#networking

That's public

172.111 is public

gotcha, brain fart

as long as you're not changing the location of the server, you should be find

The only thing might be routing, but depends.

but IP changes shouldn't affect it

the host said we can keep the IP but I was just concerned it would be like a vpn where it would communicate in dallas texas when the dedi itself is in new jersey if you know what i mean

for the most part, you'll be fine swapping IP addresses. there could be some ISP routing issues but it's exceedingly rare

for example, assuming you don't have a dedicated IP at home, when you get a new IP from your ISP your service doesn't change

Does anyone have a recommendation for a wireless bridge? I have 500mbps internet and a tplink ax router

Thanks for the info

@waxen scroll so I forgot to check the obvious first..... the 2nd, 3rd, and 4th set of two RJ45 CAT6 Jacks I punched CAT6 wire to were actually good. Somehow in the process of removing the eth cable I was testing the jacks with, I tore one of the wires out from one side of the eth plug. I must of tugged hard on it to snap it out. It was a flat-style cable too. That's why I wasn't seeing a connection.

so all that frustration could of been avoided if I had just remembered to bring my cable tester tool or tested with a different copper cable on the 1st and 2nd nights 🤦‍♂️ 🤦‍♂️ 🤦‍♂️

i was thinking of buying a new router as ive had my old one for i think 6 years now

any recommendations?

or two in one modem things

im not well educated on this so

What internet speed do you have?

I wouldn't recommend 2 in 1 combo devices

currently my speed varies from 5 mbps to 30 mbps download

and consistent 5mb upload

not the best but its usable

here ill just send my speed test results rn

is that wired or wifi?

wifi

Networking dummy here, could anyone TLDR the risks of exposing a port on my router for my Plex server? And any precautions I can take to keep my network safe?

Test wired

The port is only exposed for the server’s local IP, not the whole network

port scanners will see the open port and if the plex server has any vulnerabilities a hacker could exploit that to gain access to your internal network setting up bot nets.

I mean your current router is fine for those speeds

not very likely to happen but it could. that is why a vpn/vps is recommended cause then they have to break through the vpn/vps providers network.

no need to upgrade unless you get a higher speed

guessing vdsl2

right now theres two people using it but normally i have 4 people using it with multiple devices on top of a smart tv

which makes download drop to around 5 mbps

that is still good for 4k video streaming ¯_(ツ)_/¯

so should i buy a new router or just keep the one i have

new router will not gain you anything - it could even make things worse.

so is this the best i can get for internet then?

that depends on your ISP (internet service provider)

if there is an exploit in plex, then you can possibly get infected, depending on the severity on exploits, worst case is a RCE (remote code expectation), but that's very rare (log4j tho). Just gotta stay on top of patches. I also keep all servers firewalled off from my LAN, so they are isolated

If you want to be super cautious, you can use something like zerotier, tailscale for an easy to use vpn to get into local network

tldr, just gotta stay updated if you expose things

also the main issue with my current router is that it doesnt reach some of the rooms in my house

keep all servers firewalled off from my LAN
Hmmmm my plex storage is shared as network drives so I can download linux ISOs from my main computer & transfer to the server....

well my firewall is stateful, so Server -> LAN doesn't work

but LAN -> Servers does, depends who initializes the connection

Oh I see

Would that be a firewall setup from the server, router, or the other computers?

i.e. where should I go to configure that

depends

it's all dependent on your setup

I have a dedicated VLAN for servers, so in order for packets to go to LAN VLAN, it has to go through router, which is where the firewall is configured

interesting

topology matters

right now the plex server is just another windows install (I have my reasons) with no VLAN setup

VLANs are just a way to have multiple lans over one physical interface

I helped a user with no VLAN support on switches/router to configure a similar setup by having a router VM on his server

and then all server VMs connect though the router VM

all that's needed on main router is a static route

that is more of just needing another access point - then. preferably with an ethernet backhaul -- an ethernet cable connecting the access point back to the router.

One last question, are network port attacks highly targeted, or is there wide-net method of exploiting things like plex/log4j?

bot nets are scanning things all the time

malicious and not

I get scanned about every 3 seconds 😛

https://www.shodan.io/

Fun

https://rog.asus.com/networking/rog-rapture-gt-ax6000-model/

one such bots that is used for good

waste?

asus networking...

how is router windows 11 ready...

heh

i can't find RB5009ug 😦

Ethernet ready! Wifi ready! Windows 11 ready!

is that all you guys read?

it's got a 2.0 GHz cpu and dual 2.5Gbps

that's really what you paying for

hardware can be descent, software is just as important

and the price of an RB5009 plus 2.5Gbe or higher switch it's about the same here

do you want to learn networking? or just want a router to plug and play?

good point, let me double check the WRT stuff

hm, asuswrt-Merlin available for that, and honestly i have no complaints with it

all i need it to do is PPPoE login for fiber and VLAN tag 201 and the other regular stuff

plug n play, but to understand what i'm plugging in and playing

so yeah you don't need mikrotik

it's a bit of a learning curve

also hard to get my hands on

might be worth it if you can change the wan port on it.

otherwise I would just get some cheap router a 10gb switch and an Access Point of your flavor.

i'ma get hate for this, but i like asus' newer networking software thingy. Even merlin won't support my current asus router because it literally has everything

actually nvm, it's because it' has some features they can't mess with loool i was so wrong

But I do need a router with a decent CPU, the only thing I've tested that I actually seem to need

specifically, faster single core processing, the best would be to build my own router with any relatively modern cpu

the router only needs to be fast enough for your isp service speed. internal network would be switches and network cards.

it's symmetrical gigabit, no cap

i'm getting bufferbloat grade of B on waveform.com, leads me to my router

bufferbloat is not due to your router

it's due to me overloading my router making it handle PPPoE, WAP, Firewall, qos, routing etc?

.

usually you cannot fix it

https://www.waveform.com/tools/bufferbloat?test-id=37e760b7-e0bf-4bb3-9950-6ace79b3b02b - their servers are crap anyways. 😛

you could do some qos on your end I think, but it will just lower speeds

.

yes "bufferbloat" is garbage. its queueing of packets and retransmits. QoS will make it worse cause you are causing a greater delay.

I see, but it's usually ISP then? These sites all state it's my router

then no worry about things I cannot change, what can i change

I notice I am hitting my real world 940Mbps uh, "Ceiling?" on my stupid killer ethernet nic. I'm gonna go test on my 2.5Gbe intel nic'd pc

to be honest, a lot of my issues were resolved after jumping into networking to "fix" my weird issue i was having, and it's solved after disabling killer network services on my windows "services"

the only issue i have now is just to relocate and get better wireless coverage

the router could be struggling - but most likely its how your ISP is pairing to what ever service you are trying to connect to.

if you are serviced gigabit, it could be around 940mbps

I was having huuuge lag spikes about every minute or two or whenever I would "load up" like scrubbing a 4k video while downloading a game in the background

and it ended up being that killer networking driver crap somehow windows 11 downloaded it in the background, and every update it was coming back. so i just manually disabled it in services and all is well

yeah it was probably prioritizing the game download

i just never had good luck with killer nic's

the only way i ever truly solved them was switching to an intel nic

in essence QoSing the packets.

is the real world limit of gigabit ethernet 940 as well?

sorry i quit smoking a year ago now, and i'm no joke, saving $500 a mo and i don't mind opening up my network lol

it's like $65 a mo too, hell i can get two fiber gigabit lines as well

nice lol

Steamship Gigabit

i want everyone to get gigabit, because i now realize who cheaps out on their servers lmfao

when the site is slow now it's not "oh my internet is slow" it's "these cheap bastards!"

EA

oh yea, i actually statred seeing this back when i got 100Mbps internet too. I think it was an LTT video where they were talking about 5Gbps and 10Gbps internet...like even with 5 people and 10Gbps ure not gonna go to many places where u can saturate that

there was another video of this guy who tried to saturate his 10Gbps internet and it was REALLY difficult outside of torrenting

yea so i was correct in my ranting lol

next step for me is 1Gbps wifii

i think so too, i THINK ive gotten 970 once but that was local

hm, i'm trying to think about how i can test this

my theory is that my internet co is advertising 940mbps because that is the real world limit of gigabit nic's

and that if i remove that bottleneck, i could achieve more?

because i use to get more than advertised speed, granted that was cable company during certain non peak times

like i use to get 330-340 mbps on a 300 advertised

and even back then, my hypothesis was that it was DOCSIS 3.0 limits or reaching that

which i believe is correct now, i haven't had cable in a while, but I read to get the higher speeds with them you need their newer DOCSIS 3.1

it depends on their qos rules

not really I belive

to test my current hypothesis then I would need to get a 2.5G port router

and double check my ONT's nic

those are gigabit no?

yea i think so sadly

so you would be limited there anyway

it's a calix unit, darn

yeah GPON fiber most likely

hm wait i believe it's 2.5Gbps?

what model

yea GPON for sure, i believe it's a 711GE

darn they don't even show 2.5 or higher

Networking people are smarter, so this isn't possible right? 😂

https://www.calix.com/content/dam/calix/mycalix-misc/archive/prem/prod-lit/700g/700G_ONTs.pdf

everything but the voltage... is possible

that's how i'm able to get two gigabits* eh?

yeah that's what I was thinking, he said he could short all the computers on a network lmao

r/masterhacker

that is from my windows machine to my router.

944 nice

so there is overhead in a gigabit nic

about 5-6%

While Present tagged my old rant on bufferbloat, QoS would not always make it worse and can reduce the effects in some areas. QoS is really an umbrella term but it doesn't only involve shaping (queuing) but also involves policing. The "fix" that is commonly used is you setup QoS but police traffic 5-10% below your rated speeds.
What this does is drop packets at a CIR in hope that your traffic is not queuing because it exceeds your providers shaping rate. Essentially you're trading packet loss for packet delay.
That said, its difficult to implement in the download perspective and if "bufferbloat" is due to congestion further upstream, then there is nothing you can do

1500 MTU + IPv4 + UDP is the best case scenario and you would see 959mbps at the max due to overhead. You'll only exceed that with jumbo frames which is not worth the hassle

am i nuts, these look like they can be upgraded?

yeah that's what I mean, some qos to make speeds slower

the ethernet ports?

yea

Ew, 711Gs. We only have a handful of those still in production. Yes they can be upgraded, but by your provider.

I see

If you are looking for 2.5gbps then you'll have no luck since these are GPON. NGPON is needed for that which is completely different optics on the far end of that ONT

I guess verizon is starting to deploy that

I've heard of 2gbps in NYC

they have in the farmlands of california more than 2Gbps over cable channel bonding

and san jose, california has 10Gbps for $40 a mo

that is the xgpon or something

https://dongknows.com/10gbps-internet-unlocking-super-broadbands-secret/

If you have Fios you're already on XGPON. Thats how they can reliable serve 1G to customers

huh

interesting

Yeah no SP in their right mind would have 1G packages on GPON

well this was the first fiber in the area

thats it, yea i think 950 must be it then...ive used jumbo frames before for fun but wow yea not worth the hassle

huh why not?

as an aside are there ONTs that just convert to more fiber?

GPON is 2.4/1.2gbps and the main reasoning to use it is because its a shared medium. Since running fiber is 90% of the cost, it much cheaper to run PON to multiple customers.
If they were to offer 1gbps, a single customer could utilize 1/2 the bandwidth (download). Real world traffic patterns you could really run 10+ customers at 1G and it'll will be mostly fine, but GPON can go up to 32 customers per fiber or if the runs are close, 64.

wait so the overall bandwidth before splitting to each customer mkaes a difference with the ONT equipment?

GPON is a shared medium, all customer share the same 2.4/1.2gbps

ONT is really just a low powered managed switch. Its the optics that do the signaling and determine how much bandwidth they use. (GPON is not ethernet but TDM)

oooh really

so theres no special logic or stuff it does beyond switching?

PON portion is all handled by optics, which you can purchase xGPON optics for most vendors. As far as the logic, and ONT does 99% of what a standard managed switch does. It just has some extra carrier features for standards such as QinQ, RFC2544/Y.1564 testing, etc

wait are you saying that GPON shares the gigabit line or the 32gbps line?

my assumption from what the tech told me was there is a 32 strand fiber at the switch/box thing in the neighborhood that switches to each 32 dedicated gig lines

nope

it's shared

AT&T does

i'm pretty sure..

yup

they are switching to XGS-PON tho

So I'm having a few IPV6 issues, and I'm not sure if it might be ICMPv6 related, but I've definitely ruled out DNS (I use Cloudflare's), and I don't think it's the fact that it's using DHCPv6 either (I have a dual-boot machine that absolutely has no issues with IPv6 connections on the Linux side, while it's Windows 10 side has been giving me problems).

I've already added a rule in Windows Firefwall to forward ICMPv6 packets and have been using the following web sites to test:
https://ipv6-test.com/ (Score:19/20. There is no hostname on my machine.)
https://inonius.net/speedtest/ (Download works fine. It's the upload speed that concerns me since it shows up as 0.00 Mbps)
https://test-ipv6.com/ (Helps detect if it's defaulting to IPv4. The dual-boot machine has issues on it's Windows side regarding this, but Linux/Pop_OS is prefectly functioning.)

could be a driver issue with windows.

Like just the way Windows handles IPv6 or a NIC driver issue?

https://www.reddit.com/r/ipv6/comments/g939wg/significance_of_icmpv6_firewall_rules_for_the/

found this

so yeah in v6 ICMP is much more needed

Yeah I already added a rule to my Windows Firewall that allows ICMPv6

no in router

I suspect router is blocking, if config is wonky

hmm

what about other ICMPv6?

Can't be router since my dual-boot machine works perfectly fine (Linux side)

ah ok

I can definitely tell it's a Windows issue since my Linux machine and Apple devices have no connectivity errors in IPv6

whats under the actual rule? since more than just echo is needed

under customize?

Should I make it "All ICMP types"?

yeah try that

I suspect that may be it

if you are still having issues (winkey + x : Device Manager)

Broadcom is up-to-date. Intel is up-to-date.

broadcom is your wifi, intel is the ethernet one.

Intel is up-to-date.

https://www.intel.com/content/www/us/en/products/sku/82186/intel-ethernet-connection-i219v/downloads.html

that just updated mine. heh.

Hey, my ethernet cable light not blinking in my laptop

The cable is working fine as it is blinking when connected to my computer

Please help

Updated drivers but still didn't fix issue.

Are you asking about the 19/20?

Because that shouldn't matter in the slightest

It's just no ipv6 dns entry for your host

Nah, I'm asking about the iNonius. I think that's about as far as I'm willing to go for 19/20

I'm using Cloudflare as ipv6 DNS

I'm going to blame their service, rather than your connection

Well, it can't be the DNS becuase I conducted the same test on a different computer using the same settings. Only difference was it was dual-boot Windows/Linux machine, and Linux side is able to upload for some reason.

Odd.

I'm suspecting Windows Firewall shennanigans.

I'm also pretty sure it's not router settings, either, because all machines in network are on DHCPv6

Apple devices don't seem to be having any issues either.

Also pretty sure might have something to do with Windows Firewall because I was fiddling with the rules and at one point ipv6 uploads worked.

Might be netsh related?

Right now I'm using this website to test for ipv6 "stability"
https://www.webb.nasa.gov/content/webbLaunch/whereIsWebb.html

Also using different browsers to verify results. The Linux machine is able to connect, but the Windows one has issues on both Firefox and Edge.

Make sure that you don't have any virtual connections like Teredo or ISATAP. They often causes similar issues and some apps can enable them when installed.

Thanks. I'm going to look for those and disable them.

Never heard of ISATAP till now.

Where can one find Teredo/ISATAP settings on a Windows machine?

First check if they are visible adapters after using ipconfig /all in cmd. If you can't see them, they are not enabled.

They don't seem to be there. I recognize my tunneling software's Virtual LAN (PIA), but it's disabled and not being used.

Other than that, no signs of Teredo/ISATAP or any of those 6to4 4to6 conversions.

Hmm, using netsh options I was able to spot the teredo/ISATAP stuff. I disabled ISATAP

well I can confirm its not the ICMP. and you updated the drivers. so yeah it has to be some setting either in the browsers or with windows firewall.

The ICMP thing oddly enough was solved by adding a Windows Firewall rule to allow ICMPv6 to go through

netsh advfirewall firewall add rule name="ICMP Allow incoming V6 echo request" protocol="icmpv6:128,any" dir=in action=allow

mine is blocked at the router, not worried about it.

My big issue really is this:

Accessing certain websites on the Windows machine can be hit or miss, like aforementioned whereiswebb

https://www.webb.nasa.gov/content/webbLaunch/whereIsWebb.html
I suspect it has something to do with IPv6 Uploads (Also trying it with Dropbox confirms my suspicions when I can't upload a random image onto a Dropbox)

Meanwhile, on the Linux machine everything just...works

And I can confirm its running ipv6 with full upload as well

check that setting in firefox

So I know it's not a router misconfiguration

Already did that before.

I mean, it won't make sense that I would be getitng IPv6 results if it wasn't for that being in false boolean

not to mention IPv6 priority

Something is blocking uploads and I can't determine what.

yeah at a total loss.. some one from 2 years ago with a similar problem --
If the issue still persists, I recommend that you run these networking commands using the Command Prompt window. Please follow the steps below:

Press the Start button > type Command prompt  > right-click on Command Prompt, and then select Run as administrator > Click on Yes.
Run the following commands in the listed order, and then check if it fixes your issue:

Type netsh winsock reset and press Enter.
Type netsh int ip reset and press Enter.
Type ipconfig /release and press Enter.
Type ipconfig /renew and press Enter.
Type ipconfig /flushdns and press Enter.

-- No clue if it will actually do anything for you but it fixed their problem.

Gonna do something crazy:

Tried this and the Allow edge traversal option. No dice.

i suddenly cant access my nextcloud server from wan (running on truenas)

works fine locally, worked fine yesterday

Did your WAN IP change?

yesterday it was using 192.168.88.30 but now its using 192.168.88.188 (idk why my nas has 2)

no i got a static ip, yes i checked

nat rules

if it changed the local ip, then you also need t change port forwarding

or simply remove the .188 in your nas

rule 7 is for .188

in the above screenshot, same settings as .30

it has always said this but for some reason yesterday it was using .30:8283

rn it uses 188:8283 tho lmao idk why

also .30 doesnt show up here

Wait so, you can't really get constant 1gbps then if the bandwidth is shared?

How is my isp offering residential 5gbps?

Wait ... What is "active Ethernet"? My ont box says active Ethernet on it

Shared for a higher bandwidth uplink. If you have a total aggregate uplink speed of 100Gbps spilt across 200 people and most of those aren't consuming much of the bandwidth there is still burst available

Every ISP overprovisions, always, it's just a matter of by how much

Looks like my ISP uses something called active ethernet... Tried Googling around about it but can't find too much, especially comparing it to other similar things

Apparently there's a trunk to the basement and a giant switch in there

AE is what we deploy for all our business customers. Unlike PON, AE is just a single fiber per customer.

Guys, Im portfowarding 25565 but i have some doubts about the process. First of all, should i select HTTP as the service and TCP protocol? Also, should i type any IP adress (source and destination), IP mask adress (source and destination) or Port (source)?

hallo i like so tips ok this is network

now dotted line is the new network line

for some reason I think this is too big

Depends what you're trying to go but you would probably want any source and destination would be whatever internal machine you're forwarding to. If service has an option for raw port or custom I think that's where you'll type your port number. And any source port

Hey, is there a device that bundles multiple network connections into one?

i have the following problem. i need 1-3 lte routers to get a stable connection for a stream. the device has to fit in a backpack and give internet to only one other device.

Nope. Each LTE connection would have it's own IP so the stream could only use one anyway even if load balancing was possible

oh okay, i always heard that live u solo for example supports something like this, because they stream to a srt server first and then to the rtmp server

It's possible someone hacked a way to do it but only thinking about how networking load balances it's per connection locked to one link out of many rather than one connection over many links

If liveU is a paid product, email support and see what they recommend

liveu is a paid product yes, but they only took the open source srt protocol, forked it, made it closed source and started to sell that with the device as far as i know
but i try to look into it

oh and sorry if my english's broken or something like that, it's 2:30am here and i cant think clear with 30°c in my room 😅

That app probably makes three separate connections and some how has magic on both ends to reproduce one video

hm okay, well i can only experiment with it and ask around

anyone have a good topology designer website?

you can definitely make multiple routes look like a single stream but the key thing is you need a server somewhere on the other side to combine them back together

this is probably a good starting point: https://www.openmptcprouter.com

the client side device doesn't matter at all, you could probably just use an rpi or something equivalent

oh thank you!

question for you all: I somehow lost my antennae for my ASUS AX3000 PCI-E Wifi 6 adapter and need replacements. Can I just buy any wifi antennae? Or am I SOL and need to buy the network adapter again

any wifi antenna

Portforwarding to your internal network? if you're portforwarding 25565 (the port) that's not the same as port/protocol 80 (http) it may provide a http service on 25565 and that's fine the destination is the internal ip of the listening host you almost never want to specify anything for the source if it's being provided to someone outside your network

https://www.amazon.com/Bingfu-Rosewill-Gigabyte-Wireless-Security/dp/B082SHKT3Q would work

you just saved me a bunch of money. Thanks!

Anyone want to help me convince myself to spend money?

Here is a fantastically ugly cross-section of my house. It's a rental, so I can't reasonably run ethernet.

The bottom right quadrant is not fully enclosed (carpark)

I run a small desktop hypervisor on ESXi for work next to my desk upstairs - it does not have wireless connectivity but requires internet. The ISP router is in my kitchen, and is unmovable. A gaming setup will soon follow, also upstairs.

Connectivity to the laptop is strong from the ISP 4x4 AC modem-router(VDSL2, 80mbps), negotiating at 866mbps 2x2, ~60dBm, noise floor ~93dbm.

I need a separate network for the desktop hypervisor for privacy reasons, and have non-wireless routers for this purpose. Routable connectivity is desired, as the work software stack is not NAT tolerant for management.

There is minimal space downstairs and there will be no non-wireless devices used there, but I could potentially move the hypervisor there assuming I don't run anything else.

The ISP modem/router does not expose support for VLANs or other network isolation.

Faster speeds than 100mbps are unlikely for at least 4 years due to living in Australia.

Do I: 1. Get a router with 2x2/4x4 AC, put it upstairs, bridge/DMZ to it from the ISP router and then manage my network from that one router?

2. Move an existing wired router and the hypervisor downstairs to my kitchen (cluttered), switch out the router's DHCP for my own and expose a new network with over the top of the ISP router's L2?

3. New router downstairs, bridge to upstairs, new router/bridge upstairs (ISP router restricted to bridge mode only)
4. Something else/less complicated?

I'm not highly budget constrained but not fond of spending more than the minimum I can justify.

just move closer to the router

Gonna update on this:

netsh int ipv6 reset
ipconfig /release6
ipconfig /renew6
ipconfig /flushdns```

The "6" is important. Otherwise it'll just do ipv4 stuff.

Hey guys what is the best way to stream my gaming rig from the office to the living room , I have a 4k 60hz plus able gaming rig

parsec

But what would I use as a medium my cellphone?

do you have a smart TV?

Yes a I have a lg c1

Rn I am using moonligth with the developer mode

moonlight should work

parsec needs another pc iirc actually

But I think my samsumg note 20 should be a better medium

no.. I don't think that would work well

I have used parsec mobile version

are you trying to play on the note? Or just use it to stream to the tv

I wanted to use this because most of the gaming features are when you conect something via hdmi

No the note would only stream

hmm. I'd recommend getting a little pc for cheap and streaming to the pc from the gaming pc

if you need recommendations let me know

Would a rasp pi be enough ?

I'm not sure.. I know you can run parsec on one but I don't personally think the hardware would be enough

https://www.ebay.com/itm/403651125805?mkcid=16&mkevt=1&mkrid=711-127632-2357-0&ssspo=bRUUy9SSTuu&sssrc=2349624&ssuid=&var=&widget_ver=artemis&media=COPY

I'd recommend something like this

@clear igloo @waxen scroll r/mikrotik users calling /31 prefixes a 'networks are taped together with "clever hacks"' because ROS still doesn't support it in 2022

lol

Who needs to save IPs in a 10K+ node network

This person says otherwise: " No provider is going to complain about burning a /30 over a 31/32"

So RFC3021 is a hack?

Its not like saving 1/2 the IP space is important when the v4 space has been consumed for years

Based on the post in the thread, yes lol

lol

Yah, a /8 private network is only 16 million IPs, who needs to save a few million when possible

Going to a /31 or /32 are "hacks" designed to wring every last IP out of the network when a customer really only needs a single IP address. Why tie up 4 IPs to deliver 1 if they can get away with it? I could be wrong, but I don't think there is any way to deliver two routable IPs using /31 or /32 trickery....
They're just trying to be stingy, which is understandable if they have a very limited pool of IPs available. Don't let them give you anything smaller than a /29 if you truly need more than one routable IP

I hope they someday realize how much of an impact /31s actually are

They won't, every major network vendor is just "using hacks" to them because their OS doesn't understand it

I wonder what they'd say about /127s for IPv6

No mention of it in the thread...hmmmm...

Wait, are they saying (I'm rereading the quote) that /32 isn't routable?

Really? RouterOS still doesn't do /31's?

Thought it had done so for years actually

It also has some hacky "/32" thing

Here's the thread for a good read https://www.reddit.com/r/mikrotik/comments/uu8d6g/upstream_provider_asking_about_31_subnet/

Wow nobody in that thread agrees with anyone else

Not technically. Apparently its done via two /32s and referencing each /32 as the subnet.

Yeah that was it

There is zero excuse for Mikrotik to not have implemented /31 by now. ESPECIALLY that they just overhauled the OS in v7

I'm just sad they killed container support after two alpha releases

They still talk about it everywhere but you can't actually use it

At least they gave an acceptable answer of basically "the implementation is not flushed out or secure and will come later"

Then why did they put it out there in the first place?

For people to beta test 😄

It was a big deal for a few use cases I had sitting around and I just shelved the projects/did them differently

I've seen it a few times with other features for other vendors, they'll put it out for a bit to collect early feedback although that's usually part of a larger plan to bring it to full deployment not pull it out

At least port Metarouter to modern boards

Use case was rural edge compute, voltage tolerance was important

SBC's are hard to get ATM and by the time you've got a power supply in to regulate power and a weatherproof case it got too pricy

Especially if it is extremely popular right out of the gate. ROS commonly uses extra packages for features which they could have maybe used for the containers. That said, Mikrotik already has a bad rep from 1 major breach years ago and I can't fault them to say they rather wait instead

That's fair, yah, better safe in this case

I partly agree, but also... isn't that what access controls are for?

¯_(ツ)_/¯

It had something to do with the access it had in the OS. Which is why I think managing the containers was limited and tedious. That was based of what I read as I never tested it

Perhaps it would annoy me less if Mikrotik's were less annoying to script + packages behaved more like open source ones

It was pretty buggy and feature-poor when I tested it

I might test it when its released as I have the 256mb versions of the hAP AC2. That said, Im not a fan of containers as every time I had to deal with them its been mess. At least from the perspective of someone who knows the basics

They have significant benefits for certain scenarios

Particularly useful on something like a routerboard is that you only need one kernel (the router's), so less disk space usage, less memory usage, you're not allocating memory for a VM, just for what your processes use

Then there's all the cool stuff you can do with containers because they offer a consistent, reproducible environment

If you're using Docker but want a VM, you will be disappointed. Docker has opinions

@pseudo blade My goal would be more towards extra tools for our techs. Once its finalized, our techs then can be issued LTAPs with linux containers. So in theory they will have portable AC/DC routers with LTE for remote access, USB serial for console and containers for linux tools like iPerf/speedtest CLI, SIP softphones, etc.
So when they dispatch on site as remote hands for engineering, it could be as simple as plug in, power on and engineering takes over from there

If you can get full control of the serial port perhaps - I remember there was something funny going on there

it's annoying they cut the LTAP from 256MB to 128 RAM vs the RBM33G, it has a nice case

Because with 128MB you're going to be very limited - possibly too limited to make that a good idea

At least on my AC2s, I have tried 3 different USB serial cables and all magically worked with little issue.

Huh

Thats what Ill have to test out. I am not sure how much I could implement based on limited memory

I reckon you'll be doing very well if you can get a SIP server on there

Not a SIP server, just a SIP client which we have designed in house

Ah, you mean with a Web UI?

It has a UI but from a tshooting standpoint, just the CLI portion at a minimum

Thoughts on TP-LINK Omada? I may replace my Unifi APs with the EAP690E

Ah

Is the 690 even available to order anywhere?

not yet

I mean when it comes out

Ah, I thought it might have launched be now

I want to get the rackmount router from them too

I'll upgrade from "probably not" to "maybe" then

I just noticed another potential problem - you don't really have any flash to put those tools on.

You'd be relying on the USB port or using one of the MiniPCI-e slots

Yeah the plan was USB as they mentioned hopefully adding the ability to use containers on non-flash storage. As mentioned, this would be a goal of mine and I have not put much effort in looking into it more until its implemented and in a somewhat stable state

Yeah fair

opinion on APs is generally good

idk about the switches and routers

I have one of their APs

I have an ER605 and it's OK. I would probably upgrade to that rackmount one I sent though

for $50 I'm not complaining lol

I like my edgerouter for the most part

if only Ubiquiti continued to support it

Is anyone here an expert on IPv6? My ISP just started supporting it but unfortunately some of my Windows computers are encountering IPv6 woes.

To put into context, I also have a dual-boot Linux machine and Apple devices that had no issues making the transition to it, but all the Windows systems seems to have an issue or two and I've done some Windows Firewall adjusting to help. They still suffer from an instance or two but I've pretty much ruled out my router being the problem. I've also made sure to disable any 6to4/Teredo/ISATAP that might be running using netsh.

My current machine right now looks like this, but it still has some trouble accessing some websites:

My main issue is basically trying to use the Inonius website (https://inonius.net/speedtest/) to confirm 1Pv6 traffic is functioning normally, as it's suppose to look like this (results from my Linux machine, but also show up similarly on my Apple devices too):

What are the errors

So upon trying to access something like:
https://www.webb.nasa.gov/content/webbLaunch/whereIsWebb.html

Also when I upload a file to dropbox (from webpage), it fails.

The Linux/Apple devices have no problems accessing above website, nor do they have any issues with uploads. The test proves that the IPv6 upload issues might be linked.

I've already ran two commands to at least allow ICMPv6 traffic through Windows Firewall:
netsh advfirewall firewall add rule name="ICMP Allow incoming V6 echo request" protocol="icmpv6:128,any" dir=in action=allow
reg add "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip6\Parameters" /v DisabledComponents /t REG_DWORD /d 00000000 /f

The other command basically disables 6to4/Teredo/Isatap

hmm could possibly be server issue?

would require more advanced troubleshooting

Can't be. Linux machine is being used as control group.

oh yeah right

First is what happens if you disable Windows firewall completely?
Second is whats the output of route print (the IPv6 portion)

Thats with the FW completely disabled?

These 3, right?

I disabled them all when I conducted the test.

Yeah those are correct, at minimum just the active is needed.

Err, did I blur out too much?

No it looks fine

Also I updated/reinstalled my network drivers just to make extra sure.

I suspect you're possibly not getting the ICMPv6 "packet too big" response but not sure where as your router is clearly not dropping them for other OSes. That said, temp IPv6 addresses can sometime cause issues if they are used in conjunction (load-balanced) with other IPv6 addresses.

Have you tried setting a static IPv6 on that Windows machine?

Its a /128 so you're using at least DHCPv6

I've been trying to establish a static IPv6 using DHCPv6

Try without DHCPv6 and set it in Windows

but...I don't know if Verizon Quantum Gateway routers let you assign v6 IPs per MAC address like they do with IPv4.

Verizon Fios?

Yep. Recently they dolled out IPv6 in my area apparently after a temporary network down.

Also this is nothing on the router you would configure. Unless you're using DHCPv6 relay, you can simply setup the static on the machine

SLAAC does that, the MAC address is literally part of the IP

it's stateless, not managed by router, devices pick their own IP, unlike DHCPv6

try SLAAC instead of DHCP

I know, but I don't want my machine's MAC address to be easily guessed with EUI-64.

Lemme try the SLAAC method.

or you can set a static as well

But it's weird, because my other non-Windows machines absolutely have no issue with the default DHCPv6 setting I'm using right now.

SLAAC uses temp addresses. I would test with a strict static. The last 64 bytes can just be ::1111

So I'm inclined to belive the whole part about "not getting ICMPv6packet too big responses".

for IPv6 addresses, do I just copy the LAN prefix all the way up to the /64 part?

and then just paste a 4-digit HEX prefix of my choosing?

for default gateway, do I use the WAN Link-Local Address of my router?

You don't need to adjust the link-local addresses, just use the prefix assigned previously via DHCP and use whichever bits you like in the last 64

Yes, IPv6 next-hop is always the link-local or global with recursion

Not the link-local of the WAN side though, of the your LAN side.

And then just

ipconfig /renew6```
correct?

You don't have to renew because its no longer using DHCPv6

Would this channel or the tech support one be better for finding help for a rather persistent internet issue? (download's fine but upload is zero)

Hmm... my ipconfig /all is now showing that I now have 2 preferred ipv6 addresses

Is one a /128?

@clear igloo Now I need mGig RJ45

You can disable/enable the NIC, use netsh or reboot to see if that other address disappears. Was that address ending in ::aeb5 used in the past?

Yes. That was prior to choosing a static one.

Yeah then its just a stuck lease unless it was not released

netsh int ipv6 reset
ipconfig /release6
ipconfig /renew6
ipconfig /flushdns```
Just did this followed by a reboot

After a reboot if you still have multiple addresses than DHCPv6 is still enabled somewhere

upgraded ISP speeds?

No I actually have stuff that has mgig now

ah, nice!

Yeah my router is still set to DHCPv6 when it comes to assigning local IPs

Do a route print once more. Is the metric under the static IP lower than the DHCPv6?

It says 128

on both ::2 and ::aeb5

I guess windows weighs them the same. In any case it may be worth it to try another test

If it still doesn't work, then DHCPv6 may have to be disabled through netsh which you'll have to lookup

So just disable DHCPv6 for this device only?

NVM, that would break the prefix

Yes, just for that device

crap, I somehow disabled ipv6 on the interface

I typed netsh int ipv6 set interface Ethernet and it disabled it

Ooff.. I just set my router to stateless DHCPv6

Should I set my Static IP via the router or from the host?

In the meantime, could you tell me more about this?

I've been trying to figure out which ICMPv6 Windows Firewall port rule should be made for "packet too big" multicasts

Just permit ICMPv6 which should include all codes as well unless you specify otherwise

I think I already have

But which rule did you enable? There are two, one for anything from the WAN and one for local traffic only

How do I enable the one for the WAN?

Alright, I got it down to this:

@meager ginkgo I just did a omada ap/switch with pfsense router based on a j4125 it's pretty awesome imo

Did you have any luck with the test after narrowing it down to a single address?

i'm looking for a router that can do Wifi 6 capabilities as a replacement for a crappy isp router. any reccomendations?

as a plus it should have good interface for admin pag\e

No, not really. Tried everything including diabling the firewall when redoing the test, but it still won't upload successfully. THAT said...

I stumbled upon this particular speed test site, and unlike the Inonius one, there are several different servers to choose from:
https://ipv6.systems/speed-test.html

For SOME reason, the USA servers upload don't seem to work, but I was surprised that when I selected Canada and the other servers, I was finally seeing upload traffic.

So yeah, I wasn't sure if it was something on the client end or not. I Tried the same test on my other machines and those didn't seem to have problems with the uploads.

May I suggest: old computer+extra pcie Ethernet with opnsense/pfsense or similar and a wifi ap?

@tiny scroll just get an Access point and turn off the wifi on the isp router?

i wanna stress test my software does any website provide good tcp flood for free?

That could work but I'm looking for new router, and all the old computers I have are underpowered laptops

that would work but im not sure if the isp config will work with that, bell isp has to configure a router and idk if it will work with an acccess point

It should

Don't see why not, it's just another device

ill def try, but my past experience with bell has been anything but smooth

they force you to use their routers which are wifi 4 and cost 50 bucls at most

@clear igloo I wonder what switches university has for the dorms .

Hi..... Does anyone know of any router settings which may be causing my Ethernet to have no internet connection?

Is there a way to block a MAC address from the internet but allow them to access certain destination IP addresses? Or lock a MAC address into an IP address, that they can't just set their internet from DHCP into manual and change it by theirselves.

If the person can do static IP by themselves. it's not far fetched to assume they can spoof mac.
Therefore such is futile.
This problem can be solved not by the DHCP server but by going to them face to face and slapping them telling not to static IP

looking to get a U6-lite in canada but they're out of stock, how often does ubiquity restock?

on most stuff, it's easy to change its MAC address as well

Indeed, some devices goes a step further to provide an option to randomized mac as a "security" option. So ez

chunky ones 😄

i wonder if they're cisco or commscope or what lol

Fortigate :X

the whole uni uses cisco, but the dorms use ruckus for wireless, not sure about the other stuff in the dorms

Hmmm, then maybe Aruba of some flavor

see if they have lldp or cdp announcements

@clear igloo they are using private psk tho

and each student/resident gets their own vlan

oh yah, I remember you saying that

That's still pretty cool

so you can connect iot and printer shit and not have everyone else see it

or even just your phone/computer not being discoverable to others

Yah, that's good

while not completely isolating each client so stuff like airplay still works

were getting a new router

https://www.bestbuy.ca/en-ca/product/asus-6-stream-wireless-ax5400-dual-band-wi-fi-6-gaming-router-rt-ax82u/14643844

can you guys give any better ones if there is options?

Please avoid gaming routers

they are often overpriced, and don't offer much more than a typical router

Build your own!

alr

so just normal routers

what's your budget?

and how big is your house etc?

4000 sq ft and like 250 max

we alr have a upstairs router deployed

Oof. You'd benefit from a mesh system

my plan is to use asus ai mesh

ye

Yeah, that's what I would do

so ima get a non gaming asus router and link them togetther

That gaming one isn't a bad value actually considering it's on sale

For a house that size, i'd recommend wiring the two together somehow though

Whether you use MoCA or Ethernet

same result basically

Hey guys, I need help

I got the new router, but when I plug in a WAN port into it it's not receiving a signal. I plug it in with the bell isp router and it works. Can someone help

I'm kinda worried that there is isp router lock or sm shi

It works with the old one tho

Idk how their system works

Att does something with authentication

I see

I came up with a solution, jus keep the router but trick the isp to thinking it's being used for internet but the internet is being forwarded to new rojter

Wut

Does bell do like pppoe

Ye

I am gonna set that up

@tiny scroll https://www.reddit.com/r/bell/comments/akgl61/how_to_use_your_own_router_with_home_hub_3000/

if you didn't get it already

Set the Asus router to work as an access point instead of a router.

Or better yet, return it and save abunch of money with a Ubiquiti AP.

I mean you're the one being tricked to use their router

Bro ikr

It's not me tho it's my parents that got it and I'm tryna remove it

Thx

wifi is somehow worse after upgrading to a rx 6600
used to get 0 - 9 ping now 20 - 30 with packet loss
about one more lag spike away from throwing my set up away please help

First world problems

1st world problems

My wifi is working fine, i can watch youtube and etc but just not log into games, this happens to all my devices and isnt a game server issue

great'

the wifi just stopped at home

the isp router is required, and i tried resetting it to go into bridge mode in the ip, now the router wont boot

Won't boot, how exactly?
Any LEDs that could indicate a problem?

ye, so the model is the Sagemcom Fast 5250, and the Power and WAN led's keep flashing on and off every 5 seconds

idk what happened, i think it is an isp config thing after i reset the router

When I reset my router it takes a while for it to come back. Especially if you don't have a static ip.

If it releases that it might have to wait for a new one which could take ?? minutes/hours, only really your ISP can answer that.

uh we left it like that overnight

Well then.

Is there a way to hard reset the router with a button or such?

Usually there's a button you have to press with a pen or something, and hold in for usually around 15-30 seconds.

and it was doing that over night

i did that 💀 it does the same thing

i can't log in to the router either

it just returns err unreachabl

Next thing to try would be to disconnect it completely. Take the power for 30 minutes. Then try again.

alr

Yeah I'm guessing it's not sending out DHCP.

If it just keeps flashing power and wan, then you might have a bricked router.

it kept doing that

yeah :|, plus bell locks their routers to the modems

so i have to use their routers

It's the same thing here man, but I can set it into bridge mode.

wait you use bell?

No, I'm from dk, we don't have bell.

oh

lucky, i was trying to do that too but it ended up bricking the router

But modem/router is tied.

yeah thats stupud, i was wondering if i can attatch an aftermarket modem

and using an after market routeri, i might consider that

If you put it into bridge mode you'll need a router yes.

Otherwise no DHCP for your network.

yeah...

dumb question but outside of putting my ISP modem/router in bridge mode is there any way to replace my cable modem/router with another one, say from ubiquiti? I'm on rogers cable

rogers bruh lucky

i dont think they lock their routers

rlly?
iirc Shaw or someone like that also uses the same model

bell locks their routers to their isp modem;s

i also have no idea how to admin into my router other than with their app but tbf i've only used their app for like 5 minutes lol

ye i wanna replace my bell modem

its an alcatel lucent one, and its wimpy asf

idk if i can tho

ripp
guess i'm lucky that rogers at least provide a decent model

wait rad are you on dsl or cable or fiber

cable

oh

then you can get any router/modem

sweet!

yo whats ur internet plan

rogers Ignite?

yeah
my street basically has one ancient cable so it's the dumb gigabit down 30 up thing

I love the service it's just really imbalanced and when cable tv is heavily used (hockey games) my connection tanks somewhat

damn bruh

our area has fibe, but its garbage

i feel ya ma n

i mean hey
I used to live rurally and was stuck with crap-tier fixed wireless so it's a huge upgrade from that but yeah it's a little annoying late at night lol

lmfao

canada has like one of most expensive internet telecoms

india, you can get 4g sim 35gb for 2 bucks

and good speed

lmao that's crazy good
I'm paying like $50/mo for 12 gb lte
and then like $2 a month for a refurbished XS max lmao

lmao

i got lucky mobile, so i pay 15 a month for 250mb data more than i need, and i think we pay 50 or smth for our internet

we don't talk about how much my rural fixed wireless internet costs 🥶 but yeah I mainly have the data as a backup since that was so unreliable

ah

AT&T makes you use their router unfortunately

bruh thats sad

You can use your own but it must be connected to theirs

ye

and there's no true bridge mode

closest thing you have is IP Passthrough

i got a new router and wanted to use it with my existing modem, it didnt work so im tryna keep the current router and connect it, but i wanna use bridge mode on the router, but when i tried turning it on and doing the bridge mdoe thing is this shi

EXACTLY

now my router doesnt boot properly

the ISP router or your own?

isp

the router is made by Sagemcom

which ive never heard of

what do you mean by it doesn't boot properly

like the wifi is off on it?

like the wan and power leds continuoly turn off and on, wifi is on but doesnt connect to internet, i cant accees login page

oh. hmm

did you try googling it?

i did, all of them are reddit threads and they dont help

Who's your ISP?

Bell canada

i cant find any documentation on this issue

Have you tried to live chat?

see if they can push an update or anything from their end?

Welll

You can fake it

There are ways I read

yeah they are breaking it though as we speak

If your area is upgraded to XGS-PON you're kind of screwed

and/or if you have a BGW320

For me, AT&T allows me to have my own router but it is a pain in the butt when something breaks on their end or their modem and they try to diagnose it. Easier to use their router

are you on fiber or DSL?

The Fiber bypass is breaking as areas upgrade to XGS-PON from GPON

@clear igloo @peak cloak RADIUS in the cloud

https://i.ryois.me/lDNq9EEtYG

is it free roaming radius? No caged up radius for me 😛

lol

we got the internet working

got a replacement isp router, ima call up bell to figure out how to turn my router into a network bridge

and turn wifi off

i got the whole thing setup

YOO

i thought we paid for 100mbps 💀

(browse for RTL8822CE drivers)
This is 2022. We do not need to import a wifi driver from another computer via a usb stick
and also. this by and of itself is so incredibly obsecure
and, in fact, doesn't work

found a pc on the side of the road, realised it was from 2007. and i cleaned it up and it had the perfect hardware for pfsense, not amazing but alright

it runs at a nice 20c all the time

i found out it has ddr2 memory too

the actual cpu was released in 2007 so the bios hasnt been updated since

im so dumb, the "router" i was so mad at was actually a router modem combo -_-

so i couldnt replace that

so i moved it to our bacement near the optical receiver and it worked

i thought it was the acc router and the optical reciever was the modem

are you able to put the router modem combo in bridge mode?

is LTT planning on releasing anymore videos on the networking and security rack at Linus's new place. It's so interesting. Also if Linus already hasn't heard (doubt it though) Ubiquiti is releasing UNVR stacking feature to EA this month so he won't have to log into multiple consoles for his home security system!

one mans trash is another mans gold.

anyone here familiar with DELL OPEN MANAGE ? How can I enable a port that is disabled?

switch in question N2048p

Ye I called th and they turned off the wifi so now it acts like just a modem

Hi, i have a Question, is it normal that i get like Max 30-50Mbps Download and about 10-20Mbps upload speed on 2.4GHz Wifi?

Hi guys. I need some support. I have a pihole setup on my rpi zw. It works fine but when try to change the network it is connected to Both from terminal with ssh and with wpa_suppleant it still wants to use its old 192.168.0.135 ip. The new network is on the 192.168.102.1 ip. What am i doing wrong?

i restarted the Telekom Mesh device and now the Speed is way better.

What am i doing wrong?
You're changing the network

Hey! I am on vacation and my grandpa's laptop is not connect to the vacation wifi but it works on my own hotspot. The error is No IP adres is set

hi, i setup my ethernet cable from my 500mbps router to my pc, but i am only getting 100mbps. cable used is the cat5e and the cat6 cable, and the wifi drivers checked and nothing wrong, i still am getting 100mbps

idk why, cables seem fine

our cable was too short, so i soldered a cat5e cable to the other end of the cable that was too shoet

is that issue? i dont think so as it seems fine

Probably yes

It's only negotiating at 10/100 it sounds like

No it's 100/100

10/100 is the negotiation rate for 100mbps up and down 🙂

Oh

10/100/1000 is the gigabit negotiation rate

I see

Is thete 10/100/500

We don't have gigabit

No you would just use 10/100/1000

Ohh

I'd just buy a new cable

you never want to solder ethernet cables together lol

oh damn bruh

if anything use a coupler, but not solder..

we didnt have that

anyone know how to edit this name even tho i already shared it

i feel so stupid

Do fiber modems follow a standard, or are they "plug and play" where if I don't want to use the one provided by my isp I can purchase my own? Like with cable modems and docsis, where if it supports whatever docsis version you just inform the isp of its Mac address or whatever and it works. My isp provided a calix gigaspire fiber modem but I'd like to use one from ubiquiti. Is this possible?

generally in fiber the term ONT is used, not modem, but modem technically is also correct in certain cases

With fiber there are standards, but not like dociss. They are more on a transport layer, not like the connection. You have like GPON, XGS-PON, active ethernet, and more. Those all may have ISP specific things

what type of WAN port does it have on the back? ethernet? fiber?, from the pics online it seems to be ethernet, although their website says it has upgradable modules, whatever that means

Anyone Network + cert? and can remember much about the test?

why are 10gbe FSP+ expansion cards cheap?

sfp+ you mean?

because used enterprise

ATT uses proprietary link

for fiber transport, don't think so

XG-PON or whatever

but authentication and all that, yes

It operates on the same general as GPON and XGS-PON but has a hardwired security and authorization chip that you cannot get without some extensive cutting and soldering

maybe

not an expert

yup yup always get the orientation mixed hah

Can't steal an att sfp from one of their 320 modems and slide it into a cisco router and have it work

there is an onboard chip that prevents such a thing

now if you are lucky and you are GPON

motorola makes everyone's GPON ont

and the GPON sfp should also function without the security chip

att's 320 rg also doesn't allow a truly bridge mode to happen

found it

https://cdn.discordapp.com/attachments/950300521686769697/975402356151816315/ATT_Internal_Network_-_OMCI_Specification.pdf

from another server

@peak cloak What I know is that ATT uses >something< proprietary in their RGs that prevents you from using anything outside to get an internet connection directly through the fiber. It simply won't be authorized. The Motorola 010 GPON is the closest you can get. But ATT is only expanding its fiber network now with XGS-PON thus preventing this.

You cannot plug an att fiber into anything other than an ATT RG and gain access to the internet.

for example buying an SFP PCI card and using an XGS-PON SFP and plugging directly into the fiber

well yeah

even if the module did work, I think there's 802.1x auth

The protocol may be "XGS" or "GPON" but it is used proprietarily.

well the protocol is just transport level, I think

like ethernet

you can add things on top

I think it might even be down to layer 2

but yes you can add things on top, but not what you might want to do. Such as bridge ATT fiber into a Ubiquity wifi system and a rack mounted server

if you want to be specific, I think so

it won't bridge

I heard there is a bridge

but it does weird things, it's not true bridge

I'm glad to be with verizon fios, none of this...

just use their ONT, no all in one thing

and plug into router, just standard DHCP

my power company is the same

if you move up to att business they have options for you. you can get things to happen that you cant on consumer

Im considering an upgrade to my networking. I am looking for 2.5G or 10G ethernet and wifi meshing that actually works.

I am looking at Ubiquity because I am a fan of their products. Any other brands worth considering? Points that are important for me are LAN speed, low latency for gaming and stability

TP-LINK Omada

if you just need speed and low latency, basically anything ethernet will be fine

Current plan is a Dream Machine Pro running 2-3 4k cameras, 2 APs. My main server had 10G RJ45 and I plan on adding a 10G RJ45 to my NAS so the main problem currently is an efficient way to connect 10G SFP+ to RJ45

why not use fiber?

rj45 sfp+ modules are pretty pricy

don't pull a Linus

and SFP+ to RJ45 everything

I need atleast 1 10G RJ45 atleast for the server that already has it. Rest is fine as fiber imo

for one you could get the module

something like https://www.fs.com/products/74680.html?attribute=113&id=219394

So to get 10G fiber working I would basically only need to add the "USW-Aggregation" from ubiquity to the setup?

I guess? idk how your setup is like

Setup is not built yet. I am working on setting up a server/networking room at my new place. There is no ethernet or wifi in the building yet so I am starting from scratch and I want it to be relatively oversized for my use

@waxen scroll @clear igloo Bought the FortiGate 👀

Current setup is just a normal asus router and I have a lot of issues with that setup currently

There is DMZ+ mode which is very close to bridge mode on the 320 and 210. They use 802.1x authentication with certificates which prevents you from using your own hardware directly off the fiber line btw but you most certainly can pass the public IP through with DMZ+ mode to your hardware basically bypassing their gateway and making it a bump in the wire

Nice! When does it arrive?

Idk, they still need to process it.

Ah, so order placed, still nice

Probably arrive in 2025 or so

They said they have them in stock and ready to ship tho

Ah, that's good then 😄

lol, completely ignoring the whole you still have to GET to their service links for it to work

I mean, I guess it could help in certain situations

but its not magic

Exactly, if your ISP has trash routing to their exchange then nothing is going to fix that

@clear igloo omg yes, it's shipping via UPS ground according to the quote

Nice!

apparently the 802.1x trick doesn't work anymore with the newer installations

Yah, they've probably locked down the certs or something

i need help!!! im getting 97mbps on my internet test with eathernet but around 1 month ago i got 250mbps, My internet suddenly just got worse and worse for no reason

Fiber in ethernet out
It's a gigapoint 803g

which model did you get?

40F

Whether or not you can swap it out or not is going to up to your ISP regardless. It can be done but most providers will not allow it. On GPON we would never permit a customer provided ONT.

803G's are fine little ONTs, Im not sure why you would want to swap it out

I'd love a smaller ONT like that

They're incredibly tiny in person. Plus they sip power and can last 24 hours on the standard battery packs

I've come to feel that the OSI model is simply a pay scale. If you work in Level 1 or Level 2 primarily you make less than someone who works in lvl 3. And people all the way up in lvl 7 get very highly paid

Mostly so everything is in the same ecosystem

🤔 How do I set the NIC adapter so that it handles all udp/tcp checksum tasks instead of the CPU? Do I set the offload option to enabled or disabled?

Enabled

🤔 And that goes for ns offload and arp offload?

yes

🙂 Cool, thanks. Websites keep sending mixed messages.

Just noticed the new shortcircuit video about the ASUS ZenWiFi Pro ET12.
One thing that may have been overlooked is that given the current restrictions imposed by all countries currently allowing for it, under good conditions, performance is a little slower than that of the 5GHz band.

Due to arbitrary regulations, in every country so far that allows it, limits transmit power to 250mW, though on average it will useless due to the annoying PSD (Power Spectral Density) requirement. Basically instead of a fixed transmit power where the lower the noise floor, the better the effective SNR is, 6e requires a method that maintains a fixed (much lower SNR) above the noise floor, up until you reach the max allowed transmit power. This is why the 6GHz band thus far is having a far quicker throughput dropoff with range, even on channels that are close to the upper range of the 5GHz band, there the material attenuation difference is negligible.

Beyond that, since the 6GHz band is shared by a number of fixed wireless providers and organizations. In order to use anywhere near the limit, the tech also requires location data and uses a system similar to the drone flight restrictions systems, to disable channels that are licensed for use in your area by any organization. Without that, it uses a more restrictive indoor set of limits operate with less power and behave like using DFS channels.

In my case, speeds are typically around 200-300Mbps slower, and even though the noise floor was lower , the PSD resulted in a lower effective SNR.

And results from various reviews seem to mirror that as well.

Speeds on the 6GHz band can be cheated slightly be using a 2nd AP on an overlapping channel and then doing a simultaneous upload and download on that AP using that band, and then wait for the logs on first 6GHz AP to show a higher noise floor, then immediately starting a throughput test on that AP, while at the same time stopping the test on the 2nd AP, thus causing PSD to use a higher transmit power (at least until the next noise floor measurement takes place).

$$$$$$$

@clear igloo look at this xir with a expensive software that was pirated

Seems there is a no screenshot rule. 5GHz is in the 1.75Gbps throughput range, 6GHz in in the 1.47Gbps range.

One of the issues of 6GHz until the arbitrary restrictions are lifted. https://www.mist.com/power-spectral-density/#:~:text=Power Spectral Density is the amount of power,which is still open as of this writing).

Under ideal conditions, the 6GHz band seems to do extremely well. https://www.smallnetbuilder.com/wireless/wireless-reviews/33231-netgear-raxe500-nighthawk-tri-band-wifi-6e-router-reviewed?showall=&start=1

https://www.tomsguide.com/reviews/netgear-orbi-wifi-6e Hopefully they do better than orbi for the backhaul performance.

I have only had a VPN improve performance once for gaming, and that was for Brawlhalla and seemingly due to a temporary routing configuration or peering problem - used a VPS in AWS to tunnel around the issue and got decent ping. Every other time I've had issues they were either fleeting or impossible to work around.

If I ever get an escalation from a customer saying they're having issues with their GPN I would snap

Isn't it an issue with the ISP if someone needs a VPN to improve latency for popular online games?

yes

their peering and/or routing

Usually I see VPNs uses more for cases where a game has a risk of exposing a user's WAN IP (larger risk for popular streamers).

p2p games

save cost on servers, and potentially latency, but a pain with cheating and privacy of ips

The only case in which you could improve latency over a VPN would be a result of a lack of a particular IX peering. That is not inherently an issue

When that happens, I just wonder if some ISPs are allowing peering points to saturate and ignoring it as long as still still remain generally functional.

I don't think saturation is the issue, it's the lack of peering with certain networks

I heard of some drama between like HE and Cogent

Peering drama is always really weird. Reminds me of the craziness with Netflix, Level 3, Cogent, and many ISPs.

There are 100s of IX' and 100s of peerings within each of them and many IX' have tiered cost.
So unless you provider not only peers with the correct IX' but also stays on top of the hundreds of peerings and has the ability to afford the extra throughput, there is always a chance game X may not have the best latency

is a dell r730 xd a good server for starting

Depends

Starting a homelab? What do you want to run? Etc.

a mine craft server and other game servers and a steam libery

the one im looking at https://www.trademe.co.nz/a/marketplace/computers/servers/servers/listing/3607375541?bof=TxTxdpVh

Minecraft doesn't run well on those

That may not be a very good choice for minecraft unless you are running very few mods. Poor single threaded performance.

Games in general don't

like would a upgraded nuc be a better option

One interesting thing is that minecraft (if balancing performance and cost), does really well on modern core i3 CPUs.

Prob not either

But def better

Cpu wise

Also power and noise

Upgradability, not so much

at the moment i run it on my pc with a 5800x

witch runs well

I just use a used hp prodesk for my server

Forget what cpu it has

ohh one of them

https://media.discordapp.net/attachments/899753979108552774/977227906268930109/unknown.png

could build some thing cheep with no gpu like a 5600x or 15 11600k

It runs decently

For like 6 players

thats all i would do to be honist

Yeah traditional server hardware isn't great for games

Esp older server hardware

are the new xeons good

like xeon golds ect

Honestly idk specifics, not a big hardware guy

A friend of mine uses a build with a Core i3 10105, and 32GB of RAM, a 256GB SATA SSD for the OS and game server files (runs a minecraft server and ARK survival evolved server). No performance issues even when people are active on both games at the same time, though it is a small private server, and will typically top out at 20 people.

wow impresive for an i3

They have improved the i3 lines significantly over the years.

4 core 8 threds

dosent look like an i3

Basically game server software that relies heavily on single threaded performance, perform quite well on those parts.

thanks for the help

The one issue would be if you are also trying to use the system to cache a steam library. Never tried it before, and thus not sure how demanding it is on the CPU side.

yeah i would probly have to get two systems

the only resone i want a sepret system is so i can play more demarnding games with the server up at the same time

Gaming on the same PC that is running the server software can be tricky, often times you will end up with people on the WAN side being unable to connect to the server even if the proper ports are forwarded. It is not really an issue with minecraft but I have seen it with games like ARK survival evolved, Satisfactory, and a few others.

i just use port nargok tunnleing cuz my isp makes it very confuseing to port foward so my curent use case is fine exsept from the lower speeds

I wonder if there is any more progress being made on 802.11ay (in the 60GHz band). It would be interesting to have something in the 10-20 gigabit range for devices in the same room. For example, faster backups if router makers stop skimping on 10GbE on consumer routers.

Just run a wire...

At that point it's kinda impractical

Doesn't it require basically los?

Yeah it would be power hugrey

yeah i mean... line of sight, short range, would pretty much always require expensive and bulky hardware (not just because it's new tech but fundamentally mmwave is tricky stuff) and by that point you're really not comparing favorably to just... using a wire

the one exception is something like untethered vr

but that's already something with special-purpose hardware and base stations

and for the most part, 5-10 ghz is fine for that in the present

With Ethernet, there has been a lot of scalping in terms cost per port with each new increase in speed, while WiFi adapters have largely remained the same price wise. Thus there is more hope in seeing an affordable 802.11ay adapter as compared to 10GbE and higher for wired connections.

not saying it wouldn't be neat... just not sure of the practicality

hmm I'm not sure that holds up with 60ghz

all the existing wifi generations have been in the same 2.4 or 5ghz range, it's just improvements with the design of the protocol

Ethernet gets way more expensive because you're already pretty much maxing out the throughput for a given bandwidth cable

but moving from microwave to mmwave is orders of magnitude more complicated & expensive

It definitely increases the RF complexity, but during the 802.11ad days it didn't add much cost for the first 60GHz implementation. In the case of Intel, they kept the same price point for their tri-band adapters and charged extra for the array antenna. Which I think ended up being in the $10 to $13 range. https://i.imgur.com/QDlDFt5.jpg
https://i.imgur.com/fu7gdx2.jpg

ping way worse after upgrading gpus from nvidia to amd
please help used to get 0 - 5 ping 300 download speed now 20 - 30 ping with stuters & 100 download speed

Do you have more details on the ping issue? Is it in a specific game or is it in a range of different applications?
Usually the GPU shouldn't have an impact on networking performance unless you do something like connect it a slot that uses chipset lanes on older platforms, and you manage to saturate it, and even then, the impact would be rather small.

Also check if the PHY rate changed.

One thing that I would have liked to have seen with 802.11ad is someone to test the R9000 with a 10GbE client since the benchmarks back then all showed a gigabit Ethernet bottleneck. https://www.smallnetbuilder.com/wireless/wireless-reviews/33046-netgear-r9000-nighthawk-x10-smart-wifi-router-reviewed?start=3

Can mobile hotspot extend a wifi router? i wanna use my router's wifi with my pc(dont worry im working on getting it on with ethernet) but my pc doesnt have wifi, but i can connect my phone through usb tethering, i have mobile data off and wifi on, im getting a connection but idk if its from the data or wifi

usb tether should provide internet to the PC not the other way around

While theoretically possible, extending a wifi router with a smartphone is generally not supported.
However using it effectively as a wireless adapter as described via tethering does indeed work in a pinch. Anything that needs port forwarding won't work and the computer behind the phone won't appear on the router's network.

can some recommend a (affordable) home router that has configurations to allow me to explicitly block traffic from some certain sites?

This around your price range? https://mikrotik.com/product/hap_ac2

it's a bit steep , but not obscenely bad.

i'm looking at the manual, and a lot of the configuration appears command line based

well, there is a gui as well. seems powerful.

thank you!
any second recommendation?

There's a mobile app for that one too btw, it's easier than the CLI when needs are basic