#networking

What is the issue you are facing

Any good pcie extension for sata?

rn I have a modem in my basement, and 3 wireless amplifiers from which I can run ethernet. I get about 60-80mbps, though I want to achieve higher speeds. What shall I do? We get 100mbps from our ISP so that sucks.

Call your ISP to raise internet speed to 250 Mbit/s

I have this cable in my house

https://www.bol.com/nl/p/nedis-ccgp85221wt100-netwerkkabel-10-m-cat6-s-ftp-wit/9200000105276125/?s2a=#productTitle

@tall pagoda bol.com is overpriced.

just go to https://www.allekabels.nl/

Hi, I asked in #tech-support abt SevTech server error where I can't connect to it... more here: #tech-support message pls DM me ty!

I run some servers so I want that to be isolated. I only have 1 nic so vlans are nice as I have one for management, 1 for wan servers, and 1 for lan server. When I make a VM I just select the linux bridge I want. Also it's great for testing. So like for example only I want to be on the ipv6 enabled network so I just change the vlan for my PC. Also multiple ssids corresponding to different vlans. Pretty useful as I have one that's 192.168.x.x for work vpns so it doesn't conflict.

So my wan server network is completely firewalled off

Can't access anything internally

@peak cloak same here, my LAN can just access my public range with NAT

but I don't masquerade

Should I use unraid for my home backup / plex server?

and pay for linux? lel

I already have it

I bought it long time ago

Unraid

Can't you just compile it from source? The paid ones as well?

I want to do software raid there is away to do it while installing my Linux os or only after everything installed?

I did that post install

but only because my root volume isnt on raid

Never had a chance to do it via installation

Which Linux distro would you guys use for a small VM host? I'm considering moving OPNsense into a VM. Usually I'd go for Arch Linux for the host but it doesn't seem like a great idea to use a rolling release distro as host for an infrastructure critical system

I want everything will be raided

Alpine, SmartOS...

Ubuntu server

@patent egret I just installed debian and am using kvm

I use Alpine because I keep everything bare bones and its defacto debloated

I'm on fedora but this is me because it's my main os on my main pc

There might be another VM on the same host for non-critical services that have to be available all the time but no more than 2. Sadly the machine itself is based on an i5-4590 (4 cores, no hyperthreading/SMT)

But probably Debian based os

debian from a netinstall with minimal packages is already quite bloat-free

I was considering Xen as well. Gotta look into SmartOS - haven't heard that one before

doesnt beat alpine, but its still useable

ClearLinuxOS (by Intel) ftw (jk btw)

Idk, with thier mid-progress of moving Init Systems plus their Tendency to have all the Data Files for every Alt Package avail for every core service for their.... compatibility... it feels pretty bloat

idk how heavy proxmox is, but it uses KVM/QEMU which is pretty light weight for VMs

you could just do debain + KVM/QEMU

K3OS + K3S + Containers and be almost paper thin light weight.

Skip the Hypervisor all together

Debian + kvm/qemu, and virt-manager as frontend

virt-manager works with Xen as well

Portainer hehe

yeah ofc it does, Xen uses KVM/QEMU too

I can't be bothered to learn how to configure libvirt by hand xD

OpenNebula because itll do it all for you anyways.

wat

@plain siren what kind of dark magic is that

8GB ram

3056 virtual machines

?

Its a Demo Pic

Its a full blown AWS in your pocket.

how does it interface with baremetal?

from PXE Installing of your Hypervisor down to VM Creation and K8s/Container Clusters Creation Inside those VM's.... itll do it all

ngh. for a home lab with a single server though

it makes no sense

It can run on a single server. Best part about it

Is there Hardware pass through to VM’s in OpenNebula?

Its all based on whatever you setup the service stack with.

@waxen saddle judging by the picture above, it doesnt matter

since the features of your VM depend on what kind of hypervisor you are using

and kvm can just do hw passthrough

vmware too, I think

Yeah it has some tight integrations with VMWare's entire suite

Which is cool if you use it

last few years this cloud craze

has gotten out of control

now there's a control panel for your control panel

nebula -> k8s -> some app

Nebula is the Orchestration Interface, K8s is Orchestration Daemon

And some would still say Moores law is dead.... I say Containers happened.

OpenNebula > VMWare > K8s > Docker or OXP > ContainerD > The Container

some people overuse containers tbh

trying to dockerize everything

Maybe. I’m able to host everything but 2 or 3 services in a container.

Haven’t quite figured out Ansible, LTSP yet.

The worst is when people don't actually understand what is happening in the container

yeah ansible seems cool

packer too

I even rolled my own container for OTA TV to Multicast streaming with SAP announce. That was a fun project.

One thing irks me though. For the life of me, I cannot get Portainer to use my CIFS NAS as storage. So all my configuration files are locked in the Portainer environment. It’s the gaping hole in my setup right now.

I’ve considered moving to another Docker manager, but I dunno where the actual problem is. The problem is that there’s always a permissions issue. I can get it so that some containers write to my NAS when they are initializing, but when the main process in the container takes over, it doesn’t have permissions to write to the NAS.

I’ve tried different PID’s for the container, mounting the NAS on the host, creating the docker user on the NAS, etc... extensive googling... maybe I’m not smart enough. Lol. Everyone else seems to be able to get it to work.

fuck amazon. seriously

rechargeable batteries, and the default purchase option: subscription

way to ruin the fucking environment

They offer subscriptions for socks and dust cloths too as the default 😛

I'm fed up with my mom buying single use triple-A's for this STUPID doorbell

it rarely rings, and needs a new battery every 2-3 months

@tame carbon my smart doorlock is in the same situation

Except it wants 4 AA batteries!!

Dies pretty quickly. Like 2 3 months as well

we just have an old-fashion wired doorbell and just a good ole lock

@peak cloak dumb locks still have their place in life, yes

Wired smart locks would work pretty well too (with manual override), but companies just don't sell those.

yeah that would be nice

My Yale last about the same. Ive gone full rechargeable across the board though

I've got one that goes a good 8-12 months on 4 AA batteries

Which one is that

Kwikset 910

@clear igloo you can get single use lithium cells in AA format

though thats only for things that you dont want to replace batteries for that often

like an LED headband

Yah, this lock lasts fine with normal AA batteries but I've seen those too

I have one that has been lasting 7 years xD

used it countless of times

wow!

retains charge much better

One thing I'll never buy again is Amazon Basics AA batteries. half the pack worked fine and when I replaced them at least one of every battery in the 4 packs exploded

dont buy basics at all

I boycott that shit

its often worse quality

and its amazon's master plan

i just get ikea batteries

oh, I remembered wrong, it was Energizer bulk pack batteries

they are rebranded panasonics where i live

@clear igloo energizer is a scam

xD

Yah, they were cheap and I guess for a reason

@clear igloo as for portable power, besides that stupid doorbell, everything here is with lithium cells

I have one of those battery banks

you can just put in an 18650 cell

and have 3200mAh

those cells are just far easier

they can do much higher current, hold more charge

and recharge quickly

i wish i had 18650 in some devices they are great

I used them in my vape

and now for everything xD

they are pretty cheap in battery banks 2 euro and a bit per cell

cheap cells are a fire hazzard

I currently have a batch of Sony VTC6 cells

30A, 3000mAh

I was using Samsung INR-18650's before

those are 25A

@carmine moss with cells, especially from dodgy sources, you really want to manually test them

and cycle them through once, measuring how much capacity they take, and if they heat up or not

they are 8.14Wh 3.7v 220Mah cells in those battery banks

unbranded tho

they sometimes sell 5A cells as though they are 20A

and if you overcurrent them repeatedly, and next time you go to charge them, you start a fire.

@carmine moss 220mAh ?

thats next to no charge at all

2200

forgot a 0

3.7V is nominal voltage for all 18650s

only interesting points are capacity and max current

4.2 is full, 3.2 is empty

< 3.0V = dead

@carmine moss I thought the video LTT made on their lithium battery thing, to be very irresponsible

they bought a bunch of thirdparty cells

and just put them in a bank

giving absolutely no care to cell imbalance

yeah that is a problem

like, if you put 50 cells next to eachother

and one of them starts a fire

you have a chinese firecracker

https://youtu.be/WdDi1haA71Q?t=353

Watch 30 seconds of this ^

xD

yeah batteries are a risk a lot of times at least 18650 are somewat safer vs other lithium batteries

lithium is very reactive

and once it gets going

you aint putting it out

18650's are lithium ion

I think you're talking about lithium polymer

yeah that's the problem also cheap laptop batteries use bad 18650's

LiPo's expand and then burst with a ball of flames

and then stores sell you cheap knockoff ones saying they are real for laptops

amazon doesnt even permit the sale of lithium ion anymore ;P

or any lithium batteries for that matter

like, they are not toys.

they can potentially be a fire hazard

yeah people don't know how to take care safly of them

and with the dumb shit you see on youtube these days

good xD so normies at least cant get their hands on some

there is a channel called my play house he makes a lot of lithium ion banks but even what he does is sometimes problematic

as long as you take safety precautions

at least he is being as safe as he can he just has used some bad gear at times

only thing you really need to contain a lithium fire

is a steel barrel where you can dump the shit in

to let it fizzle out

he does it in his basement of his old house so yeah

water is the single worst idea xD

@carmine moss this is the true ali-express experience: https://www.youtube.com/watch?v=WOwhah8AifU

Yeah those are a safety risk

Buying a house soon and it's all wired up already with ethernet. My friends are saying that ubiquiti is basically the best way to go, but it's looking like to get a basic setup on Ubiquiti will cost £1000+ anyone have any suggestions? is it worth it?

ubiquiti unfi imo is eh

mikrotik is much cheaper

and just as versatile

unifi is "easier"

its just a bit less fancy config

I mean the main stuff I want is nice handover between multiple access points, and some way of banning all my smart home devices from the internet

multiple APs can be done pretty easily (but not fully seamless)

mikrotik doesnt have seamless roaming, but AP handover is like 100ms

and for smart home that's also easily done with vlans

and mikrotik also has support for multiple antenna setups

so the microtik takes 100ms to hand over, but the unifi stuff can do it seamlessly?

@wheat solstice well, the idea with seamless roaming is that the AP suggests to the phone that it should switch

truly seamless requires r/k support?

without 802.1rk support, the phone just switches to another AP

but mikrotik is smart enough to hand out the same IP, and immediate update the arp table

so you don't notice it

https://en.wikipedia.org/wiki/IEEE_802.11r-2008

but even without this, experience is still good

I see, I mean the main thing I'm hoping to avoid, I used to have a basic setup with two routers with the same SSID, but the laptop/phone would absolutely cling to whatever it was attached to. So it'd stay on the downstairs router when upstairs, and you'd have to manually reconnect to get it to stop being silly.

yeah but those are independent no?

Your TX power may have been too high?

yea they were just normal boring routers with nothing fancy

https://i.imgur.com/J542Ijz.png

those are remote APs

you just provision them within a single network

I think I should definitely investigate microtik as well though. I'm a programmer by day and a fan of more open things, I have been a bit hesitant of the unifi stuff because it feels very iphoney.

and the router controls the access points

so when a phone moves to another area, it should just kick it off and move to the other AP

@wheat solstice what kind of net speed do you have?

and how many APs do you plan on putting out?

@tame carbon 500mbit, hopefully going up to 1gbit in the future once it becomes available.

APs will be between 2 and 4 I would think.

like their standard dual chain access points cost about 60 bucks each

yeah unifi is like the apple of networking. Ubiquity edgemax aka their ISP line is much more open

I have the ER-X myself

and the router, you can go as wildy as you want

60 bucks for a 5 port gigabit router

@tame carbon I also have a home server (Think NAS) that I'd ideally like on a 10g link.

@wheat solstice lol you should get the router I have, since my stuff here is 10G as well xD

sfp+ or copper?

https://mikrotik.com/product/rb4011igs_rm

@peak cloak probably copper, since I'd have to run the cable, so it'd be weird to run SFP links in the walls.

this thing mops the floor with the ER-X

You should do SFP+ tbh

much cheaper

SFP+ is just a connector

then you put in a module

which can be fiber, copper, etc.

if you get a router with 10GbE RJ45, instead of SFP+, you can't do fiber

SFP+ can do both RJ45 or Fiber, depending on the module

ah, so I could do SFP -> ethernet -> SFP -> Switch in the office -> SFP -> Home server?

@wheat solstice SFP+ is just an interface

sfp+, sfp is slower

you plug a module in there

@wheat solstice this would be my first recommendation

10x 1G

and 1x 10G

$190

I have this one at home

very pleased with it

yea, seems reasonably priced and available in the UK too which is good.

So that's my router. The one 10G port can go to my office, and I guess I use one of those ports as the WAN port to the modem.

@wheat solstice you only use this for routing

if you want more 10G connectivity

you'd use a switch

router on a stick

for 10G

actually no

@wheat solstice and the place you plug your cables in doesnt really matter ,since VLANs are king.

VLANs hurt my brain coming from the typical land of Asus routers 🙂

Its not that complicated really

Yea, I'm sure I'll wrap my head around it lol

I could help you set some up on this gear

yeah

let me find a diagam I made

@wheat solstice I have this one hanging in my office:

Good news is I've come at this problem nice and early, probably at least a month out from moving. So I got time to learn 🙂

@wheat solstice on this, I plugged in my router and server with 10G, as well as my workstation

https://mikrotik.com/product/crs305_1g_4s_in#fndtn-specifications

https://cdn.discordapp.com/attachments/387022787480387605/801831633644159016/Untitled_Diagram.png

your actual network is a virtual network ontop of the physical network

physical ethernet is just to connect them up

Here I was also explaining the difference between vlan and subnet

I see

a subnet goes onto a vlan

vlan is just a way to have multiple L2 networks on one pysical link

all the switch and router do is add/remove a tag to an ethernet packet

vlans are ethernet networks (layer 2)
subnets are IP networks (layer 3)

vlans just add some extra data to your data packet

with a number between 1 and 4095

if its 1, that means there's no vlan active, that's regular ethernet

@wheat solstice imagine you have a switch with 10 ports and a single highspeed port to the router

you can give each physical port a different vlan ID

and then the cable to the router, can have 10 virtual interfaces on the router's side

in mikrotik it looks like this: https://i.imgur.com/k2yPxG7.png

SFP+ interface, with multiple vlans associated

and they behave like ethernet interfaces basically

I see, so to start with I'd probably need the RB4011iGS+RM, A couple of switches (one for the garage where ethernet all terminates, one in my office) and some APs, although it seems like microtik doesn't have any WiFi 6 aps yet 😦

wifi 6 only really starts making sense if you many devices

like more than 10

or in a congested area like an apartment or city

I definitely have more than 10 devices 🙂

it helps reduce latency

but if you have more access points spread across the house

it shouldnt be an issue

@wheat solstice I know tp-link now has wifi6 APs

I have an omada AP myself

@wheat solstice https://mikrotik.com/product/cap_ac#fndtn-specifications

these are pretty cost effective

https://www.tp-link.com/us/omada-wifi6/

yea they do seem to be fairly cheap, like £50. On this basis seems like I could rig my house up for less than half the price it'd cost me to do it on unifi, pretty decent saving

^and you can install or buy a controller for more seamless roaming I think

@wheat solstice all those devices run the same operating system

and you can use your RB4011 to control those APs

I only have 1 AP so I didn't use the controller

as a group

you can set up multiple wireless networks across them

like a guest network, isolating them to a seperate vlan and subnet

and even limit their bandwidth

xD

Yea, I think choosing a platform is important right? That's the whole allure of unifi in the first place, that you have one central place to control everything, and you can identify every device on the network because all the APs/switches talk to the controller, etc

I have things all over the place

single vendor is easier in most scenarios

router from ubiquiti (ER-X)

switch from D-Link

AP from Tp-link

switches dont really matter xD

I mean they kinda do

especially managed ones

well yes

but they can all do vlans xD

Yah, they don't matter much outside of home features but in larger enterprise situations of course it can easily matter

yeah

at home it's fine

what microtik switch would be recommended? May as well stay in house since I'm looking at a microtik switch, and microtik APs

how many ports? xD

12 would probably be enough, 24 would be nice

https://mikrotik.com/product/CRS326-24G-2SplusRM

the place has ethernet in every room (unfortunately cat5e) and also my office consumes a reasonably quantity of ethernet ports (6+)

wait no, I changed the link click again

fun, would be nice to have PoE somewhere too for cameras

I mean

this switch is $200

the PoE variant is almost double the price xD

PoE for APs is definitely worth it

still cheaper than unifi 😂

but that is true

yes, poe is great

and yea, will need PoE for APs too

https://mikrotik.com/product/crs328_24p_4s_rm

works out at £531 for the same stuff that'd cost me £1167 over at unifi

guess I gotta hit up some youtube and investigate the microtik side of things 🙂

and mtik is Latvian, so probably no NSA backdoor xD

don't suppose the firmware is open source, I can dream

@wheat solstice sadly no

that's one thing that annoys me, I'm moving from a nice open source router to a proprietary one, I hate that as a thing

RouterOS is based on some older version of linux

but its pretty much in house

but it does have an API

and scripting capabilities

I see, not as bad then, assume you can SSH into them and do things too if you want

you use their config tool Winbox

but they also have cli

winbox is just a graphical shell around the cli

😂 they only have a Windows version of this software?

winbox runs on wine just fine xD

https://i.imgur.com/BWmRE2K.png

it just has an oldschool look

yea don't mind too much it being oldschool, just a bit bad that the software isn't ported to Linux, especially considering it's a tool for network admins, who tend to be the type of people that run Linux 😂

well, its using linux internally

and you can install RouterOS on x86

just need a license

I see

the RB4011 is a quadcore arm cpu

but some of their devices use MIPS

mikrotik really caters to the lower and middle segment

they have really sharp prices for enterprise features

I wonder what the pfSense people typically do. I used to run pfSense like a decade ago and it was very nice.

pfsense has one major issue

same with RouterOS on x86

you dont have any hardware acceleration.

the RB4011 can route full 10gbit/s with 25 firewall filter rules

if you do that on pfsense, good luck xD

makes sense

yea, I remember I ran pfSense on a potato and it chugged at rather low speeds 🙂

but 10 years ago that obviously didn't matter much.

I have one of these as a portable router

I have a couple presets in mine, where I can just plug it in

and it sets up a VPN tunnel to my home

Back when I used to travel a lot I had one of the popular TP-Link travel routers flashed with OpenWRT and an OpenVPN client, was pretty cool

yea, basically the same thing, but newer 🙂

but that hAP mini costs $20

and it can route 300mbit/s

3x 100M ports

and it can run off a usb port

https://i.imgur.com/4VmALIo.png

RouterOS 7 will add wireguard support

but thats still beta right now

The other thing that might help me understand a bit more, this microtik router we are looking at - how does it differ from the typical asus router I'm used to? I understand it doesn't have WiFi or a modem built in, but what else?

@wheat solstice most consumer routers are just a bridge, two kinds of interface groups: WAN and LAN

and a NAT between them

it can't really do anything else

port forwarding

thats the only other thing most of them support xD

but thats firewall

makes sense, I mean that's what I'm used to and understand atm

if you have a single public IP

your router will masquerade the connections when you go to the internet

https://i.imgur.com/Upm7dZT.png

if you look at these two rules

general internet, translates outgoing connections

and the other rule, is for port forwarding

what's masquerade? 🙂

You know what port forwarding is right?

yup

Public ip + port -> local ip + port

that's what we call destination NAT

map incoming traffic on port X to IP Y on port Z, makes sense

yeah, NAT is network address translation

so the other way around

so from a local address, over a shared IP to the internet

the router basically connects on your behalf

and any packets that you or the server send, get translated

that's source-NAT

and the technique is called Masquerading

https://i.imgur.com/cg0tGZE.png

we basically need to NAT because we ran out of ipv4 addresses

xD

ipv6 is a whole other story

Oh I see what you're saying, so masquerade is the routers process of forwarding packets back and fourth between the computer on LAN, and computers on the internet

well, I think the last part you said, is a more general description for NAT as a whole

but yeah

yea think I get it

srcnat is for outgoing traffic

dstnat is for incoming traffic

so your screenshot is essentially a port forward for a local minecraft server?

https://i.imgur.com/shakbOr.png

https://i.imgur.com/NSvPA4m.png

first tab is the filter rule

and the 3rd tab is the Action with items that match the filter

Clearly it's a lot more configurable, I just have a little learning curve ahead of me 🙂

and NAT is only a small part of the rest of the firewall

https://i.imgur.com/a73NuIG.png

that's also highly configurable

luckily, default configuration that ships on them

is pretty much set up for a home network

what useful stuff can I do with it that I couldn't do on a typical router? might help me to understand more, it's still a bit of a black box to me lol

and that's good too haha, a default that works and I can figure things out as I go

customize everything that the router does

yea but I'm just thinking a real world example

so it's an actual router not just a NAT device

@wheat solstice best part, routerOS has a single window with the 'normie' configuration

https://i.imgur.com/xM4Qu6U.png

let's say in my example I have a WAN server VLAN

xDD

if you use quickset after doing advanced configs

it breaks your entire install

yay for normie configuration

All my server vms are on that VLAN so I add firewall rules so if case the WAN server get's infected it can't see my home network at all

@wheat solstice I have a public /29 range

@peak cloak ah I see, yea I'd want to do something like that for smart home devices, block them all from the internet and only have them visible to my home server (running home assistant) - does sound like something I couldn't do on a normal router, but which would be useful

8 public IPs associated to my router

yeah you could definatly do that

and I have an isolated vlan for that subnet, each virtual machine on my server has its own public IP

@tame carbon I have a /29 too, although isn't that 5 IPs not 8?

lucky

6 addressable hosts

one of which is your router

but you can use NAT on the router's IP

yea, and one is the gateway

yea

but you can still use NAT on those xD

I don't have any use for the /29...I'm just using one of the IPs atm >.<

took a bit of fiddling to get my boring asus router to work lol

wasting ipv4 addresses /s

@peak cloak they came free with the connection lol, I got the business line since I wanted static IP and 12 hour SLA 😄

someone talked trash to me in #public-chat yesterday

because I was hating on asus

because they build shit routers.

RGB makes wifi go brrr

🤷 mine has always served me pretty well, I think they are probably one of the better "consumer grade" ones, but I am starting to see why these types of router are better

#networking message

@clear igloo and then this happened ^

haha ok that is funny 😂

Also for funny, me and my friends have been joking. The house I'm getting has spotlights in the ceiling, about 16 per room. The running joke is WiFi bulbs 😄

you laugth but that's a thing

li-fi

Lifi

haha

LiFi yeah

So you gonna buy asus routers from now ?

😆

https://www.youtube.com/watch?v=dmEvPZUdAVI

Wd gold worth the money ?

Western Digital Gold 18TB 512MB Sata III WD181KRYZ

If it's not more expensive over a red version then I'd go for it, they are supposed to be better rated from what I can tell

Gold can do a bit more read/write over the red pro and has longer MTBF and minor other spec differences

616$ each

2050 each in my currency

red pro is $610 on amazon so basically same price then

Someone mentioned power draw is a tad higher on the gold though but only by a few watts

Looking for a network card, since I think my MB's ethernet is being dumb?
MB: ASRock AB350M Top slot has a GPU, so all that remains is the lower slot, not sure what the slot is or whats compatible

Bottom slot is pcie 2.0 x1

Any pcie x1 network card should work fine

@ripe coral When it comes to Wireless, look for PCIe Adapters with AX3000 Chipsets

Wired, you want Intel 350 or perhaps an older 82574L Controller. I350 is the go-to

def want wired, but alright

Aren't they still expensive as heck?

N adapters alone are still $13 or so

Can someone give me a run down on how to set up ftp connection for my Minecraft server

what operating system

because if its linux, you can just use ssh

on windows, idk

Windows

10 64 bit

set up ftp?

Yh

or connecting to an ftp server

Yeah that lol

How to make my rack look better

The ups is massive it lasts about 3 hours

I’m new to this

just download filezilla and connect

looks good already

Ok thx

Ok I just don't know if ups is big enough or get a second one just for the server

there are also other ftp clients

I wish my rack looked that good

Thanks stuff cheap because I'm an electrician just get it from the wholesaler that's why I have such a big ups

nice

ups's are expensive

Yeah that one was even 2 Grand just for me it's normally about 3 grand msrp

I don't have a ups

Too expensive

Just a kid

I have 2.2kw ups for 90€ from ebay

I wouldn't trust ebay for batteries though

that's the thing

Well yes batteries are death

One battery is 60€

Im looking for "cheap" nexus 5010 for home use

why tho

isn't it like 24 sfp+

10gbps network bro

you need that many ports?

Yes and nexus support extenders

I have 48 port cisco now and 24 ports is in use

wow

I mean 24 isn't that bad

but like THAT many 10 gig devices

My LAN gor brrrrrrrrrr

@peak cloak i use pfsense for router

oof

I don't like pfsense

Well i need better router so i build pc with sfp and rj45 cards

Why?

no hardware accelertion

not power efficent

just get a dedicated router with an OS tuned to the hardware

🤔

new gear for starters. that switch is from 2006

might even be older

@peak cloak quad core pfsense seems to work for me though I don't have a gigabit line to test

I mean you could test local routing perf right?

Across subnets

Does that require more than the router itself to do?

well router and 2 devices

I mean I guess I could open laptop and desktop and test

Yeah hmm

I should test that

@hardy sandal I have a $190 RB4011

10gbit capable router

https://mikrotik.com/product/rb4011igs_rm

pfsense is really inefficient for high throughput routing

https://mikrotik.com/product/ccr2004_1g_12s_2xs#fndtn-testresults

that completely mops the floor with any pfsense box

Hi guys. My friend is new in networking and I am trying to explain him connection between application, ports, IP, MAC and internet interface. Does anyone of you have any charts which I could use? I know mr google is helpful but I need something which is not oversimplified.

invite him here

also

the osi model

He is already asleep. GMT +1

Ah alright

He knows osi. But he has problems to understand connections between layers. The chart I would need had to look something like this

this is good

basically everything gets stacked on top

routers for example modify the MAC header

and routers that do NAT modify the IP header also

Yeah. That is not bad.

Its complicated since teacher doesnt care about people which arent tech dedicated.

what class?

networking?

Mechatronics. Basicly from ground up HW level to software level.

ah

I'm a HS junior for mechtronics as well

although we don't do anywhere as depth

I just like networking and learn it by myself

yeah.

Too. I love pcs since 12. After 9 years I can surrly tell. There is so much stuff to learn in pc... Its almost impossible.

yeah you can never learn everything

it's too complex

@peak cloak Anyway. Thanks for help. I will try to make it to good use.

np

I know layers 7, 6, and 5 all happen basically at once in the entire data PDU process. Makes sense as to why the other layers are the main focus. 🤷‍♂️

yeah

the upper layers are just part of data

Yeah, I mean, it has to happen at once when you think about it. If the session between nodes is established before the security protocols can take action, then the session can never be secure. Its compromised right from the jump. So it either happens all at once, or shouldn't happen at all.

It doesn't though

@peak cloak this is opnsense routing speed, wifi-to-wifi clients, across subnets

I dont have any wired clients... well not available rn

Mikrotik Routerboard is good?

Hello guys I'm trying to build a cheap server for NAS and plex
Maybe hosting more stuff on it and i found this
Do u think it's good cus im not experienced with xeon

link?

yeah, a link would be helpful

E5620 2.56GHz işlemci + Turbox x58 Anakart +8GB ECC Ram+Cpu Fan 999,90 TL yerine 939,90 TL
https://urun.n11.com/sogutucu-ve-fan/e5620-256ghz-islemci-turbox-x58-anakart-8gb-ecc-ramcpu-fan-P473828795

wait

that comes with a mobo, ram, cpu and hestasink?

if that's the case

it does not look very attractive

te heatsink looks trash

and 8gb ram is not enough for seamless plex streaming

I have a 212 fan so i dont really care about that one

ok

maybe upgrade the ram

do you need 10gbe ethernet?

No

1gig is enough

ok

Why i need more ram?

then the mobo looks fine

I am a bit skeptical about the ram though

16gigs is perfect

8gigs is not enough

I found another combo with 16 gb ram and better cpu

link?

But it cost 180$

the other one?

X5660 3.20GHz işlemci + Turbox x58 Anakart +16GB ECC Ram +Fan 1.499,90 TL yerine 1.399,90 TL
https://urun.n11.com/sogutucu-ve-fan/x5660-320ghz-islemci-turbox-x58-anakart-16gb-ecc-ram-fan-P473829123

because I am not familiar with the currency

Yeah that's why i mentioned the price

First one is 120$

this looks way more perfect

the second one

If you can afford it

go with the second bundle

I dont think the cost is justified but again I dont really know much about xeon

the fisrt one is fine

What i need is a nas to backup my data

4 cores 8 threads

Yeah

at 2.4GhZ

it's enough for plex decoding

at 1080p

but it has a 80w TDP

that's why I am concerned about the cooler

It's also an old model

with only DDR3 support

so you eill have trouble upgrading

Should i find a core i3 or core i5 for example 2nd gen instead?

If you eant just plex

then an i5 would be an option

It's mainly NAS and maybe plex

hmmmm

I f you are on a tight budget then go with a an i5

maybe a second hand i7 4th gen

That cost a lot

second hand i7-4790K

I think they go around 80 dollars

Yeah about 280$ with the mobo

Is that ok?

No that's a lot

then go with the second bundle

Still need ram and the drives

go with the second bundle then

and then the drives

212 supports that cpu?

Coolermaster 212X i think

check coolermaster's docs

I am not sure about that

but on the second bundle, the cooler is ok

Ok i will check its manual

Thanks for the help

no problem

stay safe!

@hardy sandal I'm a big fan of them. They have very good prices for the lower and middle segment

a 10gbit router for under 200 bucks, yeah. beats what you can build on a budget with pfsense

and the software, RouterOS has quite a lot of features

@sullen elm I self assembled a small server with a Ryzen 2600 on a mini ITX board

@tame carbon whatabout cisco ?

@hardy sandal much more expensive

their high end routers make little sense for SOHO environments

even their small business solutions are "Request a quote" or "Contact sales"

@hardy sandal my views on this are biased though. I prefer cost effective solutions, and mikrotik is king for me in this regard

cheap, fast, reliable and tonns of options

come on now, an ASR9922 is perfect for a soho environment

Heating and internet all in the same unit!

@clear igloo you can just use a pfsense box instead

cheaper, same BTU output

get one of those DDR2 xeons

lol, but you can't do 400g on pfsense

xD

Gotta think about the sales people man!

I wrote my resume today

first time in 3 years that I had to update it

Yah, I need to update mine at some point

Well, congratulations then

the flex is real. I listed a bunch of companies that I do work for on my own

even providing "Fiber optic internet service"

Which is true to some degree

If I didn't get my gear for zero cost as part of work I'd probably be mikrotik myself, no way would I pay enterprise prices for home use, lol

Did you add, chief network debugger at the LTT Discord server?

that's not me

if anyone that would be Jakkuh

since he's the only LTT guy who shows his face around here

enhancing your resume is good. Just don't listen to any recruiters who say "{technology}, you've heard that word so put it down"

Okay wrong use of words

@clear igloo I called them up yesterday, spoke over the phone with the boss for 10-15 mins

they look for java developers who came into this job through hobbyists experience

and I started at age 15

That's awesome

so I'm the kind of person they are looking for

Wait- 15?

@thick minnow ya

Okay then

i wanted to study electrical engineering first xD

programming was just a hobby

I started dabbling in programming around that age too, I was going to be a game developer at first

games never interested me

I'm more interested in the nitty gritty data stuff

servers, backend services, middleware

Thankfully DeVry was such a massive pile of teaching I stopped halfway through my degree and left that behind. Of course years later I'm now doing python programming as a network engineer

@clear igloo and i fully understand for them to ask for developers that made a job out of their hobby

because the people in university were people with windows on their laptop

and 0 programming experience

60% dropped out the first year

Sounds about right

the best students are the ones who are a gigantic nerd before they started university

they suck at business courses and design

and excel at coding and architecture design

they can see the bigger picture far better

@clear igloo oh, new caliber of scam attempts

I get an SMS now from DHL

saying that they have a package for me, and a url I need to visit to pay for the delivery

HA!

phone number starts with +31 6 which is dutch mobile phone

and the webaddress isnt even DHL

😹

Well, my domain admin account uses a password that's easy to find in dictionary. I should change it today

lemme guess ||password||

All changed now c:

admin!

im gonna qrencode my password and get one of these https://www.ebay.com/itm/BAOSHARE-QR-Code-Scanner-Wired-1D-2D-Handheld-USB-Barcode-Reader/133685123442?epid=18033752908&hash=item1f20411972:g:hOQAAOSwJVxgRFys

no fuss no muss

might as well just write the password on a post-it note

and stick it on your monitor

yeah but what if it's 250 characters long

also that may or may not have been a joke

lol

but doesnt WEP and WPA both have password length limits

mh

it does

suspension of disbelief ruined, i formally retract my "lol"

63 characters

lol but what if

that was hex characters encoded into base64

xD

USAA's online banking app still only allows passwords up to 12 characters

arbitrary limits

and ive been giving them grief about it for several years

who gives a shit about pw length lmfao

my systems would support passwords up to 1024 or however much ram

it's a holdover from ancient encryption standards that broke if you use more than X characters

since I only store hashes anyways

them setting a 12-char limit

sounds like they just store password in cleartext.

dunno, i give them the benefit of the doubt... partially because i don't want to believe anyone is that stupid, but partially because i do all my banking with them

there's usually a test for this kind of foolish system

if you request a "Forgot password"

and they email you a cleartext pw

thats instant red flag

no, they don't do that, they do a normal reset link

that's a huge red flag, yes

site that do that, i stop using right away

sites like that belong on the wall of shame

https://plaintextoffenders.com/

they may as well just display it on the web page

Hi is anyone familiar with setting up a domain and setting up your ip for Minecraft server? It shows the server is online but times out when testing domain

The supervisor does that with some passwords

But idk what systems they access. I doubt anything critical

@thorny hill domain names merely resolve a name to an IP

all you need is an A record that points to your IP address

https://i.imgur.com/bYn4TEJ.png

WTF.

https://i.imgur.com/pSTiK5t.png

thank you. i had that. I guess the provider just needed time to get everything updated and it is working!

@thorny hill yeah DNS can take some time to fully propegate

Was about to ask how to figure out why I can't access a website but think I just realized something, it's PIA VPN's DNS servers probably blocking it. How can I access this website without disabling PIA?

Actually, what DNS should I be changing to that works with PIA and won't leak?

What cable is rated at 1gbps

cat5e and up

ok

I would use cat 6

yeah i new that would work im going to by 1000ft of cat 6

umm, 1000!?

gig ethernet only supports up to 100 meters aka 300ish feet

xd 1000 meeters total it is a 16 poart swithc

ahhh

yeah

I have 1000 foot roll of cat5e

regeret I didn't do cat6

and im prety surer it is cat 6 1000ft for 10gb

?

wut

for 10 gig it's even less

ah

55 meters

ok

and for 10 gig you might as well just do fiber

cat 6a is lots cheper than fiber

umm not really

but fiber got the transivers

copper 10 gig end recievers are expensive

10 gig transceivers are cheap

I would say the sfp+ pcie cards are the most expensive

also good luck finding a cheap 10 gig copper switch

283.99 for modem switch cable and conectors

modem?

for 16ports of 1g

modem

why modem?

why do you need a modem

because im not using the router from my isp to run a 1g switch and i kinda need a conectoin

ohhh you are talking about what you are using

@tawny hemlock you need a router too

i have a acses point the modem is to the osuside world

yes you still need a router

why

ok, let me explain

an aces point is just a router but no modem

so you get one ipv4 IP from your ISP, a router NATs that one ip to multiple IPs for your LAN among other services like DHCP which hands outs ips. For ipv6 it routes between the 2 subnets and does router-advert

no

An access point is just for wifi

You still need a router

I have an ER-X

no wifi

just a router

mikrotik's HEX-S also seems like a good choice

yeah you said that's an AP

you still need a router

that's a wireless router then

you would need to route all your traffic through that

Yeah it is i thought it was something totally different my dad bought it without nowing anything about networking

yeah I have an AP for my wifi, this one to be exact https://www.tp-link.com/us/business-networking/ceiling-mount-access-point/eap225/

Can you send me the neweg link to to yours

why?

The router

oh

ER-X is kinda advanced
https://www.newegg.com/p/0XK-01GF-00001?Description=er-X&cm_re=er-X-_-9SIAS71CCT4088-_-Product

I'm doing this all on rack shelf

ah nice

mikrotik also has some nice things

their Hex-S is also nice

although none of these routers are simple

Ex:

and if you want to setup ipv6 for example you need to use the cli

Yeah lol so two ap router modem switched cables wall plates conectors and switche 419

@tawny hemlock those mikrotiks allow you to configure multiple access points as a single network

and you could have a single router like the hEX S as a controller to those APs

each cost around 60 bucks

and you can just add as many APs as you want

even configure guest networks and such

unifi does this too, but mikrotik is a bit cheaper

@peak cloak and dont forget to make an ipv6 firewall

😄

ah yes

I did that

latest tplink stuff can do it too, Omada or Omeda I think, but who cares xD

i didnt and then one day thought about it and was like OOPS

if you install the v6 package on mtik

you also dont have a default fw

?

one of these: https://cdn.discordapp.com/attachments/387022787480387605/818912747520524328/1539_hi_res.png

and many of these ^

plug evrthing ito the swtich switch to router router to modem

for a flat network yes

but that's as basic as you get

@tawny hemlock depending on the modem you have, you might be able to disable its router functionality and use it as a bridge

in that case, you can enter your ISP's credentials in the router itself

and even control your own firewall

because the built in ones from the ISP are total shit

if it's PPPoE only

yeah PPPoE

usually it's just DHCP

though some cable modems also support bridging

it is staying at my parents house when i move out dosent need to be that fancy

I mean, how much coverage do you need?

if you need multiple access points and want a reliable experience, those mikrotiks are best value

unifi setups are very expensive

https://mikrotik.com/product/hap_ac2

you could also get one of these

it has an internal wireless as well

1788 sq ft

I mean so is mine but mines's kinda advanced with vlans and all that

@tawny hemlock mostly matters how many rooms you have

but not as fancy as blob's lol

walls are your enemy

if you didnt have walls, you could put one ap in the middle

and have coverage everywhere

1788sq ft isnt a lot

ideally you just want the APs near where you are most likely going to use it

1 or 2 ought to do it

with $120 you'd be done

get a hAP ac2 and a cap ac

yeah ill do 2 ap one on each floor because it will be fine in my room wich is on floor 2.5 will be fine because i use lan most of the time

can you run cables?

like, these cAP ac's are relatively cheap

and they support PoE

if you have a PoE capable switch, you dont have to plug in adapters in the AP

easier with ceiling mounts

ceiling panels are the best

cus you can just toss the AP on top of them xD

love that in office areas

the ap come with a peo injector

https://i.imgur.com/qJJm7JY.png

yeah

but a PoE switch could reduce cable mess even more

they would have it built in

but if you dont mind having a couple of those injectors

they just use DC

one stipulatoin it needs to have a us wall plug

if you order mikrotik in US, you probably get one of those yeah

they are an EU company

how much are they per ap

https://i.imgur.com/rR0n9J6.png

https://mikrotik.com/product/cap_ac

those things can also function as a router xD

they only have two ports though

they have a quadcore cpu onboard :P

a very bad one

1.9gbit/s ?

I mean

its ment as a CAP (controlled AP)

huh

but it can route xD

https://i.imgur.com/UjHJKA6.png

so you could get two cAPs

or a cAP ac, and a hAP ac (it has more ports)

this guy has same routing speed as those APs

it also has wireless

but it has more ports

and a VPN accelerator chip onboard

i dont need the fancy gear

@tawny hemlock this thing costs $69

same price as the APs

just saying, you can mix and match.

but if you just get one device, then I would recommend the hAP ac2

https://www.newegg.com/tp-link-eap115-v4/p/0ED-000J-00027?Item=0ED-000J-00027

what kind of net speed do you have?

and I don't touch tplink stuff with a 10 foot pole

I've thrown away 3 tplink routers so far

tplink business stuff is fine

I have it

no issues

works perfectly fine

These are 2.4GHz only APs too

not dual band

the max i have seen is like 200mega bit ever

it dosent matere very few of the devices that wouldent be lan that could take advantege of 5ghz

at close range you benefit from it

get much higher datarates

the EAP225 is 5ghz

that's not what he linked

https://i.imgur.com/RrJEscR.png

yeah im beeing cheap

https://mikrotik.com/product/RB931-2nD

$20

has all the features that the big beefy routers have lol

I use this one on the go

for when I need to share my internet on phone with multiple devices

powers with usb

bru wifi 4

lol who gives a crap

it has 3x 100M

its $20

and 2.4ghz only

but it has 3 ports and can route at 300mbit/s xD

and has all the advanced features of routerOS

@peak cloak I'll consider tplink, once they publish actual bandwidth tests on their devices

they don't put the max throughput on the tin.

https://www.newegg.com/netgear-gs305-300pas-5-x-rj45/p/N82E16833222039?Item=N82E16833222039

thats an unmanaged switch