#networking

Having just moved from tplink to mikrotik

I challenged myself, and went with single mode fiber optics between my highspeed devices

learned about all the different types, and standards

@limpid lion currently, I am still learning how to use the advanced wireless features of mikrotik

Setting up a big outdoor network soon, and challenged myself to yet another big undertaking

never done a setup with more than 3 APs... and this one will be 10+ (with wireless backhaul)

definitely me when I first implemented the edgeswitch and Edgerouter at my mom's home. it's true though, learn a lot and it's better the next times

@little schooner illegal peering ring in mom's basement

Which router can I choose?

Tp link archer a9 ac1900 or archer c80 ac1900

I currently have 2 routers at home with 2 different internet connections. How do I set them up them so that the internet connection isn’t shared but the local computers can connect to each other?

How many local computers? 2?

wdym by internet connection isn't shared

seperate subnets?

if you have 1 public IP they will share the connection regardless

DHCP would interfere.

and even if you have 2 public IPs they would still share the same connection

wdym?

I meant that i have 2 routers at home with 2 different isps. lets name them A and B. i want it so that when i connect to router A i want to access the devices connected to both A and B but my device will use the Internet connection of A. same goes with B.

i have 2

ah so you want dual wan

yes ig

you can't really do what you want with consumer hardware

If you set the LAN on both routers to different subnets, with dhcp enabled on both, any computer could randomly be assigned to either router

😂

You totally can. Just need to disable dhcp on one of the routers

you can't

at least not to my knowledge

consumer gear is weird,

hmm

none of the above

Mikrotech

ftw

@thick minnow network gods spoke from the heavens, designating me as mikrotik shill

xD

and I will crucify all ubnt.

Lol. Well, to be honest, you do recommend it even to complete networking noobs.

@waxen saddle I recommended they change the channel topic: here be dragons

Noobdom can be cured

needs a 10cc shot of common sense

and I kid ofcourse

@waxen saddle thing is. I'm crazy enough to help them configure it if they so wish

and silently, I hope they learn something.

Well it's kinda working on me

Much appreciated !

Feels good to be able to come here and get expert help

And Im sure anyone who pays attention to what you say will learn something

@limpid lion though I am not one of those "experts"

there's other people in here, that are far more qualified than I am

I am just a software developer/system admin

Networking at an isp level gets advanced

working with linux & doing networking...

you pick up some things

Dynamic routing

Etc

but stuff that ISPs do, is way beyond me

I know the core of the internet uses BGP, and roughly how it works

but I am sure I'd get instablocked by a bunch of grumpy SysOps from the exchange

if I do something wrong

Either way its great to have someone to ask

Bgp is just tcp?

Or no

BGP is its own protocol, not sure how it itself works (on the byte level)

I think its an IP protocol

https://en.wikipedia.org/wiki/Border_Gateway_Protocol

There's iBGP and eBGP

This is used to connect two larger networks together.

Like, Google connecting to your internet provider

this is called 'peering'

Yeah ik, I dipped my toes trying to figure out bgp to get metallb for kuberetes to use it

Instead of just l2 and using a preestablished ip range

But didn't get anywhere

https://metallb.universe.tf/configuration/#bgp-configuration

@limpid lion fun things to try out: Set up a guest wireless network, with seperate subnet that is firewalled off, with limited network speed

@limpid lion or set up a second vlan, and use that to isolate your network services

Then which router can I buy?

Might try this one out

@dusk oasis how experienced are you with networking?

Idk

Just tell me a good router?

@tame carbon

@peak cloak halp

Or am In wrong channel to ask these questions?

¯_(ツ)_/¯

depends on your needs

if you want no bs, mikrotik I guess

Gaming , browsing stuff

that doesn't really matter

@dusk oasis that is not relevant.

like features wise

@dusk oasis most consumer hardware in my opinion, is total garbage.

BS = Bullsh*t ??

yes

but the thing is, if I was to recommend you something, you need at least some technical experience to use

yeah that's the thing

doesnt come with easy web config

it's not necessarily easy for a noob in networking

What are u telling?

I don't understand

it will allow you to break your whole network config

@dusk oasis just saying, its hard to setup

https://mikrotik.com/product/hap_ac3

There is my ISP's guys

^ this is a very good device, and it supports literally every single feature you'd want

ISP shouldn't need to configure your router

that is your problem

http://demo2.mt.lv/webfig/

@peak cloak that one has been down for me

for ages.

works for me

https://i.imgur.com/4sKHgrF.png

this is the webui of it

there is no such thing as best router

lolwat.

depends on budget

what you want

etc.

Under 70$

@peak cloak OMG xD

A good router for home purposes and gaming

Guys , why are you so annoying

@peak cloak mikrotik literally blocks packets going to its own demo page.

on my phone through LTE, it works

I'm asking for a good router , and u guys are talking about something else

idk

hapac3

Then I'm leaving

just not easy for a newbie

@dusk oasis https://mikrotik.com/product/hap_ac3

The software on all of these devices from this company, is the same

the link he posted then, was an demo of the software that runs on them.

join the frey

vvv

but other than that idk any other routers

mikrotik isn't for everyone

@tame carbon @peak cloak Im thinking a BGP lab for you guys might be on the horizon

if you just want plug and play

@hollow marlin lol we should all do a little project, set up a VPN site 2 site with wireguard, and then we emulate our own BGP network

Ok, if I don't know abt something , why are you telling it again and again , that makes no sense

@dusk oasis because we don't know what to recommend otherwise lol.

I'm leaving these two shitty guys

Bye

bye 💩

Never gonna be here again!

@dusk oasis https://i.imgur.com/MTkvxJi.png

Ok, I will be chill

What are you guys telling about!

networking

fiber optics, wireless networks, servers

everything that has to do with the internet and a network plug.

@hollow marlin like I get the overall idea of bgp but just not exactly how to do it per-say. Like I tried looking at the vyos bgp page and I had no clue what to do

Just tell me a good wifi router under 70$

Nothing else

we don't know

¯_(ツ)_/¯

Uhhh

Am I in the right channel?

yes

this is networking

Then What?

but like actual networking

not the cutesy crap from walmart? 🤣

Then how'd you know this?

@dusk oasis what kind of network speed do you have ?

300mbps

https://mikrotik.com/product/hap_ac3

Down and up

this can do 2gbit/s

it has 5x 1G on the back

its handsdown the most bang for your buck right now

It's expensive

Is there any other?

In our country

https://mikrotik.com/product/hap_ac2

If you require less range

there's the model with enclosed antennas, has same hardware inside.

This one

?

yes.

I have VyOS on my EVE server, we could lab it up and get Crystal to join and ill show you how it works

Is it the actual router?

Or a network switch or modem?

@dusk oasis it is a router, switch and wireless accesspoint all in one.

Oh

Like, the consumer market has ruined the word "Router"

what we consider a router

doesnt even have wifi

consumer devices usually are all in one

But it's expensive in our currency

https://i.mt.lv/cdn/product_files/RBD52G-5HacD2HnD-TC_180323.png

Any other option

no, anything cheaper would step down to fast ethernet, which is limited to 100mbit/s

beyond that, there's only tp-link hell

Why shouldn't I buy tp link?

Is there any problem

U guys are different

idk, I've had 3 three of them in my life

and every single one of em died

after 3-4 years

So should go with mikrotik?

those mikrotiks have a mean-time-between-failure of around 200,000 hours

15-20 years

if not longer

the engineering is just much better

So does it worth the money?

Yeah

Does it have good performance

?

@dusk oasis you are guaranteed 5 years of updates after purchase, but in reality it can be longer

some of their equipment has been for sale for 5 years, and they still update it with new features and security patches

you'd be lucky to get even 1 or 2 updates on those tplinks :P

@dusk oasis its capable of routing 2gbit/s

Wow!

@dusk oasis so in theory, you could handle two fiber optic internet connections at the same time

if you had a switch plugged into two ports

it can do full 2gbit/s

with port aggregation?

sure

I mean

Yo, is it the actual router

I still can't believe

wdym

@dusk oasis routing is done in software on the CPU

@dusk oasis that thing has a quadcore

a router itself can look like this

no wifi

This is a Router^

That thing does 80gbit/s xD

and so is this

this one also has no wireless ^

Quad core in a router 😱

I have this one at home, does 10gbit/s

10 gigs?

see that port on the left?

that is 10G

Hmm

I want to discuss something

https://cdn.discordapp.com/attachments/776722183119699988/777646103775674368/IMG-20200922-WA0001.jpg

^ there

my setup

wireless access is somewhere else

thats in living room

Why is other tp link routers are in different shape

because joe average doesnt know anybetter, and goes oh shiny

because they have wifi probobly

idk

and look cool

most wifi aps are like curved

but also like meraki is just a box

Can I go for it?

I think I'm buying a different thing instead of others

@peak cloak the ultimate abomination of SPEED and consumerism

Can I use lan cable for my pc ?

this router is so wrong xD

yes

why not

Ohk

https://cdn.discordapp.com/attachments/829722257700945920/830755743534678036/20210115_104411.jpg

switch

Hmmm

This is a fun one

cheap, but 4x 10G

@dusk oasis the hAP ac2 or ac3 is easiest

you plug internet into port 1

and your other devices into port 2-5

port 5 can also supply power optionally

But why these indians are always buying tp link , tenda or d link one's

Never heard of mikrotik

@dusk oasis european

because they are cheaper too

I think

and mikrotik doesnt advertise

they arent really in the consumer space much

they have a small lineup of wireless APs/routers/combo-whatevers for the home wifi segment

tplink is planned obsolescence

in 4 years

your router is broken

and they have a new one you buy, that promises to be better

and then same over

I think it doesn't have MU MIMO

@tame carbon hey

No it doesn't

Can I have any other cheaper with a gigabit support

Mikrotik doesn't sell any WiFi 6 APs currently.

Hmm, I saw the reviews , the reviews were all 5 stars

And I don't see any fake reviewers

like, the hardware they sell is quality.

but the crux is that it is a bit hard for a noob to use if you want to say, port forward

or set up wireless

it can be easy with quickset

It seems like THE BEST router , network switch and access point AIO

but its quite advanced

RouterOS also has very large featureset

But can I have any other cheaper

https://i.imgur.com/Qx5gtoF.png

Yo , it's so small, I really like it!

thats the config utility

@dusk oasis https://i.imgur.com/Nljdlr6.png

128 mb ram

currently ~30mbit/s traffic

0% cpu

That's good

I thought you guys are joking

@dusk oasis the thing is

those big $3000 routers used in datacenter

run same software as that tiny $60 wifi router

so thats why its not so easy to configure

I thought you guys are doing some clown things

its made for network engineers :P

Nice

Thanks

It really helped me a lot!

I wanna thank you ×100000

if you get stuck configuring

you can just ask here

the default config on them is WAN on port 1, and 2-5 LAN

but I recommend you change the password on the device

and set up the wifi password

Ofc I will!

@dusk oasis btw: this is the big 10G router: https://i.imgur.com/eqViOpg.png

and the way it is setup, even if the power goes out. we still have internet for another hour or so

wifi works too ^^

well a ups right?

I googled, I found, I bought

some

I think its an APC 700VA supply

small one

https://download.schneider-electric.com/files?p_File_Name=SPD_CLII-9QTM2C_FL_V_520x520.JPG&p_Doc_Ref=SPD_CLII-9QTM2C_FL_V

one of these ^

@peak cloak server powers down after 5 mins of powercut

and network keeps going till she dies

there's no WoL yet.

but there's almost never a powercut, so w/e

I pull at most like 300 watts from that supply

server is only 250 watt bronze

U guys should make a yt channel !

pffft

I have better things to do lol

Like you can grow up yt!

and wear socks and sandals while doing so?

xD

@dusk oasis I am a software developer

networking is just something I started dabbling in

Nice

Why is mikrotik so underrated in india

@dusk oasis probably import fees

but you are maybe looking in the wrong place

India you said/

@dusk oasis how much was that hAP ac2 for you?

@dusk oasis https://mikrotik.com/buy/asia/india

It's 87 dollars

From converting it from Inr to usd

An interjection: I think India also charges a 100% import fee on most electronics, I don't know if this comes under that tho

@dusk oasis yes that recomended customer price from mikrotik.

but local laws still apply

so there's taxes and whatnot that may be different

Can I get any cheaper one

With the same gigabit support

@tame carbon hey

nope

https://i.imgur.com/TcqF2qi.png

If I tell anyone it's a wifi router , no one will believe lol

Mainly the RB951Ui

2hnd

I don't know the names lol

@dusk oasis internal antennas yeah

its less ideal

This is a wireless AP

I see the quality in the box packaging!

Oh

Is this the one you told yesterday?

@tame carbon don't you love routeros being more expensive than the hAP mini

Lol

@peak cloak lol yes. $20 router with $30 OS

I get it now!

cutest router

Mikrotek is my way to go!

but that one only has 100M ethernet (fast ethernet)

but...

Wait a min , is it a router

in true mikrotik fashion, it can route at full 300mbit/s

saturate all ports

That's so small and cute

yes

@dusk oasis routing is just routing packets between different networks

packets of data

all of these can do it, but at different speeds

I smell quality

like that high speed switch I showed earlier

it can switch at full 40gbit/s (4x 10G)

but technically, you can configure it to do routing as well

it just bottlenecks hard on the CPU and caps out around ~1200mbit/s

well isn't speed in megabytes based on MTU?

shhhh

we dont talk about 64byte packets

a full frame is 1500 bytes.

but this is details

not important

true, true

that stuff works as is, no need to modify

How to configure a mikrotik switch?

@dusk oasis same tool as you do with their other devices

they all run RouterOS

Why is that OS so appreciated

Does it have any good features?

can do a lot

it has all the features

well

almost all

http://demo2.mt.lv/webfig/

this is a demo

I showed it before

What's this?

routeros

@dusk oasis thats the webconfig. They also have a desktop program to manage these devices:
https://i.imgur.com/eUe85If.png

@tame carbon

Can I use 5 mobile device on wifi , 1 laptop on wifi and a pc on ethernet? In hAP ac2

@tame carbon

@dusk oasis its rated for 802.11ac wireless.

which means, in ideal scenarios, it can do ~800mbit/s

over 5GHz with 80Mhz channels

xD

December 2019

and the only routers really vulnerable to that were ones where users removed the firewall

I'm just gonna do some normal things

Not networking things

Techy things lol

you can use 5 mobile devices on wifi a laptop on wifi and a pc on ethernet yes

if you want a nice simple interface for mikrotik, there is the iphone and android app

it is designed for end users who don't know anything/much about router config

oh I totally forgot that thing exists

I thought tp link is the best wifi routers in the world lol

xDD

But not anymore

@dusk oasis marketing is 99% lies 1% specsheet, and even that is usually flawed.

those new tplink routers with spider legs on them

they sell for $500

they have 4x 2.5G

but when you put them to the test, with basic firewall. It completely chokes on itself at ~1.7gbit

switching at 2.5G it does, no problem

but routing? nah

even that tiny hAP ac2 is more capable than the $500 tplink in terms of raw routing performance

@peak cloak lol https://i.imgur.com/q9Yf10N.png

so wait

it has a single 2.5G port?

what good is that

Should I connect my internet cable on 1st port?

Right?

@dusk oasis thats the default yes

https://i.imgur.com/P9pBtdi.png

^ 10Gbps

ports arent even configurable

xDD

Now 10 Gbps seems too low lol

no but

they just add all the different wireless interfaces

that's not how it works.

I get it

if I look for reviews

people do speedtest, and not an actual synthetic bandwidth test.

How easy is it to set up multicast on Mokrotik?

@waxen saddle you install the multicast package

and then its there

if by multicast

you mean an IGMP proxy

then yes.

Just a checkbox to enable it? Or do I need to set up multicast groups and specify source routers and such?

Yea, IGMP proxy

@waxen saddle you just create two IGMP interfaces, one upstream and one downstream

On Ubiquiti, just check a box for IGMP proxy

and you enable snooping

https://i.imgur.com/I48hZgo.png

Don’t care for upstream or downstream at this point. I’m simple home setup

@waxen saddle oh, I use that for my IPTV here

upstream is a vlan on a 10.0.0.0/24 subnet

and the downstream is my LAN

My source and destination are on the same VLAN

https://i.imgur.com/wZiZfbd.png

if you just want IGMP snooping

Why would IGMP proxy be needed within a VLAN?

yeah isnt multicast L3?

Yes, but IGMP is L2

With it off, ports get flooded with useless traffic

@waxen saddle snooping

Not proxy then, snooping

you dont even need the multicast package for this

without snooping: https://i.imgur.com/T7ThqpS.png

Gotchya. I might’ve confused terms. I’m not able to check my config on Ubiquiti at the moment. I do t think they e exposed it in the mobile app yet

enabling:

Perfect

What are these ?

Am I In a techy place

LOL

?

@hollow marlin so it was off.

I think I just killed my parents' tv stream

entire bridge reset

Lloll

https://i.imgur.com/XBaS3Wc.png

still bogus traffic, but its halved?? wat

Should I go with Mikrotik hAP ac2 for normal use ?

Like streaming yt videos , and browsing stuff

But I will do some heavy gaming

In my pc

@waxen saddle ahhh here we go.

https://i.imgur.com/aotAU1d.png

So it settled down

@tame carbon

Heh.

@dusk oasis yes. the hAP ac2 is an excellent home wifi router

I'm extending my budget and buying it!

Why do auto correction sucks??

It makes me look like an idiot

:(

@dusk oasis btw, if you ever consider buying wifi repeaters or extenders/boosters. DONT

just buy either another hAP ac2, or a cAP ac (for ceiling mounting)

No, I'm not going to buy extenders

and you can set one to control the other

and they form one network

Mesh system?

not quite

But I don't want it

though it can do that too

@dusk oasis nah just thought I'd show you, cus I think its cool

^ main router, controlling multiple ^ wireless access points

I'm not going to use an extender

this is what you might do in a big building

or school

Hmm

it just has this capability

Ohk

@dusk oasis its used by companies and enterprise networks

like in schools, or libraries where there's a large public wifi network

you just have APs all over the building

one in each room

Can I use a AP with hAP ac2 router?

yes

you can use the hAP ac2 as an AP

you can get multiple

No, as a router

@dusk oasis it can do all of these things

yeah, it can be configured to do what you want

at the same time.

It doesnt impose any limits on you

you can configure whatever you want

thats why it is so popular ^^

Not really :(

Popular within the network community

if you dont deal with routers

@dusk oasis you probably never heard of Juniper

Juniper?

it's a networking company

very common apparently

https://i.imgur.com/TTl7Hz6.png

I don't want these badasses

these cost: request a quote

meaning: upwards of 100k or more

@tame carbon
What are you playing for 10 hours , Synergy??

discord doesnt know the difference between a game and program

https://symless.com/synergy

Lol

I got two computers in front of me right now lol

three monitors in total

Are u working ?

Sorry

I was

its 20:30

but working from home yes

K bye

12:04 rn in india lol

It's midnight

Time to sleep

Byee

@peak cloak lol when I see the connectivity on one of those edge routers

I have had trouble getting even 1 company to run fiber to my place.

Wait, I thought you already have fiber?

@hollow marlin I do

ah

@hollow marlin BGP is l2 right?

or l3 ?

Oh definitely no. All L3

@hollow marlin so I said this earlier, didnt see if you cought it

instead of doing a virtualized environment to try out BGP

wouldnt it be a fun experiment, if we set up site to site with the mtiks we have, with wireguard

and then we just set up our own 'testing' subnet using private ranges

and we can peer with eachother that way

Sure can do. Im honestly looking at pricing for a /29 with Fios for some projects

you need business right?

I have a /29 here, 16 bucks/month

Not sure, ill find out though

I still have two addresses unused

RIP, yeah its for business only. Gosh darn it

@hollow marlin cant you just register one? xD

yeah it's contact us for pricing too

I just registered a company :P

its so much easier

to get things done

cus you get preferential treatment everywhere.

when you dial support

when you want more things

I could just get fiber ran to my place, perks of working for an ISP

@hollow marlin say you need it to work from home

and because you are a DC employee

regular gigabit fiber wont cut it

lol

They would do it but I know they still charge monthly because "accounting says so". But when you access to the equipment that handles speeds....

@hollow marlin accounting also doesnt know what FIFO and Queing is

I think someone I kinda know works for verizon but more on the mobile side

so you can switch the flip

and make it go zooom zoom

Oh I can easy peasy

@hollow marlin stupid catalonian govt

keep getting emails

because I have a domain name

that they dont like

I use eris.the.sexiest.cat as reverse DNS for one of my IRC bots lol

haha

@hollow marlin its from one of the very few animes that I've watched, tl;dr sexy alien cat women come to earth and all hell breaks loose

and I also like it because its the name of the goddess of chaos

https://en.wikipedia.org/wiki/Eris_(mythology)

would you say nginx is enough security to expose a couple of services

I mean

what else would you use other than nginx? xD

Someone sent me https://gist.github.com/quietsy/58590a640dd4f7a89696c68b0e6a8691

wat

But from the research I've done people do use nginx

fail2ban sure

that bans entire IPs from abusing login features

So I was confused when they said maybe to use something else

it's just nginx, with fail2ban and let's encrypt basically

good luck setting up fail2ban on your web app

its hard to finetune

geoblocking doesnt work.

so why bother.

I've already got lets encrypt

so you're good.

Alright

@limpid lion does your server request a redirect if you try port 80?

https://blog.linuxserver.io/2020/08/21/introducing-swag/

like does http:// force a redirect to https:// ?

Didnt open any ports yet

lemme see

uh oh

I think I have to kick someone

https://i.imgur.com/6FF9j13.png

this is why you never give access to servers for people who suck at linux ^

chmod 777?

@peak cloak no you're supposed to symlink this shit

there's like half a dozen domains more like this

didnt want all of them in screenshot

ohh

you have your sites enabled and available

and you symlink

yeah idk all that

this is how you enable and disable sites.

you just delete the symlink

each website has its own config file

its super simple lol

you have dir with all your sites

and then a directory where the server looks when you start it

you just create symbolic links with ln -s

and then the server can load the config

ah

why not put it there directly?

what's the reason exactly?

permissions?

because then you have to move it back and forth

if you want to enable and disable the site

ohh

ok

its a very primitive but effective system

I just think its elegant

simple as possible.

@peak cloak symlinks can point to other files and directories

Just to make sure I've got it right. I have to open port 80 and 443 to the VM running nginx, correct? Or does it have to be open to the docker container IP

@limpid lion yeah it just needs to reach nginx

but you should already have this

if you have letsencrypt setup

I have not set it up yet all I did was install npm but I can see let's encrypt is available when requesting an SSL cert. Just have to do the configuration

IP > Cloud on the router is a good feature I assume, any downsides using this?

as opposed to if I have a static IP from my ISP

yeah its a solution for the dynamic ip crap

@limpid lion you have a tik right?

yupyup

you can use interface lists to forward

so even if your WAN changes the forward rule will work

the cloud thing, is just there to update your DNS

hmm

DDNS is Dynamic DNS

Yeah

Don't I need the cloud thing when creating my A record on my domain provider

yeah so when the WAN address changes

wdym by cloud thing?

@limpid lion yeah if your ISP provides you with a reverse DNS

IP > Cloud on the mikrotik @peak cloak

oh idk what that is

DDNS

@peak cloak DDNS https://i.imgur.com/3KMvWEe.png

If I understood correctly

ah

it's just DDNS

DDNS or Dynamic DNS is a service that updates the IPv4 address for A records and the IPv6 address for AAAA records periodically.

weird naming

@peak cloak I think this is mikrotiks own implementation

according to the docs

mikrotik provides nameservers

this is their cloud

ohhh

Can you interface with other ddns providers?

yes

if you can send a one of HTTP request

then you can

you can script this in

if the address changes, do the following: make http request

@limpid lion https://i.imgur.com/yxUBc9w.png

so your own domain becomes a CNAME that points to the name that is provided by the mikrotik cloud

Oh that’ll work too

so you dont need a thirdparty

and EU has strong privacy regulations

so no worries

and its just DNS

all public info anyways

Yea. But changing all my clients to point to a different ddns name is a multi-month challenge.

yeah but

I mean

1 click enabled.

kinda nice

no stupid no-ip fuckery

as opposed to: https://i.imgur.com/4VnQ7xN.png

mikrotik forum is terrible

never use anything they recommend

I'll just write my own ok? xD

Lol

I dont really understand but thanks. It's just so much info to take in >_<

@limpid lion its actually quite simple

@limpid lion IP -> Cloud (DDNS) is a service by mikrotik

when your WAN address changes, it sends a packet to the mikrotik cloud

which (owned by the company that sold you the device)

@limpid lion just enable it

and click apply

Yeah I kinda got that part what I didnt understand was the part about cname but maybe I've figured it out now although not sure

see what happens

Yeah I did

got my address

@limpid lion it creates a hostname

yeah, and then your own domain

points to that

I have this switch which is constantly dropping connection and throttling my devices to 100mbps instead of the gigabit it's meant to be, can anyone suggest a better switch to use for my network? https://www.amazon.co.uk/gp/product/B07HP6ZLSM/ref=ppx_yo_dt_b_search_asin_title?ie=UTF8&psc=1

@limpid pond have you tried a different cable?

often the cable is at fault when that happens

you need all 8 wires for gigabit

Yep, tried new cables bought from amazon pre terminated

100M usually means there's only 4 pairs

@limpid pond all ports, or some ports?

and made my own cables numerous times, all have the same problem

windows?

@limpid pond I mean, 22 bucks, I guess you get what you paid for :P

so for example https://gyazo.com/3e621b4d6efc82b89409cdbe66e73d2d I would here put blabla.blabla.com under hostname and under is an alias of I would put my mikrotik ddns address thingy?

basically

Okay then I understand, it's simple enough. What had me confused was me thinking I had to create an A record for some reason

Only problems I ever have are from the network switch onwards

@limpid lion https://i.imgur.com/xbhDWOX.png

it resolves a CNAME (Canonical Name)

and then an A record (Points to IP)

AAAA is for IPv6

@tame carbon how's gitea compared to something like gitlab or gitbucket

or github

@peak cloak faster and doesnt hog the memory as much

gitlab is bloat af

I stepped away from that

I was wondering where my message went, part of my ISP's name is a banned word lol

oh yeah it's stupid

what isp is that?

*irgin media

v1rgin media

LOL

Yeah get banned you fuckers

xDD

I wrote out my network setup only for the message to be deleted lol

@limpid pond could be something downstream?

you need a router modem and acess point

Yes

Well no

I don't have a modem

neither do I

I blow smoke vape clouds out my window

gigaclouds/second

So I have a vrgn media superhub in modem mode --> ubiquiti amplifi hd router connected to devices both wires and by wifi --> tp link network switch connected to a few devices wired --> tp link access point which is connected to devices over wifi obviously

The problems are only ever at the switch/access point level of the network and nothing ever has an effect on the network up to the amplifi hd router

Re-terminated wires again today to make sure the cables/connections are the problem

Wait so the switch is connected technically over wifi?

The ethernet from ubiquiti to the switch has been plugged directly into devices to test the internet connection and they work fine

@peak cloak I think he's speaking in 4d

we need a drawing

switch is connected by an ethernet cable

how else xD

All hardware is connected by ethernet lol

yes

Its literally an ethernet network

🤣

Yeah but idk if the unifi amp thing is like the thing where you have multiple of the and you can get eth out

The mesh

So it's technically a wireless bridge

I don't have it setup as a mesh unit, just the actual base unit

This alone

Ah ok

wat

wait

Why did the picture show up like that lol

does it have that speedometer on at all times??

Yep

lol and how much is this? xD

Connect a computer to the ethernet cable the switch is plugged into @limpid pond

See what speeds you get

@acoustic horizon Thanks you so much! Its actually a job offer based on cloud. Which im intrigued to get in and they seem to have a good support system even with people with small knowledge in their basis. quote on quote "gotta study a lot"

@tame carbon https://gyazo.com/91da56bfc54d3b4d1b1bd07c0c438b63 https://gyazo.com/3dccfbe27cc295428b98db75a6ed54e8
This correct if I want to open port 80 ? 192.168.1.19 is the IP of my npm

not sure if that will work

yeah this is prerouting

how should it be done? 80 and 443 open on 192.168.1.19

not sure what prerouting is

@limpid lion its a step in the processing

hold on let me test something real quick

👍

@limpid lion yeah should work that way

just tested it here

1000/1000 (Mbps)

hmm

I think switch is the issue honestly

unless it's the cable

It's a 60m cable, has run fine the past 5+ years

@limpid lion instead of port 80 do 80, 443

@limpid lion and then the same in the action tab

Might have given up now though, probably time to replace the cable

Is this running speedtest constantly or just showing active throughput

Showing network traffic

1000/1000 is gigabit.

https://gyazo.com/e1a8dea42273ede3d65a8871a4f9fc7c

red in actions tab trying to put both ports

works in general though

Yep, so I'm getting gigabit from the amplifi hd but somewhere at the network switch point it's dropping connection constantly and when it's not dropped it'll get 100mbps max

@limpid lion I think you can just leave that blank

hmm alright

how do I know what to put on in interface? Is 1 the wan port?

ether1 *

@limpid lion go to `Interface -> Interface List

👍 I see it

@limpid lion the interface list is used by the firewall

Leaving port blank on action tab gives it a "0"

should still be fine?

@limpid lion press on the arrow

that makes it go blank

ah

@limpid lion if you look at IP -> Firewall

if i use a cat8 ethernet cable will that effect the electricity usage

dumb question i know lol

ethernet doesnt use a lot of current

and cat8 is overrated

a

cat6a is good enough

40gbps tho

😕

nah.

not gonna happen

you need fiber for those speeds

My internet suddenly stopped working and my ISP has no clue why as all things work fine on his end. The internet status light on my WiFi router is constantly blinking idk what that means. Any help please? I have tried restarting the router.

I can show a video of my router if you need to see which light

@thick minnow 10gbit is up to 25 meters on copper

@tame carbon
https://cdn.discordapp.com/attachments/565188767074353153/831265371989475379/temp.jpg

From the outside. Seems to work!

higher speeds and longer distances require fiber

with SSL

what is fiber

i lack in knowledge

😭

@thick minnow instead of electricity flowing over a wire, its lasers over a strand of optical fiber

Its basically this ^ but over a fiber thats 9micrometers wide, thinner than a human hair

and its infrared light

I'm very paranoid since I'm a novice I hope I did it correctly with the port forwarding and that it's somewhat secured.

@limpid lion nah ur good

firewall is well thought out

as long as you dont muck around with that

Litteraly me

messing around in there

at the end of your firewall

you have these rules

https://i.imgur.com/LEt5ixV.png

Yeah

that acceps all forwards for established and existing connections

and the other rule, drops all traffic from wan, that hasn't been forwarded

so it basically drops the packet

@limpid lion and then ther'es another rule

I think that's drop all not coming from LAN

https://i.imgur.com/LOWIlsY.png

This is input though

so thats for things that go onto the mikrotik's own IP

this for example prevents people from accessing the web config from outside

the mikrotik default firewall is very safe

but only if you keep it that way

Not going to mess with that

far beyond my understanding at this point in time

@limpid lion https://i.imgur.com/sBjwpc1.png

xD

I was just on the mtik routeros manual

@limpid lion this is more relevant:

Ok this one is easier to look at

@limpid lion this is how the linux IP stack works internally as well :P

Routing ^

well that's one part of the whole system which is the top image

@limpid lion yeah that big picture, has three of those smaller ones

that's the last one, for MPLS

im using a cat6 rn

and ive been getting more latency han usual

😕

that has nothing to do with it

in other regional servers like NA and EU

and my own.

traceroute

if you ping your router IP that will confirm it's not the cable

huh

How do I do a traceroute

well first show output of ipconfig /all

did it

what do i look for

what's the default gateway

just

default gateway?

just traceroute to 1.1.1.1

open command prompt

and run tracert 1.1.1.1

it says

<1 ms

just show it here

<1 ms

the whole thing

k

it shows my ip address

gonna cover it up brb

no it doesn't

it shows internal ips

and the ips of isps routers

but not your router

thats not an ip address?

see ping to your router is <1 ms

192.168.0.1 is a private IP

is thaat a bad thing

no

this

it's a reserved IP that can't be used for global routing

is that a bad thing

no

that's good

because it just shows it's not the cable

does it matter whether the cable is really long

lets say 30m

no

does it interfere with the data coming through

ethernet's rated max is 100m

the cable

no

look

the latency to your router is less then a milisecond

all the latency is on anything between your router and the server

Is there a reason to why my ping has been unreasonably high

oh

could be route down

lots of things

the internet is very dynamic

Do vpn taps slow internet down...?

this is a really dumb question i know

lol

a tap?

just the network adapter?

yes

like a nordvpn

tap

i forgot i still had the nordvpn tap enabled

long after i dropped nordvpn

like I said, the latency to your router is fine. It's not an issue between the router, the cable or your pc

ok.

NA Regions

Could be anything between your ISPs connection and the server.

if its a copper network on the other side

could literally be anything