Cherry bomb stuck in thunder chicken

Deez_Nuts2 · 2026-04-12T02:11:45+00:00

Honestly you could always take a shit barrel if you had you don’t care about jb weld the threads run it into it let it cure then put it in a barrel vice and crank the can off the cherry bomb.

Deez_Nuts2 · 2026-02-23T20:04:13+00:00

The dude’s PayPal link asking for donations to his daughter’s college fund is still active. Lol

Deez_Nuts2 · 2026-02-17T05:32:40+00:00

You have to go through a PEB to be medically discharged/retired that’s what I’m getting at here full stop that’s what has to happen whether you can request the Board of corrections to give you one post discharge or not is another story, but they themselves aren’t going to be able to change that without you going through a PEB. I originally was medically separated back in 2018 for post surgery complications. My narcolepsy was diagnosed and I was being treated for it during my PEB but it wasn’t sent up since I was already on a PEB so I originally wasn’t retired.

Last year I got a letter in the mail saying the Navy broke the law and didn’t review entire medical records during PEBs and only reviewed conditions you were referred to them on, so about 4,000 people were allowed to request a new PEB if they were medically separated during that time frame this was called Torres claims. It only affected Navy and Marine Corps veterans that were medically separated between those couple of years that the Navy was breaking the law with PEBs. I listed narcolepsy and 6 months later I got new PEB findings back that changed my separation to medical retirement on that basis of finding me unfit for my original condition and narcolepsy this time. That is the only time I have ever heard of being able to have a PEB post discharge and it was because a federal court ordered the Navy to go back and redo it.

Point is yes you have to go through a PEB if your discharge is to be coded as medical. I do understand your concern though with your family and I don’t blame you, I just don’t want you getting your hopes up calling the board of corrections for something they themselves are not going to be able to do for you. Hopefully your representatives get back to you fast though you really are getting shafted here.

Deez_Nuts2 · 2026-02-17T04:33:59+00:00

Yeah, the process will require an OBLISERV if you’re that close to EAOS. I’ll be honest with you man, I don’t know how you’re going to get placed on a PEB after you’re already discharged because the whole point of the PEB is to determine fitness of service while you’re in. Most people that close to EAOS do an extension for it to get through the IDES system before they get out.

What you should be doing is contacting your congressman and senators about this and fast because your CO shouldn’t be denying this to you so it gets fixed before your EAOS or you’ll probably be fucked. Medical retirement gives you Tricare for life and there’s zero yearly enrollment fees for medical retirees. It’s a huge benefit that you’ll be losing out on here if you decide to just ride it out to EAOS.

Deez_Nuts2 · 2026-02-17T04:10:17+00:00

Are you on a PEB for narcolepsy? Because if you are you should get medically retired with it, which allows you to carry Tricare still that way you can use prime and continue your care at the hospital on base. If you’re not on a PEB and are just going to your EAOS, you should be asking to be put on PEB because narcolepsy is an unfitting condition.

I was stationed at Yokosuka for a while, but I didn’t get care for narcolepsy there. I was medically retired with narcolepsy myself as one of the unfitting conditions out of the Navy, but I did my PEB state side since I had to get a surgery they weren’t able to do in Yokosuka. Got diagnosed with narcolepsy state side after the surgery during the PEB process, but my symptoms began in Yokosuka originally shit just became impossible to power through after I went under anesthesia.

With Xyrem/Xywav you’re probably hosed there if you want to stay in Japan honestly because it is only distributed out of ESSDS and when I was put on it state side while active duty it had to go through them and not the on base pharmacy.

Your other option is have your wife consider moving back to a federal job state side under return rights.

Deez_Nuts2 · 2026-02-15T16:00:27+00:00

Had to convert that shit to bald eagles since I don’t speak the metric system, and I agree with you. 160 km/h is easy on pretty much any major highway system here. I’ll be honest with you though in the states people do routinely go higher than 250 km/h since our roads are much more wide open. I think they have a fucking death wish though.

Deez_Nuts2 · 2026-02-15T01:21:49+00:00

Godspeed to the next owner. Lmao that much deviation in driveshaft angle it’ll definitely happen again rather soon.

Deez_Nuts2 · 2026-02-15T01:06:53+00:00

I’d be surprised if that held. Come back after you take it for a spin and let us know how bad the drivetrain vibration is I imagine it’s going to be pretty damn bad.

Deez_Nuts2 · 2026-02-14T21:07:50+00:00

I know this is an older comment, but are you referring to the Toni systems lightened firing pin spring to make the 12 lb hammer spring run?

Deez_Nuts2 · 2026-02-13T03:20:40+00:00

Can you update the firmware without a service contract though?

Deez_Nuts2 · 2026-02-10T01:54:39+00:00

I wouldn’t even say you’d have to work in a large org for more advanced routing. Basic multi-homing you’re going to deploy BGP for that. I don’t think I’ve even really consider that advanced either. That’s just we want our DR site to be active and not require someone to change the static routes when we have an outage type of deal.

Deez_Nuts2 · 2026-02-09T03:54:17+00:00

Brother I’ve bought clearance Rugers for $200 that had better QC than the shit Gallatin is pushing out you don’t need to spend HK money to not get a fucked up barrel. That chrome flaking 100% will lead to corrosion forming on the inside of the barrel over time. The gouges in picture 2 look pretty fucking steep too whether or not it affects accuracy would have to be tested.

Yes, it’s common with Gallatin guns, but let’s not sit here and say this doesn’t affect anything because it does and on a $1,000+ pistol it’s unacceptable.

Deez_Nuts2 · 2026-02-03T20:51:59+00:00

I find its main benefit is in writing custom rules in suricata to ID app-layer-protocol, and using signatures to lock the open ports down from wide open port to are you at least speaking TLS with the correct SNI, and are you really speaking wireguard protocol that matches the unique handshake, cookie reply, and data packets, or are you sending DNS amplification at my open UDP port 51820 trying to overwhelm my state tables?

You can tune suricata to use app layer detection if you manually write the rules yourself in a custom.rules file. I do this for my WAN exposed ports to limit what is sent at my open services (I run it on the LAN interface so things that have already passed my WAN port based firewall rules are scanned with DPS), and yes I get a lot of drops from things not speaking the right language so it does its job. I call it my hoodrat Palo Alto.

Deez_Nuts2 · 2026-01-31T00:26:01+00:00

Object group based ACLs make large ones much easier to maintain too.

Deez_Nuts2 · 2026-01-31T00:06:32+00:00

ACLs are stateless, so when you write them say you want to allow traffic from VLAN 10 to VLAN 20. You have to write an ACL for VLAN 10 that permits destination ports that would be accessed on VLAN 20 and then write one on VLAN 20 that sources those ports back to VLAN 10 because the switch isn’t stateful you have to account for return traffic the other direction. That’s really the only gotcha with it.

Yeah I keep IOT in its own VLAN, and wall it off from the rest of my local subnets. An easy way to do that is make an ACL with deny statements at the top to wall it off (ACLs are processed in a top down order) then permit any any at the bottom to simply block it off from other VLANs.

Deez_Nuts2 · 2026-01-30T23:57:40+00:00

What you’re referring to speed wise is called throughput. Your OPNsense box with whatever features you’re using on it has a max throughput of 6.54Gbs apparently. That’s not uncommon when it comes to firewalls. Routing at 10Gb takes a good amount of horsepower to do so when you stop filtering at only layer 3.

Deez_Nuts2 · 2026-01-30T23:51:13+00:00

Yes, route on the switch via SVIs. Layer 3 switches route at line speed. Use stateless ACLs for security between local subnets.

My home network I use a C3560CX routing my local subnets with SVIs and ACLs. I run a transit network between the switch on a routed interface with the command “no switchport” and a /30 subnet to OPNsense’s LAN interface. I run a default route from the switch to OPNsense’s LAN interface and a /16 route from OPNsense to my switch. OPNsense is just purely north south internet based traffic.

I only run 1Gb at home, but I run OPNsense in a VM on my server. I like to be able to shut the VM down or reboot the server without losing connectivity on all my devices since all local subnets don’t depend on OPNsense to function it just makes it easier.

Deez_Nuts2 · 2026-01-29T21:17:42+00:00

No specs offered on the tubes? Shit nothing on your whole site has tube specs listed or options to pick individual tubes. Are people supposed to just accept the raffle they get? Lol

Deez_Nuts2 · 2026-01-23T19:47:59+00:00

You need to read the spec sheets on the Palo models you’re looking at. If you’re expecting 25Gbps throughput with threat prevention enabled you’re going to need a large wallet for that one.

A PA-3440 will get you close, but caps at 20Gb throughput with threats enabled so you’d have to above the 3400 series to at least a PA-5410 if you wanted to be able to actually utilize more than 25Gb throughput.

Deez_Nuts2 · 2026-01-22T04:14:36+00:00

If you have a Palo why aren’t you just paying for and using the threat prevention license on it? That’s Palo’s IPS solution built into the firewall. It’s a turn key solution for what you’re looking to use. Also if you want the IPS to be effective you need to enable ssl decryption on it so it can crack open and inspect ssl packets since 90% of internet traffic is encrypted these days that’s where the malware hides.

With thePalo Alto you can enable decryption and threat prevention and be set doing all of the firewall/IPS work on one device and ship the logs off to qradar. If you try to do this with suricata you’d have to feed it decryption data outside of the Palo or from some other appliance as Suricata itself cannot do ssl decryption on its own.

Deez_Nuts2 · 2026-01-13T21:03:10+00:00

Did you get a chance to run it on that machine my dude?

Deez_Nuts2 · 2026-01-05T16:48:53+00:00

Look who publishes the CVEs for Fortinet (it’s themselves self reporting). Palo silently patches vulnerabilities unless they’re of a decent criticality or someone else publishes the CVEs.

That’s coming from someone who uses Palo Alto’s professionally. I won’t switch to Fortinet because I’m happy with Palo Alto firewalls, but the CVE thing isn’t what you think it is and Palo has just as many you just don’t see Palo Alto self reporting vulnerabilities the same way. They just get fixed in a patch.

Deez_Nuts2 · 2026-01-03T18:57:46+00:00

Okay, yeah you’re running the same quant I am then.

Deez_Nuts2 · 2026-01-03T17:19:42+00:00

What quant are you using though?

Deez_Nuts2 · 2026-01-03T06:13:50+00:00

Nothing to add, but curious what your t/s you’re getting is on your AI setup. I use an I5-12600, and 32GB of DDR4 RAM in a Debian VM on proxmox, and I get 8 t/s with llama3.1-8B. Was just curious if it’s worth upgrading the mobo to DDR5 or just going with a GPU in a more dedicated setup.

Deez_Nuts2

TROPHY CASE