urandom

flawlessly? not trying to be harsh but the font in the tab looks ugly and the page rendering seems broken.

http://i.imgur.com/qSYHzcr.png

I guess the community version is free:

http://www.endian.com/en/community/download/

I only need 3 nics (2 wan, 1 lan) and have plenty of wifi a/p's I can deploy independently from the router, so that's not a big deal. Thing is, pfsense has very strong and easy to manage routing tables for a dual wan setup, which is exactly what I need. I want to be able to route traffic to certain websites through one nic, and certain services through another. I know I could probably beat iptables into submission and have it do this, but that is (almost) rocket science, much easier with pfsense. Right?

If wireless-n is not needed then yeah... maybe have a look at this if you haven't already https://en.wikipedia.org/wiki/List_of_router_or_firewall_distributions , I remeber one guy recommending endian [ http://www.endian.com/ ] here (never tried it)

Beware, pfsense doesn't support wireless-N yet. IIRC, latest FreeBSD (partly) does but pfsense hasn't been rebased on it yet. Also, small boxes like the one you linked will, most likely, suffer from a very minimum number of PCI slots, which will be a real issue if you intend to use many NICs. As you are aware, I'm running a linux box as a firewall/router, the only fan I use is the stock CPU one (but the case is left open, no side panels), it's pretty much silent. I just use a single core low power cheap AMD CPU, it does the job very well.

voted both, here's what I run so far:

- 1 router/firewall box

- 1 HTPC/torrent/fileserver box

- 1 laptop

What are you using for the router/firewall?

I have two internet connecrtions, 3BB ADSL and True Docsis. For a while I was using a Linksys RV042 but it it suddently packed in, anyway it wasn't particularly good at load balancing, it was basically just doing round robin. I'd be interested in getting something that would allow me to setup some more detailed routing of traffic through the two lines, as well as completely switch to use one line if one goes down, as it happens.

Someone, I think it was Monty, suggested I should take a look at pfsense. Though it's based on BSD I guess it's close enough to Linux that I should be able to get my way with it. But if there is a real good Linux alternative I guess the added familiarity would be an advantage?

I don't use any specialized distro, I just built it from scratch using a very minimal source based distro (crux.nu). It's a pretty simple setup:

- for the kernel, I currently use grsecurity testing patches [ https://grsecurity.net/index.php ]

- hostapd for wlan AP

- unbound (validating, recursive, and caching DNS resolver) with dnssec enabled [ https://unbound.net/ ]

- dhcpd

- ddclient

- I also use fq_codel AQM to handle QoS [ http://www.bufferbloat.net/projects/codel/wiki <- codel article, fq_codel is its fair queue implementation] and bql [ https://lwn.net/Articles/469652/ ]

- I forgot the most important: iptables for firewalling/routing.

For your setup, you might want to look at Ethernet team driver support in your kernel [ CONFIG_NET_TEAM ]. Basically, it makes one virtual NIC out of many (with random mode, load-balancing, round-robin support and more). I'm sure there are other solutions but I never used any, can't really help on this one.

edit: this looks like a great distro for a router/firewall http://alpinelinux.org/ I tried it shortly few years ago and was pretty impressed but its simple design, speed and features.

voted both, here's what I run so far:

- 1 router/firewall box

- 1 HTPC/torrent/fileserver box

- 1 laptop

if your chipset and your AP are wireless-N capable then you're just reducing speed here. the kernel (using minstrel rate control algorithm) should handle this just fine for you, automagically. as a side note, adding the command to rc.local is not enough, you have to actually run it or you have to reboot. anyway, this won't solve you're problem. one thing came to mind that you could do: dns poisoning them so they can't reach their games servers or streaming sites but that's a bit rude. i could post some tricks to reduce latency and bufferbloat if you want but again, it won't solve the actual problem, you need to do something at the router level.

unfortunately QoS on home routers sucks most of the time, if you have the opportunity to use a real linux box as a router then fq_codel is what you need.

I decided to upgrade now as it has aged a bit. Using kubuntu.

I'll try first to do an upgrade on top of 12.04 LTS. This way I get all the packages downloaded to apt-cacher-ng, so later on if I decide to do an fresh install, I still have all the packages locally.

I have plenty of applications which are not part of the fresh installation package. Is there a way to create a list of the installed applications, do a fresh installation and then include automatically all the applications I had installed earlier?

maybe there's something more suitable but this should work:

on old install:

$ dpkg --get-selections | cut -f1 -s > old.txt

keep the old.txt file safe somewhere.

on new install:

$ dpkg --get-selections | cut -f1 -s > new.txt

# apt-get install $(diff -y --suppress-common-lines old.txt new.txt | cut -f1 -s)

Not to sound like a typical Linux nerd but you guys do realize that all the various Linux distributions are basically the same right? The most annoying thing for me is directory structure. That seems to vary quite a bit. I wish all the linux distributions could agree on a standard directory structure. That will probably never happen now this far down the road.

[--------snip--------]

Think about that next time someone says something dumb like "Ubuntu is more stable than...SUSE" or other such nonsense. One is just as stable as the next because they are both essentially the same.

Next time think about the fact that vendors:

1/ Do patch upstream sources, all of them with their own patchsets, for example:

fedora kernel

http://pkgs.fedoraproject.org/cgit/kernel.git/tree/

arch kernel

https://projects.archlinux.org/svntogit/packages.git/tree/trunk?h=packages/linux

Do you really think this is "essentially the same" ?

2/ Use a different toolchain (glibc+binutils+gcc)

A binary built with gcc 4.6.4 is not the same as one built with 4.8.0

More aggressive optimization can trigger bugs from exactly the same code that seemed to be bugfree

3/ Use different configure options at build time, this means:

they may ship software with different functionality

binary may be linked against some extra library

eb:~$ readelf -d /usr/bin/mplayer |grep -i needed |wc -l

40

[eb@drama ~]$ readelf -d /usr/bin/mplayer |grep -i needed |wc -l

58

In conclusion, what you call "nonsense" is in fact a perfectly valid point

Last thing, about the directory tree, more and more vendors are considering simplifying it:

http://fedoraproject.org/wiki/Features/UsrMove

Uhhh you are pointing out that different versions of a package are....ahhh...different. And that patching a package changes it. Gee, thanks for enlightening me. What about that other package they all use. I think it's called the Kernel. Not sure if it's important for stability or defining differences between them though....probably just 'nonsense' eh?

I wish I had enlightened you but you obviously don't get it

- the *same* version of a package can be different across distros. Not even talking about patches, it depends on how and against which libs it has been built and using which toolchain (and even how this toolchain has been built, hardened or not for example)

- the kernel is really one the worst examples you could have chosen to prove your point, most distros use different kernel versions, different kernel configs and their own set of patches.

I bought one years ago at Music Solutions, near Pantip: https://foursquare.com/v/music-solution/4be3978221d5a5932db11911

[OT]If you have the same Tenda than my neighbors, disable WPS. If not, whichever security protocol you'll use, your network will be vulnerable[/OT]

you can try to ask the guy running this section of the thaithinkpad forum: https://www.thaithinkpad.com/forum/index.php/board,41.0.html

click any of his thread, he puts his cell phone on the pictures of the stuff he sells... i already bought him an intel wireless chipset, an SSD and a keyboard, no problem. he's a java developer working at true, very nice guy.

I have been looking at partitioning for various installations and gather that LVM is not yet supported in most distributions.

Not quite sure where you got this from but LVM is like super basic. IIRC it's even default on a Fedora install...

Is it possible to shrink the NTFS partition on the HDD (without compromising the existing data) in order to install Mint? Can Mint then interact with these files?

Yes and yes.

BTW, Torvalds (Linux daddy) loves you so much he even created some divelog software for you: http://subsurface.hohndel.org/

Yet another reason to use linux.

I am using Lubuntu 13.04, and editing stuff for a friend

(just to improve the English language usage) in another country.

He wants to use dropbox.com, to share files etc.

I install dropbox for linux - the f**king thing wants to take over my comp. change the screensaver etc.

Fawk you windoze app!

But all my files are backed up, let's be diplomatic

I just insert the usb loaded with Lub 13.04.

Instruct it to format my ssd,

Then reinstall linux.

Easy - peasy. In 30 min my comp. is fresh as a daisy.

Future document edits - well, linux can handle .pdf files and .doc files sent from anywhere

(using abiword program, amongst others).

Thus linux has solutions for document manipulation AND cross O/S (windoze/Maclinux) sharing.

Don't be afraid, test the water using zorin - looks like 'doze.

Later, enjoy an Ubuntu derivative Lubuntu and Xubuntu highly recommended.

Enough ranting for today, AA

This post courtesy of Singha beer

You do have define where the ping is 388ms, otherwise the value has no use.

If your youtube videos play well, then there is no reason to complain.

You can always try pingtest to: pingtest.oilinki.com

I get 0.036ms average. That's 10.000 faster than your latency, even if my Internet connection is via 3G modem.

you got me, well played

Wednesday is off so maybe Thursday is a better option. AFAIC, I can do it any day except on 3rd.

everyone's welcome, really.

we need to setup date and place for something to happen...

would anyone else reading this be interested? basically it's about having beers, downtown BKK, talking about computer related stuff. we had a few presentations in the past too, anyone's welcome to join.

I asked a question. Have you actually had a tour of a Google data center? I have been completely through the newest one, guided by my son who works there. It's almost impossible to get a pass to see inside a Google data center. They are downright paranoid secretive.

if they let anyone's relative come inside and visit, they're nothing like paranoid secretive

I told you what I saw, and don't give a damn what wiki says. I saw it.

Am I supposed to believe wiki, or instead my own lying eyes? I'm MCSE/MCSA etc. etc. and know a Microsoft client-server setup when I see it, and stand there and am told that's what they have as I look at it running.

Linux and not even Samba has no viable replacement yet for Active Directory. It's coming, but it's hard to operate and it isn't ready for prime time.

Even if it was, where do you find the admins to run it? Almost every current IT admin is trained in Server and has been for more than ten years. It's hard enough to find a good IT director for Microsoft products, let alone linux. Do you think that all of these people who for years, starting with university training, have run in a Server environment are interested in tossing all of that knowledge and learning a linux enterprise system? The answer would be "No."

And who makes the decision in a corporation as to what to buy and what to run? The IT department. And what are they comfortable with? Server.

This is getting ridiculous.

seriously, you're living in the past. i'll stop here, this is boring. nothing personal.

If it makes anyone feel good, Google runs 100% Unix in all of its server farms. Imagine what they'd have to pay for that many licenses for Windows. I say 100%, but they do use Server and Windows in the "office" to do internal and external work that doesn't become part of the information we see. All of their employee desks have Windows as clients of Server. Linux can't match that. Even if it could, where would they hire the expertise to run it when all of the experts in enterprise computing are Microsoft adherents?

This post was brought to you by the 1990's

Do you think poor Google can't afford licences? I'd guess their primary benefit in using linux is open source code, they can implement whatever they need and whatever they want, they have their own filesystem [ http://en.wikipedia.org/wiki/Google_File_System ], they can easily work on improving TCP stack, think TFO, PRR [ http://googlecode.blogspot.com/2012/01/lets-make-tcp-faster.html ] and I'm sure there are countless other examples. As a side note, there must be some reason Goldman Sachs is using linux for their HFT systems and hired Ulrich Drepper. If you still think linux is only about getting a free OS (i.e. with no cost), you're missing the point entirely. Last thing about your comment WRT google employees, half of them are running linux and that includes desktop users [ http://en.wikipedia.org/wiki/Goobuntu ]

Anyone can contribute to Wikipedia.

Please, there is a "References" section in wikipedia articles...

If it makes anyone feel good, Google runs 100% Unix in all of its server farms. Imagine what they'd have to pay for that many licenses for Windows. I say 100%, but they do use Server and Windows in the "office" to do internal and external work that doesn't become part of the information we see. All of their employee desks have Windows as clients of Server. Linux can't match that. Even if it could, where would they hire the expertise to run it when all of the experts in enterprise computing are Microsoft adherents?

This post was brought to you by the 1990's

Do you think poor Google can't afford licences? I'd guess their primary benefit in using linux is open source code, they can implement whatever they need and whatever they want, they have their own filesystem [ http://en.wikipedia.org/wiki/Google_File_System ], they can easily work on improving TCP stack, think TFO, PRR [ http://googlecode.blogspot.com/2012/01/lets-make-tcp-faster.html ] and I'm sure there are countless other examples. As a side note, there must be some reason Goldman Sachs is using linux for their HFT systems and hired Ulrich Drepper. If you still think linux is only about getting a free OS (i.e. with no cost), you're missing the point entirely. Last thing about your comment WRT google employees, half of them are running linux and that includes desktop users [ http://en.wikipedia.org/wiki/Goobuntu ]

Not to sound like a typical Linux nerd but you guys do realize that all the various Linux distributions are basically the same right? The most annoying thing for me is directory structure. That seems to vary quite a bit. I wish all the linux distributions could agree on a standard directory structure. That will probably never happen now this far down the road.

[--------snip--------]

Think about that next time someone says something dumb like "Ubuntu is more stable than...SUSE" or other such nonsense. One is just as stable as the next because they are both essentially the same.

Next time think about the fact that vendors:

1/ Do patch upstream sources, all of them with their own patchsets, for example:

fedora kernel

http://pkgs.fedoraproject.org/cgit/kernel.git/tree/

arch kernel

https://projects.archlinux.org/svntogit/packages.git/tree/trunk?h=packages/linux

Do you really think this is "essentially the same" ?

2/ Use a different toolchain (glibc+binutils+gcc)

A binary built with gcc 4.6.4 is not the same as one built with 4.8.0

More aggressive optimization can trigger bugs from exactly the same code that seemed to be bugfree

3/ Use different configure options at build time, this means:

they may ship software with different functionality

binary may be linked against some extra library

In conclusion, what you call "nonsense" is in fact a perfectly valid point

meanwhile...

https://plus.google.com/u/0/111104121194250082892/posts/aCiB7kTLXTh