The Class E Network

    • Offizieller Beitrag

    Given what's in the Win10 thread, at least 2 users experienced the same problem where the security policy edit "fixed" it (so to speak).

    Yes, but one those users did have W10 Enterprise, which according to the MS link the gpedit is the only way to resolve it, I don't think Molok specified his version of W10, and knowing most windows uses they find something and apply it, if it works then to them it's a "fix" which IMHO for an end user running W10 Home is not something MS would expect them to be doing.


    In any case, setting a hosts file entry should completely negate the host name to IP address mapping issue, if the OS utilized it as the override/user defined default it was originally intended to be.

    W10 does do that, but as you point out it's a PITA it does require some sort of 'root' admin right, I edited mine and was able to change the security settings, because I know what I'm doing, the average end user doesn't.


    Since some users turn off updates or only allow approved updates

    Best of luck with that in W10, I have yet to find a way to do that, you can delay them, you can adjust the time it restarts but unless you're in domain environment using WSUS those updates will eventually be deployed.


    Each of the hoops, in that oversized how-to, addressed at least one potential issue that blocked access to SMB shares, at some point in time

    Yes they did, but didn't that come from issues related to the Creators Update, which, if I remember caused havoc and the MS forums were a minefield to get through, that is why at one point I stopped using it.


    The option I posted just works, and working on the KISS principle I would have thought would be a suitable option for most users. What they complain about is the fact that OMV or any other Linux distro using SMB just doesn't show up in File Manager -> Network. They're not interested in the techno stuff they want a solution -> yesterday, and they assume because they use Windows it's not that that is at fault!


    Sorry that was a rant.


    I'll do the Brexit thing tomorrow...getting late here "Time for bed said Zebedee" (That's a saying from a child's TV programme many moons ago :) )

    • Offizieller Beitrag

    Well, you're right, at least about 32bit Win10 pro installs. There's no network discovery but all that was needed was the creation of a short cut on the desktop, which can be pinned to quick access and the start menu. I didn't test mapped drives but the working short cut tells me they'll work.


    It's time to reorder the How-To, putting the short cut first and pushing the other stuff for older off-the-net builds to the end (with a note.)
    The wife gets a new laptop in any case. Performance had been slowly degrading for awhile now, for some unknown reason. I thought a fresh Win10 build might bring it back somewhat. Performance is about the same, maybe a bit worse than Vista. It is what it is.

    • Offizieller Beitrag

    There are a number of options you can turn off in W10, takes some digging, Task Manager is a help I couldn't believe Disk access after making a number of tweaks it now drops off not long after boot. Memory usage can be high but that is mainly down to browser usage.

    • Offizieller Beitrag

    The current situation is poor. At times, one can type and it takes the laptop a couple seconds to catch up. (That's no exaggeration.) And while it doesn't have the fastest CPU, it's not a 100% either.


    I cloned the boot drive so I can do a factory defaults/reset, to see of the original Vista install improves performance. (It was pretty snappy when I bought it.)


    If that doesn't do it, I might test it with diag's but that's kind of pointless because, even if I found a cause for the symptom, I wouldn't repair it.

    • Offizieller Beitrag

    The current situation is poor. At times, one can type and it takes the laptop a couple seconds to catch up. (That's no exaggeration.)

    Wow that's not good, looks as if i might get another laptop tonight, apparently it shutdown after getting hot now it appears it doesn't want to get to a login screen :(


    As a side noe I find it difficult sometimes explaining to the wife about computers -> she brought a laptop home from school (16 of them have been ignored by their new IT provider) it seemed that everyone assumed that these laptops were not working. So bring one home to me to have a look, it's perfectly Ok, erased W7 and installed a vanilla W10 Pro (no licence key) no software -> it works. So the wife has finally spoken to the head and she also assumed they dead, so wife has explained she took one home and I have wiped it (this is difficult part will explain) and installed W10, so she's surprised but how long would it take for the IT company to set these up as they charge £300 per day!! 8o I installed that laptop, including updates in a couple of hours, the bank of 16 should take no more than a day and that's if they install across the network (PXE Boot)


    The difficulty I have is explaining "wiped" to her, any school pc's have to be wiped before being removed or sold on, I'm trying to get her to understand that by installing W10 I wipe the disk (I delete the partitions) but their understanding of wiped is shredding leaving a blank drive. Needless to say the discussion started to get heated as she couldn't grasp what I was trying to explain, why should she, she's a teacher not an IT tech.


    The other problem she has in school is her interactive flat panel they connect via hdmi, now these can be a PITA if certain things aren't in place, the IT company have told the school the hard drives failing on her laptop, hence sometimes the flat panel and the laptop play nice sometimes they don't -> my response to that was "well they obviously don't know their head from their a**** because it's not the hard drive"


    Got my Docker sorted finally!! not it's not displaying any error messages when I run systemctl status docker, I'm sure there was some residual containers floating around even though they weren't showing. Now I'm running just what I need with no 'fluffy bits' :D

    • Offizieller Beitrag

    The difficulty I have is explaining "wiped" to her, any school pc's have to be wiped before being removed or sold on, I'm trying to get her to understand that by installing W10 I wipe the disk (I delete the partitions) but their understanding of wiped is shredding leaving a blank drive.

    Well, there are levels to "wiping" a drive, depending on how far one goes with it. Even when a drive is overwritten (once), for a limited time, it's possible to recover what was previously on it by putting the drive in a maintenance mode, off-setting the heads a bit and running the result of several reads through a differential engine. Difficult? Absolutely. Perfect? No, but the results can be nearly 100%. Expensive? You bet - it's forensic recovery. On the other hand, while it's still expensive, it's easier these days with automated hardware appliances made for the purpose (law enforcement). For the school? Please... :) We're not talking even talking about "sensitive" data. Other than a secure wipe, over writing is the next best thing.

    Needless to say the discussion started to get heated as she couldn't grasp what I was trying to explain, why should she, she's a teacher not an IT tech.

    The next time she questions you on PC issues, tell her that you really should look at, and approve, her lessons plans. You know, to make sure she gets it right.

    The other problem she has in school is her interactive flat panel they connect via hdmi, now these can be a PITA if certain things aren't in place, the IT company have told the school the hard drives failing on her laptop, hence sometimes the flat panel and the laptop play nice sometimes they don't -> my response to that was "well they obviously don't know their head from their a**** because it's not the hard drive"

    That is pure BS. This alone tells me that, a minimum, the tech is either incompetent or is taking advantage of those who don't know any better. At the worst, the companies objective is to separate as much money in fees and services as is possible, to include nefarious means if necessary.


    __________________________________________________________________________________________________________________


    The problem is a matter of credibility. However but without any tech background at all, the majority in a school district can't discern what "credibility" is. If they handled the awarding of the contract with a committee of non-tech people, who chose not to have a technical advisor, this kind of thing happens. Somebody in a suit (or a skirt) with a power point makes a seemingly polished pitch and tax payers get fleeced. It happens all the time.

    • Offizieller Beitrag

    /--/ looks as if i might get another laptop tonight, apparently it shutdown after getting hot now it appears it doesn't want to get to a login screen

    That sounds like (maybe) the CPU was lightly fried. The wife's laptop, the slow one, shut down from heat a couple years back. I blew it out with compressed air, where a small cloud of dust came out of it. After that, it "seemed" to be fine but who knows.
    That's the only real drawback to the Laptop design. The interior spaces are tight and restricted, and heat sink surfaces are small which means the fan must move a lot of air to keep the CPU cool. With all considered, it doesn't take long for the heat sink to plug up. Without a truly conservative heat shutdown routine, in BIOS, the CPU is at risk.
    ___________________________________________________________________________________________


    There's a Diet-Pi update which I'm not going to do until I have a chance to backup the SD-card. I'm actually looking forward to the next pi-hole update. It will be interesting to see if the update does the job, with the install in place, without issues.


    While working over at the old house, I experienced the Net without Pi-hole. It was awful. I didn't realize that a streaming channel I watch, from time to time, has been popping up 1 to 2 minute video advertisements, without warning. When it's on-line, Pi-hole blocks these popups. With that little experience considered, I have a renewed appreciation for what it does.

    • Offizieller Beitrag

    That is pure BS. This alone tells me that, a minimum, the tech is either incompetent or is taking advantage of those who don't know any better.

    It certainly is, the irony is I know the company, they are specialists in audio, video equipment but somewhere along the line they have employed a couple of very good 'techies' to prompt what they have seen as an additional revenue stream. Most primary schools will nationally recognised companies, there are few, but there are some I would not use, it's only in the last few years schools have been allowed to source from other companies outside of the designated local authority list. This has lead to small companies either starting out or branching out their current business model. To me this fine 'if' they can prove themselves over a period of time, however, like all schools that are facing a funding reduction these new kids on the block appear (at least to the school) to be offering the same as the big boys, but for less money!! The thing is the two guys back at the office do very little field work they employ youngsters who aren't wet behind the ears! and the support is based is based on 1/2 day per week (which is 3 hours) depending on what you want to pay for. But the price is set as 'per year' clever, because I think the UK school year is around 33 weeks, so when you back calculate that 1/2 day has increased in actually support price.
    When I was asked to look at the original quote this was one thing I highlighted because 99% of support work can be done remotely, so why are you having a support person come out to you (in the case of the wife's school) 1/2 day per month! X(
    ___________________________________________________________________________________________


    Had that laptop, nothing appeared to wrong with it, but the taskbar was blank of icons with the revolving blue circle, the windows key wouldn't operate any windows shortcuts and the touchpad didn't work unless the mouse was on the screen!! However, the power supply I got sent didn't fit 8o so tried my own :thumbup: shutdown the laptop plugged in my power supply and it was Ok everything started working ?( so I'm wondering if the power supply they have been using is the problem. The laptop (according to the sticker) was rated at 2.5A, the power supply I got sent was only 2.1A whereas mine is rated at 3.4A, but mine fitted and charged the battery! That's gonna be worth a few bars of chocolate, I charge in chocolate bars :D provided it's got nuts in, it's family proof ^^
    I thought it might be the CPU, fan outlet blocked, but that was clean. Nice laptop as well Toshiba Satellite L53 I think the model was i5, 8Gb Ram W10 64 bit, fairly light and slim.
    _________________________________________________________________________________________


    Didn't know there was an update for DietPi, haven't checked it all week, it's sitting there running I have Ethernet lights on it so there must be life :)


    Brexit footnote; here's one reason why this is bad idea

    • Offizieller Beitrag

    The laptop (according to the sticker) was rated at 2.5A, the power supply I got sent was only 2.1A whereas mine is rated at 3.4A, but mine fitted and charged the battery!


    Power - the most often ignored and the most likely culprit. Under powering is roughly the same, effects wise, as bad power (with ac ripple). Weird things happen. Also, when PS output is running at 100%, all the time, the supply tends to have a shorter life.


    When it comes to bad power, since I know about the types of damage that can be done by the AC line, I've had whole house (power panel) surge protection for the last 15 years or so. As as result, most of my devices last a long time.
    ________________________


    I'm not too worried about updating the Diet-Pi either. To get into the Diet-PI, a hack would have to get past two routers. (And the first router is managed by the ISP who, I hope, is ensuring that their router doesn't have security holes.)
    ________________________


    On Brexit:
    I know you're not happy about Brexit but, as I mentioned before, there may (will) be larger issues if those in power positions are allowed to ignore the will of the majority.


    My interest in the EU is really about whether or not it can work over the long haul. While most things start with good intentions, good intentions are not enough. Without something in each countries constitution (or equivalent founding document), that makes each Sovereign power subservient to the EU council, I don't think it can.
    Otherwise, it's kind of like having a speed limit sign without the ability to enforce it with law. The sign is really nothing more than a suggestion, versus a warning of a potential consequence for violating the law. Actually, that analogy is fairly accurate. There will be some who will obey the sign, simply because it's there. Others, when they notice there's no penalty, will speed with reckless abandon, endangering all concerned.

    • Offizieller Beitrag

    Came across my first problem with Pi-Hole, (needless it was the wife's iPhone. Trying to use Find My Friends particularly for our niece in Australia, anyway will not work on Wifi but it work on cellular, so 2+2=Pihole, set a static ip and a public dns on her iphone and it works :thumbup: but I can't find what Pihole is actually blocking, as this app requires location services to be on, which it is.
    ______________________________________________________________________________________________________


    I know you're not happy about Brexit

    At this moment in time it could all go down the toilet :P so much is now being challenged, if it does, and there is a 'people vote' then there will be a general election.

    • Offizieller Beitrag

    Came across my first problem with Pi-Hole, (needless it was the wife's iPhone. Trying to use Find My Friends particularly for our niece in Australia, anyway will not work on Wifi but it work on cellular, so 2+2=Pihole, set a static ip and a public dns on her iphone and it works but I can't find what Pihole is actually blocking, as this app requires location services to be on, which it is.

    Did you set static dns server(s) on the phone? If so, I have the dhcp server tell devices what dns server the dhcp client should use instead of defaulting to itself. While one of my pihole systems is my dhcp server, it could tell the dhcp client any dns server to use.

    omv 7.0.4-2 sandworm | 64 bit | 6.5 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.10 | compose 7.1.2 | k8s 7.0-6 | cputemp 7.0 | mergerfs 7.0.3


    omv-extras.org plugins source code and issue tracker - github


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

    • Offizieller Beitrag

    Did you set static dns server(s) on the phone?

    I use OMV dnsmasq plugin as Pi-Hole's dhcp will not work with the satellite hardware, Pi-Hole is now on a Pi running DietPi.


    So the iPhone is set to dhcp with Pi-Hole as the dns, so what I should have done instead of setting a static ip on the iPhone was to just change the iPhones dns server to manual. :rolleyes:

    • Offizieller Beitrag

    Geaves;


    Servers were your thing back in the day,, so...


    I've been running memtest86 non-stop for, well, a couple days. I've turned up a couple ECC corrected error's in the row hammer test (Test 13), but no hard uncorrectable errors. Would you be concerned? Did you turn up similar results when testing servers, back in the day?


    The doc's I'm reading indicate that, given the duration of the test (a couple days) and hard testing, that a correctable error here or there might be normal. I read one article that suggested;


    /---/ "Google's servers, showed that about 8.2 per cent of all dual in-line memory modules (DIMM) are affected by correctable errors and that an average DIMM experiences about 3,700 correctable errors per year."


    At that rate, a correctable error or two per day would be expected in a production environment, which probably wouldn't be near as hard on a DIMM as the row hammer test.


    What do you think? I'm trying to decide if I should be concerned. (Back to the doc's...)


    I'm going to rerun the test, with the case assembled this time, to see what happens.
    (Given the power out here, I probably should have this box on an UPS.)

    • Offizieller Beitrag

    What do you think? I'm trying to decide if I should be concerned.

    No, I only ever had one issue with Ram once we got passed a 48 hour stress test and that only came to light after one of the VM's which was db reliant decided to slow down. After running some tests it was decided that one of the ram sticks was failing, but to be safe and the fact the server was under warranty the whole bank was replaced.
    TBH server side hardware is far more robust (although some would disagree on that) simply because it's on 24/7, buying a second hand commercial server makes sense -> testing the ram that is currently in the box is a good idea but unless it starts throwing errors consistently I wouldn't worry. If you want piece of mind then replace with new and run a 48 hour stress test, but that to me is overkill.
    With what you are planning to use that server for you're probably never going to over stress it, any failure is going to be related more to fatigue, like me :) but it's easier to replace parts in a server :)

    • Offizieller Beitrag

    As it turns out:


    I have the latest version of memtest86 AND I booted it under UEFI which makes row hammer testing possible.
    (AND) I have DDR3 which, as I have gathered, is the most susceptible to row hammer. It all seems like Lemony Snicket's - "A Series of Unfortunate Events".


    In reading papers, I've learned more about RAM refresh rates and methods being deployed to prevent row hammer but really, there's no "there" there. (It would take a world class hack to do an exploit.) As it seems, the most effect preventative measure is ECC. :thumbup:
    I'm running a full test again and I might re-install the original 6GB to see how that tests out, but I've come to the conclusion that I'm going to use what I bought (32GB).
    (I mean, it would be hard to run more than 1 VM with 6 whole GB of ram.)


    Now that I've learned about memory matrixes, refresh rates, victim rows, etc., I need to forget it. I'm guessing a few beers and some navel gazing may do it. :)
    ___________________________________________________________


    Given some good advice:
    I'm going to give Proxmox a try and since they'll give much better performance and 2 additional cores per CPU, at minimal cost, upgrading to X5660's seems to make sense.

    • Offizieller Beitrag

    I'm going to give Proxmox a try and since they'll give much better performance and 2 additional cores per CPU, at minimal cost,

    Does Proxmox use Dynamic Ram Allocation? Tried that on MS Hyper V, turned out to be more trouble than it was worth. What it supposed to do and what it did were two different things, the idea was you allocated a minimum amount of Ram then using DRA you set a max the VM could use. So in theory a VM that required more Ram used it, but then returned it once the request was completed, again in theory that was good in practise it was a PITA with the DRA very rarely being returned when not needed. In the end we settled for static Ram based upon each VM's requirements.

    • Offizieller Beitrag

    Does Proxmox use Dynamic Ram Allocation?

    I don't know, yet. But there's really no choice, as I see it, if I go the free route. And the free route is something of a requirement, so I could kick out the big bucks ($32) for a matched pair of Xeon X5660's. (I bought them, BTW. Spare no expense... )


    Per ryecoarron; Proxmox allows for cloning VM's where free ESXi does not. Since I'll be doing things that may not be recommended ( rm -rf / :) ), being able to clone a freshly built guest is a big deal in my book. (I mean, I might try rm -rf / a few times to see if there's a different result. :D )


    It's good to know about the cloning restriction in the free ESXi version. I've been cloning VM's in Virtualbox, for a long time, so I just assumed that all hypervisors supported it.

    In the end we settled for static Ram based upon each VM's requirements.

    I think I'd got this route in any case. The only time I've seen "dynamic" anything work well is in Virtual Box, when allocating dynamic virtual disks. I don't know how they do it but the block device appears to be the max size (as allocated) but the contents of drive determine the actual file size used. The space saved is considerable.
    __________________________________________________________________________________________________________


    (**Beginners who may read this thread: DO NOT do rm -rf / ** - unless it's in a throw away VM, then have at it. :) )

    • Offizieller Beitrag

    Well at the prices you buy kit at second hand, the beefier the merrier :) Now years ago when the switch came from 486 to the first Pentium we would call that "willy waving" that's a technical terminology that was used within the CIX gaming world :D
    To have that amount of hardware would not be worth the grief from you know who ;)

    • Offizieller Beitrag

    You remember when I tried the Pi-Hole DHCP and I had trouble getting some hardware to use it -> well it turns out it could be related to host names.
    So everything on the network has a host name except for the satellite stuff and yesterday daughter bought herself a Kindle. OMV's dns/dhcp issues an ip address but registers the items host name as *(ip address issued) and it's that that fails on Pi-Hole's dhcp. So if there is no host name it will not issue an ip address ?(

    • Offizieller Beitrag

    Does Proxmox use Dynamic Ram Allocation?

    Yes. It has a feature called ballooning where you can set the min and max ram.

    Since I'll be doing things that may not be recommended ( rm -rf / ), being able to clone a freshly built guest is a big deal in my book. (I mean, I might try rm -rf / a few times to see if there's a different result. )


    It's good to know about the cloning restriction in the free ESXi version. I've been cloning VM's in Virtualbox, for a long time, so I just assumed that all hypervisors supported it.

    You could use snapshots for this too. Set a snapshot, try your test, rollback to the snapshot. This is supported in the free version. Free ESXi can technically clone a VM but you have to manually snapshot the machine or shut it down. Then you can copy the vmdks to another VM. Painful but possible.

    omv 7.0.4-2 sandworm | 64 bit | 6.5 proxmox kernel

    plugins :: omvextrasorg 7.0 | kvm 7.0.10 | compose 7.1.2 | k8s 7.0-6 | cputemp 7.0 | mergerfs 7.0.3


    omv-extras.org plugins source code and issue tracker - github


    Please try ctrl-shift-R and read this before posting a question.

    Please put your OMV system details in your signature.
    Please don't PM for support... Too many PMs!

Jetzt mitmachen!

Sie haben noch kein Benutzerkonto auf unserer Seite? Registrieren Sie sich kostenlos und nehmen Sie an unserer Community teil!