Andrew Breese

Musings of a professional geek

4GX Wifi Plus- How to reset the device

I’m using a Telstra 4GX wifi Plus hotspot widget when I ‘m the road at present, and the silly thing locked up while charging. It displayed the 4-5 power bars and little else on the lcd screen.

I started playing with it as I couldn’t find instructions online – it’s like an expensive figget-spinner. To reset the 4gx: Hold the Power and WPS buttons in for 10+ seconds and the device will shutdown. Then start-up and it *should* be back to normal.


Humble Bundle on Cybersecurity and Crypto

Heads-up on a great Humble Bundle on crypto, security, hacking, and all sorts of related topics. As a pay-what-you-like deal it’s amazing given these books are worth. I’m really keen to read Threat Modeling: Designing for Security and Cryptography Engineering: Design Principles and Practical Applications; that is my bed side reading set for months to come. Offer ends around the end of July, and found via Bruce Schneier’s blog.

An interesting Broadband modem with mobile backup

The Telstra Exchange news feed has a good post last week – a new broadband modem product which provides a fast connection with a mobile backup in case the connection drops; called Telstra Gateway Frontier, also hitting the news on via Gizmodo and CNet. Firstly let me state the design of this device is far better than most modem/router devices, and if you want a better look at it’s physical appearance browse through the product designer’s website. Its a nice looking piece of kit. It helps that its not a black and grey box with 6 antennas poking out.


That is the Gateway in the background of this image sitting stylishly on the shelf (never mind that it has no power cable or phone line plugged into it, this is a marketing image), in use there would be a few cables running up from the floor to the unit.

Two statements in the primary article stand out as interesting:

If there is an interruption to the home broadband such as planned network maintenance, the gateway will automatically switch over to the Telstra Mobile Network within minutes.

… and …

Featuring the latest in Wi-Fi technology (Wi-Fi 802.11ac 4X4) to increase in-home Wi-Fi speeds up to four times compared with the previous generation of our gateway technology (when using AC-compatible devices), to significantly boost signal reach as Australians embrace video streaming on smart TVs and mobile screens.

Well damn, that’s actually useful.

Why? Well when I was a techie many years ago one of my proud achievements was cobbling together a “hybrid internet connection” for the company which attenuated two aDSL connections, a load-balancer for them, with one having dial-up backup for email, then plonked a few wifi access points into the network for the IT staff. That might not seem like much these days, but in the early 2000’s there wasn’t the choice in providers or flexibility in hardware we have today. My old solution from 15 years ago used three modems, a load balancer, two wifi points, a dedicated firewall device, a secondary firewall for a secure network, a router, and a server to control the policies and monitor usage. It was complex enough to need diagrams and many pages of configuration notes to run, and still had multiple points of failure. This Gateway product looks like it will have one box and three cables (power, phone, and lan), and so a huge amount of what I needed a patch panel and a rack space to do. I’m happy to see this in the home market, but can also see a huge potential for small businesses who just want to get online and stay online. Read more of this post

Privacy Amendment Bill for Data Breech Notification has passed.

The Privacy Amendment Bill for Data Breech Notification has passed.

Implements recommendations of the Parliamentary Joint Committee on Intelligence and Security’s Advisory report on the Telecommunications (Interception and Access) Amendment (Data Retention) Bill 2014 and the Australian Law Reform Commission’s report For Your Information: Australian Privacy Law and Practice by amending the Privacy Act 1988 to require agencies, organisations and certain other entities to provide notice to the Australian Information Commissioner and affected individuals of an eligible data breach.

What does it mean? Well practically it means that companies and organisations (including the government) who suffer a breech of information must notify the government, and therefore may as well tell the public too, in a certain time-frame. And that failing to do so suffers penalties. It encourages data security, privacy, literacy for cyber threats, and might also change the ways companies think about technical security and privacy more broadly.

Is it perfect? No. Is it better than hoping it does not happen, or trusting that companies might do the right thing anyway? Hell yes. Huzzah!

Telstra IP4 to IP6 mobile rollout – nice

ITNews has an article on Telstra’s improved capability to supply IPv6 addressing on devices on their mobile network – not revolutionary, but interesting because it demonstrates that they are genuinely seeking to move through to IPv6 and also putting material into the marketplace which is semi-technical and informative in nature. The IP address IPv4-IPv6 crisis was raised decades ago as a potential problem, and as a career techie I watch with interest when these things bubble to the surface in the general media.

As first spotted by CommsDay, the incumbent last month said it would introduce dual-stack IPv4 and IPv6 addresses on the Telstra.WAP and Telstra.Internet access point names from September.

Each device will be allocated a dynamic /64 IPv6 prefix, with access to the next-gen addressing scheme on Telstra’s network requiring further configuration on user devices.

Groovy. I like that. Many many folk bash Telstra, however if they do more network work, and communicate more about what the plans are and when they’re being deployed it will go a long way (for me) to gain faith in their wider capability as a premier telco vendor. Talking more about the technical issues and then extrapolating what that might mean to end users is useful – and for customers this means that the Telstra network will have breadth to meet addressing demand in the future. Internet-of-Things (IoT) is pushed in the hype cycle in universities, private companies, and the media – this means their mobile network should be “IoT Ready” (my words, not theirs though).

Something positive, lets get more of it.

…Disclaimer: these views are my own, of questionable accuracy, may be improved caffeine, may change with time, and are not representative of Telstra (duh), my employer (duh), my family, or anyone else…

Wartime Lorenz crypto machine

As a Crypto fan seeing a pic of the Lorenz is good, knowing its in a museum is even better (article from The Register). Cool.

Receiving the Lorenz machine, TNMOC’s Clark said: “We are enormously grateful to the Norwegian Armed Forces Museum for its generous loan. It completes a truly unique set at TNMOC and helps bring further life to the story that we have always wanted to tell as clearly and dynamically as possible.”

“The arrival of the Lorenz… brings into even sharper focus the astonishing achievements of those wartime code-breakers,” he added in a TNMOC statement.

Go on, geek it up with me. That is a fascinating mechanical beast.

Sync Calendars between Lotus Notes, Outlook, and Google

For a while now I’ve been trying to sync my various work calendars, which run on three separate disconnected platforms: Lotus Notes (my current site), Outlook365 (my office), and Google (personal and phone). After trying an open source solution InGoogleCalSync which did half of what I wanted, I found a paid service called AweSync which is darn good – and worth talking about.

Essentially AweSync allows the calendar entries to be sync’ed both ways between Google’s calendar and Lotus Notes. It also syncs tasks and contacts, but I’ve not turned on that feature. The app is clever enough to understand that I have multiple Google calendars, and manage changes between them. The open source app was limited to one-way push, and events could not be edited in both places reliably, but AweSync handles this.

The Outlook calendar sync comes from the boilerplate MS Exchange config on the iPhone which supports contacts, tasks, events, etc. This means that events from my company are two-way sync’ed between Outlook and Google in one calendar, and events from my work site are sync’ed from  Lotus Notes to Google in another, and my third Google calendar is for personal information. I can see all these three sub-calendars now in Lotus notes, can tell by colour which is which, and also see an exact match on my mobile phone. Just like it should be when we try to have a central place to manage meetings and appointments – this small app and the darn large behemoth called Google have provided what I needed.

Awesync was a mongrel to setup due to the locked down permissions on my site computer, which essentially needed to be opened up so that it could run properly. The Support team from Awesync were wonderful, and it was their diligence in assisting me that really helped me decide to purchase it (USD$20).

So I still absolutely loathe Lotus Notes as an email and calendar application, but at least I can now manage my appointments properly.

xkcd’s ContextBot comic

Managing backup, cheaply

For years I’ve had no real backup strategy at home. Files saved into various cloud providers like DropBox, Google, etc are one thing which might appear to be backup-ish but they really are not a backup tool at all. Those are file sharing and synchronisation for the sake of easy access. In other cases the family was using a combination of removable hard disks and usb memory keys. In our house different files are in different “cloud” places, which makes finding them a mess and managing it difficult.

I decided that my holiday mini-project was to get a backup solution for the house.

Goals and considerations:

  • Applications should have a simple interface. Be usable by a non-geek to back-up their personal files.
  • The ideal solution should have multiple backups locations and hopefully different styles of backup. This means copying the same data into several different places, and consider using cloud or NAS or portable drives in combination.
  • Ideally be automatic, or at the very least able to be scheduled or controlled.
  • Be something my family can use, and something that I can maintain without too many headaches.
  • Due to the size of my data, a cloud solution is problematic. However some of my family might be able to use a cloud service, as they have a much small amount of data to backup. eg. My core set is around 180 gig with a fair amount of extra stuff I’d like to add to it, compared to my partner’s data which is around 12 gig.
  • Backup system should perform incremental backup, especially if this is to run over slower connections; like broadband or wifi. A very large part of my home’s data does not change often at all, and I want the software to alter the backups it has already made, not do the entire data block again.
  • USB memory drives are now hated and won’t be used as any type of backup. They are too easy to loose and fail too often.
  • Support for Windows is mandatory, anything else (Macs and Unix or blah blah phones) is a nice to have. I’m not a SysAdmin anymore so I no longer have a linux server chugging under my desk.

So in a bit more detail…

Simplicity is needed as I’ll most likely be configuring this, but in the event that I need to recover the data from a back-up I want something that I can walk somebody else through. I’m also likely to be called upon to “fix” a backup related issue on short notice and with a time deadline, so something that performs most of the work auto-magically (I hate that phrase but it suits) is important.

Multiple backup styles is important because any single style of backup might be corrupted or fail, so having several redundant techniques is a stronger/broader approach.

Initially I’ve chosen the CrashPlan application, as it allows a very simple to configure and run interface, which is suitable for non-IT literate users, and also has options that are reasonable for IT geeks. I’ll be testing this in a local setting (phase one below).

I’ve read there are solutions with easier interfaces and potentially slightly cheaper, but from my short scan of the featureset on the top 10 vendors, only CrashPlan has remote pc to pc backup which is independent of a cloud solution. I really like this idea when I can consider how a family might interlink their computer resources to backup each other’s data.

CrashPlan is also interesting because the basic backup tasks of saving a set of profile related data to a removable drive or other computer is really easy and free. Yup, free for the basic backups. There are a wide range of backup application vendors and especially cloud backup providers now (Backblaze, Carbonite, Crashplan, etc), so do a little digging to find the vendor that suits your needs.

Lastly before I get to the detail, a note about “the Cloud” and “cloud backup“. To be frank in Australia a typical USA cloud solution isn’t viable or fast. I love the cloud as a concept & tool, and liked the idea decades ago; before server centric computing was morphed by marketing jargon into calling it “the cloud“.

Downunder we are still not able to access cheap fast cloud services, and that kills what I’d really like to do – which is just pay a monthly fee and backup every damn file, quickly. I tried it with a few providers and the speed just isn’t good enough yet. Try moving 160gig up into a cloud provider and you’ll have a task measured in weeks! Time will change that eventually.

The rest of the article is about what I’ve got working and what is next.

Phase one is getting the solution working at our house, across the important computers. Not hard, a bit time consuming, and needs to be watched over a few weeks to know for sure.

Phase One – Get it working locally.

This means get the backup working locally to the home where the PCs are used. This was a simple task of installing the application on each PC and then pointing them at a backup location. e.g.

  • Laptop 1 is an older unit with very little free hard disk space, and also has a very small backup amount (12 gig). So that unit pushes data to Laptop 2 which has far more free space.
  • Laptop 2 needs to save about 180 gig of data somewhere, and has a local disk with 250+ gig free. So it pushes it’s data to a removable drive.
  • Ideally both computers would have a fair amount of free space and they could backup to each other, but such is life. When that older laptop is retired then I’ll use the new one in the same way.

This has been in place for a week now and seems to be working. I’m watching with interest how the different systems connect to each other, how much bandwidth they demand when running, and also how much cpu the solution churns when running and in background.

My hope is that the backup solution will “just queue a retry” when the appropriate destination isn’t present. It seems to, but time will tell. A month is reasonable shake down time.

Interesting and useful that CrashPlan sends a periodic email summary to me of where it is up to. I like that.

Phase Two – Get it working with a NAS, where the NAS is the destination for the backup.

Specifically, I want it to backup onto the NAS, and I’m not at all trying to backup a NAS. Backing up a NAS via a Windows program running on a separate PC, across a wifi network, … is a nightmare scenario with too many moving parts. Most of the articles linked below are addressing how to mount and backup a NAS drive to elsewhere using the CrashPlan client.

Instead I’m looking to use the NAS space as the place to drop the backups. CrashPlan does not do that easily either, but the work around for  cheating with a NAS pointed me at a working unsupported solution.

Aside on NAS backups – CrashPlan does not support backup to a NAS for Windows (macs and such work fine, as it is a limitation of the way Windows OS handles services running as users and the security permissions), so yes it can go between PCs, but those PCs have to have CrashPlan installed and my NAS is a more generic consumer media drive with no WindowsOS to use. This is a limitation that hurts the product for Windows systems.

There are unsupported known work-arounds though (have a read here), which is where this step comes in. I did not use the advice in the linked article, as it uses the “Net Use” command in a windows batch file, which I don’t see as a useful approach for Windows 7 and Windows 8. After too many years using batch files to bend Windows to my ever changing and unforgiving will, I now avoid it.

It certainly might be ok in WinXP, but thankfully I only need to worry about Win7/8.

Instead I’ve used an NTFS Symbolic Link (which is akin to a shortcut, but not), however the operating system sees the connection as present and working file or volume. Essentially the user will see a folder which looksalmost normal, and then when they open it the current user session credentials are passed through to the NAs and the NAs folder will show up.

This is useful as it disguises the network share as a directory local to the computer’s operating system, which can then be used by CrashPlan for backup. It also establishes the link as something which is persisted to all parts of the OS, which means that the authentication for the connection is no different than any other share. This is handy because the batch files would have required authentication details saved within them, which I conceptually detest.

Still to do -I need to double-check that the Windows indexing service and all the associated scanning services (anti virus, etc) are set to ignore that symbolic link. I don’t want the OS to manage that area at all, just point to it.

The approach is predicated on the NAS server being online and present when CrashPlan needs to run, but as do all the approaches (duh!); you’ll always need the location to be online.

The mklink command syntax needs to:

  • run the command as Admin, which on Win8 might be a UI challenge in itself. Find it in the GUI then right click to run with elevated permissions.
  • use the command switch to indicate it is a directory, using “/d”.

mklink /D C:\temp11111 \\server\share\foldername\

After adding the link and then configuring CrashPlan on my laptop to point to the NAS – it backed up.

That was an exciting nerdy moment for me as it meant that my files were now backed up in two places. A huge tick in the redundant locations requirement. This is in place now too, although I do need to make sure the local network isn’t being crushed by all the traffic. The backup app kicks off automatically, so it could gobble up the local network unexpectedly.

Still to do – Last trick I’ve yet to do is to investigate and configure the advanced setting to disallow it run during the “busy times”. I think I’ll set a schedule from midnight to 6am where it can run unhindered.

Phase Three – Get it working cross-site.

The last step is to get an additional redundant location which is also offsite.This phase is still very much in the playground stage.

The product’s cloud solution could do this, except that it initially said the data upload was going to take 4-6 weeks continuously running! Nope, sorry. I want a backup somewhere which isn’t in the house so that theft and fire can’t affect the backup and until the online speed improve I’ve reverted back to using portable hard disks.

Aside for investigation later – There might be a way to seed a backup set onto a portable drive, move it to an offsite location, then copy that backup to the NAS or some such. I’ll dig in to that later. Might be useful for both the CrashPlan cloud backup, or even backup across the VPN between houses.

This is the tricky and complex step, as it involves setting up a VPN into my home network and then configuring the laptops to recognise the NAS as a valid CrashPlan backup location. It has the flaw of affecting both my home bandwidth and the bandwidth of the other end, and also will chew up a lot of my family’s internet allowance each month. The usage is certainly something that I’m not sure about.

There are two options, either I use my account and backup between my computers and/or I setup an account for each user and cross link the machines. Hard choice, so I’m doing both.


  • My laptop will use my NAS, and also a removable 2TB USB3/SATA drive. I might throw a 3rd local network location in too while I figure out an external location.
  • My partner’s laptop will use my laptop, and also the NAS.
  • My mother’s two laptops will use each other (locally) at her house, and also share files into my NAS via a VPN.
  • My brothers family of laptops (4x of them) will backup onto each other in whatever mesh makes sense according to their disk space and backup size, also onto his removable hard drive, and then onto my NAS via VPN.
  • I’ll consider a family Cloud backup plan at this point too, to see if the backup is worth it, but frankly the speed from Australia isn’t great.
  • I’ve love it if each of the three sites all had a NAS which then swapped backups, but that is a dream for a more enlightened time. Maybe next year.

Another interesting factor in the choices is which VPN type to configure. PTPP is quick and simple, but not terribly secure anymore. L2TP is better (far better I’m told) but requires setup of keys, then OpenVPn is great and I use it a lot personally but I’ve never set it up before from the “end” side.

I got the PTPP styel VPN working at home with my router as the end point in a few hours, opened a firewall port, and then closed it all up again after reading more about just how hackable PTPP is.

And this is where I am now, muddling around with reading about OpenVPN vs L2TP config, and how that might be performed on my router, or more likely through my router straight to a host (yikes!).

It’s nice to have a technical challenge hobby project again.

Last comments

I’m feeling far happier with just a basic backup being performed automatically regularly at home. Even without an off-site solution this is far better than nothing. The VPN questions will take a long time to get solved, and likely be a tech support challenge for the other users.

I wish I’d purchased far higher end gear for my media server and the hardware in the laptops, as it would have made this a little simpler, but my choice at the time was to limit cost and not be doing SysAdmin tasks at home. It means the next set of hardware will likely be mid range gear, and avoid the home user stuff.

…So if you are after a home backup solution consider CrashPlan’s free offering. All you need is either some diligence or an extra pc in the house to swap backups with; and the configuration is not hard.

%d bloggers like this: