#networking

kinda want to mess with having 2 routers now connected and then have an internal network, never messed with ospf yet

and what I mean there is wireguard, and IPv6 NAT

why IPv6 NAT?

oh yeah so you can map your real internet IPs to DN42

well you don't want to advertise your global prefix to DN42

yeah

you get a ULA prefix from them

yeah ik

but if you put the ULA address on your device it can only get to DN42 with that, and only get to the internet with the global address

I have looked into IP assignment. The IPv4 is hard if not impossible to get and IPv6 needs you to have IPv4 already for registration reasons.

and the devices aren't smart enough to know what address to use for what purpose

irl, yeah

if my windows system had both a global IPv6 and a ULA I'm sure it wouldn't know to use the ULA to go to DN42 and use the global for everything else

so I had to live without IPv6 on DN42

idk about the v6 needing v4 tho

you want to have at least some v4 tho

now I can peer on v6 as well, using NAT to translate requests from my global address to the ULA prefix given by DN42

doesn't AfriNIC still have v4s

a lot of them

also, did you hear about the proposal to move some loopback space to global? idk if it got anywhere

I don't think people from other regions can request allocations from afrinic

Hundreds of thousands

yes, it is ridiculous

it isn't going to go anywhere

no point.. just deploy IPv6 and be done with it

the only one that has the slightest chance of doing good is the 240/4 proposal

that is actually a decent amount of address space

but essentially you are still looking at about 10 years, if not more, of being able to realistically use it

so even if 240/4 is allowed today for allocation, it won't really be usable by anybody until the 2030's

and how much IPv6 will there be by the 2030's? will it even be needed by that point?

I mean once you get up to 80%+ or so IPv6 adoption, you're going to have new things come online on IPv6 only

if you are creating a new service and it reaches like 80% of the internet, are you really going to spend a potential fortune to reach the remaining 20%?

currently there is no choice.. but once you start getting up to 80%.. 85%.. 90%..

yeah, if only ISPs would hurry up

if someone looks at paying a $200k bill just to get the remaining sliver of the internet

looking at you Verizon Fios

So I got my PiHole up and running... on a device by device basis. Trying to get it set up at a network level now. I THOUGHT I changed my Netgear settings correctly, but does this look blatantly wrong? 192.168.1.69 is my pihole's static ip

at some point they will decide it isn't worth it

and that's when you will see the final push to IPv6

because people will be annoyed that they can't get to the new video website or social media website or whatever that is now on IPv6 only

and complain to their business and their ISP and that will finally push the changes

we already see an example of that with Meraki

Meraki was super slow with supporting IPv6 in their products.. they just sat on it and did nothing

one day, T-Mobile in the US moved basically all cell customers to IPv6 only

accessing IPv4 only websites through a proxy server

which prevented users from connecting to their corporate meraki VPN from a T-Mobile phone

in some cases entire mobile sales forces losing remote access to the systems

and that made Meraki finally decide to prioritize IPv6

but now 3 or 4 years later, they have IPv6 support in public beta.. and quite a few of the impacted customers have already moved off Meraki because they couldn't wait

...I'm just gonna retreat back to "Network Noob" land

seems fine

do ipconfig /all

what DNS server do you see

also try ipconfig /release

DNS Servers . . . . . . . . . . . : 192.168.1.1

then ipconfig /renew

could take a while since your device has had a dhcp lease and hasn't renewed it yet with the new info

hmm hokay. Doesn't seem to be working on my laptop either, but could that be the same case? It works just fine on my phone... which I manually changed DNS settings on

did you try this

then renewing it

Yarp

hmm, what is the DHCP lease time, or does it not say

maybe just wait a little, but the settings seem fine, unless it's doing some weird stuff

Lease Expires . . . . . . . . . . : Wednesday, December 1, 2021 8:23:03 PM

DHCP needs to be bound to an interface, so

could try connecting ethernet to router

would you need to add the Ethernet interface too?

I'm just following the LTT guide ;-;

idk, I don't watch LTT anymore

Wait you are using your PI as a DHCP for a network that already has a router?

no just DNS

Whats with DHCP then?

DHCP is advertizing the new DNS server of the pihole

and you have to wait for lease to end no?

for new info

try restarting the router. it looks correct but if the leases are 2 days out they won't update til then, forced restart of the router should fix it.

hokay!

You can just request a new lease.

I thought I did that with ipconfig /release and /renew

the router will still use the old lease information it stored. is what I think is happening.

If you set up a static DHCP lease for the PI then you might just need request a new lease. You might need to give your current lease up to get the new static lease.

it has nothing to do with the pi

Oh...

it's the rest of the devices

I would just say, wait for the leases to end I guess

Whats doing the routing and whats doing the DHC?

@polar trellis try to plug computer via ethernet if you can, or if it's already via ethernet try on wifi to get a new dhcp lease

a generic home router

DNS is just simply done by pihole

The PI just does the DNS. OK.

mhm there might be a setting for dns forwarder that may need set.

well pihole works fine, it's a matter of getting dhcp to hand out the ip of pihole

So you are changing the DNS setting in the router right?

Um I don't have Wifi on this pc unfortunately. Just rebooted the router and no dice

correct

So, PI hole needs an IP?

no

yeah the router is setting itself as the main dns supplier then forwards to pihole - see if in basic settings you can set the router to just forward dns instead of being the dns provider.

no

I don't think so

or maybe you could be right

idk, with these generic routers it's hard to know

yeah your prob right since it's at the same page where the ISPs DNS would be

hi sorry to interrupt but im trying to host a minecraft server on my wifi connected laptop is it possible? because the past servers i hosted connects through ethernet

so would this be considered dynamic dps? cursory google search of dns forwarding for my router isn't pulling much else up

dynamic dns, no

try to dig a blocked domain

dig?

or nslookup on windows too

cli to retreive dns records

ah. what's the command to do that, boss?

It is possible. You could forward it to the internet(do not recommend unless you understand what that fully means)

weird, I'm going through some of the blocked sites on my block lists, and they're not connecting

try nslookup googleads.g.doubleclick.net

Server: UnKnown
Address: 192.168.1.1

Name: googleads.g.doubleclick.net
Addresses: ::
0.0.0.0

That appears as though it is working.

well that's a good sign :3

0.0.0.0 is a form of either any interface or an un-rout-able ip.

Oh shit, it seems to be working on https://canyoublockit.com/extreme-test/ ... well some ads at least.

so it's working

You might need to reboot your machine to clear the DNS cache or add more block lists.

yeah I think I may just need more block lists

https://firebog.net/ just using the big 3 right now

...why NO I did NOT scroll down to see multiple more green lists

.... I blame my broken scroll wheel.

There was one that blocked YouTube advertisements on the mobile app. It was amazing while it lasted.

youtube vanced is good (not dns)

Um... This was a block list through DNS and the client running on an iPhone.

I"m just saying what works now

yeah, vanced is the best

Well, youtube-dl still works I think...

well yeah

but youtube-vanced is the whole yt experience on mobile, just with no ads

yeah reading through the manual looks like it would need to be flashed to openwrt or ddwrt to get that functionality 😦 . and yeah as it sits now the router will always make it self be the DNS, then forward what it does not have stored to the specified dns server (the PiHole).

Another really crazy idea would be to run a PI as the router. I done that and it works well enough for Ethernet. The only problem is WiFi and the set up. The bigger problem is setting it up and managing iptables rules.

Ah wow it seems to be blocking a lot more. A couple ads seem to slip through the cracks, unfortunately

That likely could be fixed. Some of ads that I seen slipped by were advertisements as in the company is sponsored by this other company. Those slip by b cause they are not advertisements hosted on advertising domains.

You could do an inspect element and see the domain name it requests and add that to a manual block list.

Although inspect element is now considered a elite hacking tool by some US government officials. Those government officials are calling for using inspect element get people a prison sentence.

I'm still not sure where I should be seeing the domain name request when I inspect element

I'm not yet an elite hacker

The domain name would either be in the a iframe or you would see the url in the network section after you inspect element. Tracking that down can be hard. If it were just a few I wouldn't bother.

oooh yup there they are in network

Darn Youtube ads aren't easy to get rid of, eh?

Well, that was possible at one point in time. Google has plenty of resources and YouTube's advertising domains jumped around quite a bit. They might be hosted on YouTube proper now.

Quesiton, we have a switch in our router downstairs and then cables that run up to the rooms to outlets like this, if i buy an extra switch for my room alone, so get the cable from the wall to a switch and then plug like 2-3-4 devices in that switch will i have 500mb/s on every port or will it have way slower speed?

well you can't create badnwidth out of nowhere, but if you plug every thing into switch and then into wall it will be connected. That 500mb/s tho gets distributed between the devices. So if lets say 2 devices are downloading, then you would only get like 250mb/s each (won't be split equally usually cuz complicated things)

okay so plugging a switch into a walloutlet that is already comming from a switch is a no no

got it, thanks

?

it's not a no no

I do it

but it will cut my speed

if you have ISP service of 500mb/s and someone else is downloading ofc not everyone will get 500mb/s. You get 500mb/s of bandwidth for everything.

It's just how it works

if you only have one devices downloading or using lots of bandwidth then that device will practically get line speed

and most of the time, devices don't use much bandwidth

my whole home network, even with a server running idles at around 2-5 mbps max

most of the time below 1mbps

Wait okay so we got our switch in the router then one off those ports on the switches got a cable running thru the wall to my room, if i plug another switch in my room with the cable from the wall and plug in 3 devices into that switch i will have my normal 500mb/s unless i download on all devices at once

yes

okay but for example, when i play pokemon on the switch i watch shit on my pc on the second monitor, will that effect the internet speed?

everything takes bandwidth

idc if my ps4 and switch have like 100--200 but my pc needs to keep that 500

streaming doesn't take much

needs? only for downloading. most of the time you ain't gonna be using it

i see

so unless im downloading at more then 1 device at once the speed will be affected to in theory i have the 500mb/s speed on all devices unless im downloading on like both my switch and pc at once

why are you worried about speed so much, it ain't gonna make your websites load much faster

really latency is speed, and mbps is bandwidth

i know but its about the downloading like allot off system updates and game updates

The bandwidth would be split up amongst the devices. If you are talking about playing a game on a game council and watching a YouTube video would only take 20 Mbps and your game console will likely take much less, so a 1Gbps connection to your router wouldn't be the limiting factor.

Downloading updates on windows with a 1Gps connection will only download at a max of 100Mbps in my experience. Still your router's uplink yo your internet service provider would likely be the slowest link unless you are paying for a multi gigabit connection.

im very new to internet talking as you can tell

you sure it's 50 mega bits per second not 50 mega bytes?

there is a difference

yea i think its 500 mega bytes cuz bits is way more

speedtest show bits

steam show bytes

k then its 50-60 bytes and 500 mega bits

sighs even my phone complains about poor network quality

Make your own network 🙂

own dns server own dhcp server etc

Hmm... Does installing all the software on a computer and setting it up count?

not a network

That’s literally just a router lol

routers have crappy dhcp options and limited dns support

you say?

where are your dhcp options ?

there...

I only see ip settings no dhcp options

those are dhcp options

Your missing quite a few

like?

https://ecanet.ir/dhcp-option-list/

dhcp server can do so much more then just hand out ip's

don't need really most of those, since it would clog up gui, but I can in cli

Possible completions:
  <text>        Additional shared-network parameters for DHCP server.
                You must use the syntax of dhcpd.conf in this text-field. 
                Using this without proper knowledge may result in a crashed 
                DHCP server. Check system log to look for errors.```

and most options aren't needed anyway

Does anyone know how to use Redirections on Cloudron?

I am running Apache Guacamole and I need to be able to access it outside of my home network, I did the port foward but when I try to access it outside of my home network it says this "You are seeing this page because this domain points to Cloudron server IP but no app is installed on that domain."
Which then I found this forum which someone fixed - Here: https://forum.cloudron.io/topic/6023/you-are-seeing-this-page-because-this-domain-points-to-cloudron-server-ip-but-no-app-is-installed-on-that-domain

The person who gives the fix tells everyone to go to: https://docs.cloudron.io/apps/#redirections - I did the exact directions but it won't work for some reason.

Presentation and session layer for the OSI model what are they?

What's the osi model

https://en.m.wikipedia.org/wiki/OSI_model

Presentation deals with the encryption, decryption and character encoding.

Session has a very not descriptive explanation.

I only know 1-4

Anyone got a good rec for a 10gbe nic for a windows machine?

Look on Amazon.

you can get 10gb NICs used too

ebay great for these

Ebay has a bunch of SFP+. SFP+ appears easy to get adaptors for, but the switches quite a bit.

SFP+ is easy to get transceivers and NIC's, switches for that purpose hang around a while usually. most of the cheap switches are going to be ones with Intel C3000 (time bomb :/)

So those are not good to buy because they will likely break?

Don't get used fiber transceivers. They do wear out after 5+ years of 24/7 operation.

Ask me how I know.. 😉

https://www.bleepingcomputer.com/news/security/former-ubiquiti-dev-charged-for-trying-to-extort-his-employer/

lol

what a way to ruin your life

Wow. Always mind blowing how intelligent people can make the most unwise decisions.

And that furthers the point that Intelligence and Wisdom are fundamentally different things.

just upgraded my internet

Nice. Who's your ISP?

I'm not from the US, but it's 5G internet

Please see the channel topic

1. you're not a mod, so don't try to act like a mini-mod and tell me what to do

2. the channel name is literally called networking. Pretty sure this is an appropriate channel

3. i don't care

well great

you just want to come here and show off how fast your speedtest result is and then leave.. that's why the topic above was put there in the first place

this is an appropriate channel if you want to learn more about networking, or you need help with networking

it is not an appropriate channel if all you want to do is show off how fast your service is

my schools internet is 3gbps , it’s insane haha

I love new technology

I need a little bit of help here with TrueNAS Scale. I am trying to setup iSCSI between TrueNAS and ESXi, they can ping between themselves but when it comes to iSCSI I can not see anything happening, no drives are being found by the ESXI. What should I look out for ? Not really sure if it's a networking issue but I might suspect that there is a network issue ?

@peak cloak @tender hazel v7 is now in testing channel https://forum.mikrotik.com/viewtopic.php?t=180831

https://www.truenas.com/docs/core/sharing/iscsi/iscsishare/

https://www.truenas.com/community/threads/truenas-scale-hosting-iscsi-targets-unable-to-connect-to-targets-from-windows-server-2019-vm-hosted-on-esxi.95799/

@hollow marlin yup

it is interesting, they aren't calling it "stable"

but it isn't "beta" either

It is just "v7.1"

wow you got told TF off lol

you can always tag them

Networking isn't showing off your speed

Nice

please read again point 3 that i wrote

Hi, I'm using rsync with ssh on freebsd (both of the machines) and its making the sender to just stop sending network packets. Dose anyone had the same prablome?

Please its a cry for help

@rocky badge ubnt still has purchase limits on their APs lol. how are you supposed to outfit a business with 4 APs?

multiple accounts 😳

@waxen scroll @clear igloo Got all of the cables 👌

if only more people understood this

Is that in regards to the WiFi 6 APs only, or now all of their AP lineup?

6

Does Microsoft have a URL for downloading Windows Server eval without filling out the form every time?

Probably not I guess. I think I need to host my own file server. I am wanting to be able to download the ISO for Terraform

Anyone in here who can recommend a DSL modem/router combo? I'm from Germany and I've been mainly looking at AVM, TP-Link & Asus.

when I had dsl I used a tp-link modem then my own router. all the combo units that I tried with DSL were garbage.

what are the limitations for a ngrok free account?

if i open a port say is there a time limitation?

after which itll reset?

It says on the website

? the one online ngrok process?

meaning itll stay up 24/7?

(if i keep my server up ofc)

yes

you are limited by other things

connections / minute, # of tunnels

no of tunnels is the ports i can open i assume and connections per minute is?

like unique clients connecting per a minute?

ye

yo this is sweet why were ppl reccomending me zerotier all this time when i could just do this

zerotier is good too

different purpose, different market

@clear igloo https://i.ryois.me/CkCxEbrTsQ.png

Excel IPAM ™️

y no dns

Can anyone help me with Plex network. I couldn't figure it out 😢

@rocky badge Look at phpIPAM and make your life 10000% easier

Meh, it’s one time and I just need something to track shit

I put that in when I ran a big test lab

my companies actual ipam solution sucked and I had very little access

Finally got OpenStack working 🙂

interesting, how is it

If you know about Linux networking, like bonded interfaces and bridges, its fine. I didn't know about that stuff...
I gave up deploying the services individually after an hour as it would have taken 50+ hours, so used openstack-ansible repo instead where I only had to configure networking and create 2 quite simple config files

ah

have it used it yet though?

created a few instances and networks. planning on getting a few new servers and using that rather than hosting it on vSphere

My current config is not production-ready as this is just used in a homelab, but planning on making a prod ready install when I get the new servers

OpenStack

Had to pause for a mo, the shock that someone put themselves through the pain of making openstack work, and actually got it working 🙂

There are a still few things that aren't working yet. Things such as the load balancer and horizon (web ui) image upload. The main parts are working though

I have one question , can i use cisco fabric interconnect for networking(Lan) ?

Or is this storage switch?

No, storage switch only

Oh ok, but can i use storage switch for network?

No

F

That's fiber channel right?

Yes

yeah, it's not gonna switch Ethernet frames iirc

So if i buy fabric interconnet, i need to buy second switch for network only ?

Im watching cisco nexus 32x 10gb

A fabric interconnect is for servers and storage, it's not going to work for anything unless you want to buy a huge b-series chassis and blades for it

That's going to be very loud, just fyi

Idc if it's loud, need it

and it's all CLI based, I hope you're familiar with NXOS and Cisco CLI in general

I can get cisco 4948 chassis for free but that's to big

power bill go brr

I have solar panels on roof hehe

Ik but , new cisco switch is too expensive

Guys , what about 3COM is this good or not?

not sure, never used them

I have 2 3COM switches but idk

But this switches are only 100/100 i need 1000/1000gbps

3COM?? Probably 20 years old. I'm amazed the capacitors haven't dried out

well this switch have good capacitors , cisco have shit stuff/capacitors in psu

Yes, but how fabric interconnect is connected to network?

via uplinks where all the switching is done

I tried learning openshift concepts. holy crap. just NOPE

@clear igloo #redhat #kubernetes

Is there any port to connect to network ? Lurick?

#docker #containers

the networking for that stuff is ugh

There are specific ports and they are for sending traffic up to switches

Oh , ok

@hollow marlin we are deploying our first adtran units next week

two TA5004's to one site

I'm not worried about the devices but I'm worried a bit about suddenly throwing our help desk into the deep end and asking them to swim

provisioning fiber to the premesis is completely different than PTMP wireless with ubiquiti

Ok... My Openstack is no longer working. Rebooted the server and now none of the containers want to work

I've only dealt with the 5ks with ADSL/VDSL blades. I'd still assume the config is straightforward. But yeah, if they are used to Ubiquiti, it's going to be quite the process

yeah

they are used to configuring subscriber units and having them auto connect

this time there is no subscriber unit configuration, but they have to provision a circuit

Is UTP enough for cable

Are there any tools that could help me control QoS in my home network?

nope. either your router has it or it doesn't. I don't recommend QoS unless you're >80% usage on your internet constantly and upgrading is not an option.

🤔 In order for an external network drive to be used, does the computer its connected to have to be on even if the drive is still getting power?

yea. something has to be connected to and read from the drive

this might be a better place for this. sorry for double post from tech support but..... can anyone point me in the right direction? not sure where to start. i want to send a system to my brother as my own personal cloud/backup server. not sure what to use OS wise or how to set it up. Willing to read and learn, just dont know where to start

There are to options I have only heard of. Freenas and open media vault. Set up a ssh access or your own VPN so you can securely remotely connect back to it.

Hey everyone. Anyone around that is good with network OS deployments(PXE etc)? Is this the right channel for that?

probably #linux

🤔 So when I try mapping my external hard drive to my dad's laptop, its asking me to enter network credentials. I'm not sure what its asking for exactly.

Are we talking about a SMB file share? If so you would need a username and password of an account on that computer that can access the files.

🤔 Well, I don't know, I guess it is. All I did was make the drive a shared one and hit the 'map network drive' button on the laptop. I entered my computers IP address that the external hard drive is connected to.

@faint bronze 🙂 Never mind, I just disabled password protection in the advanced sharing screen. I'll just secure my shit via group permissions.

😕 Thought I was done, guess not. So I'm trying to add my dads laptop as a user so I can give it access to my windowsimagebackup folder on my networked external hard drive. But when I type in the name of his computer, it can't find it, even though it already has access to the drive itself, or the volume.

I just speed tested a VPN and got 350 Mbps download.

For reference I am using a USB adapter that has a limit of around 350 Mbps because it is running over an old USB bus.

you have to create the exact account that your dad uses on his computer on your laptop - user name and password. set up the account once (log in with it) then log out. or you can go into the security settings and change it to everyone which is screwy and overly complicated.

and welcome to smb3+ security .

Hi! I'm trying to use a local network printer in a laptop. When I click on it, an option to install the printer's drivers appear, but when I click in "install" it displays error 0x0000007c and the message "Windows was unable to connect to the printer". What can I try to do to solve this?

Ok, I got it working, but I still have another question. I'm trying to create a system image file via the network driver, remotely for my dads laptop, but its asking for a username and password. Is the username supposed to be the actual name of the computer, or is it the name associated with my Microsoft account? It keeps saying "access denied". 🤔

it would be the user account on that laptop(device) if you don't have a user account on it then you would have to create one.

What is Static IP capable of?
Does it improve gaming connection?

static is just a dedicated location basically and nope will not help with gaming.

Static IP is mostly useful when you need to access your network from outside of your network. Doesn't help gaming at all.

Static IP? That's useful for knowing where a machine is inside a network and is really useful when you are trying to forward ports(network admins try to not do this if they can). It will not make your gaming any better or faster. The best method to get a better network performance would be to buy a better internet connection.

Before doing that, If using WIFI switch to an ethernet cable would be the first, and cheapest option.

I forget that some people still use wifi for bandwidth or latency intensive tasks. Yes using Ethernet instead of wifi would bring better latency. It could bring the average latency down by 50 ms. The throughput of Ethernet is usually gigabit where as wifi caps out around 100Mbps or so if it is the ISP provided box(I have not seen any better, but wouldn't surprise me).

Is there a way for me to remote from my computer from outside the network by just putting in a IP address in the search bar of my school chromebook?

no

because that computer doesn't have a public IP

unless it has IPv6, and even then it needs to allowed through firewall

How would I make it public?

If you have access to a machine that runs all the time you could set up a VPN and use VNC or the windows equivalent.

you don't (can port forward tho)

what protocol do you plan on using to connect? RDP? SSH?

using cloudflare and freenom for a domain, everything is the same as what it was about a month ago, nothing changed, same public ip and same ipv4, but now it refuses to connect

Connect to what

minecraft server, just trying to hide my ip from randoms

Uhh, DNS doesn't hide IP

yeah I meant like, I dont want to directly give them my ip

they can work for it I dont care but its young kids

But just verify that's the DNS part is working by doing nslookup example.com

In cmd

Obv put you actuat hostname there

yeah it works for that

It returns the right ip?

yup

Ok, try connecting with just the IP

but even just on minecraft itself I cant even connect to my public ip

everything is pfw correctly so maybe its a firewall thing?

Can you get some friend to try to join

What I think the issue is lack of Nat reflection on router

nat type is open on all my games if that means anything

So basically router doesn't know what to do with traffic destined for itself within the same network

Means absolutely nothing

ah ok

Connect with local IP

that works fine

is there a differecent between private and public on the firewall allowed apps and features list?

nevermind, restarting my computer fixed it

thank you windows

I got 1000mbit/1000mbit fiber internet in a big house and have the ASUS TUF AX5400 gaming router and it is 100 times better than my older TP-Link C9 AC1900 router. The connection is more stable, both with a PC connected via cable or using it via Wifi. Its not a scam but you dont need a gaming router to get a good internet connection

But its my opinion

does anyone know of a simple easy to configure solution that allows you to access an existing FTP server over a HTTPS web interface and use HTTPS for the file transfers. Just asking because I am looking for an easy way to generate HTTPS download links while using my existing FTP server now that FTP support has been mostly dropped from web browsers. I can do the research on my own if someone can point me in the right direction

Those are two completely different protocols, and getting them to work together in a "simple and easy to configure" way isn't generally on most developers minds. Especially when it's a pretty niche thing. Why not just use an sftp client? And even outside of that there are protocols like scp

like bellend said, they are very different, if you have access to the ftp server, you could install a web file server like this: https://www.rejetto.com/hfs/

that's http, but you can use something like nginx reverse proxy with it and lets encrypt to have it go over https

Turn off qos bud

Well, it is 1st Monday of the month and the safety regions of The Netherlands is testing SMS-CB to all users

so I have bin trying to use nginx (nginx-obs-automatic-low-bitrate-switching) witch uses RTMP everything is working but I can't seem to be successful with the port forwarding I have tried to follow every guide I could follow watch every video matching my circumstances and it still doesn't work!! what could it be ?

you may be under CGNAT

in which that case you can't port forward

to check, try going into the router and look for WAN IP or similiar

@odd cypress

ok

hmm can't find any WAN ip setting @peak cloak

not a setting

like a status

show a screenshot of main router page

ah it's right there

It is in a private IP range.

yeah you are under CGNAT

and this is the router provided by ISP I assume?

probobly yeah actually

hmm yes and no

so what can I do to fix or change that ?

either ask ISP if they can provide a public IP, or you can use a tunneling service like ngrok to provide a tunnel to a public endpoint. Some people rent a VPS and then make a vpn link between the VPS and home network for a public IP. I do that myself, but just for a cheap second public IP

did you just doxx yourself mad

ohh no its private

i am slow

knowing IP != doxx

you'd be surprised how scary close these geo ip trackers are now

mine comes to within a metre of my house

yeah no they are not

at least here

it's just the general location of the ISPs closet or whatever it's called

in any case, zerotier

someone reccomended another one the other day

zerotier won't help you if you want a public endpoint

cant remember the name of the other one now

you could buy a vps and put zerotier on that i guess

then reverse proxy

that's what I do, for a second IP

except I just use a wireguard tunnel

is CGNAT just a way to avoid ipv6?

no

or is there a legitimate use case?

yes

let's say you deploy IPv6, and now don't want to pay for all those v4s, so you just cgnat v4

customers have ipv6

i see

so can you port forward to ipv6?

is it pinholes or something?

? no

uhh I don't think you understand

the way ipv6 was designed was that it's completely separate from ipv4

so if you only have ipv6 service, you won't be able to access the v4 internet, and vise versa

ohhhh

and with ipv6 you get millions of public IPs, not just one

so when properly deployed, each device gets their own public IP

you mean things on your private network get a public ip?

yes

wtf

yeah technically there's no concept of local IP's with v6, so all devices get their own public v6

your just used to NAT

I mean there is

link-local ips

those don't work as exactly like 192. or 10. addresses though

I have a device that refuses to use an ipv4 and only uses a link local

its a google nest hub

even though I have ipv6* disabled on my router

so you would get assigned a /56 block of ips which is 256 /64s. A /64 is like the smallest routable subnet. So then using something called SLAAC, a device will get their own IP(s).

Ipv6 also allows for something called privacy extensions, so you can have multiple v6s

generally in home deployments you no longer use DHCPv6 in v6

ohh this is painful

DHCPv6-PD is used by ISP to assigned you your prefix to your router

it's really not, just a different way of thinking

it's way v4 used to kinda work

so are these static addresses or will the change when router reboots/isp gives you a new ip

generally I think the DHCPv6-PD lease will stay the same, but that's up to ISPs discretion

so even a device ip will change? or you just reverse proxy to a link local?

there is no proxy

a device gets a public IP

they also have a link-local

2 seperate IPs

the router no longer does any NAT, it just routes

say I have a home server and ISP does me dirty and changes my leased IP, my device IP also changes?

yes

but not the link local?

the public one at least

no

ok

so there is merit actually for 1:1 NAT in ipv6

so it keeps the end part of the v6 IP the same, but it NATs from public to ULA

so the device gets a "private" IP, but it's directly coorelated to a public address and not shared with anyone else

sounds like a way for government to know exactly what device you're using

lol wut?

actually not

since in v6 it allows for privacy extensions

https://www.internetsociety.org/blog/2014/12/ipv6-privacy-addresses-provide-protection-against-surveillance-and-tracking/

oh ok

if its implemented the way the founders want it to be at least

glad they thought of this

I still just don't like the idea of a global ip per device, it feels....wrong

you're just used to v4

it's not like there is no firewall

you can have the same security as you have right now

block all new from WAN still works in v6

could you set an ipv6 manually to someone else's global ip?

I guess?

not that it would work

you won't get internet access with it wouldn't match the IPs the ISP advertizes

ok

thank you for answering my questions btw

you're very knowledgable about this

I appreciate it

np, someone taught me this too

in this discord actually

haha 🙂

here in the UK the ISPs keep all internet data for 2 years though

I'm guessing that includes ipv6 addresses

so an ip could indeed be a person/device

they can't possibly collect EVERYTHING

cuz that's ALOT of data

yea but ip addresses wont take up a lot of data

well yeah

I think they just collect what sites you visit

though some do use deep packet inspection

@clear igloo

RDP prefers the LHS there 😒

SSH is prem though, it takes the better one :D

MAC Binding vs DHCP Reservation?

Where should I set my printer and media server

pain

I love it

where there is ethernet

Picture of the month

Why is there no altice fiber in the bronx...

Got verizon but no altice fiber?

atlice fiber sucks

they give you an all in one

instead of how verizon does it

optimum was good

atlice ruined it

I once got 267 ping at My school lol

do i need to use a vpn for hosting a minecraft server?

i bought a domain but i haven't connected it yet

no

k

why would you need

I hate the term vpn cuz it can mean 2 different things

a commerical "vpn" like shurfshark

or a vpn tunnel, like openvpn, wireguard

In a topology, what is the data acquired by source pc in order to send to another computer? Is it token or packet?

anyone know why my router doesn't want to produce the openvpn config file? It keeps loading endlessly. I've tried restarting and updating the firmware. Nothing seems to work. I've been using the vpn on my router for a while and now it just seems to have stopped working and its been endlessly loading. Any ideas?

its an asus router btw

Packet or frame is what I remember. Frame being on the link layer and packets being on the network layer.

Does anyone have recommendations for an SNMP monitoring software that will add ping only devices? I like Observium, but it currently does not support ping-only devices. Librenms isn't too bad.

https://wiki.debian.org/SNMP

Am I mistaken in saying that this is just instructions on how to add a device to the Netmon Appliance?

Nevermind. That appears to be the device side to requester side.

Could this be it?

https://www.comparitech.com/net-admin/snmpwalk-examples-windows-linux/

according to an ip addr I ran, I have what looks like a public ipv6 on my laptop, but test-ipv6.com is saying it cant detect the ipv6

firewall?

not sure where to look in my firewall settings

I haven't used ipv6 but i was talking to someone yesterday very knowledgable

PresentMonkey

they will know

@peak cloak would you be able to help me, my laptop looks like it has a global ipv6 address, and I've read somewhere its just a matter of my firewall allowing traffic through to it, but im not sure what the name of the setting might be, would you be able to point me in the right direction? (I'm using a Ubiquiti Dream Machine Pro)

That's a local IPv6 address
Unique local IPv6 addresses begin with FC00::/7

FD00::/8 is part of unique local routing addresses and aren't routable either, similar to private IPv4 addresses

^

https://en.wikipedia.org/wiki/Reserved_IP_addresses

Thank god they didn't follow through with FC00::/8 being IRR assigned and globally routable

We're not short of v6 addresses are we, so who thought of that 😛

yet* 😛

I suspect we will be with people like lurick advocating /64s on links with only two devices

wat you want v6 to be even larger

iirc there are more IPv6 addresses than atoms in the universe; we shouldn't ever need more space.

umm, are you familiar with cidr?

yeah getting tipsy off it is great

If I buy a Wi-Fi Booster, will it help to stop buffering on Hulu on my smart TV when downloading steam games? It doesn’t buffer when not downloading and I have the download cap so I know it’s not the internet speeds

can someone tell me why everything and everyone can open my website with the domain except me on my laptop but all other devices are able? it works with the local ip and a vpn for some reason

?

so you can't access it with public IP, but can with local IP?

but you can with public IP, when on VPN?

if so, you need to enable NAT reflection/loopback

okay i just tried typing in my public ip and it works just the domain not but it works on all of the other devices

what IP do you get with you nslookup or dig the domain

it says fe80::1

uhh, what???

oh no

nslookup example.com

now it says this (it isnt my oublic address if that matters)

noo

replace example.com with your domain

I would think that would be obvious, but apparently not

oh okay, sorry

its says my ip but its hitting timeouts

ok, but it's your IP

yes

hmm, what's the exact error you get when trying to access the website

just a typical timeout i can send you an image but it would be on german

hmm yeah time out

but it works with IP right?

yes

maybe try to clear DNS cache in browser?

nah i dont think so, its system wide, thats software installed on windows and all the other browsers are also showing the same error

and you did the nslookup from the same computer right?

weird

yes

How do your companies access internal cloud services? Want to move away from OpenVPN to a better solution, but HashiCorp Boundary doesn't seem production ready

So like how do developers/ops people access internal dashboards and stuff hosted on AWS?

is it supposed to answer as timeout?

no?

hmm i just tried the local ip the public ip and youtube.com all of them had failed

its just weird

It's not the amount of IPs (host address) that's the problem, it's how fast you can burn through ranges. You'd be surprised how small a /32 is from a SP standpoint when you apply proper address formatting.

Actually I just designed and got approved to migrate to /80s for transit links. No more /127s

what's the advantage of /80 over /127 ?

Human readability. It's pretty standard to subnet with an address format so there is meaning behind it. But that is a cost of some wasted space.
For the new /80s, in a traceroute we can determine the peers of the segment and which router sent the response and the interface it arrived on along with a group # for multiple links.
AKA, I could see and address and know its on router X on interface xe-2/0/3 and it's the transport link to router Y

ah, makes sense

That's what dns is for tho

Anyone have Xfinity as their internet service provider? Their internet has been slow lately.

I don't handle the DNS and I don't trust the team that does. And since most traces I get are from customers, Ill let the address be the source of truth

Yes, ever since the outage my internet has been slow for some apps. A full reboot of all of my equipment resolved it. The problem may have been on my end though.

Someone was asking about a program to get SNMP data. There are two programs that I found. The first is a GUI application with a style that looks like it didn't change much since it was initially designed. This is called tkmib. The second one would be snmpwalk and this is a cli application. There also is snmptable to check a table and snmpdf to check the amount of disk free.

How would I setup a bypass for specific devices to get around the Wireguard VPN on OPNsense? Edit: LOL, tried to add a link to where I found my answer, oh well.

I figured. I’ve yet to do a reboot on my modem. So thanks for that suggestion.

Can't edit my message? LOL, I tried to add a link to where I found my answer here (I think...I thought it was working, toggling off and on): https://joris.bearblog.dev/opnsense-wireguard/

Update, I rebooted everything and nothing’s changed…

try changing your dns ?

No it’s an Xfinity issue, did everything to troubleshoot so it’s more of an ISP issue at this point.

right if you are using xfinity dns servers and they are being overloaded .. changing the dns server could speed up things. its just something to try.

What am I doing wrong here, I made an Alias with one IP at Step 7 https://docs.opnsense.org/manual/how-tos/wireguard-selective-routing.html#step-7-create-an-alias-for-the-relevant-local-hosts-that-will-access-the-tunnel, this desktop, and made a LAN Rule with that Alias list, this desktop, to go to WAN instead of Wireguard, but that breaks my internet. :/

finish the steps.

I thought I did, maybe I screwed up here,

"Whatever interface you are configuring the rule on"

I set that to LAN, they kinda lost me with their 'eg LAN for LAN hosts', as if they had named something that somewhere in the previous steps, but I assumed it would be my LAN interface.

its the interface that device is on.

🤔 What does "read attributes" mean in NTFS file permissions? Does that give a user the right to open and read the file itself?

yes they can read the file but not make changes to it.

need write permissions to make changes.

Trying to make my external hard drive as air tight as possible, to make sure no one can even see my passwords on it but my family's laptops.

"Authenticated users" have read only permission, but I'd rather be more specific to the actual user. I don't want anyone unauthorized getting any access under vague groups like "Authenticated", especially "everyone".

Its not letting me make changes to that group for some reason. Think I'll just remove that group altogether. 😬

😅 Yes, got rid of it by removing all its permissions via the volume drive security menu itself. I'll test my dads laptop tomorrow to make sure he can still access everything, see if I did it right. 🤞

Aah damn, I got tricked since I knew link local addresses started at fe80 so I thought this might’ve been global, thanks for the help though

🤔 Its funny that a company of Amazon's size doesn't use IPV6 at all to route data. All I saw in their IPconfigs was a link local address. So they 100% stick with IPV4 for some reason.

They do, I believe its just rolling out though. When it comes to implementing v6 for just routing, its straightforward but has some difficulties. However implementing it for SaaS is much more difficult and the larger you are, the more hurdles you face. Its not as simple as you think

🙃 You would think it'd make things easier considering you have trillions more addresses to subnet from. No NATing necessary. I do recall this one dude saying there is something about IPV6 that companies have been having trouble with. I just don't remember exactly what it was.

But I was very surprised to only see a link local IPV6 address, in such a massive company. The last company in the world you'd think would be avoiding it is Amazon. I mean their fulfillment centers are absurdly huge. Thousands of devices that need IP addresses. There has to be something about IPV6 that Amazon doesn't like at all.

And what makes this somewhat worrisome is the dude said we'll still eventually run out of IPV4 addresses even with NATing. So something has to give at some point. They better get IPv6 together sooner rather than later, whatever the issue is. 😅

Majority of the problems come from host and software limitations and routing I'm hardware. They probably were talking about DHCPv6 which is a mess really with host.
Also LL addresses are always there as long as the OS has v6 enabled and the interface is up.
And you're mixing AWS with their internal systems like the fulfillment centers which I am sure they have v6 in production.
Finally, no, we are not going to run out anywhere in the near future. NAT has multiple mechanism to keep the internal side of thing growing and even though the public v4 space is at its limits, if it's strained enough, IRR will start taking legal action on recovering space inherited or purchased early on but not in use

🤔 Interesting, well I just started working in Amazon's IT department a month ago at one of their brand new FC's. Doesn't look like they are actually routing using ipv6. I just see link local addresses.

😕 I'm assuming because of the reasons you listed. DHCPv6 not playing nice with certain host devices and such.

https://cdn.discordapp.com/attachments/499641936840491026/917796145986682932/FF8fbTmX0AcuOPf.png

already posted here few days ago

😆 Well that's one way to explain the tcp handshake.

sigh still struggling trying to figure out why all my devices are using the VPN and how to toggle them so it's per device. In the WG_VPN_Hosts, step 7 https://docs.opnsense.org/manual/how-tos/wireguard-selective-routing.html#step-7-create-an-alias-for-the-relevant-local-hosts-that-will-access-the-tunnel) I only have 1 device IP, yet both my devices are behind the VPN.

idk opnsense, but you would need to use something like PBR

policy based routing

Nice a networking page

I need the best WiFi extender I can get for under $140? Or would a bridge be better?

@hollow marlin wtf cisco emailed me saying they have an annual shutdown this month

so what, we cant get unscheduled support?

lol

@waxen scroll I had to lookup what that even was. I didn't realize they did that

Yup, every year @waxen scroll and @hollow marlin but TAC is still on call

still on call
Wait, there are times when engineers are not on call?????

Nope 😄

Hey im having issues trying to get a Sonos Five speaker (that seems to be running UDHCP) to pull an IP address from an office network. The office network has redundant DHCP servers and OpenVPN connections to branch offices. When I try to connect I get the error "Packet dropped because of Client ID hash mismatch or standby server" in the DHCP logs on the primary windows server.

It works fine when I try to set it up on a basic network.

Any thoughts as to what I might be able to try? Google is not giving me much.

Sounds like its requesting a renewal thats a duplicate IP

It has been factory reset serval times in this process, it /shouldn't/ be renewing (unless there is a set address that it attempts to connect with, witch would be dumb)

Come to think of it, this is the second Sonos Five speaker. The first one worked fine

I wonder if they are trying to conflict with each other somehow

Depends on what Option 82 fields are set to. If they have redundant servers you must be using DHCP relay as thats the only way you would have a client-id/remote-id.

Unless this is Windows server thing and the request is being sent to the wrong server

Google refuses to support android devices getting an IPv6 address from DHCPv6

it is not that they can't support it, but they refuse to, because they don't feel it is a good solution

What is a good PCI-E WiFi card? Gigabit is a must, I don't care about Bluetooth, but it wouldn't be bad to have, I just don't need it

https://blog.cloudflare.com/foundation-dns/

interesting

cf still too big

don't expect gigabit over wifi fyi

Why not? WiFi 5 support 3.5 gigabit, and WiFi 6 is even more

lol yeah no

that's total aggregate bandwidth of the entire spectrum

Oh... what kind of speeds can I expect then? 500 megabit?

Assuming no other devices are using the WiFi

maybe, depends on a lot of things

Will a more expensive WiFi card get better speed? Or not?

how noisy the area is, things in a way is, need to be using 5ghz

yes and no, amazing card with crappy wifi router, speed will suck. Crappy card with like a $600 rukus AP, also will suck

I have a great router, but I see cards all the way from 20 USD to 70 and above. All have good review (4 to 5 starts), so I'm not sure which to get

https://www.amazon.com/s?k=pcie+wifi&ref=nb_sb_noss_2

I honestly don't know much about wifi, I just wire everything I need

😆 Wifi is garbage anyway. Trying to back up or re-image a PC using Wi-Fi is an effort in futility I am learning. Works perfectly fine with Ethernet though.

wifi has it's uses, but for anything intensive, you aren't gonna beat wired

In an enterprise environment especially, I wouldn't use Wi-Fi unless I have no choice.

Isn't it a single dev that is the roadblock for DHCPv6 on Android?

it is their head dev, and he feels very strongly that DHCPv6 is the wrong solution, because it doesn't provide the control that enterprises need, and that solutions like 802.1x are better for control, as these days devices spoof their mac for security and all sorts of other things.. and, just having DHCPv6 doesn't prevent someone from giving a device a static IPv6 to bypass it

his view is that people are just using DHCPv6 for addressing because that is what they did on IPv4, and that it isn't the best solution for that on IPv6

b/c even with DHCPv6 there is nothing stopping a device from generating an address and using that too

so the control and tracking and auditing that enterprises need should be moved from DHCP to 802.1x and other similar solutions

There's a technical reason why you need to use dhcpv6 in Enterprise and I forget why lol

enterprises want DHCPv6 for control and auditing to see who had what address at what time

but the google guy's view is that DHCPv6 only gives the illusion of control and auditing.. not actual control and auditing

and all of the modern innovations to encourage privacy by randomizing macs and hiding other things make DHCP and DHCPv6 work less and less well for control and auditing

That's a pretty egotistical take on it. It's an additional tool in the toolbox

The reason was static IP and dynamic coexisting I think

It's been years since I thought about this lol

I remember seeing a feature matrix and it was obvious to use dhcp

Dhcp also transmits options

yes, DHCP transmits options, but that is separate from DHCPv6 IA_NA

the android dev was fine with adding support for DHCPv6 additional info or DHCPv6-PD

just not IA_NA, which is the use of DHCPv6 to assign global addresses to a device

Yes, it is somewhat.. I'm sure he is doing this mostly to try to stop enterprises from deploying DHCPv6 server for addressing and have them use SLAAC instead

but the official excuse is that DHCPv6 IA_NA "breaks tethering"

and they don't want to allow any android device to be used in a configuration where tethering may not work as expected

the workaround being done as a result is to give each host its own /64 instead of having a bunch of hosts in a shared /64

But that's my gripe, his arguemet of DHCPv6 not allowing enough control/audit but at the same time saying just use SLAAC and have none of it

he's saying use SLAAC with something like 802.1x

He can say all he wants. It's my network and I make the decisions

🤣

I'm just not convinced that Google is going to change their stance on that

You can get around using IA_NA if relay is implemented. It's actually the same way Juniper required to get around the combined PD and SLAAC on the interface.

There's no way they're going to let us spend time on v6 anyway

I'm worried about how slow businesses are going to be to move to IPv6

we need things to get moving towards IPv6 now

tell me about it

but businesses don't feel pressured

the biggest thing is ISPs

neither ISP here has v6

shitty takes

where are you at? in canada, every major ISP does IPv6 standard now except the biggest telco

was looking if optimum has had any updates on ipv6

My last company was out of space, this current job is close lol

Most of the important communication is private linked anyway

NYC area, the 2 ISPs that service my area are Verizon fios and Optimum

Optimum is owned now by Atlice

and neither do IPv6?

nope

verizon has been doing testing from what I heard, here and there

optimum, no news

well that's where the problem comes in

a lot of these big telcos are sitting on huge IPv4 blocks that they got super early on

so they don't feel a need to hurry and switch either, becuase they have plenty of public IPv4, more than they could ever need or use, so what is the rush?

yeah true

verizon seems to be at least doing something

what happens it it screws over the little guys

some people have reported v6 service

but not in my area

either you spend a fortune buying public blocks or give people CG-NAT and then you aren't competitive

https://www.dslreports.com/forum/r32136440-Networking-IPv6-working~start=1170

it's almost like an anti-trust thing

sitting on IPv4 on purpose to prevent competition

juan has confidence that the unused IPv4 space will be reclaimed somehow, but I don't have that confidence

ffs, comcast one of the worst, has v6

Comcast here, I've had it for years now

🤷‍♂️ But why don't they like it exactly?

@tender hazel Nevermind...😆

I got Wireguard running on OPNsense following this guide up to 'Step 12' https://github.com/FingerlessGlov3s/OPNsensePIAWireguard But I keep screwing something up after that, trying to get a device to use it, last time I couldn't get it per device, it was all or nothing (as in no internet at all). Is there a PFsense guide on Wireguard that might be close enough to OPNsense to get me setup?

what is your set up, modem > opnsense > switch > devices or modem > opnsense with multi port ethernet cards > devices ? if its the first using a switch its going to be all or nothing cause opnsense or even pfsense will not be able to control what the switch ports are doing.

I was actually doing it in pfsense before, but can't say it was cause I knew what I was doing, I found a guide and I was able to toggle VPN per device.

Actually, I guess everything was going through the VPN, OpenVPN, unless I told it to bypass it straight to WAN_DHCP by the looks of it.

you were probably doing it through IP routing - this IP goes here that IP goes there. should be able to do the same thing with opnsense but I am not sure where. the guide you are trying to follow is more for a multiport ethernet card where each port is its own network basically - the lan lan2 opt opt2 etc, and it wants to set up that port (lan2) to bypass the tunnel.

n

What you are looking for is pbr, let me find info about that for opnsense

opnsense doesn't seem to have clear pbr, weird

it's all done under firewall

DAC vs Fiber, at 10Gig, what's the tradeoff? I was planning to use DAC, but its going to make my cabling ugly as it wont use the patch panel

thats the tradeoff as far as I know

its less flexible with wire management

i worked at a place that used it in their lab and I hated every minute of it

DAC has less latency iirc

but tbh, the difference is pretty small

if it does thats probably purely coincidence. I think DAC is just for people who need a little cabling and dont want to build a fiber plant

@hollow marlin educate us ❤️

https://www.arista.com/assets/data/pdf/Copper-Faster-Than-Fiber-Brief.pdf

but this is ns we are talking about

all i know is its never been a conversation "hey we really need these DACs"

all of my runs are in rack, longest is 10u climb and back to front, so it gets ugly if i do that. Unless i buy an aggregation switch, and then I'd only have one, same U back to front run

UDM-DAC-USW24
USW24-DAC-AGG
AGG-DAC-Server1
AGG-DAC-Server2
AGG-DAC-Server3

but if i moved to fiber, I'd need all the SFP+, and the cables, plus a bigger switch with more SFP ports

i did just find out that a SFP+ WILL pass through a keystone opening 😄

must be just barely. i'm impressed

keystone is 14.6mmx16.1mm opening, and SFP+ is 11.4mm

Might not matter as much for third party, but for branded a DAC is cheaper than SFPs

i noticed, like, significantly cheaper

Looking for some one to create/redo a website. It is a non profit organization. So cheap/free.

When I transplanted my legion 5 motherboard into a new computer case I lost a lot of Wi-Fi and Bluetooth signal from the m.2 style card even mounting the antennas and similar locations. I can find m.2 cards that have antennas amount to PCI brackets but I cannot find just the wires antenna and PCI bracket any search suggestions for it?

is there any easy way to setup a docker container on network to handle webhooks on schedule ?

I have many docker containers, but I don't know what a webhook is

Do you mean serverless functions in Docker? If so, I don't think that exists. It's possible with Kubernetes but not Docker

found a way to do it in docker making own container with wget startup script pointing to another folder script that i binded to non readable file that i can customise

ironicly it closes automaticly cos it cannot find the file then proceeds to execute the file anyway doing the task

the commands it succesfullly executes are in the file that is missing and causes container to shutdown 🙃

does butterbloat matter if there is only one device connected to the internet at ur home

bufferbloat is nothing under your control

for the most part

#networking message

https://www.amazon.com/Antenna-Pigtail-Wireless-Routers-Repeater/dp/B07R21LN5P that is what I used when transplanted a dell xps 8700 system in to a new case you will have to find a spare pcie rear slot cover and drill some holes for the antenna connectors but they work.

@primal ice thank you. Didn't go with it but found a set that comes with the rear bracket. The extras I have from my lian li are 'ventes' ones and I wanted a more secure fit it was worth the dollar or some more to save less hassle for me

go to ur ethernet properties and disable every option in the list

Question regarding a TP-Link Archer VR2100v (modem/router combo).

I'm experiencing an issue with the web interface. Moreover, I can't access it after some time anymore especially after trying to set up some stuff in the advanced menu. – The browser simply can't connect to it anymore (tried various IP's/URL's).

had a similar issue with my buffalo router, it was caused from it over heating. restarting would cause it to work for awhile then it would get hot and stop working - the web gui. the device would stay functional it just would not log in to the web gui until I powered it off for a few and let it cool down. now that its acting as just an AP it works all the time cause that load does not over heat it.

Restarting also fixes the problem for me, but it's still weird since the modem/router is brand new.

No

Elaborate.

Currently, my house is using a wifi router that extends from the ISP's modem and I connect the network wire directly from the modem to my gaming PC, and the wifi router mainly broadcasts wifi for my parents to use.
I have asked on some forum and some ppl recommended me to change the Quality of Service (QoS) section in my router

I have accessed the QoS section of the router but I am quite confused as to how to set it to focus the bandwidth for my gaming PC :

Hoping someone can assist me

Stuff like arp offload, and checksum offload, idk why you would want off

What's you internet plan

If it's like 100/ 100 there is no need for qos

First question should be, are you having issue with internet?

ok

Or all the other off loads

bro stop talking, it hurts reading ur msgs

It's possible the people here would be out of their depth unless there's a networking specialist around, I guess you could Google to see how to find your device's ip address but I wouldn't know how to progress from there.

weird setup page, idk if it would work, but for the source to be "from anywhere from internet) it would theoretically be

Source Netmask: 0.0.0.0
Source Port Range: 0 - 65,535
Destination IP: <Your PC IP>
Destination Netmask: 255.255.255.0 (I think)
Destination Port Range: 0 - 65,535

Wouldn't source be his PC IP and destination anything? And 255.255.255.255 for a single host

Also what ever manufacturer that is should Google how to spell description

well I think you would need 2 rules, inbound and outbound

but idk if it applies it per connections, so like if you are initializing the connection and then it just keeps the QOS rules, in which case you would just need to do a outbound rule

as for the netmask, idk why it even asks, the router itself knows the netmask of the network. But the network itself is a /24, idk it doesn't make sense

Gotcha. Yea I'm not sure if qos is stateful

you may be right with 255.255.255.255, but idk

If you only want it to be one host thought you can make it a /32

/24 would be a qos rule for the entire lan

yeah, but is the netmask for applying the rule to the subnet, or is it asking for the netmask for that specific IP

but I think you are correct now that I think about it

I assume it's what you want to apply it to. So you could even do a /30 or something if you wanted a few hosts within the subnet

so I'm using university wifi to download a game, I used to get speeds upwards of like 6 MB/sec, and now Im getting like 500kb/sec
my friend is downloading the same game, same VPN, same servers and is getting about 7 MB/s
anyone have any idea why my downloads are throttling down?

im worried my network chip in my laptop might be damaged because i used to get those download speeds just fine

more likely that the bandwidth is being taken by others, but it's a possibility

the installer is the only thing using up bandwidth in task manager

other on the network

1 mb/s is within tolerance. if you were getting 6 and he was getting 60 it'd be a different answer

Anyone gotten issues with pinging to cloudflare lately

Not sure what happened, but pings to cloudflare were fine today's morning but now it spiked up from 14 to 35

ICMP (ping) packets are lowest priority so there may just be more load rn

Did a tracert and it seemed to be issue with second last hop to 1.1.1.1

Second last hop had huge jump

is there a way u can likr make money from being the seeder of torrent files

You mean profit off piracy?

yeah a lo t of old files are difficult to find on the internet, so if ur a seeder and u have these files u can charge ppl

uhh no

That's a next level, distributing and profiting off pirated stuff is MUCH more likely to get you serious consequences

yeah not in 3rd world countries where they dont care about piracy. ppl dont even need to use VPN

cisco dont care

eve-ng. gns3.

yeah OK they dont supply images, but pretty much advocate image theft

True

and people are using those images for commercial reasons mostly I would think

some learn, but others dont

Wouldn't surprise me

we had a guy at one job using gns3 to build designs

lol, wow

think i found what im looking for https://www.bittorrent.com/token/btt/

I guess this is the IP address and netmask of my network?

hide your internet facing ip address since people can use that to target you

paying for piracy

kek

My network shows signs of congestion at night when there are other people using it

you can delete the message since not many minutes has passed

maybe the lad has a dynamic ip and it'll all be okay in 24 hours 😌

Is dis better 🙂

never thought dynamic ip internet facing ip's were a thing

What...

#networking message

What?

Well yeah your public ip

there will also be programs and game servers that would also have it

have what exactly

So

Should I input my IP and Netmask to Source or Destination box?

yes because your only locally accessing your physical router which has it and even maybe created it

already making money

a whopping 0.00340702075 USD

At that much per hour that's a eye watering $2.448 a month!

assuming constant value, lol

its so cute how some people dont have the mindset of investing. If I hold those tokens they will be worth way more in the future

im not gonna cash them immediately

I used to mine, I get it

the heat and unusability of my machine made it not worth it

mining and seeding is different, so i dont know why ur brining that up

both cryptocurrency

ok

@thorny vector fun RCE found

@peak cloak trust me, we're already scrambling to respond

it's pretty insane

Even my personal website had it attempted

like this is the stuff that has prob have been used by gov or something

So... im trying to set up a nfs folder in my windows server 2019, which i have to share with a windows client and a ubuntu client, the problem is that, in the ubuntu client, when i create a file, its created with rw, but i want it to be rwx, and nothing i try fix it.

Does windows have an executable flag on the windows file system? I thought they did not have an executable flag o when mounting the partition in Linux you have to specify the file permissions and user/group settings. The windows file system doe not have the ability to keep track of if a file should be Linux executable or not. The #linux channel might know more since most seem to be trying Linux for the first time over there.

As in they might know the new way of dealing with the executable problem since they could be freshly having that problem.

no, i dont think so

the .exe extention is how its done

the reason linux needs +x is because within the files they can ask linux to have an external app read them

#!/bin/bash etc

with no +x you can still manually type /bin/bash filename.extention

i have linux in windows and if i check windows theres no option for +x either

i have to start the linux command prompt to see the other options

this isn't "paying for piracy" but ok gamer lol

paying for faster speed maybe which is still goofy

disregarding whether it's being used for copyrighted content or not, if you're going to pay money for a faster p2p downloading solution, use a usenet

(not advocating for piracy)

My OPNsense box, I need to setup my router in AP mode with an IP address between 192.168.1.2 - 192.168.1.10, no?

that's what i did

i dont know whatthefuck ur talking about? im not paying money for faster p2p?? im literally getting paid, quite the opposite bud

and its so cute of you to assume im a gamer, havent played a game in years

Cool, but uTorrent gross

If they make it in Qbittorrent I'll use it

yeah okay but you wont get paid using Qbittorrent so

This might be a stupid question so please forgive me for not knowing simple stuff. I am using JioFiber (am Indian) and wanted to use the cloudflare 1.1.1.1 dns. Tried to do so in the router settings but am prompted to provide a domain name. What to do?

can you not ignore it and press save anyway?

No. Keeps giving popups if I try that asking for a valid domain name. And the cancel button does not seem to be available no matter what settings I try to change.

put in something random and see if it works

like notarealnetwork.local

Using a random domain name did allow me to save it but 1.1.1.1/help shows that I am not connected to to the dns from what I infer from this image

hmm, from the previous messages I noted that it said local ipv4 config, do you have an internet/wan config page?

maybe you need to put the dns in there

make sure to save whatever dns settings are there in case you need to use them again later if it doesn't work

This was the only place in the router's settings where the DNS could be set.
Though I must admit that this is the first time I am tinkering around with my router while having no previous knowledge or experience related to it.

hmm, you could do it per device I guess

hmm you can use home.local or home.lan at place of domain name and check if works

just use one.one.one.one, it's the proper FQDN of 1.1.1.1

No router DHCP didn't allow to save

he posted screenshot of LAN IP configuration ... on LAN, you should mostly use a non-public TLD
unless you want all your LAN clients to register against the actual authoritative nameserver..... router dnsmasq is not considered authoritative for one.one domain

im replying to you talking about charging people to take advantage of your seeding

not your fake funny money lololol

but ok gamer

theres a reason why i have some idiots blocked

It could be saved but did not change the output from 1.1.1.1/help. Seems as though my ISP itself is blocking all these

do a extended dns leak test https://www.dnsleaktest.com/ and see what dns it reports?

also restart your comp/ laptop ? dhcp needs refresh

do ipconfig /release

then ipconfig /renew

I see your dhcp lease time is 1 day hour so it will take that long to get a new lease

what is the output of ipconfig /all btw?

hmm lease time is 1hr....
though you can also run those commands as administrator recommended by PresentMonkey via cmd or PowerShell

oh yeah 1 hour