Site Map - skip to main content

Hobby Public Radio

Your ideas, projects, opinions - podcasted.

New episodes Monday through Friday.


hpr2913 :: Windows, SDN, and Firewalls

Being a Windows User for the past 3 years, Information on SDN, and a DIY approach to a home Firewall

<< First, < Previous, Latest >>

Hosted by Beto on 2019-10-02 is flagged as Explicit and is released under a CC-BY-SA license.
Tags: Windows, Firewalls, SDN.
Listen in ogg, spx, or mp3 format. | Comments (1)

Part of the series: Networking

This series will try and explain the basics of networking to the listener as well as introduce more detailed topics.

Intro

Last Upload was hpr1468 March 19, 2014 

python

>>> print (D.today() - D(2014, 3, 19)).days

1999

>>> 2000/365

5

https://unix.stackexchange.com/questions/24626/quickly-calculate-date-differences

In the last 5 years:

  • Traveled the world.
  • Deployed a lot of things for work.
  • Taken on a new role which moves me from Datacenters to Networks.
  • Learned a lot about Operations, Datacenter Infrastructure, People around the world, and why it is important to have your house in order.
  • Read over 3 dozen books.
  • Paid off debt and focused on long term financial goals.
  • Humility, Humanity, and Harmony: Three things I have continued to strive for in my personal life, work, and hobbies.

Let's Start The Show off in the wrong direction

Windows

Sublime Text 3

  • Fantastic Text editor and very powerful. I use this to quickly parse data using regex searches and push this to spreadsheets or other tools that allow me to organize data quickly. Overall Great tool for anyone

Summary:

  • Overall: The importance of being an everyday Windows User has allowed me to focus on solving problems in different and unique ways. I've found that the way I use Windows is not the same as most normal Windows Users. I live most of the time inside of Chrome so Windows is just another OS to get my Chrome Browser running.
  • Observation: Windows has definitely matured over the past 10 years. I find myself enjoying the time I save using Windows 10.
  • Contradictions: I still use Linux, but as a VM to work on things that I just can't do inside of Windows.

Web Stuff

  • Regex
    • Test and debug your regex. It is a great tool that combines pastebin and regex debugging. This allows you to share your regex with other by simply using a link. There is a lot of useful information on the site about what each portion of your regex is doing.
    • https://regex101.com
  • Maps
    • USGS Maps
      • Very nice site that allows you to download PDFs of 1:24000 or 7.5 minute Maps. You can print these off and use a Map grid tool to navigate your journey. This is kind of an analog tool but you are downloading the maps to your computer or phone. Good to have maps saved offline while you hike, that way you don't get lost.
      • https://store.usgs.gov/map-locator
  • SDN Information
    • If you're just starting with Software Defined Networking or are already working with it in a production environment, there is much to learn but very few places to find aggregated information. The GitHub Page called awesome-sdn has tons of links on NOS,Controllers, Libraries, and more. I have A couple of Northbound network and Aruba switches at home to use with my SDN projects. I highly recommend you start getting familiar with network automation using ansible or other automation best practices at the least. For the more technical stuff definitely start looking at SDN.
    • Awesome-SDN
    • Northbound Networks SDN Devices
    • ZeroTier is an example of SDN WAN or Edge Networking

Home Hacks

  • Home Phone
    • Cheap way to have a home phone

Firewalls

  • Off the shelf vs DIY options
    • Off The Shelf Ubiquiti Option
      • Ubiquiti "SDN" Like FW decent enough for homes with 100Mb/s Uplinks but not for homes with 1Gb/s uplinks.
      • USG3 can't handle IPS throughput past 50Mb/s
      • USG3 can't handle FW PPS past 400Mb/s at 100B packets, which is around 500,000 PPS
      • The Ubiquiti alternative would be to spend money on an XG which is well over $1000 USD.
    • DIY Option
      • The best alternative would be to purchase a used SFF PC with at least 1 Gb onboard NIC and 2 PCIe x16 or x 8 lanes. This would allow for 10Gb NIC options
      • 4x10Gb Intel Nics are a steal
      • or 4 x 1Gb Nics which are an even better deal.
      • Going SFP+ is a great option because you can use Copper or Fiber Modules in the same NIC card.
  • Summary
    • The most important part about the SFF Option, you get to use a xeon processor, at least 32 GBs of RAM, and install up to 4 HDDs in the System. You can even install a PCIe NVME or M.2 Sata using a PCIe peripheral.
    • For software, PFSense or Sophos XG will be great options. If you really want to get technical, load up a hypervisor and then install the Firewall as a VM. This would allow you to leverage the SFF system for more than just a FW and allow for easy testing of other types of FW solutions.
  • Hardware Info
  • Firewall OSes

Comments

Subscribe to the comments RSS feed.

Comment #1 posted on 2019-10-02T19:50:19Z by ClaudioM

+1 on Chocolatey Recommendation

Really enjoyed the episode. I've known about Chocolatey for some years now and it's been a godsend for me when I have to use Windows at work (I primarily use Linux and OpenBSD). I actually have a scheduled task that runs the "cup all -y" command daily (this command sequence upgrades all packages installed via Chocolatey and accepts all prompts). I also use MSYS2 for a proper Unix-like shell with pacman for running updates so that I can use all the CLI apps I use on Linux/OpenBSD. PSTools is another suite of tools that I can't live without.

Ultimately, one needs to use the tools that work for them, whatever that is. If it's Windows or macOS, great. If it's Linux or a BSD or something completely different, great. If it's TempleOS, I'll have to raise an eyebrow, but still, great. :-)

<< First, < Previous, Latest >>

Leave Comment

Note to Verbose Commenters
If you can't fit everything you want to say in the comment below then you really should record a response show instead.

Note to Spammers
All comments are moderated. All links are checked by humans. We strip out all html. Feel free to record a show about yourself, or your industry, or any other topic we may find interesting. We also check shows for spam :).

Provide feedback
Your Name/Handle:
Title:
Comment:
Anti Spam Question: What does the P in HPR stand for ?
Are you a spammer →
Who hosted this show →
What does HPR mean to you ?