## Neotronics Digiflam 850 Flammable Gas Sensor

Pictures from the inside of a flammable gas sensor from 1980’s England. Elton John says that “when you’re made in England you are built to last”. Well, this device is made with a Lead Acid battery potted to the case, so this one is built to last… Until the battery fails.

Note the conformal coating over the main board (though not all boards). The device uses 74 logic, and quite a few different daughter boards connected to the main PCB. The battery feeds 8V into the main PCB. It is charged by an external PSU via the barrel jack on the side. There is minor visible corrosion from the battery leaking. Two 5V regulators on the back of the case. Well built, except for the battery. Fundamentally flawed – it was not meant to live beyond the life of the Lead Battery.

/

## Mikrotik RB2011 OpenWRT Installation Procedure

RouterBoard RB2011 Install Tips Steak Electronics

\textbf{Mikrotik RB2011 Routerboard Install}
Contents
Contents
1.  Overview

4.  Pitfalls

1. Overview To install Openwrt on a Rack Mount server. One of the options is the Mikrotik RB2011 series of routers.

2. Procedure This paper will not be a record of my work (though it took about 3 nights to compile this info). What it will be is a guide for others, or myself to install Openwrt on this router in the future. Let’s begin.

The general process will be the following:
\begin{verbatim}
1.) Run dnsmasq command which will start a DHCP server with
TFTP boot enabled
2.) Power off RB2011, Hold reset button, and power on.
Continue holding reset button until you see the DNSMasq
window report it has sent the file.
to the nand-large mikrotik image.
\end{verbatim}
Sounds simple? It should be! Millions of hours of engineering and manpower have gone into this, it better damn well be. But don’t be surprised if something unexpected occurs. I will cover some troubleshooting as well.

2.1. Run DHCP server with TFTP boot enabled I tend to make a shell command for the dhcp server command. It’s just one command, and will do all the gymnastics for you. Here we go:

\begin{verbatim}
//
#/bin/bash
#ifconfig eth0 192.168.1.10 up
sudo dnsmasq -i eth0 –dhcp-range=192.168.1.100,192.168.1.200 \
–dhcp-boot=openwrt-ar71xx-mikrotik-vmlinux-initramfs.elf \
–enable-tftp –tftp-root=~/directory/where/file/is/ \
)
{
/sites/ -> $(SEC_CRIT); } \end{verbatim} Now we will init, type \begin{verbatim} sudo tripwire –init sudo twadmin -m P /etc/tripwire/twpol.txt sudo tripwire –init \end{verbatim} to reconfigure twcfg.txt run \\ \textbf{/usr/sbin/twadmin –create-cfgfile -S site.key /etc/tripwire/twcfg.txt} if you get: \begin{verbatim} root@site:~# /usr/sbin/twadmin –create-cfgfile -S site.key /etc/tripwire/twcfg.txt # Error: File could not be opened. # Filename: /root/site.key # No such file or directory # Exiting… \end{verbatim} You must cd to /etc/tripwire directory. 2.2. Configuring SSMTP SSMTP is a program you configure once, and can reuse the configuration everywhere[3]. For starters, I’d recommend you install SSMTP according to this guide here: \begin{verbatim} https://wiki.zoneminder.com/How_to_get_ssmtp_working_with_Zoneminder \end{verbatim} This is a thorough guide that explains debugging. Some steps are superfluous (given that the instructions pertain to different software) but the general directions are sound. And afterwards sending an email is as easy as \\ \\ \textbf{echo “Hello, World” \textbar mail -s “My email check” user@email.com} \\ \\ This guide assumes you have configured SSMTP according to this guide correctly, tested it, and are able to mail from the command line. Once you’ve setup SSMTP once, you can reproduce this setup on other computers, simply by copying over the revaliases and ssmtp.conf of a valid configuration. So let’s do that. Copy over revaliases, and ssmtp.conf. test the configuration from the command line using the above echo and mail. Once that works, test out tripwire. \\ \\ \textbf{tripwire –test –email user@email.com} \\ \\ Done. 1. For a full walkthrough of this process see this URL:https://www.howtoforge.com/tutorial/how-to-monitor-and-detect-modified-files-using-tripwire-on-ubuntu-1604/ This process includes most, but not all of what you need to know. 2. This script appears to be required in this setup. 3. This is a strength of FOSS and let it remain that way. / ## How to remove solder bridges on a 0.5″ Pitch FPGA with 200+ Pins In this video I describe some tips on fixing bridging from a small pitch FPGA, here a Xilinx Spartan 3, PG208 package. The largest non-BGA package available for this family. I started with a toaster oven, and some solder paste, dispensed with a small syringe. From there I placed the IC carefully on top of the PCB, and put in the toaster until the solder reflowed. Once it was cooled, I noticed some bridges from using a little too much solder paste. This video explains how I cleaned up the solder bridges using some solder wick. It comes down to needing to tin the tip before each application of the wick. When it comes to tinning the tip, it’s not something that is required in all soldering, but here, in this scenario, it is required. It also helps to use fresh wick each time. PITFALLS: The kind of problems that you can run into when soldering a device like this may be the following: 1. Don’t bother trying to solder this by hand with an iron. Just don’t. Use a toaster, and solder paste. You don’t need a fancy reflow controller, just stick the board in a toaster until the solder reflows. Set it to max temperature (I use broil). Don’t use the toaster for food. Next. 2. Don’t put the solder paste on top of the IC pins. Put the solder paste down on the pads, and then put the IC on top of them. Doing the opposite will not work as well. 3. Do make sure that you have soldermask between all the pins on your gerbers before sending out. That is a rookie mistake, to have a footprint made that somehow omitted or doesn’t include the solder mask. Without it, the bridges will happen more easily. 4. Do use a good quality soldering iron. Consensus these days is that the entry level iron you should use is either the Hakko 888 or the Weller I have. Each runs about$100-150.
5. Do double check your footprint pads are the right size. Don’t make the leads too long on high speed designs, or the capacitors / collectors won’t be able to dispense electricity to the IC fast enough.
/

## Multiple Switches Can Slow a Network’s Internet Down

1. Overview

A question is, can multiple network switches, slow down either the network or the WAN. The answer is yes. Let’s discuss a working example today.

2. The Previous IT Guys

Today I was working at an office. They had a firewall connected to a Verizon FIOS modem. They had a gigabit [1]switch immediately downstream, and then a network cable ran about 50-75 feet to their office. Here they had another Gigabit switch, and then the cables went off to either computers or other switches. Let’s forget about what was downstream of that last switch except for the computers.

2.1. Internet Speeds

The internet speed from the two computers in the office was about 10Mbps down and roughly the same upload. However, I tested the speed directly from the IT closet, and found 100Mbps down and 100Mbps up. At this point, it was a simple case of following the signal path and seeing where things slowed down. At least, I knew that they should be getting 100/100Mbps.

2.2. The Tests

What I found is that as soon as I had two switches after the firewall [2]the speed would drop to 10/10. It was not dependent upon any brand of switch. I tried swapping from one other model that was available. The slowdown appeared to be switch independent. So in summary:

• Firewall – computer – 100/100
• Firewall – switch – computer – 100/100
• Firewall – switch – 50 foot wire – computer – 100/100
• Firewall – switch – 50 foot wire – Switch A- computer – 10/10
• Firewall – switch – 50 foot wire – Switch B- computer – 10/10

What I did was remove the switch at the outside of the firewall. Now I had only

Firewall – 50 foot wire – Switch – Computer – 100/100

I’ve heard an IT person mention that he didn’t like multiple switches in network deployments, due to speed issues. On the other hand, I’ve setup Video Recording Networks with multiple switches all connecting serially to each other without issue. It seems that this is not a simple black and white issue. With the right hardware you may get away with it. Or if you avoid WAN access. In any case, the only way to know, is to test.

4. Conclusion

If you are going to put > 1 switches downstream of the firewall, make sure to double check the WAN speed tests from just after the firewall, to at the very last switch.

1. Actually, all switches were gigabit, but it didn’t make a difference.
2. which has its own internal switch
/

## Remove Domain on Windows Server and IIS doesn’t work

I recently took down the domain from a server, and an application running on the same server’s IIS failed afterwards. One possible cause of this is due to the application running as a domain user. The solution:

In application pools of IIS manager, change domain\user to a local account.

Here, identity would have been one of Domain\user.

/

## AutoSSH – a Reverse Proxy Alternative

This document is best read printed out on paper.
1
Overview
I recently added another apache server to an existing infrastructure, and
I wanted it to be accessible under a similar IP as another server. Due
to the complexity of the website, it was not possible to simply do a reverse
proxy without knowing the correct settings (e.g. X-Forwarded for). Instead,
AutoSSH was used. In the end, I accessed a new port on the existing IP.
2
Work Log
Ok, I’m going to get right to the configs that I used. You want the tool, you
don’t need to know all the details.
2.1
Crontab
Here is the crontab script I used. I put this in /etc/crontab, so it has root
after the times. I only use /etc/crontab, as it’s easier to manage.

* * * * * root pgrep autossh > /dev/null || \
/usr/local/bin/autosshzm/autosshzm.sh

then it will try the next command. (—— is an OR). Put the bash script
wherever you want.
2.2
Bash Script
This script is obviously what the crontab calls.

#!/bin/bash
logger ” /usr/local/bin/autosshzm script started.”
#source $HOME/.bash_profile #not needed. source$HOME/.keychain/$HOSTNAME-sh logger ” /usr/local/bin/autosshzm sourced.” autossh -L 0.0.0.0:2:localhost:80 -f user@ipaddress sleep 31536000 &> /var/log/autosshzm/autosshzm.log 1#autossh -M 0 -o “ServerAliveInterval 30” -o “ServerAliveCountMax 3” -L 0.0.0.0:2:localhost:80 user@ipaddress &> /var/log/autosshzm/autosshzm.log logger “auto ssh ran” Note that the second autossh does not work, as it’s missing the sleep and the -f command. 1 In order for this to work, you’ll also need the following commands: apt-get install keychain autossh There were some more setup steps required for keychain… From stackex- change: 25 keychain solves this in a painless way. It’s in the repos for Debian/Ubuntu: sudo apt-get install keychain and perhaps for many other distros (it looks like it originated from Gentoo). This program will start an ssh-agent if none is running, and provide shell scripts that can be sourced and connect the current shell to this particular ssh-agent. For bash, with a private key named id_rsa, add the following to your .profile: keychain –nogui id_rsa This will start an ssh-agent and add the id_rsa key on the first login after reboot. If the key is passphrase-protected, it will also ask for the passphrase. No need to use unprotected keys anymore! For subsequent logins, it will recognize the agent and not ask for a passphrase again. Also, add the following as a last line of your .bashrc: 1 Figuring this kind of stuff out can take about an hour. 2. ~/.keychain/$HOSTNAME-sh
This will let the shell know where to reach the SSH agent managed
by keychain. Make sure that .bashrc is sourced from .profile.
However, it seems that cron jobs still don’t see this. As a
remedy, include the line above in the crontab, just before
* * * * * . ~/.keychain/\$HOSTNAME-sh; your-actual-command

The only thing that I needed to do here was
keychain –nogui id rsa
The rest of it (notes about crontab) was not required.

3
What Did NOT Work
Here’s some things I tried that did not work.

• https://github.com/obfusk/autossh-init – This init script, didn’t do
much for me. Remember, I’m stuck with systemd in Ubuntu 19.04… 2
• Reverse proxy with Apache – As I said, my website 3 was too complex,
and I didn’t want to go down that rabbit hole.
• Starting AutoSSH in rc.local. Didn’t work.

2
The scourge of deleting software history. Keep backwards compatibility at ALL COSTS, developers.
3
Some people might call it a web application. I will not.
3

/

## Zero Carb Vanilla Ice Cream Recipe

In a Zero Carb diet, you may miss ice cream… Well, fear not. You can eat a no sugar added, high fat, homemade ice cream. Healthier, and less guilty. I serve it in small batches of around 1 cup each.

Ingredients:
1 Pint of Heavy Cream
2/3 – 3/4 cup of Milk
1 scoop of Whey Protein powder (about 1/2 to 2/3 cup)
1/4 tsp Vanilla extract
1/4 tsp stevia (not pictured)

And you will want a blender or mixer of some kind, along with a mixing bowl.

Details of Ingredients
The devil is always in the details. For the cream, you should get one that has no added ingredients in it. Most brand name creams have added ingredients to extend the shelf life, which also add some amounts of sugar. These are to be avoided. The ingredients of your cream should say nothing more than cream (see image).

The vanilla extract should be ‘real’ vanilla, not imitation (there is no imitation to real vanilla), the stevia should be a pure type (many are mixed with other ingredients), and the whey protein – you should likewise search out a pure whey. Try to avoid any with soy lecithin, sunflower lecithin, etc…

Directions
With a blender, or mixer, add the whey, milk, cream and mix. Next, add the stevia and mix. Finally add the flavouring and mix. You can do a taste test of the ice cream.

After you have mixed all the ingredients in a bowl, you can pour serving sizes of your desired amount into bowls, and put the bowls in the freezer to become ice cream. Before eating, remove from freezer, let thaw for a few minutes (a microwave can assist in quickly thawing – but don’t overdo it), and enjoy.

Pitfalls
If you add too much sweetener, it will be prohibatively sweet, and may need to be cut (i.e. you can add more cream to dilute it) with cream, milk, and whey. If you don’t add enough sweetener, the ice cream will taste dull, and unappealing. Aspartame can be substituted for stevia, though the quantity used may differ.

If you add too much vanilla, it will be delicious… However, this is a limit to how much vanilla you can eat in a given period of time. Don’t overdo it. If you find yourself getting tired of the vanilla ice cream, try to add a different flavoring. Note that more vanilla can be added to give a different appeal to the ice cream, but this stronger ice cream should be eaten less often. Certainly not every day. Symptoms of overeating vanilla include tiredness and lethargy. At the rate of 1/4 tsp per one pint of ice cream a week, you won’t likely run into this, but if you were to add vanilla to every meal you ate, you would find these symptoms appear.

If you fail to use a proper mixer or blender, the whey will not dissipate correctly, and it will remain unmixed. This recipe can not be made with a mixing spoon alone. Use a blender / mixer.

Make sure you use fresh cream. Cream that does not have preservatives will expire within a week or a week and a half of arriving at store shelves. Be careful not to buy expired cream.

There is no need to use an ice cream maker for this recipe.

/

## How to Factory Reset Polycom VVX 300 VOIP Phones

This is from memory and my notes, and may be incomplete, or have errors, but regardless…

Power Cycle the phone.

Hit Cancel on Boot screen (you will see an option to cancel by hitting one of the menu buttons while it’s booting).

Press 1+3+5, hold them down. NOTE: there is also a function where you can hit 3+5+7. One of these is the right one. I think it’s 1+3+5, but if that doesn’t bring you to a password prompt, try 3+5+7.

The password is the mac address. That is the easy part. The mac is on the phone on a sticker. The hard part is that you must enter letters in lower case. You can’t preview the letters, and since you have only a number pad, you have to understand how these interfaces typically work.

What there is, is a small icon on the menu that lets you change from numbers to upper case letters, to lower case letter, then back to numbers. So in order to change from number to lower case, you have to hit that button on the screen. And also, if you change back to numbers, you must hit the button again. So sometimes you might have to blindly hit a few keys. E.g. cat would be 1+1+1 (for c), a short pause, then 1 (for a), then whatever t is. But you can’t see the a going from a to b to c. It’s all hidden behind hashmarks for “security”. So you are blind and must press the buttons in the correct sequence. Horrible design, but the idea must be that only IT guys will ever work with the interface. They should be used to getting the short end of the administration stick, so will not be surprised. I was not be surprised, to be honest, just disappointed.

Configuration for Verizon VOIP

After you put the password in, you can factory reset, or possibly it does a factory reset automatically. Now the VOIP phone is back to its base mode. When it reboots you can now access the admin section, with the password “456”. For Verizon’s voip, the settings are:
Go somewhere in the network menus (I didn’t note where).

Enable ZTP
Server type - HTTPS