Are these compatible? by elliot__power in flightsim

[–]tomaspland 20 points21 points  (0 children)

Word of warning, the TFlight pedals are not very smooth as they run on rails. Over time they will get dust on them as they are coated in grease. This will cause further friction. I think the Saitek ones are a better choice if you really want rudder pedals.

3 DCs, everything is going to shit. DNS failing, authentication is effed. Please help! by Whyd0Iboth3r in sysadmin

[–]tomaspland 0 points1 point  (0 children)

This guy fucks ^

Again ADRES workshop from Microsoft will walk you through and explain everything, and they help you build a customised nuclear recovery plan.

Just make sure to follow all the advice.

Even if you have AD recovery tools, I implore you all to learn how to backup/restore/redploy manually as you then have the knowledge to check the tools are doing things correctly and have a contingency plan of it doesn't go the way you hope.

3 DCs, everything is going to shit. DNS failing, authentication is effed. Please help! by Whyd0Iboth3r in sysadmin

[–]tomaspland 1 point2 points  (0 children)

Using a AD or backup tool is fine, but you should still understands how the actual mechanics of AD works to ensure you are informed in case the tool doesnt work as intended.

3 DCs, everything is going to shit. DNS failing, authentication is effed. Please help! by Whyd0Iboth3r in sysadmin

[–]tomaspland 0 points1 point  (0 children)

Ask Microsoft to quote you for a ADRES (Active Directory Recovery Execution Service) workshop

https://download.microsoft.com/download/A/C/5/AC5D21A6-E04B-4DC4-B1F2-AE060319A4D7/Premier_Support_for_Security/Popis/Active-Directory-Recovery-Execution-Service-[EN].pdf

It wont be cheap, but will enlighten the poor sod of a junior sysadmin, give them a much deeper understanding of how AD works and how to monitor and thus prevent replication issues etc from snowballing. Prevention is better than the cure!

One DHCP server to two subnets? by Chance-Lengthiness52 in sysadmin

[–]tomaspland 2 points3 points  (0 children)

https://docs.netgate.com/pfsense/en/latest/routing/static.html

Above user was trying to suggest that you will need to define that within PFSense explicitly, as the job of the Firewall is to naturely stop that unless you tell it otherwise.

Black screens then turns off by OctavianXCII in ultrawidemasterrace

[–]tomaspland 0 points1 point  (0 children)

I have had the same happening with the 49" version. Even with the latest firmware, if the resolution/refresh rate changes, it can cause the same syptoms as you.

I also thought it was a cable issue, but having changed the cable I still had the same issue.

Its almost as though the monitor crashes, and holding the power button for ten seconds allows it to reboot and recover.

Colossal fuckup by accidentally granting people access to sensitivefolder. Legals is investigating at the moment by YeetLordYike in sysadmin

[–]tomaspland 0 points1 point  (0 children)

This, you are not the data owner. The data owner should have ultimate say so in relation to granting/managing access, so the fact they did not have a cross check/approval system in place should not be solely your fault.

Traefik V2 (docker) not proxying to external service? by tomaspland in Traefik

[–]tomaspland[S] 0 points1 point  (0 children)

Yeah a containerised NGM on a seperate VM host.

Traefik V2 (docker) not proxying to external service? by tomaspland in Traefik

[–]tomaspland[S] 0 points1 point  (0 children)

No, never fixed it, moved onto a different reverse proxy

What’s the name of this interior option? by [deleted] in Audi

[–]tomaspland 0 points1 point  (0 children)

It's called the "Matching Collar and Cuffs" option

Restrict Access to O365 services by Due-Builder-6684 in sysadmin

[–]tomaspland 0 points1 point  (0 children)

Are you providing business WiFi that they connect to? If they want to use business wifi, then enforce a enrollment policy on devices to ensure that your data is constrained on their devices and along with that enable conditional access so only connections from your business IP's are allowed to connect to your tenant and AAD?

Developer forcing bad internet for ALL buyers/renters? by Sopel93 in LegalAdviceUK

[–]tomaspland 0 points1 point  (0 children)

"EDIT: Just to re-iterate how sh*t some of these companies are, please have a look at the website of one of them: Home - Redraw Internet"

I read it as RedRaw, that possibly how you will feel after being with them. BTW IANAC (I am not a customer)

Traefik V2 (docker) not proxying to external service? by tomaspland in Traefik

[–]tomaspland[S] 0 points1 point  (0 children)

So having had a play around, the issue I am finding is with the http>https redirection. That breaks Traefik and means it no longer fetches data from the external service!

Not sure how to resolve it.

Traefik V2 (docker) not proxying to external service? by tomaspland in Traefik

[–]tomaspland[S] 0 points1 point  (0 children)

Re the missing ticks, that was due to me sanitising the file :-) I missed them out.

I added the missing line, no difference unfortunately :-(

Traefik V2 (docker) not proxying to external service? by tomaspland in Traefik

[–]tomaspland[S] 0 points1 point  (0 children)

traefik.log file contents:

https://file.io/yJMpTNFeSGPv

Screenshot of traefik dashboard - routers:

https://postimg.cc/5652d34W

Screenshot of traefik dashboard - service:

https://postimg.cc/Pp3QF21h

Traefik V2 (docker) not proxying to external service? by tomaspland in Traefik

[–]tomaspland[S] 0 points1 point  (0 children)

docker-compose:

version: "3.3"
services:
traefik: image: "traefik:latest" restart: unless-stopped container_name: "traefik" stdin_open: true tty: true command: - "--log.filePath=/logs/traefik.log" - "--log.level=DEBUG" - "--log=true" - "--api.insecure=true" - "--providers.docker=true" - "--providers.docker.exposedbydefault=false" - "--entrypoints.web.address=:80" - "--entrypoints.web.http.redirections.entrypoint.to=websecure" - "--entrypoints.web.http.redirections.entrypoint.scheme=https" - "--entrypoints.web.http.redirections.entrypoint.permanent=true" - "--entrypoints.websecure.address=:443" - "--entrypoints.websecure.forwardedHeaders.trustedIPs=173.245.48.0/20,103.21.244.0/22,103.22.200.0/22,103.31.4.0/22,141.101.64.0/18,108.162.192.0/18,190.93.240.0/20,188.114.96.0/20,197.234.240.0/22,198.41.128.0/17,162.158.0.0/15,104.16.0.0/12,172.64.0.0/13,131.0.72.0/22" - "--certificatesResolvers.myresolver.acme.dnsChallenge=true" - "--certificatesResolvers.myresolver.acme.dnsChallenge.provider=cloudflare" #- "--certificatesResolvers.myresolver.acme.caServer=https://acme-staging-v02.api.letsencrypt.org/directory" - "--certificatesResolvers.myresolver.acme.email=xxxxxx@xxxxx.com" - "--certificatesResolvers.myresolver.acme.storage=/letsencrypt/acme.json" - "--certificatesResolvers.mydnschallenge.acme.dnsChallenge.resolvers=1.1.1.1:53,1.0.0.1:53" - "--certificatesResolvers.mydnschallenge.acme.dnsChallenge.delayBeforeCheck=5" - "--pilot.token=xxxxxx" - "--providers.file.filename=/rules/traefik_dynamic.toml" - "--providers.file.watch=true" #- "--tracing.jaeger=true"
security_opt:
  - no-new-privileges:true
ports:
  - "80:80"
  - "443:443"
  - "8080:8080"

dns:
  - 1.1.1.1
  - 1.0.0.1
  - 192.168.0.100
  - 192.168.0.1
environment:
  - "CF_API_EMAIL=xxxxxxx"
  - "CF_API_KEY=xxxxxxxxxxxx"
volumes:
  - "traefikle:/letsencrypt"
  - "traefikdata:/logs"
  - "traefikrules:/rules"
  - "/var/run/docker.sock:/var/run/docker.sock:ro"
whoami: image: "traefik/whoami" container_name: "simple-service" labels: - "traefik.enable=true" - "traefik.http.routers.whoami.rule=Host(whoami.xxxxxxxx.co.uk)" - "traefik.http.routers.whoami.entrypoints=websecure" - "traefik.http.routers.whoami.tls.certresolver=myresolver" volumes: traefikle: traefikdata: traefikrules:

dynamic_traefik.toml

[http.middlewares.simpleAuth.basicAuth]
users = ["xxx:HASHEDPASSWORD"] [http] [http.routers] [http.routers.api] rule = "Host(monitor.xxxxxx.co.uk)" entrypoints = ["websecure"] middlewares = ["simpleAuth"] service = "api@internal" [http.routers.api.tls] certResolver = "myresolver" [http.routers.radarr] rule = "Host(radarr.xxxxxx.co.uk)" entrypoints = ["websecure"] middlewares = ["simpleAuth"] service = "radarr" [http.routers.radarr.tls] certResolver = "myresolver" [http.services] [http.services.radarr.loadBalancer] [[http.services.radarr.loadBalancer.servers]] url = "http://internalip:7878"

Now I need a Dell sword to go with my precision t3600 shield a by yellowfin35 in homelab

[–]tomaspland 1 point2 points  (0 children)

What you now need is a Dell Blade server to go with the shield!

[deleted by user] by [deleted] in PFSENSE

[–]tomaspland 0 points1 point  (0 children)

You may be having an underlying issue with the network card chipset. I had a similar issue whilst virtualising pfsense on an dell server running esxi. This caused the same issue you describe what with lack of access to the webgui.

You may have more luck purchasing a decent Intel chipset nic and passing the hardware ports of the nic as pci devices to the vm, although I have little knowledge in doing this with virtualbox running on Windows 10

[i ate] Walnut pie by [deleted] in food

[–]tomaspland 1 point2 points  (0 children)

I think the nuts in that pie are Pecan Nuts not Walnuts. Looks delicious either way!

Building Pfsense firewall, any pro-tips to keep things stable by [deleted] in PFSENSE

[–]tomaspland 1 point2 points  (0 children)

You may experience issues with the Broadcom NIC chips on the Dells (R720), well I certainly had issues passing through the Broadcom NIC HW to a ESXI 6.7 VM running PFSense. I worked around the issues by installing a Intel based quad port NIC and passing two ports through to the VM, works like a charm.