| 7 Feb 2026 |
 K900 | That is not hooked up to anything | 22:19:55 |
| K900 | And right now our normal firewall doesn't know it exists | 22:20:10 |
 raitobezarius | so why not jump to that chain inside your main filter table? | 22:20:15 |
| K900 | That's what I'm currently doing, but the nixos module sets it up as another table entirely | 22:20:34 |
| K900 | So you can't even jump to it from the normal filter rules | 22:20:50 |
| raitobezarius | i don't think it makes a lot of sense | 22:21:47 |
| raitobezarius | it should be a chain of the filter table | 22:21:53 |
| raitobezarius | miniupd is not its entire networking stack with its entire lifecycle | 22:22:01 |
| raitobezarius | otherwise, idk, you need to have another script that listens and modify the whole nftables config live | 22:23:03 |
| raitobezarius | while understanding what the fuck is going on | 22:23:07 |
| K900 | Yeah | 22:30:26 |
| K900 | Starting to have a design formulating in my head | 23:03:55 |
| K900 | I think | 23:03:56 |
| K900 | Step 1, RFC42 the thing | 23:04:03 |
| K900 | Step 2, services.miniupnpd.firewallIntegration or whatever, which requires filterForward and just makes it write to the nixos-fw table | 23:04:39 |
| K900 | Step 3, probably turn that on by default? | 23:04:56 |
|  zimward joined the room. | 23:18:56 |
| 9 Feb 2026 |
|  Ivan Mincik (imincik) changed their profile picture. | 06:06:05 |
|  A. (they/them) changed their display name from Amy to A. (they/them). | 18:27:00 |
|  Jules Lamur joined the room. | 19:42:45 |
|  @luizribeiro:matrix.org left the room. | 21:32:22 |
| 10 Feb 2026 |
|  Autiboy changed their profile picture. | 02:59:31 |
| Autiboy changed their profile picture. | 03:00:17 |
|  pneumatic changed their display name from ribosomerocker to pneumatic. | 10:28:51 |
|  Acid Bong joined the room. | 12:09:45 |
| Acid Bong | why does Dnsmasq service add a user and a group, but not use them? | 12:36:02 |
| Acid Bong | oh, it uses a CLI argument, got it | 12:42:28 |
 kdn | got a weird issue after setting up VLANs over ~7 different devices: when connected through AP that has VLAN 3547 some (eg: facebook works, hacker news dont) of the SSL (HTTPS) handshakes keep timing out and are retried in a loop, connecting to the same switch over ethernet works just fine
there is basically: AP (EAP773) -> zyxel switch -> mikrotik switch -> openwrt router (LAN on 3547) | 13:12:45 |
| kdn | the working/not working set of domains seem to be consistent across devices (laptop, phone etc.) | 13:13:23 |
 Molly Miller | that sounds like it could be an mtu problem | 13:14:53 |
