9 Life Hacks for all of us

A little bit of deviation from techie stuff. For those of you looking to make life better here are some “hacks” I totally agree with. What are you life hacks? What are soem things you do which are related to your tech field?

https://medium.com/the-ascent/the-9-best-life-hacks-to-become-unstoppable-87b9587992ac

Life-hacking is ridiculously fun when you see what it can do for you.

I was never much of an ‘experimenter’ — more of a go with the flow kind of guy. This strategy didn’t work for me. I fell in love with money and alcohol and that led to a larger than life mental illness. The mind can ruin you if you let it. But the mind can do even more good for you.

All of that has changed. I’m now a life-hacker and get off on experiments. These tiny little experiments have helped me have an unconventional career, write thousands of blog posts on the internet, meet some extraordinary people, and earn enough passive income to be comfortable.

People often call me unstoppable. They see my work ethic as crazy. It’s not really. What looks crazy is nothing more than the positive effects of these life hacks that other people taught me. Here are the best life hacks you can steal.

https://medium.com/the-ascent/the-9-best-life-hacks-to-become-unstoppable-87b9587992ac

Preseem and Switches in switch centric design

Anyone who follows me knows I am a big fan of switch centric designs. This usually involves a router on a stick paired with a high port count switch. Recently I had a client that installed a Preseem appliance in their network.

Equipment used in this setup
-Dell R710 with a 4 Port SFP+ card running Preseem
-Cisco 3064-X 48 Port switch
-Maxxwave Vengeance router with dual QSF+ card and 4 Port SFP+ card

A visio diagram of how this looks

We have two transport links coming into the switch on the left. These are dumped into VLANs 506 and 507. We then come out of the switch into the Preseem box via 2 SFP+ ports, one for each VLAN. In this case, we just used DAC cables In the future, we can turn these into trunk ports to pass more VLANS through.

The data then leaves the Preseem box over dual SFP fibers directly into the router’s SFP+ ports. If the Preseem appliance fails we have a secondary OSPF/IBGP path from the router’s 40 GIG QSFP down to the switch. This is a bypass in case the Preseem appliance hardware fails.

If you start flowing more than 10 Gigs through a single link you can upgrade to more SFP+ ports into your appliance and a 40 Gig QSFP+ card. You then link the appliance to the spare QSFP port on your router.

WIFI calling port forwarding

Recently I came across a need to do some port forwarding for wifi calling. I have assembled a resource guide to help you if you need to do such things. IPSEC should be allowed per RFC 5996 https://tools.ietf.org/html/rfc5996 for all wifi calling

Verizon
https://community.verizonwireless.com/t5/Verizon-Wireless-Services/What-are-the-wifi-calling-firewall-ports-and-destination-IP/td-p/1080659
UDP ports 500 and 4500 open to sg.vzwfemto.com and wo.vzwwo.com

TMobile
https://www.t-mobile.com/support/coverage/wi-fi-calling-on-a-corporate-network
IPv4 Address Block: 208.54.0.0/17 and 66.94.0.0/19:
UDP Ports 500 and 4500
5061 for SIP/TLS
TCP port 443 and 993
Also whitelist the CRL server for DIGITS OTT and WFC 1.0: crl.t-mobile.com 206.29.177.36

AT&T
https://www.att.com/support/article/wireless/KM1114459/
UDP Ports 500 and 4500
TCP Port 143

Whitelist the following:

  • epdg.epc.att.net
  • sentitlement2.mobile.att.net
  • vvm.mobile.att.net

Sprint
UDP Ports 500 and 4500

Any of the above is subject to change.

Some WordPress tips

If you are wanting to force non SSL to SSL. Add the following to your site’s .htaccess file

RewriteEngine On
RewriteCond %{HTTPS} off
RewriteRule ^(.*)$ https://%{HTTP_HOST}%{REQUEST_URI} [L,R=301]

Set proper file permissions Script from https://www.ryadel.com/en/set-file-system-permissions-wordpress-web-site-centos-7-chmod/

#
# This script configures WordPress file permissions based on recommendations
# from http://codex.wordpress.org/Hardening_WordPress#File_permissions
#
# execute it with the following command:
# bash set-wordpress-permissions.sh /var/www/<site_folder>
#
OWNER=apache # <-- wordpress owner
GROUP=www # <-- wordpress group
ROOT=$1 # <-- wordpress root directory
 
# reset to safe defaults
find ${ROOT} -exec chown ${OWNER}:${GROUP} {} \;
find ${ROOT} -type d -exec chmod 755 {} \;
find ${ROOT} -type f -exec chmod 644 {} \;
 
# allow wordpress to manage wp-config.php (but prevent world access)
chgrp ${GROUP} ${ROOT}/wp-config.php
chmod 660 ${ROOT}/wp-config.php
 
# allow wordpress to manage wp-content
find ${ROOT}/wp-content -exec chgrp ${GROUP} {} \;
find ${ROOT}/wp-content -type d -exec chmod 775 {} \;
find ${ROOT}/wp-content -type f -exec chmod 664 {} \;

Justin’s I.T. maintenance tip #7

When you are scheduling late maintenance schedule it anytime after 12:01AM so there is no confusion on the day. It’s easier to clarify 12:01AM on Friday the 10th than midnight on Friday. Folks tend to get confused when you say midnight. Is that midnight Friday into Saturday or Midnight Thursday into Friday?

If you want to do midnight do 12:01AM.