Wanted to try a bit of OSPF stuff today, so I created a FreeBSD VM, and three VNET jails ("router01, router02, router03") on bridge0 (vtnet0).
Uncategorized
3
Posts
1
Posters
3
Views
-
Wanted to try a bit of OSPF stuff today, so I created a FreeBSD VM, and three VNET jails ("router01, router02, router03") on bridge0 (vtnet0). Installed Quagga and set up the zebra and ospfd daemons.
Then I created three more VNET jails ("client01, client02, client03" and three bridge interfaces ("bridge1, bridge2, bridge3"), which I used to connect the "client" and "router" jails together.
I've set the "router" jails as the default gateway for the "client" jails and with OSPF doing it's thing, each jail can ping all the IPs of all other jails.
It's pretty amazing to just add another network / interface on on of the "router" jails and immediately be able to reach the new IPs from all other jails, without having to manually add the routes. (I know that dynamic routing is an old concept, but for someone who only works with flat /24 networks, this is really fun.)
Even more amazing is that the entire FreeBSD VM only uses 3.5 GB of storage and 660 MB of RAM, and next to no CPU load. Everything was set up with bastille(8), with only a few commands (ifconfig, sysrc) for creating the bridge interfaces. 😎
-
Wanted to try a bit of OSPF stuff today, so I created a FreeBSD VM, and three VNET jails ("router01, router02, router03") on bridge0 (vtnet0). Installed Quagga and set up the zebra and ospfd daemons.
Then I created three more VNET jails ("client01, client02, client03" and three bridge interfaces ("bridge1, bridge2, bridge3"), which I used to connect the "client" and "router" jails together.
I've set the "router" jails as the default gateway for the "client" jails and with OSPF doing it's thing, each jail can ping all the IPs of all other jails.
It's pretty amazing to just add another network / interface on on of the "router" jails and immediately be able to reach the new IPs from all other jails, without having to manually add the routes. (I know that dynamic routing is an old concept, but for someone who only works with flat /24 networks, this is really fun.)
Even more amazing is that the entire FreeBSD VM only uses 3.5 GB of storage and 660 MB of RAM, and next to no CPU load. Everything was set up with bastille(8), with only a few commands (ifconfig, sysrc) for creating the bridge interfaces. 😎
The OSPF IPv6 daemon is now configured as well, just took me a little longer to realize that I forgot to put "ipv6_gateway_enable=YES" into the router jails /etc/rc.conf 🤪
-
The OSPF IPv6 daemon is now configured as well, just took me a little longer to realize that I forgot to put "ipv6_gateway_enable=YES" into the router jails /etc/rc.conf 🤪
Did a bit more with my OSPF "lab" today:
- Removed defaultrouter in the router jail's rc.conf
- Enabled default route injection on the hosts' ospf process
- Switched all router jails to use area 0 only
- Enabled NAT via pf on the hostAll the jails now have internet access. For IPv6 I don't want to use NAT, so I have to point a v6 route on my firewall to the FreeBSD jail host. 😎
-
undefined stefano@mastodon.bsd.cafe shared this topic on
Gli ultimi otto messaggi ricevuti dalla Federazione
-
Ben Werdmuller wrote a new perspective on RSS. It's great, just what we need. RSS is of the web, and is the simplest most obvious way to get all the twitter-like systems connected.
-
Making Glasses That Detect Smartglasses
[NullPxl]’s Ban-Rays concept is a wearable that detects when one is in the presence of camera-bearing smartglasses, such as Meta’s line of Ray-Bans. A project in progress, it’s currently focused on how to reliably perform detection without resorting to using a camera itself. Right now, it plays a well-known audio cue whenever it gets a hit.
Once software is nailed down, the device aims to be small enough to fit into glasses.
Currently, [NullPxl] is exploring two main methods of detection. The first takes advantage of the fact that image sensors in cameras act as tiny reflectors for IR. That means camera-toting smartglasses have an identifying feature, which can be sensed and measured. You can see a sample such reflection in the header image, up above.As mentioned, Ban-Rays eschews the idea of using a camera to perform this. [NullPxl] understandably feels that putting a camera on glasses in order to detect glasses with cameras doesn’t hold much water, conceptually.
The alternate approach is to project IR in a variety of wavelengths while sensing reflections with a photodiode. Initial tests show that scanning a pair of Meta smartglasses in this way does indeed look different from regular eyeglasses, but probably not enough to be conclusive on its own at the moment. That brings us to the second method being used: wireless activity.
Characterizing a device by its wireless activity turned out to be trickier than expected. At first, [NullPxl] aimed to simply watch for BLE (Bluetooth Low-Energy) advertisements coming from smartglasses, but these only seem to happen during pairing and power-up, and sometimes when the glasses are removed from the storage case. Clearly a bit more is going to be needed, but since these devices rely heavily on wireless communications there might yet be some way to actively query or otherwise characterize their activity.
This kind of project is something that is getting some interest. Here’s another smartglasses detector that seems to depend entirely on sniffing OUIs (Organizationally Unique Identifiers); an approach [NullPxl] suspects isn’t scalable due to address randomization in BLE. Clearly, a reliable approach is still in the works.
The increasing numbers of smartglasses raises questions about the impact of normalizing tech companies turning people into always-on recording devices. Of course, the average person is already being subtly recorded by a staggering number of hidden cameras. But at least it’s fairly obvious when an individual is recording you with a personal device like their phone. That may not be the case for much longer.
-
@Zambunny ti abbraccio virtualmente, per quel che vale ❤❤❤
-
@francina1909 Hey
-
In tutto l'ordine degli ingegneri non ne trovano uno che sappia far funzionare la PEC.
-
We report: all of the wind of these past few weeks has stripped the trees bare here. The ground is all mulch and rotting wood, and we are bound to get a foot stuck in there at some point tonight. With no leaves on the branches, and barely a breeze, the night is eerily quiet.
-
@SecurityWriter the first season took everything good about 80s horror and fantasy and teen movies, and the fifth season seems to be taking everything bad, including 30 year olds playing high schoolers. (This last bit I could forgive if the 30 year olds and the scripts were good, but they aren't, so...)
