| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2025-09-02 | .bashrc more aliases | Xiao Pan | |
| 2025-09-02 | workaroud alias e completion issue | Xiao Pan | |
| 2025-09-02 | use bsdtar instead of atool2-git | Xiao Pan | |
| 2025-09-02 | install bpf for bpftool | Xiao Pan | |
| 2025-09-01 | no phantun, no need rustup | Xiao Pan | |
| 2025-08-30 | meta | Xiao Pan | |
| 2025-08-30 | mimic@ens19 seems is not used, so disable | Xiao Pan | |
| 2025-08-30 | meta | Xiao Pan | |
| 2025-08-30 | people say bwh ipv4 is more optimized, so I will not use ipv6 for mimic in ↵ | Xiao Pan | |
| the foreseeable future | |||
| 2025-08-29 | nft no accept iperf3 port because not often use | Xiao Pan | |
| 2025-08-28 | wg to ba then swgp forward to ib or ca | Xiao Pan | |
| 2025-08-03 | remove ssh studio alias | Xiao Pan | |
| 2025-08-02 | nft only allow wg pp and insp for all port, so only them can use DNS, also ↵ | Xiao Pan | |
| maybe more secure | |||
| 2025-08-02 | meta | Xiao Pan | |
| 2025-08-02 | dnsmasq use many servers and ignore resolv.conf | Xiao Pan | |
| man dnsmasq wrote "By default, dnsmasq will send queries to any of the upstream servers it knows about and tries to favour servers that are known to be up." There's a --strict-order option to make bottom server=... as highest priority, see [this stackexchange question][0]. I think this default behavior seems not very good, it send some unnecessary dns queries. But tcpdump shows there's not much dns query going on any way so maybe not a problem. [0]: https://unix.stackexchange.com/q/500900 | |||
| 2025-08-02 | add defualt dnsmasq.conf | Xiao Pan | |
| 2025-08-02 | meta | Xiao Pan | |
| 2025-08-02 | swtich to dnsmasq for VPN client DNS | Xiao Pan | |
| 2025-08-02 | remove phantun | Xiao Pan | |
| 2025-07-30 | meta | Xiao Pan | |
| 2025-07-30 | remove phantun and switch to mimic | Xiao Pan | |
| 2025-07-28 | meta | Xiao Pan | |
| 2025-07-28 | SIT 6in4 tunnel make sure use ens18 | Xiao Pan | |
| Because ens19 seems no network, if use ens19 then ipv6 will not work. The config in the past sometimes ipv6 not work I think is due to somehow SIT 6in4 tunnel sometimes use ens19 instead of ens18. | |||
| 2025-07-25 | nft remove comment no need | Xiao Pan | |
| 2025-07-25 | nft use iifname instead of iif for ipv6net | Xiao Pan | |
| iif need the interface exist, iifname don't need, more see man nft. If use iif, after reboot when nft start, ipv6net interface seems do not exist, so nft will error and failed to start. Use iifname can fix this issue. | |||
| 2025-07-24 | meta | Xiao Pan | |
| 2025-07-24 | add and enable phantun_server service | Xiao Pan | |
| 2025-07-24 | nft use /etc/services phantun port name instead of 59083 port number | Xiao Pan | |
| 2025-07-24 | swgp go through phantun, more see vc notes | Xiao Pan | |
| 2025-07-15 | remove studio so remove sstm alias | Xiao Pan | |
| 2025-07-15 | sudoers pacdiff | Xiao Pan | |
| related upstream PR and commit: https://github.com/sudo-project/sudo/pull/427 https://github.com/sudo-project/sudo/commit/7c121ff8340c6fa551ba4997dde9d450cf74e40c | |||
| 2025-07-15 | .bashrc alias nethogs also capture udp | Xiao Pan | |
| 2025-07-15 | pacdiff | Xiao Pan | |
| 2025-07-15 | remove unneeded pkgs | Xiao Pan | |
| 2025-07-13 | nft accept monerod-p2p port to forward to insp | Xiao Pan | |
| 2025-07-13 | nft define a set variable for two ip to use, allow port forward monerod-p2p | Xiao Pan | |
| 2025-07-11 | remove ssh-isp port | Xiao Pan | |
| 2025-07-09 | nft masquerade 6in4 sit tunnel network interface name ipv6net so insp wg to ↵ | Xiao Pan | |
| ba can use ipv6 | |||
| 2025-07-08 | fix meta | Xiao Pan | |
| 2025-07-08 | meta | Xiao Pan | |
| 2025-07-08 | ba network, need 6in4 sit tunnel see arch wiki | Xiao Pan | |
| 2025-07-08 | init ba | Xiao Pan | |
| 2025-07-04 | meta | Xiao Pan | |
| 2025-07-04 | init xyzru VPS | Xiao Pan | |
| 2025-07-04 | nft config studio wg swgp wg to ca, studio use ::b ip6, ca use ::a ip6 so it ↵ | Xiao Pan | |
| can do acme.sh | |||
| 2025-07-04 | meta | Xiao Pan | |
| 2025-07-04 | use wg ip for flylightning.xyz to temp workaround the issue of ca `ssh -6 ↵ | Xiao Pan | |
| gitolite@flylightning.xyz` and `ssh -4 gitolite@flylightning.xyz` both error; note this is after me config studio and ca wg forward | |||
| 2025-06-02 | add ju alias | Xiao Pan | |
| 2025-05-02 | pacdiff | Xiao Pan | |
| 2025-05-02 | Add nft rules to port forward insp xmrd p2p when insp VPN into it | Xiao Pan | |
| Also added monero-p2p port number to /etc/services for nft to use | |||
