Ubiquiti root • 2 weeks ago • 100%

I am getting used to Ubiquiti, and recently added a VPN Client to cover one of my VLANs. Am I correct in my understanding that having no `Fallback` option is essentiall a Kill switch that will not allow traffic to pass outside of the VPN in the event it goes down? [Pic](https://i.imgur.com/zUPFA6q.png)

Ubiquiti root • 3 weeks ago • 88%

I recently started playing with UDM after having been in PFSense for the last few years. In PFSense, I had a pretty organized rule set for each VLAN, and it was pretty easy to read and follow compared to the single list for rules in UDM (though it makes up for it in other areas). I'm trying to recreate some of my original rules and flows, but wanted to get another pair of eyes on them to be sure I am using `"LAN In"` and `"LAN Out"` correctly (especially on the rules where I try to only allow necessary devices/ ports out to WAN). [Rules](https://i.imgur.com/QDtXsd6.png)

Ubiquiti root • 3 weeks ago • 100%

Just joined the club and got my first piece of ubiquiti gear! I spent some time doing the initial configuration and adding my VLANs, static IPs, however I ran into a bit of an issue that I'm sure is a quick fix. By default the UDM Pro is on 192.168.1.1, and that's fine. I actually use the 192.168.1.0/24 as a management VLAN for networking devices that other VLANs don't need access to. The problem I'm running into is that this default space that the UDM Pro is on does not have an option for a VLAN tag. I can change the IP of the default network to be something else like 192.168.100.0/24, and make a management VLAN on 192.168.1.0/24, but then the UDM Pro will grab a 192.168.100.0/24 address (since it is on the default network). How, after doing this, can I set the UDM Pro to be on this new management VLAN and not the default?

I've been using PFSense for years, and it's been pretty great, but I also have some friends who are homelabbers that like their Unifi setups. What do you guys prefer, and why?

Privacy root • 1 month ago • 98%

Some friends of mine have a Google map going where they pin locations of interest (restaurants, etc). I was wondering if anyone knew of a non-Google project that might allow for something similar? The goal would be to have a shareable map that a group of invited/ allowed users could add locations and possibly notes to.

My employer recently switched to Fidelity and for now I've chosen the `LIFEPATH IDX 2050 A` option. It looks like this one provides quarterly dividends, but the yield is 0.0%(?) I'm looking for some fairly risk adverse options or blends that provide dividends that will be reinvested. Anyone have any recommendations?

I am hosting a couple of services (Matrix chat server and a game server). I know NAT's job is to translate external requests into internal addresses, so that the traffic can hit the WAN and ultimately make it to the internal service which is expected to handle the traffic, however I'm wondering if [my setup](https://i.imgur.com/1ZbkvZ5.png) is correct. Everything is working as expected, but I'm just wondering how the traffic knows which service to go to. If an outside requests comes in, is it just the destination port that is used to route to the correct internal IP? Do I need to do something else here for best practices?

Google Pixel root • 3 months ago • 94%

I've been wanting to get a privacy screen protector so that you can't see it from the sides, but all the ones I've tried have this 'oily' type of look to it. Maybe this is inherent to the technology, but does anyone know of any that do not have this oily appearance, especially on white screens?

SolarDIY root • 3 months ago • 100%

My office/ lab at home uses around 600W when fully running, and I see that there are quite a few `power stations` that will comfortably handle that, and foldable 4 panel setups that can generate 300-400W. Would there be any issues plugging a UPS (my lab has a few of them) into a solar power station such as [this](https://us.ecoflow.com/products/delta-pro-portable-power-station?variant=40684178014281)? Is there some sort of feature I want to look for such as sin wave, etc to have this work reliably, or does a UPS not really care since the controller in the power station should be normalizing voltage, etc?

Privacy root • 3 months ago • 100%

What are your thoughts on filen? I don't seem to be able to find a community for them here, but it seems like a pretty solid up and coming company for secure cloud storage options.

Electric Vehicles root • 3 months ago • 95%

It's been years since I've checked the used electric market, but I'm seeing cars like the Hyundai Ionic 6 or Polestar 2 for low 30s, where as they were in the high 40s or mid 50s new a year ago. My suspicion is that: 1) Normal car depreciation when driven off the lot 2) General fear of batteries wearing down prematurely, even if the car has ~10k miles 3) Any applicable federal rebates or otherwise have already been claimed and can't be claimed on used vehicles(?) Is there any other reason why these drop so quickly? Would buying one be considered foolish in anyway?

First off, I'm guessing this is the most active Proton Technologies community on Lemmy (if there is another, please let me know!) I recently started playing around with Proton Drive, and my biggest complaint is that there is no dedicated Linux client. I've run quite a few Windows application on Linux in the past using Wine/ Lutris/ Bottles, etc. However when trying to run the Proton Drive installer (for Windows), it quits prematurely with a [generic error message](https://i.imgur.com/hBtDwSw.png). I'm guessing there are some config options I need to tweek, or perhaps it knows it's not running in a Windows environment and prevents installation for security reasons. Anyone have any tips or done this successfully?

Subaru root • 4 months ago • 100%

I had a 2002 Bugeye for a decade and had to let it go when I started college. I was able to find the VIN in some old paperwork, and am wondering what I should do next to try to contact the current owner. I see several sites that cost money that might be candidates, but was wondering if the DMV is a better bet, or if there is sites you guys have used and would recommend

I wanted to start using a budgeting program to better organize my spending/ goals, and basically narrowed it down to 3 --YNAB, Actual and Quicken Simplifi. I setup a self-hosted instance of Actual and was able to import my spending from my account by exporting from my bank and importing into the app, however this seemed like it might get tedious over time, so I decided to try YNAB. So far this has been pretty straight forward. I’m still waiting for things to sync up with my linked accounts, but I like it so far. I would try Simplifi but there’s no trial period there; though the graphs and UI make it seem appealing. Anyone here have any experience with Simplifi/ YNAB, and why might you chose one over the other?

YNAB root • 4 months ago • 100%

I wanted to start using a budgeting program to better organize my spending/ goals, and basically narrowed it down to 3 --YNAB, Actual and Quicken Simplifi. I setup a self-hosted instance of Actual and was able to import my spending from my account by exporting from my bank and importing into the app, however this seemed like it might get tedious over time, so I decided to try YNAB. So far this has been pretty straight forward. I'm still waiting for things to sync up with my linked accounts, but I like it so far. I would try Simplifi but there's no trial period there; though the graphs and UI make it seem appealing. Anyone here have any experience with Simplifi/ YNAB, and why might you chose one over the other?

Hello, So I recently revisited (and recreated) my savings spreadsheets so that I can track my `needs`, `wants` and `savings`. To try to keep track of my `fixed costs` and also try to follow the `50/30/20` rule (not sure if this is a good strategy or not). I have everything mostly sorted, but as new things come up, say a new subscription or a cancelled one, changes in rent, etc. It will be a bit of a hassle to keep this up to date. Are there any software/ apps that you guys use that you like that make this kind of thing easier to see where your money is going?

For those of you who know of [PiAlert](https://github.com/leiweibau/Pi.Alert/) or similar projects/forks like [NetAlertX](https://github.com/jokob-sk/NetAlertX), do you know of any that can run without WAN access? I just got PiAlert running the other day and noticed that it does not update correctly unless it has access to WAN which seems odd, since it's basically just running `arp` commands within internal IP ranges over specified interfaces. **Edit: Looks like I was just able to modify one function to return a hardcoded value to resolve the need to connect to WAN**

So, I finally got this project (PiAlert) working how I'd like. It basically uses `arp` to keep track of devices on your network, and let you know when new ones join. It gives some basic stats like uptime, etc and you can configure a few different notification options to be alerted when a rogue device connects. Anyways, to get this work on my network involved setting up several network interfaces, as I have quite a few VLANs I'd like to keep an eye on. While everything seems to be working, I feel like I may have created an `asymmetric-routing` situation, as now when I SSH to the VM hosting this, it will freeze up after a few seconds. My interfaces look like [such](https://i.imgur.com/d2MvISL.png). The problem is that I am accessing this VM (hosted on `192.168.1.0/24`) from my personal network (`192.168.6.0/24`). My personal network has access to 192.168.1.0/24 and obviously to it's own subnet, so I think packets are getting confused, as there are multiple routes they can take to this VM. I believe this is confirmed, because if I disable the entry for `192.168.6.0/24` in my `/etc/network/interfaces` file, the problem goes away. How should I handle this? I've tried some simple UFW rules to try to force things to only use the `192.168.1.0/24` interface, but to no avail. **Edit: Sorry for the weird markdown, not sure why it's highlighting keywords**

I recently installed an instance of [TPot Honeypot](https://github.com/telekom-security/tpotce), and it looks and feels pretty fantastic. I haven't opened it up to the whole world, because my goal here was to just have the same ports I expose for my personal projects (game server, matrix chat, wireguard, etc) be exposed to it. I know this project is a bit overkill for this use case, since it comes with a **ton** of honeypots that I'm not using, and that I'm essentially trying to make a fancy IDS, however I have a couple questions. 1) Is it possible to add custom ports for honeypots that aren't included in the project? For example, if I have a game running on port `4567` and there is no honeypot for that, I won't see any activity. 2) Is there another (perhaps lighter) Honeypot that you guys would recommend? **Edit: I guess disregard. I realize now that I can't have honeypots running on the same ports as the services in which I'm wanting to monitor. Port forwarding from WAN to multiple devices using the same port won't work**

Subaru root • 5 months ago • 100%

I've been using the Michelin Pilot Sport AS3+ for a couple years now, and they've been great. Very responsive, no tire roll in the corners and great for all season (I live in an area with only light rain and no snow). My WRX is mainly a commuter car, no track or anything like that. That being said, are the Michelin Pilot Sport 4's the only tire worth looking at, or are there some others that might fit my needs.

I recently discovered Pi Alert (and the various forks of it) and it seems like something that might be useful on my homelab. I've decided to use [this](https://github.com/leiweibau/Pi.Alert) version, and have tried the others as well, but I can't seem to get it to discover things outside of the VLAN that it is installed on. It is running on a Proxmox VM using a trunk'd interface that has several VLANs available to it. If I SSH into the VM hosting Pi Alert, I am able to ping the devices on the other VLANs without issues, so I know ICMP detection should be working. [Here](https://github.com/leiweibau/Pi.Alert/blob/main/config/pialert.conf) is the config section. I am using `SCAN_SUBNETS = [ '192.168.1.0/24 --interface=ens18', '192.168.2.0/24 --interface=ens18' ]` To test 2 of my VLANs, and as mentioned, they are on the same interface, however this does not seem to be working. Anyone have any suggestions?

CSCareerQuestions root • 5 months ago • 94%

Hey all, Firstly, not sure if this is the best place to ask this question, but here it goes anyways. I've been a Systems Engineer for about 6 years now, and it's fairly enjoyable. I get to program, play with hardware from time to time, but something is missing. In my free time, I like to spin up projects on my home lab, write and host new open source projects, maintain a fairly complex network, etc. A couple years ago, our company got hacked, and honestly, the aftermath was some of the most fun I've ever had at a job. I got to discover new tools to help my team (like Ansible to help us perform bulk actions across our tester fleet), I got to come up with clever ways to upgrade our fleet of machines to meet the new IT regulations and deploy them at scale once we got the green light to return to the labs and I got to think of new security strategies to help better protect us (my small team within the larger company) going forward. After the dust settled, it was back to basically only programming, but I do miss when I was able to use my infra/ security/ networking knowledge for that short time. If I were to change from Sys Engi to something else, what should I be looking for?

Funny: Home of the Haha root • 5 months ago • 20%

This small YouTuber has been pumping out dad jokes for almost 1,000 episodes (999 currently). Show him some love :) PS, I’m sure some bot will yell at me for this link. Apologies. https://youtu.be/LtSWM-f2Rg4?si=e0-uur23aJh-MhEE

Dad Jokes root • 5 months ago • 82%

This small YouTuber has been pumping out dad jokes for almost 1,000 episodes (999 currently). Show him some love :) PS, I'm sure some bot will yell at me for this link. Apologies. https://youtu.be/LtSWM-f2Rg4?si=e0-uur23aJh-MhEE

After looking into travel routers a bit, I quickly came across Gl.iNet which seems to be a leader in the space. It seems they use OpenWRT which is great, but with some special sauce on top of it. In a few different posts I've seen people mention that they are no longer open source. Does anyone know if this is the case? I see some activity on their Github repo, but am not quite sure which parts people are worried about being closed. [Post 1](https://forum.gl-inet.com/t/formal-statement-on-gl-inet-software-going-closed-source/33288) [Post 2](https://www.reddit.com/r/GlInet/comments/16gbnv0/any_official_announcement_regarding_going_closed/)

For those of you who use travel routers, do you only use them to wire guard/ openvpn back to your home networks for local resources? Do you use the travel routers firewall features at all, or does the VPN tunnel home take care of concerns about others in the public (hotel/ coffee shop/ etc) from seeing your devices?

I've been using [Whoogle](https://github.com/benbusby/whoogle-search) for probably a couple years now, and it's been great. I do not have a cert on my PC that's running it (in my house) so my connection to it is not https. My question though, is once my query reaches from my device to the whole server (http) does Whoogle then use HTTPS when exiting to complete the query?

I've gone through this process a few times over the last week since trying out WireGuard, and for the most part it's been seemless. There's hiccups here or there, but normally just me misconfiguring my keys/ config file. Typically on the client (my phone, tablet, etc) there is an option to generate the key pairs. I'll then put the public one on my peer definition in pfsense, and away we go. With this GL.iNet router however, there is no option (that I see) to generate the key pairs.. so I think the problem I'm running into is that they are not matching/ expected when the negotiation with my firewall happens. How can I go about generating these keypairs? Has anyone had this issue with GL.iNet? **EDIT: After finding a post from GL.iNet staff advising to not have a Listening port in the Peer section, and to set the MTU to around 1300, I have everything working as expected.**

Subaru root • 7 months ago • 90%

Does anyone have experience with OEM vs OEE windshields? Are they really that different to where the price difference ($300 vs $800 in my case) is justified? I've heard different takes, ranging from "avoid OEE at all costs, it's thinner and shaped differently" to "they're the same glass, just one doesn't have the Subaru print on it".

I've used `fail2ban` in the past on Ubuntu, and it was very easy to setup. Apparently on Debian, there is no `/var/log/auth.log`, and it does not use iptables, so `fail2ban` is not seeing the failed login attempts and jailing the purp. Has anyone set this up successfully before? I see suggestions online to set `backend = systemd`, but this does not seem to be fixing the issue for me.

Hey all, I have a TP-Link EAP660-HD which has been serving me very well. I recently upgraded the FW on it, and after checking the back of the unit to see that it is a ver 1.6 (and downloading the appropriate 1.6 FW) I see in the dashboard that it says it is a HW version 1.0. Is this expected? [Pic](https://i.imgur.com/LyQDCKo.png)

Subaru root • 7 months ago • 100%

Back in college, I had to sell my 02 WRX because I couldn't afford to fix it. I had that car for ~10 years and love(d) it. I want to see if I can find the current owner to make an offer on it, but I'm not sure the best way to go about it. I sold it back in 2016 so it's been quite a while. Does anyone know any specific forums or threads for this purpose? I still have the license plate memorized.

I've had a few people in my life tell me that they lost X % of their 401k during the (insert financial crisis). Recently when a friend told me they lost 50% of their 401k in the 2008 time, I said: "Well you didn't really lose anything, because you still had the stocks, and even though they were worth less, you still had the same number of stocks, so you could have waited it out?" To which my friend replied: "That would be true if the person managing my 401k didn't sell". I hadn't actually thought about that. I mean personally most of my funds are in age based target funds, but those funds are also managed by someone, right? So is there a way to prevent someone from selling your stocks if the economy tanks? I have a pretty long retirement horizon (still in my 30s) so I can weather the storm for a bit. **Edit: Thank you everyone for the insightful answers. This really helps to clear things up**

Dad Jokes root • 8 months ago • 81%

A long time ago I came across this channel called [DysonShow500](https://youtu.be/pkTVpQclgMA?si=HSnjDwsC3084xQp4) It's a guy performing small jokes of the 'dad' variety. Years and years have gone by, and I now see he is approaching his 1000th episode. Just wanted to post here to give him some love and attention :)

Personal Finance Canada root • 8 months ago • 100%

Hey all, I've been lurking this sub for a bit, and came across your flow chart (which is very similar to the American one, minus the HSA for health care). Aside from some naming differences, the goals are more or less in alignment. Save 15% of pre tax income for retirement, emergency fund, pay off debts, etc. Having followed this for some time now, and considering moving to Canada in the future, how screwed would I be in terms of the work I've put into my savings for retirement? Most of it is post tax (Roth), so it might not be as bad as I'm imagining. In that situation I've heard people leave their accounts as is in the states to let them compound, as you cannot contribute to them with money earned outside of the US. Does anyone have any insights?

3DPrinting root • 8 months ago • 90%

I had [previously posted](https://lemmy.world/post/10611049) about some horizontal line issues I've been having, and I tried a lot of the suggestions I got; Unfortunately the issue persists. I saw a video today, where someone mentioned that [these](https://imgur.com/a/BFAjh9y) connections that are basically responsible for raising and lowering the printer head should be somewhat loose, and not tight (as I had them). Does anyone know if this is true? The video creator said that it is to allow for some 'forgiveness' between the two screws that drive the printer head up and down.

3DPrinting root • 8 months ago • 97%

Just about all of my prints have these lines at around the same heights, and I can't figure out why. I tried changing the nozzle, changing the layer height from 0.15 to 0.12, and changing the speed from 60mm to 40mm. All of these seemed to have helped a bit, yet they remain. I was thinking maybe as the prints get to a certain height, the shaking of the bed (Prusa MK2) caused the layers to be slightly offset perhaps. Anyone have any other ideas?

3DPrinting root • 9 months ago • 100%

I'm looking to buy an intermediate level printer to upgrade from a MK2, and I'm deciding between a P1S vs a MK4. I have never considered getting anything other than a Prusa, since I've had such good experiences using mine, however I heard that recently they've switched away from their open source model(?) That and being made in the EU was the main differentiating factor for me, however I do hear really good things about Bambu printers. Does anyone have experience with either? Edit: Found a lot of the information I was looking for here: https://lemmy.world/post/9500502

meshtastic root • 9 months ago • 100%

Does anyone know if a good server/ room to discuss LoRa/ Meshtastic projects?

Matrix root • 9 months ago • 100%

Does anyone know if a good server/ room to discuss LoRa/ Meshtastic projects?