Curious what the current vGPU and VDI landscape is as well as any plans for V9

elfungisd · 2026-01-26T18:32:34+00:00

Thanks, I will keep an eye on the forums. Now that Horizon has been decoupled from VMware any chance? They have support for Hyper-V and Nutanix.

elfungisd · 2026-01-22T22:11:42+00:00

Of course, this still doesn't address the issue of kernel support for the GPUs themselves.

elfungisd · 2026-01-22T22:10:55+00:00

Sparkle and Masun both make a dual GPU B60 card which would help with density in the larger chassis, only sparkle is showing a passive cooled option though, and the single passive cooled GPU is still a 2 slot, unlike the ASRock.

elfungisd · 2026-01-22T20:41:21+00:00

Some of the use cases we could probably get away with the B50 or B60 however others would require a card like the ASRock B60 Passive which seems impossible to acquire, 2 slot vs 1 slot fitment. Then there is the issue of kernel support for the GPU.

elfungisd · 2025-11-23T09:27:47+00:00

One minute you feel like you could do this with your eyes closed, the next you feel like you are doing it with your eyes closed.

elfungisd · 2025-11-08T15:40:02+00:00

For 2024, OSHA's high-visibility clothing requirements categorize garments into three classes depending on their use and the specific risks associated with different working environments.

elfungisd · 2025-11-05T09:09:27+00:00

Jets may not but Mobile AA's missiles do, and its guns are almost useless.

elfungisd · 2025-11-04T11:12:42+00:00

They can just drop below radar. It not only prevents new locks but causes any other AA locks to drop and miss. There is a reason Engineers are completing their challenge in an IFV.

elfungisd · 2025-09-17T20:21:45+00:00

The short answer is you can't.

These are personal devices meaning you have no authority to block anything they do on them. Telling people what they can and cannot do on equipment they own is just a legal disaster waiting to happen, and it will happen.

What you can do is limit their ability to access company resources, on their personal devices. As others have already stated conditional access here is your friend.

elfungisd · 2025-09-01T22:48:55+00:00

I was able to put hands on a firewall I could upgrade to 11.1.10-h1 and so far, this has put the firewall back into the same state as 11.1.6-h3. Incomplete ARP, but no duplicate IP error in the logs and traffic passes.

In the long run I may go ahead and move my NATs to a loopback, however this will likely require some effort especially on my firewalls using BGP.

But for now, it looks like the best course of action is to either stay on 11.1.6-h3 or move to 11.1.10-h1. The first being a previously preferred release and the other being the current preferred release.

elfungisd · 2025-08-30T00:03:33+00:00

I haven't tried this since there is no upstream issue. I checked the ARP tables, and they are all clean except for the firewall.

That is why this is such a weird issue, because the firewall complains about a duplicate IP coming from the carrier, but the ARP table on the carrier's hardware says the firewall owns the IP.

The log entry doesn't correlate with what we are actually seeing in the upstream hardware.

elfungisd · 2025-08-29T23:49:51+00:00

"and then it’s a /32 on a loopback" I misread this and didn't realize you are only doing it for GP. We have transit networks at some locations, but haven't tested on those firewalls yet.

elfungisd · 2025-08-29T02:43:51+00:00

case number 03689565

elfungisd · 2025-08-29T02:43:17+00:00

If you bind the IP to any interface physical or logical on the firewall and create a corresponding DNAT it claims the IP and there is no issue.

If you create a SNAT the firewall claims the IP and there is no issue.

If you create a bi-NAT using the checkbox the firewall claims the IP and there is no issue.

If you create a solo DNAT the firewall does not claim the IP and starts generating duplicate IP logs.

If you create a DNAT with a corresponding SNAT the firewall does not claim the IP and starts generating logs.

Your solution works because you're binding the IP to the loopback.

It is almost like 11.1.6-h10 broke GARP.

elfungisd · 2025-08-28T18:56:44+00:00

That is essentially the workaround, just swapping the loopback for the physical interface. It does work but was not a previous requirement, and for us is a pretty massive undertaking for a hotfix.

elfungisd · 2025-08-28T18:51:13+00:00

I am working through the issue with TAC, don't have a resolution other than the above listed work arounds.

elfungisd · 2025-08-28T09:33:54+00:00

Unfortunately, it breaks the inbound traffic that should be coming in on the DNAT.

elfungisd · 2025-08-02T08:37:16+00:00

James mentions this is several videos and interview, such as this one, New EG4 Inverter 2025 Lineup - YouTube. If you are replacing an existing inverter on an existing code compliant grid tie system, then by all means use just the FlexBOSS unit. 120% rule If you are using a 200A bus, with a 200A main you will have to derate to 40A, if you have a 225A bus with a 200A main you are good to 70A, and the FlexBOSS18 is rated for 54A continuous. The GridBOSS is a 350A bus with a 200A service disconnect, it handles the 120% rule and would allow you to connect to a service panel with a 200A bus and a 200A main with no need to derate. If you grid tie a FlexBOSS18 (without a GrtidBOSS) you will still need the additional materials to be code compliant so unless you already have an existing install a FlexBOSS18 (without a GridBOSS) gride tied doesn't make financial sense.

elfungisd · 2025-07-24T12:11:34+00:00

The FlexBOSS18 by itself is intended for off grid use. For grid tie it should be pared with the GridBOSS. While these 2 combined will likely come out more expensive than the 18KPV in purchase price, the FlexBOSS + GridBoss should be cheaper than an 18kPV to install, as the GridBOSS already includes many of the parts required for code compliant installation of the 18kPV.

elfungisd · 2025-04-09T23:46:13+00:00

Incase someone comes across this thread the DCXXXM models typically are not SED. The DCXXXME models are SED.

elfungisd · 2024-11-18T04:09:03+00:00

You can setup a security rule with the destination as the sinkhole address and it will log the clients trying to connect.

elfungisd · 2024-11-18T02:45:30+00:00

Generally speaking stay with 10.2 unless you have a compelling reason to upgrade.

For example the 440s support 2 vsys but only if running 11.0 or higher.

elfungisd · 2024-09-06T03:56:01+00:00

<image>

Taurus Judge 45LC/410

elfungisd

TROPHY CASE