#networking

like my stupid switch

which doesn't even do ipv6 passthough

My router is Technicolor tg389ac HP.

@peak cloak I just installed the v6 package on my mikrotik, ez

I can't find any info on it and if it supports v6.

doubt that it supports that

also, never seen that brand

@peak cloak https://i.imgur.com/rotUWn6.png

nice

Almost weekend :o

pre weekend vibes for some reason

https://www.youtube.com/watch?v=AEm3bIBN8aQ

turn it to 11

Can I just buy a new router to have support for ipv6 or is it more complicated than that?

Assuming my device alr has support for v6.

But the router doesn't.

most devices should, windows had it since xp I think

Yeah, so just gonna get a new router and I'm all set?

basically

time 4 shilling

Alright.

Thanks.

I reccommend the microtik ac3 I think it's called

https://mikrotik.com/product/hap_ac3

I'm considering if I am buying an mAP

https://i.mt.lv/cdn/rb_images/1161_l.jpg

Its tiny

that is tiny

does it have LTE support

so you can pop a sim into it

mips based routerOS

2.4GHz wifi

and single ethernet port (with PoE)

Yeah, so just gonna get a new router and I'm all set?
@small vapor Make sure your ISP actually supports v6 before buying anything

@peak cloak Its not really fast

https://i.imgur.com/3loBzvn.png

does 100mbit/s max

or you can tunnel

but as a micro access point in my bedroom, for only my laptop & phone

its perfect

@hollow marlin Do I just look up the isp's website for that?

Yeah or just contact to support to verify

Ok.

My ISP doesn't have ipv6 so I just use a he tunnelbroker tunnel which is free

i wanted to ask this since i do gaming, does transparent DNS proxy (from the isp, or country regulation) affecting the internet latency?

@peak cloak If your ISP peers with HE, its generally quite easy and works without issues or extra latency

when I first used tunnelbroker

first 10 or so packets

had 200ms

then it jumped down to 7ms

like on v4

@late depot if your ISP does not support anycast dns, some can be slower

funny enough, 1.1.1.1 is faster for me, and if it isnt, then I use 8.8.8.8

my ISPs own dns servers have more response latency than 1.1.1.1 does

yes it is

@peak cloak ezgame

my ISP peers with quite a few of those too

I'm on HE, L3, Cogent and Telia too

@late depot if your ISP does not support anycast dns, some can be slower
@tame carbon hmm then I should check for more information from my isp. thanks

@peak cloak my ISP just reports every issue they have, even if its only couple minutes

http://status.weserve.nl/index.php/2020/10/12/12-10-onbekende-storing-ftto-netwerk/

most ISPs like KPN, which used to be government owned, now privatized, doesn't disclose anything

you can only search through their zipcode, to see if there's issues

no need to flex /s

Update 15:32 -> Contact gehad met leverancier van de darkfiber, deze heeft vervolgens een engineer gesproken die in de buurt was.

Contacted service provider of darkfiber, engineer was called, who was nearby

Bleek een patchfout te zijn geweest van deze engineer. Alle verbindingen zijn hersteld.

turned out to be a patch mistake of this engineer, booo all connections restored

this was the update, about 40min after the intial fibercut

I mean, I still think thats quite long for a simple patch mistake

but their SLA is 6h

Whoever can figure out what hurricane electric does

Gets the grand prize

A bunch of stuff

peering and operate fiber networks

and pretty much considered the main provider of BGP data

since it is all mesh by nature

What's the best website to accurately test my network speed? I feel like Ookla's lying to me

its always few mbit lower

l2 overhead

I doubt it is, you can try Netflix's fast.com as a secondary

ookla servers are usually right on your ISP's network also

and fast.com usually is too b/c of netflix cdn's

I think

Well that's good to hear.

I have a 250mbit line, but speedtest says 242

but iperf is exactly 250

@tame carbon iperf to what server, I can't find any good public ones

@peak cloak they are all dead

last time I checked

I just use iperf to test local speeds

first 50MiB I download on 0% link usage, goes up to 500mbit/s xD

then the throttle kicks in

I have a chance to get convice my parents to get fiber, now 500/500 or 900/840 ?

Do I really need almost gigabit?

Nope

If you want to download large files all day sure. Its handy at times but not if the cost is that much higher

yeah

verizon advertises 70 or 80 bucks but that's just promotion pricing

I had Fios over a year now at $79 for gigabit and it has not gone up

I've seen some people say it goes up after 2 years

Hopefully not. If not my work should have fiber in my area by then

yeah, we'll probobly get 500/500 instead

rn we have 200/30 and it's fine

but it's cable

it would still be more than double the speed

The biggest improvement will be in latency which will make everything feel faster even if you got lower speeds

yeah, and upload speed

@compact plaza you can test your latency to the website you specifically care about with nslookup or some GUI tool built on top of it

as previously stated speed tests will only test between you and your ISP

people kept asking netflix so much about it that they literally have their own speed test

also latency != throughput. I'm not against giving consumers cheap gigabit just not at the cost of latency

it's not like the ISPs haven't been given billions upon billions upon billions of mis-allocated funds

Latency doesn't equal throughput but latency definitely affects throughput with TCP

it honestly depends

if you're using the original TCP stack and you're not using QUIC which Chrome defaults to

then yes it's a point of contention

Well QUIC is UDP so it doesn't apply to my point

QUIC allows TCP to be pipelined over UDP

that the purpose of QUIC

Im pretty sure QUIC doesn't use TCP at all. It is to use UDP with loss detection

I take that back, it runs along side it

Still not in the same packet though thus still my point stands. QUIC is awesome (except for all other congestion algorithms) but TCP still relies on latency

your mom was QUIC last night

you can run TCP over QUIC to improve TCP response time

it doesn't use TCP, that's correct

Cloudflare went out of its way to provide free improvements to your website by just proxying TCP over QUIC

it's really low hanging fruit

and yes you cannot do it with absolutely everything yet

but it works with most things now

when it first came out it was pretty rough and would apparently legit break things when you ran TCP over it, but it runs a lot better now

remember all TCP is a set of promises

if you can make those promises with different assumptions then the applications don't care

I get that. But outside my original point. Many OSes/applications don't support it natively so they still rely on TCP. Its improving especially with the new version of Edge that just greatly increased the availability of QUIC. But also is where war is being fought due to QUICs aggressiveness

Im all for expanding UDPs capabilities and hope QUIC makes its full debut and HTTP3 gets finally is pushed out

i mean i think we can both agree the original TCP implementation just makes assumptions which aren't true in the 21st century

and TCP over UDP is the wayt o just reduce overall stress on networking equipment

i mean applications don't have to support it, you can just put a proxy in front of it that does (like nginx).

I'm sure you can just disguise TCP as TCP over QUIC for operating systems that don't know how

it's also not a war, you can run both native TCP traffic if you want to for some reason and TCP over UDP with QUIC as the implementation

you just pay for what you get

I wouldn't say it stresses anything. It eases session tables but most is done in the ASIC for transport. TCPs implementation still applies today, just QUIC eliminate many of its downsides.

reasonable minds can differ on the second point

How so? Don't have to agree to have a discussion. Im human, I don't always get things right

right of course

so this stems from a fundamental idea of RISC vs CISC

if you make to many promises up front, you just get burned

TCP makes to many promixes up front, making it's implementation much harder because weirdly enough developers are in fact humans

in stark contrast UDP basically makes no promises only that it will attempt to send the message

make it's implementation much easier and more trivial to accelerate

the benefit of something like QUIC or generically any TCP over UDP implmentation is that the application can choose what's the best stack for it

a generic monolothic TCP/IP stack can never be right for every application 100% of the time

we this with other technologies such as the adoption of Vulkan's ideology with Graphics drivers. Allowing developers to specify what their stack is supposed to look like. The Khronos group has said over and over and over again that Vulkan is not a replacement for OpenGL

we should look at TCP over UDP and TCP native stacks the same way

fundamentally i'm a C++ developer and believe in never breaking ABI

keep old, use old. make new. don't repeat old mistakes

I agree on that. Its why Id like to see a bigger push for QUIC. I guess my second point TCP implementations still being needed in the 21st, was focused around applications that cannot utilize it or when a proxy is not an option.

There are many routing protocols that are an underlay of UDP for the same reason. TCP is still needed for many protocols for integrity but the simple solution is just push a UDP header or in this case work alongside TCP

Same agreeing points, just different interpretaion

under what circumstances have you been in when you cannot use a proxy?

also keep in mind that developing a pillowing layer between a TCP/IP stack and a QUIC layer is possible and was probably an intention during the conversations of its creation

in the same way you can just interpret windows calls with WINE, you an do the same thing with TCP/IP. it's just a set of promises :)

There are some designs, especially with VPNs, where from a business perspective proxies are not viable or even will not produce enough of a benefit. Very few technical reasons but mostly business related reasons as is normal with any product.

How can I make a virtual lan between my iPhone and pc. So if my pc is plugged into the router through Ethernet and my phone is on lte they can still sync. I tried using ZeroTier but it didn’t seem to work.

what I do is whenever I need to be on the home network, I connect to my vpn

Don’t I need to port forward tho

yeah

That’s not currently an option

hmm

I’ve heard of port map

https://portmap.io/

Do you think this may work

maybe, idk. Never used it

Ok thanks

Apparently it’s kind of like what TeamViewer does. It sends the data to their server then back to the other device

yeah it creates a vpn connection

but they are on the server end

so no need to have a "server" visible on your end

can we post networking memes here?

https://cdn.discordapp.com/attachments/491885572617535488/766405163220074516/IMG_20201013_135943_439.png
stolen from r/homelab

I'm so stealing this.

r/networkingmemes

@tame carbon You might find this interesting. Makes sense as this is how Ciena uses SVLANs for internal switching https://www.reddit.com/r/mikrotik/comments/ja5bjl/how_mikrotik_uses_switch_chips_to_create_router/

I do not know fi this has been asked and answered but will 5gnr cell phones connect to your wi-fi?

mobile 5g isn't 5ghz wifi

5g doesn't run at 5ghz

Yep. 5G phones will connect to your wifi

would a phone manufacturer be so brazen to make a phone that supports 5G but not 5.0 Ghz Wifi?

i can't wait for one to do so

what are you saying phoenix

a 5G phone can connect to 5ghz wifi

please the 5g nr is a new type of phone not speed

the problem that i herd is that the 5g nr signal will not go therugh walls so you will have a home antenna and internal modem

yeah, you just use wifi indoors?

5g will be useful for cities

outdoors and stuff

malls, large convention center, etc.

but why would you want 5g in your home

do you not make calls in your home?

wifi calling, 4g LTE will still exist

5g will not be deployed everywhere

so 4g support is a must

but is the 5g nr backwords comp

every single new mobile data tech has been

it would be stupid if it wasn't

there is an EOL eventually, when phones won't support it

like 2g

but 5g nr is a completely different set up you would have two phones inone caxe no?

?

5g NR just means it uses higher frequencies

5g LTE uses the 1-6ghz spectrum

5g NR uses 1-100ghz

not that whole freqency space of course

just blocks within that range

so will a home wifi connect with the new freqency

huh

wifi is a completely separate technology

I use voip in my house

because my phone carrier supports it

so i make calls over wifi

yes my 4g phone connects with my wifi will a 5g nr?

i was meming about a phone manufacturer

that would make a 5G phone

that didn't support 5.0 Ghz wifi

it was a meme

you took this way to far

WiFi and cell connections to the phone companies tower are 2 completely different and incompatible technologies. It’s why your cell phone has 2 different chips. Your phone treats them as 2 different network connections as well. As long as you have a WiFi router and your even-slightly modern cell phone has a WiFi chip, it should connect just fine as long as the WiFi router and your chip support the same frequency range (both 5ghz or both 2.4ghz)

So if anyone is interested in white box switch solutions, Nvidia Cumulus is having a conference next friday about their OS

what is the purpose of this?

Guys, i think i stumbled upon a fake windows key

A customer handed it to me and asked me to activate his PC

The packaging feel is way off, the licence key doesnt have the shiny film

what kind of cable do i need for my 500mbp/s at home

like a cat6 cable?

cat5e can gigabit

ty

Cat5 can gigabit at a short distance and some headaches

Hey I want to try 10Gbps network

what switch/router supports 10Gbps?

The one that says 10 gigabit

@timid fiber gigabit switch https://mikrotik.com/product/crs305_1g_4s_in

https://mikrotik.com/product/rb4011igs_rm#fndtn-specifications

gigabit router

@hollow marlin I've seen those block diagrams before

but the stick part is the 2.5gbit trunk line between the chip and the switching logic?

@timid fiber I have one of those RB4011's at home paired with a CRS305 and some lengths of fiber from https://fs.com/

https://cdn.discordapp.com/attachments/766214233233817610/766220752495706133/IMG-20200922-WA0001.jpg

You see the RB4011 in this image ^

Its easy 10gbit on the cheap

you have a 10G trunk line between the router & CRS305

and any devices you hook up to that portion of the network, you can manage with vlans

if you only need 10G switching, but no 10G routing, then you can get away with using just a CRS305

the CRS305 has a single 1G ethernet port, which you could use to hook up to your main router

@timid fiber 10gbit on copper is more expensive and less reliable

@tame carbon I know, I thought you'd be interested in why vlan filitering is so limited on certain tiks

@hollow marlin I only use vlan filtering on the rb4011

the CRS305 is bridge vlans

can be hardware offloaded

Bought a ubiquiti switch online

Guy then messaged me that he wants more money

Like... Wtf man

Used I assume?

It was from a brickck and mortar shop

oh, wow yeah I would cancel

They have an online shop that they manage

And then proceeds to blame me for not cobfirming the price with them

Like... Wut...

https://tenor.com/view/fist-fight-film-charlie-day-im-sorry-what-excuse-me-gif-6046518

I paid 450 (as listed) They wanted 500

@tame carbon Yeah the 4011 can handle it no problem. I thought it was interesting because its the same way Ciena logic works with its metro-e but I never put two and two together that Mikrotik was doing the same

In any case, I am cancelling

Def will not be back again

Like they have the nerve to ask the delivery company to stop the delivery midway and then send the stuff back

Anyway rant over

Sorry. Just wanted to vent a bit

lmao. shipping is expensive as it is so at least they ate the cost

Yeah screw em

Anyways, since I'm back in the market after that debacle...

Anyone have insight on the max poe capacity?

I calculated the gear I would like to get eventually tallies to 91.5 watts

And the switch I would like is the unifi 24 poe gen2 switch which has a max power rating of 95 watts

It's the same price as the 250 watt version where I am at, but the fanless design is what drew me to it

But 91.5/95 seems like it would be pushing too hard

PoE power rating is specified in the IEEE standard

802.1af/at

most switches have a per-port power, and a total combined power limit

What I am asking is, is it a good idea to run it alomost full load all the time

You're going to want more overhead. Devices will advertise their max power and upon boot will draw more watts for a brief period then their power will drop. If you are pushing it that close you will overload the controller when you plug a device in or reboot it. Ex. most handsets draw ~2-3w but on boot with briefly pull 5-6w.

25% headroom?

Gotcha

Yeah I was worried that it was a bit too close for comfort

I got a 5 port 50 watt PoE switch

But I hear the 250w version sounds like a jet engine

but the devices use like 6-7watt

I am planning to install about 10-ish camera s

In addition to a couple of access points

make sure you get properly shielded cables

cat6a

You want to plan around the advertise max power. Say your switch rebooted, now all the phones are pulling 2-3x the power briefly but now all at once and Ive seen it where the devices are stuck in an endless loop as the controller is shutting and un-shutting the ports as they draw too much

Thanks for the tip

If I remember right though, provided all devices are Class 0 (15.4 watts) you need to account for the PoE budget as your limit, not their power draw. I don't believe you can go over the max theoretical budget for PoE on a switch (ie if you have 15.4w devices and a 100 watt switch you're limited to 100 divided by 15.4)

I could be incorrect on that, been a long time since I looked into PoE budget and whatnot

The devices total to 91,5w maximum by my calculation using ubnt's advertised numbers

But each camera is about 4-5

While an ap is about 9

everytime people shorten unify as 'ubnt', I confuse it with ubuntu

yea I think you'll be find

ye

ubuntu dream machine

@clear igloo Exactly. However with our EX2300s you can exceed the max if you boot up enough devices until their power consumption levels off and plug in one by one. Thats when I got the call from a tech that the switch kept flapping after a reboot. This might be different depending on the vendor though

yea I think you'll be find
With the 95watt model you mean?

@hollow marlin cool, so I remembered the thing correct 😄

I wish Juniper would set their controllers on the max LLDP wattage instead of current power for that exact reason

@hollow marlin so you need to unplug and plug every boot?

So assume each AP and camera is advertising Class 0 through 3 (max 15.4 watts) then you'll need a budget of at least 154 watts for 10 devices

Safe choice is 250 then

I need a class 4 laser

@unborn sluice Only if your devices advertised max draw combine exceed the max PoE wattage

not sure wat for

Interesting

not sure wat for
not sure watt for

@rose gazelle Yah, and that will give you headroom for more devices too

1 MW pulse

anything you point at, is just a smoking pile

Alrighty then

Thank you

👍

Weekend vibes

I bought the 95 watt ver. So I guess the shitty customer experience is a blessing in disguise

@unborn sluice

show secrets of the universe

command not found

seems "hacky" to me

For example that is one of the HPBX deployments. The phones pull 6.5w max but ~2w after boot

universe not found

https://www.laserpointersafety.com/protests/files/stacks-image-77ecd48.jpg

goggle up

are that guy that's standing near the other guy

This is HK 2019 ^

during protests

beaming 5G everywhere

Plot twist, those are SFPs

on a stick?

QSFPs 😄

Stick FP

SFP on a stick > router on a stick

QSFPs 😄
first time I heard of this

what a helpful site this is

https://i.imgur.com/Cr0e1EB.png

all these tips

never knew

linus laser tips

"temporarily" is a bold term there

first time I heard of this
QSFPs came about for 40G and then for 100G. 400G uses OSFP or QSFP-DD

SFP28 fam

"temporarily" is a bold term there
temporarily for this life

it would affect the next

I want SFP-DD for 100G 😄

Still in revision though. Currently on Rev 4.2 so maybe one day they'll see the light

what interconnects are used for 400G?

OSFP?

QSFP-DD ZR variants mostly

isn't ZR just the range spec?

I got LR over here

Ah, yah, I see the ZR mostly advertised for interconnect options between DCs
OSPF was championed by Arista iirc and it kind of fell on its face outside of there

How have I know heard of SFP-DD before?

isnt it very common to just pipe 10G links over a 100G trunk?

I've seen this rigs in a rack before

muxer in the middle

multimode 10G

singlemode 100G

could i use the 2nd unused ethernet port on my motherboard for external storage?

if your external storage speaks ethernet, yes

yeah

@peak cloak my preoccupation: https://i.imgur.com/VXXrlID.png

what game is that?

factorio?

yes

nice, never played it

I got too many mods

6 days, playtime

and I'm still working on ore processing

there is this free game shapez.io that is similar

I know

but its not the same

yeah

factorio has its charm

satisfactory looks nice too

I have that game too

but the problem satisfactory has

is the scaling

with factorio, you can make blueprints and have robots build them out for you

https://i.imgur.com/UfizB0q.jpg

most things you see that look 'complicated' are just simple blocks I've built

and I put them together

because its a logistic game, there's bunch of calculations you have to do ahead of time

base planning and such

oh cool, so there isn't that much manual building

early game there is

but you automate, pretty much everything

there's copy paste

nice, building out factories gets annoying

so "moving" a block of machines 1 to the right

you can just cut and paste

and have robots do it for you

ofc, robots can be upgraded too

to make em faster

@peak cloak I'm hella lazy, so most of the buildings and small components, I just have items delivered to chests by drones

its inefficient, but less belt mess

https://i.imgur.com/qafd56m.jpeg

starter base ^

this is all planned for removal at some point

why did i never think to direct connect a nas to my pc before

does your switch/router not support gigabit?

sata on a motherboard will be faster than a gigabit nas

just saying

it does but i don't want it connect it to the network

sata faster yes, but room for hdd no

@tame carbon Is this trunk in a LAG when biters knock out your link?

@hollow marlin train lines are my real "trunk"

those are the first to go, and mines produce most pollution xD

https://i.imgur.com/L7DgoKw.jpg

that was last image, cus this is bit offtopic

modular blocks that you can just stack, each uses 1 barrel of oil/second

and because of all these mods, there's like usually 2-4 ways you can make something

different byproducts and power/efficiency values

gets complicated quite quickly

space is a consideration too

more space is more machines is more power use = less efficient

that sounds familair,

but power is usually not problem, just build more nuclear reactors lol

is there anyway i can use a nic as a passthrough for ethernet?

so get a network connection from my motherboard's ethernet port and use the other port as a passthrough

for other devices

wdym passthrough

what are you trying to achieve

you mean passthrough the ethernet to a VM?

no no

passthrough the ethernet to another pc connected to the first pc through ethernet

if that makes any sence

so a switch?

you could call it a switch i guess

so you're connecting 2 pc using ethernet without any middle hw like a switch or router

are you trying to achieve this
router -> PC -> switch -> other devices

?

yes

@peak cloak thats what i want

uhh please don't connect 2 end devices

technically, yes

they most likely wont be using the network at the same time

I would highly highly recommend just getting a switch. You can get a 5 port dumb switch for 15 bucks on sale

https://www.amazon.com/NETGEAR-5-Port-Gigabit-Ethernet-Unmanaged/dp/B07S98YLHM/ref=sr_1_1?dchild=1&keywords=switch+dumb&qid=1602866695&sr=8-1

what does "unmanaged" mean

@fallow python we recommend against this, even though they wouldn't be using it at the same time

no web interface, so no vlans, QOS, etc.

it just "splits" the connection

You see the interface of your current router? forget that

just plug and play that switch

switches have dedicated hardware and chips for switching, your PC doesn't

Technically, it works, But the headaches that ensue makes the cost of a dumb switch worth it

@peak cloak bridging connections like that on windows requires datacenter edition

windows server

Interesting, I think some drivers can do that if I'm not wrong

you can do internet sharing

but not bridging of the connections like that

Yea, I think I am talking about the wrong thing

on linux though..

its ez

NIC teaming in windows does not actually bride the connection right? Ive had to deal with customers looping their shit before trying to bridge their server but I don't deal with the server side

I think it works, but I honestly never heard of anyone actually doing it in production

Many using LACP on servers production. Whether Microsoft calls it LAG/teaming or whatever, you need redundancy of some sort

Interesting

What's the specific implementation of this if I may ask

its not acceptable to have single leg servers in 2020

Multi-home all the servers!

@unborn sluice Preferably a LAG with MC-LAG/stack on the switches. All L3 if possible. Every design should revolve around redundancy if in production.

@unborn sluice VPC if cisco, MLAG if extreme

---------  AT&T IP Services Route Monitor  -----------

*** Log in with username 'rviews', password 'rviews' ***

login: rviews
Password:

--- JUNOS 17.1R1-S1 built 2017-04-07 08:21:13 UTC
rviews@route-server.ip.att.net>

o_o

lets play on juniper

lol but why

what's that

@peak cloak HACKERMAN terminal

what's the purpose of it tho

i need to do some internet engineering, so im using this to check what type of modification i need to change my routes to look terrible to ATT

rviews@route-server.ip.att.net> show bgp summary
rviews@route-server.ip.att.net> show route receive-protocol bgp 12.122.127.66 <enter a route here>

some commands to play with

rviews@route-server.ip.att.net> show route <enter a route here>

the purpose is to let you see the routing tables on ATTs internet network in multiple locations

hmm, interesting

if anyone in LTT wants JUNOS experience, there ya go

ATT gracefully put a live one out there

@hollow marlin you wouldnt do it

We have looking glass but only for internal use and a logical instance for certain customers so they cannot see our super secret internal routes 💩

super secret

i hear GPU sharing through the looking glass project is great

i can't imagine how that applies to networking :/

I bet you use 10.0.0.0/8 O_O!!!

Looking glass in networking is different. Its a command set you can use to public BGP routes. Its really just sends commands to a router/route-server and spits the output. Not necessarily just for BGP but most public LGes are

i feel like i haven't seen xeon talk in a while

his internship has taken over his life?? heh (guessing)

For all you network boys out there, Security Onion 2.3.0 is officially released!

They put out the full release at their conference today

ok so im hella confused rn

i just factory reset my router

and it kept all my portfowards, passwords, network connections, everything

and im quite confused how

what thing that confuses me even more

I previously wasnt able to access my router admin page

and now i can...

@thick minnow we call that a gift horse. Don’t look it in the mouth.

you probably just soft reset it. 😄 normally to fully reset most of the all in one router consumer crap its a 30-30 reset. unplug it hold the reset button for 30 seconds wait another thrity seconds then plug it back in. (that is just to make sure it totally clears the nvram)

its a netgear ac1700

so not great

but its still like 120 bucks

its a consumer all in one router. price doesn't mean anything.

my 300 dollar buffalo dhp1750 is a consumer all in one piece of crap.

its used as an AP now.

300 bucks...

that's more than a microtik hap ac3

that's just 100 bucks

@hollow marlin i was memeing you

Jokes went too far

how can I speed up my wifi and not have random wireless disconnections

Use ethernet

i have a phone i cant

it could be a lot of different issues

is it only your phone having issues with disconnecting?

or everyone?

i have a phone i cant
Checkmate can't

my sister is having issues too

and im the closest one to the modem

@orchid shell what's your router, your modem, your isp, and do you have cable, dsl, satellite, fixed wireless, fiber, or dial up?

CGN3ACSMR, no router, rogers, cable iirc

CGN3ACSMR is your modem/router/all in one from your ISP. https://www.rogers.com/customer/support/article/bridgemode-cgn3#! shows how to login but don't follow any of the other instructions.. go to the wireless tab at the top.

what do I do at the wireless tab

take a pic and send it

uhhh

of the settings?

yes

is that what you needed to see

go to the 5g tab and do the same thing

change the channel bandwidth on the 5g to 40Mhz

apply save exit. see if you still have disconnect issues.

what changes will this have

like slower download but higher range?

just changes the channel width. narrower ranges means sometimes less interference from outside sources.

and I mean the modem is old af, so my dad is thinking about changing it iirc

im only going to change it if it disconnects again

really just depends on how busy your air waves are. I have 8 different AP's in my area and dropping my channel width down to 20mhz helped a lot with connection issues cause of course everyone else is just using standard frequencies - default settings.

so if you're curious the only way to know what numbers to choose

you need something to sniff the airways

otherwise you're just guessing

if you don't have a fancy spectrometer some apps on some phones can disect 2.4 Ghz and 5 Ghz bands

choose the channel widths which are the least busy

it's the same principle behind choosing what highway at what time of day

you need something to sniff the airways
What certification does require sniffing radio waves

i mean the waves have to go through probably 2 walls and a whole fridge lol

Is your fridge 2.4ghz

uh-

some people's fridges are 2.4 Ghz

that there condensor

can provide some fun levels of interference

My office rack is finally wired up and running and looking a lot cleaner than just sitting on my desk. I'm loving this 9U network rack

Now just to get my PiHole running

@thick minnow you got enough ports for a big lan party

Say, in your setup, how noisy is the udm pro?

my RB4011 is passively cooled :o

I saw a udm pro on Fullmetal's pics

Was wondering if it's audible

Cause my router is in my bedroom

So noise is a big consideration for me

@rose gazelle https://mikrotik.com/product/rb4011igs_rm

does 10gbit

and its 100% quiet, passively cooled

Will check out 👍

I got one of those at home, and quite happy with it

very reliable, once you get over learning curve, its superior to any and all home routers

I keep getting wifi spikes. Yesterday it ran my games at 50 ping but today its running at 300-10K ping. is there anyway on how to fix this

@thick minnow start with identifying where in the network this issue is coming from

I recommend using MTR https://sourceforge.net/projects/winmtr/

Enter 1.1.1.1 as IP, and it should show you where in the chain, your latency is coming from

also, what kind of internet connection do you have? and are you connected with a cable (not wifi) ?

wireless connection

wifi is already unreliable

sometimes. yesterday it ran at 50 ping for the whole day without spikes but yeah today 300-now 15K

its supposed to be gigabyte and fiber but it runs like crap

you wont get gigabit over wifi

ah kk

I recommend using MTR https://sourceforge.net/projects/winmtr/
@tame carbon so i download this?

yes, its a diagnostic tool

it helps identify where the lag is coming from

ok thx mate

enter the IP of a server you want to test against

and it shows you all the hops, from your computer -> router -> ISP -> server

ok it downloaded what do i do next doe

enter 1.1.1.1 as host in the field at the top

https://i.imgur.com/EHXNoIN.png

like so ^

i do not see that though

i just see files...

yes, one of those is a program

it ends with .exe

uh

its a zip file...

how do i open it...

so just open the directory

you have opened it

this?

just press run

ok done

ive run it

i have no clue what the numbers and stuff mean

just type 1.1.1.1 into the box at the top, those are cloudflare servers

generally, very good to test with

then press start

after like 1 minute, send me a screenshot

ok

its not going to expose my info or anything right?

nah,

just the name of your internet provider

you can send it to me in dm, if you prefer

Naming your ISP isn't a privacy concern

or is it

🤔

depends on how big/small the isp is

if it's a small local one, maybe

but I can tell you, I have optimum

I don't know what to do with that information

I can just infer you're american

They weren't

4 carrier nats

before they came on some asian ISP's network

Does anybody know what these 2 flashing lights mean?

I'm trying to set up a new sb8200 cable modem

check the manual for that modem

https://www.midco.com/contentassets/a8faa9563b6b49e5b244ef7418c1b314/arris-sb8200-user-guide.pdf

Ah ok

@heady sentinel

Yo, I've got a killer deal on four cisco access points and now I wanna manage them

Problem is, if I've read the model number (cisco air-ap1042n-e-k9) right, they're standalone APs, and because this level of network gear is kinda new to me, I have no clue IF they support a controller based setup and if yes WHICH controller

Anyone got a clue?

https://www.cisco.com/c/en/us/products/wireless/wireless-lan-controller/index.html Cisco Wireless LAN Controller

I think that's what you need

based on this https://www.cisco.com/c/en/us/td/docs/wireless/access_point/1040/quick/guide/ap1040getstart.pdf#G27161

@mental topaz doesn't seem to be any free to download controller

the thing with this type of enterprise gear is that most of the time you need support subscriptions and licenses

@mental topaz @peak cloak The AP-1042N-E-K9 are actually standalone without the need for a WLC

The LAP1042N-x-K9 are controller based

I know

But wouldn't using a controller make monitoring and such easier?

but can they connect to a controller? From what I read they can

I'm not sure of those standalone models can be converted into lightweight mode

    
Cisco Aironet 1040 Series Access Point

• AIR-LAP1042N-x-K9: Dual-band Controller-based 802.11a/g/n
• AIR-LAP1041N-x-K9: Single-band Controller-based 802.11g/n
• AIR-AP1042N-x-K9: Dual-band Standalone 802.11a/g/n
• AIR-AP1041N-x-K9: Single-band Standalone 802.11g/n
• AIR-LAP1042-xK9-10: Eco-pack (dual-band 802.11a/g/n) 10 quantity controller-based access points
• AIR-AP1042-xK9-5: Eco-pack (dual-band 802.11a/g/n) 5 quantity standalone access points

x is variable

It looks like you can convert them but to do that you'll need the lightweight image

Maybe we have a lightweight image kicking around on our work servers, but I can't check rn because I'm supposed to be on vacation

Anyone here using Zerotier?

But anyways, is a conversion really necessary?

If you want to use a single controller, yes

Damn

But one thing to check on, which I can't right now, is if the standalone can act as a controller. Then you just put three in lightweight mode and use the fourth as an ap + controller

That would actually be really sweet, but I don't know how to search for that on Google even .-.
Networking can be very cryptic

@clear igloo Do you configure your APs to tunnel back to the wlc?

used to, yah

Yah, I don't see any Mobility Express software for the 1040 series APs so you'll probably need a 2504 WLC to control them in lightweight mode

wait https://blob.rocks/jPV10Gxkdt.png

cisco wut

aironet-1140-series

Cisco Aironet 1040 Series Access Points Data Sheet

Yah, I noticed that too

sorry if I'm rude
what is the problem you guys are trying to solve?

I have four 1040 series APs and I wanna use a controller to make my life easier

Yeah multiple APs and controller makes life a lot easier

Yah, you can just go 2504 wlc and then convert the APs or find the lightweight version already setup for you

solution: ubiquity xD

nah, so i guess because its cisco that the controller software is proprietry

Fingers crossed that the 2504 is not too expensive

ew ubiquity

The 2504 is pretty old so it should be cheap-ish

Omada is where it's at

simple, free controller download

no bs

Ouch, 500€ is the cheapest I saw through a quick search

yikes!

Maybe I'm lucky and can shoot another deal

tplink is trash my dude

nah, their business products are nice

at least their WAPs

:P https://blob.rocks/LEYL7Zaxzv.png

WAP

but their consumer stuff (really low end) is absolute trash

yeah

eBay the saviour

200€

And what is this mysterious omada you mentioned @peak cloak ?

i would love to replace my poor poor tplink shiddbox but i dont know with what

at least i have a normal coax modem so i can go from a lan cable

ipfire+ubiquity?

@mental topaz it's TP-Link's business access point lineup

it's relatively inexpensive too

I have one

I don't use the USG and ER-X anymore but I use everything else https://blob.rocks/ioZRw59NbF.png

Ah

Well, I am just a bit locked onto Cisco because I paid 50€ for four of those APs with three Poe injectors

or what would you guys recommend as a router

microtik

you just need a router?

https://mikrotik.com/product/hex_s

I'm Ubiquiti, Cisco, and pfSense

i dont have one of those dls phonewire boxes
my isp basically gives me an ethernet cable

so i need a router as a nat gateway and an access point - or both in one

i have a little 5 port unmanaged gigabit switch at my disposal btw

if you just need an all-in-one that isn't bad https://mikrotik.com/product/hap_ac3

runs routerOS so it's powerful

Is there any reason to get anything better than a Unifi AP AC Lite for a single room?

what do you mean, single room?

shed or something

It's an extension of a house.

if it's one room with no internal walls or anything, I think it'll work

and it doesnt penetrate well enough?

Current wifi is getting 2mbps

that is bad..

I use AVM (German company) products for general networking and the only issues I had with those were caused by me not reading through the options properly or my parents being my parents

oh the dreaded frizbox

xD

It has ethernet going to the room right now it's cat5 but I'm planning on replacing the cable.

@clear igloo this device is spamming the crap out of Google's connectivity check 😂 https://blob.rocks/1Td2XgJguU.png

haha, whoops 😛

10.0.30.69 is the Tesla wall connector 😂 😂

ok good, more people that use the /8

ew

/8

I meant 10.x.x.x

https://blob.rocks/wNk7tsqJAa.png

/24 bby

yeah same

I have something similar

what do you mean

you guys do know that its classless now?

I follow this except for management https://blob.rocks/O2z4bHjET2.png

So I always know what VLAN its on

yeah, that's a good system

anyone here with a static ip?

https://blob.rocks/niNCelw1Jg.png
https://blob.rocks/99pcIL57XJ.png

Mine has luckilly not changed in the past couple of years.

Mine's just attached to the MAC address

technically sorta. ipv6 tunnel which is static. using ddns for updating dns name and ipv6 tunnel endpoint

dhcp ip changes every time I restart the router

And my ISP gives me as many IPs as I want

I had 5 at one time 😂

lucky

I want to separate public facing network for hosting and the ip for general internet use at home

https://blob.rocks/cENRaWVM70.png

i have a "dynamic ip"
basically infinite lease time and mac-based ip selection so the same router gets the same ip

and if i put the switch infront of the nat gateway i think i have as many pseudo-static ips as i want

oh lol yeah basically same as blob

can't you have multiple ip's on one interface?

not with a tplink shitbox

oh ok yeah

Wouldn't you run into a MAC issue lol

you'd need to create a virtual interface

at least on Linux

that's bonded to your current interface

do you guys use a vpn or something?

nah, why

I have several

I need to get a vpn setup for access to the network tho

I host one at home, I have one on AWS, and I use a public one

i tried to set vpn up on my xpenology box but i couldnt get it to work

now i am using zerotier

basically a per device vpn

virtual switch

I got an openvpn one on my pfsensebox it's super easy to set up.

I'm using Wireguard

openvpn is slow, wireguard the fastest

I'm pretty sure my 10mpbs upload is goint to be the bottleneck for me.

do you have it set up securely

@charred meadow yeah..

so did you restrict the cryptographic algorythims it uses

wireguard

I get around

200/300 Mbps?

wait a minute... i think wireguard and zerotier are basically the same?

Hey guys

I have a question

hello there

zerotier uses openvpn though does't it @vagrant raptor

why would it, its layer 2

@vagrant raptor I swear I saw some setup instruction that said to download openvpn to connect

So I am getting into penetration testing (i use kali linux in a virtual machine) and i want to test on a windows virtual machine. How do i get both virtual machines to be connected to the same virtual network?

you just install the zerotier client on both sides

hmm, maybe it was something different, idk anymore

@modern mist what are you using as your hypervisor?

what is a hypervisor? you mean Virtual Box

?

yeah, so virtualbox

there is a setting for the network interfaces that does this

you need to create a vswitch and connect both VM's to the same vswitch

yeah i have both connected to "Nat Network" but when i run a scan on my kali machine the windows IP doesnt show up

@peak cloak What is that?

windows by default blocks ping

I dont know if you are familiar with ZenMap but when i ran a scan on my real network all windows computers showed up

idk about virtualbox, but for lets say proxmox which is basically KVM, you can create a virtual switch where both VM's would be connected

ok, thx

@modern mist check your dms

Hi all, so I spoke to my broadband provider as I was having issues with my router and they've upgraded me to have a mesh system? Does this replace the router or is it a add on to the router? I'm just thinking whats the point in having this if it isn't going to fix the router?

depends on the implementation. Usually this means a new router

They'll send me a new router along with the mesh system or is it just the mesh system and get rid of the router? @peak cloak

you need a mesh complatible router

the easiest thing for the ISP to do is send a whole new kit

the thing about mesh is that there is a wireless backbone, so your devices will connect to the ap that has the strongest signal. It's basically a more advanced repeater

Ah ok, hoping they send a new router too because, it's the router that is the issue

I am having random packet loss on both wired and wireless connection? Does anyone a way to troubleshoot this?

anyone had any experience with networking on the google cloud ? why do the instances not take the subnet of the network but rather a /32 subnet ? and with no apparent default gateway ?

Most likely BGP with loopback advertisement. The actual routes would be behind the scenes on the VMs

Provides VM mobility

that would make sense , it's just that was trying to run some containers and give them IPs on the network when when I noticed this . never thought cloud networking would be so different from a regular network setup

wait until you want ipv6 on a cloud provider

your mind will explode

Why?

@tropic jolt try pinging your gateway then 8.8.8.8 from a device your having issues from. Should tell us if its a local issue or ISP

Did you know cisco TAC gets mad if you're using pings to validate network connectivity? If they hate it so should you

@hollow marlin pro tips here

Thats cute

Still a valid test for a home network

It's not tho if you're doing it over the internet

Right, so instead of criticism how about you offer an easy alternative to @tropic jolt

Call the provider like a normal person before asking the internet

You need all kinds of information a consumer doesn't have to troubleshoot that type of problem

I wish more people would do that. It drives me crazy on reddit. "Why did my bank charge this fee?" How about calling them

It's 2020. You should be thrilled to make a phone call since it's so rare

I have spoken to my provider who are 90% of the time useless..... only asking for a bit of help ffs

@waxen scroll who told you that about ping ? I've worked with 3 CCIEs 2 of which were in cisco TAC all of which use ping on the regular. and what do you suggest as an alternative ? it's built on icmp which literally was made to detect network issues ,

does linus have the isp router in his home or the dream machine pro as the router? or he has the isp router connected to the dream machine pro?

i dont understand his installation

can u send a diagram or something?

A+ @waxen scroll

@fringe pine ping is treated as the lowest of the low in terms of what the devices CPU listens for. it doesn't hesitate to drop it. dropped pings do not necessarily indicate an issue with anything.

pings over the internet, even worse. they'll probably drop first

the ping tool is really meant more as a latency measurement than an uptime checker

I have multiple devices doing that at work right now, right on the lan. So I guess F-, @quaint mural ?

why would LInus publish his internal networking diagrams?

@topaz quarry want some lols?

i just got my ipv6 only network to work with dns64 and nat64

bring it

they ripped out all their vlans and made it a flat network (per a video im too lazy to find) cause they didnt want to hire a network guy to change their network

ew nat64

tell the rest of the world to use ipv6

then i can stop doing it

nevermind misread it

though you said nat6

discord and amazon don't have ipv6 stacks :/

@waxen scroll that's fascinating

they tried to put pfsense in i think and couldnt make the vlan routing work

so YOLO flat network

oh they probably use ubi stuff

ubi stuff has weird rules with forwarding tags

they used to

like if i don't register the vlan tags in the unifi ecosystem

it's like bro this vlan doesn't exist

i get a dumb switch

it just forwards vlan traffic

@peak cloak by default docker does nat6 with ipv6

they deven recommend using fc00/64 and fd00/64 networks too

hmm, I guess maybe in that application it should be fine?

i mean it 100% works

but it defeats the purpose of ipv6

you could just a bunch of hosts with a bunch containers and every container can just route to each other

docker literally just increments one ip address at a time lol

I think that NAT will never go away, everyone got so used to ipv4 and NATing

but on the server-side, I'm ok with it

also: got a shelf for modem and router, next I need to get a patch panel and PDU

@waxen scroll The LMG network

Remember when they ran out of DHCP IPs

yes

Razer phone video

So Linus RDPed into their Windows Server

when people understand how simple ipv6 is

NAT will go away

https://youtu.be/sKmd9T8wNWY?t=333

if Linus had ipv6 addresses

he would never run out of addresses

sadly speaking from a large business perspective nat will still be in for v6

honestly the whole ipv4 vlan subnet bullshit is a shitshow

why would you want to nat v6

do people think eggshell security is effective?

LMGAD lol https://blob.rocks/Is9zDJPxVh.png

Linus Media Group Active Directory

active directory horror stories

so you can only advertise a large as hell subnet to BGP so if you have local internets at your sites ontop of centralized internet as a backup, you need to assign a large public prefix to your small sites, and thats IF your provider even allows BGP, often its just business internet with an ISP provided block, so you nat v6

i wonder if their workstations are actually in ad

#public-chat message

ah i see, so people want fc00/64 and fd00/64 for internal use

Because I asked one time lol

and want to use public 2000/64 addresses for each node instead of assinging to every device they use

when i built out an IPv6 plan we did all publics throughout the company but that natting was a thing because ARIN wouldnt give us enough blocks and we got denied

oh wow

how many did you need?

i dont remember anymore, this was 5 years ago.

like HE gives /48 prefixes if you ask for it

we needed a ton. we were in every region of the world... i want to say 300 offices/facilities

my residential ISP only gives me a /64 unless i misunderstand the modem

but whatever

my residential ISP gives me none

anyone know if Verizon fios gives out ipv6 in the Northern NJ area

only quntillions of addresses

reflecting on my own memes

Spectrum gives /56 lol

FIOS gives out ipv6 in certain locations

i haven't tried a /56 yet

i only tried /48

because i'm a nob

yeah, that's why I was asking

if you login to your modem

it'll either be there or it won't

just enable ipv6

I don't have fios yet

oh, i misunderstood

just make a pre-sales call

my ISP gives me ipv6 in my area but apparently not in all areas

I mean, it's not a deal breaker

if anything, I tunnel

lol i'm sure they want you to ask for ipv6

it's a billion times easier than cgnat

Idk ipv6 that well, so I want to learn it before I set it up in "prod"

i only use vRouters so i'm testing in it one section of devices at a time

and i use ubiquiti APS to run multiple SSIDs

to adopt devices while i figure it out

I'll probably just run an experimental ipv6 vlan

i run ipv6 on one of my vlans lol

with it's own SSID

yea yea

ezmode, so you can backpedal

one thing i wish people had told me when i started learning

you know how with ipv4 you can choose whatever subnet you want?

regardless of your ISP

like 192.168.x.x or 10.x.x.x

the amount of times I was a noob and bricked my internet while the parents while there were watching TV or something...

yeah

when you do ipv6 you must use the majority of the address they give you

so the first 48 bits, the first 56 bits or the first 64 bits of the address

[48,64] are for vlans

[56,64] are for vlans

if your isp doesn't let you do cool ipv6 vlan stuff

then they just give you a 64 bit prefix

the other 64 bits are for all of your hosts

you can use fc00/64 or fd00/64 you just won't be able to route outside of your local network the same way 192.168.x.x or 10.x.x.x can't route without NAT

the 2000/3 number you see is your "public" IP number

the next set of bits are the ARIN numbers assigned to your ISP

and then you get vlan bits

@little schooner im worried about u bro. where u been

ipv6 also has the concept of devices assinging ip addresses to themselves

There are not strict subnet requirements for v6 outside never get go smaller than /64. You can get a /48 and split it into two /49s

sure i was just going over broad strokes

ipv6 at first is like woah

I mostly didn't understand that, but I'll try to make sense of it. Thanks

oh tl;dr you have to basically use the majority of the address that shows up in the modem

if you want your traffic to route outside your house

wdym by majority? that's what I'm mostly confused about. Does that mean that when you subnet, you have to include the majority of your assigned /64?

the first 64 bits have to appear on your devices if you're not using ipv6 vlans

Its the same as subnetting in v4. If they give you a /48 you can break that up how you like. If you get a /64 then your up schites creek

the second 64 bits are reserved for your host

2001:0000:3238:DFE1: 0063:0000:0000:FEFB

the first number before the colon is non-negotiable

the numbers before the second colon are non-negotiable

Thats 2001:0:3238:DFE1:63::FEFB you barbarian!!!

the numbers before the third colon are non-neogtiable

lol yea i didn't wanna confuse

lol I know

the last 4 numbers are referred to as the vlan segment

if you get /56 you can change the last two numbers

if you get a /48 you can change all 4 numbers

the stuff on the other side of the space are for hosts

oh ok, so if I only have a /64 then I can''t subnet?

you now understand

@fringe pine ping is treated as the lowest of the low in terms of what the devices CPU listens for. it doesn't hesitate to drop it. dropped pings do not necessarily indicate an issue with anything.
@waxen scroll haha learn the parts of a computer

what you can do though if you only have /64

is use math with the host addresses

and use firewall rules to emulate vlans

yeah, that's what I thought

you basically end up running multiple dhcpv6 servers

@quaint mural Computer parts =/= routers. He's right. Ping is not cut and dry, especially over the internet

i'm pretty sure you need ping to get ipv6 to work

at least i keep being told that

i've yet to use wireshark to understand why that is

Is it not the first place you would Stat with an end user @hollow marlin