That does seem excessive. Change it so that it only sends an update to dyndns when it actually changes.
Having a new ip every 30 hours also seems pretty aggressive. I guess the DNS change might be slow to populate servers in that time if it is a “weird” top level domain.
Dyndns really shouldn’t affect your connection, as long as you have a local client that updates your record automatically.
I use jellyfin together with caddy and it was pretty seamless to setup. I configured the caddyfile to redirect my incoming domain to my local ip and the rest worked automatically. It sets up a legitimate certificate for the domain using lets encrypt and automatically renews it.
When you have an encrypted connection, the isp can’t see what is being sent between you and the webserver. They can however see your dns-requests unless you have dns over encryption enabled.
The only security measure beyond keeping things up to date that i would recommend is to have a geo-blocker enabled for incoming traffic to your network.
Pension is the correct English term. 401k doesn’t mean anything unless you’re american.
Your pension is tied to these companies stocks. I can pretty much guarantee that “your” pension fund owns quite a few of these stocks.
But, and this is the important part, that isn’t your pension. It is the pension for those that are retired right now. There is no saved stack of money that you earned during your life thats waiting for you. Unless there is an equal amount of tax paying workers by the time you retire, you wont be getting that pension.
Soft rules have never applied to the internet.
Things that you wouldn’t do afk, just because “those are the rules”, doesn’t apply when every empathy damaged person in the world with an internet connection can break them.
Well. The segmentation is to avoid security holes from Rogue third party devices. If you can access my pc vlan that only exists on my wired pcconnection, then you have indeed broken in to my domain. Letting the things that doesn’t give a shit about security have their own network is just sanity/sanitary.
There are infinite undocumented “things” integrated with Microsoft solutions. Just of the top of my head, here are couple that i’ve encountered
SCADA software
Entire business critical database application written in access
Hundreds of tailor made order documents for logistics that are made with Excel
Accounting software that only runs on Windows
The immense cost of moving all of your projects from the web that is teams/sharepoint/OneDrive
I mean. Someone will have to maintain the same kind of infrastructure that visa and mastercard does. It would require a monumental amount of investment. Not to mention that it can, under no circumstances, go down during peak use.
But they chose Erdogan.
It’s been well documented that whatever Ataturks plan was for a united Turkey, was killed by religion.
Yeah, it was widely reported on. Religious people voted for religious nutcase. Tale as old as time.
Funny. Thats what the turks voted for.
But thats none of my business.
You guys buy from Amazon?
I think the packets take one way in, and get routed a different way out.
It looks incredibly convoluted. My best guess is that traffic hits 172.168.1.254 and gets routed out on the internet and doesn’t pass the dmz.
Then i assume there is something wrong in the routes from your lan when returning traffic that got initiated through the internet opnsense. If you can see traffic hit the LAN network, all should be well on the way in.
Perhaps some sessions on the way time out due to low TTL. I’ve experienced drops of traffic when there are too many hops.
Its possible, depending on how you’ve setup your NAT, that the traffic cant return due to coming from a public ip.
Why do you have public ip-span configured as LAN?
Sorry about my confused rambling 😅 Yes, the example was to demonstrate the difference between subnetting and vlan. Albeit simplified. What you said is right.
The poster i was responding to equated subnetting to vlans. I might have misunderstood what they meant though. It sounded like they wanted to use the same subnet per vlan, which wont work if you want them routed in the same gateway.
Reading it again they make it sound like you can’t subnet all of these networks on a switch without vlan, which you definitely can. I could for example connect 4 different devices on the subnet 192 168.10.x/24 and have them reach each other. I could also connect 4 more devices in the same switch but on a different network 192.168.20.x/24 and it would work.
Well, since you don’t actually enter a password to decrypt a bitlocker device, you can intercept the key data with physical connectors to the TPM
Bitlocker just makes it slightly more tedious to retrieve data. As long as you have all other components intact aswell.