 And I'm live, but I'm probably I have to look over here It's weird because right now I wanted to try it from the studio computer Which means I have to look this way to look at the camera But the screen's over here, but I'm gotta change some settings real quick to fix that but welcome I have a few things to talk about today. I do have notes So I will pull my notes up which are also on this side here not much in terms of notes as I Still don't have any plans to go on any traveling anytime soon I've been trying to put that in the beginning of the vlog where I just say hey This is where I play the travel to that way if people want to be at some of the events I mean kind of I'm traveling this afternoon to a local event called it in the D So it's a meet-up for a Detroit networking professional. So there's That going on so that's the thing I'll be doing but let me switch the camera around over here So I want to be able to read the comments I want to be able to pull back and forth between it because of the different things I want to be able to display and yes, I did do some upgrades matter of fact for the box go the box is left But I have face tracking now and I'm doing this because what it'll do is not track devices People complained about it and there we go. Hey look it lost my face when it loses my face It'll focus on objects, but then once it figures out my face is it'll track that it's been an annoyance for a little while So studio upgrades. It also really is is this is a Sony a66 camera with a sigma 30 millimeter 1.4 Gives you that nice separation. So even if I Move a little closer get a nice separation between me in the background That's the studio upgrades. So sound is a bit low That we can compensate for I think Where do we turn a sound up at? Maybe here Does that better I don't know I guess I can always switch to the other Microphone I actually usually and I'm not using it the moment I usually have this one for my blogs. I can actually bounce back and forth between them Maybe I'll switch back to using That because it's probably easier to do it that way in and out Sound is cutting out. All right, we'll switch to the other one. Let's do it that way. Let's switch to this Hey, now I'm on this microphone. This one probably works better I'm not gonna lie. This is yeah It's the studio set up for studio recording. This is actually local to my PC and this Yeti mic is Really where it just works. That's one of the reasons I use it people, you know talk about different Tools and things like that or spend a lot of money on things honestly Yeti microphone You can find these things used for sometimes under $100 highly recommend them definitely work really well So some people say it sounds the same either way But we're gonna be talking today, and I actually I want to get some feedback from the brain trust the people that follow me because that's Where some of this will start actually My camera is slightly out of focus. That's fixable. There we go This is my studio camera has become my webcam And I set it to manual focus that way it's just in focus all the time instead of hunting Because it does that so now I'm a little bit better in focus Yeah, she's not better now as I stopped looping it through the studio setup. Nonetheless Let's dive into the Cisco thing now. I have the Cisco dashboard set up already. So let me pull it up I don't have it fully set up and this is part of Cisco's idea to compete I'm laughing because compete is not how I look at this I Don't I what I'm really gonna ask here of my audience is Actually, I have too many windows open No, all right, so I want to make sure I'm opening the right ones. This is the Cisco business dashboard That is supposedly If those of you are through a unified the concept of this is to have a unified dashboard much like the unified platform Where you can control all of your Cisco devices and things like that I have found it less than intuitive would probably be an understatement I've got some things set up, but I'm just like, oh man it is Really been a pain dealing with it and the little nuances of setting it up I tweeted because out of aggravation about finding forum posts that were inaccurate and matter of fact the The Whole setup of this thing has been a little bit convoluted then when you set it up It turns out it needs a self signs. You can't use a self sign Certificate. Oh, it's it's definitely not a unified ripoff. I will give them that they created a completely worse system Like if they ripped off unify, that would be an improvement They did not rip off unify and I've been trying to do a review on it and I thought I was just an idiot I'm not gonna lie here I kept looking at all the challenges like hey look at the lack of event logs that are going on here Which is weird because I've tried to I tried to get things in here I couldn't get them in here and it turns like turns out the reason I can't get them in here It's because it doesn't accept self-sign certs. Also the Cisco small SBS devices, which are some of these small business Switches, which let me log in one of those and pull it up for you They don't the Cisco instructions are wrong There's a forum post by someone who is also trying to get this working the forum post describes the right way to do it But it's also funny because Cisco answers with the wrong way to do it Well, they just don't give the all the details. I can't say they didn't actually give bad information They just didn't really give any information and when I posted this on LinkedIn one person had what has been my favorite comment The comment that someone had was whoops, copy that and paste it in here and open up another tab the Share this tab instead. Here's one of the switches that I'm trying to get adopted into here Adopted is the word I use because that's what you know if I use it So I want it entered into the Cisco dashboard. Oh, by the way, this is the my favorite part. We're doing this all in real time Wow processing data go Cisco with your brand new CBS 350 switch and it's incredible speed at which it Chugs along. This is my first problem with the review is this is slow But don't worry. I don't care if you have the password to this for my Cisco dashboard secret But yeah, this actually let me refresh the page, but right here. This is the dashboard connection Here's the Cisco IP address for the server It just don't connect and it turns out the reason it doesn't connect Let me refresh the page, which will probably log me out and cause the page to Also pause greatly There we go Now we can go back over here. One of the things that someone pointed out. Let's go here to administration according to Cisco's Documentation and we go here to the Cisco dashboard You put in the organization name that has to match the name and we'll switch over to here In here you set up the network configurations Where's it at? Yeah under network But if you can't tell which networks listed here It's because they don't give you a listing their network is a mapper list You can do a list here then it switches it defaults to map I don't know why so we have a network called Tom's lab and we have Tom's lab right here Let me zoom this in a little bit. We have Tom's lab. So then we match it over here to Tom's lab Tom's lab IP address we put all this information in here and it's supposed to connect But then it doesn't you'd think this little checkbox that says enable would enable it But that doesn't work. You think this would enable it that doesn't work It turns out and we can this is faster. I did learn if you take this Hold on no blocks on I have a second keyboard, but it is a small one That's an MP. Oh, man, I stopped this Cisco dashboard is pain So slow to use but you got to go here into the SNMP and enable SNMP to talk to the Cisco dashboard That's not in the documentation So I'm just like oh, okay So the documentation has been hard to get through in them But what this is all leading to is one I'm asking have any of you used this and decided you thought it was good And I'm just the person that's having a hard time with it or in I posted this on LinkedIn I said are any of you using it and my favorite comment is someone who said I Hired a consultant that couldn't get this working right and Cisco support was terrible They hired a consultant from Cisco that couldn't get it working right like I I Think I just have to do a review of it and be like this is hard It is just I don't know I'm not happy with it one of the thing Oh, okay, I have Cisco business APs the Kuiz of it, man I have to switch expert to do basic things just to let me set up expert every time. Yeah, that's a weird one too I have one of the Cisco access points to I guess while I'm here we can talk about the Cisco access point I haven't even figured out how to get that into the mix And David Here we go So let me pull up the Cisco access point which by the way has a completely different dumb problem Well open a new tab, I don't think I can show this I can show this part So this is the Cisco access point to log in Okay, I'm already logged in so it didn't they use like your old HTML pop-ups They don't have a regular form to I don't know why they did that which is a new pain So I work with whoops I Work with a lot of Cisco clients don't use this So I feel the same way I I don't get it like they made this whole dashboard thing is way harder than it needs to be And it's confusing and not well documented now the access points a different animal I of The I don't know I'm not happy with it because I got to play with this again And I just got to sit down and organize all the aggravation I had with it I couldn't figure out why things kept not working And it turns out most of the not working problems I was having Are just something with the Cisco I don't I don't know some devices if you set this to wp3 Don't like connecting and I don't mean like some old ancient devices tom has laying around I mean things like pixel six phones now my phone's had an update Sense I've tested this so I don't know if that's going to be fixed But I kind of want to rant here a little because I can't believe Cisco is Even the least bit aware that other products not just unify like other products in the market exist that work well And I don't get it like how did they miss the mark so far on this? I saw as this as the station telling that tom seems good to have code of counsel Yeah, I understand why the cli like the reason you want cli is because you've tried using the Cisco Uh non-cli system. Well, oh by the way in that couple minutes I was talking and this is a default I just left the defaults on We have now logged ourselves out of the switch if you look away from the switch for a couple minutes It's like, oh, let me log you out Because That's how you do security. You just set all your log out times to be five minutes and then you processing data processing data Oh joy This is why you load the command line. They they just want to torture you until you use the command line They're like, this is how bad web interfaces are. No, this is how bad Cisco web interfaces are Go Cisco go now functionally I think the switch is fine Functionally if you can get past the bad terrible web interface the lousy Cisco dashboard utilization stuff Which doesn't seem to make a lot of sense. I'm still going to get it working I'm determined and I'm going to document how hard it was to get working as part of the review I'm not going to give up. I want to give up. It is part of it But functionally, I think it's a cool like hey, look I can look at the It's a working switch and it has Probably the standard Cisco reliability of a working switch. It's just all the quirkiness you have to deal with About it the at least it's affordable So I will I will throw it out there that Cisco made these switches at a decent price So let me just pull that up real quick here because they are shares to haven't said They're not outlandishly priced for a Cisco. I mean, this is a eight-port PoE switch for about 400 bucks from Cisco It's not the cheapest switch out there, but it's not outlandishly priced either so You know, I'm like, okay. I I get where they're coming from at least that's a reasonable price for some of these But the pain in the butt with it is just yeah I think this is dying on them this whole this whole marketing plan of nobody got fired for buying IBM Nobody got fired for buying Cisco. I think that's that's a dying marketing plan. Yeah, it is uh Yeah, I don't know so Uh, does the switch have a serial port interface? Yes, it does Um, it does have that matter of fact you can It's uh your standard, I don't does they have a close-up of it I think you probably see it from this uh this one here, but it's got a little it actually has usb serial and a um mini mini that's mini usb, right? Yeah mini usb. So yes, it does have serial ports Oh the ingenious 10. So the ingenious one is a whole another They sent it to me And my review is going to be talking about this aspect of it for sure Because you guys aren't going to like this. I don't know. I don't like it. So i'm going to go with Who's this for let's go ahead and go back over to amazon and uh, who's this switch for? because No, I guess I gotta search for it. Hold on Because it's not on amazon right now Wait, do they I think somewhere there's a price point on it. It's hard to it I gotta search a little more to find somebody who has a price on it because the prices I've been seeing on this are Not good like I don't know why they want so much money for these Where streak wave has one so looks like it's uh, oh here we go This doesn't this price doesn't even make sense Is it well ain't the right one hold on? Okay This is even better This is the problem. I've had looking it up I don't know how much this switch costs because I can't find it on amazon right now But the price this is this is the part that makes me laugh here We have an msrp of 6.99, but you can get it for the low low price of 200 over msrp uh One even 6.99 msrp for for a 10 gig switch what that is way too much money I don't understand like you can buy the Unify switches and the unify switches we'll pull them up real quick You I Let's go and Look at the networking switches from uh our friend switching And let's look at their 10 gig ones They have a couple of The comparable ones are going to be well right here This one already beats it. This is a hundred dollars less with more ports. So here's a 16 port one for a hundred dollars less There's your first problem. But if you go down, where's that one they have? They have another inexpensive one from unify that's also 10 gig Is it listen they I don't like the way to divide some things on their switch Just give me the switches. Where's the 10 gig switches? And you got to search for it But they do have a small aggregation switch and it's cheaper like it's just a better price for 10 gig sfp Where's it? Does it suggest it if I click on this one? Probably No, go back There it is switch aggregate aggregation I can buy this is 269 and in stock. That's one of the reasons I was looking for this one's that's usually in stock I can buy this which is Um eight ports. So it's two less four less ports than the ingenious for 269 I can buy two of these and have more ports and less money than the ingenious I don't get it. Like who are they trying to price this for? Oh, they're Nexus data center muraki security. Yeah Uh sysco gooey on anything always sucked. Awesome. Yeah as someone who lives in the corporate world You live in a cli. It's the only way like sysco trying to help small businesses by putting a ui on it Just quit just stop now guys. It's just torture here. It's not yeah Oh, let's see Although unconfirmed should we consider the market flooded with non genuine? Is this an issue still? I don't know I think they've cracked down on it, but I don't know for I can't tell you that with absolute certainty that there's no more Fake syscos out in the market. I know that was a problem for a little while I don't know if it still is a continuing and ongoing problem Try neck gear I've never been impressed much with the neck gear stuff, but I mean I wouldn't use any of their cloud stuff for neck here, but they're non cloud stuff like they're managed switches I mean they seem to work In genius switch looks like a copy of the del sf 105 which also is a half width switch We use two of these dels fries because the networking for a six size service perfect storage switch Well, yes. No, um the I say yes. No because it's like there's it's overpriced I think for what it is and who knows maybe they wait label because del doesn't build if i'm Call me out if i'm wrong on this but to my understanding del doesn't really build things They brand them usually in terms of the switches not they build computers, but the other stuff Oh, by the way, this is a Australia won't it won't refocus on there. Uh, this neck gate backscratcher for Um, I I like when companies send me swag neck gate They sent me a back scratcher They sent a couple of them to my office along with some hats and I thought it was kind of cool I like swag I've been moving away from unify just don't trust them and working with a ruby cx a ruby insinon really like them Uh, my problem with the ruby insinon is you're locked into their cloud and their cloud is so Basic, um, I guess it gets the enough stuff done, but it's not it's not wonderful Um Yeah, it just doesn't hold up to the features that unify has I really would love to see I mean I'm all in on a competitor for unify. I I would A real competitor if someone's gonna go what about trend net tom and i'm like trend nets had security issues trend net has been slow to get things update trend net has Managed to have a in even less clear path to end of life than unify in worse documentation. So Uh, what about microtik microtik is a love-hate relationship now If you're using and I've done a video on this if you use microtik switch os Pull this up there Uh switch os Is Better than their router os because it's a little bit more usable the downside is router os In switch os are not always the most well documented or easy to find documentation on So there's a learning curve now If you overcome that learning curve which they're popular for example because they're very inexpensive they're popular in the Uh isp space the Wireless isp especially space where it's a low margin business And you know if you get them figured out pretty well you become an expert at them awesome But you you'll find a lot of things and I always like someone summed it up in my forums once of you'll find You'll google for a problem you're having with your microtik where the instructions didn't make any sense And someone has an incantation as in some type of commands. You'll type in That won't make any sense and you're not sure why it fixed it But you know if you copy and paste these commands it'll fix the problem you're having Uh, that's the kind of problems that you kind of run into if you try to do anything complicated now Just for basic vlands. Yeah, they work fine Uh, I was if you're not using the microtiks if using with switch os and just need vlan stuff awesome They seem to work once you start needing advanced stuff that is a little bit it becomes a lot more convoluted to do It's not that I can't do it It's just a learning curve If you need good management like a centralized management for all your switches Now you're back to something that you want to centrally manage You're back up to like we're talking here about aruba Which at least does give you some central management, but you're locked into their dashboard or you can go back to unify And hey, you can self host the controller Cisco's concept of self hosting controllers is a noble thought, but they've just it's the poor uh Port implementation You're uh, yeah, almost all Cisco go's are pretty bad. Yes Uh, they they work, but you have to figure it out with all the nerd. Well if they just had documentation If the documentation was represented if the forum posts At where cisco employees reply with the wrong information at least there's some forum posts I found that got me as far as I have and it wasn't cisco employees answering the questions Well, they were answering they just didn't have the right answers Uh, del does build their own switches about eight ten years ago bought force 10 employee those people to make del switches Well, they do make the sound they do like make and support some of the sonic os ones too But I don't know about the smaller ones, but Maybe Hello from switzerland I'm actually a little bit earlier because I have somewhere to go today I I can go for the live stream for a little while, but I do have an event to go to I agree with what you're saying about aruba so many micro as small networks don't need more than basic settings. Yeah, that's At least they got that covered with aruba. Um, I've used them. Matter of fact, I have an aruba switch in my stack right now I mean, I think they're reliable good switches What do you recommend for basic setup for home use uh with the esxi host a pf sense edge Unified equipment the unified equipment is just so simple and uh with me mentioning Um, this system right here for 269. I mean esxi 269 gives you eight 10 gig sfp ports. So you need 10 gigs of switching Uh, and you can buy these cards intel cards are like under a hundred dollars for intel Uh, sfp cards deck cables are cheap You can build a 10 gig storage server connection with a 10 gig hypervisor connection And you're talking about I mean a brand new switch for 269 granted the microtik one If you only need like the four port microtik, I love that switch That is so a microtik has a few other ones that are pretty cheap They still sell that one for 129 bucks And uh, that's a that's a hard to beat price at 129 for the the four port microtik Like that's the bottom of the budget But a hundred dollars more you get you get eight ports. So Uh microtik is the main target for junior hackers. Well, the problem is a lot of the defaults were bad on microtik and uh Default settings are what most people use therefore that's not too surprising. So they got left at default So the because of those default settings being open on the public side. There are tons of hacks against microtiks from that Uh switch us very basic router us has a lot of features things available switch us are not available and router us vice versa, correct Uh, you may as well go pf sets plus with the home lab. They have a free license for your home lab So I do recommend pf sense plus for that Ubiquity can't do q and q nor vx land Make your quick do it now. Cory's got a really good point here. Yes You can do that on there. So if you have a use case for doing vx land and tying it to your switches or q and q Yes, that's where you're gonna out out run the out use the limitations of the unify system important implementation for three likes Most important ingredient is the engineer. Yeah I think most of tom's clients are paying for his uh experience expertise and you seem to be passionate about it I am passionate about it and teaching people about it Uh, do you use the captive portal for your customers for host unifier controllers? Pretty much never I I think we have a customer and even they moved away from trying to do it inside of I don't think there I don't think we have anyone doing it inside of the unify controller anymore. There's third party companies that do portals That's just a better experience Ah, yes, uh microtik can do os pf as well That's true. Like they pack a million features into microtik That's also what adds to the complexity of them It's just the documentation and things like that and I don't use them enough people always ask me Why don't you make some videos on there and I'm like why I mean, I just don't use them enough to make a video on it as a topic I'll bring something up today because a few people who are talking about this and I gotta figure out how I'm always thinking about How I want to handle things um Let's go to this particular post in reddit because time spends too much time on reddit Uh, if you want to know where you can find me sometimes, it's probably wasting time on reddit I don't know. I I don't know if reading all the time is wasting time, but I like this Uh, let's see share this tab instead Why are so many YouTubers Advocating red teams and hacking well because it's cool. It's sexy. Who doesn't want to be a hacker Who doesn't want to you know make content that gets lots of views like that? But Uh, I was actually happy because I said, you know, I create more blue team oriented content and essentially what I'm saying here is I avoid some of the um Just getting people excited about hacking but I do want and I was having a conversation with my friends at huntress because well They they had a conversation with us because we we resell huntress and it was a security incident And I it's just not as glamorous when we talk about how we do investigations and things like that I mean don't get me wrong. It's fun doing ctf and doing any of the hacking stuff But I'm not going to do that. There's enough people doing it matter of fact There's a ton of people doing it who are way better at it and focus on that But I want to do what I do want to cover is the real world So I'm going to probably work on a couple videos of like what it looks like on the back end of a security incident It's not exciting um, but it's very important as someone who works on the blue team And making sure we go through a process when there's an incident. So incident comes in Huntress noticed it. We put the host in isolation so we could stop the spread from the server We actually stopped a pretty big incident from happening on a big client now. We don't manage that client. So that's where They're doing they have their own internal it they use us for just the huntress side of it But we were still just with huntress alone able to lock down their systems to stop the spread of the malware and give them an opportunity to You know break it apart, but I might walk through a video on that process of how we do that investigation We actually had a really dumb investigation. I want to cover at least one of those Um, we have a client. We do manage. This is a fun one. We have a client We managed that client and they got rid of a few employees. We're aware of it The manager thought he would just crack passwords and download software Now the manager was told not to do this by other managers, but decided he was going to be smarter than calling me my company I should say So they loaded some software and created a security incident So it went from a managed like you could have just called us to have us reset these systems to Oh now you created a security incident by loading garbage software on a system to try and crack a password Those are fun Um, so yeah, I might do a few videos just kind of breaking and detailing out what we do on the back end with our clients because It's a realistic representation of what goes on on the blue team side. I don't Like to try and glamorize or over hype it. I like to tell people what a real job looks like in security Uh for doing some of these things Uh, can I recommend kept to portal software? It usually comes down to Uh, you can google them. There's a few of them out there We ended up the client ended up hiring a company to custom write what they wanted They wanted first the idea was to flex make to see how flexible the unify one was to do what they wanted And it didn't work really well. So they ended up hiring a third party To write the software because they wanted a whole integration as part of an experience at their event location It really wasn't possible at the unify, but I mean you can specify third party ones I'm not an expert in that To know the best ones. Ah, yeah So, I don't know if you've seen the incident today travis So, so that's a that's the thing to happen again today. Well, not the one I talked about this is um If you overheard the conversation, uh, we stopped to me me cats. Well, hunter stopped me me cats We just had to tell them what domains to block. Yeah, okay For those of you don't know travis works, uh at the office as well. So Ah, all the fun stuff Uh, me grittick can do npls, uh, but you want their high end router not the cheaper switches for stuff Like it'll offload cpu and the switch chipset I can really count performance. Now, this is one of the things that It comes up a lot people go, oh man, I really want my routing done in my router not in my Or not routing done on my switch not on my router There's reasons and there's design architecture that requires that For implementations, but this is where just because the me grittick can Do Routing in the switch doesn't mean it should Because it may not be able to do it very fast. Now if it's just Some layer three routing in a switch for printers and small You know devices that don't have a lot of bandwidth requirements. It may work fine If you have something that requires more speed, you have to really consider to switch in its ability to process that Um, I'll also throw this out there because this comes up all the time captive portals are a headache If you can figure out a better way to do something without a captive portal your tech support will go down dramatically The problem with captive portal is It's not well supported on all devices in the universal format. This means there's a ton of redirect problems You run into especially with phones Computers do a pretty good job of it But phones do a terrible job of it and people will tell you they end up with all these help desk problems So to speak where they're trying to have everyone agree to some stupid terms and conditions And everyone just gets aggravated trying to use their phone on the captive portal because it doesn't direct where it's supposed to go The phone doesn't read the captive portal The phone won't stay connected to the wi-fi because it doesn't see the redirect for the portal So it keeps disconnecting them not allowing them to agree to the terms avoid them unless you absolutely need them Oh, let's see Oh, kody here. He hates captive portals to anyone who says Everyone who wants a captive portal has never supported a captive portal. That's how I feel about captive portals People who keep asking me they want one have never dealt with actually using one Once you've dealt with using them, you're like, oh, wow, this is terrible. I'm like, yes, this is terrible Yeah, it is just it it's it's better to Giving giving free passwords isn't a good idea for guests It's better to just roll what the wi-fi password is Set that up and like roll a new wi-fi password once in a while on your guest network. Go for that. That's an easier way to do it. So uh, yes captive portals are probably the dumbest thing ever Another plus you can tell who the real technician people are you can tell who's worked with captive portals because they're the ones commenting on this uh Oh, let's see A lot of it ties to the wi-fi solution as well. They're just always a headache I've never seen one just work well I've always it's almost phones are are where most of the problem comes in with them Like the computers seem to connect to them, but the phones are just like mess All right, now I got too many things open I was thinking about I can I have my uh I need a ssh into I I just spun up a new instance because I had a private one for the sysco dashboard. This is running locally here um I need I got another one. I'm going to spin up in the cloud. Maybe I'll document that process of how you load it I Yeah, this is I I said this is I want to finish this so I could just have less of a headache of it I just kind of want it done so I can say I did the review I don't like it because I can only tell the review I'm going to go through the diligence of setting it up, but I didn't like it I like that I keep having to log back into this I should change the timeout settings on there, but I do it just to prove that they have really weird defaults Because there's sysco. Oh and someone had mentioned the basic versus advanced It always defaults when you log into the web UI to basic You have to hit the pull down here I didn't look to see if there's a way to force it into advance, but you Have these were just grazed out a bunch of things Um, but I will say this the cool thing that they have in here Um For sysco is this I actually think this is great for people who have not used sysco before they have a vlan wizard I mean This is actually a good thing. I Plus 10 for sysco for doing this. They have a welcome to vlan configuration wizard It's not bad. It it it you still have to understand sysco's nomenclature for vlands It's not near as easy as unify, but it gets you going and you can if you kind of go through it You kind of get an idea as long as you google a couple terms if you're not familiar with them And you can go through this and go. Oh, this is how I set up a vlan in a sysco So I'm I actually like that they did that they also have an acl configuration wizard Uh, they have a getting started wizard, which I think is cool, too. So I think no i'm not mistaken I haven't checked this I think their ssh stuff is still Um That's a bug I've run into. I think the sysco has it too where when you try to get into these settings for the ssh rsa and dsa keys I can't remember if they're using some of the other syscos here used to use a deprecated um security You have to do some changes in your links or a linux system and say yes, i'm willing to use older protocols If you worked you didn't use it at scale once you start scaling up with all those They they are just a it's just a headache I should have done pretty much all the captive portals I manage Too many people with issues. Yeah, once you deal with it at scale with a lot of them You just run into There I mean we actually do have one client that's got a few thousand people Um, and they're using the pf sense captive portal. They do it to Uh control some bandwidth restrictions. It works. Um, it's not horrible I think they have it set. So once you do it once you log in you never expire. I did a video on how to do it in pf sense Um No plans at all about the sofas firewalls. I'm what i'm confused by i'm too I talked to a lot of technicians that just don't like them I'm also confused about the different versions of them. Uh, a lot of people just I don't other than people asking me about them. I don't see any of the other technicians like other It professionals that have these out in the field. A lot of them just don't like them and uh, we moved a few people off of sofas and I don't know There's nothing about them that seemed compelling that made me want to jump on. I'm like, oh man It's got this amazing feature. The only kind of cool thing is But i'm a little fuzzy on this is if you buy everything sofas from the sofas Endpoint management all the way to the sofas Firewall allegedly there's a big relationship it can do so you can Do the same thing i'm doing with hunters without buying a specialized firewall, which is like host isolation, but I don't know Uh I don't there's I haven't seen anything about it If it has a killer feature for me to take the time to learn a new product It kind of has to have a killer feature Second it should be something I've used out in the field because that way my experience isn't like Hey, look a thing that I tested It takes a lot of time to test a product and I try to share my experience from projects Products I've tested out in the field deployed at clients because I give you a better overall Thing like a feeling about the product of how it works So I was also confused about the version was hoping you can do some reading instead of me Well, I did reading and I didn't get less confused about the sofas firewalls. So Um, I found people arguing in forums that didn't help me. So now sofas has had some Vulnerabilities in it, but I will say that despite the many vulnerabilities they've had They've been fast to fix them. So I I'll give sofas that they've been on top of it. They've done good disclosures They have automatic updates but But people like to disable those automatic updates Uh There's a bunch. There was another article and I tweeted it the other day Basically people were complaining about the fact that the um What do you call it? There was like a ton of these still exposed with The flaw, but it's automatic updates are turned on on these. Well by default they are that means someone actively went and turned off the updates now one of the things that I don't know. I've heard people tell me is that the Problem with the automatic updates is it breaks things That in I I don't use them. This is and this is not something a review is going to tell you at all It takes a we deployed these at clients and this was the result after several updates everything kept catching on fire Everything was down because the updates broke. So we turned off automatic updates like there's a story as to why people are turning it off because The average admin the below average that we hear about I would say is going to be someone who Just puts things out there and isn't going to be Um actively doing something the They're not going to go through the trouble. They're going to leave everything at default Which means it should be on automatic updates But the more advanced admin had some problems that caused them to go into that firewall and turn off Automatic updates and I'm not sure why so that's it kind of gives me the wrong impression about it, but I don't know uh, let's see You use sofos xg home sofos xg is expensive though. Palo alto is more interest. Okay I've had no issues. So for service went actually about a year's ago for a client It was annoying to use especially for the price. It was very glad to get rid of it Hard oh hard. No, okay Sophos is ng of firewall pf sense is a little bit different solution Anything bought by thomas bravo is generally a train wreck in a long term You know, that's all those things like it should be on a vendor checklist. Does thomas bravo own this product? 40 net is uh, I tweeted they they're They're in trouble again for an improper disclosure of security vulnerabilities. So there's that again not the first time 40 net 48. Yeah, they're Uh, 6 000 it was yeah, it was uh 6 000 retro. I think you're talking about the number of uh exposed systems Shiny website. I'm sold Yeah, it looks like you have to sofos firewall free trial Price and buy Apparently everything's stuck behind Uh contact our sales team. So you get your base license You get a free trial But I don't know there's I'm not getting so get pricing. Oh We have to talk to people to get pricing We have to get on your mailing list to get pricing So, let's uh head over to the tweets I had related to these things see Me complaining about sysco And oh look This is the 4 000 sofos firewall is vulnerable to rct attacks RCE. Um And it's as well as things people change things Thousands apply and sell vulnerable and this is because people change the default on them There's been a handful of vulnerabilities in the sofas firewall. They've been quick to patch, but it you know it's also It's one of those things like people have all these uh things they want to do In you want to build it all into a firewall that has a web portal What could possibly go wrong with giving every user a web portal to self-service things Remote code executions and sequel injections. Those are if you're going to do it you've got to really harden against that type of thing We use a tool called Zoros for Layer seven I don't have a reason Don't have a reason to use brave I I prefer my browsers to update at the lightning speed and security that comes with Firefox and it comes with Chrome they both do a really really fast job on security I just don't know to track record with brave that I would trust my browser to them The browser is the surface at which you hit Crazy things on the internet and where the most likely attack is going to happen for me So having a browser to get attacked is a scary thing. So I run chrome for my business and firefox for my personal zone base versus interface base is just naming schemes I've discovered crowd sec ideas IPS, but I experienced a crowd sec that just eats all of your cp resources Is there a way to fix this? I would post in our forums. I don't use it commercially So I don't know I mean I take that back crowd sec is on my website and it works I don't see it consuming all my memory, but I do have crowd sec running on our website I have the free version of xg and a non-profit just a content filter. It's free and it works updates like a five-year License works where I need to do okay You like xg over untangle. Okay They send you the download link once you register interesting Uh Doing a video and blocking tiktok with pia blocker. No no plans on doing that What's the point of a captive portal? Uh, I guess because usually it's because people want someone to agree to terms and conditions of some sort It's usually what I think Uh, can I do a video? Maybe I might do a sponsored video with them. They can Buy some time on my channel Isn't brave chromium. Well, this is what I'm not positive about braves using probably chromium But this is a thing brave can't update until chromium updates So if there's a flaw found in chromium, they have to wait for chromium update and then brave updates What I this is a serious question. What is their lag time? I don't know how how far behind are they from the latest chromium engine to their engine Is there any delay at all? Are they doing it within 24 hours 48 hours? That's the question I'm trying to figure out What I particularly dislike is vendors like untangle moaned about xg. Sometimes I feel like glass house There's always some sales person. It's misbehaves. I'm sure Ah use links. There we go. Now we have our linux friends here Chrome for work firefox your personal. Yeah, that's that's my uh solution for this Why I want uh, you know, I remember the brave when uh, didn't brave get caught doing this when you google it brave caught using There's something problem Oh, yeah, this problem here. I remember this incident and then I don't use it but this is one of those things that came up was the Uh brave browser CEO apologizes romantically adding affiliate links to cryptocurrency URLs I mean, I don't know. It seems like a whoops I know they happened a little while ago, but I It's it's uh, I don't know browsers or your interface to the internet. So yes, it's a scary thing Uh, are using chat to people your business in a way? No No, um, I might use it for some testing for some code writing It's not my to-do list the chat gpt servers end up like overloaded all the time Which kind of drives me nuts that you know, you try to use it and sometimes it's usable Sometimes it's not I'm hoping to come up with a subscription Based models. Oh, I'm paying for it. Um that way I can have access to it instead of watching The errors on there, but there's nothing I'm not doing anything with it right now that's business related. I don't It's way over hyped it You know, I think someone mentioned this last time or maybe line has said it It confidently tells you anything even if that thing is wrong So I don't know it it's it's a more advanced google search the real worry I think people should have about the chat gpt is How it's going to affect search engines but It's also a double that sure because it doesn't Search engines at least give you enough results and let you kind of decide which result looks like the most accurate one Chat gpt kind of removes that it gives you what it thinks is the most accurate result But if that's not verified and coding is an is a big problem Uh with this because if and you know, I want to find this I think steve gibson had covered this on one of the security now episodes Where a bunch of people all put a piece of insecure code in because that insecure way of doing it was the top search result Now it did work for what you searched for how to implement a thing But that thing was done insecurely. So all these people end up with a piece of insecure code Replicated through all these projects because it was the top SEO result. Not the right answer It was the easiest way to get the thing done, but not the most secure way So you have to think a lot about which had gpt what is going to be indexing for Uh, just got a saving 100 x trying to solve xcp and janet running into a bunch of issues zen 4 not supported um I don't know. What are we using? We have Oh, we have a 5900 x So we have a 5900 Rise of 9 5900. I don't know. I don't think I've tried it on that one Post-center forums if there's a problem and maybe they have a solution for it I don't know that chat gpt is just too good. I don't know if that's how I would describe it um pf sense firewall udm I was having trouble getting wan cloud nice alone browser no overlap access Both quickly and perfectly didn't change a thing. Oh, that's because you're testing wi-fi I like to untangle to enjoying x g more got to use it at 2 a.m. Got it Chat gpt with microsoft azure thinking the future. Yeah, microsoft's investing money into it Uh, chat to use revolution because it gives people another simple interface talk to ai You'll see this year that it means for society you're gonna change a lot. Oh, I've heard that many times um, I don't think it's as much of a game changer. It's just the next iteration of Some of those things it's not People are way overthink it They it's a good news topic for sure because it gets people so engaged in how excited they are over it I like people excited about technology. So Yeah now there are some other sides of Uh chat gpt that I think I'm not seeing much news about and I thought about talking about it more myself is uh, what happens when you Use chat gpt to create a bunch of convincing bots and It's not likely that it's going to be used like the way people think it will be like a bunch of convincing bots It's still going to cost you money. There's going to be a cost of renting a chat gpt or jet gpt Like server system that will create a bunch of convincing bots So what would you do with a bunch of convincing bots though that you make money? And I'm not talking the kind of basic money that mailware people make I'm talking about some real money with market manipulation through stocks That is an angle not people I don't hear as much talk about it Maybe I just don't listen enough because I I don't listen or read to every chat gpt thing that's coming out there But that could be what if you had Look at the game stonks and the game stonks is interesting lots of people on reddit And you know the wall street bets and everything that happened with that What if you could build an even bigger group of those people? But they're not really people now you can scale it differently Have people who are convincing because they're not people or chat gpt interacting in a convincing way And then they all create accounts at different trading places, you know the raven hoods or whatever they do And behave in a very real way that is where I could see someone making some real money And it'd be worth investing the money into doing it So that's kind of like that's it's not them writing code or some low hanging fruit Of oh cool. Like I've seen all the trending topics of chat gpt writing mailware and that getting over hyped Yeah It's just It's it's oversold. I do think there is certain risks inside of it. I mean But chat gpt doesn't know what a mosfet driver is it found that information somewhere It was a google result. I'm sure if you start and I've told people this there's a matter of fact I've seen um Dave's garage did a good good video on using google searches matter of fact I learned nothing new from it but thought wow I never realized that this is a big deal to a lot of people not knowing all the different ways you can use google search Especially if I wanted to understand something like a mosfet driver Would I google how to use how does a mosfet driver work or What I use an image search I would actually start with the image search I frequently start with an image search because if I need something explain to me in a better diagram Of electronics layouts if I start by doing a google image search for the thing I want to understand how it works I'll go to the site not that's at the top of the ranking but it has the best image that matches Which usually has content around the image to match, you know, those are ways you can use search to find the same thing chat gpt did Hopefully that makes sense Yeah, but connect if you want to connect We're actually funny my friend christian cross talk. He started uh He actually found my video with something chat gptp recommended Oh, this wasn't the top result. Hold on. There we go but they have They have instructions on how to do it and how to set up winlog beat Ingest beats and just this log journal d chat gp. He's just reading um These to you how to ingest this log and things like that. So I mean It's just Reconstituting it a little bit better. I don't know With the redundancies across various tech companies what areas you think you'll see consolidation in uh, who knows It's hard to say Didn't Microsoft announce they want to integrate chat gp to being I don't know if they're going to integrate it being They're just going to throw a lot of money at it Not sure about the lag time. That's the part of you with the brave browser. I think matters the most is the lag time so Yeah Oh, well, nonetheless, I'm going to get off the chat gpt topic because I you know, I said my piece on it And tom has a video about gray log. Yes I need to do a new one. Um And I haven't loaded five yet, but five Someone more than one someone I should say a few some ones have said that the documentation is incomplete someone reach out to the gray log people to talk to them and uh To see what is missing and go through it myself and see about getting gray log five set up and updating their instructions If there's a mistake in there I know I tried doing an in-place upgrade and it broke So I'm still on the latest four point something released because the five version of gray log broke So I'm just going to build a new one from scratch and the reason why Also is because I want to switch to open search instead of elastic And so I need to make a new video that's going to walk through all those steps Uh, what's your experience on rancher harvester? I don't use it. So I have no experience on it I do like portainer. I use portainer So I pull up for if you haven't seen portainer you can find a few people that aren't me I have done videos on it but Uh, portainer works well But uh, yeah port portainer is a nice way to manage them I just don't use the other ones. So Use whichever one makes you happy now. I have too many tabs open. Let me close some of these tabs There we go. We're down to the one tab open again Uh, do you have a video on how to configure zen orchestra for 2fa? I don't know why that would need a video Um, you click the button for 2fa. It's not Let me find it actually I probably need to sign out I think I have a guest user. I could sign it as Actually Do I have a guest user? Yes So let me disable it and I actually for the guest user here This is my lab user. I've used for demos sure just to have instead, but uh Are you sure you want to add otp authentication? Okay, there's your video on it. There's my otp authentication and now it's off. Are you sure you want to remove otp authentication? Okay. All right That's why I don't think it needs a video You just click the button to turn it on Uh, you know, it'd be great an official gray log docker image an example docker compose this Uh, they already have an official gray docker image. So you can do it in docker Uh, that's completely doable. There's no problem there And that may be a better way to do it because it has all the dependencies in there to do it in gray log to do gray log with docker so Uh, show upgrade my synology from six to seven heard there was some drawbacks. I I'm using the latest I don't have a problem with it Gray log my homelapse syslog ng Uh, is simple but ugly. Yes, it is Been looking at duo with ube key for more 2fa. Yeah, duo's a popular system. It works Uh, portainer required a very complex password after one of the versions upgraded next release you could toggle complexity yourself Just use complex passwords. I don't even know my passwords My passwords are all like something long and complicated done by my password manager And if yours aren't why aren't they I don't think I have anything hardly running in here four containers. What am I running? Why am I even running? Oh, I was playing with a youtube downloader And website shot. I just have a couple containers. I use this mostly for testing things Uh, it's not really a production use Well, kind of a production use because we go to This I guess you could solve my uptime kuma pie Uh, uptime kuma is production use We use it in our office to let us know if things are down Are you feeling down? Is your servers down? Hey, good all systems operational here at lauren systems Everything's green because if it's red, it's dead That's what it said zoom in a little more. Whoops It's red. It's dead Everything's green Should I take something down so we can see it in action create notices Uh, the only thing I don't like about gray log and docker is um, I have so many different ports open up Because I set a different port for everything that i'm ingesting I mean It's not that hard to do. I just got to map them all on docker as well So I just have to decide if that's how I want to do it I have a video on uh, 502 So 502 is great. I like it. I recommend it Which is uh, matter of fact The ube key supports 502 and I did a video on A key that's out of reach. I'm trying to remember the name of it if you type in 502 I talk about the different keys, but I do have a uh ube key Um, that's right. This camera's on fixed focus. This is a ube key Let's see You can set your docker network to host Ah, you know That's what I was I was gonna ask that So it does support it because I know I did I was hoping their docker Supported it if it does perfect Then that might be a better way to do the install is just building all a docker Because then I can just update the containers whenever there's a new version. I think that makes sense. David g. Thank you for the comment I think that sounds like a great idea for how to do it You know, I mentioned in here and I didn't get to this yet, so I probably should get to it now I'm close to doing this review Yeah, I get logged in here And we'll share the tab But the Sonology flash station Working wonderfully. Uh, I am going to have the review done very very soon. This has been A great system. Uh, it's fast the I uh Gotta make my I familiarize my familiarize myself with how to do this But the ability to Where's it at? To take your active backups and turn them into next Restore instant restore to a Sonology virtual machine I'm going to do a demo on that because it's just kind of cool You can back your system up and then when you want to restore it Just do it instantly and when you have something as fast as the flash station. Oh, it just works Uh, it works very well and so I've been really impressed with it. I have some videos Coming soon. Uh, let's see. What do we got here? Share this tab instead but Yeah, this is the hardware on it. I mean it's nice I have like I said, I made some videos that I gotta I gotta put all the different things like that This is how I do all the b-roll as long as you're seeing is some of the b-roll before I get the review done But this the Sonology flash station definitely a solid Solid So the more good Sonology fun stuff Uh, notice they've expanded a number of keys. They look like Yubi key five NFC. Okay It's so damn fast. Yes. It's fast and it's also, um It's fast and it also does the just Like it's a wind tunnel as much as the word I'm looking for is wind tunnel We're staying in our kitchen area of our office which is by our lab And that thing is still blowing air all the way over on the other side of the kitchen like eight feet away And uh, it was just kind of cool Use traffic, uh with label in url, you never use again, but these are these are ports for not Traffics it will work for what you for doing, um Like proxying but me talking about gray log is talking about ingestion of all the different syslogs. I don't think traffic's ideal for that Yes, the apps make all the difference when it comes to the Synology. They do Back up exact uh, did it years ago for restore from physical to virtual? Yes What are the stats on your Synology nas? Um They have all their stats listed for that I'll at least cover Hold on before I share this Do do do Where is the info button? See these are Okay, I know I'm only sure it's not tied to my Synology account. So to throw all that account information on here Add to stream specs on it are Intel xeon d 1541s and 32 gigs of ram So in this the specific model is an fs 3410. So this is your flash station 3410 And if we go to the storage to Storage manager not sand manager And we've got nine terabytes inside of here. So these are a bunch of Uh, Synology sat 480 gig ssd is in here 24 of them to be specific. So 24 480 ssd is in there. So it's going to be fast Definitely a fast system I might I got to do a little bit more testing because I want to test out A few of the other things in here like Synology drive but You know, the biggest things we use from a business is going to be surveillance station. That's one of them Some of their synchronization tools are cloud sync. They're hyper backup The hyper backup is just really great. I actually like the log center It's a basic logging server, but hey, it's built in so why not use it? I matter of fact with my server here Let me pull mine up. I've been using log server on mine for a while So if we pull up my let me switch to it pull it up real quick here Share this to have instead matter of fact, I'm actually running I'm playing with some of the docker containers in mine. I just have uptime kuma running at home But uh, Synology can run docker. It's a little bit different It's just not it's not the standard command line native docker But it's good enough. It'll get the job done to run a few extra non-synology apps Uh, what is ix system going to release a new roadmap for scale? What is the roadmap you're looking for? Are you asking when the next release is? I don't understand that question exactly Cool thing about modern Synology is some even support docker. Yes Yeah, if you get a model that supports docker, it's great We'll be involved more in ddn storage. What is ddn storage? Oh data data direct storage Hmm, but let's pull up the true Scale roadmap because they have a roadmap and it's published Come on. Oh Do I have to log into this one? Let's see I gotta log into it I think they moved it all to JIRA There we go I had an account already They do have a roadmap though and so you can look at all the different things they're working on Do they have a release dates for this? February looks like their next targeted release. So u4 is targeted for tegrary March so march 28th is the new version of scale But I they're very open about their roadmaps for things. So that answers the roadmap question for those wondering I'm looking at you. This sounds you. I can't find out how loud the rack mount version is because my desktop is nice and quiet The rack mounts are loud. Uh, I will be doing a decibel test just to talk about that as a as part of it They're not quiet. They're not designed to be quiet They're rack mount rack mount devices are not always the quietest of devices It's usually not their purpose their purpose is efficiency of air movement first and Well, I mean, they don't go out of the way to be noisy. They just don't go out of the way to be quiet Uh, butter fs. So the way synology implements butter fs works really really well. So They don't use it for the raid to talk to the drives. They're still using your standard linux raid And then they use butter fs on top of linux raid. So it's a good combination the way they do it Hello from france a analogy appliance can run so many things reminds me of the unicorn one box for everything Um that you were in jay. We're talking about I wouldn't quite call that because I wouldn't it's not really your firewall That's where that's where we were getting at when we talked about the one box unicorns But it does do a lot and I think they do a good job of packing a lot of functionality in there Uh, what's a good way to back up bit warden on synology vm Uh, cli method or syncing or something else. How are you doing it? Uh bit warden I back up with uh syncing because that's the easiest way to do that for me Um I use syncing to back up all my stuff I need to do an updated video on syncing because there's been enough changes over time um to warrant a video but Let me pull i'm going to pull up syncing just so people can see it So many clicks to get to all the logins, but uh, yeah, I just use syncing and it talks to Like hey look, there's all my um, unify backups that are happening all the time There's my bit warden sql backups my business document backups All my other server config backups anything we have is constantly being backed up at any given time And you know, this is one of those things like it's automated you automate your backup system this way So it just synchronizes and sends wherever it needs to go You can see where it sends it to other systems and some of these systems are off-site And it also has my desktop synchronizes with this and yeah once you have all the servers talking to this directly It's just works much better First major mistake my new synology disabled all the service for all user by default actually locked myself out. Whoops To the soft reset to get back at any account that realize that vm's are running on the shared storage corrupted all of them I think yes backups are important Does true nas or synology support active cluster you can do um I have a failover video on synology and I've got failover videos on true nas core It's better to watch those videos where I explain how it works for those It's not the same as seph clustering if that's the if that's the question Issue with true apps not deploying. Oh true charts is probably what you mean Not deploying when you set up a host path and data set and shared smb. Yes, I have definite problems with Probably still I can show you one of them so I'm trying I'm using the true charts and I I don't get it um Close all these tabs I have open But I'm using because I wanted to test it out This is one of the really annoying ones right here. So I'm I was testing out joplin And uh, I used joplin, but I wanted to try the joplin server true charts had it So I was like, hey, let me try their deployment. So let's go ahead and edit their deployment if we edit the um deployment here. So edit Zoom in a little make sure it's easy for people to see so the joplin server is all set up And look at this host path Host path for what whole path for app config storage. So we see mount doser true charts joplin we've Pretty clear that this would be where my app storage is right? Well, let's go ahead and open up ourselves a system shell And uh, we're going to go to cd slash mount Those are true charts joplin No data in there. I don't know where it's storing your data. I gave it the host path And it doesn't put the data there. So I've got some puzzles that Uh Worry me is the best I can describe it like I get worried when I see things like this because I'm like, why isn't it doing the thing? It's supposed to do you should be able to um Store your data where it says and then your data actually be there This is the problem I've had with some of the apps on true NAS scale Is they don't have a good way like to store your data and make it clear where your data is or Give you a clear path by which you can restore your applications. It's not just about setting get up It's about having a whole process for um It's it's a whole process for Understanding where your data gets saved and being able to restore it if you need to that whole process should be understood before You start relying on it for something critical Uh I notice you have acoustic foam behind your racks. That's them. They cut down rear exit fan noise for swapping. You're not too Uh real answer not too is a real answer. It only cuts down a little bit You get the the foam helps but it's very limited. It doesn't I had the foam up there for my old studio. It's not something I would tell you to go out of your way to do to do that so Uh hyac system does have fancy NASs with two motherboards. That is absolutely true Uh run true NAS apps the same user permission as Samba and a share will work That's another solution too This is a whole other thing. Some people really like the noise if you like the white noise That's a different thing all together So if you are a lover of white noise Then don't worry about it at all if you're trying to record, uh youtube videos the white noise not so liked Spent six hours trying to solve two church plex and would not deploy Uh, so yeah, there's The system's not perfect. That's for sure. I will you know, I'm gonna do a new video soon on true NAS Versus in gonna focus on scale mostly True NAS versus Synology when it comes to deployment and ease of use I'm not gonna lie. Synology is gonna be easier for less experienced technical people Hands down. Synology just is really turnkey if I want to go through And install something on my Synology and go through the package manager to do it I just go here pick the thing I want to install and install it it's so Like it's intuitively easy in here Uh Compared to doing it with some of the other systems like hey cool. They have a note station Hmm. I wonder how hard is installed note station? I can probably click install and three clicks later It just works What else they have in here? It's their calendar. They have a directory server SSO server they package a lot of great things. I love the Synology photos I think Synology photos is great. So another really good utility that they have in here Their virtual machine server. It's not the best, but it gets a job running. Do I have a running VM in here? No, I thought I got rid of them all. I've created some VMs their VM manager. Um, Definitely works. So Ah a totally silent Server, um, yes, I've been in you know, uh, my friend Jason Slagle He had he had to mention one time because he had hit the button The power down button because there's an emergency if you've ever powered down a data center There's an eerie feeling and some trouble that's going to come with that because you had to shut everything off because things are going wrong Um, but yeah hitting the big bread button. So But I am going to wind this down here in five minutes because I am going to an event today The event I'm going to uh is the it in the d event I mentioned at the beginning of the show So it is a local event here in Detroit put on by my friend Bob I mentioned it before I I don't go there all the time. Um It is a podcast it is a podcast I've been on a couple times in case you're wondering about it Um, Bob talks to technical people and things like that. Uh, it's just a nerd mean up of people. So it's One of the local events I go to Hi, I'm from Germany. Have you had problems with nsc? The current version p.m. Sense and hyper v. I don't use hyper v at all. So I don't know. I never use hyper v So I can't really answer that question I end up installing vm's on a hypervisor leaving churnass pure storage on your dsm is very nice shame about hcl Uh, hey tom what vpn recommend to work with active directory seen wg portal Uh active directory usually it's going to be open vpn open vpn and tying it into your active directory for authentication It's a common. It's a well documented setup. Is there other ones out there? Probably would I recommend them? How well vetted are they? How secure are they? I will say that the open vpn tied together active directory is both documented and i'm not aware of any flaws in that configuration Yeah, if I lean in and out i'm definitely out of focus So i'm perfect focused probably there I'm out of focus here. I can turn focus autofocus on there we go It in as long as I stay centered it'll focus Or it'll focus on the background Because I have things in the background So it'll focus as long as I peep my head in the middle If I put this in the middle and focus on this I This got 3d printed in my office. I don't know why and I don't care because I like it Let's see Oh, you've been in one of those soundproof chambers. Those are awesome Oh, you've got a new bike. That's awesome. I will check that out I so this is one of the cool things I have to I like this a lot Who knows what that is? Besides something that sits on tom shelf Oh, let's see nice autofocus on the middle finger in the background. Yes Oh, yes, someone smashed that like button. We got 175 watching 53 likes Um, this is actually something novel that I have. So this is an old uh drive here You can tell by hold this is but what I like is Um somewhere on here. It's got the model the model name made me laugh Where is the model on this? Okay, it's on this side Yeah, these were their early cloud drives because they were Cumulus drives This is uh from connor. I think connor was later bought by seagate if i'm not mistaken someone could probably correct me on that but the uh They they were using cloud terms and whenever this was made probably late 80s Uh, they were using all these cloud terms on these devices. So Maybe reality is blurry and the camera's fine. That's a possibility Yes, that's a virus people got it right. It's a virus. Oh, I don't even know if this is eight gigs Hmm I'll have to fire up some retro hardware and get this connected Yeah connor technologies 480 megs Probably I'll look at the model number in here. Does it stay on the side? Here's it is a here. Let's look it up. It's a um connor cp Dash 3104. I'm sure we can find this somewhere Of course you can So it's a 100 meg drive 100 megabytes Does it have the year it was built? It does not Maybe someone else does This is something I don't understand. It's like the most garbage seo thing ever Who do you think came up in the search results that has this drive? So here's the drive specs. It's a 100 meg drive Okay, cgate did purchase them. So my memory's right Uh, this is ide not mfm or rl. It's not that old Good old winchester disc. Yeah Um, yeah, I don't yeah. No, this is ide. This isn't there, but this is my dumbest seo result here Wait for it. Wait for it There we go Walmart has it because walmart indexes everything and throws it into there. You can buy it through walmart So walmart's trying to be the everything store. So Oh, currently out of stock really you're out of stock and you know connor 100 meg drives that are from forever ago Like really walmart doesn't have it. I guess if walmart doesn't have it. I don't need it. Um Let's go to share this tab instead. There we go. Yeah, this is the another page on it Neat jumpers product mangle. Let's look for the year on it This thing is old I I like some of the old hardware is kind of cool to watch Oh 1990 so try made in the 80s Our early 90s Lots of good information here If you want to dig into it, I love some of the old hardware channels, too Uh, do you actually have more information about the new pf sensors and it will be another video I did a video on it and covering it. Um, I Kind of forgot to mention here. My mention is it still runs great I even had it. It's been a couple more days since I uploaded the video I've had no problems running the latest version of pf sense. It's just As a matter of fact, this video is running through me. I will pull up my pf sensor right here Stop talking about old hard drives for a minute. Um, but yeah, this is my current version of pf sense And I loaded it now six days ago. This just works like I I've been really happy with the latest, uh, 23 upgrade. So it's been solid. So that's I I started I wanted to talk about today But it apparently I got sidetracked by everything else Overall, though, I do have a video on 2301 RC And uh, I recommend people upgrade to it like give it a try Use the boot environments and you don't have much to worry about in terms of if things are uh, if things go wrong I hate that spammy SEO trick. Yeah For sure Thanks for the cloud for a video and never know that they offered a free service been running a reverse proxies rps for Yeah, cloud for just got some cool services. They offered or definitely, um, they work great Ooh, you still have one of your, uh, quantum fireballs. Awesome. All right. Well, I've written this This has gone a full hour and a half. Thank you all for joining me. This is a fun discussion I love engaging with all of you and so far, um, I started this at the beginning You can leave comments if you have some information or DM me on twitter But uh, let me know if you're using an sysco dashboard and you don't hate it because that's That's my question is do you use a sysco dashboard and do you hate it? I can leave that question out there for people now because um, I'm not impressed with it and uh, so I'll leave you all with that I'm still going to work on it and get it working and that way I can at least tell you all the steps It took to get it working and let you decide if you think it's a good solution or not And then I'll do my sysco review video, but thanks you all for joining me I'm going to go hang out and have a beer with some tech nerds And uh, I gotta do it at their place though. So thanks for everyone and I'll see you next week