Laptop Wifi causes network congestion

August 23, 2017

This happened to me on an Windows 10 HP EliteBook 840 G4 laptop used for work.  As soon as it connected to the home wifi, it would congest it and send ping times as high as 2000ms.  I just uninstalled the devices out of Device Manager, reset the network settings, and rebooted.  Resolved.

However, I only noticed this issue after having the laptop for several months because I have it dual booted with Debian Stretch.  Hardly go to Windows side.  #linux #debianfan #opensource

FreeBSD 10.3 OpenVPN Server

July 13, 2017

How to install an OpenVPN Server and allow all traffic (including internet) thru the VPN server.

Setup –
FreeBSD 10.3 Server behind a PFSense box
Windows 10 client

I followed this guys site …

Link: https://ramsdenj.com/2016/07/25/openvpn-on-freebsd-10_3.html

Also follow OpenVPN documentation on “pushing” DNS and routes if you want, link is below. You’ll need to add the line below to your openvpn.conf file to push all traffic thru the VPN server as a gateway…

push "redirect-gateway def1"

Link: https://openvpn.net/index.php/open-source/documentation/howto.html

He is spot on, in his write up but two things he doesn’t tell you. You have to turn up either PF or IPFW and NAT. Also, he doesn’t make you aware of the “tls ta.key” setting. You can disable this or enable it in the openvpn.conf file. The “ta.key” has to be copied to both client and server. I disabled mine as after reading, its not a big security threat.

Once installed and you can connect to your server from your client, its time to turn up a NAT.

I used PF. Follow the FreeBSD Handbook setup for PF. Below is my pf.conf file. It is very simple. I do not have any firewall features because my server already sits behind a firewall.


nat on re0 from any to any -> (re0)

pass in all
pass out all keep state

pass in on tun0 from tun0:network to re0:network keep state
pass out on re0 from tun0:network to re0:network keep state

Once your NAT and PF is working, you should be good to go.

Ubuntu 14 LTS, GNS3, IOU install

December 13, 2016

1. Install Ubuntu 14 LTS and run updates till its fully updated.
2. Install GNS3 per GNS3 website instructions. Follow link…https://www.gns3.com/support/docs/linux-installation

sudo add-apt-repository ppa:gns3/ppa
sudo apt-get update
sudo apt-get install gns3 gns3-gui

If you want IOU support:

sudo dpkg –add-architecture i386
sudo apt-get update
sudo apt-get install gns3-iou

3. download IOU image files for L2 and L3 ios. (Google)
4. download CiscoKeyGen.py (Google)
5. download iourc.txt (Google)
6. Put files downloaded into ~/GNS3/images
7. do a “chmod +x * ” inside the image folder to make IOU images and .py file executable
8. Run the keygen py file with “python3 CiscoKeyGen.py” inside the directory. Will give you the output for your iourc.txt file. Put that into your iourc.txt file instead of the gns-vm one.
9. Open GNS3, edit -> preferences. IOU Section, point the iourc.txt file to the directory.
10. Add images to the IOU section.
11. Add normal Cisco IOS images to the Dynamips, IOS Routers section if you want.
12. Go read GNS3 howto documents and off you go!

Windows 10 – 100% disk usage

March 17, 2016

Finally figured out why my little Acer laptop was extremely slow and (kinda) locking up on me. Open task manager and you’ll see 100% disk usage but nothing really taking it up. No single process was causing a shit storm. So that was confusing. What I found is if you turn off “SuperFetch” and “Windows Search” services in the services panel, it goes away.

Go into Control Panel, Admin Tools, then Services. Double click on both of those services and on the drop down box, mark “Disabled”. And you might as well stop them too or just reboot.

Fixed. Stupid Micro$oft.

FreeBSD delete pool mountpoints/data set

March 11, 2016

zfs destroy POOL/mountpoint

use destroy -r or -R if there are other sub mounts.

refer to this Sun cheatsheet Sun ZFS Cheatsheet

FreeBSD 10.2 – USB thumb drive full; but isn’t.

March 10, 2016

Command: df -h
Filesystem Size Used Avail Capacity Mounted on

/dev/da0p2 111G 111G -8.9G 109% /

Command: du -hs * | sort -h
root@nas:/ # du -hs * | sort -h

0B home
0B sys
3.5K dev
4.0K entropy
4.0K proc
8.0K COPYRIGHT
8.0K media
8.0K mnt
36K tmp
128K root
276K libexec
1.2M bin
2.8M etc
6.5M sbin
7.9M rescue
9.5M lib
481M boot
491M var
1.8G usr

root@nas:/ #

Finally found a thread on here after searching some more…
https://forums.freebsd.org/threads/32255/
Ran the following command and it repaired blocks
# fsck_ffs -f /dev/da0p2
Rebooted and all is fixed.

Move ZFS pool from FreeNAS 9.3 to FreeBSD 10.2

January 12, 2016

Got tired of FreeNAS 9.3 being flaky and overkill. Don’t need all that it offers anyways. I had two 3TB hard drives that are a mirror group. ZFS will automatically see these disk.

zfs_enable=”YES” in /etc/rc.conf

**COMMANDS**
zpool import = shows mounts available

zpool import (pool name)

zpool export (pool name) = to umount the drives.

zfs set mountpoint=/dir/dir (pool name)

zfs will remember the set mount point for the next reboot. All good.

Cisco Nexus 5K’s – vPC with FEX configuration

July 31, 2015

I was beating myself in the head a little with trying to configure FEX ports on two different 2K’s to be used in a vPC.  The “verify” command would be successful but the “commit” command said it failed and that the vPC already existed.   Come to find out after opening a TAC case and then actually finding the link below, you do NOT need to specify a vPC number when configuring a port-channel on two different FEX’s.  The Nexus will do this automatically for you, with a very high number.  The reason it does this is because these ports aren’t local and they are shared with another 5K.  So dont worry, just because you don’t see the port-channel config with a “vPC ### ” statement, doesnt mean its not in a VPC.  Do a “show vpc” and you’ll see it down at the bottom.   Bottom line, you build a port-channel just like you normally would, just no vpc command needed.

Link reference:
https://supportforums.cisco.com/discussion/11887661/vpc-fex-interfaces

FreeBSD 10.1 with MATE Desktop, Slim DM, X11vnc

May 20, 2015

MATE is a great desktop and seems to be very stable and quick with FreeBSD.  Follow the link below on setting it up, this person gives a good basic tutorial.

http://www.unixmen.com/install-mate-desktop-freebsd-10-1/

A more in depth install is covered here… https://cooltrainer.org/a-freebsd-desktop-howto/

If you want to get Slim to auto login, you can do that be editing the slim conf file…

# ee /usr/local/etc/slim.conf

down towards the end, uncomment the “default_user” field and to the right, put your default user name.  Then just below that, uncomment auto_login and set it to “yes”.

I also wanted to get Remote Desktop working so I could VNC into my box.  X11vnc is the best for this.  It will use the current display.

# pkg install x11vnc

# x11vnc -storepasswd    (then put your password in, it will put it in a file .vnc/passwd)

# ee vnc.sh   (create a script to enable VNC server to listen and stay on even after you disconnect)

#!/usr/local/bin/bash    or    (  #!/bin/sh   if you are using default shell )

x11vnc -rfbauth ~/.vnc/passwd -forever -display :0 &

##### exit and save the file.

# chmod a+x vnc.sh

# ./vnc.sh

You are good to go, you’ll see an output but just hit enter key to clear it.

If you want VNC to come up at start up, on your desktop go to System > Preference > Startup Applications.  There put in a name for your App, the directory to the vnc.sh we just made and a comment if you want.  Thats it.  Not it will start up every time you reboot.

TCP Dump and Cisco

March 18, 2015

Log onto the L3 switch.

Here is the commands on the C6 that provide monitoring (sniffing) of a vlan to a specific port. The destination port is the port thats connected to eth2 on COSNIFFER01.

monitor session 1 source vlan ##
monitor session 1 destination interface Gi8/2 (interface)

Change the first line to whatever vlan you are wanting to capture.

After that, jump back onto cosniffer and run the following command…

tcpdump -i eth2 -nn -s0 -w filename.pcap ‘host 192.168.52.XX’

Change whats in red. Name your file and make your host what specify device or IP you are wanting to capture in the traffic. You can also do multiple devices or IP’s like so….
‘host x.x.x.x and host x.x.x.x’

Hit enter on the command. Let it run for a certain amount of time.

CTRL-C to end the command.

User WinSCP to copy the .pcap file you just made to your PC and open it up with Wireshark to examine the traffic.

Good Luck!