Messages

You've just created a few questions...

How are you using the eSIM? Did you install a modem in the computer or do you have a computer that was already eSIM ready?

Internal or external antenae?

I'm thinking I need to pitch for a cellular connection at work for when the primary gets slow or down, with cloud this and cloud that, you need to be connected to use these features. Adding something like a cellular data modem into my firewall might be a good solution and multi-WAN between wired and cell connections.

I don't think you will see much benefit until you get a bunch of VPN connected.

Suricata is supposed to be multi-threaded, so this should help. It would be interesting to see how many cores are in use when you have just a few users.

Your power/heat/noise will likely be fairly high. I'd also couple this with a fair amount of RAM, at least 128GB, since it's probably DDR3 it should be cheap (last I bought was 96GB ECC for around $40usd on the used market). Lots of RAM also increases power/heat/noise.

PTP is out of my budget right now, but I really do need one to keep some Dante Audio based hardware locked to the same clocks. Eventually I'll build something or buy a Dante master clock for my network.

Probably magic. But I'd guess the receiver is doing all the hard work and just spitting out the time to the device. ASICs can be very fast in their tasks, and I'm also guessing that it really only uses a few satellites to get the lock and compares a few on a regular basis. You need 3 for decent timing, but I don't think 22 really does more than give a few really strong signals that allows lock to happen faster.

A hardware programmer like one of the many ch341a kits may be able to erase and upload a new BIOS if you have that BIOS extracted and it is not encrypted.

The exact steps are a little harder to know without working on that hardware. Here is an example of a process: https://www.badcaps.net/forum/troubleshooting-hardware-devices-and-electronics-theory/troubleshooting-desktop-motherboards-graphics-cards-and-pc-peripherals/bios-schematic-requests/3565262-hp-t740-thin-client-bios-dump

Looks like you need to create a free account and be logged in to see the images.

Hopefully someone from Deciso will see this post and comment on a recovery method, even if it follows the above programmer method.

Nevermind, I found it in the official documents. I also had to remember to check the allow community plugins on the plugins page. Hopefully I have the lab end set up correctly, I'll have to wait until later to try the laptop end and see if I can connect to any of the things on my lab.

Did a quick search and didn't see what I was looking for. Anyone have a short guide on setting up Netbird with OPNsense as one of the endpoints? I want to be able to access my lab from home, guessing the second endpoint will be the Windows client.

I'm not seeing the GIANT-LOCKED error, which download are you trying to use? I think I had problems with one of the installers and ended up with the VGA version working best. I also use Rufus on Windows to "burn" it to a USB drive.

I'm surprised it worked after the first reboot, that's where mine was locking up, even with keyboard and mouse still attached. Mine was a KVM switcher so maybe that was part of it.

Is there an easy way to report this to BSD for possible fixes? We've had this for a few different major updates now. I say BSD because PFsense and Truenas Core did the same things, but I did not try and load one of the BSD OS to see if "regular" BSD (open, free, etc.) had this problem.

[edit] Reading back through this... I have no idea where I put the screenshots I took of this fix. Obviously I never made it back around to typing this up for future use, even though I have a T740 that I can swap from Linux workstation to OPNsense in my lab. The T620 went in the lab for now but it's old and slow.

[edit 2] found them, I guess I should type this up for myself at some time. Wish I was able to capture them in a smaller windows, all are 1920x1080 which makes for difficult reading when you throw them into a PDF.

I have a cheap GNSS device that I've used for a few years, accuracy always matches my phone within human perception. You can get the version without display for $80 on ebay, or more for the version with display, and more again for the version with the 90 meter external antenna. In theory it's accurate, but I don't have a good PTP source to check it against.

TF-NTP-Lite

And all that said, the prices have doubled since I bought mine. I will say the external antenna made an impact on the number of satellites tracked and how quickly it locks. I have one of the shorter antenna versions in my lab with antenna positioned near a window, good enough with carrying around 10-12 satellites, the roof top antenna often pulls 22+ satellites.

With the announcement of 25.10 for Business, does this require a manual button push to get it going, or will we be able to schedule this like minor updates? I saw a note in the 25.4.3 Business that adds the option to move to 25.10 and thought I would ask since I misunderstood the path to the last major update.

With scheduling being what it is, I'm going to target sometime next week to do this upgrade.

HP T740 will be around 25-30 watts at low usage, will get up to 65 watts when really doing a lot of work. That's with an Intel x520 dual port card with a DAC in one port and gigabit module in the other, also with an a+e Intel i226v card installed. Had SATA system drive and NVME data drive as well, and with 64GB of ram installed. Probably 20 watts as configured with OPNsense and normal household workloads. The x520 based card was a Supermicro that are known to be a lower power draw, I think it is rated at 5 watts.

I'm not sure what my quad port i350 based card will draw

n305/n355 or higher might still be decent choices, something I need to consider as a choice instead the OPNsense hardware I wanted to buy, money being the object.

Are you paying above the home price for ZA? If so then it looks like you should hopefully have multithreaded performance.

All of this discussion changes if you move into PTP, no local clocks are solid enough to keep the tolerance over a several hour period. And PTP is another security measure that some places are rolling out, if you aren't on time, you get no access to the requested resource. Also becoming the default sync for audio and video over IP. SMTPE ST2110 leverages PTP heavily, not for security but for signal sync. This replaces things like BlackBurst and Tri-level sync and since it's adaptive, it's more accurate and finer grained too.

Kind of of topic, but something people in IT should be thinking about incase they ever work on system at a TV station. https://blogs.cisco.com/industries/take-your-st-2110-workflow-to-the-next-level