Conversation

Notices

1. Embed this notice
   pwm (pwm@darkdork.dev)'s status on Saturday, 15-Mar-2025 04:40:54 JST pwm
   Someone please explain HOW ip routes work because I have fucked something up in a subtle way that I do not understand what to do about
   • ✙ dcc :pedomustdie: :phear_slackware: likes this.
   • Embed this notice
     pwm (pwm@darkdork.dev)'s status on Saturday, 15-Mar-2025 04:41:33 JST pwm

     in reply to
     I have the same ip address space for my cluster as s in use on the local net and now I can't dial those boxes
   • Embed this notice
     dilbert 1 (sun@shitposter.world)'s status on Saturday, 15-Mar-2025 04:42:23 JST dilbert 1

     in reply to
     @pwm I hate networking so much
     Doughnut Lollipop 【記録係】:blobfoxgooglymlem: and pwm like this.
   • Embed this notice
     pwm (pwm@darkdork.dev)'s status on Saturday, 15-Mar-2025 04:44:05 JST pwm

     in reply to

     • dilbert 1
     @sun It's honestly not terrible but I think I footgunned myself before I left town by not changing the network address
   • Embed this notice
     Doughnut Lollipop 【記録係】:blobfoxgooglymlem: (tk@bbs.kawa-kun.com)'s status on Saturday, 15-Mar-2025 04:44:38 JST Doughnut Lollipop 【記録係】:blobfoxgooglymlem:

     in reply to

     • dilbert 1
     @sun @pwm Computer bad. :blobfoxthumbsup:
     pwm likes this.
   • Embed this notice
     Account: Computers (pro@mu.zaitcev.nu)'s status on Saturday, 15-Mar-2025 05:05:13 JST Account: Computers

     in reply to

     • dilbert 1
     @sun @pwm Really now?
     
     To be honest, the accumulated cruft of TLS offload, firewall-cmd, namespaces, systemd-resolvd, DNSSEC, and such made the modern networking a fairly unfun mess. But you don't have to comply, within your own network.
     pwm likes this.
   • Embed this notice
     Red Rozenglass (rozenglass@fedi.dreamscape.link)'s status on Saturday, 15-Mar-2025 05:09:21 JST Red Rozenglass

     in reply to
     @pwm@darkdork.dev The routing table tells the OS where to send a packet depending on the address it's meant to. It does something similar to zip codes in postage. For example, if you have a packet meant for Google's IP, the routing table may tell your OS to send the packet not to Google's IP, but actually to your WiFi router's IP. Thus, the routing table basically helps you delegate the actual delivery of a TCP/IP packet to some other network actor that actually knows what to do next.
     
     I may want for example all my packets meant for the internet to go instead to my VPN server, because my VPN server will handle further delivery. So, I may set my VPN server's private IP as the default gateway in my routing table. But maybe I want to use some local network stuff, and my VPN server wouldn't know how to handle my local server, so my routing table would set my local router to be the destination if the packets are meant for local network IPs, I may have some work network that is handled by a different VPN, so work IPs get routed through that other VPN server, etc.
     
     For your packet to reach its final destination, it is likely being routed by a dozen routers between you and your target server. Each of those intermediate servers is consulting its routing table to decide where to send the packet next, until, finally, the packet reaches a server that has Google's actual IP address in its routing table (think final postman when sending cargo). You can see this happening in real-time using software tools like "traceroute".
     
     pwm likes this.
   • Embed this notice
     pwm (pwm@darkdork.dev)'s status on Saturday, 15-Mar-2025 05:10:14 JST pwm

     in reply to

     • Red Rozenglass
     @rozenglass Thank you for the thorough explanation; but this was a largely rhetorical question.
   • Embed this notice
     pwm (pwm@darkdork.dev)'s status on Saturday, 15-Mar-2025 06:14:39 JST pwm

     in reply to

     • þernia
     @pernia the confusing bit is why wire guard is allowing me to dial any localnet addresses
   • Embed this notice
     þernia (pernia@cum.salon)'s status on Saturday, 15-Mar-2025 06:14:40 JST þernia

     in reply to
     @pwm colombian necktied ur foot with that shit. you're pissing in the network spirits' temple with that
   • Embed this notice
     pwm (pwm@darkdork.dev)'s status on Saturday, 15-Mar-2025 06:18:57 JST pwm

     in reply to

     • þernia
     @pernia should be set up to tunnel everything. 0.0.0.0 etc. whatever I missed isn't jumping out at me
   • Embed this notice
     þernia (pernia@cum.salon)'s status on Saturday, 15-Mar-2025 06:18:58 JST þernia

     in reply to
     @pwm is it set up to tunnel everything, or is it a split tunnel?
   • Embed this notice
     pwm (pwm@darkdork.dev)'s status on Saturday, 15-Mar-2025 06:28:16 JST pwm

     in reply to

     • þernia
     @pernia nah the networking stack should be encrypting the wire guard packet, then sending that to the router with the address of the wire guard endpoint. I think it's a me problem on the laptop
   • Embed this notice
     þernia (pernia@cum.salon)'s status on Saturday, 15-Mar-2025 06:28:17 JST þernia

     in reply to
     @pwm its tunneling localhost?? wtf lmao
     
     is ur LAN address space atm the same as ur wireguard address space? just guessing but if a device exists with a private IP address in ur LAN it might be overriding a device with that same IP in the wireguard net. ur cofe shop router might no give a fuck about ur wg setup
     pwm likes this.
   • Embed this notice
     þernia (pernia@cum.salon)'s status on Saturday, 15-Mar-2025 06:29:36 JST þernia

     in reply to
     @pwm $raped laptop
     pwm likes this.
   • Embed this notice
     þernia (pernia@cum.salon)'s status on Saturday, 15-Mar-2025 06:29:39 JST þernia

     in reply to

     • þernia
     @pwm (nvm the localhost i remembered 0.0.0.0 is what goes in the configuration file)
     pwm likes this.
   • Embed this notice
     Lina Inver?e (lina@eientei.org)'s status on Saturday, 15-Mar-2025 06:34:27 JST Lina Inver?e

     in reply to

     • þernia
     • Eris
     @Eris @pernia @pwm >dead hamster
     graaaAAARG- :violentlycastrated:
   • Embed this notice
     Eris (eris@lab.nyanide.com)'s status on Saturday, 15-Mar-2025 06:34:28 JST Eris

     in reply to

     • þernia
     @pernia @pwm nothing is more raped that your mentality, and your dead hamster
   • Embed this notice
     𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘 (ryan@bxe.io)'s status on Saturday, 15-Mar-2025 07:01:22 JST 𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘

     in reply to
     @pwm Once I figure this out I will be joining you on The Internet myself.
     pwm likes this.
     pwm repeated this.
   • Embed this notice
     𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘 (ryan@bxe.io)'s status on Saturday, 15-Mar-2025 07:18:34 JST 𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘

     in reply to

     • 𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘
     @pwm I'm in.
   • Embed this notice
     𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘 (ryan@bxe.io)'s status on Saturday, 15-Mar-2025 07:21:10 JST 𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘

     in reply to

     • 𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘
     @pwm
     pwm likes this.
   • Embed this notice
     Lina Inver?e (lina@eientei.org)'s status on Saturday, 15-Mar-2025 07:52:11 JST Lina Inver?e

     in reply to

     • 𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘
     @ryan @pwm i didnt know you were pernia
   • Embed this notice
     Lina Inver?e (lina@eientei.org)'s status on Saturday, 15-Mar-2025 08:09:14 JST Lina Inver?e

     in reply to

     • 𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘
     @ryan @pwm you're a possessing ghost
   • Embed this notice
     𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘 (ryan@bxe.io)'s status on Saturday, 15-Mar-2025 08:09:15 JST 𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘

     in reply to

     • Lina Inver?e
     @lina @pwm don't tell pernia he doesn't know either
     Lina Inver?e likes this.
   • Embed this notice
     𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘 (ryan@bxe.io)'s status on Saturday, 15-Mar-2025 08:11:55 JST 𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘

     in reply to

     • Lina Inver?e
     @lina @pwm it really is a sign of emerging internet brain rot that i immediately read the word suicide as a transitive verb, i.e. something you do to someone else and make look like an accident. all hypothetically speaking of course
     Lina Inver?e likes this.
   • Embed this notice
     jae (jae@fsebugoutzone.org)'s status on Saturday, 15-Mar-2025 08:19:41 JST jae

     in reply to

     • 𝕾𝖎𝖗 𝕽𝖞𝖆𝖓 𝕿𝖍𝖔𝖒𝖆𝖘
     @ryan @pwm and you didn't need wireguard to find the wikipage.
     
     
     @pwm
     > I have the same ip address space for my cluster as s in use on the local net and now I can't dial those boxes
     
     if you're in a spot to do so, flip your lan cidr block to some other class c/b/a. protip for future exploration of weird networking. use the dedicated cgnat cidr space of 100.64.0.0/10 to avoid collision. you likely saw it in my cluster screenshot, but that's what i use.
     pwm likes this.
   • Embed this notice
     受不了包 (shibao@misskey.bubbletea.dev)'s status on Saturday, 15-Mar-2025 10:56:29 JST 受不了包

     in reply to

     • þernia

     @pwm@darkdork.dev @pernia@cum.salon post config

   • Embed this notice
     pwm (pwm@darkdork.dev)'s status on Saturday, 15-Mar-2025 10:58:46 JST pwm

     in reply to

     • þernia
     • 受不了包
     @shibao @pernia It's been mangled by netmanager at this point, but the base config is the template I always use.
     
     I found a solution I may investigate later that uses namespaces instead of just shoving things in the routing table
   • Embed this notice
     pwm (pwm@darkdork.dev)'s status on Saturday, 15-Mar-2025 11:00:25 JST pwm

     in reply to

     • þernia
     • 受不了包

     @shibao @pernia Base config:

     [Interface] PrivateKey = foo Address = 10.8.1.3/32 [Peer] PublicKey = bar AllowedIPs = 0.0.0.0/0 Endpoint = baz:51820 PersistentKeepAlive = 25
   • Embed this notice
     þernia (pernia@cum.salon)'s status on Saturday, 15-Mar-2025 11:11:37 JST þernia

     in reply to

     • 受不了包
     @pwm @shibao ur problem might be that the privatekey says "foo", when it should be a 32 digit base64 string
     pwm likes this.