I recently dumped opnsense because they took a stand against a few things I was trying to do (ex, webUI on wan port IIRC) which make sense at a high level. But I _HATE_ devices that think they know better than me. I was trying to configure it on a _LAN_ such that the identified WAN side was actually my local lan, and I spent an hour hacking it to work and was like "you know if they can't get this shit right i'm out". There are a lot of places in the technology world where someone who thinks they understand my use case makes a decision based on some narrow world view because they can't understand that not everyone trying to use their product is some idiot home user using it for their home network.
I've got one of those N100+10Gbit router devices with a handful of ports. It seems a pretty reasonable device with one of the router distros running on it, but it doesn't seem nearly as efficient as my ucg-fiber/route10 devices, and that wouldn't bother me except that I suspect the packet latency is significantly higher too. Those devices AFAIK have hardware programmable router chips, which means the forwarding is done 100% without the interaction of the main CPU, so there isn't any interrupt/polling/etc delays when a packet arrives, the header gets rewritten, the checksum verified and off it goes.
Anyone actually measured this? I see a lot of bandwidth/etc style tests but few that can show the actual impact of enabling disabling deep packet inspection and a few of the other metrics that I actually care about. Serve the home seems to have gotten some fancy test HW but they don't seem to be running these kinds of tests yet.
From what I can tell you're pretty much right. A linux bridge cannot possibly be as efficient or speedy as a dedicated switch asic. OpenWRT has support for a few different hardware switch kernel APIs, but you can't exactly buy one of those on a PCIe card and I've never seen one of those N100-class boards with one instead of a set of i226 ethernet controllers taking most of the PCIe lanes.
Mikrotik sells the CCR2004-1G-2XS-PCIe, which is a fascinating device:
It is a full Mikrotik router stripped down to just a board and hung off a PCIe interface. Iirc by default it exposes a virtual gigabit interface to the host and otherwise acts exactly like a CCR2004 running RouterOS.
Doesn't really buy you anything vs a RB5009 unless you can use the pair of 25Gbps ports, but it sure is neat.
His early stuff contains some real masterworks. Hyperion is still to this day, going to show up at the top of my scifi recommended reading list, most of his horror novels were also great in their own ways.
PS: I thought Fall of Hyperion should have been the end, it was just too final. There was plenty of space for some prequels but while the sequels contained some interesting ideas, they just never got to the level I felt justified reversing the finality of Fall. And Olympus/etc was pretty forgettable, but I don't regret the time I spent reading pretty much everything he wrote, sometimes more than once. So again, RIP.
Its not against the law in any US state (a quick search seems to back this up) to pass on the right. With one huge gotcha, it must be "safe" defined in various ways.
OTOH, most states have a stay right except to pass, slower traffic keep right laws.
Which means, that unless the person to your right is weaving through traffic, driving on the shoulder, or a few other bits of unsafe behavior, if someone passes you on the right your likely the one violating the law by not moving right when your not actively overtaking/passing someone.
In Austin too, and probably just caused a driver to think the same thing. They were in the left lane on a frontage road which was suddenly turning left even though there was an entire lane opposite the intersection blocked off by those plastic things that seem popular to randomly place in the road these days. I saw them hesitate and figured they wanted to merge right, so i decelerated a bit to add another car length or or so, at maybe 10-15mph. They had plenty of space, flipped on their blinker, and instead of just merging started slowing down, to which I decided I wasn't going to brake more to allow them to block myself and everyone else from rolling through the intersection. They basically stopped in their lane, and beeped as I rolled by, to which someone behind them beeped at them for blocking the lane.
In Austin if you want to merge, decide if you can, blink and then merge.
Don't expect people to stomp on their brakes and stop to let you in, especially if your already traveling slower than the lane you are trying to get into and decide to further slow yourself.
And if you can't merge, deal with it, exit, or miss your exit and go around. Next time you will be more prepared or you will learn how to properly merge.
Why? If everyone followed the rules the lanes would segment into slowest on the right, with gradually increasing speed to the left and people moving between the lanes as needed to overtake. It would be far far far better than the chaos of having to move across all the lanes of traffic all the time because there are random campers driving below the speed limit in every single lane.
First, everyone switches right as soon as there's a gap in a righter lane, so lots of unnecessary switching. Second, the right lane is always full making it hard to merge on or off the highway. Third, the leftmost lanes are underutilized when they could be filled with people who have a long way to go until their offramp.
There are whole catagories of people without "ID" as such, like say underage children or people unable to drive. ID's in the USA have traditionally been either drivers licenses or passports. Many states have added non-drivers license IDs for handicapped, elderly, etc, but AFAIK they aren't particularly popular since those catagories of people don't tend to need them until they suddenly find themselves in a situation needing one.
If you are flying domestically, the airline doesn’t care. They know that someone bought a ticket to get pass security and that ticket matched the ID of the person who got through security. They don’t lose money and thier is no increased safety risk.
Frankly, the entire agency is unconstitutional. From the fact that they basically exist under a general warrant issued by the supreme court (although they invented a new catagory, "administrative search", which doesn't fundamentally change what it is) to the restrictions on the right to assembly requires free travel as well, although the current legal underpinnings are "creative", the 10th admendment which grants all non enumerated powers to the states, to the restrictions on bearing arms on the plane and a half dozen other parts. About the only part they might be able to stand on is commerce again, but then so much travel in the larger states remains in the state (ex dallas/houston, san fran/LA) requiring seperate security zones.
Bush should have _NEVER_ nationalized them, at least as a private entity they existed in a sorta gray area. Now they are clearly violating the 1st, 2nd, 4th, and 10th amendments.
And the solution isn't another bullshit supreme court amendment of the absolutist language in the bill of rights/etc but to actually have a national discussion about how much safety the are providing vs their cost, intrusiveness, etc and actually find enough common ground to amend the constitution. Until then they are unconstitutional and the court makes a mockery of itself and delgitimizes then entire apparatus in any ruling that doesn't tear it down as such.
And before anyone says "oh thats hard", i'm going to argue no its not, pretty much 100% of the country could agree to amend the 2nd to ban the private ownership of nuclear weapons, there isn't any reason that it shouldn't be possible to get 70% support behind some simple restrictions "aka no guns, detected via a metal detector on public airplanes" passed. But then the agency wouldn't be given free run to do whatever the political appointee of the week feels like. But there are "powers" that are more interested in tracking you, selling worthless scanners, and creating jobs programs for people who enjoy feeling people up and picking through their dirty underwear.
Inventing categories is what the court does. The Constitution is incredibly brief, and gives zero guidance on how to clarify conflicts. It has always been full of "common sense" exceptions, like criminalizing threats (despite the unqualified "freedom of speech" language) or probable cause (police can invade your house if they know you are committing a crime right now).
The sum total of these "common sense" exceptions, and the "legal reasoning" that extends them to the modern world, means that the document itself doesn't actually mean anything. Your rights, such as they are, consist of literally millions of pages of decisions, plus the oral tradition passed down in law schools.
The constitution doesn't provide a "common sense" loophole. Much of it is written in absolutist language because that was the actual intention. The amendment process is provided to open "common sense" loopholes if everyone agrees they are common sense, not for the courts to gradually erode the language until the federal goverment is doing things the founders explicitly fought the revolutionary war over.
Put another way, Writs of Assistance, were perfectly legal common sense way for the British government to assure their customs laws were being enforced, and it was one of the more significant drivers of the revolution.
At first glance that seems to be true, but when you look at the arguments at the time, who made them and how much of it was walked back, it just looks like the usual legislative panic, same as 911. It doesn't make the original intentions wrong, anymore than what happens when you release open source software and it takes on a life of its own under new maintainers. The failure to understand the long term reprocusion of basically ignoring the actual language of the original document puts one in a place where literally nothing matters except what you can ram through congress and get supreme court approval over during a time of panic or before the other side takes over again.
Thats not a constitutional democracy, thats just anarchy and rule by whoever can buy the most seats.
I wouldn't really call 100Gbit overkill, if you compare it to modern disk drives is about where we should be relative to shared storage/NAS/etc infrastructure people used to run. So yes, being able to share my /home directory across a few dozen machines at my house without a huge perf impact vs using a local drive seems a pretty reasonable use case. Sure its faster than my WAN access, but who cares?
Frankly, 10Gbit is fully 25 years old with, 10GbaseT being 20 years old this year.
Thats ridiculously ancient technology. There is/was a 25/40GbaseT spec too (now 10 years old), which basically no one implemented because like ECC ram (and tape drives, and seem to be trying to do it with harddrives and GPUs) the MBA's have taken over parts of the computer industry and decided that they can milk huge profit margins from technologies which are incrementally more difficult because smaller users just don't matter to their bottom lines. The only reason those MBAs are allowing us to have it now, is because a pretty decent percentage of us can now get 5Gbit+ internet access and our wifi routers can do 1Gbit+ wireless, and the weak link is being able to attach the two.
I did a bit of back of the napkin math/simulation about a possible variable rate Ethernet (ex like NBbaseT, where it has multiple speeds and selects faster one based on line conditions), and concluded that 80+Gbit using modern PHY/DSP's and high symbol rate, multiple bands, techology which is dirt cheap thanks to wifi/bt/etc on fairly short cable distances (ex 30-50M) on CAT8 is entirely possible. And this isn't even fantasy, short cat7 runs are an entire diffrent ballpark from a phone pair, and these days mg.fast/etc have shown 10Gbit+ over that junk.
Agreed - the big thing is 100g is much much cheaper now as so much 100g gear is coming out of datacenters. So many of those older ConnectX4s and 5s, plus lots of switches and optics. 100g really is the new 10g for homelabs.
reply