[unfinished]

Prerequisites: Assuming you have a VPS at USA node. You have completed installed Cisco Ipsec[1] and squid on VPS. In this passage,I will say http proxy, [3]is the success method, and so do [4].In many cases, [4] requires usr:pwd, but it is not always requires, in many cases, it may only use ip as http proxy. Sometimes you could use socks5 proxy[2] as well.
1.Basic framework
Remote environment:VPS OS is centos7.
Local environment:
In my cases, my laptop is Windows 11/10 with certificate to dial up ipsec. I use hyper-v to create a virtual machine(VM for short in the following) ubuntu 18.04. The VM ubuntu has docker installed.
1.1 install cisco ipsec
Reference [1] to install cisco ipsec, and your terminal device can be macos, windows, ios, or android.
1.2 squid related
sudo yum install squid
service squid start
1.2.1 scoks5 proxy in client
In your client is Windows, you could use the following command to connect to VPS. The VPS_HOST is the domain of VPS or ip.
powershell -command “ssh -NfD 0.0.0.0:3128 user@VPS_HOST”
This made a socks5 proxy on LAN.
• ssh: The SSH client command.
• -N: Do not execute a remote command. This is useful for just forwarding ports.
• -f: Go to background after authentication.
• -D 0.0.0.0:3128: Specifies a dynamic application-level port forwarding. 0.0.0.0 tells SSH to bind the SOCKS proxy to all available network interfaces, and 3128 is the local port it will listen on.
• user@VPS_HOST: Your SSH username and the hostname/IP of your VPS.

1.2.2 http proxy in client
You could use the following command to setup http proxy in your Windows client.
powershell -command “ssh -NfL 0.0.0.0:8080:127.0.0.1:3128 user@VPS_HOST”
• ssh: The SSH client command.
• -N: Do not execute a remote command.
• -f: Go to background after authentication.
• -L 0.0.0.0:8080:127.0.0.1:3128: Specifies a local port forward.
○ 0.0.0.0: The bind address on your local laptop. This means the HTTP proxy will be accessible from all interfaces on your laptop (including your LAN IP 192.168.1.106). If you only want it accessible from your laptop, use 127.0.0.1 instead.
○ 8080: The local port on your laptop that you will connect to. You can choose any unused port here (e.g., 8080, 8118, etc.).
○ 127.0.0.1: The destination address on the VPS. This tells SSH to connect to the Squid proxy running on the VPS’s localhost.
○ 3128: The port Squid is listening on on the VPS.
• user@VPS_HOST: Your SSH username and the hostname/IP of your VPS.
1.3 clash for http proxy
Just allow local lan on your 7890 port, in your “clash for windows” app.

2. Trying pull image directly
Running the command:
docker pull hello-world
You’ll probably get the error message like this:
Get https://registry-1.docker.io/v2/: net/http: request canceled while waiting for connection (Client.Timeout exceeded while awaiting headers)
At that situation, you may not access the url directly, try this:
curl https://registry-1.docker.io/v2/
You should get:
curl: (28) Failed to connect to registry-1.docker.io port 443 after 21062 ms: Couldn’t connect to server

3.Trying pull image through global proxy(cisco ipsec)
3.1 dial up Cisco ipsec in Windows. You should aceess google.com at that time. Try curl https://registry-1.docker.io/v2/ in your Windows and VM ubuntu again. If it is succeed, then you could run
docker pull hello-world
It may the easiest way to use.

4.Trying pull image through http proxy
Using docker info to check the proxy information.
docker info
4.1 through your clash port 7890
/etc/systemd/system/docker.service.d/http-proxy.conf

systemctl daemon-reload
systemctl restart docker
5.Trying pull image through socks5 proxy
6.compare sock5 proxy versus http proxy
Sock5 proxy is faster than http proxy.

7.the same situation
If you use *.yml and execute the command, you may also engage the same problem. Reference step 2 to 6 to fix the problem. The command is:
docker-compose up -d

Reference:
1. https://github.com/hwdsl2/setup-ipsec-vpn
2. https://www.cnblogs.com/mq0036/p/17184494.html
3.https://stackoverflow.com/questions/51571686/ubuntu-18-04-error-response-from-daemon-get-https-registry-1-docker-io-v2/51648635#51648635
4.https://stackoverflow.com/questions/48056365/error-get-https-registry-1-docker-io-v2-net-http-request-canceled-while-b/77130871#77130871

1.Ovf file is exported from vmware workstation 15

So we get 3 files:
(1)Ubuntu_64_bit-disk1.vmdk;
(2)Ubuntu 64 bit.mf;
(3)Ubuntu 64 bit.ovf;

2.Using qemu-img to convert ovf files to vhdx

qemu-img.exe convert D:\ubovf\Ubuntu_64_bit-disk1.vmdk -O vhdx -o subformat=dynamic D:\test_dir\dest.vhdx

3.Create a new virtual machine in hyper-v

Create a new virtual machine, attaching existing vhdx hard disk files, and select generation 1 only. The source vmdk virtual machine should be legacy bios machine, so generation 2 can not be started.
Then start and connect to the VM.

Reference:

1. https://cloudbase.it/qemu-img-windows/
2. https://learn.microsoft.com/en-us/windows-server/virtualization/hyper-v/plan/should-i-create-a-generation-1-or-2-virtual-machine-in-hyper-v

I am a beginner with using realvnc. I have a headless PC which runs remote application and steam. The vncviewer is always black screen when I use realvnc instead of mstsc. Now, if I plugged monitor to the display card, the vncviewer could display content while it was connected.
1.I noticed that, if I un-checked the directX relatived opinion and un-plugged monitor, the vncviewer could show some content such as Microsoft 365 copilot and notepad, but some of the window are displayed as black screen such as CPU fans which may be using directX technology.
2. How to use vncviewer in vmware workstation?
I use virtual machine with bridgged host network or NAT, enable the vnc in the opinion and give a port which is not used. Connect to the HOST name or ip address rather than the virtual machine’s network name or ip address, I can connect the virtual machine with vncviewer.
Reference:
1.https://help.realvnc.com/hc/en-us/articles/360004012211-Display-issues-when-connecting-to-RealVNC-Server-running-on-Windows

I update the vmware workstation from 12 to 15, but there is a problem I got when I try to start the virtual machine from snapshot. It says:
“Could not get vmci driver version: The handle is invalid.

You have an incorrect version of driver ‘vmci.sys’. Try reinstalling VMware Workstation.

Module ‘DevicePowerOn’ power on failed.

Failed to start the virtual machine.”

Solution 1: find xxx.vmx to edit this line:
vmci0.present = “TRUE”
Modify it to
vmci0.present = “FALSE”
or delete this line.
It is temporary workaround that should only be used to get the VM to boot in a pinch.

Solution 2: update the vmci driver.
Open device manager, the driver of vmci may be incorrect.
If you are connect to internet, just update it. You can get vmci.sys driver installed automatically.
The driver is stored in
C:\Program Files\Common Files\VMware\Drivers\vmci\device\Win8\vmci.sys
You should installed it from there manually if you do not have internet connection.

Finally, check if it is conflict with hyper-v componet in Windows.

Summary: Updating the vmci.sys driver via Device Manager is the fundamentally correct and recommended approach.

Reference:

https://www.cnblogs.com/Jasper-changing/p/12035933.html

https://www.youtube.com/watch?v=aZk3B31Utzo

I have use the intel core i7-9750H Engine Sample CPU since 2020.The following is my expirence.
Bad case 1, No hyper-v got:
1.enable intel vt-d in uefi settings;
2.install Hyper-V all toolkit, that is 4 components. They are:
In the Hyper-V Management Tools:
Hyper-V GUI management Tools;
Hyper-V module for Windows PowerShell;
In the Hyper-V Platform:
Hyper-V Hypervisor;
Hyper-V Services;

Once all the operation of installation and settings are done, I am probably get BSOD after reboot.
Solution:
1. Using system recovery if you have backup before the Hyper-V installation.
2.You can disabled the intel vt-d settings in the UEFI if solution 1 the system restore failed of backup not found.
Another Solution of virtualization: using Vmware workstation 16 instead of hyper-V.

Bad case 2,no 3.5 mm headphone got:
The 3.5mm headphone jack failure.
Solution: None.

Besides of the 2 bad case, it is all ok completely.
Platform: windows10 1903 64bit, thinkpad p53 with T1000, intel core-i7 9750h(ES)

You may receive PermissionError: [WinError 5] Access is denied: ‘C:\\Windows\\to_your_path’ while you use shutil.rmtree python code in windows environment.
shutil.rmtree is utility with a function that can remove directory in windows even if it contains files or subdirectories.
But what happens when you encounter WinError 5?
It may be while you use explorer.exe to enter the directory you want to delete and go back to the parent folder in some cases.So, it may be explorer.exe occupy the directory handles while you use explorer to check it and go back and run the python script.
Solution: Just close the explorer window which contains the history of the directory you want to remove.

If I have a python script in linux, touch run.sh:
#!/bin/bash
python3 script_name.py

chmod +x run.sh

A strange update from US region, if you install it from CN at first, like the picture shows.
Solution:Remove telegram first, and get it from US regions of app store.

1.Run cmd.exe with admin privilege
2. run the following command in cmd. It will display a new dialog.
explorer shell:::{05d7b0f4-2121-4eff-bf6b-ed3f69b894d9}
3.Operation on the dialog.

Reference:https://www.cnblogs.com/lalaza/p/17235965.html

I want to divide wan_net,lan_net and iptv net in the home ethernet. 2 switches are response to divide vlan, which are tl-sg2016d and tl-sg2008d.

I always use 1 cable cat-6 line of port 1 for single line multiplexing. Port 1 is responsible for the transmission of 3 VLAN. Port 2 is responsible for wan_lan. Port 3 is responsible for iptv. Port 4 and all the remaining ports are responsible for lan network.

1.set 802.1Q VLAN of switches

1.1 set tl-sg2016d

Set wan_net, lan_net, iptv of tl-sg2016d respectively. like pic 1.

1.2 set tl-sg2008d

Set wan_net, lan_net, iptv of tl-sg2008d respectively. like pic 2.

2.modified 802.1Q VLAN PVID to assign vlan tag

2.1 set tl-sg2016d

Assign port 4-16 as VLAN 3(lan_net).Assign port 2 as VLAN 2(wan_net).Assign port 3 as VLAN 4(iptv).Assign port 1 as VLAN 1(default).

2.2 set tl-sg2008d

Assign port 4-8 as VLAN 3(lan_net).Assign port 2 as VLAN 2(wan_net).Assign port 3 as VLAN 4(iptv).Assign port 1 as VLAN 1(default).

3. Other thing about ip address

You can assign a lan_net ip address and gateway to switch to replace ip 10.18.18.251 to manage it in the local network.

reference:

1.https://resource.tp-link.com.cn/pc/docCenter/showDoc?productId=1239&type=USER_MANUAL&id=1734588904915967