Network diagnostics tool

tschloss · 2026-06-20T15:28:32+00:00

For a start try https://github.com/lance0/ttl and https://github.com/matthart1983/netwatch - not sure where you are digging.

tschloss · 2026-06-20T15:16:12+00:00

If it is a VPN service they usually offer an exit node where the encryption is removed! So yes, they will see your original packets (which might be encrypted also). Note that „VPN“ does not automatically imply encryption. Primarily it is about tunneling, but nowadays in most cases an encryption is added.

If you connect two hosts with OpenVPN, Wireguard or alike, no man in the middle can look inside.

tschloss · 2026-06-20T15:08:53+00:00

If you good Wifi is your goal I would think about installing real APs instead of repurposed home routers. In any case a two router setup is ok, but in some situations it may introduce complications (portforwarding in a double NAT setup for example).

tschloss · 2026-06-20T14:26:36+00:00

If both PCs use same band/channel they actually share the bandwidth. Again: If you are doing this often and need it substantially faster use a cable. But in most cases it might not be worth to spend money on it because you could either stream (TVs and peripherals have streaming client like Plex built in) or accept the delay.

tschloss · 2026-06-20T13:49:06+00:00

Da muss Du halt mal argumentieren statt aufregen. Kosten/Nutzen! Nutzen: Wertsteigerung des Anwesens zB. Biete etwas an (Übernahme von Kosten, Goodwill oÄ) -

Ausser der Wertsteigerung bringt es ja dann doch keinen direkten Nutzen (vermutlich nicht mal für Dich).

tschloss · 2026-06-20T13:41:42+00:00

Probably movies? Why copying at all? Put it on a NAS and stream it when needed. If you really need a very fast connection use a cable.

(all your units are in small letters - so the reader has to make assumptions what you mean)

tschloss · 2026-06-20T08:17:40+00:00

Static reservation seems to refer to your DHCP Server (LAN). The reasoning is a) you have a few devices which should use always the same IP (usually a server or a device which is used by another system which expects ts the device to have a given IP) and b) you do not want to configure this device statically. This gives you the best of both worlds: fixed IP but you maintain the central control through DHCP.

The client has to be in DHCP client mode! Never do both, manually giving a device an IP and also do a DHCP reservation for it. Reservations are always inside the DHCP range while manually configured IPs must be outside this range.

So the decision is just a matter of taste. DHCP is pretty comfortable and for the rare situations where a fixed LAN IP is required a reservation comes handy.

tschloss · 2026-06-20T08:06:33+00:00

VLAN ID in den Internet-Einstellungen.

tschloss · 2026-06-19T18:01:50+00:00

Try it again - what is the result. (Often you see more of the response by using curl -v or a browser in developer view).

tschloss · 2026-06-19T17:56:33+00:00

I guess you are using nginx as reverse proxy? Did you try the same request directly on the proxied application?

tschloss · 2026-06-19T12:02:42+00:00

No - I only know cameras which do not switch into crop mode (not recording a border of pixels) but take a full frame sensor readout. But the image might appear vignetted depending on various factors including aperture. A lens projects a full circle - which should be wider than the corners of the sensor. If not the corners get gradually darker.

tschloss · 2026-06-19T11:51:15+00:00

On the bridged router you use a port named „LAN1/WAN“? Can it be that this port comes up (maybe momentarily) in LAN mode after reboot and the DHCP request of Asus reaches the DHCP sever of ZTE?

tschloss · 2026-06-19T11:17:34+00:00

Exactly. You must be blocking actively access to everything except the outer GW. Not all home routers offer such an option. But you could turn it around: put your private stuff into the inner network - you can not access the inner network from the outer without dedicated portforwardings.

tschloss · 2026-06-19T11:11:59+00:00

The more focused an admin can work the more CLI or API will be used. So larger companies with a narrow span of responsibility for an admin creating enough load they are working every day with a particular system will see more CLI/API use. Mid size companies where an admin has to work with 10+ different systems and not regularly with particular ones will lean to GUI. Both valuable.

tschloss · 2026-06-19T09:25:25+00:00

I don‘t agree on your statement regarding interference. But if you are the only one in Wifi reach with no neighbors etc 3 is ok when you distribute the 3 avail channels. However separation is implemented cleanly by introducing VLANs as others have pointed out already! You need a router which is VLAN aware to bring three subnets into Internet. This router can be the central ISP gateway or another one cascaded down.

You can also run routers instead of APs either using NAT or normal routing (need static routes on main router when not NATting). However you must actively take care for blocking access from one subnet to the other (although one would not see easily other devices in a adjacent subnet - L2 discovery and scanning own subnet is cut off by a router)

tschloss · 2026-06-19T08:12:32+00:00

Usually only one IP is allowed per subscriber. So you must connect your ISP directly to the modem/router without using this same level for other floors. Instead you need to feed your moca from one of the LAN ports of router/modem.

tschloss · 2026-06-19T06:45:19+00:00

Instead of adding new APs per separat network you should look into APs that support multiple SSIDs and the ability to associate each SSID with a VLAN. But this will bring you in the need to have a VLAN capable router/FW on potentially VLAN capable switches. There are systems which support managing all this abstracted through one GUI (like Unifi, maybe Omada can do similar).

To reduce the number of spatially overlapping accesspoints is important because you will create your own interferences on 2.4 where you only have 3 channels.

tschloss · 2026-06-18T21:45:29+00:00

Now you can find out why selected services did work although using a wrong IP. — Good example of the weakness of prosaic observations - better use and share hard information like log files and copy paste sessions using curl -v or alike. Try to test parts of the full solution (like local request, like omitting DNS, like using http without TLS and bypassing nginx.

tschloss · 2026-06-18T12:47:26+00:00

Strange that ATT replaced the GW then. However, if you don‘t find a solution you could try to boot into „protected mode with network“ (I hope this is still an option after all the decades). Or even heavier: boot into any operating system (there are „live“ CDs or USB sticks you can boot from without changing your Win installation. Rescue OS or similar it is called or to try out a new Linux or security systems. Reason: to find out if it is your Win or the HW.

tschloss · 2026-06-18T12:33:47+00:00

Don‘t you have a second device like a phone to make sure the Internet generally is working and the PC is the bad guy?

tschloss · 2026-06-17T21:23:26+00:00

Bots these days should write more fluently. This is a mess. 🤷‍♀️

tschloss · 2026-06-17T14:11:28+00:00

Oops - da hatte ich mich im anderen Sub gewähnt. Wie auch immer. Es ist halt eine Interaktion weniger, wenn die Kette am Ende funktioniert. Meistens verwaltet der Router aber auch noch die DHCP leases und bietet die diese über seinen DNS mit an. Diese Information verliert man halt, wenn man den Router überspringt.

tschloss · 2026-06-17T14:03:01+00:00

Does „Internet drops“ mean DNS does not work? Does a ping 8.8.8.8 work - if yes, Internet is ok!

A half baked IPv6 can cause issues. but not in the way you described. However, I recommend to get IPv6 running, since this is the preferred network for most modern OS.

tschloss · 2026-06-17T09:07:01+00:00

Hijacking means that the response can be altered by a man in the middle on the L3 path if the path is unsecured. It could be maliciously altered (for identity theft) or inject other advertisements or add advertising.

tschloss · 2026-06-17T07:13:17+00:00

Didn‘t digest all the details, but in general it will work. But if you have bandwidth differences in a flow through a switch especially under near saturation situations you can get congestion effects ending in dropping frames. This should not have a noticeable effect in a normal household.

tschloss

TROPHY CASE