 I just don't get it. It's not I I mean it is what it is Linus got hacked. That's how we're gonna start this up I mean I Could title it that I I don't know it's me and Steve or just you're talking are we just I like that word someone threw at me Covetching for views See I think anyone who's unless you're giving some actionable tips regarding the Linus tick-tip hacks It's just that you're just grabbing views. I mean what's the action item? I maybe I'll put together like some security things you should be doing because I think a lot about this and also welcome to vlog Thursday number 323 Synology unified dream machine updates in the lab testing in a rata and I got Steve with me All right We got those things out of the way back to what I knew the questions would be and I told she's like what's the blog gonna be about I'm like I know what I want it to be about kind of but I definitely know what people want to make it about The Linus stuff I The the brief on the hack though in case you didn't know he was his channel got taken over There's the usual crypto scam stuff that's all over the YouTube job blah blah blah I didn't see what videos were actually posted But John Hammond actually did a video on the and I think it was the same one John Hammond talked about like the same stupid Livestream of crypto scam stuff I think they posted a live stream Crypto scam. Yeah, they delete all your videos And they they just have your channel be one live stream of crypto scams. It says I'll tell your users like so just crypto It's yeah, I don't think we need to add scams. Yeah, you're right Descripto you can probably finish it again. I should be an autocomplete my phone by this point Yeah, I don't Know exactly what happened Because it's too early to tell The problem is the way Google works and there's another youtuber I thought about reaching out to him as I just don't understand now I'm not saying this youtuber is wrong that got his channel taken over I don't know what parameters me and Steve are just playing with this right now and One of the problems is if I go to my two-factor if I go to my security settings It prompts me for my password So if you still someone session tokens that will get you in but that doesn't get you the password So they pretty much the best I can tell have to have the password because that was the debate There's a few people got hacked and said you didn't have to have the password and me and Steve Steve's personal accounts the same way going into security in his Google account prompted him first password like he to make any changes to it Like you can get security if I so Google prompt one device two-step verification and it has my number So I'm not putting on the screen But if I go to the arrow to edit any of that it immediately takes me to another challenge for my password And says hey enter your password again Yeah, the only thing I could think of is if you had the session and the password you could do it. Yes, but You already had the You already had the password Therefore if you had the session token you bypassed the first attempt of two-factor and the prompt that a new device logged in right So maybe maybe that's the angle of it is you seal the session key, but you also have the password in order to make the changes Okay, I like I said, it's a I Just don't have the right answer for it. So that's I Don't know what caused it. We don't know the details of Linus. So I Don't know what they took over his computer. There's just it's way truly tall There's no point in speculating one thing it is opportunistic for as a youtuber If you create videos right now with Linus tech tips in the title You're a good chance of being discovered because you can't find the actual Linus tech tip videos at all right now They're all you know, whether they're gone or listed as private. I don't know I'm I'm positive. I feel actually confident Linus will do a debrief. He had his account taken over before Someone cloned his phone and So that's a thing. So that happens sometimes Uh But let's get to the better stuff to talk about the Linus. I mean, that's I shared all my thoughts on it That's I don't got much else. It's all speculative right now. It's very speculative I don't have any real good answers for it, but I do have out of the EA store The UDM pro running 3.0. I didn't think this day would come that they would finally get it on there This is that big discrepancy we unify that makes them so confusing because the 3.0 is what brings forth like the wire guard features If you had a UDM SE you have it if you had a UDM pro even right now It's still in early release. It's not I mean early access at least it's just early access But unifies actually getting there. They're finally finally getting to What do you call it the big boy level big boy level There's the good words for it. Yeah So let's look at the network. We actually have it set up. We have Wire guard in here. They can do wire guard now finally look at this magic here Ooh wire guard like normal wire guard like to all their things or their own No, not that our own weird version of it because like open VPN, of course, is their own weird version of it Yeah, can we add? Yeah, if we added open VPN because open VPN still isn't You have to create a new radius. No, okay creates a radius user. Can you do user VPN in here Steve? I'm not I'm you could not unless they added in this version You could not do a user VPN with open VPN unless you are using the UDM with What do they call that the unify access system or whatever not access but yeah that online thing. Yeah And it was basically their own spin of open VPN. Well, I'll be it looks like you can actually set it How does it create the search and everything though? Huh Fly changes. Let's find out port. What did it do? Hmm. What's the play with this? Maybe did they actually get real open VPN in here? That would be interesting too. I can create users That's interesting. They get open VPN while you can download. But yeah Download that is a standard ovpn file with all of us. Okay Holy crap. I didn't know they did that clue. Oh, there was a way to do it People were like you went in you ran command line. You generated the search. Yeah, they manually export it How it took them this long to just do what people were doing in the command line and add a couple buttons for it's beyond me Yeah, it's I'm actually shocked. This is a Good news. It only took how many years after they released it to come all the way back to the way normal companies do VPN They did everything there. They're like a petrol in child I'm not doing the thing that all the other companies do I'm going to do my own VPN. It's gonna be weird and it's yeah Tom is joining us on the dark side. No, I'm not joining you ID is the other thing you were looking for that That's the other ones to you. Yeah, you ID. That's it. Yeah Somebody had to set that up because they were using L2 TP and encountered the I got a husband and wife who both work from home Yeah, that's a problem Yeah, it's just dumb and They're finally getting it going wait. Does everyone use these VPN protocols like everyone and we're the weird people Yes, you are ubiquity. You've decided to be the weird people you're finally getting around to going Hey, I guess the way other people do it is not for some arbitrary reason, but for you know, like because it's the better way to do it So neat I'll actually try connecting this. I knew they added wire guard. So They've had built-in radius Yeah, they've had it but now they have their No, I doubt they're going to support proper EAP TLS. I doubt that So, I don't know the work around we've been using for the people who want The off and that for like user off for VPNs to their radius servers Tie it to a captive portal. It's easier. Yeah Another way to do it. Mm-hmm Yeah, thanks, Cody. So she's the dark side of unify routing Thomas Steve. No because they still have More complex way, would you what would you say is easier unify or pfSense for setting up rules in a firewall? If I'm doing a large network pfSense my biggest complaint with unify is that They're usually the way I explain it. They're inverse to one another Unified by default is route all your networks to all your other networks Yeah, that's just nothing goes anywhere until I tell it to So when you start building at scale with rules and you're like, well, I got 10 vlands that becomes a nightmare to manage all those rules and Unify not to mention the way it displays them because it's just like one big list versus They are broken down per interface and pfSense. Yes. When you start playing all these rules I just don't find it as easy as I don't know This Not it's not where the the exceed on the easy side. No, I like to pause the rules option. Oh Portnip groups create entries. Yeah, it does have the ability to do aliases. You can still do the RFC rule with it but also it You have to create the a lot like that. What do they call that the allow? I really like the animation I do like the animation this makes me happy Yes, I will say now the traffic management feature is very legit and unify I do actually like that. We have a couple clients who are running older usgs as a Basically they're double-nading their guest network and using the usg to do a block of peer-to-peer traffic Because a lot of the other firewall companies that when you start getting into wanting to do that It's an upcharge and like untangles a prime example. They charge you per Endpoint well, how many endpoints do you have on your guest network? People don't know it's a gamble today. I could have one tomorrow. I could have a hundred. I don't know Yeah, and here's one of the other problems. I have right away. So we have here's our wire guard VPN Here's our open VPN But when we go to Traffic management. Yeah, I remember this being a problem before So if we set these devices, you know, the only inner the internet scene or face we can't choose the routing based on the firewall Well, I don't know if it would show up if you had a site site, but yeah, probably not Right. This is one of the things that they I complained about before and I looked at it going You're so close. You're almost there. Why if I why can't I add a problem is? They're getting closer, but it were crawling. Yeah How look how many years it took them to get multi-wan IP Yeah, multi-wan IP. We're an enterprise firewall. Where's your multi-wan IP? Uh, Oops, we only put it on the UDM's then. Oh Hold on Can we do he looks like we can add a static route for our I mean assuming that let me just go back over to it wire guard So if we go to wire guard and I'm gonna edit this one SWG All right. Oh traffic management static route If I can do static interface Oh, what the hell is the routing over? Oh, what's the other thing that's named test in here? You name two things test open VPN and wire guard. Yeah. Well, it's one of those two So let's go ahead and do this one Apply so it lets me do route. Well, that's dumb because people are gonna use wire guard for site-to-site. I Any may use it for they didn't get that far yet. They don't know what it give them a minute. I Don't know wait. Is there a network called test? No, where does it find this test at? Site-to-site VPN. Okay. We can route over an IP sec VPN, but not the other one maybe because they're not Active, I don't know Well, this one's not active. This is just a test I did. I don't know then I got nothing. All right, they're still broken Edge router. I don't think edge routers long for this world to be honest with you. I Think as long as people buy them they may keep supporting them for a while But I don't really feel like I mean I once in a while get people asking about edge router stuff But we just don't even see it much in the market anymore. I I think everyone's moved on to comparatively speaking, it's They just haven't I mean I was that new one. They did release a new model, but it's still a Yeah, yeah, I don't I'm how many requests are we seeing in the consulting for edge router? I seen one we're usually point. It's usually the same problem as the people who buy the micro tech I Bought it because it was cheap But it's hard to configure and you're gonna pay somebody more to configure it than you paid for the product Yeah, I Mean if you know the product cool, but yeah, he have said it's just way more flexible So that's and it has some of the same anomalies the unify line does of What is that setting do well? It's the same setting in the edge router and it's a mystery of how it works like QoS It's a box Yeah, Cody says we should be able to add a static route for open VPN, but I'm just I Have to play with it. Maybe we have to Actually fully configure it. Well, and maybe it's the type of open VPN I set it up as open VPN server not an open VPN site to site matter of fact Interestingly, you know, so it's missing from here. So here's the VPN test wire guard test open VPN Maybe we got a crate one. Oh Once you create one open VPN, you can't create another that's interesting Okay, so you're only allowed one of the VPN server What if you do it under site to site? So go down a bit more Create site to site VPN. Ah, okay. This is but you can't do wire guard for a site to site Yeah, okay Now they're getting there They're getting there little by little So this is what so test Best open Site to site there we go Always got to do a PSK pretty sure key 520 characters I'm not gonna go through the trouble of setting this up. Oh the open Yeah, it's still their own custom open VPN where you point it at opposite boxes with a key Yep, okay. I've I've gone back to UDM unified dumb machine They're so close. Why can't you guys just do it? Everyone else is doing are they really seeing a new gateway pro for this doubt it I thought they had that new I mean, they have that new one, but you don't get wire guard wire guards not coming to that wire guards Just in the UDM and the UDM SE UDM Pro UDM SE get wire guard the other one does not So if we go to and I think that's a lot of what hurts them now, too Is their marketing for the UDM's people keep buying them because they think they need one I guess it's hurting and helping on the one hand that you're selling more of this awful product because people think they need it but also People are getting frustrated because they have to deal with this product that they thought they needed Then they call us up and we're like, well, why'd you get that? Well? I thought I needed it to run the unified controller. No, not really Yeah, this is the thing that wasn't the gateway pro was in forever But as far as I know the gateway pro is not getting Wire guard And this is part of the problem if we like unified kind of skips over some of that when you try to figure that out So if I try to Google it dual way on security gateway blah blah blah Like where's the spec sheet because everything lands you on the store Would you buy it? I my video is the next one up, but We're it doesn't say in here like Do we have a full spec? No There's not delay. I don't know where the landing page went And much more let's click on it much more Just brings you to their general site here Switching Councils which of course doesn't include this so figuring out if it has those features is not easy Now we know why people get confused like even right here. It's not bringing me to Make sure I'm on the right page here. What are you trying to do? Sharing the wrong tab. Oh fair enough. Yeah Like when you go to the page the unifies page on it, uh-huh gateway pro I deal with cloud council, okay But there's no landing page for it that tells me all of its features hostify. I Don't know. It's on their website Well, they're cloud councils $30 a month. Oh Yeah Click the data sheet button. I don't think the data sheet button though has Um It doesn't tell you the support No, it probably won't give you the info on if it does right They'll tell you some of the basics on it, but they don't tell you I don't see do you see the data sheet button on here? Oh, there it is But I don't think it has anything about VPN in here It's just like power usage ports There we go nothing about what VPN version it supports They don't make that easy which of course leads some more people buying product that wasn't that's not the right product For what their use case is and once again, then they're their own worst enemy and trying to make this sellable like I How do I know which one to buy? Where's the specs on it? Oh, so the UDM Pro supports wire guard. No the UDM SC Why does the SC support wire guard the other one doesn't well, it's in early access They're supposed to support it eventually you're like Now I wonder if they're gonna add back the one benefit of that one versus the UDMs Can I still don't think you can do the auto magic VPN in the UDM? No, I don't think so either and that was a huge benefit of the original USG line was put them all in the same controller Tell site a talk to site B. No static addresses. No problem. Yeah, and you know You can go on Reddit you can go places and look at all the release notes But that's part of the challenge when you're buying a product the product page usually tells me why I'm buying the product and what features And their product chasing release notes is a difficult way to determine a product It's just like for all the work they do to make everything easier in that being their claim I Don't know mention EA and lots of customers run. Yeah, I buy always buy on Always make sure you buy on what is available not what might be available for a product We're just gonna say that's an important at I don't in this is way outside of ubiquity Any product that promises you buy it now. I'll get the feature in there later be pretty suspect You better be happy with the feature set because you may only get the features that it has now Man I Don't know they have any other commentary on this but I I want to like it. I Like where they're going. They're getting better. They're they're making these improvements It's still great for a home or small office. Yes. If you're talking a small office one or two networks and a guest network No real fail over anything no need for a VPN perfect Someone said oh the highly scalable enterprise cloud server key and I don't know Honestly I For the most part we just put just host your own controller. It's not that hard to do hostify completely a great option A lot of people like it if you don't want to deal with updating your controller yourself Hostifies fine hosting yourself is not that hard. I've done a video recently on it I'm actually gonna do a video about how to host it in the cloud. I mean so busy I haven't had time to finish it but hopefully next week. I will it's gonna be I'm moving more my infrastructure over to Linode and Linode It's gonna sponsor the video because Linode is a great place to do it use our offer code down below But we're gonna we're just gonna work it out. So you From them from Linode. Yeah, no Was it is it loaded silly putty from I think so that green silly putty I had that's like. Oh, yeah, we've had it so long It's pretty shot. Yeah Yeah, I mean the good news is at least they have wire guards. This is gonna be something the home users are like hey cool wire guard But business users I mean I guess One I'll have to wait till this I'm not even gonna do a video until it actually comes out of EA But having open VPN on there for a small business. That's that's a selling point being able to have a user remotely get back into the network That's cool. Finally Like finally finally how many years has this device been out three four years later? They're getting a they're getting a feature that most of these have. Mm-hmm. Ah Yeah, Docker containers an option hostifies an option. Mm-hmm Windows is an option, but it breaks Yeah, Windows is an option, but don't there's always bugs when people try to run it windows. Just don't do that Yeah, I gotta move mine still The product page the next gen gateway Pro is under the store then look at routing and offloading. Oh Is it I didn't know they had it in the store already So As I say, I think that's out of Is it under councils? No, isn't that what you had was the next gen gateway? Yeah, well, I thought they said the net. No, there's another one. They were talking about it's the there's another cloud I guess there's someone said there's oh, yeah, that's the early access that weird big cloud key thing. Yeah For me unifies still the future, but at least I get the more important news and how they develop their products. Thanks for that I mean Yeah, we still like it. There's a discussion in my forums about this I don't there's a couple of people my forums that always suggest weird things are like Oh, you should get Cisco catalysts. I'm like the person says they're they're overwhelmed and don't have time to learn new things In either network updated I'm like hands down unifies the easiest way to set up a network. I If you don't have time, you don't already know Cisco unless you're gonna put the time into learning how Cisco works and Bonding a bunch of the catalyst switches together. I'm like, yeah Any alternative to unify other than PF sense? I mean That's kind of a broad question Unify we like for switching and access points PF sense we like for firewall, which other ones are there? There's other firewall softwares out there. I Would just say hands down PF sense is probably the most well-supported well documented one out there I don't think anyone else in the open source world Especially when you start looking at the amount of documentation out there Not just my videos, but just like their forums and everything I can't find a reason not to go with PF sense unless you have some traffic filtering need once you go that way I mean if you're gonna go for traffic filtering you're going into paid subscriptions You can go with a Rista which used to be untangle and that's where we got those few clients Who even they had usgs that they moved off of and we put that to do the We put it in front of a network to do that filtering and then they're still running a PF sense. Mm-hmm We have we have another person They're like four there. Well, they're going to proxy They're going to a different filtering solution and for our clients. We use Zoros for Filtering all the client stuff. So there's I don't think I've seen filtering tied into the firewall that I like Even my friends that run things like 40 net they don't even like using the 40 net filtering They usually use a third-party solution because they don't like the 40 net solution for it yeah, like I said the the biggest thing for the unify one is I have about Five six clients who run a US so they have a PF sense then off the PF sense they have a guest network that is fed off of the Off of a unify firewall And then that unify firewall does the filtering for p2p traffic because they got takedown notices on their guest network But it makes it hard to buy something like from untangle or Cisco or anything Because they want to know how many endpoints you have right? It's a guest network There's not a good way to know that so you're either paying a lot For extra seats that may not be getting used or you don't have enough and people are bypassing it Yep, there's no easy answer on that one there. Um Don't filter your guest network. I don't know Well, it's it's just for the p2p issue because look at that client who has that multi-story office building They have an open guest network for when you come in and you know, you're visiting tenants and People will just come in with torrents running on their laptops um So if some of the smaller companies that work on building a unified cross-brand configuration engine they would clean up There I can't remember the name of the tool. There is tools out there. They're just expensive and complicated So it's not that there isn't one there is a multi-brand configuration tool out there to manage configs and its name alludes me. Um, I met a couple of people when I was at the ohio linux fest, but It's not it's not an easy tool. It's also expensive By the way, it did one of the things that shocked me about it is pf senses and their supported lists So they could do configuration management for like multi-brand They do it for their target audience fortune 1000 companies because fortune 1000 companies always have a mix of product They can give you one master interface to all your mix of products the name alludes me of the company it was cool what they could do very complicated huge number of employees to manage it because of um You know, it was a cool solution that brought everything into one place for configuration management But it's a big undertaking um Oh, I seen someone I don't have any details about sofos I know sofos changed your license people were angry. I seen it. I said I don't use sofos I'll skip in over that and this is one of the things I complained about with um the way they do their licensing for things The fact that like everything's registered to get the license becomes The problem because it's not an open source product. It's free until we decide it's not and arista changed the way they do their free version With untangled when a wrist about them. So same problem and I've always commented about that going Yeah, you're gonna have to deal with this like if you have to register unlock with a license even if that license Doesn't have a cost And someone could then point out what have a cost. Yeah Well, it doesn't have a cost yet and someone could say that about pf sense plus but pf sense c e despite the negative and naysayers It's at 2.7 and close to release right now. They're still updating the community edition. It doesn't require any type of registration The only thing you're missing is those couple extra features such as zfs boot environments. I like the boot environments I think they're great But yeah, if you go man, I just don't want to deal with registration then you don't have to you're you're losing out on boot environments and a couple other features So um No, not ansible and not ready as well ansible can be used for configuration management But this is a turnkey solution. Not like you have to build your own solution Sophos xg home is free. No, there's some license change. Sophos did people asking about it And I'm like, I just don't use Sophos and I'm not going to look into and compare licenses not a product I don't use I know people tag me. I think on twitter on it And we're mad. Hey, Sophos changed these rules I don't use it Yeah, ruben instant on ruben is not just ugly It's gotten better from when you did the video Yeah, I watched your video then I went and worked with it. I'm like, oh, this is actually A few of the things you said didn't exist now exists Yeah, I know they added because I believe at the time they didn't have any vlan options There's something there's something big missing. Yeah, you can now mass add vlands My only complaint was it wouldn't add it to the uplink port for some reason You had to manually go do that one Yeah The ui is still ugly I don't know why um, I fire wallo seems to have got this weird following. Uh, I've never used one Fire Uh, I don't know anybody who I Think the premises That you take it as a travel firewall. No, no, they so they have three models. You have the Kind of a base model. You got the fancy model at 485 I just thought they're basically The the part I don't know and I just don't feel like digging into them The way they work is everything loops through their network. Well that loops through Reaches out to their network to be able to get All this working like hey cool privacy vpn and all these things they just took a basic firewall and integrated some features but I It all works on a phone, which is my first problem like you have to configure it with your phone It's really targeted. Thanks. I hate it Yeah, there's my first problem of everything is let's use this. Oh, they have a web interface now a web interface beta It's still beta they their first and foremost is it's a phone software The other thing that I don't understand What happens if it can't phone home and and get these data updates it does for things does it stop working? I mean, it seems like a good consumer product It doesn't seem like it has a business use case and it doesn't have all the advanced features you would expect of a um If you where's their documentation user manual? Like look how basic all this stuff is. It's it's all basic Which is fine. I don't mind that um Oh, they because they have a bridge mode too. So that's interesting. You can use it with google nest Um, let's go install the gold firewall step one. You have to use the app. There's there's for me Kind of nope ourselves out step one use app. I don't want to use an app I don't want to scan a qr code to order food. I hate this timeline. Yeah Yeah, so I Uh install purple this purple step one download app. Okay Yeah, so that's kind of where I stop looking at it is going. Okay I mean if you're a consumer and you don't mind this and compared to You know, what is that one company like netgear or whoever makes some of the basic devices? I mean Use it if it makes you happy, but yeah I wouldn't even say home or I wouldn't say small business user I mean, I guess it depends on what you consider a small business user as long as that small business You doesn't have any vpn needs and yeah, it'll probably work Uh Why am I not using sofos and it really comes down to I've not seen anything that sofos offers besides their licensing and registration That would make me want to use them pf sense covers my needs And there's nothing wrong with pf sense. So why would I Do something else. I've also been a little confused by some of the sofo stuff. So Because I know they had multiple versions. I don't know if they still do So if we look up the sofos firewall This isn't there more than one I know you got a So online demo get pricing I think you got to search for the free version. They don't online demo cloud management As far as I know everything they do Is trying to get you to buy the full version. There we go. Here's the free home edition Download and then you register it um Stop viruses date dual av scanning engine You don't even get to the download unless you put some Does give me a download or does it email me a download? Bit of emails Oh, no, it lets me download it Neat So you can download it. I just I think it needs your registration. Yeah, your evaluation serial number Right there. So I don't need to keep doing that But this is why and I don't know why I don't really feel like evaluating it. Oh, yeah, I still can't uh It's the problem is it's too hard to compare all of them together um It's there's no easy comparison chart to them 48 I have I'm not a 48. It's really popular. But man, are they bad when it comes to security their their history of security is Garbage, they have hard-coded so many passwords and things in there um When they hard-coded a back door into their own vpn Read that story because it came out of def con and you're like really What kind of company does that? Oh wait a bunch of morons as far as I'm the one who likes the ones who like nsa money Yeah, no, it's even dumber than that. I wish that's why they did it Did did you ever hear the story of why they did it? No So I did a video on this because it's so stupid. It hurts Um, apparently they had a client big enough that asked them for custom firmware And in that custom firmware, they wanted a back door into the vpn And so they made the custom firmware and somehow it ended up in a main code base I'm like And when it's our security researcher found it They didn't believe them that it was there because they didn't realize it ended up in a main code base So they were going back and forth to the security researcher And so they did a def con video on it and I think black had a def con I can't remember where the talk was given us a few years ago and it was like Really you you built in a back door to your vpn because a client asked you to dumb You want to put the one from dakota up the e-rate question? Which one A few down from the one you just had up Uh Dakota you said oh Uh, do you guys Yeah, yeah, yeah, we're gonna do that at some point. We keep saying that Uh It's a headache. It's actually not bad. There's which one. Yeah, there's two programs. There's spin and spare We do bear spin is You front the money for the work The school pays their percentage and then you chase the federal government for the rest and Hope you have people to chase the money and do the paperwork and dot all the eyes while they Run you around The bear program is a lot easier because a lot of these schools already have people who come in and do Um like e-rate consulting to help them So the bear program the school pays the full amount and then they get reimbursed the percentage Which usually their e-rate people will work with them on the only problem you run into with that is on larger projects Because the school has to pay you They have to already have that money in their budget. So it comes down to project size Mm-hmm I tried so puts at home Because msp i was working for loved him my last week before I did she went back to pf sense I've heard people tell me they don't like the interface for it. I said I don't feel like learning a new interface Let's suspect this another sofos question Yeah I did like the When you used a lot of the extra features and sofos it did feel like it was pretty secure because you could lock down a lot of stuff But it also made it hard when you wanted to switch it companies and they lost a password I've seen people talk about cisco firepower. Yeah, no yeah Maraki if you don't mind the license fees, but also maraki doesn't do uh complicated things That's where maraki starts falling apart you're kind of Pigeon hold in to some of the things that they offer and that's about it Let's see average ticket site for a 500 kids school That school we did out in the midwest Um God, how many buildings was that that was five buildings was it five? Yeah, yeah, because they had I think a couple uh churches and that too that they just also supplied They uh networked to And that one was like more of a quarter million dollar project So I mean it really depends the prices are over the place. It depends on what they need We have some that was just a network overhaul um Some of the other schools we do they have and it comes down to how much the uh support the school has that school had A bunch of level one guys who could put the like New where stuff had to be roughly and could run around but they weren't Racking stuff and doing a lot of the more complex Terminations versus another school we do work with He's got a crew who are all really smart and they're calling us as like a last-ditch effort of Yeah, we can't figure this out Yeah We we do schools of all sizes um All budgets we've done some small stuff helped out some small like charter schools I've done a couple consulting gigs on there. Uh, then we have some larger whole districts that we work with And this is not The the amount of time it takes to set all those up In especially because I don't really feel like taking the time to do vios or tensor They're both command line. I mean they both have similar command lines You just have to learn a nuance of them, but it's one of those things If I did a whole video on it, it's kind of a diminishing returns problem as well Take the time to learn it and the video barely won't get any views because if you go too complicated on things on youtube You just don't get any audience for it And then the hours it takes me and j talked about this and I haven't even looked j did an in-depth video on Something that took him almost a month to learn Like the hours he has into this is insane. I want to see how many views it's got But sometimes we just go should I put X number of hours into something to not even get views or returns or anything from it Um, j did a whole video at open stack Let me find his playlist for it Yeah So that video took him Let's see where's learn open stack part one So he broke it down because it's so long each one's about a half hour video It's well. This is what a complicated video looks like on youtube After a month j got 9 000 views on a video that he spent like a month and a half working on to produce At some point and that's how it is with the firewall videos. I could do these like i'm gonna stop making videos for a while, but I really Hammer down and do this vios video for a thousand people to watch. I don't think there's enough demand on that as a topic Um, that it would get more views besides chris chris would watch it I don't think chris had watched it enough to make it worthwhile So no offense chris not likely i'm gonna do a video on vios and that may someone can prove me wrong and Do some videos on those and i'll see them be incredibly popular and that'd be cool But I tell you once you start walking people through complex command line routing stuff. Yeah Coming from sofas pf sense. I will say sofas is good before they started Jump with limiting firmware updates the interface was slow compared to pf sense Hmm. Yeah, uh slow interface You already that wasn't the last time you used untangled you were complaining about how slow it was Yeah on the little zx boxes, which are almost like those little protectellies every time you made a change because it would reload all the states The entire box would pause like for five ten seconds and when you're trying to make a bunch of changes that gets frustrating quick Mm versus i'm used to pf sense where i'm zipping around between windows And like okay i'm on this window i made this change and then Sometimes it hangs a bit, but then usually i'm it's usually when you're making a large change like applying like a new network interface or something Yeah, I don't think you've seen you denny configs like this pf sense is a router only You can turn off the firewall features of pf sense. Yeah I did that transparent one for the guy who wanted dhcp To just hand out public addresses. Oh, that's right Yeah, so I did the transparent mode and then you can still apply firewall rules in the transparent mode. Yeah Yeah, I've done. I've done some weird pf sense stuff. Yeah, I got our weird. Um, I called it tunnel bear because I love the memes of like tunnel bear Do we lose a tom? Bye tom I'm assuming y'all can still hear me Um, but anyway, I did the weird open vpn that runs on a virtual server Tom's back That uh is used for our remote sites to connect back to us if We have a client who's behind like cgnat or something. Mm-hmm. Yeah the um There's some weird stuff you can do with it. It's not popular. It doesn't mean you can't do it Um, no, I got a new mouse and I hit the back button I went I went back to the other page where um stream yard is what we do so Yeah, such as life Video about pf side the thing is there's been like one person we did this for It's not a popular solution. It's a very in it's not rocket appliance to do it I'm not it for two people, but it is weird. Yeah All you do is you uh, you just bridge a couple interfaces together And then give it one of the public ip's and then turn on dhcp and call it go hand these out to those other servers, please That's really it Yeah Uh, one of the colleges around here g and pfc curious to know what they're using it for I was surprised to see it on a list of solutions in use in the area um I mean when it comes to we use it for a lot of the business clients We've got it even in some of the small You know racks and colos that people have pf sense is just solid Um for doing all kinds of things like that the only thing missing from pf sense But I don't think it's missing because it's not where it's not where I think it should be done Is if you need web filtering stuff so Outside of that. Yeah Uh, see here Tents there's so many questions. I'm still like I am way behind That's all right. Well, it's gonna jump ahead because some of them aren't real questions Yeah, what I kind of want is since you're a vio stroller that can route my ip ibe 56c traffic and timmy traffic at close to line speeds Um with well, I mean tensor's the replacement For those type of situations um Learn tensor grab it you can get a lab copy from pf sense. That's what it does is high speed routing What's the routing limit though on pf sense? It's the cpu so for each stream On a depends on which cpu you you get limited. I think the 70 100 is where I demoed it I think you can only do a two and a half or one and a half no So what i'm hearing is you build a little rising system and we're done right Yeah, I don't know where the upper limits are but there's some limitations As a matter of fact, that's we should probably test that because we have that rising lab system Maybe I'll load pf sense on it and see how fast it can route There's some limitations when it's a single tcp stream But then again, that's a vanity number Not all the time people are trying to route a single tcp stream. Usually they're aggregating They have a thousand people wanting a connection So they need the bigger pipe and it divvies up the big pipe fine It just doesn't do if I want the entirety of that 10 gig pipe between me and somewhere else with one single stream That's where it fails Yeah, pf sense of bgp and os pf people ask about it once while but I I don't know that there's enough demand for a video on it Web filtering is why I struggle with pf sense for home Uh, yeah web filtering is overrated Just use a cloudflare dns pf sense with uh How do pf sense it open me to we can probably do that video that's at least a common use case there Yeah, that's actually super common. I've done that a handful of times. Yeah, that one pf sense has good documentation on how to do it and it's pretty easy to set up Yeah, I uh, that's why I had jeremy in our lab reset up that server Um, I just got to restore it back because it was on that one super fast epic system I got to restore it back to the lab But I'm that's one of the reasons I wanted in the lab was to do some ad videos with things like uh pf sense Oh, he's already talking about the bsd limitations. Yeah, no one's going to rewrite the kernel And this is also why tensor is using vector packet rowdy in linux There's there's already a solution for it But the reality is there's not enough demand on youtube for me to talk about that particular aspect So my synology video. Oh, yeah. Yeah. Synology has our new cameras. They're out today. I did a video on it It's just their own synology cameras. It's it's interesting. I like synology is going this route It's cool Yeah, we did build a couple uh pf senses with horizon. It's I actually had a client who he was looking he built it on like two fourth gen i5 deltia and he's like We ran open vpn. We passed all the traffic through we got 300 megs over the open vpn He's like, do you think it would be faster if I bought like the 5100? I'm like No, stay with what you have you're already you're beating that. Yeah Exactly Now I don't understand why you would say this but you know, you're entitled to your own opinion even if it doesn't make any sense um Synology licensing these are the new synology cameras that came out there, but synology licenses are perpetual so I Relatively inexpensive. Yeah, they're breaking at you exact vision. Who's a hundred and twenty dollars a license a year Yeah, so let's do a quick comparison here because this is this is a discussion There's a video that's going to be going up over on nas compares where we talk about this I did this video with him and it's a whole licensing discussion I think synology is very reasonably priced when it comes to licensing exact visions an easy example Exact vision per camera renewing not perpetual 120 dollars a year Synology one or two years. I can't remember for sure, but yes Yeah, so they but there's a recurring fee and this is common for the commercial Systems now let's bring it over to synology and synology is going one time fee Also transferable also not tied to the camera. Well There's transferable transferable to other people or other devices on your account um Other nvrs that you own so no you can't just I I don't know what happens if I give my licenses to you And you registered them on your own account. They logically shouldn't work then Yeah, but you can't transfer them to if you buy a new nvr the licenses do transfer What do you mean if I said wow I I just want 20 more cameras. Oh my nvr can't handle it Let me go buy another nvr. My licenses will transfer. Yeah, I can reuse them on the next system I buy exact does that too though. Yeah. Yeah a lot of other companies do But what shocks me about synology is their perpetual licenses and they do that I didn't expect a perpetual license to do that Are they not to mention when you buy their newer nvr models that I think tom and I have the same one the uh, What is it the 1622? Yeah, that comes with eight licenses out of the box Yeah, 1622 and the licenses by the way are Synology camera license and pulling up on a man's end so someone can look and know this very based on the amount you buy Yep. Yep I think a single one is close to 60 bucks, but if you buy the eight pack the price comes way down Right. So, yeah, it's 56 dollars for a single one And it comes down more if you buy eight of them they're eight first. So you save a lot. Yeah Hey, look, we've bought these before last purchase seven times So, yeah We've bought a bunch of these licenses Yeah, the um are they comparable to unify protect? I like senalogy because it has way more features and protect protects a nice system But senalogy kills them in features like senalogy is way more I uh, I said, yes, they're better than protect because you can buy them That that's a whole another thing availability means Everything but these are the ones that they're offering. Um, and when you get a senalogy camera You don't need the licenses because it's built in Well, technically it's going to be rolled into the fee of the camera, but whatever how much are the cameras? We don't know that's a mystery fair enough. Yeah, they just released them yesterday We've had one at the shop for a week or two weeks Uh, I'm at the point where I assume that all cameras have a feedback to the company whether we know about it or not That's fair. But when we do the senalogy systems Usually I'll set a static address for the senalogy and then I Just have that network block all other traffic. So I'll create a vlan where the only rule is My nvr gets internet everything else go away Now what i'm curious on do they have like an auto discovery where? Yeah so well Okay, let me back up and say that again, but better Do they have something like the unify system where once I adopt them if they're all dhcp It just keeps finding them. Yeah, they've got like a discovery tool where it will find groups of them um So it's they did a great job on this. I mean, I'm I'm pretty impressed with how they're doing it so that saves us the headache that we would run into with the hick vision and the um real link and so for am crass whoever else Of man, we got to have a bunch of network info to go set all these cameras static Right Now they're way more competitive with unify because that was the one been a huge benefit in unify And they've got a new discovery tool. That's in the nine Version nine. We just haven't really played with it much, but they've got something there, but the um The other cool thing is When you're setting these up, um, all this stuff Is all inside of it So all the chain you don't have to log into the kit you can log in the camera to do it But you can do everything from inside synology because it has all these extended menus It even has firmware updates in here Mm-hmm. I control all my amcrest stuff directly from the like it pulls the time and all the settings directly from the Synology Yeah, well, there's still certain things like if you want to set up the amcrest face detection Or person detection, you don't get to set that up You don't go through those menus in the Synology. You still got to go to the amcrest for it With the Synology you can control those settings too Like when you do the intrusion detection, um, you can choose and set this up You're doing it just like you would inside the amcrest camera. So that's where the cool integration comes in That's like a people counter, isn't it? Yeah It also has um a loitering thing Yeah, you set that up didn't you I did I want to see who's loitering Um, you can also control the edge recording which is kind of cool So you can pop in a little card Well, yeah, I look like it's all controlled right here without logging into the camera and it auto discovers cameras that are on the same Subnet, so I think you're doing a great job with them Yeah, and like the licensing cost is so low and if you don't have to buy the license for the Synology cameras then I'm unclear if you can sell them to another person. I think they're registered to the account though Yeah, if you register them to the I don't know because normally we we don't register. We don't always register the uh nvrs when we sell them So you can enter them without actually registering them to an email and then they're registered to that nvr I I don't know Check out axis. Look axis is not cheap. I'm not saying axis is bad. I'm just saying they're not cheap uh Axis cameras are What are they going for now? I mean, I I heard people tell me how good a lot of the axis cameras are but You know, you're talking about 449 for a camera here. Um That's a 1920 80 1920 20 1080 90 and a 4k camera like their cameras are just a lot more So we had someone that wanted a quote they wanted to go with a us company that was certified and everything else We give them a quote and they're like what I'm like, yeah, the cameras you want I think the cameras that specifically the models they wanted were 900 dollars a camera the first said wanted like 15 cameras I'm like, yeah, um The comparable one from amcrest is 129 dollars each. He's like, they're like, can we do uh non us? Would you go with geo vision? They're not on the watch list? Yeah, yeah, we'll take that. Okay. Good talk Uh, no, snellji does not have a doorbell But amcrest and other companies do Can you connect an amcrest doorbell to a snellji? I don't think that I don't think I've seen doorbells that support Omvif You might not get the full functionality You know, actually here's a good question just is there a Doorbell So for the first question amcrest doorbell And to answer the other person's question. Yes, the a is inside the camera. You don't need a dva model to do this I've not looked at digital watchdog, but comparative. I remember when I looked at it briefly I just I just like the snellji better. The snellji system is very reliable very well supported documented well um Yeah Yeah, exact vision has great camera support. It's just it it comes at a price It's expensive. It's expensive Unless you let those licensees lapse Yeah And then just don't open it to the world I know a lot of people who do that one uh Talking to us core scales. Is it True to say that in bsd scales on linux Or scale. I don't understand the question True nas core is based on bsd true nas scales based on uh linux uh the ad 410 From amcrest is on the supported list for Um surveillance station version Do do do do do five eight six and above and is listed as an intercom so Is it oneth Um, I don't know if it's oneth because they do you don't necessarily have to pick on vif if it's listed in there So you may be able to select it as an actual Um and the snellji dva models do support, um License plates that's it Uh looking where this at What you looking for yeah, there it is now i'm just someone asked about license plate recognition That's an option in the dva models of snellji They do support license plate recognition I tested i have a video on it if you look at my dva video there's there's a i cover license plate recognition in it On the topic of cameras, you know what affordable nvrs that can do 48 cams snellji We're just gonna keep answering snellji Like there's i know there's other model out there's but Uh can configure surveillance station to restrict certain users to view only Yes, I believe you have granular control I don't know I gotta set that up so i'll find out Yeah, um Per camera permission, I feel like you can do that Maybe I don't know where would I set that up at? privileged profile add test test Oh, yeah, so the answer is If you can see if anyone can see this and it was kind of small But yeah, I can choose the cameras and create a profile Uh for camera privilege. So the answer is yes, you can do that in snellji You have to create a profile and you assign users to that profile with those privileges. Once again snellji for the win It's funny because people saying oh man, I can't use a camera I want a camera system that's free and doesn't have licenses and it needs to be secure And it needs to have a bug bounty program where they do software vetting and do everything I'm like, who do you think pays for all this? Sometimes I get people get a little out of hand with her. I want everything for free I do too, but I also live in a real world where I can't have it all for free Yeah, that's um I don't I don't know because someone else I did have one. Oh, I forgot to put this up as a banner Um, is it the give us money? Oh send us questions. Send us questions. I don't you have give us money as one Yeah, oh, yeah, I should have a give us money one um The uh, I had someone ask this question. I don't know how to answer it really They're having a they're having some trouble, which I know the problem. They're having you can search it It's it's there's a forum post about it, but they're saying they seem apathetic uh What how do they word this somebody's read it the part this person says I don't know how to answer this Really is a question They basically don't they don't think that the people at the truenas Are ready to jump on the problems and this comes down to the problem of supporting an open source and free program At the truenas Yeah, the people at the truenas the ag systems people Uh There's so I set up my nasus weekend while truenas says as some of my features There's been a lot of learning and annoyance curve. Okay Um, are they always so apathetic to issues? I feel like the product is lacking in some areas It seems they really want to blow folks off of not our problem attitude Now the person's not really tell me what was hard or what that problem is as you mentioned in past the add-ons of vms And the response that my own digging is i'm having like stuck alert process. I'm seeing them Decline responsibility often of times after less in a week. I'm not ready to jump on something else But I don't understand what they're saying. I mean the stuck alert problem is is a bug There's people working on the bug I don't know that they're declining responsibility for it. That's the part. I don't understand like They don't jump on it, but by the way, what's up? But you pay for microsoft and if there's someone who is definitely apathetic to your problems, it's microsoft. They don't care They're like, oh it broke everything. Oh another zero day. That's terrible those terms and conditions says that's not our fault They they ignore their enterprise customers who pay them dearly for exchange and ignore them. So I think He hit the button again. I bet he hit the button again Any questions for me while he's gone this is a throw a party I found the back button again But I I think the people at true dance do a good job for being an open source product of supporting everybody, but I mean, there's there's only so much they can't do Super hand-holding of i'm a brand new user and I don't know what an ass is And this is why you know unify got away from unify video and went to unify protect And why even blue iris supports kind of the same way? I've seen the questions of i'm running 10 cameras on this core 2 duo. I found in the garbage. Why is it lagging? Yeah, yeah It's almost like the moment you let people choose their own hardware You're just in for a support nightmare. Um I get it like that's that's a problem Uh, yeah, put a cover on that button. I agree I Remove my back button Although I got I got this course here gaming mouse You know the cool thing about it is it's got that little button on the side That my microphone's covering it's got the button on the side that changes the dpi Do you know what that's really good for when you're not playing games? Editing video so you can keep your mouse at a good speed But when you want to do the precise movement to cut video and edit turns out holding that button in to To change it down. It's not just for sniping. You know, you're uh The g502 has that button too. Yeah I was gonna get a z502 um The reason I got the course error is it was like 30 dollars off at best pie like I was like Yeah, I was like 30 dollars off and this is a nice, you know, the at least the same one Travis might have It's a nicer mouse. I like it. I like my 502. I have Two of three of them. I got a spare one in a box somewhere. Maybe two spares in a box Yeah, I had uh, this is I have the wireless one as well Or we're someone that has the couple buttons on the side. It's not the 502. Is it the 503? I actually have to fix your old one these ones Yeah, I got one of those so Weird part. Do you still have it or is it in the box here with me? No, no, I My wife had it and it died. Um The It won't pair with the controller anymore. It's just okay But the bluetooth works fine. So the mouse is fine. It just doesn't work with the the dongle anymore Yeah, I have your old 602 and another one That you guys just wore the left click out on I ordered the switches to Fix it. I just haven't gotten to it Yeah, um, you can't get support from hp and can't get a quote from a renewal. So churnass over msa um Yeah, it's we have someone I'm working with tomorrow. Um that's having all kinds of problems with I think it's One of the other hp product storage products they bought like they bought support and they're still not very helpful Like they're paying for support contracts on expensive equipment and still not getting good help Which is fine because they hired us for consulting on it. So Do yourself a favor and don't get a raise your mouse I have uh, maybe the question should be churnass scale based on bsd or a linux variant How long has scale not been scale From from day one scale has been based on linux from day one churnass core has been based on bsd There was never anything else um, so I don't know what line this video you're talking about but I also Um, I haven't I haven't done a video on it, but I have a forum post on it There's a encryption bug. I've run into Or decryption bug specifically to get to get to the details of it with scale that I don't think exists in core But I haven't had time to reload a core system to do the test again But my answer I in I'll admit are the apathetic sure Um, may find the post and you I'll I'll pull the reply up and we'll say is this an apathetic reply This this is them going we're not fixing it right now is basically what I got out of them Which is whatever It's just an accepted problem Where's my post? Your content Oh, I forgot I gotta share that tab present share screen but basically And I'll throw this link down there if anyone can just read the entirety of the post There we go um But there's still some issues when using intel adams c3 758 Now I bring this up because this is the one they're actually shipping and they're free nas mini and mini r So this is a processor by ix systems chose by x system not tom hodge podging things together many are What's that? What's the mini are? Oh, that's that rack mount mini that they sent me That's actually coming uh to my studio because i'm doing everything in 4k 30 with pro res now And my files are too big and i'm exceeding my nas, but that's got a bunch of storage in it anyways This is the response as you commanded our qa standard process test for functional operation Basically not speed We're we're built for reliability not speed folks And we've now started performance testing for distant use cases linux encryption is very different than previous d So there are several issues to be resolved more improvements are coming later this month But that's fine. Um, I I mean, it's not a bad answer but it is kind of a it ain't there and I had a client ask me about this because i've done the testing they said you Matter of fact, it's the person i'm consulting with tomorrow. They're thinking about buying one of those Hey, tom. Did you see there's a problem with it? Yes if you encrypt the drive. Do you need encrypted drives? He says nope not at all. I said perfect. You don't have the problem is not yours if you and my solution to the problem was All these are my videos or not anything else and by the way, I this problem Doesn't seem to happen on fast computers. It happens, but it's so fast. It doesn't matter Uh, but on an atom processor. It's so slow. It does matter So tom's solution. I unencrypted all my videos So just so anyone's wondering if you ever stole my nas You'd have all my videos you'd be able to extract them out of the hard drive Hey, guess what? I have an internet connection in youtube. I have all your videos. I know they all end up on youtube anyways I'm like, can you upload it for me? Do you want do you want all my pro res raw files? They're rather big You you'd have to take the nas to get them because um, they're a lot so anyways Yeah, it's but you know The little esoteric details like that matter because even if you do have a fast processor If you're using scale, there is an edge case of which you will run into some performance issues But it's an edge case. It's not it's not end of the world It's like, hey, do you have these scenarios where you're moving these singular large files? Well, this is a problem you may run into And they're supposed to fix it the next version. So So many details. Uh, someone just emailed another question in How cool pfsense dns configuration. Oh, okay. Go on take. Thank you for taking the time to adjust my horribly written email Upon further research. I found that snort was the problem. Uh, oh, okay. Let's We we car. I think I covered this last week, which was basically dns wasn't working What'd they say Dns is causing issue with gmail and mobile apps. Nope. It was snort So I I suggested in the video that you've turned something else on probably snort Or saracada. So yes, this has uh saracada ever angered steve At least once so once a week, I wouldn't call it angry. It just makes me give up yeah When i'm trying to you know Stop an attack and then I can't even get in because saracada thinks i'm the attack now I'm just like Guess i'm gonna go make food Yeah So that's Yes, it happens. Uh pfsense question. They have a small box for any pfsense that drops randomly every 24 hours only a restart fixes it Um, which nick are using a real tech or a broadcom? Both of those things will give you headaches real tech Oh, he said real tech. Yep Yeah, get rid of the oh, yeah, could it be the real tech nicks? Yes, probably the real tech nicks Yep, I seen at the bottom line there even not running pfsense the real tech nicks um Any suggestions synchronizing large files from home office limited upload You can use sync thing unless it's another zfs system then you'd use zfs end the most efficient way to do it is zfs send But that's it. Um next one. It might be something like sync thing is awesome If it's not a zfs system, but limited bandwidth at some point you're facing limited bandwidth there's You can only do as optimized as possible Go intel mix Learn that the hard way between between real tech and broadcom. You just hate yourself if you use those Get starlink It's not a bad service. I just hate giving Elon money I Hi guys, have you done uh, or have currently running xcp setups that host storage where you have a complete replica vm offsite kason You can only replicate off site as fast as your data connection is off site. So it's not It's not hard to do it just requires you to have enough bandwidth to do it So I don't really there's you can set for example like the replication um to disaster recovery backups Sure, I can set them to be replicated on another site at certain intervals But that interval is a measure of how much data do you create between those intervals is the bandwidth between the two sites bigger or smaller than that delta It's kind of it's sure we can do it at what cost If you have the if you have the money to do it awesome Uh, I think for initial sync. I'll bring an external hard drive then set up zfs end Yep, that's uh If you're using you know, two zfs systems you can do that, but it does require as well that you um It's best just to bring the two true nas systems together doing an intermediary sync is a much more complicated process It's not it's not a file sync cfs end is a block level sync It says this data set at the block level should match this data set or zvol That's it. There's not like you're copying files and synchronizing them Broadcom Yeah Uh, does intel stew produce nick chips? Yes, they do The a lot of a lot of the two and a half gig chips are those intel 225 and 226 ones. Those are really popular It's doing data sets. So it doesn't really matter about the pool Your zfs send sends from one zfs data set to another zfs data set It doesn't really matter about the pool. The pools don't have to be the same You just have to have enough space for it. So other other than I have to have enough room to land all the data Uh, it works How the hell do you remember all this information do it all day? You just do it all day that Steve's answers a 100 accurate when you do this every day. You're just like I have a lot of the same conversations just with different people Yeah, you gotta remember we're we're generally charging $300 an hour For doing this between two and three hundred dollars an hour depending on the complexity of the job This is what we do all day and then we come and do it on youtube for free. So When there's 169 people The zfs send is one of the seven wonders of the modern world. Yes Yeah, sync thing is pretty cool. Sync thing is definitely, um, they've done I need to do a new video on that too. Just because that product is really Uh, just added so many features that they have now that they didn't have before Do those x5 20s are cheap? um They saw the amazon pulled up prices really come down on those Is this one of them hold on Yeah, this is the intel 10 gig nicks. I mean, look at this. I mean, this is the um SFP models, but They're down like 64 dollars and they're not listed as used anymore. It's it's it's amazon seller, but um Yeah, network cards are getting a lot cheaper matter of fact, um What I was surprised is I bought some of the intel I have one at the shop. Whoops I hate this keyword The rg45 one's dropped in price too Like a hundred bucks for a pair of 10 gig What is this a Oh, that that one's still a little bit pricey, but not insane Is this the one I bought before? I don't think I had a fan Yeah, the ones I didn't I didn't buy I don't I was buying with bigger heat sinks than hot fans Either way the price has really come down on these 10 gig 10 gig has gotten extremely affordable How the hell do So group guests manage slow when they come out these singles. Okay. I'm gonna grab some water while you answer it I am really thirsty. Yeah, this is a constant battle I have with ISPs and clients love when I say this Comcast could literally put a modem in that's on fire and tell you it's fine The problem must be on your network um, I got to the point I don't have comcast I have wow, but they had some issue with a Like third hop on their data center. I had to run pings Like first hop second hop third hop and so forth to show them. This is exactly where the problem is you guys need to fix This piece I would do speed tests like periodically and just log the data do it from a wired computer plug directly into the comcast modem And then just keep showing them like here's the speed test at this time. Here's the speed test at this time figure it out guys Sometimes you just have to throw enough data at them that they can't deny it And then demand the level two people Yeah That's that's usually right where I start when I call my ISP. How can I help you? No, no give me the next guy up I don't want to talk to you ah Thank you for the donation. Um What it I see more people asking about Linus's hack. I knew that would be like the persistent question that keeps coming up It happened It happened moving on I know Like I don't know what to say about it If there's something to be known and there's something to be known We've played with fs switches a couple times. We use a lot of their fiber adapters and acts Yeah, the fs stuff's not bad Their switches aren't their switches kind of expensive Um, they're reasonable Who am I thinking of them? Here we'll we'll share this right here. So Linus is taking advantage of it Um He's Advertising clothing on the ltt store. No better time to remind you that our store is still up What really happened? Hey, did that runescape? Yeah Fun facts, uh steam chat actually does censor your password or at least it used to I don't know if it still does They're making the best out of it Hey, what are you gonna do? You know, they're fixing it I imagine but it's it's a project. So that project's underway Oh, that's right. They still have float plane. So If anyone has a float plane account, I guess maybe they have videos over there Maybe they uploaded a video to talk about it. I don't know Switch to catch for sonic walls switches 40 pewee is only 2000 seems too good to be true That seems expensive. That's what I was thinking too I'm pretty sure the unify equivalent is like 1200 dollars Yeah, and it doesn't see sonic wall on it. That's the most important thing That's uh Yeah, the 48 pro pewee like z-racer said is 1100 Yeah What's the catch sonic wall? Uh, what a mess I don't know. I'll I'll dig it wrong because I know people maybe it's worth doing a video because there's someone I know but That would have some information on it But I I the value would be in doing a video about hardening your youtube account So this doesn't happen But once again, who's that targeted at other creators? John Hammond did this video already talking about what other creators can do So I would you know, he's he talks about specifically the same scam that showed up on there watch John Hammond's video He talks about elan crypto scams So and how they get on youtube channels and what they're doing to do it John Hammond has helped other creators who've had their channels attacked. So it's an elan crypto scam. Of course it is Didn't know that not surprised but didn't know that Yeah Of course it is if it's it's like I don't know. Let's just do you make your own coin or is he tweeting about one or Um Well, that's what I think the video implies click this link click this offer So you can get on early with whatever new Elan scam is out there I was just uh watching that thing about where they were uh There was an article about that like the that a bunch of It they were basically pointing out like he complained about bots on twitter And then just gave the bots a way to get verified when he released twitter blue yeah Yeah, it was the disaster that is that yeah Some android emulators can't run xmd because the exact same vm works on a local vm. How come it doesn't show up? I don't know. I've never tried to run an amelie emulator. So that's a forum post and not a tom question because I've never tried to run one They all seem so Shady like every one of them the a lot of the android vm emulators Yeah, I don't know if there's an official sdk or not for that runs in a vm. I don't know I don't do android development. So i'm not sure. I think they were working on um I think they were working on making it available because they bought cloud ready And I think they were working on putting it in that so that way you could install like their older version of chrome os And it would be included. That's what I don't remember Yeah, I I never used it blue stacks used to be out there, but I never used that either. I don't do android development I never had an interest in um Doing android emulation so oh this is a good question. Um Someone just emailed in Okay, so does zfs cache and dedupe work at the block or file level a block level for both When you're using dedupe, it doesn't figure out that the files are the same It looks at what blocks are the same and that's where you gain the efficiency in the deduplication of it And the same thing with the caching. It's just caching The blocks that are asked for this is one of the advantages zfs has of everything being at the block level as far as like the Enhancements so they don't even care where it's at. It's just doing it at the block level It doesn't even care where it doesn't care what data set it's doing it Well, the dedupe does care what data set but the caching does not so Uh goes zfs. It's as was said earlier one of the wonders of the world Thank you for the videos and xcpg and xcp backups. Yes Everyone should be backing up Had a disc failure today Oh, I'm not even going to this. This is just a dumb Circulation the email crypto scan the videos are crypto scammers claiming to be elan not elan scamming Oh, yeah, I don't know what it is I it's john hamans videos is more in depth than mine will be on it from a topic standpoint We we already know it's just a bunch of stuff on there. So Is there a need for zfs cash with large amounts of ramp? I feel as though I have the need for it. Um It's not a gotta go fast. Yeah, how fast do you want it to go? Like is there a need for it to go fast? I feel the answer to that is yes so for me Throw mine in here real quick I am using 50 gigs of cash out of my 64 gigs of ramp and for some people they're going But I wouldn't need to cash this. Well, then you probably don't need that matter of fact We have um that other system. Where's it at? Eight happily named other system. Uh, I think we call it apog You should make one called other system. I should it's the other system. What other system the other system This one has 12 gigs and free nine And the reason why the only thing this is doing is landing backups. No one's pulling any data from it Therefore the cash isn't even used. So it comes down to what's your use case? It's a backup system that doesn't need any fast reads then Why put a bunch of ram in it? So it's you know 32 gigs of ram because that's what we had laying around Well 29 because this is that one the board with the shared um video Is the rise in three with the Vega graphics? Yeah, the 2200 g the old um nvr. Yep But I built that. Yeah It's it's four cores are rocking here um It works fine But it there's no need to put more ram in it because we're not even using the ram it has it still has nine gigs free We're not using right now We could drop it down because the only thing being cashed in is 12 gigs is it runs? Sync thing matter of fact. Hey while i'm here. Okay, it is up to date I don't know if I had syncing up to date it runs syncing and synchronizes a handful of things But there's not much else on it does have um 23 terabytes of used in it But it's a backup system. It just duplicates stuff that we have What is your naming logic? We don't have naming logic We just kind of call things whenever we want to call them there's it's whatever the naming of the day was Uh, how you time them could use camera if my private provider is uh already answered that Synology with quick connector unify with protect. Yep, both of them offer it And if you're looking for more in-depth cloud flare tunnels, we'll get you around it so Is there any reason not to de-dupe backup datasets You don't if the data doesn't benefit from de-duping you don't de-dupe it so De-duping has a expensive cost Calculating the data landing on the system. So de-duplicating all the data It can be processor intensive reading de-duplicated data is actually easy It's just the writing of it's hard because it's got to do all these comparisons to see if it's there. So the um Reason you may not want to do it is the right speed will be limited by the processor That scales up as there's more data to compare it against to see what can be de-duplicated Uh, purchase no monthly is usually how we do camera systems It costs this much to get these cameras done and set up. You know, this is cool. I just realized we can change this Change what? We can move They just added that button today move what? Oh I see I'm not signed in. I don't oh Oh Put it back. I don't like it. I don't like We're somewhere else now I don't have those buttons because i'm not signed into yeah, uh-huh Well, we can do side by sides We can be low Great, where's the normal button now? Yeah, but now you're covering part of the screen you're sharing. I know This is not ideal Later is that that's the one I was looking for I've now clicked too many things. All right Um, I don't use unraid everyone who uses it seems to like it Until they outgrow it and then they don't like it anymore. So that's all I know I don't plan on doing videos on it. It's it's a novel system, but it doesn't use zfs. So That's how I feel like unraids. It's it's a good consumer product if it fits your needs and rock with it But it doesn't fit my needs. It's not performance oriented. So All right, I'm gonna wind you down here. Okay. I gotta go feed marcus I kind of want to play act razor anyway Yeah, um, I don't know. We'll see if there's anything more to do on the Linus stuff I know people are gonna be Like I said the best I could come up with from the few minutes we spent on it before the video If you had the session token you could bypass the original two factor Hold on. I gotta go make a friend Oh um And then that would let you change it but Yeah, I think this is a password Right, and I think that's where the challenge where the hack really happens is they get their password so That's where it sucks All right. Well Thank you everyone for joining us hitting that like button everything else. We would quite a while hour 36 minutes. So Hopefully everyone's using our ube keys or some type of hardware authentication I do recommend ease. I'm actually I have both. I have a ube key and I have you have your ube key still esteem, right? No, I gave mine to travis. I was supposed to Some of them were supposed to order me a new one because there was everybody talking about let's get some more And I said, yeah, I need a new one travis took mine and order it during never happened Oh Order one or you can order. Uh, you can do ube key because they do fido You can also do the trust keys. Uh, they if you look I bought those on amazon the trust ones are pretty Trust key is another company that's like a competitor of ube key The only thing I want to do and I know the ube key does it I just want it to tie to the two factor portion Yeah, that way if I ever lose it. I'm not locked out because I still have my phone It just saves me picking up my phone for the two factor. Yes That's that's where I use it is for um There's a few things that let me use it for that I just don't like things that don't have dual slots like screen connect doesn't have two slots You can't do either or Like you can use it in screen connect But you can't you if you do you can't have a backup being your phone You have to use the ube key all the time Just to fill in the The past the two factor. No, I mean like just to have it all I thought there was a way to have it Just do the totp You can do that too. That's what I want. Oh, okay I just wanted to do the totp because I do not want to have to bring it with me. It is to stay here Ah, and then if I have to go to a client's and I take my laptop I will use my phone that way. I don't risk dropping it losing it or something stupid because I can't Keep a thing in a hand while also working at a client without losing said thing Yeah, oh, we'll talk about it offline, but yeah Yeah Um Oh one more question How can I fix syncing doesn't have permission for certain folders when ch own change but after syncing saves folder again change that permission You have to set syncing up as the group and the user it's running as and That's the solution for that. I generally never run into this problem because syncing runs as tom on my system and syncs with other systems so um Not a problem I usually run into but the way you do it is you just build groups and put syncing in the same group as the Users that you want the permission for yeah, I don't want my keys hanging from a usb port As I walk around with my laptop in my hands like I am notorious one of the Our wiring guy got so mad because I was literally Walking around a clients when we're doing wi-fi and I will walk around with my laptop like this. Yeah It's a Lenovo think pad. It is durable and I will just buy another one if I break it. I don't care But I mean it's held up pretty well And it's got my monster hunter sticker on it All right, well, thanks everyone for joining us this was fun and we'll see you next week or sooner I don't think I'm doing this. I haven't done any on the weekend I gotta do another weekend one soon Yeah, so I'll be here next Well, then you become Florida, man Yeah, I guess how are you gonna do next week? Are you going down to I'm gonna probably do it in the morning next week. Okay Are you going down there too? Yes But uh, Eric and I if you do it in the morning Eric and I are working on some stuff before that possibly Okay, so but then the week after that I could Maybe I don't know if I'd be even available the week after that the one after that though Because I'll be in Florida for two weeks definitely available on that one Yeah, I have to help my uh, I might be like I told you I might be leading early because my uncle's having some health issues Yeah, so um windows or linux on the think bed steve windows. Yep Steve's not as big of a linux fan. So he's got an opposing view here. It's not that I Linux is great. It's not that I hate it What I need to be able to um There's a lot of one-off applications that when I'm in the field and want to just do some off the wall testing I need to be able to run Like hold on you have you know an old um What would they call a bnc camera system that only works in ie Yeah I I sometimes have to do that Yep For application things is definitely yeah, and I know Bad, I just don't feel like a spinning it up every time I want to do that cumbersome and b The this is only I think it's a rise in processor, but it's only like a rise in three. It's not like crazy fast that I want to throw resources at it Yeah We're in the eastern time zone even when cb comes florida man. He stays in you're still in eastern time zone down there, right? Yeah, yeah, the only time I'm the move is when I go see my friends in illinois and stay out there for a few days Which I'm going to do this summer. Um, and then I'm central Yeah, I'm in the cornfields cornfields. That's why I'll try out maybe if uh, if I'm out there on a thursday I'll try to do a stream from there. That'll be interesting Do you have internet in them cornfields? Yeah Uh, well once again, we'll save for the last time. Thanks for joining us. I'm gonna go feed my son and see who's gonna play some game Yep, I might do that later I've been on destiny in case anyone if by the way if anyone plays destiny I play destiny sometimes. I'm a casual gamer But I don't know reach out to me with a vlog. There's to hit larsystems.com later Yeah, I just got back in the runescape and playing uh, diablo three again because Marcus was playing it and I'm like, okay Yeah, oh and I got a call. So perfect timing later. Yeah