I’ve had similar with other items in the sense of wait several days, no shipping notice so a week later message to cancel it, then several hours later get a ship notice and reply that ‘oh it went out already and you would have to wait to send it back’.

I’m guessing to do with some kind of drop shop inventory nonsense, makes no sense otherwise.

Maybe they got bit by it and had to type quick before the venom took hold so they missed some letters?

Probably something that’ll kill you.

Was the prior drive set in some kind of raid set or just individuals, and what are the old drive capacity vs new?

I guess it depends a lot on what your doing with the server. If it’s pure data store I would just boot off a USB and give yourself all the data space since it’s quite likely all running in ram anyhow.

If you run apps out of it and need the M2 for swap and rapid cache storage the fastest would likely be make a 2 drive zpool, copy a single to it, and repeat as needed until you have it all copied over, then add the 3rd to the zpool

Well I see it I repos and app stores, not real sure of the development, last update on the Google store was Feb 2024. Still seems to work when I’ve played with it

I’ve been trying to get a good domain authed nix set up for a while. Alternately, if I could set up a gaming server using sunshine/moonlight.

You know, hexbear is really a fine example of what you get when the auth right tries to do a parody version of leftists.

It got people to talk about it and take interest in what is going on. There are undoubtedly some portion of the population that are fully oblivious of the world around them, or just indifferent at least, but someone going on for that long has to make them wonder why he would do that.

What you might call a stateful NAT is really a 1-1 NAT, anything going out picks up an IP and anything retuned to that IP is routed back to the single address behind the NAT. Most home users a many to one source nat so their internal devices pick up a routable IP and multiple connections to a given dest are tracked by a source port map to route return traffic to the appropriate internal host.

Basically yes to what you said, but a port forward technically is a route map inbound to a mapped IP. You could have an ACL or firewall rule to control access to the NAT but in itself the forward isn’t a true firewall allow.

Same basic result but if you trace a packet into a router without a port forward it’ll be dropped before egress rather than being truly blocked. I think where some of the contention lies is that routing between private nets you have something like:

0.0.0.0/0 > 192.168.1.1 10.0.0.0/8 > 192.168.2.1

The more specific route would send everything for 10.x to the .2 route and it would be relayed as the routing tables dictate from that device. So a NAT in that case isn’t a filter.

From a routable address to non-route 1918 address as most would have from outside in though you can’t make that jump without a map (forward) into the local subnet.

So maybe more appropriate to say a NAT ‘can’ act as a firewall, but only by virtue of losing the route rather than blocking it.

I’m sure there’s something at the state level, found a local ref here. Seems to be one of those laws where it’s illegal if they already wanted a reason to mess with the driver.

https://codelibrary.amlegal.com/codes/aitkin/latest/aitkin_mn/0-0-0-802

Around here they refer to it as ‘unreasonable acceleration’.

NAT in the sense used when people talk about at home is a source nat, or as we like to call it in the office space a hide address, everyone going to the adjacent net appears to be the same source IP and the system maintains a table of connections to correlate return traffic to.

The other direction though, if you where on that upstream net and tried to target traffic towards the SNAT address above the router has no idea where to send it to unless there’s a map to designate where incoming connections need to be sent on the other side of the NAT so it ends up being dropped. I suppose in theory it could try and send it to everyone in the local side net, but if you get multiple responses everything is going to get hosed up.

So from the perspective of session state initiation it can act as a firewall since without route maps it only will work from one side.

Assuming it’s not a 1-1 NAT it does make for a functional unidirectional firewall. Now, a pure router in the sense of simply offering a gateway to another subnet doesn’t do much, but the typical home router as most people think of it is creating a snat for multiple devices to reach out to the internet and without port forwarding effectively blocks off traffic from the outside in.

Yeah, but I try and keep as little MS as possible, so my DC is a Linux system, which works fine for LDAP and MS systems joining, but somewhat ironically I’ve yet to be able to get a Linux system joined to it. They actually have a helper app even outside of sssd but it seems to be poorly maintained. Was trying Bazzite again today based on another comment but no luck so far.

For server hosting it’s the only way to go.

Gaming has improved significantly, although it’s rather frustrating that it’s by all these compatibility layers and such rather than native run.

For desktop, as a workstation and general purpose it’s ‘ok’ with rough edges. Things like (limited tests with a couple common distros like Ubuntu/Mint/Bazzite) the nextcloud app not supporting virtual files that have been available for a while in Windows and domain auth being twitchy where I’ve tried.

For the end user a big part is being able to just find an app and use it, no compiling or tweaking of settings needed for it to do what’s expected. Package managers help greatly, but with the huge number of distros out there it makes it really hit and miss to say just go for it. The relatively few times you can just download a Linux version of an app from a site (as people are prone to doing if they go read about something on the web) you often would have to go chmod +x it and quite possibly have to run it from a CLI rather than just click the downloaded app.

So usable yes, but in a place where I could just drop it on someone and say go to town less so…

Big thing holding me up is domain auth. Someone had decent luck getting something like Bazzite joined to a DC without major manual work?