Log for
電訊台
同埋老細work from home我唔返公司會無人知
你老細心諗 班細既work from home即係唔知佢無返
80mbps wan vpn throughput算唔錯
how see AWS lightsail make a VM then remote desktop
unencrypted bw係300mbps each
GCP Windows Server 2012 都有呢D功能
[ 4] local 192.168.0.10 port 5001 connected with 192.168.0.9 port 52928
[ ID] Interval Transfer Bandwidth
[ 4] 0.0-10.0 sec 95.6 MBytes 80.1 Mbits/sec
[ 5] local 192.168.0.10 port 5001 connected with 192.168.0.9 port 52932
[ 5] 0.0-10.0 sec 93.4 MBytes 78.2 Mbits/sec
Point to point comm點解要用broadcast呢
我發覺依家做Access VPN 搵L2TP Docker都夠做
定係L2TP唔食multithread/cpu resources呢
雖然我理論上係可以掛一部機SSH Tunnel然後Bind隻NAS
以前會直接出街+Windows TightVNC AES Module
X Redirection真係好鬼慢,又隨時會斷線,係LAN用都係咁5
SSH tunnel is good enough
另外係Iptable drop non 127.0.0.1既tcp 5901
!192.168.0.0/16
!10.0.0.0/8
!172.16.0.0/16
*nat
:PREROUTING ACCEPT [4068:653425]
:INPUT ACCEPT [1818:490331]
:OUTPUT ACCEPT [617:45582]
:POSTROUTING ACCEPT [626:47542]
:DOCKER - [0:0]
-A PREROUTING -m addrtype --dst-type LOCAL -j DOCKER
-A OUTPUT ! -d 127.0.0.0/8 -m addrtype --dst-type LOCAL -j DOCKER
-A POSTROUTING -s 172.17.0.0/16 ! -o docker0 -j MASQUERADE
-A POSTROUTING -s 172.17.0.2/32 -d 172.17.0.2/32 -p udp -m udp --dport 4500 -j MASQUERADE
-A POSTROUTING -s 172.17.0.2/32 -d 172.17.0.2/32 -p udp -m udp --dport 500 -j MASQUERADE
-A DOCKER -i docker0 -j RETURN
-A DOCKER ! -i docker0 -p udp -m udp --dport 4500 -j DNAT --to-destination 172.17.0.2:4500
-A DOCKER ! -i docker0 -p udp -m udp --dport 500 -j DNAT --to-destination 172.17.0.2:500
COMMIT
*filter
:INPUT ACCEPT [370704:461530316]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [143080:7806403]
:DOCKER - [0:0]
:DOCKER-ISOLATION-STAGE-1 - [0:0]
:DOCKER-ISOLATION-STAGE-2 - [0:0]
:DOCKER-USER - [0:0]
-A FORWARD -j DOCKER-USER
-A FORWARD -j DOCKER-ISOLATION-STAGE-1
-A FORWARD -o docker0 -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -o docker0 -j DOCKER
-A FORWARD -i docker0 ! -o docker0 -j ACCEPT
-A FORWARD -i docker0 -o docker0 -j ACCEPT
-A DOCKER -d 172.17.0.2/32 ! -i docker0 -o docker0 -p udp -m udp --dport 4500 -j ACCEPT
-A DOCKER -d 172.17.0.2/32 ! -i docker0 -o docker0 -p udp -m udp --dport 500 -j ACCEPT
-A DOCKER-ISOLATION-STAGE-1 -i docker0 ! -o docker0 -j DOCKER-ISOLATION-STAGE-2
-A DOCKER-ISOLATION-STAGE-1 -j RETURN
-A DOCKER-ISOLATION-STAGE-2 -o docker0 -j DROP
-A DOCKER-ISOLATION-STAGE-2 -j RETURN
-A DOCKER-USER -j RETURN
COMMIT
但係mobile似乎要用full tunnel mode
所以橫死掂死攞走行李嘅expected value最高
90 seconds evcuation ? Safety demo video?
Planes are designed to evcuate in 90 seconds
appearently this is not happending in China
China is leading in every single aspect
so minus 1 star from 5 star
Steve Fan DDoS Inc
Confidentiality certified
can you try something new im getting bored
THen do sth new like sql injecting someone's server
Bay Area Broadband limited
maybe rethink why you existed?
steve: fucking normies dont understand me
my secret cloud desktop done
because company laptop cannot use PGP
you still have other hardening
ssh over vpn over ssr over leased line over mpls vpn over l2tp
到底係Raspbian快左定係咩快左呢,依家上網唔疾既
@licson how to reduce vm disk io penalty?
應該用dynamic linking同static linking比🤣
servers cost < cloud cost
Though the initial cost for a HANA capable server is huge
But you save so much in the long term
不過無cloud就唔會興container 亦都唔會興microservice
cloud is more for web / api / backend services
Licson Inc is wellknown for oversel?
要咁計:
server cost + sys admin cost vs cloud cost + devops cost
server + sysadm + risk > cloud + devops + bandwidth
其實點解d公司prefer用AWS/Azure都唔用Digital Ocean?
我覺得係無on-call service support
同埋do一開始嘅名係靠build by developers for developers != for production
Big server is better then cloud, the dev dog don’t understand
而且你都知道DO oversell得幾勁架啦...
dedicated CPU and memory intense
fast deployment is important
Dedicated server is also fast deploy
Big servers ≠ slow deployment
remote servers -> slow deployment
There are so many ways to deploy physical servers
No la, all cloud is software server
You can have many dedicated server
Dev dog always cry for Cloud
但如果係細公司 sme delicate server未必最cost effective
No have cheap dedicated with unlimited bandwidth
There have unlimited traffic
me no money to buy dedi, individual dev dog
Cloud bill you per traffic
individual dev dog, no budget
Usd $250 can have a 1G unlimited dedi
前提是你的business真的有那麼多traffic
If you go AWS, how much for 1G bandwidth
If you don’t have customer, then no traffic
If no 24x7, that’s not a server
that's why cloud is filling this gap
not cloud server for reason
Ok, is it a part time website ?
it's call serverless (好似係
why server can only serve web????
You can use for VPN server
After you have a vM host, you can sell VM
咁咪可以on demand spawn encoder 做rendering
Encoder need super CPU and Ram
但如果有dedicated usage我個人覺得cloud係有優勢
其實container唔只係deployment有用, local development都方便左
同埋如果Enterprise grade 簽約個價同你retail有分別
企業客有account manager同你簽床單😊
cloud like dedicated server
cloud for dedicated servers