--- Log opened Wed Apr 04 00:00:32 2018 00:01 < Apachez> 3 female + 1 male injured/killed 00:01 < wiresharked> Apachez: I don't think that's on topic.. 00:33 < myth0d> hello #networking 00:34 < myth0d> could someone tell me if this: INTEL FTLX1471D3BCV-I3 works with the x520? 00:35 < myth0d> also, could someone decipher what the trailing -I3 actually means (I assume it's a hardware vendor lock?) 00:44 < djph> intel could. might be a revision number 01:13 < purplex88> is there a difference average download speed and high download speed? 01:13 < djph> huh? 01:13 < djph> what do you mean? 01:21 < rewt> average is just average, and high is high 01:22 < djph> something like that 01:56 < orlock> What is it with the UK that they seem to have so many "dodgy" netblocks and domains registered? 01:57 < orlock> No legit business, just spam and scams and crap 02:11 < Criggie> rewt: and what is high for one location might be average or low compared to services in another area. 02:11 < Criggie> I remember when 128K cable was high speed. 02:13 < rewt> sure, but generally low is below average and high is above average 02:13 < Criggie> concur. 02:14 < rewt> it's when low is above high when trouble usually starts 02:16 < Criggie> hehehe Setting reasonable expectations.... 02:16 < Criggie> don't go to a crowded place and expect full speed cellular data access 02:23 < orlock> 128K cable? 02:23 < orlock> itym E1/T1? 02:24 < orlock> Dual channel! 02:24 < orlock> Which is getting turned off here.. 03:59 < azizLIGHT> i want to connect my synergy client to the synergy server. but problem is that the network is going like a U turn instead of a red dashed line https://i.imgur.com/kMeDSce.png 04:00 < djph> https://community.ubnt.com/t5/EdgeRouter/Will-UF-MM-1G-connect-to-UF-MM-10G/m-p/ 04:00 < djph> +2303118#M203458 04:00 < djph> oops 04:01 < djph> wtf kind of network design is *that* 04:01 < superkuh> azizLIGHT, there is a #synergy here on freenode. Although you're probably right to bring it up here given that ... network. 04:02 < dogbert_2> djph...a ****ed up one? :P 04:02 < djph> dogbert_2: indeed 04:02 < dogbert_2> :) 04:03 < djph> it *looks* like two computers connected via a VPN, and just a shitty drawing ... buuut 04:03 < azizLIGHT> i spent time on this diagram 04:04 < dogbert_2> djph...I use gliffy diagrams for my home network...free and effective...only thing is that you have to export to PNG/JPG and open in paint to print... 04:05 < dogbert_2> esp. given the cost of Visio :) 04:05 < djph> dogbert_2: I use dia ... but I don't care how fugly it looks 04:05 < azizLIGHT> i even used nice icons and aligned things... 04:05 < azizLIGHT> whats so shitty 04:05 < djph> I mean, I need it to *work* not look pretty. Who cares if it looks like a box from 1997 04:06 < djph> azizLIGHT: that you drew a U, for starters, then grouped the two hosts together 04:06 < azizLIGHT> theyre in the same house 04:06 < dogbert_2> well, you can pick and choose icons...I mean I have a liftmaster MyQ icon, a lexmark MS415dn icon, SB6183 Icon, D-Link AC1750 Icon, etc 04:07 < djph> so why the fuck are you going through THREE routers, and what appears to be a VPN 04:07 < dogbert_2> and a generic one for computers and my smart phone 04:07 < azizLIGHT> because synergy clint needs to be on vpn network at all times 04:07 < djph> dogbert_2: same 04:07 < djph> azizLIGHT: errr 04:08 < azizLIGHT> and thats what the path looks to get back to syn server 04:08 < superkuh> What does the red dash represent? 04:08 < superkuh> What does the blue ground plane represent? 04:08 < azizLIGHT> what i want 04:08 < azizLIGHT> house 04:08 < superkuh> VPN suck. Forcing stupid solutions. 04:08 < superkuh> Tunnel all the things one by one. 04:09 < djph> why not just put the two hosts on one network, anc call it a day? 04:09 < djph> *and 04:09 < azizLIGHT> then things will leak no? 04:10 < superkuh> I get the feeling you can figure it out. 04:10 < superkuh> For grandma maybe that's a worry. 04:10 < azizLIGHT> it would be a pain to configure 04:10 < azizLIGHT> catchall is so easier 04:10 < azizLIGHT> catchall vpn 04:10 < superkuh> Eh, works for me. And I can still hosts servers and be a full citizen on the net instead of just a consumer. 04:11 < djph> superkuh: which part? 04:11 < superkuh> I don't understand the question. Sorry. Can you expand it? 04:12 < djph> superkuh: "which part" makes you a decent citizen of the net, tunneling something one-by-one? 04:12 < superkuh> Not wasting all your ports by using some VPN. 04:12 < djph> superkuh: fair 'nuff 04:13 < djph> I'm still trying to figure out why you need a VPN between two hosts in the same physical space 04:14 < djph> I mean, unless we're talking financial or something ... but then a synergy client/server seems like it wouldn't be allowed 04:16 < ash_worksi> I think I just had an epiphany about xdebug 04:16 < azizLIGHT> the syn-client goes on websites via vpn but its a laptop and i dont wanna use the shitty keyboard mouse 04:16 < ash_worksi> I was like, I don't understand the model here, the ide runs the client but says listening on some port 04:17 < azizLIGHT> i wanna use my desktop keyboard mouse.... where the synergy server is 04:17 < azizLIGHT> but synergy-server isnt on that vpn 04:17 < ash_worksi> so the idea is that when a script is run, that is the port xdebug will specifically send it's response to? 04:17 < djph> seems a lot of trouble to save $4.99 on a cheapass mouse 04:19 < azizLIGHT> hmmmmm 04:20 < djph> granted a $4.99 mouse is complete garbage ... but even the decent 3-button mice are likely to be in the $15 range 04:20 < dogbert_2> I need to get a slightly larger wireless mous :) 04:21 < dogbert_2> mouse, even 04:21 < djph> dogbert_2: I always liked logitech, but I think they stopped the MX Revolution ginormous one 04:22 < djph> forget the slightly smaller one they replaced it with ... but I don't like it nearly as much 04:23 < superkuh> azizLIGHT, get a couple extra nics and set up connection *only* for synergy? If 'security' is so important. 04:23 < azizLIGHT> djph: cant i tell one of the nodes on the way between synergy server to treat any request to 10.0.0.17 to go to synergy server 04:23 < azizLIGHT> rather than vpn 04:23 < azizLIGHT> superkuh: ok thats smart and easy 04:23 < azizLIGHT> i will do that 04:24 < azizLIGHT> in fact. i have some stupid wifi usbs sitting around i can do this right now 04:24 < azizLIGHT> wow 04:24 < azizLIGHT> thank you 04:29 < Maarten> azizLIGHT, not sure if this helps, but I sometimes need to connect to different networks with different VPN clients, and I want to do it from my own keyboard, mouse, dual monitors, etc.... I setup a small ESXi server at my home, and it runs 2 windows 10 VM's. On those VM's a variety of VPN clients are installed for different customers. I can just RDP to one of them on one monitor, RDP to the other on the other monitor, and still minimize them 04:29 < Maarten> and have my own desktop with regular internet. 04:30 < Chewza> ^^ That's the correct way to do it 04:30 < azizLIGHT> interesting 04:30 < Chewza> too many different VPN clients screw with underlying dependencies and the like 04:31 < azizLIGHT> well i have my main desktop with dual monitor, but the synergy client here is actually in a VM, on the laptop 04:31 < Maarten> yeah, usually 2 VPN clients is fine, but go beyond that and you run the risk of conflicting clients with similar setups etc... 04:31 < azizLIGHT> i could just move the vm to my main desktop and spin it up there but its unstable on ubuntu 14.04 and causes frequent hangs 04:32 < azizLIGHT> thats why i moved it off to a windows host 04:32 < azizLIGHT> on that laptop 04:33 < dogbert_2> I have the HP keyboard/mouse 04:33 < azizLIGHT> so the difference between my setup and yours is that you do the vpn inside the windows 10 os? what are you emphasizing i think im missing the point 04:44 < azizLIGHT> Maarten: ^^ 04:46 < Maarten> i might have completely different requirements. I want to be able to connect to VPN to company A, to VPN to company B, and still use my own internet for facebook breaks or whatever.... so what I came up with is running VM's with Windows 10, so I can just do work for company A and B using RDP sessions, while maintaining my own PC's internet. 04:55 < Orbixx> Can anybody guess what might cause an initial (a few seconds) lack of audio after a VoIP call is answered? 04:55 < Epic|> packet loss? 04:55 < Chewza> azizLIGHT I may have missed your use case... what are you trying to solve? 04:58 < azizLIGHT> Maarten: so you share your keybvoard mouse between desktop and the esxi server (which is not on any vpn, and avoids the problem I have), and the individual vms inside the esxi themselves are vpned, but it doesnt matter because you have the keyboard mouse connect to the esxi server and not the vpn'd vms 04:58 < orlock> Orbixx: packet loss, out of order packets.. Depends on the clients, is it bidirectional, etc 04:58 < Maarten> azizLIGHT, I just use RDP sessions to those VM's, I don't need to physically near the VM's. 04:58 < orlock> Orbixx: Wireshark is your friend. 04:59 < azizLIGHT> Chewza: i think i have it solved now. but basically, my mouse/keyvoard on my main desktop should be able to be used on a laptop, but hte laptop is connecting to a vpn and not interacting directly on the same network 04:59 < orlock> Maarten/azizLIGHT: AKA a jump box, though usually used in slightly different ways 04:59 < azizLIGHT> Maarten: forgive my ignorance. desktop keyboard/mouse --> esxi --> rdp to vm 05:00 < azizLIGHT> is that correct? 05:00 < Chewza> Desktop -> VM RDP 05:00 < Chewza> he's not interacting with ESXi beyond the initial install 05:00 < Chewza> however, his VPN clients allow split tunneling it sounds like 05:00 < Chewza> yours may not. 05:01 < orlock> Quite often VPN's will require you break access to the LAN as well - In that case, RDP wont work, but the vmware console will 05:01 < Chewza> in that case you can try synergy2 pro I think which has a cloud bridge 05:01 < Chewza> unless that's blocked by the corporate VPN 05:01 < azizLIGHT> orlock: yes im looking at jump box definition. i think this is it 05:01 < Chewza> your other option would be to just RDP into your windows machine and full screen your VM 05:02 < Chewza> in this case your laptop becomes the jump station 05:02 < Maarten> azizLIGHT, no... ESXi server hidden in the corner out of sight. My Windows 10 desktop in front of me with multiple monitors. I do remote desktop sessions to those VM's from my desktop computer, and within those RDP sessions I use VPN clients to connect to various clients and servers. I can then easily work multiple projects at the same time, one in VM1 connected to company A, one in VM2 connected to company B, and I can just minimize those RDP 05:02 < Maarten> sessions if I want to work on my own desktop. 05:02 < azizLIGHT> Chewza: the windows machine is the one whos connected to vpn (by way of wifi access point that only provides it) 05:03 < azizLIGHT> Chewza: so i guess i could move the vpn to the vm, and then rdp to windows 05:03 < azizLIGHT> err no 05:03 < orlock> azizLIGHT: yes.. If the VPN lets you do split tunneling 05:03 < azizLIGHT> cause its no vpn client on the windows machine/linux vm... its just a wifi access point with built in vpn 05:04 < orlock> azizLIGHT: they gave you a dedicated hardwa reVPN device? 05:04 < azizLIGHT> Chewza: i heard synergy2 ssucks 05:04 < Chewza> orlock I've seen it before 05:04 < Chewza> remote level 1 help desk for larger companies ship out a preconfigured router and voip phone 05:05 < orlock> Chewza: Yeah, doesnt suprise me honestly, $30 to eliminate client compatibility issues 05:05 < azizLIGHT> Chewza: that was my first thought to get a synergy cloud subscription. ut they dont have it for synergy 1.x 05:05 < Chewza> I'd do this then 05:05 < orlock> Chewza: And you can just go and configure them all with x509 and a CRL in case they get lost 05:06 < Chewza> orlock bingo 05:06 < azizLIGHT> Maarten: i see. i think my situations a bit different because of the wifi access point with builtin vpn 05:06 < orlock> hax0r the wifi AP 05:06 < orlock> jack the credentials 05:06 < orlock> :) 05:06 < azizLIGHT> :D 05:06 < Maarten> azizLIGHT, probably :) like I said, I probably have different requirments 05:06 < Chewza> azizLIGHT, your laptop is connecting to the router via wireless right? which means you have a free ethernet port? 05:06 < azizLIGHT> its still nice to hear how others setup their workstations Maarten. i bet you have nice monitors 05:07 < azizLIGHT> Chewza: yes! 05:07 < azizLIGHT> i didnt even think of that 05:07 < azizLIGHT> but yes 05:07 < Chewza> I'd plug your laptop ethernet port into your router and remove the default gateway 05:07 < Chewza> staticly assign an IP in your home IP range 05:07 < Chewza> and that should let you RDP into it 05:08 < orlock> fuck its only wednesday 05:08 < Chewza> your default gateway will still be the company's VPN router 05:08 < orlock> awesome 05:08 < azizLIGHT> i was just going to ask. thats good 05:08 < orlock> Say - ANybody here using Mikrotiks? 05:08 < azizLIGHT> Chewza: seems like a good idea. thank you 05:08 < Chewza> I've heard good / ehh things about their different products 05:08 < sawgood> orlock: I have RB750GL 05:08 < orlock> .. Hope you've upgraded sometime in the past year, theres a botnet going around.... 05:09 < Chewza> oh yea that lol 05:09 < Chewza> also the bitcoin mining fortinets 🙄 05:09 < orlock> Chewza: Thats going to make nothing fast? 05:09 < Chewza> right? 05:09 < Maarten> I have a Ubiquiti USG.... at least I managed to bypass the stupid AT&T gateway and have my ONT directly plugged into it. 05:10 < Chewza> Maarten luckally all I had to do with FiOS is call them and tell them to turn on the ethernet port on the ONT 05:10 < Chewza> took me longer to get connected to someone than it was for them to do the needful 05:11 < orlock> sawgood: Upgraded since March last year i hope? 05:11 < sawgood> orlock: yeah the MikroTik's are all LONG gone for us ... stopped using them when the re-made them with 1/2 the FLASH and RAM 05:12 < sawgood> I was re-flashing them with OpenWRT .. .it worked good until the RAM was cut in 1/2 05:12 < orlock> Ahh, damn. 05:12 < orlock> Also, liiks like Lede and OpenWRT are finally merging back together 05:12 < orlock> yay! 05:12 < sawgood> maybe ... still waiting to see the end result 05:13 < orlock> OpenWRT's been stagnant for like, 3 years? 05:13 < sawgood> maybe they will still call it LEDE! 05:13 < orlock> i think they decided to go with the OpenWRT name 05:13 < sawgood> we have to wait and see: but the firmware name will have LEDE in it for a long time 05:14 < sawgood> what devices do you have OpenWRT on? 05:15 < orlock> WRT1900ACS, and about 4 or 5 gl.inet routers 05:15 < orlock> a few others, but they are all too old to run anything worthwhile 05:15 < Chewza> soooo glad I don't have to worry about wireless networking issues anymore 05:15 < azizLIGHT> Chewza: Chewza i did as you recommended. now how can i verify that even with the default gateway removed taht the windows host or linux vm dont follow the ethernet route? 05:15 < sawgood> yeah all these newer devices with faster NAT-traversal speeds 05:16 < Chewza> azizLIGHT if there's no default gateway on the ethernet adapter, there's no way for traffic to egress it 05:16 < orlock> AR300M, MT300A, 2xAR150... 05:16 < Chewza> azizLIGHT type in google "Whats my IP" 05:17 < azizLIGHT> Chewza: i can still run scans on the local network and see the ips on the LAN however. this is normal? 05:17 < orlock> sawgood: have you seen the gl.inet routers? 05:17 < Chewza> yes, because local LAN is on that same subnet 05:17 < orlock> I really like them (obviously) 05:17 < azizLIGHT> orlock: those are cute. $20 right? 05:17 < cisco76254R> Is there a way to combine bandwidth from multiple WLAN AP's on one machine by using multiple WLAN adapters and VM sessions to manage the connections? 05:18 < orlock> $20 and upwards, depending on spec 05:18 < azizLIGHT> Chewza: looks good. doesnt resolve 05:18 < cisco76254R> up until now been just spreading ras pi 3's over them all to soak it all up 05:18 < Chewza> azizLIGHT what doesn't resolve? 05:18 < azizLIGHT> er maybe resolve isnt the right word 05:19 < azizLIGHT> i tried ifconfig.me and firefox says its having trouble finding that site, (i disconnectd the vpn wifi, and only on the no-gateway ethernet) 05:19 < azizLIGHT> exactly what i want 05:19 < orlock> Head of NBN resigned! 05:19 < Chewza> yep that's expected 05:21 < Chewza> azizLIGHT now reconnect the wifi, verify you can browse the internet and try RDP'ing into that laptop 05:24 < orlock> Goddman the portscans are getting sneaky 05:25 < superkuh> How so? 05:26 < orlock> superkuh: Any individual host will hit a single host on a single port 05:26 < superkuh> Oh. 05:27 < orlock> It's becoming more and more uncommon to see a single host scan a netblock 05:27 < orlock> or scan all the ports on a single IP 05:27 < azizLIGHT> Chewza: one sec. trying to install synergy client 05:27 < superkuh> I certainly wouldn't notice that. 05:27 < orlock> It's a while pile of seperate systems, all working together to scan ranges 05:28 < orlock> superkuh: It's what the mikrotik botnet's doing 05:32 < azizLIGHT> Chewza: its looking good. thank you sir 05:32 < Chewza> azizLIGHT glad to help! 05:38 < dogbert_2> yawn 05:39 < Chewza> indeed dogbert_2... I really should head to bed 05:42 < azizLIGHT> ahhh now i can actually lean back and work from one set of keyboard/mouse instead of hunching over to reach the laptop keyboard mouse 05:42 < azizLIGHT> i already thanked you Chewza but my back thanks you as well now 05:42 < Chewza> haha we've all been there 05:44 < Chewza> Here's my home office : https://web.chewza.com/i/2018-04-03_23-44-02_crNdtpB4km.jpg 05:44 < Chewza> so i feel your pain ;) 05:46 < azizLIGHT> oh that looks niceee 05:48 < azizLIGHT> https://i.imgur.com/8XDDg8d.jpg and https://i.imgur.com/mwy5TaH.jpg 05:49 < azizLIGHT> I pull down the ultrawide closer for some extreme field of view rocket league 05:50 < Chewza> very nice 05:52 < azizLIGHT> yeah i love having these monitor arms 05:52 < azizLIGHT> the top one pulls out 2 feet. if i put a couch behind the desk itd be pretty nice for watching movies on too 05:53 < Spice_Boy1> anyone know how to make snmpwalk use NET-SNMP-EXTEND-MIB::nsExtendObjects by default? 06:43 < Guest21229> ? 06:43 < skyroveRR> ? 06:43 < skyroveRR> ! 06:43 < Guest21229> hello 06:44 < skyroveRR> h 06:44 < skyroveRR> i 06:44 < Maarten> ola 06:44 < Guest21229> can you help me? 06:44 < skyroveRR> no 06:44 < Stryyker> No one can help until you make it clear what the issue is. 06:44 < Criggie> Guest21229: maybe - more details needed though 06:45 < Guest21229> i want hide my ip on irc 06:45 < Maarten> *psychic mode on* I sense you have a networking related problem.... 06:45 < Criggie> Guest21229: why? 06:45 < Criggie> Do you want to hide your location in the world ? 06:45 < Maarten> Guest21229, don't connect to IRC. ;) But if you must.... use a VPN. (hint: using a freenode mask is not a sure way of hiding an ip) 06:46 < Guest21229> how about znc? 06:46 < Guest21229> znc project 06:46 < Guest21229> i dont know how it use for 06:46 < Criggie> Guest21229: your connection has to come from somewhere, so you can't just remove your IP. You could connet through a remote service of some sort, but then that service will know your IP 06:46 < Maarten> I have znc, but it runs on my home server, therefore it carries my home IP. You could run znc on a remote server though. 06:46 < skyroveRR> Guest21229: ZNC has to run *somewhere*... 06:48 < Guest21229> why when i use whois someone there arent ip address but when use for me i can see it 06:49 < Maarten> Guest21229, best way to "hide" your IP (in reality you just have a different one) is to use a commercial VPN provider such as NordVPN or PrivateInternetAccess 06:49 < Guest21229> Maarten: i think so, too 06:50 < Criggie> use ipv6 :) 06:50 < Maarten> Guest21229, that is a freenode cloak. Although in simple things like whois it doesn't show your IP, it doesn't hide your IP, and someone adding you to their friends list can track your IP as you will likely show up on their friends list before you can authenticate. 06:51 < Guest21229> Maarten, i knew, thanks 06:52 < TV`sFrank> lol 06:54 < Criggie> Guest63460: what do you gain by hiding your IP address? 06:55 < Stryyker> It was Guest21229 and they quit 06:55 < Criggie> whoops - tab-complete for the fail 06:55 < Criggie> Guest63460: sorry :) 07:32 < GodOfSea> Hey 07:32 < GodOfSea> Anyone knows how to download a blob video 07:44 < Pretheist> What is the fastest/most-minimal way to get nmap to fingerprint a device? Does it have to portscan first? 08:06 < phirephly> So I think I've fixed my AS so I now can reach Cogent IPv6 routes, but I'm looking for some way to test it. Anyone know of a website thats only reachable from Cogent? 08:21 <+pppingme> phirephly if a site is only reachable from one provider, that seems pretty pointless 08:22 < phirephly> It is a shame that not every network is multihomed 08:26 < phirephly> but up until tonight, all of my sites were only reachable from HE, so they werent reachable from Cogent IPv6 and I wanted to test my fix a little more than pinging c.root-servers.net 08:30 <+pppingme> there is an ongoing cogent-he dispute, I've lost track of the details long ago, but it sounds like a cogent head up their ass deal from what I remember 08:32 < phirephly> yes. so my AS was unreachable from Cogent over IPv6 until I set up a second transit link 08:32 <+pppingme> who'd you set the 2nd link up with? 08:32 < phirephly> Vultr 08:33 <+pppingme> they do bgp transit? 08:33 < phirephly> core router -- iBGP over GRE tunnel -- Vultr VM -- eBGP peering with their core 08:33 < phirephly> they offer BGP peering with their VMs 08:34 <+pppingme> what do you pay for that? 08:34 < phirephly> $2.50/mo 08:34 <+pppingme> for everything, or for the bgp piece? 08:35 < phirephly> everything. Sorry, $5/mo. Apparently my buddy got the second tier VM 08:36 <+pppingme> wow, I had no idea they'd do bgp peering for free 08:37 < phirephly> yep. I know of several people running anycast DNS servers over a half dozen $2.50/mo Vultr VMs 10:44 < TandyUK> is there a 'cheap' way to get an AS? 10:45 <+pppingme> there's ONE way to get an AS.. 10:45 <+pppingme> how are you planning to use it? 10:48 < TandyUK> well for one for our DSL customers, so we actually handed out our own ips 10:48 < TandyUK> but also id like to anycast my dns and voip clusters 10:49 < TandyUK> and potentially a few more serious websites 10:49 < TandyUK> last time i looked into it, it was about£10k to ripe, plus an annual subscription to maintain it 10:49 < TandyUK> plus actually getting ip allocations 10:50 < TandyUK> that may have included joining ripe officially etc too 10:50 < TandyUK> i really cant remember, i just remember seeing the price tag, and thinking ;not yet' lol 10:56 < TandyUK> oh i missed the most obvious reason - so we can multihome our network, by adding a direct peering with cloudflare, on top of our existing connectivity from our DC operators 10:58 <+pppingme> hmm.. with all that, your own AS pretty much is needed.. some of that could be done without an AS, but with all of it.... 10:59 <+pppingme> I duno that I'd advise doing anycast for voip 10:59 < TandyUK> oh we do it all without an AS right now - essentially we're piggybacked on our DC operators AS which spans our kit in all their DCs 10:59 < TandyUK> but the other major reason, would be so we can put stuff outside that operators network as well 11:01 < stevecam> would this be an appropriate place to ask about usb? im trying to extend my usb cable with a cat5 and i keep on getting enumeration errors 11:01 <+pppingme> stevecam ask in ##hardware 11:02 < stevecam> i thought so, thank you pppingme 11:02 < Ben64> usb doesn't go that far 11:02 <+pppingme> are you using a specific device to "convert" it to balanced/cat5, or are you just trying to extend the wires yourself? 11:03 < stevecam> pppingme, trying to extend it myself, did you want to take this conversation to ##hardware ? 11:03 < TandyUK> really i need to setup an AS in a lab so i can learn about I/BGP properly 11:04 <+pppingme> nah, i'm just supporting what Ben64 told you.. usb simply doesn't work over that far of a distance.. there are devices to convert to a balanced signal, but I'm not a big fan of those, nor do I know much about them 11:04 < TandyUK> for usb over any mroe than 5 meters, you need a booster essentially 11:05 < TandyUK> usb over ethernet kits will have 2 'modules', one which takes usb power, and uses this to power the transmitter end. 11:05 < TandyUK> other end you have a reciever, which will usually have a local power supply, and converts the signal back into normal usb for a device to use 11:05 < stevecam> would a powered usb hub suffice 11:05 <+pppingme> I've seen some passive baluns that claim to push it over 100 feet.. 11:06 < TandyUK> a powered hub with 5m cable to pc, and 5m cable to device woudl be fine 11:06 < TandyUK> any more than that, you need to use one of these 'active' adaptors 11:06 <+pppingme> how far are you trying to push it and whats the device you need so far away? 11:07 <+pppingme> instead of making a solution fit your problem, lets look at your problem and craft a solution 11:07 < TandyUK> passive devices (ie where the remote end has no psu) wont do more than 5-10m in my experience, unless its for somethine super simple/low power like a mouse 11:08 < stevecam> im just trying to acheive 15 meters, i know ethernet cables don't complain too much over their standard lengths i figured usb would be fine 11:08 <+pppingme> TandyUK I know of people using passive baluns for slide remotes (basically a 2.4ghz cordless remote that has a page up, page down, and a couple other keys), since those have shitty range to start with.. but I've never done it myself 11:09 <+pppingme> stevecam start with what device and how far?? 15 meters to what device?? 11:09 < stevecam> i am trying to attach a tv tuner to the other end, but for testing purposes i am trying a keyboard and a usb hub, neither are working 11:09 < djph> 15 meters is pretty far for USB ... 11:10 <+xand> I think USB is specced for 3m 11:10 <+pppingme> stevecam get a network based tv tuner, they are cheap enough, and have tons of advantages over usb devices.. even if you got something working, the bandwidth wouldn't be that great, in other words, your keyboard may work, a tv tuner will crap out 11:10 <+pppingme> stevecam are you in the usa? 11:12 < stevecam> no, and i would of purchased the hdhomerunner if i knew it was going to be this much trouble, ive already spent money on the tuner (only 30) but it has to be app specific im using plex 11:12 < afx__> Hello everyone ! Having this topology https://imgur.com/a/kXsZZ , I would like to know why every port on those Hirschmann switches (top) are configured with STP enabled. My problem is I am getting link up/down on port 1.7 on both switches . Any ideas? 11:12 <+pppingme> plex will use the hdhomerun boxes 11:13 < stevecam> i know but i ended up purchasing an xbox tv tuner 11:14 <+pppingme> so you lose tv when you want to play games? 11:14 <+pppingme> that sounds like the hard way to me 11:14 <+pppingme> return it, and get the hdhomerun boxes, they end up being cheaper in the long run, and dont' tie up your toys 11:18 < Yotson> What about extending the antenna side, instead of the usb side? If you really want to use the thing you already have. 11:19 <+pppingme> the hdhomerun is cheaper... your usb stick costs $30, the dual tuner boxes cost less than $60 11:20 < TandyUK> [10:18] What about extending the antenna side, instead of the usb side? If you really want to use the thing you already have. <<< This is also far far easier than extending the USB leg 11:21 < TandyUK> the antenna shoudl just be either RG6 or CT100 coax cable, and is really easy to terminate 11:22 < TandyUK> although id highly recommend the use of 'F' connectors, and a coupler, rather than the traditional male/female coax plugs - 'F' connecteors cant unplug if pulled gently 11:22 < Yotson> I would still go for another tuner btw. 11:23 <+pppingme> https://www.amazon.com/SiliconDust-HDHomeRun-CONNECT-broadcast-2-Tuner/dp/B00GY0UB54/ref=sr_1_9?ie=UTF8&qid=1522833620&sr=8-9&keywords=hdhomerun 11:23 < TandyUK> afx__: because there can only be one path through the phsycial network between devices (in simple terms). with STP in use, only one of those paths is allowed to be 'up' at a time 11:24 < TandyUK> but the 'up' path fails, the other shuld take over pretty seemlessly 11:25 < TandyUK> id assume your devices connected to the hirshmann switches is configured for LACP, so the network sees it as a single device, and the switches decide which cable is actually in use 11:27 < afx__> TandyUK, sorry let me fix the diagram cause I made a mistake 11:31 < afx__> TandyUK, this is the correct diagram 11:31 < afx__> https://imgur.com/a/wcDRZ 11:32 < afx__> device 1 is a PC with teamed network cards 11:32 < mrtnt> I have a following simple setup: https://i.imgur.com/AwhP2AE.png "r1" sends tagged frames. Is it possible to connect to r1(192.168.122.62) without changing tap5 to tap5.9? Usually I would configure for example 192.168.122.1/24 to "br" and change tap5 to tagged interface tap5.9, but this time I can not change the tap5. 11:33 < afx__> TandyUK, so I am wondering why you need stp for all ports besides p1.7 (maybe) 11:33 < TandyUK> afx__: i dont see what changed 11:34 < afx__> TandyUK, changed the connections to devices on the right switch 11:34 < TandyUK> oh i see, the typo i just kinda misread correctly i nthe first place ;) 11:35 < TandyUK> mrtnt: without a managed switch in the way to handle the vlans, no 11:35 < TandyUK> although technically 'tap5' should recieve all tagged and untagged frames imho 11:36 < TandyUK> its whether it does anythign with tagged frames besides dropping them 11:39 < maya_> hey, so i want to see all the IP's connected to my computer on Microsoft Server command line, is there a simple command line for that? 11:40 < maya_> I don't want to install network monitor on my server that is why 11:40 < Ben64> netstat? 11:40 < mrtnt> TandyUK: yes, "tap5" should accept tagged frames. It should even accept double-tagged frames if I remember correctly. I wish there would be a "br.9" option which would send(it has IP address 192.168.122.1 configured) and expect tagged frames regardless that interfaces connected to "br.9" are untagged. 11:41 < TandyUK> tbh, it should accept everything, its what happens after that is down to the network stack o nthe device 11:42 < afx__> TandyUK, So can you please explain to me why you need STP when there is only one physical path to most of the devices connected? Also any idea I am getting UP/DOWN ports ? 11:42 < afx__> Please forgive my ignorance 11:44 < maya_> Ben64: Thanks, do you guys trust Binary Plant ARP monitor software? 11:44 < maya_> its seem to have good tools 11:44 < Ben64> never heard of it 11:44 < maya_> not sure if they are safe to be installed on the server... 11:44 < maya_> what do you use? 11:45 < Ben64> i don't 11:45 < maya_> Ben64: safe choice ;) 11:45 < Ben64> why would i need to keep track of that 11:47 < maya_> the problem i am facing now is ... I have install a system in one server in campus... but that server computer is connected to all computer at the campus 11:47 < maya_> and i am getting IP conflicts 11:47 < maya_> if i know all the list of IP ... that way i can choose specific IP to resolve the confilcts 11:48 < Ben64> ok? 11:49 < maya_> Campus ICT team sent me specific IP to use... but my deployed system and the internet doesn't to agree much... 11:49 < TandyUK> maya_: "arp -a" 11:49 < TandyUK> one of the very few commands the same on all OSes lol 11:50 < maya_> The thing is when the Internet Provider switches off the internet the deployed system is being affected... 11:50 < TandyUK> ok? you mean whe nyou have no connection? go figure 11:51 < maya_> TandyUK: yea 11:52 < maya_> when there is not connection... client computers cant access my deployed server 11:52 < maya_> I told the ICT team to check their configuration... they are asking me to check mine.. 11:52 < TandyUK> ok, i dont understand how you cant see the problem here 11:53 < TandyUK> " when there is not connection" 11:53 < TandyUK> not connected = not connected 11:55 < maya_> all campus computer have internet fiber internet connection from the telecom provider 11:55 < maya_> when the telecom provider switched off the internet... it affected the Ethernet connection in the campus 11:56 < maya_> so there is two connections here Ethernet and Internet, my system or application works without any internet ... its deployed in the local server 11:56 < maya_> but when the interent is off, its affecting the accesablity of my system 11:57 < maya_> how can that be? any thoughts 11:57 < TandyUK> ok, and what ip are people using to access it 11:57 < TandyUK> what ips are assigned to each nic? 11:57 < TandyUK> what routes do you, and the campus's routers have? 11:58 < maya_> Static ... with specfic like 10.90.xx.xx like that 11:59 < TandyUK> ok so do some diagnostics, like a packet capture while the internet is down 11:59 < TandyUK> what traffic do you see? 11:59 < maya_> and class of b masking 11:59 < TandyUK> of fuck me 11:59 < TandyUK> classes havent existed since 1993 11:59 < TandyUK> you mean you have a CIDR subnet 11:59 < maya_> TandyUK: lol dont' blame me 11:59 < maya_> i am just taking orders from ICT 12:00 < maya_> 255. 255. 0.0 like that 12:00 < Guess59061> Hello. I wanna know, when I have to model a network suppose with just 2 routers and 3 end devices on each router, where the two routers are connected, when determining how many IPs I need, do I take into account routers? I.e., for this particular topology, I need 10 IPs minimum? 12:00 < TandyUK> yeah, so a /16 subnet 12:01 < TandyUK> Guess59061: a /29 minimum on WAN for the routers, internally whatever you like really, eg 192.168.0.0/24 12:01 < TandyUK> or if you want public ips throughout, you'll need probably a /28 for inside 12:02 < Guess59061> TandyUK: Why 8 for the routers? 12:04 < Guess59061> If you have two routers, there's a subnet between them, so that's 2 IPs. Then, since they can't have the all 0 one, nor the all 1 one, that's 4 max. 12:04 < Guess59061> Okay, if you connect them to the internet you need more, I agree. 12:05 < TandyUK> i said a /28, not 8 lol 12:06 < Guess59061> TandyUK: And then for each subnet with end devices, you need 4 IPs (3 end devices and 1 router) + 2 (all 1s and all 0s). 12:06 < TandyUK> /29 sorry == 4 ips 12:06 < TandyUK> 1: isp gateway 12:06 < TandyUK> 2: router 1 12:06 < TandyUK> 3: router 2 12:06 < TandyUK> 4: cirtual ip shared between routers, and actually has the private subnet routed to it 12:06 < TandyUK> virtual* 12:06 < TandyUK> ie carp, vrrp, or similar 12:07 < TandyUK> then again on the 'lan' side 12:07 < djph> assuming you're just connecting a pair of routers to a pair of dumb switches, and then three clients off said switch. you need two subnets of four (usable) hosts, and one subnet of two (usable) hosts. smallest you could go is a pair of /29s and a /30 ... 12:07 < djph> granted, that might not be what you're asking 12:08 < Guess59061> I'm going for the smallest. So, for each LAN I have 3 IPs for end devices, 1 broadcast, 1 network, 1 router. So that's 6 in total per LAN. 12:08 < TandyUK> so a /28 would suffice 12:08 < djph> except six isn't base-2 :) 12:09 < Guess59061> djph: Of course... 12:09 < djph> TandyUK: he's counting net-id and broadcast 12:09 < Guess59061> So it's /29. 12:09 < TandyUK> oh true 12:09 < TandyUK> dont ocunt the network address and broadcast ;) 12:10 < TandyUK> but assuming 2 routers, are these not doign any sort of HA? 12:10 < djph> granted, it doesn't change your comment about the /29, since it's the smallest that'll hold four actual hosts :) 12:10 < Guess59061> So 2 x /29, then for the routers themselves, which are connected to each other, I have 4 IPs (1 for each router, 1 broadcast, 1 network). 12:10 < TandyUK> if they are, you need 3 ips for the routers 12:10 < djph> Guess59061: stop counting net-id and broadcast! 12:10 < Guess59061> Why? 12:10 < TandyUK> theyre not allocated, and you have no choice about them existing 12:10 < djph> because they don't matter 12:10 < Guess59061> It's not available as a valid IP for routers. 12:11 < TandyUK> tbf, in some very wierd setups, ive seen them actually ebing used 12:11 < djph> EVERY subnet of >2 hosts (/0 to /30) is always going to have (2^(32-n) - 2) host IP addresses. the remaining two addresses are ALWAYS the net-id and broadcast. 12:11 < TandyUK> but thats not true routing 12:12 < Guess59061> djph: Yes. 12:12 < Guess59061> djph: But with networks of such a small scale, I have to count them, because there's a difference in 1 bit (2 vs. 4). 12:12 < djph> so you don't count them. Just count the host IP addresses, and see if they fit into the answer you get with "2^(32-n) -2" 12:12 < qwerty__1> hi; I'm trying to share a VPN connection managed by strongswan inside a VirtualBox guest with all other guests run by VirtualBox, does anyone have experience doing something like this? 12:12 < TandyUK> Guess59061: no, you dont ever count them 12:13 < Guess59061> But you obviously do. 12:13 < djph> no you don't 12:13 < TandyUK> no really, you dont 12:13 < TandyUK> they ;just exist' 12:13 < TandyUK> theyre not usable 12:13 < Guess59061> In the formula: 2^(32 - n) -2, you're counting them. 12:13 < Guess59061> TandyUK: But they have to be bought, still, right? 12:14 < Guess59061> Like, they have to be assigned. I could just plug it into the formula but I don't want to. 12:14 < djph> Guess59061: they're being subtracted because they're not valid HOST addresses. All you care about is how many HOSTS you need to cram into a subnet 12:15 < Guess59061> I gotta go now, but that's not true. 12:15 < Guess59061> I don't care just about the host ones. 12:15 < Guess59061> I need to know exactly how many are needed. 12:15 < djph> for example, if you're given 192.0.2.0/30, while it *technically* has four IP addresses (192.0.2.0-3), two of them are already reserved -- .0 and .3 -- for net-id and broadcast. 12:15 < djph> so you don't count them *again* 12:15 < Guess59061> Yep. 12:15 < Guess59061> No... 12:15 < Guess59061> I counted them once. 12:15 < Guess59061> I gotta go, I'm sorry! 12:15 < djph> no, you counted them twice 12:16 < djph> "I need 3 computers, 1 router, and net-id/bcast" 12:16 < djph> ^ no. You need four (4) hosts. The other two are already taken care of by the subnet math. 12:22 < djph> aww, he left ... 12:22 < djph> *sigh* 12:22 < djph> oh well, cue some poor indian consumer coming in here asking why his internet is fubar in a few hours. 12:23 < batule> whoami 12:23 < djph> no idea 12:32 < bambam> Do you see any value in pursuing a CCNP Security? I wonder if I should add that to the R&S CCNP 12:33 < Apachez> purchase what? 12:41 < tbcsj> Does changing an import/export map on Junos drop BGP sessions? 12:42 < tbcsj> I mean actually changing the policy-statement, not removing any policies from the neighbour/group 13:01 < mrtnt> TandyUK: I got this to work like this: https://i.imgur.com/DvO8w3E.png "veth0.9" pops the VLAN of traffic from the router and pushes VLAN to traffic from br1 14:49 < Donjuanal> Hey all, I'm working with a cisco WS-C3850-48P running IOS-XE 16.3.5. The switch seems to have stackwise enabled, and we won't be running this particular switch in a stack, and I can't seem to find any documentation on how to disable stackwise or if it even can be disabled, anyone have familiarity with this? 15:16 < MaxFrames> hello 15:17 < MaxFrames> I am planning a wireless network with Cisco technology and this topology: a single (with a failover unit) wireless controller and some access points in a site; more access points in a few remote sites; I would like someone to help me double check some steps 15:18 < MaxFrames> the goal is to have all the AP management traffic go to the WLC on the central site by means of an IPsec VPN, and all the wireless clients' traffic to reach the Internet from the local site's gateway 15:19 < MaxFrames> I have identified four basic steps to perform on the network appliances involved, and would like to double check them 15:20 < MaxFrames> the wireless controller is a Cisco 2504 15:24 < UncleDrax> if you haven't already, try in #cisco as well 15:27 < MaxFrames> this is a pastebin of the four steps anyway: https://pastebin.com/ZGxsdEc9 15:28 < MaxFrames> I will also try in #cisco perhaps, but - Cisco jargon aside - the question is fairly vendor-agnostic; I need to double check my reasoning here 15:32 < sorush20> hello, I'm trying to change a thermal printers mac address from default to something else. The mac address is odd. 168-87-18-52-86 15:32 < Spice_Boy> MaxFrames: doesn't it go to controller by ipsec by default? 15:32 < sorush20> How do I change the the mac address form default. 15:33 < Atro> sorush20: you need 12 characters for MAC address 15:33 < Atro> also this isnt #printers 15:33 <+xand> also you probably can't change it 15:33 < MaxFrames> Spice_Boy: that is what we want to avoid. we need a way to make the actual clients' traffic to not go through the ipsec vpn but reach the internet from the local gateway 15:34 < sorush20> Atro: 168-1-87-18-52-86 15:34 < Atro> sorush20: RTFM 15:34 < Spice_Boy> I mean the first part, wher eyou said you want the APs to go to controller by ipsec 15:34 < MaxFrames> so yes: it does go through the ipsec vpn by default, and we plan to change that with those four steps 15:34 < sorush20> My router isnt accepting this address 15:35 < Spice_Boy> MaxFrames: can't you use bridge mode locally for the SSID you want to spit out locally at the AP? 15:35 < MaxFrames> Spice_Boy: we actually had to set it up manually. But that was the "easy" part, the VPN is up and running 15:35 < Spice_Boy> it's easy with Aruba, I know that 15:35 < Spice_Boy> figured cisco could probably do it too 15:36 < sorush20> Atro: what is rtm 15:36 < Atro> sorush20: read the manual 15:36 < MaxFrames> Spice_Boy: I'm not quite sure what you mean, but on remote branches the only local thing would be the AP; the WLC would be on a remote, central location and will be used to manage all APs on the branch sites 15:36 < Spice_Boy> MaxFrames: exactly 15:36 < sorush20> Atro: the device is old and I can''t find it 15:37 < Spice_Boy> MaxFrames: with Aruba, you'd have the AP managed by central controller, but if you want some traffic tunnelled to controller, great. If you want some bridged locally at the site, also easy 15:37 < djph> sorush20: STFW for the manual, so you can then RTFM 15:37 < Spice_Boy> surely cisco could manage that 15:37 < MaxFrames> so we need to find a way to "put" the wireless clients on a separate VLAN with its own DHCP server and its own gateway, both of which would be on the same site as the AP the client is connected to 15:37 < djph> RADIUS? 15:38 < MaxFrames> apparently with Cisco that is not as easy as with Aruba 15:38 < sorush20> djph: stfw? rtfw 15:38 < Spice_Boy> MaxFrames: sorry to hear that. good luck 15:39 < MaxFrames> I will try in #cisco 15:40 < djph> sorush20: STFW = Search The Fucking Web; RTFM = Read The Fucking Manual 15:40 < Spice_Boy> HTFU 15:40 < MaxFrames> expletive day! 15:41 < Spice_Boy> https://www.youtube.com/watch?v=unkIVvjZc9Y 15:42 < djph> Spice_Boy: heh, I half expected to get rickrolled there 16:13 < thxffo_> troubleshooting kernel packet drops... that would be tcp/ip correct? how would i eliminate a problen at link layer? 16:14 < djph> well, seeing as it got as far as the kernel ... 16:15 < thxffo_> lol 16:15 < thxffo_> damn 16:15 < thxffo_> didn't even think about it like that 16:17 < djph> Granted it's not a 100% guarantee everything is fine on L1 / L2 ... but since it got far enough that L3 filtering is what decided to drop the packet ... 16:17 < djph> assuming I'm understanding what you meant by "kernel packet drop" 16:22 <+catphish> thxffo_: the kernel handles both layer2 and layer3 16:23 <+catphish> thxffo_: debugging kernel packet drops is often a matter of simply knowing what the kernel does with packets 16:23 <+catphish> always start with tcpdump, iptables, and the routing table :) 16:24 <+catphish> unexpected drops are often the rp_filter :) 16:36 < thxffo_> thanks guys, i knew i could count on #networking for idears :p 16:40 < Ygnas> Is it possible to defend game server from ddos with just software? Tried so many hardware options nothing really helps. We had netgear, juniper, zyxel.. zyxel was doing best job. 16:41 < E1ephant> volumetric ddos? 16:41 <+xand> you can't defeat a DDoS with either hardware or software 16:41 < E1ephant> how much ddos? 16:41 < Ygnas> so just more bandwidth can help? 16:41 < E1ephant> you need at least that 16:43 < Ygnas> well but sometimes it doesnt make sense anyways. we have 1gb/s and just to try it we bought stresser to attack our self and 350mb/s - 500 was enought to choke us 16:44 < E1ephant> what is falling over, the firewall? just in cpu usage? or it's dropping in queues/buffer? 16:44 < E1ephant> when you say "mb/s" you mean bits? 16:44 < E1ephant> or bytes? 16:44 < c|oner> bolts. 16:45 < E1ephant> or yeah bolts :) 16:45 < Ygnas> just loosing connection to internet. the only one zyxel firewall was able to kinda stop it ( but after doing that it was restarting its port and server crashes anyways) 16:45 < E1ephant> just doing stateful-fw, gige linerate should be really cheap 16:46 < E1ephant> what juniper device and config? 16:47 < Ygnas> dont remeber juniper, long time sold wasnt helping much. it was arround 700euro 16:49 < jrc> Hey guys, what do I get to mount this in a rack? https://i.imgur.com/8cJnjAL.jpg I looked everywhere, I can't really figured it out. I found these terms "LGX" and "cassette" that seem to be associated with this form factor but I'm confused 16:50 < voip> whiteb0x 16:51 < redrabbi1> do you guys know proper speech to text for Windows 16:51 < qman__> if you're trying to put it in a standard 19" server rack, there is almost certainly a mounting bracket that accepts that unit 16:51 < redrabbi1> dragon speech to text is absolute garbage 16:51 < Ygnas> LGX Rack Mount Chassis. Can be 2 modules or 1 16:53 < jrc> Thank you 17:08 < Autolock> Hello 17:08 < HaMsTeRs> hello 17:08 < UncleDrax> ya usually that sorta thing goes into a chassis designed for that form factor.. often they supply the power and stuff too from the rear of hte module 17:09 < Autolock> Any Cable modem gurus on? I'm new to the CM world and have a couple of questions 17:09 < UncleDrax> i'd hope TFM would supply the docco for that module/chassis requirements 17:10 < UncleDrax> Autolock: not a guru, but I have a CMTS in the closet that one of my co's played with briefly.. 17:11 <+catphish> it really bothers me that all supermicro servers have a default login on their IPMI that can't be modified, it doesn't seem dangerous but it's weird 17:11 < Autolock> Well, I signed up for a 1 Gig plan this week and had the tech install my cable yesterday. I have noticed that it flucuates speed a lot. 17:13 <+catphish> fluctuating speed to where? 17:13 < Autolock> The craziest part is even with a direct connection I get anywhere from 950Mbps to 120Mbps. I also view the "event log" of the modem and I see a couple fails. 17:13 < c|oner> I need a "cloud drive" to backup my files. I don't want software that backs up the entire system like crashplan. I also don't want to use google or dropbox. How hard is it it to have a Mounted backup drive that isn't from one of the more common providers? 17:14 < c|oner> I see a bunch of guides on using amazon s3 has a cloud device, that seems clunky and hands-on 17:15 <+catphish> c|oner: you can run your own https://owncloud.org/ 17:15 < Autolock> And if I connect ANY router behind the CM my speed never goes above 200Mbps. Any recommenations? 17:15 <+catphish> if you don't trust the big providers, that's probably the answer 17:15 < c|oner> no, I'm not doing my own anything. 17:16 < c|oner> it's not that I don't trust them, it's that these services seem to be overkill for what essentially i need is a secure SMB cloud drive 17:16 <+catphish> Autolock: where are you testing speed to? 17:16 < Autolock> Sorry, I'm using speedtest.net 17:17 <+catphish> Autolock: with regard to the router thing, i'd suggest your router simply isn't fast enough, and that's the issue there 17:17 < ||cw> c|oner: there are some software that use S3 and google's version as the backend but have a nice front end. I haven't used a desktop one, just the one my NAS uses 17:17 < Autolock> I have a Netgear Nighthawk 4 all 1gig ports and everything is hardwired 17:17 <+catphish> yeah, using S3 with a simple desktop frontend sounds sane 17:17 < c|oner> I don't want to cobble together a solution using s weird client no. 17:18 < c|oner> I want a company to actually be able to to provide a drive, not an "object" 17:18 < c|oner> I still don't understand why this is so hard 17:18 < ||cw> Autolock: is speed test finding a site that's on your ISP's local network? the gigE connection is only between you and the ISP, i it hops anywhere else speeds will vary, a lot 17:18 < Autolock> The ISP I was using had fiber lines and I always had 100/100 speed no matter how much Bandwidth was used. I would never dip below 90Mbps. 17:19 < UncleDrax> Autolock: also the obligatory 'most services are 'speeds up to xyz'', and your ISP can't control the speed of anything past it's Internet borders anyway 17:19 <+catphish> Autolock: Nighthawk 4? 17:19 <+catphish> do you mean x4? 17:19 < Autolock> Yes 17:19 < UncleDrax> but this could be a simple issue of CMTS is wonky or busy, or anything really. 17:20 < UncleDrax> or the coax into your house is too [dirty|clean|nicked..etc..] 17:20 <+catphish> Autolock: i can't find any test results for that device, so it may simply be that it can't do more than 200Mbps 17:20 < Autolock> According to speedtest.net I'm connecting to suddenlink servers when running thst 17:20 < Autolock> Catphish my router is not the issues. I have 1 gig ports all hardlined 17:21 < ||cw> a "drive"? 17:21 <+catphish> Autolock: you literally said "if I connect ANY router behind the CM my speed never goes above 200Mbps", clearly the router is the issue there 17:22 <+catphish> Autolock: however, i found a benchmark that says it can do 700Mbps, so that's a little odd 17:22 < ||cw> c|oner: what OS? 17:23 <+catphish> Autolock: know that having gigabit ports certainly doesn't mean a router can route at gigabit speeds 17:23 < E1ephant> kaw kaw! 17:24 < Autolock> What would cause such fluctuations in speeds? Currently I'm direct connected and my speed test range from 120-900 17:24 <+catphish> Autolock: as for slow results connected directly to the modem, there are 3 possible reasons for your varying speed, 1) a line fault 2) local congestion, it may be that you share a couple of gigabits on the local cable loop 3) your ISPs network is slow, i'd say (2) was the most likely 17:25 <+catphish> but if you're seeing these results connected directly to the modem, i'd call the ISP and ask, they can investigate 17:25 < ||cw> Autolock: once you get past your modem you're sharing the lanes. there are literally millions on things that can affect the speed you see 17:25 <+catphish> 1Gbps is a *lot* of bandwidth, i wouldn't expect to reach that all the time, but 120 would be very low for a connection marketed as gigabit, so it's worth asking 17:26 < Autolock> I did, they said a tech was coming out today and would not have to come into the house to check the lines. Almost noon here and yet to see a tech 17:26 <+catphish> Autolock: they usually check from the remote end first 17:26 <+catphish> they can detect faults on many lines without having to visit 17:26 <+catphish> hopefully they find something 17:27 < Autolock> I'm not expecting 1gig results every time however, I do expect at least 750+ no matter what I do on my end. Like I said I had 100/100 and never dipped below 90. I'm more concerned with the modem faults 17:27 < Autolock> I was going to purchase a new CM but I dont think that will fix my issue 17:28 <+catphish> probably not, let the ISP investigate first, and the router thing is a totally separate issue, so i'd worry about that once the line is fixed 17:29 <+catphish> expecting 750 is a bit arbitrary 17:29 < ||cw> Autolock: if you're not testing to your ISP's speedtest server, you have no reason to suspect your modem is causing the slowdown 17:29 <+catphish> it totally depends on how things are set up sadly 17:29 <+catphish> it's always worth trying different speed test servers, in case a particular link is congested 17:29 < Autolock> Agree about the router thing. Like I said Im new to CM tech and I have a lot to learn 17:30 < Autolock> I can see the signals on the CM and from a quick internet search all the numbers seem ok. 17:31 <+catphish> you shouldn't need to know that much about modems normally, they're kind of a boring part of the network that just works 17:31 < c|oner> ||cw: macOS 17:31 < ||cw> and some errors are normal. it's really just radio over a wire 17:32 < c|oner> I suppos CIFS/NFS isn't encrypted which is why this is more complicated than it is my head. Isn't there some standard for mountable encyrpted network drives 17:32 < ||cw> c|oner: there's some POSIX filesystem stuff for google's could storage, not sure what OSs it supports, 17:33 < Autolock> Thanks everyone, I will give the ISP another call and see if they found anything. Have a good day! 17:34 <+catphish> Autolock: good luck :) 17:34 < ||cw> the main issue might be that running storage in the cloud in the cheap, reliable, preformant way does not lend to traditional storage, object storage is where it leads. you can have local software that that adds a traditional overlay or proxy. and yeah, expecting a protocol designed for LANs to work over the internet securely and reliably is kind of unreasonable 17:35 < lupine> cloud storage is uniformly awful 17:35 < lupine> if you don't need POSIX semantics (you probably do), object storage is a reasonable way around it 17:35 < grawity> c|oner: "CIFS" can be encrypted if by CIFS you mean SMBv3.02 17:36 < grawity> c|oner: NFS can be encrypted but only if you use Kerberos (sec=krb5p) 17:36 < Reventlov> Hi. In 802.11{n,ac}, channels are divided into subcarriers to use with OFDM. Does that mean the convolutional code interleaving is used as a "serial to parallel" converter that has 48 outgoing streams? 17:37 < ||cw> a folder sync system is far more sane anyway, you don't want internet unreliability affecting your open files 17:37 < Reventlov> (streams that are then fed into QAM constellations and then into IDFT) 17:42 < c|oner> ||cw: my main requirement then is that the files not be stored locally to waste space, and be someone other than google or dropbox who we already use for other stuff 17:59 < n13z> c|oner: I use a combination of VPS + owncloud with file encryption 17:59 < n13z> c|oner: This setup needs a little effort to setup 18:00 < c|oner> I think I'll look at pCloud, they have 'dont save files locally' option 18:03 < c|oner> and versionning anf backup 18:13 < ||cw> c|oner: found this for google's https://github.com/GoogleCloudPlatform/gcsfuse/blob/master/docs/installing.md 18:13 < ||cw> scroll down for OSX 18:14 < c|oner> yeah I'm not gonna deploy that to 5 people and maintain it 18:14 < c|oner> thanks though 18:15 < ||cw> if you want simple for users, backblaze is kinda hard to beat 18:16 < ||cw> but if you're trying to havea cloud shared drive with no local, good luck? that seems error prone 18:18 < Epic|> NextCloud? 18:37 < raynold> ahh it's a wonderful day 18:47 < dan2wik> Would anyone have a rough estimate of the tensile strength of ethernet cables? 18:48 < ash_worksi> A pepper usually meets one of two criteria: [...] The pepper is small and randomly generated for each input to be hashed, and is never stored. To verify whether an input matches, the application iterates through the full set of possible values for the pepper... 18:48 < ash_worksi> can a pepper be generated programatically from the input, or does that defeat the purpose? 19:06 < skyroveRR> Hi HappyLoaf 19:06 < skyroveRR> * HEROnymous 19:07 < HEROnymous> yo 19:07 < skyroveRR> How goes it? :) 19:10 < skyroveRR> Yo Catalysm 19:10 < skyroveRR> * catphish 19:11 <+catphish> morning 19:13 < pd2000> Hey I have access to my college network switch which is based on Extreme XOS Screenplay , what thing can I do with it . 19:14 < Demos[m]> I’m gunna assume it knows you have access? 19:14 < Demos[m]> IT 19:18 < pd2000> does it have to do something with it ? 19:26 < Demos[m]> No, but it does have something to do with weather myself or anyone in here will be willing to help. Also if you disrupt operations for your college it is a federal crime under 18 U.S.C § 1030 (a)(5) 19:27 < Demos[m]> Or likely similar laws in other jurisdictions 19:28 < UncleDrax> look at you knowing the code number. 19:28 < fnDross> Demos[m]; you know those laws well? 19:29 < UncleDrax> but the most likely couse of action is to muddle with it, get caught, and get expelled from your college. 19:29 < fnDross> ive questioned a couple things 19:29 < fnDross> doesnt ISP's who are doing sopa/pipa interfere with QoS of things like ps4/xb etc? 19:30 < fnDross> allowing xb/ps to ban all ISP's applying it 19:30 < UncleDrax> dan2wik: I wouldn't use ethernet cables for anything they aren't designed for.. while they can be used to restrain someone in a pinch, they are often very low guage wire inside, and a simple knick to the sheath will cause it to just rip. 19:31 < Demos[m]> Yeah that 19:32 < Demos[m]> But depending on where the switch is you might piss someone off 19:42 < pie3> what is openstack? 19:43 < S_SubZero> an extremely google-able word 19:45 < UncleDrax> openstack is a lifestyle 20:03 < ||cw> dan2wik: I think tht would vary wildly based on PVC jacket quality and whether or not it has the cord inside 20:29 < _AxS_> hey all -- cisco 4500 based switch, if I set a port to do switchport-trunking via dot1q, with a native vlan set, then in theory i should be able to send both tagged and untagged traffic from a linux host right? I've done this before and don't recall running into any issues, but today.... 20:33 < grawity> in theory, yes 20:37 < ||cw> _AxS_: yes, ho native is always untagged 20:37 < Apachez> cant you on cisco devices only allow tagged frames? 20:38 < _AxS_> Apachez: afaik yes, by disabling the native vlan 20:38 < Apachez> you cant do that 20:38 < Apachez> it will default to vlan 1 if you "disable" it 20:38 < _AxS_> right. 20:38 < ||cw> I always just made a vlan I don't use for anything 21:18 < noonien> hello folks 21:19 < noonien> i've got a series of large POST http2 to a server which responds with an empty body. the request goes through nginx and is proxied to another app. 21:19 < noonien> my problem is that the TTFB is pretty large, 400-700ms 21:19 < noonien> the app is hosted in google cloud engine, if i create an instance and do the same requests, there is only a ~40ms TTFB 21:20 < noonien> which, i think, rules out nginx/my app being the issue here 21:21 < noonien> increasing the packet delay on the neighboring GCE instance to be simmilar to what I have also increases the TTFB to similar values i get 21:22 < noonien> what can cause this TTFB, TCP acks/package rearrangements? 21:40 < detha> noonien: test with small requests (less than MTU). If that is fast, try decreasing client MTU. 22:05 < SlowJimmy> Will using openvpn draw attention to you and therefore actually reducing your privacy? 22:06 < UncleDrax> what entity are you concerned about? a state-level actor won't care what you use. your ISP probably won't care unless you do something to bring attention to yourself. everyone in between will likely be in that same boat 22:07 < SlowJimmy> I mean like a breacher or what do you call those 22:07 < S_SubZero> 'draw attention' 22:08 < SlowJimmy> people who try to take over your shit and use it for whatever 22:08 < SlowJimmy> like for their attacks or to mine bitcoin idk 22:08 < SlowJimmy> Or maybe even just to steal your data if that is the case 22:09 < E1ephant> woah m8 22:09 < S_SubZero> isn't that why you're using VPN 22:40 < ZexaronS> heck of an article on 5G - For the people who must download a whole season in two seconds !!! https://www.infowars.com/5g-wireless-a-ridiculous-front-for-global-control/ 22:41 < TV`sFrank> lol 22:43 < redrabbit> you are joking right 22:43 < UncleDrax> I"m still waiting for a properly implemented 4G 22:44 < redrabbit> so you think 5g isn't worth developing ? 22:45 < UncleDrax> me? i think that people fapping around to reported high-speeds will be let down, and instead they will be berated by marketing-approved incarnations of "5G" 22:45 < UncleDrax> is it worth developing? absolutely 22:45 < redrabbit> true 22:46 < ZexaronS> it's already developed, it's nothing new, that was the goal all along, 1G 2G 3G 4G were just the stepping stones to domesticate the public into accepting this, it's all fake "new tech" too, they could done it 20 years ago, it's just a different frequency, like turning a knob on your speaker volume hah 22:46 < redrabbit> it is really about most profit for the isp 22:46 < redrabbit> you can fit more customers 22:47 < ZexaronS> you mean ... fit more slaves :) 22:47 < redrabbit> lol 22:48 < ZexaronS> TLDR in 4 minutes https://www.youtube.com/watch?v=pvkZydL_0Bg 22:48 < redrabbit> so you were serious about infowars.com lmao 22:48 < redrabbit> you know that site is garbage right 22:48 < TV`sFrank> redrabbit: Quit trolling. 22:49 < redrabbit> what are you doing TV`sFrank 22:56 < electricmilk> Doesn't 1G,2G,3G not really have any meaning? 22:57 < UncleDrax> these days they describe a suite of protocols/technologies. 22:57 < UncleDrax> 2G is GSM, GPRS, EDGE 22:57 < UncleDrax> and so on.. stuff I can puke out from wikipedia if you like 22:58 < UncleDrax> but I think ITU defines the standards 22:58 < E1ephant> I thought it was 3GPP 22:58 < E1ephant> but tbh yeah, it's a bunch of people on a conference cruise somewhere 22:58 < E1ephant> picking aribtrary letters to use for a given "generation" 22:58 < UncleDrax> pretty much 22:59 < UncleDrax> ya guess it's not ITU, you're correct 22:59 < UncleDrax> i think there is some ITU involvement though 23:00 < E1ephant> yeah looks like it started as an ITU project 23:00 < electricmilk> I read an article that they are brining 3G to the moon 23:00 < E1ephant> maybe still scoped as such in some way as well 23:00 < electricmilk> Shit if you are going to send cellular technology to the moon at least go 4G 23:00 < UncleDrax> E1ephant: GPS is considered a 3G tech.. so.. that maybe? 23:01 < UncleDrax> sorry not elephant, 23:01 < UncleDrax> i fail at tab completion 23:03 < ZexaronS> But also this illusion of "new technology" ... they all knew 10-20 years ahead but when they roll out they roll out 0.2 version of it so they can spend 15 years milking the public before they get to 1.0 23:04 < ZexaronS> with every year being hyped up as "cool new tech" but it's just a polished turd update 23:04 < ZexaronS> fancy update* 23:05 < UncleDrax> well idd with the turd-updates.. i call them 'rounder buttons [on iOS]' 23:05 < ZexaronS> if they wouldn't do this, no corporation could exist in the current financial system of "endless growth just to survive" 23:05 < UncleDrax> that said, you've put away your targeting computer.. stay on target^Wtopic 23:22 < anonymouse> how do i get a free domain name registered? 23:23 < E1ephant> magic 23:24 < alanhuang> https://lmgtfy.com/?q=free+domain+name+registration 23:25 < Criggie> free? don't use free 23:25 < Criggie> pony up some cash so you own it 23:25 < anonymouse> no 23:25 < S_SubZero> few bucks a year 23:25 < Criggie> then bugger off you cheapskate. 23:25 < anonymouse> no 23:25 < Criggie> problem with free ones is you don't own your domain name 23:25 < S_SubZero> i think mine is $9 a year or so, and it's on an infinite renewal plan. 23:25 < pekster> For the meager cost of the basic TLD's (not the "premium" ones, like .casino) if you don't pay, they have a bad habit of disappearing when whoever did pay to give them to you for "free" takes back that offer 23:26 < anonymouse> i'll just google it nvm 23:26 < Criggie> exactly - get it registered to you yourself and you have total control for as long as you pay the fee 23:26 < Criggie> hehehehe 23:26 < Criggie> grumpy cat says "NO!" 23:26 < pekster> Criggie: Yes, but that's not "anonymous" enough, you see :P 23:26 < E1ephant> much wow 23:26 < E1ephant> such lol 23:26 < Criggie> so LOL 23:26 < pekster> Of course, .onion is your anonymous hosting, so.. meh! 23:27 < Criggie> pekster: hahah yeah - someone should create .shrek as a TLD... cos layers 23:27 < pekster> Even Facebook knows how to do that mostly-right, eg facebookcorewwwi.onion (yup, actually legit) 23:29 < pekster> Though to be clear, you want to visit that over https:// , but presumably any of you doing facebook over tor know your op-sec ;) 23:30 < Criggie> anyone doing facebook doesn't really :-\ 23:40 < wiresharked> djph: So when would deadgwdetect be used in windows? 23:55 < wiresharked> asig: What is the purpose of VLAN trunking? --- Log closed Thu Apr 05 00:00:33 2018