Jeff Fortin T. (風の庭園のNekohayo)<p>Thanks to <span class="h-card" translate="no"><a href="https://toot.aquilenet.fr/@s3phy" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>s3phy</span></a></span> again for helping me understand another area where IPv6 is broken in Linux desktop networking configuration tools: connecting to a SSH server to create a SOCKS proxy using the NetworkManager SSH plugin. That thing only checks if the gateway address is a valid IPv4 address :blobpats:</p><p>I reported the issue here: <a href="https://github.com/danfruehauf/NetworkManager-ssh/issues/130" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">github.com/danfruehauf/Network</span><span class="invisible">Manager-ssh/issues/130</span></a></p><p><a href="https://mastodon.social/tags/IPv6" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IPv6</span></a> <a href="https://mastodon.social/tags/networking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>networking</span></a> <a href="https://mastodon.social/tags/sysadmin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>sysadmin</span></a> <a href="https://mastodon.social/tags/r%C3%A9seau" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>réseau</span></a> <a href="https://mastodon.social/tags/r%C3%A9seautique" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>réseautique</span></a> <a href="https://mastodon.social/tags/UX" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>UX</span></a> <a href="https://mastodon.social/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSH</span></a> <a href="https://mastodon.social/tags/proxy" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>proxy</span></a> <a href="https://mastodon.social/tags/VPN" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>VPN</span></a> <a href="https://mastodon.social/tags/GNOME" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>GNOME</span></a> <a href="https://mastodon.social/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a> <a href="https://mastodon.social/tags/NetworkManager" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NetworkManager</span></a></p>
Administered by:
#networkmanager
0 posts0 participants0 posts today
As #NetworkManager's #SSH VPN/tunnel plugin has now been ported to GTK4 and works directly from the #GNOME Control Center panel, I thought I'd finally try it out.
Once you figure out that you must only fill the gateway field, leave all IPs fields alone, tweak stuff in the Advanced dialog to have a working SOCKS proxy with "no tunnel", then it "works"… as long as you use the standard SSH port.
With SSH server ports other than 22, it fails on #Fedora… due to #SELinux 
bugzilla.redhat.com1808435 – AVCs on establishing an SSH tunnel connection with NetworkManager-SSH
Sysadmin journal: setting up wireguard on all of my Linux desktops
I had to hack together a few things to use wireguard transparently on my Android phone and all of my Linux laptops and desktop.
#ddclient #Linux #NetworkManager #VPN #wireguard #Ansible #SysAdmin
https://blog.kamens.us/2025/05/10/sysadmin-journal-setting-up-wireguard-on-all-of-my-linux-desktops/
CW Blogpost
#NetworkManager 1.52.0 has been released https://networkmanager.dev/
NetworkManagerNetworkManagerNetworkManager is the standard Linux network configuration tool suite. It supports large range of networking setups, from desktop to servers and mobile and integrates well with popular desktop environments and server configuration management tools.
Setup -> I have a #RaspberryPi #RaspberryPiZero2W running #linux #pios #RaspberryPiOS #headless
Aim: I want the pi to always offer a #hotspot #wifihotspot on #boot
based on the command
nmcli device wifi hotspot ssid pizerohotspot password my_password
Is this below a bad solution ?? -> I came up with this solution in the link below using a .service but fear it shows I am clueless? Is there a better way? Thanks!
https://www.loramesh.org/subpages/pi_install.html#pi_hotspot
www.loramesh.orglora Mesh - raspberry pi setup
#TIL you'll need to set
`nmcli con mod <SSID> wifi.powersave disable`
for your headless pi that it doesn't lose wifi connectivity on idle.
Why is this not in the docs?
If it was a true #opensource project, I'd put up a pull request...
So I recently used a #sledgehammer where a #scalpel was needed.
I've got an #HP DL80 Gen9 with the iLO license, but without the #FlexibleLOM card... so to access the iLO I have to have an ethernet cable plugged into the first ethernet port.
Problem is, no matter what I tried in #Webmin or #NetworkManager, every reboot would re-enable that port... which would then get a IP via DHCP (even when I'd disabled it in nm...), which would mean #Zabbix would pick it up as a client and add it.. meaning every time a disk got a little "backed up", I'd get two alerts, and this machine has 12 very old SATA drives in it.
Tired of messing with the damned thing, I finally got out the sledgehammer....
....and blacklisted HP's #OUI from the #DHCP server.
No IP, no extra client created in Zabbix, and only the normally-annoying amount of alerts.
I'll #fsck with it for real, later...
Looking for opportunities to harden your Fedora system? Here's one way to make your VPN use more secure with NetworkManager.
https://fedoramagazine.org/protect-your-vpn-from-tunnelvision-attacks-with-networkmanager/
Fedora Magazine · Protect your VPN from TunnelVision attacks with NetworkManager - Fedora MagazineExplains TunnelVision attack on VPN and a method to protect connections using NetworkManager
Das #VPN der #UniBonn gibt mittlerweile eine äußerst unhilfreiche 404-not-found Fehlermeldung zurück, wenn man sich unter #Linux (#openconnect cli oder #NetworkManager GUI) verbinden möchte.
Die Lösung ist (natürlich!) wie hier¹ im #ArchWiki erwähnt:
> sudo openconnect --useragent=AnyConnect unibn-vpn.uni-bonn.de
Also dem Gateway vorgaukeln, dass man der Cisco AnyConnect client ist 
bbs.archlinux.orgCannot connect to VPN with openconnect, but I can with Cisco Anyconnec / Networking, Server, and Protection / Arch Linux Forums
Managing IPv4 Address Conflict Detection with NetworkManager
https://fedoramagazine.org/managing-ipv4-address-conflict-detection-with-networkmanager/
Fedora Magazine · Managing IPv4 Address Conflict Detection with NetworkManager - Fedora MagazineDo you know NetworkManager will avoid a duplicated IP? Check this article for further details about Network Manager and duplicated IPs
ok does anyone have a guide or tips for torrenting with wireguard + networkmanager on nixos because this shit is not working. im using a protonvpn wireguard profile imported into networkmanager, and it's barely working. only connects to google after a few attempts and times out 3 times before a dns request goes through
#networking #nixos #wireguard #protonvpn #networkmanager
I am really confused why my #NetworkManager nm-applet uses these barely visible icons (first picture) instead of icons provided by upstream (second picture). Anyone having the same issue on #Fedora ?
Ensimmäistä kertaa kaukojunassa varmaan noin viiteen vuoteen. VR:n wifi blokkaa aika tehokkaasti VPN-yhteydet. En ole nyt liikkeellä työasioissa, mutta vähän hankalaa olisi tehdä töitä täältä. Linux-käyttäjänä en suht nopeasti löytänyt tapaa kiertää asiaa NetworkManagerilla. Private Internet Accessin oma sovellus sallii liikenteen ohjaamisen kohdeportin 80 kautta, jolloin se pääsee blokista läpi.