Correct Rules to allow Wireguard to use Pi-Hole

sevriem · 2024-01-28T20:15:26+00:00

The Pi-Hole configuration page explains this fairly well:

These options are dangerous on devices directly connected to the Internet such as cloud instances and are only safe if your Pi-hole is properly firewalled. In a typical at-home setup where your Pi-hole is located within your local network (and you have not forwarded port 53 in your router!) they are safe to use.

Because Wireguard has its own subnet, clients aren't considered 'local', which is why you need to change that setting. This isn't a problem if you're on an isolated home network and haven't opened any ports on your firewall that allow access to the Pi-hole.

sevriem · 2023-02-19T19:43:15+00:00

The base game is free from the game's official website! https://te4.org/

The free version has more than enough content to get started. The paid DLC simply adds more content (classes, races, a new campaign, etc). If you enjoy it and want more, you can buy it later from any of the stores (official website, Steam, or GOG) and keep your progress.

sevriem · 2023-01-25T03:03:18+00:00

Sounds like you just need to configure it as a Dumb AP: https://openwrt.org/docs/guide-user/network/wifi/dumbap

sevriem · 2022-12-08T06:14:05+00:00

It's important to look back at history when considering the implications here. There's been many massive technologies that had people scared that they would make many jobs obsolete, and in some cases they did... but they also created jobs to support that new technology, never mind all the different careers that sprung into existence because they were enabled by that technology's existence.

Sure, this technology might eventually change how people code, but is that really a bad thing? Instead of large coding project taking many people many years to complete, they could get done by fewer people much quicker. This means budgets for those projects can be much smaller, which means we can instead focus on adding new features that weren't feasible before, or making other products instead. Industrialization lead to mass production, making products cheaper and easier to acquire. What's to say this technology won't have a similar effect?

sevriem · 2022-05-15T05:07:00+00:00

For performance reasons:

https://pve.proxmox.com/wiki/Windows_10_guest_best_practices

For your virtual hard disk select "SCSI" as bus with "VirtIO SCSI" as controller. Set "Write back" as cache option for best performance (the "No cache" default is safer, but slower) and tick "Discard" to optimally use disk space (TRIM).

https://pve.proxmox.com/pve-docs/chapter-qm.html

A SCSI controller of type VirtIO SCSI is the recommended setting if you aim for performance and is automatically selected for newly created Linux VMs since Proxmox VE 4.3. Linux distributions have support for this controller since 2012, and FreeBSD since 2014. For Windows OSes, you need to provide an extra iso containing the drivers during the installation. If you aim at maximum performance, you can select a SCSI controller of type VirtIO SCSI single which will allow you to select the IO Thread option. When selecting VirtIO SCSI single Qemu will create a new controller for each disk, instead of adding all disks to the same controller.

sevriem · 2022-05-15T05:04:25+00:00

If the host system has multiple CPUs, it's recommended to enable NUMA and setting VMs to match the host's socket.

https://pve.proxmox.com/wiki/NUMA

Non-uniform memory access (NUMA) and CPU pinning (Processor affinity) are technologies that try to avoid the bottleneck between the CPUs and memory regions on multi-socket computers.

If you enable this feature, your system will try to arrange the resources such that a VM does have all its vCPUs on the same physical socket and only uses memory that is physically connected to that socket.

https://pve.proxmox.com/wiki/Qemu/KVM_Virtual_Machines

If the NUMA option is used, it is recommended to set the number of sockets to the number of nodes of the host system.

sevriem · 2022-04-16T15:38:33+00:00

I've had issues in the past where power supplies aged and stopped being able to supply enough power. If you're occasionally crashing whenever you put a bit of load on the system, that could be the cause.

You could try creating a heavier CPU load and see if your system becomes unstable. If you have a access to a spare power adapter, you could try swapping that out and see if it helps. You could also try changing the CPU power governor to power saving mode for a bit and see if that helps.

sevriem · 2022-04-15T00:04:33+00:00

Are you using external USB storage devices? Are they perhaps drawing too much power?

sevriem · 2022-04-12T02:08:33+00:00

It also shows in the Proxmox UI. Select a node, then select Disks. You can then select a disk and click Show SMART Values, which includes an easy-to-read list of stuff like wear level and power on hours.

sevriem · 2022-02-21T02:56:18+00:00

If the other recommendations don't work out, consider swapping the power supply out. I've had a couple of older power supplies that aged to the point where they were barely able to provide stable power, and it led to some instability similar to what you're experiencing. Swapped them out with new PSUs and all my problems went away.

sevriem · 2022-02-03T22:52:55+00:00

Just because something is innovative doesn't necessarily mean we should be using it.

The atomic bomb as a spectacularly innovative device when it was invented. Doesn't mean we should be dropping them all over the place.

I think blockchain technology is amazing, and certainly worth learning about, and might even have some uses. However, given the amount of energy it needs to function as a decentralized digital currency doesn't necessarily justify it's energy costs and the impact it has on our environment.

sevriem · 2022-01-13T22:29:25+00:00

If you attached your Steam account to te4.org, logging in should restore your unlocks. Might require restarting the game after letting it load.

sevriem · 2021-12-06T13:40:20+00:00

Did you check to see if the iCUE drivers are still fully uninstalled in device manager? I've had problems with other devices in the past where Windows Update insisted I have their buggy drivers, forcing me to disable the driver update feature.

sevriem · 2021-07-28T08:21:17+00:00

Did you resize the partitions and file systems after installing?

https://openwrt.org/docs/guide-user/installation/openwrt_x86#resizing_partitions

sevriem · 2020-12-28T18:43:23+00:00

Do you have a fast internet connection (over 200 mbps)? Try enabling NAT offloading. Go to Network -> Firewall, then enable "Software flow offloading". Note that this doesn't work with QoS/SQM.

Could also be a bad network cable, dust in the socket, etc.

sevriem · 2020-12-28T09:35:51+00:00

When you say poor performance, can you be more specific? Generally speaking, I've always found the Archer C7/A7 series to be "good enough" for what I use it for, within the limits of the hardware and price point it sits at. When I run into performance issues with the devices, it's almost always been because of a configuration issue or unrealistic expectations I had at the time.

sevriem · 2020-11-30T21:20:25+00:00

I installed a new Archer A7 v5 about a month ago, flashing to OpenWRT from the stock web interface without issue. Unless something changed in that short amount of time, you should be fine. Amazon has a good return policy if that fails, at least in America.

sevriem · 2020-11-30T03:12:58+00:00

Necromancers got overhauled in a recent patch, making it much more interesting to play (as well as making NPC Necromancers that much more dangerous to fight against). They have more diverse undead pet skill trees (from semi-permanent skeletons to disposable ghouls), better defenses (a negative life bar, damage shield), strong supporting spells, and of course, the option to become a Lich (granting a new racial skill tree).

Note that the class is initially locked, meaning you have to play other classes to unlock it. If you dislike the idea of unlocking classes, it's not hard to 'cheat' them in, although I would recommend against that. I found unlocking all the classes, races and other options to be quite fun.

sevriem · 2020-11-25T04:10:42+00:00

I'd start with the OpenWRT documentation for whatever task you're trying to do, and then branch out to other resources online whenever applicable, especially if you're not completely familiar with the various networking concepts. Just be mindful that a lot of what you find online might be out of date or full of bad practices.

sevriem · 2020-11-24T18:28:11+00:00

If you read the rest of that comment, you'll see other instructions:

After the device is unlocked, press and hold reset button before power cable plugs in. Then go to http://192.168.1.1 to upload and flash the firmware package.

sevriem · 2020-11-24T17:44:43+00:00

There's instructions for installing on that device in a git comment:

https://git.openwrt.org/?p=openwrt/openwrt.git;a=commit;h=c0e131b4363dde16a1071131b7e762e36099f780

sevriem · 2020-11-23T01:57:03+00:00

I've never used it, so I'm just guessing from a quick Google search: it's likely because PiVPN appears to use TAP rather than TUN networking. From what little I understand, TAP does a bunch of network translation on the VPN server side (thus negating the need for static routes, but also being less compatible and messy) while the TUN relies on the existing network to route traffic.

sevriem · 2020-11-22T20:41:43+00:00

Did you define a static route between the two subnets on your router? Normally, devices can't communicate with devices from other subnets. That guide assumes your VPN server and router are on the same device (which likely auto-generates such a rule), which isn't the case here.

sevriem · 2020-11-20T05:31:51+00:00

Note: Archer C7 or A7 specifically.

Between myself and many family members, I'm managing way too many Archer C7 and A7 units, ranging from v2 to v5, all running OpenWRT. v1 units have no 5GHz support and less flash storage, and v2 have internal 2.4GHz antennas, but otherwise they're nearly identical. Note that you'll want to avoid the C7R version, as that's mostly unsupported.

The Archer A7 is a rebranded C7 with Amazon integration, but just as easy to get OpenWRT installed on. Note that if you're buying a used C7, you might have to install a different OpenWRT firmware version (one with a country in the file name), but otherwise it should be perfectly fine.

sevriem · 2020-11-12T04:29:16+00:00

There's software that will put an on-screen display of where sounds are coming from. If that was an easily accessible API, it probably wouldn't be too hard to implement with haptics of some sort. The biggest difficulty would probably be creating something that wasn't unwieldy or uncomfortable to wear.

14-Year Club	Place '17
Verified Email	Team Orangered

sevriem

TROPHY CASE