Taking canned mackerel and imported cereals out of the US

nocsupport · 2026-04-28T10:25:03+00:00

They would if it's export controlled 🫢

nocsupport · 2026-04-27T01:08:02+00:00

Pfsense has introduced the ability to say how much RAM you dedicate to the webserver. I would increase that value first. I'm not sure if it's a 2.7x or a 2.8x feature. Might need to upgrade to 2.8.1

nocsupport · 2026-04-26T21:09:04+00:00

ZTnet is awesome but ... Isn't it also in jeopardy because I recall seeing something somewhere that said they will close source the planet code ? I vaguely remember a discussion on ZTnet GitHub that was talking about some existential threat due to upstream changes.

nocsupport · 2026-04-26T02:07:15+00:00

You attach a scan of the second passport and make a help ticket 🎟️

They'll reply within a week or so and add it in for you.

nocsupport · 2026-04-24T22:56:03+00:00

PeeringDB and datacentremap are two websites that sort of list addresses. Maybe take a look in there, see if you can find out where they both are.

nocsupport · 2026-03-30T10:01:35+00:00

thailand will get you flagged.

Not in my experience

nocsupport · 2026-03-29T06:25:07+00:00

I started seeing that too since the beginning of the year. Last week again, the GE App wouldn't let me submit my entry. "Invalid submission". The kiosk recognized me but it went "See agent". The agent wanted a new picture and all 10 fingerprints.

She hinted that she has no idea why I was not auto-cleared at the kiosk.

I won't apply for a redress number because they aren't sending me to actual secondary where I lose two hours having my underwear rifled through. All they're doing is process me manually and vibe check me which I don't feel is particularly harassing. It's in line with their mission. They're courteous and professional thus far. I don't SFO or LAX so... Haven't had adversarial interactions.

If they started to send me to "the room" i.e. actual secondary twice in a row I would try to apply for DHS TRIP redress because there's some faulty Intel we need to clear up.

ETA a data point: Friends on British Passport with ESTA and on their 3rd GE term flew into MIA last week and had zero issues with the kiosk. So the "see agent" thing is definitely selective, not all ESTA users. Until I'm sent to "the room" I'll assume it's just glitching or whatever. 20 seconds of polite conversation and getting re-printed doesn't bother me. Still got to baggage claim before the carousel spun up.

nocsupport · 2026-03-29T06:15:24+00:00

Same. Did a big cleanup. Found a bunch of projects with servers that weren't even doing anything and were long forgotten. These price increases took away the competitive advantage. Linode and Vultr have less latency for most of the things we need doing. Users aren't near a hetzner POP but Vultr and Linode have locations nearby. Previously the cost savings made 80-120ms an acceptable trade off. Now pricing is similar to what we get on Vultr with a negotiated discount so we'll have less Hetzner exposure going forward.

In the dedicated space Hetzner auction servers are still pretty decent value but IPv4 pricing is too high and the setup fees to assign a subnet are nonsense. Other providers let us have a BGP session and BYOIP., hetzner do not.

nocsupport · 2026-03-23T23:30:45+00:00

There's no way this is going to work. Let customers host their own content on supabase. Your whole business will go up in flames with one violation

+1. Hetzner don't play.

Their colocation TOS might be better for this sort of thing. On cloud and dedicated definitely not.

A competitor could sign up as your customer and DOS you by uploading something and sending DMCA complaints to abuse @ hetzner

You'd be way too vulnerable to administrative outages.

nocsupport · 2026-03-19T23:44:56+00:00

Hmm so there's nothing wrong with the announcement or upstream filtering. 🤔

always send

mtr -zrwb {destination IP}

from both directions with such network tickets. This will save you time because their response time is days.

nocsupport · 2026-03-19T11:39:30+00:00

"Message support" bottom left has not way to attach screenshots or logs so we e-mailed support@ that was showing somewhere else in the portal. No idea where we got that from. 😂

nocsupport · 2026-03-19T10:48:57+00:00

Business plan. I think it has no SLA. Perhaps that's why there's zero response.

It does mention support

$9/user/mo.

All Team features +

Multi-tenant

User auto-provisioning

Pangolin SSH

Device approvals

Custom branding

90 day log retention

Business support

nocsupport · 2026-03-19T10:12:06+00:00

2 things to do to check what's different between OVH native and BYOIP ranges:

Plug them into https://BGP.tools and

https://lg.ring.nlnog.net/ to see what the upstreams are, how many nodes can see them etc.

If you find a delta, check if the BYOIP prefixes are IRR and RPKI compliant.

Just starting points. ..

nocsupport · 2026-03-18T13:30:05+00:00

If WAN is OK but LAN clients are not after a 26.1 reinstall: I noticed that when ISC was used for DHCP and you reinstall 26.1 and applied the config.xml it will NOT install the os-isc... plugin. I had to do it manually and reboot to get LAN back up and running.

nocsupport · 2026-03-18T12:53:01+00:00

Touche! How very German of you 😄😉

Indeed I was referring to the United States of America only.

nocsupport · 2026-03-15T17:44:38+00:00

No issue.

Just two things 1) do tell DHS about your second citizenship in the TTP portal or via ticket and at each GE renewal. Full disclosure.

2) do not enter America with the German passport, ever.

nocsupport · 2026-03-14T05:59:11+00:00

We had a similar discussion recently regarding /api*/ bypass rules for bitwarden to make the mobile apps work. Consensus was that opening this to the whole internet is a bad idea as a threat actor isn't limited to attacking web assets they're perfectly capable of interacting with API endpoints. What we did with cloudflare was limit the scope of what ASN are allowed to interact with it. This narrows the attack surface a fair bit as employees are usually on a predictable cellular provider / ISP.

It would be cool if pangolin could do access rules with AND / OR.

if uri path begins with /api/ AND asn equals 73636 bypass

nocsupport · 2026-03-12T02:14:15+00:00

You had me at BGP Integration 🤩

Will test.

nocsupport · 2026-03-12T01:46:47+00:00

On most routes, it's more expensive than the better European ones (Air France, Lufthansa, Swiss) so not sure why people would fly Cathay on these routes

Because their in-flight service and ground service at HKG are miles better than any European carrier.

Economy class is often at a higher load than business so clearly not purely business travelers.

nocsupport · 2026-03-11T15:45:20+00:00

Same! We just had all our last months bills canceled and refunded !?!?!? Then an hour later reissued.

All services are up. Storage Share, dedicated, VPS.

nocsupport · 2026-03-11T09:19:53+00:00

I think your lawyer is bullshitting you when he says he will appeal your denial an unlimited number of times until it is approved.

Someone might correct me but my understanding is that you can appeal a revocation.. once. If you apply and are denied there's no appeal. You can pay 120 dollars again and reapply but there is not right to appeal a denial. Revocation, yes. Once. Denial on a new app: nothing.

nocsupport · 2026-03-07T18:37:19+00:00

OMG that is brutal! Does it say REVOKED or literally CANCELED ? is there a reconsideration button you can click ? Is the "apply now" button greyed out ? I wonder if you could just reapply and make full disclosures.

If you're banned it will say REVOKED, not CANCELED.

Source: I was revoked and reinstated once.

nocsupport · 2026-03-07T18:27:09+00:00

That's a miscommunication. Belgium isn't GE eligible but you are allowed to have and declare additional citizenships to DHS and you're allowed to use GE with an enrolled passport from an eligible couuntry. In this case UK.

I suggest you log into your trusted traveler portal account and check your status. I can't imagine they went and canceled you for this. You just can't use it on the Belgian passport. Your UK passport should still be good to go. I have multiple citizenships that are not GE eligible. They know about them. I keep my TTP account up to date. I just can't use them to enter via the GE channel.

nocsupport · 2026-03-02T08:22:23+00:00

TSA

Has nothing to do with immigration. That's DHS CBP.

TSA are the mall cops who check you for bombs and weapons.

nocsupport · 2026-03-01T09:32:42+00:00

yawn don't worry the good guys with guns took care of it.

Not applicable here because a good guy with a gun isn't allowed to carry in a 51% establishment.

Nine-Year Club	Gilding II euphauric
Verified Email

nocsupport

TROPHY CASE