Web Squad ISP

Status
Not open for further replies.
JustinB said:
@websquadza I guess with all the outages, our complex is probably low on the list of priorities?View attachment 1286454
Click to expand...
Not at all. Maintenance teams are separate to core network teams. Vuma outage today was AEX related.

That said- the issue with your complex seems to be internal. Likely that the Vumatel techs were not able to access the complex and now need to schedule with a resident to gain access. Unfortunately their procedure here means they need to revert to NOC, schedule a visit and come back.
 
Senshi said:
Connectivity comes and goes over the last 30 mins or so.

Currently connected but will see if it drops of again.
Click to expand...
It looks like the AEX issue has stabilised. Still no RFO. Seems to have affected links as far as Rustenburg and Newcastle.
 
websquadza said:
Not at all. Maintenance teams are separate to core network teams. Vuma outage today was AEX related.

That said- the issue with your complex seems to be internal. Likely that the Vumatel techs were not able to access the complex and now need to schedule with a resident to gain access. Unfortunately their procedure here means they need to revert to NOC, schedule a visit and come back.
Click to expand...
Yeah. The line is cut... Needs to be joined...

But no, nobody has contacted us today to resolve unfortunately.
 
DarkSt0rm said:
Doubt it, problem goes again when I use a VPN.
Click to expand...
r00igev@@r said:
It would if you using an apple device on a VPN that terminates on a Linux box with a kernel > 5.10
Click to expand...

This one has had me thinking.. but I have a theory. Google drive may be using QUIC to upload. This is a transport protocol, so L2/L3 hardware shouldn’t be affected (remember we’re seeing loss right through the trace). But a L7 firewall (I think you were using the UDM) does have something to say about processing QUIC and may be the culprit. Using a VPN encapsulates this traffic and means the router only sees encrypted UDP- which it’s pretty familiar with. Have you tried bypassing the router and trying the same upload?
 
websquadza said:
This one has had me thinking.. but I have a theory. Google drive may be using QUIC to upload. This is a transport protocol, so L2/L3 hardware shouldn’t be affected (remember we’re seeing loss right through the trace). But a L7 firewall (I think you were using the UDM) does have something to say about processing QUIC and may be the culprit. Using a VPN encapsulates this traffic and means the router only sees encrypted UDP- which it’s pretty familiar with. Have you tried bypassing the router and trying the same upload?
Click to expand...
The bottom line is that the VPN is doing a better queuing job than the router. What is the VPN?
 
Hey, is there anyone else on Openserve 500/250 here? I do have a ticket open currently, but something seems very off since I joined (beginning of the month)

Managed to dig up one of my old free 1GB capped ADSL accounts on Webafrica. Anyone else have this issue on OS/WS?

13013742331.png

13013736255.png
 
Last edited:
r00igev@@r said:
It would if you using an apple device on a VPN that terminates on a Linux box with a kernel > 5.10
Click to expand...
Windows to a unifi switch to a unifi gateway
websquadza said:
This one has had me thinking.. but I have a theory. Google drive may be using QUIC to upload. This is a transport protocol, so L2/L3 hardware shouldn’t be affected (remember we’re seeing loss right through the trace). But a L7 firewall (I think you were using the UDM) does have something to say about processing QUIC and may be the culprit. Using a VPN encapsulates this traffic and means the router only sees encrypted UDP- which it’s pretty familiar with. Have you tried bypassing the router and trying the same upload?
Click to expand...
Getting really over hitting these "edge cases" with unifi, been solid for years and this year it's just been a disaster... Replacement recommendation? Drive is fine going into CPE.
r00igev@@r said:
The bottom line is that the VPN is doing a better queuing job than the router. What is the VPN?
Click to expand...
NordVPN Lynx (wireguard)
 
3rd weekend in a row where watching Twitch is near impossible. I've given up and going to do something else.

Sigh.
 
Grassnyer said:
Hey, is there anyone else on Openserve 500/250 here? I do have a ticket open currently, but something seems very off since I joined (beginning of the month)

Managed to dig up one of my old free 1GB capped ADSL accounts on Webafrica. Anyone else have this issue on OS/WS?

13013742331.png

13013736255.png
Click to expand...
We have picked up an issue with Openserve's LNS network in some areas - seems to be a processing issue with PPPOE>L2TP; we are working with them on a resolution. Will update on your ticket this week. Thanks for your patience here.
 
websquadza said:
We have picked up an issue with Openserve's LNS network in some areas - seems to be a processing issue with PPPOE>L2TP; we are working with them on a resolution. Will update on your ticket this week. Thanks for your patience here.
Click to expand...
I don't know what that means but happy that you found the issue :) Thanks for the update!
 
Last edited:
DarkSt0rm said:
Windows to a unifi switch to a unifi gateway

Getting really over hitting these "edge cases" with unifi, been solid for years and this year it's just been a disaster... Replacement recommendation? Drive is fine going into CPE.

NordVPN Lynx (wireguard)
Click to expand...
Ah. Wireguard requires the kernel that has all the latest next-net merges. https://git.kernel.org/pub/scm/linux/kernel/git/netdev/net-next.git
It means that it has all the latest queing ability including CAKE. Biggest benefit is it does fairness just by being switched on.
The ones that are there are the cutting edge speciality routers based on Intel CPU/network as they the ones who sponsor the kernel.
It will take about 2 years to start to filter down to consumer kit but if you like to tinker and have time the latest openwrt versions work as well.
If you feel brave use the latest debian on back ports. But that is damn difficult without an orchestration layer.
 
DarkSt0rm said:
Windows to a unifi switch to a unifi gateway

Getting really over hitting these "edge cases" with unifi, been solid for years and this year it's just been a disaster... Replacement recommendation? Drive is fine going into CPE.

NordVPN Lynx (wireguard)
Click to expand...

Yeah, they're being a bit loose and fast with their updates and breaking things in the process... Seen updates break peer to peer comms in the LAN this week too. They should look at splitting updates into stable and latest trees. IE, enabling auto update would keep you on a stable tree instead of auto-updating to their newest and buggy firmware.

Odd that it would pop up now though - likely an update with their L7 processing for QUIC.

I'd recommend Mikrotik, but their ROs 7 rollout has been similarly buggy, and it would be a shame to buy older hardware at this point. Also no DPI and UTM to add value there. Any ideas from anyone else here?
 
websquadza said:
Yeah, they're being a bit loose and fast with their updates and breaking things in the process... Seen updates break peer to peer comms in the LAN this week too. They should look at splitting updates into stable and latest trees. IE, enabling auto update would keep you on a stable tree instead of auto-updating to their newest and buggy firmware.

Odd that it would pop up now though - likely an update with their L7 processing for QUIC.

I'd recommend Mikrotik, but their ROs 7 rollout has been similarly buggy, and it would be a shame to buy older hardware at this point. Also no DPI and UTM to add value there. Any ideas from anyone else here?
Click to expand...
So Tim Lawerence who loves UBNT APs says that the Dream machine is rubbish. He has a great youtube channel. He prefers pfsense. I don't use that myself but have fired one up in the past and its been as good as Fortinet and better than Cisco. The trick is to use a decent Intel x86 platform with Intel NICs. If you don't have one you can often pick up refurb enterprise desktops as cheap as chips that will do the job. There are some mini ones that are very good but you need to put in an extra NIC. The official netgate variants are not cost effective for home users.

Another platform that has potential is the Raspberry pi CM4 with a dual port gig ethernet case like the waveshare. It doesn't run pfsense but the standard pios and cockpit will make it easy to configure and use (relatively speaking). It will have all the latest kernel stuff to tinker.
 
r00igev@@r said:
So Tim Lawerence who loves UBNT APs says that the Dream machine is rubbish. He has a great youtube channel. He prefers pfsense. I don't use that myself but have fired one up in the past and its been as good as Fortinet and better than Cisco. The trick is to use a decent Intel x86 platform with Intel NICs. If you don't have one you can often pick up refurb enterprise desktops as cheap as chips that will do the job. There are some mini ones that are very good but you need to put in an extra NIC. The official netgate variants are not cost effective for home users.

Another platform that has potential is the Raspberry pi CM4 with a dual port gig ethernet case like the waveshare. It doesn't run pfsense but the standard pios and cockpit will make it easy to configure and use (relatively speaking). It will have all the latest kernel stuff to tinker.
Click to expand...
Aah another person who likes Lawrence Tech
 
r00igev@@r said:
So Tim Lawerence who loves UBNT APs says that the Dream machine is rubbish. He has a great youtube channel. He prefers pfsense. I don't use that myself but have fired one up in the past and its been as good as Fortinet and better than Cisco. The trick is to use a decent Intel x86 platform with Intel NICs. If you don't have one you can often pick up refurb enterprise desktops as cheap as chips that will do the job. There are some mini ones that are very good but you need to put in an extra NIC. The official netgate variants are not cost effective for home users.

Another platform that has potential is the Raspberry pi CM4 with a dual port gig ethernet case like the waveshare. It doesn't run pfsense but the standard pios and cockpit will make it easy to configure and use (relatively speaking). It will have all the latest kernel stuff to tinker.
Click to expand...
Is there any hardware locally that can be used to roll pfsense/opnsense/etc? Been toying with the idea for a while, except, multiple NICs aren't exactly a consumer feature and I don't see a point of having to build a mini tower just to run pfsense.
 
DarkSt0rm said:
Is there any hardware locally that can be used to roll pfsense/opnsense/etc? Been toying with the idea for a while, except, multiple NICs aren't exactly a consumer feature and I don't see a point of having to build a mini tower just to run pfsense.
Click to expand...
I know the problem as the local suppliers like to rip the ring on these platforms.
I import my own x86 platforms that have multiple NICs and starting with a desktop one that can support encryption from 400mbs and then a rack one that goes up to about 2.5gbs.
I use them for my own sd-wan platforms and was thinking of making them available for generic use but don't know if it is worth the effort. I've been asked to do the rack ones. People will spend a huge amount on their gaming or desktop systems but skimp on the networking.
This is the desktop:
mini.png
 
r00igev@@r said:
I know the problem as the local suppliers like to rip the ring on these platforms.
I import my own x86 platforms that have multiple NICs and starting with a desktop one that can support encryption from 400mbs and then a rack one that goes up to about 2.5gbs.
I use them for my own sd-wan platforms and was thinking of making them available for generic use but don't know if it is worth the effort. I've been asked to do the rack ones. People will spend a huge amount on their gaming or desktop systems but skimp on the networking.
This is the desktop:
View attachment 1287294
Click to expand...
What would the cost be? Running gigabit so would need more than 400. Would certainly be something I'm interested in.
 
Status
Not open for further replies.
Back
Top
Sign up to the MyBroadband newsletter
X