 What if I'm gonna make people a little surprised because usually I start late. I'm gonna start early and First need an audio check For those of you that don't notice or are new to the stream. I'm usually down in my studio and today I'm not in my studio. This is actually my kitchen Hmm Well, I say kitchen. I'm sitting at like a kitchen counter, but you're looking at my living room behind me But let me know if the audio is working so if we can get a sound check on that or maybe I got to check it myself Let's see If I hit the volume does it make noise I got audio so awesome All right, I Started early. So look at how the people are coming in. I see some thumbs up. I Thought I set this for seven not seven thirty, but I did it the other day. I've been busy in training all day I've been sitting in my studio the whole time and I said, you know After two continuous days of really focused training on Seth one of my friends over at 45 drives I Decided I probably need to sit somewhere else for a minute and I was in the studio the day before Finishing up that video for snort which took longer than expected that video took It's all the setup that goes into these videos. It's not just the recording the editing But it's the setup before you even hit record to make sure all of your scenarios work And then when they don't work and then when you have some weird issue with your recording rig decides to Blank out a couple times and you have to re-record a section which rarely happens I don't really understand why I did that but you know, it was just like for some reason that video Was a little harder than it needed to be we'll just say that it was it took me a little bit more time But I have a couple things I wanted to address one I threw the vlog Thursday at loresystems.com up again. I Am still surprised more people don't email me, but nonetheless, I did not get a chance to get to some of the ones from last week I think it's just the timing I did the blog and Didn't get around to this part, but someone had a question about past keys I did see that Google is enabling past keys on all accounts as standard They do say that as a safer way instead of regular passwords love to hear your opinion on this Also, one of the devices I have as a past key isn't that account more insecure if it does less control or if you have less if you lose control over the device and This is kind of the question it I think the angle of attack may change so past keys is really a Extension on those little ube keys. It's really the same But slightly more because you can do it on a phone for example instead of having a ube key And I think with a lot of people having phones. I think it's gonna be great for consumers I don't know how this is really gonna shake out as much in the business world That's kind of a wait-and-see, but the past key system is definitely becoming a lot more popular and I'm still Cautiously optimistic It comes down to how those keys get controlled and that's gonna be the real kicker is how much control will you have over your keys? And what are the attack vectors to extract those keys that are all on that device the convenience factors nice in it You could stay the same thing and say what about the attack vector poor people extracting things out of your password manager Yeah, that's the same similar attack vector. So I'm kind of on the fence to see if it really solves the problem differently But for the end users, it seems to be pretty cool and it has enough big names behind it that it may work But it adoption still isn't is universal and that's going to be the big challenge I don't think there's anything from a massively Like the way it was built problem It just comes down to the way it's gonna be managed problem and of course what a new attack of vectors on there And hey good to see people and good to see bearded IT dad in here Oh, I got to I've been on this channel before he's got an interview with me He's got some good content if you haven't checked out his channel, but I also had the chance when I was at bid Summit, okay, I almost said big con I had a pause there for that when I was at bid summit Which is a creator meetup. I got to spend some time with him over in Dallas We talked to tech and ate barbecue and it was amazing. So he's he's among the I Will don't really know to call ourselves externally but like the friends of the channel if you will So definitely go check out the bearded IT dad. So good to see that. He's on here The next question after the past keys ones that was sent into vlog Thursday at Lawrence systems calm was a Zero-tier question that I can't say that I've ever run into they're using zero-tier and They were asking if I've had any problems with it Losing connectivity after Windows update breaking it and no, but I don't have enough systems deployed with zero-tier anymore to know I help some people from a consulting standpoint solve it But it's nothing we're actively using with our customers right now It's one of those things that we've consulted and because they are not reaching back out to us for problems We don't know of any problems. It's not something that we're actively using So the Windows update breaking zero-tier and you have to restart it. So I More specifically what they said here was I have a client who uses it and we need to wait from a shop But sometimes a Windows update like the overnight one it just happens besides remove the username from the PC and You have to put the username back and click save connection settings again Yeah, that's that's definitely an odd problem and Windows update is the nightmare for all people in that work in tech So we'll just chalk it up to one more Windows update issue But I don't have enough zero-tier deployed to give you any accurate answer in that They do have forums and support so that's probably the better place to reach out for that now There's actually a few other things That are in my email that I want to talk about and one of them is The fact that I'm going to be at a data center pretty soon to do some filming and a real big data center a Active one the abandoned data center video I did turn out to be quite popular and that had someone reach out to me So I'm excited that within the next week or so I should have some content that I film and they're getting me access To lots of the areas normally that you can't film or they want to give you details about such as a modern Potter power delivery system how the battery systems work So we're gonna talk some of the fun tech that goes into a data center and be able to not just talk about it But show you behind the scenes of how it works now I got to make sure I've learned out any customer-facing things But it's gonna be just a cool thing because it's actually funny how the data center people like what's the angle that you want to film here Tom and I'm like the angle is what is boring for you people who work there Turns out to be exciting for the few that get to go in it You know, it's a big mysterious building, but if you're someone who goes there every day It's not a mysterious building at all. It's just a big building that you work at every day It's like, yeah, there's a bunch of computers in here in a lot of noise Why is this interesting? You know what I mean? Even though you may enjoy your job at the data center Once you do something all the time it kind of becomes the mundane But the mundane for one person may be fascinating, you know, I actually was thinking about this just yesterday I ended up I couldn't sleep the other day and I didn't want to watch any more tech videos And there's some really good train videos yesterday watching explaining the details of train engines Now if you're a conductor and working on a modern train, you're like, yep That's how those giant diesel electric systems work But to me I was like there's a lot of neat technology in there and that was cool to talk about so The um Yeah, it's always interesting seeing the things, you know, that you don't see every day and Tom Scott I've always liked his channel because he does such a good job presenting the things you don't see every day and discussing it So, uh, let's see we have TailsGal doesn't have this issue because upon each connection a new interface is created and destroyed and it When it's down or signed out zero toes created when you join a network prone to issues. Yeah, there's definitely a big Difference in the way they operate and honestly because TailsGal, maybe it's marketing Maybe it's just a way it works TailsGal along with if those of you that want to self host it TailsGal having a really solid open source platform in terms of their client being open source and then having head scale As an option for those that want to self host But for just a lot of people and we have done more consulting with TailsGal and TailsGal did make it all the way into PF sense along with other firewalls and Yeah, I really like TailsGal. I'm not gonna lie. It just works. It works really well So I'm gonna give a big thumbs up and I definitely even myself I'm working on my long-term review of TailsGal because I've been using it for the last Several months because it just works so well and once something works really well You just kind of keep running with it going man. This just doesn't break Yeah, so I see your point where Windows updates can break it break it and zero chair wouldn't ever know about it Yeah, the nice thing With the way TailsGal works the just the client app seems very polished Granted compared to zero chairs zero chairs are very small company And so is TailsGal, but TailsGal is a bigger company from where they came from because their staff was some pretty Advanced engineers that came from I believe Google and a few other places. So if you dig into it They're I think that's what gave them a head But their documentation is solid and like I said, I just like TailsGal quite a bit. Oh Awesome, they time is also spending the last couple days working with you through our stuff training course Hope you enjoyed it. I can't wait to see some of your content around stuff in the future, you know two things Well three things about stuff, maybe one stuff was harder to set up than I expected It's more complicated The second part of the stuff is more resilient than I expected So all that pre-planning because it's not just setting up stuff. It's the planning that goes into how you want to deploy There's a lot to think about but it's one of those really sit down design it and design it well And you have a great future for your storage and you have a very Expandable path with it. So the resiliency of it is also directly related to all the planning that is not kind of Required but absolutely required I would say to do a good step now I'm fascinated with a lot of the underlying architecture or stuff So I'm going to work on some videos and I went I knew I want to make some visuals because this helps both me and my audience Understand things so I've actually got these visuals for ZFS and how different ZFS layouts work. It's actually not hard to swap all the ZFS vdev and drives to Be like an OSD and reset up the layout I'm going to see what exists because I believe I'm not the first person to do this I want to kind of go over some graphics and go over Seth and I'll probably run it by the 45 guys team before I publish it or maybe publish it with them because it's kind of a I want to make sure it's all very accurate but I want to talk about stuff because it's certainly a way to solve Storage at scale when you want a single namespace like a single share per se and a large large Ever-expanding volume of storage to grow for the very enterprise companies But it also gave me a good understanding of where the fit is for it at a much deeper level because it's not the solution for everything It's definitely a excellent solution but there's not much point in setting up a One or two node outside of home lab just playing with it stuff cluster I think it's cool, but it does to get the advantages of stuff You do need a couple hosts so it's not going to on the current way It's done and way it set up replace something like a NAS with ZFS, but boy is it a good solution So it's not you know, it's It's definitely really cool. There's a lot of thought I had about it So it's like it's knowing where it fits in the market is a huge piece This is definitely the internal messages that went on at my office after I was finished with the training was the discussion I'm going to have a storage discussion because I we have a whole sheet now. I'm going to do this on my business channel I'm going to make a video called selling storage and it's kind of the process you walk people through But I mean it made it's hard to say if it's a good technical video It's more about all the concepts and storage and how they fit into different business use cases That's why I think it probably goes on the business channel I'm going to be doing a technical one as well because which storage is for you is one and high availability Storage is something I've been working on and I realized for high availability storage stuff needs its own video I'm going to do high availability storage for things that aren't stuff And but mention that I'll make a stuff video as well because that's a different topic But don't worry if you just want to know about high availability stuff storage check out the 45 drives playlist like I'm probably four or five. No, I'd have to add it up I have a lot of hours watching all of the 45 drives people. I feel like I know all of you I watch so much of your videos there 45 drives. So definitely Easy they're on YouTube. So you don't have to really go far to find all this you can dig you can dive deep into it Do your security basics break new clients budgets? That's a real loaded question generally. No, but sometimes There are people who certainly aren't a fit they they have a budget in mind that is Unrealistic to get things done properly securely and in compliance with their insurance. So Fuzzy in terms of the actual answer But we've had people who say no way and I'm like, look, that's just what this is the minimum cost It's going to be to get you at this compliance For your insurance if you are doing anything less than the things we mentioned, you're not going to be in compliance there's people who think Even spending a small amount per endpoint for basic protection is beyond what they want to spend and I'm like, well I it there it's not usually a budget breakers much It's just some people are out of alignment and hey, you can roll the dice It may or may not happen to you with some of the security stuff, but you got to remember, you know, you are Not wearing safety glasses. You are not seat belted in you are running around and driving partially blind If you don't have good endpoint production and a good update process for all of your things today It's not me trying to sell you on the product or trying to scare anyone You can go to the news for that you can look up all the businesses that are hit daily because cyber crime is on the rise We've seen more of it here in 2023 than 2022 and more of it again, you know as you go backwards It's like wait, it's ramping up. It's not even though all the tools everything a better and yes It's one of those things there's money in cyber crime. Therefore, there's more attacks. There's really not it's not a scare-tech That I really don't like a scare-sailing. I think it puts you off on the wrong foot on your client relationships It's not how we do things. We don't try to put fear into you to get you to buy We just try to be as realistic as possible that these are the threats and you know, sometimes the budgets don't always line up Hey, mech tellcom networks. Good to see you on here Tails go has amazing employees. It really did stand shifts and good talent. Yeah, they do I Love it have some of those the ideas in my head. I would love to get down on paper as well Yeah, I'm gonna I'm definitely want to dive into this a lot as a topic. There's not enough stuff content out there The best stuff content right now is from 45 drives. They have the most of it So I definitely want to get more out there. That's how documentation gets better That's how automations get better and it's pretty amazing. How well automated the entire self-system is with what 45 drives has done already Even well the developers themselves is with air. You know what I thought was cool What set tail scale apart for me was when I learned that they had done a Few requests like some changes and updates to the headscale to a competing front-end if you will like that kind of Shows a community commitment that I thought was really good out of them. So that definitely I'm sold on that What are your thoughts on cloudflare radar? Well, I've never used cloudflare radar. What is it cloudflare radar? Internet traffic trends traffic over the selected period Hmm, I don't know. I never used it. I'm not gonna start using it now. So no opinion. I haven't used it It's not about being scared. It's about being prepared here's a line you can use though because What if you look at what's in the news for security? It's always going to be the big You know this huge company Sony or whoever it was because they were in the news recently over this Your I tell people this frequently and I've said this before in a couple of my security videos You're not too small to get hacked, but you're probably too small to make the news Just throwing it out there People who tell me that they're too small and no one cares. I'm like, no, you're just too small to make the news sorry, that's a That is the Unfortunate truth. I'm going to update Zen server while we're here because I like doing things live and showing people what's going on But I also want to do this was a good point I just kind of got brought up a little bit at 45 drives during the training was You know they and don't get me wrong. There's nothing wrong with Proxmox But Zen server is greatly popular in the enterprise market That's a lot of times we're 45 drives and myself are going to be selling and operating So I wanted to talk about Zen server more in the future I'm going to do some new 8.3 is just about I would say pretty much finished So I'm going to do my last videos were in the 7 series 8.3 is close enough to being released I'm going to go do a video on the whole Zen 8 point series now I'm hoping and I'm going to reach out though to them because they're also working on the new interface if the new Interface finishes first. That's what I'll start doing my video, but even with the old interface here This was kind of a discussion that we had had a little bit with the 45 drives team It's just how well this works in terms of being able to move all your VMs around at scale Have tons of VMs and migrate them around to lots of different hosts including hosts that are even the same resource pool So you can have Systems and we're going to stop these three VMs That aren't in the same resource pool, but you can still move them around So as you join more hosts, there's a lot of the way you can dynamically move things in here that makes it really good for Large-scale operation. So I think that's probably a point I'll make in a video soon is moving things at scale on Zen Orchestra and with XC PNG. I think that's going to be a fun part of it but what I'm going to show you here because this particular system needs an update it needs some patches and You know, if you've ever done VMWare updates The VMWare updates can be a little bit tricky They actually don't have such problems because they can do entire rolling pool updates or just an individual pool patches They can roll and automatically scale up and down all your VMs to create a Scenario so you don't have things on the server that has to be patched and roll through all of your pool updates Now a pool updates kind of pointless with this because it's only a single host in the pool So we're just going to click install update and let it do its thing But it's it's really slick how well you can manage things at scale And also I want to point out and I've talked about this a little bit so me before But one of the concepts I guess I wasn't as clear on Before is the fact that you don't need to run the Zen orchestration tool inside of Zen itself that's where I've always shown you running it. It doesn't have to though. That's the that's the bigger point Is that it actually doesn't have to do that it's just where it does do it and You can run it for example in a docker container, which is what i'm doing right here I have a Zen orchestration just running in a docker container It's actually be a true chart So it's actually a little bit different but you can run it in docker You can run it as a standalone VM on a separate machine And because of the one-to-many nature that Zen orchestra So one orchestra instance can manage many many many hosts And one host can have more than one Zen orchestra attached to it So you can actually do this in a in a fun way where I can just use this one and add remove all my hosts and Drop them and bring them back up in a very dynamic way. It's really cool You started earlier. It was killing time waiting for the stream at 16 30 Yeah, a little Little early Have you considered have you considered revisiting or doing a refresh in a pf sense versus open sense? Have your thoughts are pinging change at all? They haven't changed. So I don't know what I would talk about That's the big thing there is my thoughts really Are the same on that? So that's um Yeah, with my thoughts not being much different Oh, cool. All right. It's it patched. I was just seeing if it patched. Are you guys distracted? There's not anything new that makes me go. I would switch to yeah, I'm still using pf sense I'll continue to use it There's nothing that's happened in the open sense world that would make me go over to open sense So my opinion really hasn't changed It's true charts fixed yet. No two churches buggy So what keeps that one orchestra from assuring another orchestra? Vm if one is managed by two different orchestras, that's a great question and it's called a restful api That's the answer. Uh, you can actually have these dynamically connected because Uh zen orchestra reads it does not have to do anything. Matter of fact, um, let me show you this So we go here and we're going to go look at the servers and we're going to Disable a couple of the servers. So when you disable the servers, there's nothing in zen orchestra It just tells you connect servers because there's none connected. So we go back over here to the servers when you actually connect them So we're going to go ahead and enable this it's going to Sink really quickly because it's a fast connection. This is all on 10 gigs that quickly It now has an understanding of what's on here So if I change this I can't really do this in a split screen to show you But if you were to look at two different zen orchestra instances and let's say I renamed this right here You know, I call it lab And I call it demo The moment I pressed enter the other zen orchestra instances looking at this all seen it at the same time It happens in real time through all instances because everything is Being done only on the host server and being read by zen orchestra until you send the command to it And then it updates it so the database doesn't live at all in zen orchestra. That's why it works so well What is a good consumer multi gig firewall ubiquity? uh The consumer grade As long as you don't have to deal with the firewall rules, I'll say the unified dream machine is a good consumer one Uh, it gets the job done for most people the firewall rules are ugly and and painful and not well laid out, but it works and If your goal wasn't anything my daughter has a dream machine because it works. There's nothing wrong with it It's it runs perfectly fine Your videos made me, um, not changing firewall software made us love pf sense. Awesome least buggy software Uh, I don't know nothing neck eight So multiple is an orchestra solution for letting multiple users manager on resources on a shared pool Then oh, yeah, it actually has acl's and user permissions so you can create all your users and then delegate the Permissions of what they do or do not have access to so you can yeah, you can build that and set The resources so your users have control over only what do you want them to control over? Uh, yeah, I don't know a good. I I don't know any particular great, uh Open project software. I don't have a good answer for that one Let me reboot the server while i'm here because that's the last piece to do we go to the hosts And it says reboot to apply updates. So we'll just go ahead and Reboot And it'll actually Bring those vms back up automatically that I had stopped the reason it's going to bring them up automatically As I told them ought to auto start I I don't really know why people had problems with that seems to be a common thing where people Ask about auto start, but it's pretty simple to have the auto start it works quite well Right, so that'll automatically connect after it restarts I can switch to my other one I can This is one of the other zen orchestras I have I got to update these ones too. It's just a series of patches that came out This actually has both servers in there stuff. I go to servers here This has the Rise and lab and the pool of zen and this has more hosts on it. So if you look at the hosters Well, it's only showing two because the other one is rebooting right now when it once it's done rebooting It will just show back up. That's one nice thing about zen. It just works really well and then over here and Should be this one Yeah, I have this one set up And this is actually running on that little ace magic box But I also want to point out It doesn't care what version so these are running 8.3 and you can also mix and match So these are I mean you can't mix and match pools. So the pools have to have a Master unit in the pool that's at the higher version But zen orchestra can connect to all the versions. It'll go back to version six ones It'll have version seven and version eight and eight point one point two point three Which is the current beta one out there. That's actually another cool feature of it is just how It's very dynamic if you have a mixed environment because you haven't gotten around to it Your zen orchestra will orchestrate all the varied versions that you need to bring up. So that's definitely Yeah The answer to this is yes Going to mi sec conference next month. Yeah, I plan to attend now I gotta I gotta look up the date but that is on my plan to attend What's a good alternative cisco vpn to allow ad auth control policies based on user group they can access Uh, I haven't used net maker, but open vpn usually is good enough open vpn. You can tie to Authentication in a windows environment Oh, you know i'm in my kitchen. So I really I could show hot sauces as well I don't really want to eat hot sauces right now I also I know myself Never like to hear people eating chips and crunchy things on a microphone So I will spare those of you that are like me and do not want to hear that But very much appreciated sans. So thank you for the donation When building on a file share network in a home lab Is a vlan on 10 gig network Okay, or is it best to have a dedicated physical a vlan on tens fine. I have vlands on my 10 gig network It's it doesn't it doesn't hurt anything Recent trip to iceland if we're using ubiquity awesome mi sec con is 11 17 Yeah, to my knowledge, there's nothing in my calendar for that. So yeah, I I actually um I want to get a few people from the office to go as well. So that's going to be Yep, november 17th Nothing in my schedule for that. You know what? I'm just blocking it off now There So mi sec uh conference Sweet all right. My day is blocked off. No one can book me on november 17th, so we're done on that Any comment regarding sysco cv 10 out of 10 patch your syscos folks. That's really um Yeah, I don't got nothing else besides patch your syscos Oops, uh, let's see if you want to switch to one second This one I have a lot of zenercus. She's running. Oh, look at this View this tab on stream yard drop it back in here It's rebooted the vms that we're running before are running again So it's back up and running ASMR eating chips definitely not And let me pull this up. Now. I thought I would get a chance today, but I got sidetracked with life Um and showing people what this is but let's show what's in the thumbnail This is that bligh bligh cube kvm I'm gonna maybe tomorrow I'll get the review done because I don't want to spend too much time on it It's not a device that I think everyone's gonna love. There's definitely gonna be some hate I really like the novelty of the vice and I wish there were more devices like it But I also see why there's not a lot of devices like it. Essentially. It's an ip controlled kvm But it actually runs linux So it's a it's a kvm that runs linux and has ventoy on it. So you can upload why am I talking? Why don't we show you? Is it I got to find the ip address that's not it I'm gonna have to look this up So I forgot what I what ip address I said it to Hold on. I'm not the login my pf sense. I because I just forgot the ip we're gonna log into it I don't know why it's not usually I start typing and it just says yeah This is the thing you're logging into it if auto completes for me, but not today tom Today we're doing something different. I guess Let me log into my pf sense get the ip address to the black kvm I let everything go to dhcp and then I go and make reservations for everything So that's why I can always go look at my pf sense to figure out where it is This is a neat little box for sure ds server lab 13 It's a kvm. Let's see No, it is not the kv one from uh level one. Yeah It's a weird little device, but it's got a couple cool features first one bootable usb I can upload different isos right from here I grab I download an iso I upload an iso and it's essentially ventoi and that will allow me to Get into the bios and you know go and change it to boot from usb And boot from usb on random devices and someone's going to go. What about ipmi? Well, not everything has ipmi. That's why this is not a device for everyone My answer is in the majority of stuff I'm going to try to purchase if it's a piece of server equipment is going to have ipmi But I've had all this random stuff that doesn't have ipmi So this is kind of a nice little box that will allow me to have access to remotely things that don't have ipmi That I want to set up. I just plug in the usb plug in the um hdmi And now I have access to that box It's really simple for setting things up I can not have to babysit it but have access to the screen and when I want to reload and redo something on bare metal hardware Having something that I can just have these usb bootables Go here watch will go bootable usb connect to host well Abort because we actually don't want that one It's a little quirky There we go I got proxmox xcp and g and just debian if I want to load debian in here It's kind of cool like you can use it to load and you only have one usb that you need to connect I think it's kind of a cool little device for that. It doesn't have a ton of other features So i'm not going to spend a ton of time reviewing it But I thought it was novel it's something people might want to play with it's not super cheap Either that's the downside it's like a hundred and fifty bucks. So it's not like this really cheap thing I Get that and if you're trying to buy a motherboard You'll find if you want to buy a motherboard with an ipmi on it You're going to spend about a hundred more and it's a better experience to do things over ipmi So I get all those arguments and it's very similar to those you're going isn't that just the pie kvm And yes, it's similar to that as well the challenge with the pie kvm was priced the challenge with this is price and but you know The Let me find it real quick Oh, I didn't even realize that uh served the home. Oh serve the home. Did they do a video on it? No It's just in their forums. I'm trying to find the alibaba link for it. There we go It's not available on amazon It's the only place you can get it as alibaba. So take that for what it's worth But it runs linux you can ssh into it and do fun things with it. It's more than just A kvm by the way, it actually will do power on and off of a motherboard. I think it's kind of one of those It's very much like the tiny pilot That's another it's like the tiny pilot. It's like the pie kvm it borrows from those projects So I think tiny pilot I think borrows from pie kvm. So they're extremely similar and I've reviewed the tiny pilot Is a tiny pilot still a thing? tiny Pilot kvm It's been a long time since I Looked at the tiny pilot pure 1920 blah blah blah compare choose power source bga to atmi Yeah, it's 400 dollars. So that's also A big price difference and this one and it just comes down to what they're doing This is not running a raspberry pi the black kvm And I'll share their site I can drop it in here for people wanting to take a closer look at it What they're doing with theirs Is they built a custom board? It's you know a system on a chip So that's how they're able to get the price lower. They're not hobbling together like hey, we're going to buy a raspberry pi and start adapting things to it This is purpose built but it's running linux. So it's still an open source Base of software on there tied together with some software. So it's novel I don't think it's going to be for everybody, but I think it's a novel device And there's going to be people which kind of includes me here that go I'd buy that because I have stuff that doesn't have You know, I just don't have ipmi on a handful of things that I want to especially all these little weird System boards we've been getting serve the home has been doing a good job on them the same company That always been working with serve the home recently reached out to me And they're going to send me some of their new stuff that they have coming out and and serve the home By the way did a great job on their last one. It's the It's that weird that weird one has got the two sfp ports on the bottom on those little I don't want to call these you're like little tiny computers essentially Those are neat. They have a really cool purpose in the home lab or people trying to build small You know, but powerful nice little systems and this is like the ideal thing Like they don't have any ipmi that have a way to connect to them But you want to set them all up now once you're set up you don't really need these connected But it's kind of cool for setting them up because instead of having a monitor and having to do a bunch of Things at the council being able to plug these in real quick for setup makes it kind of easy And having the usb built into the kvm means I can swap different operating systems and try different things without having to Go and plug it back in each time. I know someone's like, oh, I'm feeling free of time You you didn't have to go sit down at a tech page. You got to sit at your desk and do it Granted I'll give you that I'm being lazy But that's life sometimes so It it happens I get to be lazy sometimes and just kind of sit and do that and be like, you know We're just gonna we're just gonna do that. Um, well we're at it something else. I can show people What else is in here? Someone will be happy about this. I don't know that I'm doing a whole video about it I'm not even the one setting it up. My staff is we have someone that wants a whole lot of door systems. So There's that going on So that's a thing Like yay door access systems I'm not the biggest fan of ubiquity door access, but there's enough people that like it. So You know, we're building more of them out for them. Uh, I we we have a few ubiquity systems that are being sold and uh I'm gonna be doing yeah, hey good Brett knows what that is and so it's oh, and so I thought it was Brett saying it it's like Yes Yeah, this is set up at our well, this is our lab at our office where we build things out I don't know if we call it lab. It's more like projects set up We have this at each office. We have this at the south gate office. We have a lab slash tech area where we build our projects and We have one set up at the Toledo location, which I got to get a video finished I shot most of it. I'm just thinking about reshooting it again to make it even better Our office tour at the Toledo office I'm not in the door access systems. I actually don't like any of them. There's none of them I've seen the commercial vendors. I've seen when it comes to door access I don't feel that they're doing a good job on security. I don't think they have a box That makes me feel confident that it's been tested so Yeah All they're finally getting an enterprise access hub. That's a that's a step in the right direction Is having a bunch of unique individual ones like this just seems like The worst way to do it. I mean, it's the only way they do it, but it doesn't mean it's good Yeah, that's one of about seven projects going at any time Is there software? Is there software on the box or the physical access to the box? So it's all controlled by the Unified controller software it's not like you're Managing it on these individual boxes these boxes essentially are the terminals that do the door control You know the wiring itself of the sensors and everything goes to them But all the software like ubiquities other things Is all controlled through the unified controller software now It's not the same controller software that controls their network devices, but it runs I think it runs on the nvr and the dream machine. This is where I'd have to Actually kodi can answer this better than me and because I'm I haven't used these enough But as far as you know, at least now are available to run on your Unify nvr's so You can run it on the unify recorder and it works pretty well I was asking what's your issue with the boxes that do the access If you're asking about like door access systems like I think honeywell makes one Like some of the ones I've seen at these commercial buildings the web interfaces on them are Archaic I've seen some that use weird java and like old old looking plugins or one of them I think had active x controls for the users I've not seen any of them that made me think that it felt like a modern piece of security And granted I've also Biased myself by watching different videos from def con about how bad these systems are in terms of security So I just don't know of any of them and I'm not saying that none exist. I'm not aware of any of them So I'm not that much of an expert on door access systems my interactions with much of it has been poor though We used open path in the last building my understanding the ceo's a former pen tester. That'd be interesting um So it's definitely room in that market for a better product. There is no doubt about that I'll look it up real quick here. So it's called open path door access system I like that when you bring it up a vigil on comes up Here's google's dumb So google actually okay There we go. I found the site It's really weird How did google get this so wrong Kind of funny how's wrong. They got it They gave me it's not they didn't give me a link to their website. They only link to a pdf about their documentation Their website was like way further down. I don't understand That's strange I mean there now all say Open path and open path get acquired by a vigil on because open path redirected me here Huh? So here's open path Which says it's a Motorola company. Maybe this person Has really bad ass. I don't they must have been acquired because if you go to now I see why google has a problem with where it goes if you go to the open path Dot com it starts at a pdf with the search, but if I go to open path that comment redirects me to The a vigil on Is that how I say that is it a vigil on? So, yeah, who's open path then? Yeah, they're all terrible ubiquitous interface is better than a lot, but they have And all I have physical physical security issues Ubiquity are some of the worst Unless installed in hard to get enclosures You know if you want to have some fun Diving into the topic of security with door systems deviant olam Or yeah deviant olam. Look him up. He's a wonderful wonderful speaker got to meet him At an event and uh, yeah the amazing talker on physical security and amazing Gitter around her if you will he's an excellent red teamer for physical security Definitely a lot of fun to watch I would not want an all cloud Uh data system like that. I just feel like it's going to be a problem. That's my opinion. Maybe I'm wrong, but yeah I feel like that could be an issue If everything was like an all cloud system like that Uh All right, I got too many windows open So let's see if we can break something else while we're here Because I've seen this has an update too So we'll share this and someone asked me If this is broken and the answer is going to be probably It may even break more. I don't care if things break. That's how I know how to fix things because I break a lot of things we're going to go ahead and upgrade One of my zen orchestra instances the one that's here in true charts I would I don't know that I would run the one in true charts in any type of production environment my goal is to be is to Just build a debbie in vm on my churnass and then from there. I'll set up the Docker that'll run. Well, I won't even run in docker at that point I'm just going to bare metal install it because it's not officially from them But the same person who wrote the zen orchestra update script also has a docker version that they do So I get it like it's not I wanted to try it because I knew enough people would ask about it It's not the way I would do any of this in production. I always I have my zen orchestra installer tool I have gone One or two videos on it about how to get started with zen orchestra and how to use that tool That video is still even though it's a couple years old. It's still relevant. It's the same tool It's just a new version of the tool the commands are the same Have any peanut butter whiskey left? Yes, I think I should check you know One cool thing is the microphone's on me so I can keep talking while that updates I could also do this I'm gonna see if I have any whiskey for bret so I do have No, well I don't know if this is one you like bret. Let me turn up. I gotta fix the camera So yes, I have whiskey bret. I don't know if this is the one you want I mean, if you wanted to come by I have whatever this is I don't know if you like this one or not So hopefully it answers your question, but I'm here if you want to come by There is a baseline of access that lives on the main controller if the internet goes down But the management is cloud-based. Yeah, I kind of what I figured they do Yeah, I don't know what that one is if that's one you like or not Hey, look, it's still deploying Because it's not fast Let's see if we switch screens if it just hasn't refreshed Okay, it updated. Oh net data's got an update. This always updates well, but this isn't a true charts one I love net data. I haven't logged in on here. So let me see Go here. Uh, share this tab. There we go Yeah, if you haven't played with net data, I've done a video on this. This is just such a Neat utility Really gives you a great management dashboard for all your linux instances Which someone will go, but what about my windows? Sorry windows people Sorry It's not for that but look at all the nodes they have Great law. That's always my favorite one to look at. I think this got an out of date version Probably I haven't updated it in a minute. Hmm. Does it have a message? Maybe I did update it But yeah, if you want really nice metrics for any of your linux stuff Load net data on there. It's open source. It's free. It's great to use Definitely an awesome tool for any of your metrics monitoring and troubleshooting It's also not something that's very heavy. So by setting it up, it doesn't have really anything to set up It's kind of just install it and get running Uh, you should do a video on what to do with your nas appliances isn't enough about building a dedicated hardware And it's only like smb for more control you know Not really there's not many times when you do that usually The nas is enough if the nas isn't enough because you have too many users You build a bigger nas and at some point when the nas isn't enough because You can't have it on one box because you need 30 petabytes of storage Well, then you are looking at something like seph So it's it's not really that the nas is never out enough. There's Very rarely and we're talking we even have clients all the way up in the petabyte scale now running zfs With a true nas box and it works fine. There's not anything wrong with it so there's Yeah, that's um, I don't know that I would make a video like that It's usually the only people who don't like appliance based is when they Decide oh, I want to tinker with everything. What's just fine It's usually not the enterprise use case or the business use case But it's absolutely and as it should be the home lab use case. I'm all for doing that Do you uh, oh Did you have a chance to play with chat gpd voice yet? What did you think I forgot about it after the last vlog? So I need to play with it again. So yeah, no opinion yet I've tight. I mean I'm still using chat gpd. I just like typing I talk a lot To do the camera and to devices. So sometimes I'm happy to type to devices as well Uh to have my cloud at home Do you know any open source sync app like next cloud that is simple but not bloated how next cloud is? I'm a massive fan of sync thing Sync thing is amazing. It's how I do all of the synchronization for just All the data that I need synchronized all the time Let me actually pull up my sync thing instance I might do a new video on it. My videos are older on this and it's got more features Than it has before I It's a neat product though It's open source and free. So just sync thing Absolutely the best way to sync it. So here's all the different config backups. It has business documents sequel backups unify backups My desktop is turned off. So it shows that one disconnected But yeah, this is just a Really great tool for setting things up. Matter of fact, um, it works on windows and mac So here's the Mac that it's on. Um, maybe if I didn't I could change some files and show you. Matter of fact, let's see here Yeah, this is versions Different files. I can even restore things to previous versions here create mass actions or stuff It's just really they've added so much This is not a feature that was in my video because this feature didn't exist back then But it's just really cool for being able to synchronize all of your Files So if you're looking for something lightweight that works sync thing is definitely it Yeah, there's a way to make it work that way Clean up your data if you're storing petabytes of data. You need to think about leaks not in this case That is the client using this they do not It's the opposite One it's air gapped so that leaks aren't really the issue to its data sciences data They're not collecting data on people. This is data science data They do analysis on engineering things And create these massive data sets that fill up these servers. So this is not a This is not like facebook collecting your data This is data science and then uh analytics on that data that also creates More data out of the data set. So cleaning it up. It's not an option Because the data sets are that big I've not used glances Bly KVM welcome to del iDRAC. Yeah, I mean that's back to the ipmi thing My old sync thing video will get you started with it. It just sync thing has more features now than the video had So it's cooler In my video could use an update because it's also done Back my early days when they weren't as good, but it's still a popular video. I did along I probably did it. How long ago did I do a sync thing video? There's there's the trivia question I've got now Their documentation is good too, by the way I did one in 2021 2020 so it's only from three years ago Really, it's actually I thought I did it my first one. I did how long have I been doing it My first thing thing video was all the way back in 2016 So I've been using it since 2016 and my latest video, which is A specific feature they added in 2021 But my Video on actually doing it is on on setting it up is from 2020 So it's actually not as old it's I didn't realize I did one since the 2016 video So I guess every four years I should do a new sync thing video because I still use it Using sync thing to serve up copies of roms to my retro pie setup and garage office. Yes actually Jay from learn linux tv He loves retro gaming and He's talked about this. That's one of his use cases for sync thing You can not only just sync the roms You can also set it up so it will sync all of your save states So if you have multiple councils for your retro gaming You can actually go back and forth between them like save on one Shut that device off go on the other provided it was you know connected to the network and boom Now you've got the save states and everything synced up on the other ones. It's a great use case for it for sure Yeah, sync things outstanding like it just It works so well And if you use the way I look at it the way I use it I should say that look at it I use sync thing here on my true nas system And by using it on true nas. This is my place of Truth if you will so I have all the revisions on here and I have zfs doing snapshots Now this thing's sync thing Is for all the devices at my house that use sync thing Then it talks to another true nas at my office and it is the central for all the things at the office This is a cool way that you can have it Talking syncing all the devices at two different locations But then even because it is a mesh network is what it can be But you can also do it where the sync thing here my true nas here talks to my true nas at the office That way i'm not building a bunch of cross connections against all the other devices There's different strategies for setting it up and I think I want to explain that when I do my next video is I want to dive into all the different ways you can do it But you can have Four syncing devices and then have all four talking to all four It works fine that way It'll if you change the file on one it's going to change it on all of them You're probably going well What if there's a conflict and it just creates an extra copy of the file And it gives you an underscore like the name of it because it has it won't let the files overwrite So if someone has a file lock on a file and someone else updates that same file You're going to get a conflict file, but it's not going to delete them It's up to you and it always leaves it up to you to decide which file to keep Well, it's a mesh But you could use it in an overlay scenario It doesn't have an overlay network, but you could tie it to an overlay network because I actually have sync thing even over when i'm remote and i'm actually Uh, this is actually a little MacBook Air And I have sync thing on this so I have all my Documents and things that I may want to work on which is by the way I do most things in text I use a tool called Zetter I just do everything in markdown So it's just a series of text files, which is really easy to sync and sync thing So As soon as I booted up my I actually shut down my computer before I came upstairs to my kitchen area here And it always was syncing with my true nas the moment I opened up the mac It synchronized any of the changes I have so I could pick up exactly where I left off with any file that I wanted Any notes I have matter of fact, I got a ton of notes on seph I got a bunch of notes from my 45 drives training All those are completely synced instantly with my macbook here And because I use tail scale when I take my macbook and travel and I make notes about something if I'm You know doing all that susie gets back online and tail scale connects It syncs up with my true nas and all my notes are in sync again And I'm not using a cloud anywhere for any of this That's the part I want to talk about with tail scale and my use case for it It's just how much I'm doing with it to really dive into it as a As a way to Self host everything keep everything so I can have attached to my home Attached to my networks. I want to be attached to play with my projects play with my lab And just have a really seamless experience The moment I opened my mac sounds like a great way to max out sell a connection on a bad day I mean, yeah, if I was worried or in a low bandwidth situation I would just turn off. I would turn off syncing. I mean, well not syncing. I would just turn off tail scale that's I don't run into many places I go if I'm going somewhere where there's a little bandwidth. I actually don't care about the laptop as much I don't need it. I will just use my phone without you know Because at some point like when I go out in the woods somewhere like on my motorcycle I'm not thinking about my laptop or being online. As a matter of fact, I'm usually getting away from all of that So I'm less worried about or concerned about that as a process All right What else did I want to talk about here? Debbie in 12 lab Oh, I didn't start this one back up. Let me start this back up Because it needs it probably needs some updates Is this the one that has the backups attached to it? Hey, look at that. It does Cool. So we'll update this Because I want to Close this close this Close that I don't want too many tabs open You could and this is exactly a good use case for syncing if you wanted to sync Game save states or whatever if you have files you want sync syncing is like the easiest way to do it the only Problem and I don't have a solution for this because I don't use an iphone is it doesn't support iphone I don't know why they don't write an iphone f because they have an android one I don't use it on android. So I don't think about it as a phone thing I'm not the biggest fan of trying to do everything on my phone I reply to some messages on my phone and that's really it. It's just a message reply device for me I know some people really like try to live on their phone and I'm like I take a lot of pictures of my phone probably my Video and pictures is my use case for the phone more than anything else Cool. I remember the password Syncing syncs files not drives It's not a block device type of thing So you you're going to synchronize files that you point to in a directory Syncing you have a zfs snapshot. No, it doesn't talk file system It just reads and writes files not block devices. So it's not going to be as powerful as a ZFS snapshot matter of fact something I learned About zfs compared to sef and this is the next video. I think it might be a fun comparison with the 45 drives team the sef system Doesn't have exactly any way to do Like a zfs send they don't have exactly a one-to-one equivalent of that So that does make it a little bit interesting when you're trying to Do things inside of there where If you're trying to say one-to-one for zfs or back things up that gets a little bit trickier with sef It's just different way it handles it versus zfs Setting up zfs send to work across even two remote connections to synchronize block level data between two zfs separate systems Absolutely amazing. We've got plenty of people doing it So that's where i'm going to say zfs is still For synchronizing like that. Oh, yeah zfs is definitely king for well, and that's not a sink by the way That is a snapshot in time a slice of time of the status of the Files at the block well data at a block level not just files files zval blocks So it looks at the blocks it slices the blocks is up and it says what blocks have changed and can send those Change blocks and only those change blocks That's why zfs send is so efficient to do your replication. So zfs still reigns king for That that feature You're just going to get more speed out of you know the whole block transfer with it Look at all those updates. I don't think this vm has been on for a little while But what I do is I update it and then I back it up So this is my lab copy that I can send or create whenever I need a devian 12 I usually leave them on because they have unattended upgrades running in the background That way it just kind of stays up to date But that's a video. I really need to work on I have a lot I need to work on but the lab is really efficient once you build it properly in xcp and g and Uh, let me auto remove things cool reboot this All right So while that's rebooting I can keep chatting away. So this is rebooting But I keep my lab system up today I want to do a whole video about how our lab system works because it just makes it so easy To be able to spin up machines and test an idea Test a build out build a handful of machines and time together I think you know, this is where xcp and g to me really sought shines because I can do things like Lab test machines. So here's the tag lab test machine or here's the tag here for tom So anything tom's working on like, uh, I have a pharaonics thing set up this devian 12 lab thing and Like right now we know it works. It rebooted. So let's go ahead and back it up. So let's go to the backup sign here I want to double check the parameters on half of the backups full backup concurrency failure And I want to do a offline. All right. Oh Actually, I forgot that opens a new window. So you can't see it But I set the backup. So now that the backup for this will be an offline backup Which means it's actually going to stop it. So we're going to hit okay It'll actually shut down this vm It'll set it down just long enough to grab a snapshot of it. I don't have to do this I'm just choosing to do this. So I wanted to Grab it in an off state. I could do it in a suspended state as well But now it's going to have a backup of this and now if I wanted to make more copies of this There's a couple different ways I can do it. I can go grab that backup that it made Which it's almost done making I should say it backs up really fast. Yeah, the backup's already done It's not the backup's done. We can actually just do a restore And that's called devian 12 lab, which is going to be right here And we can just say all right. There's the one we just did we can restore it Pick a destination Generate a new MAC address start the vm and hit okay Now it's going to go do a restore so we can test it and we should probably filter this For the hashtag tom So as you can see right here down at the bottom, it's importing it Actually, let me fire up this one too But yeah, it'll say importing and we can watch this update it takes only Five four three however long that took to backup and restore So let's see. All right Done And now this one's booting up So now I have another copy running and if we go over here to our restore if you're curious how long it actually took 27 seconds to fully restore the vm. It's only it's a 10 gig network. So yeah, it's fast But that quick in 27 seconds. I've got a a vm up and running I could have also just cloned it like it said From a lab standpoint having all these different vms that I have Including windows vms. If you look at what my staff is running. It's a bunch of windows vms in here Eric's wind 10 lab Kyle's vm So you can see that this is running windows And he has it set to auto log in And then he's got five snapshots for whatever he's doing So he can go through and just create these snapshots. You can even fork from a snapshot So let me go destroy the other one that I have here because I don't really need it If we stop it hit okay We can just remove it done Go back to the other one. Matter of fact, let's let's go down here. So if we actually go down to me Oh, I got to create a filter view. Let's create a filtered view Okay, we have a tom filter view perfect So we'll set this so it only views the tom filter So now we go back over here now. It's only going to show me instead of all the lab stuff that's going on But we have at least one snapshot. We just did this and this is where you can even Create a vm from this snapshot. So if I want to do this Name copy you can build these out instantly and there are forks of it So it kind of makes your lab building really easy to do each time you want to build a new lab It's just kind of fun to play with Tom is so used to seeing his staff I mean I am part owner of cnwr So I mean they don't report to me anymore. So that part would be correct But it's still a part of a business I own. So I guess that's still Kind of makes some that way, but it is easier to say than the cnwr employees each time That's more of a mouthful a lot more syllables if I say it that way But yeah, I guess I'll do some more lab videos to kind of dive into this and show how we're able to be more dynamic with How we do things the other thing you may note May note if you've seen some of the network setups, this is an important aspect of the lab Is having all these different VMs I'm sorry not VMs, but uh subnets That we have attached here. So if you actually go to the pools There's a lot of networks in here Actually, we can do it. So there's more for page will do Though you can see them all But we have all these different Interfaces if you have 101 102 103 104 105 etc This is how you can build out scenarios because people ask why I don't use like gns3 or some of those tools I'm like, I don't really need them. I have a System that has pf sense in here So I can take the pf sense it then can attach to all these networks And then from there I can split things around and just build out my network build out my segments build a group of systems You just choose like lab 107 Then you'll attach a dhcp server to lab 107 or maybe physical because this can traverse not just virtual but physical as well That's why I want to show people how it works is we can go inside Our system and this is one and the same Inside and out So let's log in real quick to the unify controller lts lab Go to the port manager If we choose a port This is just weird ui design. They don't there's kind of crammed in here, but you can get the idea Here's all those labs set up again So you can see them so we have Is it even showing in here? Not really They really made this too big. I mean, I guess it's just it's hard for people to share You know, I think I can go to the network settings Networks there we go. You can see them here. It's just hard to see them in the port manager side But this is what allows me to take any port and mix it so we can put an external like we're setting up someone's firewall Build the network to match their network Tie it to a bunch of vms and do all of our testing on it. So Yeah, I meant that part particularly. Yes, you are They are your staff if you are a part owner. Yeah, I mean, it's like it's it's all tied together. It's one one big mess right I am uh Jason Slagle runs the day-to-day at cnwr like they take care of it matt does service delivery brett does sales tom makes videos and does consulting But that's the part I want to do. This is completely my choice The merger was in july 1st for those of you that didn't know and it's not exactly a merger because it's kind of a split because lauren systems now makes videos and it's still a s corp and then CNWR does all the servicing of all the clients So that's where all the it services happen is on that side there So anyways Fun stuff. Is there any final questions before I wander off? Because I'm going to go do some other things Actually, I'm going to watch tv. I say other things. The other thing I would do is just watch nerd stuff on tv I'm not sure what all I'm going to watch but basically nerd stuff science stuff Uh It's been a long day I might even watch some more 45 drive step videos because I there's a couple I didn't watch yet But just a couple left. The way I can at least see I got through all of their videos I want to get to 100 of their videos is kind of the goal Well, I'm gonna grab some water. So I won't be far. Actually, I can keep talking because it works when I'm over here But I I have a lot to do because all the notes I have for seph I have a lot more. I want to read like there's so It's hard to take it all in Star Wars fan Um, I don't have a star. I don't watch any of the new star wars stuff. So Can't really say much for that So the forum on your website goes to cnwr. Yes, essentially. Yes. It's that all goes to cnwr So that's kind of where the Flow goes over to We still have the same phone number same locations. Uh, well, we have two locations now Toledo and Southgate So there's um more than there was before You know, it's funny when I did this saturday livestream I think maybe because there's more people but certainly a lot more questions. I was really hoarse when I did that saturday I did like a three hour live stream and Ah, I kind of lost my voice over it. So Obi-Wan, yeah You know I'm biased just because I like mark hamill so much because I think he's he's great I did not expect to like it I like it. I'll watch a b movie every now and then and Is it brett brett christner the machine for those you google brett christner machine If you type in brett machine, you'll figure out how to spell his last name He made a movie and mark hamill was in it. Yeah, it was better than I expected. That was like Okay, I this is actually watchable, but yeah, it's it's certainly um I like mark hamill a lot and him being in that was just kind of fun. I'll just say that Okay, and he was the voice of the joker. So luke. I like luke It's just his whole his whole character has solo was awesome though, too But once again, you notice I'm always referencing the older star wars. I don't really watch the new stuff Bert Bert the machine For a b movie. It was actually It was actually pretty good the machine I mean, I remember his the first time I seen him Which I think a lot of people the first time they had heard about him was his the machine story But yeah As far as youtube and everything goes that's mostly what I watch. I don't I watch some movies But I don't like a lot of the Marvel universe movies I mean even like action movies like john wicker just kind of It's one long movie. What are they at four parts? Like I watched the first one cool I watched the second one and realized they just rehashed the first one and then it appeared It appeared that all the other ones were the same after that. So I didn't watch them I mean, I don't care if other people watch them. I don't I don't have any hate for them. They're just not my preferred media consumption But star trek is so Star Trek DS9 best series out there, you know fight me on that one Definitely a big fan Yeah, brad has a couple specials on Netflix, but he he made a movie Called the machine So there's that It was funnier than I thought Could you anyone recommend a security company that could dig into a medical device in terms of if it's Simply compromised by mailware or some more serious private jay software Drago's I think is their name They do industrial security I mean, there's companies that can do it. They're just going to be Very expensive. I actually feel that even the people at mandient probably have People you could talk to that would be able to do it But I don't I don't think you can start an engagement with mandient without 50 to 100 thousand dollars So I don't really have any answer on that How's the arm going? good physical therapy It's still technically broke But not it's healing I don't know that he was the inspiration for van wilder. I'm not sure That much. I don't know Actually, uh Yeah, I don't know if he didn't specifically inspired anything else. He just Brett became popular. He's funny He's got he's a he's a good comedian, you know if you're into his comedy He seems funny enough Comedy is one of those things that's all subjective as well Like some people like this person that person. I don't know No easy answers for any of that. All right Is there any final questions before I sign off? I was actually surprised no one had more snort questions I did that video on snort, which seems to be pretty popular What does it got about? Yeah A lot of views. What do we have 14,000 views on it so far I think a video about sort of 14,000 views is You know somewhat popular, but I've seen people debating right away of I made sure I showed how it does and how it does not work because it is not the solution to all your problems There's actually a couple people who One person in particular has messaged me several times and I'm like, yeah the the problem is With snort they're asking about Let's say I kind of describe it their their questions are usually how can the firewall prevent prevent ransomware? And I'm like it doesn't that's been a repeated thing when it comes to security I've had a few people even a couple people who wanted to buy some consulting with me, which I just scratched my head And I said I'll do the consulting, but I'll tell you I'm not going to give you the answer You're gonna want they want to know the best firewall for ransomware That's just not an answer and one company even told me they reached out to me They're trying to develop the firewall for ransomware. That was like three or four years ago They never made the product because you can't stop ransomware with a firewall. That's the I love the guy's pitch though I I really like what he said because it made me laugh Because he was like we're starting a company and i'm investing in it You know, I found these really smart technical people because they're going to solve it I'm like, okay, and his consulting was all about You know, everyone's trying to spend all this money and it costs way too much trying to secure all these end points We're just going to build a firewall that secures all the end points I'm like, great. That's what everyone's trying to do. Oh, no, no, they're doing it wrong I found someone that says they can do it better and i'm investing in them and you know I need your help and I was like, this is a weird consulting call. That's all I kept thinking and You know, I I checked under their website never never really went live. It just said like coming soon You know, whatever it was. I think it's gone now. It's been a few years but Yeah, I don't know who gets who tries to sell people that the firewall is going to solve all of your security problems It's another layer in the security. It's not the security and Yeah, that's a thing um, I did a podcast with 45 drives And something came up there that I think is going to make a good content We're they have a thing they're doing a new podcast called what spin awesome I was their first guest real excited One of the things they brought up and we started talking about war stories And one of them was kind of bad that they had It's someone who thought they could build And boy that they spend on this and This was a hard lesson learned they spent a fortune on building a seph cluster with a bunch of consumer grade ssds and not understanding that the consumer grade does not hold up the consumers can't perform as well and yeah it was It was those hard things they had to explain to the client that your Problem isn't the hardware you have is that you chose consumer ones are like, but we bought them all already and they're like, yeah They're performing as expected You need to switch to an enterprise one. So yeah, that's going to be It's going to be one of those things that's just There's probably going to come up more and more often where people try to DIY and build it with things like seph which is cool until they realize there are some performance limitations to a lot of the consumer stuff and it's getting worse not better the consumer ones, especially the The spinning rust consumers one thing And it's not spinning rust someone can feel free to point that out in the comments. It's I know they don't they're they're not metal anymore It's a whole different type of chemical makeup, but these spinning hard drives are Really the consumer ones are there's some closeness maybe but when you go to the mvme's there is a gigantic difference between enterprise solid state performance and non-enterprise performance because of the way that it's written on there. So By blocking payload connections. Yeah, that was the whole idea. They would stop every payload connection before it came in and That's the part that they really didn't understand very well Was how like where's the list? Where's the notification? Like, oh, we're gonna block. We're just gonna block all the bad websites Where's the list for that? That's a challenge. Matter of fact when I was going through my dns test one things I pointed out was a lot of these websites And they may had been infected at the time But they're not infected now and but if they get infected again, are you just going to block them? These are restaurants. These are small businesses. They're all over the place These websites that had probably a bad wordpress plugin that became a payload delivery So how do you know and once they're discovered great? But until they're discovered they're out there, you know, popping shells and sending payloads, so There's not an easy answer for that That's the whole problem with even the list in general It's all cat and mouse. And by the way, most of these lists are reactive not proactive They are reactive because someone discovered malware on them Someone was dealing with an investigation going how'd this get here? Oh, look, this is the last site Oh, look, they downloaded something from the site and we found it. So let's go Mark this as a bad website Ballad but someone got infected to do it hence. There's you're always one step behind if you're just trying to do blocking There's not a lot you can do about that Um, I've never used it If you're happy with it awesome, uh, it's not on my to-do list You can load at least I think you can you can load zen armor on PF sense, I know you can load it inside of open sense I don't know how effective it Sorry, honey here. I don't know how effective it is. That's the challenge. I don't have an answer for that it it's Maybe effective So that's that is where the challenge comes in like what is its actual efficacy Now, I know it has some filtering things and as I usually tell people if it works for you awesome filtering at the firewall level is really It's a challenge And it's going to be A bigger challenge because I'm typing in something here I like that they call it the last piece of the puzzle. This is going to break zen even zen armor They're not going to be able to see inside or really lots of other tools Because if they get this really going The whole encrypted hello by cloud player. Yeah, that breaks all those different tools encrypted hello the last puzzle piece of privacy They and this is thing an encrypted client hello is a successor to esni and master server name indicator It it's once that esni is broken. You're going to have more filtering problems Hey, town last week you mentioned a website that showed a low cost low power consuming true nas Machine, what was that again? That's going to be brian moses Oh god, I hate this hold on I don't really use this journey thing that Google wants to do every now and then says continue your journey. No, don't continue my journey. Just pull up the website Which his website's going slow or I lost internet Are all you connected? Yep Yeah, internet's working Well, I will drop a link to his website Or you can find him on twitter. He's brian moses Well, there we go his twitter's working So if it pulls up here, did I lose internet? Temp outage weird I think it's back. No, I'm not even sure Give it a second. It's all my packet all my packets are back Strange yep, okay. That's strange temporary outage I thought his website wasn't loading. I wasn't loading So let's go here And I'll share his site. I don't have Xfinity. I'm actually on wide open west share screen But yeah, if you look up, this is uh, brian moses.com Link in there diy nas 2023 edition and low powered You know, I should have Comment back at you. Hello But yeah, I should have uh Take an opportunity. I wanted to grab a drink because I'm done drinking water. It's Eight o'clock actually How much longer should I do this stream for is the question Is my wife still out and about or is she on her way back? My wife is on her way back That's the kind of a cool thing with the tesla. You can just see where the car is So there's the car you can see where it actually shows it driving So she's almost home She'll be home soon. So I'm going to wind it down here anyways So I wanted to reach the end of it, but thanks everyone for joining. Make sure you send things over to Yeah, but you know, I know well the problem is I can't stop the stream unless it comes back so and uh My way for me my way for probably watch tv together or something And so and that's the tv back there that we watch that's that's the house actually I can show you my house now So I can do this and bring it back to a wide angle because that's not a um There now you can see this is where So it looks like what it's really wide here So yeah, we already ordered so it's actually it's because it's eight 842 my time. It's already it's already evening And we're mixed by the way we my wife has like Christmas decorations and Halloween decorations out So that Yes, those are uh the speakers are clips Here should we do you want me to pan the camera around the house here? Give you give you a tour If anyone comment if anyone wants to see that before we leave Actually, I can even zoom in my wife is going to walk in the door over there Yeah, there's actually we uh do this so we'll I'm going to go behind the camera, but I'll usually I'm going to move the camera around I'll show you So we have Over there we got skulls And things like that actually You know, what do I have this says it's that yeah, am I in the frame or no? I can't see myself Oh, yeah But yeah, we got skulls over here in a red globe, but then we got a Christmas thing Go back wide Oh, here's all the things on the counter Then we have the Christmas guy right there Then a pumpkin and more pumpkin and ghost stuff, but we also have a Christmas thing I don't know That's the thing matter of fact, whoops This is wobbly It's the other side of my kitchen here. Now you I've did the full 360 tour here That's wobbly I think I got the camera straight Either way, I think I'm done. Let's say anyone has any other questions. My wife will be home soon We're going to watch some TV and I'm going to go sit at the computer and type This is kind of cool. Someone's going to get dizzy watching me do this though, right? This is how it was That's good enough There we go, so I can't see the comments on somebody at the computer It's still no toilet in the basement The Christmas thing looks cool for sure Uh 722 no, it's the 6.2 It's a I don't know It's the I have Uh Five speakers five. I guess it's actually 5.1. It's a the system can support more, but I have five I have five clips speaker four clip speakers No, wait, yeah five clip speakers and one subwoofer. That's not clips How do you uh get clients to take cybersecurity seriously? Insurance usually does that for us is the best way to describe it Uh insurance companies have been the best thing ever when it comes to Getting people to spend it because it's a requirement now It's not a debate if you would like to have business insurance You will buy this cybersecurity end of story so Yep two front two surround a center and a sub so 5.1. Yep I find it adequate. I'm not one of those people that needs more speakers or a theater I Yeah, like I could have turned part of my basement because the basement's as big as the entire house Into a home theater, but I said why? I just I wouldn't use it that much. I'm watching youtube videos 90 percent of the time So I mean when I have a movie that's that's a 70 or 80 inch OLED behind me that tv's pretty big Uh, I I like a good picture clips has a nice sound and uh, that's enough for me So I don't I don't overthink I don't overthink it Oh, um You can't there's no way to move the camera to them They're my ceiling when you notice when it's really wide. I have a really tall ceiling This I do have clip speakers mounted on this side of the ceiling firing down this way so Um when I'm on my couch over here Yes That does work that way So it still gets a good strength. I have I don't even know how big my couch is. It's big. I just have a really we we strung together a bunch of Ikea couches so we have One one big couch That's yeah, I may have a picture of them. I'll pull up. I like when I get off topic. I have fun being off topic Like let's talk about couches This is the last thing I share and then after that I'm going to Go back to actually watching team. Oh, he's not home yet. Anyway, I don't know where she's at try stuff at the store and away here There we go This is the other side. So I'm sitting where we're That so give you an idea. This is if you flipped around exactly so you're looking this way This would be looking the opposite way. I'm standing where what this what was like the stairs kind of behind me So that's what my looks and you see I got these up on the ceiling those are the other speakers I have so They're mounted up like that and yeah Anyways, that's enough of that Yeah, it's a matter of trying to figure out how to mount all that. It's always tricky Love your channel and content help from friends always. I currently have an open sense and a vm Uh with the nick pass you're going dedicated hardware dedicated hardware. I think is better But hey, you know it comes down to whatever you want to do You're just adding two pieces of complexity when you have virtualization with it as well. So Get rumble. I like that rumble packs and make the couch shake. Yeah, that's that's a novel idea but all right Ah, thank you everyone for joining and everyone who stayed with me for being way off topic for the last 10 minutes And uh, if I don't think I'm gonna have time this weekend to do it But I got some more videos. I'll get cranked out and as always like subscribe leave comments reach out Email me at vlog thursday at lauren systems.com if you want to connect And have something read on a show and sometimes a reply. That's actually a replyable email address It's not just a it doesn't go to a bit box. It actually goes to a box. I have so Oh 3578 or e3 20 which one would you do? I don't know I I don't know the processors off the top of my head I am far from a hardware expert. I have to look them up and google them myself So I'm not the most well versed in that window is for example Let's let's sell myself So I can't I couldn't tell you the feature difference between the two of them So, yeah, all right. Well, thanks everyone and take care