| 10 Aug 2021 |
 andi- | Sadly seems like it doesn't do IPv6 forwarding 😐️ | 18:35:48 |
 casey © | i have no idea why that's a thing still. | 19:19:59 |
| 12 Aug 2021 |
|  ajz changed their display name from Mate Hajzso to ajz. | 19:24:15 |
| 13 Aug 2021 |
|  nixinator joined the room. | 01:58:27 |
|  Samæ left the room. | 08:23:15 |
|  jackinloadup joined the room. | 23:11:36 |
| 14 Aug 2021 |
 eyJhb | Trying to block Google DNS with nftables using
define google_dns = { 8.8.8.8, 8.8.4.4 }
table inet filter {
...
chain output {
type filter hook output priority filter; policy accept;
ip daddr $google_dns drop
# udp dport 53 ip daddr $google_dns drop
# tcp dport 53 ip daddr $google_dns drop
}
...
}
anyone that can point at what I am doing wrong?
| 20:05:20 |
| eyJhb | Needed to add it to the forward chain. | 20:19:51 |
| 15 Aug 2021 |
| nixinator | In reply to @eyjhb:eyjhb.dk
Needed to add it to the forward chain. interesting, may i ask what the use case is? | 06:28:59 |
| eyJhb | Chromecast having a hardcoded DNS to Google DNS. I run a split DNS instead of setting up NAT for my services, so that means Chromecast could not access my Jellyfin server (ie. jellyfin.mydomain.dk would point to my external IP for my Chromecast, as it did not use my internal DNS). | 07:40:20 |
| eyJhb | But if you block Google DNS, it will then use your local DNS instead. | 07:41:03 |
 hexa | Just dnat to your own resolver | 13:08:21 |
| eyJhb | In reply to @hexa:lossy.network
Just dnat to your own resolver I considered doing that as well.
I am unsure what the most pretty solution is 🙃 | 15:02:34 |
| eyJhb | At some point we had a discussion about having a NixOS WiFi access point. I remember some hardware being mentioned, but I can't remember the name of the hardware. Anyone that remember which hardware, or know of any which would be suitable? | 15:18:53 |
 CRTified | In reply to @eyjhb:eyjhb.dk
At some point we had a discussion about having a NixOS WiFi access point. I remember some hardware being mentioned, but I can't remember the name of the hardware. Anyone that remember which hardware, or know of any which would be suitable? I wasn't part of that discussion, but I could imagine that the pcengines APU devices were mentioned, as they're x86 and are intended for DIY networking https://pcengines.ch/apu2.htm | 15:20:39 |
| eyJhb | Thanks, it was exactly those that was mentioned ! :) | 15:21:16 |
| hexa | Limited to Mini PCIe though | 16:13:14 |
| hexa | Like you can get 2r2t AC, but certainly not AX | 16:14:28 |
| eyJhb | Any recommendations for something that can do AX? Just looking around atm. Could be interesting to set such a device up. | 16:19:31 |
| eyJhb | I also seem to remember that it is possible to "flash" the Ubiquiti APs | 16:19:48 |
| nixinator | if i need a nice system to run as a nixos router. what would i use? | 17:09:28 |
| eyJhb | nixinator: The APU2 seems nice for that as well :p I run some SuperMicro stuff at home. Kind of overkill. | 17:10:53 |
 toonn | I have no experience whatsoever but the BananaPi stuff I saw mentioned ages ago does look sexy. | 17:11:13 |
| nixinator | yeah, low power would be nice, and lots of physical ethernet ports at 10gb/s or aboive. | 17:11:27 |
| toonn | "Kind of." 🙄 | 17:11:31 |
| nixinator | i also want the moon on a stick. | 17:12:03 |
| eyJhb | I really want to try out the bananapi... | 17:20:01 |
| eyJhb | It was my initial choice actually. | 17:20:05 |
| nixinator | thanks for the suggestions, i will check them out, see if i can source them | 18:32:07 |
| CRTified | In reply to @toonn:matrix.org
I have no experience whatsoever but the BananaPi stuff I saw mentioned ages ago does look sexy. Which one exactly? The BPI-R64 seems to be the most powerful as far as I can tell | 20:47:17 |
