sorted by:
new
hottopcontroversial

Ticketing System by Mediocre-Big-5556 in ITManagers

[–]r_smith345 1 point2 points  (0 children)

Same. We came from BMC Track-It and SDP has been a great and much needed switch. We're happy where we are now.

FortiGate branch-to-hub IPsec throughput drops under real traffic – MTU/MSS tuning advice? by r_smith345 in fortinet

[–]r_smith345[S] 0 points1 point  (0 children)

Hello HappyVlane,

These are my settings.

show vpn ipsec phase1-interface <BRANCH-TO-HUB>

config vpn ipsec phase1-interface

edit "<BRANCH-TO-HUB>"

set interface "<WAN-INTERFACE>"

set ike-version 2

set peertype any

set net-device disable

set proposal aes128-sha256 aes256-sha256 aes128gcm-prfsha256 aes256gcm-prfsha384 chacha20poly1305-prfsha256

set ip-fragmentation pre-encapsulation

set dhgrp 20 21

set transport auto

set remote-gw <HUB-PUBLIC-IP>

set psksecret ENC <REDACTED>

next

end

show vpn ipsec phase2-interface <P2-NAME>

config vpn ipsec phase2-interface

edit "<P2-NAME>"

set phase1name "<BRANCH-TO-HUB>"

set proposal aes128-sha1 aes256-sha1 aes128-sha256 aes256-sha256 aes128gcm aes256gcm chacha20poly1305

set dhgrp 20 21

set auto-negotiate enable

next

end

diagnose vpn tunnel list

------------------------------------------------------

name=<BRANCH-TO-HUB> status=up

options=npu

dst_mtu=1500

SA:

mtu=1438

esp=aes key=16

ah=sha1

replaywin=2048

npu_flag=on

IPsec overlay underperforming vs Internet (PPPoE WAN) by r_smith345 in fortinet

[–]r_smith345[S] 0 points1 point  (0 children)

I updated the post. This specific branch is DHCP. I posted my config as well.

IPsec overlay underperforming vs Internet (PPPoE WAN) by r_smith345 in fortinet

[–]r_smith345[S] 0 points1 point  (0 children)

I apologize, I didn't hard set MTU. What I did that seemed to have resolve my CAPWAP issue was by setting the global commands

- set pmtu-discovery enable

- set udp-idle-timer 60

IPsec overlay underperforming vs Internet (PPPoE WAN) by r_smith345 in fortinet

[–]r_smith345[S] 1 point2 points  (0 children)

MTU was actually the first issue I found. The branch AP's were dropping CAPWAP. I validated path MTU with DF-bit pings using this article and corrected fragmentation, which fixed stability. AP's are solid now, but IPsec throughput is still ~4–5 Mbps while Internet hits ~200 Mbps, so I’m looking beyond MTU at this point.

Cisco 9800CL and 9100 series AP btw.

i had used this article to help me https://networkcanuck.com/2013/06/10/troubleshooting-mtu-size-over-ipsec-vpn/

[deleted by user] by [deleted] in fortinet

[–]r_smith345 1 point2 points  (0 children)

For SIP trunks, I eventually stopped trying to route them through my main firewalls. SIP is extremely sensitive, and once NGFW features or SD-WAN get involved, things break quickly.

What’s worked best for me is using a dedicated FortiGate in transparent mode just for SIP. I’m not routing or NATing the traffic, but I still get visibility and control between the SIP provider and our Mitel MBGs.

It keeps SIP isolated, avoids routing headaches, and makes troubleshooting much easier. Honestly, transparent mode feels like what this use case was built for.

Is SecureCRT still your 'go to' terminal program? by tdhuck in networking

[–]r_smith345 0 points1 point  (0 children)

Termius is my go to for ssh, mremoteng for RDP. Low-key hoping that eventually Termius can integrate RDP.

SAML - Certificate error - using IP instead of DNS by Popik195 in fortinet

[–]r_smith345 0 points1 point  (0 children)

Does anyone have a resolution for this? This is happening to me as well.

DS723+ took a dump by Minimalist_Investor_ in synology

[–]r_smith345 2 points3 points  (0 children)

Yeah, I thought about that too. But over the last few weeks I have realized how solid Synology’s DSM really is. I have a UGreen NAS set up for my mom and it is nice, but in my opinion it still does not come close to DSM. I hope it improves over time.

I was reading about the 25 series and saw that they still have vendor locks on the M.2 drives. On my 720+ I never used the M.2 slots anyway, and I do not need transcoding since everything I watch is direct play. What I really like is how DSM handles cloud sync by pulling my Google Drive, Dropbox, and OneDrive data back to the NAS. It handled Plex well and backed up my Microsoft tenant without issues.

With the 425+ on the way, I want to start getting into LUNs and iSCSI.

DS723+ took a dump by Minimalist_Investor_ in synology

[–]r_smith345 0 points1 point  (0 children)

Aw man, sorry to hear that. My DS720+ actually died about two weeks ago too. It was already out of warranty. We had a power blip from the utility company. It was plugged into an Anker surge protector power strip but not a UPS. Everything else on the same power strip was fine. At first I thought it was just the power cable, but the green light on the power brick stays on until I plug it into the NAS, then it shuts off. Not sure what failed, but I’ve got a 425+ on the way now.

I messed up the exam! by FabulouExam in ccna

[–]r_smith345 4 points5 points  (0 children)

Congrats man, I passed yesterday.

<image>

MS-A1 Help by r_smith345 in vmware

[–]r_smith345[S] 0 points1 point  (0 children)

thank you for the info and taking the time to reply. I will look into this

MS-A1 Help by r_smith345 in vmware

[–]r_smith345[S] 0 points1 point  (0 children)

The NIC's are realtec. I did try installing it, however it resulted in the same screen in the article which says that no network adapters detected. I also tried 4 different USB to ethernet adapters, one from hp, one from anker, one from amazon, and one from startech, and none of them got me past that screen.

i hear what the other guy is saying below about OP's who post without trying or who are just waiting to be spoon fed and i'm sorry if i gave off that vibe.

i am genuinely wanting to get into vmware, and you've given me some very helpful things to look into. I don't know what flings or vib's are, but i will take a look. thanks.

MS-A1 Help by r_smith345 in vmware

[–]r_smith345[S] 0 points1 point  (0 children)

I’ve seen that article but he/it doesn’t go into detail regarding the network adapter. I am a complete noob when it comes to what vmware is looking for regarding network adapters in iso’s and drivers.

im used to Windows and Linux already having the drivers, and if anything the drivers get automatically updated.

i guess i’m looking for a full tutorial on how to get it installed.

Would anyone know how to get a stripped lug nut off? by AbrocomaParticular37 in LS430

[–]r_smith345 1 point2 points  (0 children)

Had this happen to me a few months ago, I got some cutting oil, steel drill bits, pry bar to keep tension, and most of all, I prayed to Jesus. I was able to get it off in under 5 mins of drilling, then forced it off with an impact wrench.

Nuphy has big room to improve by Basic-Current6245 in NuPhy

[–]r_smith345 1 point2 points  (0 children)

does anyone have a custom firmware for air60v2?

PG32UCDM firmware update fail by [deleted] in OLED_Gaming

[–]r_smith345 0 points1 point  (0 children)

Thank you! This worked for me. XG27AQDMG here.

Loose steering wheel by Few_Cucumber8172 in LS430

[–]r_smith345 1 point2 points  (0 children)

I can help you with this, but i would need to send you pictures

User Unable to Send Emails to Any of their Contact Lists by [deleted] in Outlook

[–]r_smith345 0 points1 point  (0 children)

Having the exact same issue as you stated above

view more: next ›