#networking

@peak cloak https://www.youtube.com/watch?v=hbqVNlwfjxo

This is an amazing talk ^

it can't be that easy can it?

If you know what you're doing it can be

@peak cloak this guy shows how shit the software is that the TSA uses in america

by hacking an Xray machine

and changing what it displays

I did it once along time ago now I need to refresh my memory

IT Worked

I installed UBUNTU server

after 4 hours

Need to remember myself haha

OH ok

But I don't think this method will work nowadays

It can't be that easy? Many image viewrs are probobly patched against it

https://security.stackexchange.com/questions/8113/how-to-inject-executable-malicious-code-into-pdf-jpeg-mp3-etc

Because almost every antivirus / anti malware software checks the megick byte of a file

ah buffer overflow attack

What does Ctrl-alt-del does on ubuntu?

log out I think

at least on popOS it does

@peak cloak see my concern is

What should i do

First

@peak cloak this fiasco with NotPetya through MeDoc

@tame carbon

has just happened again a couple days ago

https://www.cnbc.com/2021/01/05/us-feds-say-russians-likely-behind-solarwinds-hack.html

US govt agencies got hacked

sudo apt update, sudo apt upgrade, and I forgot the other one

Here to

autoremove

sudo apt autoremove?

2 weeks ago

https://tenor.com/view/goldeneye-boris-borisgrishenko-jamesbond-natalya-gif-8114123

Insurance companies

was it some really complicated hack or do you think it was social engineering?

Got hacked

@peak cloak oh no they had some insider

most of the time this is manual injection

into local network

so social engineering

kinda

yeah but sometimes its also a mail exploit

there still exist exploits in emails

as long as theres html and css

humans are usually the weakest point

Mail exploit , can be that someone has connected to their wifi and hacked it

@peak cloak there could be zerodays that we don't know about

Can be alot of things

now my mom works from home for a bank. Must be a security nightmare for the IT

I learned it last year

@peak cloak https://www.wired.com/story/notpetya-cyberattack-ukraine-russia-code-crashed-the-world/

here's a deep dive ^

how it all went down

Still the money

Like in gta v

😆

Take it

oof

https://i.imgur.com/EUvDHRa.png

oof.

One the ISPs here got their router fried last year

Good morningfternoon

It took 45 seconds to bring down the network of a large Ukrainian bank.

Good mafternoon

do you like my cmd?

@peak cloak this is what happens if you play CIV and you send your spies to your opponent to breach a dam or smthn

Well I'm going to sleep

Cya tomorrow

Cya

Probably i cant use discord tomorrow

I need you help guys. I need at least 10 meter (32 feet) cheap cable for P2P connection between HP 764285-B21 network cards. I want to use full 40Gbps which this card is capable of.

Basically cheaper=better

I have found one that meets my criteria, but i wanna go cheaper if it's possible.

https://www.ebay.pl/itm/HP-Mellanox-20M-4X-DDR-QDR-QSFP-IB-Cable-498386-B27-LUX5010A-CN-020/293838896811

How to you copy a file in ubuntu

cp file.txt file2.txt

Ok thanks

why do you ask it here?

Idk

sorry

@heavy coral 10meters? you might want to go for a fiber at that point

or Active DAC, cuz passive is not gonna cut it

but cable that I mentioned is fiber optic cable

https://www.fs.com/de-en/products/75298.html?attribute=138

there is just one small problem

it's more expensive than the cable i mentioned

cable i mentioned is 63$ after paying import fees

and this transceiver is 47$

you're from poland right?

yes

fs also ships in europe

they are stationed in germany

@heavy coral well, this might work

some network devices are picky on what kind of fiber optic modules you plug in

this cable from ebay is on official compatibility list

@heavy coral sure, if your device is mellanox compatible

thats the main thing

I really hate that i need to pay 63$ for 28$ cable, but it's still cheaper than in Poland.

40G modules are expensive

that $28 seems very cheap

it is

https://www.fs.com/de-en/c/40g-qsfp-aoc-2691

fs also has 40G AOCs

but they cost around 80 bucks

those individual modules on either end cost around 20-40 bucks each

if i buy aoc can i replace the cable later and keep the transceivers?

no its fused to the connector

thats what I suggested you buy seperate modules

https://www.fs.com/de-en/products/36421.html?attribute=138

These are for HP specifically

the multimode 150 meter ones are the cheapest

it looks like it's worth to pay more for transceivers instead of aoc

I have 10G singlemode here

those modules cost 32 bucks each, but can be cheaper

MMF is limited in distance

MMF = multimode fiber

its cheaper

but uses different fiber type, and cant go as far

i will never need anything exceeding 150 meters, because at the moment i just need to connect two PCs in the seperate rooms

i am going to use it to transfer games and video footage between mine and my brother's pc

might want a different module

Im looking around

oof

these are pricy too

@peak cloak wow

40G SMF modules so expensive

250 bucks or more

MMF counterpart like 40 bucks

but they have MTP connectors, whose cables are very expensive

are transceivers with LC connector more expensive than those with MTP connector?

yeah but LC connectors are cheaper

100 meters singlemode fiber with LC connectors costs like 5-10 bucks

those go up to 200 or even 400G if need be

at long distance

80km+

but the modules are expensive

https://www.fs.com/de-en/products/36170.html

You'd get something like that

thats Singlemode ^ costs 250

https://www.fs.com/de-en/products/36143.html?attribute=119

and this is multimode, 34 bucks

guys with a vlan can I separate a switch from all the rest (and so also from the router)?

what do you mean by "separating a switch from the router"?

I don't want that all devices connected to this managed switch can be visible or can communicate with other devices connected on the router

I want that only the switch can be watched by the router

but not all devices connected to it

@heavy coral https://www.fs.com/de-en/products/68116.html?attribute=978

see this is my problem with MTP cables

@slow egret you can do that using VLAN.

so I think what you want is to have a sepereate managment vlan which basically means that the only users on the managagment vlan can access the managed switch control panel

@heavy coral honestly though, in your situation

Active optical cable would be cheaper

@peak cloak So who's trying to do something stupid with a pdf?

the control panel isn't a problem because it has a password so also if it is visible by other users they can't enter it

thanks

@tame carbon there is a slight issue with AOC, because fiber cable will be exposed and vulnerable for damage. that's why i consider buying transceivers

singlemode is generally easier

because it all uses a single fiber type

and less issues with signal reflection

there is no way im going for sm

its too expensive

we were talking about cyber security and pdf's came up

@heavy coral if you can find a pair of cheap 40G QSFP+ modules

the fiber is peanuts

https://www.fs.com/de-en/products/40206.html?attribute=193

ima head off though

late already

wdym it's 1am

yeah and I have to work tomorrow

thanks for your help

np

Yeah. Making an infected file isn’t the most complicated thing, especially if it’s just a malicious macro, but keeping it so a AV won’t flag it is more difficult

@thorny vector sophisticated tools exist

and from my days on hackforums, most of the tools they sell there are advertised as being either 'FUD' or at least be undetectable by most common antivirusses

I know they exist, and I know there are plenty of unpatched computers out there. But AV is only half of it. Network security and heuristic monitoring is the real meat and potatoes

Also, if it’s on someplace like hackforums, then there are YARA signatures, virustotal hashes, and snort rules that’ll ID it

Real zero days are freaking terrifying

anyone think they can help me with a DNS issue?

yeah

I recently moved back to the states from being stationed overseas. I built my PC there and never had any issues. Today when I went to the Microsoft store to download an app it says I don't have an internet connection. I looked it up and tried to fix it with no luck. Whatever. Then I went to google to download Minecraft Dungeons, it lets me add it to my cart but when I go to pay it tells me my DNS is unavailable. Again I googled it and tried everything from the cmd menu to reset my router, still nothing. I even tried switching from ethernet to WiFi. My computer location has been updated in the settings to reflect being in America. I only run into this issue with Microsft based stuff.

what is your dns server set to in windows?

if you run ipconfig /all you should see it

I can't show an example rn as I'm on linux

uhhhh

wait

that's ipv6

any ipv4 dns resolvers

ah, that's your router

what's the dns setting on your router?

in this configuration your router is acting as a dns forwarder

logging into my router app right now

huh

try changing that to something like 1.1.1.1 (cloudflare) or 8.8.8.8 (google)

As you can tell this is foreign language to me lol

yeah, that should be it

got it, thanks!

np

@wary wing where were you at?

Kuwait?

I've googled for a bit but I can't find an answer

My VM keeps kernel panicking in libvirt

Won't be able to get much from just from some of the registers

no dump file?

where would I find that?

also if it helps, it can boot into grub

No file path during the panic for a dump?

this is just a fresh iso I am trying to boot, that's all that shows

opening qemu log now

ahh

this is the issue: qemu-system-x86_64: warning: host doesn't support requested feature: MSR(48FH).vmx-exit-load-perf-global-ctrl [bit 12]

now I can actually google the issue

I was looking at logs for libvirt when I should have been looking at qemu

will a mesh router system provide more coverage than a normal router

i need help, i have 1000mbps but in my settings it says my link speed is only 100mbps

wifi or ethernet

Yes, a Mesh network provides more coverage, though the speed will be reduced a bit.

So I just found out about PoE++ pcie cards, anyone tried one with pfsense?

https://www.zdnet.com/article/81000-uk-owned-eu-domains-suspended-as-brexit-transition-ends/

👏

YIKES

@unborn sluice brexit is already a big shitshow lol

Imagine not caring, then one day your website is defunct

just last week

I mean the racism towards the brexit was the first wave of sht

thousands of truckers were stuck at the border

wait, no 2 weeks ago

the day before christmas

bunch of truckers were stuck

cus border was closed lol

well, with how the EU works, the truckers are now foreign nationals

or is that incorrect

they weren't

they just closed the border

exactly

nobody in or out

Locked down as the kids say

how can i get rid of cgnat?

be the ISP itself

Ok....

well i don't have lots of money

So no being the isp

then no, learn to live with cgnat

You can set up a budget ISP but its still expensive on the monthly side due to lease lines

So i can't host anything

there are ways to circumvent this,

but basically, why not go host your things in a VPS somewhere

The best way to start an ISP would be saved a bit of money each time you get some and it slowly adds up and in the end you'd be able to start one on a cheap(ish) hosting devices.

would like to have them at home

why not cheap VPS

So do you have an ISp?

I am working on one.

How much?

Where?

depends on how much you are willing to pay

I am over in the UK working on my own.

earth

LMAO

Ok...........

The cheapest VPS' are always linux.

I know that

You know what

I am on mars

Cuz i work with some because of my minecraft server

But now i'm trying to use my old laptop

For that

pass

I can send a few cheap windows VPS'

GBP or USD

No linux is ok

Euro?

https://www.eurovps.com/shared-hosting

The VPS' on there are like £50 tho

https://www.time4vps.com/

there you go

Cuz i only need to host a website

And i dont want to spend much money

What's the website for?

It's for me and for tests

I mean whats going on it

As if you put too much on a website that the server can't handle then your website will be no more.

That is why i want to use my pcs

Its your choice really

If i use mobile data

?

Does that get out of cgnat

You'd need a stable home wifi

If your hosting locally you need a stable connection thats on 24/7

I have an antenna near me

So you want to start an ISP?

How?

Is this what the conversation was?

About starting an ISP?

No it was about getting rid of Cgnat

Ah

Cant help you there as mans over in the UK and don't know any EU providers.

Ok

But are there any ways of not being trapped in cgnat?

Should i ask my ISP

?

Speak to your ISP

They might be able to help more

Ok thanks

Basically, if you don't want CGNAT pay for business line

or be the ISP itself

Ok...

Usually for a business line you need to prove your running a business.

A photography hobby could be a business

?

Registered business

Ok so no

so learn to live with cgnat

But thank you guys

Can i ask another thing?

You asked one

So no more?

I mean anythibg can be done with a little more money

like nuclear reactors

No like literally anything

If you have money you can literaly access anything you want as long as its not government clearance

Well, if you have infinite money

you can basically be the goverment

if not, you can invade the country and call it democracy

No i mean people will show u secret crap because they know if u leak it they can sue your pants off

thankfully not everyone is that easily manipulated

and whistleblowers do exist

@rare echo and idk who raised you under the guise of "everything is possible with money"

because its a deeply corrupt concept

Welp its not a concept

@oak night if you get a vps you may be able to create a vpn tunnel from the vps back to your home

At that poi i could just host the site on it

And most mobile data services cgnat too

Updated router firmware

vps is very cheap

Now i cant access it nice

you can get ones for 2 bucks

I fix in morning

all you need is transit

cpu and memory not that important

But at least here in NJ most of them have ipv6, but most isps don't

Neither here

They don't give you a ipv6 block though which is perfectly reasonable because it's mobile data

I'm going to host it on a vps

But this story doesn't end here

i want to host it in my home

You asked the isp if you are under cgnat?

Yep

They responded me about mobile data

But i asked them about my home internet

Someone from the netherlands here with ziggo giganet?

But they said yes

@oak night what about ipv6

Not going to ask

My 1Gbit connection doesnt hit 1gbit when i put the modem in bridge mode, when its in router mode i get the full speed

@oak night you should

They probably haven't got them

Ok asking right now

Yeah your right, but if enough customers want it they may finally so it

But i dont want router mode, now my modem ánd routers both make ip adresses and its a mess now

pls help me

whats the problem with that

i have that too

but not with gigabit

i have a router at my room just so my smartphone has semi decant wifi

Double nat

Ew

I fixed it yesterday

You want to have only one router doing NAT

yep

Any other wifi "emitter" should be an AP not a router

YEah now i have double ip adresses for my devices its annoying

My modem has to be in router mode otherwise the ethernetports wont do 1gbit

its real trash tbh

buy new modem

you can now

you cant buy a modem

its supplied by your internet provider

yes you can now

its new law

or rule

Weird, probobly bad firmware because it's doing much less processing in bridge mode

is it fiber or regular coax?

on the WINDTRE mobile network, the IP nattato release mechanism is used (private, internal to the WINDTRE network). Therefore applications that require public IP (eg remote management of video surveillance systems, online games, etc.) may not work correctly. Public IP release request is not available. Thank you for contacting us and write back whenever you want, the Chat Customer Service is always at your disposal

'router mode'

my provider doesnt support fiber (lol) so they push coax to 1gbit

bridge mode

wat

@thick minnow what router brand do you have

because there's no such thing as 'router' vs 'bridge' mode

they are two different things entirely

on my modem

not on my roiter

router

I have deco m9 routers, 5 of them

modems are bridges between two kinds of interfaces

@thick minnow ah, because the fiber here is gpon which is proprietary and only isps ont's are allowed on it

routers route between bridges

PON's are ass

@tame carbon pretty sure they mean to make the modem not act as a routers

yeah but its an ONT

it does 1 job

yes but my modem (supllied by internet provider) has a bridge mode and router mode, in roiter mode it uses the inbuild router

i dont want that it messes with the ip adresses

oh so its one of those all in one boxes

yeah

you should be glad yours at least has a bridge mode

most ISP modems don't even give you that option

but i need to use the router mode or it wont do 1gbit

whut

bridge mode only does 500 lmao

do you have 1G uplink?

call ziggo

@twin zealot oh nederlands?

zou je niet zeggen gezien mijn naam

laten we gwn nl praten

😭

naja, beetje aso als we dat hier doen

okay engels it is

yes

maar heb giganet

but the giganet modem is trash 😄

I've only seen their marketing, not heard any actual testimonials

so go call ziggo and tell them problem and they have to fix

have you contacted them, asked if they have support for your own equipment?

or can help

I have WeServe as ISP, and I have my own router

no ISP modem even

its just a fiber module that plugs directly into my gear

I already did, they say put it in router mode to get 1gbit or it doesnt work

@thick minnow yeah but what kind of fiber technology is it ?

I doubt its PON

I've not seen any PON in NL

it's cable they said

its coax

what

ziggo doesnt use fiber

They do 1G on coaxial?

are they insane?

why ask here then
how can we fix if they can

here they do it everywhere

only download

yeah it's not symetrical

upload 50 mbit

oh

yeah that explains it

@thick minnow I take it you were looking at this: https://i.imgur.com/82wZm0n.png

Because this is kinda what you want

yes

@thick minnow but you get that 500mbit/s with your own router right?

modem -> router -> pc testing

no pc directly in modem is also 500mbit

does your PC get assigned a public IP then?

yes

mh

you should contact ziggo

whats the problem with double ip

their hardware is faulty

double nat is the problem

I would be happy with 2 public ip's

there are a lots of problems

i do it for my phone and dont have any issues

@thick minnow your alternative would be using DMZ

but that's not a true bridge

it just forwards all traffic for your public IP to an internal host

its a wildcard NAT basically

as an end user experience is similar, but it's a big deal when you actually know networking

ill tell my dad, he would cry if i touch our networking now it finally somewhat works

double NAT feels like double effort

wait im going to make a small drawing how we have it now

@peak cloak problem is that if you only have home wifi routers at your disposal

you are often quite limited in the setups you can make

because most of those routers just heavily lack in configurability

basically
Modem/router(public ip 1.1.1.1, local ip 192.168.1.1)-> Second router (wan ip, 192.168.1.3, local ip 192.168.1.1) Anything connected to the first router can't see anything on the second router

yes

because a NAT is a firewall

or rather, its part of the firewall

NAT is weird

in an ideal world we'd not need it

luckily @oak night 's router he was using as an AP had a AP mode which was really easy to get rid of it

I'm actuallymore referring to @thick minnow

really doesn't make sense that it locks you down to 500mbit/s

instead of the full 1G pipe

its expected to be slightly lower than 1000mbit/ you usually only get around 940-970mbit/s over a network cable

because protocol overhead and such

yeah we get 970

yeah thats max of ethernet

1G ethernet

does it make a difference if you chain network switches?

in speed

it shouldn't

only latency should increase

you are limited to the most congested link

so if you have a path that is 1G, shouldn't matter how many links are inbetween

okay

@thick minnow though I am reading ziggo forums

and I am a lot of vague tips about in bridge mode, that you have to make sure to enable HW NAT

whatever that means

probably some kind of hw acceleration

what modem do they have?

giga one?

connect box

yeah normal connect box

but they report the same issue

we have connectbox giga

1G

and then 500

on bridge

it might also be half duplex lol

when you put it in bridge mode there are litteraly none settings you can change

the software is real garbage

@thick minnow I think the hardware is just trash

or both 😄

most home wifi routers can't even handle 1G

they can switch 1G

but route, nah

we have deco m9 there are FAST

and with bridge mode, all your traffic is NAT'ed

and unless you have HW acceleration for this

not gonna work

https://community.ziggo.nl/internetverbinding-102/gigabit-snelheid-niet-bereikt-in-bridge-mode-bekabeld-69343

These forums are beyond useless

noobs teaching noobs

Amplifi ?

@thick minnow is that the brand of the device you have?

no its tp link deco m9

that's the connect box?

@thick minnow I only care about the ziggo box rn

ohh

ziggo box rn
This tbh

@unborn sluice yeah there's another fun one

https://www.ziggo.nl/klantenservice/wifi/modem/connect-box-giga this one

ExperiaBox

I had those for years

those are also total garbage, ZTE chinesium modems

@thick minnow cool, but that is not very helpful

do you know what the model name of the manufacturer is?

ziggo doesn't make these themselves

uhh

honestly

contact ziggo support

explain what is going on

already did they dont have a solution

just put it in router mode they said

i have no idea what manufacturer it is

https://community.ziggo.nl/internetverbinding-102/connectbox-giga-is-traag-65559/index4.html

yeah I am giving up also

these support threads are so useless

3 pages of people debating over a USB ethernet interface lol

arguing how it must be 100M

even though the guy tested 500mbit/s

xD

and USB 3 is capable of 5gbit

so gigabit usb interfaces are commonplace

and they make him get a new usb dongle

and still doesnt work

xD

omg

ZUCHT

https://i.imgur.com/bSmHrtI.png

lmao

and next post, they are testing with cat7

haha

as if that is going to make a difference with 5 meters of copper lol

lmao cat7 why on earth would you need that for 1 gbit

consumer internet makes me want to bash my own brains in

years of frustration with KPN

kpn makes me cry

UPC's horrible network

years ago

like 2008

I had 25mbit

with so many outages

until 2018 I had 4mbits KPN

that KPN line was also weather dependent

on hot summer days signal would die out more often

rain was good

not sure why

ziggo is more trash tho, we got free 1gbit (idk how my dad managed to do that) but the guys that need to activate that didnt do it because they didnt trust it....

didnt even call us

just didnt do it

I used coaxial very early on

we had to call them to know what happaned

and concluded that it is very unreliable

1 faulty modem can knock down the entire medium

entire neighborhood will have internet problems

what do u use now?

@thick minnow there was this initiative in the Achterhoek

Glasvezel buitenaf

network is operated by DELTA Fiber

https://www.deltafibernederland.nl/en/

delta thats zeeland right

yeah

but they are countrywide now

they are both an ISP and fiber operator

I only pay them 13bucks/month for the fiber itself

I have a different service provider

https://www.weserve.nl/nl/fiberfttx/

Those are in Hengelo

very profesh

you call support, and they speak technical

I set up my DHCP client on a VLAN with my own router

damn expensive tho

while I was on phone with a tech guy

@thick minnow you think?

these are symetric lines

best ziggo can do is tell to turn it off and on again lmao

I've not had a single link failure in the last 100 days

:3

the internet service in alkmaar here is going to be pretty good in the next years

I also get IPTV from them

nice

as well as a public /29 IP range

so I Have like 9 IP addresses in total xD

knp is connecting EVERY house in alkmaar to fiber now

and other providers can use it

See this: https://i.imgur.com/3tx3ziE.png

two VLANs

IP is static, obtained through DHCP

damn thats pretty solid

yeah its 0-bs

IPTV was a painful to configure

first time I had to deal with multicast

but routerOS has packages you can install for multicast

we have zero utp soccets in our house :/ wasnt really a thing 20 years ago

https://i.imgur.com/bxGtbMy.png

@thick minnow we renovated the place

and put sockets in living room, office and bedrooms

id die for that lol

I am slowly putting ethernet everywhere

my office actually has a fiber

I have a 10G local network >_>

😮

highspeed NAS access

@peak cloak yhh

houses need network in rooms now

wifi is too trash

problem is the link between upstaris and basement

i only use wifi for phones nothing else xd

same

only 2 cables were already there

I still want to get an additional AP in my bedroom

and I really can't run another cable all the way to the basement without tearing out drywall everywhere

5GHz connectivity isnt great on this side of the house

thankfully mikrotik has me covered :D

CAPsMAN <3

so I am getting a poe switch to put in the wall so my dad can get ethernet connectivity as well

chatfilters :grr

needs to be managed so I'm on a different vlan than him

whats wrong with happy face

😦

warship is very strict, too strict

got cencored lol

and arguing about it also gets your messages removed

so don't even try

well i was saying that we have a really stable wifi connecting in our intire house and garden

yeah...

600-800mbit

wifi is anything but stable

well its stable for wifi

yeah but there's always that one device with that one AP

that connects poorly

interference

with other APs, especially in densely populated areas

@thick minnow I actually prefer using 4G over wifi lol

mostly because it always works

oh our house is uhm

https://img.ifunny.co/images/f39353864fd853eb6e645abc6edbd8d2130e22db23c55e421956d74fb2aab3d8_1.jpg

this is me ^

vrijstaand idk how to say that in english

our wifi network is the only one in range

yeah its singleroof

@thick minnow yeah I guess you are one of the lucky ones

certain houses

make it hard to cover it with wifi

WHAT

I CANT SAY THAT

you want to see my list of censored messages?

xD

xD

well our left neighboor is 97 and doesnt have wifi

my grandmother has apparently got 94mbit/s internet with her phone plan

she doesnt even know what internet is

and our right neighboor has just really bad wifi

I saw they had a wifi router when I installed their emergency phone button

so I had to test lol

i actually set up the wifi in my grandparents house

I recently deployed one of these

https://mikrotik.com/product/hap_ac2

as a replacement of some tplink router that was faulty

I measured ~30% packet loss at 0% load

just by pinging

I am a mikrotik fanboy

they are great, and are one of the ways you can ditch those KPN routers

as long as you can extract the account info from the experia box, you can configure it on mikrotik

i had to make a really hard choice but i had to

i had to install one of those ziggo wifiboosters in my grandmas house

xD

those are the worst

ethernet via the powercircuit like what the f

oh btw

https://mikrotik.com/product/rb4011igs_rm

this is the router I have running my ship here ^

price?

like 170 bucks

euros

ahh

this thing is capable of 10gbit/s routing

has accelerator chip for VPN

and has all the enterprise features of routerOS

like, its also my wifi controller

for all the access points around our area here

what nas system do you have?

DIY

Its a mini ITX system with a Ryzen 2600

and a 10G network card

what kind of storage

4x 4TB mechanical

running with btrfs

im thinking of making a nas or just filling up my pc case with harddrives

and boot disk is 250G NVME

https://cdn.discordapp.com/attachments/310468657777999874/725362847411863612/20200624_151216.jpg

with the lid popped

networking gear is above

its a low profile 2U enclosure

those are self cut cables i gues?

those ethernet cables yes

fiber I bought pre-fabbed

nice nice

the leftmost fiber is the one from the ISP

since they only have a 1G link, I use a media converter to go onto RJ45

the 10G port on the router itself goes to my office

thats where my 10G switch is located

server and router are both connected on that

im tinking about creating a little network in my room just to experiment with it

10G home networking is viable

its not expensive at all by comparison

or just wait 2 years when im mobing out

moving

like, 30 meters fiber costs like 10 euros

thats nothing

and the fiber modules with the lasers

cost like 15 or 30 bucks

depending on the type

once you go above 10G, it gets expensive real quick

100G modules cost like 800 euros or more

but they use the same fiber lol

@thick minnow this is what my router basically reports in that 10G port: https://i.imgur.com/MTX9LtE.png

Link length 9 micrometer (thats fiber size) 10km

yeah but when im going to do it i want to buy stuff thats future proof for when iam moving out

SFP+ is quite futureproof

its enterprise standard

https://www.fs.com/de-en/products/11552.html

16 euros

how much is a 10g network card

depends

pci

thats obvious

but

I ment either RJ45 or SFP+

RJ45 10G NICs cost a lot

SFP+ is cheaper, I think 10G cards are around 60-70 bucks

I have a dual 10G card, that one was like 250 euros

but its intel, I chose those because I run virtual machines, and I don't trust dodgy chipsets

https://www.itinstock.com/ekmps/shops/itinstock/images/intel-x520-da2-dual-port-10gbe-ethernet-network-adapter-10gb-sfp-w-hh-bracket-40761-p.jpg

Intel X520-DA2

fiber modules plug into this ^

135

@thick minnow I mean, if you just want to have a 10G area of your local network

all you really need is a small 10G capable switch

https://mikrotik.com/product/crs305_1g_4s_in

I got this one for that

you can in theory, just plug the regular slow portion of your network into the ethernet port

and plug everything else into the 10G ports

https://i.mt.lv/cdn/rb_images/1659_l.jpg

so for what i have now

a cable from the ziggo modem to that port

and everything else in the 10g ports

the CRS305 can route, but not that fast

its ment to be used as a switch

mikrotik runs same software on all their devices

but some features are better on devices made for that purpose

without hardware acceleration, it starts taxing the CPU

and the CRS305 has only a single core 740MHz chip

meanwhile, the RB4011, has a quadcore @ 1.4GHz, capable of 10gbit/s routing

CRS305 caps out at around 1200mbit/s

@thick minnow the RB4011 with a CRS305 combined

is also known as

https://en.wikipedia.org/wiki/Router_on_a_stick

where there's one link between the router & the rest of the network

and you can segregate the network with VLANs

has some advantages, namely less cabling

but in the enterprise it'd be a disadvantage, because of traffic congestion over a single link

I one of those canes with a router strapped to it

wait what do you main with cane with a roiter

router

a literal

router on a stick

xD

oh lol

here's the perfect single room or 'dormroom' AP: https://i.mt.lv/cdn/rb_images/1284_l.jpg

my dad actually know a lot of networking he just doesnt use his knowledge

20 euros lol

3x 100M ethernet

2.4GHz wifi

usb 5v input

but it runs same operating system as their fat routers

he has to much money and is lazy so he just bought a mesh system and plugged them in lol

people with networking knowledge

wouldnt deploy a mesh

yeah well he doesnt use wifi so he doesnt care

:/

I need to help out my dad sometime this year setting up a giant public hotspot

he operates a camping

and they are getting 1G fiber optics

he just want the parental function that these mesh things have

and the plan was quite ambitious

thats pretty cool

have a highspeed wifi network across 5 hectares

wait

@thick minnow yeah and then...

they also want a voucher system

my dad is doing the same thing WHAT

everyone gets free access for whatsapp and such

for my uncles company

if they want to stream HD

they can upgrade

funny enough

I think I can do all of this

with mikrotik

plan is to put a couple p2p dishes on the main building

my dad is setting up a wireless internetconnection from my uncles company building so places like football clubs can have fast internet speeds

and then put up poles around the area to receive the signal

for livestreams

meet your lost brother

and distribute onto wifi

probably going to use CAPsMAN to manage the network

and use some kind of captive portal or dot1x auth

my dads doing the same thing but larger

its pretty cool and they get a lot of money for it xd

https://i.mt.lv/cdn/rb_images/1191_l.jpg

outdoor wifi transmitters

you screw the antenna on the top

was expecting large dish

https://i.mt.lv/cdn/rb_images/part161391161314m.jpg

wifi doesnt use dishes

this one of those omni antennas for wifi ^

@unborn sluice https://i.mt.lv/cdn/rb_images/1017_l.jpg

these are for point2point

https://i.mt.lv/cdn/rb_images/765_l.jpg

yeah he uses some industrial grade point2point connection (15km or something?) so the mostly horse riding schools (maneges) ca have fast internet

also amateur footballclubs

other sport clubs

some of them can go quite far yeah

Do you guys know what error is this?

It means KeyError

he uses airfiber or something

How do i fix it?

we tried troubleshooting in the log, but it says txt file not found, tryed increasing propagation time, no success

@oak night did you read the logfiles for more info?

@oak night it says where you can find more details

Yeah

does someone know good security cameras? there have been many attemps to break into our house lately

have you tried police

they dont care lol

only if it happens

@thick minnow I just setup my own surveilance server using some knockoff cameras from reolink

have you tried a private army

@thick minnow I put them on their own isolated subnet with no internet access

even a PI with cameras

yeah

didnt work

some airstrike knocked them all out

@oak night https://i.imgur.com/2pm8VuQ.png

yeah i have a few of those

@oak night its right there

link?

@thick minnow what to thesoftware ?

cameras

Reolink RLC430

or both

https://zoneminder.com/

Thats the software I use

almost all cameras will work

since they all use similair kind of network stream

I should get a security cam in place

at least at the front

How do i fix it

I use my old phones

increasing propagation time?

@oak night I am sure I don't know

but by how much

@oak night missing txt records?

my old phone is already my webcam hihi

I am not sure what certbot is yapping about

Oh ok

no error on the api, so I asssume creds are correct

For example i have lots of old phones and tablet

maybe increase propagation to like 5 min?

idk

What should i put in those records?

i have a raspberry pi 3+ is that boi fast enough for 1 or 2 camera's?

certbot-cf does that automatically using the api

@thick minnow it might be, resolution, compression/quality and framerate really the deciding factor

cus CPU is not infinite

i was thinking about 720/30 ?

idk if thats clear enough

i dont know if it does why it gives me an error

do 4k/60fps so you can see intruders in full glory

I run those RLCs at 2K 12,5fps

Imo, resolution is far more important than FPS in this context

yeah

I'd rather see their face clearly than smoother movement

nahhh im going to film it 8k 240 fps im going to make some movies of them afterwards

@thick minnow streaming is one thing

recording is another

almost got that

um i want both

nah

any opinions on TP Link AV1000 Poweline?

for a 130m2 flat?

3 ppl?

@livid marlin if it works it works

we we're thinking on buying 2 kits

that might not be the best idea

powerline is eh

since we need to connect 3 pcs directly and have good wifi

?

I used them in the past

works sometimes, sometimes doens't

they are not that good

on what does that depend

If you have to cover long distances

any other options?

@livid marlin powerline is a less than ideal solution. Running multiple of them on the same wiring is asking for interference

Running ethernet

powerload, quality of circuits

or moca

if you already have coax

u and ur moca

just run ethernet

period

¯_(ツ)_/¯

it's an option

I'm using a cat 5e

thats more than enough

we were kinda thinking of not running ethernet everywhere if possible D:

@livid marlin running a cable to permanently connected devices is quite reasonable

since the rooms are too far apart and the flat is not that setup

holdup

it is the best way to bring internet

portable devices sucha s laptops and phones can be on wifi

everything at my apartment is on wifi

I have everything cabled

ugh holdup

What can cabled it is

in mine

@livid marlin where's the access point right now?

in the closet in the middle?

I lost my ability to vlan because im not wired anymore

i used to have 5 vlans on my desktop interface

can't you vlan over wifi and even then have sepereate ssid's for seperate vlans

@livid marlin get a good acces point in the middle and your done i gues

@peak cloak yeah but not at the same time, no?

nope its at the bottom of the right room

next to the other tiny room

I would say it depends on the AP

@livid marlin all you need is an AP on the ceiling in the central hallway

@peak cloak yeah but it was easier to have multiple vif instead to use for my virtual machines

@livid marlin and maybe a cable to more demanding devices such as a stream box

with ssid, i have to constantly switch

yeah

no streamboxes the biggest problem we have rn

is that the network overloads and just drops

since we have 3pcs connected via cable

on 3 different acces points

get yourself an ethernet router and one good AP

^

and in this new flat we were thinking on running cables but its too much work

its worth the work

I spent an entire weekend wiring up outlets here

but it was worth it

the ideal is just to wire everything up

dun dun dun

another question

at site 2, i did outdoor wiring for 6 camera spots

it was so worth

but the holes that had to be made