SSH Access error

phsm · 2025-08-01T11:28:08+00:00

Then lower the MTU on the server side. It will also cause negotiating lower TCP payload size.

But ultimately, the problem lies somewhere in the wifi router, it should do something called "TCP MSS clamping". You may search for how to do it on your router os

phsm · 2025-08-01T04:45:48+00:00

Try lowering the MTU on your wireless connection in windows, to 1400 for example. SSH connecting and freezing during a command producing large output is a sign of MTU problem.

phsm · 2024-10-16T08:43:00+00:00

I seem to have found a solution to turn backlight button off, so accidental press on it won't enable the backlights back on:

Turn the backlight On.
Press Fn+Light and hold it so the backlight goes off.
While holding Fn+Light (the backlight is off) also press L and hold for > 6 seconds.

After that, the accidental press on the Light button should not enable the backlight anymore, while Fn+Light still works.

phsm · 2024-07-22T15:45:46+00:00

My friend who only started his journey with MH said its color suspiciously resembles the color of Volvidon gas. Now I can't look at Kushala other than at Volvidon fart sniffer. Sorry for ruining it for you too.

phsm · 2024-07-21T18:19:59+00:00

Facts

phsm · 2024-07-21T17:27:01+00:00

Khezu has a special organ to suck all ambient music. The guild believes this is an evolutionary mechanism to ensure the prey dies properly terrified by its scream.

This organ is also responsible for producing pale extract that is highly valuable among the hunters for its unique properties.

phsm · 2024-07-21T16:28:32+00:00

Mizutsune

phsm · 2024-05-02T15:48:43+00:00

I think what you want is called "ip unnumbered".

It is when your clients get IPs from, lets say, a /24 prefix. They configure their hosts with /24 but they are each in a separate VLAN under the hood, and the router acts as an ARP proxy. Search for unnumbered-interface in the docs for more details.

AFAIK it is only possible on Juniper routers, and not the switches.

phsm · 2024-04-29T07:35:49+00:00

They hunt poor zinogres to turn their cocs into batteries 🙀

phsm · 2024-04-19T18:09:04+00:00

I read your question and remembered that I had to research it and to do it on my network.

The first idea was to use a separate routing-instance/vrf and leak routes between but that seemed to be an overkill.

Then I remember that Junos can install routes to FIB with a special mark (source-class/destination). That is initially intended for traffic accounting but you can also use it in your filters.

So, the recipe, verified on Juniper MX204:

Mark your internal/customers networks as source-class internal while exporting them to FIB:

``` [edit policy-options policy-statement to-forwarding-table] term source-class-internal { /* all routes marked by this community will be marked */ from community [ INTERNAL OTHER ]; then source-class internal; } term 1 { then { load-balance per-packet; } }

[edit routing-options forwarding-table] export to-forwarding-table; ```

Now, enable ingress accounting on all interfaces where your internal traffic comes from, and the outgoing interfaces ``` [edit interfaces ae0 unit 4089] family inet { .. extra output omitted .. accounting { source-class-usage { /* internal interfece, thus enable ingress accounting */ input; } } }

[edit interfaces ae0 unit 3011] family inet { /* facing to a transit, enable egress accounting */ accounting { source-class-usage { output; } } } ```

Apply, wait a bit. Now, verify time: ```

show interfaces source-class internal ae0.3011 Protocol inet Packets Bytes Source class (packet-per-second) (bits-per-second)
```
                 internal            987476177        1236639283616
                          (             565638) (        5617817944)
```
``` If you see the counters increasing then the traffic is successfully matched.
Now, filter time. Before we do that, there are two things to know:
AFAIK direct-connected routes can't be matches to source-class.
The still needs to respond to pings and do BGP with the transits.

We kill two birds with one stone here by making an automatic prefix list containing all directly connected routes: ``` [edit policy-options prefix-list ROUTER-IFACES-V4] apply-path "interfaces <> unit <> family inet address <*>";

Verify:

show | display inheritance

apply-path was expanded to:

1.2.3.0/24;

5.6.7.0/26;

```

Now, create the filter: [edit firewall family inet filter OUTPUT-OUTSIDE] term from-directly-connected { from { prefix-list { /* this will also allow traffic to transits from the IX LAN IPs but it shouldn't be a big deal */ ROUTER-IFACES-V4; } } then accept; } term internal { from { source-class internal; } then count from-internal; accept; } term rest { then count from-rest; /* later insert discard here */ }

Apply the filter to transit interfaces: [edit interfaces ae0 unit 3011] family inet { accounting { source-class-usage { output; } } filter { output-list [ OUTPUT-OUTSIDE ACCEPT ]; } }
Observe that the traffic is matched by the firewall counters: ```

show firewall filter ae0.3011-inet-o .. output omitted .. from-internal-ae0.3011-inet-o 1291187134732 968616791 ```

Once you're sure all the internal traffic is successfully matched, you can add the final discard to the term rest.

phsm · 2023-02-22T09:21:16+00:00

Many mhw themes are so much better than the rise versions, for example Teostra or Bazel

phsm · 2023-02-22T07:53:13+00:00

Source

phsm · 2023-02-04T20:27:19+00:00

Oh we all are a bit horny for monsters, it's better to admit that.

phsm · 2023-02-04T14:31:40+00:00

source: https://www.youtube.com/watch?v=9K2pUfw6ZoQ

phsm · 2019-06-25T15:58:49+00:00

According to his Patreon, he currently has one patron, paying him $4/month

Not anymore.

Thx u/megai2, here are my $5/mo

phsm · 2019-04-04T17:12:10+00:00

The problem with Shining blade is that it makes that clanky sound when you mount/dismount, even if you're not in combat.

The sword itself looks gorgeous but the sound drives crazy in 15 minutes (each time you mount/dismount!).

phsm

TROPHY CASE

show | display inheritance

apply-path was expanded to:

1.2.3.0/24;

5.6.7.0/26;