There has been a glimmer of hope for the CHR. I’ve come across a donor R210 with a power supply that is in brilliant condition, installed the power supply and it burst back into life. A good hour getting ESXi re-installed to the SSD I’d wiped and then reloading a CHR image onto it then carefully copying over the config and it’s just about ready to bring back into service.
I’ll be sorry to part ways again with the Hex and the FastTrack setup but this time around with the CHR I’ll be going for a really big QoS tree build.
Friday afternoon my beloved Dell R210ii decided to eat it’s
own PSU, completely rendering the box useless and along with it my CHR routing
my home network. It’s fine though as I made backups, which I stored within the
CHR, so can’t access them #feelsbadman
Never mind, I quickly pulled out my CCR1009 which I retrieved
from a scrap pile and whilst it had faulted 1 or 2 times had never completely
keeled over. I configured it up and replaced the CHR, after a few hours of
tweaking and trying to resume normality as well as activating fast track as CHR
can’t do that), home was up and running.
Monday morning, got some weird things going on in the
network, checked the CCR and it was reporting traffic on interfaces I knew
weren’t even connected as well as flapping on the SFP port which the other end
showed as solid. The CCR has now been marked for removal.
I am so thankful of having a “spare” RB750Gr3
Hex unit about though as that should keep the family quiet whilst I work out
where to go from here. Currently my poultry 55Mb connection won’t stress it but
I have been eyeing up a Virgin Media upgrade to 350Mb next which looks set to increase
to 500Mb in the next few months, who knows, Gigabit may be round the corner as
well. Either way, I’m not confident the little Hex can do that so back to the
drawing board and looking for a unit to suffice my needs.
I’ve got some really exciting hardware changes coming up which I’m hoping are going to help me along my quest to make better YT videos! I will be saying goodbye to spinning discs completely in my main rig and will be migrating to NVME for OS with the “old” SSD being the new recording drive for super fast writes to enable me to get bandwidth up and help with post recording cutting and shutting.
In addition to that there will be some sound upgrades which are probably going to be less of an impact on the videos but still. Upgrades are upgrades.
It’s been a while since I looked at updating this and that’s mostly due to how my working focus has shifted away from the firewall and onto some hotspot related things so the bulk of my research has gone into that however after a visitor to my website engaged with me regarding this I thought it the right time to drop this almost “final” implementation to my blacklist script.
As much as I’d like to have written a totally automated list that dynamically adjusted, there are far cleverer people out there doing this more or less as a day job. I’ve been using now the implementation from Joshaven, some loose geographic blocks and then the IntrusDave list from the MikroTik forum.
I’ve finished that up with a far less brutal approach on something to pick out port scanners and any other snoopers;
My first attempt at a brutal honeypot worked to a degree however it did cause some problems. I’m not sure totally how but Amazon Prime Video stopped working (Amazon servers port scanning me??) but I managed to block Amazon which wasn’t the most helpful thing at bedtime when my 4 kids are trying to watch Shaun the Sheep before bed. I’ve had to make some changes to it. The previously stated timeout has now been employed so sources that sniff about are now only timed out for 24 hours rather than permanently and I’ve also added in an extra rule for ICMP traffic as there were a couple of ICMP type packets getting through and the owners not getting blocked.
So far Amazon is working and this combined with a geographic black list in addition to the Joshaven blacklist and I’m now getting towards the place I want to be.