#networking

ah preconfiguring

oh

good practice to do tbh

yeah so I assume you would want to NAT that IP?

so yes you should be able to route via interface then instead of IP

how would i do that then?

idk myself

cisco specific I have no idea I've only touched a cisco switch once. But generally you can build routes saying any traffic coming from "X Lan" or vlan tagged with "Y" can be routed to wan0

where wan0 is the interface

wait do you want to just route a subnet or NAT?

i think this switch has no "wan" or "lan", just ethernet that you have to configure to inside and outside

i think NAT

yeah no switch has wan or lan

i found this https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipaddr_nat/configuration/15-mt/nat-15-mt-book/iadnat-addr-consv.html

I thought he said it was a firewall

this has to be a separate lan network with access to internet

yeah so NAT, that article I think has the info you need

correct

it's not the IOS firmware though

it's the ASA firmware

it might still be the same but i'm not sure

probably similar but yeah not the same

ah

tbh I thought all cisco stuff ran ios

@late geyser https://www.cisco.com/c/en/us/td/docs/security/asa/asa90/configuration/guide/asa_90_cli_config/nat_objects.html

found this

hm

i think this firewall uses ASA 7.2 though

https://www.cisco.com/c/en/us/td/docs/security/asa/asa72/configuration/guide/conf_gd/cfgnat.html

this is what i found myself

no wait i'm on 8.2

so do i use static nat for this?

I'm not 100% sure but I think dynamic with NAT overloading?

i can't make heads or tails of this document

this is a better page https://www.cisco.com/c/en/us/td/docs/security/asa/asa90/configuration/guide/asa_90_cli_config/nat_overview.html

what do i input in my screen to make it so that everything on port 1-7 gets routed to port 0

keep in mind i do not know the IP that i will be given, nor the range of it

you make your own IP range on your LAN

what did they teach you in that school?

i will be relying entirely on DHCP of the company's DHCP server

well you will also need DHCP on your own LAN end

not Cisco or other networking stuff

i already set up my DHCP range, lease and DNS

ah cool

so, what now then

all I know is mikrotik, and there, you just use NAT for all traffic outgoing of the WAN interface

technically this isn't even what i'm supposed to learn

linux iptables is the same way

@late geyser you can just tell your co-worker you can't figure it out?

I mean, thats what coworkers are for

ok so I think you need Dynamic Port Address Translation

aka PAT

A group of real IP addresses are mapped to a single IP address using a unique source port of that IP addres

idk

lol that's quite the meme though

but then again idk

tell an intern to configure a Cisco router

is that what an ordinary house router does?

i think i have to pretty much do that

@late geyser source-nat

again, all i need is an internet connection

I AM THE INTERN

https://www.practicalnetworking.net/stand-alone/cisco-asa-nat/

@late geyser thats why its such a meme

because for someone with little experience on cisco, this is a nightmare.

ah

I know people who work with cisco for a living. They also say it's a nightmare 😆

I much prefer RouterOS :)

https://i.imgur.com/s3HVA6x.png

that on mikrotik routers?

https://i.imgur.com/e8Qno2Y.png

routeros has a gui?? thought it was cli only

@honest wind Winbox

the GUI is basically the same

ah ok

this doesn't look like DHCP ngl

@late geyser NAT is firewall.

layer 4

DHCP is layer 2

i think i have only 2 layers to work with physically

DHCP assigns addresses on an ethernet network

NAT translates addresses between two IP networks

If you want clients on a LAN to use a shared public IP

the router will use source-nat with masquerade to translate outgoing traffic

port forwarding would be the exact opposite, that's dst-nat

hmm

@late geyser you basically want source-nat for all traffic from LAN -> WAN

this is before the router makes a routing decision

traffic is still destined for 0.0.0.0/0 for outgoing

so far i've made a network object in that case

which is whatever gateway you get through DHCP from your ISP or upstream router

called Routing

idk how to work cisco devices

its black magic for me

routers and such in general are that to me

i mean i know how to configure my ISP's router, as well as my TP link router

but both have a GUI

TP link even has an app

If you can grasp RouterOS, IOS is easy peasy

well this aint IOS

this is ASA

terminology is overcomplicated

but that's just me

Nah nah nah. I love RouterOS but it definitely over complicates some things.

RIP, one of the few OS I refuse to touch

@hollow marlin like manually dialing in 2.4GHz frequencies xD

it doesn't know 1 6 and 11

I had to look them up xD

VLANs is all I need to say, especially between switchips

so should i do this?

Thats super basic, what did they teach at school

I assume this is for NAT then?

how to configure a basic ass router

yes

@hollow marlin he wants to set it up for SOHO

single public IP, LAN with DHCP and SRC-NAT

Yeah you are going to want to specify the inside and outside interfaces/subnets

aka some shitty 2.4 ghz only wireless router

@late geyser consumer routers suck.

they are very very limited in features.

i already assigned the interfaces, or rather, Cisco did it by default

@honest wind you asked about the GUI: https://i.imgur.com/r3tIYfP.png

my TP link router is fine

@honest wind that's the equivalent of /interface print

my ISP's however, sucks

and very limited

@late geyser even tplink sucks.

their routers at least

i mean i'm using mine as an access point

so idk lol

tplink isn't bad for a consumer router

GUI for realtime info, CLI for all else. Don't be barbarian

What issues are you running into at the moment?

anyways i have set the DHCP range to 192.168.1.100-192.168.1.227

@hollow marlin I basically use the GUI to look over configs that are present. CLI the moment I need things to be reproducible or mass-deployable.

But you can always export your config :D

i just don't know what to do

He basically needs to NAT one ip on the "WAN" inferface to the rest

@honest wind those 400 buck 8-legged routers they released on the market recently. They claim them as being capable of 2.5G, They even put a couple 2.5G ports on them.

@honest wind but benchmarks suggest a completely different story. They bottleneck at around 1.7G

So LAN is set, DHCP is setup, NAT inside/outside is setup, now is just the firewall policies

no i haven't touched NAT yet

i'm at that part now

meme answer: pay cisco for a certification course 😆

why do you think lawyers still exist?

same trick

;)

thoughts on edgeos?

too edgy

So I am not sure if this applies to ASA but with IOSXE/XR/NXOS, they need the overload flag. Essentially sets it to PAT

nice

welcome to another round of "no one knows how to use Cisco systems"

including me

Nah just do what I did and have work pay for the certs

Yeah I was looking at that and I thought overload was needed

so uhhhh

how

do i do that

true 😄

i know one of my teachers also teaches Cisco and has multiple certs

should i just straight up ask him how the hell to do this?

thats the point of an internship no?

to learn something from people who have experience

imagine making a product so confusing and undocumented that you need courses to learn how to use your product

i'd expect him to just say "nah that counts as cheating go figure it out lmao"

Let me do a google, they promptly forget ASA syntax

why would he?

That's true for a lot of stuff?...

A lot of programs, hardware, etc....

aws is another big one

You train to learn how to use them

they at least have a lot of docs

microwave clocks

actually with microwave clocks its cause no one reads the manual

but that's usually well documented 🙂

meme answer buddy

nah

there's a lot of stuff that has certifications ¯\_(ツ)_/¯

people need to RTFM more often

shhhh I take this one personally because I spent 30 mins updating mine last weekend until I read the manual

lmao

i can do mine without the manual

Cisco, HPE, Aruba, AWS, Azure, GCP, Microsoft, etc

it's just that every time i did it, the power was lost not that long after

so i just stopped bothering

that's me if I set my oven cclock

so same

There's so many parts, you can specialize in specific parts of their products

anyways

NAT

how

I got a weight driven pendulum clock. That thing is great

what do i put in at this point

we do NAT know how (sorry pun)

@honest wind Newton was wrong

i'm running on coffee fumes rn

i have no focus to keep reading a manual that looks all alien to me

first internship, I had to implement a SOAP API

worst 2 weeks of my life

who uses soap though

everything is rest

Governments.

Smart meter integration

go wash your hands right now

Worked for a company that did telemetry for public infrastructure

hahaha nice

traffic lights, street lights, sewer systems

xml 🥴

I need to find a senior internship for next year

json ❤️

ikr

json ♥️ yes

@rocky badge it was such BS. You used a library to normalize the XML, so you can create a digest and signature.

RESTful ♥️

raw sockets and data streams ❤️

The entire SOAP document was a body and a header that contained the signature and certificate

and everything had to be audited

because governments.

@late geyser

(config-network-object)# subnet 192.168.1.0 255.255.255.0
(config-network-object)# nat (inside,outside) dynamic interface```

so i type out those things in the router like that?

Try that and see. Not seeing that the outside interface is to be defined

Yes, just everything after the #

i do get that part yeah

@rocky badge yeah. thats what I did lol. the program would fetch data from the central access server using SOAP.
Data it retrieved was stored in OracleDB.

Internal applications would then use a REST API to query this data.

🥴

Oracle also yikes

not my choice!

I had design constraints.

unpopular opinion here on LTT..... but MS also yikes

not in here

gaming obviously is excempt

oh nice

linux is king ❤️

this gave me an error

depends on who you ask tbh ¯\_(ツ)_/¯

hm

❤️ yes

Do you guys know the process of updating PFSense, have 2.4.4 and newest is 2.5.0?

what error

i seem to be doing something wrong

I have a 2010 mac pro running ubuntu xD

I'm fine with Windows for my desktop

Since I can use wsl

invalid input at the b of subnet

brb

Does everything I'd need Linux for on my desktop

I use my desktop for gaming. I have MINGW64 to use GNU tools

WSL is completely broken for me

Sounds like a you problem then

@hollow marlin that's the subnet of the internal IP range, right?

I got my laptop on my desk, I can just ssh into there

Did you setup the Route in Route list?

Yeah, you want to specify the internal

WSL2 is so much better than just SSHing into a host

i'm in Router(config-network)# btw

no no wsl2 is so slow for me

My local drives are mounted and networking is handled for me

Lol WSL2 is so fast

not for me 🙃

not sure why it isn't Router(config-network-object)# though

I have worse IO on WSL2 than on WSL

eh whatever i'll ask again tomorrow

fast for me on am 8700K ¯\_(ツ)_/¯

time for leave

but I refuse to use that buggy excuse for a virtual machine

3700x and nvme drive for me

And nvme ssds

my sata ssd mac pro is faster

sata2

I can have multiple visual studio code workspaces open via WSL2 at once and don't feel a thing

its literally just a vm, so not much performance impact ¯\_(ツ)_/¯

the performance inside the vm itself is slow

you sure you have virtualization enabled?

yes

wsl / wsl2 wont' even work w/o it

it's ok I don't do anything important on this desktop anyway, just games and discord

Yellow: Internet coming into my house
Blue: network switch
Green: router
White: my computer

Would this work, or would my internet have to go through the router 1st?

And would this bypass the APP my parents use to track internet usage (from my IP)

no

needs to go through router

to route from the one IP you get

unless your ISP is really badly configured

For this, couldn't you just use a VPN?

Internet still goes through the router regardless if im doing nothing or Using Tor + Tails + VPN

Internet useage as in: When my computer requests internet access

Well, I don't think there's anyway to bypass that without tinkering with the software itself

Yeah, only way to bypass it is by breaking AES 256

why would you put your computer right on the internet too.... put that behind the router xD

should be
internet
-> router
-> switch
-> device
-> device

oh wait in terms of tracking usage. No, they count the bytes, a VPN you just send encrypted bytes, which is still traffic. They won't be able to see the contents though

Yea, I got that, thnx anyway

I had an isp once accidentally give me a gigabit instead of the 30 mbps 😆

or basically the entire building got a shared gigabit connection

instead of each apartment having a throttled connection to whatever they paid for

That must be nice

@honest wind I can actually see the bandwidth shaping that my ISP does

if i do a speedtest

it was for 3 months until they fixed it lol

it jumps to like 600mbit/s

before going back down to 250

i've got google fiber now, so I get around 980 down and 900ish up

on a bad day I can drop to 700 up

dedicated internet is expensive

70/mo

lol

AAAH

NO

geezus

https://i.imgur.com/Lq7l8em.png

you get a dedicated fiber line to their switch/router

no PON

I think

I'll take my 100ish mbps fluctuations for 70/mo xD

@peak cloak then what is it that i Have?

Its single mode fiber here, no PON

if I move I'll want to try out starlink

I just get my service over a VLAN

well I think it's a bit different too

idk specifics

This is an FttH connection, but they don't use PON

Also in their internal network

Then its AE (active ethernet)

and ddos protection, etc.

@hollow marlin but isnt this even done in transit?

DHCP service on a vlan

Very common way to connect two networks

AE is almost identical to just using a switch with per-port fiber runs to homes. There is just included provisioning and management involved

@hollow marlin pretty sure my fiber terminates in a small exchange hub

google fiber is offering 2gbps to my place now but only 1gbps up

because this fiber network is used by 5 different ISPs

but I'd need to get a new router and swtiches and move everything to be better than gigabit

so I can wait

Yeah its still the same. Without further details, its most likely AE

There is really only 3 ways to effectively provide FTTH, any flavor of PON, AE or MEF

MEF?

Metro-e

I wish my ISP did AE lol

I have been noticing many ISP are slowly testing the waters pulling AE out and replacing it with MEF. You lose the automation at the access device and move it further in the network

We have a pretty even split between AE/GPON

But tbh GPON has been fine

@hollow marlin so what is Metro E? a technique to multiplex a single high speed fiber into many smaller ones?
And then delivering ethernet over that?

No thats PON. Metro-e is just easier manipulation of VLAN tagging such as QinQ, normalization, isolation, etc.

so each Client <--> ISP is its own ethernet domain?

Yeah PON is using time division to split the signal for ONTs iirc

AE/MEF protocol wise really are not much different technically

right

so seems more like a difference in architectural viewpoints

AE and Metro E it's basically like plugging into a port on a switch but with different management, iirc lol idk

Exactly

With PON you only need a port for X number of customers, because it's then split using a splitter

@rocky badge really? I thought PON used some kind of wavelength multiplexing

But AE/Metro E you need port/customer(connection)

didnt think they would do time slicing

GPON uses TDMA

It's like DOCSIS in that case but over fiber

WDM is wave multiplexing. DWDM/CWDM. PON is TDM. Each ONT gets a timeslot to transmit/received based on their configuration

@hollow marlin wikipedia says that Metro E is often deployed as an MPLS network

WDM is typically used with backhaul right? And not to end customers

You can rent a wavelength

Since you likely don't need that kind of bandwidth and price in consideration

Kinda sorta, but that statement is mostly incorrect as metro-e was focused around non-mpls networks

Capsuling protocols, such as Multiprotocol Label Switching (MPLS), were also deployed to address the drawbacks of operating L2 metro Ethernet rings.

ah yes

Mostly. Some larger customers can request a dedicated wave but mainly just for transport

X-connects and such

two datacenters may already have a fiber. I'd assume they would allocate a wavelength instead

Yeah

DWDM is getting relatively inexpensive so its becoming more common between sites.

I know my school has some from Spectrum

:D you can buy 16 channel muxers from FS for only like 500 bucks

For site to site

those WDM fiber modules are expensive though

hub and spoke but with actual fiber lol

Those are probably passive MUX at that cost. Active DWDM is quite expensive but mostly not needed

And not VPN

Thats exactly how is used in a lot of cases. The MUX is the hub

@hollow marlin they are passive. They dont have a power plug

they have a Line & monitor port

and then a bunch of channels

Yep, pretty much is just a prism in a box

and I think it was CWDM

Yep

Yeah lol

although the school doesn't pay Spectrum directly nor do they use spectrum services directly

ENA provides the IP transit and Spectrum is just who they use in the area for fiber

Our transport is all DWDM between to geographic paths with another backup-backup path through dark fiber which they are also using DWDM

Then they all connect back to a switch & asa for routing between sites

https://i.imgur.com/aUqsXG5.png

The biggest benefit is the throughput but also the range of the optics can easily go 80km+

3 asas handle the routing lol

Idk how long the longest fiber is

So stupid. I don't understand why routerOS doesnt have a list of frequencies

That's on spectrum to handle

but they expect you to dial it in by hand..

they have the list of frequencies only when you are not using capsman

frequency is a drop down when you aren't using capsman

@hollow marlin I wonder what the school will do for the new school they're building behind an existing school

Are they gonna get another 10 gig line directly to the hub or just piggy back off of the existing school 🤣

@tender hazel curious. https://i.imgur.com/NNdVUQL.png

Reason is CAPsman does not know what the client CAP will be. Could be US/International with different freq. Think of CAPsman as a template

yup

isnt 2.4GHz - ch1 same ?

what I usually do is log into a device that isn't set up as a CAP to look at the wireless list

That cost adds up so fast, especially with Spectrum

It does....

$650k/year for the existing s2s fiber service

Yeah thats about right

Although that is before E rate

Iirc

So it doesn't hit too bad

@tender hazel Naming seems to be a very important feat. The moment you have a bunch of CAPs in the list

E rate pricing tho 😂 $60k of equipment for like $7k

would be cool if those APs had some kind of GPS receiver

Its OK, your taxes are taking care of the cost

so you could generate a map

😂 yeah

All the LTAPs have it, im sure some some of the wireless stations do

Does the Metal 52 have a mini PCI slot?

my favorite is 2 cups and a string

@hollow marlin I don't know. Its entirely sealed

and I dont want to remove the bolts from the enclosure

it has only a single port

ethernet/poe-in

and a reset button

at 5GHz, its very fast

at 2.4 I squeezed around 80mbit/s per client

but that was at 20Mhz

Quick google says it doesn't have one. If it did you could slap the GPS module in it

anything above 20mhz 2.4

@rocky badge not gonna do that no

the area I am deploying wireless in, will mostly be sector antennas

and as @tender hazel said if you dont want overlapping channels, you shouldnt use 40Mhz

those mANT AP's I am most likely going to end up buying

have dual band

and with a 90 degree angle, we an just put a pole every 60-70 or so meters with two sectors

Tell that to my neighbors

@rocky badge

I have no overlapping channels here

there's three APs here in total on 2.4

Not much traffic lol

Haven't been home 👀

there's at most like 5 clients here

not very dense

but the place I will be deploying wireless in, is gonna be busy

Nest

Easy for parents

If it was my house it would be Axis

Or LTS

I wanna set up a thermostat where instead of a heater, it spins up a few bitcoin mining rigs xD

ez

one taketh 1 stm32 microcontroller and an spi ethernet adapter, an NTC and a resistor and hook them up to the adc

and like less than 50 lines of C code

to make a little web api

webserver with a temperature sensor.

or use a raspberry pi that I already have sitting around

then hook into a web api to trigger the miner

raspberry pi gpio doesnt have an ADC

its only digital

they make thermometer attachments though

I broke my Raspberry pi

@honest wind all that is, is an NTC or rather, a resistor with a resistance that changes due to temperature

and an ADC turns analog voltage into a digital value

I sent 12v through the 5v gpio and that's how I broke my pi

isn't that all I need? end goal is to know the general temperature

It started smoking

@honest wind another easy way would be

Mine melted

yikes good job. My cat broke my pi once

Tasty warm pie

@honest wind buying one of those breakout boards with one of those integrated circuits

I got it on video too

they measure humidity temperature and atmospheric pressure

I do want to build a weather station w/ an rpi and have it update live stats to a website

usually they have an i2c interface

4 wires

@honest wind I've done this on an arduino lol

with ethernet

wrote a minimalist HTTP webserver

with like less than 40 lines of code

it was basically was just a tcp socket

temperature, wind speed, wind direction, rain?

got code / hardware list you used?

this was from a school project lol

but sure lemme dig

its quite messy in some places :P

limited program memory

makes you pull some strange tricks

lol yeah

might be worth revisiting and making cleaner

also work on solar + 4G to report back to a main website

@honest wind have you done microcontroller programming before?

electronics aside, its all very simple

very little but i'm familiar

and most of the time you can find examples for how to wire something up

I suck at designing my own circuits

I've actually wanted to play with freertos a bit, but haven't had a use case to play with

the most experience i've had is doing stuff like neopixels on an rpi

but that's not really microcontroller

I have an arduino, i've done some neopixels w/ that but super basic stuff

@honest wind yeah you can buy err

ENC28J60 breakout boards

8 euros for me

why would I need one?

https://stak.com/ENC28J60_Ethernet_Breakout_Board_for_use_with_Microcontrollers

@honest wind its your own smart home device

it can do ethernet

and do hardware stuff like read sensors

with an arduino

these use SPI

ah I see ok. Could play around with that

that's an interface on the arduino

https://www.arduino.cc/en/reference/SPI

I'd hvae to learn the code to interface w/ ethernet on arduino though

@honest wind you can use the arduino library for that

that's what I did xD

you just import Ethernet.h

my biggest want is a weather station for a model airplane field

that can upload the weather stats to their website

I got arduino to do HTTP post requests

ok laptop is up

all the graphs / analytics can be done on that

hold on

//Establishes a TCP connection to the gateway, and makes a POST request with the data contained.
void send_data() {
  EthernetClient client;
  if (!client.connect(gateway, gateway_port)) {
    Serial.println("Failed to connect to gateway");
    return;
  }
  Serial.println("Connected to gateway");

  client.println(F("POST /api/weather HTTP/1.0"));
  client.println(F("Content-Type: application/json"));
  client.println(F("Connection: Close"));
  String temp = String(weather_temperature());
  String lux = String(weather_lux());
  String device = F(DEVICE_NAME);
  client.print(s_content_length);
  client.print(": ");
  client.println(String(39 + temp.length() + lux.length() + device.length()));
  client.println();

  client.print("{\"Celcius\":");
  client.print(temp);
  client.print(",\"Illuminance\":");
  client.print(lux);
  client.print(",\"Device\":\"");
  client.print(device);
  client.println("\"}");

  //Wait until response is incoming, then close connection, rest of the bytes don't matter.
  while (client.connected()) {
    if (client.available()) {
      client.read();
      client.stop();
    }
  }
}

its just TCP ?

not that complicated

ethernetclient is super easy then nice

there's also ethernet server

this project had an active push

how would you swap between listening and sending? Does this have a concept of threading?

but you could also fetch from it

@honest wind interrupts

but no concurrency

nope

its 16Mhz microprocessor lol

which brings me to wanting to play with freeRTOS 😄

you use interrupts

still interrupts but it can do concurrency

@honest wind core loop:

//Timeout handler for sending data
void handleSend() {
  if ((millis() - time_send) > SEND_TIMEOUT) {
    time_send = millis();
    send_data();
  }
}

//Core loop function.
void loop() {
  handleWebservice();
  handleLights();
  handleSend();
}

back then I sucked at documenting and overdid it

now I only document complicated methods and functions

but teachers like seeing documentation

so why not xD

there's some complexities when it comes to building windspeed and direction though especially when it can freeze

^

parsing the entire http request

its basically just a decision tree with only a happy flow in mind

the webserver / REST server is easy I can do that in python

and a bunch of stringcompares

to whatever is on each line

HTTP is very simple

yep

if you only need a couple GET's

you just write your code to be "functional" with a simple GET /temp HTTP/1.1\r\nHost: 192.168.88.100\r\n\r\n

so what hardware did you have? the arduino obviously but what for the sensors?

^ that's literally it ^

i'm not too worried about the code part 😛

that's an entire HTTP GET

xD

@honest wind that ethernet shield I linked to you

that's to get internet I thought

but what about temperature / windspeed / wind direction

/*
 * HTTP Definitions. This header defines the absolute base for interpreting HTTP requests.
 */
#ifndef HTTP_H
#define HTTP_H

#include <Arduino.h>
#include <Ethernet.h>

#define SP " "
#define CRLF "\r\n"
//Arduino device constraints. We don't need more than 128 characters per line, as our requests are mostly tiny.
#define BUFFER_SIZE 128
#define MAX_HEADER_LINES 15

//GET and POST, no other methds are needed for a minimal implementation.
typedef enum {GET, POST} Method;

//Support both HTTP 1.1 and 1.0, however server itself will always reply using 1.0, hostnames are not important in this context.
typedef enum { HTTP_1, HTTP_1_1 } HttpVersion;

//Base structure for an incoming request. Holds method, version and uri. 
//If the request is of type Method::POST, then content_length will encapsulate the value of the request-header 'Content-Length'
typedef struct Request {
  Method method;
  HttpVersion version;
  String uri;
  int content_length;
} Request;

/**
 * Fetches a single line from a connected client.
 * The fetched bytes are placed in the result parameter. 
 * The size specifies the limit of the length of a single line. 
 */
int fetchLine(EthernetClient client, char * result, int size);

/**
 * Parses an HTTP request from a connected client and sets the members in the request parameter.
 * Method returns the ammount of bytes that have been read, or if buffer was exceeded it will return -1.
 */
int parseRequest(EthernetClient client, Request & request);

#endif

@honest wind oh uhhhh

analog.

//Gets the current temperature.
float weather_temperature() {
  float average = sample_average(PIN_THERMISTOR);

  // convert the value to resistance
  average = 1023 / average - 1;
  average = SERIES_RESISTOR / average;

  float steinhart;
  steinhart = average / THERMISTOR_NOMINAL;     // (R/Ro)
  steinhart = log(steinhart);                  // ln(R/Ro)
  steinhart /= BETA_COEFFICIENT;                   // 1/B * ln(R/Ro)
  steinhart += 1.0 / (TEMPERATURE_NOMINAL + 273.15); // + (1/To)
  steinhart = 1.0 / steinhart;                 // Invert
  steinhart -= 273.15;
  return steinhart;
}

//Gets the current illuminance
float weather_lux() {
  float average = sample_average(PIN_PHOTORESISTOR);
  average = 1023 / average - 1;
  average = SERIES_RESISTOR / average;
  return average;
}

bunch of constants depending on the sensor type you have

and the math behind this

I just found online xD

I don't have any sources to this, as these were given to us

I did write the code, they just had the algorithm on paper

https://www.skyeinstruments.com/wp-content/uploads/Steinhart-Hart-Eqn-for-10k-Thermistors.pdf

https://i.imgur.com/QD0v5Z5.png

https://alanbmitchell.wordpress.com/2011/10/02/operate-arduino-for-year-from-batteries/#:~:text=The Arduino Uno board draws,board is therefore 0.29 Watts.

pssh who needs solar panels

xDD

@honest wind if you use an stm32

you can squeeze 3-5 years out of a single 18650

those things use microamps when on

and nanoamps when idle

😄

brb

btw sent you a /f request

@tame carbon you misspelled Celsius

BEANCOUNTER

caps*

Im a programmer not a linguist

Your neighbors are probably using the router defaults.. a lot of routers default to 40MHz on 2.4GHz, which makes very little sense because if there any more APs in the area you will start to interfere and get lower performance.. same with use of channels other than 1, 6 and 11.. Someone sitting on one of the channels in between just ends up causing interference on two of the three usable bands.. 2.4ghz would work a lot better if the devices would play nice and use 20MHz channels by default and not use channels besides 1, 6 and 11

probably ¯_(ツ)_/¯

using 2.4ghz channels other than 1, 6 and 11 makes me think of people who drive in the middle of two lanes on a highway

Most of the 2.4ghz clients are IoT so idgaf https://blob.rocks/G1dCiegN2R.png

holy crap that's a lot

not really lol

only 18 wifi clients

I guess it is only three APs

but downstairs core switch #50? you have 49 other switches at home?

Port 50

oh ok

that makes more sense

routeros 7.1 beta 5: added new "iot" package with initial Bluetooth (KNOT only) and MQTT publisher support;

At max we should have ~28 WiFi clients

For inventoried devices

can anybody explain what that means? I don't know much about IoT

MQTT is a messaging protocol, usually used by IoT

like I have a few managed wifi light switches that I guess are IoT but I don't know what bluetooth and MQTT have to do with that

clients can subscribe to topics

pub/sub messaging

you can do MQTT over Bluetooth ig, since MQTT is just over tcp/ip

I hate IoT over bluetooth though

in my case I have these tp-link kasa smart plugs

ZWave or IP based pls

they connect over wifi and are managed by my google home

I can turn the lights on and off with voice commands

IP based preferred tho 😂

so I am wondering in that case what the new RouterOS IoT package would do for me

I just control IoT from Home Assistant

with enough juice on the transmitter you can use all the channels.

that's only true if you have enough on both sides

and if you are linking mobile devices you usually cannot do anything with the device's transmitter

hour ago outside my window

thousands of starlings

wow that's a lot

reminds me of hitchcock's the birds

starlings are the worst

beautiful birds

the flocks are cool to watch, but they're an invasive species here in the states and wreak havoc on farmland

silly humans

who says its their land

did someone say bird?

(no I didn't take that picture, someone sent it to me)

ugh censored

starlings are non-native to the US, they were released in central park in the 1800s by someone who wanted to introduce all bird species mentioned in shakespeare's works into the US

lawl

so now we have billions of starlings pushing out native bird species

source for the above-- http://nyis.info/invasive_species/european-starling/

https://en.wikipedia.org/wiki/Eugene_Schieffelin

yep

that jerkwad

americans are an invasive species too

yeah but we get to define "invasive species"

so are europeans. or humans in general

who brought them over?

@honest wind we migrated from the plains to the wetlands

and for generations we all fought eachother

over things

"we" meaning americans?

cause yeah true

we is humanity

most of human history is hunter & gatherer societies

@honest wind btw. https://www.circuitbasics.com/arduino-thermistor-temperature-sensor-tutorial/

there's loads of tutorials for this

but reading a sensor and doing some maths is trivial

the ethernet stuff is more involved

Temp i'm not worried about, hardest one I think is wind speed / direction

• dealing with rain / ice / snow

wind speed isnt that hard

finding a cheap reliable anenometer

wind speed sensors are just a shaft with a magnet on them that spins

the case around the shaft has a reed relay

reed relays switch when you apply a magnetic field

i'm familiar with how they work

i'd rather not build one though, I just wanna buy one that's cheap but won't freeze up

they cost around 50-60 bucks

Staring. Is a school in Lochem

@tall pagoda Spreeuw.

So not this 🤔

not even spelled the same

is misses a L

@rocky badge i need shelly advice :3

lol

have you used it in web mode? no MQTT.

for some stupid reason the dev of the HA shelly integration coded it so that it uses UDP for polling and the sensitivity of the device going offline is one packet lost. it goes offline until next polling which can be 30sec or so

they like to drop packets at random. sometimes its fine all day, another day it might do it 7 times

@hollow marlin UDP. One Packet Lost. 👏

it gets better... so to send commands to the shelly it does TCP

like wtf

just use tcp for polling idiots

so anyway should i flash 3rd party firmware on it just incase its a firmware issue, or should i switch to mqtt?

i'd rather not add more complexity so heh

how weird is it that theres even a pattern formed

I have many other shellys being stable during this, so its not like my whole network is dying

One UDP lost = outage.... I cannot see how that would ever be a problem

i have a ticket open with them asking why it doesnt respond. they been quiet after asking me to remove the DNS server and not fixing it

i see it go out the AP but I have no visibility after that

Whats the pattern between all the devices, curious to see what might be the issue

this is 8hr and look for grey lines

i can tell you the ones that look stable do go unstable

just didnt happen today

16983 2021-03-15 15:08:15.005624 192.168.10.9 192.168.11.42 CoAP 53 NON, MID:10, GET, /cit/s

(reply, correctly marked off)
17037 2021-03-15 15:09:06.004471 192.168.10.9 192.168.11.42 CoAP 53 NON, MID:10, GET, /cit/s
17038 2021-03-15 15:09:06.011582 192.168.11.42 192.168.10.9 CoAP 260 NON, MID:10, 2.05 Content, /cit/s```

example of the issue

10.9 is my controller

Is that HA

yes

nice

one of my teachers is playing around with HA & Shelly

heres an HA example log

My HA history won't load 🤣

if it becomes unavailable HA drops it as an entity and you cant control it

It might be that I have so much shit

i upgraded to HA blue

been nicer than a Pi

Mine's in a VM lol

on my R620

With separate DB that isn't sqlite

this thing is basically 100% automated, i dont need to login for any reason. but that all the more reason this is an issue

if it goes unavailable the automation isnt going to keep trying

i think MQTT isnt a poller and the shelly reports if a change occurs right? so maybe thats what I need to switch to

yeah mqtt isn't polling

i dont wanna make a github just to complain about it

https://github.com/home-assistant/core/issues/45892

someone did but they're looking in the wrong place

nobody packet captured in this thread

Sorry I had to go pick up the little one, whats the time between that cluster of 8 grey bars? Looks similar to 2 of the bars on the top graph.

ultimate backup supply:

63 watts

24/7

what the hell is that

plutonium

used on rtg's

powers voyager's, curiosity class rovers (which includes perseverence) and more

https://www.youtube.com/watch?v=K79IwXzGBKk

They are also used as backup power for communication systems

really?

lol

military and government emergency systems

@peak cloak https://bellona.org/news/nuclear-issues/radioactive-waste-and-spent-nuclear-fuel/2015-11-foreign-funds-have-almost-entirely-rid-russia-of-orphaned-radioactive-power-generators

It doesnt explicitly say communication systems

but you can be sure they use them for that purpose too

problem is that lot of these things were in lighthouses from long time ago

people started removing these

and they ended up at junkyards

nobody knew what they were

and took them appart

and if there's one thing you never do..

Also speaking of MQTT and Shelly and power, I think its time I ordered the Shelly EM for mains data collection. I set up node red and influx a few weeks ago to test with Grafana, and just need to setup the broker.

~60sec

@hollow marlin other than this issue this is way better than zwave stuff

the response time is pretty good

LED controllers are half the cost of zwave

how da fuck do i have 20gb of snmp traffic

you have SNMP listening to the outside world by mistake?

no

internal snmp traffic

@rocky badge what wires did you use to put into the shelly serial

i dont have any that size on hand

uh

its stupid they used a tiny socket instead of standard pins like everyone else

Can I install 2 routers on same modem?

What's a good ISP in the us

they all suck lol

anyways i'm still stuck on configuring this cisco ASA 5505 firewall

how would i get to configure the network object again?

i'm afraid juan is in another timezone and therefore asleep

can anyone else help? i know that most people would prefer to never touch cisco ever but well, i gotta for my internship

@late geyser most people go through weeks of training before using them

i just need it to work is all, then i can hopefully move onto the next task

you should be able to either ssh or telnet into the thing to get to the command line based configuration

i mean yeah i'm connecting to it via serial

i have configured a few things already

but i need to know how to configure NAT

that's afaik what i'm stuck on now

NAT sucks butt

i know

but how else would i get it to work as a separate router from the company's

again, internship

@late geyser ditch the ASA

buy a mikrotik

oh man if only i could

sadly i have to do it on the ASA

@late geyser can;t you ask your coworker how to set up NAT on this?

I mean, I used my internship to learn from others

technically not, but i'll see

@late geyser from a company's perspective

you wasting 2 days on this, is a loss of money

thats why co-workers help eachother out.

i mean this is for my own "domain" so to say

i have a laptop, workstation, 2 switches and a router that need access to the internet, as well as communicate with each other

https://www.routerfreak.com/basic-configuration-tutorial-cisco-asa-5505-firewall/

i don't know the default gateway

@tender hazel I forgot to ask you the other day, but are there any license requirements for certain wireless products?

I saw on the mikrotik website some requirement for 60GHz gear

there is no license requirement for 60GHz

the router has to acquire all the necessary data through the "isp's" DHCP server

but yes some wireless products have license requirements

I assume LTE basestations and such?

@late geyser this includes a DHCP example: http://www.firewall.cx/forums/10-firewall-filtering-idsips-a-security/32041-howto-basic-asa-5505-configuration.html

google is your friend

@tame carbon yes you need licenses for LTE

that's one example

https://i.imgur.com/h1LSbb7.png

the other frequency that mikrotik uses is the 6ghz

man that link does NOT like mobile lmao

i'm on break rn anyways

yes

the dynadish 6

Backhaul?

6GHz would be nice, cus it doesnt interfere with other devices

but as mere mortal I cannot purchase this ?

you would need to license the spectrum

well its germany

so I know that's not gonna happen

paper pushing costs on that alone are not worth the effort

bureaucrats

60GHz is the way to go for backhaul if the distance isn't too long

Reading... https://i.imgur.com/sZsjcW5.png

6Ghz is only permitted for point to point

and you need to file a permit

@tender hazel do I have to do channel allocation on 5GHz like with 2.4GHz ?

or is 5GHz wide enough, to not warrant manual channel config?

yes you should do channel allocation on 5GHz

the problem with auto channel is that the algorithm to select the best channel is not very good

What do you need to do on the ASA?

it counts the quantity of APs on a given frequency and only takes into account the quantity

and not the signal

And what model? 5505?

Setup a typical home router config, one ip by dhcp and nat it to multiple private ips on lan

it needs to function as a router. it need s an internet connection without fucking with the company's network

aka this yeah

yes

Ah, 5505 sucks since it's "different" than the other models

Let me get you a config 🙂

oh my god why is cisco like that

you can have situations where you have a frequency that only has one AP on it but it is very close and strong, and another frequency that has three APs and they are all far away, almost outside of the range of detection, and the auto frequency will choose the channel that has the one AP on it that has more interference

The 5505 was supposed to be a soho device so it supports VLANs differently

i have already set up DHCP on the inside network

just need NAT i think?

and dhcp on the outside?

What version of code? 9.x?

that has to be figured out by the DHCP server of the company right?

8.2

OOOF, that's an old boy, ok I'll make sure I tailor it for that 🙂

thanks

well you need to set it up so the router acts as a dhcp client on that interface

ah, and how do i do that?

¯_(ツ)_/¯

no clue on cisco

interface (blah)
ip address dhcp

makes sense

but 8.2 to 9.x changed a lot of stuff so I could be off on that

i think they changed a bunch on 8.3

Yah, that sounds about right and then that carried into the 9.x code probably

i read up on how global has been made obsolete or something

Yah, now it's simpler

object network obj_any
 subnet 0.0.0.0 0.0.0.0
 nat (inside,outside) dynamic interface

that's in a config file right?

i want to do it through the terminal

Yah, that's for 8.3 and up

so i just need the commands

Still making sure 8.2 works

sounds fair

but yeah i'm gonna list what i have done so far

conf t
 nat (inside) 1 0 0
 global (outside) 1 interface

That should be it for any any to interface outside nat
I don't have a 5505 to test with though to make sure the commands take

@tender hazel but since I have more channels on 5GHz, I can use wider channels right?

yes you can use wider channels

enable config t dhcpd address 192.168.1.100-192.168.1.227 dhcpd dns 1.1.1.1 1.0.0.1 dhcpd lease 5400 dhcpd enable inside hostname Router write object network nat-inside

uh, no clue how to do the full box

but yeah those are the commands i've used so far

'show run' should dump the full config

depending on your region you may have 5 choices for 80mhz channel

the 80mhz band that is channel 122 is used for weather radar and is not usable

it is good to look at the table here

https://en.wikipedia.org/wiki/List_of_WLAN_channels#4.9–5.0_GHz_(802.11j)_WLAN

give a raccoon some cotton candy

germany will have different rules than canada and the US when it comes to the channels

https://www.youtube.com/watch?v=rfbb4yRBH64

i'm not using the laptop i'm typing on rn as the one with access to the terminal

Cool, that all looks good

hence the .txt

Whatever is connected to Eth0/0 should have vlan 2 configured as well and you should be good

eth0/0 is not connected yet

@tender hazel so ch42 for 80Mhz would cover 36-48 ?

have to configure before connecting

"Germany requires DFS and TPC capabilities on 5.250–5.350 GHz and 5.470–5.725 GHz as well; in addition, the frequency range 5.150–5.350 GHz is allowed only for indoor use, leaving only 5.470–5.725 GHz for outdoor and indoor use."

Fair enough, so long as the end device is configured for VLAN 2 then you should be fine to receive a DHCP address there from the ISP

also i'm just connecting it to a wall outlet

ethernet wall outlet i mean

of the company

@tender hazel what does that DFS and TPC do again?

Doh, I forgot, access vlan 2 is fine, no need for anything on the other side. I was thinking trunk for a moment

so

it should be fine?

Yes

i haven't done the commands for NAT yet though

should i do those first or was it fine from default?

global (outside) 1 interface
nat (inside) 1 0.0.0.0 0.0.0.0

Those are already there

DFS is short for dynamic frequency selection.. it is a standard that certain frequencies that may interfere with doppler weather radar should change their frequency to another (or stop transmitting) when they detect a weather radar on that frequency

when you are on a DFS frequency it is typically decreased power to lower the chances of causing interference with weather radar

okay but you can still use those channels then?

or is it better to find another, where you can use more gain?

it depends on the application

if you have devices far away that need the gain you'll want to avoid DFS

that doesnt leave a lot of channels open

no, if you need high gain outdoor 5ghz you are back to not having a lot of available channels

why dont these weather people use a diff frequency

it is only 5ghz in general that has a lot more channels than 2.4ghz

this is rediculous

consumers get left with nothing

I'm sure the weather people ask why the wifi people don't use a different frequency 🙂

where the fuck do these weather people put these antennas?

or is it overhead sattelites?

@clear igloo tbh, i'm not even sure if these things are the default value or not

because i have to document what i've done so far

Ah, I don't believe those are default

hm

@tender hazel these SRD channels, is that the one I would need for high gain?

how would one set these with commands then?

Just like what I pasted earlier under config mode

only thing I remember from working with cisco devices

yes

copy running-config startup-config

the term SRD I was unfamiliar with, it is a european term but yes those are the high gain channels

they are at weather stations.. most airports have weather stations, and there are other places that often have them.. hydroelectric dams and other power plants, etc.

@tender hazel I'd assume I would use: https://i.imgur.com/Ckyw267.png

• 1 more channel

@tender hazel if no DFS was detected? does that mean it can just use the channel with full gain?

no, even if no DFS is detected it is limited to about 70 or 80% of maximum power

@clear igloo what about the vlan interface settings?

like vlan 1 and 2 have a nameif config name

VLAN 1 is default so that should be fine, if you do "show int ip bri" make sure they don't say admin down

and vlan 1 has an IP

@tender hazel but would picking three channels like I did in that screenshot, be enough?

That's not default, I think someone started to configure things BUT it might have been default long ago and I just don't remember

i did the configs

yes, three channels would probably be enough

i factory reset it when i started

Ican always grab a 4th if needed

is it correct though?

or should that ip be 192.168.1.0?

you have to be careful about your choices, I have seen some devices not like anything other than Ceee

with the control channel at the bottom

@tender hazel wait. that Ceee

means

C = 20Mhz and three 'extension' channels each 20Mhz ?

yes

and eCee would mean, 20MHz to the left and 40MHz to the right?

yes, that's correct

Cool

and what is XXXX ?

and typically when you enter the frequency you are entering the frequency in the middle of the control channel (C)

but I count 7x 20Mhz here https://i.imgur.com/8tyIaon.png

so you wouldn't enter 5530 Ceee for instance, you would enter 5500 Ceee

XXXX means it can choose Ceee, eCee, eeCe or eeeC depending on what seems best

so I could do ch106 XXXX ?

and it would make its own choice?

the issue is that I have found that the mikrotik capsman on XXXX will sometimes choose something that most devices do not like

had a device go on 5530 eCee which means the 80mhz channel is not where it shows on wikipedia

macbooks could connect to the wifi without a problem but android devices could not connect

wtf is this?

https://i.imgur.com/OE5cetU.png

160Mhz ?

yes, 160MHz

I tried configuring that once and I couldn't get anything to connect to it

@tender hazel good to finally understand this.

I hadnt the slightest clue about the Ceee stuff

Allo some one knows what kind of gpu i should get for transcoding i got a small home server

I would like to be able to stream about 6 people same time

@tender hazel https://i.imgur.com/IEvxaqZ.png Cool

yes it isn't really explained clearly anywhere

@zinc ember depending on your storage format, you may not need transcoding at all

certain media formats can be streamed directly

Ok i got 3t off storage

if you crank the quality to maximum and use a streamable media format

a server such as Plex can directly stream it to a client

I have found the XXXX is only safe to use on MikroTik when you are not hard setting the frequency, which is OK for the average person's home router

Ok but the load on cpu is full

@zinc ember a raspberry pi can stream 4k footage

doesnt need a lot of cpu

decoding is done by the client

Ok

the issue comes when your client doesnt support a given format

then the server has to transcode it

and that is a very expensive operation

if you use h264 you can be safe for 1080p

4k I would use h265

Ya it does transcode but i got no sound

MP4 container with H264/H265 encoding. And AAC for audio

should be a way to have as little transcoding as possible

From the plex site: https://i.imgur.com/32itP9N.png