Archive for the Category » random «

Thursday, September 17th, 2015 | Author:
  • Part 1 – Pambuka – Nyetel Queues Japanese (Kirim iki)
  • Part 2 – Andal Ngenali lalu lintas – Nyetel mangle Aturan (Coming Soon TM)
  • Part 3 – Prioritas lan Watesan – Nyetel Saiki Wit (Coming Soon TM)
  • Part 4 – Monitoring Usage – Redefining Queues – Limiting Abusive Devices (Coming Soon TM)
  • Part 5 – ??? MediaWiki ???

Pambuka

The first problem one usually comes across after being tasked with improving an Internet connection is that the connection is overutilised. Biasane oleh mangerténi apa, sing, utawa apa masalah – except of course everyone blames the ISP. Kadang iku ISP ing – but typically you can’t prove that without having an alternative connection immediately available. I currently manage or help manage four “Camping / latar” nggunakake QoS kanggo ngatur panyambungan Internet sing. Siji makaryo, two are home connections, and the last one is a slightly variable one – biasane mung sambungan ngarep nanging Utawa, for a weekend every few months, it becomes a 140-wong (lan akeh) LAN. Fun. 🙂

Mikrotik RouterOS lan

Mikrotik'S RouterOS is very powerful in the right hands. Many other routers support QoS but not with the fine-grain control MikroTik provides. Alternatively you could utilise other Linux-based router OS’s, kayata DD-WRT, Smoothwall, Untangle, lan sanesipun. Paling iki biasane mbutuhake sing duwe server nyisakke lying bab utawa dalan hardware kompatibel. Mikrotik sadean RouterBoards sing duwe RouterOS builtin – lan padha sing relatif inexpensive.

Sandi pengalaman karo router utamané karo Cisco lan mikrotik – and my experience with QoS is primarily with Allot kang NetEnforcer / NetXplorer sistem lan mikrotik. Piranti mikrotik sing paling populer ing pengalaman (liyane saka long-macem piranti nirkabel darmabakti sing) wis sing rb750 (versi anyar sing jenengé “hex“) lan rb950-Boards adhedhasar. Padha duwe akeh wong available and are relatively inexpensive. In historical comparison with Cisco’s premium devices, Aku wis niat kanggo njlèntrèhaké piranti mikrotik minangka “90% fitur ing 10% biaya”. Minangka panuntun iki ngarahke utamané ing SME / Ngarep nggunakake, inexpensive makes more sense. If you’re looking at getting a MikroTik device, Wigati dimangerteni menawa mikrotik router apa ora typically include DSL modems, mangkono peralatan ana iku biasane isih perlu. Wigati uga sing iki ora tutorial nyetel piranti mikrotik saka ngeruk. Ana kathah Panuntun kasedhiya online kanggo sing wis.

Teori menyang laku – langkah pisanan

Nggawe QoS bener, you need to have an idea of a policy that takes into account the following:

  • Kacepetan sambungan sakabèhé
  • Carane akeh kedhaftar / piranti bakal nggunakake sambungan
  • The users/devices/services/protocols that should be prioritised for latency and/or throughput

Kanggo entuk ndhuwur ing conto sandi, Aku bakal nganggep ing ngisor iki:

  • Ing mikrotik wis nyiyapake karo konfigurasi jaringan standar ngendi jaringan lokal 192.168.88.0/24 lan sambungan Internet diwenehake liwat PPPoE.
  • Kacepetan koneksi 10 / 2Mbps (10 Mbps speed download; 2 Mbps kacepetan upload)
  • Ana bakal 5 kedhaftar karo minangka akeh minangka 15 piranti (kaping komputer / tablet / telpon seluler / WiFi etc)
  • Downloads khas mbutuhake prioritas dhuwur karo kabeh nanging kurang-prioritas karo kemungkinan
  • Gaming/Skype/Administrative protocols require high priority with both latency and throughput
  • Ora kedhaftar sing bakal prioritized liwat liyane

The first and probably quickest step is to set up what RouterOS refers to as a Japanese Saiki.

Aku wis digawe script cendhak sing aku wis disimpen ing piranti mikrotik kanggo nyiyapake queues prasaja. Iku minangka nderek:

:kanggo x saka 1 kanggo 254 do ={
 /saiki prasaja jeneng nambah ="internet-usage- $ x" DST ="pppoe" max-watesan = 1900k / 9500k target ="192.168.88.$x"
}

Apa ndhuwur ora iku wates kacepetan maksimum wae piranti individu bisa digunakake kanggo “1900k” (1.9Mb) ngunggah lan “9500k” (9.5Mb) download.

Cathetan:

  • Alesan ngapa watesan max ing 95% of the line’s maximum speed is that this guarantees no single device can fully starve the connection, negatively affecting the other users. With a larger userbase I would enforce this limit further. Contone, karo 100 pangguna ing layanan 20MB aku bisa nyetel watesan iki kanggo 15Mb utawa malah minangka sethitik minangka 1MB. Iki tanggung gumantung carane “penyalah gunaan” penggunane lan, minangka tokoh metu ngendi lan carane akeh planggaran occurs, you can adjust it appropriately.
  • Ater-ater ing “internet-berkas” ing parameter name bisa selaras. Biasane aku nyetel kanggo deleng jeneng latar. Contone, with premises named “alpha” lan “beta”, Aku biasane bakal sijine “internet-alpha” lan “internet-beta”. Iki mbantu karo instinctively mbedakake antarane Camping.
  • Parameter DST wis “pppoe” ing tuladha. Iki kudu diganti karo jeneng antarmuka that provides the Internet connection.

Njamin sampeyan ngatur script dadi cocok kanggo konfigurasi. Nyimpen script kanggo mikrotik lan mbukak – utawa paste langsung menyang terminal mikrotik kanggo nglakokaké iku.

In my next post I will go over setting up what RouterOS refers to as Mangle aturan. Iki aturan ngawula kanggo ngenali / golongan lalu lintas jaringan supaya QoS becik-grained bisa.

Share
Category: random  | Leave a Comment
Thursday, September 17th, 2015 | Author:

Privasi, Wektu, Dhuwit

Aku ora seneng pesenan debit. Aku wis tau disenengi idea sing èntitas liyané bisa, bakal, njupuk meh wae jumlah dhuwit (uga … apa wae sing kasedhiya). Rowange A nuding metu Jeksa Agung bisa ngetokake karo MTN bakal wis nyingkiri aku wis wis nggunakake supaya debit. Mungkin “penak” faktor ora kaya bab ala.

Aku Upaminipun pitakonan penultimate kene iku apa utawa ora sing arep penak lan bisa dipercaya institusi (ing kasus iki karo dhuwit) – utawa yen sampeyan ora bisa dipercaya lan cumadhang kanggo forgo penak sing. Ing cilik, malah sanadyan aku isih pitakonan penak, Aku sinau cara hard karo MTN sing kurva bisa nyenengake kanggo duwe donya disambungake Panjenengan suda kanggo “pulo remot” status. Meh saben dina dadi karo faktor penak.

Penak

Ing tangan liyane, saiki dangu ago, I had a dispute with Planet Fitness ngendi penak ana pedhang landhep kiwa-tengen. Aku sing dilapurake laku bisnis Komisi Lingkungan Consumer (wiwit maneh diatur minangka Komisi Consumer National) and never got feedback from them. The gist of the issue is that Planet Fitness’s sales agent lied to me and a friend in order to get more commission/money out of my pocket.

Aku Discovery vitalitas anggota kang menehi akeh keuntungan, kalebu prices ing merek Premium – biasane-kesehatan related mesthi, as Discovery is a Medical Aid/Health Insurance provider. Kanggo nyelehake iku mung, Discovery iku apik tenan. Keuntungan vitalitas kang nutupi Keanggotaan gym kang luwih kalebu Planet Fitness. You still have to pay something, koin cilik limo, kanggo Discovery, kanggo anggota gym. Nanging, sawise kabeh, padha arep kula dadi sehat, so they don’t mind footing the bulk of the bill. Nanging, ketoke, iki tegese Planet Fitness’ agen dodolan ora njaluk komisi!

Supaya apa ora asil iki ing? Hasilipun agen sales PF kang maringi kula lan tokoh inflated kanggo “Adhedhasar vitalitas-” anggota. Panjenenganipun ngapusi. Banjur wis kula mlebu ing baris burik kanggo rega inflated saka “biasa” anggota (ya, iku bener luwih saka malah anggota biasa bakal duwe biaya), ending up about 4 lan 5 kaping minangka akeh minangka anggota basis vitalitas.

Epiphanies

Some time in 2011 Aku pungkasanipun wisened nganti biaya aku iki mestine kanggo anggota. Discovery Aku manawa ora bakal seneng banget bab fiasco iki. Aku kandha marang Manager ing gedung olahraga, lan aku iki njamin yen kabeh kontrak bakal scrapped. Aku ora salah siji kanggo panganiaya … kajaba kanggo sawijining olahraga … ing Octagon … nanging sawise riko sandi 5th kanggo Manager kanggo takon kok Pesenan Debit isih kedados, piyambakipun dhateng kula kang kaget aku wis ora nggawa senjata karo kula riko. Sawise sawetara liyane kunjungan, Manager wis bener kiwa Planet Fitness lan diterangno kanggo kula sing “kontrak” was between myself and Head Office and that the local gym, ketoke operasi franchise-gaya, wis sethitik ora ngomong bab apa utawa ora iku bisa dibatalake. Yen Kantor Lowongan ora ngandika, angel luck.

By this point I’d lost it. I had my bank put a mungkasi kanggo pesenan debit. It was a huge schlep: I had to contact the bank every month because the debit order descriptions would change ever so slightly. It also cost me a little every couple of months to “ngganti” the blocking layanan. Aku ora bisa bantuan nanging mikir sistem perbankan ndhukung biasa ungkapan nanging Staff ora kudu ngerti carane nggunakake.

Technically I’m still waiting on the CCC to get back to me (tau kedaden – lan mesthi padha maneh diatur kaya kasebut ing ndhuwur supaya cilik mbokmenawa ambruk liwat retak). Mesthi, dening titik PF uga wanted kanggo daftar ireng kula boten mbayar!

Pahlawan Fungsi

A sebutno haphazard saka Jeksa Agung bisa ngetokake kanggo Discovery (Aku nimbali wong-wong bab riko dentist) ngasilaken ing callback dening salah siji agen Discovery kang. Banjur padha takon kula kanggo njlèntrèhaké masalah, rinci lan nulis, kanggo nerangake luwih saka perspektif apa wis nemen kedaden. Aku kapekso. Pranyata metu aku hak bab wong-wong mau ora kang “seneng banget” bab iku. Ing kasunyatan padha tenan ora kaya iku. About three weeks later, Planet Fitness dibalekake kula ing FULL kanggo kabeh monies sing wis tau wis mbayar kanggo wong-wong mau.

Discovery Awesome. 🙂

Share
Monday, October 29th, 2012 | Author:

It appears that, in infinite wisdom, Google have a security feature that can block an application from accessing or using your google account. I can see how this might be a problem for Google’s users, in particular their GTalk lan Gmail users. In my case it was Pidgin having an issue with the Jabber layanan (which is technically part of GTalk). I found the solution after a little digging. I was surprised at how old the issue was and how long this feature has existed!

To unlock the account and get your application online, use Google’s Captcha page here.

Share
Wednesday, June 08th, 2011 | Author:

I did a full update on my personal server at home as one is bound to do, often, karo Arch. It’s a headless server so there’s always that slight anxiety concerning whether or not I have to connect a keyboard/monitor when things don’t just work. The wish was not granted today:

Arch Linux started booting up normally and init starts runlevel 3, the where it stats loading daemons:

:: Adjusting Hardware Clock [Busy]

And that’s where it just hangs. No further. Ctrl+Alt+Del works, single user mode works, but standard runlevel 3 will not. It turns out that the cause is a bug between hwclock and the server’s hardware clock. The backup battery on the motherboard, powering the CMOS memory and, subsequently, the hardware clock, is dead. While the system is powered up the battery isn’t neededhowever since the hardware clock knows it has reset, it won’t tick until we tell it what the time is. Counter to this is that when hwclock starts, it’s waiting for a clock tick in order for it to know if the hardware clock’s rate of progress is good. Catch 22.

The solution in my case was to go into single user mode where I could disable hwclock in /etc/rc.conf. I’ve been using ntpd to keep the system time in sync which works just fine. I’m not too bothered with whether or not the hardware clock is rightI just want the live system’s clock to be right. It will still be a good idea to get a replacement battery since, until that’s done, every time the server boots it will think its back in 1997.

Share
Category: random  | One Comment
Friday, September 24th, 2010 | Author:

The upgrade to WordPress 3 was long overdue (as are many draft articles). Surprisingly, nothing looks different since the upgrade has been completed, though I also would not be surprised if I’ve missed an important plugin breakage.

I’ll be spending a day this weekend solely on polishing the site and finishing up some articles. You have something to look forward to. 🙂

Share