From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-pf1-x42a.google.com (mail-pf1-x42a.google.com [IPv6:2607:f8b0:4864:20::42a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by lists.bufferbloat.net (Postfix) with ESMTPS id 88B253B2A4 for ; Mon, 23 Oct 2023 13:58:20 -0400 (EDT) Received: by mail-pf1-x42a.google.com with SMTP id d2e1a72fcca58-6b20a48522fso2888545b3a.1 for ; Mon, 23 Oct 2023 10:58:20 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20230601; t=1698083899; x=1698688699; darn=lists.bufferbloat.net; h=content-transfer-encoding:to:subject:message-id:date:from :in-reply-to:references:mime-version:from:to:cc:subject:date :message-id:reply-to; bh=pVnXCihgGxVRNwq4AR9SZif3FPmfjixMBqN2ApRCs3U=; b=GEnUU9uaypEabtdEjZ6R7/UX1ZK6SaCQdetiu3t1ZChdZYvevMq5IbX3EADp25nPnw UeCSHNhS7VkQyvL0bTVi9H73NH9NN7cVQ1urxN0He/k9x70wLo6zuyR5rcA847gqBo0/ Pzmpz+9dmXe0zyjXl5KxcqRWoCgTsENwS2MHoXyaAtK1p582sN1tb7bdDDrhajKccCA6 eNVc/PYH8pZpHv/4EdTK5/HuL3AVgALboDKy3DTnoFdPr4U5CWwSrEcGh4vynHVCCcGr 74kbBMz3BVrXu8x/cREl9f9xdmy2iUY1jyA0XVOCda1UnQFOEYRkTi6xMm9UUTp5Z7mp 45dw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1698083899; x=1698688699; h=content-transfer-encoding:to:subject:message-id:date:from :in-reply-to:references:mime-version:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=pVnXCihgGxVRNwq4AR9SZif3FPmfjixMBqN2ApRCs3U=; b=PQOJTzN4FDUK0eSKaYo6eq7ViMXd6x6VKJ9xLUKJ3nI4W032aef09v4pOW1f63oiMq IfHsxtnS+C/3o/wJjNMiI8OGJ03UMXQxSxTdPa3LBlJJjraDorADY1xO5G1Cs+9caQBw 4pfHdIO+sSR1Yfg3mCJ2CPT1Nk5sTrQ7ACDhuRs7uWKx5K/RD/MHuu5VuNZg6GIr7HQ2 9YIX7D3cuJafmzLDnfEhltWvBCSt4+FV19Hp+QcusFvBZWQQ5f39eqz+LfyDewbo/UjE STb3PGNSvLH/6v0kOHuEfRFRo6XQXlAdlo7pfdyLzm7tDL09TIKdOqBiR3C3IQBNKmg+ oSWg== X-Gm-Message-State: AOJu0Yx6UbHvmBdkBmnn9FEhRXhZ3t7grZa9IQe/AaGWwFbGcMEovFgL +Uvy53pa5bOQwcJL6znoiYMsGEVmU2e6Nzy2WZhjJYAWSw8= X-Google-Smtp-Source: AGHT+IGv7V15E8r3zsj9M+Z7+z86conIR/seRy1MiThCj3yCGQMwiSByIP08NR0JxNFQ1Ye6GtXHkZXTIvnFSXFrK2o= X-Received: by 2002:a05:6a20:5490:b0:17b:3438:cf92 with SMTP id i16-20020a056a20549000b0017b3438cf92mr384497pzk.5.1698083898952; Mon, 23 Oct 2023 10:58:18 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Dave Taht Date: Mon, 23 Oct 2023 10:58:05 -0700 Message-ID: To: =?UTF-8?Q?Network_Neutrality_is_back=21_Let=C2=B4s_make_the_technical_asp?= =?UTF-8?Q?ects_heard_this_time=21?= Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Subject: Re: [NNagain] upgrading old routers to modern, secure FOSS X-BeenThere: nnagain@lists.bufferbloat.net X-Mailman-Version: 2.1.20 Precedence: list List-Id: =?utf-8?q?Network_Neutrality_is_back!_Let=C2=B4s_make_the_technical_aspects_heard_this_time!?= List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Oct 2023 17:58:20 -0000 On Mon, Oct 23, 2023 at 10:04=E2=80=AFAM Dave Taht wr= ote: > > I loved that this guy and his ISP burned a couple weeks learning how > to build openwrt, built something exactly to the need, *had it work > the first time* and are in progress to update in place 200+ routers to > better router software, that just works, with videoconferencing, IPv6 > support, and OTA functionality. No need for a truck roll, and while > the available bandwidth deep in these mountains in Mexico is meager, > it is now enough for most purposes. > > https://blog.nafiux.com/posts/cnpilot_r190w_openwrt_bufferbloat_fqcodel_c= ake/ In looking over that blog entry again today I know I overfocus on the "bufferbloat" result, and the fact that he could indeed run a speedtest while maintaining a good videoconfernce, which I really wish more folk tested for. However it fails multiple checkboxes in the test results, which others might be more inclined to look at. 4k video streaming: Failed. However this network is MORE than capable of 1024p streaming. 4k is difficult to discern except on large, expensive televisions. It was not all that long ago that 1024p was considered good enough, and IMHO, still is. Videoconferencing: Failed. Well, the test is wrong, probably having too low a bar for the upload as a cutoff. Videoconferencing needs oh, 500kb/sec to work decently, and only facetime tends to try for 4k. Having comprehensible voice, with a few video artifacts is ok, incomprehensible voice, is not. Low Latency gaming: Failed. The waveform test conflates two things that it shouldn't - the effects of bufferbloat (none, in this case), and the physical distance to the most local server, which was 70ms, where the cutoff is 50ms in this test. I wish that the city-dwellers of BEAD so in love with fiber would insert 70ms of rural delay into all their testing. If someone would go to all these enormous conferences about BEAD, and do that, the need for cdns and uIXPs would become dramatically apparent in what they are building out. https://blog.cloudflare.com/tag/latency/ > > I have no idea how many of this model routers were sold or are still > deployed (?), but the modest up front cost of this sort of development > dwarves that of deployment. Ongoing maintenance is a problem, but at > least they are in a position now to rapidly respond to CVEs and other > problems when they happen, having "seized control of the methods of > computation" again. > > OpenWrt is known to run on 1700 different models, already, (with easy > ports to obscure ones like this box) - going back over a decade in > some cases. > > Another favorite story of mine was the ISP in New Zealand that > deployed LibreQos and had all their support calls (from gamers and > videoconferencers) cease overnight. The support tech, formerly drowned > in angst from the users, set to work automating an reflashing 600 old > agw routers they had "retired" on the shelf, and then distributing > them to customers as extenders because the wifi finally worked right > with the fq_codel stuff now in that release. > > I feel like I am tooting my own horn here a bit too much, but solving > the right problems like MTTR, MTBF, bufferbloat, and taking back > control of your software infrastructure while being able to customize > it for purpose, and turning what otherwise would be ewaste into > something that will last a decade more, is my inner "green", my inner > stewart brand. > > Compare that to so many others being marketed to, to death, that buy > the latest (and often inferior) thing, every few months, perpetually > fooled by promises that do not pay off in the field, and often, really > lousy MTBF. Good embedded software takes many years to develop, say, > oh, 7, while the hardware cycle is closer to 2, nowadays, and requires > many eyeballs to fully debug and get to lots of 9s of reliability. > > Back when I was even more radical about good, open, embedded, software > than now, I used to say: "Friends don't let friends run factory > firmware.". I do wish somehow the long term maintence costs of > hardware with a decade plus service lifetime would be adaquately > covered. Insurance? by law? a formal setaside from the purchase price? > Otherwise we run the risk of turning the world's internet into a giant > toxic waste dump that will require Superfund levels of cleanup, one > day, and ever more contributions to trillions of dollars of fraud, and > persistent actors having first broken down the front door, perpetually > on the inside, wreaking more havoc. Somehow preventing that mess, up > front, seems cheaper. > > Take this string of vulns: > https://www.google.com/search?q=3Dcisco+router+vulnerability > > (try that search string with *any* manufacturer - juniper, netgear, tplin= k, > > There is a new vuln going around about some very old software in a > cisco mx series which is ancient and yet 100k+ are vulnerable - (I > worked on this while at montavista in the early 00s!) - abandonware, > toxic waste... > > Anyway, in Mexico at least, 200+ routers are going to be a lot better, > through the actions of all that contribute to linux, openwrt, and one > smart and caring engineer. > > -- > Oct 30: https://netdevconf.info/0x17/news/the-maestro-and-the-music-bof.h= tml > Dave T=C3=A4ht CSO, LibreQos --=20 Oct 30: https://netdevconf.info/0x17/news/the-maestro-and-the-music-bof.htm= l Dave T=C3=A4ht CSO, LibreQos