ezequiel + networking   436

ndiswrapper / Wiki / Troubleshooting_HowTo
If things are not working as expected, follow instructions below.

* Make sure you have latest stable version installed; see downloads for latest versions available. Run ndiswrapper -v to check that you indeed have latest version. Follow instructions in Installation to install. You may want to Uninstall and install again if you think there is a problem with your current installation or you have older version. [...]
ndiswrapper  issue  workaround  tips  wikientry  linux  driver  drivers  sysadmin  wifi  networking  hardwaresupport  links 
15 days ago by ezequiel
OpenWrt Project: Wi-Fi /etc/config/wireless
The wireless radio UCI configuration is located in /etc/config/wireless.
If the device has ethernet ports, the wireless is turned OFF by default. You can turn it on in /etc/config/wireless by changing option disabled '1' to option disabled '0' (commenting out the line or removing it is sufficient).
openwrt  documentation  wifi  configuration  sysadmin  example  unix  linux  networking  tips  reference  hardwaresupport  security 
15 days ago by ezequiel
Clients in same WLAN can't reach each other - Installing and Using OpenWrt / Network and Wireless Configuration - OpenWrt Forum
Q: Ethernet switch + 2.4G Wifi + 5G Wifi is bridged into one interface and firewall zone (lan).
I updated to LEDE 17.01.0 (stable) and got following problem:
Clients connected to the same Wifi SSID can not communicate with each other (same interface/firewall zone)
PING OPO.lan ( 56(84) bytes of data. From MJ.lan ( icmp_seq=1 Destination Host Unreachable ...
I can still reach it from Ethernet or from the other WLAN (5G -> 2.4G and vice versa) but not when both are connected to the same... It works fine if i create 2 different SSIDs on an adapter and put a client in each one.
Multiple clients connected through ethernet can also reach all others.
forumthread  openwrt  wifi  networking  firewall  configuration  issue  workaround  links  router  sysadmin  tips 
15 days ago by ezequiel
Power management/Suspend and hibernate - ArchWiki
Currently there are three methods of suspending available: suspend to RAM (usually called just suspend), suspend to disk (usually known as hibernate), and hybrid suspend (sometimes aptly called suspend to both): [...]
powermanagement  arch  linux  sysadmin  configuration  kernelmodule  kernel  booting  udev  example  tips  laptop  systemd  tools  acpi  workaround  issue  webcam  cpu  wifi  harddisk  networking  links  wikientry 
4 weeks ago by ezequiel
Power management - ArchWiki
Power management is a feature that turns off the power or switches system's components to a low-power state when inactive.

In Arch Linux, power management consists of two main parts:

* Configuration of the Linux kernel, which interacts with the hardware.
* Kernel parameters
* Kernel modules
* udev rules

* Configuration of userspace tools, which interact with the kernel and react to its events. Many userspace tools also allow to modify kernel configuration in a "user-friendly" way. See #Userspace tools for the options.
powermanagement  arch  linux  sysadmin  configuration  kernelmodule  kernel  booting  udev  example  tips  laptop  systemd  tools  acpi  workaround  issue  webcam  audio  pulseaudio  cpu  bluetooth  wifi  harddisk  networking  cd  dvd  links  wikientry 
4 weeks ago by ezequiel
WNA3100 (N300) Wireless USB Adapter Support | NETGEAR
(me: ndiswrapper has issues when dealing with the windows xp (32 bit) driver on Linux kernel >= 5.0 (mint 19.3 has 5.3.0 as of 2020.03.08))
wifi  driver  windows  windowsxp  windows7  windowsvista  windows8  windows10  hardwaresupport  networking  ndiswrapper  downloads  firmware  documentation  support  reference  manual  guide  issue  workaround  hardware 
4 weeks ago by ezequiel
internet - Netgear N-300/ WNA3100 USB Adapter for Ubuntu 16.04 - Ask Ubuntu
Q: I am new to Linux and Ubuntu and I am having trouble connecting to the Internet.

I have a netgear WNA3100 USB Adapter and I don't have anything in my additional drivers.

A: You can add Support for the Netgear N-300/ WNA3100 USB Adapter by installing the ndiswrapper and loading the Windows network driver. [...]

(me: ndiswrapper fails to build when using kernel-headers >= 5.0 (on i686), then (even if patched) the 32-bit WinXP driver from NetGear does not work: ndiswrapper causes an "oops" because of the "nx" cpu protection bit; then, after disabling this (see another link saved today), ndiswrapper gives yet another error. Result (so far): failed).
ndiswrapper  issue  howto  guide  tips  example  cli  sysadmin  networking  wifi  2016  ubuntu  configuration  usb  driver  drivers  windows  links  linux  kernelmodule  forumthread  stackexchange 
4 weeks ago by ezequiel
Ubuntu - Fix for Slow Wireless Internet Connection Speed after upgrading to 11.04 Natty Narwhal - HitXP
Recently Ubuntu came out with its newest version 11.04 code named Natty Narwhal, and after upgrading my earlier 10.10 version Maverick to this new Version of Ubuntu, I faced my first real issue with Ubuntu in so many years – My USB Wireless Internet Connection speed had almost come to a standstill like a slow dial up connection after upgrading Ubuntu to 11.04! The connection was n times weaker than Windows based systems running on same wireless connection. Many a times it even simply dropped Internet connections. [...]
ubuntu.natty  ubuntu  configuration  sysadmin  networking  wifi  usb  performance  powermanagement  dns  tips  issue  workaround  example  cli  scripting  linux  blogpost  2011 
4 weeks ago by ezequiel
linux - How to turn off Wireless power management permanently - Unix & Linux Stack Exchange
Q: In Linux Mint 17.3 / 18 iwconfig says the power management of my wireless card is turned on. I want to turn it off permanently or some workaround on this issue.

sudo iwconfig wlan0 power off works, until I reboot the laptop.

Also, if I randomly check iwconfig, sometimes it's on, despite I did run this command. [...]

A #1: Open this file with your favorite text editor, I use nano here:

sudo nano /etc/NetworkManager/conf.d/default-wifi-powersave-on.conf

By default there is:

wifi.powersave = 3

Change the value to 2. Reboot for the change to take effect. [...]
2016  forumthread  stackexchange  linux  ubuntu  mint  debian  networking  software  configuration  sysadmin  powermanagement  usb  issue  workaround  cli  links  documentation  tips  example  wifi 
4 weeks ago by ezequiel
The purpose of this wiki is to preserve and present information about the development and use of Linux in embedded systems as well as open source projects and tools for general embedded development. To use this wiki, click on one of the portal links below.
wiki  resources  embedded  linux  tips  issue  workaround  links  booting  memory  power  powermanagement  multimedia  filesystem  networking  android  drivers  development  debug  kernel  security  legal  test  raspberrypi  hacking  hardware  hardwaresupport  tools  arduino  tutorials  cpu  spec  support 
5 weeks ago by ezequiel
FS#1960 : hostapd/netifd: multicast_to_unicast/hairpin not set for dynamic vlan, ap not in isolate mode
I noticed that multicast_to_unicast and hairpin_mode are not set on the dynamically created wlan interfaces, and the wireless ap is not running in isolate mode. This is because these interfaces are created by hostapd, unlike other wlan interfaces which are created from netifd/system-linux.

The attached patch fixes this:
- it sets ap_isolate for the hostapd interface, if the interface is using dynamic vlan
- it sets multicast_to_unicast and hairpin_mode after the dynamic interface is created

I haven’t handled the case where the isolate option is not set for the wifi interface, or where multicast_to_unicast is not set on the bridge, since this requires passing additional information to hostapd, and I wasn’t sure what the preferred way to do this would be. I’d probably overload the ap_isolate option to have value 2 mean that multicast_to_unicast and hairpin_mode should be set.
wifi  networking  openwrt  issue  workaround  forumthread  configuration  2018  patches 
5 weeks ago by ezequiel
FS#714 : ARP/Broadcast does not reach other clients in the same WLAN
I have the default bridge with ethernet and WLAN in it. When i try to send data from a client to another, both connected to the same WLAN SSID, it doesn’t work (Destination unreachable).
Wireshark shows that it sends endless ARP requests to Broadcast, but the other clients in that WLAN never get it (and therefore can’t answer). The broadcast gets still delivery to every client connected through Ethernet. If i create a second WLAN SSID (even on the same adapter) and and add it to the bridge, it gets also all broadcast packets from the other WLAN...
So if i put the 2 clients in different WLAN SSIDs or ethernet they get the broadcast from each other, but not when both are connected to the same.
wifi  networking  openwrt  issue  workaround  forumthread  configuration  2017 
5 weeks ago by ezequiel
wpa_supplicant / hostapd: Developers' documentation for wpa_supplicant and hostapd
The goal of this documentation and comments in the source code is to give enough information for other developers to understand how wpa_supplicant and hostapd have been implemented, how they can be modified, how new drivers can be supported, and how the source code can be ported to other operating systems. If any information is missing, feel free to contact Jouni Malinen j@w1.fi for more information. Contributions as patch files are also very welcome at the same address. Please note that this software is licensed under the BSD license (the one with advertisement clause removed). All contributions to wpa_supplicant and hostapd are expected to use compatible licensing terms.
wifi  documentation  reference  api  online  links  linux  bsd  freebsd  windows  networking 
5 weeks ago by ezequiel
en:users:documentation:hostapd [Linux Wireless]
hostapd is an IEEE 802.11 AP and IEEE 802.1X/WPA/WPA2/EAP/RADIUS Authenticator. This page is dedicated to the Linux documentation of its implementation and use. Please refer to the hostapd home page for information for other Operating Systems.

To communicate with a kernel driver, hostapd has to use some interface. All new cfg80211 (and mac80211) based drivers that implement AP functionality are supported using the nl80211 interface.
wifi  linux  kernel  kernelmodule  documentation  links  atheros  development  networking  wikientry  reference  example  cli  tools  tool  sysadmin  configuration  tips  guide  security 
5 weeks ago by ezequiel
welcome [Linux Wireless]
This is the main source of Documentation for the Linux wireless (IEEE-802.11) subsystem. This wiki features information for end-users, developers and vendors.

This site covers all the new 802.11 drivers, the new core mac80211 and cfg80211 components along with the new userspace and in-kernel nl80211 configuration interface. New nl80211 userspace applications are also documented.
wifi  wireless  linux  kernel  kernelmodule  documentation  reference  wiki  articles  api  drivers  hardwaresupport  networking 
5 weeks ago by ezequiel
Hostapd - Gentoo Wiki
Hostapd (Host access point daemon) is a user space software access point capable of turning normal network interface cards into access points and authentication servers. The current version supports Linux (Host AP, madwifi, mac80211-based drivers) and FreeBSD (net80211).
wifi  router  networking  example  configuration  gentoo  wikientry  security  sysadmin  links  linux  compatibility  reference 
5 weeks ago by ezequiel
hostapd: IEEE 802.11 AP, IEEE 802.1X/WPA/WPA2/EAP/RADIUS Authenticator
hostapd is a user space daemon for access point and authentication servers. It implements IEEE 802.11 access point management, IEEE 802.1X/WPA/WPA2/EAP Authenticators, RADIUS client, EAP server, and RADIUS authentication server. The current version supports Linux (Host AP, madwifi, mac80211-based drivers) and FreeBSD (net80211).
networking  wifi  unix  linux  freebsd  sysadmin  software  security  openwrt  router  kernelmodule 
5 weeks ago by ezequiel
Get the best out of you battery on linux : linux
[...] I noticed that battery life in Linux (Linux Mint 19.1 Cinnamon in my case) is WAY worse than in windows 10, I use my laptop more often to watch TV shows and movies and to browse the internet.

I have a small battery in my laptop, The battery when I'm using mint can't make it over 2 hours of light usage, while in windows 10 with same light usage the battery can make it over 4-4.5 hours. [...]
forumthread  reddit  powermanagement  optimisation  linux  ubuntu  software  tips  sysadmin  configuration  links  howto  guide  tool  tools  cli  wifi  networking  usb  laptop  battery  cpu  memory  2018  hardwaresupport  mint  desktop 
5 weeks ago by ezequiel
How to configure ufw to forward port 80/443 to internal server hosted on LAN - nixCraft
I am using UFW to protect my network. How do I forward TCP HTTP port # 80 and 443 to an internal server hosted at and using UFW on Ubuntu Linux server?

UFW is an acronym for uncomplicated firewall. It is used for managing a Linux firewall and aims to provide an easy to use interface for the user. In this tutorial, you will learn how to forward incoming traffic to your server running ufw on port 80/443 to port 80/443 on another internal server hosted in your LAN/VLAN.
2017  iptables  ubuntu  firewall  networking  configuration  sysadmin  linux  cli  example  tips  blogpost 
7 weeks ago by ezequiel
How to do local port forwarding with iptables - Stack Overflow
Q: I have an application (server) listening on port 8080. I want to be able to forward port 80 to it, such that hitting http://localhost resolves my application (on localhost:8080).

This should be generalized for any port mapping (e.g. 80:8080 => P_src:P_target), and use best practices for modern *nix machines (e.g. Ubuntu).

N.B. This is all done locally, so there is no need to accept connections from anyone but localhost.
2015  forumthread  iptables  linux  firewall  cli  howto  tips  stackexchange  sysadmin  example  configuration  networking 
7 weeks ago by ezequiel
port forwarding - iptables redirect outside requests to - Unix & Linux Stack Exchange
The iptables rule you are using will work, but there is one additional change you need to make:

sysctl -w net.ipv4.conf.eth0.route_localnet=1
2014  2018  forumthread  iptables  linux  firewall  networking  configuration  sysadmin  cli  howto  tips  example  stackexchange 
7 weeks ago by ezequiel
(Solved) Flaky wifi with WRT1900ACS v2 and Android phones - Installing and Using OpenWrt - OpenWrt Forum
Q: I have a wrt1900acs v2 running the latest wifi drivers packaged by @eduperez and it is giving me nothing but problems.

Specifically my Android phones simply refuse to stay connected. Recently it's gotten to the point where it hardly will even connect at all and I've turned it off so that my older tp-link devices are the only APs. We've had hot weather, and I wonder if that's relevant because it was never this bad before.

Rebooting the WRT device seems to fix the problem for a few hours. [...]
2018  forumthread  wifi  android  issue  router  openwrt  workaround  tips  configuration  sysadmin  networking  hardwaresupport 
7 weeks ago by ezequiel
Securing CoreOS with iptables | Jimmy Cuadra
[...] One of the issues I ran into was how to secure a CoreOS machine's public network. By default, a fresh CoreOS installation has no firewall rules, allowing all inbound network traffic.

In order to secure a CoreOS machine, I had to learn how to configure the firewall. I use the common iptables utility for this purpose. [...]
2015  blogpost  coreos  iptables  howto  guide  configuration  firewall  sysadmin  networking  linux 
7 weeks ago by ezequiel
OpenWrt Project: Upgrading OpenWrt firmware via LuCI and CLI
An OpenWrt upgrade will replace the entire current OpenWrt installation with a new version. This includes the Linux kernel, the SquashFS partition and the JFFS2 partition.

The common upgrade paths below will automatically preserve much of the OpenWrt OS configuration by saving and then restoring configuration files in specific common locations (including /etc/config). This will preserve things like OpenWrt network settings, WiFi settings, the device hostname, and so on.
firmware  upgrade  howto  guide  tips  links  openwrt  cli  example  sysadmin  networking  hardwaresupport  embedded  router  webapp  linux  documentation 
7 weeks ago by ezequiel
How to access docker container from another machine on local network - Open Source Projects / Docker Toolbox - Docker Forums
If I read the docs right all you need to do is this:

$ docker run --network=host …

host network should piggy back on the host computers connection rather than just machine that the container is running on.
docker  sysadmin  configuration  networking  cli  howto  tips  example  forumthread  2016  linux  links 
7 weeks ago by ezequiel
Four ways to connect a docker container to a local network · The Odd Bit
Update (2018-03-22) Since I wrote this document back in 2014, Docker has developed the macvlan network driver. That gives you a supported mechanism for direct connectivity to a local layer 2 network. I've written an article about working with the macvlan driver.
fedora  linux  docker  sysadmin  cli  tool  example  tips  networking  firewall  configuration  howto  blogpost  2018 
7 weeks ago by ezequiel
BusyBox - The Swiss Army Knife of Embedded Linux
BusyBox combines tiny versions of many common UNIX utilities into a single small executable. It provides minimalist replacements for most of the utilities you usually find in GNU coreutils, util-linux, etc. The utilities in BusyBox generally have fewer options than their full-featured GNU cousins; however, the options that are included provide the expected functionality and behave very much like their GNU counterparts.
busybox  shell  documentation  cli  tool  tools  sysadmin  reference  manpage  online  linux  embedded  configuration  example  networking  kernel  kernelmodule  vi 
7 weeks ago by ezequiel
pzolee / tcpserver / wiki / Home — Bitbucket

This program is designed for WiFi Speed Test for Android application for server side of local computers.

If you have never heard about this program, you can find more details and information in my blog: https://pzoleeblogen.wordpress.com/2013/11/26/wifi-speed-test-for-android-how-to/

internet  performance  wifi  networking  tool  free  python  linux  windows  android.app  benchmark  bitbucket  links  support 
7 weeks ago by ezequiel
Setting up wireless roaming using 802.11r fast transition on OpenWRT · morph027
Ages ago, i was setting up 802.11r the complicated way using all the r0kh and r1kh lists across all access points, which worked well but was a little pita to setup.

After creating a little helper, i just discovered that recent OpenWRT builds can cope with the option ft_psk_generate_local to dynamically create the RADIUS keys and stuff. Even with Luci support, just enable 802.11r Fast Transition and Generate PMK locally, set a Mobility Domain (same across all AP’s per SSID) and a NAS ID (unique, i’d still prefer the BSSID w/o the colons) and it works out of the box.
openwrt  wifi  configuration  security  example  tips  linux  router  networking  sysadmin  cli  links  2019  blogpost 
8 weeks ago by ezequiel
[Solved] Wireguard - Help with Firewall Rules - Installing and Using OpenWrt - OpenWrt Forum
Q: I have managed to get a split tunnel wireguard vpn working on my road warrior android devices, but I am not sure if I did it properly.

In my current setup, I created a wireguard zone, and added the following rules: [...]
2019  forumthread  iptables  openwrt  configuration  sysadmin  networking  firewall  example  images  tips  wireguard  vpn 
8 weeks ago by ezequiel
Finally got 802.11r roaming working : openwrt
[edit] Since people still find this post for advice, I'll quickly add a few notes.

Configuration has been vastly simplified with a recent OpenWRT release. Basically all you need is the following:

option mobility_domain 'e612' #same for all APs
option ieee80211r '1'
option ft_psk_generate_local '1'
option nasid 'xxxxxxxx' # different for all APs, AFAIK it will automatically derived from the MAC Address if omitted.

All this is availably via LuCI, go to "Wireless Security", enable "802.11r Fast Transition", enable "Generate PMK locally", that should be it. Unfortunately I lack the time and hardware to really test this. [...]
openwrt  wifi  configuration  article  forumthread  reddit  security  example  tips  linux  router  networking  sysadmin  cli  links  2016 
8 weeks ago by ezequiel
Can a Wireguard interface be bridged with a physical one? - Installing and Using OpenWrt / Network and Wireless Configuration - OpenWrt Forum
Q: Can a Wireguard interface be bridged with a physical one? Luci doesn't have an option for this, and the online documentation doesn't discuss this possibility.
2019  forumthread  configuration  networking  wireguard  sysadmin  tips  openwrt  vpn 
8 weeks ago by ezequiel
Add an addition persistent route on eth0 - Raspberry Pi Forums
Q: [...] I have tried adding a route command to dhcpcd.conf in a section called interface eth0 but as that interface is assigned dynamically I don't think it is read.

I would be happy to find a simple command line solution as I can script it to run when I want.
2018  raspberrypi  raspbian  dhcp  configuration  networking  sysadmin  howto  tips  links  forumthread  cli  example 
8 weeks ago by ezequiel
dhcpcd - ArchWiki
dhcpcd is a DHCP and DHCPv6 client. It is currently the most feature-rich open source DHCP client, see the home page for the full list of features.
dhcp  wikientry  arch  linux  configuration  issue  workaround  sysadmin  networking  cli  example  tips  links 
8 weeks ago by ezequiel
WireGuard - ArchWiki
WireGuard is an extremely simple yet fast and modern VPN that utilizes state-of-the-art cryptography. It aims to be faster, simpler, leaner, and more useful than IPSec, while avoiding the massive headache. It intends to be considerably more performant than OpenVPN. WireGuard is designed as a general purpose VPN for running on embedded interfaces and super computers alike, fit for many different circumstances. Initially released for the Linux kernel, it plans to be cross-platform and widely deployable.
networking  wireguard  configuration  example  cli  howto  sysadmin  linux  vpn  security  tools  links  wikientry  guide  arch  tips  serverapp  router 
8 weeks ago by ezequiel
Wireguard - Debian Wiki
Wireguard is an extremely simple yet fast and modern VPN that utilizes state-of-the-art cryptography. It can be a useful replacement for IPSec or OpenVPN.
networking  debian  ubuntu  mint  wireguard  configuration  example  cli  howto  sysadmin  linux  vpn  security  tools  links  wikientry  guide 
8 weeks ago by ezequiel
WireGuard in NetworkManager – Thomas Haller's Blog
NetworkManager 1.16 got native support for WireGuard VPN tunnels (NEWS). WireGuard is a novel VPN tunnel protocol and implementation that spawned a lot of interest. Here I will not explain how WireGuard itself works. You can find very good documentation and introduction at wireguard.com.
networking  debian  gnome  ubuntu  mint  2019  blogpost  wireguard  configuration  example  cli  howto  sysadmin  linux  vpn  security  tools  guide 
8 weeks ago by ezequiel
dnsmasq: How to provide route info to clients? | Ubiquiti Community
Q: [...] Does dnsmasq have a way to provide clients on ERX/eth0 with additional IPv4 routing info, beside the default route? I could not immediately spot that info in dnsmasq(8).

A: There is dhcp option 121, which does exactly what is needed:

dnsmasq  dhcp  serverapp  configuration  sysadmin  linux  unix  networking  example  tips  forumthread  2018 
8 weeks ago by ezequiel
WireGuard: fast, modern, secure VPN tunnel
WireGuard® is an extremely simple yet fast and modern VPN that utilizes state-of-the-art cryptography. It aims to be faster, simpler, leaner, and more useful than IPsec, while avoiding the massive headache. It intends to be considerably more performant than OpenVPN. WireGuard is designed as a general purpose VPN for running on embedded interfaces and super computers alike, fit for many different circumstances. Initially released for the Linux kernel, it is now cross-platform (Windows, macOS, BSD, iOS, Android) and widely deployable. It is currently under heavy development, but already it might be regarded as the most secure, easiest to use, and simplest VPN solution in the industry.
vpn  wireguard  opensource  freesoftware  kernelmodule  networking  security  protocol  links  spec  documentation  embedded  router  openwrt  sysadmin  example 
8 weeks ago by ezequiel
Speed test - how fast is your internet? | DSLReports, ISP Information
Test your download, upload and latency from a mobile phone up to optical fiber, and everything between. This test is pure HTML5

This test requires your browser's full attention for accurate results. Run the test when your network is quiet, and don't switch to other applications or change browser tabs during the test. A few Windows security and privacy software packages can block the test or slow the browser.
test  internet  wifi  networking  webapp  html5  performance  benchmark 
8 weeks ago by ezequiel
OpenWrt Project: Dumb AP / Access Point Only
This document describes how to create an Access Point (AP) that extends a network that already has a router, access control, and DHCP in place. People can connect over wireless or Ethernet to the new AP and then to the existing network. In this configuration, the AP is not routing packets, it does not provide DHCP or other functions. The result is a bridged LAN (no internal subnets) that will work fine for home and small networks.
openwrt  wifi  howto  networking  sysadmin  configuration  example  cli  router  guide  documentation  tips 
8 weeks ago by ezequiel
OpenWrt Project: Configure a guest WLAN
Guest WLAN provides internet access to your network members. It also provides firewall security rules to isolate your guest network from the rest. This recipe contains information provided by our forums members and one blogger as shown below: [...]
tutorial  guide  sysadmin  configuration  openwrt  wifi  router  howto  screenshots  tips  example  firewall  networking  security  links  cli  tools 
8 weeks ago by ezequiel
OpenWrt Project: Configure a guest WLAN using the LuCI web interface
Guest WLAN provides internet access to your network members. It also provides firewall security rules to isolate your guest network from the rest. This recipe is based on the more comprehensive Guest WLAN page, providing a more user-friendly approach through the LuCI web interface.
tutorial  guide  sysadmin  configuration  openwrt  wifi  router  howto  screenshots  webapp  tips  example  firewall  networking  security  links 
8 weeks ago by ezequiel
linux - How to disable AAAA lookups? - Server Fault
Q: ... to compensate for broken DNS servers that are outside our control.

Our problem: We deploy embedded devices that collect sensor data at various, mostly IPv4-only sites. Some sites have poorly maintained networks, e.g. misconfigured or otherwise broken DNS caches and/or firewalls that either ignore AAAA queries altogether, or respond to them with broken replies (e.g. wrong source IP!). As an external supplier to the facilities department, we have next to no influence on the (sometimes reluctant) IT departments. The chances of them fixing their DNS servers/firewalls any time soon are minuscule.

The effect on our device is that with each gethostbyname(), the processes have to wait until the AAAA queries time out, at which point some processes have already timed out their connection attempts altogether.
2014  forumthread  stackexchange  networking  dns  ipv6  configuration  tips  sysadmin  issue  workaround  linux  debian  api  c 
8 weeks ago by ezequiel
OpenWrt Project: TP-Link TL-WA901ND
The TL-WA901ND is a lowcost b/g/n wireless access point, capable of running OpenWrt.
tp-link  hardware  spec  hardwaresupport  openwrt  router  links  networking  wifi  guide  firmware  atheros  downloads  cli  example  sysadmin  hacking  install  installation 
8 weeks ago by ezequiel
NXDOMAIN, NODATA and debugging DNS for dual-stacked hosts - Cisco Umbrella Blog
TL;DR – An NXDOMAIN response means there are no records, of any DNS type, for the requested domain name. A NODATA response means there are records for the requested domain name, but none of them match the record type in your request.
2014  networking  blogpost  article  ipv6  dns  example  protocol  internet 
8 weeks ago by ezequiel
domain name system - How to prevent delays associated with IPv6 AAAA records? - Server Fault
Q: Our Windows servers are registering IPv6 AAAA records with our Windows DNS servers. However, we don't have IPv6 routing enabled on our network, so this frequently causes stall behaviours.

Microsoft RDP is the worst offender. When connecting to a server that has a AAAA record in DNS, the remote desktop client will try IPv6 first, and won't fall back to IPv4 until the connection times out. Power users can work around this by connecting to the IP address directly. Resolving the IPv4 address with ping -4 hostname.foo always works instantly. [...]
2013  ipv6  forumthread  issue  workaround  links  stackexchange  windows  rdp  firewall  networking  compatibility  tips  sysadmin  configuration  dns 
8 weeks ago by ezequiel
Happy Eyeballs - Wikipedia
Happy Eyeballs (also called Fast Fallback) is an algorithm published by the IETF which can make dual-stack applications (those that understand both IPv4 and IPv6) more responsive to users by attempting to connect using both IPv4 and IPv6 at the same time (preferring IPv6), thus avoiding the usual problems faced by users with imperfect IPv6 connections or setups.
rfc  wikipedia  wikientry  reference  article  internet  ipv6  firewall  networking  issue  workaround  links  browser 
8 weeks ago by ezequiel
[SOLVED] disable AAAA response for a given domain - General - Pi-hole Userspace
Q: Is it possible to configure Pi-hole to return only A and not AAAA for a given domain?
The use case is pretty simple - IPv6 is provided via tunnel (HE broker) and accessing local (== in-country) resources via IPv6 is not desirable.
(me: returning '[::]' for every host in a domain does avoid a client attempting to contact a host outside of the local network, but the DNS server (dnsmasq) still produces a valid AAAA record/response, therefore some clients might attempt to still contact a host, and they'll be reaching a local(/ly forwarded?) server)
forumthread  issue  workaround  dnsmasq  dns  configuration  sysadmin  networking  linux  unix  example  2018 
8 weeks ago by ezequiel
download files from luci ( use LuCI as file share ) · Issue #846 · openwrt/luci
Q: I've uploaded some files in my OpenWrt root , /etc , /tmp directories.
I want user to be able to download uploaded files from from the above directories.
How can i give a download URL to user, to download that files?
github  openwrt  issue  workaround  tips  example  configuration  webserver  downloads  links  howto  guide  screenshots  router  serverapp  sysadmin  networking  forumthread  2016 
8 weeks ago by ezequiel
OpenWrt Project: Netgear DG834G v3
The Netgear DG834G v3 is an AR7-based ADSL router with 802.11g wireless and ADSL2+ support. It has a 4-port switch, and the wireless antenna is connected to an RP-SMA connector at the rear.
router  spec  hardware  hardwaresupport  links  openwrt  networking  wifi  wikientry  howto  guide  images  firmware  hacking  archived.version  electronics 
8 weeks ago by ezequiel
OpenWrt Project: Quick start guide for OpenWrt/LEDE installation
The following preparation is recommended, before flashing OpenWrt/LEDE firmware:

* Don't rush the installation, take your time. If something seems weird during installation, find answers first before continuing.
* Have your device's precise model name at hand (so you are able to select the correct OpenWrt/LEDE firmware)
* Have your devices's documentation at hand, on how to flash new firmware
* When installing and configuring OpenWrt/LEDE on your Internet router, your Internet-access will obviously be offline for a few minutes. Please ensure that you have all required information offline or have backup Internet access at hand in this time.
openwrt  router  networking  firmware  faq  info  guide  howto  links  articles  resources  tips 
9 weeks ago by ezequiel
OpenWrt Project: TP-Link TL-WDR4300
TP-Link TL-WDR4300 has 802.11n Dual Band (concurrent) WiFi and Gigabit Ethernet. Advertised as 750 Mbps it is Dual-Stream (2×2) on the 2.4 GHz Band and Triple-Stream (3×3) on the 5 GHz Band. Same as the TL-WDR4310 Released earlier this year in China.
tp-link  hardwaresupport  firmware  openwrt  opensource  howto  install  installation  guide  article  sysadmin  networking  wifi  links  downloads 
9 weeks ago by ezequiel
Limiting access to ssh - Google Groups
Q: I'd like to limit access to ssh to GCE console (so the browser based SSH works) and to our own networks. Is there a specific network mask I can use to allow connections from GCE console?
2015  forumthread  issue  workaround  example  cli  tips  sysadmin  networking  firewall  google.cloud  cloudcomputing  ssh  links  software 
10 weeks ago by ezequiel
Tutorials and Howtos - Alpine Linux
Welcome to Tutorials and Howtos, a place of basic and advanced configuration tasks for your Alpine Linux.

The tutorials are hands-on and the reader is expected to try and achieve the goals described in each step, possibly with the help of a good example. The output in one step is the starting point for the following step.

Howtos are smaller articles explaining how to perform a particular task with Alpine Linux, that expects a minimal knowledge from reader to perform actions.
alpine  linux  distro  howto  tips  links  wiki  wikientry  articles  tutorials  faq  sysadmin  configuration  raspberrypi  powerpc  networking  powermanagement  laptop  desktop 
10 weeks ago by ezequiel
Exploring the Google Cloud f1-micro Instance - OpsDash
The Google Cloud Platform folks recently announced an “always free” tier, which includes an “f1-micro” instance and a 30 GB magnetic disk.

So what is an f1-micro instance capable of? Let’s find out.
2019  blogpost  google.cloud  review  screenshots  performance  cpu  networking  benchmark  spec 
10 weeks ago by ezequiel
Removed Container Still Attached to Network · Issue #33156 · moby/moby
Q: I've got a removed container tying up an endpoint name in the bridged network, and I can't remove the container from the network since the container no longer exists.

The issue could most likely be resolved by clearing everything out and starting it up again but due to #32613 that would result in data loss so I'm avoiding that. Using a different name for the container allows it to be started but this is not ideal.

A: [...] Have you tried the -f / --force option on docker network disconnect? docker network disconnect <network> <endpoint-id>, so in your case; [...]
issue  docker  networking  configuration  workaround  forumthread  2017  linux  sysadmin  tips  example  github 
11 weeks ago by ezequiel
Optimizing persistent disk performance  |  Compute Engine Documentation  |  Google Cloud
Persistent disks give you the performance described in the disk type chart if the VM drives usage that is sufficient to reach the performance caps. After you size your persistent disk volumes to meet your performance needs, your app and operating system might need some tuning.

In the following sections, we describe a few key elements that can be tuned for better performance and how to apply some of them to specific types of workloads.
google.cloud  cloudcomputing  guide  documentation  links  bestpractice  tips  sysadmin  virtualisation  networking  storage  harddisk  ssd  performance  optimisation  cli  example  linux  unix 
11 weeks ago by ezequiel
Adding or resizing zonal persistent disks  |  Compute Engine Documentation  |  Google Cloud
This page explains how to resize both zonal persistent boot disks and secondary (non-boot) zonal persistent disks. This page also explains how to add and format new zonal persistent disks on your instances.

You can only resize a zonal persistent disk to increase its size. You cannot reduce the size of a zonal persistent disk.

It is a best practice to back up your disks using snapshots to prevent unintended data loss.
google.cloud  cloudcomputing  guide  documentation  links  bestpractice  tips  sysadmin  virtualisation  networking  price  storage  harddisk  example 
11 weeks ago by ezequiel
Encrypt disks with customer-supplied encryption keys  |  Compute Engine Documentation  |  Google Cloud
[...] If you provide your own encryption keys, Compute Engine uses your key to protect the Google-generated keys used to encrypt and decrypt your data. Only users who can provide the correct key can use resources protected by a customer-supplied encryption key.

Google does not store your keys on its servers and cannot access your protected data unless you provide the key. This also means that if you forget or lose your key, there is no way for Google to recover the key or to recover any data encrypted with the lost key. [...]
google.cloud  cloudcomputing  guide  documentation  links  bestpractice  tips  sysadmin  virtualisation  networking  storage  harddisk  security  encryption  privacy  howto 
11 weeks ago by ezequiel
Storage options  |  Compute Engine Documentation  |  Google Cloud
Compute Engine offers several types of storage options for your instances. Each of the following storage options has unique price and performance characteristics:

* Zonal standard persistent disk and zonal SSD persistent disk: Efficient, reliable block storage.
* Regional persistent disk and regional SSD persistent disk: Regional block storage replicated in two zones.
* Local SSD: High performance, transient, local block storage.
* Cloud Storage buckets: Affordable object storage.
* Filestore: High performance file storage for Google Cloud users.

If you are not sure which option to use, the most common solution is to add a persistent disk to your instance.
google.cloud  cloudcomputing  guide  documentation  links  bestpractice  tips  sysadmin  virtualisation  networking  price  storage  harddisk  ssd 
11 weeks ago by ezequiel
OpenWrt Project: Welcome to the OpenWrt Project
The OpenWrt Project is a Linux operating system targeting embedded devices. Instead of trying to create a single, static firmware, OpenWrt provides a fully writable filesystem with package management. This frees you from the application selection and configuration provided by the vendor and allows you to customize the device through the use of packages to suit any application. For developers, OpenWrt is the framework to build an application without having to build a complete firmware around it; for users this means the ability for full customization, to use the device in ways never envisioned.
openwrt  router  opensource  firmware  multiplatform  links  documentation  reference  hardwaresupport  linksys  install  installation  downloads  community  faq  wifi  networking  embedded  linux  packages  software 
11 weeks ago by ezequiel
ddos - iptables rules to counter the most common DoS attacks? - Server Fault
Q: Recently I've got a lot of small scale DoS attacks. I am wondering what iptables rules should I use to counter the most common DoS attacks, and generally secure my web server.
So appreciate your rules to block the most common attack vectors.
2012  2018  forumthread  stackexchange  iptables  linux  firewall  security  example  tips  sysadmin  networking  cloudcomputing  remote 
11 weeks ago by ezequiel
Docker and IPtables - sysadmin stuff
TL;DR; By default, docker daemon appends iptables rules for forwarding. For this, it uses a filter chain named DOCKER.
2015  blogpost  firewall  sysadmin  docker  compatibility  issue  workaround  cli  example  tips  networking  linux  iptables 
12 weeks ago by ezequiel
How to fix the Docker and UFW security flaw - TechRepublic
It has been discovered the Docker doesn't always honor UFW rules. Jack Wallen demonstrates and shows how to configure Docker so that it will.

If you use Docker on Linux, chances are your system firewall might be relegated to Uncomplicated Firewall (UFW). If that's the case, you may not know this, but the combination of Docker and UFW poses a bit of a security issue. Why? Because Docker actually bypasses UFW and directly alters iptables, such that a container can bind to a port. This means all those UFW rules you have set won't apply to Docker containers.

Let me demonstrate this.

I'm going to set up UFW (running on Ubuntu Server 16.04), so that the only thing it will allow through is SSH traffic. To do this, I open a terminal and issue the following commands: [...]
2018  blogpost  firewall  sysadmin  ufw  docker  compatibility  issue  workaround  cli  example  tips  networking  linux  iptables 
12 weeks ago by ezequiel
Block storage performance  |  Compute Engine Documentation  |  Google Cloud
When you configure a storage option for apps that run on your instances, use the following process:

* Understand your workload: determine how much space you need and what performance characteristics your apps require.
* Determine the correct disk type: compare performance across disk types.
* Configure your instances and disk size for optimal storage performance: see factors that affect storage performance.
storage  harddisk  cloudcomputing  google.cloud  performance  spec  networking  reference  comparison 
12 weeks ago by ezequiel
Stackdriver: Observability Suite  |  Google Cloud
Stackdriver is Google Cloud’s embedded observability suite designed to monitor, troubleshoot, and improve cloud infrastructure, software, and application performance. Stackdriver enables you to efficiently build and run workloads, keeping applications performant and available.
logging  cloudcomputing  google.cloud  links  info  free  sysadmin  networking  remote 
12 weeks ago by ezequiel
Debugging Tools | Linux Debugging Tools | CoreOS
You can use common debugging tools like tcpdump or strace with Toolbox. Using the filesystem of a specified Docker container Toolbox will launch a container with full system privileges including access to system PIDs, network interfaces and other global information. Inside of the toolbox, the machine's filesystem is mounted to /media/root.
coreos  debug  tool  tools  howto  tips  guide  linux  ssh  configuration  remote  example  networking  debugger 
12 weeks ago by ezequiel
« earlier      
per page:    204080120160

bundles : computing

related tags

3g  accessories  ace  acpi  activedirectory  advisories  aix  alpine  amazon  amazon.aws  amazon.linux  amd64  android  android.app  antivirus  apache  api  apps  apt  arch  architecture  archive  archived.version  arduino  arm  article  articles  astaro  atheros  audio  automation  awk  backup  bash  battery  benchmark  beos  bestpractice  bitbucket  bittorrent  blogpost  bluetooth  book  books  booting  browsable  browser  bsd  bug  bugs  build  busybox  c  c++  calibre  cd  centos  cheap  cheatsheet  chromeos  chromium  chroot  cli  cloudcomputing  code  codingstandards  collaboration  commercialsoftware  communication  community  comparison  compatibility  compiler  component  computer  computing  concurrency  configuration  configure  controversy  coreos  cpu  crash  cryptography  cvs  cygwin  daemon  darwin  database  debian  debian.dapper  debian.lenny  debian.squeeze  debian.wheezy  debianpkg  debug  debugger  demo  deployment  design  desktop  development  dhcp  distro  divx  dlna  dns  dnsmasq  docker  docker.container  documentation  dos  download  downloads  dragonfly.bsd  driver  drivers  dvd  e2guardian  ebook  ebooks  ekiga  electronics  emailmessage  embedded  emulation  emulator  encryption  english  environment  essay  europe  event  example  exploit  faq  fedora  fileformats  filesystem  firewall  firmware  fix  forum  forumpost  forumthread  framework  free  freebsd  freedom  freedos  freenx  freesoftware  freeware  ftp  gadget  gcc  gdb  geek  gentoo  git  github  gnome  gnu  google  google.cloud  gpio  gtk  gui  guide  hacking  hacks  haiku  haproxy  harddisk  hardware  hardwaresupport  home.appliance  homebrew  hosting  howto  hp  hp2133  hpux  html  html5  http  https  i2p  ieee1394  im  images  info  install  installation  intel  interesting  international  internet  ipc  iphone  iptables  ipv6  issue  it  java  javascript  kb  kermit  kernel  kernelmodule  keyboard  kiss  kvm  laptop  leapsecond  legal  library  license.bsd  license.gpl  license.gplv2  license.mit  links  linksys  linux  linux.containers  livecd  logging  ltsp  lvm  lxc  macosx  macosx.elcapitan  madwifi  make  manpage  manual  media  mediaplayer  memory  mercurial  messaging  microsoft  mint  mobile  motif  mount  msdn  msn  multimedia  multiplatform  multitasking  myip  ndiswrapper  network  networking  news  nfs  nginx  nis  ntp  nx  oldversion  online  onvif  openbsd  openoffice  opensource  openssl  openwrt  opl.ps2  optimisation  os  osmc  package  packages  palmos  palmtx  paper  parenting  patches  pci  pclink  pcmcia  pdf  people  performance  perl  phone  php  pictures  plugins  porting  posix  power  powermanagement  powerpc  ppa  pressrelease  price  privacy  programming  protocol  proxy  pulseaudio  python  qemu  radio  ralink  raspberrypi  raspbian  ratpoison  rdp  reddit  redhat  reference  releaserelated  remote  repository  research  resources  rest.web  reverseproxy  review  reviews  rfc  router  rpc  rt2500  samba  scm  screenshots  script  scripting  scripts  search  searchable  security  serialport  server  serverapp  shell  shop  sip  skypephones2  smtp  snap.app  social  sockets  software  solaris  sound  source  sourcecode  sourceforge  spec  spice  sqlite  squid  ssd  ssh  ssl  stackexchange  standards  storage  streaming  streamingaudio  subversion  support  suse  sysadmin  systemd  tcpip  tech  terminal  test  textui  threads  time  tips  tls  tool  tools  tornado.python  tp-link  travel  tutorial  tutorials  tv  ubuntu  ubuntu.bionic  ubuntu.intrepid  ubuntu.karmic  ubuntu.lucid  ubuntu.maverick  ubuntu.natty  ubuntu.precise  ubuntu.trusty  ubuntu.xenial  udev  ufw  ui  uk  unix  upgrade  usa  usb  vagrant  vg.plat.ps2  vi  video  video4linux  virtual  virtualbox  virtualisation  vm  vm.appliance  vnc  voip  vpn  vulnerability  web  webapp  webcam  webkit  webserver  wengo  wifi  wifi.threestream  wiki  wikibook  wikientry  wikipedia  windows  windows7  windows8  windows10  windowsvista  windowsxp  wireguard  wireless  wireshark  wlan  workaround  world  wpa  x2go  x11  x86  xml  xorg  xubuntu  xvid  zmodem 

Copy this bookmark: