| 14 Jan 2026 |
 K900 | Something like OONI maybe idk | 16:26:31 |
| K900 | Basically I want something that will quick scan a bunch of different known good endpoints and track that and ideally without me setting it up manually | 16:27:04 |
 hexa (clat on linux when) | yeah, sounds like ooni | 16:27:20 |
| K900 | The stupid thing about OONI is that I don't want to run OONI because I have a weird split routing setup and my data will be bad | 16:28:54 |
| hexa (clat on linux when) | but you could exclude it from the split routing? | 16:30:13 |
| K900 | Jank | 16:40:11 |
| K900 | But possible | 16:40:14 |
 elisaado [moved to @elisaado:elisaado.com] | ugh I've been procrastinating writing a router in NixOS for way too long | 23:14:58 |
| 15 Jan 2026 |
 kdn | did it last year and I barely remember what is what now xD | 14:39:32 |
| elisaado [moved to @elisaado:elisaado.com] | I'm aiming to replace VyOS in my stack, because well, VyOS | 14:41:08 |
| elisaado [moved to @elisaado:elisaado.com] | is using the networking.* fine if you set networking.useNetworkd = true;, or does it still use legacy/bespoke bash scripts? | 14:45:41 |
| elisaado [moved to @elisaado:elisaado.com] | oh I should have read the description | 14:46:01 |
| K900 | Depends on which options you use | 14:46:06 |
| elisaado [moved to @elisaado:elisaado.com] | for future reference, "Whether we should use networkd as the network configuration backend or the legacy script based system. Note that this option is experimental, enable at your own risk." | 14:46:09 |
| K900 | But also honestly just don't | 14:46:10 |
| K900 | The mapping to networkd is not entirely obvious | 14:46:16 |
| K900 | And you probably don't want to have two sets of semantics in your head | 14:46:27 |
| K900 | It's a migration aid | 14:46:33 |
| elisaado [moved to @elisaado:elisaado.com] | fair | 14:46:35 |
 adamcstephens | i agree. just use networkd native options. | 15:09:29 |
| adamcstephens | especially for something like a router | 15:09:42 |
| hexa (clat on linux when) | last time I checked the mapping was also incomplete and you don't get any feedback for things that won't get applied | 15:13:14 |
| 16 Jan 2026 |
|  Marcel joined the room. | 00:52:37 |
| adamcstephens | huh, openvswitch can be configured to drop privileges to a non-root user. yet our very barebones module does not do so | 02:48:50 |
| 17 Jan 2026 |
|  @marcel:envs.net changed their display name from Marcel to Marcel (@). | 23:44:12 |
| @marcel:envs.net changed their display name from Marcel (@) to Marcel => @me:m4rc3l.de. | 23:44:56 |
| 18 Jan 2026 |
|  magic_rb joined the room. | 13:00:53 |
| magic_rb | hi, im here from a different account cause my HS is down | 13:01:22 |
| magic_rb | im seeing a very weird issue with wireguard, my network topology is server -- managed l3 switch -- banana pi r4 -- pppoe -- internet. for some reason if the pppoe link drops then wireguard cant reach my VPS on the internet. The packets from the VPS arrive to my server, but then my server's responses get lost to the void | 13:02:57 |
| magic_rb | ive ran tcpdump and nft monitor trace confirming that my server does send out the packets, yet my banana pi r4 doesn't see them... | 13:03:31 |
