LinuxQuestions.org - Musings on technology, philosophy, and life in the corporate world

Hi. I'm jon.404, a Unix/Linux/Database/Openstack/Kubernetes Administrator, AWS/GCP/Azure Engineer, mathematics enthusiast, and amateur philosopher. This is where I rant about that which upsets me, laugh about that which amuses me, and jabber about that which holds my interest most: *nix.

I have ESP

Posted 04-10-2016 at 10:47 AM by rocket357 (Musings on technology, philosophy, and life in the corporate world)

Customer calls in, stating he can't get BGP to come up across an IPSec link from a VyOS instance to another region. He explains that this is his first time messing with BGP, and that the session won't establish. We review his configuration, and for a first-timer, I'm really impressed with his understanding of BGP. Clearly this guy has done his homework, as everything, including odd little quirks of BGP, are all accounted for.

"Well, let's sledgehammer the problem. Ping the...

rocket357

Member

Posted in Uncategorized

Views 1509 Comments 0 rocket357 is offline

2 != 3, even for very large values of 2

Posted 04-04-2016 at 06:00 PM by rocket357 (Musings on technology, philosophy, and life in the corporate world)

Spent the past 20 minutes troubleshooting an OpenVPN issue.

Problem: OpenVPN client connects, pulls an IPv4 address, but does not get route information. Manually added routes don't allow ping.

Solution: tap devices cannot talk to tun devices, at least not directly/natively. tap devices are layer 2. tun devices are layer 3. 2, no matter how close it gets to 3, is simply not 3. (ARP tries hard to prove otherwise, but as there is no such thing as a L3 header in...

rocket357

Member

Posted in Uncategorized

Views 457 Comments 0 rocket357 is offline

Layer 7 filtering with relayd

Posted 03-31-2016 at 03:38 PM by rocket357 (Musings on technology, philosophy, and life in the corporate world)
Updated 03-31-2016 at 03:44 PM by rocket357

My wife and I homeschool our children with an online school. Our eldest is soon to be a teenager; coupled with her "easily distracted" personality, we've gotten to the point where we have to monitor her during school hours to ensure she isn't getting off track with online games, youtube, etc...

So my wife tasked me with filtering traffic. My initial instinct would be to simply drop web traffic and smile about it, but given that they have online courses I couldn't sledgehammer...

rocket357

Member

Posted in Uncategorized

Views 6351 Comments 5 rocket357 is offline

RIP x86

Posted 01-21-2016 at 02:40 AM by rocket357 (Musings on technology, philosophy, and life in the corporate world)
Updated 01-21-2016 at 02:46 AM by rocket357 (typos!)

I've had a goofy x86 pizza box for over a decade, some early PIII with 256 MB RAM. It has a couple of odd features, namely it boots off of CF and has dual on-board NICs, that made it a nice firewall machine. I got it when the ISP next door to the company I was working at went out of business, and the network guys didn't feel like hauling all the gear off.

Only problem is, it is the only 32 bit machine in my inventory, and I've been putting off upgrading it. Luck has it, fate chose...

rocket357

Member

Posted in Uncategorized

Views 2300 Comments 0 rocket357 is offline

OpenBSD on AWS - Yes! It's true!

Posted 01-16-2016 at 06:11 PM by rocket357 (Musings on technology, philosophy, and life in the corporate world)
Updated 03-16-2016 at 07:43 PM by rocket357 (Update)

Update: OpenBSD AMIs are available in the Ireland region as of this update. Please use those instead of the below instructions!

OpenBSD-5.9-beta introduced an important piece of the puzzle for running OpenBSD on AWS. It introduced Xen Guest drivers, namely the network drivers.

This is seriously cool. I have a few OpenBSD VPSs around the world doing various things in KVM, but I've always wanted to "bring them home" to AWS.

So here it is,...

rocket357

Member

Posted in Uncategorized

Views 5733 Comments 1 rocket357 is offline

Page 7 of 38

« First

Last »