№42

The Question Is

Kickstart your homelab with netboot.xyz

2024-10-17 2 min read How-To Ronny Trommer

I use a home lab for daily work and for testing purposes, I need to hop between Linux distros often. I’ve replaced my homegrown PXE boot environment with netboot.xyz. I built it for a few operating systems and all was good. I ran into netboot.xyz, and it was quickly pretty clear, this is what you want in a homelab when you have to hop between operating systems using virtual machines. Reducing the need for building bootable thumb drives or shuffling ISOs around is great. It has batteries included with boot menu configs, and it works out of the box. It allows also a lot of customization if needed. As a reminder to my future self and for others here is my config to get it working quickly.

Continue reading

UDP tuning and performance testing

2024-10-17 1 min read Linux Networking Ronny Trommer

Problem statement

  • Ingesting UDP traffic is complicated to measure
  • Packet drops, connectionless and unreliable
  • Measuring on ingest on the network interface card
  • How can you make sure you measure reasonably?
  • You want a method to create some confidence how many UDP packets your system drops

Create a lab environment to reproduce the problem

  • Make the problem visible using with overloading a small device Raspberry Pi 3
  • Use sysctl default settings
  • Use something like hping3 or iperf to create a overload situation

You can’t improve what you don’t measure

  • Show tools like dropwatch or ss -lump or SNMP udp metrics to visualize packet drops
  • Compare packets received with tcpdump vs. iperf
  • Theory should show who be tcpdump should have more but not all then the sender

Increase buffers size?

  • What happens if you increase the buffer size?

Use PF_RING

  • How does the behavior change when you use PF_RING with TCPDUMP

Conclusion

Stop using PowerPoint as a working document

2024-10-08 2 min read Culture Ronny Trommer

I’m spending more time working with people with management titles, and I find a few things disturbing. I have attended working sessions where the collaborative document was a PowerPoint slide deck. That was super confusing to me because a slide deck is something I have used when I had to attend a conference to give a talk about a specific topic. A PowerPoint slide deck as a work deliverable blew my mind.

Continue reading

Mirroring a container registry

2024-08-16 2 min read Container How-To Ronny Trommer

I was working on an article How to run an air gap installation of OpenNMS Horizon on Rocky Linux. I ran into a similar use case and it was not about RPMs or DEB packages, it was all about container images and registries. My question was, how can I get “all” container images into a private registry from DockerHub? Getting your hands dirty with a private registry is something I’ve described in Running a private container registry for testing. Here is a short how-to on how I did it for my future self or anyone else with a similar question.

Continue reading

You haven’t mastered a tool until you understand when it should not be used.

Kelsey Hightower

Make your network traffic visible using flows

2023-12-01 4 min read Ronny Trommer

Getting metrics about the utilization of network interfaces isn’t very complicated these days. Most of the time your network gear is instrumented with an SNMP agent which you can use to measure it or if you get modern, they have telemetry streaming, and they send you measurements with protocols like gNMI. I’m not explaining fancy new tech here, everything mentioned here is old, but your devices might have these capabilities but aren’t exploited :)

Continue reading

Insanity is doing the same thing over and over again, but expecting different results.

Rita Mae Brown

I wanna taste love and pain – Wanna feel pride and shame – I don’t wanna take my time – Don′t wanna waste one line –  I wanna live better days – Never look back and say – Could have been me – It could have been me

The Struts - Could Have Been Me

Net-SNMP version 3 and OpenNMS

2023-05-26 3 min read Ronny Trommer

To monitor your systems you rely heavily on SNMP, it gives out of the box a lot of possibilities getting important performance and status information.

The main topic security is often not considered. SNMP version 1 and 2c transmit everything in plain text over the wire. There is also no user, password authentication method, just a shared community string which gives access to the information. To address these problems SNMP v3 was introduced.

Continue reading
Older posts Newer posts