Trace route is a hack lol. Some excellent quotables in here

https://gekk.info/articles/traceroute.htm

Edit: full disclosure it's not entirely correct, see https://www.theregister.com/2024/12/14/mpls_traceroute_history/ and https://systemsapproach.org/2024/12/09/three-packets-walk-into-a-tunnel/

#Networking

We're going to need a second AP to reach the second floor. My Ubiquiti UniFi nanoHD has been going strong for over 5 years now, so I figured I'll go with another UniFi AP, and since it will hopefully be just as long-lived, I went with the most future-proof option, the U7 Pro. 2.5 Gbps port, Wi-Fi 7, 6 GHz, all the works.

She's quite a bit bigger than my nanoHD! Makes it look downright... nano

#networking #mb

Alt...

A round white disc with a U logo coming out of a box thst says UniFi on it

Alt...

Two round white discs with U logos on them, one bigger than the other

The next scheduled "Network Management with the OpenBSD Packet Filter Toolset" fullday session is at EuroBSDcon in Zagreb, 2025-09-25 10:30–17:30: https://events.eurobsdcon.org/2025/talk/FW39CX/

register here: https://2025.eurobsdcon.org/registration.html

#openbsd #freebsd #pf #packetfilter #networking #security #eurobsdcon

I hate WPS WiFi connections because they never bloody work properly and it takes 10 minutes to get a printer connected. Then a week later it mysteriously disconnects without any apparent reason. I always end up wishing I'd plugged in a CAT 5 cable instead.

I didn't use WPS because it was easy but because I thought it would be easy and I never learn.

#wifi #printers #networking

Alt...

Picture of a HP Laser printer control panel with the message Network Connection Failed Press [OK ] to continue

"Yes, The Book of PF, 4th Edition Is Coming Soon" https://nxdomain.no/~peter/yes_the_book_of_pf_4th_ed_is_coming.html (also https://bsdly.blogspot.com/2025/07/yes-book-of-pf-4th-edition-is-coming.html), title still true, actual publication date TBD, #bookofpf #pf #packetfilter #openbsd #freebsd #networking #security #trickery #hacking

No huge details (more on that in later guides), but I wrote about the basic hardware setup for my home network based on #openbsd

"My OpenBSD Home Network Setup"

https://btxx.org/posts/network-setup-2025/

#networking #router

In one month (2025-09-25), there will be a "Network management with the OpenBSD Packet Filter Toolset" tutorial https://events.eurobsdcon.org/2025/talk/FW39CX/ at #eurobsdcon in #zagreb To register: https://2025.eurobsdcon.org/registration.html #openbsd #freebsd #networking #security #unixlike

In general, I like netcup. The FediMeteo VPS rocks and they're quite reliable but....their IPv6 implementation is such a mess! Hetzner allows you to route, so each vnet jail can have its own IPv6 address. On netcup, I have never been able to achieve such a result.

#ipv6 #Networking

Anyone using OVHCloud with IPv6?
I have a server at Netcup.de and it seems, there's a nasty routing issue from OVH to the German Nuremberg Datacenter of NetCup.

Could someone try reaching out to 2a0a:4cc0:c1:2f90::2 from an OVH network? (Ping, SSH, Traceroute ..)

#networking #ovh #netcup #fedihelp #routing #ipv6 @OVHcloud @netcup

Routing is a fascinating thing. I was having slow connectivity issues on my mobile phone via the cellular network. It wasn't a DNS issue, but a latency one. I opened a WireGuard VPN to my home network: much better.

#Networking #IT

Change control window closed and another 15% of our subscriber base was moved to the new BNGs. 22% to go and most of those can be done in two more cutovers. It’s been almost a year but we are at the pointy end of it now.

#juniper #isp #networking

There is a new Café in town. The illumOS Café

The news is wonderful, the concept interesting, the setup simple.

Want to learn more? Surf to this link

Thank you 💕 @stefano

#Networking #programming #OpenSource #FediVerse #decentralized #illumOS

https://it-notes.dragas.net/2025/08/18/introducing-the-illumos-cafe/

Alt...

The screencap displays a webpage titled "The illumos Cafe Project" with a dark background and white text. The content explains that the illumos Cafe is a project similar to the BSD Cafe, focusing on positivity and inclusivity. It aims to provide services running on illumos-based operating systems to demonstrate their reliability and resilience. The text emphasizes the importance of diversifying operating systems to improve the Internet's reliability and resilience, noting that the Internet was originally decentralized but has become a tool for big players. The section titled "Community and Philosophy" highlights the desire to connect and build relationships. The webpage's URL is "it-notes.dragas.net," and the page is viewed on a mobile device with a battery level of 80%. Ovis2-8B 🌱 Energy used: 0.185 Wh

#Signal group about #Meshtastic

a decentralized network using license-free radio to get reliable and independent messaging

Meshtastic.org

https://signal.group/#CjQKIKbTI-Qne1canCIsfz7qJFawNLdkuiJbSMuo5ejHd30HEhClGT1ZO4WwuvywBXYh__el

#SignalGroups #decentralization #decentralized #networking #selfhosting

I just unwound an ethernet cable that had been wrapped up tightly, like paracord. I had done that wrapping, years ago. I could feel the eyes of @nuintari on me. I used the cable, disconnected it, and put it away.

Wrapped up exactly as I found it.

#networking #horror #bofh

☕ Good Morning Homelabs ☕

Freitagsgrußküsse von dem 💤 verschlafenen 🌞 annnyway, new place, new in-wall panel of cat6 terms and a 5GbE symmetric fiber line. I cleaned up the initial mess in June, second iteration this past week/ish. Generally, most of this hardware should be in one of the office racks (1U switch + 2x 0.5U patches + 1U UPS), specifically NOT in my walk-in closet. It's a work in progress.

#homelab #linux #freebsd #engineering #networking

Alt...

first iteration of the telco panel rebuild, just a bit messy

Alt...

in-between iterations, the OnQ parts arrived so mostly everything was removed. the two fiber boxes (shitty Comcast, and decent ATT) have to stay put.

Alt...

iteration number two, not horrible, needs more ethernet cable management and etc etc

It's heartwarming to a greying geek that a 5000+ words retrospective on greytrapping is turning out to be popular - https://nxdomain.no/~peter/eighteen_years_of_greytrapping.html (tracked https://bsdly.blogspot.com/2025/08/eighteen-years-of-greytrapping-is.html)

#greytrapping #spam #antispam #greylisting #blocklist #openbsd #freebsd #smtp #email #ssh #passwords #passwordguessing #pop3 #security #networking #cybercrime

Successfully serving some test sites off my local Mac Mini running OpenBSD / httpd. It’s currently using Eero’s DDNS for the port reservations and forwarding, so it’s only temporary until my real router arrives.

Just a good test though 👍

#openbsd #networking

Good morning!
Tomorrow evening it is #NetMCR (https://www.netmcr.uk/) again in #Manchester.
Join them for a #Networking #MeetUp at the Northern Monk (https://www.northernmonk.com/pages/manchester) from 7pm.

The talk will be by James Blessing: 'Did “we” build the wrong network?'

Hot on the heels of his June presentation, and coming from similar experience, James is back to speak to you all about what he thinks of all our networks. There is no doubt given James’ usual style that this will be a light-hearted and thought provoking gallop through the networks we’ve built, and those we will likely build in the future.

I'll be there for 🍻 , 🍔, 🍟 and ℹ️ 😀

Friends, it finally happened. On August 7th, 2025, the number of spamtraps intended to fool spammers rolled past the number of inhabitants in my home country of Norway. It's time for a retrospective.

Eighteen Years of Greytrapping - Is the Weirdness Finally Paying Off? https://nxdomain.no/~peter/eighteen_years_of_greytrapping.html (tracked https://bsdly.blogspot.com/2025/08/eighteen-years-of-greytrapping-is.html)

#greytrapping #spam #antispam #greylisting #blocklist #openbsd #freebsd #smtp #email #ssh #passwords #passwordguessing #pop3 #security #networking #cybercrime

Friends, it finally happened. On August 7th, 2025, the number of spamtraps intended to woo the unwary spammer rolled past the number of inhabitants in my home country of Norway. It's time for a retrospective.

Eighteen Years of Greytrapping - Is the Weirdness Finally Paying Off? https://nxdomain.no/~peter/eighteen_years_of_greytrapping.html (tracked https://bsdly.blogspot.com/2025/08/eighteen-years-of-greytrapping-is.html)

#greytrapping #spam #antispam #greylisting #blocklist #openbsd #freebsd #smtp #email #ssh #passwords #passwordguessing #pop3 #security #networking #cybercrime

#Homelab/#Networking question: I just realise that 'setting a static #IPv6 address' on a (#Linux) server is not as simple as it'd be with #IPv4 - one of the reasons being, realising, that the address prefix changes when my router restarts (i.e. due to any configuration changes).

When that network address prefix changes, obviously, any 'static' IPv6 address I'd like to set for my server would just be rendered invalid, since the network address portion/prefix is no longer applicable.

On my #TP-Link router, under IPv6 LAN settings, I saw an option to configure the Address Prefix - however, this field is currently prefilled with the network address prefix my servers/client devices are currently using/assigned to, and it is immutable (not configurable). To make it configurable, I could set a different setting on the same page called Prefix Delegation to Disable instead of its default, Enable.

My idea is to disable it, set an address prefix, and save/apply it - my expectation is, after the router restarts, all IPv6 addresses on my network will have that prefix, and it'll never change unless I explicitly do so (again, on the router). Is my idea right? or am I getting it tooootally wrong (which is possible bcos IPv6 is something else)?

Eighteen Years of Greytrapping - Is the Weirdness Finally Paying Off? https://nxdomain.no/~peter/eighteen_years_of_greytrapping.html (tracked https://bsdly.blogspot.com/2025/08/eighteen-years-of-greytrapping-is.html)

Friends, it finally happened. On August 7th, 2025, the number of spamtraps intended to woo the unwary spammer rolled past the number of inhabitants in my home country of Norway.

It's time for a retrospective.

#greytrapping #spam #antispam #greylisting #blocklist #openbsd #freebsd #smtp #email #ssh #passwords #passwordguessing #pop3 #security #networking #cybercrime

In this FreeBSD Journal article, Randall Stewart and Michael Tüxen walk through how SYN segments are processed during TCP’s three-way handshake—crucial for establishing reliable connections.

Learn how FreeBSD handles the client-server exchange and what happens behind the scenes during SYN, SYN-ACK, and ACK.

Read the full article:

https://freebsdfoundation.org/our-work/journal/browser-based-edition/downstreams/the-handling-of-syn-segments-in-freebsd/

#FreeBSD #Networking #TCP #OpenSource #SystemInternals #FreeBSDJournal #TechInsights

I am an old man. I regularly yell at clouds. "Elvis is alive! How 'AI' stunts modern mythmaking" https://nxdomain.no/~peter/elvis_solaris_ai_mythmaking.html (https://bsdly.blogspot.com/2025/08/elvis-is-alive-how-ai-stunts-modern.htmltracked ) #elvis #solaris #unix #ping #networking #AI #mythmaking #artificialintelligence #aislop #history

Downloading Cisco drivers: "click this link to complete your profile to download this software" [link clicked] "you have been logged out." #networking

Was ordering myself a new X220 keyboard and a small, fan-less Intel-based router caught my eye (on sale!). I snagged both :)

When it gets here, I plan to swap out my hacked-together router (2012 mac mini) for it. The next goal would be to repurpose that same mac Mini as a web server my personal, public websites.

Only time will tell if I fail...

#openbsd #networking #router

40gb to 4x10gb break out cables exist. Can I use that in a machine with a 40gb NIC to connect to 4 10gb devices, or does the breakout functionality only work on switches? I have a lot to learn with physical networking. #homelab #networking

Just published a comprehensive guide on setting up IPv6 prefix delegation for VMs using systemd-networkd!

https://sebastianmeisel.github.io/Ostseepinguin/IPv6Prefix_virtmanager.html

- Configure VLANs for VM isolation
- Bridge networking with systemd-networkd
- IPv6 prefix delegation setup
- Router and switch configuration
- Troubleshooting bridge filtering issues

Any feedback is welcome!
#ipv6 #virt #networking #Linux #vlan #vlan_tagging

Okay, so let me tell you about my doorbell, from a #networking perspective.

When you push the button by the door, it sends a message over the #zigbee wireless mesh network in my house. It probably goes through a few hops, getting relayed along the way by the various Zigbee light switches and "smart outlets" I have.

Once it makes it to my utility closet, it's received by a Zigbee-to-USB dongle, through a USB hub (a simple tree network) plugged into an SFF PC. From there, it gets fed into zigbee2mqtt, which, as the name implies, publishes it to my local #mqtt broker.

The mqtt broker is in the small #kubernetes cluster of #raspberrypi nodes I run in my utility closet. To get in (via a couple of #ethernet switch hops), it goes through #metallb, which is basically a proxy-ARP type service that advertises the IP address for the mqtt endpoint to the rest of my network, then passes the traffic to the appropriate container via a #linux veth device.

I have #HomeAssistant, running in the same Kubernetes cluster, subscribed to these events. Within Kubernetes, the message goes through the CNI plugin that I use, #flannel. If the message has to pass between hosts, Flannel encapsulates it in VXLAN, so that it can be directed to the correct veth on the destination host.

Because I like #NodeRed for automation tasks more than HomeAssistant, your press of the doorbell takes another hop within the Kubernetes cluster (via a REST call) so that NodeRed can decide whether it's within the time of day I want the doorbell to ring, etc. If we're all good, NodeRed publishes an mqtt message (more VXLANs, veths, etc.)

(Oh and it also sends a notification to my phone, which means another trip through the HomeAssistant container, and leaving my home network involves another soup of acronyms including VLANs, PoE, QoS, PPPoE, NAT or IPv6, DoH, and GPON. And maybe it goes over 5G depending on where my phone is.)

Of course something's got to actually make the "ding dong" sound, and that's another Raspberry Pi that sits on top of my grandmother clock. So to get *there* the message hops through a couple Ethernet switches and my home WiFi, where it gets received by a little custom daemon I wrote that plays the sound via an attached #HiFiBerry board. Oh but wait! We're not quite done with networking, because the sound gets played through PulseAudio, which is done through a UNIX domain socket.

SO ANYWAY, that's why my doorbell rarely works and why you've been standing outside in the snow for five minutes.

Alt...

A nondescript round white button (a doorbell) mounted on a vertical wood member. To the left a part of a door is visible, and to the right, bricks.

Internet exchange points are critical, but ignored
https://www.theregister.com/2025/07/31/ixp_resilience_call/

#it #networking #isp

Call for testing: Improved 802.11g AP compatibility check https://www.undeadly.org/cgi?action=article;sid=20250731111632 #openbsd #wifi #80211 #wireless #networking #callfortesting #freesoftware #libresoftware

Yes, The Book of PF, 4th Edition Is Coming Soon https://nxdomain.no/~peter/yes_the_book_of_pf_4th_ed_is_coming.html (also tracked https://bsdly.blogspot.com/2025/07/yes-book-of-pf-4th-edition-is-coming.html) #openbsd #freebsd #bookofpf #pf #packetfilter #book #networking #security #freesoftware #libresoftware #shamelessplug

I have a very weird issue with my #tailscale + #mumble server setup:

I have a murmur (mumble) server that binds to the tailscale interface on my server.

I have shared that endpoint with a friend and we're both connecting via tailscale to that mumble server to talk.

Every few minutes (3, 5, something like that), one of us gets reconnected. Mumble (client) says "Server failed to respond to TCP ping". On the server it says (murmur log): "Connection closed: The remote host closed the connection".

The tailscale log on the server says something like "adding connection to derp-* for ..." at that very moment of reconnecting.

How to debug this issue? I don't even know where to start. It looks like (to me, as a networking noob) that tailscale reconfigures connections and breaks the mumble connection.

#followerpower #linuxadmin #NetworkEngineering #networking #sysadmin

CC @tailscale

Please boost

This may sound like a dumb question, but with IPv6 am I supposed to ... learn the addresses like I have for IPv4?

With IPv4 I feel as if I have had a reasonable chance of learning some of the important blocks, but with IPv6... I genuinely hesitate to "adopt" because I fear having to learn the new addressing scheme.

If not, how should I ... "think" about IPv6 coming from the perspective of actually knowing IPv4-addresses?

#Networking #IPv6 #IPv4

We are still working on The Book of PF, 4th ed.

Preorders are open at https://nostarch.com/book-of-pf-4th-edition, read about the work at https://nxdomain.no/~peter/yes_the_book_of_pf_4th_ed_is_coming.html (also tracked at https://bsdly.blogspot.com/2025/07/yes-book-of-pf-4th-edition-is-coming.html) #bookofpf #newedition #freebsdd #openbsd #pf #packetfilter #networking #security #freesoftware #libresoftware

At EuroBSDCon 2025 in Zagreb: "Liberating the social web using *BSD" by Jeroen - @h3artbl33d - and Stefano Marinelli, see https://events.eurobsdcon.org/2025/talk/PJJLFV/

Schedule at https://events.eurobsdcon.org/2025/schedule/

To register https://2025.eurobsdcon.org/registration.html

#EuroBSDCon #EBC25 #BSDCafe #FreeBSD #NetBSD #OpenBSD #Networking #BSDCafe #RunBSD #Mastodon #Fediverse #OwnYourData #Security #Networking #Community

At EuroBSDCon 2025 in Zagreb: "Network Management with the OpenBSD Packet Filter Toolset" by Peter N. M. Hansteen, Tom Smyth, Max Stucchi, see https://events.eurobsdcon.org/2025/talk/FW39CX/

Schedule at https://events.eurobsdcon.org/2025/schedule/

To register https://2025.eurobsdcon.org/registration.html

#eurobsdcon #freebsd #openbsd #networking #packetfilter #pf #security #devops #sysadmin

I have a plan for a travel #networking setup, though I won’t be able to make it work for this holidays.

I need a relatively portable router (#GLiNet?) glued to a low power #RaspberryPi (3-4 would be good enough) for 4G/LTE, decent WiFi and #ADGuard + #Jellyfin.

I guess there’s always a new rabbit to chase…🤡

oh, my "Yes, The Book of PF, 4th Edition Is Coming Soon" blog post https://bsdly.blogspot.com/2025/07/yes-book-of-pf-4th-edition-is-coming.html is on hackernews: https://news.ycombinator.com/item?id=44657803 #bookofpf #pf #packetfilter #openbsd #freebsd #networking (non-tracked: https://nxdomain.no/~peter/yes_the_book_of_pf_4th_ed_is_coming.html)

Any #networking people know how much residential ISPs pay for bandwidth these days? I wonder if mine is keeping an eye on me or if this is just normal in 2025 lol

Alt...

Monthly Data Usage: 52.2 TB

Fun-Fact: Our Mastodon instance "burningboard.net" doesn't just have the IPv6 address 2a01:4f8:1c1c:4d2::1 but is also reachable via 2a01:4f8:1c1c:4d2::fed1
as well as
2a01:4f8:1c1c:4d2:fed1:fed1:fed1:fed1

Might not make much sense, but it's funny :)

#mastodon #ipv6 #mastoadmin #networking @tux

Alt...

took 3s » ping 2a@1:4f8:1clc:4d2::fedl PING 2a01:4f8:1c1c:4d2::fedl (2a@1:4f8:1clc:4d2::fedl) 56 data bytes 64 bytes from 2a@1:4f8:1clc:4d2::fedl: icmp_seg=1 ttl=53 time=29.5 ms 64 bytes from 2a@1:4f8:1clc:4d2::fedl: icmp_seq=2 ttl=53 time=28.9 ms 64 bytes from 2a@1:4f8:1clc:4d2::fedl: icmp_seq=3 ttl=53 time=23.7 ms 64 bytes from 2a@1:4f8:1clc:4d2::fedl: icmp_seq=4 ttl=53 time=23.1 ms 64 bytes from 2a@1:4f8:1clc:4d2::fedl: icmp_seq=5 ttl=53 time=28.8 ms ne L-- 2a01:4f8:1clc:4d2::fedl ping statistics --- 5 packets transmitted, 5 received, 0% packet loss, time 4005ms rtt min/avg/max/mdev = 23.101/26.828/29.519/2.800 ms PING 2a@1:4f8:1clc:4d2:fedl:fedl:fedl:fedl (2a01:4f8:1clc:4d2:fedl:fedl:fedl:fedl) 56 data bytes 64 bytes from 2a01:4f8:1clc:4d2:fedl:fedl:fedl:fedl: icmp_seq=1 ttl=53 time=25.0 ms 64 bytes from 2a01:4f8:1clc:4d2:fedl:fedl:fedl:fedl: icmp_seq=2 ttl=53 time=25.2 ms 64 bytes from 2a01:4f8:1clc:4d2:fedl:fedl:fedl:fedl: icmp_seq=3 ttl=53 time=25.1 ms 64 bytes from 2a01:4f8:1clc:4d2:fedl:fedl:fedl:fedl: icmp_seq=4 ttl=53 time=29.1 ms 64 bytes from 2a01:4f8:1clc:4d2:fedl:fedl:fedl:fedl: icmp_seq=5 ttl=53 time=31.4 ms AC --- 2a01:4f8:1clc:4d2:fedl:fedl:fedl:fedl ping statistics --- 5 packets transmitted, 5 received, 0% packet loss, time 4005ms rtt min/avg/max/mdev = 24.975/27.171/31.405/2.626 ms

Today, early access reader feedback for The Book of PF, 4th edition proved to me that early access is worth doing.

Get yours at https://nostarch.com/book-of-pf-4th-edition, or read about the work at https://nxdomain.no/~peter/yes_the_book_of_pf_4th_ed_is_coming.html #bookofpf #newedition #freebsdd #openbsd #pf #packetfilter #networking #security #freesoftware #libresoftware

If, like me, you've ever been annoyed at people just saying to grep the output of ifconfig for inet, and the likes, to get the assigned IP address of a network interface.

I got annoyed one time too many.

Have a *proper* solution.

May or may not also work on for example the *BSDs, but should definitely work on any modern typical-userland Linux.

https://michael.kjorling.se/blog/2025/ip-address-of-network-interface-linux/

#Linux #BlogPost #blog #PersonalWebSite #indieweb #networking #IPv4 #IPv6

Fellow network nerds, at EuroBSDcon 2025 in Zagreb, there will be a Network Management with the OpenBSD Packet Filter Toolset" https://events.eurobsdcon.org/2025/talk/FW39CX/ session, a full day tutorial starting at 2025-09-25 10:30 CET. You can register for the conference and tutorial by following the links from the conference Registration and Prices https://2025.eurobsdcon.org/registration.html page. #openbsd #freebsd #networking #security #eurobsdcon #conference #pf #packetfilter #freesoftware #libresoftware #zagreb