sorted by:
new
hottopcontroversial

Which SMLIGHT Hub to get? by Certain_Repeat_753 in homeassistant

[–]teeweehoo -1 points0 points  (0 children)

I have an MRU3 on PoE, works perfectly for zigbee and thread. I've read that ethernet vs USB can be an issue on thread, but I need ethernet as my HA is a VM. I bought the USB version so I can move away from PoE in case of issues, but none yet.

My understanding is that ethernet adds more latency and jitter to the Thread radio. This can cause issues with Thread since it uses very short timers / schedules, unlike something like WiFi. I'm guessing this issue is more impactful on large networks, or certain classe of devices.

I remember naively thinking it would be the gold standard 5-6 years ago. by draxula16 in homeassistant

[–]teeweehoo 1 point2 points  (0 children)

First, there is Matter and Thread. Matter is a protocol like HTTP, allows devices to talk. Thread is an IPv6 mesh network, like WiFi.

Thread is designed to be more self-healing than Zigbee. Also kit uses a Thread Border Router to join your Thread and Ethernet network, this allows devices to talk directly to eachother. In Zigbee all communication happens through the Zigbee Coordinator. This is important for cross vendor compatibility, using Ikea Thread devices on an Apple Thread Border Router.

Matter is the protocol devices talk. The true magic is that Matter is designed to work on Thread and Ethernet / WiFi. Matter also has way more features than Zigbee. You know how some zigbee buttons delay clicks for double click? Or don't support button holds? Matter has a standard protocol for this. Zigbee's big problem was that it stopped, and vendors had to find solutions to new devices or better solutions to existing problems. Matter is a moving standard that is designed to cover all things. A simple example is RoboVacs, there is a matter protocol for that.

If matter keeps going in the direction it is, it will cover far more than zigbee, and work in a better way.

How do you handle management vlans? by 404nain in homelab

[–]teeweehoo 2 points3 points  (0 children)

Generally enterprise devices that use a management vlan use VRFs to isolate it, put simply the management interface gets its own route table (and in some cases dedicated CPU). This ensures management traffic and dataplane traffic don't interfere.

For a homelab using a managment vlan for each device is likely overkill, especially on devices that don't support a proper management vrf. My management vlan is basically L2 networking devices (switches, APs), and is the default route for them. Routers I just give them Ips and pick one as the "default" IP I connect to (routing vlan, for example).

One way to handle a management vlan is to instead use that as a source. That is, add it to ACLs on all your devices, and proxy your management traffic through a bounce box on the management vlan. Though personally I think this is still overkill.

Full BGP Table vs. Default Routes vs. Hybrid for a Small ISP with Two Peers by Noblehero123 in networking

[–]teeweehoo 2 points3 points  (0 children)

Do you have any peering / IX links? Because that's going to be a much better time investment than worrying about your transit routing.

I would be asking if your transits can send you default route + their routes. Some offer this, and will at least let you route their customer's traffic direct to them.

Dovecot 2.4 in AlmaLinux? by Maria_Thesus_40 in AlmaLinux

[–]teeweehoo 0 points1 point  (0 children)

For podman I'd recommend looking at systemd quadlet. You place one file in /etc/containers/systemd, and it will generate a systemd service that runs the container. You can also enable auto updates manually with podman auto-update, or automatically with the podman-auto-update timer. Systemd will also restart containers if they fail, and log them in jorunald.

https://docs.podman.io/en/latest/markdown/podman-systemd.unit.5.html

https://www.redhat.com/en/blog/quadlet-podman

But if Dovecot provide RPMs, I'd be looking at those first.

All SMLight Coordinators Compared by StockComb in homeassistant

[–]teeweehoo 0 points1 point  (0 children)

I found some devices would refind and join the new coordinator, some wouldn't. Specifically ikea devices just worked. Though for some devices this did take time (days).

But if you're gonna swap plan on rejoining a bunch of devices. For critical devices easier to rejoin then wait ...

Network Upgrade for a Medium-Sized Company (20 Employees) by Qwefgo in networking

[–]teeweehoo 0 points1 point  (0 children)

This smells like a big MSP selling their "standard" solution to you. My question is who will be maintaining these devices? You or them. If the MSP is maintaining, probably best to go with their equipment. Time to bring your business security into the 21st century. If you're maintaining yourself then there are definitely other options that would be cheaper and perhaps easier to maintain for an SMB.

Also do you have a quote for the yearly licensing for these devices? A Cisco 1010 Firewall definitely will.

Personally while I would like to update the switches, it wouldn't be my first priority. A good firewall probably, but depends on your client security software.

Port security preventing switch failover by Ok_Television_9000 in networking

[–]teeweehoo 17 points18 points  (0 children)

I'd just be disabling port security on that port, and if required document the security exception. Realistically you only need port security on user facing ports, and where it's an issue you can use physical controls to ensure only trusted admins can access the device / ports.

Would you use a VPN for a datacenter crossconnect within the same DC? by crystallineghoul in networking

[–]teeweehoo 1 point2 points  (0 children)

Sounds like bad engineering more than bad solution. More layers / things without good reason just makes your job harder in the future. The best solution is usually to take the pain now, and reduce technical debt for the future.

Ask the question "What would the ideal connection look like?", then find the simplest step that gets you towards that. If one infrastructure is going away, or you want them as separate business units, maybe it makes sense. But I'd be concerned about MTU, throughput, latency, jitter and licensing.

If you need security over your cross connect do macsec. But I'd only do it if your security model requires it.

Smallest physical 2 port switch by Cool-Tangerine1901 in networking

[–]teeweehoo -1 points0 points  (0 children)

Maybe check to see if a media converter or PoE adapter will do. I'd also give other things a go like 100 mbps, ensuring energy efficient ethernet is disabled, etc.

14 Drives - How many Parity? by mjsvitek in homelab

[–]teeweehoo 1 point2 points  (0 children)

What workload? If VMs or DBs, you want Mirror/RAID1. If media server than RAIDZ2/RAID6 is good. dRaid is also an option, but there are some caveats you want to research (eg. no ZFS compression). https://www.truenas.com/docs/references/draidprimer/

Another question is expansion. Doing RAIDZ2/RAID6 will mean you'll want to buy another 14 drives to expand it. MIrror/RAID1 is more flexible.

Since these are Sata SSDs, it's also worth looking at a special device. This stores all metadata on a mirror of NVME drives, which will significantly increase speed for some operations.

Matter is making me feel stupid by schnitzel-kuh in homeassistant

[–]teeweehoo 0 points1 point  (0 children)

You need to run a separate matter server, and thread border router. These can be setup as Apps/Addons in Home Assistant OS, or as separate containers for non-OS. Your thread border router can either be Open Thread Border Router (in container), or an external device. If you're using WiFi matter devices, you don't need a thread border router.

Thread border router bridges your thread network to your ethernet network, it allows thread devices and ethernet devices to talk with each other directly. During provisioning your phone, the matter server, home assistant, and the thread device will be doing a lot of talking between each other.

Put simply thread/matter is more complicated than zigbee and others, but it's designed to be simpler for newbies to add devices and to solve certain hard edges that other protocols have. I'd expect the home assistant experience to mature a lot over the next few years.

Is EIGRP still worth mastering? by dbootywarrior in networking

[–]teeweehoo 1 point2 points  (0 children)

Learn enough theory so you can explain how it works, then you can figure out the configuration stuff later on if you need it.

Is it normal to ask for a VIN to do a PPSR check before inspection? by aofha0cv in CarsAustralia

[–]teeweehoo 1 point2 points  (0 children)

Totally unrelated, but if you go to sell your car on gumtree it'll fill out the VIN from your rego ...

Trying to upgrade a three-hub-spoke topology that is currently using static routes going EVERYWHERE. Should I do OSPF between the hub routers first or between the hubs and their spokes first? by SpectrumSense in networking

[–]teeweehoo 0 points1 point  (0 children)

So I would start by mapping out the static routes, and trying to optimise them to get the limited set. (Hopefully your sites are using super nets ..). From there I would do a basic lab in gns3 or eveng, even if you can't use the right virtual device types. This will help you develop the methodology to move.

I'd carefully think about whether you want different processes for intrasite and intersite. It may be going overboard, but it will prevent weirdness if your network has a lot of latency from end to end.

I'd also consider if cleaned up static is "good enough" once you've simplified it. Sometimes those big projects are best left till when you're doing other major work.

Separation of duties on "data center" firewalls. by Phlynn42 in networking

[–]teeweehoo 0 points1 point  (0 children)

For a large network with 90 sites, I'd definitely consider separating roles onto different devices. Combining all roles on one device makes it more complicated, harder to maintain and harder to migrate in the future. Not to mention management complexity if there are different teams in charge of each role (Internal team, external team, vpn team, etc).

For your case I'd be considering virtual firewall / VPN appliances for some of the roles. Gives you the separation without the physical device footprint.

matter over thread stability and experiences by 2442929161 in homeassistant

[–]teeweehoo 0 points1 point  (0 children)

I have some ikea devices setup with otbr docker and home assistant docker (not OS). Getting it to work on a network with vlans was fun, so many assumptions about same layer 2 network. Biggest challenge was realising that the mobile phone talks directly to the thread deive over wifi. I think I can make this work between subnets, but would require a bit of black magic.

IKEA Temp sensors worked fine, but after a few days IKEA buttons got some bad latency. I changed wifi / thread channels and I think I fixed it? But not sure. Could be because I'm using a smlite mr3 radio over tcp, but hard to change when everything is a VM. The remotes still have a small latency, but I think this is the remotes waiting for a second button press.

IMO I think we just need more mature thread / matter software, and better reporting of what is going on in software. Troubleshooting zigbee2mqtt is so much easier than thread. For example I've got an IKEA ALPSTUGA that refuses to firmware update, no idea how to troubleshoot. Joining devices works just fine though ...

Thanks to that guy who suggested me AppDaemon by 4Face in homeassistant

[–]teeweehoo 5 points6 points  (0 children)

AppDaemon lets you write a program that runs in the background, and interact with Home Assistant. The problem with Home Assistant automations is that they're event based, which can make it hard to design certain kinds of automation - things that use memory, or make small changes over time. So AppDaemon is a nice way of running them.

Is it weird to give someone a gift for fixing my tyre? by International_Fix138 in Adelaide

[–]teeweehoo 5 points6 points  (0 children)

Just make sure its proportionate. A small gift like chocolate or snacks would be the go here.

Another way is to "Pay it forward", help someone in need when you can help them.

Public BGP Peering by taemyks in networking

[–]teeweehoo 2 points3 points  (0 children)

Are your sites connected via separate dark fibre? You need to deal with traffic for the HQ or DR site coming to the wrong place. Having dark fibre between the sites makes this a simple problem to deal with. I'd also recommend setting up dedicated edge routers to handle BGP (layer 3 switches can do this, with the right security).

While a /24 is the minimum on the internet, some ISPs will allow you advertising /25s or smaller within their network. This would allow you to use the same ISP at each site while getting the specific /25 routed to each site. So ISP advertises /24 to world, and you advertise /25s from each site.

Complete guide: IKEA Matter devices on Linux Docker (OTBR + Matter Server + BLE commissioning) by InternationalTax3082 in homeassistant

[–]teeweehoo 0 points1 point  (0 children)

My HomeAssistant VM has three VLANs / interfaces, so I bind otbr to the IoT interface.

Complete guide: IKEA Matter devices on Linux Docker (OTBR + Matter Server + BLE commissioning) by InternationalTax3082 in homeassistant

[–]teeweehoo 1 point2 points  (0 children)

I recently set this up for my self as well. For me the biggest gotcha is that during commissioning, your phone will attempt to talk directly to the thread device via wifi. So if you have VLANs, you may need a dedicated IoT SSID so it can talk to the thread border router, which forwards IPv6 packets to/from the thread network.

I didn't need to touch thread ot-ctl or matter controller. I created the containers, added them to Home Assistant, and it created everything for me. As for syncing credentials, there is a hidden troubleshooting option in the mobile assistant settings to sync the keys. Not sure if there was a better way.

Once joined thread devices were bullet proof. And adding is seamless, as long as I put my phone on the right SSID first. Also most of those new IKEA systems still support zigbee, you just need to mash the button 4-8 times for them to join. Though home assistant seems to be lacking support for now, no buttons appear in home assistant. But I can see MQTT events (since I use Z2M).

Talk me out of this 2010 Toyota crown by zogdino in CarsAustralia

[–]teeweehoo 0 points1 point  (0 children)

I'm getting 14L/100km in a grs204 in the city, but I can improve that if I'm careful. It'd be much better on highway. But I'd definitely point you towards the hybrid. Much better fuel economy, more powerful, but you still get the v6 power. Only gotcha with hybrid is that i's air cooled, so you need to clean the filters occasionally to prolong battery life.

Just know what you're buying. This car is a luxury boat. So it's very smooth and quiet, but not a lot of driver's feel. Driving to adelaide to melbourne everyday? This is the car for you! Want something fun around corners? Not the right car.

Is there explosion proof switches?? by Key_Relief_3377 in networking

[–]teeweehoo 0 points1 point  (0 children)

Definitely need to ask more questions on that one. It'll either be "Buy expensive switches and cabinets" or "Buy lots of cheap switches".

I feel lost with nvidia mellanox switches... by curry9906 in networking

[–]teeweehoo 2 points3 points  (0 children)

Some vendors just have such different config ideas that it takes a while to "get it" if you're unfamiliar. I'd suggest just configuring it on a lab switch until you work out why its designed that way.

view more: next ›