Adding a Netgear EXT 6200 range extender to your network.

Uncategorized
This can be implemented as an extender or Access Point (AP).  Realistically if you can run a cable nearby and place the EXT 6200 somewhere near where you want to serve the WIFI signal you should.  That's what this is about. Run an Ethernet cable as close as you can to the area where you want to serve with the Access Point.  Plug in an Ethernet cable to the device.  Then configure. Alright, that seems sort of simple.  Anyone can do it.  But no, the problem comes with the Netgear firmware.  It demands you connect to the IP address of the AP or you connect to their www.wifiext.net address.  If you connect in this fashion it opens a bunch of problems.  First, how do you get the IP address of…
Read More

Macbook Pro boots with a white circle with a line through it.

Uncategorized
Others have identified this as a machine with the wrong OS on it, an incompatible version of the OS on a Mac.  However, I have found another cause. To resolve the issue if it occurs, if it is caused by circumstances like mine, you would hold option+command+R then go into recovery and choose time machine and roll back.  Then try again. In my case I saw the Mac had updates.  I selected to do the update which downloaded a 1.2gb file.  During that download process I noticed that this mac could have Catalina installed (a new version of the OS).  During this download the updater indicated that it wanted to reboot.  I cancelled that.  I let the Catalina downloader (no it hadn't installed anything, it was just downloading) go for…
Read More

Google’s Android prompting you to save passwords online. NO WAY. Not ever going to happen.

Uncategorized
This is one of those absolutely inherently bad policies -- to save your passwords online on a 3rd party's site.  It is one of those self-evident things such as all people being created equal.  We do not save our passwords onto a 3rd party site, especially Google's. I encountered this today and went looking for a way to turn it off, to turn off the prompt.  I'm someone uneasy with the idea that it is even there, because even if you say no they could still do it and you'd never know.  Google is known to be a company that tracks and monitors you at every angle, and giving them this sort of capability on Android is absolutely dangerous.  They have also been known to lie saying that they weren't…
Read More

Proxmox when launching a console in the WEB UI — Error: Permission denied to access property Symbol.toPrimitive

Uncategorized
One moment it worked the next it didn't.  Why proxmox would be fingerprinting the console is beyond me.  It shouldn't be. What's happening is that if you have canvas blocker then launching the console for a VM it can cause this error message.  Disable canvas blocker and you will be able to connect again properly. Now to find a way to keep canvas blocker enabled and get in.  As I said it worked one minute then not the next.  Did they update canvas blocker? I disabled it and launched the VM again from within Proxmox.  That worked.  I then turned canvas blocker back on and tried again.  Nope, wouldn't launch. I then decided to leave it enabled and I closed the browser and then relaunched and tried again.  This worked. …
Read More

Starting with Windows 10 version 1803 Windows 10 will no longer make copies of your registry files. This is quite dangerous and not having it can be of grave concern.

Uncategorized
Windows itself has one major failure and that is the registry.  This registry keeps all the settings for the operating system, the hardware, drivers, and varous components that go into making Windows work. https://www.ghacks.net/2019/06/29/microsoft-explains-the-lack-of-registry-backups-in-windows-10/ The problem is that this set of files that comprise the registry are no longer being periodically backed up by Windows 10 starting with Version 1803 and all subsequent versions. In my line of work having to deal with a bad registry can only be resolved by resorting to these backup files.  If the computer has a failing hard drive and this causes the registry to corrupt having a good version for the next reboot is important, even if it requires a little manual intervention.  Meaning, if I have to copy some files outside the OS…
Read More

Proxmox CIFS Network Storage Error “create storage failed: error with cfs lock ‘file-storage_cfg’: mkdir /mnt/pve/network-storage-backups/snippets: Permission denied at /usr/share/perl5/PVE/Storage/Plugin.pm line 1027. (500)”

Uncategorized
Samba needs to be configured (at the share location) to allow the user that you are connecting with to actually connect.  In Linux you can create a Linux user and grant that user samba access.  The samba password can be different than the Linux account password.  Before you can add a samba password to this user you must have created a Linux user.  If you already have a Linux user then you can just add that user to samba. Ensure you have your "smbpasswd -a" set for the user. This would be something like "sudo smbpasswd -a joe".  Enter the samba password that you want to add for this Linux user. On the Proxmox storage setup screen you enter the samba password instead of the Linux user's password unless they…
Read More

DNS Authentication with LetsEncrypt for wildcard certs with Namecheap as your registrar

Uncategorized
I'd been attempting to switch from http preferred challenges for cert renewal/verification.  The reason is that the certbot program fails in cases where if I have existing domains in the cert adding more domains or subdomains to existing certs fails.  Basically when you try to add new domains or where the subdomain is new to an existing domain that's listed in the cert, certbot using "--preferred-challenges http" fails with error messages that do not make sense to the average person, even those that that used Letsencrypt since their inception. In my case I had to add two domains to my cert and also to add a series of subdomains for each new domain to make the domain operate just like the existing ones would.  I also had to add a…
Read More

channel 3: open failed: connect failed: Connection refused

Uncategorized
When using SSH -L <port>:localhost:<port> <destination> it means you are trying to do an SSH port forward.  This means that any traffic normally bound to <destination> is routed to the machine you executed the command on until you close the SSH connection. If for instance you are trying to access the Proxmox webui which has its port active on 8006 you'd need something like: ssh -L 8006:localhost:8006 192.168.1.25 If it is an Internet connection obviously the 192.168.1.25 would be changed to indicate the appropriate IP address and -p <port>. Sometimes you will receive the message: "channel 3: open failed: connect failed: Connection refused" This means that you are trying to connect to a port that isn't broadcasting.  This could be because you are actually trying to connect to the wrong…
Read More

Proxmox/SSH/Rsync fun

Uncategorized
Everyone in my business knows that backing up is so utterly important that you just do it.  The more important the system is the more important it is to back it up.  For instance, backing up your web server/site is extremely important.  If you run your business, if you rely on that web server to communicate with your customers, then you must back it up.  What I'm writing about today isn't how you back up your server nor services, rather it's a tale about what's involved (considerations and pitfalls) in doing it.  Doing it right is important, and doing it right allows a quick recovery -- in the event of a potentially catastrophic failure of hardware or software.  Part of what I'm pointing out is that doing it consistent with…
Read More

Re-configuring Cables to make the most effective use of VLANs

Uncategorized
So, I am very strict on what comes in and goes out of my network.  Most of it is a privacy thing.  Without your privacy you have nothing.  Bear that in mind. I have pfsense set up and it uses something called pfblockerng-dev (the development version of the package) and within that is something called DNSBL (or Domain Name System Block List).  It works like the pihole except it is much more extensive.  Unfortunately it can get in the way as I fix customer computers and those need access to some parts of the Internet that I normally have blocked.  The machines generally are here for a short time and are here for cleaning and other types of repairs. With pfsense I set up a couple VLANs to keep the…
Read More