this is the saddest, stupidest, low effort troll account - see comment history

If we can somehow entice Chinese car companies manufacture here

I think that’s part of the point of auto tariffs.

It’s not about software or data. It’s about control over the supply chain - cars are essential to our economy and way of life in North America (like it or not). It’s the same reason we protect the milk supply. You don’t want another country to be able to turn it off in a conflict.

The thing is, if Trump wants to kill Canada’s role in US car manufacturing, then it will cost him the car markets in Mexico and Canada. If there’s no jobs here to protect, then we’ll just drop the tariffs on Chinese EVs. (This is speaking like 20 years down the road). We’ll all be driving Chinese cars in that scenario. The tariffs are a total lose-lose situation, so dumb.

I’d be way more concerned about whether it’s a deathtrap than whether or not the touchscreen has good UX, lol.

Totally fair. One thing that’s super clear in this country is that the tax laws favour the rich. IMHO even RRSPs are of greater benefit to people who don’t pay rent or have paid off their mortgages.

It’s great that you’ve pointed this out and I hope there’s more awareness about it. In practice, it’s not hard: Buy from candian-owned small businesses who manufacture in Canada.

In my not-at-all-humble opinion, most of your examples are all shit you shouldn’t be buying in the first place:

• We have copious amounts of local craft beer. Never buy the big brands, they’re all swill. If you actually drink craft beer, you’ll know which brands, like Creemore and Millstreet, are fake craft.

• Nobody should be buying anything from Coca-Cola in the 21st century. We’ve known pop is terrible for your health for like 50 years. They’re a shit company who is the biggest polluter of plastics in the world.

• Canada Goose is for tools with no taste. By the time any trendy fashion company gets bought out, it’s not cool anymore.

All we have to do as a nation is just put that little extra effort into learning about what we’re buying and making different choices, and it’s actually great that we’re all doing that because we should have been doing it all along.

You’re mad about the wrong thing. He’s going to pay an effective tax rate of about 25% when he exercises those options. (Capital gains)

Someone correct me if I’m wrong.

As someone who works in tech, I feel like the sales pitch for VPNs is snakeoil for the average person. All you’re doing is trading out your own ISP spying on you for another ISP who can spy on you. I know I have rights if my ISP spies on me in my own country, but if my traffic is all egressing via a foreign country, I may have zero privacy rights in that country.

If you need to hide your torrenting activity, just use a seedbox. If you need to hide from the NSA, none of this is going to help you. And TLS basically does the rest.

Same with DNS-over-HTTPS - the DNS server is where they’re going to be spying on you!

Fastest petition I ever signed lol. Easy decision.

yooo, I was just playing T2 in the pickup game on Friday night a few weeks ago. It’s still so good!

Wrapping up this thread, I really appreciate all the opinions and experiences everyone shared! Gave me lots of new perspectives to think about.

Yeah, this might be the way to go. OpenWRT supports hardware NAT with many of these ARM-based routers like many of the MediaTek-based ones, which gives them super high throughput at very low CPU usage. The efficiency blows x86 out of the water. The ability to migrate your OpenWRT config to new hardware (real or virtual) in the future means you kinda get the best of both worlds…

Do not use an SSD for cold storage - it will fail. SSDs need to be plugged in every once to refresh the charge in their NAND, otherwise they’ll lose the data.

This is not a theoretical thing - I’ve had a good Samsung 850 Pro drive fail while being off for 2 years.

Thanks, this is good data!

How fast is your internet?

Do a speed test and run htop… you’ll see CPU usage only on one core spiking. Not a big deal if your CPU can handle it, but the AMD GX-412TC in the APU2 I was using is too slow.

Even if the virtualized router is down, I’ll still have access to the physical server over the network until the DHCP lease expires. The switch does the work of delivering my packets on the LAN, not the router.

Thanks for the tip about the pfSense limit. After running pfSense for like 8 years, my opinion is that is flush with features but overall, it’s trash. Nobody, not even Netgate, understands how to configure limiters, queues, and QoS properly. The official documentation and all the guides on the internet are all contradictory and wrong. I did loads of testing and it worked somewhat, but never as well as it should have on paper (ie. I got ping spikes if I ran a bandwidth test simultaneously, which shouldn’t happen.) I don’t necessarily think OpenWRT is any better, but I know the Linux kernel has multithreaded PPPOE and I expect some modern basics like SQM to work properly in it.

The other thing to keep in mind is to pass through physical nics. Using just the vnics will potentially lead to security risks. That’s the reason I went back to physical fws.

I could throw an extra NIC in the server and pass it through, but what are the security risks of using the virtualized NICs? I’m just using virtio to share a dedicated bridge adapter with the router VM.

If you just use 2 nodes, you will need a q-device to make quorum if you have one of the nodes down

I could just use VRRP / keepalived instead, no?

I should try Proxmox, thanks for the suggestion. I set up ZFS recently on my NAS and I regret not learning it earlier. I can see how the snapshotting would make managing VMs easier!