Are you over 18 and want to see adult content?
More Annotations
A complete backup of snowant.tumblr.com
Are you over 18 and want to see adult content?
A complete backup of design-your-homeschool.com
Are you over 18 and want to see adult content?
A complete backup of worldofcolorexpo.com
Are you over 18 and want to see adult content?
A complete backup of linkayzaraung.blogspot.com
Are you over 18 and want to see adult content?
A complete backup of religionforums.org
Are you over 18 and want to see adult content?
Favourite Annotations
A complete backup of omanavenuesmall.om
Are you over 18 and want to see adult content?
A complete backup of hovikmuradian.com
Are you over 18 and want to see adult content?
A complete backup of charcoalbookclub.com
Are you over 18 and want to see adult content?
A complete backup of hinsonchurch.org
Are you over 18 and want to see adult content?
Text
go test .
SPEEDING UP TLS: ENABLING SESSION REUSE COPING WITH THE TCP TIME-WAIT STATE ON BUSY LINUX SERVERSSEE MORE ONVINCENT.BERNAT.CH
MY COLLECTION OF VINTAGE PC CARDS ⁕ VINCENT BERNAT 3dfx Voodoo2 Magic 3D II PCI card 3Com 3C905C-TX-M “Tornado” (1999)# In the early 2000s, in college, the Internet connection on the campus was provided by a student association through a 100 Mbps Ethernet cable. If you wanted to reach the maximum speed, the 3Com 3C905C-TX-M PCI network adapter, nicknamed “Tornado”, was the card you needed. We would buy it second-hand by the WRITING YOUR OWN TERMINAL EMULATOR I was a happy user of rxvt-unicode until I got a laptop with a HiDPI display. Switching from a LoDPI to a HiDPI screen and back was a pain: I had to manually adjust the font size on all terminals or restart them.. VTE is a library to build a terminal emulator using the GTK+ toolkit, which handles DPI changes. It is used by many terminal emulators, like GNOME Terminal, evilvte, sakura, termit WRITING A CUSTOM ANSIBLE MODULE The first part, in , defines the module, with the accepted options.Refer to the documentation on argument_spec for more details.. The second part, in , builds the got and wanted variables.got is the current state while wanted is the target state.For example, if you need to modify records in a database server, got would be the current rows while wanted would be the modified rows. KEEPALIVED AND UNICAST OVER MULTIPLE INTERFACES Keepalived is a Linux implementation of VRRP.The usual role of VRRP is to share a virtual IP across a set of routers. For each VRRP instance, a leader is elected and gets to serve the IP address, ensuring the high availability of the attached service.Keepalived can also be used for a generic leader election, thanks to its ability to use scripts for health checking and run commands on state change. TRANSIENT PROMPT WITH ZSH Powerlevel10k is a theme for Zsh.It contains some powerful features, is astoundingly fast, and easy to customize. I am quite amazed at the skills of its main author.Be sure to also have a look at Zsh for Humans, a complete Zsh configuration including this theme.. One of the nice features of Powerlevel10k is transient prompts: past prompts are reduced to a more minimal configuration to ROUTE-BASED VPN ON LINUX WITH WIREGUARD Compared to IPsec, its major weakness is its lack of interoperability. Update (2020-07) WireGuard is part of Linux since the 5.6 release. It can easily replace strongSwan in our site-to-site setup. On Linux, it already acts as a route-based VPN. As a first step, for each VPN, we create a private key and extract the associated public key: $ wg ZERO-TOUCH PROVISIONING FOR CISCO IOS Zero-Touch Provisioning for Cisco IOS. 1. Automatic upgrade only works from IOS 15 onwards. The official documentation to automatically upgrade 1 and configure on first boot a Cisco switch running on IOS, like a Cisco Catalyst 2960-X Series switch, is scarce on details. This note explains how to configure the ISC DHCP Server for this purpose. A MAKEFILE FOR YOUR GO PROJECT Hopefully, since Go 1.11, it is possible to use Go’s modules to manage dependencies without relying on GOPATH. First, you need to convert your project to a module: 1. $ go mod init hellogopher go: creating new go.mod: module hellogopher $ cat go.mod module hellogopher. Then, you can invoke the usual commands, like go build orgo test .
SPEEDING UP TLS: ENABLING SESSION REUSE COPING WITH THE TCP TIME-WAIT STATE ON BUSY LINUX SERVERSSEE MORE ONVINCENT.BERNAT.CH
WRITING A CUSTOM ANSIBLE MODULE The first part, in , defines the module, with the accepted options.Refer to the documentation on argument_spec for more details.. The second part, in , builds the got and wanted variables.got is the current state while wanted is the target state.For example, if you need to modify records in a database server, got would be the current rows while wanted would be the modified rows. SERVING WEBP & AVIF IMAGES WITH NGINX 4. The Vary header ensures an intermediary cache (a proxy or a CDN) checks the Accept header before using a cached response. Internet Explorer has trouble with this header and may not be able to cache the resource properly. There is a workaround but Internet Explorer’s market share is now so small that it is pointless to implement it. I configure Nginx to serve AVIF image, then the WebP TRANSIENT PROMPT WITH ZSH Powerlevel10k is a theme for Zsh.It contains some powerful features, is astoundingly fast, and easy to customize. I am quite amazed at the skills of its main author.Be sure to also have a look at Zsh for Humans, a complete Zsh configuration including this theme.. One of the nice features of Powerlevel10k is transient prompts: past prompts are reduced to a more minimal configuration to ZERO-TOUCH PROVISIONING FOR JUNIPER Zero-Touch Provisioning for Juniper. Juniper’s official documentation on ZTP explains how to configure the ISC DHCP Server to automatically upgrade and configure on first boot a Juniper device. However, the proposed configuration could be a bit more elegant. This note explains how. TL;DR. Do not redefine option 43.VXLAN & LINUX
VXLAN is an overlay network to carry Ethernet traffic over an existing (highly available and scalable) IP network while accommodating a very large number of tenants. It is defined in RFC 7348.. Starting from Linux 3.12, the VXLAN implementation is quite complete as both multicast and unicast are supported as well as IPv6 and IPv4. Let’s explore the various methods to configure it. A MAKEFILE FOR YOUR GO PROJECT (2017) A Makefile for your Go project (2017) Update (2019-07) Go 1.11 introduces modules to manage dependencies without using GOPATH. While some aspects of the Makefile presented here are still relevant (fetching tools, running tests), the main point IPV6 ROUTE LOOKUP ON LINUX Lookup trie implementation#. Looking up a prefix in a routing table comes down to find the most specific entry matching the requested destination. A common structure for this task is the trie, a tree structure where each node has its parent as prefix.. With IPv4, Linux uses a level-compressed trie (or LPC-trie), providing good performance with low memory usage. SELF-HOSTED VIDEOS WITH HLS Self-hosted videos with HLS. 1. YouTube will now show ads on all videos even if creators don’t want them . Hosting videos on YouTube is convenient for several reasons: pretty good player, free bandwidth, mobile-friendly, network effect and, at your discretion, no ads. 1 On the other hand, this is one of the less privacy-friendly solution. INTEL WIRELESS 7260 AS AN ACCESS POINT Intel Wireless 7260 as an access point. My home router acts as an access point with an Intel Dual-Band Wireless-AC 7260 wireless card. This card supports 802.11ac (on the 5 GHz band) and 802.11n (on both the 5 GHz and 2.4 GHz band). While this seems a very decent card to use in managed mode, this is not really a great choice for an accesspoint.
VXLAN: BGP EVPN WITH FRR VXLAN is an overlay network to encapsulate Ethernet traffic over an existing (highly available and scalable, possibly the Internet) IP network while accomodating a very large number of tenants. It is defined in RFC 7348.For an uncut introduction on its use with Linux, have a look at my “VXLAN & Linux” post. JERIKAN+ANSIBLE: A CONFIGURATION MANAGEMENT SYSTEM FOR NETWORK This work is the collective effort of Cédric Hascoët, Jean-Christophe Legatte, Loïc Pailhas, Sébastien Hurtel, Tchadel Icard, and Vincent Bernat.We are the network team of Blade, a French company operating Shadow, a cloud-computing product.In May 2021, our company was bought by Octave Klaba and the infrastructure is being transferred to OVHcloud, saving Shadow as a product, but making our SERVING WEBP & AVIF IMAGES WITH NGINX 4. The Vary header ensures an intermediary cache (a proxy or a CDN) checks the Accept header before using a cached response. Internet Explorer has trouble with this header and may not be able to cache the resource properly. There is a workaround but Internet Explorer’s market share is now so small that it is pointless to implement it. I configure Nginx to serve AVIF image, then the WebP WRITING A CUSTOM ANSIBLE MODULE The first part, in , defines the module, with the accepted options.Refer to the documentation on argument_spec for more details.. The second part, in , builds the got and wanted variables.got is the current state while wanted is the target state.For example, if you need to modify records in a database server, got would be the current rows while wanted would be the modified rows. KEEPALIVED AND UNICAST OVER MULTIPLE INTERFACES Keepalived is a Linux implementation of VRRP.The usual role of VRRP is to share a virtual IP across a set of routers. For each VRRP instance, a leader is elected and gets to serve the IP address, ensuring the high availability of the attached service.Keepalived can also be used for a generic leader election, thanks to its ability to use scripts for health checking and run commands on state change. WRITING YOUR OWN TERMINAL EMULATOR I was a happy user of rxvt-unicode until I got a laptop with a HiDPI display. Switching from a LoDPI to a HiDPI screen and back was a pain: I had to manually adjust the font size on all terminals or restart them.. VTE is a library to build a terminal emulator using the GTK+ toolkit, which handles DPI changes. It is used by many terminal emulators, like GNOME Terminal, evilvte, sakura, termit ZERO-TOUCH PROVISIONING FOR CISCO IOS Zero-Touch Provisioning for Cisco IOS. 1. Automatic upgrade only works from IOS 15 onwards. The official documentation to automatically upgrade 1 and configure on first boot a Cisco switch running on IOS, like a Cisco Catalyst 2960-X Series switch, is scarce on details. This note explains how to configure the ISC DHCP Server for this purpose. A MAKEFILE FOR YOUR GO PROJECT Hopefully, since Go 1.11, it is possible to use Go’s modules to manage dependencies without relying on GOPATH. First, you need to convert your project to a module: 1. $ go mod init hellogopher go: creating new go.mod: module hellogopher $ cat go.mod module hellogopher. Then, you can invoke the usual commands, like go build orgo test .
JERIKAN+ANSIBLE: A CONFIGURATION MANAGEMENT SYSTEM FOR NETWORK This work is the collective effort of Cédric Hascoët, Jean-Christophe Legatte, Loïc Pailhas, Sébastien Hurtel, Tchadel Icard, and Vincent Bernat.We are the network team of Blade, a French company operating Shadow, a cloud-computing product.In May 2021, our company was bought by Octave Klaba and the infrastructure is being transferred to OVHcloud, saving Shadow as a product, but making our SERVING WEBP & AVIF IMAGES WITH NGINX 4. The Vary header ensures an intermediary cache (a proxy or a CDN) checks the Accept header before using a cached response. Internet Explorer has trouble with this header and may not be able to cache the resource properly. There is a workaround but Internet Explorer’s market share is now so small that it is pointless to implement it. I configure Nginx to serve AVIF image, then the WebP WRITING A CUSTOM ANSIBLE MODULE The first part, in , defines the module, with the accepted options.Refer to the documentation on argument_spec for more details.. The second part, in , builds the got and wanted variables.got is the current state while wanted is the target state.For example, if you need to modify records in a database server, got would be the current rows while wanted would be the modified rows. KEEPALIVED AND UNICAST OVER MULTIPLE INTERFACES Keepalived is a Linux implementation of VRRP.The usual role of VRRP is to share a virtual IP across a set of routers. For each VRRP instance, a leader is elected and gets to serve the IP address, ensuring the high availability of the attached service.Keepalived can also be used for a generic leader election, thanks to its ability to use scripts for health checking and run commands on state change. WRITING YOUR OWN TERMINAL EMULATOR I was a happy user of rxvt-unicode until I got a laptop with a HiDPI display. Switching from a LoDPI to a HiDPI screen and back was a pain: I had to manually adjust the font size on all terminals or restart them.. VTE is a library to build a terminal emulator using the GTK+ toolkit, which handles DPI changes. It is used by many terminal emulators, like GNOME Terminal, evilvte, sakura, termit ZERO-TOUCH PROVISIONING FOR CISCO IOS Zero-Touch Provisioning for Cisco IOS. 1. Automatic upgrade only works from IOS 15 onwards. The official documentation to automatically upgrade 1 and configure on first boot a Cisco switch running on IOS, like a Cisco Catalyst 2960-X Series switch, is scarce on details. This note explains how to configure the ISC DHCP Server for this purpose. A MAKEFILE FOR YOUR GO PROJECT Hopefully, since Go 1.11, it is possible to use Go’s modules to manage dependencies without relying on GOPATH. First, you need to convert your project to a module: 1. $ go mod init hellogopher go: creating new go.mod: module hellogopher $ cat go.mod module hellogopher. Then, you can invoke the usual commands, like go build orgo test .
MY COLLECTION OF VINTAGE PC CARDS ⁕ VINCENT BERNAT 3dfx Voodoo2 Magic 3D II PCI card 3Com 3C905C-TX-M “Tornado” (1999)# In the early 2000s, in college, the Internet connection on the campus was provided by a student association through a 100 Mbps Ethernet cable. If you wanted to reach the maximum speed, the 3Com 3C905C-TX-M PCI network adapter, nicknamed “Tornado”, was the card you needed. We would buy it second-hand by the SERVING WEBP & AVIF IMAGES WITH NGINX 4. The Vary header ensures an intermediary cache (a proxy or a CDN) checks the Accept header before using a cached response. Internet Explorer has trouble with this header and may not be able to cache the resource properly. There is a workaround but Internet Explorer’s market share is now so small that it is pointless to implement it. I configure Nginx to serve AVIF image, then the WebP SYNCING SSH KEYS ON CISCO IOS-XR WITH A CUSTOM ANSIBLE MODULE In our environment, the Ansible playbook pushes a full configuration, including the user definitions. Then, it synchronizes the SSH keys. ↩︎ Despite the argument provided to ssh-keygen, the format used by Cisco is not PKCS#8.This is the ASN.1 representation of a Subject Public Key Info structure, as defined in RFC 2459.Moreover, PKCS#8 is a format for a private key, not a public one. ZERO-TOUCH PROVISIONING FOR JUNIPER Zero-Touch Provisioning for Juniper. Juniper’s official documentation on ZTP explains how to configure the ISC DHCP Server to automatically upgrade and configure on first boot a Juniper device. However, the proposed configuration could be a bit more elegant. This note explains how. TL;DR. Do not redefine option 43. A MAKEFILE FOR YOUR GO PROJECT (2017) A Makefile for your Go project (2017) Update (2019-07) Go 1.11 introduces modules to manage dependencies without using GOPATH. While some aspects of the Makefile presented here are still relevant (fetching tools, running tests), the main point ZSH PROMPT WITH ASYNCHRONOUS GIT STATUS Example of prompt including information from the vcs_info function.. On large repositories, some information are expensive to fetch. While vcs_info queries Git, interactions with Zsh are stuck. A possible solution is to execute vcs_info asynchronously with zsh-async.. The first step is to define a wrapper around vcs_info.This wrapper will run into a separate process and should communicate its SELF-HOSTED VIDEOS WITH HLS Self-hosted videos with HLS. 1. YouTube will now show ads on all videos even if creators don’t want them . Hosting videos on YouTube is convenient for several reasons: pretty good player, free bandwidth, mobile-friendly, network effect and, at your discretion, no ads. 1 On the other hand, this is one of the less privacy-friendly solution. VXLAN: BGP EVPN WITH FRR VXLAN is an overlay network to encapsulate Ethernet traffic over an existing (highly available and scalable, possibly the Internet) IP network while accomodating a very large number of tenants. It is defined in RFC 7348.For an uncut introduction on its use with Linux, have a look at my “VXLAN & Linux” post. SPEEDING UP TLS: ENABLING SESSION REUSE Session reuse is one of the most important mechanisms to improve TLS performance: by submitting an appropriate blob to the server, a client can trigger an abbreviated handshake, improving latency and computation time.There exist two distinct ways to achieve session reuse: session identifiers as described in RFC 5246 and session tickets as depicted in RFC 5077. PROPER ISOLATION OF A LINUX BRIDGE Proper isolation of a Linux bridge. TL;DR. When configuring a Linux bridge, use the following commands to enforce isolation: # bridge vlan del dev br0 vid 1 self # ip link set dev br0 type bridge vlan_filtering 1. A network bridge (also commonly called a “switch”) brings several Ethernet segments together. WRITING YOUR OWN TERMINAL EMULATOR I was a happy user of rxvt-unicode until I got a laptop with a HiDPI display. Switching from a LoDPI to a HiDPI screen and back was a pain: I had to manually adjust the font size on all terminals or restart them.. VTE is a library to build a terminal emulator using the GTK+ toolkit, which handles DPI changes. It is used by many terminal emulators, like GNOME Terminal, evilvte, sakura, termit KEEPALIVED AND UNICAST OVER MULTIPLE INTERFACES Keepalived is a Linux implementation of VRRP.The usual role of VRRP is to share a virtual IP across a set of routers. For each VRRP instance, a leader is elected and gets to serve the IP address, ensuring the high availability of the attached service.Keepalived can also be used for a generic leader election, thanks to its ability to use scripts for health checking and run commands on state change. A MAKEFILE FOR YOUR GO PROJECT Hopefully, since Go 1.11, it is possible to use Go’s modules to manage dependencies without relying on GOPATH. First, you need to convert your project to a module: 1. $ go mod init hellogopher go: creating new go.mod: module hellogopher $ cat go.mod module hellogopher. Then, you can invoke the usual commands, like go build orgo test .
ROUTE-BASED VPN ON LINUX WITH WIREGUARD Compared to IPsec, its major weakness is its lack of interoperability. Update (2020-07) WireGuard is part of Linux since the 5.6 release. It can easily replace strongSwan in our site-to-site setup. On Linux, it already acts as a route-based VPN. As a first step, for each VPN, we create a private key and extract the associated public key: $ wg ZERO-TOUCH PROVISIONING FOR CISCO IOS Zero-Touch Provisioning for Cisco IOS. 1. Automatic upgrade only works from IOS 15 onwards. The official documentation to automatically upgrade 1 and configure on first boot a Cisco switch running on IOS, like a Cisco Catalyst 2960-X Series switch, is scarce on details. This note explains how to configure the ISC DHCP Server for this purpose.VXLAN & LINUX
A MAKEFILE FOR YOUR GO PROJECT (2017) A Makefile for your Go project (2017) Update (2019-07) Go 1.11 introduces modules to manage dependencies without using GOPATH. While some aspects of the Makefile presented here are still relevant (fetching tools, running tests), the main point SELF-HOSTED VIDEOS WITH HLS VXLAN: BGP EVPN WITH FRR VXLAN: BGP EVPN with FRR. VXLAN is an overlay network to encapsulate Ethernet traffic over an existing (highly available and scalable, possibly the Internet) IP network while accomodating a very large number of tenants. It is defined in RFC 7348. COPING WITH THE TCP TIME-WAIT STATE ON BUSY LINUX SERVERSSEE MORE ONVINCENT.BERNAT.CH
WRITING YOUR OWN TERMINAL EMULATOR I was a happy user of rxvt-unicode until I got a laptop with a HiDPI display. Switching from a LoDPI to a HiDPI screen and back was a pain: I had to manually adjust the font size on all terminals or restart them.. VTE is a library to build a terminal emulator using the GTK+ toolkit, which handles DPI changes. It is used by many terminal emulators, like GNOME Terminal, evilvte, sakura, termit KEEPALIVED AND UNICAST OVER MULTIPLE INTERFACES Keepalived is a Linux implementation of VRRP.The usual role of VRRP is to share a virtual IP across a set of routers. For each VRRP instance, a leader is elected and gets to serve the IP address, ensuring the high availability of the attached service.Keepalived can also be used for a generic leader election, thanks to its ability to use scripts for health checking and run commands on state change. A MAKEFILE FOR YOUR GO PROJECT Hopefully, since Go 1.11, it is possible to use Go’s modules to manage dependencies without relying on GOPATH. First, you need to convert your project to a module: 1. $ go mod init hellogopher go: creating new go.mod: module hellogopher $ cat go.mod module hellogopher. Then, you can invoke the usual commands, like go build orgo test .
ROUTE-BASED VPN ON LINUX WITH WIREGUARD Compared to IPsec, its major weakness is its lack of interoperability. Update (2020-07) WireGuard is part of Linux since the 5.6 release. It can easily replace strongSwan in our site-to-site setup. On Linux, it already acts as a route-based VPN. As a first step, for each VPN, we create a private key and extract the associated public key: $ wg ZERO-TOUCH PROVISIONING FOR CISCO IOS Zero-Touch Provisioning for Cisco IOS. 1. Automatic upgrade only works from IOS 15 onwards. The official documentation to automatically upgrade 1 and configure on first boot a Cisco switch running on IOS, like a Cisco Catalyst 2960-X Series switch, is scarce on details. This note explains how to configure the ISC DHCP Server for this purpose.VXLAN & LINUX
A MAKEFILE FOR YOUR GO PROJECT (2017) A Makefile for your Go project (2017) Update (2019-07) Go 1.11 introduces modules to manage dependencies without using GOPATH. While some aspects of the Makefile presented here are still relevant (fetching tools, running tests), the main point SELF-HOSTED VIDEOS WITH HLS VXLAN: BGP EVPN WITH FRR VXLAN: BGP EVPN with FRR. VXLAN is an overlay network to encapsulate Ethernet traffic over an existing (highly available and scalable, possibly the Internet) IP network while accomodating a very large number of tenants. It is defined in RFC 7348. COPING WITH THE TCP TIME-WAIT STATE ON BUSY LINUX SERVERSSEE MORE ONVINCENT.BERNAT.CH
MY COLLECTION OF VINTAGE PC CARDS ⁕ VINCENT BERNAT 3dfx Voodoo2 Magic 3D II PCI card 3Com 3C905C-TX-M “Tornado” (1999)# In the early 2000s, in college, the Internet connection on the campus was provided by a student association through a 100 Mbps Ethernet cable. If you wanted to reach the maximum speed, the 3Com 3C905C-TX-M PCI network adapter, nicknamed “Tornado”, was the card you needed. We would buy it second-hand by the JERIKAN+ANSIBLE: A CONFIGURATION MANAGEMENT SYSTEM FOR NETWORK This work is the collective effort of Cédric Hascoët, Jean-Christophe Legatte, Loïc Pailhas, Sébastien Hurtel, Tchadel Icard, and Vincent Bernat.We are the network team of Blade, a French company operating Shadow, a cloud-computing product.In May 2021, our company was bought by Octave Klaba and the infrastructure is being transferred to OVHcloud, saving Shadow as a product, but making our WRITING A CUSTOM ANSIBLE MODULE The first part, in , defines the module, with the accepted options.Refer to the documentation on argument_spec for more details.. The second part, in , builds the got and wanted variables.got is the current state while wanted is the target state.For example, if you need to modify records in a database server, got would be the current rows while wanted would be the modified rows. THINKPAD X1 CARBON 2014: 5 YEARS LATER ThinkPad X1 Carbon 20A7 with its lid closed. My configuration embeds an Intel vPro Core i7-4600U, 8 Gib of RAM, a 256 Gib SATA SSD, a matte WQHD display, and a WWAN LTE card. I got it in June 2014. It has spent these years running Debian Sid, starting from Linux 3.14 to Linux 5.4. The inside is still quite dust-free! VXLAN: BGP EVPN WITH FRR VXLAN is an overlay network to encapsulate Ethernet traffic over an existing (highly available and scalable, possibly the Internet) IP network while accomodating a very large number of tenants. It is defined in RFC 7348.For an uncut introduction on its use with Linux, have a look at my “VXLAN & Linux” post. DOWNGRADING ALL DEBIAN PACKAGES TO A SPECIFIC DATE Unlike NixOS, Debian doesn’t have a builtin mechanism to rollback an installation to a specific point in time. However, thanks to snapshot.debian.org, a wayback machine for Debian packages, it is possible to downgrade all packages to the versions from a chosen date. Let’s suppose we want to go back to January, 20 th 2020. ZSH PROMPT WITH ASYNCHRONOUS GIT STATUS Example of prompt including information from the vcs_info function.. On large repositories, some information are expensive to fetch. While vcs_info queries Git, interactions with Zsh are stuck. A possible solution is to execute vcs_info asynchronously with zsh-async.. The first step is to define a wrapper around vcs_info.This wrapper will run into a separate process and should communicate its INTEL WIRELESS 7260 AS AN ACCESS POINT Intel Wireless 7260 as an access point. My home router acts as an access point with an Intel Dual-Band Wireless-AC 7260 wireless card. This card supports 802.11ac (on the 5 GHz band) and 802.11n (on both the 5 GHz and 2.4 GHz band). While this seems a very decent card to use in managed mode, this is not really a great choice for an accesspoint.
PACKAGING A DAEMON FOR MACOS ⁕ VINCENT BERNAT A package is built in two steps: Build component packages. Combine them into a product archive. A component package contains a set of files and a set of scripts to execute at various steps of the installation. You can have several component packages, for example a package for the daemon and a package for the client. They are builtwith pkgbuild.
FONCTIONNEMENT DE LA TABLE DE ROUTAGE IPV6 SOUS …TRANSLATE THIS PAGE Fonctionnement de la table de routage IPv6 sous Linux. Linux stocke les tables de routage IPv6 à l’aide d’arbres radix. Les performances obtenues (450 ns pour une vue complète d’Internet — 40 000 routes) sont inférieures à IPv4 (50 ns pour une vue complète — 500 000 routes) mais l’utilisation mémoire reste honnête (20Mio
WRITING YOUR OWN TERMINAL EMULATOR I was a happy user of rxvt-unicode until I got a laptop with a HiDPI display. Switching from a LoDPI to a HiDPI screen and back was a pain: I had to manually adjust the font size on all terminals or restart them.. VTE is a library to build a terminal emulator using the GTK+ toolkit, which handles DPI changes. It is used by many terminal emulators, like GNOME Terminal, evilvte, sakura, termit KEEPALIVED AND UNICAST OVER MULTIPLE INTERFACES Keepalived is a Linux implementation of VRRP.The usual role of VRRP is to share a virtual IP across a set of routers. For each VRRP instance, a leader is elected and gets to serve the IP address, ensuring the high availability of the attached service.Keepalived can also be used for a generic leader election, thanks to its ability to use scripts for health checking and run commands on state change. A MAKEFILE FOR YOUR GO PROJECT Hopefully, since Go 1.11, it is possible to use Go’s modules to manage dependencies without relying on GOPATH. First, you need to convert your project to a module: 1. $ go mod init hellogopher go: creating new go.mod: module hellogopher $ cat go.mod module hellogopher. Then, you can invoke the usual commands, like go build orgo test .
ROUTE-BASED VPN ON LINUX WITH WIREGUARD Compared to IPsec, its major weakness is its lack of interoperability. Update (2020-07) WireGuard is part of Linux since the 5.6 release. It can easily replace strongSwan in our site-to-site setup. On Linux, it already acts as a route-based VPN. As a first step, for each VPN, we create a private key and extract the associated public key: $ wg ZERO-TOUCH PROVISIONING FOR CISCO IOS Zero-Touch Provisioning for Cisco IOS. 1. Automatic upgrade only works from IOS 15 onwards. The official documentation to automatically upgrade 1 and configure on first boot a Cisco switch running on IOS, like a Cisco Catalyst 2960-X Series switch, is scarce on details. This note explains how to configure the ISC DHCP Server for this purpose.VXLAN & LINUX
A MAKEFILE FOR YOUR GO PROJECT (2017) A Makefile for your Go project (2017) Update (2019-07) Go 1.11 introduces modules to manage dependencies without using GOPATH. While some aspects of the Makefile presented here are still relevant (fetching tools, running tests), the main point SELF-HOSTED VIDEOS WITH HLS VXLAN: BGP EVPN WITH FRR VXLAN: BGP EVPN with FRR. VXLAN is an overlay network to encapsulate Ethernet traffic over an existing (highly available and scalable, possibly the Internet) IP network while accomodating a very large number of tenants. It is defined in RFC 7348. COPING WITH THE TCP TIME-WAIT STATE ON BUSY LINUX SERVERSSEE MORE ONVINCENT.BERNAT.CH
WRITING YOUR OWN TERMINAL EMULATOR I was a happy user of rxvt-unicode until I got a laptop with a HiDPI display. Switching from a LoDPI to a HiDPI screen and back was a pain: I had to manually adjust the font size on all terminals or restart them.. VTE is a library to build a terminal emulator using the GTK+ toolkit, which handles DPI changes. It is used by many terminal emulators, like GNOME Terminal, evilvte, sakura, termit KEEPALIVED AND UNICAST OVER MULTIPLE INTERFACES Keepalived is a Linux implementation of VRRP.The usual role of VRRP is to share a virtual IP across a set of routers. For each VRRP instance, a leader is elected and gets to serve the IP address, ensuring the high availability of the attached service.Keepalived can also be used for a generic leader election, thanks to its ability to use scripts for health checking and run commands on state change. A MAKEFILE FOR YOUR GO PROJECT Hopefully, since Go 1.11, it is possible to use Go’s modules to manage dependencies without relying on GOPATH. First, you need to convert your project to a module: 1. $ go mod init hellogopher go: creating new go.mod: module hellogopher $ cat go.mod module hellogopher. Then, you can invoke the usual commands, like go build orgo test .
ROUTE-BASED VPN ON LINUX WITH WIREGUARD Compared to IPsec, its major weakness is its lack of interoperability. Update (2020-07) WireGuard is part of Linux since the 5.6 release. It can easily replace strongSwan in our site-to-site setup. On Linux, it already acts as a route-based VPN. As a first step, for each VPN, we create a private key and extract the associated public key: $ wg ZERO-TOUCH PROVISIONING FOR CISCO IOS Zero-Touch Provisioning for Cisco IOS. 1. Automatic upgrade only works from IOS 15 onwards. The official documentation to automatically upgrade 1 and configure on first boot a Cisco switch running on IOS, like a Cisco Catalyst 2960-X Series switch, is scarce on details. This note explains how to configure the ISC DHCP Server for this purpose.VXLAN & LINUX
A MAKEFILE FOR YOUR GO PROJECT (2017) A Makefile for your Go project (2017) Update (2019-07) Go 1.11 introduces modules to manage dependencies without using GOPATH. While some aspects of the Makefile presented here are still relevant (fetching tools, running tests), the main point SELF-HOSTED VIDEOS WITH HLS VXLAN: BGP EVPN WITH FRR VXLAN: BGP EVPN with FRR. VXLAN is an overlay network to encapsulate Ethernet traffic over an existing (highly available and scalable, possibly the Internet) IP network while accomodating a very large number of tenants. It is defined in RFC 7348. COPING WITH THE TCP TIME-WAIT STATE ON BUSY LINUX SERVERSSEE MORE ONVINCENT.BERNAT.CH
MY COLLECTION OF VINTAGE PC CARDS ⁕ VINCENT BERNAT 3dfx Voodoo2 Magic 3D II PCI card 3Com 3C905C-TX-M “Tornado” (1999)# In the early 2000s, in college, the Internet connection on the campus was provided by a student association through a 100 Mbps Ethernet cable. If you wanted to reach the maximum speed, the 3Com 3C905C-TX-M PCI network adapter, nicknamed “Tornado”, was the card you needed. We would buy it second-hand by the JERIKAN+ANSIBLE: A CONFIGURATION MANAGEMENT SYSTEM FOR NETWORK This work is the collective effort of Cédric Hascoët, Jean-Christophe Legatte, Loïc Pailhas, Sébastien Hurtel, Tchadel Icard, and Vincent Bernat.We are the network team of Blade, a French company operating Shadow, a cloud-computing product.In May 2021, our company was bought by Octave Klaba and the infrastructure is being transferred to OVHcloud, saving Shadow as a product, but making our WRITING A CUSTOM ANSIBLE MODULE The first part, in , defines the module, with the accepted options.Refer to the documentation on argument_spec for more details.. The second part, in , builds the got and wanted variables.got is the current state while wanted is the target state.For example, if you need to modify records in a database server, got would be the current rows while wanted would be the modified rows. THINKPAD X1 CARBON 2014: 5 YEARS LATER ThinkPad X1 Carbon 20A7 with its lid closed. My configuration embeds an Intel vPro Core i7-4600U, 8 Gib of RAM, a 256 Gib SATA SSD, a matte WQHD display, and a WWAN LTE card. I got it in June 2014. It has spent these years running Debian Sid, starting from Linux 3.14 to Linux 5.4. The inside is still quite dust-free! VXLAN: BGP EVPN WITH FRR VXLAN is an overlay network to encapsulate Ethernet traffic over an existing (highly available and scalable, possibly the Internet) IP network while accomodating a very large number of tenants. It is defined in RFC 7348.For an uncut introduction on its use with Linux, have a look at my “VXLAN & Linux” post. DOWNGRADING ALL DEBIAN PACKAGES TO A SPECIFIC DATE Unlike NixOS, Debian doesn’t have a builtin mechanism to rollback an installation to a specific point in time. However, thanks to snapshot.debian.org, a wayback machine for Debian packages, it is possible to downgrade all packages to the versions from a chosen date. Let’s suppose we want to go back to January, 20 th 2020. ZSH PROMPT WITH ASYNCHRONOUS GIT STATUS Example of prompt including information from the vcs_info function.. On large repositories, some information are expensive to fetch. While vcs_info queries Git, interactions with Zsh are stuck. A possible solution is to execute vcs_info asynchronously with zsh-async.. The first step is to define a wrapper around vcs_info.This wrapper will run into a separate process and should communicate its INTEL WIRELESS 7260 AS AN ACCESS POINT Intel Wireless 7260 as an access point. My home router acts as an access point with an Intel Dual-Band Wireless-AC 7260 wireless card. This card supports 802.11ac (on the 5 GHz band) and 802.11n (on both the 5 GHz and 2.4 GHz band). While this seems a very decent card to use in managed mode, this is not really a great choice for an accesspoint.
PACKAGING A DAEMON FOR MACOS ⁕ VINCENT BERNAT A package is built in two steps: Build component packages. Combine them into a product archive. A component package contains a set of files and a set of scripts to execute at various steps of the installation. You can have several component packages, for example a package for the daemon and a package for the client. They are builtwith pkgbuild.
FONCTIONNEMENT DE LA TABLE DE ROUTAGE IPV6 SOUS …TRANSLATE THIS PAGE Fonctionnement de la table de routage IPv6 sous Linux. Linux stocke les tables de routage IPv6 à l’aide d’arbres radix. Les performances obtenues (450 ns pour une vue complète d’Internet — 40 000 routes) sont inférieures à IPv4 (50 ns pour une vue complète — 500 000 routes) mais l’utilisation mémoire reste honnête (20Mio
MTU NINJA
VINCENT BERNAT
Also available in
* français
The main content of this site is my blog . The latest articles are “Zero-Touch Provisioning for Juniper ,” “My collection of vintage PC cards ,” and “Running Isso on NixOS in a Docker container .” The most popular article is “Coping with the TCP TIME-WAIT state on busyLinux servers .”
This site does not use cookies. IP addresses are scrambled before being logged. See “A more privacy-friendly blog” for details.
I am currently working for Shadow 🎮, a great cloud gaming/computing service. In the past, I have worked for Orange📱, Dailymotion
📹, Deezer
🎧, and Exoscale ☁️. I like cats🐈.
------------------------- * EMAIL: vincent@bernat.ch * CODE: GitHub , Debian* SOCIAL: Twitter
* PRONOUNS: he/him/his * OPENPGP: public key AEF2 3487 66F3 71C6 89A7 3600 95A4 2FE8 3535 25F9* About
* Blog
* Projects
ELSEWHERE
* GitHub
SOURCES
* Site
* Page
* History
* Edit
2020 Vincent BernatDetails
Copyright © 2024 ArchiveBay.com. All rights reserved. Terms of Use | Privacy Policy | DMCA | 2021 | Feedback | Advertising | RSS 2.0