 And we are live I think let's see here. I didn't have my mouse in the right place. There we go Comments you gotta start there. I see people already in there. Hello everyone. Who's ready for pizza Thursday? I'm ready for pizza Thursday. I don't think I'm having pizza today though My son is hanging out with his sister. So I don't think he's having he may be having pizza right now But it's not with me. Oh Let's see. What do we have here? Got Cody here. Hey Cody. Ah Yes, the video on the rack build Yes Eating tacos and live stream. I'm gonna go with that's a good. That's a good life there Hope we have some for the diesel and legacy of us supporting a bunch of server that they mentioned a homelab I don't know what that's a jay question. So I Don't and I don't work at a bunch of you neither does Jay So I don't know that we really be able to help about lack of support Hello from New York City Wells UK Portsmouth UK Erie, Pennsylvania South Australia, I'll show you just It's a big place. I guess saw I don't I don't know if you're asking and I couldn't really tell you where I know I've seen those cities in Australia, but I don't know where those the geography of those cities are but it's a neat place San Antonio I Can tell you from Michigan because you said you live in a thumb That's that's how we know that that answer right there. Oh, yes fun times indeed I Forgot to hit tweet. There you go All right, make sure I tweet things out and I'm gonna actually pull up what I tweeted out because I think it's worth bringing up right away The Patches that need to be done And let's see. Let me pull up all these different things. We're gonna go here to the live stream Then where's that bleeping computer article? Because we can talk about this real quick Seen as I tweeted it. I just got to drag the article over here So it's shareable All right Hey from Chicago Houston Next to mission control very cool Brussels Belgium All over the place here. Sorry, we're gonna share a screen Chrome tab Well, that's the qnap one That's not what I was looking for but I can share it because the next one that I tweeted is going to be I Like that is you use the same graphic essentially they just changed the name So go over here It's a knowledgey warrants of critical bugs and multiple. It's the same bug by the way. It's Yeah, it's the Definitely a new bug in there. Oh Hi from down on 94 myelin, Michigan myelin's really close to me Well, it was qnap again and Synology and anyone who's using net a talk That's actually where the problem is is in the net a talk module. It's not exactly Just a Synology just a qnap problem. It's more specifically this right here and it starts with remote code execution on Western Digital PR 4100 NAS, but The CVE is more specifically Inside the AFP protocol. So this is what this is where the problem is and it's if you're using Apple is it is it called Apple filing protocol? That seems like a weird name, but whatever They found the vulnerability in this protocol and so everywhere that protocol is used Besides the device they found it in is where the problem is going to be So, yeah, that's um It's gonna be interesting The lots of things have this vulnerability And uh, I had a Swallowed something a little bit wrong There we go. I don't know if AFP is supported by Apple But it's certainly supported by all these devices that have it matter of fact true nas Let me see if I can log Pull up one One of the things with true nas is they updated for this already. They were actually so of the nas software They all were affected by this. I'm trying to see if I can find the release notes for true nas Well, let's see. Where are their Release notes Current release. I'm trying to find the release notes on there because there are release notes for this issue Should be in here There we go, so let me now I can share this screen But here's here's an interesting commersion Synology's got updates rolling out qnap when qnap gets around to it will roll out But this the updates that came from the people over at ix systems They were modified. Whoops This build is from 14 days ago two weeks ago, so if you if you want to know, you know, who's on top of it and who's Secondary on top of it, which is Synology and who the third place runner-up is is qnap And in terms of these three that I mentioned that I know we're affected by this But yeah true nas has a release for this same problem as well, but obviously there's is you know quit a bit oh so My friend Ray just sent me some pictures. He's building his new studio as well so Nice the Sorry for a little bit distracted occasionally getting sent yourself really distract you and set sort of that on there Anyways, but yes, the the folks over at ix systems were on top of it 14 days before it was in the news Because there are times when the patches weren't available. Well now the patches are available. So this was 414 and what was a date that they released this right up March 24th the write-up on it was on March 24th So by then the patch was available, but it's still pretty reasonable to get the patches rolled out compiled And have an update. So true nas is the winner in terms of getting it done fast. Well, definitely We'll definitely throw that out there which is important because if you if you there's a vulnerability You would like to know if they're done fast. You sure hope so Let's see All right bring it back over to here What else I had a couple things I wanted to bring up. So let's pull it in a title here the Hiring part I put that in there as I posted on LinkedIn and Twitter for those of you that followed me there That I don't have the exact job description down I'm so working on it, but basically I need someone to help out with some of the social media stuff DM me on Twitter hit me up on LinkedIn or I posted on Facebook as well. So I guess wherever I just want to bring it up But you know, you know, I'm easy to find on LinkedIn. I'm easy to find on Twitter. So That's a whole in case anyone is wondering about why I put that in there. I just want to bring it up I haven't figured out the full job description, but it's helping me not fully edit the videos but repurpose the videos for other social platforms and Take care of things like that. So the I you'll see what I posted on there It's mostly helping me with the social media that I manage and everything else. All right Wow it was Deprecated in 10.9 why people using it. I don't know deprecated and still being used Because people, you know, I don't think I can I can't really share this But I'll at least tell you what the ticket said. I can't I don't want to share the ticket But the ticket said hey, we're trying to get outlook installed on Windows XP I'm just like Yeah Yeah, we're trying to get the thing installed in XP. That's that's why it's still being used. So Hi from New Zealand TLS web filtering keen hear about this squid with a CN on end device But students owning their own laptops of EPN four-part three bypassing things. You got it There's not much you can do about that and this is where One of the things I wanted to do and I'm probably gonna just have to do a video on TLS And how certificates work. I'm trying to figure out where to start the video. I've been working on it Let me log in. I Hate squid by the way case anyone didn't know I've talked about it before but anyways services with proxy server and Share this screen Share screen Chrome tab. It's right one Yep So yes the TLS web filtering I love squid when it serves up as calamari. Yes So squid is a nightmare, but squid is actually what lots of companies use Even, you know tools like untangle which has good web filtering features in it. They're using squid It's pretty much what's behind the scenes. They just put a whole lot of their Special You know code around it so you don't see the raw squid interface like you do inside a PF sense But I would see the important part is that you have right here is a CA installed for the cert manager, which I've got a Squid cert installed and then you got to install that on everything else this is where people get really confused about how this works and it's just You there's not a way to do proper and good web filtering without Intercepting it to do it and installing those extra certifications. So Yeah, it's it's one of the problems where if you don't have the certificate installed And let me actually pull up the computer where we've got this set up and we're gonna join it real quick So we can show you the certificate in it Pull up my lab system here You know, I gotta figure out how to share that screen. Hmm. I think we go Stop sharing and then we actually just do a share for the whole window share screen an Entire screen screen to then we'll get the inception thing going and then we'll do this and Then we're gonna pull up Something like well we're pulling up YouTube right now Connection is secure Certificate is valid certificate path. Oh wait. This is the old one. Hold on This one should have the right certificate in it We were turning the certificates on and off so at the load different page, there we go and issued by internal CA certificate path View certificate Details. Hey, look, it's Tom's LTS certificate internal CA signed certificate This is part of the problem is you have to install certificates if you want any insight and inspection into the data This is you know, people seem to frequently get confused like oh, you could just man in the middle it type thing like no No, this is this is why what TLS literally stops you from doing It's just man in the middle in any of this so you need to install the certificates in each one I keep debating about doing a video about it. Do I know how to install the certificates? Sure, I definitely know how to do it But the question becomes is it worth doing because of all the trouble that comes with this It's a lot to manage So innocent in traffic something the user has a legal issue of privacy or other people says I did nothing. It was injected by proxy admin Not really if you are using company equipment You have at least in the US. I don't know how it works elsewhere But if you're using company equipment, there's not a the same expectation of privacy and within your equipment and I see this is where There's been attempts by governments in other countries to Require an extra certificate to be installed so they can add things they want to the trust store So it's a problem. You have to have that and that's where a lot of people go. Oh, so I just install a cert Yeah, except that also ends up breaking things so you have to also wait list a lot of things that don't get certs installed because of certificate pinning and Some devices or some sites have extra checks in there that they do not want third parties a lot of the Google stuff is like that Yeah, like some like right right here your time paid solution solves me the problematic with a raw squid many companies like I'm assuming me 48 Sophos. They rely on squid as well It's pretty much just running in the back end of all of these things here So in your country, they're allowed to do it, but they must inform the employees fair enough You know, I think I think it should never Be hidden the fact if a company is doing SSL inspection like You know when my wife worked at a big corporate company the ones you were said now even They're very clear You are being watched this everything you do on here is logged End of story. Don't do anything personal on here. It's not a personal computer It is the company's computer you are using to do company tasks If you would like to look something up, you will be letting and sharing that information with us So they're pretty clear on it Yeah I noticed in your new pss views it comes to the farewell settings. You stopped using Uh, the land that I just renamed it. It's not really stopped using it. I just renamed it If I recall correctly it was implemented somewhere in central asia countries kazakhstan and uh, yes They tried to get to where the country added a certificate. Um, yes You can arbitrarily call things anything you want in pf sense. They're just defaulted to land and wan But you can rename them however you want Very much like recording calls for companies. We're used to that this call may be recorded for Training purposes or whatever they throw in there. So yes You either have a form that you're fine with you're forbidden from using the company's resources harbor for any private use Yeah What's the best move for subverting hotel wi-fi blocking vpn my current mode access vpns are often blocked I think they block everything from uh, but 84 for three just use a vpn over for her three. Yes. That is the answer um Because companies and this is not uncommon. Here's something we i'm going to mention here inside of ps sense So if we go over to let me show that screen back again services or firewall rules Here's an example of things you have to do. This is the um This blocks qic And that's one of those things you have to do Uh is filtered for that now these I did this basic because i'm going to do a basic video on how some just so people have concepts of filtering work and some Clear up some misconceptions, but if you don't block udp on port 80 it actually bypasses squid This is the solution a lot of companies use is quick has it doesn't work well with squid So their solution is oh, we just block the qic protocol, which is 443 um and 80 But they're udp instead of tcp connections now quick is a better more enhanced protocol It's the htp 2 or whatever you want to call it. Um, you know, it's the more modern protocol to use for transferring data but It's harder to filter because it's all doing things over udp and squid doesn't have a methodology to do it So the answer to how do you stop it as you block it? And that doesn't seem like the best idea because it doesn't exist for an arbitrary reason it exists to enhance the speed of the internet and It's one of the reasons like google uses quick extensively When you're on google search or many other search sites and you're typing that ability to autocomplete that back and forth Low latency connection is all facilitated via quick with udp That's what allows you to have these really fast interactive websites With things they're all just using the the quick protocol, but full ssl inspection means we got to grab that State tcp run it through With a certificate inside a squid installed in there so we can see what's going on inside of there Which of course is more problematic. So that's Why more companies just start blocking everything matter of fact they'll block all except So they'll do inverted firewall rules at some places to keep you from getting around filters by blocking all ports except 80 and 443 and then they'll only do tcp Which is also where i'm getting at with your vpn question You may have to change which is less efficient By default and the better way to run open vpn is via tcp Or sorry via udp not tcp. So if you Are doing this, um, you actually have to set your vpn to a non-default setting on a non-default port To get around that and then if they have a better level of traffic inspection 443 tcp Doesn't always look like web traffic. So if they're actually taking the time to inspect the traffic going Hey, you're not sending normal web traffic. Um, you then have to encapsulate the vpn even more to make it look like web traffic There's actually ways to do that. Um, it's a little tricky. It's not often used very few companies not none But few will go through that level of filtering usually they're just doing basic um port blocking. So Yeah That's um, it is kind of a mess Uh What so making firewall rules on the source Field does it matter if we put the network net? It does go into the how rules work inside of pfsense read their documentation and they will tell you Um, why you want to or why you don't there's that's a write up inside of pfsense's uh documentation for firewall rules Does the announcement call maybe recorded imply bi-directional so that the call mail is allowed to record? I don't know Yeah Cincinnati, Ohio awesome With ubiquities constant supply chain problem. Do you still recommend them for someone trying to build an entire pro summary level network? Here's the problem There's there's a lot of people trying to buy sysco stuff and they're telling them no problem It'll be here in december. So It's not like there's an easy cheap alternative that you could just drop in as a replacement. Um There's a lot of people are facing supply issues. I am working on I let me show you what I have I should have had it in my reach, right? Oh, there we go I did grab and I have some other switches that I'm going to be using For some videos It's partly just to test some other equipment. Uh, because people ask questions about it, but Hey, look It's an ingenious poe with 10 gig. So Um, I'll be reviewing this so there are other switches out there. I want to talk about there's actually, um I'm gonna be talking about some used well slightly used or actually new in the box But they're not new because they they were surplus. Um In places you can find switches because this is a problem that everybody's kind of experiencing right now There's part shortages. So it's hard to recommend Also hands down You big witty makes it easier than many of these other companies I have four switches here at my at my studio Then I'm going to be doing demos on because I want to talk about VLANs on non Non-unify switches because I want to show by logging into each of these switches how the VLAN works differently between each switch Because there's no interface There's similarities, but there's not absolute consistency among interfaces And none of them do it as easy as ubiquity with the exception of trend net and their omata stuff. So Yeah So I tested squid uh websites by whole dns not proxy, of course home users the circle of 40 e-wigard Various because who owns the devices and guest network and extra steps to install ca Yeah, if in the extra steps to install ca is not Is not going to um Yeah, yeah, it's just not there It's a pain in the butt as a matter of fact if you have some devices that are you know It's it's even it's more it's not impossible, but more tedious to install it on things like your phone. So Yeah, that's You know, this is one of those things like I I'm not a big fan of having to install extra certificates in these things Um, or any of the devices if I don't have to Um, I have a whole breakdown On I have a video I did where I break down all the software used this question comes up a lot I started a video I was saying this video is not for everybody, which of course seemed to bother some people But I'm like I know it's not I have all the software we use all broken down in that video I only posted it a couple days ago Maybe a week ago is called The uh, I'll drop a link to it real quick Get share of a link Uh, there's a video and if you want to skip the video I have a forum post in the video as well. So Have I tested or used extreme network switches? No, I have not uh, nothing by extreme networks Modern action farewell can rely on fingerprinting for specific application. You can use your own bpm ports. So it might get blocked Yes, they the fingerprinting with some level of accuracy is another thing you can do this untangle for example You can have untangle Uh, it looks at the sni headers. So there are some things that can do Um with application fingerprinting and knowing the ip addresses the bigger challenge of why that's always a paid feature And people ask why doesn't pf sense just build that in because you need to have the constant and average changing updates To what the fingerprints look like to understand. Oh, it's going here or it's going there um That's yeah the way we handle web filtering and back to the thing I referenced over there in that video um Is we use a series of tools when we pull up the link itself Because this is something I did want to cover today And there's a reason I make all these videos and sometimes the video seems like lacking in context But it's because it's a reply to people who keep asking the same Invalid they're asking a question maybe the first time to the channel So I like to have those ready-made answers because the question is not just simple, um share Screen chrome tab There we go, but uh, yeah, this is a whole list in my forums Of the tools we use For doing things I haven't done a specific video on this, but this is the content filtering we do for the end point protection so Yeah, worth noting that I post all this in my forums and people can ask questions and everything else Because that's how we handle it and it's because not everybody's behind a firewall We've had a remote. We manage your remote workforces They they don't you know individuals at home. We don't sell them an x-ender firewall for every person We have a client that has I think it's 90 people working remotely and this is before pandemic They had less people before more people after because they expanded and hired their business is growing But they don't send every person with a firewall to put at their house. So Uh What about omata tp link for entry-level network? You know the problem with omata that I've heard repeated and I believe so They're not as good on updates and end of life things, but for home stuff It should be fine. Just keep an eye out for any problems that might be with there. So I don't think it's a terrible product Is it possible to use unify control locally running a remote mac or vpn remote when I log in a controller doesn't see ap status you can Configure to work over a site to site vpn that can be done Uh, the unify controller When you set up and do the adoptions you just have to have everything set up matching So it knows where the controller is so you can't just move the controller you have to Set the inform to be the ip address where the it is and that ip address can be Over a vpn so long as the devices are on a network that has access across that vpn it can be done Do that need more vandal info info between manufacturers. They're very compatible with each other. They just all do it differently That's why it's always such a pain to figure out what the nuance is for each one Hey, yeah trend net and they're near identical errors Let's see And then pf sensors are a way to block several ports of one firewall roll. Actually that's really easy to do Um, I'll show you how to do that Just set up an alias This is an alias And this is an alias. That's the need to wondering so if you go here and say aliases port So now a blocked port 80 and 4403 and then in the rules It's there and all you have to do is uh Put in where it says like web ports here. I have a video on aliases, but you do it with aliases Any good resources for learning firewall rules? It kind of depends on the firewall. So um I I don't know if I I know how to I've taught a lot of pf sense. Um, that would be my place to start Ha ha Willie how loves extreme networks What's your thoughts on it documentation systems like, uh, enable or pass portal or it glue It glue is probably the more dominant one in the market pass portal. Uh, it's pretty popular as well and then there's who do I'm not a fan of any of them. Uh, that's my that's my opinion. I don't like, uh, all My documentation locked up behind a license fee And especially I don't like it locked up behind a license fee in someone else's servers So Yeah, that's how I feel about that Uh, so after you use I notice web filter for on device filtering more information on that I We use zoros. There's a click. There's uh, I don't know what what information are you looking for? The company we use is called, um What's the link in there? So that's There this is the company we use for web filtering I'm not sure what the question is. Um Stream networks is all about licensee fee all the way to your car lights sure becomes a paperweight. They provide excellent support Yeah, that's a lot of them Could you use crowdsource? Uh, could you crowdsource the fingerprint info is like crowdsack If you could get everybody to do it you need someone to do that The problem is fingerprinting Uh, is resource intensive and how are you going to do it that's see crowdsack has a business model around it That's required a lot of funding. Um, but You you know, if you don't have a business model around it, how do you get people to do all that information? You have to have lots of people doing it and by the way crowdsacks doing it with automation You're talking about fingerprinting, which is not done with automation in the same way That's where the problem is people would have to more manually do it Which is what increases the labor cost which makes it a paid-for service Uh, have you thought about integrating sim software into your company for additional growth? um maybe I've I've thought about it Well, you've done some work with security on you and that's been kind of my go-to sim. I recommend for a lot of people That if you're looking to get started in understanding and I should say Once you go commercial I got a lot of friends that work with the commercial ones. They're all just expensive. Um, yeah uh Oh, yeah open sense does have the Zen armor plugin. I've never used it in open sense, but I've heard about it I think it's a paid plugin as well. I would recommend it on a nuke before I'd recommend it virtualized Let's see Question about duo are using an account with multiple clients uh We have a lot of the clients because we do co-managed it they own the account not me duo has an msp program though, too They have a reseller program I believe But some because we do co-managed it for some of them they people have their own accounts uh Any new guide on how to set up wire garter tailscale. I have a I don't have a site to site video I keep referring to christian mcdonald's one because I haven't had time to do my own But I have a pf sense wire guard video for Setting up remote access Your clients ask your answer ask for antivirus ends Or outside of your business I For us we use sentinel one and huntress This is what we give our clients if you're not one of our clients. You just want to know which is the best one to use use the Microsoft one it actually works pretty good Did you use links and backing your photographer days? Uh, no I was always I always did lightroom Lightroom and photoshop when I was doing photography Do you use 802 and certificate authorization? If yes, uh, which is to use how to unify handles it We don't have it set up in my office. We've set it up for people Um So I don't have it set up in my office We've got it set. I forgot. I mean, I think we all integrated it with her um My steve one of my techs. He does it. He's done it for a few people. I don't remember exactly how he did it Um, have I ever tried snipe it for documentation snipe it is more about inventory. I don't really think it does Uh the documentation Let me pull it up so people know what i'm talking about Because This is open source asset management. So I don't know how well it works for documentation. I'm not I know about it But I haven't used it um features mobile friendly One click google api admin asset management license management email notifications But it's an asset manager. It's cool, but I don't need an asset manager. So Do you have any further details on the lack of zfs support in a bunch too? Nope I have no I have no details on that Smash the like button. We'll go with that. How many people like it? 113 Always have more Wire recurrent comes easy when you look at uh a loud ip's kind of like routing table entry Well, yeah, and they are because wire guard has to have its own routing table to get things back and forth I want to create a wireless vlan and pf sense if I have an extra nick for that network You can That is possible Who do is an option? um Who do is the same problem though? They have a license Fee recurring on it. You don't own the software. You get to host it though Who do at least allows you to host it? Um, but they have a license fee granted their license fee is a whole lot less than the other companies But I always look at any company. It does that it's referred to as the land grab you you get some funding You build a product you make it cheaper than everybody else's product you sell to a vc Then you raise the prices. That's how the vc gets all their money back out of it I I and there's nothing about them that makes me think they are gonna do it and there's nothing about them That makes me think they're not going to do it. I don't have any evidence other than That's what most companies do in the modern age They do the land grab do it cheap get a get a big user base get lots of people using it And then they dial up the fees and they're like, oh man, you know, this uh, this vc that loaned us the money They turns out they want some of it back at a higher return My next pressure we set up a wire guard On a pie to pull back up to our main server Uh, so figure out how to set it up to be an independent of the local network it will be in So yep I use unify for my installs no stock with water solution. We recommend hotel wi-fi that is solid Boy when it comes to that I have no recommendations because Um, all the big manufacturers if I even suggested something like sysco, which is obviously substantially more expensive Cisco is so many months out. We've actually had better luck getting unify equipment than we could getting some of the other equipment um, because There is little as unify is available. There's still more um There's even longer wait times on some of the other commercial equipment So yeah, there's nothing easy about that Going with fiber in my homeland for 10 gig backbone mostly because it allows me to have Fanless sfp plus switch. Um, I wouldn't go fiber. I would go DAC Just get a DAC cable. I have a video I have Um, a video where I explain fiber and DAC and they're the same transfer speed But DAC actually is even slightly lower power than fiber And uh, it's less expensive too so Yeah, what about using a wiki for it documentation? Lots of people do it So that's definitely a um, you know popular solution This is one of the other ones. Let me pull it up I'm looking at different wikis Because we want to build out a new documentation platform And let me see if I can share this one So we'll do to do cool All right, I can share this page We just got a switch quoted be shipped in 400 days. That sounds right Thoughts on you if I dream about it is out of early access I think it's going to have the same shortcomings that every unify has That's my thought until unify gets better software They can release all the new hardware they want until they fix their software shortcomings It doesn't change anything That's why people like oh town. There's a new device. Can you review it? Maybe but it doesn't change the fact that the software Still has the same shortcomings because people seem to think when unify releases a new device Maybe that one will have the wire guard vpn or the open vpn that they're looking for and i'm like no no no You could actually Get those features in the current devices if unify updates the software to support it Unify and I have I've only looked at a little bit. Unify is looking at the um uid platform Where you have unify controlling identity management for some of their vpn stuff I'm not real. I'm slowly looking at it, but I don't know that I trust having a cloud portal for identity management It doesn't I don't know I'm not big on it Hi tom from calgary. Do you have any tips for used intel quad port nix that aren't counterfeit? I want to get one, but i'm so scared picking up a new psn spot. That is a fake I don't have any tips on that There's people who have the intel stickers on there, but I don't know how to tell Look at the reviews from the buyer. That's my guess Yeah, the trick to getting them is uh watching the store like that. Yes Uh, have you considered cleaning up a youtube channel? I set up psn strutter and found your videos when I when I search your channel I found updated videos. Can you delete the outdated ones? I have debated About that. I don't know because Like I might go back and say there's new new version of this video available But I to me it seems obvious if you're watching a version 2.4 video That you would check the channel because this is what I do uh to see if they have a version 2.6 current release video Uh, maybe I'll update the tags But part of the other reason sometimes people like those videos because they still get engagement They still help dramatically with my seo and three sometimes people want to reference an old thing So they understand because they're stuck in some old version of psn They want to reference how to do something so if I take those videos down I'm hurting my seo and I'm people lose that reference of what something looked like in that particular video Also, sometimes my older videos Um, I don't have a newer version of it and with psn. So even if you looked at a version 2.4 video Much of the stuff is the same even though the menus look different. You could figure out. Oh I can go through and watch this video and apply it to uh current things. So I don't know Docky winky works surprisingly well, but yeah too lazy for all that Unified disappointment router. Yeah, I've said that before Started as a homelab enthusiast with ms technet back in 2014. No it education just got hired In a three-line position you've been one of my inspiration awesome. Congratulations on all that that is great A lot of people see and getting their career going Do you know when you get software to largely use one keyboard and mouse on multiple systems on the network? Eight computers one deck. Yes. Uh, I actually use a tool called barrier for that So I will also drop a link for you here and pull it up. Um on youtube I'll give a shout out to my friend Veronica Here we go, we're going to Share a fun video that I'm gonna drop a link in for barrier is the tool There's a link. I just dropped in here of Veronica explains did a video on barrier. So and it's accurate Uh, I watched it And barrier works great for exactly what you want to do Serve the home has some good tips on finding good intel i350s. Yeah, serve the home is a good resource for a lot of things on there It would be a nightmare for the uid platform to get compromised like you have to share with their employee who had full access And created all the drama. Yeah I I just don't like a lot of third-party auth stuff I'm I'm not a huge fan of it all the time It's already done because it has to be for reasons like with google or azure Or and I know someone's gonna lose it But octa is still a popular solution Those are pretty big companies handling it with a lot of expertise Unifies a company that doesn't do good technical support but wants to handle identity management They have to have a better technical support contract Or reputation I should say in order to let me think they're better at You know a lot of that Is it possible to have multiple tcp ud ports in the same rule? At least he's only important numbers, but not protocols. Yeah, you can you can have a rule be tcp and udp simultaneously Put them in the old playlist. Look, this is what that thing I mentioned at the very beginning I could hire someone that could just clean up my channel because it takes a lot of time to do so That's something like I said, I'm kind of looking at I I do all the Editing I do all the production. I do all the well. I'm the person in the videos that part's obvious I'm the one creating all the content And I haven't found anyone my staff are all technical people not creatives. So they don't Deal with any of this So, um, yeah, I need to hire more people to to curate that because I've got 1500 videos on my channel And I've reduced it I have taken videos that are not relevant anymore and removed them because I know they're inaccurate because The product has changed so much and I have a newer video So there's times I've done it because or especially if the company goes out of business or the product goes out of business type thing I may remove those if they're not relevant anymore and they're not helpful And I'm positive I didn't get them all there's always more things related to that Uh, trying out zero to your any real concerns that something could pivot from the virtual adapter to the local network adapter Of course it can if something is talking to the adapters on your computer They have access to talk the adapters on your computer Um, you make sure you manage the control plane and also IP should not be the authentication model IP is a transport. So you're uh, have your IP and zero tier talking But it shouldn't be how things are authenticated So it shouldn't really Perform be too much for risk But there is some level of risk that yes if you have a bad node Within the nodes you have running zero tier or any of these overlay type networks And you have combine that with a vulnerability on your system that can be exploited There's a risk Don't delete yourself your specific enough a version to keep it straight From a standard ps s 2.5 the committee difficulty. I don't have any problem in upgrading I've upgraded a lot of them. We had a couple 3100s that are that gave us some trouble during the upgrade But most systems upgraded from 2.5 to 2.65 My biggest beef to unify is ui8. Uh, can't do exclude rules in the firewall Oh, yeah That's not my biggest beef, but that can just be added onto the pile No way I would trust the uid platform Can't wait to see the qc unify Uh ev charger. Oh, yeah, that's right. They did that They'd be good incentive to ask your kids to organize your playlist for you. They can earn money for that My kids do not have an interest in it. Nor would they be good stewards of it. They are not technical My daughter's working medical They're also busy working in medical Do a video on dos 6.2. I probably could I you know, we'll do a dos 6.2 review Just get your mac mini And a 10 gig want people to remotely gain experience with mac You know full-time linsure. Yeah mac is interesting And I think you have a really good point there, uh, Grayson As much as you don't want to put Linux ashamed accessibility as far superior on mac when it comes to visual impairment Yes, they I think their ui designers have taken probably more time and consideration for that aspect of it I get using tcpdp however when using important aliases you're you're allowing all All the ports and aliases for both protocols which might Allow for a company you don't want I don't understand what rule you're trying to create that that wouldn't solve so um, any thoughts on sofas xg versus pf sense i prefer pf sense and don't have a reason to use sofas xg so But sofas xg is also a proprietary firewall not an open source one And they give you a home license now. Here's the fun thing Home licenses that companies offer for free like untangle that might decide they don't want to do that no more when a company buys them Or today has changed their mind. That's an interesting aspect. We're we're Down one more firewall in terms of free. We still use untangle ourselves. We're still selling it for businesses We're still an untangled partner But that being said untangle has decided to not just offer the free download like they used to you have to do Registrations now and uh things like that they they're pretty much dropping the free version is what they did This is always what worries about some of these other companies it's it's uh Refer back to 15 minutes ago me talking about hoodoo. What did who what's hoodoo doing? They're a documentation platform that's well underpriced of the competitors. What does that mean? They're going to grab market share from their competitors who have substantially higher prices And then maybe raise the prices. I don't know that they are i'm being speculative Untangle got bought by a very large company untangles very popular untangle had a free platform Uh that they removed when the big company bought them that happens. So yeah Think your daughter will start to get into medical not tech much less Uh changing stuff. Yeah the appendixes are still the appendixes and lungs are still lungs. So You convinced me with the untangle analogy. Yeah, and that's the thing. I mean, I I don't really know what happened Uh Did they stop doing updates for all the free people? I don't really know. I haven't really dug into it I just know when you go to their website and try to download the free untangle. It's not there anymore Um, they still offer a paid home user license So, you know, it makes sense Oh, and this is another good example. Just like google dropping the free g-suite plan you signed up for. Yeah I mean google can absolutely afford to keep giving people the free g-suite. Why did they stop? What is the You know, uh, it's just one of those things My biggest disappointment regarding udm was a lot of revealing routing by default instead of blocking ah This is interesting. So when you create networks on there, unless the get unless the networks are guest networks You have to put deny rules in because it default allows. So yes, there is definitely Um That's why I don't consider it. I mean any firewall company that does it in that methodology It's not really something for the enterprise. I don't know. That's how I feel Oh, yeah, maybe another example is uh red hat plus ibm minus see it's minus sento s8 because that's where that went Uh, not wrong Well, there's one thing. Yes printers will always be evil. I You know, the the printers being awful are what is going to actually bring us to a world with less printers. Um Yeah, oh, yes, google reader Here will this if you're gonna have fun with a company I mean, you just got to head on over to the killed by google.com Ha ha ha All the things that google killed So many things in the graveyard Yeah, this was interesting. I used to be able to message people on youtube. Um, that went away I forgot about that Yeah, that's that's a list ain't it? Look at that. Wow YouTube streams. Yeah This is a cool one too. This was they were doing this before it was cool when they had youtube streams I don't know if anyone remembers that but it was a cool feature It's gone Ah, yes You know google is a uh What would you call them? They're they're literally like an engine That only gets things that bubble up with the absolute most popularity with no concern to the actual number That it may be a lot of people using it. So Yeah, it's weird Got caught in g-suite now Do not move your mailboxes to go daddy if you can do something else other than go daddy You're better off go daddy is an awful company to have mailboxes at I literally swam my own custom name with google spam filtering with their bundling team video conferencing g drive Yeah It's not cheap How would you make a rule Allowing tcp 3389 636 and 123 in the same rule you would Not you would make one for the tcp 389 and 636 and another one for the udp Because those are different because those are separate rules at that point. So you could create an alias for 389 and 636 So that's a two rule Request Microsoft also increased their prices for m 365 sure did They sure did I hate printers We're just gonna throw that comment up there for a minute because we all agree we can all disagree. We hate printers Why buy a cloud product? Yeah uh So just me the unify dream machine wi-fi super random I wi-fi is random. I don't rely on wi-fi for that reason So so so stuff of the wall and see what sticks well They look at feedback based on large numbers if the numbers are large enough. They keep doing it Um, they're they're an engine for that Thanks to you. I started using pf sense. I've learned a lot awesome. I'm happy to help What is your net? What is your take on next cloud? Talk versus matrix and fee versus team versus slack Um, we're using the google chat ourselves. I also use slack a lot with communicating with a lot of other businesses Um, I think it's cool that next cloud and all those companies are offering it I don't run it though for interoperability reasons. It's it's the Challenge of switching now granted there are plugins that allow better interoperability and I'm looking I thought about doing this because there's actually a way I don't remember the name of the project now There's a project that lets you Bring all of your chat to one place So everyone else can use all the different things they use but you can communicate in one way But that then always breaks any type of image sharing. It's really only good for text It's we need better interoperability between them would be the ideal thing, but we're not there Yes, I always like that. I seen that tweet rage against machine They never specify what kind of machine still angry about what we can assume it was a printer. Absolutely Eyes are building to split your website. Why not dark thing? I don't know We'll turn that off When he can learn ipv6 ipv4 is running out soon I'm not worried about it There's the uh What was that? I don't want to get taken down, but I'll give you guys a link to it So we will share this. I don't know if there's a copyright on it But for those of you that have heard it, I put I post this every now and then this is such a great um Song someone wrote what when the rougers died when we ran out of ipv4. It's a parody song. I throw it in there Yeah, ipv4 is gonna run out soon. Everyone keeps telling me that I keep laughing Look, there's a reason we keep inventing new ways to work around the fact that ip there's not enough ip addresses That's not news That's not news Um, let's see What else do we have in here? Um, it's not pigden. There's actually a whole server you can run that does interconnectivity between Discord slack and a bunch of other things. It's kind of clever. I can't remember the name of the project Um, they're using it over at msp geek Um to connect so you can have your chat in different Channels at the same time because they're trying to migrate to discord from slack and they built it It's a bridging software essentially that can bridge but can also consolidate some of your chat stuff I know pigden was one of them that lets you do that too from an individual basis Yes, we have double triple nat everything like cgnat. So That's for sure Yes, we ran out a long time ago. It's really not new Do you think when public goes ipv? I don't think the public's gonna go ipv6 I think there will be a different way we communicate like tcp ip I almost feel will become obsolete prior to you switching to ipv6. Maybe i'm wrong, but I'm not concerned about it. Well actually most of the um Uh phone stuff here. So like you said the 4g in france's ipv6 a lot of the phone stuff here The phones themselves are ipv6, but then they use an ipv4 for converter in case they talk to a website. That's not so Yes to let I'm actually thinking quantum entanglement is how we'll replace things We're gonna actually get that figured out. So we're gonna do some uh quantum entanglement systems to where they can all um talk to each other without wires and wireless and We'll just quantum entangle two systems when we need data in two places and communication occur Yeah, they all no one wants to deal with it You wouldn't happen to be thinking of godify. Maybe I'd have to look it up Net has become some sort of security to some extent. Yeah Zapier has a way to do it too. Um, there's actually a project where you run it on a server to connect all these together So someone said it was godify I'll google it real quick That's just a push notification service. So that's not it But There's ways to bridge these things together to get things talking, but yeah Yeah, quantum entanglement troubleshooting. Can you can you turn it on then on again turn it off then on again? Yes, it's both Is it in uh, is it in an observed or unobserved state? That's what we need to know. Are you observing it right now? Turn your head away Yeah troubleshooting quantum entanglement that would be That's a great. That's that should be uh That's going to be a talk at some point in time I don't use the cloudflare proxy And here's my thing about any of those type of things the uh, any time a proxy is somewhat proprietary I just go away from it. I or any service. It doesn't have to be a proxy any service That has a proprietary level tied to one company. I'm less interested in that particular project. Um So it's not that I don't use certain projects like that So I've not really taken the time to look at it and it's some people seem to like it I don't really have an opinion on it But I don't like because once you have something tied to a specific company and only they support it If they change your minds about supporting it, then it just goes away and breaks everything you built Um, it's the same reason we had this discussion about development When over over the weekend I was at a conference And we you know, we had this whole big discussion about development standards and not building something that isn't cloud Agnostic so many people take the time to build these applications and then take the resources that are offered by the cloud provider Whether that's aws, whether it's azure, whether it's google and they integrate proprietaryness into it So they end up with a dependency on that cloud provider and then an inability to switch later If something changes, so I'm always try to do everything as much as possible standard space. Um, so that's my It's the cloud player problem like it I don't know enough about it to note But as far as I can tell it's something proprietary to cloud player not that it's not a good product But it's I don't want to be tied to an individual company But if you don't have another solution and ask the solution that works for you and It works great, you know, it works until it doesn't Well car sand v specifying full of quite an asserts. What are you for? um Why not wild card it? I don't know. Do you need a cert with your uh sand? I guess it depends. That's a I that needs a lot more context to answer You can bridge services with matrix probably a pain to set up though. Yeah, there's probably something like that Oh schrodinger support the unobserved support. Yes Do we switch clients the pf sense as part of onboarding? No, we don't Have you thought about doing a video uh iphone android as a backup wan for pf sense? Nope never thought about it I don't really have a use case for that I don't know how possible it is. Um I don't know if there's a easy way to do that at all I mean buying a wi-fi hotspot would be the better way to do it that has a network adapter on it That makes more sense and that's just plug it into a wan and it works If you've seen talking about the possible speed limitations in tcpip Uh, I don't know what you're talking about So I don't think that's where our speed limitations are. I mean there are always speed limitations for certain things But i'm not sure exactly I don't understand your question. Um, we have 100 gig tcp So we have, you know, the internet has large pipes that are able to move it and they move it using that protocol So i'm not exactly sure what your where your question is Synology warns of net atalk bugs and multiple products No, don't become q-nap. They already are better than q-nap because they have patches rolling out q-nap does not um I talked about this earlier on the show, but yes, we already we're aware. I tweeted it I synology is rolling out updates. They've already got it updated in our 7.1 dsm So it they're coming out with updates versus q-nap may eventually. I don't know and chance. They already had the update a few weeks ago so we have um Definitely A problem there, but it's also in the apple net atalk. I hope people are I know people are using it But I hope people aren't using it, but I always say that Why is two and a half gig all the rage? I want five gig in my cat five house. We can't find any switches Uh, that support for this one. Okay. I I don't get excited about it at all People seem to be excited about it. I'm not particularly excited about it. I like 10 gig You can do 10 gig pretty cheap now But two and a half gig works over the distances people want and the chips are inexpensive enough This switch right here that i'll be reviewing is a two and a half gig and 10 gig switch So it's got some two and a half gig ports, but yeah the five gig ones At some point just go 10 gig the 10 in 10 gig with sfp for home lab is cheaper generally Just bought a new Verizon hotspot and has an ethernet port. Yeah, that's the solution that works Like if you you just get a hotspot with an ethernet port and you plug it into pf sense There's nothing special you have to do now a lot of those are going to be like cg-natted But you're looking for backup internet. So You want the internet to work? There's a solution to get it working. Oh, no, it's worth mentioning again I don't think it's not a big not a big deal as you brought that up with the q-nap Because there's probably a different group of people that are here now And there's certainly more people here now than when I first started the stream. So You want to go 10 gig everywhere, but might as well go 40 gig for the backbone Yeah, the the 40 gig stuff and the 25 gig stuff is all the prices that are becoming more reasonable on it My long company cuts your cable internet has a usp drive. Yeah, there's ways to do it. I just I don't know We outsource the pen testing We have third parties we work with if they if people need pen testing People always ask for pen testing. Then they go, oh, that's expensive and don't always get it. So it starts out as oh Yeah, we're gonna go do all this they go. Oh, wow a real good pen tester costs a lot of money, huh? Uh, have you checked out frigate nvrs? They have enough hardware looking to set up a security system Nope Never use them. We use a lot of synology I would go 10 gig, but I want to rewires cat 7 You would be shocked how good 10 gig works over cat 5 not a guarantee it works But you'd be shocked at how often it works. I've talked in my video about out of spec cabling Just how good that works. So that's something worth noting. You don't always have to re-cable if it's a home lab It's not going to pass certification. I'm not saying do this in a business But for people with home labs that want 10 gig Try plugging a cat 5 cable in if you have a short distance. You'll probably find it works um, so yeah Did you see the article about nat slits streaming according? That's an old article. That's uh, Unless unless there's something new. I think it was like over a year ago. I've talked about that um Wi-Fi 6c aruba. I don't care about the wi-fi reviews people like them I've thought about doing them because it gets views, but it's so lame because You know the the speeds are so inconsistent across devices There's not like this perfect consistency unless you take the time to put things in a faraday cage But then you're also not representing real world usage in a faraday cage because most people don't have their stuff is uh In a faraday cage How much does a day to reach cost? That depends if you're if you're some of those clients that are in non-compliance industries It costs them nothing because they don't tell anyone non-compliance industries like manufacturing They don't care They're not there's nothing to force them when they do it We've known people that have it, but if they're not if they don't lose Real client data privacy stuff. There's not a lot of incentive. They have to do anything about it Uh, yes, I updated one computer so far to the new pop o s. It works great Uh, the problem with Frigga is that it depends on google corral. Oh Okay, so it's the same old slip streaming thing. Yeah Will it blend 75 foot run cat 5e? Maybe It's that's a maybe it might be able to do cat 5 e 75 feet Might work for it's it's iffy at that at that distance I mean, but try it worst case says you plug it in it doesn't work and then you upgrade it Just because spec says it can't do it doesn't mean it won't work I go by the book was for a customer for myself out of spec for all sorts of stuff exactly Not to mention if you're using sata drives, you'll bottleneck the drive before you use all the 10 gig network. That's true, too Yep Wish me luck. Uh, one of my drives in a raze one failed who Yeah, you don't have a proper backup. So It's a it's a careful resilvering Hopefully your resilvering goes well and there's no more losses Uh, would you recommend instead of a fluke cable analyzer even used ones? Uh fluke makes fluke is pretty much if you're gonna do um certification cables fluke is pretty much the big boys out there So probably the fluke I don't really I don't use cable certifiers. So I don't know I don't know all the brands to recommend them Switch to unify ap's roaming devices speaking here since I helped some makes it worse for devices Uh, yeah How to trace understand void traffic. I have a wire shark video on how to reassemble a void traffic. Um So hopefully that just look at my channel for VoIP and wire shark and I got a video where I show how to reassemble a call How's your car? I had to reboot my tesla two months ago Uh, so far It seems fine I haven't had any reboots lately. Did I do anything recently? Probably not Oh Here there's uh There's my tesla next to I uh, I was at a car show over the weekend or last weekend, but uh, that's the new hummer So that's the new hummer ev but that's the tesla. I did I didn't have it had to reboot my tesla a little while So that's good Uh, managed two and a half gig switches um Unify But I am reviewing this is wait. I don't yeah, I think this one's managed. This is an ingenious one I haven't reviewed it yet, but this is uh Ingenious Layer two managed poe plus switch. I don't even know the price on it I I have it to review and I haven't had a chance to review it yet Just by the background, you know, I was in Ann Arbor. Yep That place has got some good food too. That's the uh, Zimmerman's roadhouse. Um, they got good barbecue I've had a client last week a logical rate five air luckily c drive Uh, which is easy to back up had to replace four of the six drive. No divas lost awesome I've seen it a few times, uh, once Ikea once chasher and once on a four Oh, you tell about my car Yeah Yeah, my car is not hard to miss so There's I don't know a lot of people who have a Tesla with that color on it. So definitely, um Stands out a bit Oh the Hummer, okay. Yeah, the Hummer's pretty cool So the Hummer's out silver like dunes, uh, sand dunes last last year before they unveiled. Yeah, they're pretty cool The Hummer does look nice. The Hummer's expensive though. So that's a It's a pretty pricy vehicle But it's cool looking It's 9 000 pounds of vehicle there, man 9 000 pounds So yeah, they're they're big. Oh, let's see Yes wire shark has some built-in, um Uh Voigt filters Travis will stick with the truck 125 for the launch ones, right? I don't remember the pricing on it, but something like that. They're I know they're going to be 125 plus. They're going to be expensive Thank you very much for the donation. It is greatly appreciated. So awesome. Yeah, you didn't have any other comments they had So I'll just say thank you Thank you for all the work you do and help educate us all I am fun doing it. It's uh You know, I actually have a lot of fun because it forces me sometimes to understand things better When you have to take the time to teach them. So it's kind of a two-way street I actually learn a lot when I'm doing these videos and putting them all together And then the feedback I get from people for concepts that they Also need help with so Hey, congratulations for starting your own it company over in Germany. That is awesome So that's uh Definitely a challenge starting it up. I don't know what challenges you face in Germany starting it up But hopefully it all goes very well for you Many times you start a business just a lot of risk and a lot of challenges for it. So Did you say you were coming to chicago next week for uh, yes, I am I will be in chicago next week So for those of you looking for me in chicago, I was kind of surprised. I mean not that it's more niche I was at penguin con over the weekend So, um, I didn't see maybe just a couple people that knew me That were there, but then in I will be in chicago, uh at the msp it event. So My thoughts on zavix versus other software. I like zavix The proof is I use it. Um, I haven't really tested every one of them out there And once you get one setup that you like and it works, you just keep using it We use zavix to monitor our internal infrastructure. It works well I I've I've actually watched it survive upgrades over the years too. So As a curious kid, I took things apart. I did that as well and to figure out how they work As an adult to you watch wire shark. Yes taking apart tcp streams When will I come to europe? I don't know that's not On my priority list right now. Um, I don't have anything against it. I just don't have I actually don't have a passport So I am not authorized to leave my country because I've never bothered getting a passport I've never left the country either. Well, I take that back. I have gone to canada But that doesn't really feel like leaving the country Um, as a matter of fact because I don't now they require The special license to go to canada. I don't have that anymore. So Um, I let it lapse. I need to get if I want to I don't know I don't travel much. Um How's that I travel virtually Never use no west monitoring Uh, probably all of us took apart stuff. See how it worked when we were kids I yeah, that's the nature of technical people right we all we took everything apart Take it all apart I need to see the world. Yeah, I think so. It seems like I should I don't know maybe one day. I don't have a burning desire to do it That's part of it too. Like I have the means to travel. I just don't all the time. So It's pretty easy to do I had to do it when I moved from BA My wife has a passport because she likes to travel more so than me I used to stick stuff and yell out love for kicks. Um Well, when will you retire? I have no No idea. Uh, I have no intention right now retiring. So I don't have that answer I could not concisely answer the retirement question at all Great way to see the world is watching trinket. Man, there's a there's a lot of those strangers those people Um, the ones in tokyo a popular where people just wander around tokyo with a camera on their head I'll like that looks cool. I've now seen tokyo Yeah, I don't think I'd go to uh the uk for the food But I'd I'd go for the castles the castles are cool Um, I you know, I I do like some of the cool Uh old country castles and things like that. You know, there's an appeal of that Yeah, I don't that's mostly why I don't retire Do I want to buy twitter? I think the guy that bought it, um, I don't know if he's going to put it up for sale Or not at a price I can afford We'll we'll have to see You know if a deal if uh, elon offers me twitter for a good deal I guess but I don't know that I want the headache of it. So You just have a lot of angry people on there a lot of bots. So that's and and there's twitter For twitter's a dumpster fire now And I don't have the best hope that elon will make it any more or less of a dumpster fire. So I have no faith that it's going to get better Hopefully it doesn't get worse. That's all the best is we hope it doesn't get worse I was happy as to receive open sense but couldn't get the two and a half gig nick drivers working So something not everybody realizes is the two and a half gig network network drivers were written by neck gate they do the BST contribution to the intel drivers because intel doesn't care about bst So, um, just use pf sense who did take the time to put the drivers together That's my recommendation Well, let's see no desire to travel but I do enjoy doing it with family I want to I like to go meet people. Um, that is something I do enjoy I used to take some parts of kid to see uh, see a psychologist as well. Yeah Uh, are blade enclosures worth it if you need super high-density? Sure. That's why they make them How long until elon integrates into the tesla ui? I am not going to hold my breath on such things that thinking that they will ever happen um I just don't really see That as a thing Let me pull this up. There we go although I do like that Is that the new logo? That's what we want to know Hey town welcome to okay. I can even hook you up with a motorbike tour now. That would be cool I would I'm a big motorcycle person. So, um yes that's uh People like the logo. I do like motorcycles. So I'm I'm all for that. I have sinking in my chair I should probably sit up a little bit. I'm like I'm like disappearing off the screen as I squat down here Uh, what's the best way to nightly back up to our tune ass off site site site VPN? Yes, put a site to site VPN and use your application so Yeah, I like that I don't know that was my so far. That's my that's the one good thing that's come out if uh of that is the um What do you call it the uh Twitter purchase is that so Yeah Turn the tesla cars into twitter bots. We'll go with that Uh, but should I deal with the customer we brought over from pre fair lost all the asian passers No v center managing them fun stuff. Yeah Do I like rain funny you should ask Yes, apparently I do I got caught in a storm the other day So I was like, hey, I take this picture of this storm rolling in really fast And uh, yeah, there's me on the bike. I was like, yep I was like, this is the picture before this is the last dry picture of tom before that rain clouds came in So, yeah I'm used to sometimes you get caught in the rain Uh, do you track all hours or just billable hours for your staff? Um, just billable really? I don't track every minute of their day. I don't make them log what they're doing That would be a bit too tedious for me. I'm going to give you guys about five more minutes. Um There is an awesome amount of conversation going on here that you by the way can continue in the forums Uh, but let's see What else do we have in here? Do do do do There's nothing like it's an awkward feeling if you're sitting on a motorcycle in the rain It's just this awkwardness of I'm here you got people in the car going that guy's all wet They always pointed you like oh like they feel bad for you when you're in a motorcycle in the rain You're like I'm I can't do anything about this. I'm I am in this situation right now. This is this is me soaking wet Um, yeah, I actually applied it. Uh, I gotta go change the oil in my Oh, what about pizza today? Yeah No pizza today I dislike micromanagers. Um, you know, this is something that's Really, I'm not I'm the anti micromanager if a employee requires too much management There's someone I probably can't keep at my office Because I only care about results getting done And I only have to dig into what they did instead when they're not doing things So, um, I generally have to have people who are very Motivated to an extent to an orient themselves to a task a little bit better because I don't want to micromanage anyone It's not my thing. So To shift the topic, let's talk about true nas. I would not stop talking about true nas Does ecc memory brings something to true nas? It brings error correction. Um, but it's it's like anything It's better to have error correction and not to have but you're not that much more at risk of data. So Do you remember when you talked about hiring stuff in the stream? Yeah, in the first 10 minutes Oh, yes, let us worship zfs Zfs is a cult with integrity So I'm all for zfs worship Uh Wouldn't be opposed to muslim ms. Russia twitter and brace extend extinguish He might through his own, uh actions goof it up to the point where it implodes. I don't know Ha ha ha great shantan true nas question. If a secondary service replication of prime server is back place the best use in a primary. Yes um We the um ideal situation is you have your primary server One copy goes up to this cloud to the sky that is back blaze or wherever Back up you choose the other one can be replicated to another off-site server or even on-site server We replicate to on-site servers and then we replicate to back place Well, they're stacked. They're actually they're happening simultaneously. We see their staggered. We kick off all those processes at night Um, they run coinciding with each other, which is fine because well one's moving data locally So it's lateral movement not taking up the internet pipe. Um, so yeah, but you don't want to I mean you can Replicate to another server and have that server do it if that's if that strategy is what you want But you got to remember the snapshots are what's being sent not the live data when you Run the back blaze it's grabbing the data as it sees it when it starts the process So you have to think about timing on that. So if I replicate my data Then do it the data is now older that you're getting from the other one versus newer depending on the time you run it So think about that from a concept when you do in the backups Twitter is purging the bots. Yeah They're always trying to purge the bots. It's actually really really hard to do so The concept sure purge them reality Wasn't in the case nice for one gig interconnection without ids or bpn I think the 40 100 now is the base 2100 should do it, but the 2100 is going to be just under one gig. I think um Maybe maybe the 2100 can do it if not You're going to have to go 40 100 Musk once and then encrypted twitter dm just like signal You signal he uses signal he's tweeted about it That's so I did I've done a series of videos on signal Then elan must tweets about signal the comments on the video Hey, this guy must be real because he pushed his video out before elan must tweeted about it There was a lot of those comments on there elan sent me Shit that was funny Thank you tom really kind of you got the two servers on one site Built in several buildings very good point about the size duration of data. Yeah Just kind of strategies you think about on there um for doing it Tom what told you most a three two one or For what exactly I need some more context for that question But ask it in my forums because I'm going to wander off. I have a couple things I got to go do None of them repeats. I've actually got to change the oil on one of my motorcycles So that's my exciting non-technical project that I'll I'll be working on next Because uh, I mean some friends are going off-roading this weekend So I figured hey, why not change the oil into motorcycles? So no one wants to hear me talk about motorcycles on this channel Um, and I don't plan on starting a motorcycle channel I don't have time for that because that's that that's been asked a couple times about starting like non tech related channels But I'm pretty boring and don't have a don't really narrate on that so all right, so everyone Uh have a wonderful day have a wonderful Thursday and for those of you that are in the other time zones, it'll be Friday morning for you now I think I think that's where it is in Europe. I don't remember the time zone split is but Stay safe be happy and uh, hit me up in the forums if you have more detailed Answers you're looking for and more detailed questions to ask We want more hot sauces um Oh, I still have I'll I'll mention to chris. Yes. I'm still happy with sink thing so um So happy that I've tested really pleased with with reliability, but sure the plug and downloaded I don't know Yeah, so okay, so it's almost so 20 to 22 32. It's almost friday almost friday for you guys awesome So Thanks to everyone for came and enjoying it. Thanks for everyone smashing like button and I'll see you um Well, I got videos I'm posting between now and thursday if not those of you that joined the live stream I'll chat with you on thursday. Thanks