#networking

Tinkering with electronics is easier if you have at least some tools

It's so dumb that they changed the HDMI port to two micros.

I know, I have pretty much nothing.

@vale storm I used one of those FTDI converters in the past to configure network switches.
But the loose wires and breadboard setup was a bit messy

so I bought a proper console cable

I don't even have a breadboard.

Even though I literally have a class called "electronics" in university.

F indeed.

@vale storm I took a minor in embedded electronics and software development

half a year at school, where all we did all day was tinker with electronics and raspberry pi's

lot of fun :)

@tame carbon I'm so jealous. It's all theoretical for me.

the embedded courses were great. they grouped us up

and our group, was 100% linux

everyone else was using windows laptops

My former "computer science for engineers" professor refuses to use python because he says it's inferior.

That seems nice

no language is inferior. every language has its niche use.

except PHP.

Yes, exactly.

THANK YOU

idk, I kinda dislike python

I use python only for 1 thing really.

and that's data analysis.

Python is great for quick prototyping.

because numpy and matplotlib.

ingesting a raw data file, minor parsing and then feeding into a calculation

python is just ez for that

Anyway, my professors all kinda refuse to teach anything practical.

I used python to make an animation with manim, pretty nice for that

@vale storm sounds like you made a poor choice in education :/

Nah, it's not my main focus.

@vale storm lol we hijacked our school hall, and had battery packs with arduinos, setting up our own mesh network xD

@tame carbon I hate that my teacher refuses to let me use Latex for my resume

My study course is called "physics and technology for spaceflight applications", the technology part is only half of what I do.

google docs is such a pain with formatting

we had like a 5-hop broadcast from the other side of the school

and ugly

with ad-hoc mesh networking

Oh wow, that sounds fun.

@vale storm they used this as a platform, to teach routing and route discovery

and how to build self healing networks

That's sick.

I should do way more practical stuff.

arduinos? what shield did you use

https://lastminuteengineers.com/nrf24l01-arduino-wireless-communication/

@peak cloak NRF24L01 ^

ah

tiny 2.4GHz band wireless receivers

~ 1.5mbit/s per channel

I don't even own an Arduino.

Wow that seems amazing

I have like 3 arduinos

more like 5

Are the cheap knockoff ones any good or are the real ones the only good ones?

nah some cheaper ones work

I only have 1 offical one

@vale storm I wouldn't buy arduinos at all

Why not?

I heard they're great.

because they are slow as fuck, and overpriced.

I'm a big fan of the blue pill, STM32, a 32 bit arm microcontroller

its cheaper, runs at 72MHz instead of 16.

and has more memory, more progmem, its 32 bit instead of 8.

I need to use something with a ATmega32u4

for my project

🤢 atmel

well the ATmega32u4 is a native usb controller, because I need to use WebUsb

I honestly don't even know what I would need an Arduino or another microcontroller for.

also with arduino you have a lot of libraries and 3rd party support

@vale storm those can essentially be programmed with the arduino toolkit

using this https://github.com/webusb/arduino

@peak cloak :D https://github.com/stm32duino/Arduino_Core_STM32

^ this is gr8

reimplementation of the arduino standard lib, for stm32

@vale storm https://www.youtube.com/watch?v=5mDnKBNl9sY

To give you an idea of speed difference ^

Okay... 12 times faster is crazy.

yeah

$2,20 on ali

xD

I don't really need speed right now

let me find the screen we are using

@peak cloak not just that, you know how slow usb UART is with arduinos lol?

when you do realtime measurements, and dump data to UART

your program slows, a LOT.

main reason that the STM32 is so much faster in this demo ^ has to do with DMA

Direct-memory-access speeds up graphics rendering a lot.

https://www.amazon.com/gp/product/B08535GC8J

this is what we are going to use

overpriced.

tbh it's really cool

$32 lol.

https://cdn.discordapp.com/attachments/623265423533801483/805306276845322250/LTS_01.png

https://cdn.discordapp.com/attachments/623265423533801483/805520133844893696/video0.mov

it has some sort of it's own chip

because that's hella fast

Neat

@peak cloak I got one of these https://www.waveshare.com/wiki/7inch_HDMI_LCD_(B)

doesn't even need to be connected to an arduino

It sits ontop of a raspberry pi

That link is dead.

not for me

https://i.imgur.com/VbVxq1G.png

?

@tame carbon we tried to use this one 2.4 SPi ILI9341 Waveshare LCD Display

@peak cloak but?

the person responsible for programming the screen couldn't figure out to draw images and everything

Ah, it's the closing parenthesis that discord cuts off of the link.

what

@peak cloak lmao wat. you can use SDL to directly draw pixels on screen

¯_(ツ)_/¯

what's SDL

He tried to use some library

I prob could have figured it out

SDL_Window *window;
SDL_Renderer *renderer;
SDL_CreateWindowAndRenderer(800, 600, 0, &window, &renderer);

//Probably on a loop
  SDL_RenderDrawPoint(renderer, 400, 300); //Renders on middle of screen.
  SDL_RenderPresent(renderer);

https://www.libsdl.org/

`Simple DirectMedia Layer is a cross-platform development library designed to provide low level access to audio, keyboard, mouse, joystick, and graphics hardware via OpenGL and Direct3D. It is used by video playback software, emulators, and popular games including Valve's award winning catalog and many Humble Bundle games.

`

that's too resource intensive for arduino though?

its a dead simple 'game engine'

@peak cloak its a tiny library to do rendering and such

the GBA emulator on my homebrew PSP uses it too

@peak cloak what, arduino?

yeah, the Leonardo

lol no

you need a linux kernel for this

yeah

that's what I thought

I had my waveshare displays on a pi

with touch support lol

fuck me., that was a hell to configure

since i had to manually calibrate my display

this one we tried

https://www.waveshare.com/2.4inch-lcd-module.htm

SPI

yeah

@peak cloak https://www.arduino.cc/reference/en/libraries/waveshare-ili9486/

I was too busy with web to help him out

lol

so in the end there was a library

there's a driver for that SPI display

he told me he couldn't find any good libraries for it

whatever, the new screen is really cool too

I've been wanting to make an entire self-hosted service suite with my RPi.

But the fact that I can't even access the router to enable port forwarding and stuff probably prevents me from doing this in any kind of a reasonable manner.

@vale storm set up a reverse tunnel

I know I could use some VPN solution but it's meh.

you can use a cloud VPS, and then set up a VPN between your own router and the VPS

I've used ZeroTier before to achieve just that but it's hacky.

Also, my upload speed is laughable.

690 Kbps.

Good luck downloading files from your server with those speeds.

Also, download speed is capped at 14 Mbps.

So yeah, it's not ideal.

I survive with 8Mb/s and that's before my VPN

why use a vpn?

with such slow speeds to make it even slower

Well, It's more than enough for me

Also

the VPN started as a small summer project

That I'm using daily now

It ain't too bad

he's using vpn so he doesnt get hacked

Nah

It's mostly for getting around censorship in my region these days

ah, where?

Those pesky Netflix geoblockers.

That only serve content in specific areas.

only sites that geoblock me are american sites

because they cannot comply with GDPR.

I live in one of the GCC countries

middle east

Oof.

Yea

*don't want to

They could.

true

We're getting upload filters in the EU now.

It really sucks.

it was passed, but hasnt been implemented.

upload filters?

what

@peak cloak Article 13

Yes, but in Germany it's almost implemented.

17

bruh

Basically, content platforms are responsible for the content they serve and have to check at the time of upload if it's copyrighted material. If they don't, they are liable for the damages.

Nobody knows how this is supposed to be implemented.

@peak cloak the fear is that, platforms are going to be worried about fines, that they will put preventative measures in place

When lawmakers don't understand how the internet works

aka: an upload filter.

You can't stop someone from sharing files on the internet

Exactly, and the fear is that this will contribute to false blocking and stuff.

https://i.imgur.com/kXCADEk.png

It's not even clear if memes are gonna be able to be uploaded anymore.

I got the exact same thing

I haven't.

@vale storm memes are apparently fair use.

Yeah, but filters might still block them.

@vale storm https://en.wikipedia.org/wiki/Directive_on_Copyright_in_the_Digital_Single_Market

Because you can make a meme out of some photo someone took.

most of what this directive proposes, I do support to the fullest.

Copyright law is just messed up though. Tom Scott has a great video about it.

Yea, I've seen that

one

@vale storm the problem is that the people lobbying for this, are mostly from record labels and movie associations

Yeah. And newspapers.

Yeah but link tax is not gonna happen.

At least here in Germany.

Link Tax is stupid anyway, the newspapers literally depend on search engines showing their stuff.

Google could just say 'alright, no more links to news sites'

paying for linking is rediculous.

Yeah.

if these news paper organizations want to make money, put up a fucking paywall.

instead of ruining the internet

I was at a demonstration against Article 13 (when it was Article 13 still and not 17).

"save our free internet" is what that says btw.

@vale storm Yeah I'm aware of the protests

There were so many people.

its just, that the CDU/CSU has such a grip on politics in germany

Yes.

It's horrible.

that we can't really do much until the old people have died.

Hopefully that changes this year with the elections coming up.

Can I ask what is "CDU/CSU"?

Two parties.

Actually, its one party.

The conservatives.

Ah okay

Nope.

Christian Conservative party

majority in germany

have been for the last 29 years

It's one union of two different parties.

Yep

CSU is in Bavaria

and CDU is countrywide

Incorrect, since 2005.

Except Bavaria.

@vale storm they've had the same coalition for decades now?

No, in 2005 we had CDU / FDP

From 2005 to 2009

And I think from 2009 to 2013, but I'm not sure about that.

But from 1998 to 2005 we had the SPD and the Greens.

@vale storm you know who I voted for during EU parliamentary elections?

Volt?

Die Partei

Nice.

They're kinda breaking apart though.

They made two seats

Yes.

I haven't been keeping up since then.

But one of them left the party recently.

oh, really?

Semsrott?

Yeah.

He should have stayed at ZDF

Because he says Sonneborn posted a racist tweet.

Sonneborn is still my hero.

But the tweet was kinda meh, it feels like Nico just wanted to get out and needed a reason, however small it may be.

@vale storm german general elections, I vote for the Left

Wait. You're German?

Ganz sicher, :)

Wtf

Left=Liberal, Right=Conservatives, right?

Or wrong

Generally, yes.

guys

#off-topic?

lets steer away from this, since they don't take kindly to political talk in this server.

Yea

@vale storm I have dual citizenship

so I'm both dutch and german

I speak both fluently

Ahh, cool!

Nice

So you live in the Netherlands though, right?

Yeah, like 5 minutes from the dutch-german border

I think we've had this exact convo before.

the Rhine is quite close

@vale storm the only reason I interest myself in german politics, has to do with their power in EU

Whatever germany does, goes for all of europe

since CDU/CSU holds such immense power in EU

Yeah.

NO. NO. NO. https://i.imgur.com/ERSGDZj.png

Ugh, Windows.

Ya hate to see it.

Windows doesnt give a fuck to user settings

https://i.imgur.com/wB7vBNX.png

Thankfully, I don't have to deal with that anymore

Also

There should be that pasue for 7 days

Spam it

Off

should be Off.

Exactly.

I swear

select pause until infinte

microsoft has found out a way, to store 3 different states in a boolean.

My android is still on a build from over a year ago. 😂

TRUE, FALSE, MAYBE-ISH

quatum bit

@vale storm lol in databases you can use NULL

TRUE, FALSE or NULL

Nice.

I used that to hack 'gender fluidity' support into my minecraft server

So it's not a quantum bit after all.

Siiiick.

when people were upset of being shoved into boxes of 'male/female'

That's really cool.

so, true is male, false is female, and null is none of the above

Love it.

Nice

Male, female, other.

Makes total sense.

yeah this doesnt work if you are facebook though

In Germany we now have male, female, and diverse.

and have to support 53 different genders

At that point you may as well just have a text box where people can put whatever they want.

WOW... Cant even be bothered to list all the genders out. smh. It's like you dont even care

I'm not against gender fluidity from a social aspect
I'm purely against it for technical reasons xD

Hahaha, yeah, binary is easier.

That is a good idea

@vale storm I swear, if you make a site that supports that

I will sign up: "Apache attack helicopter"

Dude

I literally had that written out

Just now

pfp

Can I just put this here

Lol.

Microsoft is a fucking meme at this point.

MITM? :)

@jaunty talon it does the same for .jar files

Java is evil.

@vale storm I beg your pardon?

– Microsoft

.NET stinks.

– everybody

it reeks of propietary bullshit

FOSS all the way.

Ayyyyyyy

anyways, back to workj https://i.imgur.com/h5P4Cmi.png

I curse .NET, but I use it daily

Nice.

the irony

Java and .NET can be FOSS :P

@jaunty talon except .NET core doesnt have: https://i.imgur.com/WMFZoN6.png

Btw, I want someone to make it so I can use my android phone as a screen for my Raspberry Pi via a cable.

Wait ain't this supposed to be the Networking channel?

@thick minnow secretly, this is the place where people who have a clue take shelter

Haha

This is as close to the Illuminati as it gets.

This channel.

We are enlightened.

safe haven for linux

tbh I think that may work

over serial

😆

@vale storm VNC ?

Direct USB-C to Micro HDMI would be sick, thank you.

Microsoft stinks*

Preferably without going over network.

@vale storm you can set up an IP tunnel over usb

Usb c to hdmi?

https://www.raspberrypi.org/forums/viewtopic.php?f=28&t=24348

Usb a to hdmi

Wait, are you telling me this might be possible?

yes

http://raspi.tv/2012/how-to-run-raspberry-pi-with-no-monitor-or-network

there is also this

USB to TTL cable

Well, I got to be going right now, hopefully I'll see ya guys soon

See ya

And remember don't download windows updates 😂

They're dangerous

@peak cloak he doesnt have a serial interface

Remember,
sudo pacman -Syu

I already suggested this earlier

enabling uart on the kernel

and then using serial

Yeah.

ah

didn't see it

But I want a display output directly on my smartphone via a simple cable, lol.

oh

a display, not just a console

Yes.

well first step would be to get access to the pi via a console right?

I remember crystal saying it may be a sd card issue

at this point, we dont even know if the pi boots properly.

Random thought
How hard is it to move data from 1 LAN connected PC to another? (connected to LAN as well)
and how to actually do it=

easy

I use scp

@vestal smelt there's a myriad of ways you can do this

Scp / rsync

Öh
What?

scp pi@berry.presentmonkey.home:file.txt /home/presentmonkey/Desktop

@tame carbon wait, could a light on the wifi adapter in my Pi be an indicator that it's booted?

on windows 10(pro)
19042.746

example to copy file.txt from my pi to my Desktop

scp -r for recrusive

yep

winscp

@peak cloak that wont help him

Well on windows scp

Powershell have built in scp

windows also has this weird buit in thing

you still need a server :3

it's like nearby sharing or something

From 2 windows machines?

Just use Windows Network Sharing.

Smb

Lol
I just need a connection, where I can just download and up stuff to it
Like, not switching PC

How can I do it?

Both machines runs windows?

YES
10 pro

Share folder between them

https://support.microsoft.com/en-us/windows/file-sharing-over-a-network-in-windows-10-b58704b2-f53a-4b82-7bc1-80f9994725bf

I don't use Windows but I think there's a way to enable something where you can see the folder of one PC aon the other one.

This.

Yea

@vestal smelt https://i.imgur.com/ZdM16Rz.png

@vestal smelt you can enable directory sharing in windows directly

@vestal smelt the other computer can then browse this by entering the following in the address bar: \\<ipaddress>\Sharename

Isn't it forward slashes with network storage locations in windows?

Well
it could be great
If I knew what it is called in finnish

I always get confused.

Just change system language to english for a sec.

@vestal smelt right click the directory you want to share and press properties

sharing options are in the 2nd tab

https://i.imgur.com/shq0bND.png

@tame carbon ↑

@vale storm there's two lights

No, not on the ethernet port.

there's two LEDs on the board itself

one for system status

and the other for wireless

On my wifi dongle. (Yes, it's a Pi 4, but I used my edimax to see if that would work)

It's glowing blue.

well
there isn´t sharing menu there

I ll look into it late

Maybe try to look on your router dhcp service and see if the pi got IP address

I don't have access to my router.

Oh

And Fing (nmap app) doesn't pick up an ip address of the Pi.

Maybe try arp

I like fing

This is what I meant by dongle.

Tried it, doesn't show anything.

Can you connect it via cable ?

To what?

Are you connected to wifi ?

Yes.

With my host.

I mean rj45 cable to your pi

Fing find everything here

But to what? The ethernet of the router? That's a different sub-network.

And I only have one ethernet wall outlet.

Which is not even mine.

Your pc connected with network cable ?

No.

Ok

@lean pebble we're going in circles

I've already gone over this

Yeah, we had that discussion earlier.

I wasn't here lol

There isnt much he can do rn

Hotspot from your phone to pi

Tried that too.

Via usb

His Pi isnt even connecting to wifi.

Via usb? How would that work?

usb console?

right?

@lean pebble he can't configure dynamic interfaces at this time.

Connect your cable charger and open hotspot on your phone

since that requires access

Not on Linux

I did it alot

Static IP to a PC is the easiest.

with a regular lan cable.

My working laptop doesn't have an ethernet port if that's what you're saying.

@vale storm lol you got some shitty I/O going on over there

no ports

Yes sir.

no serial

no nothing

Two thunderbolt USB-C and one USB-A.

That's it.

Oh, and a 3.5 mm combo jack, yay.

@lean pebble yeah but the problem is, he can't get the client for this configured on the pi

@lean pebble but how does the pi know to connect to BT?

No bluetooth

Usb

@lean pebble even then, the interface is unconfigured.

You connect your phone with usb

it wont connect.

Are you sure ?

How would I even connect the phone to the Pi? Like, what cable?

I did it on my laptops when my lan interface wasn't working and my wifi to

Ya

Yeah, which cable though?

The cable you charge your phone with

@vale storm android can tether over USB, exposing a network interface to the host

But my cable is USB-C to USB-A.

It's ok

Your pi have usb ports

look

all if this is fine and dandy

but at this time

we don't even know if the pi boots.

One port to your phone and the other side to pi

Well light are a good indicator

@vale storm I would buy an hdmi adapter right now, and leave it for now

Okay, turned on USB tethering.

or a serial cable

Ok

Fing doesn't show the Pi.

You should see there the IP of the pi if it's booted correctly

It takes a week to get here though.

No fing

Fing is wifi only

@vale storm yeah but then you have an adapter at least

What is the best type of CAT networking cable?

No idea honestly.

Probably depends on your budget.

@dusky zenith 5e or 6.

The best is cat8 and home use best is 5e/6/6a

I would use cat6a for indoor installation.

Or 7

Cat8 is a joke.

I mean I've heard of 7 and 8 being a thing but honestly I'm new to networking

Expensive joke

@dusky zenith for 1G copper, 5e is good enough. 6 has a reinforced core and 6a comes with shielding

ah thank you

if you plan on running ethernet next to electrical wires, 6a is preffered

It doesn't say an IP or anything.

Not there either.

Man you have update

This isnt going to work ;P

I'm still on a year-old build.

@lean pebble you have to configure DHCP on the pi with this.

It should let see the ip of the pi only if it booted correctly

Never heard of that I know that it working without any issues

Without any configuration

@lean pebble you plugged in a new NIC

you need to run ifup

or ip link set dev <device> up

@tame carbon I have another idea. What if I use my mouse to use macros that type specific stuff into the console headless-ly? (I don't have a wired keyboard)

@vale storm yeah, the idea with that is... serial

But I could just use my gaming mouse, no?

I think you are overcomplicating this issue.

Probably.

You need a machine with an ethernet interface

so you can set up static IP

anything else is overcomplicated.

Which I tried earlier and then the laptop just went bye bye for no reason.

Automatically creating a new temporary nic for it

@lean pebble that'd be a first lol

I've never seen a system automatically ifup a new NIC

That's how I fixed my pc networking last time

Usb thethering creating automatically temporary nic by usb and connect it

From my experience

The only os I needed use interaction in was windows

With this annoying 'yes no' prompt

var data = new List<object[]>();

I wish you can do this in java

On rj45 port (ethernet ) / wlan you're right you always need manually but usb you don't need it

I found my Arch rescue media.

Now the problem is that my keyboard is broken.

How do I type on the laptop?

Why did you broke it?

Some keys just don't work.

And sometimes they do.

It's a laptop of desktop?

Laptop.

I don't have an external keyboard.

I have three laptops though.

Just use the build in keyboard

It doesn't work.

Oh

That's what I'm saying.

I missed it

Use another laptop

Normally I use KDE Connect or an on-screen keyboard to control it.

I love kde connect

The other one doesn't have an ethernet jack.

Me too, it's amazing.

Using it to copy things from pc to my phone

Sometimes I connect the bluetooth too and use the pc for talk on the phone

😆

The problem it's not 100% working

Sometimes it does and sometimes doesn't

How do I know which partition is which? I don't remember which one I made the home partition and which one is root.

lsblk doesn't really help.

@vale storm lol at this point, a live OS is good enough

all you need is IP and ssh.

What does KDE connect do?

Allows to control a device with another one.

Not just control

Okay, sure. But then I need to enable wifi on the live OS.

@vale storm again, wired ethernet.

Get everything from your phone on your pc

I dont use wifi for this sort of debugging

But I want to connect the pi to the pc via Ethernet...

Also if you have a phone you should be able to tether from it roght?

I am stepping out of this conversation

we're going in circles

Guys I just received my oneplus earbuds they're awesome

I probably just don't understand what exactly I'm supposed to do.

And linus just uploaded a video of gaming on starlink

Saw that.

https://www.youtube.com/watch?v=-nCr6gxFXDU

psybreaks ^ for those who enjoy breakbeat

The keyboard fucking works. I don't understand.

I'm too tired for this shit, I didn't sleep at all last night.

Then take a break

come back after a while

amount of times I've solved problems under the shower, is astounding

This is amazing.

I love it.

psychedelic breakbeat :)

80% of what I listen to is psytrance

Well

https://youtu.be/Y1Tg4vqz3fo?t=2577

try this ^ :D

This is my kinda jam

Lol. @lean pebble was right.

for me 90% of what I listen to is Classical and moreover neo-classical

I had to do nothing when connecting my phone to my laptop and enabling USB tethering.

The only time you need to do anything to tether form a phone is when you use macOS

I think I figured out why the Arch laptop doesn't boot.

LibreOffice is installed incorrectly.

wait wat

wat, how does Libreoffice have to do with boot

So I installed LibreOffice last night and the install said something about mime database can't be updated.

And after that I shut down the computer and it didn't boot back up.

https://youtu.be/E8hEJH6remA?t=146
Flexing his guitar skills live on stage

And now I can't even uninstall LibreOffice because pacman says it's not installed.

idk arch, this is why I don't use it

just seems very unstable

It's not though.

This probably has something to do with the laptop itself, it's really horrible.

On my other laptop it works really really well.

wow

just wow

party is long overdue

stupid pandemic.

but its the best port

u are right but no antivirus detects payload which communicate through port 80 and 8080 because antivirus thinks its a browser

if i use any other port then antivirus will detect it

hey guys/gals, Gotta question. anyone know if its possible to be hacked in a way that your network boots up your computer from sleep, then makes your fan increase rpms at a very alarming rate? possibly by using my computing power maybe? my antivirus software stated someone tried to access my computer over 2,000 times at 3 something am this morning.

it's definatly possible

Thanks, yeah i just finished the computer scan and it was definitely a virus(2 of them) in my recycle bin... nice place to hide them. was called Suspect!

do you have upnp enabled in your router

im not sure but id need to check, i also use a voip phone in my home so maybe that is why if i do have my upnp enabled in my router

anyone know how to convert sqllite to mysql?

@lean pebble what, transport data between databases?

@lean pebble I don't think it can be done like that, if I had to make that happen, I'd write some code to do it

now I have bigger problem xD

I installed some management panel and I can't access it with my username and pass

kinda confused by what you are asking?

I use proxmox which is KVM + QEMU

I have multiple VM's running

As for networking I have it use macvtap which "spoofs" mac addresses based on the VM so each VM gets it's own IP from the router

fucking panel management

ikr, just use cli

haha

I found one nice

try crafty, it's really easy

just a simple installer

not pterodac

crap

and it's a system service

no

not with sr-iov

monkey wanna see this panel?

sure

pretty nice

took me only 15 minutes to install and configure xD

I played with ssl thats why I had a problem xD

what's it named?

pufferpanel?

ya

ah

tried it before

working great

I forgot the exact problem I had

waiting rn for HE to reply

I'm convinced it's a problem on their end

what is the problem again?

destination unreachable

oh

and I just checked my email

and they reset the tunnel

WORKS

I had it too yesterday I fixed it

YES

miss configured xD

it was on their end

nice

I spent way too much time on that

now I need to setup radvd again

at least if you send an email to HE

you get a reply.

yeah

suprised

that they even have good support for free users

I don't use radvd

dhcp6?

pfsense uses dhcpv6 / ra

together

@peak cloak they are v6 evangelists.

they push this shit hard, the more people use it the better.

@winged ledge virtualization for GPUs

amd virtualization option

for gpus like crystal said

@winged ledge the idea being, that many operating systems can use the same graphics card

I have 2 gpus for for virtualization but you can do it with one to

Currently if you want accelerated graphics in a VM, you have to passthrough an entire graphics card

SR-IOV would allow the host to allocate compute time to guests

and allow many systems to share a single card

CPUs already have native support for virtual machines. Keeping a lookup table in memory for mapping virtual memory to physical memory

But this isnt to say for other components.

network cards we've hacked our way around with mac spoofing (mac-v-tap)

but GPUs are complicated, in that the firmware on the card and the driver in the OS are very tightly integrated

@winged ledge LTT showcased this

they had a linux host, with two graphics cards

and a windows guest, who'd get one GPU passed through

you just need enough

RAM is shared

storage, you have to allocate.

@winged ledge You could have a linux host operating system, with that GT210

and then add the 2060 to the system as well

you can pass the 2060 directly to the virtual machine

so the linux host can use the GT210 for display output, and windows can use the 2060

In this configuration

you'd end up 1 computer, 2 monitors and two sets of keyboard/mouse

@winged ledge https://www.youtube.com/watch?v=SsgI1mkx6iw

watch this. and be amazed.

last 5 minutes of the video ,are the most interesting

thats where they showcase exactly what I just explained.

@winged ledge no, you wont be able to switch it

since these are IOMMU groups that are being allocated.

@tame carbon has literally anyone installed linux for gaming as a result of these many linux videos he does? I think not. 🤣

@waxen scroll my friend runs this rig. lol

@waxen scroll he managed to pull this off with looking glass and all

using a vega64

though he said that the config for libvirt was a rabbit hole

https://libvirt.org/

@waxen scroll its a bit hacky still. Since looking glass presents itself as a windows kernel driver, which is to be compiled on the system locally.

@winged ledge forget SR-IOV.

you wont be able to use that

Its propietary and drivers are only given to enterprise customers.

no consumer access

@winged ledge and as to the passthrough of a graphics card

you need a specific motherboard

that has the right configuration for IOMMU

https://heiko-sieger.info/iommu-groups-what-you-need-to-consider/

@winged ledge read that article

@winged ledge devices are part of so called 'IOMMU groups'

and you cannot pass a device to a VM, but rather pass an entire IOMMU group

that means, the PCIe slots on your motherboard, have to be in seperate groups, to be able to passthrough one graphics card

same goes for USB controllers

and other peripherals

https://i.imgur.com/AmeR7ve.png

@winged ledge you need to look at what IOMMU groups your motherboard have

make sure the two GPUs are on seperate groups

so you can allocate one to the VM

@winged ledge I really recommend looking up some more articles on how to do this

because GPU passthrough and all the settings, is a bit of a habbit hole

anyone know how to remove openssh key authentication? using an ubuntu cloud image, and would like to remove the requirement for ssh key authentication

@cedar igloo though I strongly recommend against disabling it, you can allow both key and password login, by changing the config in /etc/ssh/sshd_config

public exposed SSH servers should never have password login enabled.

its just convenience for now. its not exposed to the public

its in vsphere local cluster

@cedar igloo PasswordAuthentication yes

that's the config field you are looking for

@cedar igloo There's another config, for root. PermitRootLogin which you can set to without-password to only allow keyfiles for root

by setting it to yes you can use a password

but root login via ssh is dirty. so I always set mine to no

would i need that for using sudo with a normal user (with the correct privileges) over ssh?

no, this is purely ssh

you can still su to root after you are logged in

ok, i dont think i need that enabled then. i dont need to ssh as root

ok, i think i need to configure something else. still getting the following error:

C:\Users\Admin>ssh ubuntu@10.0.10.103
ubuntu@10.0.10.103: Permission denied (publickey).

@cedar igloo its using the keyfile

@cedar igloo just out of curiosity, why not just use ssh keys?

its easier

just find password authentication easier when i am automating stuff

what

for automation, keys are actually easier.

you can just provide a keyfile as an argument

instead of password.

@cedar igloo did you restart the sshd?

i did /etc/init.d/ssh restart

path might be wrong

i just tried remembering what the path was off the top of my head

you shouldnt call init scripts

systemctl restart ssh

i tried systemctl restart openssh and that didnt work. didnt realise it was just ssh

@cedar igloo though for real, you might just be off easier using keyfiles

you can use ssh -i /path/to/your/id_rsa

to manually provide an identity file to login with

by default it grabs the one in your home folder

ok, ill give it a go. will need to reinstall the vm as it was a customisation option in vsphere and i dont want to type out a long rsa key manually

automating SSH without keys is annoying

because password prompts.

@cedar igloo ah yeah

for installing the key on the remote system you can do two things

either

copy paste the contents of ~/ssh/id_rsa.pub to ~/ssh/authorized_keys on the target system

or

use ssh-copy-id a program, which does this for you

ssh-copy-id user@host

it asks for a password

and then copies your public key to the server

i guess thats a linux command...

@cedar igloo you have ssh on your system

ssh-copy-id is part of the openssh suite

oh, enter that on the server

no

im confused...

@cedar igloo okay, let me take a step back and explain from simplest terms

keyfile auth, uses two files

id_rsa and id_rsa.pub

the first one is your private key (which you should keep private)

https://tenor.com/view/tell-me-more-michael-scott-the-office-steve-carell-gif-5407074

and the public key is for everyone else

By giving the server the public key

the server can generate a challenge which it encrypts with your public key

you can then verify you are the owner of that key, by decrypting the challenge with your private key

and sending it back to the server.

generating these keys, you do once on your own system (your laptop or whatever)

this is an 'identity'

and you can permit this identity to login, by just adding their public key to your authorized_keys file

This way, you can allow access to a user, without ever sending them a password

and you can also easily revoke access, without having to change the password

by just removing the key from the list

@cedar igloo on your own client machine, you run ssh-copy-id to copy your own public key, to the server

so the next time you login, your computer can use your private key to identify against the server

C:\Users\Admin>ssh-copy-id
'ssh-copy-id' is not recognized as an internal or external command,
operable program or batch file.
sorry, i probably did something wrong

wait

really?

@cedar igloo do yourself a big favor and install: https://git-scm.com/downloads

im on windows. just ran PS C:\WINDOWS\system32> Add-WindowsCapability -Online -Name OpenSSH.Client* too

git-scm comes with a full suite of bash coreutils

including all the ssh commands

got git bash installed

nice

use that

ok, ill give it a go

windows doesn't have ssh-copy-id

Just use wsl, make your life easier

@thorny vector ew

Not ew. wsl2 is great.

EWWWW

even worse perf.

$ ssh-copy-id ubuntu@10.0.10.103
/usr/bin/ssh-copy-id: INFO: Source of key(s) to be installed: "/c/Users/Admin/.ssh/id_ed25519.pub"
/usr/bin/ssh-copy-id: INFO: attempting to log in with the new key(s), to filter out any that are already installed
/usr/bin/ssh-copy-id: INFO: 1 key(s) remain to be installed -- if you are prompted now it is to install the new keys
ubuntu@10.0.10.103: Permission denied (publickey).

😦

wsl2 isn't for high performant operations. Its for easy access to a parallel linux system

Same reason I have powershell on my linux workstation

@thorny vector ok resolved it

just took a quick screenshare and fixed the issue

:)

@cedar igloo now you see why ssh login is easier?

@cedar igloo you can then protect your own private key with a passphrase

so when I do ssh somebox

if its the first session in a terminal

I get a popup from my desktop environment

asking for login to my keyfile

yeah. how would i deal with adding access to a new machine?

hypothetically

@cedar igloo generate another keyfile on that machine

or, do it like the cool kids and use a hardware ssh key

like a yubi key

plug that into the computer and it does that for you

i need to learn to walk before running

https://docs.github.com/en/github/authenticating-to-github/generating-a-new-ssh-key-and-adding-it-to-the-ssh-agent

@cedar igloo setting up ssh keys for git so you can use ssh instead of http, its pretty much the same process

you can either use a single key which you keep private

or generate a key per machine, which is more secure, you shouldn't copy keyfiles.

@cedar igloo SSH allows things like ssh keyforwarding

so you can do ssh: computer -> server -> another server

and the server in the middle, forwards the key handshake from your computer

like apache guacamole?

or can any linux server act as a bridge kind of thing?

https://www.cloudsavvyit.com/25/what-is-ssh-agent-forwarding-and-how-do-you-use-it/

@cedar igloo imagine you have one public terminal server on a computer grid

and from there, you log onto servers behind the firewall

but you still use the ssh key that is on your laptop/desktop/workstation

so you can ssh user@terminalserver

and then from there

run ssh user@anotherserver

and it still uses the key on your own machine

SSH agent forwarding is like going another layer deeper. For example, imagine you’re connecting to a remote server, and you want to git pull some code that you’re storing on Github. You want to use SSH authentication for Github, but you don’t want your private keys on that remote server, only on your machine.

To solve this problem, you can open your local SSH agent to the remote server, allowing it to act as you while you’re connected. This doesn’t send your private keys over the internet, not even while they’re encrypted; it just lets a remote server access your local SSH agent and verify your identity.

like

ssh is incredibly useful and powerful. But still very simple

depends on the ssh server if you have agent forwarding enabled

which can only be configured by root

so if the server you connect to doesnt have it on, you cant use it

@cedar igloo I've written software in java that uses ssh in code to interact with a remote server. Setting up logins for that was dead simple

in your config file, you only have to provide a filepath to the private key

and an optional passphrase

@cedar igloo and this is what happens if you click cancel in the agent https://i.imgur.com/X29bu23.png

there's many agents, like for example, lastpass could be used as an ssh agent

I use the gnome keyring for this

it falls back to password login

which it will refuse after I enter, because its not allowed xD

@static knoll werent you looking for a place to play modded mc?

@cedar igloo if you want to build a custom Linux image, with users already created, and you can even install packages, use cubic

https://launchpad.net/cubic

cubesos?

oh

@thorny vector only other descriptive operating system I know of is NixOS

then there's the usual saltstack and ansible rigs

Nope. I made a custom image with it, then set it to pxe boot. Instant access to any netboot machine. Salting and everything else is too much work when I can just do this.

@thorny vector I've used buildroot once

https://buildroot.org/

toolchain to build embedded linux systems with

hey PresentMonkey, I think I do have Upnp enabled, should I disable that? and will that impede traffic? because i understand most traffic goes through a specific port i think 80 or 8080, and if it comes through somewhere else my anti-virus software wont see it or detect it until its installed.

upnp basically allows any computer on your LAN to port forward automatically

I would disable it

thank you I appreciate that. Funny how ISP's never really warn you about this sort of thing and the vulnerability it poses.

Its not their responsibility to tell customers that

^

@hollow marlin it turns out it was an issue on HE's end

they reset the tunnel and it's fixed

now on my end it's just slow

I will figure this out later

Must not have been a graceful termination and was just stuck. If you do move the tunnel a good practice is to shutdown the tunnel interface and it should tear it down without HE getting involved

yeah, I tried deleting the tunnel as well on HE's end, must have not waited enough

@peak cloak still same issue ?

same issue like I always had, but at least I now have connectivity

Oh good progress

What is the issue now ? If you have connectivity

slow speeds going through the switch

Maybe if we get rid of Erina we'll get rid of your networking issues. The guy is like a black cat of internet troubleshooting 😛

on router i get 20mbps

on pi I get 118 kbps

ouch

Ok

Just hanging around, cant come up with anything. So yeah. Afraid I cant help on this one boss

this is the iperf test on the pi

When you're not using the ipv6 tunnel on the pi all good?

it starts then stops

wdym, it's the ipv6 that messes it up

maybe I could setup a server on link-local address

that way I can check if it's ipv6

Your ipv6 is tunneled right?

yes

Try disable the ipv6 on your pi

ipv4 is fine

For test

Where is the other end of the iperf connection?

Ok that what I wanted to know

iperf.scottlinux.com

So clearly is the tunnel configuration

it's not the server is slow, because I get 20 mbps on the router on the same server

Yeah I would just try it with link local

What is the command you used to test it

I'll test on my vps that works with he ipv6 to

iperf3 -c iperf.scottlinux.com -6

you could do it on a server closer to you

your vps is in Germany?

speedtest.wtnet.de

Yap

I'll try to both

For me your server is good

52mbit

Lowest it 14mbit

Can be better I have 1gb up/down

Let's test with closer server

The de server is too busy

you may have to wait and try again

Ya

there are 2 more in germany

speed.myloc.de

ping.netnik.de

Must better lowest 357mbit highest 541mbit

Myloc refused

You can take them down 😆 they are not working the last two

Did you rebooted the pi?

https://iperf.fr/iperf-servers.php

Well its maybe worth opening a separate terminal and running top while testing. I can't imagine it being a bottleneck

huh, locally over my switch it works perfectly fine

so it's not switch

Nope it's not your end I guess

Thought so. Whats the latency from the pi to iperf.scottlinux.com

but running the test on my router directly is fine

Ok

Reboot the pi