#networking

going to need another $15 then

idk, the kit seems to already have the ends

I've only worked with those compression ones that come with the kit

I did say scratch that LOL

oh lol, didn't see

The $16 kit seems to have everything I need minus the ability to cut off the broken end but that should be simple enough LOL

simple scissors should handle that job easily enough

So I will be having inbound connections to a server from outside the home network, potentially using wireguard for multi-carrier aggregate bonding on the inbound connection ( I run my own server for IRL live streaming) I'll be looking to have a back up server and a b-roll video storage as well as a surveillance camera system as well with its own data backup plus the usual wifi end points and PC /PS4 etc connections and also network controlled lighting (aka Hue lights) and other "smart" home features like air-conditioning control

I have a problem with cisco switch, so when i connect pc to switch amber/orange light starts blinking and i don't get network to my pc

Any ideas?

sounds like its working tho

anyone know if this card will work with TrueNAS Plex build

IBM 68Y7354 LSI SAS9212-4i4e 6G SATA SAS HBA PCI-E RAID Controller Card

I cant see a reason why it wouldn't

@lime aspen it's unclear https://www.truenas.com/community/resources/whats-all-the-noise-about-hbas-and-why-cant-i-use-a-raid-controller.139/ but it's the right brand at least.

The other option I have is to remove my coax cable from the splitter and feed it up into the room with the modem/router

Not like I personally use the OTA antenna

will these cables do fine? they're extremely cheap so I just wanna be sure it won't just snap as I'm plugging it in lol

I need 2 of these

(this is like, 3 bucks at most)

I mean, it's a cable

can't go that wrong with a cable, as long as it's up to spec

I will just leave this here https://www.youtube.com/watch?v=u6lx1ntNoxE

"as long as it's up to spec"

problem is we don't know if those cheap cables are up to spec

cat6 is just 8 wires, so not as complex as HDMI or VGA or DVI

cat5 is just 8 wires too.... Seems like some nice hidden complexity for cat6

it's the twist

and the guage I think too

CAT 6 patch

cat5e patch

@jade briar

patch cables have stranded wires, but for actual runs in the wall you want to use solid core

i use solid for patch at home

bought bulk cable, dont want 2x bulk cable

I just have a bin of premade cables I have

isn't working with stranded a pita?

not that I recall but i mostly only make solid

Cat6 also requires that plastic shield in the middle. So they are stiffer compared to cat5, hence calling it just 8 wires hides a lot of complexity.

Ah yeah

Anyone familiar with TPLINK Managed switches? I got a used TL-SG5426, where the http panel is disabled, i can telnet into it tho... How do i enable the http panel using telnet, can't seem to find a switch for it anywhere :/

Try typing help to see the options

yeah i did that, and messed around with it for quite a while, i can find options for setting the port and stuff, but can't find the option to actually enable/disable the thing

also seems like a full factory reset is only possible using CLI cable?

oh serial?

what model is it?

Yeah, i don't know if it's just secured that way, so you need physical access to it to be able to reset it, so it's simply not possible over telnet

TL-SG5426

ok so it says how to enable it in the manual

https://static.tp-link.com/resources/software/20081219162749.pdf

yup and tried that already, does not work

ip http port 80?

ip http server

ip http port 80
ip http secure-port 443
ip http server
ip http secure-server

still doesn't work...

you in configure mode right?

yup

and then I assume you need to commit the configuration

and save to disk if you want it to be permanent

so I think this switch doesn't have commit

it just has an "end" command to exit configure mode

nothing called commit, save, apply or whatever

it has save

in a weird way

copy running-config startup-config

do that

then maybe reboot it

see maybe if ip http restart or similar exists before rebooting

out of config mode

looks like it saved the http config stuff to startup1.cfg which it's running on boot, but even after reboot "ip http" isn't showing, it only has dhcp and ssh, been messing with this stupid thing for hours now and it just refuses to turn on the damn panel

can you not just factory reset

guess i could copy the default config over startup1.cfg and reboot

yeah try that

https://i.imgur.com/Mtn3BZr.png

just afraid it might not have anything enabled then, and i might not even be able to telnet it

i don't have a serial CLI cable :/

me neither

but I should

At least since i buy or get alot of used computer stuff for free, at some point i'll run into some switch that doesn't have default creds anymore and i'll need it to reset it if it doesn't have a reset button, like some TP-LINKs don't you need CLI to reset it if you cannot access anything on it because of missing creds

So i should just buy one 🙂

Source configuration file name: Factory_Default_Config.cfg
Startup configuration file name [startup1.cfg]:
Write to FLASH Programming.
Write to FLASH finish.
Success.
Vty-0#show startup-config
building startup-config, please wait...
!
!
username admin access-level 15
username admin password 7 21232f297a57a5a743894a0e4a801fc3
!
username guest access-level 0
username guest password 7 084e0343a0486ff05530df6c705c8bb4
!
enable password level 15 7 1b3231655cebb7a1f783eddf27d254ca
!
snmp-server community public ro
snmp-server community private rw
!
vlan database
 vlan 1 name DefaultVlan media ethernet state active
!
interface vlan 1
 ip address dhcp
!
line console
!
line vty
!
!
end


Vty-0#
Vty-0#
Vty-0#
Vty-0#reload

Here goes nothing i guess 🙂

Nice it works, thanks for the help man 🙂

np

Does network discovery need to be on for a virtual machine to work? PFsense refuses to work no matter what tutorial I follow for it. 😕

wdym by refuses to work

not descriptive at all

😕 Well, I have everything set up, under network and storage tab. I have the ISO file set up and such, like every freaking video and article tells me to do. But when I start the VM to "install" it, it just keeps sending me through the same install process. I'm pulling my freaking hair out.

uhh you need to actually install the contents from ISO to the virtual hard drive

unless you are using a VM image, not ISO

🤷‍♂️ I have no idea what that means exactly. I guess its a VM image since I set up the "VDI" with it.

🤦

you have a virtual hard drive

you need to go through the install process to install the OS from the ISO to the VM disk

it's just like anything else

Dude, I'm using Oracle VM. I went through the process laid out by literally every soul on the web on how to get PFsense set up.

have you removed the ISO after installing...

🙃 Do I remove the ISO before hitting "reboot" or after?

before

or shutdown, remove, then start

😆 Looks like the screen just froze so far. Never thought setting up PFsense would be this gosh damn annoying. Had no problem setting up Win 10 as a VM.

good god almighty this shit dude

it's not pfsense, it's you/whatever hypervisor you are using

pfsense is not much different than any other OS

🤷‍♂️ Had to control alt delete to get the screen working again. Now it keeps saying "vm fault: pager read error, pid 1(init)".

@peak cloak And this is the hypervisor I'm using. No idea what is happening with the shit. https://www.virtualbox.org/

@peak cloak 😕 Sigh Yeah, I don't get how I'm supposed to remove the ISO file and expect it to still work. Would removing the ISO file and then taking a snap shot of it before rebooting work? The hoops you gotta jump through to get this shit working is utterly ridiculous. 🙄

@lone sun you setup the VM machine with a virtual harddrive, you add the iso and boot it once and go thru the setup process like you would on any real pc... Then you "remove the iso", which is equal to ejecting the install cd from a real machine, and it should just boot up from the virtual harddrive

🤷‍♂️ Ok, but how and WHEN am I supposed to remove it dude? I set up the VDI, then the ISO already so.

Every tutorial I've seen so far has been full of 💩

you edit the config of the machine, which hypervisor are you using? virtualbox?

yeah

Only thing I know, is what every dude is telling me to do. 🤷‍♂️ ....Even saw some of them "remove the ISO", and it somehow worked for them. I don't get it.

Rightclick your VM, go to properties > storage and delete the ISO?

🤷‍♂️ Well, I'm at that "reboot" screen again in the PF sense. I remove it before or after I "reboot" it? Do I even have to reboot the shit? 😫

you just reboot, then once you see the bios thing, you just insta stop the vm

remove the iso, and then start it again

if you dont remove the iso, it'll just keep booting from the cd image (iso) instead of the harddrive

@thorn coral But at what point do I save the state of the thing?

you dont

you go thru setup, when it naturally wants to reboot, you just stop the vm

remove iso and then start it again and it should boot from harddrive

🤷‍♂️ Now it says "FATAL: No bootable medium found! System Halted". What the fuck man 😩 .

did you install the os to the virtual harddrive?

Let me try and install it to virtualbox quick

@thorn coral You mean the Virtual Disk Image I created when setting it up? 😕

yes

🤷‍♂️ Well, yeah. 🙃

Going through the same process again'

Picking BSD, then Free BSD 64 bit

@thorn coral Or do I pick virtual hard disk instead?

VHD?

It'll show up as a normal drive during install

just VDI is fine

Ok, then I simply mount the ISO file right?

yep, and then click devices > optical drive > unmount at the top when setup is done

Looks like it running for me now, but you need to configure network adapters and stuff for pfSense to make sense at all

works perfectly fine installing it in virtualbox, so not sure what youre doing, but somewhere you ain't following normal procedure

Out of curiosity, why would you want to run pfSense in virtualbox btw?

@thorn coral 🙂 Oh, trying to set up a type of sandbox environment.

Youre going to have fun setting up virtual lans in virtualbox tho, for pfSense to make sense, you need to add multiple NICs, so you have at least a WAN and a LAN "port"

@thorn coral 😭 Still doing it. I notice it keeps saying it can't find something every time at the start of it. I goes by too fast to see what it says though.

then run thru the setup, just use defaults for formatting the drive, Root-on-ZFS i think it's called

then once it's done and asks you to reboot, eject the optical media using the Devices > Optical Media menu at the top, and press enter to reboot

and it should boot from the harddrive image and ask you to setup VLANs and adapters

@thorn coral See, every other tutorial told me to simply click on UEFI or Bios. When I click on the Root ZFS one, its sending me to this other page.

Yeah press space there to select the disk and then continue

But UEFI or BIOS should work too

What disk? This seems more for raid dude. Its talking about stripe this and that.🙃

Sigh, oh boy this fucking shit dude

Since you only have one disk you just select the top option (Stripe - non-protected or whatever)

Ok, so the next screen says VBOX HARDDISK

huh?

😆 That's what the hell it says

screenshot

This is after the stripe disk spiel.

yeah you select the drives to use in the stripe raid, in this case just a single disk?

I picked the one with no redundancy in the previous screen.

yeah, it's still a stripe raid with a single disk, just select the disk and press enter

Keeps saying "not enough disks".....good lord this shit man. I shouldn't even have to be bothered with this.

do you have teamviewer?

You know what dude, forget it. Its getting late. Its fucked if we're talking team viewer. 🤣

Well i don't know what you're picking during the install or when setting up the VM, but you're setting something wrong... Pretty much everything can just be left default and press enter and it works

😂 This shit is a joke. How this software is so popular is beyond me.

Nothing but a hassle

It's popular because it's very fast and can do so much, but yeah it's not plug'n'play, it's an advanced routing/firewall

I sent you a ton of screenshots in PM, showing every single step to set it up in virtualbox

@thorn coral I have a preset pf sense VM, through my school material, 30bird. That's literally the only way I can get this shit working at all. I don't get how its not working the other way.

It is, you're changing some setting different then what i screenshotted, or running an old/different version of virtualbox or the iso

It's popular because it's the only type 2 hypervisor on Windows that's free

Except for hyperv, but who uses that omegalul

You can try vmware player or a trial of workstation

Vmware was easier to work with than vbox for me

Oh you mean pfsense, I'm an idiot

Vyos all the way for me

Windows Server Router all the way for me

Pidgeon Router OS for me 😄

EdgeOS

So i have a Brother QL-700 label printer which is currently connected to my Unraid server... Currently it is shared over the network from a windows VM, so that both me and my wife can print labels with it from our own PCs.
My question is, isn't there any other way to run a print server on Unraid then using the Windows VM, would kinda like to eliminate that thing, as it's taking up loads of ram for doing nearly nothing. Does any docker or similar exists that can work as print server?

https://www.amazon.com/IOGEAR-1-Port-Print-Server-GPSU21/dp/B000FW60FW

stuff like this exists but cant say how well it works

I am already running an unraid server where it is currently shared thru a windows vm, which works... I would just prefer to swap it to a linux based docker container or something similar, to avoid having to run the windows vm. I don't want a standalone box to do the sharing, that makes no sense when the server is already running 24/7

🙂 Now I'm making progress, finally got PFsense working thanks to @thorn coral . So what I'm trying to do is make a type of sandbox, a testing environment that doesn't communicate to the outside world, but can still get to the internet, if that makes sense. So is this IP configuration correct in the image below? I have the pfsense WAN set up as a bridged adapter, while the Windows VM adapter is set up as "internal network". The one on the left is the Windows 10 VM.

And my coax cable has been rerouted

don't want to communicate to outside world
Still have Internet access

That contradics each other. Internet access is exactly what you described. But yeah you need some adapter. I forget the exact name in windows, but I will Nat it's own ip to VM

To me it looks like you already got what you want, Windows VM has 1 adapter running "internal network", basically virtual local lan, and the pfSense has a bridge adapter simulating a modem to outside world and another adapter with "internal network", simulating the virtual lan between the 2 machines.

Basically everything is routed thru the pfSense router

I've got a second gaming rig function as a NAS with 6 HDDs, I've shared these over the network using the windows build in sharing service, I want those drives to be accessible in public, using FileZilla, but I can't get it work, I tried f*cking with the ports, certificate, SFTP/FTP, protocols, like I don't know what I'm doing wrong but I can't seem to access it from outside, sometimes I can access but it tells me it needs this or that... Any help is appreciated.

Uhh, don't expose ftp to internet

Two, make sure you have a public ip

So you can port forward

ive got a public ip yeah

but idc to expose

@peak cloak check #tech-support a bit back

well you should

setup a VPN or something

i will friendly decline your offer but please run me through the steps

steps to do what

exposing a port is just port forwarding

and again, please don't expose ftp

set up a vpn

I use pivpn

set it up on a VM, port forward the wg port to it, boom done

so yes i do have vm software

but pivpn is for a circuit board

uhh, what

no

https://www.pivpn.io/

the code on the website states something i cant do on windows

well yeah

if you haven't noticed already, windows sucks for this type of stuff

if you want something simpler, check out zerotier

lets you setup a private network easily

https://www.zerotier.com/

can this stuff even stream?

stream as in?

like i do in windows shares internally

uhh I don't see why not

cuz i dont understand

it's just a tunnel

could you help?

so imma register on zerotier

• setup zerotier between your devices (NAS, client, etc.), no port forwarding required
• connect to the internet private network ip of the NAS within the zerotier network like you normally would

so you first need to create a network

those are routes

remember, i have no clue what this is

go to the website

normally id say i get into vc but there isnt any

right once you sign up, on the main page, you have "Create a Network"

it will autogenerate a network

it did yes

🤔 Yeah, this is basically how its explained on the virtual box website. Its already being "nated" (I guess is the right term) in such a way that no traffic in the vm can reach the host, while still allowing internet access. https://forums.virtualbox.org/viewtopic.php?f=35&t=96608#p468780

ok, now you need to add the devices to the network

so download zerotier

does it matter where?

on the host device i suppose?

need it on both devices

what it's basically doing is creating a private tunnel between the 2

i dont need on the pc im typing from right now i guess

whatever you want to access the nas

but I would install it first on NAS ofc

https://www.zerotier.com/download/

installing

on the webpage scroll down to

copy the id

paste into the zerotier client

then you need to authorize it

you can set it's name, an private network IP

will windows shares stay unchanged btw?

I don't see why they would change

where is this

once you put the id in the client, refresh the web config of the network

and give it some IP

example

now when I do ipconfig /all I have it

so next, you just add another device to the network

and they will be able to communicate between each other

Did you just do something?

?

My complete network is gone

tf

did you change some default gateway stuff

Not that I know of

But the WiFi signal is gone too

uhh what

Fucked something on your end chief.

could be very coincidental ISP outage?

I hit disconnect on the client and everything is back

huh

in the client, turn off upnp, I forgot to tell that

Gotta be off?

yeah try that

and make sure the settings, client side look like this

just allow managed ips

like so?

I assume it's a /24 network so it should be 172.26.0.16

yeah

so what then?

connect from client

client or something on the other end?

well it works now?

is there a different exe for the client?

so it works now? no internet issues anymore @unreal terrace

not that i see

no there is no server/client

it's just peers

so I assume this is nas?

yeah

now do the same process with whatever device you want to be a client

don't think you need to manually set an IP

zerotier should do it automatically, that setting it just for manual ips

imma see if it works

then once you have the 2 devices on the virtual network, try to add the windows share with the IP of 172.26.0.16

im waiting for my mate to get his ass moving

understandable

this normal?

Physical IP unknown @peak cloak

nvm

so thats gonna be like \172.26.0.16\Movies or?

I think, I'm not too familiar with windows shares, or really any shares tbh

this is correct?

noo

lol

can't have 2 ips that are the same, either let zerotier set the ip of the other peers, or you need to have it be a different IP

so i can just do 17 instead of 16 right?

ye ofc

omg

a THOUSAND KISSES

thankssss

np

and it's actually secure

zerotier is getting pretty popular cuz of easy it is, and it's not like others where the traffic goes through a central server, but the central server is only for discovery and the rest if peer to peer

imma delete some ports off the router

especially 21

def do

imma keep 3389 and 3388 tho

What

What's the issue then? Upload speed? 5G download doesn't seem to be?

@peak cloak

idk, could try a speed test

run iperf3 in server mode on the server

run iperf3 in client mode on another and connect to server

how

It's low but not undoable...

pretty slow

I'm inside concrete walls

and that's a speed test to some remote server

not to your nas

true but how to enable that iperf thingy

https://iperf.fr/iperf-download.php

download it, same version for both computers

phone*

he.net - Network Tools

https://apps.apple.com/app/he-net-network-tools/id858241710

https://play.google.com/store/apps/details?id=net.he.networktools

or in termux on android

its literally stated her

yeah ik

i ran it but nothing happens?

it's a cli tool

so its nothing like a gui?

it's all cli

so in the folder it's in do SHIFT+Right Click, then open powershell window here

on the server then just do this ./iperf3.exe -s

in the directory containing the binary

sorry on the server you mean my host device?

with pwshl

yeah the NAS

If you’re media streaming, why not just set up Plex?

like I said ^

the whole hdd is a share

you need to be in the directory containing the binary

doesnt even matter

still the same error

it does

type dir

do you see iperf3.exe?

no

ok then ofc it wouldn't work

you need to be in the directory where iperf3 is

keep in mind you need to unzip the download you get

lol

whats next boss

go to the phone and type in the server of the nas

the virtual network ip

not the network tools app?

well yeah in the app

where else lol

here?

ye

may need port as well

172.26.0.16:5201

hmm

what app is this?

HE net tools?

Yeah

weird

maybe it's expecting a domain name

i can do a redirect for the ip?

let me try to use it

yeah, just make a A record

also it's not a redirect, just think of it as a lookup

hmm no

i have no clue if it works but try visuframe.nl/networktoolsredirect

I can do it just fine with the app

if on android I like termux

it's just a terminal and you can install a lot of linux tools on it

imma delete network tools and install that then

what i put in there

try just iperf3

should show an error, and tell you how to install it

installing

and then example of it running

iperf3 -c <server_ip>

lol, no <>

Lol

Iperf done

yeah there, that's how you do a local speed test

Which is proper

if that's the bandwidth, then it's more than enough for streaming

Agreed

it's probobly just windows

can you stream locally?

without zerotier

Yeah

Works just fine

Has been the past half year (since I set it up)

hmm, weird

Thought so too, what's next?

idk, is this an smb share or some other thing?

Are Tri-Band access points better than Dual-Band?

SMB isss?

It's the share option found in explorer

a type of share, it's pretty popular

so I assume you are using some other thing

maybe it does some weird local stuff, idk

not familiar with this, just a networking guy

its windows sharing, its for local lan only . if you really want to go over the internet you would need a dedicated share server.

an truenas

they have a zerotier private network set up

so I don't see why it shouldn't work

they say they have it running as a dedicated NAS

cause its using netbios for discovery.

I mean it does work

just streaming is apparently very slow

what he said

well not even that its wlss(??) let me see what I had to do run. for the correct name.

wsdd - Web Services Dynamic Discovery host daemon - windows new discovery protocol that replaced netbios.

and that says?

its not a dedicated nas server its just a local lan share, if you are some how accessing it it would be through your windows machine which then would be acting like the server. did you open ports on the firewall for forwarding to the zerotier tunnel?

on the windows machine

Are Tri-Band access points better than Dual-Band?

what do you mean tri-band

Like some access points come with Dual Band which is 2.4 and 5 and others are tri band which is 2.4 and then two 5ghz radios

no?

marketing bullshit. its still dual band. just more antennas.

what ports do you want me to open up and inbound or out?

and yes more antennas is better.

which ever ports the tunnel is using and yes it would need to be in and out.

I'm trying to setup remote access to my TrueNAS server through Nextcloud. Would anyone be able to recommend a good free DDNS provider?

clearly took it that advice

most of those are not antennas though :p

Triband has more radios not antennas

aight done

Looks like a Half Life head crab

uhh where did you do that

router? that won't do anything

ah ok, good

@waxen scroll @clear igloo yay school VPN https://i.ryois.me/kHHE0cQs4S.png

a solid ~10Mbps

pain

Looks like piracy

lol

nah, we own the licenses for this media

I just need it to work on stuff from home and I forgot to copy it to my portable SSD

@rocky badge aren't you on 365? Why not onedrive

its on our NAS

since we load the project directly off the share internally

Yeah but in corp nas is going away for onedrive

onedrive is shit for this ¯_(ツ)_/¯

https://i.ryois.me/6MSjsRkWIc.png

I'm not trusting onedrive to run a show

I would. It's local storage backed by cloud

well im able to load pics ( i think i was before) but videos dont do shit

If anything it performs better

Our NAS backs up to cloud too ¯_(ツ)_/¯

but having everyone be able to access it directly from our Z drive is nice

Since we create content in after effects, save and render to share, pull from share into Resolume

We can't even download and upload to OneDrive @ gigabit, much less collaborate efficiently

imma restart my phone maybe that helps

also may want to restart the windows machine.

yeah lets do that after an uptime of 8 days

seems to have fixed absolutely nothing

yeah the problem I see is that windows share is not really meant to be used over the internet. its just for local lan.

it stopped showing me anything on cellular

it were those ports you told me to enable/forward in firewall

ehh

It's not just the zerotier part

My phone doesn't even play without VPN turned on @primal ice @peak cloak

Probably something with upload

locally with the local ip?

not the virtual IP

Yes

so issue with server

With my pc?

you sure the firewall isn't the issue

you added some rules, try deleting them

Dunno, my other machine streams them just fine

I removed them yes

oh

what about with this machine over zerotier?

is the other machine wifi connected or ethernet connected?

This machine doesn't have it installed at all

Ethernet

I mean still try, for troubleshooting purposes

as in install zerotier

Wait I'll connect my phone over Ethernet, see what happens

okay well then

thats sums it up, ethernet is fine

over zerotier as well?

oh wait

thats fine too

so whats the issue with a wireless connected device then?

or what am i not seeing?

want me to try my laptop over zerotier?

@peak cloak @primal ice

sure

¯_(ツ)_/¯

well

phone is the bad guy here

laptop acts like its connected over the actual network too

wtf is wrong with my phone then?!

the app? idk

the app is file commander, you can link ftp, local network etc

whatchun recommending ill try that

es?

idk, just could be some software issue

like?

idk

just some issue with it being non windows

but it wouldn't make much sense if it works over wired

correct

well it works wireless, just playback doesnt

check your ap for errors

access point?

yes

the router logs then?

yes

@primal ice @peak cloak so...

i installed vlc on android, laid a link for local network, guess what

thanks for thinking along guys, your help was appreciated very much, enjoy your night/day, im off to bed, mucho mucho gracias

how do I restrict my router outbound traffic to a list of IPs? (basically a whitelist of VPNs addresses.) I can't seem to find this option in my router. Is it because of my brand of router or something?

something about firewall or ACL rules is what you're looking for but it completely depends on the make/model of the router on how to do it

Would running something like this a good idea?

Especially with internet straight into the server and then using pfsense as a router/fw?

I run pfSense on a dedicated machine, but I've seen plenty of people run that same setup

Looks good to me though

@pulsar thorn What kind of dedicated machine do you use for pfSense? Also not really sure how do deal with iLO, should I just run a cable from the iLO port to one of the other network ports and then jack that into the admin vnet inside of proxmox?

iLo is just management

No traffic should be going through that

and this is why I don't like main router's virtualized

Yeah I know, but I was thinking of using a VPN to pfsense so I could access it while away for example. But then I wanna be able to access iLO then too.

I agree, jacking in a internet connection straight into the server feels just wrong. My other option is to run it like this

You have an er-x, why do you need pfsense

You can do complex stuff on it

Cause I wanted to make a DMZ between them and keep my sensitive data behind it. But maybe that doesn't make sense?

You can make firewall rules in edgeos

Yeah I know, but like I said. I wanted to make sure that even if someone manages to get though the edge router, there's another firewall protecting my data.

Just an old workstation with 16gb ram and a 4th gen i7

Chucked a single 1Gb pcie card in and that wasn’t enough so I grabbed an intel T350 or whatever they’re called and it works perfectly

I don’t have any vlans yet because we don’t need them but it’s great for a reverse proxy with HAproxy

Hm okay, cause I'm having a hard time deciding how I wanna set things up.

@pulsar thorn Are you using any KVM to access the pfsense server then?

Nah I have a SoftEtherVPN server running on an old laptop (runs all my docker containers, minecraft servers n stuff) so I usually use that to get into network and ssh from there, but today I set up “Apache guacamole” so I can use a web interface to ssh, rdp, VNC n stuff into all my servers

Most the time I end up plugging in a monitor that sits next to the pfsense machine and using a usb keyboard though

Hm okay

I would show you a photo but I’m in bed and my desk and stuff is a complete mess

I think I have a photo somewhere hang on

Lemme grab my laptop and edit the diagram

Ah thanks, that'd be great!

You say this, but if someone gets through your edge router, they can directly access your admin, iLo and management interfaces/networks.

this is the crappiest drawio diagram I've ever made haha

@fringe haven

I know it's crappy but that's pretty much how I have my network set up

I don't have time to add my vpn server to the list because I need to sleep but you get the idea lol

@pulsar thorn Thanks for the diagram!

@slow pivot Hm yeah true. So then I guess just going with the ER-X makes more sense?

I would, if it offers similar functionality to pfSense

why is my download speed jumping to crazy high speeds above what i am paying for and then come back to my normal speed

@slow pivot Okay thanks!

Is ASUS RT-AC51U a good cheap wifi router?

@peak cloak @primal ice hey me again

I tried it throughout the day, so did my friend but the stream is very laggy

What can cause this?

bandwidth, encoding issues

What can I do to increase bandwidth? The actual upload speed from my ISP is 25 mb

What would be with the encoding issues? Can that be fixed?

like the way windows encodes the video to send, or the lack of encoding

and why it's therefore laggy

Can it be improved or fixed? Maybe a setting from zerotier itself?

Or maybe somehow that it caches instead of reading the file in real time?

Or could it be the issue that there is no password presented when opening SMB location?

@peak cloak

idk, I have very little clue to how SMB works

I just run a jellyfin server for all my media

@primal ice have you got an idea?

So i have a friend who has a Synology Disk Station, he cannot port forward on his router, it's locked by his ISP. I have setup a L2TP VPN server on my edgerouter and connected to that from the synology and it gets assigned an ip...
Messed around with it for a while now, but cant seem to get it to work, i want to make it route from my local lan 10.10.10.0/23 to 10.10.12.0/24 (VPN client pool)

can you ping his nas

from the router yes

from any machine on my lan no

oh yeah you need to make a static route

give me a sec

edgerouter has made this one automatically

that's a /32

so basically P2P

you need a /24 to route to the whole subnet

so here just do this, and select the tunnel interface

There is no tunnel interface

there literally is here

tf

I never used L2TP

I use wireguard for all my vpn uses

try maybe via cli?

Same, but this stupid Synology piece of shit doesn't support anything

in the cli, try show interfaces

see if you see some L2TP interface

Nope nothing

hmm

weird

Idk really know how l2tp works, so you could try this

The EdgeRouter is vpn server, not client, so i don't think it gets an interface for it

Hey guys, anyone know of a good mesh wifi system for a 2000+ sqr foot house? My parents are interested in upgrading the wifi signal around the house (one side of the house has very weak wifi signal)

still should, unless it operates in a different way I think

if you want good wifi, you use wired Access Points

mesh will only be descent

+1 to that, wired APs all the way

It sucks wiring it tho 😄

try this

not sure if it will work

@peak cloak That was actually something I suggested, we did have some wires for more router through out the house but during the house reno the wires were tossed sadly

btw, "routers" are actually Access Points, you only want one router in your house

router doesn't mean wifi

just want to clear up terminology

Yeah

also rip

as for wireless mesh products, never tried any so idk

We have one of them AT&T Uverse boxes, which a Archer A7 hooked up to it

The Archer is what I added in, which made it a bit faster but the strength is still not they great on the far side of the house

Depending on your walls, Google Mesh Wifi or Ubiquiti should work fine... But yeah, if there is any possible way, wire it all up to Ubiquiti AC APs and youll be good

Tplink omada APs are great too

No experience with those, but after i switched to Ubiquiti, everything has worked 100%, so can't complain

I hate how unifis don't have webui

Without the controllers

Yeah, ubiquiti gear doesn't really feel like it's made for normal home use

I just run one eap225 in standalone

Ah oki

You could buy a ubiquiti dream machine thing and you have cloud key and everything in one

and then that can control any additional APs

Hmmm ok

One thingnim wondering is if I could hook up OpenWrt to it.. (the Archer's running OpenWrt on it)

Ubiquiti runs their own OS thing, which is great, not sure about the TPLink stuff

Google is their own stuff aswell

Ah ok

How did you setup l2tp on your router?

Uh.. I2tp?

What's that?

Not for you that question, PresentMonkey 🙂

I don't

never used it

But you said you had the option in your static route thing?

did you try this

wdym

for wireguard yes, I have an interface

wireguard on edgerouter?

ye

didn't even know that was possible 😄

just install a deb package

and it sets up cli configs as well, so you just use it through the vyatta cli

Ah

Main thing I want to keep is the VPN and firewall settings that the Archer A7 router @thorn coral

arp              date             hardware         ldp              openvpn          snmp             update
bfd              debugging        history          lldp             pppoe-client     ssh-recovery     upnp2
bgp              dhcp             host             load-balance     pppoe-server     system           users
bi-lsp           dhcpv6           incoming         log              queueing         tech-support     version
bridge           dhcpv6-pd        interfaces       login            reboot           traffic-control  vpls
configuration    dns              ip               mpls             route-map        ubnt             vpn
conntrack        firewall         ipv6             nat              rsvp             udapi            vrrp
cspf             flow-accounting  journal          ntp              shutdown         unms             webproxy
admin@ubnt:~$ configure
[edit]
admin@ubnt# set interfaces wireguard
wg0
[edit]
admin@ubnt# set interfaces wireguard wg0
address            disable            fwmark             listen-port        private-key        up-command
bandwidth          down-command       ip                 mtu                route-allowed-ips
description        firewall           ipv6               peer               traffic-policy
[edit]```

just as easy as vyos

https://community.ui.com/questions/Release-WireGuard-for-EdgeRouter/3765d2a4-1952-4629-948a-3ac9d9c22311

I can ping it from the router, but i cannot get the damn thing to allow me to access it from LAN machines :/

yeah routing issue

@thorn coral you added this?

https://cdn.discordapp.com/attachments/387022787480387605/907040121445023784/unknown.png

Yes i added that and every other combination of it i could think of, it didn't work... Finally did get it working tho xD

ohh nice

what did you do

I had to make a static route on the synology aswell, to make it know how to route the ping response back thru the VPN 😄

ah lol, oh yeah

since it doesn't know where to get to your home LAN

exactly 😄

basic routing, I should know this lol

me too xD

Just didn't think so far

see with something like ospf or iBGP, no need for static routes

more complex tho lol

But it makes sense the ping packets come with an origin of 10.10.10.x , which it doesn't know how to route back and respond xD

So simple and yet so infuriating when it refuses to work

see for more advanced issues, tcpdump is great

Synology should just upgrade the linux kernel on their things to something not ancient, so we can run wireguard on the thing

So I am just looking in to mesh wifi networks, just trying to understand, is it just a set of interconnected access points with the same SSID or is there specific technology that is used to back all this?

Mesh just uses some other radio for backhaul instead of using wires

If you mean seamless roaming with multiple APs where it appears as the same SSID, each AP has its own station ID, and the client device chooses which AP to connect to, usually based on strength. As for the seamless part, if the client can support it and the APs are linked together by a controller or something, they can like suggest other APs around it and such and suggest switching, I think it's under 802.11r/k

So mesh is ideally 802.11r that compliments an existing WiFi network?

No, mesh these days means wireless backhaul

Yeah, so I have an understanding of mesh and roaming protocols, but I am looking for resources for DIY enthusiasts like me to get involved in

Why you looking a mesh and why not just get multiple ap or one really good well-placed AP

Just looking at what I can do with the current offerings

Ok

I'm looking at 2 mikrotik switches, 1 has 24 SFP+, 2QSFP+, 64mb ram, 16mb storage and 1 core at 650mhz. The other has 16 SFP+ ports, 1gb ram, 16mb storage and 2 cores at 800mhz. So my question is why does the one with more throughput and higher end ports have so much less ram and processing power? Can that have a negative impact on that switch?

mikrotik lists the throughput specs on their website

hardware acceleration exists

you have switching performance, and then routing performance which are seperate

also it could be an older generation

Switching performance is dubbel on the one with 24ports

But if it only has that 64mb ram and 650mhz does that mean it's enough?

Switching is done in the ASIC, not the CPU

So ram and cpu don't matter?

for switching, no

@worthy orbit

That image is very insightful, thanks

grumbles that is BLOODY USELESS

They only sent me a single MOCA unit instead of 2

1 MOCA unit bloody useless

no wonder it was so bloody cheap compared toe verything else

always, carefully read the description

Took forever to get the $60 for that one unit

and my gift balance on Amazon is currently empty

In the closet you go for who knows how long

Hi, I have two pppoe accounts from my ISP. I want to put one on my home network and the second on my server. I'm using pfsense, how can I do that?

So you are paying for 2 ips right?

Yes

One dynamic one static

What you need to do is bridge the main connection (switch, vswitch, vlan, etc) between your router and server

Let me explain, I have one physical server with VMs the pfsense is also a VM

could also have both ppoe connections on the router, and then pass that one static along to the server

How?

I tryed

uhh, just make 2 ppoe interfaces, NAT one to home network, assign the other one to server, in theory

pfsense is main router?

Yes

And the only one

and it's in a VM? ouch

Can I send u a digram of my network in DM?

sure

Thanks

So I bought a Ruckus R750 Access Point, A Ruckus ICX 7150-C08P switch... The 8 port switch is the only 7150 switch that doesn't support Layer 3... So I currently have my Asus RT-AC68U as my router/dhcp server for the access point. But the Asus is much much slower than the 7150, but I like it for the OpenVPN server and other features.
Any recommendations on what to upgrade my router/switch to? Will be returning the 7150, or selling it.

HEX?

bit of a learning curve but a good router

can do basically everything

hmm interesting proposal... any decent guides for the setup?

there is a wizard that does basic setup

Might have went this route to begin with... but I wasn't passing on my 80% discount on the ruckus equipment lol

http://demo.mt.lv/

this is what runs on the mikrotik devices

if you want to take a look

That's a huge shift from AsusWRT lol

ubiquiti's ISP line is also descent, but old though

I currently have an ER-X as my router

ubiquiti's Unifi line is eh for me, I just don't like it, all the cloud managed stuff and needing the controller software

it's either all unifi, or no unifi

replacing with HEX S though

That's the impression I got from unifi.

ipv6 with HWNAT enabled on the ER-X is messed up

I do prefer the vyatta style cli on the ubiquiti ISP line tho

If I go with the Mikrotik, HEX S would be the way for me, with the PoE for the access point. Until I get to wiring in the rest of the house.

keep in mind it's passive poe out, not active poe

I see that now

it says it can do up to like 57 volts so idk

you would need to check how much watts the AP draws

I have a tp-link POE switch for all my poe stuff

sighs Looks like iperf 3 isn't working from android to Windows for me

I have the iperf 3 server running on Windows

can you do it from another device?

heres the client on my android phone and its just spinning

Want to see what the results are before I add MOCA into the mix and see why the FUCK my connection between devices is so crap

we had a similar issue with someone else I think

I can give it a try with my secondary older i5 windows machine

try using the cli

get termux on android

it's great, then install iperf3 on it, and do it that way, you get more info

how do I install iperf3 on termux?

Ok think I got it lol

just need to type in the correct commands using the onscreen keyboard lol

at least its a simple package

sighs won't even install the package even tho I typed in the command

Something wrong here @peak cloak ?

In the mean time I am going to try running it from my other windows machine

huh

https://www.reddit.com/r/termux/comments/msn5rr/pkg_update_fails/

I ran the command they told me to run and it didn't seem to have installed iperf3

need to install another app store apparently

yeah or change the repository url

Ok got it and iperf3 installed

and nothing still

Last line

@peak cloak

hmm yeah

seems like firewall issue on pc

Connection timed out on my windows pc

usually when you run iperf3 a prompt comes up asking if you want to allow

Other windows pc that is

could try running iperf3 server on phone

and connect from pc, although idk if that would work

If I can figure out my phones ip on the network

Ok that was simple

ip a

Dropped connection is what I figured

yeah firewall

at least the other way works so I can at least see what my connections are doing

hmm main desktop to phone doesn't look bad

BUT my connections still drop out constantly whenever I try and do anything between devices

THATS more like what I was expecting

Hopefully once I get the second MOCA adapter I can actually get a solid connection going for the likes of Moonlight

sighs exactly what I was afraid of

I just added iperf3 to the filewall myself

Do you know the difference in hex and the rb routers?

routerboard is just a series of boards mikrotik sells

https://mikrotik.com/product/rb4011igs_rm

oh that

that's just more powerful

same OS

they actually provide test results

this can do 10 gig

can pair with https://mikrotik.com/product/crs305_1g_4s_in

do router on a stick for 10 gig routing

omg arista has a new anime mascot

very nice. Does routerOS support QoS? or is there a way I can just say this device is priority over all others? Because I don't care how fast my girlfriends TikTok's load. I just dont want my game to lag spike like it is now. Also, very noob when it comes to networking software configuration.

yes

https://help.mikrotik.com/docs/

https://help.mikrotik.com/docs/display/ROS/Queues

Does anyone know a tool which can "sync" a dropbox share link to a local folder, i know rclone can do it between dropboxes etc. but i can't find anything that works with share links... I know i can do it the dirty way and just make a cronjob that downloads the .zip of the entire thing and then unzips it to the folder, but there must be something more elegant where it only downloads any new files and thus not waste a ton of bandwidth

Basically some dude puts up some files on dropbox like this:
https://www.dropbox.com/sh/ey6qnanl2la2br9/AAAr81v5JC0F400iD-Hvm_Pea?dl=0
I want to keep that folder up-to-date on my local drive by downloading any changed files every few hours or something.

https://rclone.org/commands/rclone_copyurl/ ?

yeah sadly that just downloads the html of the website 😄

ah lol

@thorn coral https://github.com/rclone/rclone/issues/862

take a look at this

thanks 🙂

Can't seem to find in docs how to actually choose which link to get :/

[dropboxtest]
type = dropbox
shared_folders = true
token = {}

remote ls dropboxtest:https://link.to.dropbox

doesn't list anything

guys im wanna ask how to fix the phone hotspot to pc/laptop speed didnt same at all

my phone like got 1.9mb/s then on laptop juz can get 900+kb/s

anybody know any good ethernet cables that are tested and passed?

Anything that isn't obviously cheap

dumb question here but anyone know a way to boost download speeds on Steam? bit annoying and weird that on steam im only getting about 10mb/s compared to like Blizzard where I get 25+ mb/s

hmm so werido , my phone actually speed get 2mb/s but using hotspot on laptop try download some games or files get decrease half of speed from phone like this 2mb/s phone speed = 1mb/s on laptop speed im also using 5ghz bandwith still dk where the problems of hotspot speed like this

Are you reading Mbps or MBps?

Android or iOS?

android

Yeah ok sorry no idea

its okay tho , im also find the forum to fix the solution but till now cant find it at all

Hello, first of all I am a complete beginner in networking, I run a server (my old Dell PC in disguise) for about 200 of my friends which hosts about 20 different MP servers, but recently there have been significant blackout with one of my internet connection, while the second connection is a bit slow but works fine, how do I set up reliability on the second internet connection, that is if one internet connection cuts off, it should switch over to the second connection. I am running Windows 10 Pro on it. Thank you

Please don't hesitate to ping me while answering.

Well I'm sure there's plenty of us (myself included) who would say get pfsense and set up multi-wan redundancy, but once you get past that I have no honest clue

Sounds like you need qos

Since you are having so much traffic it's basically not allowing any of your home traffic to get through

I didn't think it was

And my connection has taken a nose dive. Currently on cellular via my phone

Whats the issue?

No idea connection to Comcast just cut out

Connection to router is fine

Minus the fact it's a wifi connection

Comcast outage until 10am

Comcast outage until 10am

And mobile isn't behaving for me either

Looks like its pretty large scale Comcast outage https://www.reddit.com/r/networking/comments/qq3mii/major_comcast_outage/

Yeah

Seems to be about nation wide but mainly in the northeast/midwest

with some spots in places like AZ down as well

@hollow marlin parts of AT$T and Verizon seem to be down as well

I have not seen any reports of them down as well. If you are seeing that in DownDetector, thats just false reports

Was going by what that thread was saying lol

That was just a single comment and I am guessing they are misinterpreting what is actually down

I was affected

most of my company are comcast users too, so that was fun

Yeah we only have a handful of customers with Comcast as a backup circuit and just their tunnels were affected.

May not be completely down now but it's unusable really

Constantly spinning no matter where I try and go

Surprised discord is working

Depends on the cause of the outage. Im waiting to see what RFO they give

dont worry. cloudflare will open their big marketing mouths and tell you

anyone know how to configure smart queue on mikrotik ?

No, never did but have you looked at the docs

Hey friends, hoping for some upgrade advice. I have the following https://www.tp-link.com/au/home-networking/wifi-router/archer-c5400/ and it’s really struggling with my fiber connection and small network

Is going for the ROG AX11000 overkill/worth it or are their cheaper, more powerful and less gamery options?

there's defiantly cheaper

you need good wifi, or just a good router?

I honestly spend less for just my router + wifi AP than that ROG router

albiet it's a bit more advanced config wise

Something with the processing power to handle my connection and network

Strong wifi is a bonus but am looking to run cat 6 through the house at some point soon

if you are tech savvy and willing to learn, mikrotik's HEX router can do gigabit routing perfectly fine, couple it will something like a tplink omada access point and you got a good combo. The downside is that the router's OS is a bit not very user friendly. I myself run a ER-X right now, which is also pretty advanced but more user friendly I would say. If you want something all in one, idk really anything about those.

ubiquiti also has some all in one router, but idk much about it

just it's more alike a conventional home router

Is my door gonna get busted down for using audio gear in the 748.875 mhz range?

FCC made it illegal in 2011

yep

probably not until another 748.875 user reports you for interference

Its used for broadband apparently

https://www.fcc.gov/consumers/guides/operation-wireless-microphones

That's in T-Mobile's range

So yeah, T-Mo will ask you to turn it if they detect it

Ok

We threw out 16 of our wireless mics because of T-Mobile's frequency allocation lol

I live on an acre, will anyone be able to detect?

idk

How far does it go

pretty far

Crap

but would depend on your power

if tmobile is using it wouldnt your receiver pick up noise and make the mic useless anyway?

yes

12v 1a

OH

I doubt 12W, what is it

Wait

Usually audio stuff is in the mW

The reason we thought it was broke was because we heard so much noise

... around 2016

Idk how to find that, thats only its input wattage

what device is it

SHURE ut1-vj

15mW

but this is basically illegal/not advised to operate now

Ok so 15mW at 748mhz

So its illegal if you are caught

Wow

Im a cold-blooded criminal now lol

In 2010, the FCC prohibited the use of wireless mics and devices on unused broadcast channels on the 600 MHz service band and on the 700 MHz band – specifically the frequencies between 698 and 806 MHz. It did so because such use could cause harmful interference that disrupts or degrades communications in the spectrum bands that had been repurposed for use by public-safety networks and licensed commercial wireless services.

Failure to comply with FCC rules by unlawfully operating wireless mics or devices in the 600 and 700 spectrum bands may result in fines or additional criminal penalties.

oh

I am now a law-abiding citizen lol

We still haven't updated our wireless mics yet

They all use prohibited frequency ranges

Don't mess with anything involving E911. The fines are heavy and they have no problem issuing serious charges

need help with forza horizon 5

it says that my nat type is strict in the xbox companion app

im on a pc

when i try to play in an online lobby i cant go online- it says : you have been disconected from the session

The multiplayer servers are buggin real hard, but it sounds like you might be in a bit of a CG-NAT situation

Does your routers external ip match what google says your ip is?

how can i check what my router's external ip is?

easiest way is to simply google search "what is my IP"

Anyone got any good recommended vids for running Ethernet though out a house? I have cat5e in the house I'm living in walls, but it's not plumed up at all. I'm not understanding on how it fully works,

@hollow marlin yo remember that one time you told me to not worry about spikes while watching videos in the bg? Well I kinda notice them ingame kinda (it would jump from 30ms to ~35ms)

Would also sometime increase average to 32

Like how much

5ms is not what I would consider a spike

5m is pretty high for me tho :(

you're over thinking it

do you actually have a noticable degradation of performance?

not really

not a problem then

I'm using the ISP provided router, and it's absolute garbage. I need a replacement, but a little overwhelmed by all the options. I don't often research routers.
Any suggestions?

current best consumer router?
asus ax86u

asus

I honestly don't know of anything really good tbh

Hmm, does it have hairpinning?

It's not crucial, but it'd be nice. 😛

The router I'm using has a Japanese only UI, not only that, I'm limited to how many ports I can forward.

I can forward ranges of course, but I really don't want to open huge ranges of ports just to ensure every service can function.

I'm thinking the Asus AX86U looks pretty good.

for you probobly

for me no

i have an ubuntu box running redis-server on a LAN and i cant remotely access it for some reason

does anyone know how to help?

ping it okay?

What would be good for you?