ItzTrain<p><span class="h-card" translate="no"><a href="https://transitory.social/@rachel" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>rachel</span></a></span> I have been in my software router era for a very long time with <a href="https://hachyderm.io/tags/VyOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VyOS</span></a> then <a href="https://hachyderm.io/tags/openwrt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>openwrt</span></a> then back to <a href="https://hachyderm.io/tags/VyOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VyOS</span></a> tried to sprinkle <a href="https://hachyderm.io/tags/frr" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>frr</span></a> around there too. It just took a little bit of cognitive load when updating the host or the software I'm using as my virtualization layer.. Now! I just been on this router for like 4 days.. I might be full of shit 😂😂😂</p>
Recent searches
No recent searches
Search options
Only available when logged in.
ruby.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
If you are interested in the Ruby programming language, come join us! Tell us about yourself when signing up.
If you just want to join Mastodon, another server will be a better place for you.
Administered by:
Server stats:
1.1Kactive users
ruby.social: About · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.7
#FRR
0 posts · 0 participants · 0 posts today
36pickledeggs<p>This is what the new cluster looks like cabled up. Sexy, eh?<br>For the OS, I decided to go with RHEL 9.5. There are reasons. Red Hat really made some super dumb moves around CentOS Stream, but I don't think they are evil.<br>Setting up the routing for the ring topology network using <a href="https://fosstodon.org/tags/FRR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FRR</span></a> seems to work. I'm getting about 26.6Gbit/sec across the Thunderbolt 4 interfaces. That is using ipv6. ipv4 is not quite working on those for me. And that is my blocker for <a href="https://fosstodon.org/tags/rookceph" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rookceph</span></a>.</p>
バルテク<p>Moved my VPS from <a href="https://fosstodon.org/tags/Rocky" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Rocky</span></a> 9 to <a href="https://fosstodon.org/tags/NetBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NetBSD</span></a> 10.1. Surprisingly it works fine - sans a quirky GRE implementation... I made it work in the end but all other network devices are able to use any subnet on a GRE interface.</p><p>In the end I have:<br>- <a href="https://fosstodon.org/tags/wireguard" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>wireguard</span></a> to multiple <a href="https://fosstodon.org/tags/MikroTik" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MikroTik</span></a> routers<br>- GRE tunnels to all of the routers<br>- <a href="https://fosstodon.org/tags/FRR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FRR</span></a> running <a href="https://fosstodon.org/tags/BGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BGP</span></a> <br>- <a href="https://fosstodon.org/tags/haproxy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>haproxy</span></a> doing reverse proxy for <a href="https://fosstodon.org/tags/Nextcloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Nextcloud</span></a> and other services<br>- <a href="https://fosstodon.org/tags/certbot" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>certbot</span></a> renewing Let's Encrypt certificate</p>
Jess ⨂ :v_trans:<p>Someone out there might find this useful. I was fighting with getting an <a href="https://tech.lgbt/tags/ipv6" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ipv6</span></a> <a href="https://tech.lgbt/tags/bgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bgp</span></a> session up between my Raspberry Pi running <a href="https://tech.lgbt/tags/pihole" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pihole</span></a> and <a href="https://tech.lgbt/tags/frr" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>frr</span></a> and my layer 3 switch. IPv4 worked fine. I wasn't really understanding the error on my switch and rebuilt the configs on both sides multiple times.</p><p>The answer was the fact that my systemd-networkd wasn't creating a link-local address. After modifying the conf file to explicitly create one and restarting both services, I was finally good to go.</p><p>This was a huge help in identifying the problem after enabling logging in FRR.<br><a href="https://connormcf.com/blog/frr-nexthop-set-failed/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">connormcf.com/blog/frr-nexthop</span><span class="invisible">-set-failed/</span></a></p>
ItzTrain<p>I got tired of fussing with <a href="https://hachyderm.io/tags/FRR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FRR</span></a> and trying to use it to do VRF's and routing as it really is geared towards Dynamic Routing! Back to <a href="https://hachyderm.io/tags/VyOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VyOS</span></a> for the <a href="https://hachyderm.io/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>homelab</span></a>. I am still using VRRP with 3 FRR routers on my <a href="https://hachyderm.io/tags/incus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>incus</span></a> hosts. So as long as my upstream router is up. I can reboot hosts all day long and no internet go down.</p><p><a href="https://hachyderm.io/tags/selfhosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>selfhosted</span></a> <a href="https://hachyderm.io/tags/selfhosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>selfhosting</span></a></p>
ItzTrain<p>Yo!! this shit kinda 🔥!! I'm using 2 lxc containers that are using the FRR project. I configured the <a href="https://hachyderm.io/tags/frr" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>frr</span></a> packages to use <a href="https://hachyderm.io/tags/VRRP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VRRP</span></a> for both lxc instances. I now have redundant gateways for the <br><a href="https://hachyderm.io/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>homelab</span></a> . I dropped one packet as it switch over! </p><p><a href="https://hachyderm.io/tags/selfhosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>selfhosted</span></a> <br><a href="https://hachyderm.io/tags/selfhosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>selfhosting</span></a> <br><a href="https://hachyderm.io/tags/incus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>incus</span></a></p>
ij<p>Uhm, the other day I change my <a href="https://nerdculture.de/tags/Ceph" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ceph</span></a> setup that way, that I now use <a href="https://nerdculture.de/tags/FRR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FRR</span></a> & <a href="https://nerdculture.de/tags/OSPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OSPF</span></a> to utilize both links in my 3-node setup. So each node has a dedicated 10 GbE link to its neighbours, forming a ring (or triangle). </p><p>Then I also changed my setup and added a SSD as my WAL/DB device for my OSDs (2 TB SSD split into 2x 1 TB for WAL/DB, one for each OSD). </p><p>Although I see a slight speed increase in recovery speed, the increase is still below the expected performance: only 100-150 MB/s in most cases with 2x Seagate Exos X18 18 TB drives. Each drive can deliver up to 270 MB/s, according to technical datasheet.</p><p>So, I would expect to see more like 200-400 MB/s. <br>MTU is 9000 bytes . </p><p>ceph -s reports:<br>recovery: 182 MiB/s, 8 keys/s, 144 objects/s</p><p>Any ideas how to increase the speed?</p>
gyptazy<p>Just a reminder: You can now also peer with <span class="h-card" translate="no"><a href="https://mastodon.bsd.cafe/@BoxyBSD" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>BoxyBSD</span></a></span> via <a href="https://mastodon.gyptazy.com/tags/BGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BGP</span></a> as AS4242423588 (upstreamed by AS4242421344 / gyptazy Solutions) and minimize the latency to your <a href="https://mastodon.gyptazy.com/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FreeBSD</span></a>, <a href="https://mastodon.gyptazy.com/tags/NetBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NetBSD</span></a> and <a href="https://mastodon.gyptazy.com/tags/OpenBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenBSD</span></a> boxes in the <a href="https://mastodon.gyptazy.com/tags/DN42" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DN42</span></a> network! You can now also access your box via DN42 IPv4 in addition to IPv6 clearnet!</p><p>Happy peering!</p><p><a href="https://mastodon.gyptazy.com/tags/BoxyBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BoxyBSD</span></a> <a href="https://mastodon.gyptazy.com/tags/IPv4" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IPv4</span></a> <a href="https://mastodon.gyptazy.com/tags/IPv6" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IPv6</span></a> <a href="https://mastodon.gyptazy.com/tags/network" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>network</span></a> <a href="https://mastodon.gyptazy.com/tags/frr" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>frr</span></a> <a href="https://mastodon.gyptazy.com/tags/bird" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bird</span></a> <a href="https://mastodon.gyptazy.com/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>homelab</span></a> <a href="https://mastodon.gyptazy.com/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>linux</span></a> <a href="https://mastodon.gyptazy.com/tags/education" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>education</span></a> <a href="https://mastodon.gyptazy.com/tags/Runbsd" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Runbsd</span></a> <a href="https://mastodon.gyptazy.com/tags/BSDCafe" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSDCafe</span></a> <a href="https://mastodon.gyptazy.com/tags/BSDNetwork" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BSDNetwork</span></a></p>
ij<p>Hmmm, <a href="https://nerdculture.de/tags/pfSense" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pfSense</span></a> with <a href="https://nerdculture.de/tags/Wireguard" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Wireguard</span></a> and <a href="https://nerdculture.de/tags/OSPF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OSPF</span></a> / <a href="https://nerdculture.de/tags/FRR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FRR</span></a> seems to be a little more complex than thought. At least when you want to join an existing network based on <a href="https://nerdculture.de/tags/Debian" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Debian</span></a> an <a href="https://nerdculture.de/tags/Bird" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Bird</span></a> OSPF and Wireguard.</p>
equi<p>When we implemented live log display in <a href="https://chaos.social/tags/FRR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FRR</span></a>|'s CLI client, it was an amazing feature but I didn't think much of it. Now I've seen <a href="https://chaos.social/tags/strongSwan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>strongSwan</span></a>|'s swanctl do even better (it seems to explicitly show logs related to the SA you're dealing with), and it's driving me to a conclusion:</p><p>All long-running daemons with a control interface need to do this. It's a basic UX requirement.</p><p>And this shouldn't just be "tail -f" on the log, it should show context-relevant low priority messages disabled elsewhere.</p>
ij<p>Can bird ospf interact with frr ospf?</p><p>I always get authentication method mismatch (2) in bird logs, but the password is correct. </p><p>frr is running here on <a href="https://nerdculture.de/tags/pfsense" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pfsense</span></a>, bird is standard Debian version.</p><p><a href="https://nerdculture.de/tags/ospf" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ospf</span></a> <a href="https://nerdculture.de/tags/bird" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bird</span></a> <a href="https://nerdculture.de/tags/frr" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>frr</span></a></p>
Stéphane Bortzmeyer<p>Pour le routage, <a href="https://mastodon.gougere.fr/tags/FRR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FRR</span></a> (la machine a un pair <a href="https://mastodon.gougere.fr/tags/BGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BGP</span></a>). <br>Contrairement au Cisco, on peut utiliser <a href="https://mastodon.gougere.fr/tags/Puppet" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Puppet</span></a>. <br><a href="https://mastodon.gougere.fr/tags/JRES2019" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>JRES2019</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload