|
my stepdads beer posted:has anyone moved from a network where your core speaks bgp to mpls where only your edge needs to? any pitfalls? I am tempted as the QFX range seems to be a bargain but won't take a full table i mean kinda? fastly doesn't use routers. all of our switches get peering/transit jammed into them and we run bird on all the cache nodes to wrangle bgp bc commodity cpu is cheap. it's saved us millions in worthless cisco expenses
|
#
¿
Dec 18, 2019 06:05
|
|
|
|
| # ¿ May 9, 2024 09:32 |
|
|
my stepdads beer posted:hmm I am having trouble understand how this works, so your l3 switches get a summary table from bird? theyre not even layer 3. so we have X switches which are per-transit, and then each machine gets 1 10g pipe to each of X switches. bgp is on the node so it knows which interface is the preferred path for Y IP block. this is super fun and powerful esp if you can visualize bgp updates being pushed globally in a second or two. given that we have about 12% of web traffic behind us, it's a bit of a firehose. we never use it maliciously of course but we can route around outages really hard
|
|
#
¿
Dec 18, 2019 09:12
|
|
|
a genuine question for all the k8s wranglers: what was wrong with docker and fleetctl?
|
|
#
¿
Dec 27, 2019 05:00
|
|
|
Turnquiet posted:everyone who keeps pushing radius over a restful protocol that can do all it does and more is the reason why most enterprise practitioners keep designing new services on windows servers. its like they love tending their beautiful bonsai tree garden of infrastructure instead of realizing that anything ops related is poo poo-tier work that needs to be minimized so we can get a good night's sleep and focus on more interesting problems. the only problem with this argument is that those more interesting problems will be solved by somebody else. radius is job preservation, and i can respect that.
|
|
#
¿
Dec 29, 2019 06:11
|
|
|
we have some former letsencrypt employees and they manage certs for over 100M domains on a half rack of servers somewhere
|
|
#
¿
Jun 3, 2020 20:15
|
|
|
the whole k8s thing feels like everybody collectively gave up on building server applications that can be configured and reloaded and just agreed to install factories that could create dumb murderable micro computers by the thousand. i don't care for it in most cases
|
|
#
¿
Feb 21, 2021 19:33
|
|
|
tortilla_chip posted:I suspect most organizations doing multi-cloud deployments at scale aren't paying list for ingress/egress traffic. confirm that deals are often cut, yes
|
|
#
¿
Feb 26, 2021 19:35
|
|
|
you can often find interesting deals when you voltron a couple partnered providers together too. Like if you use Azure backends for your website, and use Fastly for CDN, you don't pay Azure anything for egress traffic. we worked out a deal there
|
|
#
¿
Feb 26, 2021 21:14
|
|
|
12 rats tied together posted:
haha yeeeeeeep
|
|
#
¿
Feb 26, 2021 21:31
|
|
|
holy poo poo do not loving tell me you run yosslack in a browser
|
|
#
¿
Mar 5, 2021 21:21
|
|
|
oh tahts right you have an obama's-first-term air for your personal, all is forgiven
|
|
#
¿
Mar 5, 2021 22:07
|
|
|
i cannot wait until M2 comes out and allows more ram and i buy myself the first new laptop ive ever owned in my life
|
|
#
¿
Mar 5, 2021 22:08
|
|
|
Sniep posted:and thats why i just skip all the unifi routers entirely, use edgemax for that, and then use unifi for the access points and switching which its fine for also exactly what i do. unifi for the APs, edgerouter for the brain box
|
|
#
¿
Mar 6, 2021 00:01
|
|
|
definitely search #teamviewer on twitter for a lot of excellent success stories
|
|
#
¿
Mar 15, 2021 03:21
|
|
|
not gonna tell you. gotta find out for yourself
|
|
#
¿
Mar 15, 2021 05:37
|
|
|
i have the best cert, which is an expired ccna the first part is important
|
|
#
¿
Mar 18, 2021 03:58
|
|
|
ate poo poo on live tv posted:Got my expired ccnp, and also "Worked at Cisco" on my resume hell yeah thats the way
|
|
#
¿
Mar 18, 2021 04:10
|
|
|
like what do you even do after you ssh into a windows machine. lol check it out i can run 'dir' OVER THE INTERNET how complete is their ssh server? can you do reverse port maps? tunneling? scp transfers? or is it "yeah baby look at that prompt. linus start your photocopier"
|
|
#
¿
Mar 26, 2021 02:54
|
|
|
fair nuff. baby steps. go microsoft! You'll get to the level of functionality of a 2003 debian cd eventually, we're all rooting for you. hang in there
|
|
#
¿
Mar 26, 2021 03:14
|
|
|
i just do support tickets im not qualified to advise but joao is a genius and it sucks he doesnt still work here. that talk is good
|
|
#
¿
May 13, 2021 00:46
|
|
|
yah chash is cool as hell
|
|
#
¿
May 13, 2021 02:01
|
|
|
aww! routers! I remember those.
|
|
#
¿
Jun 4, 2021 02:05
|
|
|
Kazinsal posted:"nobody was ever fired for buying a cisco" haha you would at Fastly! we dont use routers
|
|
#
¿
Jun 4, 2021 02:26
|
|
|
Kazinsal posted:I applaud your networking team for freeing themselves from the shackles of conventional hardware and embracing the software defined chaos and making it work Yeah, it was a day 1 thing. our founder didn't want to gently caress with Cisco leases or purchases and all the attendant trappings so we just run all our transits and peering into Juniper switches, each cache machine gets a line to each switch, and we do all the BGP right on the boxes with bird. It lets us do some pretty wild poo poo and yeah, scales big
|
|
#
¿
Jun 4, 2021 02:35
|
|
|
i dont even know, man i know, but i'd be fired if i told you
|
|
#
¿
Jun 8, 2021 18:53
|
|
|
i honestly don't have anything to do; the lower tier support folks are handling the tickets and the higher tier eng/release folks are fixing the problem. so thats nice
|
|
#
¿
Jun 8, 2021 18:58
|
|
|
i'm on 120/15 cable for $90 a month. go to hell lol
|
|
#
¿
Jun 8, 2021 19:15
|
|
|
well i WAS going to buy a 2 bay syno, load it with 14t drives in a mirror and park it at a colo that gives symmetrical no-cap gigabit for $29 a month but then that stupid crypto poo poo happened and now platters are all a trillion dollars. crypto dorks ruin everything they touch
|
|
#
¿
Jun 8, 2021 19:27
|
|
|
yes, the base ccna is what you want jfyi > so I can understand routing easy peasy > how to not be afraid of network device CLI's. never goes away
|
|
#
¿
Jun 12, 2021 04:28
|
|
|
lmao
|
|
#
¿
Jun 28, 2021 08:47
|
|
|
fresh_cheese posted:anyone have good pihole block lists they’d recommend? https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts https://dbl.oisd.nl/ https://phishing.army/download/phishing_army_blocklist_extended.txt https://raw.githubusercontent.com/deathbybandaid/piholeparser/master/Subscribable-Lists/ParsedBlacklists/AakList.txt https://raw.githubusercontent.com/deathbybandaid/piholeparser/master/Subscribable-Lists/ParsedBlacklists/Prebake-Obtrusive.txt bout 1.1m domains
|
|
#
¿
Dec 8, 2021 00:49
|
|
|
get teh edgerouter and unifi ap yeah
|
|
#
¿
Dec 10, 2021 16:06
|
|
|
i got owned by a 0day on my old mikrotik and they opened the http proxy on my router and i got on all the open proxy lists and for a month i couldnt browse netflix, amazon, ebay etc because they just block everything on that list. gently caress mikrotik. yeah i guess its on me for not janitoring my router but still
|
|
#
¿
Dec 11, 2021 00:39
|
|
|
im on the gs108 switch i bought for hausbus. it runs on 12v. it never breaks. it's silent. it just works and i love it
|
|
#
¿
Dec 11, 2021 00:49
|
|
|
Mr. Crow posted:wanna here a funny tcp joke? I've got a pretty good UDP joke, but i'm not sure if you'll get it
|
|
#
¿
Jul 24, 2023 19:07
|
|
|
that'd be cool though. Ive also got a joke about TCP replay attacks but you may have heard it before
|
|
#
¿
Jul 24, 2023 19:22
|
|
|
nudgenudgetilt posted:bgp all the things. routing to the edge with a bird on every server This is literally how Fastly works! we run bird on every cache machine and then just use fatty switches to link them all to transit
|
|
#
¿
Jul 27, 2023 21:05
|
|
|
i would wear out an mx cherry red question mark key typing as many as i need to express how i feel rn
|
|
#
¿
Aug 6, 2023 08:05
|
|
|
Kazinsal posted:turns out “cloud based app for experimentally treating victorian era style diagnoses of hysteria with ketamine” isn’t exactly a business model that promotes long term growth i didnt know you worked for musk!
|
|
#
¿
Sep 19, 2023 04:00
|
|
|
|
| # ¿ May 9, 2024 09:32 |
|
|
that seems like a trap, yeah. keep your lan poo poo private. only thing i can think of is NAT cpu usage, but if you enable hwnat offloading it should be fine. i run gig symmetric through a fuckin' edgerouter lite and it is just fine with hwnat enabled.
|
|
#
¿
Oct 9, 2023 04:40
|
|