I'm familiar with the absolute basics of networking, but very little surrounding wifi.

I'm current using the modem-router-AP provided by my ISP, along with a couple repeaters. This isn't working well, and in areas of my house further away from my main AP, packet loss is often around 20% - near unusable. How should I improve this?

I can run some wires (within reason), and have multiple spare routers-APs to work with. I can also buy something new off the shelf if needed, but don't want to spend more than I have to. What would be the approach I should use? Like, is there a particular type of extender I should be using, or can I use multiple routers as a mesh or something?

Hello!

I've been playing around with self-hosting for a while now and I've started moving over to a VPS. At home I have a PC that's on more or less 24/7 with an *arr stack, jellyfin and some other services. They can only be accessed through Netbird. The services aren't that important, the data doesn't really need to be backed up since it's not very important. On the VPS, however, I would like to host some more critical services, such as:

• Vaultwarden
• Immich
• Gitea
• Overleaf

I want them available 24/7, even if I decide to distrohop and wipe my PC at home. The problem is how to structure all this. My current idea is to run Gitea and Overleaf out in the open behind some reverse proxy without authentication (Nginx or Nginx Proxy Manager). I'd like Vaultwarden and Immich to be on the same VPS, but, I don't want those services to be accessible to anyone but me, so I'd need some form of ACL or authentication system. I'm thinking of using Netbird for this, since I already use it on all of my devices.

So I would set up DNS records from within Netbird that would point immich.domain.tld and vaultwarden.domain.tld to the internal Netbird IP of the VPS. In the reverse proxy, I'd set up access control such that it only redirects the Netbird IP range to those services. On Cloudflare, I'd point git.domain.tld to the external IP of the VPS with proxy enabled.

Everything would receive HTTPS certificates, and I'd block incoming traffic on every port except for 80 and 443.

Is this a good setup? Any tips or recommendations? Any pitfalls?

Thanks!

Last thread here

Welcome to this week’s casual kōrero thread!

This post will be pinned in this community so you can always find it, and will stay for about a week until replaced by the next one.

It’s for talking about anything that might not justify a full post. For example:

• Something interesting that happened to you
• Something humourous that happened to you
• Something frustrating that happened to you
• A quick question
• A request for recommendations
• Pictures of your pet
• A picture of a cloud that kind of looks like an elephant
• Anything else, there are no rules (except the rule)

So how’s it going?

The negotiations were cynical bullshit in an attempt to make anyone in Iran who believed peace was possible or that the US would act in good faith look like a fool. This ensures only those who wanted war from the beginning in Iran look wise coming out of this catastrophe, which is mission accomplished right?

• LessWrong;
• Lobsters.

This post provides arguments, asks questions, and documents some examples of Anthropic's leadership being misleading and deceptive, holding contradictory positions that consistently shift in OpenAI's direction, lobbying to kill and water down regulation so helpful that employees of all major AI companies speak out to support it, and violating the fundamental promise the company was founded on. It also shares a few previously unreported details on Anthropic leadership's promises and efforts.

Anthropic has a strong internal culture that has broadly EA views and values, and the company has strong pressures to appear to follow these views and values as it wants to retain talent and the loyalty of staff, but it's very unclear what they would do when it matters most. Their staff should demand answers.

To be fair it was the Fox News AI which did that, which we must note according to the AI Law is not legally liable for incorrectly representing reality and does not necessarily represent the views of any of the owners or staff at Fox News unless in cases it aligns with their objectives in which case it does. The Fox News AI can also serve jail time as it is sentient and thus legal action against illegal misrepresentation and journalistic malpractice by Fox News management can be focused on the Fox News AI leaving all other personnel free to continue to contribute to the job market while justice is being served.

• Ticket;
• Wikipedia;
• Forum;
• Hacker News.

Hey guys, so I've been self hosting for 2 years, making small upgrades until I reached this point where I replaced my router with one of those Chinese fanless firewalls running Intel n150 and running a proxmox homelab.

I am self hosting headscale with many of my buddies connected, including ny own services. Everything was working great until I setup OPNsense.

The firewall was not easy to setup, but after I set it up, I discovered odd behaviors from tailscale.

The firewall was blocking all connections from the ip 100.60.0.0/24, I had to explicitly allow it and change the forewall state to hybrid

What happens is that my LXC containers running tailscale would receive requests from tailscale0 interface but respond via LAN.

Apparently as I understood, consumer routers have assymetric NAT so that works fine, but not with opnsense.

Every guide I read online talks about installing tailscale on the opnsense router directly but I do not want to expose it to the tailscale network.

For now temporarily I set an ip route to tailscale0 and resolved it that way temporarily, but I still cannot get a solution that can help without compromising the firewall.

It's also very cumbersome to do this for 50+ LXC containers over and over, even with running systemd scripts a problem might happen in the future

If you guys have any experience with this it would help a lot.

Microsoft has integrated OpenAI's new Sora 2 model into Bing Video Creator, offering all users free access to high-quality AI video generation with audio.

BUDAPEST, March 5 (Reuters) - Hungary will force neighbouring Ukraine with "political and financial tools" to reopen the key Druzhba pipeline carrying Russian oil ​to Hungarian refineries, Prime Minister Viktor Orban said on ‌Thursday.

A new organization launched to fight public corruption is suing President Trump and his attorney general, accusing them of flouting the law when they blessed the sale of TikTok's U.S. assets to White House allies.

The case, filed in a federal court in Washington, D.C., accuses the Trump administration of ignoring legislation designed to stop the spread of Chinese propaganda — and instead helping to broker a partial sale to businessmen close to Trump.

Original Study https://doi.org/10.1093/pnasnexus/pgaf233

cross-posted from: https://infosec.pub/post/42987861

Emmanuel Damas, 56, died while in the custody of U.S. Immigration and Customs Enforcement, after struggling to receive timely medical care for a worsening toothache, Chandler City Councilwoman Christine Ellis told the Arizona Daily Star Tuesday afternoon.

cross-posted from: https://scribe.disroot.org/post/7581331

Australia and Canada on Thursday signed a series of new agreements on critical ​minerals, Canadian Prime Minister Mark Carney said, including Australia ‌joining the G7 minerals alliance.

Western nations have been attempting to diversify their supply chains away from China, which still controls the majority of production and ​processing of critical minerals, essential for semiconductors and defence applications.

...

The two countries [Canada and Australia] produce around a third of global ​lithium and uranium, as well as over 40% of global iron ​ore.

Canada believes that the best way to address the issue of concentrated supply ‌of ⁠critical minerals is through a production alliance or a buyers' club rather than just a price floor, Energy and Mining Minister Tim Hodgson [said].

...

As well as critical minerals, Australia and Canada are also expected to deepen cooperation in areas including defence ⁠and ​maritime security, trade and artificial intelligence, ​Carney's office said ahead of the visit.

...