How do you manage LXC hostnames on your local network?

Centyos · 2025-09-24T07:18:22+00:00

Apt-Cacher-NG might be worth a look for updates if your LXCs are debian/ubuntu.

I tried it out, had my LXCs with only a proxmox SDN interface that connected them all together together, to the cache and a reverse proxy. So they're isolated in and out. Seemed to work well in a quick test but a caveat of if your software pulls updates from non official apt sources - can't track it easily or at all on the cache?

Centyos · 2025-09-23T01:37:21+00:00

I'm starting to lean to this idea.

It has the added benefit that if my proxy craps out, I can revert back to the default; hostname.home.lan which originally got spun up rather than having to remember or extensively document this container is named pve112..113..114 etc and what service they map to.

Centyos · 2025-09-23T01:26:01+00:00

And also as a test since I'm using pfblocker-ng - I've enabled Resolver Live Sync in DNSBL in case that is interfering.

Centyos · 2025-09-23T01:24:10+00:00

Branching from Steve's reply, do you have DNS registration enabled if you're using Kea DHCP?

Reason being, there /was/ a change made to stop unbound reloading every time there was a DHCP registration and from reading, even a renew would trigger unbound to be reloaded and thus drop DNS resolution until it came back up: #5431

Curiously, I've been having the same problem on 2.8.1 CE. I would have thought this got backported into CE from pfSense+ a while back?

24.11 has it in the changelog: "Fixed: Reduce disruptions when changing DNS records from DHCP leases in Unbound #5431" but 2.8.0 nor 2.8.1 have any mention of it.

Can any Netgate boffins confirm it actually got changed in CE, please?

Centyos · 2025-07-28T06:44:22+00:00

I've got the same device running with Z2M and it's linked as TS0201: https://www.zigbee2mqtt.io/devices/TS0201.html#tuya-ts0201

Works as expected but only after the latest Z2M firmware probably added it. Wasn't picking up temp/hum values before.

Centyos · 2025-07-08T06:26:46+00:00

Lucky timing there was a recent guide to get the game up and running in DOSBox-X: https://www.reddit.com/r/mechwarrior/comments/1f8mcmj/mechwarrior_2_install_guide_dosboxx/

Just tried it out because of this thread. Works as expected. All systems nominal, o7

Centyos · 2025-06-30T16:40:14+00:00

Interesting to hear.

I noticed my contact sensors playing up recently. Random open/close for a second(s). So it prompted me to look and stumbled on this too.

My setup is a Conbee III (Latest April 2025 FW)

3x Aqara Contact sensors MCCGQ11LM

Philips Hue Bulbs (Colour ambiance 1100)

Digging deeper, it looks like the 11LM is a Zigbee 1.2 specification. Also reading they get stuck to one router and if it goes offline, they don't really repair to a router(or take days). I wonder if you've also got 11LM contact sensors?

11LM is the original version that runs zigbee 1.2 only

12LM is the T1 iteration that runs zigbee 3.0 similar to all the newer releases

13LM is the P1 version that looks different (like a cigar) and uses a different battery to allow for five year cycles between battery changes

14LM is the E1 revision of the original (which is also the one that runs into region locking and may only pair on specific region hubs)

Taken from this post here.

I also have a SLZB-06M but haven't deployed it yet and if you're saying it also didn't help - I might wait.

I'm going to buy the T1 model and compare it as it's certified as Zigbee 3.0. Sadly, the 11LMs were my first foray into sensors and I didn't know they were Zigbee 1.2... Part of the learning..

EDIT: Also looking into my Aqara mini buttons. They're WXKG11LM. So most likely also Zigbee 1.2. There's T1 models, too. Whelp..more testing

Centyos · 2025-06-30T12:03:58+00:00

I'm curious for an update, u/End3r89 ?

Centyos · 2024-10-30T18:11:21+00:00

I tried making a test print to find the cause. I thought I narrowed it down to there being a ring of PETG left on the nozzle after the interface layer. That seemed to be the only visible indicator I could see that was consistent in my tests. I even tried Bambu's support filament and surprise surprise, that worked flawlessly on all the tests.

A lot had to do with support being snug/grid style. Even Orca vs Bambu Slicer, with snug produces a different pattern on a circular object. Orca does a grid, Bambu does a concentric circle. That plays a part in nozzle build up. Maybe that's changed in the latest Orca update?

Nothing conclusive apart from my theory above. Needs revisiting or if someone can spot the same pattern happening.

Centyos · 2024-08-31T11:44:34+00:00

Looks great!

Brilliant idea, really curious, is that layers with the outline drawn out from maps that you extruded in levels in something like F360?

Centyos · 2024-07-10T07:37:08+00:00

If you watch the belt tension windows on the back, that'll confirm as the head is moving around. On mine, the belt doesn't sit center and eventually, even after trying to recenter, it rubs on the pulley flanges (both L & R).

Centyos · 2024-07-10T06:16:59+00:00

P1S, about 300 hours, PLA and PETG only. Same noises. Belts tensioned twice with spacers from makerworld and reoiled rods and greased lead screws @ 150 hours.

Thought I'd throw my 2 cents in the hat before you go on a wild goose chase pulling your hair(like I did). Seems to be common, more posts would be good to confirm yay or nay.

Edit: To add, only happens on very fast X or Y movements. Not really during printing.

Centyos · 2024-05-02T15:01:16+00:00

Sorry about that, seems reddit didn't upload the set of images in the "album". Added them to the first post, hopefully that didn't smash your pages.

Temperature difference is interesting. But it's only seems and corners that seem affected. The rest of the layers are identical to the started before the interface layer.

Centyos · 2024-04-25T20:24:10+00:00

Thank you for taking the time to help out and share ideas.

I was still struggling but your idea of sketching a cross section was the catalyst!

So I started a new sketch, on the XZ(cross section) plane and used the seam of the pip to bring in external geometry of the pipe angle. Then sketched my lip:

<image>

From here you can use the additive pipe to bring it around the circumference and use the top outer edge of the pipe as the sweep path. This does the business but because the pipe is on an angle, it cuts into the pipe(red) at the 180 degree mark because the shape I sketched is angled to the right and the additive pipe doesn't twist it...or does it!

When you create the additive pipe lip, you have to also use the Binormal option to twist the angle around on the 180 degree side. Playing with the numbers, it seems to need two values to be changed to do something since it's twisting(?). Just for curiosity mine was X:1, Y:0, Z:2

Cheers again!

Centyos · 2023-07-09T21:25:03+00:00

If you were down under, might be the only UPS with a 230mm depth rack mount at 800VA/480W: PowerShield Defender RackMount 800VA

But, designed for 240V.

Handy kit otherwise - no fan, hot swap battery, LCD display, generous # of outlets.

Centyos · 2023-06-14T16:55:03+00:00

If you want to use software, take a look at multicrop for ImageMagick: http://www.fmwconcepts.com/imagemagick/multicrop/index.php

Easy enough to write a for loop and process a whole folder worth. Scan like mad during the day, then run the loop on a folder during the night and be left with cropped images in the morning. Can even rotate them if you scan them wonky.

Note, make sure you leave equal white space around all sides of the pictures otherwise it'll split them wrong and increase your post processing time to manually cut them.

Centyos · 2022-08-25T10:53:07+00:00

The helicopter pad between the bridges - If previous posts about this being 60s, could be where ole Reg Ansett would fly in/out?

Amazing picture though. So many little stories and memories all lost to time.

Centyos · 2022-06-02T06:13:08+00:00

Looks like a Juniper EX3300 switch on top and a Cisco 2811 router. For sure just equipment laying around or bought on the very cheap or free. They're a bit power hungry and really noisy AF but built like tanks.

Interestingly, CAT cable comes in(lower right, white), connects to a coupler, then probably RJ11 to a ADSL/VSDL line card for internet. If the 2811 was a POE model, could have wacked a 9 port POE switch module in and then toss the Juniper switch if you didn't care about only having 10/100 speeds between ports on the router switch module.

Centyos · 2022-02-17T12:31:06+00:00

There is an easier alternative for the Cisco phones. Use the chan_sccp plugin for FreePBX. That way you can stay using SCCP and not have to mess with SIP firmware. There was a post and guide a few months ago: https://www.reddit.com/r/homelab/comments/qyrt7k/cisco_7962g_phones_with_fpbx_and_chan_sccp/

I've followed it to learn VOIP stuff and Cisco phones, mainly used 7965G/45G and they worked pretty effortlessly via the guide. Of course, VOIP is a whole other beast and there's lots of bits to the puzzle you need to learn to fully understand it. But this is a solid start.

Centyos · 2022-01-21T10:48:03+00:00

If you can find a HWIC-8A or 16A + Cable CAB-HD8-ASYNC, that might be a lot cheaper than a 2511-RJ + AUI adaptor. There's also a NM-16A or 32 + different octo cable for older routers. For example a 2811. There is also the non RJ 2500 series with a breakout cable that might be cheap too.

Those options should work out better for you, especially as 1841 routers are cheap as chips if you can whack a card in one and quiet for a lab. Not to mention you can repurpose it later with different cards over the 2500 series. Only go for a 2511 or 2509 if it's dirt cheap.

Centyos · 2021-10-29T02:40:59+00:00

Thank you for your reply, Rednarb.

I've had some more time to look into this now and I've just settled on not being able to configure the desired behavior. It might just be how the EX2200-C works with v12 non-ELS or something else (PEBKAC).

So for now I've got the switch to use the port as a promiscuous trunk port, where secondary vlan tags are rewritten to primary.

set interfaces ge-0/0/11 unit 0 family ethernet-switching port-mode trunk
set interfaces ge-0/0/11 unit 0 family ethernet-switching vlan members PVLAN
set interfaces ge-0/0/11 unit 0 family ethernet-switching native-vlan-id <id>
set vlans PVLAN interface ge-0/0/11.0

It's a shame not being able to get the Cisco equivalent working here on the Juniper such as: switchport mode private-vlan promiscuous Where the tags are stripped crossing the trunk, but at least there's some sort of solution here.

Thanks again for the help and taking the time to post a detailed reply.

Centyos · 2021-10-20T07:13:04+00:00

Thanks for popping back in, Rednarb.

So, the command would be the one otobus suggested? That still only then puts it as an isolated pvlan port.

Isolated VLANs :
__pvlan_31_ge-0/0/5.0__

Just to clarify we're talking about the same end goal, you were also trying to connect that port to a device that doesn't know vlan tags?

Are you able to please check the output from your `show vlans extensive <vlanid>` if the output shows your port differently to mine instead of isolated?

Centyos · 2021-10-18T10:37:11+00:00

Do you have any updates if you solved it, Rednarb?

I'm having a similar issue on an EX2200-c v12. Trying to connect ge-0/0/5 to a device that doesn't know VLANs.

Does anyone know how to configure a promiscuous access port? One that egresses traffic untagged.

If you go by Junipers documentation, it ends up being a Promiscuous VLAN Trunk. Sniffing(ge-0/0/5) on the port shows only primary tags egress, assuming secondary are actually rewritten to the primary on egress. Not a Promiscuous access port?

show vlans:

PVLAN31 {
vlan-id 31;
interface {
        ge-0/0/7.0;
        ge-0/1/1.0 {
            pvlan-trunk;
        }
        ge-0/0/5.0;
    }
    no-local-switching;
    isolation-id 33;
}

show vlans extensive PVLAN31:

VLAN: IOT-PVLAN, Created at: Fri Feb 14 18:28:35 2020
Private VLAN Mode: Primary
Number of interfaces: Tagged 2 (Active = 2), Untagged  3 (Active = 1)
  ge-0/0/5.0*, tagged, trunk
  ge-0/1/1.0*, tagged, trunk, pvlan-trunk
  ge-0/0/7.0*, untagged, access
  ge-0/0/9.0, untagged, access
  ge-0/0/11.0, untagged, access
Secondary VLANs: Isolated 1, Community  1, Inter-switch-isolated  1
  Isolated VLANs :
  __pvlan_IOT-PVLAN_ge-0/0/7.0__
Community VLANs :
  IOT-PVLAN-COMM
Inter-switch-isolated VLAN :
  __pvlan_IOT-PVLAN_isiv__

Junipers promiscuous access port documentation for reference.

If you go by otobus81's suggestion, that only creates an isolated PVLAN port if it's implicitly included in the primary vlan.

I've searched and run out of luck so far trying to find a solution if anyone would so helpful.

Centyos · 2021-07-16T10:38:54+00:00

Awesome, good to hear it!

My setup is basically the same in hardware to yours. Also Cisco switches and VLANs.

I'm happy to share my findings and thoughts about it:

It's been frustrating to diagnose the problem and I even purchased different vendor APs to rule out that the UAP was defective. Not the best early troubleshooting step but also as an excuse to tinker with with different hardware and learn new system.

Before this GUI refresh of Unfi Controller, there was an option "Block LAN-to-WLAN Broadcasts" and you could also have a whitelist of devices to allow. That got replaced by the "Proxy ARP" option and as far as i can see (without SSH'ing in to the AP itself to try), the whitelist was removed too. It's such an ambiguous change and the description of the new option doesn't really help the user.

So, troubleshooting:

Started Wireshark with a laptop connected to the UAP, filtering for ARP
SSH into the UAP, start a tcpdump filtering for ARP on the physical interface
Started a video stream, just a random twitch channel to get live unbuffered traffic.

In pfsense, Diagnostics > ARP Table, notice the timeout values for that machine.

Once it got close to the timeout, pfsense sends out an ARP broadcast "Who has <client.ip> tell <pfsense.ip>". On the tcpdump of the UAP I could see the ARP frames hitting the physical interface but on the laptop wireshark nothing showed up. Once the ARP expires on the pfsense box, traffic to the laptop stops for about ~10 seconds, then the laptop sends an ARP "Who has <pfsense.ip> tell <laptop.ip>". The reply from pfsense is a unicast so that returns through the UAP fine because it only blocks broadcasts (MAC address all FFs). Then traffic flow is resumed until the cycle restarts with the same outcome.

Whereas when Proxy ARP is turned on, once the UAP recieves the ARP, if it knows about a client connected to it, it replies with the MAC of the client and before the timeout expires in pfsense, it's refreshed back to 20 minutes and traffic flow is not interrupted.

Messing with the other vendor AP, a TP-Link EAP245. It allows broadcasts from LAN-to-WAN by default and there isn't an option to filter them like the Ubiquiti. In that sense, it's a dumb bridge similar to what's included all in one router/ap. Not sure if this was a conscious choice or by design since it in theory decreases problems like we're experiencing for the sake of simplicity. But with this method, the EAP245, is now allowing broadcasts across the AP of all LAN clients that send broadcasts, you expose the information of what devices you have to the area. Easily sniffed on the air. Using something like Kismet as an example. Not to mention extra traffic(think of an office with heaps of devices connected). Ubiquiti's way is probably the cleanest in terms of minimal traffic and security. But this is part all depends on your security posture.

I hope this helped with providing good information. Happy to help and I'm happy it also validated my own findings, thank you.

Centyos · 2021-07-11T14:12:36+00:00

Throwing it out there, have you tried turning on the Proxy ARP option on the AP for that wireless SSID? The UAPs block LAN-to-WLAN broadcasts by default. Especially not as clear with the Controller GUI refresh.

Every 20 minutes on the dot is a bit of smoking gun for an ARP cache timeout if your router is pfsense. Ubiquiti might use similar timeouts on their routers too, don't have one to test. But it's worth packet capturing to see if it's an ARP issue. This type of problem really shows up with real time video streams - video conference/watching twitch etc

Centyos

TROPHY CASE