New #Blog: Isolating our Guest Wireless Network in OPNSense
Author: Ben Tasker

https://www.bentasker.co.uk/posts/blog/house-stuff/creating-isolated-ipv4-and-ipv6-networks-with-vlans-and-opnsense.html?utm_source=rss

#aaisp #networking #opnsense #vlan #wireless

anyway, i just want to say virgin media is the worst isp.

my l2tp tunnel is running through it, only because they're the fastest isp in my area.

i recently fixed an issue:

virgin seems to throttle UDP-based tunnels, especially L2TP. really awful traffic shaping.

to mitigate, i'm tunneling #aaisp l2tp service through *another* type of tunnel that vm don't throttle. it adds latency but it works.

someone said also: mangle l2tp packets on client/server, making them look like TCP to fool virgin.

Hooray, fibre finally arrives in Merstham.

Also took the opportunity to take advantage of RFC 4638 support and bump my pppoe0 MTU up by a whole 8 bytes.

Now I just need to find the time to upgrade my little EdgeRouter Lite to the latest #OpenBSD.

Thanks #aaisp for the seamless upgrade as always.

So: for the first time, consciously, I've done an IPv6 thing.
It worked!
My new (to me) VoIP base station is doing its SIP reg & such using IPv6 (in an, as yet, mixed LAN).
I created a firewall rule to block any outgoing IPv4 from the dual protocol VoIP base station.
My holidays activity: IPv6 self-paced learning.
#aaisp #openwrt

All the services I host support IPv4 and IPv6, and I thought my home network did as well. I'm with #AAISP which assigns me a lovely block after all!

Turns out, my router has a little bug where IPv6 addresses aren't assigned, even if it's enabled (which it was by default). Had to turn that off and on again and boom, IPv6 addresses assigned to all my devices properly.

If you're using a Technicolor DGA0122, make sure to check it's actually assigning v6 addresses! (https://support.aa.net.uk/DGA0122_No_IPv6)

One of the major upsides of being with #aaisp is when an engineer steals your pair you can get things fixed without waiting 10 days...

Today 12:34:48	Sent KCI email 12:34:45 DSL line up (down 3 hours)	KCI
Today 11:16:13	Today 11:51:29	BT Fault Notification Only: Engineer Issued. 
Today 11:15:01	Today 11:16:13	BT Fault Notification Only: 
Today 10:19:59	Today 10:23:43	BT Fault Non-appointed Task Confirmed:	
Today 10:17:25	Today 10:19:59	BT Fault Implementing Solution	BT
Today 10:17:16	Today 10:17:25	BT Fault Trouble Report Accepted	BT
Today 10:16:58	Today 10:17:16	BT Fault
Today 08:50:36		Sent KCI email  2024-03-21 08:50:04 Line down (LostCarrier)```

@aaisp Installation confirmed for Thursday afternoon. Thanks to Mike at #aaisp for sorting it, and for being a wonderfully human member of the sales team.

So much better than the corporatised scripted trammels you usually get.

@peter @vkc ThreeUK, right? I believe if you set the correct APN settings with Three, you can still get a public IPv4 address.

You can get something like the #AAISP #L2TP service (https://www.aa.net.uk/broadband/l2tp-service/), or you can do something with a VPS and a VPN.

Had yet another #robocall #scamcall on my #AAISP SIP line this morning. I've fallen down a rabbit hole: how can I block these calls?
The spectrogram is very distinctive. Call pickup is followed by an unnaturally low noise level for a couple of seconds.
Then there's a blip.
Then the noise level rockets.

2 weeks ago my previous ISP informed me that they were getting out of the consumer DSL market and that my service would be terminated at the end of the month. As you can imagine for someone working from home this was a HUGE problem. In a panic I contacted @bloor to see just how quickly @aaisp could handle a migration. Well, the line was migrated yesterday, a few delays due to BT but A&A kept me well informed throughout. Highly recommended!
#isp #aaisp #internet

though I haven’t quite got liminix (on hardware) routing to the internet via pppoe and go-l2tp and #aaisp L2TP gateway, I have managed to get an ICMP dest unreachable from it. So the concept is sound and the debugging can happen tomorrow

@tschaefer @5SpeedFun I can add that #AAISP https://www.aa.net.uk do a /48 per customer by default and you can sub allocate as you need to one or more DSL/FTTP lines in whatever chunks you want, statically, and ask for more if you need. By default a /64 from it is provided by DHCPv6 with PD, but very flexible. And reverse DNS provided as needed.

But then we have been doing #IPv6 for customers for over 20 years.

@AlisonW I was once woken up at 06:30 by Royal Mail delivering a #FireBrick from #AAISP!

@JessTheUnstill @dgar
Either what 3 words, or default #AAISP passwords...

@neil @doot @alexis you just reminded me of this christmas video https://youtu.be/agYHiSXple0 😁 #AAISP

Set my mother up with #AAISP FTTP at her new bungalow and #AAISP VoIP. We couldn’t port her number due to some Virgin Media silliness but got one very similar because of the wide choice of numbers. She says that the man who recorded the default voicemail message has a lovely voice 😆

#aaisp internet install in progress :) well it’s OpenReach, but the aaisp bit comes shortly after. Had an interesting chat with the engineer about how fibre connectivity works to the exchange too.

@revk No need to apologise, if #AAISP does something, it does it properly 😀

@revk thanks so much for #AAISP I've been a customer since the mid 2000's still use your email and dns services.