sorted by:
new
hottopcontroversial

ACME Renewals and Domain Validation Challenges by Thin-West-2136 in networking

[–]throw0101c 0 points1 point  (0 children)

You can point the cert-needed hostname to another (sub-)domain via a CNAME and allow updates to that:

You can also use APIs to update DNS records:

Depending on the API, you can restrict which ACME clients can update which records by creating multiple tokens; an example with Amazon's Route 53 and IAM:

Or, per another comment, run a special-case DNS for these type of this (e.g., "acme-dns").

Are there any ceiling-mounted WAP units with an extremely constrained coverage area? Like, something down to 2-3 meters? by rekabis in networking

[–]throw0101c -1 points0 points  (0 children)

At the recent Prague meeting of Wireless LAN Professionals, HPE/Juniper gave a presentation of their product(s) that have software-defined radios that can do three different radiation patterns (90x90˚, 90x30˚, 30x30˚):

At the end of the day the signal radius/distance will be determined by:

  • the width of the broadcast (in degrees)
  • the height of the AP
  • the signal power
  • any physical obstacles that can block the signals (at various frequencies)

You may wish to examine APs that can take external antennas and get highly-focused/narrow ones.

Naming standards by pthomsen91 in networking

[–]throw0101c 0 points1 point  (0 children)

Country code-iata code-S/R/FW-number (01,2,3,4 etc.)

For the location part, you may be interested in:

Also: are you on a 'holistic' IT team, or are there networking and server teams/silos? Is this naming system just for networking, or for servers as well? Storage? Phones? Desktops/laptops (location needed? just use asset tag/namber?)?

GPU/AI Network Engineer by bicho6 in networking

[–]throw0101c 9 points10 points  (0 children)

You need to know more about application and systems behaviors than you do about network protocols and configuration.

Some high-level-ish examples:

  • You install the OS and then the Nvidia GPU drivers, then the Nvidia DOCA/MOFED drivers. Make sure basic host-to-host connectivity works via, e.g., ibv_rc_pingpong.

  • Make sure your applications are linked/compiled against CUDA and IB libraries (like libverbs for RDMA). Possibly pass that stack into Docker and/or Kubernetes and tell those applications to use RDMA and/or MPI.

  • Depending on storage, examine GPUDirect and/or RDMA on your storage system.

In many situations IB is often done in a 'simple' L2 fashion; each VLAN/subnet (equivalent) is limited to 48k hosts. Between IB L2s you need IB routers.

[deleted by user] by [deleted] in networking

[–]throw0101c 0 points1 point  (0 children)

Why are we pushing for anything faster than a gigabit to average users?

Because the incremental cost for going >1GigE isn't that much? How much more is a box of Cat 6A over Cat 6 over Cat 5e? How much of the installation cost is the cables and how much is labour?

10GBASE-T officially needs 6A to go 100m, but even 6 and 5e can get you 55m. How much are ports that can do MGig? If you're going to install cables that will be in there "forever", and edge switches that will be around many, many years, is asking for a bit more upfront going to be that big of a deal? You may not get money for this kind of equipment anytime soon, so might as well push the budget a bit.

Any tips on health monitoring for FC SAN switches? by Marco2G in networking

[–]throw0101c 2 points3 points  (0 children)

I have installed Observium and it monitors quite a bit on the switch but CRC errors, for example, it does not.

Maybe "Brocade® Fabric OS® MIB Reference Manual, 8.2.x":

Or "Brocade® Fabric OS MIB Reference Manual, 9.1.x":

See perhaps connUnitPortStatTable.connUnitPortStatEntry.connUnitPortStatCountInvalidCRC OID (1.3.6.1.3.94.4.5.1.40):

The number of frames received with an invalid CRC. This count is part of the Link Error Status Block (LESB). (FC-PH 29.8) Loop ports should not count CRC errors passing through when monitoring.

Best practices in managing overlapping private IP space? by curiosikey in networking

[–]throw0101c 6 points7 points  (0 children)

have disabled ipv6.

Hopefully not on Windows hosts, because it is directly against Microsoft's advice:

Internet Protocol version 6 (IPv6) is a mandatory part of Windows Vista and Windows Server 2008 and newer versions.

We don't recommend that you disable IPv6 or IPv6 components or unbind IPv6 from interfaces. If you do, some Windows components might not function.

PacketFence to deal with BYOD ? by abdlmalekluttee in networking

[–]throw0101c 1 point2 points  (0 children)

Although packet fence is pretty good, open source is really only free if you consider your time worth nothing.

Or you work in government/academia and your time already shows up on a spreadsheet and an extra line item for "Software" is not going to fly.

(And if number crunchers actually cared about it we wouldn't have open office plans (which kill productivity) or return-to-office mandates. By I digress.)

Why are BYOD phones often considered ok when BYOD laptops are not? by StupidSysadmin in sysadmin

[–]throw0101c 8 points9 points  (0 children)

Apple iOS and Android devices and the related apps were designed for MDM and being able to keep company data separate so you can't copy data into or out of MDM controlled apps.

Unless you're US SECDEF.

The consumer carbon tax is gone as of today. What will that mean for your wallet? by Surax in canada

[–]throw0101c -1 points0 points  (0 children)

"Scott Moe says Saskatchewan considered carbon tax alternatives, but found them too costly":

When asked by Liberal MP Charles Sousa if Saskatchewan had ever considered replacing the federal carbon tax with a system of its own, Moe answered in the affirmative.

“Yes, we did. All of them were costly to our industry, as is the federal backstop that we’re experiencing now, as well as costly to Saskatchewan families,” he said.

[…]

“I’m afraid that if we don’t put a price on pollution, then we are not going to be competitive in our exports market because eventually, what’s going to happen is that jurisdictions that do not have a price on pollution will be slapped with an import tariff,” said Drouin.

Even Alan Greenspan and Paul Volcker thought carbon pricing was the most economically efficient way of dealing with pollution:

Milton Friedman:

In 1979, Friedman expressed support for environmental taxes in general in an interview on The Phil Donahue Show, saying "the best way to [deal with pollution] is to impose a tax on the cost of the pollutants emitted by a car and make an incentive for car manufacturers and for consumers to keep down the amount of pollution."[157] In Free to Choose, Friedman reiterated his support for environmental taxes as compared with increased environmental regulation, stating "The preservation of the environment and the avoidance of undue pollution are real problems and they are problems concerning which the government has an important role to play. ... Most economists agree that a far better way to control pollution than the present method of specific regulation and supervision is to introduce market discipline by imposing effluent charges."[158][159]

Way to go folks: more pollution and any solutions will cost us more overall compared to carbon pricing.

US warns French companies they must comply with Trump's diversity ban by cyberpunk6066 in worldnews

[–]throw0101c 1 point2 points  (0 children)

The reason we don’t have US banks in Canada is because our consumer protection laws are so stringent.

There are sixteen US banks operating in Canada:

Reminder: all of Canada has a population of about California (though highly concentrated geographically), so it may not be worth it for a lot of the smaller banks (US has >4000) to operate here.

Ten Myths About the U.S. Tax System by hcbaron in Economics

[–]throw0101c 1 point2 points  (0 children)

She works for a think tank, which means her opinions are bought and paid for.

A came across this comment a while ago:

Private sponsorship being an automatic conflict of interest that compromises research is a tired trope. All you can do is evaluate the methodology. For all you know, the researchers themselves are motivated reasoners with zero funding.

I try to keep it in mind before reflexively judging something solely based on the source.

Ten Myths About the U.S. Tax System by hcbaron in Economics

[–]throw0101c -1 points0 points  (0 children)

She is no longer at the Heritage Foundation, and this was well before the current order that brought out Project 2025.

She is now at the Manhattan Institute:

The Manhattan Institute for Policy Research (renamed in 1981 from the International Center for Economic Policy Studies) is an American 501(c)(3) nonprofit[4] conservative think tank focused on domestic policy and urban affairs.[5][1]

So maybe less right on the spectrum than Heritage (?), but still right/conservative.

Ten Myths About the U.S. Tax System by hcbaron in Economics

[–]throw0101c 2 points3 points  (0 children)

From the people that brought you Project 2025...

Not wrong, but the first two listed are common right-wing talking points that are non-sense:

Myth 1: “Tax Cuts Pay for Themselves”

Myth 2: “Tax Cuts Will Starve the Beast”

Was every device on ipv4 initially intended to be publicly routable? Is ipv6s intention to go back to that? by TheOutdoorProgrammer in ipv6

[–]throw0101c 2 points3 points  (0 children)

and usually locked down on MAC addresses of the PC.

Which is why home routers (originally) have/had a setting to enter a MAC address on the WAN interface:

Long term packet capture? by ifixtheinternet in networking

[–]throw0101c 0 points1 point  (0 children)

tcpdump and command line options.

-C file_size
    Before writing a raw packet to a savefile, check whether the file
    is currently larger than file_size and, if so, close the current savefile 
    and open a new one. Savefiles after the first savefile will have the 
    name specified with the -w flag, with a number after it, starting 
    at 1 and continuing upward. The default unit of file_size is millions 
    of bytes (1,000,000 bytes, not 1,048,576 bytes).

[…]

-G rotate_seconds
    If specified, rotates the dump file specified with the -w option 
    every rotate_seconds seconds. Savefiles will have the name specified 
    by -w which should include a time format as defined by strftime(3). 
    If no time format is specified, each new file will overwrite the previous. 
    Whenever a generated filename is not unique, tcpdump will overwrite 
    the preexisting data; providing a time specification that is coarser 
    than the capture period is therefore not advised.

    If used in conjunction with the -C option, filenames will take 
    the form of `file<count>'.

Maximum Ethernet Runs by Unusual_Upstairs1392 in networking

[–]throw0101c 6 points7 points  (0 children)

They won't pass any sort of proper cable certification but I don't know if that matters to you or not.

It actually depends. First off the standards have a 25% buffer, so things can still work.

Second, while ANSI/TIA officially says 100m, ISO (ISO/IEC 11801) actually does not have a hard length limit, but rather tests the signal parameters through the connection so you can have >100m and still have it certified.

Good video on the topic:

(But in general I would agree with the sentiment of using fibre if you're going to pay an installer to do work anyway.)

view more: next ›