/e1mI3zm.png

its out of focus

idk what model that is

I just assumed it would lemme check

Yeah I see it

Cannot make out the model

it looks like the CCR series

https://i.mt.lv/cdn/rb_images/1055_l.jpg

Its not this one ^

but its same series

well its close ish

Thats the flagship mtik router lol

but looks don't mean shit

it does 80gbit/s

Just things to keep in mind as I need to setup an office in a few years.

for my drone biz

and I cbf paying out ass for point cloud comput cloud servers

https://mikrotik.com/product/hap_ac2

I got this in my living room ^

as access point/switch

it also does multicast for IPTV

some $250-$400 per month or $3500 yearly ish

depends on software brand

Drone Deploy vs Pix4D

Fuck no

I just installed docker on a home server and setup Open Drone Map so I compute my own datasets just needs fairly beefed machine to handle larger sets of data memory wise and storage.

I sure as hell hope so
@toxic citrus It does not appear to support VLANs on the LAN

@somber granite https://i.mt.lv/cdn/rb_images/1633_l.jpg

Tho to an established biz $3500 a year is fuck all

They have a Wifi Variant of this ^ one too

I have the one without wifi

Oh looks good

its got 5x 1G, split into two 2.5G groups

Well I am not sure if I want th WIFI or not I feel if I setup an office wifi should be dedicated

so each set of 5 ports can do total of 2.5G

and likely PPOE

up on cealings

and the port on the left does 10G

@somber granite with mikrotik you can use CAPsMAN

so you attach access points to it

and manage them from the central router

neat

https://i.imgur.com/B6Kd4zg.png

^ two access points

Have any advice for a generally cheap but somewhat scaleable 2RU or 4RU NAS bay?

@toxic citrus It does not appear to support VLANs on the LAN
@clear igloo yeah I've come to the same conclusion there. Thanks for helping me though 👍 will get a better router soon

It makes more sense to network data store in the office

@clear igloo yeah I've come to the same conclusion there. Thanks for helping me though 👍 will get a better router soon
@toxic citrus I would just get a smart switch that does VLANs and a router that can do multiple subnets

@somber granite I bought a 2U case, put a mini ITX board with a Ryzen 2600 in it

Ryzen supports ECC

AH yep

https://i.imgur.com/r99NxSH.png

Yeah I was thinking about that

^ remote radios

Since my router has only the single 10G

Need a switch if I want to use it elsewhere

Yeah I am prob going to transplant my 3700X into a M-ATX server ish board

https://i.mt.lv/cdn/rb_images/1659_l.jpg

and throw in 32GB of cheap AF memory

Thats what I got this one for ^

since speed is not important

4x 10G

its just processing large data sets

over some 14 hours I just need memory more than anything quanity over speed

its tiny silver box

but its blazing fast

And its enterprise level gear

https://i.mt.lv/cdn/rb_images/1660_l.jpg

Redundant power

Duel power

nice

I only have the one hooked up right now

Presume you have it on UPS

The whole rack is yeah

wifi APs are powered by PoE

also from the UPS

I was thinking of something maybe dumb but maybe it will work

I wanted to grab a decent UPS right

but have it duel power aswell

so it can charge off mains or solar

the idea with redundant power like that, only makes sense in a datacenter

since datacenters always have two independent power supplies

A & B

Well I need the server up 247

as clients use it

Yeah but A fails

and we use it

B can be used

so every server, every device, is connected to both

Simply cannot afford for it be down, as it handles procssing of orthomosaics and 3D mapping rendering

http://fs.com/

that what the server is doing

If you are looking for affordable 10G networking ^

look no further

fiber optics > copper

Yeah sweet I will have to save that

ITs bit far off yet

but I fwd think

I paid $35 for 50 meter fiber run

including modules and all

Hmm yeah but I am in AUD

https://i.imgur.com/P0jFHju.png

so it may not be applicable to me

We have very limitd providers

for anything over 100mbit

My uplink is only 250M

I need gbit at least

But I have 10G in LAN

1Gbit or higher WAN

is what the office would need

Since I have to use the office like my personal cloud

and upload some 30GB ofshit

on the go

I do the kind of private cloud thing too

1bit

I can use VPN to get into my LAN, even when abroad

1bit
@clear igloo fk lol

UART with 1 databit and 2 stopbits

hm

I don't need office yet its just food for thought for me right now

Trying to land some entry level gov IT jobs as it should be peace of cake for level 1 tech support

and move up from that I just need the $ to fund my own start up etc

That is the idea anyway

Then if that picks up enough to replace the job great, reolcate that into a office

I'm just glad my ISP actually gives out IP blocks :D

/29 is 6 hosts

So the virtual machines I host on my server, have their own public IP

hell yeah!

@somber granite the wiring of the network itself is very very simple

its all on the same fiber

ofc a pair each right?

using VLANs overtop

actually no

no hm

I use singlemode fiber

AHhh

with two wavelengths on the same fiber

That simplifies things

"BiDi" interfaces

but are you worried about point of fail

Not really

BiDi works just as well

only situations in which you wouldn't want to do this

is if you use WDM

yeah I don't know much about it but I think that is short for BiDirectional

https://en.wikipedia.org/wiki/Wavelength-division_multiplexing

If you have a multiplexer

then you'd want seperate RX/TX fibers

Oh yes I know a little about this not a lot

I have seen diagrams and been on jobs setting one up

with DWDM, you can have 4nm bands

and stuff 96 wavelengths down a single fiber

they carry what throughput though?

its just on/off signalling

so depends on the module you use

I think 200G

geezus

per link

400G exists, but is very very new

yeah that plenty

limits of a single fiber pair

is somewhere in neighborhood of 18tbit/s

I almost thought about going fiber local network

I mean it got a lot cheaper now

multiplexers are enterprise level though

very expensive

I have no use case for it but I mean I could do it

Ah

https://www.fs.com/c/cwdm-mux-demux-177

CWDM = Coarse WDM

DWDM = Dense WDM

Coarse is only up to like 24 channels

But that image above shows how it works ^

you have two fibers go in and out on the left

and 18 channels on the right

This is all passive, so its just light filters and prisms

@clear igloo that's nice but all I hear from colleagues is either on-site or remote until covid is over. There's a strong push for Work From Home sure (applause) but Work From Home is not remote

I only applied pre-pandemic and have no intention of really applying ever again. I've never gotten the sense they ever wanted to support vRouters or virtualized stacks.

There is some push for virtualized stuff but it's not huge for sure within the company

honestly between their offering(s) at a hardware level. Going with stuff like mikrotik is just an easier business argument (for various reasons) and their main routing OS cannot be a vRouter

so that leaves me with sutff like vyos and RouterOS

i mean Vyos is basically iOS excecpt it's just debian

IOS-XE can be a virtual router

NX-OS and IOS-XR as well

yes but can I someone without an SLA or enterprise agreement deploy it in a homelab

because if the answer is no then i'm not going to validate it

and it's going to be up to someone in a huge af company to validate it

With very limited (200Kbps) throughput, yes

then that's a bit useless now isn't it

i wouldn't never imagine pushing business models on companies

but there is something to be said for the vyos model

where you just never get a LTS branch without a SLA

but the rolling releases are stable enough for home labs for validation and off hours testing

the whole pumpkin at midnight stuff with their equipment just puts a bad taste in my mouth :/

I mean it depends on what you want to validate in a homelab, I don't consider that to be something that needs gigs of throughput. If you have an agreement or license you can get much higher throughput

i'm literally testing 10 Gbps backplanes being automated with minio just to see if it's possible to reconfigure VLANs dynamically

i had no intention of paying for liscense just to develop against hardware

this is the same meme as when NVIDIA asks you to pay $10k USD just to have the privilege of liscensing NVIDIA GRID

of course reasonable minds can differ. Other platform(s) just get free engineering efforts. It's a self-correcting factor

is this about wifi

stuff

can i ask what is powerline adapter

and what is tje difference about wifi extenders vs powerline adapter

ping me @ if someone answers me

my wifi kinda crap KEKW

you can see powerline adapters
you can't see wifi

Wifi extenders are connected to the modem directly, powerline adapters are through your power net (2 stations connecting to each other through it)

unless it's a wireless wifi extender?

Powerline's performance depends on how the powergrid in your home is layed out

I mean it depends on what you want to validate in a homelab, I don't consider that to be something that needs gigs of throughput.
@clear igloo Yeah you don't need throughput in labs unless you are testing certain scenarios and even then those scenarios tend to be QoS or failover during congestion and how loss of control traffic reacts. Honestly labbing it with with VIRL images that only have low throughput makes it that much easier to lab rather than managing generating 10s gigs worth of traffic

@twilit garnet

lol your biases are welcome

@twilit garnet powerline adapters use your electrical network as previously stated. Wifi Extenders accept a signal at 2.4 GHz or 5.0 GHz and retransmit it the opposite wave length it accepts.

i have never personally seen or heard of a wifi extender that accepts signal at 5.0 Ghz and re-transmits at 5.0 Ghz or accepts signal at 2.4 GHz and re-transmits at 2.4 GHz

this is not to be confused with mesh networks

which are an entirely different topic

2.4 GHz and re-transmits at 2.4 GHz
I think my commodity asus router does that

yikes for the throughput though

Will it work? a powerline adapter connected to a wifi wireless router /extender

powerline networking only works if your electrical network supports it

powerline adapter is like ethernet

it's wired

the tl;dr is if there's a phase change in the electrical network - no

if you mean connect a powerline adapters to your router which is a router/Access Point combo

ah..

then you're using the ethernet functionality of your router

@twilit garnet Router -> adapter -> (house eletrical wiring) -> adapter -> pc or something

^

^

(house electrical wiring) must support this operation

if you have dirty power in your area

low chance of success as well

I tried one of those and it didn't quite work

Understandable

so i guess a wifi extender would be better?

so I got myself a 100ft ethernet cable and another router to act as a switch

so i guess a wifi extender would be better?
yikes for the throughput

i mean

if you have coax

then use coax for moca

wifi extenders are terrible

no matter how

just run a cable.

set up a 2nd access point through a wired connection.

@twilit garnet whats preventing you from running wired cables?

ummm

go on, we can help you

It's hard to hide the cables

checkmate

well in my house

@twilit garnet have you got a clear path along the wall from where you could run the cable?

you can get small cable ducts

that you can mount to the wall, either on the ground, or near the ceiling

well in my house
my cables are literally taped or stapled to the ceiling

hell I don't care lol

so I bought the neon green one

if you need corner pieces in your ducts

https://www.thespruce.com/thmb/fYF6yTdSEWItzqosN3hRbfrVcyw=/4000x2649/filters:fill(auto,1)/cropped-hand-cutting-wooden-plank-using-saw-645895893-5810f7e43df78c2c731502b4.jpg

nice hands

You can pick these up at most hardware stores, they are plastic so cheap af

thats not me

ik

I've seen yours

if you can get cable cutters with a plastic strip underneath, get those!

makes it easier to hold them up, before you screw them in place

sometimes ceiling mounting on your own is annoying