00:24:01 what is pubnix? 00:54:52 why do i get kernel: swap_pager: cannot allocate bio messages in /var/log/messages sometimes when there's heavyish swap pressure but there's plenty of free swap pls? 02:42:33 rtprio: a community tryimg to have a home, building it themselves. pubnix, there you have it 02:44:59 Hey, freensd community, (the music loving part) David Coverdale called it a day, retired 02:46:07 s/freensd/freebd 02:47:02 https://www.youtube-nocookie.com/embed/GNTRgkd4gB0?si=3ai58J5eM_zuywhw 03:05:20 ant-x, As a good debug step if you log into pubnix and then "nc localhost 5119" do you see the ssh banner from your home system? If so then that part is definitely working. Now you just need to connect up to it. 03:06:00 ant-x, As to why you can't just "ssh -p 5119 pubnix" the answer is that you might actually be able to do so. But probably not since most admins will have all ports firewalled off blocking external access to it. 03:07:13 If that works you might try "ssh -oProxyCommand='ssh -W 127.0.0.1:5119 pubnix' homemachine" and see if you log into the home machine through it. 03:08:19 And if _that_ works then try the shorter -J option to jumphost through "ssh -J pubnix:5119 localhost" and see if that works. And then configure it in the ~/.ssh/config file so that it just works with a simple "ssh homemachine". 03:49:25 Hi, I just installed FreeBSD in a VM using the netboot iso and configured it for ports support. I'd like to remove said support, how does one do that? Are there files to remove? I looked at the handbook but only found ports install instructions. Thanks in advance, and happy to be here and explore this system :3 03:49:57 just delete /usr/ports 03:50:28 Thanks! That was fast lol 03:51:01 ezpz 04:27:04 JetpackJackson, Ports installs into /usr/local which starts out empty of files. If you want to remove installed ports then remove everything from the /usr/local tree. 04:52:34 What's the least-worst linux distro for someone who actually just wants FreeBSD? 🤔 04:52:55 (subjective answers obviously welcome) 04:54:37 Gentoo 04:55:30 but it is a topic more suited for #freebsd-social. 05:17:54 Arch or Slackware as well, maybe? 05:18:02 ... if they're even still around. 06:06:01 ek: Both are alive and kicking. (Since you're not on -social.) 06:07:14 mason: I figured this much. Kinda glad to hear it, honestly. I liked those Linuxseses. 07:30:50 ek: I've been enjoying https://chimera-linux.org/ for a little bit. Tested it on a old laptop. 09:10:24 rtprio, "what is pubnix"> a public Unix system, e.g. . 09:13:17 rwp, ports 5000-5500 are open on that pubnix, so that (for example) my instance of Subversion listening to port 5120 there is available from the outside. Yes, I will test 'nc localhost 5119' later today, while the tunnel is open. 09:15:14 rwp: "As to why you can't just "ssh -p 5119 pubnix" the answer is that you might actually be able to do so." I asked because 1) you did not mention this, but proposed more complicated mechanisms such as -J and -W . 2) Yesteday, I failed to SSH directly to publnx:5119 after opening the tunnel. 09:30:33 ive heard about a high availability architecture where server appliances and daemons are deployed in an a/b setup, (software, not hardware HA like with routers) and say A is running, B is upgraded, started, and if it fails it switches back to A. anyone know the term for that? 09:59:02 kerneldove_: there are loads of different ha solutions, but if you are talking specifically about firewalls / packet filtering in a bsd specific context you might want to read up on carp and pf (although i only have experience of that wrt openbsd, and ive forgotten pretty much everything i knew about it) 09:59:26 found it, a/b swap 09:59:30 used in firmware updates 10:01:05 that sounds like how some junos switches have dual root filesystems 10:02:46 ya 10:47:43 CARP/VRRP, LACP, lagg(4) 10:48:53 kerneldove_: we call the process of doing this blue/green deploys, if you have actual separate servers/routers involved 10:49:15 redeploy A, if it comes up cleanly & responds to healthchecks, then redeploy B as well. 10:49:16 no it's software, not hardware 10:49:27 it's all on 1 device 10:49:32 it's called a/b swap 10:49:35 ok 10:50:04 we have https://docs.freebsd.org/en/articles/nanobsd/ for this (as one example) 10:50:26 sounds like blue-green and a/b are the same concept in a different context 10:52:32 similar ya 10:53:13 what's the distinction between hardware and software? 10:53:34 you can run virtual NICs in jails behind CARP 10:53:58 Koston: at some point its all just electrons and stardust 10:54:16 hardware is a thing I can throw out a window when I'm angry with it. 10:54:32 well I meant what's the distinction that's relevant to this context 10:55:09 in this context IDK. The blue/green thing is about ordering of deployment, whereas a/b is about partitions you can switch between. 10:55:31 but they both are equally software in this context 11:01:04 i guess they're the same concept just different by context, because operationally, they do the same. have 2 operating contexts (networks or partitions) and switch between them 12:04:16 rwp: oh ok, I think I put my doas config in there 12:24:56 So there's a wlans_ and a vlans_ but what about wireguard? 12:36:59 looks like you can abuse cloned_interfaces for this 12:38:26 reminds me that i need to work on my ifupdown-ng fork 12:39:11 <[tj]> it isn't an abuse, that is what it is for 12:40:23 is cloned a term that makes sense in this case? 12:40:59 <[tj]> it is how the device driver is implemented 12:43:35 i see 12:45:14 I can see two ways to actually configure the wireguard side, devd or /etc/start_if.. Is there a preference? Does it matter? 12:52:49 looks like the devd approach is strictly less maintenance 12:55:55 why am i getting "limiting icmp unreach response" messages in /var/log/messages when i have set net.inet.tcp.blackhole=3 and net.inet.udp.blackhole=1 ?? 13:26:47 kerneldove_, because. . . you're limiting it even more? 13:36:10 what? 13:36:24 the point of blackhole is to not send responses 13:40:06 on which side do you see that message? it looks like it just logs what blackhole is doing 13:42:02 no 13:47:36 backlog 1024 coz unprivileged 13:55:21 kerneldove_: ICMP responses are not only responses to UDP received on wrong port 13:56:13 kerneldove_: you can silence them net.inet.icmp.icmplim_output=0 net.inet6.icmp6.icmp6lim_output=0 13:56:55 mzar, i don't want to limit them i want to not send them at all 13:58:16 ha.. so you have to firewall outgoing ICMP 13:58:49 it's pretty normal nowadays to see Limiting icmp unreach response from 95012 to 209 packets/sec, we see it 24/7 13:59:14 ok but my point is, isn't setting net.inet.tcp.blackhole=3 supposed to stop sending them? 13:59:34 but in the place where it bothers you, you can silence it with the above sysctl knobs 13:59:40 nope 14:00:07 what do you mean nope? 14:00:17 wtf does it do if not that 14:00:20 the docs said it does 14:00:31 TCP is rejected with TCP 14:01:03 UDP is rejected with ICMP, or rather politely declined with ICMP 14:01:26 <[tj]> nah tcp is rejected with icmp too 14:02:04 ?! 14:02:18 how so ? 14:02:24 who told you that ? 14:02:32 https://man.freebsd.org/cgi/man.cgi?query=blackhole 14:02:50 that is how it works.. connect to a closed port, receive an icmp unreach in return 14:02:50 * mzar facepalms 14:03:31 try starting wireshark or tcpdump and see for yourself :) 14:03:46 tykling: have you ever run tcpdump on wirshark to see what's going on closed port ? 14:03:57 *TCP closed port 14:04:12 I have spent half my life in wireshark and tcpdump 14:04:47 (can recommend) 14:04:50 that's probably not BSD TCP stack but other 14:05:42 TCP is rejected with TCP, but UDP with ICMP, you have to check it guys 14:05:50 nonsense 14:09:52 this is easily tested 14:09:56 I guess that it depeds of how deep are on the stack, could be ICMP host unreachable or a TCP SYN to a closed port returns TCP RST 14:28:09 it depends on how you configure your system 14:28:52 and the system 15:00:23 just wanna say despite freebsd's flaws, it's still better than linux feces. imagine running debian and when you ssh into a new server, it saves key to .ssh/known_hosts with no domain/ip attached so when you need to remove it later you can't correlate. looool 15:02:10 i am foricified to linux coz freebsd does not run docker 15:03:14 That has nothing to do with debian, it's a feature of OpenSSH. 15:03:28 presented by openssl 15:03:53 well freebsd attaches ip/domain to .ssh/known_hosts entries 15:03:54 so? 15:04:05 no, freebsd doesn't do that, OpenSSH does that 15:04:14 because on FreeBSD OpenSSH is not configured with HashKnownHosts by default. 15:04:20 so... freebsd's defaults? 15:04:26 opentheo found only 1 vuln 15:04:39 in earlier coding ears 15:04:50 skel/ 15:04:56 There are advantages and disadvantages to either default, but if you don't feel like the security benefit of not storing the host information directly is worth it then just disable it on Debian. 15:05:27 nah i'll just keep using and prefering freebsd's defaults 15:05:30 echo "HashKnownHosts=no" >>~/.ssh/config 15:05:39 * deconfed setting up amd network card with nvidia gpu's fast cores to calc TX/RX/IX crc'2 15:06:23 working in dream but i can proof my dreams comes truella at rate more than 70% 15:28:27 rwp, "log into pubnix and then "nc localhost 5119" do you see the ssh banner from your home system?" nc shows: "SSH-2.0-OpenSSH_9.6p1 Ubuntu-3ubuntu13.14", but I can if fact "ssh -p 5119 user@localhost" and land on the computer where I opened the tunnel. Connecting at user@pubnix, however, fails with: connection refused. 15:34:26 Hello Everyone - I see Freebsd 15.0 RC1 is going to be released soon - today - I wonder if I install it - can I keep pkg update upgrade --- until the RELEASE ? - means that I would not need to reinstall it - and repositories are kept constant ? 15:35:07 It means that opening the tunnel: "ssh -R 5119:localhost:22 user@pubnix" opens port 5119 from within pubnix, but not from without... 15:42:43 rwp, "If GatewayPorts=clientspecified is needed but you can't set it up" > looks like my case. 15:53:58 rwp, "you can use a second program such as socat or nc to stitch yet another software layer into the pipeline of communication tunnel." > Can nc alone do it, but listinging to another open port and forwarding to localhost:5119 ? 16:05:17 https://paste.rs/Tad7T - there, I wrote another one - you're welcome 16:21:24 tk, what does the colon (:) do in the begining of the script? 16:21:42 nothing 16:22:13 it's a no-op in shell scripting, it's just there to make the heredoc valid syntax 16:22:35 Ah, used as a block comment. 16:30:38 Trying to build the updated version of jujutsu in my VM makes me realize how much I dislike like many dependencies that this project needs... I guess I'll wait for now and tinker with other things in this vm 16:32:28 It is easier to include a dependency (even if it uses 1% of the dependent library) than to deal with it for the lifetime of the program... 16:33:35 acu: yes you can keep using pkg 16:36:58 /10 16:37:00 er 17:04:02 JetpackJackson, JFTR, doas is also a port. So if you want to remove all ports then that would include doas which is also a port. 17:05:58 why are you avoiding dependancies ? 17:06:12 ant-x, It sounds like you are successfully setting up a quick ssh port forwarding tunnel back to your home system and are successfully able to use it to log into your home system remotely from other places. Right? You will need to say more about the user@pubnix problem which seems unrelated. 17:09:44 rwp, not successfully, because the sshd on the pubnix has `GatewayPorts no', which means I need to use socat or nc (as you mentioned previosly) to complete the setup. My test setup is: 1) open a reverse SSH tunnel from my home machine to the pubnix:5119, 2) try to SSH to pubnix:5119 from other places. 17:10:41 (are you unable to ssh directly home without the reverse tunnel?) 17:16:26 rtprio, I am unable to SSH to pubnix:5119, because the reverse tunnel opens port 5119 only locally, but not to the outside, due to the `GatewayPorts no' setting in the sshd config. I can SSH to pubnix, and then, from inside that pubnix, I can ssh to my home machine, specifying the tunnel's port: localhost:5119 . 17:17:41 What is pubnix? 17:19:07 TommyC, a public Unix server -- a multiuser Unix (actually, Linux) server. 17:19:19 rwp: oh alright. I installed it using pkg so I thought it was a binary rather than something part of ports 17:19:20 rtprio, It was established earlier that ant-x can't directly ssh home due to blocking, I think it was CG-NAT? Don't remember now. 17:19:43 rwp, Yes: direct SSH home is impossible because of CGNAT. 17:19:54 how set are you on using pubnix ? 17:19:55 JetpackJackson, binary pkgs are simply precompiled ports. No difference. 17:20:00 rwp, Yes: direct SSH home is impossible because of CGNAT. 17:20:08 ant-x: Is pubnix free? 17:20:40 rtprio, "How set am I" -- what does that mean? Yes, that pubnix is free. There are many free pubnixes, e.g. freeshell.de . 17:21:11 are you willing to use a provider that doesn't have that GatewayPorts setting 17:21:20 JetpackJackson, If you are mixing pkgs and ports that is okay but also mixing two things that have no way to easily unmix them. As far as I know there is no tracking of installs by ports other than that you remember in your head. With pkgs there is the pkg database which will remember what pkgs are installed. 17:21:58 rtprio, yes. 17:22:14 ant-x: or a vps where you can run wireguard 17:22:23 One could run pkg which on every file and compile a list of files and packages that are installed by pkg and then assume that all other files are installed either by the admin creating them or by a ports make install. 17:22:36 rtprio, no VPS for me so far. It is a completely different kettle of cod. 17:22:40 Speaking of, Black Friday & Cyber Monday are coming up. You might be able to get a good deal on a cheap VPS that you can do whatever you want on. 17:22:50 i don't know about that 17:23:28 TommyC, probably, but I have not looked into VPSes so far. I could rather buy a static IP from my ISP. 17:23:36 ant-x: Hold up, why not a VPS? You'd be in full control of it. 17:23:37 ant-x, ssh itself has a -W option which is like nc or socat itself. Since you can log into pubnix and you can see the banner from your home system then you can use ssh itself to connect to it. I mentioned the series of sneaking up on it commands earlier. 17:23:57 TommyC, learning from smaller and simpler things. 17:24:04 Ok... 17:24:13 ant-x: some cgnat isps still have routable ipv6, not sure if that applies to you 17:24:37 rwp, yes: I have not tried ssh -W> is it to be invoked on the pubnix to set up redirection? 17:24:43 One of the problems of running a system on the Internet is that it is like owning your own home versus renting an apartment. You are then responsible for *everything* all at once. It can be a challenge. 17:25:02 rtprio, all I know is that my ISP is selling a static IP for a monthly payment. 17:25:07 * TommyC likes owning his own things :3 17:25:13 ant-x, Invoke it from any remote location not on pubnix over to pubnix. 17:25:30 ant-x: if it's a couple of bucks it might be worth it 17:25:32 rwp, that's why my server is a toy one. I am not using it seriously (yet). 17:25:49 treefrob, about 2$ a month, yes. 17:26:51 rwp, OK> will test later this evening, from home: 1) reverse SSH tunnel from home machine to pubnix, 2) ssh -W to pubnix, on another machine . 17:27:15 TommyC, it helps against learned helplessness. 17:28:07 ant-x, Other than confusion you can do the full loop from your home machine. Set up the tunnel from your home machine. Then use the tunnel to log into your home machine from your home machine but going through the bastion host system. (pubnix is the bastion host in this diagram) 17:28:18 rwp, 1) and 2) do not seem sufficient, as I fail to see how they will get connected, gonna read about -W. 17:30:00 By using ssh to log into the bastion host it avoids any firewalls because it will use the loopback device and that is not (usually) firewalled. It avoids the GatewayPorts=no configuration by using the loopback device which is where the ssh port will be listening. 17:30:15 Just answering the questions I saw asked about it earlier. 17:31:41 So, I connect to the bastion host twice: once to establish a reverse tunnel, and once again to use that tunnel, with ssh -W ? 17:31:53 Yes. 17:32:01 I see, thanks. Will try it. 17:32:13 Each of the two end locations meet in the middle on the bastion host. 17:32:36 And there is a 3rd ssh too, the one that you use to connect through those two to get to the home system. 17:32:58 The second ssh -W connection goes to port 22, and somehow must link with the tunnel on port 5119. 17:33:07 yo dawg, i heard you like ssh 17:33:35 Ah, so the two ssh connections are needed for service setup. OK. 17:33:52 You got it! 17:34:10 Hope I can implement it. 17:34:33 One the client side there are two ssh processes in one invocation: "ssh -oProxyCommand='ssh -W 127.0.0.1:5119 pubnixbastion' homemachinearbitraryname" 17:35:02 it would be a shame to switch ISPs after all this effort 17:35:07 That client ssh is told to use ssh -W to connect to the bastion host for the connection back to the home machine. The name of the home machine is pretty arbitrary there. 17:35:09 OS: 64 bit Windows 11 Professional (Version 10.0 2009 Build 26100.6725) 17:36:41 rwp: ah ok. I'll stick with just pkg for now then so I don't muck up the system on my first day lol. I'll keep that in mind when I find myself wanting a newer version of a package 17:37:19 rwp, can this be simplified into independent invocations, or is that nested invocation necessary? For example, I could open a session from pubnix to my home machine (over the reverse tunnel), and then I could connect to that session from wherever I liked, except that it would be a bit indirect on the user level 1) ssh to pubnix 2) establish or restore (from screen) the session to the home machine. 17:37:20 JetpackJackson: my laptop has more than 1000 packages and my server has 400. it's just how modern software works 17:37:42 JetpackJackson, The standard solution for that is to set up poudriere to compile locally compiled pkgs from local source and then everything are precompiled binary pkgs. 17:37:43 rtprio, I am not switching ISP. They are offering a static IP as a service. 17:38:01 it was a joke 17:38:17 With a grain of truth in it, however. 17:38:18 rwp: oh OK I'll check that out, thanks! 17:38:46 I am going home now, stay tuned. 17:38:52 ant-x: any isp that does weird things like that should be avoided 17:39:00 JetpackJackson, Since you are just getting going I recommend going slow so as not to overwhelm the learning curve and just use FreeBSD pkgs for a while until you get comfortable with things. 17:39:07 cpet, weird things like CGNAT? 17:39:26 Yes. CG-NAT is truly a problem! 17:39:45 shouldn't have ssh issues with that my ISP uses it as well 17:39:52 my isp will charge between 22,000 and $42,000 for installation :| 17:40:17 i pay 151/m for a biz line with a /29 17:40:30 which hosts my dumb beer brewing website 17:40:31 :P 17:40:48 that seems like a lot 17:41:34 the only other ISP is ATT and no 17:41:39 rwp: alright fair 17:41:56 I am contemplating to upgrade it to RC1 and play with pkgbase 17:42:13 On the user side CG-NAT creates another problem for incoming connections such as ssh that we want to have work but are then blocked. 17:42:19 On the server side I block with fail2ban and other tools and will automatically block tens of thousands of users behind CG-NAT because there are bad actors launching abuse attacks sharing the same IP address. 17:42:44 this is why I just got the biz line residential lines aren't made to host anything 17:43:07 as they want you to pay for the biz line 17:43:20 I should test out one of my zig programs to see how well it works on FreeBSD for funsies 17:43:25 well atleast thats how it is with CableOne 17:44:05 residntal lines host just fine 17:44:33 Not residential lines behind CG-NAT! 17:44:37 when you want to host your own email they dont 17:44:54 I have only ever seen the CG-NAT problem with IPv4. IPv6 doesn't need NAT and so avoids the problem. And creates the new problem that everything needs to be firewalled! Otherwise light bulb IoT devices get compromised by hostile bad actors that can now poke at them. 17:45:11 you could get a tunnel from he.net 17:45:17 and see if that fixes your issues 17:45:24 Oh, and you can't send email if you are listed in the ISP Policy as a DUL "dial up line" address. 17:45:37 yeap but you can if you have a biz line 17:45:43 oh yeah, email 17:45:51 Right. A biz line is by policy allowed for those things. 17:46:13 so you pay for the 151/m to do all that 17:46:53 That cost is why renting a VPS from a cloud vendor at USD$5/month is so attractive. 17:47:06 i like to do all the things myself 17:47:09 :) 17:47:40 Me too. I am renting a shared office with a computer rack and paying for a business ISP connection too. 17:48:16 i just have a mini computer, running freebsd nothing that fancy 17:49:33 I am a little more spread out. I have my own personal machines. I have paid client systems. I have community project systems that I am a volunteer admin. It's a fun little empire of systems all in total. :-) 17:49:56 2 VPS's and the mini PC 17:51:23 I need to run off. Later! 19:32:48 Holy moly FreeBSD works on my janky no-name spare laptop 19:32:51 This is awesome 19:34:30 Granted I have to tether with my phone and I haven't tested sound but still, im excited 19:48:17 congratulations! i hope it does well for ya 19:55:27 Well for some reason niri says it can't find a GPU but I have the firmware installed lol. I'll tinker with it later, gonna work on some HW now 20:06:01 if there is no hwid in the firmware 20:06:04 that wont help you 20:26:58 Got it, had to install drm-kmod per the handbook 20:27:08 https://share.katzenmue.de:9270/file_share/0691b851-6ab5-751c-a447-489c182e1135/20251117_152634.jpg 20:42:25 Weird, I had installed sway to test it out and went to uninstall it and when I ran niri again the system just did an unresponsive black screen, couldn't switch ttys, had to power it off. Reinstalled sway and niri worked again, so I'll have to look at what packages sway is adding. Or maybe its my hardware lol. But I'm glad I have a WM now. Next test is audio 20:52:32 always the integrated gfx cause issues 20:57:43 however if that PC has been sitting aorund for a long time could have leaking caps as sometimes they use polymer closer to the CPU and lquid for the rest as they are cheaper, start to get weird issues as well 21:08:18 how can I tell my wpa_supplicant to move to nearest AP ? 21:10:47 found out I can use wpa_cli :) 21:21:28 the router itself is the one that deal with that 21:32:54 looks like I can use wpa_cli -i wlan0 scan -> wpa_cli -i wlan0 scan_results -> wpa_cli -i wlan0 reassociate 21:34:16 i have a mesh system with a AP on each floor so router does that for me I have some clients on the second floor and some cameras on the first i dont use wifi so 3rd level is basically useless 21:34:36 after that I saw it was moved to the AP in the same room Im in at the moment, and not the otherone in the room across the house :P 21:34:43 you cant use scan on some cards 21:37:47 cpet: here's a hwprobe: https://bsd-hardware.info/?probe=b6263c96a9 21:40:23 I have found that embedded gfx always cause issues 21:40:34 so I force my system to default to the AMD card 21:40:41 doesnt fix my issue with X though 21:40:48 After typing on the spare laptop for a while, I remember that my current laptop is just way nicer and more powerful lol 21:40:50 Ah 21:40:56 i have to force X to probe the AMD and leave the other alone 21:41:26 system is old but I dont have the reaosn to upgrade it if all I do on it is KDE and youtube 21:43:26 Fair 21:44:07 it has 64 GBG of ram a ryzen 7 5700H and a 4 x zfs z2 21:44:12 so yeah more than enough :P 21:44:59 ok now I Know what niri is thought it was something like sheep.exe 21:45:01 :P 21:45:17 Lol 21:45:50 isnt sway wayland stuff ? 21:45:55 So basically I forgot the spare laptop needs sof-firmware to do sound shenanigans so I'm out of luck for now re: sound. 21:45:57 Yeah 21:46:00 ill try wayland when I have too 21:46:18 go pickup a USB sound card 21:46:35 make sure its supported by usound or whatever that is called 21:47:11 The spare laptop also only has ~50GB storage and 4GB ram, its just for distrohopping 21:47:22 But ill look into that 21:47:29 uaudio* 21:47:55 I guess later I can boot a live USB for my nice laptop and probe it 21:48:07 i couldnt get BT to work so I went out and got some SRS THX speakers 21:48:16 go big opr go home when it comes to sound 21:48:39 so im stuck with 500 watt speakers vs the 1500 watt theater sound system connected to the TV 21:49:33 now if I comapre freebsd sound back in the 90's vs what it is now it sounds quit nice 21:51:08 JetpackJackson: cant you do something magic like using the sof-firmware from linux ? 21:51:13 such as https://archlinux.org/packages/extra/x86_64/sof-firmware/ 21:51:20 or is that not the same ? 21:51:50 the .bin file should be readbale by the driver 21:52:15 I could try 21:53:32 https://github.com/thesofproject/sof-bin/tree/main/v2.9.x 21:55:20 yeap youre better off just getting a USB sound card 21:55:33 accordsing to google your SOL in *BSD 21:57:00 https://www.amazon.com/External-Headphone-Microphone-Compatible-Desktops/dp/B0FF4XLZ3J/ref=sr_1_3?crid=392HE0R6J56TR&dib=eyJ2IjoiMSJ9.sBRgG-jowXaBlrGpYK-F-wDJJDjuXr4h1fnJ5enfWTXeo9nVFphOUW1OCXv2R2NHtoP0SUAsGNwjIK1DHx8L0CMmdHjDccsJWMNf0rXizqKh9BditlrThjkB6K1kGt-Bv42u3H9W5CFLeNY6zNADxmt-0Av1_kElzepAPblclIvpgszrAA51YtA9dLyYboEPqgqJvdaM-nqOESJndOZ4c1jpNVJON-loLAo3ZtS8HAc.2kC4ZVl4Q43C47toRPCGsHxdccA6CUTtcrS_-8jVx 21:57:06 jA&dib_tag=se&keywords=USB%2Bsound%2Bcard&qid=1763416548&sprefix=usb%2Bsound%2Bcard%2Caps%2C137&sr=8-3&th=1 21:57:09 something like that 22:04:13 That one is compatible? 22:04:28 no was just showing what i meant 22:05:15 Oh 22:10:39 well amazon does offer free returns so 22:10:57 could always try a few and see which one works cause the hardware notes doesnt specify any 22:11:09 now if I was you I would try the Creative Labs one first 22:11:21 but dont come yelling at me if it doesn't work :) 22:13:55 rwp, the method you propsed works: 1) open a reverse SSH tunnel from home machine to pubnix, 2) use ssh -oProxyCommand='ssh -W 127.0.0.1 pubnix' home_machine . Thanks. 22:17:49 cpet: haha I won't yell at you 22:18:00 https://wiki.archlinux.org/title/Lenovo_IdeaPad_Flex_5_14IAU7 this is my current Linux laptop btw 22:18:04 Couldn't find a Probe for it 22:19:00 I like Lenovo but my last Lenovo Legion didn't work very well as it had that dual gfx card that X didn't like 22:19:17 this was back with 12 i think I sold it so cant test it with 14 or 15 22:22:08 hrm 22:22:39 pubnix sure is expensive 22:28:57 I need to take this slow and not get all crazy with looking at framework laptops lol 22:30:50 freebsd works fine just need to get HW it supports 22:30:58 Right right 22:31:48 I have two other spare laptops I can check for compatibility 22:34:55 JetpackJackson: if this will be your main system not having sound kinda sucks more than not having a printer 22:34:58 heh 22:35:50 Haha I mean I can't switch now cause I'm still in college but ill look into it more when I get closer to being able to switch 22:36:07 Want to get more experience with the system first too before I go all in 22:36:38 run it in a VM 22:46:21 yeah im doing that too i just had the idea to plunk it on one of the spares 22:53:24 great plan 23:03:04 I know one is an old Toshiba and the other is another Lenovo so hopefully they'll work better 23:04:46 JetpackJackson: I would check the Toshiba next 23:05:22 Oh how come? Better support? 23:07:56 Cause why not ? 23:36:35 Ah 23:36:54 It's at the bottom of the stack so I was gonna do the Lenovo first lol