Re: [dev] Logical abilities of routers

2023-05-01 Thread David Brooke 
Well, you'll also want ARP for MAC address discovery and ICMP to report
errors.

You might not have NAT (I don't) so a firewall is likely to be useful.

The OP specified IPv6, here you require Neighbour Discovery and there is
no NAT so definitely consider a firewall.

Also consider the internet connection, you may need to run PPPoE to a
xDSL modem or similar.

I expect there's probably more even in a minimalist solution.

David

Re: [dev] Logical abilities of routers

2023-05-01 Thread fossy 
> For a typical at-home router, everything Mr. Fossy Dinx wrote is correct.

*Insert that meme where the guy is drinking something and then sprays it
all out
out of surprise*
It's one of those "I cannot believe this actually worked" xD


> 1. Coffee maker(192.168.1.2:1234) makes HTTP request to
nsa.gov(23.65.34.113:80)

Yeah, sounds about right.


Anyways, cheers Jeremy, glad I was of some help.

Re: [dev] Logical abilities of routers

2023-05-01 Thread fossy 
> Well, you'll also want ARP for MAC address discovery and ICMP to report
errors

Aah, that's what ARP is for.. I tried SSH-ing without a router, just a
switch,
and connecting this and that just with arp xD


I am excited to communicate with people with such know-how!

Re: [dev] Logical abilities of routers

2023-05-01 Thread Jeremy 
On 05/01/23 10:10AM, David Brooke wrote:
> You might not have NAT (I don't) so a firewall is likely to be useful.
> 
> The OP specified IPv6, here you require Neighbour Discovery and there is
> no NAT so definitely consider a firewall.
> 

Pretty neat that you don't use NAT. I had a public IP on my laptop
once(ONCE) & the Chinese kept sending garbage to any port that was open
& it made my laptop hot(almost burned my thighs!) What's your secret to
avoid this??

As I'm sure you're aware, iptables & nftables allow you to configure
NAT for IPv6. I couldn't seem to find any useful critisisms of NAT for IPv6.

IPv4 isn't going anywhere anytime soon & I doubt any commercial
enterprise will write software soley for publicly-addressable, consumer
PCs.

> Well, you'll also want ARP for MAC address discovery and ICMP to report
> errors.
> ...
> Also consider the internet connection, you may need to run PPPoE to a
> xDSL modem or similar.

I hadn't thought to mention this - thank you.

- Jeremy

Re: [dev] Logical abilities of routers

2023-05-01 Thread Sean MacLennan 
On Mon, 1 May 2023 09:45:22 -0700
Jeremy  wrote:

> Pretty neat that you don't use NAT. I had a public IP on my laptop
> once(ONCE) & the Chinese kept sending garbage to any port that was
> open & it made my laptop hot(almost burned my thighs!) What's your
> secret to avoid this??

I had a public IP for 18 years. The secret is to not have open ports ;)

In the early years it was not a problem... but it slowly got worse and
worse.

I moved my website to the cloud. I moved my email to the cloud. For ssh
I either moved the port (easy) or later added port knocking (harder).

I also found used bad guys in iptables. Basically, if you hit my
firewall on a bad port, you are put in the bad guys list. This blocks
your ip for a couple of minutes. This makes port scans super expensive.

Today I have a Bell router in front of my router with no port
forwarding. It means I cannot remotely ssh to my systems... but really
hasn't been that limiting since I work mainly from home now.

So I have a Bell router, connected to my main router (Linux box), which
is connected to a wireless router for wireless. Yes, the Bell router has
wireless, but it is in the basement and doesn't have a great signal.
And I already had the wireless router.

Cheers,
   Sean

Re: [dev] Logical abilities of routers

2023-05-01 Thread David Brooke 
On Mon, May 01, 2023 at 09:45:22AM -0700, Jeremy wrote:
> 
> Pretty neat that you don't use NAT. I had a public IP on my laptop
> once(ONCE) & the Chinese kept sending garbage to any port that was open
> & it made my laptop hot(almost burned my thighs!) What's your secret to
> avoid this??

I run a few servers, which do require inbound connections to certain
ports, but otherwise it's all blocked by the firewall on my router. I
can't stop unwanted traffic (and there is a lot of it) before that but
at least it doesn't get on to my internal network.

David

[dev] [dwm] DWM Multihead Missing Cursor

2023-05-01 Thread Yan Doroshenko 

Hello,


I have a strange thing going on with the mouse cursor in DWM. When I 
move the cursor to another screen right after DWM starts, the cursor 
just disappears. It comes back if a window is created on that screen.


Does anyone know what might be the cause?


Ways to reproduce on the master version (e81f17d):

1. Start DWM.

2. Enable second monitor (xrandr/arandr).

3. Move the mouse cursor to the second monitor.

4. The cursor is missing.


Thanks,

Yan



OpenPGP_signature
Description: OpenPGP digital signature