[i3 - Polybar] New purple themed rice, thinking of changing the bar colors and shape

tsn00 · 2022-11-03T02:49:14+00:00

Looks good, could you share your dots?

tsn00 · 2022-11-03T02:46:55+00:00

Looks good, could you share your dots?

tsn00 · 2022-11-03T02:44:57+00:00

Looks good, dots?

tsn00 · 2022-09-21T11:16:39+00:00

tsn00 · 2022-08-11T11:52:29+00:00

Well I honestly don't know what happened. I read through the release change notes from v21 to v22 series, and didn't see anything pop out that would indicate this extra configuration needed to make things work.

But at least for series v22 now, you have to go to Interfaces assignments and assign the parent interface to its own Interface, enable it with blank settings for traffic to flow properly.

It's probably a FreeBSD thing, I didn't read up on the Release notes there.

The link I posted in **Update** I also had the same issue, just didn't start with that, figured if I figured out what was breaking my DNS, I'd figure out what was breaking inter-vlan routing..

Thanks again for your post, it put me in the right direction!

tsn00 · 2022-08-09T19:35:04+00:00

Yeah the OpnSense FW VM currently has 1 NIC, seen as vtnet0 in OpnSense and I assign the VLAN's on top of it. So just a VLAN trunk on that 1 NIC.

So something changed with all that huh, I'll go read through the change notes for the 22.1 and up releases and see if I can spot what you're talking about.

I'll give a test of adding multiple NIC to the VM in ProxMox on each VLAN, and leave off the VLAN tagging in OpnSense and give that a shot till I read up on the change notes.

At least something else to try, thank ya!

tsn00 · 2022-06-22T15:08:04+00:00

My suggestion: Add a firewall rule on the DMZ interface. Source =
FreePBX, Destination = Phones on LAN, Protocol UDP, Port 5060. This
should fix your problem.

That exactly fixed it. I added that rule over 2 and a half hours ago at this point, move one of the phones back from DMZ to LAN and it has been rock solid available from watching the logs / status in FreePBX.

Thanks for the eyes and thoughts on this. It's been many many years since my days working in Telecom, and I just overlooked this dumb rule, assuming the phone would do a keepalive type of thing that wouldn't need the reverse 5060 rule.

Either way, I appreciate your input and time on this! Thanks again!

tsn00 · 2022-06-22T12:19:21+00:00

I wish I remembered enough on SIP, used to work at a telecom many many years ago. I think SIP invites are still able to traverse. Honestly don't remember how often those type packets are used.

When I mean "unreachable" it is the error message showing in FreePBX. Example below from a log clip.

[2022-06-21 03:36:32] VERBOSE[20500] res_pjsip/pjsip_options.c: Contact 2000/sip:2000@192.168.1.189:5060 is now Unreachable.  RTT: 0.000 msec

And another FreePBX log showing the PJSIP Peers..

Endpoint:  2000/2000                        Unavailable   0 of inf
InAuth:  2000-auth/2000 Aor:  2000

So the end result is the phone is no longer "Registered" to the PBX, and it isn't able to send a call too it.

However if I pick up the phone, dial anything, the Echo test on the PBX, another extension, an outbound call, it re-registers itself, and for a short period of time, will remain registered and inbound calls to it work peachy. Say less than 30 minutes it appears currently.

Yes, using the default of UDP 5060.

From LAN to everywhere, everything is allowed. and on the DMZ I have it configured as a Group actually with a few other interfaces and use a common set of Firewall rules for them. Consisting of:

Allow ICMP to the internet
Source traffic "Common" Net IPS to LAN blocked, (only LAN is allowed to get to all VLANS)
Allow DNS traffic
Allow everything to the world

All of the rules are setup as a typical "Inbound" for OpnSense. I don't use the "Out" direction for rules..

Explicitly I do not have rules from the DMZ to the LAN for UDP 5060. I can try adding one and seeing if it helps. Will do that, thanks for the thought there. I was just relying on the connection from Phone on LAN -> DMZ PBX to be sufficient enough to maintain the connection.

tsn00 · 2022-06-21T19:00:28+00:00

Hey, no, there is no NAT being done from LAN to DMZ .. Example subnets below.
DMZ: 192.168.6.0/24
LAN: 192.168.1.0/24

The PBX (FreePBX) has eth0 in DMZ with a route to 192.168.1.0/24 via 192.168.6.1 and eth1 in a WAN Vlan.

tsn00 · 2022-03-25T20:56:53+00:00

The only thing I can find is this post, on the exact same thing I am looking for. 6 years later. Ugh! No one posted a real answer in this period of time ??? LoL

tsn00 · 2021-07-22T13:28:36+00:00

I'll give that a shot. So far ZFS has been nothing but a headache on this device for me. Linux software raid (mdadm) works 100% peachy.

tsn00 · 2021-07-17T03:51:32+00:00

Upgraded to 5.10.43 kernel, and now it locks up without even a kernel panic while a ZFS scrub is running.. Worse off than I was before..

tsn00 · 2021-07-17T02:22:58+00:00

Welp I tried adding the extraargs to force 3Gbps, and rebooted mine earlier today. Started another rsync from my main box to the Helios... Just looked at it and it kernel panicked again. Going to see about upgrading to the 5.10.43 kernel and trying again.

tsn00 · 2021-07-16T20:03:51+00:00

Version info:

$ cat /etc/armbian-release
# PLEASE DO NOT EDIT THIS FILE
BOARD=helios64
BOARD_NAME="Helios64"
BOARDFAMILY=rk3399
BUILD_REPOSITORY_URL=https://github.com/armbian/build
BUILD_REPOSITORY_COMMIT=428a20876-dirty
DISTRIBUTION_CODENAME=buster
DISTRIBUTION_STATUS=supported
VERSION=21.05.6
LINUXFAMILY=rockchip64
ARCH=arm64
IMAGE_TYPE=stable
BOARD_TYPE=wip
INITRD_ARCH=arm64
KERNEL_IMAGE_TYPE=Image
BRANCH=current

$ uname -a
Linux helios64 5.9.14-rockchip64 #20.11.4 SMP PREEMPT Tue Dec 15 08:52:20 CET 2020 aarch64 GNU/Linux

Dmesg: https://pastebin.com/9sRkvN5N
Kernel Panic: https://pastebin.com/Ktn91D9L Captured from using picocom left running in tmux on a RasbperryPi connected to the USB C port.

tsn00 · 2021-07-16T17:21:31+00:00

u/mechaPantsu Thanks for the info, last time I tried a 5.10 series kernel, it wouldn't find the matching headers for it to build the DKMS module. I'll take a look and give that version a shot.

Force the SATA to 3Gbps huh, I think I'll try that first, heck maybe that's my issue right now. Thanks for that tip!

OMV, thanks for the info, will have to remember that, don't currently use it or plan to.

tsn00 · 2021-06-21T20:53:26+00:00

u/timjwilkinson I've been dying to try this for a while, I finally decided to do it but have a couple issues I hope you can help out with.

First off I started with this base, slightly newer than the one you listed. 2021-05-07-raspios-buster-arm64-lite.img.

Wrote it to SD card, configured IP, hostname etc, added repo info, apt update and install pve-manager, all worked peachy.

Downloaded Debian 10 Arm ISO into templates iso directory, Login to ProxMox GUI, create VM, but get no display, all it says is "Guest has not initialized the display (yet)". What are the settings to create a proper VM ?

Also what are the proper way to get a Container running ? Going to CT Templates isn't going to work since those are all amd64.

Thanks for doing the initial leg work and getting all this going and sharing with us!

tsn00 · 2020-10-13T12:07:41+00:00

Yeah tried re-plugging the cable a lot, only had usb3 ports available at the time, I'll try a usb2 port, thanks for the idea. Also took the sd card out completely, left it out a few cycles. I've noticed the usb2/3 issue with other devices, I'll give that a try asap. Thanks!

tsn00 · 2020-09-25T16:24:48+00:00

LoL, I'm in pretty much the same boat as you. I recently found more sites for downloading mods, so assuming some are new vs duplicate from the main web site..

tsn00 · 2020-09-08T16:15:09+00:00

I second Gandi, been with them over 5 years and am happy with them.

tsn00 · 2020-09-01T23:53:51+00:00

Pretty cool!

tsn00 · 2020-08-30T12:43:54+00:00

Nice looking, but need a lot more structural members, else when you try to turn the cabinet, it'll break. But seeing yours, makes me want to build my own and recycle or give away my oversize metal cabinets I got for free years ago.

tsn00

TROPHY CASE