Re: [AFMUG] Sms alerting

[Jesse Dupont (Celerity Networks)]

We send all our alarms to a Slack channel via Webpush and get notified about 
them in the Slack app on our phones.

We use Uptime Robot to be notified about things from outside the network, via 
the Uptime Robot app.

Jesse DuPont, General Manager
Celerity Internet
Wisp West

> On Jun 13, 2024, at 11:45 AM, Matt  wrote:
> 
> Has anyone found an alternative to texting for alarm notifications?
> Something like a cross platform app that has an API to send messages
> to?
> 
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Wood Pole Mount

[Jesse DuPont]

  
  
The Commscope DB365W is an effective mount. If
  the wood pole was originally for electric usage, it may already be
  drilled for cross arm and braces and this goes into those nicely!

On 2/20/24 11:19 AM, Chuck McCown via
  AF wrote:


  
  

  I sold off all my tower mount business to a local
fabricator.  Not sure if he is doing the chain mount or
not.  
   
  Hunter Clark  hun...@c3fab.com
   
  Best
Regards,
Chuck McCown

McCown Technology Corporation 
8401 N Commerce Dr
Lake Point, Utah 84074
801-250-9503 Office
435-830-4306 Cell
www.mccowntech.com
www.microtrench.pro
www.terabitnetworks.com
  

   
  
From: Jeff
Broadwick - Lists 
Sent: Tuesday, February 20, 2024 11:10 AM
To: AnimalFarm Microwave Users
Group 
Subject: Re: [AFMUG] Wood Pole Mount
  

 
  
  Chain
mount.  Chuck has them as does PV and CommScope.

   
  Regards,
   
  Jeff 
   
  Jeff Broadwick
  CTIconnect
312-205-2519 Office
574-220-7826 Cell
jbroadw...@cticonnect.com
  


  On Feb 20, 2024, at 1:06 PM, Ken
Hohhof  wrote:

  


  



  I
  think I’ve got some of the Valmont ones on the
  shelf.  Like everything from SitePro1, they are
  huskier than they look in the catalog.
   
  

  From: AF
 On Behalf Of
dmmoff...@gmail.com
Sent: Tuesday, February 20, 2024 11:40 AM
To: 'AnimalFarm Microwave Users Group'

Subject: Re: [AFMUG] Wood Pole Mount

  
   
  +1 to both of those suggestions.
  
I’ve
  seen plenty of universal mounts attached to a
  wooden pole (J-arms, J-pipes, or whatever you want
  to call them). 
Rohn
  WM4 is the name brand galvanized 4” wall mount,
  but there are a thousand copies out there.  Just
  watch out for zinc plating or other BS finishes. 
  I’m sure Channel Master is fine.
  
   
  One other thing, you’re not
supposed to drill into the top surface of a wooden
pole because rain will pool in the holes and speed
up rotting.  You’re also not supposed to drill the
sides within so many inches of the top (4” maybe? I
don’t recall).  That’s why those pole-top mounts you
see are straddling the top and have bolt holes
farther down.  If you put a galvanized pipe into one
of those wall mounts then you can have your mast
above the top and also not be putting hardware at
the top.  Electric/phone companies won’t like that
solution because it uses more vertical real estate,
but if it’s just a light pole then it ought not be a
problem.
   
  If you do want something heavy
duty that won’t break the bank then look at the Site
Pro version of the WM4:
  https://www.sitepro1.com/store/cart.php?m=product_list=1218
  https://valmont-sitepro1-cdn.s3.amazonaws.com/spec-sheet/HDWM04%20(Assembly).pdf
  I don’t know the thickness of the
steel stock, but the Channel Master one weighs 1
pound and the Site Pro one weighs 6.8 pounds, so I’m
sure it’s sufficiently burly for most equipment.
   
  -Adam
   
   
  
From: AF 
  On Behalf Of Ken Hohhof
  Sent: Tuesday, February 20, 2024 10:52 AM
  To: af@af.afmug.com
  Subject: Re: [AFMUG] Wood Pole 

Re: [AFMUG] compensation for employees

[Jesse Dupont]

A friend of mine, who builds houses, used to pay his framing crew by the hour. 
He knew how long the jobs were taking the crew, the square footage of the job, 
and knew their hourly wage. Jobs were stacking up because they were slow. He 
decided to switch to paying them by the job. He’d pay them what he estimated 
they’d earn doing it by the hour and told them there are a backlog of jobs to 
be done. Lo and behold, their hourly wage sky-rocketed because they finished 
their jobs faster and did more jobs over a year’s time. He also started subbing 
out his framing crew to other contractors to keep them busy since they had more 
time. I don’t know the technical details of how he now does payroll, but as far 
as I know, they are still employees and not contractors. I recognize that low 
productivity isn’t necessarily your problem, maybe it’s helpful nonetheless.

Sent from my iPhone

> On Jan 29, 2024, at 8:08 AM, Chris Fabien  wrote:
> 
> We have never had success with production based bonuses, it always was
> hurt feelings when expectations were not met or bending the criteria
> to make sure the productions bonus was awarded sometimes, lot of
> finger pointing and resentment when it wasn't met.
> For a while we did annual christmas bonus based on somewhat on
> seniority. Also hurt feelings and whining when the most senior
> employee blabbed what his bonus was.
> Last year we did a fixed bonus for everyone. It might have
> over-rewarded some of the new employees a bit but everyone was happy
> at least.
> Of course do annual or semi-annual performance based increases and
> keep wages very competitive.
> 
>> On Mon, Jan 29, 2024 at 9:45 AM  wrote:
>> 
>> An employee’s perspective:
>> 
>> I’d continue with regular increases.  I have been at two places where the 
>> only time I’d get a raise was when I had an offer from someone else.  This 
>> tends to happen at tiny businesses with no HR department.
>> More than anything else I want a good work environment:  People I like to 
>> work with, management who know what they’re doing, a product I can be proud 
>> of working on, etc.
>> Sticking around for stock is a danger for an employee because while the 
>> documents say how many shares you’ll have, you won’t have any way to know 
>> whether they’re worth a million dollars or 94 cents.  I’d be angry and 
>> frustrated if I stuck it out and let other opportunities pass by and didn’t 
>> get a big payout.
>> An offer of stock from an employer I wasn’t happy with actually pushed me to 
>> resign.  I work because I should, and I don’t usually stop to think about 
>> why I’m doing it. The offer made me do some reflection on them, myself, and 
>> whether I want to be committed to that group of people long term.  That 
>> answer was definitely “no”, and that prompted me to look for other options 
>> sooner rather than later.
>> Production based bonuses are good in theory, but I have not yet had those 
>> based on a metric that I had any impact on.  I’ve been just along for the 
>> ride on the bonus programs.
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> From: AF  On Behalf Of Ken Hohhof
>> Sent: Sunday, January 28, 2024 2:12 PM
>> To: 'AnimalFarm Microwave Users Group' 
>> Subject: Re: [AFMUG] compensation for employees
>> 
>> 
>> 
>> I worked for big companies in the 80’s and remember profit sharing and 
>> Christmas bonuses.  Then we had a period of startups with stock options as a 
>> huge part of compensation – the idea was you worked 80 hour weeks for modest 
>> pay but if the company hit it big your options could be worth a lot.  I 
>> suspect some people hit the jackpot and a lot more got the shaft.
>> 
>> 
>> 
>> My sense is that employees today are mostly focused on the short term.  They 
>> have bills to pay, they want to know what income they can count on, they 
>> probably don’t want to roll the dice on profit sharing or a bonus or stock 
>> options.  Also, Millennials and Gen XYZ I talk to seem to view employment as 
>> transactional, and they don’t necessarily identify with the company or the 
>> owners (thanks to companies like Amazon and owners like Bezos).
>> 
>> 
>> 
>> So while I don’t have any hard facts, my guess is you’re doing the right 
>> thing already.  If you’re inclined to tie compensation to company 
>> performance, I wouldn’t make it a large percentage, and I wouldn’t try to 
>> use it as an incentive for people to work insane hours or achieve impossible 
>> goals (like Elon Musk’s “extremely hardcore”).  And I’d make it fairly short 
>> term, like monthly or something, so employees aren’t making their families 
>> scrimp in hopes of a windfall at the end of the quarter or year.
>> 
>> 
>> 
>> If you do experience hard times, reduced hours might be a temporary solution 
>> at least for hourly employees.  Realizing that with low unemployment, some 
>> of them might move elsewhere.
>> 
>> 
>> 
>> The good news is that any part of your business tied to fiber projects is 
>> likely to have at 

Re: [AFMUG] Phoenix

[Jesse Dupont]

Trepic Wireless on the Eastern and Southeastern part.

Sent from my iPhone

> On Jan 14, 2024, at 3:34 PM, Chuck McCown via AF  wrote:
> 
> 
> Jaime is looking for WISPS in Phoenix.
> Sent from my iPhone
> 
> 
> --
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Used Juniper

[Jesse DuPont]

  
  
Another option. Check out OcNOS from IP
  Infusion. CLI is almost identical to Cisco and it's a great value.
  OcNOS runs on white label boxes so you can choose the hardware
  platform that fits your needs (what I've ordered so far comes with
  OcNOS pre-installed). Lots of hardware choices from Edgecore and
  UfiSpace. IP Infusion supports others, too. OcNOS is a full
  featured carrier-class routing/switching OS and includes full BNG,
  MPLS, L3/L2VPN suite, etc. A Ufispace S9510-28DC-9N0A with DC
  power and OcNOS MPLS license is about $8K and is comparable to the
  Juniper MX204 in terms of features, capacity and port count,
  including full route tables if used at the border. On the low-end,
  the Ufispace 9502-16MT with MPLS license and DC power is about
  $2200 and has all the same capabilities/features as the bigger
  box, just less capacity and port count. Great platform. I suppose
  technically the white label boxes are L3 switches in so much as
  the ASIC that runs it a switch chip at its hard, but all routing,
  label switching, and L2 switching (data plane) takes place in the
  ASIC. Control plane is handled by the CPU. Worth a look. We have
  OcNOS interoperating with Juniper, Mikrotik and NetElastic on
  OSPF/MPLS/VPLS.
  

On 1/11/24 11:16 AM,
  dmmoff...@gmail.com wrote:


  
  
  
  
Arista goes
both ways.  We have a number of Arista L3 switches, and also
a big modular chassis thing comparable to a Juniper MX.
Full routes
just depends on the model.  Some of them can’t do it.
 
We started
buying Arista a couple of years ago when Juniper changed
their pricing model.  Good products.  CLI almost identical
to Cisco, so it’s old hat.  I have no complaints with
Arista.
 
-Adam
 
 

  
From: AF
   On Behalf Of Daniel
  Pautz via AF
  Sent: Thursday, January 11, 2024 11:00 AM
  To: AnimalFarm Microwave Users Group
  
  Cc: Daniel Pautz 
  Subject: Re: [AFMUG] Used Juniper
  

 
Is it really considered a router or just
  high end switch? Eg  does it take full multi tables, etc? 
  what model? I have always considered playing with some
  Arista’s.
 

  From: AF 
On Behalf Of Zach Underwood
Sent: Wednesday, January 10, 2024 8:00 PM
To: AnimalFarm Microwave Users Group 
Subject: Re: [AFMUG] Used Juniper

 

  While not juniper and with no support we
have done very well with used Arista. We got 12x 100gb +24
x40gb router that can do bgp for under 10k eaxh.

 

  
On Wed, Jan 10, 2024, 9:54 PM Jason
  McKemie 
  wrote:
  
  

  Is this worth looking at or is it too
problematic from a support / update perspective? New
Juniper is not in my budget.

-- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com
  

  
  
  


  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] PacketFLux Gen Controller alternative

[Jesse DuPont]

  
  
We've used the Magnum Energy automatic
  generator start controller, which will start a 2-wire or 3-wire
  generator and run it for a certain amount of time, with
  time-of-day exclusion or based on temperature. I'd rather use a
  Packetflux because I've already a Site Monitor there.
  
  Functionality-wise - For off-grid sites, we need it to start the
  generator at a battery low-voltage threshold point and run for
  some period of time (1-8 hours, adjustable). It would also be nice
  to be able to start it manually and have it stay on for some
  period of time or let it run until stopped. Also, it would be nice
  if it had a regularly scheduled 10 minute exercise period, in case
  the generator didn't have this built in.


  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
General Manager,
Celerity Internet
  email: jesse.dup...@celeritycorp.net
 
  

On 1/10/23 12:49 PM, Forrest Christian
  (List Account) wrote:


  
  


Which features were you using?


The reason I ask is that we've finally restarted
  software development on the logic/scripting engine for the
  base3 and the rules portion of the generator controller is
  forming the basis for those tools.     If it's just start the
  generator when voltage is low and let it run for some time, 
  that will be easy to recreate.   Some of the fancy
  sequencing/state engine probably won't make it in,  but some
  of that will also be able to be recreated.
  
  
  
On Tue, Jan 10, 2023, 11:34 AM
  Gino A. Villarini <g...@aeronetpr.com>
  wrote:


  

  Since
  Forrest decide to kill the product, we haven’t found a
  good replacement.

   
  Any
  ideas? 







  

  
  Gino Villarini
Founder
  / President
@GVillarini
787.273.4143
  | 


  
  
  
  
  
  
  


  Metro
  Office Park #18 Suite 304 Guaynabo, PR 00968
  


  
  

  

  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  


  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Door Access Control System (self-install, self-hosted)

[Jesse DuPont]

  
  
Look at Visionis
  (https://www.visionistech.com/en/home/). Their board is Chinese
  mfg, but it meets all your criteria. I have it in a building and
  two tower sites; it's been solid. The boards at each location all
  IP to the controller software you can put anywhere (including
  on-prem), but the boards don't need to be connected to the
  software to work, only for changing config, getting alerts and
  viewing logs. We just run ours in a VM so it's on all the time. A
  lot of their stuff you can just buy on Amazon, but not all of it.

  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
General Manager,
Celerity Internet
  email: jesse.dup...@celeritycorp.net
 
  

On 6/16/22 12:01 PM, Forrest Christian
  (List Account) wrote:


  
  Before I get pissed and just make something (which
is how many of my products start).


Is there a good door access system which meets the
  following requirements:


1) I can actually buy as a mere mortal and not a "security
  system installer"
2) Is self-hosted and doesn't require an internet
  connection to operate
3) Supports both keypad and NFC card and/or phone access


Mainly I'm looking for a good old-fashioned door access
  system where I can put a door controller in and put a latch
  lock on the door and have staff come and go either with some
  sort of NFC access or have a keypad to enter (if someone
  forgets their NFC or for third-party access to the facility
  where needed).


It seems like either I have to be an installer, or it has
  to be an internet-connected thing, or has a monthly fee.   


I am aware of the unifi stuff from UBNT, not sure how I
  feel about that, but if I don't find another option, I'll give
  that a try.   If someone has that in place, let me know as I'm
  curious how well it works.

  
  
  -- 
  
- Forrest
  

  
  
  


  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Multicast Over Wireless

[Jesse DuPont]

  
  
Yes, Sparse mode is what you need. If you have
  Mikrotik routers at your sites, you'd want to get the Multicast
  package installed on the routers (at least those which would
  transit your multicast streams). You'll have a bit of work to
  setup PIM, particularly related to the Rendezvous Point. Cisco has
  a quasi-automatic way of doing it, but on Mikrotik you'll have to
  do it manually. Essentially, the RP (rendezvous point) is a router
  that can see all the multicast you have and all the routers
  between the RP and any device that would request the multicast
  stream need to have PIM running. Those routers will listen for IGMP join requests
and send the requested multicast group (i.e. stream) towards the
direction of the requestor. Also, make sure you allow
  all the PIM-related communications as well as IGMP messages in the
  input chain of the Mikrotiks. PIM is similar to OSPF or LDP in
  that it uses unsolicited UDP multicasts to create neighbor
  relationships and IGMP's are also multicast.
  
  If you have switches between the routers and the AP's, if they're
  managed switches and they support IGMP snooping, you'll want to
  turn that on so it only sends multicast out ports that are towards
  a requestor. If they're not managed or don't support IGMP
  snooping, they'll just send whatever multicast comes into them out
  all ports.
  
  In the APs, I don't know exactly how Cambium handles multicast,
  but generally, multicast data is sent at the lowest (or low) MCS
  rate in wireless APs so it is more reliable. In this case, you'd
  want the multicast to be sent over the air at a high MCS rate so
  there was enough bandwidth for the stream. In UBNT, it's called
  Multicast Enhancement.
  
  The trick for you is getting something on the requestor end that
  knows what to do with a multicast stream. You can test it using
  VLC on a computer by joining the multicast group by telling VLC to
  open a network source with a URL like "udp://239.255.255.20:8100"
  (insert your multicast group IP and port here). VLC will send the
  IGMP join request, IGMP-aware router will hear it, and start
  sending it to VLC. The quickest way to test it is to be on the
  same L2 network as a Mikrotik and see if you get the stream. If
  PIM is working, you should. Then you can try to get behind an
  IGMP-aware RG (i.e. router) and see how it works for you. You'll
  also be able to watch the mechanics of PIM work, too, which is
  kind of cool.
  
  On the device-side of things, I don't think Firesticks, Apple TVs
  or Roku's support multicast video, only HLS. Even if they did,
  you'd need some kind of UI that had a mapping between channels and
  multicast groups/ports (i.e. Channel X is at multicast group
  address Y and port Z) and tune to it. I think you'd need some kind
  of a true set top box like an Amino to have it pull multicast.
  
  You could deploy a Wowza server. It could transmux the multicast
  streams into HLS streams and be a streaming media server (I'm
  ignoring scaling this at the moment). But if the video codec was
  something typical of IPTV (MPEG2 with AC3 audio), then just
  transmuxing it won't likely be of any help because the video
  bitrate would be too high. You'd also need to transcoded at least
  the video to H.264 so the bitrate was reasonable (the AC3 audio
  can stay, all the above devices can deal with that). Obviously I'm
  making a lot of assumptions about your situation, but you get the
  idea.


  
  
  
  
  
  
  
  
  
  
  
  
  
  
    Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 2/23/22 2:43 PM, Steven Kenney via
  AF wrote:


  
  
Yeah
  just read up on it sounds exactly what I need.  It basically
  is a pull mode which is exactly what I'm looking for.  So if
  it is a pull, I'm going to need to get it to something to pull
  from.  


Its
  time to RTFM methinks.. :) 
  
  
  
On Wed, Feb 23, 2022 at 4:40
  PM Chuck McCown <ch...@go-mtc.com>
  wrote:


  

  
This might be a clue:
PIM
Sparse Mode (PIM-SM) is a
multicast routing p

Re: [AFMUG] Depreciation Recapture

[Jesse DuPont]

  
  
We treat them as assets throughout the year so
  we can have a better sense of EBITDA, but our accountant pushes
  them all to "Supplies" at the end of the year since they're not
  truly assets by GAAP standards and then we won't have recapture
  down the road, if that ever happens.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
    Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 2/21/22 2:35 PM, Chuck McCown via AF
  wrote:


  
  

  Do  you guys expense SMs as you go or call them assets
and do a mass depreciation each year?
   
  I know we had to reverse a bunch of depreciation when we
sold the wisp.  
  Depreciation Recapture.  Bunch of crap if you have never
heard of it before and were not expecting it.  
   

  
  
  


  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] 60GHz Equipment

[Jesse Dupont]

Terragraph is natively all IPv6 and meshes. All v4 traffic through the 
Terragraph network is tunneled in some way (probably encapsulated in UDP 
packets like VXLAN or something).

Sent from my iPhone

> On Feb 11, 2022, at 6:22 PM, Jason McKemie  
> wrote:
> 
> Does Terragraph not natively support L2 bridging?
> 
>> On Friday, February 11, 2022, Sean Heskett  wrote:
>> Cambium is certified terragraph mesh which allows you to use clients as 
>> distribution points for other clients.  
>> 
>> Big advantage since you don’t have to secure tons of “tower” sites.
>> 
>> -Sean
>> 
>> 
>>> On Fri, Feb 11, 2022 at 11:28 AM Jason McKemie 
>>>  wrote:
>>> I'm looking to deploy this for a short-range downtown network from a 
>>> multi-story building, does anyone have any recommended equipment vendors in 
>>> this band? It looks like Cambium, Siklu, and Ignitenet have offerings, but 
>>> I'm not sure what differentiates them.
>>> 
>>> Thank you.
>>> -- 
>>> AF mailing list
>>> AF@af.afmug.com
>>> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
>> -- 
>> Sean Heskett
>> 
>> ZIRKEL 
>> Internet • WiFi • Phone • TV
>> 970-871-8500 x100 - Office
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] IPV6

[Jesse DuPont]

  
  
You would need to request v6 space separately
  from v4.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 1/28/22 8:20 AM, Chuck McCown via AF
  wrote:


  Does our C blocks of V4 have V6 automatically associated with them or do I need to request V6 space?

Sent from my iPhone




  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] IPv6 in home routers

[Jesse DuPont]

  
  
I have done (somewhat) comprehensive testing of
  consumer routers and IPv6. You're right, Cambium/ReadyNet's
  implementation is either not functional or buggy (like, sometimes
  fails to announce itself as a gateway to the LAN). Mikrotik is
  great, but does take a few steps. Calix's support for IPv6 is
  solid and reliable. Netgear and Asus also have good IPv6 support,
  but it must be enabled. If doing DHCP, just enabling it with Auto
  Config is sufficient most of the time. If PPPoE, need to specify
  it's PPPoE and then to use the same session as IPv4. Linksys also
  generally has working IPv6 support, although the older stuff (3+
  years) is a little spotty.
  
  When I say working IPv6 support, I mean that they request a prefix
  via DHCP-PD, install that prefix on the LAN side and start
  announcing it to the LAN for SLAAC addressing. Most of them except
  Mikrotik seem to also require a global address via SLAAC on their
  WAN ports. So in my implementation, I have a SLAAC prefix on the
  subscriber router network from my equipment, and DHCP-PD running
  and the routers assign themselves a global address from the SLAAC
  prefix on their WAN ports and the DHCP-PD prefix on their LAN
  side. I guess they use the WAN address for things like DNS queries
  (for themselves and when they're doing DNS proxy). Mikrotik will
  use any global address for things like DNS queries, even an
  address on it's LAN side.
  
  I'll also say that seems the IPv6 firewall is not enabled on about
  half of what I tested. Maybe it's better now, but even Mikrotik
  today doesn't have a standard set of consumer-router IPv6 firewall
  rules, at least not in RouterOS v6 or earlier. Maybe they do in
  v7.


  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 12/13/21 2:51 PM,
  dmmoff...@gmail.com wrote:


  
  
  
  
 
I was doing some testing on our dual stack
  FTTX network.  
 
I grabbed a CnPilot R201P off the shelf. 
  IPv6 was disabled by default.  You had to enable it in 3
  different places and even after following the guides on
  Cambium’s site the prefix delegation seems to not really work.
I grabbed an AirCube…..no IPv6 support at
  all.  It’s supported in the underlying OS, but not in the
  GUI.  Ubiquiti support says it’s coming, but they’ve been
  saying that for 2 years +.
I grabbed a Mikrotik…..works perfectly
  fine, but setup is beyond what any consumer is going to do.
   If I’m quibbling, it doesn’t support stateful dhcp
  assignments from a delegated prefix.  That’s not too big of a
  deal.
 
Out of 3 routers I have close at hand, 1 is
  a faulty implementation, 1 is not implemented at all, and one
  is too hard for normal people.
 
So when people run out to the store and get
  a Netgear, Asus, or whatever router off the shelf is it
  hit-or-miss with those too?  I guess I naively assumed that 25
  years after IPv6 was created that we’d have working
  implementations by now. 
 
  
  
  


  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] amazon problem

[Jesse DuPont]

  
  
Per the NANOG list, Geoguard does geo for Amazon Prime. Try emailing
n...@geoguard.com
with your blocks and ASN.

Also, another gentleman on NANOG who seems to be in the know said
that a ticket needs to be opened with Amazon Prime customer service,
even though it doesn't seem like they're accomplishing anything. It
helps on the back end.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 9/16/21 12:38 AM, Jan-GAMs wrote:

Yes,
  except we aren't using a VPN or a proxy that I know about.
  
  
  On 9/15/21 18:22, Chuck McCown via AF wrote:
  
  Yeah, I have heard about this.  VPNs using
what is considered regular residential IPs are poisoning the
well for everyone.  Amazon and other streamers are just using
the big hammer rather than finesse to shut them down.  Actually
they will never be able to totally shut them down.


-Original Message- From: Jan-GAMs

Sent: Wednesday, September 15, 2021 5:10 PM

To: af@af.afmug.com

Subject: [AFMUG] amazon problem


We're a small wisp and some of our customers just started to
complain

about their Amazon Prime.


Anyone having trouble with amazon complaining about your ISP?
I've got

customers telling me they can't connect to their amazon prime
anymore.

This message shows up: "Your device is connected to the Internet
using a

VPN or proxy service.  Please disable it and try again.  For
more help,

go to amazon.com/pv-vpn."  Of course that is even more useless.



  
  


  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] fiber patch cord labels

[Jesse DuPont]

  
  
I haven't personally purchased any, I've just seen them in a data
center. It does appear that Panduit is the predominant supplier of
these.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 9/3/21 7:07 AM, Adam Moffett wrote:


  
  Where do you get the foam sleeves?  Panduit?  
  
  On 9/3/2021 8:58 AM, Jesse Dupont
wrote:
  
  
I personally think these are the way to go. Foam sleeve around the fiber, label around the foam.




Sent from my iPhone



  On Sep 3, 2021, at 6:46 AM, Adam Moffett  wrote:

I'm curious about how people label 2mm and 3mm patch cables (or 900um for that matter).

After a lot of evolution through labels that like to fall off or get in the way, our current method is to cut a section of plastic drinking straw a little longer than the labels.  Slit the straw lengthwise.  Then wrap that straw onto the cable and wrap a self laminating label around the straw.  The straw piece can slide around to wherever you need it to be visible, or to move it out of the way if it'll snag something.  The straw also gives some extra diameter so the label can go on lengthwise and still be readable. The outcome is very nice, but it's time consuming.

What other methods do we like?

I haven't tried heat shrink labels, but I'm assuming you can't get tubing big enough to pass an SC connector that will shrink onto a 2mm cable. Maybe I'm wrong.


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  

  
  
  


  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] -48v DC power and Packetflux Rack Injector for various Cambium radios

[Jesse DuPont]

  
  
The DDR series (Meanwell DIN mount DC-DC) are also good, like the
RSD, but in a DIN mount form factor.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 7/2/21 12:05 PM, Adam Moffett wrote:


  
  I was gonna say the same thing.  RSD also doesn't have a
cooling fanone less thing to fail.
  In either case get a few #6 bolts (or similar size metric) and
you can mount them to a 1U blank.  
  
  
  
  On 7/2/2021 1:54 PM, Josh Baird
wrote:
  
  

Do not use the "SD" series.  Look for the RSD
  series instead.  The SD series has issues with current inrush.


  On Fri, Jul 2, 2021 at 1:52
PM castarritt <castarr...@gmail.com> wrote:
  
  
Thanks for the info.  I did check the chassis
  ground vs dc return on my dragonwave radios, and they
  weren't bonded.  I'll check with dwave to see if they are
  cool with 0v input and +48v return.  If so, we will
  buy +48v DC systems in the future.
  
  
  For the -48v ICT we already have, I was looking at
this Meanwell isolated DC-DC converter; do you think it
would work?
  
  
  https://www.mouser.com/ProductDetail/MEAN-WELL/SD-500L-48?qs=umBTOZqEewis66%252Betk6pyQ%3D%3D
  



  On Fri, Jul 2, 2021 at
12:18 PM TJ Trout <t...@voltbb.com>
wrote:
  
  
Yes you can put an isolated 48v dc to DC
  supply to isolate -48 from +48 (a meanwell brand would
  work) needs to be an isolated converter
  
  
  Also fyi that most of the '-48'
equipment I've tested hasn't had a chassis reference
to either of the DC input terminals, so thus far
I've ran as +48 on everything. 
  
  
  48v is 48v, difference between -48 and
+48 being which output terminal may be bounded to
chassis ground. 



  On Fri, Jul 2, 2021,
9:33 AM castarritt <castarr...@gmail.com>
wrote:
  
  
Tushar wants me to figure out a good
  solution for our first site to be converted to DC
  power.
  
  APs I want to power through a rack injector are:
  3x 450M 5Ghz
  2x 450i 5Ghz
  3x 450 5Ghz
  5x ePMP force200 for ptp customers
  
  
  The force200s don't use sync, but I would
like all the others to have sync over power.
  
  
  Currently we have an ICT-IP-BMMD -48v shelf
and one of their isolated 48v to 24v converters.
  
  
  Router is an MT CCR converted to -48v with
their DC power supplies.  Switch is a CRS that
will be wired to run off the ICT +24v
converter.  We also have 6x dwave backhauls that
will all be fine with -48v.
  
  
  
  Problem is, without a +48v source, I can't
figure out a way to power all 13 radios through
a single rack injector without giving up sync
via power on the 450i APs.  Is there an easy way
to get +48v off of either the -48v or +24v ICT
supplies, or should I just plan on adding a
second rack injector?

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
  

-- 
AF mailing list
AF@af.af

Re: [AFMUG] Packetflux generator control board

[Jesse DuPont]

  
  
If the PacketFlux solution isn't available any longer, this works
well (although it's not remotely operable).

https://www.magnum-dimensions.com/auto-generator-start-stand-alone

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 6/29/21 3:29 PM, Sean Heskett wrote:


  
  
If Forest is out there, do you have a new
  solution (or can we still acquire a generator control board?)


We have a 2 wire start generac that I need to
  start up if our solar site gets too low.


ideas??


Can a site monitor be scripted to look at
  voltages and close a relay?



  

  

  Sean Heskett
  

  ZIRKEL 
  Internet
  • WiFi • Phone • TV
  970-871-8500
x100 - Office
  
Website | Facebook 
  

  

  

  
  
  


  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Intuit & Billing

[Jesse DuPont]

  
  
We are current Plat customer (in one WISP, using Emerald in another
- they're both quite capable). In the Plat WISP, we're billing 6400
subs using the free MSSQL license. No issues.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 5/6/21 10:50 AM, Adam Moffett wrote:


  
  Our Plat install uses the Free MS SQL license.  It has some
kind of limit on processor power or some such, but if Plat ever
hit the limit I couldn't tell.
  .I don't know if MS still has a free version though.  Our
Plat install is OLD.
  
  
  
  
  On 5/6/2021 11:54 AM, Sterling
Jacobson wrote:
  
  





  I’m pretty sure even a few years ago when
I migrated from Plat to Sonar, that Plat had fixed that
internally with an update.
  But Chuck could verify that with them.
   
  And yes, you will need to host it
yourself, unless there is a third party, or they have a
recommended hosting third party.
  I forget if they had that service or not,
but you could ask them about that too.
   
  Otherwise I think it does need at least a
VM with windows and some form of MS SQL license…
   
  
From: AF 
  On Behalf Of  Cameron Crum
  Sent: Thursday, May 6, 2021 9:50 AM
  To: AnimalFarm Microwave Users Group 
  Subject: Re: [AFMUG] Intuit & Billing
  
   
  
I'd be careful of Plat if you want PCI
  compliance. In the systems I've seen even within the last
  few months, they are still storing credit cards in plain
  text in the DB. 
  
   
  

  On Thu, May 6, 2021 at 10:40 AM Chuck
McCown via AF <af@af.afmug.com> wrote:


  

  

  Do I have
  to host Plat?


  

   


  
From:
Sterling Jacobson 
  
  
Sent:
Thursday, May 6, 2021 9:05 AM
  
  
To:
AnimalFarm Microwave Users Group 
  
  
Subject:
Re: [AFMUG] Intuit & Billing
  

  
  
 
  


  
I think
Platypus is still free up to a certain
number of active customers.
 
 

  
From: AF
<af-boun...@af.afmug.com>
On Behalf Of Chuck McCown via AF
Sent: Thursday, May 6, 2021 8:56
AM
To: af@af.afmug.com
Cc: Chuck McCown <ch...@go-mtc.com>
Subject: [AFMUG] Intuit &
Billing
  

 

  

  We
  have exhausted all of our appeals, the
  only thing they will tell us is that
  they don’t approve of our “products”. 
  AKA internet service and that they are
  ha

Re: [AFMUG] Notifying customers

[Jesse DuPont]

  
  
For sure, some people won't receive the notification if their
Internet from us is down (because they're not in cell coverage), but
it's a very small percentage. They also won't receive an email
(which more often than not goes to spam anyway). And most of the
older generation (I'm in my 40's, so I'm speaking of my parents) are
using iPads now anyway. Overall, using FB has been very effective at
reaching a large percentage of our customer base. We do also update
our IVR when we have outages so people calling get it there, but it
happens more quickly on FB.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 4/14/21 5:23 PM, Jan-GAMs wrote:


  
  Some of our customers use cell phones, some live in areas where
cell phones don't work and most of our customers are older than
dirt.  Many use computers to communicate with the outside
world.  No internet, their world is broken.
  
  On 4/14/21 3:35 PM, David Coudron
wrote:
  
  





  The
  majority of our customers receive email/twitter and check
  Facebook from their phones.   In fact, I believe the
  majority of customers use their phone as their primary
  email platform.   Very few check email from computers
  anymore.  However this is skewed by age.  Older customers
  use the computer more than younger ones.   Customers in
  their 20s and 30s hardly ever touch a computer and receive
  email/twitter updates easily during an outage.  While
  their phones are set to use wifi, when it isn’t there they
  continue on cellular.
   
  Regards,
   
  David
  Coudron
   
  

  From: AF
  
  On Behalf Of Jan-GAMs
  Sent: Wednesday, April 14, 2021 5:30 PM
  To: af@af.afmug.com
  Subject: Re: [AFMUG] Notifying customers

  
   
  let's see, your customer is in an outage and your method of
reaching out to them is via FB, email or twitter?  what's
wrong with this picture?
  
On 4/12/21 9:24 PM, Jesse DuPont wrote:
  
  
We use a Facebook group and avoid
  posting anything except outages (planned or otherwise) so
  they stick on it.
  We will also do emails if we have a whole tower own for a
  planned outage.

  

  
  Jesse DuPont
  Owner / Network Architect
email: jesse.dup...@celeritycorp.net
Celerity Networks LLC / Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  Like us!
  facebook.com/celeritybroadband
   


  On
  4/12/21 8:39 PM, Steve Jones wrote:


  
We
have an alerts group on facebook customers can opt
into, we ha e Twilio half set up for powercode to
message through, but it seems clunky, otherwise we
just update server plus to handle inbound calls.
  
   
  

  On
  Mon, Apr 12, 2021, 9:31 PM Chuck McCown via AF
  <af@af.afmug.com>
  wrote:


  
Wow,
Twitter?  I am not a Twitter user.  I wonder if
my customers are?

  Sent
  from my iPhone


  
  
  
  
On
Apr 12, 2021, at 7:48 PM, Andrew Haninger
<ahan...@gmail.com>
wrote:
  


  



   

Re: [AFMUG] Notifying customers

[Jesse DuPont]

  
  
We use a Facebook group and avoid posting anything except outages
(planned or otherwise) so they stick on it.
We will also do emails if we have a whole tower own for a planned
outage.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 4/12/21 8:39 PM, Steve Jones wrote:


  
  We have an alerts group on facebook customers can
opt into, we ha e Twilio half set up for powercode to message
through, but it seems clunky, otherwise we just update server
plus to handle inbound calls.
  
  
On Mon, Apr 12, 2021, 9:31 PM
  Chuck McCown via AF <af@af.afmug.com> wrote:


  Wow, Twitter?  I am not a Twitter user.  I
wonder if my customers are?

Sent from my iPhone

  On Apr 12, 2021, at 7:48 PM,
Andrew Haninger <ahan...@gmail.com>
wrote:

  


  
Email and Twitter.


  On Mon, Apr 12,
2021, 21:40 Chuck McCown via AF <af@af.afmug.com>
wrote:
  
  What
is the best way to notify customers of planned
maintenance outages?  Robocalls, text, email?  

Sent from my iPhone

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
  

  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  


  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Mikrotik Official Limitations

[Jesse DuPont]

  
  
Yeah, that's good news that you have an official answer; I have been
curious. Of course, if you're NATting there, you can't turn off
connection tracking...

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 3/1/21 9:22 AM, Chuck McCown via AF
  wrote:


  
  
  

  Well at least you have an official answer.  How important
is connection tracking to you?
  Seems like something they could fix without too much
difficulty.  Such as change the type of a variable, or
allocate more memory, or compress a file etc.  
  

   
  
From: Steven
Kenney 
Sent: Monday, March 1, 2021 9:02 AM
To: af 
Subject: [AFMUG] Mikrotik Official
  Limitations
  

 
  
  

  Still fighting with Mikrotik about the 1072 reboots. 
New hardware didn't fix it, had several people check the
configs all were good. After 2 months of going back and
forth, escalating to a higher tier tech...   I
officially got a response that 1 million connections is
too much for the 1072 and I should expect it to reboot
and not function properly.  That was their conclusion. 
Even though all of the 72 processors are under 50%, 
memory usage is only about 20% etc.  Turn off connection
tracking is the their solution.  
   
  How about those apples?  
   
  
 

  

   
         
  
  STEVEN KENNEY 
DIRECTOR OF GLOBAL CONNECTIVITY &
  CONTINUITY A: 158 Erie St. N |
  Leamington ON 
E:
  st...@wavedirect.org | P: 519-737-9283
W:
  www.wavedirect.net


  

  




-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
  

  
  
  


  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Do Vlans care about protocol?

[Jesse DuPont]

  
  
What RouterOS version is on your CRS317? In your third scenario,
what happens if you turn off VLAN filtering in the Bridge's VLAN
tab?

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 2/18/21 6:55 PM, Nate Burke wrote:


  
  The P2P provider is saying that they find no technical reason why
  the IPv6 traffic is not passing, and they're pointing to my
  equipment.
  
  I've plugged a couple more routers into the CRS317 to test with. 
  What I found is that if I have the PVID set to the Vlan, and Admit
  all packets on the interface, then I can ping with IPv6 between
  the 2 routers.  But if I define a VLan on either router, no IPv6
  traffic passes.  
  
  Router1 <- Ethernet Cable -> Router2  Ipv6 works
  
  Router1 <-CRS317 port1 PVID=3000 <-> CRS317 Port2
  PVID=3000 -> Router2  IPv6 works
  
  Router1 <-CRS317 Port1 PVID=3000 <-> CRS317 Port2 ->
  Vlan3000 Router 2  IPv6 fails.  
  
  But even if I have the PVID of my P2P port and Router1 set the
  same, I still can't ping an IPv6 address on the other end of the
  P2P circuit.  I'm about ready to give up and Kill my Dualstack.  
  
  Has anyone tried IPv6 with Vlans on a CRS317?  Am I missing
  something simple?  
  
  On 2/15/2021 11:34 AM, Jesse Dupont
wrote:
  
  

The CRS will pass all ethertypes by default.

Sent from my iPhone

  On Feb 15, 2021, at 9:52 AM, Nate
Burke 
wrote:

  


  

After escalating with the provider, they think that might be
what is happening.  If what they're telling me is true,
Their Core network is running MPLS, but it's in a QinQ to
the NID that I'm plugged into.  So all IPv4 is fine, but
might not pass IPv6.  

So do I need to set anything special on my CRS317 bridge to
pass the IPv6 Traffic on the Vlans?   The Only Ethertype
setting I see in the bridge interface itself, and you can
only choose 0x8100, 0x88a8, or 0x9100

    On 2/15/2021 10:12 AM, Jesse
  DuPont wrote:


  
  It is possible your P2P provider is filtering Ethertypes.
  IPv4's Ethertype if 0x0800 whereas IPv6's Ethertype is
  0x86dd. This field is right after the 802.1Q VLAN header
  in the L2 header.
  













    
  Jesse DuPont
  Owner / Network
Architect
email:
jesse.dup...@celeritycorp.net
Celerity
Networks LLC / Celerity
  Broadband LLC
Like
us! facebook.com/celeritynetworksllc
  Like us! facebook.com/celeritybroadband
   

  
  On 2/15/21 7:36 AM, Nate
Burke wrote:
  
  

I don't 'think' it's an MTU issue, even a simple IPv6
ping won't go across the P2P circuit.  

On the CRS317, if I torch Vlan3000 on the ccr1009
interface, I see the IPv6 icmp packets coming in from my
CCR1009,  but if I torch the Interface going to the P2P
circuit on the CRS317, I see no IPv6 traffic.  Is that a
problem, or because of the way the Mikrotik packet flows
work, I would only see traffic as it enters the router,
and since there is no reply from the far end, nothing
would show up.  

On 2/15/2021 6:15 AM, Adam
  Moffett wrote:


  
  I don't think MTU would be the issue.  If the
endpoint has a 1500 byte MTU then it will send IP
packets up to 1500 bytes long.  IPv6 header is a
little l

Re: [AFMUG] Mikrotik PPPoE Server

[Jesse DuPont]

  
  
Well, SFQ isn't specifically "better" for PPPoE vs. any other queue,
as much as it's a more appropriate queue-type for queuing an
individual connection that can become congested. Strictly speaking,
a "default-small" queue, which is a PFIFO type, is fine for a PPPoE
queue, too, if the amount of packets that can be queued is increased
beyond the default of 10, which isn't enough for a higher speed
service (like over 15-20 Mbps). However, FIFO as a scheduling
mechanism isn't very effective and it allows a single flow to
consume the entire queue, creating a poorer user experience. Once
the queue is full, the last packet(s) in are dropped.

SFQ is a form of fair queuing which has up to 1024 classless
sub-queues within it. It can queue up to 128 packets and split them
into the sub-queues based on being a unique flow (unique combination
of src/dst address and src/dst ports). Each of these 1024 sub-queues
are then dequeued in a FIFO fashion, tail-dropping just those queues
which are full. In this way, a single flow (say a game download from
Akamai), can't consume the entire connection because it is being
serviced by its own sub-queue. A VoIP call on the same connection
would be in its own sub-queue and dequeued separately from the
Akamai download. I'm not trying to imply there is QoS - there isn't,
it's strictly trying to be "fair" in releasing packets (i.e. the
"classless" part of its definition). To have QoS, would require the
use of something that can apply priority based on the
characteristics of the flow (i.e. an HTB).

In Mikrotik specifically, the PPPoE server allows queue-type as a
choice when establishing what kind of queue to create. If using
RADIUS authentication, which can provide attributes like rate-limit
or address-list or other things, when the queue is created it will
be of the type specified in the PPPoE server profile. If using DHCP
with RADIUS, you can't specify the queue type - it will only be
default-small, which by default is a PFIFO queue. If the settings
for "default-small" are changed to be SFQ, then queues created from
a RADIUS-authenticated DHCP lease where a simple queue is created
will also get to take advantage of the SFQ type to provide a better
experience for the end-user than a FIFO queue.

Preseem uses FQ_Codel queue type, which is a hybrid between SFQ and
Codel. It combines the scheduling mechanism that SFQ affords, with
QoS and other buffer management that Codel provides.

That's my 1.7 cents worth on the matter. Others probably have a
better understanding of it.


  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 2/15/21 9:37 AM, Adam Moffett wrote:


  
  I have heard SFQ before, but I never heard why.  I'd like to be
enlightened if anyone knows why.
  
  
  On 2/15/2021 11:05 AM, Jesse DuPont
wrote:
  
  

SFQ is right choice for a PPPoE session.

  
  
  
  
  
  
  
  
  
  
  
      
  
  
Jesse DuPont
Owner / Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like us! facebook.com/celeritybroadband
 
  

On 2/15/21 8:36 AM, Matt wrote:


  For those using Mikrotik for a PPPoE server, what queue type are you using?






  
  
  


  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Do Vlans care about protocol?

[Jesse Dupont]

The CRS will pass all ethertypes by default.

Sent from my iPhone

> On Feb 15, 2021, at 9:52 AM, Nate Burke  wrote:
> 
>  After escalating with the provider, they think that might be what is 
> happening.  If what they're telling me is true, Their Core network is running 
> MPLS, but it's in a QinQ to the NID that I'm plugged into.  So all IPv4 is 
> fine, but might not pass IPv6.  
> 
> So do I need to set anything special on my CRS317 bridge to pass the IPv6 
> Traffic on the Vlans?   The Only Ethertype setting I see in the bridge 
> interface itself, and you can only choose 0x8100, 0x88a8, or 0x9100
> 
> On 2/15/2021 10:12 AM, Jesse DuPont wrote:
>> It is possible your P2P provider is filtering Ethertypes. IPv4's Ethertype 
>> if 0x0800 whereas IPv6's Ethertype is 0x86dd. This field is right after the 
>> 802.1Q VLAN header in the L2 header.
>> 
>> Jesse DuPont
>> Owner / Network Architect
>> email: jesse.dup...@celeritycorp.net
>> Celerity Networks LLC / Celerity Broadband LLC
>> Like us! facebook.com/celeritynetworksllc
>> Like us! facebook.com/celeritybroadband
>>  
>> On 2/15/21 7:36 AM, Nate Burke wrote:
>>> I don't 'think' it's an MTU issue, even a simple IPv6 ping won't go across 
>>> the P2P circuit.  
>>> 
>>> On the CRS317, if I torch Vlan3000 on the ccr1009 interface, I see the IPv6 
>>> icmp packets coming in from my CCR1009,  but if I torch the Interface going 
>>> to the P2P circuit on the CRS317, I see no IPv6 traffic.  Is that a 
>>> problem, or because of the way the Mikrotik packet flows work, I would only 
>>> see traffic as it enters the router, and since there is no reply from the 
>>> far end, nothing would show up.  
>>> 
>>> On 2/15/2021 6:15 AM, Adam Moffett wrote:
>>>> I don't think MTU would be the issue.  If the endpoint has a 1500 byte MTU 
>>>> then it will send IP packets up to 1500 bytes long.  IPv6 header is a 
>>>> little longer, but that means the data portion will just have to be a 
>>>> little shorter.  So if you had an MTU issue with v6 you'd have an MTU 
>>>> issue with v4 also.
>>>> 
>>>> 
>>>> 
>>>> On 2/14/2021 5:27 PM, Steve Jones wrote:
>>>>> The ip6 traffic is encapsulated in the vlan? Ip6 headers I'm assuming are 
>>>>> larger because the number itself is longer, mtu. But I'm just now 
>>>>> learning to use vlans and I lick the tasty windows so I dont know a lot
>>>>> 
>>>>> On Sun, Feb 14, 2021, 3:00 PM Adam Moffett  wrote:
>>>>>> Unless you've defined it as a protocol based VLAN then no it shouldn't 
>>>>>> matter.
>>>>>> 
>>>>>> 
>>>>>> On 2/14/2021 3:12 PM, Nate Burke wrote:
>>>>>> > I have a P2P circuit plugged into a CRS317-1G-16S+ and setting 
>>>>>> > PVID3000 on that bridge interface.  A Mikrotik CCR1009  is plugged 
>>>>>> > into another port on the CRS317 set for trunked VLan3000.  I can move 
>>>>>> > IPv4 traffic on Vlan3000 and to the other end of the P2P circuit just 
>>>>>> > fine, but I cannot move any IPv6 traffic on Vlan3000.
>>>>>> >
>>>>>> > The Vlan shouldn't care about IP4 vs IP6 traffic, right?  I just want 
>>>>>> > to make sure I'm not causing my own problem before pointing my finger 
>>>>>> > at the Circuit.
>>>>>> >
>>>>>> > The IPv6 package is not installed on the CRS317, because it's just 
>>>>>> > acting as a switch, it's not doing any routing.  That shouldn't 
>>>>>> > matter, right?
>>>>>> >
>>>>>> 
>>>>>> -- 
>>>>>> AF mailing list
>>>>>> AF@af.afmug.com
>>>>>> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
>>>>> 
>>>> 
>>>> 
>>> 
>>> 
>> 
> 
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Mikrotik PPPoE Server

[Jesse DuPont]

  
  
SFQ is right choice for a PPPoE session.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 2/15/21 8:36 AM, Matt wrote:


  For those using Mikrotik for a PPPoE server, what queue type are you using?




  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Outdoor 16U Rack

[Jesse DuPont]

  
  
Minifort? https://amprod.us/products/minifort/

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 1/20/21 10:38 AM, Matt wrote:


  Anyone found an outdoor wall mount rack?  16U range?




  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Hiring a company fund manager

[Jesse DuPont]

  
  
Ha! The Telco I work for in Wyoming has that number in a market.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 1/11/21 9:40 AM, Carl Peterson
  wrote:


  
  Don't lose that number.
  
  
On Mon, Jan 11, 2021 at 10:19
  AM Matt Hoppes <mattli...@rivervalleyinternet.net>
  wrote:

8675309
  
  On 1/11/21 11:17 AM, Steve Jones wrote:
  > Just give me the account numbers, i got you fam
  > 
  > On Mon, Jan 11, 2021, 10:14 AM Chuck McCown via AF <af@af.afmug.com 
  > af@af.afmug.com>>
  wrote:
  > 
  >     I had a business partner lose every dollar he gave a
  guy like that.
  > 
  >     Sent from my iPhone
  > 
  >      > On Jan 11, 2021, at 8:55 AM, Matt Hoppes
  >     <mattli...@rivervalleyinternet.net
  >     mattli...@rivervalleyinternet.net>>
  wrote:
  >      >
  >      > We have a sizeable amount of money sitting in
  a bank account
  >     right. This has been collected from various jobs that
  were rather
  >     ludicrous over the past year.
  >      >
  >      > There are several options for what we can do
  with these funds
  >     we can let them sit in a bank account until we need
  them and use
  >     them, and then go away.
  >      >
  >      > Or we can invest them (which I've started
  doing).   However, this
  >     is one more thing to add to my plate of things to
  manage on a
  >     daily/weekly basis.
  >      >
  >      > Through investing in ETFs and purchasing Option
  Call/Puts I've
  >     been able to return about $1,000/day.   This isn't
  consistent - but
  >     over a week a gain of several thousand is not out of
  the question. 
  >       Even on a market red day like today, our portfolio
  is up.
  >      >
  >      > My question is, has anyone here either done it,
  or considered
  >     hiring a full-time person to essentially manage
  surplus cash and
  >     make it print more cash through investing?   If done
  right, I feel
  >     like this could potentially finance a lot of future
  projects we want
  >     to build.  Of course, hire the wrong person and you
  lose all that
  >     money...
  >      >
  >      > --
  >      > AF mailing list
  >      > AF@af.afmug.com
  AF@af.afmug.com>
  >      > http://af.afmug.com/mailman/listinfo/af_af.afmug.com
  >     -- 
  >     AF mailing list
  >     AF@af.afmug.com AF@af.afmug.com>
  >     http://af.afmug.com/mailman/listinfo/af_af.afmug.com
  > 
  > 
  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  
  
  -- 
  

  Carl Peterson
  
  PORT NETWORKS
  401 E Pratt St, Ste 2553
  Baltimore, MD 21202
  (410) 637-3707 

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] OT: Bitcoin

[Jesse Dupont]

When 1 BTC is exchanging at $16K USD, you can make money with S9 miners (3 
years old) with electricity at 2.2 cents/KWH. With S19 miners (current), at 
same exchange rate, you can make money with electricity at 5.7 cents/KWH. At 
current exchange rate, your electricity can be almost 13 cents/KWH and still 
make money, which is much more mainstream. The real value comes when can keep 
and/or spend your earnings in BTC form. The moment you convert it back to any 
regulated currency, you’re taxed (the illegality of not reporting BTC earnings 
that stay as BTC notwithstanding). If there is enough of a native BTC economy 
available to you, that’s an automatic 18-35% increase in value compared to any 
regulated currency.

Sent from my iPhone

> On Jan 10, 2021, at 2:08 PM, Matt Hoppes  
> wrote:
> 
> Zcash looks like it could be positive.
> 
>> On 1/10/21 2:50 PM, Craig House wrote:
>> I mined in my house 2-3 years ago.  Trust me the heat is nice but not free.  
>> I spent 1700$ a month on electricity and had to open my windows in my house 
>> if it was above 40 outside.I was mining eth with about 75 graphics 
>> cards.  Never got into ASICS machines cause they are single purpose and 
>> planned obsolescence so I never could justify the cost.
>> Sent from my iPhone
 On Jan 10, 2021, at 12:52, Mark Radabaugh  wrote:
>>> 
>>> Mining bitcoin with the rational of generating heat for your house is a 1 
>>> to 1 efficiency from a thermodynamic standpoint. Every KW of heat costs you 
>>> whatever your electric rate is. You are earning some money (coin) for each 
>>> KW which reduces your effective heating cost.
>>> 
>>> At this point I don’t think any of the currencies mining value is even 
>>> close to the electric rate required to produce it. Put your money into a 
>>> good geothermal system that gives you 3KW of heat for each 1KW of 
>>> electricity you put into it.
>>> 
>>> I’m willing to bet you will be farther ahead spending your money on 
>>> geothermal, solar, and insulation.
>>> 
>>> Mark
>>> 
>>> 
 On Jan 10, 2021, at 1:22 PM, Matt Hoppes 
  wrote:
 
 Now this is an interesting idea I had never considered!
 
 On 1/10/21 1:15 PM, Mike Hammett wrote:
> I'm intrigued by mining cryptocurrency to generate heat in my house that 
> pays for itself.
> I understand that there is something called profit switching that changes 
> which currency is being mined based on profitability.
> I understand that ASIC miners are way more profitable.
> I understand that algorithm support in ASIC miners varies.
> Where can I go to separate the wheat from the chaff? Google returns a lot 
> of crap.
> I understood that you mine the coin, stuff happens, then the coin goes 
> into your wallet, of whatever type. You then hold it or exchange it for 
> goods or cash.
> What are pools?
> What are stratums?
> Where can I find more information on asic miners, to find which ones are 
> best able to generate a return for their cost?
> -
> Mike Hammett
> Intelligent Computing Solutions 
> 
> Midwest Internet Exchange 
> 
> The Brothers WISP 
> 
> 
 
 -- 
 AF mailing list
 AF@af.afmug.com
 http://af.afmug.com/mailman/listinfo/af_af.afmug.com
>>> 
>>> 
>>> -- 
>>> AF mailing list
>>> AF@af.afmug.com
>>> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
> 
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] CARES ACT money requirements

[Jesse Dupont]

AFAIK, CARES Act money is state-by-state. Wyoming did some Broadband specific 
funding, which all had to be built by year’s end, whereas South Dakota is doing 
grants for any small business had at least a 25% decrease in gross margins 
comparing a period in 2020 to 2019. Montana, on the other hand, only doled out 
CARES Act money for health care related things.

Sent from my iPhone

> On Nov 30, 2020, at 5:57 PM, Matt Hoppes  
> wrote:
> 
> Does anyone know what the requirements are for being able to use CARES ACT 
> money to build broadband?
> 
> I’m assuming you can’t use it to build into an area that already has feasible 
> broadband?
> 
> Does anyone know the usage requirements?
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] OT: Slow Browsers

[Jesse Dupont]

I wonder if it’s because sell that data has moved to the cloud (because of 
cross-device sync) and that even if it is cached/sync’d locally, it has to 
authenticate to the cloud before the data store is unlocked. I’ve also noticed 
this on Safari after the last couple of MacOS updates.

Sent from my iPhone

> On Nov 18, 2020, at 6:29 AM, Nate Burke  wrote:
> 
> Is it just me or have both Firefox and chrome gotten really slow over the 
> last couple weeks/updates.
> 
> Firefox takes a good 5 seconds or so to start predictive showing me URL's out 
> of my history.  Where I would start typing the first couple characters of 
> URL's I visit all the time.  Now it's just like 'I have no idea what you're 
> looking for, but here are some random google predictions'  Then 'J/K here's 
> the URL'
> 
> Chrome has started doing this thing where I have a page open, I type a new 
> URL in and hit enter, and then everything returns to the original page/URL 
> with no indication that it's doing anything.  Then after about 7 seconds, the 
> new page loads with the new URL.
> 
> I feel like this is the same across all my machines.  Anyone else noticing 
> problems?  I only use Chrome and Firefox, I haven't installed Edge yet.
> 
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Fwd: Re: Solar calculator?

[Jesse Dupont]

At my larger solar sites where a 5-10A battery charger just isn’t enough, I 
have had good success with the Tycon 65V 1200W AC-DC power supply 
(PSVHP-65-1200) fed into a different MPPT controller, hooked to the batteries 
in parallel with the other PV controller. Into my 24V string, I generally get 
around 38A charging while it’s running, resulting in good “fuel use efficiency”.

At smaller solar sites, I have used a Tycon 300W charger (kinda bulky) or a 
Deep Sea Electronics DIN rail charger.

Generally, if your battery string is wired for 24V, any high amperage constant 
current limiting 48V power supply into an MPPT solar controller makes a great 
charger for running on a generator. If you’re 48V, it seems to be harder to 
find an economical 60+V high amperage constant current limiting power supply, 
but the Tycon above seems to be decent.

Sent from my iPhone

> On Nov 8, 2020, at 1:51 PM, Robert  wrote:
> 
>  This was supposed to go to the list.   So if anyone wants to chime in as to 
> their method of charging these batteries when on A/C I would be interested.   
> On solar with morningstar there is a whole bunch of info on setting the 
> morningstar up for what is believed to be the best, but for A/C I am still 
> reading conflicting info..
> 
> 
>  Forwarded Message 
> Subject:  Re: [AFMUG] Solar calculator?
> Date: Sun, 8 Nov 2020 17:23:59 +
> From: Gino A. Villarini 
> To:   i...@avantwireless.com 
> 
> 
> Awesome, thanks for the info!
>  
> From: Robert 
> Date: Sunday, November 8, 2020 at 11:49 AM
> To: Gino A. Villarini 
> Subject: Re: [AFMUG] Solar calculator?
> 
> These two batteries are a game changer for price, the first got a great 
> review from Will Prowse.  I am about to start testing the second.
> 
> https://www.amazon.com/SOK-Battery-Rechargeable-Temperature-Disconnect/dp/B087BJYGV4/ref=sr_1_2?dchild=1=sok+lithium+battery+12v+200ah=1604849875=8-2
> 
> https://www.amazon.com/Lithium-LiFePO4-Overland-Off-Grid-Application/dp/B088RM4W48/ref=pd_vtp_263_2/144-1995328-4702232?_encoding=UTF8_rd_i=B088RM4W48_rd_r=37bceb2e-57cc-43cc-b204-a1e0803c8c1d_rd_w=kmh23_rd_wg=jqV8b_rd_p=4f2ab3e8-468a-4a7c-9b91-89d6a9221c29_rd_r=1NAA59G6N3MGTG5B11A9=1=1NAA59G6N3MGTG5B11A9
> 
> On 11/8/20 5:18 AM, Gino A. Villarini wrote:
> Yeah, we are inclined towards Lithium
>  
> From: AF 
> Date: Saturday, November 7, 2020 at 11:03 PM
> To: af@af.afmug.com 
> Subject: Re: [AFMUG] Solar calculator?
> 
> But you want to only take a lead battery to 1/2 that to avoid decreasing the 
> longevity of them, so double the battery size and, if the batteries are going 
> to be outside in the winter you will lose performace so double it again.
> 
> Lithium, I have learned that yes you can discharge them fully but you only 
> want to charge them to 80% to get maximum life.   So you only need to go 120% 
> of your battery calculation for lithium...
> 
> 
> 
> 
> On 11/7/20 1:40 PM, ch...@wbmfg.com wrote:
> 30 watts * 24 *14 = approx 10 kWh.  So you need a 10 kWh battery.  10 kWh/48 
> = 210 Ah 48 volt battery.
>  
> Now, I have lotsa experience at my latitude and weather.  I will take a stab 
> at your situation.  If you can easily get a generator to the site it makes a 
> huge difference. 
>  
> I would say you need a minimum of 300 watts of panel which is not much.  You 
> can get one single panel of that size.  Depending on the type of charge 
> controller you use, you will probably want 2 or 3 panels to get the voltage 
> up in the 60-100 volt range. 
>  
> So take a look at the MMPV of the panels you choose and add them up in 
> series.  Take a look at the max input voltage of your charge controller.  Try 
> to get the series voltage of the panels close to that max input voltage if 
> you can. 
>  
> I promise it will work if you do 600 watts of panel, that would be at my 
> latitude, middle of winter with snow and storms.  20X the load is my rule of 
> thumb here for off grid.  20X the load and 2 weeks of battery autonomy saves 
> you from expensive helicopter rides in the middle of winter.  So that is why 
> I am recommending 10X for you.  I think Bill once said he can get by with 10X 
> down where he lives. 
>  
> From: Gino A. Villarini
> Sent: Saturday, November 7, 2020 12:13 PM
> To: AnimalFarm Microwave Users Group
> Subject: [AFMUG] Solar calculator?
>  
> Anyone with a good online calculator?
>  
> Or can you assits with:
>  
> What size of panel and batteries would I need for a 48v 30W setup to run 24/7 
> for at least 14 days without power?
> Gino Villarini 
> Founder/President
> @gvillarini
> t: 787.273.4143 Ext. 204
> 
> 
> 
>  
>  
>  
>  
>  
> 
> www.aeronetpr.com | Metro Office Park #18 Suite 304 Guaynabo, PR 00968
> 
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
> 
> 
> 
>  
> 
> 
>  
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- 
AF mailing list
AF@af.afmug.com

Re: [AFMUG] Mikrotik Auto Provisioning

[Jesse DuPont]

  
  
All fair points. I was thinking that if NetInstall w/config truly
worked, I'd have a shot. Not withstanding the burden of having to do
a NetInstall w/config on every CPE router deployed, the rest would
be fairly lightweight (after the initial work of getting it
working).

For example, the "new default config" (which was Netinstalled) would
have many of the packages disabled (such as aMPLS, Routing, Hotspot,
etc.) and a script that runs every few minutes. Something like,
check for existence of a file that matched, say ether1 MAC or the
license key or something unique to that router. If it didn't exist
(i.e. it was defaulted), go download that file name from a known URL
using fetch and then run that file. In it would be that router's
specific config (wifi ssid's/passphrases, or pppoe user or
whatever). Ideally, the router would check for changes to its config
at some regular interval so could also use it to push out additional
changes the customer wanted or the instruction to go download and
update to the latest stable RouterOS, then reboot again afterwards
to update the firmware. I don't know, it's getting complicated...

For config file management, someone smarter than me could probably
whip something out using Python or PHP to manage config files on an
HTTP server (that fetched connected to) and handle a fixed number of
configurable items (like SSID, etc.). Even doing port forwards this
way wouldn't be that difficult to handle.

I suppose an alternative to having the router go pull its config
would be to use the API to push it - UNIMUS might be more cost
effective/less troublesome in the end.

I kind of like the idea of giving the customer the TikApp. The
"Internet Detect" and "Kid Controls" features might be helpful to
them. In the end though, I agree that even a stripped down user in
the TikApp still has too many knobs - too much room for error. I
guess we'd have to really push the "managed" part of it and for them
to call us if they wanted a change, which would be trivial for us to
accomplish.

  
  
  
  
  
  
  
  
  
      
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 10/24/20 1:20 PM, Adam Moffett
  wrote:


  
  I think they can't be a true "zero touch" config because the
default config on most models has a firewall on ether1 which
prevents outside access. 
  You'll have to login once and load a config file, or have a
config that you paste into the terminal.  Both methods are
pretty fast though.  After that you could use Unimus or
similar.  I'd be tempted to disable the reset button.  I don't
remember a situation where I actually fixed a Mikrotik issue by
resetting to defaults.  I think it's more likely to be used to
break the Internet and force a truck roll.
  
  It seems like Netinstall ought to be the way to get your
initial config done, but I seem to have issues with it.  I don't
remember what my issue was, and I'm sure it was fixable if I
really wanted to.  If you get that working reliably for you,
then replacing the default config would be a wise choice.
  
  My biggest issue with Mikrotik as a customer prem router is you
can't turn over any control to the customer.  I mean, of course,
you could give them a login but there are too many knobs there. 
They only really need to do port forwards and change their WiFi
SSID and WPA2 Key.  The NAT settings are hard for regular people
to grasp, and everything else just has so many buttons and menus
that they're almost guaranteed to mess something up.  I gave two
different customers access to a Mikrotik on their customer prem,
and maybe it's just random coincidence, but they both broke
things by playing with the "hotspot" menu.  
  
  Where I saw Mikrotik being used a customer prem router, they
were pre-provisioning with a copy+paste script.  They had a
customer login set on each one, but they avoided handing it
out.  No real mass management in their case.  When one of those
remote-access bugs forced updates they just did them
onsey-twosey.  
      
  
  
  On 10/23/2020 10:08 PM, Jesse Dupont
wrote:
  
  

I don’t disagr

Re: [AFMUG] Mikrotik Auto Provisioning

[Jesse Dupont]

I don’t disagree, but I was hoping...

Sent from my iPhone

> On Oct 23, 2020, at 6:59 PM, Adam Moffett  wrote:
> 
> 
> This is the path to the dark side.  
> 
> On 10/23/2020 7:34 PM, Jesse DuPont wrote:
>> Question for anyone using Mikrotik routers in customers' homes:
>> 
>> Anyone doing any kind of zero-touch provisioning with them? If so, what 
>> method? Unimus? Minim? Something home grown?
>> Are you doing a NetInstall with an included configuration so they have some 
>> kind of baseline config after a default? Just disabling the reset button?
>> How are you managing them after they're installed, Dude? Something TR-069? 
>> Something SNMP?
>> 
>> Jesse DuPont
>> Owner / Network Architect
>> email: jesse.dup...@celeritycorp.net
>> Celerity Networks LLC / Celerity Broadband LLC
>> Like us! facebook.com/celeritynetworksllc
>> Like us! facebook.com/celeritybroadband
>> 
>>  
>> 
>> 
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

[AFMUG] Mikrotik Auto Provisioning

[Jesse DuPont]

  
  
Question for anyone using Mikrotik routers in customers' homes:

Anyone doing any kind of zero-touch provisioning with them? If so,
what method? Unimus? Minim? Something home grown?
Are you doing a NetInstall with an included configuration so they
have some kind of baseline config after a default? Just disabling
the reset button?
How are you managing them after they're installed, Dude? Something
TR-069? Something SNMP?

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Mikrotik HAP Ac-Lite. Sucks for Wifi

[Jesse DuPont via AF]

  
  
Lee Elkasri at WLAN Mall said he had 7 in stock (this was last
week), I ordered 2. Now that you mention it, I haven't received
shipping notification... :)

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 10/6/20 8:20 AM, Sam Lambie wrote:


  
  I haven't found any HAP ac3's. Where did you get
them Jesse?
  
  
On Mon, Oct 5, 2020 at 6:28 PM
  Jesse DuPont <jesse.dup...@celeritycorp.net>
  wrote:


   For us, we include a router with the service so the
extra value of the ac3 (compared to the ac) and somewhat
better (at least theoretical) reach (compared to the ac2)
puts it in a value slot we've struggled to find a Mikrotik
product to fill. We'll see how the tests go.

  
    Jesse DuPont
Owner / Network
  Architect
  email: jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us! facebook.com/celeritynetworksllc
Like us! facebook.com/celeritybroadband
 
  

On 10/5/20 6:02 PM, Ken Hohhof wrote:


  
2
chains 2.4GHz, 2 chains 5 GHz.  hAP ac is 3 chains
2.4, 3 chains 5.  Not clear a few dB of antenna gain
makes up for fewer chains.
 

  
From: AF 
On Behalf Of Jesse DuPont
Sent: Monday, October 5, 2020 6:46 PM
To: AnimalFarm Microwave Users Group ;
Sam Lambie 
Subject: Re: [AFMUG] Mikrotik HAP
Ac-Lite. Sucks for Wifi
  

 
We just ordered a couple of the new
  hAP ac3's to test - looking forward to seeing how they
  do. The external antenna should be helpful.

   
  Jesse DuPont
  Owner / Network Architect
email: jesse.dup...@celeritycorp.net
Celerity Networks LLC / Celerity
  Broadband LLC
Like us! facebook.com/celeritynetworksllc
  Like us! facebook.com/celeritybroadband
   


  On
  10/5/20 5:11 PM, Sam Lambie wrote:


  
Thanks
David. 

   

  
   
  

  On
  Mon, Oct 5, 2020 at 2:02 PM David Coudron <david.coud...@advantenon.com>
  wrote:


  

  We started with Hap ac
lite and moved to the ac2.   It is
significantly better.   We had some ethernet
port failures on the ac lite here and there,
and we have not seen that on the ac2
either.   So it is a much better option in
our opinion.
   
  Thanks,
   
  David Coudron
  From: AF <af-boun...@af.afmug.com>
On Behalf Of Sam Lambie
Sent: Monday, October 5, 2020 11:50
AM
To: AnimalFarm Microwave Users Group
<af@af.afmug.com>
Subject: [AFMUG] Mikrotik HAP
Ac-Lite. Sucks for Wifi
   
  
We have deploying the
  hap-ac-lite for over a year now and love
  the customization that you can do with
  flashing t

Re: [AFMUG] Mikrotik HAP Ac-Lite. Sucks for Wifi

[Jesse DuPont]

  
  
For us, we include a router with the service so the extra value of
the ac3 (compared to the ac) and somewhat better (at least
theoretical) reach (compared to the ac2) puts it in a value slot
we've struggled to find a Mikrotik product to fill. We'll see how
the tests go.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 10/5/20 6:02 PM, Ken Hohhof wrote:


  
  
  
  
  
2
chains 2.4GHz, 2 chains 5 GHz.  hAP ac is 3 chains 2.4, 3
chains 5.  Not clear a few dB of antenna gain makes up for
fewer chains.
 

  
From: AF
 On Behalf Of Jesse
DuPont
Sent: Monday, October 5, 2020 6:46 PM
To: AnimalFarm Microwave Users Group
; Sam Lambie

Subject: Re: [AFMUG] Mikrotik HAP Ac-Lite. Sucks
for Wifi
  

 
We just ordered a couple of the new hAP
  ac3's to test - looking forward to seeing how they do. The
  external antenna should be helpful.

  

  Jesse DuPont
  Owner / Network Architect
email: jesse.dup...@celeritycorp.net
Celerity Networks LLC / Celerity Broadband LLC
Like us! facebook.com/celeritynetworksllc
  Like us!
  facebook.com/celeritybroadband
   


  On
  10/5/20 5:11 PM, Sam Lambie wrote:


  
Thanks
David. 

   

  
   
  

  On
  Mon, Oct 5, 2020 at 2:02 PM David Coudron <david.coud...@advantenon.com>
  wrote:


  

  We started with Hap ac lite and
moved to the ac2.   It is significantly better.   We
had some ethernet port failures on the ac lite here
and there, and we have not seen that on the ac2
either.   So it is a much better option in our
opinion.
   
  Thanks,
   
  David Coudron
  From: AF <af-boun...@af.afmug.com>
On Behalf Of Sam Lambie
Sent: Monday, October 5, 2020 11:50 AM
To: AnimalFarm Microwave Users Group <af@af.afmug.com>
Subject: [AFMUG] Mikrotik HAP Ac-Lite. Sucks
for Wifi
   
  
We have deploying the
  hap-ac-lite for over a year now and love the
  customization that you can do with flashing the
  routers with a custom configuration, graphing, and
  all the other things that Mikrotiks are
  capable of.

  However, the WiFi sucks a big
bag of d#$k. Does anyone have a recommendation
in the Mikrotik world for WiFi that is pretty
affordable that works? I ordered some HAP-AC2
but haven't received them. Specs show almost a 7
db gain in 2.4 and 3 db gain in 5ghz, so maybe
that will help out. 


  We are trying hard not to go
the managed WiFi solution as of yet because
handing money over to someone else to manage
something like WiFi is a bummer.

  
 
  
  -- 
  
-- 
  Sam Lambie
  Taosnet Wireless Tech.
  575-758-7598 Office
  www.Taosnet.com
  

  

  
  --
  
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listin

Re: [AFMUG] Mikrotik HAP Ac-Lite. Sucks for Wifi

[Jesse DuPont]

  
  
We just ordered a couple of the new hAP ac3's to test - looking
forward to seeing how they do. The external antenna should be
helpful.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 10/5/20 5:11 PM, Sam Lambie wrote:


  
  Thanks David.


  
  
  
On Mon, Oct 5, 2020 at 2:02 PM
  David Coudron <david.coud...@advantenon.com>
  wrote:


  

  We started with Hap ac lite and moved
to the ac2.   It is significantly better.   We had some
ethernet port failures on the ac lite here and there,
and we have not seen that on the ac2 either.   So it is
a much better option in our opinion.
   
  Thanks,
   
  David Coudron
  From: AF <af-boun...@af.afmug.com>
On Behalf Of 
Sam Lambie
Sent: Monday, October 5, 2020 11:50 AM
To: AnimalFarm Microwave Users Group <af@af.afmug.com>
Subject: [AFMUG] Mikrotik HAP Ac-Lite. Sucks for
Wifi
   
  
We have deploying the hap-ac-lite
  for over a year now and love the customization that
  you can do with flashing the routers with a custom
  configuration, graphing, and all the other things that
  Mikrotiks are capable of.

  However, the WiFi sucks a big bag
of d#$k. Does anyone have a recommendation in the
Mikrotik world for WiFi that is pretty affordable
that works? I ordered some HAP-AC2 but haven't
received them. Specs show almost a 7 db gain in 2.4
and 3 db gain in 5ghz, so maybe that will help out. 


  We are trying hard not to go the
managed WiFi solution as of yet because handing
money over to someone else to manage something like
WiFi is a bummer.
  
  
 
  
  -- 
  
-- 
  Sam Lambie
  Taosnet Wireless Tech.
  575-758-7598 Office
  www.Taosnet.com
  

  

  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  
  
  -- 
  -- 
Sam Lambie
Taosnet Wireless Tech.
575-758-7598 Office
www.Taosnet.com
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] POE Site Survey Battery Options

[Jesse DuPont]

  
  
Today we use a Mimotik battery/Mikrotik combo. Before that, we had a
Ryobi 18V lantern that had been gutted and a Mirotik hAP placed
inside with the RJ45 PoE out port wired to a jack on the outside of
the lantern. In either case, the power source powered up the
Mikrotik (which created the WiFi and powered the radio). We do PPPoE
so the Mikrotik would also test that the bridges were configured
right by establishing a PPPoE session.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 10/5/20 9:18 AM, Josh Luthman wrote:


  
  He sucks at charging it then.  They easily last all
day.


My guys boot them up in the truck.
  

  


Josh Luthman
24/7 Help Desk: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373

  
  

  
  
  
On Mon, Oct 5, 2020 at 10:53
  AM Nate Burke <n...@blastcomm.com> wrote:


   My Installer won't use the powerlink
anymore, it took way to long to boot, and the battery was
always dead when we needed it.  We just use https://www.balticnetworks.com/tycon-power-usb-powered-24v-passive-poe-inserter-24vdc-12w-poe-two-usb-power-inputs
with a USB power pack now.  Just have to be careful on the
older radios as to the pinouts for POE.  The newer EPMP/450
radios can accept either polarity.  

On 10/5/2020 9:31 AM, Josh Luthman wrote:


  LinkTechs Powerlink.

Tried the rest.  Made a bunch of homemade ones.  It's
just not worth the effort and they've all got their
problems.

  

  
  
  Josh Luthman
  24/7 Help Desk: 937-552-2340
  Direct: 937-552-2343
  1100 Wayne St
  Suite 1337
  Troy, OH 45373
  


  
  
  
On Mon, Oct 5, 2020 at
  10:29 AM Matt <matt.mailingli...@gmail.com>
  wrote:

What is everyone
  using to power up an SM for site surveys nowadays?
  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  
  


  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Air Conditioned Cabinets

[Jesse DuPont]

  
  
Minifort 16U has an AC option.
https://amprod.us/product-category/unvented-minifortenc32/

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 10/2/20 2:22 PM, Nate Burke wrote:

Not
  big.  A Couple big batteries in the bottom, UPS and maybe 15U for
  equipment.
  
  
  On 10/2/2020 3:20 PM, Jim Bouse [Brazos WiFi] wrote:
  
  How big of a cabinet do you need?


Jim Bouse

Owner - Brazos WiFi

979-999-7000

http://www.brazoswifi.com


-Original Message-

From: AF  On Behalf Of Nate Burke

Sent: Friday, October 2, 2020 3:10 PM

To: Animal Farm 

Subject: [AFMUG] Air Conditioned Cabinets


Looking for leads on an Outdoor Cabinet with AC.  I was working
with TSR Comsupply, but they've gone radio silent on me this
week. Doesn't have to be new.  My problem is I only have a
single 20A/120vac circuit for the cabinet, so the AC size really
matters. Doesn't have to keep it chilled, just below 100
degrees.


  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Commissioned Sales

[Jesse DuPont]

  
  
We do it as one time commission - usually 1x or sometimes 2x the
monthly for that sale. We give it to them again on a renewal. We
usually have term contracts so as to ensure the revenue stream over
time since we're paying the commission up front. We haven't done a
recurring commission yet.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 9/20/20 8:19 AM, Matt Hoppes wrote:


  Does anyone have an excel sheet or other tracking method for a commissioned sales person they’d want to share, or share how you do it?

We are hiring our first outside sales person. She has a base salary, but then gets bonuses based on closed sales, as well as recurring commission for accounts that stay. 

Trying to figure out the best way to track this. 



  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Workers Comp

[Jesse Dupont]

The Hartford.

Sent from my iPhone

> On Sep 15, 2020, at 8:31 PM, Matt Hoppes  
> wrote:
> 
> Who do you all have your workers comp insurance with?  Unitel is not the 
> insurance company, they are just a broker. 
> 
> Who is your underlying carrier?
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Looking for a 20A Auto Transfer Outdoor switch/plug

[Jesse DuPont]

  
  
We're using this one. It's only 15A, but works fantastic.

https://www.amazon.com/gp/product/B004S5Y158/ref=ppx_yo_dt_b_search_asin_title?ie=UTF8=1

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 9/10/20 11:18 AM, Sterling Jacobson
  wrote:


  
  
  
  
I should have just asked this here first
  instead of the Facebook groups.
Sometimes people are just so lazy it makes
  me doubt humanity.
All I got out of Facebook so far with this
  questions is idiots mansplaining hack about things I already
  know.
 
Anywho:
 
If you know of a product that exists that
  fits the bill, please point me in the right direction because
  I’m having a hell of a time finding it.
 
Basically this, but AUTO TRANSFER instead
  of manual:
 
http://www.steadypower.com/products.php?product=Reliance-CSR201L-Transfer-Switch-%2820A%29
  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Aviat Mib file

[Jesse Dupont]

Whoops... yes, auto incorrect struck again. Processor.

Sent from my iPhone

> On Sep 3, 2020, at 8:03 PM, Josh Baird  wrote:
> 
> 
> Haha - yes, management of these devices can be quite slow.  The radios 
> themselves are not slow, though.  :)
> 
>> On Thu, Sep 3, 2020 at 9:57 PM Ken Hohhof  wrote:
>> That had me totally confused until I realized you probably meant processor.  
>> That takes the typo/autocorrect prize for the day.
>> 
>>  
>> 
>> From: AF  On Behalf Of Jesse Dupont
>> Sent: Thursday, September 3, 2020 8:32 PM
>> To: AnimalFarm Microwave Users Group 
>> Subject: Re: [AFMUG] Aviat Mib file
>> 
>>  
>> 
>> Their management professor does seem very lacking.
>> 
>> Sent from my iPhone
>> 
>> 
>> 
>> 
>> On Sep 3, 2020, at 7:16 PM, Josh Baird  wrote:
>> 
>> 
>> 
>> Be careful.. the WTM radios don't handle lots of SNMP queries very well.  
>> They will start rejecting requests after 15+ concurrent requests in a short 
>> period of time.
>> 
>>  
>> 
>> On Thu, Sep 3, 2020 at 4:24 PM Steve Jones  wrote:
>> 
>> Im not finding a mib file anywhere for the wtm4200 is there one? 
>> 
>> -- 
>> AF mailing list
>> AF@af.afmug.com
>> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
>> 
>> -- 
>> AF mailing list
>> AF@af.afmug.com
>> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
>> 
>> -- 
>> AF mailing list
>> AF@af.afmug.com
>> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Aviat Mib file

[Jesse Dupont]

Their management professor does seem very lacking.

Sent from my iPhone

> On Sep 3, 2020, at 7:16 PM, Josh Baird  wrote:
> 
> 
> Be careful.. the WTM radios don't handle lots of SNMP queries very well.  
> They will start rejecting requests after 15+ concurrent requests in a short 
> period of time.
> 
>> On Thu, Sep 3, 2020 at 4:24 PM Steve Jones  wrote:
>> Im not finding a mib file anywhere for the wtm4200 is there one? 
>> -- 
>> AF mailing list
>> AF@af.afmug.com
>> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Aviat Mib file

[Jesse Dupont]

I just emailed Ken Ruppel and he sent it to me.

Sent from my iPhone

> On Sep 3, 2020, at 1:24 PM, Steve Jones  wrote:
> 
> 
> Im not finding a mib file anywhere for the wtm4200 is there one? 
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] UBNT sfp+

[Jesse DuPont]

  
  
I would just force the interfaces on both ends to be 10G full duplex
(no auto negotiation).

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 8/25/20 8:50 AM, ch...@wbmfg.com
  wrote:


  
  

  Are UBNT switches fussy about SFPs?  I got a couple of
generic 10G units from FS but the switches are not talking
to each other.  Have not checked the fiber yet but thought I
would ask this first.  

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] QB for billing

[Jesse DuPont]

  
  
To Ken's point - we reduced our annual billing software expense from
$24,000/yr to about $4000/yr by moving away from a
per-subscriber-fee billing software to a
buy-it-once-and-pay-annual-maintenance billing software. The
$4000/yr includes the XL EC2 Windows server instance. In terms of
billing and operational functionality, it was a NET0 change.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 8/14/20 12:32 PM, Cameron Crum
  wrote:


  
  What is your business model based on again? Why
would you deny someone else the same model? I think most people
don't realize that you are always going to pay one way or
another. Just because it is big chunks every once in a while vs
small chucks over time doesn't make a difference. You may pay in
other ways like increased employment costs, multiple platforms
to perform all the same functions, time in doing triple data
entry into those platforms, etc, etc. 
  
  
On Fri, Aug 14, 2020 at 11:53
  AM Seth Mattinen <se...@rollernet.us> wrote:

On
  8/14/20 5:46 AM, Mike Hammett wrote:
  > SAAS is a developer's lazy way out. Traditionally, you
  had to innovate 
  > with your product to entice people to give you more
  money. Now they have 
  > to give you more money to keep operating.
  
  
  I find it frustrating because *everyone* wants a piece of
  recurring 
  revenue. Am I just generating revenue to feed to
  subscriptions?
  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] QB for billing

[Jesse DuPont]

  
  
We use Emerald for our ISP billing and it does not have any
per-subscriber fees; run it on whatever server you want. The only
post-purchase fee to IEA-Software is annual support which is based
on the number of active accounts and is extremely reasonable. People
give Emerald a bad rap because it's been around for a long time and
some say it has a dated interface. However, it's super fast, stable,
has really great RADIUS integration and supports all mainstream
card/ACH processors.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 8/13/20 2:25 PM, ch...@wbmfg.com
  wrote:


  
  

  Maybe, but I don’t wanting my billing system taking a
dollar or two bite from every customer every month.  I would
rather just buy it and own it.  And never have to pay for
maint or upgrades...
  

   
  
From: Cameron
Crum 
Sent: Thursday, August 13, 2020 2:22 PM
To: AnimalFarm Microwave Users
Group 
Subject: Re: [AFMUG] QB for billing
  

 
  
  
What is painless? I think it is less painful
  or more painless to start with something that will scale
  with the business. I know it isn't always fun, but better
  now than later when you are at a pain point that forces
  you to something else. I always found that people were
  flustered and ill prepared when it got to that point, and
  it resulted in mistakes being made and thus more pain. I'd
  say bite the bullet and go with something talyor made now.
  You'll be thankful down the road. 
 

  On Thu, Aug 13, 2020 at
3:01 PM <ch...@wbmfg.com>
wrote:
  
  

  

  Has anyone tried to use Quickbooks for
customer billing and automatic ACH/credit card
payments?
  Looking for something painless to start
with.  

  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
  




-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
  

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] QB for billing

[Jesse DuPont]

  
  
We did this up until about 400 customers. All customers were billed
using a "recurring sales receipt", with either card or ACH info,
using Intuit's processing. It worked okay. It tried its hardest to
match up all the payment receipts with actual bank deposits.
Sometimes, it would get off and we'd have to manually reconcile the
sales receipts to the deposit.

Background - doing recurring charges (card or ACH) in QB isn't like
a traditional billing system where it creates an invoice and a
payment as separate things. The recurring charges are the "thing"
and it's similar to a point-of-sale receipt from a hardware store
where you paid on the spot (you get a sales receipt for the
purchase).

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 8/13/20 2:00 PM, ch...@wbmfg.com
  wrote:


  
  

  Has anyone tried to use Quickbooks for customer billing
and automatic ACH/credit card payments?
  Looking for something painless to start with.  

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Good Switches

[Jesse DuPont]

  
  
Used - well under $2500, some way less.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 6/30/20 10:23 AM, Adam Moffett
  wrote:


  
  $15k cheap?
  
  On 6/30/2020 12:20 PM, Josh Baird
wrote:
  
  

... and cheap, too.  I'll take a look at these!


  On Tue, Jun 30, 2020 at
11:14 AM Jesse DuPont <jesse.dup...@celeritycorp.net>
wrote:
  
  
 Brocade ICX7750-48F is a solid choice.
  

  Jesse DuPont
  Owner /
Network Architect
email: jesse.dup...@celeritycorp.net
Celerity
Networks LLC / Celerity
  Broadband LLC
Like us! facebook.com/celeritynetworksllc
  Like us! facebook.com/celeritybroadband
   

  
  On 6/30/20 8:56 AM, Josh Baird wrote:
  
  
EX4600 is nice, but it's not cheap.  Yes,
  you can create a VC using the 40Gbps interfaces (or
  the 10Gbps interfaces).  You may consider the older
  EX4550 if you are trying to save money.
  


I'm actually looking for something similar.. I
  have a few of the CRS317-1G-16S+RM in stock, but
  tbh, I'm a little scared to use them, and I'm also
  not looking forward to the miserable L2 config on
  CRS.  I really just need 4-6 SFP+ interfaces for
  this particular application.


The Cisco Nexus 3064 is another cheap/old
  option, but seems to work fine for L2 access
  (servers, etc).


  



  On Tue, Jun 30, 2020
at 10:52 AM Adam Moffett <dmmoff...@gmail.com>
wrote:
  
  

  Lots of 10gig SFP+
  I just eyeballed the Juniper EX4600.  Wondering
if I can stack chassis using the 40gig ports.
  
  
  On 6/30/2020 10:49 AM, Josh Baird wrote:
  
  
What interface config are
  you looking for?


  On Tue, Jun
30, 2020 at 10:47 AM Adam Moffett <dmmoff...@gmail.com>
wrote:
  
  

  For the moment just L2: VLAN, ethertype
filter, port isolation.standard
stuff.
  I'm assuming Juniper has software for
central management?  I poo-poo'd that
stuff for a long time, but try to push
one change out to 300 Mikrotiks and
spending $10k on management software
starts to look attractive all of a
sudden.
  
  
  On 6/30/2020 10:31 AM, Josh Baird
wrote:
  
  
What featureset do you
  need?  Just L2?  Any L3 features?
  
  
  Juniper EX is my go-to for most
applications.



  On
Tue, Jun 30, 2020 at 10:29 AM Adam
Moffett <dmmoff...@gmail.com>
 

Re: [AFMUG] Good Switches

[Jesse DuPont]

  
  
Brocade ICX7750-48F is a solid choice.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 6/30/20 8:56 AM, Josh Baird wrote:


  
  EX4600 is nice, but it's not cheap.  Yes, you can
create a VC using the 40Gbps interfaces (or the 10Gbps
interfaces).  You may consider the older EX4550 if you are
trying to save money.

  
  
  I'm actually looking for something similar.. I have a few
of the CRS317-1G-16S+RM in stock, but tbh, I'm a little
scared to use them, and I'm also not looking forward to the
miserable L2 config on CRS.  I really just need 4-6 SFP+
interfaces for this particular application.
  
  
  The Cisco Nexus 3064 is another cheap/old option, but
seems to work fine for L2 access (servers, etc).
  
  

  
  
  
On Tue, Jun 30, 2020 at 10:52
  AM Adam Moffett <dmmoff...@gmail.com> wrote:


  
Lots of 10gig SFP+
I just eyeballed the Juniper EX4600.  Wondering if I can
  stack chassis using the 40gig ports.


On 6/30/2020 10:49 AM, Josh Baird wrote:


  What interface config are you looking for?
  
  
On Tue, Jun 30, 2020
  at 10:47 AM Adam Moffett <dmmoff...@gmail.com>
  wrote:


  
For the moment just L2: VLAN, ethertype filter,
  port isolation.standard stuff.
I'm assuming Juniper has software for central
  management?  I poo-poo'd that stuff for a long
  time, but try to push one change out to 300
  Mikrotiks and spending $10k on management software
  starts to look attractive all of a sudden.


On 6/30/2020 10:31 AM, Josh Baird wrote:


  What featureset do you need?  Just
L2?  Any L3 features?


Juniper EX is my go-to for most
  applications.
  
  
  
On Tue, Jun
  30, 2020 at 10:29 AM Adam Moffett <dmmoff...@gmail.com>
  wrote:

So who's
  your preferred vendor for carrier switches?
  
  Suppose you want to break away from buggy
  Latvian switches, who would 
  you look at today?
  
  Ciena? Adtran? Cisco? Juniper?
  
  
  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  

  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  

  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

[AFMUG] CBS Streaming NOC Contact

[Jesse DuPont]

  
  
Good morning! Does anyone have a contact email for CBS streaming's
NOC? We're struggling with what appear to be geo-location issues
with some of our IP blocks. We seem to be showing correctly at the
geo-location providers, but still having some CBS All Access
streaming issues. We change IP at the customer and it's okay after
that.
-- 
  
  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] af11x

[Jesse DuPont]

  
  
Yes. The AF11x "kit" (two radios, two duplexers, two antennas) is
$1500, need two more duplexers if doing MIMO - another $500 ish.
Then $2K (at the most) for the coordination/licensing fees. If you
want better antennas than the UBNT ones in the kit, they'll be over
and above. Radiowaves and KP make good ones (they're the same
antenna, actually).

  
  
  
  
  
  
  
  
  
  
  
  
  
  
    Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 5/8/20 4:41 PM, ch...@wbmfg.com
  wrote:


  
  

  $4K, both radios, both antennas and a license?
  

   
  
From: Jesse DuPont 
Sent: Friday, May 8, 2020 4:39 PM
To: AnimalFarm Microwave Users
Group ; ch...@wbmfg.com 
Subject: Re: [AFMUG] af11x
  

 
  
  About
$4K, 700 Mbps. Open freqs completely depends on your
location. Might have to upgrade antennas.

  
  
  
  
  
  
  
  
  
  
  
  
    Jesse DuPont
Owner / Network Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like
  us! facebook.com/celeritynetworksllc
Like us! facebook.com/celeritybroadband
 
  

On 5/8/20 3:26 PM, ch...@wbmfg.com
  wrote:


  

  What is the cost, all in, license, antennas,
everything for a system that will do 7 miles?
  What throughput will that have?
  How likely is it to find an open frequency?

  
  
  


  

  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] af11x

[Jesse DuPont]

  
  
About $4K, 700 Mbps. Open freqs completely depends on your location.
Might have to upgrade antennas.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 5/8/20 3:26 PM, ch...@wbmfg.com
  wrote:


  
  

  What is the cost, all in, license, antennas, everything
for a system that will do 7 miles?
  What throughput will that have?
  How likely is it to find an open frequency?

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] OT virus testing

[Jesse DuPont]

  
  
Here, they're using the quarter grades that post next week for GPA
calculation, but the final will be pass/fail. I don't think they've
told all the students this; some may be surprised if they thought
they'd shore up their grade in the 2nd half of the semester. I think
they're more worried about telling the students this and having them
basically blow off the 2nd half, only doing what is minimally
necessary to "pass".

  
  
  
  
  
  
  
  
  
  
  
  
  
  
    Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 4/14/20 1:49 PM, Cameron Crum wrote:


  
  Some of the local districts here have gone to
pass/fail which really sucks for the kids trying to get their
class rank up to get into better schools. 
  
  
On Tue, Apr 14, 2020 at 2:40
  PM <ch...@wbmfg.com>
  wrote:


  

  
My daughter, the Jr High science teacher has been
  told that nobody gets a bad grade.  So she has stopped
  grading papers.  

  
 

  From: Bill Prince 
  Sent: Tuesday, April 14, 2020 12:48 PM
  To: af@af.afmug.com 
  Subject: Re: [AFMUG] OT virus testing

  
   


  That is a pretty good brag; humble though it be.
Pretty sure there are very few school districts in
the entire country that could make the same
statement.
   
  bp



  On 4/14/2020 11:40 AM, Steve Jones wrote:
  
  
on an unrelated note, one of the
  school districts near me informed me today they
  achieved 100 percent access for their remote
  learners. Thats really impressive. They did this
  themselves over the last year as it turns out.
  they resolved the last of them with some hotspots.
  Not every day theres something good to say about a
  school district
 

  On Tue, Apr 14,
2020 at 1:38 PM Bill Prince <part15...@gmail.com>
wrote:
  
  

  Who _IS_ the king here?
  
  bp



  On 4/14/2020 11:31 AM, James Howard
wrote:
  
  

  Unfortunately
  Chuck said he’s assigning it all to
  you……..  I kind of thought it was a
  group effort though.
   
  

  From: AF [mailto:af-boun...@af.afmug.com]
  On Behalf Of Steve Jones
  Sent: Tuesday, April 14,
  2020 1:29 PM
  To: AnimalFarm Microwave
  Users Group mailto:af@af.afmug.com
  Subject: Re: [AFMUG] OT
  virus testing

  
   
  
i blame jaime
  
   
  

  On Tue, Apr 14,
2020 at 1:28 PM James Howard <ja...@litewire.net>
wrote:


  

  You’re
 

Re: [AFMUG] OT masks

[Jesse DuPont]

  
  
I suppose you could have lifted your mask and coughed on him... I've
been in Bozeman, MT today and it's like they don't even know there
is a pandemic.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 4/7/20 7:43 PM, ch...@wbmfg.com
  wrote:


  
  

  Put on gloves and a mask to pick up a few things at the
grocery store.  Walked in and there was a construction
worker in a mask, then a soccer mom then a skinny
redneck, with his skinny redneck wife.  Started clucking
like a chicken when he saw me and his wife was taking a
video.  Was not quite calling me a chicken loud enough that
I could clearly make out exactly what he was doing, but was
grandstanding for his skanky woman
   
  Funny how fast my natural pugilistic nature of my youth
sprung into action.  I literally had to stop myself from
backing him into a display of pork and beans with some
comments of “you got a problem with me”.  Visions of a
throat punch were clear in my head...
   
  But I calmed myself, reminded myself that going to jail
or the ER or a dentist would not be fun this evening, and
moved alone.  Ran into a handful of other chickens on the
way out the store.  

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] RB4011 Lockups

[Jesse DuPont]

  
  
So, I have had this happen, too. In fact, it's happened to every
4011 I have out there at some point. Starts out by no longer
responding to SNMP/Winbox/SSH. If you leave it in this state long
enough, it will eventually stop responding to ping and stop passing
traffic, too. Ultimately, had to hard boot them. The first one it
happened to had no subscriber traffic on it and had only been up for
a couple of weeks. Since the hard boot, it's been up for 144 days
and has been on 6.44.3 since it was installed. I probably shouldn't
have just said how long it's been up (oh well). I think it's a 4011
hardware issue. I have not opened a ticket about it because there is
no way to get Mikrotik a supout. It's not crashing in such a way as
to auto-create one and after the boot is no good. I do have mine
syslogging to a syslog server and I was able to see that every time
I tried to poll it with SNMP, I'd get something like "program xx
stopped responding" and the number (xx) was different every time.

  
  
  
  
  
  
  
  
  
  
  
  
  
  
    Jesse DuPont
Owner
  / Network
  Architect
  email:
  jesse.dup...@celeritycorp.net
  Celerity
  Networks LLC / Celerity
Broadband LLC
  Like us!
  facebook.com/celeritynetworksllc
Like
  us!
  facebook.com/celeritybroadband
 
  

On 3/7/20 6:28 PM, Steve Jones wrote:


  
  If you have a baicells enb plugged into one, they
will sometimes cause a broadcast storm, like a single port loop,
if that makes sense, this causes a kernel panic and reboot.
Things are really weird until you do a clean reboot. Mikrotik
support can verify if this is the issue from the supout file.
  
  
On Sat, Mar 7, 2020, 1:46 PM
  Colin Stanners <cstann...@gmail.com> wrote:


  
Are they on the same customer data "path"? I saw a note
  that an occasional CCR freeze with recent firmware was
  possibly due to the h232 NAT translator.
  
  
On Sat, Mar 7, 2020,
  12:33 PM Nate Burke <n...@blastcomm.com>
  wrote:

It's
  just strange that these have been deployed for Months,
  but 2 locked 
  up in the same week.  And 5 days apart, with different
  firmware, both in 
  temperature controlled indoor racks.  I don't think it
  was triggered by 
  some rogue WAN Packets.  If that was the case, I'd
  expect they both 
  would have locked up at the same time. MRTG showed no
  change in RAM 
  usage, or CPU prior to the lockup.
  
  On 3/7/2020 12:04 PM, Ken Hohhof wrote:
  > I don't have very many RB4011's.  One RB4011iGS+
  at a tower site in an
  > outdoor NEMA box running 6.43.16 and no
  problems.  One RB4011iGS+5HacQ2HnD
  > running 6.45.5 at a customer site with 84 days
  uptime.  That one used to
  > reboot occasionally with a log message about
  having to reboot due to some
  > kernel problem.  It seems to have stopped that
  since the FW upgrade but hard
  > to tell since it happened maybe once every 2
  weeks.
  >
  > I have some RB1100AHx4's which is a very similar
  architecture and I've seen
  > occasional unexplained reboots on 2 of them.  No
  lockups though.  The ones
  > that have rebooted are still on 6.40.8, a more
  recent one is on 6.43.16 and
  > AFAIK has not rebooted but it did stop once
  responding to Winbox and had to
  > be manually rebooted.  Everything else seemed to
  be running fine including
  > PPPoE server, RADIUS, and Mikrotik API.
  >
  >
  > -Original Message-
  > From: AF <af-boun...@af.afmug.com>
  On Behalf Of Nate Burke
  > Sent: Saturday, March 7, 2020 11:24 AM
  > To: Animal Farm <af@af.afmug.com>
  > Subject: [AFMUG] RB4011 Lockups
  >
  > This week I've had 2 RB4011 Routers lockup
  

Re: [AFMUG] Security Certificate Questions

[Jesse DuPont]

  
  
AlphaSSL has cheap 1 and 2 year certs. Even their wildcard if cheap
(if you wanted to use it on more than one host with the same
domain).


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 2/21/20 12:24 PM, Mark - Myakka
  Technologies wrote:


  I need to get a security certificate for a web page.  This is going to
be  for  a single page for new customers to enter payment information.
Not sure what I need.  I've seen prices all over the place.

This  will  be a CGI generated page.  It will not be a www page.  Will
be something like https://xx.domain.com/np.cgi

Looking  for  recommendations  of  legit  places  to  get  one without
breaking the bank.

--

Thanks,
 Mark  mailto:m...@mailmt.com

Myakka Technologies, Inc.
www.Myakka.com





  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] PIM - Mikrotik

[Jesse Dupont]

A few years ago we had Cisco and Mikrotik operating in a production environment 
in Sparse mode with about 500 Mb of traffic. It worked just fine. The only 
hiccup we had was our own doing. We had a source behind the Mikrotik and we 
forgot to allow the RP-related packets through the input firewall chain of the 
Mikrotik so the source path tree would not form correctly and we had high CPU 
usage because of it was forwarding the traffic directly to the rendezvous 
point. After we properly allowed what was needed through the firewall, it 
behaved as you’d expect. Had to manually set the rendezvous point.

Sent from my iPhone

> On Feb 3, 2020, at 10:54 AM, Steven Kenney  wrote:
> 
> 
> Anyone successfully use multicast across Mikrotik routers? 
> 
> We are doing IPTV and we'll need to convert the multicast traffic to unicast. 
>  However some of our network locations will be able to handle multicast 
> across fiber etc.  So I'm looking at how to pass that multicast traffic 
> between routers.  Looks like it will be about 1 Gbps total of multicast 
> traffic.  
> 
> I have the Multicast package and I'm going to start testing in the weeks to 
> come.  I'm just curious to see if anyone out here has any success/horror 
> stories with Mikrotik and PIM? 
> 
> -- 
> Steven Kenney
> Network Operations Manager
> WaveDirect Telecommunications
> http://www.wavedirect.net
> (519)737-WAVE (9283)
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Company Valuation

[Jesse DuPont]

  
  
My 1.7 cents worth - perhaps even less - of an opinion is "maybe,"
but generally, no. The amount of cash you'd get out of taking down
the towers doesn't seem to be anywhere near their replacement value
by the time you take into account deconstruction in a reusable way.
Besides, the revenue the business generates is 100% dependent on
them (if you're wireless only). In the end, the revenue the business
generates today, with all past expenses, is the revenue. In other
words, whether you have $3.6M in towers or $600K in towers is kind
of irrelevant because the revenue is what it is. Even if you had a
significant income from tower rent to other lessors, that income is
still part of you revenue. There might be a limited argument that if
you also owned the land they're on, there is additional worth there
because it's real property, but unless that property were in a high
value location, its value is still only related to the revenue it
generates.


  
  
  
  
  
      
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 1/6/20 8:07 AM, CBB - Jay Fuller
  wrote:


  
  
  
   
  Lets say for easy math purposes you bill
  approximately 1.5 million annually.
   
  I've heard 1.5 times annual revenue thrown
  around for a valuation purpose.  There is a lot more to this
  figure but it's a place to start.
   
  So, if your company billed 1.5 million,
  you'd say your valuation was around $2.25 million.
   
  If you had 90 towers on your network - and
  you owned 60 of them (the steel, not the land they're on) ,
  would you consider your network
  worth more than if you rented all 90?
   
  My take on this is yes, they could all be
  taken down and converted to cash, so the fact we own towers
  vs. rent them makes our network
  more valuable.
   
  What say you?
   
  Thanks.
   
   
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] PPPoE and /32's

[Jesse DuPont]

  
  
Yeah, those are the only two ways to do it using only OSPF:

1. Route Filters
2. OSPF non-backbone area with PPPoE network in that area and an
area-range set (to aggregate)


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 1/2/20 1:46 PM, Ken Hohhof wrote:


  
  
  
  
  
It’s not that complex, unless I’m missing
  something.
 
On Cisco routers we route the x.x.x.x/24
  (or whatever netblock is assigned to that PPPoE NAS) to Null0.
 
On Mikrotik we use add a route filter to
  chain ospf-out with matcher parameters prefix=x.x.x.x/24 and
  prefix length=32, with action=""  We also set up a
  static blackhole route for the netblock but that’s so traffic
  to unassigned pool addresses doesn’t go round and round, it
  doesn’t stop Mikrotik from advertising /32 routes via OSPF
  unless you also do the router filter.
 
There might be better or more elegant ways
  to accomplish it, but those seem to do the trick.
 
 

  
From: AF
   On Behalf Of Adam
  Moffett
  Sent: Thursday, January 2, 2020 12:26 PM
  To: af@af.afmug.com
  Subject: Re: [AFMUG] PPPoE and /32's
  

 
Good point.  

  On 1/2/2020 1:22 PM, Jesse DuPont wrote:


  How are you
getting around it doing a /32 for each PPPoE session right
now? Even if you don't do redistribute connected, but have
the whole, let's say, /24 in OSPF-Networks, there will be an
entry for each /32 in all the route tables regardless
because OSPF uses the mask present on the link (which is a
/32). So how are you advertising the larger network today
and not getting all the /32's? Route Filters?

The only way I know to get OSPF to actually summarize it for
you is to put it in it's own area (i.e. the PPPoE stub
area), add the network prefix to the PPPoE area (not the
backbone area), and specify the aggregation network in
OSPF-Area Ranges.

Like Matthew, I use iBGP to announce those and not OSPF.
  
    Jesse DuPont
Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
Celerity
  Broadband LLC
  Like us!
facebook.com/celeritynetworksllc

Like us!
facebook.com/celeritybroadband

  
  
On 1/2/20 11:09 AM, Adam Moffett wrote:
  
  
If you
  redistribute connected routes on a PPPoE server you get a
  route for every /32 and that's undesirable. 
  
  My solution currently is to NOT redistribute connected and
  instead just advertise the larger network which will
  encompass all the /32's. 
  
  I read a presentation suggesting to use an OSPF stub area
  for the PPPoE concentrator.  Is there a reason I'd want to
  use a stub area instead of specifying the network to
  distribute? 
  
  
  
  
  




  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] PPPoE and /32's

[Jesse DuPont]

  
  
How are you getting around it doing a /32 for each PPPoE session
right now? Even if you don't do redistribute connected, but have the
whole, let's say, /24 in OSPF-Networks, there will be an entry for
each /32 in all the route tables regardless because OSPF uses the
mask present on the link (which is a /32). So how are you
advertising the larger network today and not getting all the /32's?
Route Filters?

The only way I know to get OSPF to actually summarize it for you is
to put it in it's own area (i.e. the PPPoE stub area), add the
network prefix to the PPPoE area (not the backbone area), and
specify the aggregation network in OSPF-Area Ranges.

Like Matthew, I use iBGP to announce those and not OSPF.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 1/2/20 11:09 AM, Adam Moffett wrote:

If you
  redistribute connected routes on a PPPoE server you get a route
  for every /32 and that's undesirable.
  
  
  My solution currently is to NOT redistribute connected and instead
  just advertise the larger network which will encompass all the
  /32's.
  
  
  I read a presentation suggesting to use an OSPF stub area for the
  PPPoE concentrator.  Is there a reason I'd want to use a stub area
  instead of specifying the network to distribute?
  
  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Billing Platform

[Jesse DuPont]

  
  
There always has to be some kind of AAA process happening to have
the billing system apply customer rate-limits, where ever you choose
to apply them. Whether the billing system uses an API to control and
account for the networking plane, or RADIUS or some other kind of
scripting, there is still some kind of AAA-type functionality
occurring. So yes, to do that, Emerald uses RADIUS. We chose to use
their RADIUS because the integration with Emerald is deep; that is,
once it was setup installed, we've never had to actually touch the
RADIUS server itself (except to restart it after updates) because
its configuration is all handled within Emerald.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 12/23/19 6:38 PM, Matt Hoppes wrote:


  
  I know IEA has been around for ages. But it
requires a radius server. There’s still no way to make it work
without one and still rate limit customers at the head end
correct?
  
  
  For me that’s a show stopper. 
  
On Dec 23, 2019, at 8:25 PM, Jesse DuPont <jesse.dup...@celeritycorp.net>
wrote:

  
  

  
  People will mock this, but you should look at Emerald. It
  isn't nearly as pretty as Sonar or Splynx, but it is very
  mature, extremely flexible and functional, and very fast.
  Support is super responsive and competent. It's also a great
  value; annual cost is about $1200 for support and licenses are
  one-time buy per active account. Even after having ours hosted
  in an Amazon XL compute VM, it's still very cost effective.
  Point in case: we switched away from one of the currently
  popular pay-per-sub ones and our annual cost went from $24K to
  about $6K and we lost zero functionality.
  We're dual-stacked (v4/v6) and billing is fully integrated
  with RADIUS (either PPPoE or DHCP w/dual-stack queue on
  Mikrotik), including having currently-assigned v4 address and
  v6 prefix in billing (and a log of past assignments). When
  customers are behind on their bill, they get different RADIUS
  attributes, which shoves them behind our implementation of a
  hotel-style captive portal so they have a shot at seeing our
  "you haven't paid" landing page.
  And FWIW, accounts on annual payment are truly annual, not 12
  months.
  
  




    
    Jesse DuPont
Network Architect
email: jesse.dup...@celeritycorp.net
Celerity Networks LLC
Celerity Broadband LLC
  Like us! facebook.com/celeritynetworksllc

Like us! facebook.com/celeritybroadband

  
  
  On 12/23/19 10:50 AM, Josh
Luthman wrote:
  
  

One month is due but the invoices will print
  a full 12 months of charges.
  

  


Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373

  
  



  On Sat, Dec 21, 2019 at
6:37 PM Steve Jones <thatoneguyst...@gmail.com>
wrote:
  
  
It increments and only shows 1 month due


  On Sat, Dec 21,
2019, 12:51 PM Josh Luthman <j...@imaginenetworksllc.com>
wrote:
  
  
12 month prepay is exactly how you
  would do annual billing.  It works for me and a
  bunch of customers...
  

  


Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373

  
  

Re: [AFMUG] Billing Platform

[Jesse DuPont]

  
  
People will mock this, but you should look at Emerald. It isn't
nearly as pretty as Sonar or Splynx, but it is very mature,
extremely flexible and functional, and very fast. Support is super
responsive and competent. It's also a great value; annual cost is
about $1200 for support and licenses are one-time buy per active
account. Even after having ours hosted in an Amazon XL compute VM,
it's still very cost effective. Point in case: we switched away from
one of the currently popular pay-per-sub ones and our annual cost
went from $24K to about $6K and we lost zero functionality.
We're dual-stacked (v4/v6) and billing is fully integrated with
RADIUS (either PPPoE or DHCP w/dual-stack queue on Mikrotik),
including having currently-assigned v4 address and v6 prefix in
billing (and a log of past assignments). When customers are behind
on their bill, they get different RADIUS attributes, which shoves
them behind our implementation of a hotel-style captive portal so
they have a shot at seeing our "you haven't paid" landing page.
And FWIW, accounts on annual payment are truly annual, not 12
months.


  
  
  
  
  
      
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 12/23/19 10:50 AM, Josh Luthman
  wrote:


  
  One month is due but the invoices will print a full
12 months of charges.

  

  
  
  Josh Luthman
  Office: 937-552-2340
  Direct: 937-552-2343
  1100 Wayne St
  Suite 1337
  Troy, OH 45373
  


  
  
  
On Sat, Dec 21, 2019 at 6:37
  PM Steve Jones <thatoneguyst...@gmail.com>
  wrote:


  It increments and only shows 1 month due
  
  
On Sat, Dec 21, 2019,
  12:51 PM Josh Luthman <j...@imaginenetworksllc.com>
  wrote:


  12 month prepay is exactly how you would do
annual billing.  It works for me and a bunch of
customers...

  

  
  
  Josh Luthman
  Office: 937-552-2340
  Direct: 937-552-2343
  1100 Wayne St
  Suite 1337
  Troy, OH 45373
  


  
  
  
On Fri, Dec 20, 2019
  at 4:22 PM Steve Jones <thatoneguyst...@gmail.com>
  wrote:


  does freeside handle annual billing?
Powercode has never had a clean way to do it other
than 12mo prepay or something
  
  
On Wed, Dec 18,
  2019 at 10:13 AM dave via AF <af@af.afmug.com>
  wrote:


   We still use freeside and now added preseem
recently and seeing how well the mapping goes
but we have integrated cacti as well into
freeside so customers can see their actual
usage. 


  
On 12/16/19 10:37 AM, Matt wrote:


  Looking at outsourcing our database, ticketing and billing platform.
What is everyone using?




  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] 48 Volt Battery Revert

[Jesse DuPont]

  
  
This one is for 48V. It's not Meanwell and it's expensive, but it's
functionally the same as the DR-UPS40, but for 48V. I imagine
Meanwell OEMs this for RLH.

https://www.fiberopticlink.com/product/48vdc-ups-battery-charge-controller-module/


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 11/21/19 10:37 AM, Matt wrote:


  We use Meanwell DIN mount stuff for battery revert.  For 24 volt systems we use.

DRP-240-24 - power supply
DR-UPS40 - battery revert

I want to move to 48 volt battery banks now instead of up converting 24 to 48.

So what is a version of DR-UPS40 that is DIN mount and supports 48 volt?




  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Mikrotik L2TP and Firewalling

[Jesse DuPont]

  
  
Input chain firewall rules vs forward chain firewall rules? Maybe
all the other routers are allowed to be reach from the L2TP IP in
the forward chain of the VPN concentrator Mikrotik but you didn't
allow the L2TP IP in the input chain of said Mikrotik?


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 11/18/19 1:24 PM, Jason McKemie
  wrote:


  
  I'm having an issue wherein I'm trying to lock down winbox access
  on some routers so that they are only accessible via VPN. The
  issue is that I'm still not able to access the router that is
  acting as the VPN server, adjacent routers work as expected,
  however. I assume this is misconfiguration. Any ideas where I
  should look?
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] SiteMonitor Base 3

[Jesse DuPont]

  
  
This will be really helpful for users of LibreNMS, thank you for
doing that.

I was thinking that each module could just have a hard-coded OID
subtree that was the same regardless of the serial slot order, but
user-definable should do the trick, too.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 10/8/19 4:38 PM, Forrest Christian
  (List Account) wrote:


  
  No, the SNMP MIB won't be the same.


The way we support SNMP in the Base II is one of the gripes
  we hear a lot.   So, we changed it.


The Base 3 first of all actually has a MIB.   It's also
  identical MIB-wise to the one for the RackInjector.


Secondly, the MIB has specific tables for different types
  of values.   So you actually go after something called
  'voltage' for an input voltage.   And most SNMP tools should
  put the decimal in the right spot.


It's also set up such that one should be able to use a
  consistent monitoring system setup regardless of what is
  attached.   With the caveat that you can't monitor something
  which isn't attached.  The base II was so dynamic that
  upgrading the firmware in an expansion module could change all
  of your OID numbering.  The new one doesn't do that since it
  actually uses 'slot' as part of the OID.   And the 'slot'
  number is user assigned.  So as an example, you can monitor
  the tripped-status of a port with something like:


portPowerTripped.1.4


which gives you the tripped status of the port in slot 1,
  port 4.    Like I said, the slots are user-assigned (in most
  cases, the rackinjector ones are fixed), so you could
  'reserve' 1-10 for your PoE devices and put monitoring for
  solar charge controllers at 11 and 12, and something else at
  100, so it's consistent across your network.  You don't have
  to be contiguous or fill all the holes.    


Oh, and MIB file contains hopefully useful descriptions
  such as for portPowerTripped:


"Whether the power has been shut down due to the detection
  of an overcurrent or other faults. This value overrides the
  powerEnabled value when true, ensuring that a port is shut
  down on fault. Write a '0'(false) to this OID to reset the
  trip."




  
  
  
On Tue, Oct 8, 2019 at 7:57 AM
  Josh Luthman <j...@imaginenetworksllc.com>
  wrote:


  +1 for keeping SiteMonitor base 2 but I would
like to see what base 3 looks like in Vegas.

Hopefully you have the SNMP MIB match?

  

  
  
  Josh Luthman
  Office: 937-552-2340
  Direct: 937-552-2343
  1100 Wayne St
  Suite 1337
  Troy, OH 45373
  


  
  
  
On Tue, Oct 8, 2019 at
  12:55 AM Forrest Christian (List Account) <li...@packetflux.com>
  wrote:


  Sorry for the non-Friday marketing, I'm
trying to get out of town headed toward WISPAPALOOZA
with a few meetings and family visits along the way. 
But figured several of you would be interested in the
following.


(The following is a mostly-duplicate of an email I
  sent out to customers who asked to be notified of new
  product announcements).
  
  
  At WISPAPALOOZA next week, we’ll be showcasing
the SiteMonitor Base 3 Classic Edition. 
  
The Base 3 is the successor of the current Base Unit
II product. It’s designed with an easy to use and
mobile-friendly web interface virtually identical to
the one in our RackInjector product. Gone are the
1’s and 0’s of the old SNMP-based web interface.
Instead, everything is easy to understand and much
more intuitive. If you’re at WISPAPALOOZA, stop by
 

Re: [AFMUG] Needing a OSPF / MPLS expert for an emergency

[Jesse Dupont (Celerity Networks)]

I would also take a look. Well-versed in what you’re doing.

Jesse DuPont, Owner
Celerity Networks LLC
Celerity Broadband LLC

> On Oct 6, 2019, at 1:44 PM, Adair Winter  wrote:
> 
> 
> Paul, I wouldn't mind taking a look if you wanted me to. We run a full 
> OSPF/MPLS/VPLS network
> 
>> On Sun, Oct 6, 2019 at 1:36 PM Paul McCall  wrote:
>> Guys,
>> 
>>  
>> 
>> I have been working all week prepping our network to run MPLS.  Worked with 
>> Robert Terpe for a week to did a good job helping me, but we didn’t get 
>> finished and a segment we did stopped working late last night and he worked 
>> all through the night with me trying to figure it out.This segment was 
>> fully committed to MPLS / VPLS, so going backward would be a huge chore and 
>> I need to fix the problem.  
>> 
>>  
>> 
>> I got some of the towers to work via EoIP tunnels (disabled VPLS, etc.) but 
>> some of the towers he had tried other workarounds on and I can get them 
>> back, including a tower with 70 customers.  Going on 24 hours now, and 
>> Robert took off at 1030am for a plan flight home, and customers are ticked.  
>> We had some problems 2 weekends ago on some of these same towers and its 
>> getting ugly.
>> 
>>  
>> 
>> Do you know of a GOOD consultant who could fix this right away?  (today, now 
>> on a Sunday)?  I left a message with Justin Wilson and with Butch Evans.  
>> Nothing yet…
>> 
>> Thanks!
>> 
>>  
>> 
>> Paul
>> 
>>  
>> 
>>  
>> 
>> Paul McCall, President
>> 
>> Florida Broadband / PDMNet
>> 
>> 658 Old Dixie Highway
>> 
>> Vero Beach, FL 32962
>> 
>> 772-564-6800
>> 
>>  
>> 
>> -- 
>> AF mailing list
>> AF@af.afmug.com
>> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
> 
> 
> -- 
> Adair Winter
> VP, Network Operations / Co-Owner
> Amarillo Wireless | 806.316.5071
> C: 806.231.7180
> http://www.amarillowireless.net
> 
> 
> 
> 
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] HTTPS redirect

[Jesse Dupont (Celerity Networks)]

It seemed it had to do all sites because they were never trying to do a lookup 
for those test sites - the ones the OS was looking up had to be returned as the 
captive portal. I agree - once they paid, they really need to reboot their 
router. I did the same thing - set TTL to 1, but until the router was reboot, 
it was holding onto it. I decided it was worth it. YMMV.

Jesse DuPont, Owner
Celerity Networks LLC
Celerity Broadband LLC

> On Sep 10, 2019, at 5:52 PM, Adam Moffett  wrote:
> 
> I toyed with mangling DNS, but the issue was after they paid they still have 
> cached results pointing to the wrong IP.  Even when my fake results had a TTL 
> of 1 minute the client seemed to keep them longer than that.
> 
> Is it sufficient to make DNS entries for the captive portal test sites or do 
> you really have capture *all* DNS queries?
> 
> 
> 
>> On 9/10/2019 7:04 PM, Jesse DuPont wrote:
>> Redirecting HTTPS, as you know, doesn't work because of the certificate. 
>> Even using your own certificate won't work because you can't get a trusted 
>> certificate issues that is valid for all domain names.
>> The only think you can do is redirect them BEFORE they try to do HTTPS by 
>> triggering the captive portal detection methods in modern OS's - like 
>> they're in a hotel.
>> 
>> https://success.tanaza.com/s/article/How-Automatic-Detection-of-Captive-Portal-works
>> 
>> As you can see in that doc, all devices try to reach a known URL and expect 
>> to see a well-known result. If the result is different than what it expects, 
>> it assume it's behind a capture portal. We exploit this (in a 
>> non-black-hat-hacker kind-of-way).
>> 
>> Our billing system is tied to our RADIUS server so when a suspended account 
>> authenticates, RADIUS sends an additional attribute (instead of denying it) 
>> - basically an address-list entry. We use this additional attribute on 
>> routers to treat traffic from these people differently. Primarily:
>> 1) We DST-NAT all their DNS queries to a fake-master server which issues our 
>> "you haven't paid" landing page IP for ANY DNS query they do  except for our 
>> website and billing portal, which are right (this is the first part of 
>> triggering captive portal detection - the IP returned to the OS isn't right).
>> 2) We DST-NAT all their HTTP traffic to the proxy configured on the router, 
>> which triggers the second part of triggering captive portal detection - the 
>> HTTP server doesn't return the expected response. Also, using the proxy, we 
>> allow them to be able to reach our walled-garden content (our web page, our 
>> billing system portal) using the actual URLs, not just the IP. All other 
>> requests are redirected to our landing page.
>> 3) In the firewall, even though we've essentially blocked it in the proxy, 
>> we only allow traffic from suspended customers to reach our landing page, 
>> our payment portal and our web site (the walled-garden).
>> 4) Once they pay, they reboot their router and it's resolved.
>> 
>> I can share specifics if you want.
>> 
>> Jesse DuPont
>> 
>> Network Architect
>> email: jesse.dup...@celeritycorp.net
>> Celerity Networks LLC
>> 
>> Celerity Broadband LLC
>> Like us! facebook.com/celeritynetworksllc
>> 
>> 
>> Like us! facebook.com/celeritybroadband
>> 
>> 
>>> On 9/10/19 4:05 PM, Adam Moffett wrote:
>>> I already know the answer I think, but if you're redirection non-pay 
>>> customers to a web page what do you do with (the majority) who have an 
>>> HTTPS home page? 
>>> 
>>> do you 
>>> A) present your own certificate and expect them to click through the 
>>> warnings? 
>>> B) Don't bother and just drop https? 
>>> C) do something else? 
>>> 
>>> I told the boss if there was a way to do this then we should quit the ISP 
>>> game and make a killing with phishing scams, but he seems to think there's 
>>> a way to handle it. 
>>> 
>>> Thanks, 
>>> Adam 
>>> 
>>> 
>> 
> 
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] HTTPS redirect

[Jesse DuPont]

  
  
Redirecting HTTPS, as you know, doesn't work because of the
certificate. Even using your own certificate won't work because you
can't get a trusted certificate issues that is valid for all domain
names.
The only think you can do is redirect them BEFORE they try to do
HTTPS by triggering the captive portal detection methods in modern
OS's - like they're in a hotel.

https://success.tanaza.com/s/article/How-Automatic-Detection-of-Captive-Portal-works

As you can see in that doc, all devices try to reach a known URL and
expect to see a well-known result. If the result is different than
what it expects, it assume it's behind a capture portal. We exploit
this (in a non-black-hat-hacker kind-of-way).

Our billing system is tied to our RADIUS server so when a suspended
account authenticates, RADIUS sends an additional attribute (instead
of denying it) - basically an address-list entry. We use this
additional attribute on routers to treat traffic from these people
differently. Primarily:
1) We DST-NAT all their DNS queries to a fake-master server which
issues our "you haven't paid" landing page IP for ANY DNS query they
do  except for our website and billing portal, which are right (this
is the first part of triggering captive portal detection - the IP
returned to the OS isn't right).
2) We DST-NAT all their HTTP traffic to the proxy configured on the
router, which triggers the second part of triggering captive portal
detection - the HTTP server doesn't return the expected response.
Also, using the proxy, we allow them to be able to reach our
walled-garden content (our web page, our billing system portal)
using the actual URLs, not just the IP. All other requests are
redirected to our landing page.
3) In the firewall, even though we've essentially blocked it in the
proxy, we only allow traffic from suspended customers to reach our
landing page, our payment portal and our web site (the
walled-garden).
4) Once they pay, they reboot their router and it's resolved.

I can share specifics if you want.


  
  
  
  
  
      
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 9/10/19 4:05 PM, Adam Moffett wrote:

I
  already know the answer I think, but if you're redirection non-pay
  customers to a web page what do you do with (the majority) who
  have an HTTPS home page?
  
  
  do you
  
  A) present your own certificate and expect them to click through
  the warnings?
  
  B) Don't bother and just drop https?
  
  C) do something else?
  
  
  I told the boss if there was a way to do this then we should quit
  the ISP game and make a killing with phishing scams, but he seems
  to think there's a way to handle it.
  
  
  Thanks,
  
  Adam
  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Mesh whole house wifi

[Jesse DuPont]

  
  
The Calix solution is good. I've also tested recent routers/mesh
add-ons from Xyxel and Comtrend and they were also good (and easy).
They're all remotely configurable via their own or 3rd party TR-069.

In the end, we chose to use Ubiquit Unifi AC Lite or AC Mesh units
with our normal router (with WiFi disabled on the router). We
already have a Unifi Controller and we get great visibility and
troubleshooting insight on in-home WiFi conditions. We charge $14/mo
for adding on "whole home" (we call it Immersive WiFi). Otherwise,
if the WiFi from the router itself works we don't do anything else.

If you don't need remote configurability, the Linksys Velop or
Google Home WiFi systems also seem to be good.


  
  
  
  
  
      
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 9/5/19 12:36 PM, Clint Wiley wrote:


  
  
  
  
Hi all,
 
For those of
you offering ‘whole house’ wifi services, what are you
deploying? We know that the one sore point for our users is
wifi coverage. Our ONT vendor (zhone) has been promising a
solution for almost a year now but it still isn’t ready and,
quite frankly, lacks the end user management features others
might have. We’d like remote management so we can assist in
setting SSID’s and changing passwords, et.

 

  Thanks,
   

Clint 
 
  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

[AFMUG] AM Tower Deployment

[Jesse DuPont]

  
  
So... I realize that default answer to my next questions is "turn
and run", but I'm thinking about deploying on an AM tower. Is it as
simple as electrically insulating all equipment and cabling from the
tower with their own dedicated (insulated from the tower) ground or
is it more complicated than that? Obviously, the transmitter has to
be off during installation and on-tower maintenance. Other
considerations? Thanks for any insight.
-- 
  
  
  
  
  
      
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] PPPoE MTU Newb confusion

[Jesse DuPont]

Adam,

General comment: The packets aren't actually being fragmented. Most TCP 
packets have the Do-Not-Fragment bit set, all equipment will honor 
(except VPNs). However, when using a Mikrotik as a PPPoE server, it 
automatically sets up some IP Mangle rules that modify the TCP MSS 
(maximum segment size) during TCP session establishment on any traffic 
coming from the PPPoE client and adjusting the TCP MSS down at least 8 
bytes to accommodate the smaller overall MTU.


Specific to your equipment, I would guess the UBNT edge router doesn't 
support RFC4638, which specifically describes having an MTU larger than 
1492 for PPPoE traffic. The Mikrotik does (unless you're on a REALLY old 
version of RouterOS).


On 8/13/19 6:57 AM, Dennis Burgess via AF wrote:

If you can set the L2MTU on the UBNT radio to 1508 or better yet 1510, then you 
should be able to specify the MTU of the PPPoE to 1508,  then you should be 
able to have a full 1500 byte packets without fragmentation.  Of course, if 
UBNT can't do this, I would recommend not using them, but I regress.  Else you 
will have to use a device that can do that without issues, or suffer 
fragmentation, not somtghing that is uncommon.  It really won't make much 
difference in the grand scheme of things.



Dennis Burgess, Mikrotik Certified Trainer
MTCNA, MTCRE, MTCWE, MTCTCE, MTCINE, MTCSE, HE IPv6 Sage, Cambium ePMP Certified
Author of "Learn RouterOS- Second Edition"
Link Technologies, Inc -- Mikrotik & WISP Support Services
Office: 314-735-0270  Website: http://www.linktechs.net
Create Wireless Coverage's with www.towercoverage.com

-Original Message-
From: AF  On Behalf Of Ken Hohhof
Sent: Tuesday, August 13, 2019 7:16 AM
To: 'AnimalFarm Microwave Users Group' 
Subject: Re: [AFMUG] PPPoE MTU Newb confusion

I can't speak to the Ubiquiti equipment, but PPPoE adds 8 bytes of overhead.  
So MTU will normally be 1492, and the PPPoE client will normally enforce this 
by modifying MTU advertisements from the client side.

What you want to do seems comparable to carrying 8 passengers in an 8 seat van, 
forgetting that the driver takes up 1 seat.


-Original Message-
From: AF  On Behalf Of Adam Moffett
Sent: Monday, August 12, 2019 11:22 PM
To: AnimalFarm Microwave Users Group 
Subject: Re: [AFMUG] PPPoE MTU Newb confusion

If it's not clear.I want to carry a mother truckin 1500 byte packet from 
the end user to the internet.  I have full control of the path between the 
pppoe client and server, so I didn't anticipate this being a problem, but 
somehow it's a problem.


On 8/13/2019 12:04 AM, Adam Moffett wrote:

So I've never done much with PPPoE.

In my test setup I have a Mikrotik PPPoE Server set with "Max MTU" of
9216.  This is a CCR with an actual max of 10,000+ bytes.

The PPPoE client is a Ubiquiti ER-X-SFP.  The Ubiquiti client will not
allow me to set an MTU on the PPPoE interface higher than 1500. They
physical interface has an MTU of 2016 (maximum for this platform).

The active session on the mikrotik server reports "Actual MTU" of
1480, and fragments packets larger than that. Packets larger than 1492
are silently dropped.

There's a switch between the tik server and ubnt client, and it has
jumbo frames enabled and has an MTU of 9216.

So I'm 100% confused.
If the MTU on the client is 1500, where are the limits of 1480 and/or
1492 coming from?
Why in the ever loving hell does the Ubiquiti router not allow an MTU
higher than 1500 on the PPPoE client?




--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com



--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com




--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] 48 Volt Battery Revert

[Jesse Dupont]

No, that was for Matt. Sterling’s is in a different thread.

Sent from my iPhone

> On Jul 12, 2019, at 10:41 AM,   wrote:
> 
> Nice but it will not help Sterling shave a few volts off. 
>  
> From: Jesse Dupont
> Sent: Friday, July 12, 2019 10:06 AM
> To: AnimalFarm Microwave Users Group
> Subject: Re: [AFMUG] 48 Volt Battery Revert
>  
> This one:
>  
> https://www.fiberopticlink.com/product/48vdc-ups-battery-charge-controller-module/
> 
> Sent from my iPhone
> 
>> On Jul 12, 2019, at 8:17 AM, Matt  wrote:
>> 
>>> What is everyone using for 48 volt battery revert?
>> 
>> We currently use this with our 24 volt sites with power sonic sealed
>> batteries and up convert to 48 for devices that require 48.
>> 
>> https://www.meanwell.com/Upload/PDF/DR-UPS40/DR-UPS40-SPEC.PDF
>> 
>> We now have way more devices that use 48 then 24 so would like to
>> switch to 48 volt battery banks.  So I am asking for something like
>> the DR-UPS40 but for 48 volt battery banks preferable DIN rail mount.
>> 
>> -- 
>> AF mailing list
>> AF@af.afmug.com
>> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
> 
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] 48 Volt Battery Revert

[Jesse Dupont]

This one:

https://www.fiberopticlink.com/product/48vdc-ups-battery-charge-controller-module/

Sent from my iPhone

On Jul 12, 2019, at 8:17 AM, Matt  wrote:

>> What is everyone using for 48 volt battery revert?
> 
> We currently use this with our 24 volt sites with power sonic sealed
> batteries and up convert to 48 for devices that require 48.
> 
> https://www.meanwell.com/Upload/PDF/DR-UPS40/DR-UPS40-SPEC.PDF
> 
> We now have way more devices that use 48 then 24 so would like to
> switch to 48 volt battery banks.  So I am asking for something like
> the DR-UPS40 but for 48 volt battery banks preferable DIN rail mount.
> 
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Still need help 50v DC regulator 6-10A

[Jesse DuPont]

  
  
How about this one? It's only 5A, though, could run a pair of
  them and split the load.
https://www.trcelectronics.com/View/Mean-Well/DDR-240C-48.shtml
On 7/11/2019 2:59 PM, Sterling Jacobson
  wrote:


  
  
  
  
Sorry to beat a dead horse, but I’m still
  stuck on this mini-pop DC plant thing.
 
Is there a DIN mountable voltage regulator
  that will allow me to feed load from 48v battery string
  without going over 50v at 6-10A?
 
I’m still trying to power a couple of
  MetroLinq 2.5 antennas at the site, but people tell me they
  explode if given more than say 52v.
 
Which means my float battery system will
  kill the radios if it goes into recharge mode at 54v?
 
Or am I overthinking things?
 
Looks like to solve this I would need
  something like Mean Well $100 SD-350B-48 between the battery
  array and the load to assure it sticks around 50v.
 
Is that my only solution here?
 
 
  
  
  

  


-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Cacti template for Packetflux RackInjector

[Jesse Dupont]

Actually, mine is for Site Monitor II, sorry.

Sent from my iPhone

> On Jun 6, 2019, at 12:58 PM, Sean Heskett  wrote:
> 
> anyone have a Cacti template for the Packetflux RackInjector they'd be 
> willing to share before i bang my head on a wall for a few days creating one?
> 
> thanks!
> 
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Cacti template for Packetflux RackInjector

[Jesse Dupont]

I’ve got one, I’ll send what I’ve got. Obviously the OIDs depend on module 
order, but hopefully it helps. I can send tomorrow morning.

Sent from my iPhone

> On Jun 6, 2019, at 12:58 PM, Sean Heskett  wrote:
> 
> anyone have a Cacti template for the Packetflux RackInjector they'd be 
> willing to share before i bang my head on a wall for a few days creating one?
> 
> thanks!
> 
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Mean Well NDR 120-24 & NDR 120-48 for powering Packetflux Rack Injector?

[Jesse Dupont]

I 2nd this; I’ve had an NDR die, but SDR units have been solid!

Sent from my iPhone

> On Apr 9, 2019, at 7:10 PM, Mathew Howard  wrote:
> 
> I think the NDR series may actually be the only Meanwell power supplies that 
> I have had die (outside of things  like lightning strikes that fried 
> everything)... however, they were definitely abused. I think the SDR series 
> handles abuse a bit better... at least I've never had one die, and there must 
> be some reason they cost twice as much.
> 
> But in general, the NDR series works well... we have use of them.
> 
>> On Tue, Apr 9, 2019 at 3:55 PM  wrote:
>> All I can say is that I have never had a Meanwell product die that had not 
>> been abused. 
>>  
>> From: Brandon Yuchasz
>> Sent: Tuesday, April 9, 2019 2:50 PM
>> To: af@af.afmug.com
>> Subject: [AFMUG] Mean Well NDR 120-24 & NDR 120-48 for powering Packetflux 
>> Rack Injector?
>>  
>> Last night I replaced yet another Amazon special 29.5V power supply that was 
>> feeding out packetflux equipment. These are defiantly a weak link and 
>> something I need to pull out of the field and replace.
>> 
>> I spent some time today digging into the MeanWell product line and came up 
>> with two options to power our original Packetflux sites along with the ones 
>> now running the rack injectors.
>> 
>>  
>> 
>> I need but 28V DC and 48V DC at sites feed from 120VAC
>> 
>>  
>> 
>> I am considering going with the Mean Well NDR 120-24 and Mean Well NDR 
>> 120-48 units. Does anyone have experience with these good or bad? Just 
>> looking for something that more stable and reliable at this point.
>> 
>>  
>> 
>> Thanks,
>> 
>> Brandon
>> 
>>  
>> 
>> -- 
>> AF mailing list
>> AF@af.afmug.com
>> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
>> -- 
>> AF mailing list
>> AF@af.afmug.com
>> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] PPPoE

[Jesse DuPont]

  
  
What version of RouterOS? On your DHCPv6 Client on the client 'tik,
did you tell it to request an address or a prefix? (You want
prefix). Like the attached. Then in IPv6-Addresses, you'd add one
like the other attached pic.
FWIW, I don't know that a Mikrotik will actually install a global v6
address right on the PPPoE client interface because strictly
speaking, one isn't actually needed. IPv6 Routing is always done
using the link-local/interface anyway (that is, the default gateway
is either an interface (point-to-point) or the link-local address
and interface combo of the upstream router. If the Mikrotik needed
to send an IPv6 packet out to the Internet for some reason (maybe a
DNS query for a proxied client), it will use any local global
address and send it out with that as the source IP. It doesn't have
to be the "WAN" interface for it to work.


  
  
  
  
  
      
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 3/13/19 3:04 PM, Adam Moffett wrote:


  
  I have two 'tiks connected with an ethernet cable.  A DHCP6 server
  and client on the ethernet interfaces works fine.
  Inside PPPoE it's not working.  I see the dynamically created v6
  server, but the client sits there "searching".
  
  .I'll have to figure out these unintuitive gotchyas you
  mentioned.
  
  
  On 3/9/2019 10:36 AM, Jesse DuPont
wrote:
  
  

Yes. In your PPPoE profile, you'd specify a v6 Prefix Pool for
both the "Remote IPv6 Prefix Pool" and the "DHCPv6 PD Pool" (it
can be from the same pool, it will assign them two prefixes from
that pool). The former is for the WAN port of the customer's
device and the latter is for the delegated prefix that goes on
the LAN (and is what creates the dynamic DHCPv6 instance) - most
consumer routers that support v6 need both the address for it's
WAN interface and the PD prefix for the LAN before they'll route
IPv6.
Need to allow DHCPv6 in the Input of the IPv6 firewall (if
you're otherwise blocking most other input).
If you want to also provide both IPv4 and IPv6 DNS servers to
your dual-stacked PPPoE subs, you need to add IPv6 DNS servers
to the Mikrotik in IP-DNS along side whatever v4 DNS servers you
have on there. It will use those to pass along to the PPPoE subs
(unfortunately, can't just specify the v6 DNS servers in the
PPPoE profile like you can the v4 DNS servers.
If you have a series of input firewall rules for IPv4 to protect
the router, you'll want to duplicate those in IPv6.


  
  
  
      
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 3/8/19 8:22 PM, Adam Moffett
  wrote:


  
  I was playing with an example from the Wiki.  Looks like it
  dynamically creates a dhcp6 server instance on the server end
  of the PPPoE tunnel and makes a prefix delegation to the
  client.  The example didn't include ipv4, but I assume that v4
  address gets assigned by PPP as normal.  Is that the gist?
  
  -Adam
  
      
      On 3/8/2019 6:50 PM, Jesse DuPont
wrote:
  
  

I've chosen to have PPPoE servers at each tower because I'm
routed and already have a router there, but centralized or
routed, doesn't matter - pros and cons to both.
I also have dual-stack v4/v6 in production on PPPoE with
Mikrotik as concentrators - works great. Few gotchas that
aren't intuitive, but nothing crazy.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  

  

Re: [AFMUG] Newer Netgear PPPoE Issues

[Jesse DuPont]

  
  
Yes! The issue is that even though the PPPoE Server Name field in
the router is blank (which would imply it would accept any PPPoE
Server Name), it is really NOT blank. It ignores the PPPoE server
name that your concentrator is sending and attempt to connect to a
PPPoE server name of "ppp", which your concentrator denies because
that's (presumably) not its name. So, you can either hard code your
real PPPoE server name into the router or you can create a PPPoE
server instance name called "ppp". I found this using packet capture
when having the same issue.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 3/13/19 12:54 PM, Jason McKemie
  wrote:


  
  I haven't looked into it too much, but am seeing a
strange issue with the newer Netgear routers (r6120 for example)
wherein they outright refuse to connect via PPPoE.  I do not
have this problem with any other routers as far as I know, and
higher-end Netgears and/or older models seem to work just fine
as well.


Is anyone else having similar issues?


-Jason
  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Private Cloud server

[Jesse Dupont]

If you want to do your own hardware, OwnCloud is a scalable, multi-tenant, open 
source solution for cloud storage.

Sent from my iPhone

> On Mar 12, 2019, at 9:30 AM, Sean Heskett  wrote:
> 
> QNAP has a lot of easy appliances for stuff like this.  You can even scatter 
> them around your towers and have them sync to each other.  
> 
> -Sean
> 
> 
>> On Tue, Mar 12, 2019 at 8:26 AM Paul McCall  wrote:
>> We have a client that wants us to create / host a multiple 4TB  cloud server 
>> for them.  I know there are some “home type solutions” available but thought 
>> there might be a great commercial version, maybe that would accommodate 
>> multiple logins, customers?
>> 
>>  
>> 
>> Suggestions?
>> 
>>  
>> 
>> Paul
>> 
>> -- 
>> AF mailing list
>> AF@af.afmug.com
>> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
> -- 
> AF mailing list
> AF@af.afmug.com
> http://af.afmug.com/mailman/listinfo/af_af.afmug.com
-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] PPPoE

[Jesse DuPont]

  
  
Yes. In your PPPoE profile, you'd specify a v6 Prefix Pool for both
the "Remote IPv6 Prefix Pool" and the "DHCPv6 PD Pool" (it can be
from the same pool, it will assign them two prefixes from that
pool). The former is for the WAN port of the customer's device and
the latter is for the delegated prefix that goes on the LAN (and is
what creates the dynamic DHCPv6 instance) - most consumer routers
that support v6 need both the address for it's WAN interface and the
PD prefix for the LAN before they'll route IPv6.
Need to allow DHCPv6 in the Input of the IPv6 firewall (if you're
otherwise blocking most other input).
If you want to also provide both IPv4 and IPv6 DNS servers to your
dual-stacked PPPoE subs, you need to add IPv6 DNS servers to the
Mikrotik in IP-DNS along side whatever v4 DNS servers you have on
there. It will use those to pass along to the PPPoE subs
(unfortunately, can't just specify the v6 DNS servers in the PPPoE
profile like you can the v4 DNS servers.
If you have a series of input firewall rules for IPv4 to protect the
router, you'll want to duplicate those in IPv6.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 3/8/19 8:22 PM, Adam Moffett wrote:


  
  I was playing with an example from the Wiki.  Looks like it
  dynamically creates a dhcp6 server instance on the server end of
  the PPPoE tunnel and makes a prefix delegation to the client.  The
  example didn't include ipv4, but I assume that v4 address gets
  assigned by PPP as normal.  Is that the gist?
  
  -Adam
  
  
  On 3/8/2019 6:50 PM, Jesse DuPont
wrote:
  
  

I've chosen to have PPPoE servers at each tower because I'm
routed and already have a router there, but centralized or
routed, doesn't matter - pros and cons to both.
I also have dual-stack v4/v6 in production on PPPoE with
Mikrotik as concentrators - works great. Few gotchas that aren't
intuitive, but nothing crazy.


  
  
  
  
  
      
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 3/8/19 4:03 PM, Dennis Burgess
  via AF wrote:


  Depends on your network and its exit points.   
Yes you can have dual or quad PPPoE Servers.
Nope you can run PPPoE in a VLAN
Yes you can simply dual-stack with PPPoE, it’s the simplest method to do so.  At the same time no problem.


Dennis Burgess, Mikrotik Certified Trainer 
Author of "Learn RouterOS- Second Edition” 
Link Technologies, Inc -- Mikrotik & WISP Support Services 
Office: 314-735-0270  Website: http://www.linktechs.net 
Create Wireless Coverage’s with www.towercoverage.com 

-Original Message-
From: AF  On Behalf Of Adam Moffett
Sent: Friday, March 8, 2019 2:48 PM
To: af@af.afmug.com
Subject: [AFMUG] PPPoE

I haven't done much with PPPoE.

For those of you who have, do you generally try to carry L2 back to one central PPPoE server?  Or do you sprinkle PPPoE servers around at each tower?

Can you have redundant PPPoE servers somehow?

Is there any reason I can't carry PPPoE inside a VLAN?

Can you run dual stack with PPPoE?  It looks like a Mikrotik PPPoE server can assign v6 addresses, but I'm wondering if it can do both v4 and v6 at the same time.

Anything else a newb should do or not do?



--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com





  
  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] PPPoE

[Jesse DuPont]

  
  
I've chosen to have PPPoE servers at each tower because I'm routed
and already have a router there, but centralized or routed, doesn't
matter - pros and cons to both.
I also have dual-stack v4/v6 in production on PPPoE with Mikrotik as
concentrators - works great. Few gotchas that aren't intuitive, but
nothing crazy.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 3/8/19 4:03 PM, Dennis Burgess via
  AF wrote:


  Depends on your network and its exit points.   
Yes you can have dual or quad PPPoE Servers.
Nope you can run PPPoE in a VLAN
Yes you can simply dual-stack with PPPoE, it’s the simplest method to do so.  At the same time no problem.


Dennis Burgess, Mikrotik Certified Trainer 
Author of "Learn RouterOS- Second Edition” 
Link Technologies, Inc -- Mikrotik & WISP Support Services 
Office: 314-735-0270  Website: http://www.linktechs.net 
Create Wireless Coverage’s with www.towercoverage.com 

-Original Message-
From: AF  On Behalf Of Adam Moffett
Sent: Friday, March 8, 2019 2:48 PM
To: af@af.afmug.com
Subject: [AFMUG] PPPoE

I haven't done much with PPPoE.

For those of you who have, do you generally try to carry L2 back to one central PPPoE server?  Or do you sprinkle PPPoE servers around at each tower?

Can you have redundant PPPoE servers somehow?

Is there any reason I can't carry PPPoE inside a VLAN?

Can you run dual stack with PPPoE?  It looks like a Mikrotik PPPoE server can assign v6 addresses, but I'm wondering if it can do both v4 and v6 at the same time.

Anything else a newb should do or not do?



--
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com



  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Looking for PS and POE

[Jesse DuPont]

  
  
For Mode A/Mode B stuff (UBNT, Cambium, Mikrotik), I prefer these.
They have a ground wire which provides grounding for the cable
shielding when using shielded connectors. (Not sure about all of
Cambium's gear, but Cambium ePMP 1000 are polarity insensitive
because they use bridge rectifiers on the input).

https://www.amazon.com/dp/B00FYF8IKK/ref=cm_sw_em_r_mt_dp_U_olozCb2Q62CAF



  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 2/13/19 6:27 PM, Sterling Jacobson
  wrote:


  
  
  
  
I’m looking for a new/good supplier of a
  Gigabit POE injector that has the female DC receptacle on it
  and is known to work well.
 
Also looking for good PS too, 24v around
  1.8A would be nice, again with the round DC male end on about
  6’ cord from a wall wart is fine.
 
For some reason can’t seem to find a good
  vendor of either of those items, that are known good over time
  and decent price.
 
 
  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Propane Tank Remote Level Monitoring

[Jesse DuPont]

  
  
I'm ready for it! :)


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 1/24/19 7:49 AM, Forrest Christian
  (List Account) wrote:


  
  Some are.  Others are hall effect sensors which
need 5v and output a voltage. 


I've had some customers hook up the output of
  these to a voltmeter or shunt input with reasonable results.  
   What I've had in the queue is a module set up specifically
  for these sensors and which reports percent directly.
  
  
  
On Thu, Jan 24, 2019, 7:29 AM Chuck McCown <ch...@wbmfg.com
  wrote:


  It it not just a 0-200ohm sensor?

Sent
  from my iPhone

  On Jan 23, 2019, at 11:04 PM, Forrest Christian (List
  Account) <li...@packetflux.com>
  wrote:
  


  
Holy cow, it looks like I should get
  around to finishing up the $59+sensor ($50ish) add-on
  module for the sitemonitor system
  
  
  Didn't realize these were so expensive.



  On Wed, Jan
23, 2019 at 8:48 PM Sean Heskett <af...@zirkel.us>
wrote:
  
  

  This is what you are looking for. 
We have 4 of them and love them.



Generac 7005 Propane Tank (LP) Fuel
  Level Monitor - WiFi enabled https://www.amazon.com/dp/B072KJBLV2/ref=cm_sw_r_cp_api_i_cqtsCbZ22K84X



The only down side is it has to
  connect to a 2.4ghz SSID with no security
  enabled.  So we engineered the WiFi AP to only
  accept that MAC address and only hand out 1 ip to
  that device and then fire walled everything so the
  monitor could only talk to their cloud.  Basically
  the device has a battery in it and it turns on
  once a day for a minute and pushes its data to the
  cloud so you can access it on their free AP or
  website.


-Sean



  
On Wed, Jan 23, 2019 at 8:40 PM
          Jesse DuPont <jesse.dup...@celeritycorp.net>
  wrote:


   What solutions exist
to monitor propane tank levels remotely?
I've got an off-grid site with three 100
gallon tanks. The propane guy setup the
manifold such that the tanks should drain
sequentially, but I'd like to
monitoring/chart them remotely. Each tank
has a R3D gauge, but not sure what sensor to
plug into them.
--
  
  Jesse
        DuPont
  Network
  Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity
  Broadband LLC
Like
  us! facebook.com/celeritynetworksllc
  
  Like
  us! facebook.com/celeritybroadband
  

  
  

  


  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/lis

[AFMUG] Propane Tank Remote Level Monitoring

[Jesse DuPont]

  
  
What solutions exist to monitor propane tank levels remotely? I've
got an off-grid site with three 100 gallon tanks. The propane guy
setup the manifold such that the tanks should drain sequentially,
but I'd like to monitoring/chart them remotely. Each tank has a R3D
gauge, but not sure what sensor to plug into them.
-- 
  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Pipe

[Jesse DuPont]

  
  
A local fencing supply place here has galvanized up to 8" in lengths
up to 20'. It's probably not quite as heavy as what you'd buy from
some place like site solutions, but it's still pretty heavy stuff. I
used their 4" for ice bridge posts and it's been solid.
About a year ago, I had ordered some 4" from a tower company and it
ended up taking a long time so I bought the 4" from the fencing
supply place and it was fine. Price wise, it was comparable after
shipping the other stuff.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 1/22/19 9:31 AM, Matt wrote:


  Has anyone found a local source for pipe with OD of around 3.5 inches
heavy enough for mounting larger dishes, etc?  Anything at big chains
to save shipping?




  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Reverse DNS IPv6

[Jesse DuPont]

  
  
I should have noted: The /56's and /64's sections are relative to
the zone file itself, which is for /48.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 1/17/19 4:09 PM, Jesse DuPont wrote:


  
  Here's what I do for PTP links (/126's) and statics:
  1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.0.0.0.c.f.7.0.6.2.ip6.arpa.   
IN    PTR    sdpb-ccr-sfp11.celerityinternet.com.
2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.0.0.0.c.f.7.0.6.2.ip6.arpa.   
IN    PTR    belle-ccr-sfp1.celerityinternet.com.
  
  Here's what I do for /56's at each tower (using wildcards):
  ; *.x.x would be for
/56s (i.e. *.1.0 would be 2607:fc00:2:100::/56)
*.1.0        IN    PTR   
sub-dhcpv6-sprf-sdpb.celerityinternet.com.
*.2.0        IN    PTR   
sub-dhcpv6-sprf-chkncrk.celerityinternet.com.
*.3.0        IN    PTR   
sub-dhcpv6-sprf-brkvw.celerityinternet.com.
*.4.0        IN    PTR   
sub-dhcpv6-sprf-bckdlt.celerityinternet.com.
  
  Here's for /64's (using wildcards):
  ; *.x.x.x.x would be
for /64s (i.e. *.0.0.7.1 would be 2607:fc00:2:1700::/64)
*.0.0.7.1    IN    PTR   
sub-slaac-sprf-bckdlt.celerityinternet.com.
*.1.0.7.1    IN    PTR    sub-slaac-blfr.celerityinternet.com.
*.2.0.7.1    IN    PTR   
sub-slaac-stng-fglsng.celerityinternet.com.
*.3.0.7.1    IN    PTR   
sub-slaac-blah-rancha.celerityinternet.com.
  
  
  






Jesse DuPont
Network Architect
email: jesse.dup...@celeritycorp.net
Celerity Networks LLC
Celerity Broadband LLC
  Like us!
facebook.com/celeritynetworksllc

Like us!
facebook.com/celeritybroadband

  
  
  On 1/17/19 3:43 PM, Matt wrote:
  
  

Centos 7 running bind/named in a VM.  Reverse and
  forward dns for ipv4 works fine and has been for many years. 
  Not super pressing issue.
  


  



  On Thu, Jan 17, 2019 at 4:29 PM dave <dmilho...@wletc.com>
wrote:
  
  

  what kind of DNS servers are you runnning??

  
  On
1/17/19 2:32 PM, Matt wrote:
  
  
Anyone have a simple example with bind of doing forward and reverse
DNS for both IPv4 and IPv6?  I cannot seem to get reverse DNS working
on IPv6.


  
  --



-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
  



  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Reverse DNS IPv6

[Jesse DuPont]

  
  
Here's what I do for PTP links (/126's) and statics:
1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.0.0.0.c.f.7.0.6.2.ip6.arpa.   
  IN    PTR    sdpb-ccr-sfp11.celerityinternet.com.
2.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.0.0.0.c.f.7.0.6.2.ip6.arpa.   
  IN    PTR    belle-ccr-sfp1.celerityinternet.com.

Here's what I do for /56's at each tower (using wildcards):
; *.x.x would be for
  /56s (i.e. *.1.0 would be 2607:fc00:2:100::/56)
  *.1.0        IN    PTR   
  sub-dhcpv6-sprf-sdpb.celerityinternet.com.
  *.2.0        IN    PTR   
  sub-dhcpv6-sprf-chkncrk.celerityinternet.com.
  *.3.0        IN    PTR   
  sub-dhcpv6-sprf-brkvw.celerityinternet.com.
  *.4.0        IN    PTR   
  sub-dhcpv6-sprf-bckdlt.celerityinternet.com.

Here's for /64's (using wildcards):
; *.x.x.x.x would be
  for /64s (i.e. *.0.0.7.1 would be 2607:fc00:2:1700::/64)
  *.0.0.7.1    IN    PTR   
  sub-slaac-sprf-bckdlt.celerityinternet.com.
  *.1.0.7.1    IN    PTR    sub-slaac-blfr.celerityinternet.com.
  *.2.0.7.1    IN    PTR   
  sub-slaac-stng-fglsng.celerityinternet.com.
  *.3.0.7.1    IN    PTR   
  sub-slaac-blah-rancha.celerityinternet.com.



  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 1/17/19 3:43 PM, Matt wrote:


  
  Centos 7 running bind/named in a VM.  Reverse and
forward dns for ipv4 works fine and has been for many years. 
Not super pressing issue.

  
  

  
  
  
On Thu, Jan 17, 2019 at 4:29 PM dave <dmilho...@wletc.com>
  wrote:


  
what kind of DNS servers are you runnning??
  

On
  1/17/19 2:32 PM, Matt wrote:


  Anyone have a simple example with bind of doing forward and reverse
DNS for both IPv4 and IPv6?  I cannot seem to get reverse DNS working
on IPv6.



-- 
  
  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Ethernet 100M Copper Limit

[Jesse DuPont]

  
  
Yeah, I installed a 461' link the other day and it runs at 1Gbps
fine and has solid SNRs (about 27.5). That's why I was curious about
there the 100 meter (328') limitation originated and, I suppose
separately, if it's even a valid distance limitation today on CAT5e
and higher cable.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 1/14/19 4:21 PM,
  can...@believewireless.net wrote:


  
  
I had a
  ~450ft 1Gbps link using Cat5e work just fine. We had run both
  fiber and ethernet. One day, the fiber
just died.
  The link auto-magically switched over to ethernet and ran just
  fine until we could fix the fiber.
  
  
  
On Mon, Jan 14, 2019 at 6:13 PM Jesse DuPont <jesse.dup...@celeritycorp.net>
  wrote:


   Well, I meant Ethernet generically.
Regardless of 4-wire vs 8-wire, in general, the purported
safe distance for an Ethernet over copper (as opposed to
fiber) connection is 100 meters. What drives this safe
distance limitation spec?


  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband
  LLC
Like
  us! facebook.com/celeritynetworksllc
  
  Like us! facebook.com/celeritybroadband
  


On
  1/14/19 4:03 PM, ch...@wbmfg.com wrote:


  

  I presume you are talking about 4 wire Ethernet
because we do GigE all the time on copper.  
  GigE uses all 8 wires and has data flowing both
directions.
   
  100 Mbps E uses 4 wires (2 pair) with TX on one
pair and RX on the other pair.  
  GigE uses advanced modulation methods as well.  
   
  Does that help?
  

   
  
From: Jesse DuPont 
Sent: Monday, January 14, 2019 3:58
  PM
To: AnimalFarm Microwave
Users Group 
Subject: [AFMUG] Ethernet 100M
  Copper Limit
  

 
  
  I
figured this was the best place to ask this
question:

What is the primary reason for the 100M limit on
copper Ethernet links? Is it related to bit
errors/SNR or is there a timing element involved?
Something else?

Thanks!
--
  
  Jesse
    DuPont
  Network
  Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity
  Broadband LLC
Like
  us! facebook.com/celeritynetworksllc
  
  Like us! facebook.com/celeritybroadband
  


 
 -- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
  

  
  
  


  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Ethernet 100M Copper Limit

[Jesse DuPont]

  
  
Well, I meant Ethernet generically. Regardless of 4-wire vs 8-wire,
in general, the purported safe distance for an Ethernet over copper
(as opposed to fiber) connection is 100 meters. What drives this
safe distance limitation spec?


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 1/14/19 4:03 PM, ch...@wbmfg.com
  wrote:


  
  
  

  I presume you are talking about 4 wire Ethernet because
we do GigE all the time on copper.  
  GigE uses all 8 wires and has data flowing both
directions.
   
  100 Mbps E uses 4 wires (2 pair) with TX on one pair and
RX on the other pair.  
  GigE uses advanced modulation methods as well.  
   
  Does that help?
  

   
  
From: Jesse DuPont 
Sent: Monday, January 14, 2019 3:58 PM
To: AnimalFarm Microwave Users
Group 
Subject: [AFMUG] Ethernet 100M Copper Limit
  

 
  
  I
figured this was the best place to ask this question:

What is the primary reason for the 100M limit on copper
Ethernet links? Is it related to bit errors/SNR or is there
a timing element involved? Something else?

Thanks!
-- 
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  





-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com
  

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

[AFMUG] Ethernet 100M Copper Limit

[Jesse DuPont]

  
  
I figured this was the best place to ask this question:

What is the primary reason for the 100M limit on copper Ethernet
links? Is it related to bit errors/SNR or is there a timing element
involved? Something else?

Thanks!
-- 
  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Solar Array Voc

[Jesse DuPont]

  
  
Whem I'm using an MPPT, I generally wire the array for 48V nominal.
The Max I've measured is 87.6 volts (4x12V panel in series). Another
site where I've got 2x24V panels in series, the max I've measured is
79.98v, although in the latter example, the panels are not angled
optimally.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 11/27/18 10:28 PM, Forrest Christian
  (List Account) wrote:


  
  Let me see if I can re-phrase my question:


I'm redesigning a voltage input circuit for one of the
  sitemonitor products - this is for voltage metering, not for
  powering the device.   One of the common questions I get asked
  is 'can I monitor my solar array voltage'.  Currently the
  answer is usually 'probably not, unless you are certain the
  Voc is below 60V, and that one side of the array is already
  grounded to common (often isn't for mppt controllers)'.   I'd
  rather be able to say something like 'sure, as long as the Voc
  isn't over X volts', where X is high enough that it contains a
  reasonable subset of the arrays out there.   I don't think
  supporting 150V arrays is in the cards (and yes, I know the
  tristar MMPT goes up to 150V), since that starts getting in
  the range where clearances get hard to do on the circuit
  board.


So I guess the question should be:   What voltage would be
  able to measure most of the array voltages out there?
  
  
  
On Tue, Nov 27, 2018 at 7:07 PM Robert <i...@avantwireless.com>
  wrote:

Morningstar
  makes one of the better charge controllers and the one that 
  I like has ethernet access built in.   It takes up to 150 V
  from the 
  arrays.    They also have their new Mega Controller that will
  do up to 
  600 Volts I don't know of any WISPs that are using it.   We
  have sites 
  that we have 2x Morningstars feeding our battery sets...
  
  Robert
  
  On 11/27/18 5:07 PM, Forrest Christian (List Account) wrote:
  > Looking at determining the maximum reasonable voltage
  range for a new 
  > product I'm working on.
  > 
  > I'm wanting to include a reasonable input for measuring
  solar panel 
  > voltage (a common request).   For those who are running
  solar arrays to 
  > charge a DC site (not grid-connected), I'm wondering what
  type of array 
  > voltages you're running.   I'd prefer the Voc figure
  since that is worst 
  > case, but even the nameplate voltage (i.e. multiples of
  12V) would be 
  > useful since I can kinda infer the Voc from that.
  > 
  > I suspect some of you are running rather high voltages
  (>100Voc) on your 
  > arrays, not sure If I'm going to be able to measure that
  high, but would 
  > like to get a feel for what the reality is.
  > 
  > -- 
  > *Forrest Christian* /CEO//, PacketFlux Technologies,
  Inc./
  > Tel: 406-449-3345 | Address: 3577 Countryside Road,
  Helena, MT 59602
  > forre...@imach.com forre...@imach.com> | 
  > http://www.packetflux.com
  <http://www.packetflux.com/>
  > <http://www.linkedin.com/in/fwchristian>
  
  > <http://facebook.com/packetflux>
  <http://twitter.com/@packetflux>
  > 
  > 
  > 
  > 
  
  -- 
  AF mailing list
  AF@af.afmug.com
  http://af.afmug.com/mailman/listinfo/af_af.afmug.com

  
  
  
  
  -- 
  

  

  

  

  Forrest
  Christian CEO,
PacketFlux Technologies, Inc.
Tel: 406-449-3345 | Address:
  3577 Countryside Road, Helena, MT 59602
forre...@imach.com | http://www.packetflux.com

  
  

  

  



  

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] cnMaestro Cloud - anyone using it to manage customer routers (cnpilot home series)?

[Jesse DuPont]

  
  
Yeah, but once they're defined the first time, they're available in
the device config, which isn't to bad. I'm not sure how else to have
user-specific settings managed centrally. It could be easier to get
to the overrides page from the Device dashboard page, though.

We're actually doing all the baseline config (that which applies to
ALL routers: ipv6, timezone, DST, etc.) in tftp file via option 66.
A defaulted router will get DHCP, download tftp file with all that
stuff, including a generic, limited access pppoe user/pass. At that
point, they reboot and can reach the Internet, where we finish it up
in cnMaestro. So even if customer defaults, it auto-reprovisions
after we force it to sync in cnMaestro.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 11/19/18 11:33 AM, Vlad Sedov wrote:


  
  That's how we manage PPPoE and WLAN
settings currently, but the overrides are clunky at best (i
mean.. who the hell uses length of a label as a sorting
parameter?).. We have customers who ask for additional settings,
like different local network address, guest wifi network, etc..
It just seems like these things should be easier to configure
for each individual device without making a huge list of
overrides.


Vlad

On 11/19/2018 12:27 PM, Jesse DuPont wrote:
  
  

I've been testing it - I'm using a single AP group and custom
overrides. We are also PPPoE so created custom variables so that
we could do user-specific pppoe user/pass in the custom
overrides section. It does work.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 11/19/18 11:06 AM, Vlad Sedov
  wrote:

Hey
  folks.. 
  Does anyone use Maestro cloud thing to manage routers for end
  users? 
  
  We're pretty happy with how it handles corporate networks and
  radios, but  home router configuration seems a bit
  underdeveloped. The only way I see is to either create an AP
  group and wifi network for each customer, or put them all
  under one AP group, and use the less-than-friendly custom
  overrides to maintain individual SSIDs, WPA keys, etc.. 
  
  How are you guys doing it? 
  
  thank you, 
  Vlad 
  


  
  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] cnMaestro Cloud - anyone using it to manage customer routers (cnpilot home series)?

[Jesse DuPont]

  
  
I've been testing it - I'm using a single AP group and custom
overrides. We are also PPPoE so created custom variables so that we
could do user-specific pppoe user/pass in the custom overrides
section. It does work.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 11/19/18 11:06 AM, Vlad Sedov wrote:

Hey
  folks..
  
  Does anyone use Maestro cloud thing to manage routers for end
  users?
  
  
  We're pretty happy with how it handles corporate networks and
  radios, but  home router configuration seems a bit underdeveloped.
  The only way I see is to either create an AP group and wifi
  network for each customer, or put them all under one AP group, and
  use the less-than-friendly custom overrides to maintain individual
  SSIDs, WPA keys, etc..
  
  
  How are you guys doing it?
  
  
  thank you,
  
  Vlad
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Enclosures

[Jesse DuPont]

  
  
I like this one for most of our sites.

https://tyconsystems.com/index.php/products/tycon-solar/all/item/160-enc-st-23x14x12

For the bigger ones, we use AmProd Miniforts.


  
  
  
  
  
  
  Jesse DuPont
  Network Architect
  email: jesse.dup...@celeritycorp.net
  Celerity Networks LLC
  Celerity Broadband LLC
Like us!
  facebook.com/celeritynetworksllc
  
  Like us!
  facebook.com/celeritybroadband
  


On 11/13/18 1:55 PM, Ben Royer wrote:


  
  

  Hey WispWorld,
   
  What enclosures are you using at tower sites?  The ones
we used shot way up in price, so shopping around.
   
  Thank you,
Ben Royer, Operations Manager
Royell Communications, Inc.
217-965-3699 www.royell.net

  
  
  


  

-- 
AF mailing list
AF@af.afmug.com
http://af.afmug.com/mailman/listinfo/af_af.afmug.com

Re: [AFMUG] Rack Mounts

[Jesse DuPont]

  
  
If there is significant density, there are more fiber ports in 23"
FDPs, which may be more space efficient than, say, two 19" racks
side by side.

On 6/26/18 2:57 PM, Chuck McCown wrote:


  
  

  Yes, DSLAMs and switches are 23.  But all the rest of the
stuff seems to be 19.  Routers, servers etc.  
  

   
  
From: Mike
Hammett 
Sent: Tuesday, June 26, 2018 2:55 PM
To: AnimalFarm Microwave Users
Group 
Subject: Re: [AFMUG] Rack Mounts
  

 
  
  
The 23" stuff
  I've seen is DSLAMs and voice switches.
  
 

  
  -
  Mike Hammett
  Intelligent Computing
Solutions
  
  Midwest Internet Exchange
  
  The Brothers WISP
  


  


From: "Chuck
  McCown" 
  To: "AnimalFarm Microwave Users Group"
  
  Sent: Tuesday, June 26, 2018 3:45:29 PM
  Subject: Re: [AFMUG] Rack Mounts
  
  
  

  I very seldom have wished I had a 23.  Mostly
for inverters and rectifiers.  
  

   
  
From:
  Robbie Wright via
AF 
Sent: Tuesday, June 26, 2018
  2:39 PM
To: AnimalFarm
Microwave Users Group 
Cc: Robbie Wright

Subject: Re: [AFMUG] Rack Mounts
  

 
  
  

  Our fiber hut we just
built with 19inchers, haven’t regretted it
once.
   
  
 
 
Robbie Wright
  Siuslaw Broadband/Hyak
541-902-5101
  
   
  

  From: AF
 On
  Behalf Of Chuck McCown
Sent: Tuesday, June 26, 2018 1:34
PM
To: af@af.afmug.com
Subject: [AFMUG] Rack Mounts

  
   
  

  
I am buying rack mounts for a
fiber NOC.  
  
  
 
  
  
One of my co-workers presumed
I was getting all 23” and I was
thinking all 19”.  
  
  
 
  
  
In my experience, power racks
were 23” and most of the other stuff
was 19”.  
  
  
 
  
  
But now I am doubting
myself.  I don’t have a lot of extra
room, so I don’t want to fill it
with all 23” racks.
  
  
I suppose I should put in
one.  Can always convert 23 to 19
with ears but not the other way
around.