Some IT guy, IDK.

  • 0 Posts
  • 8 Comments
Joined 1 year ago
cake
Cake day: June 5th, 2023

help-circle

  • I’m a network guy, so everything in my labs use SNMP because it works with everything. Things that don’t support SNMP are usually replaced and yeeted off the nearest bridge.

    For that I use librenms. Simple, open source, and I find it easy to use, for the most part. I put it on a different system than what I’m monitoring because if it shares fate with everything else, it’s not going to be very useful or give me any alerts if there’s a full outage of my main homelab cluster.

    Of course, access from the internet to it, is forbidden, and any SNMP is filtered by my firewall. Nothing really gets through for it, so I’m unconcerned about it becoming a target. For the rest of my systems security is mostly reliant on a small set of reverse proxies and firewall rules to keep everything secure.

    I use a couple of VPN systems to access the servers remotely, all running on odd ports (if they need port forwards at all). I have multiple to provide redundancy to my remote access, so if one VPN isn’t working due to a crash or something, I have others that should get me some measure of access.



  • There’s some merit to whether those daily active accounts are people, and the quality of the folks engaged as those accounts.

    Twitter has more users, and a lot of static too, like people posting pictures of their paninis. I’m also sure there’s a large percentage of automated/bot accounts on Twitter; they’re active, but not posting anything you’ll care about. Same goes for Facebook and Reddit… There’s more but I’ll stop there. I’m sure you all get the picture.

    Fact is, you can have 5 billion daily active user accounts, and still have very little content anyone cares about. A nontrivial number of posts are news updates either from media outlets or business accounts/companies that are simply a mass posted and shortened version of some PR message or something with a link to the information. Simply bringing the information to people where they are, no matter how few on Twitter or FB are actually reading what they post.

    I feel like Lemmy has a lot of content because the majority of accounts are real people, so there’s a better capability for discussion. It may be fewer overall people, by comparison, but it is, in many ways, more valuable and entertaining.

    IDK, I’m just some guy.


  • Literally anything that’s not ISP provided should give you the flexibility to set your own network parameters, but if you want strong flexibility beyond that, I’m going to throw my recommendation to opnSense, it’s a fork of pfSense and the only reason I like it over pfSense is that the interface is very different and to me, it makes a lot more sense in how it’s laid out.

    That’s personal preference, YMMV.

    For consumer gear, ubiquiti has some strong units, the ER-X is pretty reasonable, but the unifi line is somewhat more beginner friendly, but tends to bury advanced features a little bit, focusing more on usage and reporting of activity and such.

    Lower end consumer, the usual contenders are tp-link, and Netgear, though I lean more towards stuff from Asus, or anything on the dd-wrt compatibility lists… I ran a Linksys WRT54GL for a long time because of dd-wrt. I haven’t kept up with the “wrt” variants over time… The last time I touched dd-wrt was on a relatively high end (at the time) Asus router and it did very well… Might be work looking into. There’s usually a trick to getting wrt firmware into a router though, and it will likely void your warranty, so buyer beware.

    Circling back… My biggest issue with opnSense and pfSense, is the choice of hardware, unless you’re buying direct from pfSense’s netgate product line, you’ll have to source something to run it on, and my biggest issue with that, personally, is that I want something small, like a router, IMO, should be, at least smaller than most PC’s, that’s relatively inexpensive, with at least two built in ethernet ports, since I’ve found that USB ethernet options are generally not very reliable. And usually, I can find something small and cheap, but there’s only one ethernet port, or I can find something cheap with plenty of networking, but it’s not small, or I can find something small with plenty of networking, but it’s not cheap.

    So I’m running a sonicwall at home, because fuck all this other junk, I just want something that does what I want it to do without hiding all my options behind some garbage, or a system that can only work a particular way, and you don’t get options to change it. Or something that’s huge or expensive… Or something I have to spend a lot of time setting up, maintaining, or fixing. For me, that’s sonicwall.


  • I like mikrotik, but if you’re not familiar with routers and their configurations, then it’s going to be a steep learning curve.

    The hex S is wonderful. I don’t have one but I keep going back to look at it and weigh my options.

    I don’t need another router, I really don’t. But it’s so nice! But I don’t need it!

    I have Juniper, Cisco, watchguard, sonicwall, ubiquiti… So many routers and firewalls, I really do not need another one.

    But I want one.