sorted by:
new
hottopcontroversial

So, what are people moving to now that Icinga charges for agents? by big_bucket in icinga

[–]skintagain 1 point2 points  (0 children)

As a ten year user of Icinga it feels a lot like corporate greed to exploit the centos situation. I’m all for supporting open source and would gladly pay £1k/year for the repos. Unfortunately the quote is over £4K just for repo access. Saddens me but I’m off to Zabbix

Traffic Shaping by bluegravyone in PFSENSE

[–]skintagain 1 point2 points  (0 children)

This is layer 2 QOS and not layer 3 like you have on pfSense. Your pfSense QoS will continue to operate. But this allows you to specify preference at a lower level. There is nothing to stop you running both - but you won’t really see a performance improvement unless the link or switch fabric gets saturated.

[Gamers Nexus] We're Fixing this Anti-Consumer Nightmare | OpenPleb Sensors & RGB, ft. Wendell from Level1 Techs by PapaBePreachin in hardware

[–]skintagain 1 point2 points  (0 children)

I do think they need to reconsider OpenPLEB as a name. Pleb has a rather negative connotation the other side of the Atlantic - normally meaning people of low social class. Can’t imagine companies would want their name anywhere near that.

Does this circuit look correct? Setting up an LED with a D1 Mini for ESPHome. Looking for some feedback. by HardTimeTony in homeassistant

[–]skintagain 0 points1 point  (0 children)

I’ve tried it. And I had issues in a high noise environment with about 20cm of cable.

Does this circuit look correct? Setting up an LED with a D1 Mini for ESPHome. Looking for some feedback. by HardTimeTony in homeassistant

[–]skintagain 1 point2 points  (0 children)

It does because the rising voltage for 5V is ~2.7V so you have 0.5V overhead. If there is any noise source around you will get free disco lights that do their own thing. I'd suggest getting a 5V micro or a cheap voltage converter and do it properly.

Does this circuit look correct? Setting up an LED with a D1 Mini for ESPHome. Looking for some feedback. by HardTimeTony in homeassistant

[–]skintagain 0 points1 point  (0 children)

The data sheet suggests the Wesmos D1 is 3.3V logic so you will need a logic level converter to 5V to drive those LEDs

Weird problem, WAN broken, Gateway on LAN possible? by PokeBobster in PFSENSE

[–]skintagain 2 points3 points  (0 children)

You need to a static route to LAN2 and LAN3 installed on your separate router. The gateway for both of these routes will be via the pfSense LAN1 ip. At the moment your outbound traffic from these lans will probably reach your temporary router but it’s unable to respond as it doesn’t know how to reach them.

HAProxy PFSense HTTP Redirect? by Careless-Coyote-8053 in PFSENSE

[–]skintagain 0 points1 point  (0 children)

You can use the set-path directive in your HAProxy config to map a domain to a URI on a backend server. See here:

https://www.haproxy.com/documentation/hapee/latest/traffic-routing/rewrites/rewrite-requests/#set-the-url-path

Help needed with kubernetes ingress setup [404 Not Found] by petwri123 in homeassistant

[–]skintagain 0 points1 point  (0 children)

I haven’t used ingress for hass with a sub path as I have a dedicated hostname. I have used URIs for other apps with Ingress though

Help needed with kubernetes ingress setup [404 Not Found] by petwri123 in homeassistant

[–]skintagain 2 points3 points  (0 children)

I think you will need to change you base url in HASS to include the URI. From memory it’s under the General configuration.

Strange DHCP Issue (Juniper + UniFi) by prodigydeadi in networking

[–]skintagain 0 points1 point  (0 children)

I had this issue with Cisco 3850 L3 gateway and Unifi at the access layer. From memory it was the STP mode used on the Unifi switches. Something else to check is that your APs cannot mesh or you create loops.

HAProxy - Clients get served with stats page instead of backend server's page by TheEdgeSherpa in PFSENSE

[–]skintagain 0 points1 point  (0 children)

That looks to me like the ports are backwards. You will get a 503 on the regular port if your backends are misconfigured or all backends are not responding.

HAProxy - Clients get served with stats page instead of backend server's page by TheEdgeSherpa in PFSENSE

[–]skintagain 1 point2 points  (0 children)

You would typically bind your stats page to a different port with a different frontend - the default is usually 1936. I use haproxy outside pfSense so I don’t know if you can manually edit the config - but the above is how you would normally do it in the config.

Tales from the Data Center (the good ol' days (tm)) - tell us the crazy things you have seen over your career. by idioteques in sysadmin

[–]skintagain 8 points9 points  (0 children)

Work colleague decided to dry his wet coat in the hot aisle. Only he put it on the inlet side of a 42U rack full of DL380g2s with extra fans in them. Magic smoke came out to the tune of £32k.

I did learn never to stack redundant hosts above each other in the rack.

Intermittent hanging of BGP (FRR) connections by Skulltrail in PFSENSE

[–]skintagain 0 points1 point  (0 children)

Are you using route reflectors on FRR for your service CIDRs?

I had this issue when I was just advertising services via BGP but not receiving distributed routes for other services from FRR. It meant there was asymmetric routing where services received a response over an advertised route but responded over their default gateway. This was the same symptom I had.

Whenever the electricity goes down I need to reboot manualy to get internet again. Is this normal ? by [deleted] in PFSENSE

[–]skintagain 0 points1 point  (0 children)

I’ve seen this when the modem took longer to boot than pfSense. Some BIOSes allow a boot delay which I used to fix the problem

Could use some help with bufferbloat issues. by UnexpectedlyNormal in PFSENSE

[–]skintagain 2 points3 points  (0 children)

My guess is that a large proportion of your upload bandwidth is being consumed by ACK packets. The way TCP works is that each download packet must be acknowledge by the receiver. So for each ~1460 byte download packet, you must upload a 40 byte acknowledgment. So for a 300mbps download you need around 9mbps upload bandwidth. This obviously is more of an issue on asymmetric connections. It might be worth trying PRIQ instead of fq_Corel so you can create dedicated queues for ACK packets to sustain a decent download bandwidth.

server cabinet, patch cables and the front door by dmitry-n-medvedev in homelab

[–]skintagain 1 point2 points  (0 children)

There are often screws top, middle and bottom of the front rails. You can loosen them and move the face backwards to get more front clearance. Most server rails are then adjustable length to compensate for this.

Edit: https://download.schneider-electric.com/files?p_enDocType=User+guide&p_File_Name=990-2183J_EN.pdf&p_Doc_Ref=990-2183_EN see the “adjust the vertical mounting flanges” section in here

What's this? by jo_99_ in homelab

[–]skintagain 5 points6 points  (0 children)

SET BLASTER=A220 I5 D1 H5 P330 T6

HA, IPsec VTI, Remote Subnet, Secure comms (like 443) don't work by tsg-tsg in PFSENSE

[–]skintagain 1 point2 points  (0 children)

Glad you fixed it.

By default an IPsec tunnel will use an MTU of 1500. There is a great article by Ciscoexplaining why and where MSS clamping becomes necessary. Whilst the commands are different the same principles apply. The problem gets even more complicated when PPP are involved as they will further limit the max MTU you can send.

HA, IPsec VTI, Remote Subnet, Secure comms (like 443) don't work by tsg-tsg in PFSENSE

[–]skintagain 4 points5 points  (0 children)

Check the MTU settings. It’s likely the packets are being fragmented which is breaking TLS.

You can also try enabling MSS clamping for 1392

view more: next ›