The future is getting a QR code tattooed on your forehead so the link bubble blocks your face, and machine learning thinks you’re an avocado. I’m getting mine done tomorrow.

Buster’s slightly concerned he’s about to be replaced with bookworm

They were thinking the same thing the same thing the cable execs were thinking.

“If they have to buy both our service and others, then other service are not my competition.”

”We’re going to rape these motherfuckers”

So I’ve implemented Obsidian Git, and it works really well. The only trouble I’ve had is on iOS (I’ve got m it on android, fedora, debian and windows) where it’s bot supporting merge changes.

I’m considering moving to logseq and implementing the same.

The other alternative to self hosting is ‘SyncThing’. After I introduced my dad to obsidian, I saw how he did his synchronization with it, and it looks like a lot less overhead - fairly compelling

Happy to share some notes on my setup and his if you like

This is also true for UDP and ICMP connections, in case anyone reading wasn’t sure. This is how you’re able to ping stream and browse from behind your regular firewalls

Oh I know, I was agreeing with you!

I was outlining a problem that containers can’t (currently) solve in solidarity. Sorry, that wasn’t clear.

I can’t figure out how to get them to work they way I want.

I don’t store any history/cookie/cache data by default, it’s all eliminated on shutdown of the browser. So I have to put in exceptions for password managers, tickting systems and other stuff.

Like, what if I want to have whatsapp in a container? Well, if you want it to work nicely, you need to allow persistant cookies. Then it stays logged in between sessions.

But that exception is valid for all containers, not just the whatsapp container. I work for an MSP, I’ve got hundreds of accounts to the same few sites, adobe/microsoft/antivirus and they all work fine! But there’s tracking cookies for those sites too that can be stored and retrieved too.

I want per container cookie/cache exception options, because forcing a site to open in a single container isn’t viable in all circumstances. That’s why I have to use profiles.

No, that’s handled by ARP requests. In this case, it’s likely that the DHCP server is on the gateway, as that’s a pretty common setup for home ISP router arrangements.

Gateway refers to a router that has access to other networks. In this case, the default gateway, which will be the router that has access to the internet.

DNS or name servers are a separate option in DHCP leases, as are the IP addresses for DHCP servers, which are more of a windows thing generally.

In this case this comment is probably an accurate description of what’s happened:

https://lemm.ee/comment/7429148

I’d hesitate to call it truly enterprise, but I’ve used the 24 port/10Gbe version of these in a datacenter. Not many issues to write home about - seems to handle vlanning pretty well.

Has 10Gbe uplinks, US power, and PoE+. Probably access to a fancy dashboard too.

$1600 is probably as cheap as you’re getting.

Edit: Oh yeah, they’re probably not dual attached, and the ‘redundant power supply’ (RPS) is a separate appliance, which I consider kinda bullshit, that takes up another U.

I’ve had no trouble with actual switching performance though fwiw.

Edit 2: They’re probably compatible with the AR mobile app, which is hella cool, and somewhat useful in customer sites.

48 port Ubiquiti

Do not forget to log out and log back in after you add yourself to a new group. Your desktop environment is a program, and it won’t know about the update until you spawn a new graphical shell with the updated permissions.

Just in case it’s not clear from the replies - you can edit pdfs in libre office draw. Text, images, arangements, whatever. It’s all editable.

Lining up the wires, ensuring they’re straight and making sure they’re trimmed to the same length will help avoid crossover too.

You can help straighten them on the square edge of a table, just press them between your finger and the table at the part that’s stripped from the insulation, then pull them over the edge applying pressure the whole time.

You can also look for the newer cat 6 connectors. Lots of brands have an insert that you can slot the wires in to before putting them in the housing, which helps a lot.

Example here: https://www.amazon.com/W-NECTOUN-100-PACK-Connectors-Ethernet-Connector/dp/B0B1DHQCP7/

Honestly, though it may be overkill, go get kismet.

It’s going to require some minor configuration, and there is no iOS support for sure - but if you’re going through the effort of investigating and need data - this will serve you, and set you up with skills for future investigations.

You may require a usb wifi dongle, depending on what support for your mac’s wifi card is like. Look for one that is known to work. Hoping it’s a macbook!

I have personally used kismet to prove that a device was too far away from an AP because it shows which packets were retransmissions, and can correlate that with signal strength of both device and AP over time.

Also, I was able to prove that a bank’s CFO was getting dropped zoom calls because he’d joined two separate SSIDs on different and very locked down networks (broadcast from the same APs, and kept roaming between both of them every time he went for a coffee or to the meeting room

It’ll definitely do what you need, and I’m happy to assist if needed - though my mac skills stop in 2019.

Ps. Most of the iOS options suck, because of how locked down the wifi stack is. Basically everything is a worse, subscription-model, glorified version of speedtest.net

Pps. Kismet is designed to be both client and server - i.e. it’s capable of being a wireless probe and a data collection point for other probes. You can just use it stand alone and display the data you captured locally.

If you need simultanious data capture from multiple points for correlation, I’d suggest another laptop or raspberry pi - but because it takes over the interface in monitor mode when it’s running, you can’t also use it to be your network link.

Just to check I’m interpreting this correctly, Chrome on android works, on the same device? (This would verify that all your networking is fine, and that your dns entries are correct for your new network)

Can you see if the firefox local requests are making it to the pihole request log? If they’re not making it there, then we know that it’s got to be an in-app issue.

Could be an issue with dns prefetch caching or something else, narrowing down the scope of checks will focus the troubleshooting more effectively.

Short answer, the answer is no.

The deco’s are a mesh because of how they forward packets to eachother directly. Meshing is to do with how the APs talk to eachother to forward ethernet frame data.

I think you’re confusing the mesh topology of backbone communications between access points with ‘Internal Roaming’, which is how the wireless client devices jump from one ssid to another.

All the decisions of internal roaming are handled by the client, not the AP, and it’s not really that smart.

Not all devices roam exactly the same, but Apple has a clear ruleset they follow how for iOS devices roam. They also details some info about supporting technologies that the APs can provide, 802.11k and v.

802.11r is not required unless you’re doing EAP, 802.1X radius authentication for each client on your network.

So. If you connect the deco’s via ethernet to the same network, they’re technically not a mesh anymore - but they will make for a decent roaming domain. Same goes for your old wifi access points.

They’re only a mesh if they communicate directly.

Sweet! Yeah, I’m guessing that the iptables-mangle and landing page link setup relies on getting that IP before populating the page, and that it’s not reactive to changing IP address. It might have worked if you were disconnecting networking all together, and joining a different network, but with the wonky way wifi roaming actually works, the mediabox management scripts probably never noticed there was a need to re-trigger.

You’re looking for mdns! Depends on which distro you’re on. For apt based stuff like mint, look for mdns (used to be libnss-mdns on raspberry pis, guessing it’s the same for mint? It’ll install avahi zeroconf stuff if it’s not there already. Check the service is running, then ping $HOSTNAME.local - replace with whatever your host name is.

If you’re starting the mediabox setup on the isp network, it’s doing local natting with iptables, based on the IP that it resolves from the hostname. Probably would need to shut down and re-up to walk between the deco’s and the isp wifi domains.

I agree with the other comments, looks like you might be in a double NAT scenario - fortunately for you, I think I know how to fix it, seeing as we’re both running deco’s!

You want to go into the smartphone app, go to ‘More’ at the bottom right, (as opposed to ‘Network’), Advanced > Operation Mode > Access point.

Be aware this will cause a disruption, and anything connected to them will need to be reconnected so it gets dhcp/ip addressing from the isp router rather than the deco.

The other alternative is, if they’re already in AP mode, it might be recognizing the deco SSID as a separate network to your ISP’s router, and randomizing your mac address (for anonymity across airports and hotels and such). Then, with your original mac address holding the first IP in lease, your ‘new’ mac address gets a different one. Check your mac with ip link too when connected to the two different networks, and see if you can find an option to set it manually for both networks, or just use your default one for those networks.

I’d love to hear how you get on, I’ve been putting off building this exact solution (mediabox) from scratch, had no idea there was a project set up to run it all

Can you give us some more details about how your network, mesh and machines are setup?

Are you trying to access the containers from the machine they’re running on, or from a different machine?

Is the container host moving between different AP’s, or is it on ethernet?

What IP address do you get when connected to the different access points? Does it change?

Are your access points in Access Point only mode, or are they acting as routers? What brand/model?

How are the mesh access points connected - powerline, ethernet, wifi meshing?

It also means that the majority of your intra-network traffic won’t be forwarded to your router, even when the router is online. The switch will just pass it on to the correct MAC address directly.

Edit: for reference, this is know as the router on a stick configuration

The next part is decoupling your your dhcp and dns and firewall from your ISPs router. I’ve done this with a raspberry pi, but you could buy or acquire a drop in replacement.

Get control over your core and edge network. Then you’ll have the freedom to do lots more with your home network, and the privacy to do it with.

For example, my streaming devices go over dedicated vpns to different countries so I can get different content, but the rest of my devices don’t. I can still connect, control and cast to them because my phone is on the same network, just going to a different gateway.

My current plan is to drop my ISP line speeds by half, and pick up a competitors line to have a dual-WAN load-balanced setup at home. I’m sick of being beholden to one company’s whims on when it wants to reboot my router for ‘maintenance’

Amen. Also they tend to draw less power than your average cheap desktop, so it’s a great middle ground between pc and sbc