#networking

ISP rental should be less than $10/m so im not sure the benefit of VPS at this point

I already purchased this. Lol van anyone tell me if this brand or model suck?

GS1900-48 is the model

should be fine, what are you using it for?

Currently, just a bunch of gigabit computers, 2 of which are NAS-ish. Lol

In the future, I'll have a network room in my house and I will have everything feed into it. For now it's just a few PCs and my secondary AP

yeah it will work fine for that. enjoy setting it up 😄 - a smaller switch probably when of been better but lots of room for expansion.

I’m trying to download a 27gb ish game from the epic games store and it goes for a while then it dips and I have to reset my router. Is there any way I can fix this?

By dips I mean it just stops downloading

Restart your router before it dips

So do it before I start the download?

Because it dips to 0 within seconds

om, that's way too fast

how are you downloading games then

if you can log into the router change the dns from get from isp to 1.1.1.1 and 9.9.9.9

What server is 9.9.9.9

quad 9

Alright

1.1.1.1 is cloudflare

Alright thanks

most likely its your isp blocking the download for what ever reason.

to many pings on their dns servers or what.

Lol I had to restart my router so I could access the isp website

Changed the dns and it didn’t change much

My isp had a thing called dynamic dns but it doesn’t sound like it improves much

yup

dynamic dns is a web service. you have to set that up. and hrm, maybe you are over heating or overloading the router. can you limit the download from epic store?

You don't need dynamic dns for downloading content

And changing dns servers wont make your downloading faster

🤦

@waxen scroll You need to port forward 445, 139, and permit ip any any

Hey yall! Im trying to figure out if I should keep using my Ubiquiti EdgeRouter X as my main router, or switch the Ubiquiti Security Gateway?

imo, neither

unless you are in the unifi ecosystem, I would get a mikrotik. I have an er-x and plan on switching to a hEX S

https://mikrotik.com/product/hex_s

@thick minnow

Is Unifi controller 6.0.33 stable?

How i conect to the internet:
My phone get's mobile data, and it is Sending it Through a USB cable to a Computer that is conected to my main computer Via ethernet, and the Computer where the Phone is conected has a adapter Bridge in software "configured" and sends through the signal to the Main computer.

man, that is long.

i could go a little more insane on Network conection if i had the Playroom...

Isnt that fucked up

Whats your internet bill lol?

well, i have the thing that Says unlimited... And i have to actualy share the conection.

tbh, i kinda have bad expirience with wifi sticks. (usb.)

Yeah, most of those are pretty bad.

k

@peak cloak Lol, what happened was I bought the ER-X first, started using it, and then a few months down the road, I came across the USG. And at first, I thought the USG was a stand-alone firewall. Come to find out after I bought one that its a router too.

@peak cloak So now, I have the ER-X supplying the whole house with internet, while the USG is just collecting dust in my office...

Hello everyone, I have a problem with my internet speed. I don’t know why but it works well on my Mac but it doesn’t work properly on iPhone and PS4. Do you have any idea how to fix it ?

how is your playstation getting internet? Is it over WiFi or ethernet?

Over WiFi

We don’t have Ethernet

the first thing that comes to mind is the early versions of the PS4 do not have 5GHz wifi

if he didnt have 5g wifi it wouldnt even show up

Well I live in Slovakia and we don’t have 5G and our speeds are not that great either so basic router should be enough

I am supposed to get 45Mbps and I get 1-6Mbps max

oh, ok

And now it doesn’t work on my Mac either

And my provider says that everything is working fine

They cannot fix this issue for 4yrs

Basically what I want to say is that my internet is unstable and sometimes unusable. Is there any way to fix this of provider can’t do shit ?

And this is on my Mac

This is on my phone

@clear igloo cant help but notice the topic updated

Hello everyone, I have a problem with my internet speed. I don’t know why but it works well on my Mac but it doesn’t work properly on iPhone and PS4. Do you have any idea how to fix it ?
@indigo wing if speeds are "okay" on your Mac computer but not great on phone or game console, I'd start to think about the locations of these devices in relation to where your WiFi is broadcast from, unless you have a way to use Ethernet.

Distance from your wireless modem and the individual capabilities of each device will impact speeds. (For example, most game consoles only have a 1x1 antenna configuration, which means WiFi isn't the best connection type - you're better off plugging into the modem/router with Ethernet.)

All devices are at the same spot and I was sitting right next to the WiFi router and the speeds were the same

@indigo wing 5ghz wifi isn't 5g mobile

It doesn’t matter right now

The internet worked fine (it was usable) but now it’s not

The internet worked fine (it was usable) but now it’s not
@indigo wing ah, if it worked fine before but doesn't anymore, then something has changed. Can't say what though as I'm not familiar with your particular setup, so you may need to contact your ISP and/or device manufacturers to troubleshoot.

F

Getting OKish Speeds in Montana, Had symetric gigabit in Washington

and like fuck, there's no Fiber Company in Billings, only DSL or Cable, if i lived in another City could've gotten AT&T Symetrical fiber for like 60$ a month

Ive got a garbage router here, and i want to connect two computers to a hosted network on a local pc that im using as a server + hosting the network. While i can connect to the network, I cant connect to the server

I cant really reason how i would connect to a server on a router?

Is Unifi controller 6.0.33 stable?
@vale reef Depends what you call stable.

I have had a very buggy experience with adding different users but everything else has been fine.

over ethernet 🙁

oof

yea....

I used to be on 40ms, 4mbit/0.6mbit

double what you have xD

yea lmao its terrible this is the best i can get where i am tho

@rugged jolt well there's your business idea

fiber beats copper

its not even copper

its satellite

copper doesnt even work here

oof

oof

yup

@kind pond can you reach the server with it's private ip

If you can, but you can't with the wan ip (dns hostname), the you need to enable nat reflection

firewall? Your windows defender

usually windows firewall comes up when you first start an application that listens on a port

Who wants to talk wifi routers? I’m looking around and I think I found 2 that seem decent without going overboard a linksys wifi 6 one and a tplink 4000 one, welcome thoughts as I’m just trying to avoid overkill

wifi 6 is overkill

and they are not routers, but access points

wifi routers are boring

The wifi 6 one is actually cheaper it looks like in this case

Most of what I’m finding is sever overkill for router speeds for my use, my internet is capped by my plan of 200/200, at most we have tv streaming live, one of us doing online conference calls, one of us gaming and live streaming twitch and as far as other clients probably a few phones and 3-4 smart home items, possibly more down the road obv, were in a small condo right now but will likely get a medium sized home soon

@naive tartan get a mikrotik

ditch the consumer space

software support is way better on enterprise gear

https://i.imgur.com/7k0hsHl.png

There's models with wireless included, or you do it the mikrotik way, and use CAPsMAN

attach the access points to one of the ports ,and manage it remotely

https://i.imgur.com/15JugvZ.png

These two are remote interfaces

Hello,

I'm having problems port forwarding on a Technicolor TG799vacXTREAM router in an attempt to achieve open/green NAT in games where it has for some reason turned moderate/yellow.

I have set up the port forwarding rules according to router instructions and portforward.com but according to online port checker websites the ports are all closed still.

Any tips?

What if it's CGNAT

It shouldn't be, I've checked for that myself and talked to my ISP about it.

So you just port forwarded it without anything bound for that port?

so it's just for the games

My router doesn't specify any applications, just destination IP to my pc, protocols and ports

Windows firewall has all the rules set already automatically

ISPs will lie

so most likely it will be CGNAT, somewhere

isn't it possible to check for that by using tracert and comparing IP adresses?

could be

but I have encountered cases where the ISP just reused "public" IPv4 addresses through their network

I just basically accept that I will never get open NAT untill they roll out IPv6

wouldn't that still show up with tracert though?

@spark lantern have you done a trace to 1.1.1.1 ?

is the first IP after your gateway (router/modem) a public IP or not?

if it is a public IP, you can rule out CGNAT

You can use public ranges with CGNAT

ofcourse

But what ISP does that

Trace route, look at gateway then just google what's my IP and compare

Why on earth would you do that and have CGNAT? :D

first ip after gateway is public

@spark lantern does googling "what is my IP" yield same result:?

https://i.imgur.com/UdNvwqp.png

well no, my own public ip doesn't show in the trace at all, but my public ip and my gateway ip are the same

it uses the local ip in the trace

@jaunty talon there was a live event where they did it a few years back but I cannot remember the design. It was mainly a design/management choice. I never do it

now that I think about it

public IP shouldnt show up in the trace

@spark lantern do a trace to your public IP

The gateway will which you can compare with what the internet gives you

Can you use 1m fiber on 40km modules? Both side 40km compaitable

see if it stays within your network

@nova igloo cutoff tends to be at 20km for Max TX being lower than RX. Just plug in the SFPs and look at the xcvrs min/max Tx Rx

my gateway uses it's local ip in the trace, so i can assume that's the gateway ip my router shows when i log into it right?

@spark lantern if your modem has the public IP that your browser reports

then you are without NAT

forward a port, put a service on it

see if you can reach it

@nova igloo cutoff tends to be at 20km for Max TX being lower than RX. Just plug in the SFPs and look at the xcvrs min/max Tx Rx
@hollow marlin What if both side same, will it got burnt ?

what do you mean by "put a service on it" ?

run a server on it

@spark lantern like a service that listens on the port

webserver, minecraft server, w/e

@nova igloo if Tx is higher than Rx you have a chance of burning the optic.

@hollow marlin heh.

yeah i mean, both r same model module

@hollow marlin you can run 40km ZR modules in short distance

output bias will be increased

I've got 10km LR here, @ 30 meters

Yeah it depends on optics but in general 40km tend to run hotter Tx than Rx

Yeah but as long as you don't go up to ZR+

you don't really run the risk of fiber fuse

worst case

you burn out the LDR on the receiving end

By hot I mean too bright

ye

@hollow marlin the "range"

is just a power budget

you can always go lower

https://i.imgur.com/yIJRWFi.png

@spark lantern like a service that listens on the port
webserver, minecraft server, w/e
@tame carbon sorry if this is a dumb question but what would the the quickest and simplest method of doing this?

~1dB is what you want on the receiving end

Not all vendors support changing power. Even with Juniper/Ciena only 1 or 2 models allow it unfortunately

Webserver i guess?

@spark lantern what are you trying to host or portforward for in the first place?

A game, The Crew 2 to be specific, ubisoft says it helps, nothing else has worked so i figured why not

@spark lantern what platform

PC

PC, Xbox, Playstation?

TCP: 13000,13005,13200,14000-14001,14008
UDP: 3000-3004

yes those are the ones i have port forwarded in my router settings

Testing with this, will be difficult

I see, so it's safe to use 2x 40km Module on a 1m SMF

idk how reliable port checker websites are but i tried like 3 different ones and they all say they're closed

@nova igloo 9micrometer SMF is all the same stuff

well on the pc side, the computer needs to respond, if there isn't a service running then it will say it's closed @spark lantern

did you use a portchecker while the game was running

Is your server getting the IP address via DHCP?

did you use a portchecker while the game was running
@peak cloak i have not tried that no

might want to try that

@nova igloo typical losses of SMF Singlemode loses 0.35 dB/km at 1310 nm and 0.25 dB/km at 1550 nm

You wont burn out the fiber with full TX power

often times, you don't even use the full budget

but as @hollow marlin said, not all appliances support power adjustments

in fact, I don't think burning out fibers is an issue at all

unless you start using EDFA or RAMAN

Yeah you'll never burnout a fiber

@hollow marlin lol and if you do

it was shitty fiber

@hollow marlin though dust particles on the connector itself

can start a fiber fuse

but on LR and ZR this isnt an issue, because power is very low

you'll just get a lot of attenuation

@hollow marlin lol, the physics behind EDFA I can wrap my head around

but RAMAN just makes my brain stop working

Yeah you'll never burnout a fiber
@hollow marlin I mean burning the RX side

@nova igloo not an issue

worstcase

you'll not get a signal

Like I mentioned, just look at max Tx and Rx and make sure Tx is lower and your good

ok cool

did you use a portchecker while the game was running
@peak cloak Game running, still all ports closed, my router has upnp on and creates a rule for one of the ports when the game is running though. That port also still closed on port checker.

btw the Fiber Splicer is damn expensive

@nova igloo yup

10k

I only buy prefab

Yeah our two most expensive ones are about 75k each

https://cerncourier.com/wp-content/uploads/2010/11/CCnew4_10_10.jpg

@hollow marlin this makes my brain stop working ^

i tihnk it's becasue not much people but that

who need fiber that more than 500m

carriers

some fiber paths are 1000km

yeah thtas why its expensive

i mean the spliccer

We buy rolls by the 100km

@hollow marlin you guys use MMF on site right?

Nope

really?

Done with MM. SM only

Interesting

I thought from a cost perspective

dont MMF for databases

@hollow marlin reliability issues?

for large bandwidth but short distance

MMF is just cheaper for short distance 100G

@tame carbon You have to also take into cost of spares, extra fiber, etc. The cost is negligible at this point. Also easier to keep track of inventory

right

you reduce inventory complexity

@hollow marlin what about the connectors themselves?

I assume you guys use LC-Duplex?

SC ? Malaysia use SC Simplex

not sure why, when who the hell always plug and unplug the splicing box after installation lol

I got LC simplex over here

with BiDi interfaces

Both UPC for LC and SC and GPON APC SC

why so many connectors?

LC is for duplex, SC for simplex. UPC is unpolished and APC is angle polished for less attenuation

I thought most of the time are LC and SC only?

https://ae01.alicdn.com/kf/HTB1I1LQRXXXXXc5XVXXq6xXFXXXV.jpg

@hollow marlin lol, and then there's tmobile

with their own APC variant

LC/SC is the connector. UPC/APC is the glass polish

Thats a first I have seen LC/APC

what about GPON

whats that

passive optical networks

different?

different architecture/topology

oh thats ONU thing

not connectors

Active optical networks are what we are talking about rn

PONs are used by ISPs stuck in the coaxial era

Much. In the carrier space AE (active ethernet), basically just like you would use on a switch, is a direct fiber. GPON is where the fiber is spliced in the field and up to 64 ONTs can use the same fiber and bandwidth is shared

Oh really? I thought everyone using PON for cost saving

@hollow marlin GPON does physical addressing right?

verizon (only fiber isp in my area) uses GPON

@tame carbon Yeah, it uses ethernet. The only difference is it uses TDM to separate the traffic

@hollow marlin is this cheaper than using WDM?

I'm glad my ISP rolls out singlemode here

and not PON

Well WDM is for transport. WDM aggregates while GPON disaggregates

but any benefit?

NGPON is very similar to WDM though

you are limiting yourself in terms of bandwidth

because its not a pure fiber path

Cost is about 10 fold less than AE, direct runs

i see

@hollow marlin the way they rolled it out here, they take an area, and make a huuuge circle

and houses are connected to this loop

2 lines, each line goes left or right way around the loop

so if theres a cut somewhere, you can tap over to the 2nd line

and go around the other way

but each house has their own pair of fibers

Clouds like GCP AWS n Azure, they r using ZFS or SAN?

Pretty common to run rings in carrier space with ERPS

@hollow marlin what about ingress filtering

does GPON have any of that?

optical filters, to reduce noise?

Thats what APC is for. The angle cuts loss a great amount

cus it sounds like it can suffer from the same issues that coaxial has

one coaxial modem can jam the entire medium

Oh if a rouge ONT goes hay wire, yeah it will bring everyone on that fiber down with it. I've seen it. [wrong]

xD

I guess its not as common a problem

because electrical noise can be ruled out

NVM I am thinking AE. Like I said, GPON is TDM, its all the same light. Disregard what I said lol

Its been a long weekend

TDM

brainscratch

oh

like wifi timing

Mmmm, basically

Malaysia dont use Coaxial, we use to use RJ11 which same as our phone line

DSL

yeah DSL

I'm so fucking glad I dont have to use ADSL anymore

biggest piece of shit ever.

It blown up the 3in1 box twice due to strike, and cause half of the lights in my house bown up too XD

Each ONT gets a time slot where it can send and receive based on the bandwidth profile you assign it. When over provisioned the slots overlap and will actually cause collisions

multiplexing dialup

remember when 56K modems supported "hold" ?

you could pause your internet, call someone

and be reconnected quickly, without having to redial completely

pause internet?

@nova igloo quick reconnect

Im in my 20s, how old you think I am haha

60s' 😄 Dont kill me

25 ;)

I used dialup for 2 years

broadband after that

But DSL is convenient

@nova igloo Can never be too old for networking lol

I'm 18

DSL is more reliable than dialup, thats for sure

but DSL is still garbage.

i thought u asking us to guess ur age

Oh haha

https://i.imgur.com/glZftQ3.png

f*ck yeah.

Yup

I still have some of this lol

@nova igloo passive filters

phone used only like 8KHz

Still never understood how those f@#$ers die at the rate they do

barely remember those days im using 2mbps...

56K

that was the stuff.

Im pretty sure we still have a single dial-up customer

I never remember using DSL or dialup, maybe I was just young

@hollow marlin at the company I worked at previously, we still used dialup heavily

This school I help at still uses DSL

@hollow marlin think of the telemetry on PLCs in sewer pumping stations

that was IP over phone lines

we've even implemented AMQP messages over SMS

for portable dataloggers

like groundwater datalogging

dialup is so simple

@peak cloak I’m using the private IP, which is tequnically the router IP? It should be the same concept as routers hosting their web config dashboard that you access from its internal IP. I don’t know if I clarified enough that I’m using windows 10 hosted network, which creates a WiFi access point on my computer without a router

you can even do it today

all you need is two programs that can phone eachother

the handshake and data transfer is just sound

Is this a good speed

not bad

getting 500/500 soon

if we're sizing eachother up

omg 1ms so fast

this is under load

isn't that normal for fiber ?

fiber can do 100G

or 400G even

Na fiber Malaysia r having high ping like 30ms

for internal routing

I have about 6ms on my first hop to the datacenter

not sure is that mine problem

once I am in my private rack

I get like 2gbit/s

and upload is 1gbit/s

but its under load

Yes i guess? Its uploading to the server i think

@dusty epoch those cameras only send over the network when someone is viewing

if you have a storage device

its using it the entire time

yeah if you have a local storage device for the footage

that will be constantly under load

Why u need the cam if its not always on?

@dusty epoch on a metered internet connection?

that sounds like a horrible idea

I dont think it consume Bandwidth cap if u r on local drive XD

@dusty epoch even if it is hosted on your local network, that doesn't mean you can't view it remotely

I have a 4 camera setup here

with 24/7 recording 1 month log

and an app on my phone

to view

only thing I had to set up, was a VPN between my phone and the home network

so I could connect to the camera server

https://zoneminder.com/

https://pliablepixels.github.io/

this is the app ^

yeah you need a small server

or box at home

that is just plugged in, and has network connection

it talks to the cameras over your local network and stores footage

locally, no, your ISP never sees any traffic

yes

when you go to view it when you are not at home

Yeah all traffifcs route in ur internal network

you just set up a VPN between your phone or laptop, to your home network

ehh..

You're in #networking

why not OpenVPN

I mean

if you not savvy

you can always use Zerotier

https://www.zerotier.com/

this is a mesh based VPN solution

functions as a cloud

@dusty epoch you have two problems here basically

https://i.imgur.com/OKh8xdI.png

what about Hamachi XD

You need to set something like this up ^

Currently, my spinning rust is well, not spinning anymore

who knew, raid 1 can fail

xD

broke last week, so its not storing footage right now

@dusty epoch you can see the IP addresses of the left, of the cameras

and all it normally does is just write the footage to disk

and you can either have motion detection, or continuous recording

and it breaks these video frames up in like 10-20min however you want, clips

which you can browse

and even download to your computer

@dusty epoch yeah storage space you need to calculate

took me a while to tune

There's special harddrives for this kind of stuff

like HDDs but designed for things like NVRs

Networked Video Recorders

https://www.seagate.com/nl/nl/internal-hard-drives/hdd/skyhawk/

seagate calls em nighthawk

https://www.westerndigital.com/products/internal-drives/wd-purple-hdd

"Purple"

with WD

but yeah you gonna have to learn how to use linux

if you attempt this

xD

Cloud solutions are terrible anyhow

well for one

government can watch too

and

cloud sucks

for the same reason

because you need it always connected lol

it uses up bandwidth for no reason

Like

I have 4 cameras

watch the network speed it needs

sec

https://i.imgur.com/RERKnUp.png

@dusty epoch ^

that's 36.8mbit/s

only 12,5 frames/second

so if you had higher framerate, it would be even worse

if you have a lot of cameras, like public offices

thats basically what they need a serverroom for

like one big server

with fat network pipe

in fact, my cameras cant even reach the internet

the timeserver they use, is on my router

and they can only talk to the NVR

yeah

so zoneminder, what I linked

usually has some kind of web interface

that you can open to view the streams

the trick is, to figure out a way to be able to access that from the wider internet

yeah, your router has a firewall

so you can only access it by its local ip

in my case, I have 192.168.88.150

so its just a webpage

https://i.imgur.com/Z7nl9Xz.png

and you just enter the IP address of the NVR (server)

@dusty epoch not unless they can break through my firewall lol

or if you have a domain setup, you just enter a name like I can nvr.presentmonkey.tech

@peak cloak lol

I mean probobly more secure than unify

@peak cloak I have like 20 devices

and I just know which is which

I like domains

I use dns prefixes here

so my laptop is watomat.irl.REDACTED.nl

but it does wildcard prefixing

so I can short it to watomat

yeah, so can I

@dusty epoch I wish more companies would sell a solution like nest and such

that didnt involve cloud

like, a small box you put behind your tv next to your modem

you plug it into your local network

yeah they abuse network bandwidth

for they cashgrab subscription

500 bucks gets you a decent NVR

cameras themselves are relatively cheap, like 50 bucks each

yeah but sell this to the masses.

main reason that this kind of stuff doesnt always sell

is because its easier for a device to phone home

than for the user to have to configure their router

so it can set up a secure tunnel

most home routers and ISP crappy routers don't support this

and if you are on mobile networks, that are behind a NAT, it wont work at all.

yeah

so they sell their soul

for the "easy" solution

which is also the worst

consumerism at its worst

you can have a decentralized cloud

but we need to standardize a way for people to have a "home" server

and you can just load apps onto it

like you would with phones

https://www.youtube.com/watch?v=SrA7XTDCtok

Actually

watch this one ^

Very interesting

@dusty epoch by giving up personal data, this is equivalent of selling your soul

because a user's facebook account data is worth like $10 to advertisers

10$ each account?

an estimate

yeah

no, for your behavior

wow thats alot

facebook collects a lot of data

I was trying to buy something off facebook marketplace so I had to make an account, but they want everything. Like I couldn't use marketplace because I needed to somehow prove that my account is actually real

@dusty epoch you know what the worst part is

of doing security on systems like this properly

there's no "recover password" feature

if you loose your encryption key

its game over

well all ur data would be gone

https://www.zdnet.com/article/sonos-abandoning-its-legacy-customers-is-precisely-what-is-wrong-with-iot/

Sonos were those cloud connected devices

https://i.imgur.com/OY91tfE.png

and well..

without a server

they are basically useless.

the code that runs on them, is closed source, so you cant run a server yourself

the password is in the form of an encryption key

usually a file

you can password protect the key

but ultimately if you forget the password, or loose the keyfile

you are rekt

https://en.wikipedia.org/wiki/Public-key_cryptography

the idea with a password on your private key

is that someone with the file, cannot use it without the password

https://upload.wikimedia.org/wikipedia/commons/thumb/f/f9/Public_key_encryption.svg/1024px-Public_key_encryption.svg.png

You have two keys, a public and a private one

they each undo eachothers encryption

so if Bob encrypts a message with your public key

only the private key can decrypt it

https also uses this

no thats the message

forget the password for a moment

this is just encryption in general

but the idea from decentralization

is that you encrypt your data with your public key

and only you can access it

now, companies hold all your data

and you are not in control

@dusty epoch an interesting fact, that comes with this kind of cryptography

you can also it in reverse

if I encrypt a message with my private key, and send it to you

you can verify if it was sent by me

because it will only decrypt properly with my public key

@dusty epoch this stuff is called "assymetric key encryption"

and is basically unbreakable

unless you have a supercomputer the size of the galaxy, and then some

https://upload.wikimedia.org/wikipedia/commons/thumb/7/78/Private_key_signing.svg/1024px-Private_key_signing.svg.png

this is key signing

this is what you can use to verify if a message was sent by the proper authority

i mean idk why the RRRRRREEEE on sonos, of course they're gonna stop updating

all vendors do it.

EVERYONE.

@waxen scroll yeah but its a fundamental problem with IoT

its consumerism at its worst

thats why i chose zwave

@tame carbon soon ™️

@waxen scroll the reeeee is real

because its just companies ripping off people lol

One of my dad's friends is crazy about his nest cameras and was showing off how he can see moniter his home anywhere. Good luck when nest decides it's EOL.

paperweights

yeah

thats what I think too

@peak cloak I reply with a sarcastic "great..."

if you have a unify

you might be able to just configure a vpn directly into that

wat

unify protect

most ipcams use the same kind of protocols

its all either HTTP, MPEG, or just RTMP/RTSP

https://en.wikipedia.org/wiki/Real_Time_Streaming_Protocol

Thats what I use

cheap Reolink cameras

nothing fancy

if you want to get one of those unify cameras

I recommend just getting their NVR too

yeah

you will probably get lost in configuring this

they just have a drop in solution

its a small box, with harddrives in them

that decodes and records the footage

@dusty epoch it uses local network

none of these solutions need internet

@ancient vigil I got 4 cams, ~40mbit

@ancient vigil I use a streaming codec that doesnt need to be transcoded

so it can just write the stream straight to disk

yep

https://i.imgur.com/EFYVrso.png

rtsp://admin:PASSWORD@192.168.77.4:554/h264Preview_01_main

zoneminder was a bit finecky to get going

@dusty epoch why do you so want it to be cloud?

you can still self-host content

I host services on my own internet

@ancient vigil I got a ryzen 2600

its low power chip

and it uses barely any cpu

its on a mini itx board

@ancient vigil Are you using sightsound with Protect?

Ah ok, so that's your primary NVR?

Nice

https://i.imgur.com/GyfDIYl.png

We've got Nest right now because I don't feel like leaving behind a NVR + UniFi Protect for parents, but I'm probably planning on doing either Protect or Axis/LTS

the vm name is completely wrong

its not motioneye, its zoneminder

all this cloud connected nonsense ought to be banned

like, its seriously bad for environment

Because everyone is tech savy enough to do it locally -.-

only permit open systems

if I had to replace Nest for my parents, I'd probably do this https://blob.rocks/qDJhXHRlIu.png

so that even if the company surrenders

I mean, in a way this is right to repair

except the hardware isnt broken

the software is

That I'll agree with, they should give people an option for other support once the company wants to give up support

apparently

the software has a dependency on some server owned by said company

Our Avigilon at school does ALPRs as well as object detection

https://www.openalpr.com/

I've used this before

but that was to build an app

where you could scan license plate, to get car info

The main problem with cloud services

anything similar to sighthound, but free?

is that our phones are so powerful, because all the processing is done elsewhere

but I see no problem, with a standardized way for developers to deploy their apps to a local kind of server

The Avigilon AI appliance just streams incoming data from the NVRs

the same way we buy phones, tvs and such

that have apps

why cant we have a kind of home server

And the NVR is ONVIF compliant

you can control with your phone.

I wish they continued to support Video

hmm, I will look into it

Although Protect looks cool, but I kinda don't like its limited to their NVRs

Video was self hostable, Protect is no longer self hostable

"self hostable" aka bring your own hw

their new Android app is actually quite interesting

They're actually unifying UniFi protect, network, talk, access now

https://community.ui.com/questions/Introducing-UniFi-App/10abef61-b778-4ace-91ca-28833639fa7e

They're trying to get a single user in UniFi to be recognized everywhere else iirc

So you can provision a user to be a UniFi network admin, but they're also in UniFi access for building access, talk for VOIP, and also have Protect access if required

Would be cool if they can deliver

I've got 3 UniFi APs, rock solid lol

The only time they go out is when my power goes out 😂

@rocky badge Y u no UPS for 10 hours?!?

😂

finally @rocky badge came back

@clear igloo no UPS in this house

i use power filters on my A/V but thats about it

Not entirely sure if this is where i ask but

Anyone have experiences with NAS servers or things like Plex/Jellyfin?

What's a NAS

@unborn sluice dunno. i only use $1M SANs

Personally I love unraid, would recommend

@spare bay doesn't unraid use a pretty bad file system though

ZFS ftw

badraid

@peak cloak i highly recommend no nas so theres that

make shares off your main machine so at least something has high speed storage

I mean, I want kinda want a NAS, but not enough use to justify it

not speaking just to you, but realistically you're one person. you're not running 5 machines at the same time with external storage needs, you use one at a time. why then does it make sense to buy a NAS, burn more power, slow down storage to all machines... when you can make your main machine the storage and have high speed where you use it most and lower for the occasional other device use

If anything, it's main use would be family pictures and videos

but honestly, cloud storage exists for a reason

yeah i use cloud for stuff like that TBH

but honestly, cloud storage exists for a reason
What if you want to see your pictures at the lowest latency (other than local)

lol

just use a vpn

*smashes LIKE and subscribes to @unborn sluice

telaport the packets

now, if you're gonna make a big VM server and you plop a samba on there or something... ok. fine. but other than that never do a nas IMO

my only servers are a rasp pi and an optiplex

rasp pi for critical things I need 24/7 like DNS, controllers, etc.

optiplex with proxmox for lab

my ras pi is running all my home automations. sits quietly hidden ontop of a shelf unit and does its thing

my server stays unplugged 99% of the year

I once wanted to buy an HP G8 server, glad I didn't

only reason i have one is i used to get free colo first two jobs

now tech has caught up so much vmware player is fine for my needs, plus i have no colo

my 9900k is just as good as my dual xeon r710 from 7 years ago

only difference is i dont have 300gb ram

i bought the 710 new mostly cause the crap i could get used was crap lol

VMs were still catching on

Can a managed switch be used for hdmi over ethernet?

Why can it not?

Any switch can be used to switch packets

curious question: I've been looking at the log for my firewall and see lot s of invalid tcp packets being dropped as they try to leave my network. is there any reason those should be blocked or can I change that rule to only block invalid packets from WAN?

Can a USB replace Ethernet?

USB now a days r transferring data really fast

10gbps

I mean usb ethernet adapters exists

but if you want USB to USB connection

yeah switches, ap and everything use USB 😂😂

like USB-C

they can do mostly everything

including power delivery

not all USB C have PD

@sinful solar what's the exact log? FW shouldn't be dropping anything going out unless you are changing rules. Default FW policies are to drop invalid connections from WAN

My 4G speed test just got 125/2mbps

Lol

@hollow marlin

They’re being caught by rule #9. For now I changed it so that it’s only dropping invalid packets coming into wan.

I can’t think of a good reason to drop outgoing invalid packets

That's fine. It's just timed out connections that don't have a state in the table

The thing I was referring to earlier was this: I want to use cat5e/cat6 to run the video from my desktop to the TV in the other room. If I connect the ethernets with a managed switch, will I get the correct video signal? In other words, can a managed switch direct traffic from port 35 to 28 for example? I'm new to this sort of thing and wanted to check before I go buying adapters and stuff.

Please ping me so I know to check back. Lol sometimes I am forgetful. Lol

Y u do dis?

@stone kite no

You can only do a wire from a converter to a converter. They don't use the same frames as a standard network so a switch will not support it

I don't think you can even configure an IP on them

@stone kite switches use packet switching to route traffic

so you don't have to think about how the switch is going to handle it

it just works.

as long as your videosource can use IP

ok so i have a question. where i live we have two independent internet lines, a 16mbps down and 2,5mbps up and a second 11mbps down and 1mbps up connection. one is our wifi and the other one is our lan (we did this to have more bandwidth for working at home). but i noticed that when i connect both lan and wifi windows sometimes uses both connections and effectively doubled my download speeds. but is is very inconsistent. is there any way to control that behavior to make it use both connections when i need it?

so the practical max speed of both of these connections is 1,1MB/s (or 9mbps). and i was downloading things at ~2,2MB/s

but it seems to randomly start and stop doing this every few minutes so i would like to be able to control it

currently it looks like this

reduced speed because others are also using it right now

@fiery vale you can't stack network connections like that

you could load balance between them, but a single datastream will only be as fast as the slowest link in the chain

why am i exceeding my max seed by 100% then? i had this connection for years and i can say with absolute certainty it does not go faster than 1.1MB/s

and it is not just wrong display i did an actual downlaod and it actually did download all that data

not sure if steam is capable of this on its own

It definitely shouldn't be.

as all things should be

@weary hill

https://i.imgur.com/237aoFa.png

this is a tiny 10gbit switch

you can use the single gigabit port for the "slower" part of your network

and have 4x 10gbit switching

Ohhh and then just use the 10Gigs for local network?

Yea

Sick

That's neat

My router also does 10gbit

Again - Not gonna happen for meeee

Btw

https://i.mt.lv/cdn/rb_images/1633_l.jpg

it has 10x gigabit, and 1x 10G

I have this router ^ with that switch

What ETN cables you need for 10gig now, cat6 or something?

I use fiber optics

cheaper

Ohhh okay

Snap.

Are there fiber optics cables available for just like plug and play use for networking?

Like ethernet standard?

yeah kinda

I have this router ^ with that switch
@tame carbon Ballin'.

@weary hill yeah so highspeed interfaces use SFP

bascially on the switch/router side you have sfp

https://en.wikipedia.org/wiki/Small_form-factor_pluggable_transceiver

These can do SFP (1,25gbits)

SFP+ for 10G

and then there's all kinds of QSFP+ stuff for 25G, 100G, 200G

and even 400G

^that sfp is the interface between fiber and the electrical signals to the router/switch

exactly

Ahhh

Interesting

So question:

https://images-na.ssl-images-amazon.com/images/I/510bjWSg17L._AC_SY355_.jpg

they just plug into the port

For all the cable routing for the internet, do they use fiber optics for most stretches? They must right?

https://www.avanet.com/assets/img/products/sophos-fiber-transceiver-1000-base-sx-gbic-front@2x.jpg

and have a plug for fibers to go in

yeah, the internet backbone is all fiber

Oh nice

@weary hill backbone internet is all fiber

they even use WDM

so you can have multiple "colors" of light on the same fiber

for theoretical max of like 18tbit/s on a single pair of fibers

Yeah. Then nodes and city networking and shit can be other shit?

Ohhhh

Yeah yeah

Cool

@weary hill long distance carriers use WDM

That's so insane actually

https://en.wikipedia.org/wiki/Wavelength-division_multiplexing

but WDM systems are expensive

F*ck my *ss the stuff we can do today eh.

Yeah I bet.

you can get Coarse WDM (CWDM)

for like 600 bucks

that's ~ 16 channels

Inb4 Linus thumbnail: "I GOT WDM ROUTING IN MY HOUSE"

@weary hill its not really routing

there's no electronics involved in this

its just passive filters & prisms

I mean just routing as in laying cable yuhno?

@weary hill most of the time, what you'll find, is we set up a physical network with fibers

and then you have a virtual network ontop

with VLANs

I do that at home too

that 10gbit link between the switch & router, does multiple networks

VLAN = ? Not sure about that one

virtual lan

routing = selecting and moving packets between networks

@peak cloak Wouldn't technically WDM do just that?

Or I mean

no

WDM is physical

It's fiber

thats all layer 1

https://electricalacademia.com/wp-content/uploads/2018/12/osi.gif

So WDM, fiber, copper

all of that is

layer 1

maybe crystal can explain routing better

@weary hill switches use layer 2

But the packets and everything is contained in the light which is being moved through WDM / fiber optics no? Or am I being too simplistic in my thinking here?

it knows what device (MAC) is on what port

@weary hill fiber is just the physical link

you could use copper

but fiber is just faster and more reliable over long distances

@weary hill yeah, but that's all on the pysical layer to just move more packets through the same fiber

@weary hill think of these technologies as abstract layers

layer 1 provides a way for bits to be sent and received

between 2 devices

Exactly

Yes

Layer 2, uses MAC addresses to physically give each device an address

wat

@peak cloak is that from your hw assignment?

Dijkstras, LETS GO.

no, just google

😂

trying to explains routing

hahaha

hmm, that won't help really

@weary hill so the layer 2 logic, switching packets between ports on a switch

does not care about layer 1

layer 1 can be fiber, can be wifi, or even smoke signals

doesnt matter

This is why Networking was never my favorite to get in to, and why I chose programming hahahaha

@weary hill once you understand these layers

it makes a lot more sense

Routers operate on Layer 3

maybe this is better

Because layer 3 introduces IP addresses

Right yes layer one is literally just a medium or a vehicle for data to physically travel from point A to point B

I get it

Layer 2 = physical addressing, layer 3 = logical addressing

@weary hill think of it this way

the mailman routes your parcel to your house address

And then layer 2 is categorizing and dividing up stuff so that you can send it to a certain device, on a certain port etc etc

Yes?

but it doesnt give it to the person named on the parcel

think of the house address as layer 3 (ip address)

and the name, as the physical address

Right

so you accept the parcel, and its not for you, but your housemate

Okay so IP and port stuff would be layer 3?

you just give it to them

IP is layer 3

ports are layer 4

Oh.

😐

Hahahahha

Okay

Layer 4 is where UDP and TCP live

they define ports

Gotcha

Okay

layer 4 are the host protocols, not really part of the physical networking hardware

firewalls sit on layer 4

Layer 1: Physical medium
Layer 2: MAC addresses, determining devices etc
Layer 3: IP addresses
Layer 4: UDP / TCP and by extension ports

That about right?

https://lh3.googleusercontent.com/proxy/HPN2elm_xypje_cbM4GGMHcKJnXNpG7coxrngbWYtg2RrRM-Few-CFjc8SYugKklUFgmfUy9Od02cBsWTuLqzyK-SbizEslcAzaU

this explains it somewhat

this process is called "Encapsulation"

Right. I've looked at diagrams like this before

Recently actually

@weary hill however, one thing this does not explain

if you have a packet, that is ment for say. 192.168.1.100

how does your router know, which port that device sits on?

And trying to read up on packets and the uh... I forget if it was like TCP/IP protocols I think I was reading about and the different stages of a TCP/IP connection

Handshakes and like

https://en.wikipedia.org/wiki/Address_Resolution_Protocol

This is a layer 2 protocol

How the data is divided up

the network device, broadcasts to all connected devices

Who owns 192.168.1.100, tell <router mac>

Ahhh

and the computer responds using layer 2

You can actually view this all on wireshark

^

@weary hill switches have a small ARP table

that just has MAC -> Port

Interesting

so when a packet comes in, it just looks at the destination MAC

you can find the destination MAC, by using ARP

And if it's not in there, it calls on all devices in the network to give it that information?

And adds it to the table?

or

No wait because if it relies on that table too much what if it changes and it just keeps using the table

Two computers in an office (Computer 1 and Computer 2) are connected to each other in a local area network by Ethernet cables and network switches, with no intervening gateways or routers. Computer 1 has a packet to send to Computer 2. Through DNS, it determines that Computer 2 has the IP address 192.168.0.55.

To send the message, it also requires Computer 2's MAC address. First, Computer 1 uses a cached ARP table to look up 192.168.0.55 for any existing records of Computer 2's MAC address (00:eb:24:b2:05:ac). If the MAC address is found, it sends an Ethernet frame with destination address 00:eb:24:b2:05:ac, containing the IP packet onto the link. If the cache did not produce a result for 192.168.0.55, Computer 1 has to send a broadcast ARP request message (destination FF:FF:FF:FF:FF:FF MAC address), which is accepted by all computers on the local network, requesting an answer for 192.168.0.55.

Computer 2 responds with an ARP response message containing its MAC and IP addresses. As part of fielding the request, Computer 2 may insert an entry for Computer 1 into its ARP table for future use.

Computer 1 receives and caches the response information in its ARP table and can now send the packet.[7]

That seems like it'd be an issue

once these ARP tables are built up

it can just reuse them

if a device gets a new IP

it usually announces this

you can 'broadcast' to all local layer 2 interfaces

same you can broadcast on layer 3, by sending data to 255.255.255.255

Right so it DOES just use the cache

yes

it caches it locally

thats part of the networking hardware

But then what if the IP changes or even the MAC? How does it quickly remedy this?

MAC does not change

https://i.imgur.com/OodGMHm.png

^ see this

this is layer 2

Well you could give a different device the IP in which case the MAC would not be correct for where it's trying to deliver it, no?

MAC is to physically pass packets between devices

IP is to address these physical devices

but to jump from IP -> MAC

you can use ARP

@weary hill there;s also "networking hubs"

those are colloqually known as 'dumb switches'

they don't have an arp table

and every packet that comes in, goes out all the ports

but hubs are rare these days

almost all switches are layer 2 capable now

Okay, but what happens if a different device is assigned an IP in the ARP table or whatever, and it's trying to send packets to that IP, but the MAC is now different and the packets would end up at... the old device?

Hah. yes

MAC spoofing

yeah

there's no security on layer 2

Ah.

Is that something that you try to account for at higher layers?

https://upload.wikimedia.org/wikipedia/commons/thumb/3/33/ARP_Spoofing.svg/1280px-ARP_Spoofing.svg.png

@weary hill yeah

you can poison the arp cache

by for example, pretending to be the router

Mm right

you can prevent this somewhat

by making sure ARP requests are only forwarded by the proper authority

and on servers, and such, to be able to send arp requests manually, you usually need root permissions

@weary hill best way to prevent this

is to use static mac binding

so routers will invalidate unrecognised MAC configurations

https://i.imgur.com/utCinm5.png

ok, kinda need help with something. Everyone has internet access except my dad which can't even ping 1.1.1.1. I suspect this is some windows weridness

@peak cloak disable v6

try again

@peak cloak check for ipv4 conflicts

if there's two devices with same IP, you get all kinds of weird side effects

hmm alright, this is his work computer so I'm kinda limited

do they use VPN?

ye

Ahh I see @tame carbon Cool

@peak cloak l2tp?

try reducing MTU

idk, he said it works now

@peak cloak reduce MTU to 1300 bytes

¯_(ツ)_/¯

on the router?

on the VPN client itself

the interface

oh, he can't change that

@peak cloak I've been on networks, where they disable MTU path discovery

so when it fragments packets

data never arrives

@peak cloak also I gotta say props for repping the old Dog of wisdom meme

BA. BA.

@weary hill https://cdn.discordapp.com/attachments/310468657777999874/725362847411863612/20200624_151216.jpg

:D

server below

router above

The server has a 10gbit network card too

the switch is elsewhere, not in this rack