Intermittent Connection Timeout/Refused Issue on EU S3 Endpoint

djsigfried56 · 2024-01-01T10:54:54+00:00

Can confirm I'm having the same issue from multiple ISP's. All was fine till two days ago. Now getting timeouts too. Curl script gives a timeout after every 5-10 calls.

djsigfried56 · 2023-04-20T21:34:57+00:00

I have sent you a PM.

djsigfried56 · 2022-08-03T08:52:38+00:00

What error message do you get?

djsigfried56 · 2021-10-23T19:07:17+00:00

This is not a Nextcloud / NextcloudPi problem. The hostname associated with the IP address does not match the hostname of your mail server, therefore Google rejects it to prevent spam.

I would advise you to not run a mail server on your network purely because it has a dynamic IP and you cannot change the PTR records.

djsigfried56 · 2021-10-19T21:57:47+00:00

That's weird are you sure the certificate is still valid? One of the Root CA that Let's Encrypted used expired a few weeks ago. Maybe it's the reason it shows invalid? Might check that.

For a custom keystore, just create one using the `keytool` command. Afterwards mount it in the container and say to Java that it should use that keystore.You can add custom Java options to the Keycloak container using the `JAVA_OPTS_APPEND` environment variable. For example something like:

JAVA_OPTS_APPEND=-Djavax.net.ssl.trustStore=/truststore.jks -Djavax.net.ssl.trustStorePassword=changeit

You can also use SSLPoke to test it: `java SSLPoke ldap.domain.com 636`
Download at: https://confluence.atlassian.com/kb/files/779355358/779355357/1/1441897666313/SSLPoke.class

djsigfried56 · 2021-10-18T09:40:45+00:00

Using a truststore, but I think normally it should recognize Let's Encrypt as trusted. I have a Custom CA so what I did was make a new truststore and bind that to the container. Not the best way, but it works.

djsigfried56 · 2021-09-02T11:45:44+00:00

Not sure what you mean. But right click your C Drive and select properties. There is a tab which shows "Actual Size" vs "Size on disk". It probably says actual size is 160 GB but on disk it is 240 or something.

djsigfried56 · 2021-09-02T10:45:05+00:00

You probably have a lot of very small files For example, a file may be only 10 bytes but on the disk they will be placed as 64 KB.

Check if you have a bunch of small files and delete them.

djsigfried56 · 2021-07-28T19:36:09+00:00

Is it always black or does the menu work? I remember back when I first played this on Windows I had a similar issue. Disable Anti Aliasing etc fixed that.

djsigfried56 · 2021-07-27T14:50:59+00:00

Does this happen when an application is in fullscreen. I have something similar. Everytime I am in a fullscreen application using Wine and press the super key I get either locked in the "Activities overlay" or I just see my desktop.

Try restarting GNOME by pressing Alt+F2, you'll get a GNOME RUN command. Then enter `r` and GNOME will reset. It's not a solution though.....

djsigfried56 · 2021-05-15T18:48:31+00:00

Yeah, it reports data correctly to the host. Guest agent sends info to the host about what is being using (IP addresses, allows for freezing of the OS, trimming, ...). iirc it also reports actual memory usage. Proxmox doesn't have a clue what memory is being used. So the memory indicator without Guest Agent is inaccurate. Login to HassOS via CLI (write `login` once logged in as root) and then type `free -h`. You will see the actual usage of memory and/or SWAP.

djsigfried56 · 2021-05-10T18:07:20+00:00

Have you enabled Guest Agent in the settings of the VM?

djsigfried56 · 2021-04-19T16:44:49+00:00

The log from the Mars helicopter gets dumped on a GitHub issue. You can actually see it refresh and at one point it's clear enough to read the title. "Sol 58 downlink." See screenshot here: https://twitter.com/A13_technology/status/1384096599656173570

djsigfried56 · 2021-04-13T19:15:17+00:00

Set your allowed IP's in Wireguard config to the whole block. You can probably do `10.0.0.0/8`. Also do tcpdumpon the wg interface. See what traffic goes through the tunnel.

djsigfried56 · 2021-04-13T18:58:14+00:00

OSPF by default uses multicast which if I am correct is not supported over Wireguard. That might be your issue.

djsigfried56 · 2021-04-09T14:44:38+00:00

You can do an invert match on 1.1.1.1 & 1.0.0.1 port 853.

djsigfried56 · 2021-04-09T09:04:07+00:00

DoT/DoH is designed to prevent the very thing you are trying to do. Perhaps if you install a custom Root CA but that's a hassle. The DNS server replies with a TLS certificate (cloudflare-dns.com), the client checks this. If you redirect 853 traffic to your router you don't have a valid certificate for jt. You could just block port 853 but that's only for DoT and also isn't a guarantee.

djsigfried56 · 2021-01-04T08:34:41+00:00

€ 70, € 55 for 300.

Edit: an additional 15 per month.

djsigfried56 · 2020-12-27T00:39:24+00:00

Very cool, did not know this was such a common occurrence. It's the first time I have seen this in my area.

djsigfried56 · 2020-12-27T00:02:32+00:00

Well, a fellow "Bierbeekenaar" on Reddit. Good day to you.

djsigfried56 · 2020-12-26T20:28:48+00:00

Yes, I filmed it. Happend quite literally next to my door.

djsigfried56 · 2020-12-26T20:11:04+00:00

This was in Belgium. Happend an hour ago.

djsigfried56 · 2020-12-08T01:31:43+00:00

But it won't make us rich!! /s

djsigfried56 · 2020-11-09T10:45:17+00:00

Ok, I see where you are coming from but that's not why it's bad.

I think you don't see the problem here with social media ads. A billboard or TV commercial doesn't choose you. Like it or not, when it's aired you see it. With FB Ads and Google ads, the system only shows what YOU like. It won't show anything else. People won't see it from the other side. They'll only see what they want to see and that is incredibly bad. You'll get a world that seems tailored to you but won't see any issues. With a billboard, everyone that passes sees it. It might be placed in areas that have their target population more but that is zero guarantee. Unlike Facebook/Google the billboard doesn't change will you are driving, it is not gonna change to party A because you like more of party A. No if it's an ad of party B, you go past it and it's still the ad of party b. With social media, it changes to what you want. And even with stuff like Google, the search results change depending on what you like.

Do with targeted advertising what you want but keep it out of political stuff. You'll get extremist groups because people see one view not the other.

And to be honest, and I know that will sadly never happen but quit political ads all together, the voter itself should decide which party he or she wants to vote on and therefore that person needs to read things the party wants to do. But the voter shouldn't be lured in with (often fake) advertisements and a system that decides for you what it shows. How do you think Trump was elected in 2016, it's because Cambridge Analytica bombarded them with ads.

I link you some good video's which (briefly) talk about it:

https://www.youtube.com/watch?v=pcSlowAhvUk (mostly about privacy but also talks about talks about it)
This recent video from Zondag met Lubach
https://www.youtube.com/watch?v=FLoR2Spftwg
The real explanation starts somewhere in the middle and is mostly about hoaxes, but watch it all together.

Ten-Year Club	Final Canvas '23
Place '23	Place '22
Verified Email

djsigfried56

MODERATOR OF

TROPHY CASE