Matthew Ernisse

July 25, 2018 @20:00

UniFi Security Gateway in the NMS

A couple days ago I wrote a bit about setting up a new Ubiquiti UniFi Security Gateway, and after living with it for a bit I have a few additional notes.

More (14%) …

July 20, 2018 @16:45

Background

I have several physical locations linked together with VPN tunnels. The central VPN server runs OpenBSD with iked(8). I also have several roaming clients (iOS and macOS) that terminate client access tunnels to this system so I am loathe to make breaking changes to it. The site to site tunnels run a gif(8) tunnel in IP-over-IP mode to provide a layer 3 routable interface on top of the IKEv2 tunnel. My internal tunnels run ospfd(8) and ospf6d(8) to exchange routes and my external site to site tunnels run bgpd(8). Most of my internal sites use OpenBSD as endpoints so configuration is painfully simple, however in my office at work I have been using a MikroTik RouterBoard RB951-2HnD. This has worked well enough but lately it has been showing its age, randomly requiring manual intervention to re-establish tunnels and flirting with periods of unexplainable high latency.

More (18%) …

July 12, 2018 @20:47

I enabled HTTPS on this website just under a year ago. If you follow my blog you know that this is a static website, and since there appears to be a bit of an uproar in the web community over HTTPS right now I figured I'd simply weigh in.

More (21%) …

April 06, 2018 @14:30

I had occasion today to install some updates on one of my macOS systems and found myself inconvenienced by a number of applications adding a pile of dock icons without asking. I don't keep much in the dock on my systems preferring to use clover+space to launch applications and I don't think I have touched the dock layout in literally years at this point so I went searching for a solution.

More (48%) …

March 30, 2018 @10:06

I spent a few hours this week taking a break from Surviving Mars (which is scratching the same itch that Sim City / Sim Tower seems to scratch for me) and finally got around to playing VA-11 HALL-A. I really like this kind of game, a mechanically simplistic story driven world with interesting characters and design.

More (56%) …

March 24, 2018 @16:41

I mentioned offhandedly at the end of my post on how Docker and Flask are helping me sleep at night a potential use case for an iOS share extension. I finally started working on that idea.

More (5%) …

February 06, 2018 @12:56

The Background

Right out of the gate I'll admit that my implementation is a bit naive, but it is if nothing else an example of what can be accomplished with a little bit of work. In general my microcontroller development workflow has been tied to a particular system largely using the vendor supplied tools like MPLAB X or Atmel Studio. This is usually OK as I need to have physical access to either the prototype or production hardware for testing and verification. From a high level it generally looks like this:

More (15%) …

February 01, 2018 @11:13

I was headed back from the California Nebula last night in Elite: Dangerous to try to sneak in a few runs on the just finished community goal in the Wangal system. It was a little over 1000ly worth of travel... about 71 jumps in the old Type-6 to make it out of California Sector BV-Y c7. I had just found a non-human signal source in Aries Dark Region IM-V c2-15 and poked around a bit at the wreckage.

More (34%) …

January 10, 2018 @10:37

YouTube Dead Job Running

I don't want to start out by bitching about yet another crappy Internet thing, but I think I have to. YouTube Red is this play from YouTube to try to get into the paid streaming business and one of the 'features' they tout is the ability to play videos in the background on mobile devices... something that totally worked before JUST FINE before.

More (9%) …

January 02, 2018 @11:36

It seems like the blog is turning into an alternating stream of screaming about things Apple is doing wrong and gushing about how great the UniFi line of products are from Ubiquiti... I have a back log of ideas for things to write about other than those it just seems like life keeps getting in the way and and out the other end either a rant or praise just naturally flows.

More (5%) …

Original: December 28, 2017 @12:00
Edited: December 30, 2017 @14:10

Seriously, It Isn't a Problem

There has been a bunch of discussion around the 'revelation' that a software update to the iPhone was purposefully slowing older phones. While I believe that they should have been more transparent to users about what was happening, perhaps even adopting the UI from the MacBook for when the battery has aged and requires replacement (I had to do this about a year ago on my 2011 MacBook Pro, macOS will toss a little ! by the battery icon and of course System Report will give you further information).

More (15%) …

December 22, 2017 @11:45

Merry Christmas to everyone. Be safe and enjoy some time with the people that are important to you.

🎄 🎁

More (62%) …

Original: December 18, 2017 @20:48
Edited: September 30, 2019 @11:27

I run UniFi to manage my various Ubiquiti access points, now across multiple sites and I try to setup everything with HTTPS only and with certificates signed by my internal CA. I followed for the instructions provided by Ubiquiti for UniFi back when I installed it.

More (10%) …

December 16, 2017 @12:32

Oldweb.Today

I don't remember where I ran across oldweb.today but I thought it was a pretty rad idea. I was able to find an old version of my website there and enjoy it in a browser similar to what I would have been running back then...

More (12%) …

Original: December 11, 2017 @20:18
Edited: December 13, 2017 @20:47

I'm not currently subscribed to Patreon largely because when money on the Internet is concerned I have a long wait and see what happens cool down. There are a lot of Internet start ups that come and go like a flash in the pan and a lot that get bought quickly and morphed into something else. If you are going to have some way to charge me money, I need some stability. I have no problem being an early adopter, as long as you don't have a link to my bank account or credit card (even through a third party).

More (33%) …

Subscribe via RSS. Send me a comment.