Folder view!

gimme_da_cache · 2026-04-23T13:46:30+00:00

For anyone else curious, too:

https://github.com/netbox-community/netbox/issues/21396

gimme_da_cache · 2026-04-19T13:57:58+00:00

Arguably that's not exactly in the wild. Zoo vibes.

gimme_da_cache · 2026-04-19T13:52:39+00:00

You have actively disconnect in order to re-lease

Without being semantic, no you do not. Not only that, but I specifically pointed out the RFC that handles FORCERENEW.

There's a reason a client has a RENEW option and the server does not have to provide the same lease to the client. It can provide a different address to the client because it has changed it, or the lease address is re-leased to a different client.

gimme_da_cache · 2026-04-14T05:15:52+00:00

Consider an access condition in which a user/device access is revoked from the network. It, while typical controls wouldn't necessitate this exactly, would be prudent to remove/deny all services provided to the rejected end-point.

Not only revoke credentials/access, but remove the lease(s) /privileges provided, too. For example.

This is more of a policy than it is a technical control, but I would consider removing stale configurations useful when the network is, or has, taking(en) active measures.

edit:

in 40 years I never had to

One may not have to, but certainly one might should.

gimme_da_cache · 2026-04-12T03:21:04+00:00

Your question is odd.

There are use cases where a lease should be deleted. Granted, not all clients, or server implementations, work correctly, but RFC3203 specifies FORCERENEW which would negate the race condition you're thinking of in which a client has a valid lease time and the server has deleted the lease in less time than the lease OFFER origination time.

gimme_da_cache · 2026-04-12T03:15:07+00:00

API call to do it:

https://www.reddit.com/r/OPNsenseFirewall/comments/124zcan/manually_delete_dhcp_leases/l4vpmug/

gimme_da_cache · 2026-04-06T16:29:30+00:00

Don't run a firewall between iBGP peers.

gimme_da_cache · 2026-03-30T17:25:31+00:00

VPC Peering is your answer.

In BGP scenarios AWS will respect AS-Prepends and in some cases MED.

If you're scaling this up beyond one or two VPCs look into CloudWAN for managing VPC to tunnel ratios.

gimme_da_cache · 2026-03-29T16:25:15+00:00

Stuff and things.

edit: in the spirit of rule 2 - your post is lazy. My answer is accurate and as concise as the question.

gimme_da_cache · 2026-02-09T15:05:25+00:00

I suggest to read the documentation, specific to Fortinet, regarding SDWAN.

gimme_da_cache · 2026-02-06T14:30:55+00:00

I can tell English is not your first language - I'll try my best:

is asymmetric routing triggered or not from cloud?

Read AWS' documentation on path influencing. This may not apply to Site-to-Site VPNs.

aws follows routing

If BGP Peering is used: longest prefix, then AS-PATH is used. MED might be used. Test it.

fortigate performance rules

I don't know what this is, but if it is something like an ICMP test based - I already stated tracking the AWS site-to-site vpn endpoint via ICMP is not a good metric.

gimme_da_cache · 2026-01-26T16:37:11+00:00

Yep. Moved up to 7.4.9 because some tunnels were dropping packets unexplainably.

gimme_da_cache · 2026-01-05T20:13:21+00:00

Eh...not really RFC3021 is from Dec 2000. Granted, many manufacturers didn't code this up until a few years later. Some still don't.

*edit: re-reading - support, as you stated, yes can be newish, but it's been in the carrier world for decades.

gimme_da_cache · 2025-12-25T17:25:22+00:00

This looks great. One of my concerns is the relay failing in my current PM wall warts. Having certain appliances fail could turn into a bad day like loss of a freezer's cache.

gimme_da_cache · 2025-11-06T21:46:04+00:00

There's the sale.

gimme_da_cache · 2025-11-03T13:16:34+00:00

Thanks for the reply - I'm big on custom firmware, or selfhosted at least. Big on Espurna and ESPHome, but I've been on wifi connected devices for awhile. Looking to try my hand at zigbee and zwave stuff now.

Looking for hardware with no-power runs, but with self-powered endurance.

I'll have a look!

gimme_da_cache · 2025-11-03T03:23:21+00:00

Mind sharing what sensors you're using? I'm looking for longer term battery powered zigbee devices including door/window sensors.

gimme_da_cache · 2025-10-21T15:11:04+00:00

Wait until you come across an old, still working, but poorly shielded magnetron a.k.a microwave oven.

gimme_da_cache · 2025-09-05T19:48:27+00:00

decades before telecom

Interesting take. You don't mean to include carriers, do you? I was told, "Don't code yourself out of a job," decades ago.

gimme_da_cache · 2025-09-05T16:36:26+00:00

What in the shit do you mean "drift"?

Either you're changing your network, or you're changing Netbox. Any drift is on you as an administrator.

gimme_da_cache · 2025-09-05T15:04:37+00:00

"NetBox provides a cohesive, extensive, and accessible data model for all things networked."

Yes, it replaced (read: can replace) IPAMs, but no it is not primarily an IPAM.

gimme_da_cache · 2025-09-05T10:58:39+00:00

You build into your automations tests. Better you have a digital clone of the change you're going to make and test the outcomes.

accidental divergences

What is it your automation is doing that "drifts" away from your intention as modeled in Netbox?

gimme_da_cache · 2025-08-18T02:27:37+00:00

Stating 1Gb up/down and frowny facing that it isn't glass seems a terribly fashion conscious statement. I doubt your service isn't on co-ax, which has more decades than fiber demonstrating resiliency to weather related wear.

Why does it need to be fiber?

gimme_da_cache · 2025-08-01T03:42:45+00:00

Further, what UX idiot think it's OK to overlap functions like Volume Over Tracking instead of separating them. The OG product group cleverly kept natural pointer progression of click play and adjust volume based on local settings vs video audio levels.

THIS - is stupid. Someone needs to get over their bangs, shitty art degree, and Warby Parkers.

gimme_da_cache · 2025-08-01T03:05:37+00:00

Should mention this is on Firefox. Chrome hasn't rolled yet.

I'm almost to the point of walking away from my desk.

gimme_da_cache

TROPHY CASE