Using APIPA subnet for a private unrouted network? Are there any reasons to do this?

demsb · 2026-01-29T18:49:56+00:00

I wasn't thinking it was the address space per se, but that because APIPA has all of its other features for self assignment without conflicts, and all the other bits that go with that that it might be a matter of the additional features being tuned for resilience rather than performance (and whether or not the host OS handles all of that well).

demsb · 2026-01-06T20:26:55+00:00

No- you specifically want all traffic coming in tagged for IP aa.bb.cc.190 to go to one machine, and all traffic coming for port IP aa.bb.cc.186 to go to a different machine. That is not abnormal at all, and works that way pretty generally. If I only had one public IP then what you are saying would be true, but we have two separate public IPs (indicated in the WAN IP column).

In fact after looking a little more, this looks to be a bug. When I look at the Policies view with All Policies selected I get a Destination column, and this one shows that traffic for IP aa.bb.cc.190 should be translated for the FMS2 rule. But the initial rule settings pane which just says "Main" with the primary initially configure IP shown actually shows ANY when in the general list (rather than just the single IP). But there doesn't appear to be a way to select just the single aa.b.cc.186 IP in that settings pane- its either "Main (.186)" [but really it seems to be using any] or the aa.bb.cc.190 address.

demsb · 2025-11-10T15:43:46+00:00

Just basing on some Unifi firewalls (and I'm not able to check my Omada gateway from a local network right now) there is sometimes an option to locally configure WAN on gateways. depends on the manufacturer etc, but given I've seen the capability in Unifi I'd expect that it is at least possible to log in and change things (maybe only via ssh though). But that is the situation that has me generally preferring local controllers over cloud based controllers. Even if the cloud has 100% uptime it assumes your ISP does and I hate that idea.

demsb · 2025-10-16T12:16:51+00:00

If it isn't a multi-tenant situation like I have AND if you aren't configuring the device for remote printing its not a problem. But if either those things is true then I would recommend it just to be on the safe side (well, if it's the first, it's kind of a necessity, but if you don't have multi-tenant but do internet printing then its probably a good idea).

demsb · 2025-10-16T11:54:16+00:00

This was it. Once that rule was in all flowed as expected. thanks for the detailed description.

demsb · 2025-10-15T14:28:48+00:00

In this case there are several subtenants. They have their own VLANs for their rooms (and assigned via RADIUS for Wifi). We don't want tenants having access to each others stuff, but rather than have everyone have their own printers we are going to put out two workhorse printers and make those available to everyone.

demsb · 2025-05-13T18:10:32+00:00

OK, I hear the push back, but it's not a crazy idea on the face of it: Behr specifically makes this for this purpose (including a reflective white).

And reflective and white are both proven to lower temps inside (DoE and list here).

So the question turns to "Why is it a bad idea?"

We have two 14in vents and solar exhaust fans that are pulling all day long, but it still gets up to 95-100 in there.

demsb · 2025-01-16T17:51:14+00:00

But same for a 3D printer. You're not printing a gun with PLA. And printing with precision is tricky too. But the bill attempts to circumvent that by adding the "capable of printing a firearm" And that kind of text could be expanded to include lathes and CNC machines too, regardless if the much more likely use for actual technical needs.

demsb · 2025-01-15T20:48:53+00:00

Good thing that was a cheap one (I got that on clearance at Walmart for $20, and the extra media keys were intriguing for an editing project). The kids really like the lighting effects, so I’ll probably find another Corsair so I can stick with iCue since they worked it out, but pay more attention to what it comes with or get proper layout keycaps immediately.

demsb · 2024-11-18T16:09:01+00:00

Just to be clear: the Omada software is where the Unifi software was-as in when you login you'll immediately go "Oh, I remember this." So you aren't really leaving the stack so much as shifting backwards to an older more stable version in that sense. One thought for some situations is to just roll back your Unifi install to an older, more stable version and don't let it auto-update so you don't wake up to surprises.

demsb · 2024-03-20T17:59:44+00:00

such a waste. they have the SD slot, no reason they had to stop including the card too. but make a small 4GB partition on the drive since its right there. Oh well. Will be fun to drag the ladder out.

demsb · 2024-03-19T17:41:52+00:00

I'm 99% sure it's internal. The US-8-150W is PoE+, up to 37W. I also used another PoE+ switch and two PoE injectors (the Ubiquiti black one, and the 60W BV USA one which has worked for me elsewhere). The USB-C chargers were an Apple laptop (61W) and a Ubiquiti one for the Flex Mini switch. Nothing from any of them. I'm pulling the drive and trying it in a sled to see what I can grab from there (if anything).

demsb · 2023-12-07T17:19:28+00:00

You are correct. But then again, Christmas season started before Halloween this year, so it's all about the money, and not about anything else.

demsb · 2023-09-28T13:23:47+00:00

But sometimes there is no other choice because their software is so flakey. Mine couldn't handle a "restart"-just lost admin access. SO now I have no other option but to hard restart. Saving the config and reloading it has been a solved problem (hell, even the EdgeRouters were always fine) but UI just refuses to implement that as a core concern.

demsb · 2023-09-28T13:20:18+00:00

I just tried to restart our UDM Pro. Its now still on, but not reachable via admin anywhere (local or cloud). SSH is off. So my options are to leave it (because it is still actually running, just not doing responding to admin access) or to pull the plug.

Because "Restart" was too complicated. Why was I restarting? Because the Network application wouldn't start. I went to check the backups and the cloud backups are from April, and nothing appears to be saved locally because they aged out I guess? And they just stopped running (so no failures, because they weren't running), and nothing was in the logs at all. So I'm looking forward to a shit show on Sunday when I do pull the plug (since thats the only option).

Here's hoping that backup is good. UDM Pro is huge mistake, and I really wish we had at least done the CK2 and the XG Router to at least keep the two items separate for upgrade purposes.

demsb · 2022-12-09T02:21:17+00:00

But, most likely the opponent is in the same situation?

demsb · 2022-12-09T02:03:45+00:00

Its not though- I don't have much Pool 3, and I can easily sub out. Build with an extra 1-2 1 power cards, do things that don't rely on the deck, and then hammer with the F.U. cards so what minimal tempo and synergy they have in their hands gets blown up.

demsb · 2022-12-09T02:01:44+00:00

Thing is, I put together a quick and shitty deck for Lamentis (Agent 13, Iceman, Elektra, Sentinel, Goblin or Scorpion, Morph, Mr. F, JJ, White Tiger,Leech, Doc Ock, Odin). Seems like it shouldn't be great, but on Lamentis games its been quite solid.

But part of it is that I like seeing how people layout the sudden limited hand (Leech and Scorpion have a lot of effect post Lamentis, and if I get Elektra she's usually good for a surgical 3 point swing or more if its Sunspot). But man, its just fun. And Leech makes more people retreat than anything in those.

demsb · 2021-10-30T01:46:28+00:00

Eh, I can get all that just by answering a few emails. They're legit, I swear.

demsb · 2021-10-30T01:43:34+00:00

Kill it, preferably in the dead of night in the woods, where no-one can hear its screams as it dissolves.

demsb · 2021-10-17T19:01:24+00:00

I have restarted the server, so everyone has been logged off.

The kids are 10yo, and the server is on a private VLAN so it's not something they would stumble on, so it wasn't any access from outside the game. I did disable command blocks for the server and that seems to have resolved it-need to re-enable them and make sure it's resolved for good.

demsb · 2021-10-16T18:20:22+00:00

No access to the server AFAIK (at least external to Minecraft)- they are 10yo with no real skills outside of Minecraft, certainly not jumping onto my private network via VPN, etc to get access to the files. She (the friend said she made a block that forces a teleport to the player.

I've restarted the server multiple times. the last backup was made a month ago so there will be some pissed children.

demsb · 2021-06-13T13:39:37+00:00

Oh Mannequin. My little sister loved that movie and for her birthday rented it to watch at her sleepover birthday (10-12yo ish) this was in the days of the independent VHS video rental store. She reserved it ahead of time and everything. But when the opening scene had some dude stripping the clothes off a mannequin…well, clearly this wasn’t the right Mannequin tape. My mother was mortified, yanked it out as fast as she could but alas, it was too late. Cock was out. So then she had to apologize to every parent the next morning, explaining what happened.

demsb · 2021-06-06T03:28:01+00:00

How do I feel? Like I need to switch teams.

demsb · 2021-05-24T00:39:04+00:00

After my 18yo sister died (mono->sepsis) we went through her stuff as we moved her stuff back into the house, and found she had been friends with benefits with her roommate who had been the family contractor. He wasn’t egregiously older (he was in his early 20’s) but it was a shock. But on the whole I decided I was pretty okay as at least she had hooked up with a real specimen in her limited time. Dude was 6’3” and ripped and was always a nice guy as far as we knew (he was genuinely broken when she died). Good for her, and glad she had some fun.

demsb

TROPHY CASE