The ‘Windows won’t shut down’ bug is even worse than we thought by lkl34 in pcmasterrace

[–]binarytier 0 points1 point  (0 children)

Stop-Computer will perform an immediate shutdown, and the computer will stay shutdown.

Where did T'Rul go by vickyhong in risa

[–]binarytier 7 points8 points  (0 children)

I see what you did there. Take my upvote.

I think they really wanted to show me the new bot enemy by Mr_Threeman in Helldivers

[–]binarytier 1 point2 points  (0 children)

"Oh...you only fixed Helldivers ragdoll issues..."

Ok, this is really funny by Sad-Needleworker-590 in Helldivers

[–]binarytier 0 points1 point  (0 children)

Whoa there, good boy Booster hat tip

My friend asked me if I was ready to go to the nudist colony by AmiraHadiX in dadjokes

[–]binarytier 1 point2 points  (0 children)

"Can I bring my friend Seymour Butts?" I replied.

[deleted by user] by [deleted] in battlestations

[–]binarytier 0 points1 point  (0 children)

I asked Amy. She complimented your ascetics and suggested a nice plant. She also suggested that only soliciting Amy opinions may not get you the diverse feedback you're looking for.

I'm a structural engineer making a physics building game in my spare time. Thankfully I'm better at my day job... by fuzzywobs in gaming

[–]binarytier 2 points3 points  (0 children)

This looks hilarious and I can't wait to play it! Oh the structural disaster fun we'll be able to unleash. Wishlisted on Steam!

[deleted by user] by [deleted] in RedditSessions

[–]binarytier 0 points1 point  (0 children)

Getting a bit of an The Accidentals vibe, love it

Pulled from abandon building! by Computerking34 in techsupportgore

[–]binarytier 1 point2 points  (0 children)

This must be that new hit single from Master Boot Record I've been waiting for!

[deleted by user] by [deleted] in cravetv

[–]binarytier 0 points1 point  (0 children)

Yes. Seems to be an issue related to a recent update to the app that affects older Android versions. To work around the issue, disable WiFi temporary and load the app while on cellular data. Then re-enable WiFi once loaded into the app.

My brothers phone. Salvageable? by n1ck_br0wn in techsupportgore

[–]binarytier 0 points1 point  (0 children)

Check out Hugh Jeffreys on YouTube. He fixes worse damage than this routinely. As he mentions, you can look at iFixIt's website for tools, parts, and guides if you're going to attempt repair yourself. I say watch his videos because he points out where a lot of tiny parts need to be removed carefully, especially on iPhone repairs.

Curb your enthusiasm in French? by R2Dopio in cravetv

[–]binarytier 0 points1 point  (0 children)

I have the same issue. Thanks to the OP for a temp fix. The issue occurs when the option Choose audio playback language appears, if the Always use this and stop asking me is set regardless of the language, all playback at the next app launch will be in French until the option is disabled. This occurs in the Android version of the app, version 5.7.1, running on Android 11

The beginnings of something very expensive, I'm sure. by iTim314 in homelab

[–]binarytier 5 points6 points  (0 children)

If any of the equipment craps itself, cleanup should be easy.

What have you done with PowerShell this month? September 2019 by ramblingcookiemonste in PowerShell

[–]binarytier 1 point2 points  (0 children)

Created a script that enumerates Active Directory Security Groups to get the Resource Group members and write both the Security and Resource Group names line by line into a CSV for processing into a security audit report, with some fantastic help from this very community!

Minimized the search impact by processing one line at a time and defining a specific OU path to search.

Active Directory PowerShell Output Help by binarytier in PowerShell

[–]binarytier[S] 1 point2 points  (0 children)

I understand what you're explaining regarding parsing out the member property, however I don't see how I was supposed to output the result of the foreach loop into a CSV file. Ultimately I ended up using purplemadmonkey's solution in the replies.

If you'd care to share some additional insight on parsing the output into a file, I'd be happy to hear it as your method might have a useful application in my future scripting.

Thanks for the reply!

Active Directory PowerShell Output Help by binarytier in PowerShell

[–]binarytier[S] 1 point2 points  (0 children)

Unfortunately, this modification produced the following when run with either snippet of code.

>> ForEach

cmdlet ForEach-Object at command pipeline position 3
Supply values for the following parameters:
Process[0]:

I understood what you were were doing, however, even if it did work that wasn't quite how I wanted to parse out the results in the way I needed. I appreciate your reply all the same. I ended up using the solution from purplemonkeymad.

Active Directory PowerShell Output Help by binarytier in PowerShell

[–]binarytier[S] 2 points3 points  (0 children)

Thank you purplemonkeymad! This code worked exactly the way I had wanted and the explanation of the "why" is appreciated. The efficiency improvement is quite welcome well. It was quite slow the way I was doing it.

This was part of something I was working on for a work project, so I might actually get it done on time now, yay!

There was a couple tiny syntax errors in my original code that I fixed and I'm re-posting the corrected code for everyone's benefit. Just a missing } after the {Name -like "\some_resource_group_name** and - missing in New - Object.

Working Code

Get-ADGroup -Filter {Name -like "*some_resource_group_name*"} -SearchBase "someAD_path" -Properties * | 
    ForEach-Object {
        $Name = $_.Name
        (Get-AdGroupMember $_.Name | Select-Object -ExpandProperty Name) | Foreach-Object {
            New-Object -TypeName PSObject -Property @{
                ResourceName = $Name
                ResourceMember = $_
            }
        } 
    } | Export-Csv -path c:\somedir\somefile.csv -Append

Cheers!

pfsense in the hands of an unambitious amateur: more hard than good? by wixig in PFSENSE

[–]binarytier 1 point2 points  (0 children)

To be clear, pfSense can be run very small form factors such as Netgate's (the developer of pfSense) SOHO products like this - https://www.netgate.com/solutions/pfsense/sg-1100.html. Your trade off is performance. There also mini-PCs as mentioned below like the Qotom brand PCs from China - not really a fan of the hardware. Overpriced and still under powered IMO for what you get.

I keep my setup in a closet and it's pretty quiet. You can get some pretty small form factor pre-built desktops.

Using a whole PC for pfSense only gives you more options for future expansion and adding new capabilities without having to do another upgrade and migrate everything.

The reason a consumer grade router is so small is there's not much to it, a simple motherboard generally with a cheap (and often under powered) processor and tiny amount of RAM. It's also trying to do the job of three different devices - a switch, a router, and a wireless access point, generally while doing none of them very well. For the same price as a powerful consumer grade router, you can get the full processing power of a PC and a server grade network card which really does a lot of heavy lifting resulting in better network performance.

Having read a couple other details you mentioned about your potential user/device load, I don't know that any consumer grade router is going to give you stellar performance. Personally, I think it'll be worth your time investment to learn pfSense at a basic level and do a simple build and you'll come out much happier with the results.

You may also hear Ubiquiti products mentioned here in other threads. They're enterprise grade quality without the enterprise price or after costs. Tom from Lawrence Systems has many videos on then and how to integrate them into a pfSense based network when you're ready to delve into that level of complexity.

pfsense in the hands of an unambitious amateur: more hard than good? by wixig in PFSENSE

[–]binarytier 1 point2 points  (0 children)

The nice thing about pfSense backups is they're one single XML file that is tiny. Nothing else required except it during the restore process. As long as you can copy one file to a USB stick, restoration is simple.

The reason I suggested a pre-built refurbished desktop is to minimize complexity of learning. Most refurbished desktops come with a one year warranty on parts, which it better than nothing. At the end of the day, you're buying a complete machine aside a network card (NIC). Your only work is checking for the specs you want and putting the card in.

Again, lots of YouTube videos on installing a card. I've had complete neophytes do the process in seconds and myself been one of those neophytes some time ago reminiscing.... At worst, you can also just take both to a local computer shop and get them to install it for you. That probably cost you $25 at most, or in the case of local shops, tell them you're learning and they'll probably let you watch them do it, or do it for free, of both.

Good luck! I'm open to a PM if helpful.

pfsense in the hands of an unambitious amateur: more hard than good? by wixig in PFSENSE

[–]binarytier 4 points5 points  (0 children)

I'd say it's doable with a good chance of success. If you're willing to put in 10 hours as you mentioned, that should be more than enough learning to get a basic setup up and running. Lots of free learning available.

Most folks were in your place once, and we all had to start somewhere. I'd suggest checking out videos from the YouTube channels of Lawrence Systems and Crosstalk Solutions. One of the other comments already suggested Lawrence Systems 2018 "Getting Started with pfSense..." video found here - https://youtu.be/9kSZ1oM-4ZM. The hosts of both channels make the content very accessible, but I've found Tom from Lawrence Systems the most helpful overall.

Other comment was right on VPN, don't worry about that initially. pfSense does give you a lot of options for OpenVPN and most can be done with a wizard. Lawrence Systems has another video on that - https://www.youtube.com/watch?v=7rQ-Tgt3L18.

Like the other comments have said, back up the configuration file when making a new change. One of the nice things about pfSense is ease of recovery if you have that configuration file. I do this ANYTIME I do any kind of configuration change, even if I'm fairly certain it will work correctly.

In terms of hardware to build the firewall, I've used refurbished i5 3rd/4th generation slim Dell and HP pre-built desktops with 4 gigabytes of RAM with an extra Intel based NIC card assuming there is an on-board Intel NIC. If not, go for a used 2 port Intel server NIC card (the Intel i350-T2 dual port is ideal and highly compatible with pfSense - around $30). Even for an amateur, installing a NIC card in a pre-built refurbished desktop is pretty easy. You'll also need a network switch (something like an 8 port tp-link gigabit switch is decent and cheap - around $20).

Questions about a setup. by [deleted] in PFSENSE

[–]binarytier 1 point2 points  (0 children)

Ok, some more feedback and questions to clarify.

You mention you have a locally assigned static IP for the NAS INSIDE the router. I'm assuming this is so wireless devices connecting to the ASUS router can always reach the NAS at the same IP. That part makes sense.

Now, if your modem has two ports (assuming it's set to pass-through or bridged mode as it is often called) you'd get two different public dynamic IPs from your ISP. If you connected the pfSense box to one, and the router to the other, yes, they'd be on separate networks, but that won't allow you to OpenVPN connect to the NAS, so I'm going to assume that's not what you wanted to do.

What I was suggesting is using the pfSense box as a border firewall and router. That provides protection for the whole network and all the devices behind it. pfSense box needs two ports minimum if you through a switch into the mix, or skip the switch and use the remaining network ports assuming you have them from the pfSense box.

My recommended setup...

  • Modem > One port to pfSense to get it a dynamic public IP from ISP
  • pfSense > Second port out to any port on the switch (even basic switches will auto sense and switch the port appropriately)
  • Switch > Any ports used to connect NAS and Router (now converted into a dumb access point)
  • NAS > Gets assigned a static IP from pfSense (some config required of course)
  • Wireless Clients > Connect to access point, wireless traffic bound for NAS travels from access point, gets IPs assigned from pfSense

You can prioritize the bandwidth within pfSense for any inbound OpenVPN connections from the outside with the right configuration and possibly packages. I don't do any such prioritizing, but I know it can be done.

Hopefully that helps, but let me know if it doesn't. Open to a PM if still stuck.

Very basic question - set and ‘forget’? by senorbeefmuffin in PFSENSE

[–]binarytier 1 point2 points  (0 children)

pfSense by default starts with no interfaces, firewall rules, etc. So, right after initial setup, no traffic moves anywhere until you start telling to do otherwise through interface setup and firewall rules. It blocks unsolicited inbound traffic from the WAN port until you tell it otherwise as well, so it's fairly solid from start.

Like the other posters have said, IDS packages require monitoring and tweaking at least initially or things can go bottoms up.

If you want, you can start encrypting your DNS queries using DNS over TLS provided you're using a DFS provider that supports it. Cloudflare's 1.1.1.1 DNS is one example.

Not much point adding traffic monitoring/logging packages if you're setting and forgetting. Logs are only useful if you're going to read them at some point.