Closet edition

previous: >>105818008

READ THE WIKI! & help by contributing:
https://wiki.installgentoo.com/wiki/Home_server

/hsg/ is about learning and expanding your horizons. Know all about NAS? Learn virtualization. Spun up some VMs? Learn about networking by standing up a OPNsense/PFsense box and configuring some VLANs. There's always more to learn and chances to grow. Think you’re god-tier already? Setup OpenStack and report back.

>What software should I run?
Install Gentoo. Or whatever flavor of *nix is best for the job or most comfy for you. Jellyfin/Emby/Plex to replace Netflix, Nextcloud to replace Googlel, Ampache/Navidrome to replace Spotify, the list goes on. Look at the awesome self-hosted list and ask.

>Why should I have a home server?
De-botnet your life. Learn something new. Serving applications to yourself, your family, and your frens feels good. Put your tech skills to good use for yourself and those close to you. Store their data with proper availability redundancy and backups and serve it back to them with a /comfy/ easy to use interface.

>Links & resources
Cool stuff to host: https://github.com/awesome-selfhosted/awesome-selfhosted
https://reddit.com/r/datahoarder
https://www.reddit.com/r/homelab/wiki/index
https://wiki.debian.org/FreedomBox/Features
ARM-based SBCs: https://docs.google.com/spreadsheets/d/1PGaVu0sPBEy5GgLM8N-CvHB2FESdlfBOdQKqLziJLhQ
Low-power x86 systems: https://docs.google.com/spreadsheets/d/1LHvT2fRp7I6Hf18LcSzsNnjp10VI-odvwZpQZKv_NCI
SFF cases https://docs.google.com/spreadsheets/d/1AddRvGWJ_f4B6UC7_IftDiVudVc8CJ8sxLUqlxVsCz4/
Cheap disks: https://shucks.top/ https://diskprices.com/
PCIE info: https://files.catbox.moe/id6o0n.pdf
>i226-V NICs are bad for servers
>For more SATA ports, use PCIe SAS HBAs in IT mode
WiFi fixing: pastebin.com/raw/vXJ2PZxn
Cockpit is nice for remote administration

Remember:
RAID protects you from DOWNTIME
BACKUPS protect you from DATA LOSS

post racks

my server runs windows 10 and will never need anything else

>>105865799
it's probably in a separate package like nvidia-utils

what do you guys think of my HDD progression?

How do I make a Python script run through docker compose?

>>105866249
>How do I make a Python script run through docker compose?
if you mean you want to run the script when the container launchers:
"command: python helloworld.py"
if you just want to launch a script in a running container, that's "docker exec -it <container_name> python helloworld.py

So after too long I found out that proxmox of all things allows for pretty smooth multi disk root on zfs experience, and is pretty much the ONLY Linux os to do so. Smooth as in you just select it in the installer and it goes. It has its own bootloader and scripts for syncing it across the drives too. If only I knew about it well before struggling to try and get ZBM to work on ubuntu fuck.
It's absolutely astounding that practically NO DISTROS are doing anything at all for nvme raid. Like it's not 2012,who the fuck is buying two sata ssds to put in hardware ish raid 1 at the chipset level so the retard os doesn't have to support software raid?
How is this a real thing.
And don't fucking speak to me about mdadm, I don't want to hear anything more about that piece of shit that doesn't work

>>105866931
>And don't fucking speak to me about mdadm
Why

>>105865526

>>105866176
Based

>>105866176
Must be fun to have a fat GUI adding unnecessary IO and memory usage.

>>105867194
creepy

captcha: AAN0P

>>105867914
>a fat GUI adding unnecessary IO and memory usage.
you mean like Synology OMV Truenas Unraid Proxmox that most people use?

>>105868153
Windows uses significantly more resources if installed with a GUI, it's not even close.

>>105868238
Nobody cares here m8, if you like OS flamewars shitflinging then /pcbg/ might be a better fit for you.

>>105867194
jfc how horrifying. please don't be in london.

what shouild I set these to? trying to create a linux NAS on ubuntu

>>105865404 (OP)
I have old Cisco managed switch and gateway. I want to setup and play around with and learn. Gippity tells me it's highly insecure and to not use it since security updates have stopped. How should I proceed?

>>105867914
its not a problem

>>105868324
Just don't allow management telnet/SSH/web UI from the internet.

>>105865526
disregard that, i suck dicks.
post diagrams.

>>105868691
>post diagrams

>>105866772
Probably need to give more context
I have a python bot currently running on a raspberry pi, and I wanted to move it to my nas and keep it within docker. The docker compose looks like this
services:
tele_bot:
container_name: tele_bot
image: python:3.11-slim
build:
context: /tele_bot
command: python /app/bot.py
environment:
- PUID=${APPUSER_PUID}
- PGID=${APPUSER_PGID}
- TZ=${TIME_ZONE_VALUE}
- TELEGRAM_BOT_TOKEN
volumes:
- /tele_bot:/app
- /tele_bot/downloads:/downloads
restart: unless-stopped
I also have a dockerfile to install the requirements.txt I froze from the raspberry. However, whenever I try to launch it it fails to install some dependencies, ffmpeg to be more specific

>>105868945
post the dockerfile output, I like to first build a custom image with the dockerfile and then use the custom image in compose/run

how do i find out what bios is best to flash onto my gtx 1650? i would like it to go to 0% fan speed when not under heavy load but mine wont allow that

>>105869580
do what i did to my 1650 and just take off the fan and sheath entirely. since it's only 75W, case fans provide more than adequate cooling, at least in my case. otherwise you can just hook up the GPU fan to your own controller and have full control over it that way.

>>105869450
You mean the actual dockerfile? Sorry, it's my first time using docker and I'm still learning

>>105869727
Yes, and the output given you say
>I also have a dockerfile to install the requirements.txt I froze from the raspberry. However, whenever I try to launch it it fails to install some dependencies, ffmpeg to be more specific

Would it be sane to make a 2 drive 8tb raid for storage and 1 8tb for backup?
Want to make a small little NAS for media

>>105866931
what was your struggle with ZBM on Ubuntu?
for me it just works on RHEL, only had issues with two /homes being merged due to autoimport of second rootpool
also why does the os have to support raid? it only has to support the filesystem that supports raid, no?

>>105869742
depends on what your plan for the "backup" is

>>105870016
To backup the data on the drives on a weekly basis, I think the seagate pros at 16 gb are a better deal at bestbuy so I'll do that

>>105869736
Got it
I'm at work right now so I can't actually check, but iirc the dockerfile is

FROM python:3.11-slim

WORKDIR /app

COPY requirements.txt .
RUN pip install --no-cache-dir -r requirements.txt

COPY . .

CMD ["python", "bot.py"]


The output, I'm not really sure where to find it, but I'll give it a look once I'm back home

>>105869742
You usually want more space for the backups. You should do zfs and use snapshots

>>105868719
>>105868691
>not using netbox with topology view plugin
For shame anons

>>105869999
I think my underlying issue was emerged when I was working with pve8.4.
Linux kernel 6 was freezing 1.7 seconds into the boot on pve8, and it's very possible that I was doing everything correctly on ubuntu but that was the problem.
I don't know, my main problem was that it seemed to be ignoring any commands I would put into the prompt temporarily pre-boot. Commands I would have needed to at least see debug info to figure it out. Pve8 had it in by default so I could actually see it attempt to load. But zbm/ubuntu would just say loading kernel from pool and then the cursor stops blinking and that's it.

Meh after thinking about it it's probably just a hardware issue the whole time with either supermicro X9 and kernel 6.x or Intel Ivybridge and 6.x
But my other concerns were how hacked it felt and I would have to set up zfs maintenance myself and pay close attention when updating for kernel updates and manually install them I believe to the 4x efi partitions. Something pve just does automatically.

Should I install the arr suite in a single docker container? Or can I put them in their own containers?

>>105870979
Own container, that way you can blow them away individually if needed.
I have a VM running docker for each "type" of service, I.e. a single vm running all the *arr suite components and qbt
A single vm running a grafana/graylog/es stack
A single vm running the immich stack
Basically a single VM per docker compose stack, I know exactly what I'm nuking if I blow away an entire VM

Will be switching from VMs to LXCs soon tho. Separating them into VMs/LXCs also means I can control resource allocation per stack, I don't want something like graylog/elasticsearch taking over all of the ram in a VM when qbt also needs it

>>105871156
>I have a VM running docker for each "type" of service, I.e. a single vm running all the *arr suite components and qbt
Wait isn't that the opposite from what you just said? Or since you have separate vms it's ok tu run all of them in a single docker?

>>105871218
You said "single docker container"
A single docker container is a single service
You have multiple docker containers on a single host (VM/LXC, bare metal)
Multiple docker containers are a stack, you can run multiple stacks on a host, but I personally don't, if they're related, they go in the same stack, if they aren't they go on a different VM.
Contrary to how it sounds, a docker "container" isn't a collection of dockers, it's a collection of bits of software that make up a single service.

>>105871277
Sorry, I'm still pretty new to all this docker stuff and probably got my names wrong
I'm running docker-compose, what I meant was if I should have a single docker-compose with all the arr suite on it or separate ones for each of them

>>105871277
Pic related is a bunch of containers I have on one VM
There are two "stacks" - arr-stack and teamspeak6test
The arr-stack has several containers in it like lidarr, sonarr, radarr
If I want to stop sonarr, I stop the sonarr container
If I want to stop arr-stack, I stop the whole stack (stops all containers in the stack)
If I want to stop all stacks, I stop the VM (stops all stacks and the containers in them)

>>105871308
Single docker-compose for the whole arr suite, if you install portainer it's WAY easier to manage multiple docker composes
Each stack in pic related is its own docker compose

>>105871325
>teamspeak6test
Wait did they release the TS6 server beta while I wasn't looking?

>>105871325
I think I'm still getting the names wrong, but your pic actually gave me the answer I needed, thanks anon!
>portainer
I'm actually running omv, and from what I've seen it doesn't support portainer

>>105871325
portainer
thanks anon
kek, didn't even have to ask question

>>105871372
It should, portainer is just a docker container that connects to the docker service, it works on the abomination that is WSL so as long as OMV is using a standard docker engine
>>105871367
Last week, it's pretty nice, some issues still but it /is/ a beta.
Screen sharing works on windows (peer to peer mode, no SFU yet) but server side message storage isn't working yet. Neither is local authentication. But you /can/ connect to a TS6 server with a TS3 client if you need that and don't want video streaming
>>105871401
Happy to help!

It's too hot today anons, but I'm still enjoying the sun ! :3c

>>105868297
Default i guess
What are you trying to do?

My UPS is terribly hot, how do you solve this issue?

Is it normal for a nas not to heat up as much as a windows pc? My old 12700k used to idle 60c on windows, while now that I've repurposed it for my nas the temperature averages room temp when idle (~27c) and gets to 35 at most under load
I did change the cpu cooler, but before I had a custom loop so it should've been cooler in theory

>>105871576
Buy a plot of land with a natural river running through it and divert it to liquid cool your UPS.

Upgrading my dinky i5 today boys. My server is finally going to be able to do more than one thing at a time.

>>105871953
Nice

Saw these at work today

>>105871953
Good choice on your cooler. Its the best cooler I've ever had and I'm coming from 2 generations of Kraken AIOs. I've never had good results from water cooled (aio) coolers for some reason.

Not precisely hsg related but you might want to know this.
Suddenly the Realtek NIC of my Shitdows PC failed, idk exactly the reason but it just died, worth mentioning that I've been stressing the fuck out of this fucker with Synergy, transfers and more. Anyways, I just slapped in a spare Intel NIC and problem solved.
Just for your awareness.
Worth mentioning that I have a Mini PC running as server 24/7 with a Realtek NIC and no problems whatsoever

>>105872645
I'm knee deep in my case right now and I'm sure it's a good cooler but it's kind of a bitch to install for me. Can't get the other mounting screw on for the heatsink. I do like to build PCs and servers but the fans are my absolute least favorite parts

>>105872735
Live look at honest /g/entooman befuddled by Kra*t PC cooling products

>Got a BananaPi r3 mini
>came with openwrt
>disabled firewall
>disabled dns
>disabled everything that basically made it a router
>made the mac addresses of eth0 and eth1 static
>installed samba
>installed python
>plugged both interfaces into the same switch connected to my firewall
>from my firewall assigned static ips
>ip link set eth1 promisc on
>on my firewall set ssl deepscan inspection to mirror traffic to eth1 of the bananapi
>currently waiting on a 256gb m2 to put on the pi

>>105872927
throw the pi in the garbage can and get a refurbished fujitsu, dell, hp, lenovo mini pc ranged $50 (j4105) - $200 (i5 9500t)

>>105869736
Turns out I'm an idiot and forgot to hit build before starting it...

do i seriously have to create my own GUI app to seamlessly mount and unmount filesystems on linux?

Right now theres webmin/cockpit but they are very lacking and suck

I want something that will take off the SMB share, unmount the filesystem. Along with showing the current statuses.

I can just go for one of those NAS OS but the flexability the mdadm + lvm is really nice

>>105873871
>throw the pi in the garbage can and get a refurbished fujitsu, dell, hp, lenovo mini pc
why?

>>105874232
climb a wall of dicks you stupid cunt

I know distrobox is just a fancy wrapper for containers.
Would it offer any difference compared to just pulling an image and building something?
I'm thinking of doing something like running a browser for secure browsing.
And instead of installing something on my system, I'd just use alpine and install the things I want without bloating my system.
Anyone tried it?

>>105874271
>non-answer
okay so im disregarding the suggestion since no reason to use a mini pc over a bananapi was provided
have you tried being less of a cunt?

>>105872780
I always install my CPU cooler with the motherboard outside of the case. It seems like it would be more of a pain for an already completed build but it really is easier and less frustrating. I haven't used this on an Intel board though so I'm not sure if its easier for that chipset.

If you still have trouble after that watch an install on YouTube.

>>105872927
since when are mac addresses not static to begin with? this sounds very retarded.

>>105874453
>since when are mac addresses not static to begin with?
idk but every time i power cycled the macs would change

>https://www.bee-link.com/products/beelink-me-mini-n150
Any thoughts on this? Has 6 NVMe slots.

What's the best way to run a browser on server?
Just x11 forwarding?
Container ?
Distrobox + browser?
fancy qemu image with NoVNC?
>tfw have shitty laptop and browsing modren web cause it to crash when rendering social media web pages.

What SBC would you recommend for hosting a BBS made in Rust

Do any of you ni/g/gas know anything about Traefik? I'm a noob and trying to figure out how to redirect a request to HTTPS from HTTP

>Have SearXNG installed on VPS
>Have Traefik installed on VPS
>Using SearXNG requires you to go to search.mydomain.io for searches (fine)
>Probm: going to search.mydomain.io always 404s and has no SSL
>However, going to the URL bar and manually adding in "S" to the HTTP request gives you my SearXNG homepage

TL;DR: I can't get my redirect-to-https working on Traefik for my SearXNG app

I feel like it's an easy fix but I'm so new to Traefik I wouldn't know where to look

>>105874532
literally why. I sometimes forget that a lot of people on 4chan are from third world countries with little room space

>>105874632
You do realize that most people don't own a house, right? You're clearly either retarded or extremely disconnected from reality.

>>105874681
>You do realize that most people don't own a house, right?
I live in the US. Even when I was living in an apartment, I still had room. You people live like you're in russian commie blocks.

>>105874693
I live in the US as well, that doesn't change anything. I'm sure you know that not all apartments are the same, especially around major cities. Not even a "third world countries" thing either, unless you count Japan & South Korea as third world since apartments there are also very small.

So, I'll ask again. Are you retarded or just extremely disconnected from reality? Which is it?

Is there any way to install Chrome on a CLI only system, access youtube with it and use its cookies for yt-dlp?

>>105874971
fucking why? just log into a chrome and get the cookies there, then use it for authentication, which I assume is the reason you're going that route.

>>105875038
As in, get the cookies from an actual pc and have yt-dlp use that file? I tried that before, but the cookiefile for youtube expires after a couple video when used with yt-dlp, only cookiesfrombrowser works for a long time

>>105874532
>Any thoughts on this?
shittt i could buy that to replace my NAS and with that second ethernet port replace what i was doing in >>105872927 as well

How should I

>>105875206
Portainer

>>105872780
Ahh I see you enjoy a challenge. I would have attached the fans first before installing.

>>105874971
python with playwright

>>105874971
>>105875038
>>105875731
I realized I'm a retard and I could've just installed chromium through docker-compose and use it with web ui
Can't believe I'm nearly done setting everything up

I think there's some basic knowledge I'm missing when setting up the arr suite. I'm following TRaSH Guides, so far I setup only sonarr, and I can't help but notice not once they go over how to actually get it to scan my media and sort them out. Is this explained eventually?

>>105876613
arr suites are about getting new media. you have to import manually. there's a button for library import. was straightforward enough.

>>105876886
Sure enough, but none of the guides I followed talks about that, only "specify your root folders", which from what I gathered is where things that have been downloaded in, say /torrents/completed/tv are hardlinked to
What I'm struggling to understand is how to tell radarr/sonarr to check those folders and work their magic

>>105874557
stolen Pi 4

>>105876914
"Series>import library" should add everything in that folder. if not, on the series page you can try hitting the update all button at the top.

>>105876944
Is it really just that easy? Then why do none of the guides I followed mention that? Not wanting to discredit you or anything, I just don't understand why this is the case

>>105870356
it's not good enough to see through my network from where i'd have to place it.

>>105872927
you are feeding a mirrored port into a micro PC? you are doing layer 7 inspection of encrypted traffic on it? you are a crackhead. show me the CPU utilization right now.

>>105876958
because the guides are designed for a clean empty library that you then start telling it what you want.

What's so good about this sunshine I keep hearing about?

>>105877241
Thanks anon

>>105874516

>>105868691
undergoing a redesign this weekend and i'm adding some overlay components and moving to ESI-MH from regular old LACP to my VM host.

>>105868719
nice

How do I tell sonarr to prefer season packs over single episodes for released anime

The output quality is dog shit, but I figured out a way to reverse proxy to my desktop and... run my own AI on-demand out text-generation-webui!

I have no doubt that pic related will not work (I haven't tried it, to be fair to Todd), but the principles of /hsg/ are there!

>SSL
>SSO (authentication layer with Pangolin since it's a URL on the open web rn)
>Pangolin does the proxying
>My own domain through Porkbun
>Todd Howard on my phone

Need more fine-tuning and testing and MORE VRAM (apparently 16gb is not enough to get Todd to generate a coherent reply)

>>105865404 (OP)
hey guys, looking at my first homelab setup currently

trying to choose the OS, i wanted my homelab to do all 3, virtualisation - storage - and containers

doesnt need to be crazy good at them all but hopefully good enough on all of them

whats a good option? i was thinking TrueNas Scale? Or should I consider something else.

>>105878667
I'm currently using TrueNAS Scale for my backup server. It's a great little hypervisor desu. I don't currently use VMs on it tho. For virtualization, storage, and containers, I stick with my Unraid server

Unraid is THE fucking tits, but it costs money and isn't open source to my knowledge. It'll do what you want for sure, but it'll be costly.

And a note on TrueNAS Scale containers -- there are a lot but the ecosystem is reallllllly not there yet. Unraid has literally thousands of containers with more every day. I just checked TrueNAS Scacle's "app store" and there are 242, so you might not get the container you want/need. Just some opionions.

ProxMox is supposed to be amazing too but I don't know too much about it. Worth looking into yourself tho

>>105878810
>It's a great little hypervisor desu. I don't currently use VMs on it tho.

Opinion: Discarded

>>105877239
>you are feeding a mirrored port into a micro PC?
yes
>you are doing layer 7 inspection of encrypted traffic on it?
no, if you read the post the firewall is doing to inspection and dumping the decrypted traffic to the mirrored port

>>105878997
Anon the literal next sentence I said I use Unraid for VMs. It's just a hardware thing. My backup server running TrueNAS Scale has one job and that's backup the media from my Unraid server.

>>105869742
You need a bit more for backup and always use time based versioning. Ideally backup drive should be in separate machine, separate location is also a good thing.

>>105879042
>Anon the literal next sentence I said I use Unraid for VMs.

Opinion: Discarded

I've made a BASH script to archive 4chan threads.
How would I convert this to a container?
So I can pass a URL from any connected device on my network and it would archive the thread.
Without having to worry about setting up SSH and such?

>>105871325
Isn't this what podman for?

>>105870368
Fair enough. Yes, it would be nice to just have all the nice features you want supported by the same system. I like RHEL but it doesn't have built in support ZFS or even Btrfs. I tried to like FreeBSD, but ended up very much disliking it. So I feel like I just have to hack my own thing from pieces - I'll probably end up burning it all down in a couple of years and replace it with some default as fuck solution.

>>105879737
I can only tell you the theory because I've been wanting to do this for a while but couldn't find the motivation to do it myself.
Basically you start with a dockerfile with base image, select one that has the packages you need but is light enough, configure the image to install any extra package you may need, place the script in the folder with the dockerfile and at the end tell it to copy your script to the image and then run it.

The hard part is telling the script to do the saving, I would have a simple web interface with a textbox and a button, which then would go tell the script to do its thing

In the composer file mount a folder for the configuration and one for the output, set whatever ports you need and basically there you have it

>>105880464
Yeah, the theory is nice but how to do so?

>>105879023
ok i dont think you understand how decrypting the traffic works though. in SSL deepscan you need to trust the root CA certificate of the fortigate on ALL devices which initiate an SSL/TLS session. if you dont do that, you cant have deepscan which is actual payload decryption and not metadata processing.

For me, it's buying refurbished workstations from ebay

>>105880472
Anon I'm not going to chatgpt an answer for you when you could do it yourself

>>105879737

like how much setting sshd is you lazy to type password or what

>>105880500
>chatgpt
Like that ever got you a real answer

>>105880497
yeah bruh home server gurus do this to all their subjects personal devices don't you know. If you don't let daddy install his root certificates on your phone then you can't use the Internet! Oh, and if your friend comes over they can't either because it's not really even possible to install root certificates on random phones.

>>105880497
>trust the root CA certificate of the fortigate on ALL devices which initiate an SSL/TLS session
i noticed apps and some devices want the connection badly enough they just dont give a shit and will blindly accept

>>105881759
you should let the developer know that their software lets man in the middle attacks happen, completely defeating the purpose of SSL/TLS

>>105868324
Keep using it. Just got my CCNA after learning everything through Packet Tracer, and almost blew my brains out. Now considering if I should pay for CML or get old Cisco hardware for my CCNP.

>>105874453
No, besides the dozen ways to spoof your MAC address, changing your MAC address is an official feature. (U/L bit)

>>105879154
I was thinking of putting them in a NAS enclosure where two serve as raid 1 and the third serves as a backup with weekly backups.

>>105881876
>ou should let the developer know that their software lets man in the middle attacks happen,
no because i want to inspect the traffic

>>105882381
post an innocuous payload as proof then

>>105879042
Idiot, TrueNAS Scale is built on top of k3s. It’s not fucking VMs. It’s containers. It’s crappy GUI built on top of k3s with a poor implementation of Helm deployments. You don’t even know what the fuck you’re talking about

>>105882511
>my traffic is grindr
no

>>105880497
>trust the root CA certificate of the fortigate on ALL devices which initiate an SSL/TLS session
You could just inspect the ones that are worth inspecting and add another, more general rule for the rest below.

>>105882940
he's not doing any of that because he's a lying retard

>>105882779
it's because you're full of shit and don't know what you're talking about

>>105882687
freebsd jails were so much more comfy. I hate that they're forcing us away from that into these half baked solutions like k3s and podman.

im getting into docker and looking into ways to manage stuff better.
right now i have one vm on which docker and portainer is installed.
i make my self some docker compose files and have them store in a git repositoroy and then just make stacks with them in portainer.
however i want to move beyond one host and have stuff more automated.
are there any good tools for that or resources i can read?
not as overencompassing as openstack or kubernetes but something a few steps below that.

>>105865404 (OP)
Should I use Proxmox for the following usecases?
Torrenting (Qbittorent, Sonarr, Radarr and Jackett LXCs)
Office suite (Nextcloud + Onlyoffice LXCs)
AI prompter LXC

Since I am only using containers, would using Proxmox be less intuitive compared to lets say a regular Debian server?

>>105883795
honestly its up to you.
you can install any linux as base and just work with docker containers or you can install proxmox and have a lxc/vm for each service.
that being said going with proxmox is probably the easiest option and the most convenient.
have a look at this; its one click proxmox container setups for tons of services:
https://community-scripts.github.io/ProxmoxVE/scripts

>>105883852
I was experimenting with the scripts on that site last week trying LXC for the first time in comparison to Docker/Podman
I was actually wondering more about the resource usage and the possibility of hosting the NAS on the same machine (hence Proxmox in the first place)
I currently have both scenarios on two different VMs on my desk to test out before deploying on actual hardware
One with Proxmox and the other with just a regular Linux install + docker-compose

>>105883927
i run truenas on my proxmox host and pass the lsi controller the hotswap harddrives are in to the truenas vm.
super smooth no issues what so ever.

>>105883724
K8s is THE thing for multi-host containers. It's honestly not that hard, and is only as complicated as you want it to be. A simple k3s setup is will work great.
If not k8s, take a look at Docker Swarm. It's even simpler.

>>105883579
>it's because you're full of shit and don't know what you're talking about
its because im waiting on a 256gb m2 ssd to slap into it

>>105885588
256gb for pcap? alright boys, add this to the evidence file. he's going to do a dime for being retarded in public.

>>105885912
>256gb for pcap
Do they actually come in SMALLER SIZES?????
im just working with my sneeds

so dumb question since im not a network guy. im going on a vacation for about a week and want to be able to ssh into my pc from my laptop when im off my lan, but i dont have the ability to port forward with my router because im not willing to install comcasts app.

could i do this with a selfhosted vpn or duckdns or something like that? i have a few machines on my lan other than the pc, and also a vps with domain i can use for anything that needs hosting.

>just spent over an hour trying to get this piece of shit working over SPI with luma only to give up and install the gazillions of waveshare drivers
>framerate is too ass or I'm too dumb to get it to a solid 30 something fps on my raspi
Kill me pls

Is a lopsided connection like this just a routing problem?
Upload is perfect, download is supposed to be 1gb too
No in/out errors according to pfsense, packet loss was 4% at peak.
It's better but not perfect.

Just wondering if I should prepare for an ISP call. ONT is pretty old and the power supply is old as dirt.

>>105874363
The answer as to why you should use the non big tech named corpo slop is because its not big tech name corpo slop. Server fags like big tech name corpo slop.

>>105886222
nah you need tailscale/cloudflare tunnels/something that can hole punch

if you don't forward ports for the service itself, or the ports for the wireguard VPN, you won't have a reachable connection

Why won't eu.org approve my domain

>>105865404 (OP)
What kind of hardware would I need for a 5gbps routing capable opnsense box?

>>105886453
do you happen to represent an organization?
i'm not being snarky but they probably missed the memo where anyone should be able register a .org without gatekeeping

>>105887076
an i5 coffee lake and a 10gbps dual sfp card

>>105887310
So a hexacore is enough? Right now I'm thinking one of those old mini HP or Dell PCs then and just add in a dual 10gig rj45 card and a 10gig sfp+ card (for my fiber internet). What would be a reliable source for NICs, intel and mellanox? How much ram would I need?

>>105887266
They denied it once and I get it, the IP was wrong. But now I put a name server there and it should be fine, taking ages htough

Does anyone have any tips how to get Monogatari Series sorted up with sonarr?

>>105887364
one of the strongest opnsense own appliances uses embedded AMD EPYC 3201 which is still inferior to Intel Core i5 9600
get 16GB ram to be safe like they do, even more if you find cheap ram, doesnt matter which ram, you could get 2133
>What would be a reliable source for NICs, intel and mellanox?
nothing wrong with aliexpress or ebay

>>105887435
Thanks anon.
>nothing wrong with aliexpress or ebay
I mean reputable, reliable manufacturers of NICs, I'll definitely buy from sites like ebay.

>>105887364
>and a 10gig sfp+ card (for my fiber internet)
Fiber internet is more than likely still going to end in an RJ45.
Home internet usually uses GPON and goes trough and ONT before it hits your router.

You can technically run the fiber directly to a router with special SFPs but your getting into things that is likely not supported by the ISP and any attempt to use them anyway can get you fucked if they are anyway misconfigured

Best option for an x86 router is an Intel X710, supported in freebsd distros life pfsense or OPNsense and should support all the various multi-gig standards like 2.5gb or 5g which may be needed depending on the ISP's equipment.
Intel X550 has 2.5g/5g support but doesn't auto-negotiate.

>>105887508
My ISP runs fiber directly to my house. I already have a working inline PON and a sfp+ rj-45 dumb switch that connect to my openwrt router wan port.

>>105887448
i would go for Intel X710 (ideally supermicro version) for those extra power savings. if you're lucky even without pcie_aspm=force the cpu might go as low as C7
worst case scenario Mellanox ConnectX-4 LX

>>105887076
>>105887364
intel makes the best NICs but they're the most picky with transceivers by and large. you could get away with a quad core if you're not doing anything besides forwarding with your perimeter device. RAM would be paltry as well. if you're doing IPS/IDS you would need much more resources.

>>105887654
Thanks anon. I have a WAS-110 transceiver. Looking online I could only find that a mellanox nic worked with it on pfsense. It does seem more iffy so I will look into it more.
>if you're doing IPS/IDS you would need much more resources
What would I need? I'm not sure it's required, but I will be hosting some services from home so it would be nice to have the option.
I've been using openwrt for years with no problems, but on my current hardware, it's a massive pain to upgrade versions.

>>105887410
Shoko/shokofin maybe?

>>105888049
Solved it eventually, I'm using the MTBB release and sonarr would fail to detect kizu, neko black and other ovas. Turns out it wanted to have them as specials. Also I had to merge the first two episodes for Owari S1
I like how it's all shaping up, now I just have to setup wireguard to access from outside my home network and I think I'm done with all the setup

I bought some terrible aliexpress motherboard for an itx nas build a while ago and it pisses me off. Which cwwk should I buy? I seem to remember something about intel having better transcoding support should I get a N355? I don't think that chip even existed when I was in the market before.

I'm about to go crazy. I setup wireguard on my server and connected my phone and tablet to it. I can access my self hosted stuff just fine through local ip address, but actual interned browsing fails, saying that my device isn't connected to the internet. What am I doing wrong? I port forwarded wireguard's port and that wasn't it

>>105888363
use tailscale or twingate
theyre easier

>>105888391
Careful anon, you might lure that reddit autist out of the woodwork with common sense suggestions like that.

>>105888434
sorry my bad for being a normie

>>105888448
No kidding - it's a capital offense around here.

>>105888391
My issue was so dumb I feel retarded

>job is paying for me to take network+, trying to study for it right now
>messer and dion don't explain anything in depth or why things work the way they do, just that they do certain things
how do I get some hands on practice with this and actually learn it instead of doing what's essentially just reading flash cards

Is my drive dead lads? SMART shows everything as fine, but the transfer speed dies when it starts beeping
>https://vocaroo.com/11lI56ZX59ki

Should I use traefik or caddy as a reverse proxy if I mostly use docker containers? I'm leaning towards traefik but also thinking it might be a bit bloated for my use cases.

>>105889095
I basically only want to expose a couple services to the outside net with maybe some easy authentication method (like authelia or authentik or possibly something simpler) for those that need accounts like jellyfin, and have https and clear subdomains for my other services.
I'd use a wildcard certificate for my domain and get something like:
*.mydomain.tld
And then set up services like:
https://jellyfin.mydomain.tld
To point to: https://(server lan ip):8096
And it would work the same way for my other web applications, but those would not be exposed to the outside net. Is this possible?
I'd also accept
https://mydomain.tld/jellyfin, whichever is better/easier.
I also don't mind having a separate reverse proxy for my lan with a mylocaldomain.lan address , which is what I do currently but without a proxy or https, e.g.
http://mylocaldomain.lan:8096
And I'd want it to be:
https://mylocaldomain.lan/jellyfin
OR
https://jellyfin.mylocaldomain.lan

Does someone have some experience with using these tv box ( I have 2 that have the same cpu) as a lightweight linux server or to create a cluster?
I have been trying with armbian images but it is on community support and I could not make it work, it boot loops

>fiber ONT does up to 10gbps
>switch (mikrotik) does up to 10gbps
>router (openwrt) only does 1gbps
>internet is only 1gbps but I can get faster
so obviously the router is the major bottleneck right now. is there a way to put the 10gbit switch inbetween them and do a "router on a stick" setup without complicated VLANs?
>>105868719
does this count

I'm building a new "proper" home server and rather than slap shit together just enough that it works I want to do it right, so naturally I'm looking at ZFS.
The plan is 4 HDDs (of some kind, depends on what I'll find second hand) that will make up one pool in RAIDZ1 and actually store the data I care about, and a boot m.2 SSD running ext4 dedicated for boot and programs installed on the machine.

I have a few ZFS questions I want to clear up.
>datasets
In ZFS datasets are essentially a sort-of partition that sits in a pool, is more flexible than an actual partition, can have its own settings (which can be changed easily later) and from a daily-use perspective just look like directories, right?
So if my data can be divided into media (videos and images) and text-based files (source code, markdown-based notebooks, office documents) I could create a 'media' and a 'docs' datasets, have each have their own settings, and if I want to access a specific movie the path will be something like /media/movies/die_hard_7_the_hardening/, right?
>Compression
From what I've read compression has virtually no drawbacks when a decent CPU is involved and I wouldn't really notice a speed difference if I were to use it.
BUT if I have a dataset full of almost-exclusively non-compressible files like media, then I'd have the CPU work for no compression benefit, right? so I might as well turn compression off for a dataset like that
>Resilvering
If a drive dies on me, do I just pull it out, replace it with a new one and it starts the resilvering process automagically? or do I need to tell it to start.
>failure during upgrade
If hypothetically I wanted to increase the size of my pool I'd need to pull out a drive, replace it with a bigger capacity one and resilver it ofor each drive, right?
Say I was in the process of doing that and a drive died.
Would putting the old drive back into the same spot recover my data? (assuming RAIDz1, so 1 drive redundancy)

thanks dudes

Ok so I got a cisco managed switch. How do I learn to use it now

>>105890234
>I'd have the CPU work for no compression benefit, right? so I might as well turn compression off for a dataset like that
I really don't think there's any point in fucking around with shit like that. Just enable LZ4 for the whole pool and forget about it.

>can have its own settings (which can be changed easily later)
I don't think *all* settings can be changed without rebuilding the dataset.

>If a drive dies on me, do I just pull it out, replace it with a new one and it starts the resilvering process automagically? or do I need to tell it to start.
ZFS won't just grab the first drive you plug in and add it to whatever degraded pool and start an intense several day process that can kill your drives. You'll have to tell it to attach this drive to that pool first. Whether or not it starts doing it by itself at that point or you have to explicitly tell it to, I can't remember.

>from a daily-use perspective just look like directories, right?
Depends on how you mount and access them, i.e. NFS, SMB, whatever else. But generally, yes.

>urrrr durrr I'm a dumb retard and I won't incorporate my database in my docker image!!!
Why don't they offer it as an option? I'm tired of having convoluted docker compose files and superfluous containers for no reason

>>105889601
your managed switch wont be able to handle the stateful connections in and out of your network. you need a new perimeter device.

>>105890270
what do you want to do and did you get a "managed switch" like a ubiquiti piece of shit or an actual managed switch? you can ask the djinn (gpt).

i've been "meaning to" build a proper backup system for a while. i've got like, maybe 100 GB of important stuff, and then the OS drives of my main PC/laptop. my idea is to build a NAS and set it up so that i can automatically sync stuff to it in case of drive failure.

i wanted to buy some 12 TB HGST drives last year but i didn't, and the price skyrocketed. now looking at it again, i can get these 10TBs for just under a hundred bucks each.

starting out, do you think it would be smart to just get two of them and mirror them? or should i get three? this will be redundant data, i should always have another copy somewhere, but this is intended as an important archive.

i really do not have 10 TB of shit, but i figure later on down the line i could set it up so my friends/family could get encrypted regions of the drive to put their own shit on so they can have offsite backups with me.

tl;dr is 2 enough or should i get more?

any tips for a small sbc or some similar shit that i can have two m.2 drives on?
would like to put a tiny ass fanless box in my barn or moms basement for some off-site backup

How do Hard Drive warranties work if you buy from eBay, but buy new? Do they honour them or tell you to piss off?

In UK but assuming it'll be the same as elsewhere.

>>105890508
>refurbished
those drives belong in a landfill, not a nas

>>105890234
>If hypothetically I wanted to increase the size of my pool I'd need to pull out a drive, replace it with a bigger capacity one and resilver it ofor each drive, right?
>Say I was in the process of doing that and a drive died.
>Would putting the old drive back into the same spot recover my data?
You would only pull the old drive out after the resilver is complete, not before.
If one of the old drives dies during the resilver, then you should be able to just continue resilvering and pray that a second drive doesn't die.

I'm not sure as to whether it matters whether the drive you've chosen to replace dies or another one from the pool and how this affects the resilver process, but thinking about it logically: best case you'll be able to just continue the resilver from the point where it failed, worst case you'd have to change your drive replacement target and start the resilver all over again. I couldn't find the details about this scenario.

>>105886222
so looking into this more, it seems like i could potentially just run my comcast modem (TG4482A) in bridge mode and point it at a machine running opnsense, and port forward through opnsense, completely avoiding the comcast mobile app. at that point id need to get a wap though, and if im doing that i may as well just buy a new cable modem and stop paying comcast for one. and buy a better switch, and a rack, and and and...

i hope this doesnt awaken something in me.

>>105890551
why?
if they've got a 5 year warranty, that's pretty good. and i imagine enterprise drives are going to be more resilient than like, a shucked drive of the equivalent size.

>>105890508
a mirror is fine, since you're using it as a backup for data that is already stored somewhere else.
tl;dr do it faggot

>>105890551
le you

>>105890537
Pi with a nvme hat

>>105890234
consider snapraid and le "it just werks" ext4
zfs may or may not be RAM heavy nowadays
last i checked it recommended 1G RAM per TB of storage

>>105890234
>replace it with a bigger capacity one and resilver it ofor each drive, right?
I think openzfs 2.3 lets you add drives to the pool without having to do that

>>105886255
Those things don't get high framerates.

>>105887775
you can enable suricata on OPNsense if you want the peace of mind when you're hosting internal services, but the hardware penalty would be great. even with hyperscan on you're looking at a delta of needing a quad core versus needing a 2700x/9900k or greater. i personally wouldn't expose services that weren't completely isolated without an IPS/IDS somewhere in the mix, but it's up to you.

>>105888434
why would it be common sense to give an external entity control over NAT hole punching on your network?

I have a TrueNAS server to basically serve Jellyfin and related apps. I am pretty much a noob when it comes to TrueNAS. Shortly after building it I upgraded storage from a single (re-used) drive in a pool to 3 brand new drives in RAIDZ1. I migrated the pool and expanded it and added a single SSD for cache.
Finally I queued a bunch of shows to be downloaded (3TB), which went pretty fast, but Jellyfin's image generation took about a week.
I have a power monitor connected to the socket the server is connected to and ever since moving from 1 HDD to 3 HDD I noticed the avg power usage went from 55Wh to 85Wh and I associated it with the new disks.
But after a month suddenly the usage is down to 62Wh, which sounds more plausible considering the hardware change.
What could have caused the higher power use for an entire month after the hardware change happened? I haven't scheduled any tasks and I don't know where to find logs of what could have been running.

The rest of the system spec is
AM4 board
Ryzen 5700X
64GB DDR4
Intel Arc A750 for transcoding
nVme 1TB drive for system

How bad is it if I'm not using VM/containers and just do everything manually?

lads i will be moving soon, so i was considering switching ISPs on a promotional offer. i saw one offering 10gig fiber for cheaper than my 1gig fiber (plus a cheaper static v4 address if i end up needing it).
my only issue is that i'd have to get new network hardware if i want those speeds. my openwrt-flashed router only has gigabit ports. do y'all feel like you actually get to use those 10 gigs if you have em? i don't want to drop shmoney on lots of hardware just yet.

>>105890537
go on aliexpress and look for "m2 nas". some might have multiple LAN ports to use as a soft router too.
i've seen some intel n100/150 systems that have 2 slots for ssds. i think you'll appreciate an x86 system when it comes to OS choices.

>>105890969
what country?
personally i'd pay (i am paying) more for slower speeds but non pajeet customer support. i also get static ipv4 as standard and ipv6 on demand.

>>105891060
japan
very bad ipv4 shortage and many non-ipv6 believers
my current provider does MAP-E (share a public v4 with other clients but you get reserved ports. way better than v4 CGNAT imo) but they charge out the ass if you want your personal v4. that kinda makes me want to switch.
MAP-E works well because my provider does v6-only in their own network, and for v4 connectivity they use their gateways. but some connectivity breaks because my v4 address isn't pingable (i guess they just drop the ICMP packets since it's a shared address).
another reason why i want to get the 10-gig line is for a shorter v6 prefix. NTT only gives /64 for gigabit lines unless you pay for ip phone. 10 gig gives you a /56 tho even without phone from what i've heard. /64 shit sucks for subnetworking unless you go for the forbidden v6-NAT or the undocumented v6-NPT.
so it's less of a speed problem, but more of a convenience thing imo.

if you put it that way, i guess the opportunity to have a personal v4 for cheap + good v6 is nice. so i might switch ISPs after all. thank ye

>>105891159
>japan
my condolences.

but yeah, unless the new provider is looking to crank prices up the ass down the line, no reason not to switch.

>>105891205
yea lol japan is terrible with adopting new tech properlly with international standards. i think even the map-e implementation that NTT does isn't the actual ratified RFC, but the draft lmao. thankfully it werks tho thanks to openwrt.

without the intro offer is only an extra ~1200yen just for the 10gigs. however if i want to add a personal v4 on top later, the switch saves me a lot.
the offer basically only makes me pay for construction the first 2 years, plus a heavily discounted part for the 2nd year. essentially only 1500 per month for 2 years (WITHOUT the v4 option, the v4 would be an extra 1200ish on top which is still way cheaper than my current provider).
considering the state of the internet rn a personal v4 will save me many headaches. so the switch is worth imo.

>>105891331
yeah, i'd get the static/personal v4 and an actual workable v6 prefix, even if it cost more.
here in the UK i've been lucky enough to have never had to deal with CGNAT or anything similar, but i hear more and more providers are doing it.

>>105891519
thank you for the advice UKbro. i'll give em a call tomorrow and make sure that personal v4 option is legit affordable.
v4CGNAT is truly evil if they limit you to v4 only
within their network. i feel like 4in6 MAP-E is a really good compromise except for the ping issue. i wish more providers adopted it instead of CGNAT.
i have to say tho, within japan the internet providers would give you a list of "verified supported routers" that work with it (some models only differing in software...) but thankfully that one dude on github gave a openwrt guide on setting up map-e.

>>105889601
>I can get faster
While cool, do your usage metrics back up a need for that? What's the cost delta?

>>105890360
Separation of concerns is the biggest thing. You'd ideally want to be able to keep a database running if there's no need to change the underlying data. The pattern doesn't make sense for joe user, but it meant for enterprise.

>>105892571
s/data/database
i.e. if you aren't upgrading it, it shouldn't be going down. Service uptime is something people generally want.

>>105890393
>what do you want to do
to start off, setup some vlans, also figure out how to administrate it in general e.g. do I need to update the firmware, set up authentication, etc.
in the future maybe learn some advanced shit but I don't need any more right away
>and did you get a "managed switch" like a ubiquiti piece of shit or an actual managed switch?
yes anon I got a cisco ubuquiti switch
it's real, it's got everything except 10gig, even has BGP I think
>you can ask the djinn (gpt).
yeah fair point, I was just wondering if there were any guides like "so you have started self-hosting, here's how to operate a cisco switch" because homelabs are a somewhat popular hobby right now and ciscos are pretty standard afaik. even gpt is usually easier to use once you already have a basic understanding of what you're doing

>>105890537
As the other anon said get an x86 box with intel N100 or something like that. It's still easily 1.5-2x more powerful than a raspi 5, and you'll be able to boot and run mainline distros of your choice which is huge. SBCs are mostly a meme.

>>105892864
conf t
ip routing
vlan 10
name VLAN_10
exit
vlan 20
name VLAN_20
exit
interface vlan10
ip address 192.168.10.1 255.255.255.0
no shut
interface vlan 20
ip address 192.168.20.1 255.255.255.0
no shut
interface g1/0/1
no switchport
ip address 192.168.1.2 255.255.255.0
no shut
exit
ip route 0.0.0.0 0.0.0.0 192.168.1.1
interface g1/0/#
switchport
switchport mode access
switchport access vlan #
exit
end
copy run start

where your g1/0/1 port is connected to your upstream router and it has the address 192.168.1.1 and subnet mask 255.255.255.0 (/24). then each device you want in a different segment you just drop it in either vlan 10 or vlan 20. on your upstream device add a route to 192.168.10.0/24 and 192.168.20.0/24 via 192.168.1.2.

>>105890850
>>105890850
>why would it be common sense to give the wireguard foundation access to your devices instead of the wireguard foundation?
Gee anon, no idea. I'll let you know when I figure that out.

Is it ok for two services to use the same port? I have 8080:8080 for qbittorrent, and YACReader wants me to use 9999:8080 to work. If I change it to 9999:9999 it won't work

>>105893697
Based, thanks anon. I'll use this as a starting point and see if I fuck it up

Wait I'm retarded, can you actually explain the routing to me a bit more? Is this basically setting up subnets at the same time as vlans?
For reference the next thing I would research would then be setting up access control between by VLANs, one of them is for IoT shit that won't have WAN access. I suppose subnets might make this easier right?

>>105893991
tailscale sees your metadata via the coordination server and if that fucking thing gets pwned you are deeply fucked because of all the crazy lolicon you have on your computer, tranny. then whoever it is will have complete access to your DNS, keys, everything.

>>105893991
tailscale is for retards

>>105877252
It's a low latency (possibly the lowest) remote desktop program. It's like RDP but more responsive.

Does anyone know if there are cheaper and actually in-stock alternatives to SilverStone rails? I thought about drilling a few holes into regular cabinet rails. not sure if that would work

>>105894085
>If the centralized coordination server, owned and managed by wireguard, gets pwned, the crap I project onto people I disagree with will be owned - in the same way that the massive number of corporations all over the world who use and pay for various levels of service would, completely irrespective of self signing nodes, users, access lists or 2FA.
Know your threat model anon. The risks you've outlined are worth taking if you do your due diligence.

>>105894385
you avatar post and it's incredibly obvious from everything you've posted that you're so far outside your knowledge. you spew shit out your ass all day long on /hsg/ while contributing absolutely nothing of value.

>>105894385
>owned and managed by wireguard
No, by Tailscale.
>the crap i project onto people I disagree with
I wouldn't want any of my stuff being in someone else's hands, no matter how benign it is.
>in the same way that the massive number of corporations all over the world who use and pay for various levels of service would
Yeah. Isn't that the whole reason you'd self host in the first place? We're not compared self-host to corporate. We're comparing one self-host thing to another (mostly) self-host thing.
If you really want to use Tailscale, at least use Headscale alongside it.

What's a good motherboard that doesn't break the bank? I'm looking into refurbished server mobos but they are all $200+ if I want 128GB ECC RAM.
I want to run 3 VMs with 16GB RAM each for kubernetes plus 32GB RAM for my other VMs that run actually important homeserver stuff.

>>105894057
VLANs are a layer 2 construct and SVIs (interface vlan#) can route between those VLANs. If you want to block IoT shit from reaching outside of the network you have to make an ACL to stop outbound traffic. It's tricky on Cisco because the directionality for ACLs on an SVI are reversed.

ip access-list extended vlan-20-iot-outbound
10 deny ip any any log-input
exit
interface vlan20
ip access-group vlan-20-iot-outbound in
exit

This will block vlan 20 devices from being able to speak with anything not in vlan 20. you can add rules for hole-punching as well. The reason it's reversed is because it's supposed to be from the perspective of the internal router and not the SVI itself. If you want to make amendments to the ACL you would do the following (this is for RTSP from a camera to an NVR for instance):
ip access-list extended vlan-20-iot-outbound
5 permit udp host 192.168.20.5 eq 554 192.168.10.3
exit
ip access-list resequence vlan-20-iot-outbound 10 10

So that's from camera 192.168.20.5 sending RTSP streams (tcp/554 source port) to 192.168.10.3 NVR. The last line is to resequence the access list by series of 10 so that you can stuff new rules in between others because it works from top to bottom in processing.

>>105894385
I don't need to take risks because I'm not a fucking retard who can't figure out how to set up regular Wireguard on a nonstandard port. Stop avatar posting and go read a fucking book you absolute mongoloid.

VLANs are a layer 2 construct and SVIs (interface vlan#) can route between those VLANs. If you want to block IoT shit from reaching outside of the network you have to make an ACL to stop outbound traffic. It's tricky on Cisco because the directionality for ACLs on an SVI are reversed.

ip access-list extended vlan-20-iot-outbound
10 deny ip any any log-input
exit
interface vlan20
ip access-group vlan-20-iot-outbound in
exit


This will block vlan 20 devices from being able to speak with anything not in vlan 20. you can add rules for hole-punching as well. The reason it's reversed is because it's supposed to be from the perspective of the internal router and not the SVI itself. If you want to make amendments to the ACL you would do the following (this is for RTSP from a camera to an NVR for instance):
ip access-list extended vlan-20-iot-outbound
5 permit tcp host 192.168.20.5 eq 554 host 192.168.10.3
exit
ip access-list resequence vlan-20-iot-outbound 10 10


So that's from camera 192.168.20.5 sending RTSP streams (tcp/554 source port) to 192.168.10.3 NVR. The last line is to resequence the access list by series of 10 so that you can stuff new rules in between others because it works from top to bottom in processing.

>>105894385
I don't need to take risks because I'm not a fucking retard who can't figure out how to set up regular Wireguard on a nonstandard port. Stop avatar posting and go read a fucking book you absolute mongoloid.

>>105894793
>>105894813
Got it (mostly), thanks anon

>>105894427
Given that it's build on top of wireguard I figured they were the same entity, or at the very least working in close coordination with one another - thanks for clearing that up.
>Headscale
I'll take a look at that, thanks for the advice.
>>105894813
>>105894398
You're on an imageboard lil bro. Lighten up.

>>105895031
there are two of us calling you a retard at minimum.

What do you think is best for syncing data from your desktop to your server. rsync, restic, git? what do you use

>>105895083
I won't accuse you of samefagging king. You or anyone else can call me retarded for any number of reasons, I'll own that. But sperging out over images on an imageboard is just silly, never mind the fact that I can indeed take advice and change my position. I've learned my lesson, and will give Headscale a fair shake.

>>105892571
Which is why it should be an option (as I've said). By default the container should create the dang database in the dang container unless it is provided with a different irl

>>105895091
What OS is your desktop running, and what's your server running? I have debian based crap so I just use rsync + cronjobs.

>>105895091
nextcloud. anything that is worth backing up is just in nextcloud. everything else lives on the server. if I wanted to back-up a machine or a dataset I would use zrepl

>>105895175
i'm wanting to sync data from my win11 desktop to my truenas core server(freebsd)

I think this looks promimsing
https://github.com/garethgeorge/backrest/releases
it uses restic as the backend and provides a nice ui

>>105895031
>Given that it's build on top of wireguard I figured they were the same entity, or at the very least working in close coordination with one another - thanks for clearing that up.
That's alright. It's a different company entirely, and they just add easy mode for people who don't know how to use computers. The fact you didn't know that is one reason why the other guy was saying you don't know what you're talking about.
>I'll take a look at that, thanks for the advice.
No problem. It's a better option than using the Tailscale central server but at that point... why not just use Wireguard? It's not that difficult.
You talk confidently when you don't really know anything. You should stop doing that.

>>105895332
>but at that point... why not just use Wireguard? It's not that difficult.
When I first approached the point where I actually needed to consider using a VPN, tailscale was the first thing recommended here, and succinctly met all my goals with no meaningful difficulty. Once I have a solution to a problem I generally stay with that solution, but I'm more than willing to refine and try new stuff if it's better. If I had to be specific, having access lists and the built in ability to set up SSH with one line in bash and several minutes on the wiki was too juicy of an opportunity to pass up.
>You talk confidently when you don't really know anything. You should stop doing that.
I'm well within my right to comment on matters that I do know about and have experience with. With the obvious addition that this wasn't one of those things, which I own entirely.
>but what do you know anon?
Shit I don't know, ask me about zfs or something.

tailscale is the reddit of VPNs

>>105895447
>I'm well within my right to comment on matters that I do know about and have experience with. With the obvious addition that this wasn't one of those things, which I own entirely.
You've owned up to a mistake, which is rare on 4chan.
Good on you and good luck with your set up.

>>105895474
It's typical for these "tech guy" people who don't really know anything. They set up Tailscale, *arr and Plex and then they're the "tech guy", but they have no idea how anything they run actually works.
I think it's fine to do it, but it's just purchasing a piece of software and running it so you can be the "tech guy". I wish they weren't so prevalent in places where I'm seeking information about something more detailed.

>>105895487
I do what I can. Not -everyone- who acts like a retard stays retarded.

So I managed to build 2 options for my rack homelab:

- ASUS N100 board, x86, Proxmox + Proxmox backup server, 5w idle, 10w load
- 2 SBCs (Pi5+Rock 5C), ARM, Docker compose + Restic backup, 2w+3w=5w total idle (not sure about load)

Which setup would you prefer if you had to choose?

>>105895569
If I had to choose, I'd go with the first one.
ARM can make things a real nuisance if you start ending with use cases you weren't anticipating. x86 is just a lot more flexible.
Your N100 build will be more versatile in terms of hardware too. More space to expand out, upgrade, etc.
I like things consolidated on one machine if possible.
Idles are the same, and at least for me my server is typically idling. We don't know what you're using yours for so maybe that isn't true for you. Either way both of those will only add up to a small electricity bill per year.

>>105882130
unironically just find some random cheap hosting platform or host eve-ng yourself. I used to use cloudlabbox.com because it was the cheapest at the time. im not paying out the ass for CML

>>105868252
The epitome of a general poster. You don't share the same opinions as we do? Get out.

Any thoughts on the Jonsbo N4 case? 6x 3.5" drives and 2x 2.5" drives seems like a good starting case. About $150 CAD free shipping from Aliexpress. I'm looking to make something around the $500 price range, no drives, so this is about the max I'm looking to spend on a case.

Headscale exists.

Any way to self host and manage a manga collection? On Windows I use YAC, now that I have my NAS I tried to use that as well but the headless Docker version is absolute trash
I already tried Kapowarr, but I couldn't get it to work and apparently it has barebones support for manga anyway. Ideally, what I need is something I can throw my downloads at that sorts them out and hardlinks them to my media folder, like sonarr and radarr already do. Don't need anything fancy like automatic downloads or things like that, but if it's there I wouldn't mind it either

What domain name registrars do you guys purchase your domains from?
Also, is there a way to block ddos without having to rely on https removers like cloudflare and ddos-guard?

>>105897075
Komga is decent if you just need hosting without downloading.
I use suwayomi because it's basically just hosted mihon/tachiyomi with all the download and extension features built in.

>>105897169
>komga
I'm giving it a try literally just now, let's see how it goes
>suwayomi
Not an option for me since I read on my iPad. So far I've been using YAC's own reader app and I can't really complain about it, but if I have to change that too so be it.

>>105890234
>from a daily-use perspective just look like directories, right?
Yes
>if I have a dataset full of almost-exclusively non-compressible files like media, then I'd have the CPU work for no compression benefit, right? so I might as well turn compression off for a dataset like that
ZFS compression is intelligent and if it can't compress a block more than 12% it skips compression. So you can have movies and documents in the same dataset with compression on and it only compresses documents, skipping movies.
>If a drive dies on me, do I just pull it out, replace it with a new one and it starts the resilvering process automagically
It's one command to add the disk to a pool/vdev and it starts silvering the drive automatically. You can have hot-spare drives that are attached to the pool already and get silvered as soon as one fails.
>If hypothetically I wanted to increase the size of my pool I'd need to pull out a drive, replace it with a bigger capacity one and resilver it ofor each drive, right
The array will apply the size of the smallest drives across all drives in the array. So if you have a 12tb, 16tb and 20tb drive all 3 are silvered as 12tb drives. Only when you upgrade the 12/16tb drive to 20tb will it use the full space.
>Would putting the old drive back into the same spot recover my data?
In theory it could if no new data was written. Most people have automated snapshots and are constantly using the drives for read/write during resilvers so for them recovery would be impossible. In the mass majority of cases that's unrecoverable failure and you have to restore from backup.

>>105897169
>>105897193
It's definitely what I'm looking for, but I'm having some issues setting it up. So far I have all my manga under /data/torrents/complete/manga, but I don't seem to be able to import them to my library (it asks me to select a series first, but I have none and it won't let me manually add a series either)
Any idea what I'm doing wrong?

>>105897193
I used the suwayomi web reader on my ipad just fine for a while before getting an android tablet. You can use it as the frontend reader itself or a backend source to another tachiyomi forked app.
>>105897350
Honestly no clue, I gave up on komga because it was a pain getting it to find new chapters. It worked fine as an archive of my old manga but I imported them into suwayomi and removed komga from my stack a couple years ago.

>>105865404 (OP)
What's the point of having a home server? What do you guys do with all this stuff? Run Minecraft servers?

>>105897350
Rescan your library? And make sure you have the right file extensions selected.

>>105897406
Im less afraid to try making cpu and memory intensive webapps because all the hosting for it is paid upfront already

>>105897406
>navidrome
>soulseek
>torrents (deluged)
>audiobookshelf
>plex through a vpn
>nextcloud
>nfs to move stuff from linux devices
>smbd to move stuff from windows devices
>zfs for uptime
>another node for backups
It's fun, easy, and I don't like paying for services.

>>105897406
It's a combination of owning my own data and a sandbox to teach myself syadmin skills for work.
I don't wanna hear in 8 months that my photos are going to be deleted unless I start paying $12/month ($16/month without ads).

>>105897926
I understand the work stuff, it makes sense for someone who works with servers to own their own. But how much fucking data do you have? I feel like I have way too many old meme pics and downloaded live streams and I'm still not over a terabyte.

>>105897967
Movies/tv shows are the bulk of my data. Probably around 30TB and I have full backups too, so 60TB of media. It's ballooned out of control because I setup automatic upgrades to 4k bluray rips which is like 6-10x the size of a normal 1080p download. Still not sure if that was a good choice....
My dad has around 12TB of archived family stuff when my grandparents died and I host that for him. The mass majority of it is digitized reel tape and vhs. My mom found a couple ancient reels with my great great grandfather telling family stories so she wanted everything saved to go through it all, but it's mostly sermons and prayers recorded from radio stations.

>komm susser tod plays in the background

>>105890850
>>105894085
>>105894385
>>105893991
You guys are all arguing in a "what if" type of way
They literally used to do nothing to validate whether a domain was an organisation or shared provider other than "we have a list of shared providers"
Someone literally had another user "join" their tailscale network because they both shared the same obscure mail provider lmao
Given a VPN is entirely focused on providing secure access to my network, why would I then hand the keys to someone else?
Regular wireguard isn't difficult at all you fucking luddites

>>105898196
I'm disappointed that you're still running pfsense anon, switch to OPNsense please

>>105898307
You're seven hours late to the party, fren.

>>105898502
I-i don't check my phone that often >_<
and I can't sleep rn ...

>>105894176
>It's like RDP but more responsive.
Someone should I told me that earlier. Actually I did look it up and it just kept mentioning how it primary use is for streaming games, but it sounds like it just mirrors your desktop so you can just use it as a remote desktop really.
Now I have to look more into it. I hope it works between Windows and Linux.

>>105894176
>>105898535
It also handles inputs MUCH better, I enjoyed using it, the only thing it doesn't seem to do well (probably because of how it works to be so fluid) is it essentially just mirrors the display output, rather than creating a virtual desktop that resizes to suit the client. There are ways around it but I haven't looked into them yet.

>>105898546
>resizes to suit the client
Ah so if I connect to a computer with the display settings set to 1080p, it will just be a 1080p window on my 1440p monitor? A little lame but I can deal with that.

>>105898564
It can scale IIRC so any same aspect ratio is "alright" but yeah I think it'll be 1080p stretched to 1440p
I was using a 2560x1440 host on a 2560x1600 client and I had black bars, but it didn't really bother me all that much

>>105898516
Drink some milk and try box breathing. Crystal bowls on youtube maybe.

>>105898636
Going to listen to one of those 22 hour ambient music videos to go to sleep ^-^ busy day playing with Azure tomorrow, then building out a lab in the office to evaluate proxmox for the rest of the week !

Goodnight anon, remember to scrub your ZFS pools and test your backups !!

>>105898591
I've used VNC plenty of times so I'm use to it. Just want the better latency for some of the computers I use for separate things.

>>105896243
this general is beyond spamming "muh linux is better" ragebait.
if *linux is still a religion for you instead of a tool to get the job done and that's all you are talking about, then yes you simply dont belong here.

>>105898650
My pools were scrubbed just last night - sweet dreams anon.

>>105865404 (OP)
What's a good 8-port switch for VLANing?

>>105898715
gigabit it fine

>>105898535
You can add games as applications and it will stream just that Window, but the default is to stream the whole desktop and every open window.
>>105898546
>>105898564
You can either use a dummy Idd virtual driver to set the screen size to that of your client monitor, or you can use this:
https://github.com/ClassicOldSong/Apollo
Which will create virtual displays with the correct resolution dynamically, but it only works with Linux (not sure if that means the host or the host and the client, something for you to look into.)

>>105898535
You can add games as applications and it will stream just that one window, but the default is to stream the whole desktop and every open window.
>>105898546
>>105898564
You can either use a dummy Idd virtual driver to set the screen size to that of your client monitor, or you can use this:
https://github.com/ClassicOldSong/Apollo
Which will create virtual displays with the correct resolution dynamically, but it only works with Windows. Not sure if that means the host must be Windows or the host and the client, something for you to look into.

>>105865404 (OP)
Second-hand 24G SAS cards are starting to reach an interesting price point, and I'm toying with the idea of replacing my ancient SAS 6G disk shelf (that has an expander in it, so it's a complete tragedy). Sadly *e cards are still stupid expensive (as they've always been), so the usual trick of getting a $30 backplate and stealing *i lanes is back on the menu.
However, despite a few hours of bashing my head against various search engines (not to mentioned ebay and Alibaba), I'm having trouble finding anything useful that's specifically marked SFF-8674 (the spec for external SAS 24G) - everything seems to be labeled external miniSAS HD (SFF-8644), I do keep tripping over "SAS 24G rated" SFF-8644 backplates, cables etc., but they seem to be mostly from chinkshit suppliers (so likely bullshit). I literally can't find ANY backplate that's specifically marked SFF-8674.
What the hell am I missing here? Have I finally achieved clinical retardation?

think i might go buy a switch and a wap tomorrow. i think im set on a Ubiquiti Unifi NanoHD for $20, and im torn between a Cisco WS-C2960X-24PS-L for $60 or a
Aruba 2930M / JL322A for $80.

server/router would be a retired i5-7500k gaymen pc, but would probably be upgraded to something rackmounted or at least minipc within the next few months.

what would you choose between the switches? $20 doesnt mean anything, but ease of use and noise/power consumption do for me.

>have truenas box that's been running without issue for ~2 years now
>Decide to upgrade from b550 to x570 so I can add an extra card and nvme
>Drop mobo in, everything continues to run without issue
>Fiddlefuck with bios and reboot
>About a week later
>Decide to update bios from 2022 version to 2025
>Ethernet stops working
>Wtf
>Console says no network devices
>No activity lights
>Test wall port with laptop
>All good
>Comb through bios trying everything I can think
>Nope
>Decide to watch the port during power on and boot
>Activity lights start working right away
>Until truenas begins to boot then they shut off
>Wtf
>Load up Debian live and hirens bootpe
>Both have perfect internet immediately upon boot
>Go back into truenas
>Poke around with lspci
>It sees the controller and says the libvirt driver is loaded
>Also says io port and memory addresses are disabled
>Try a few more things I googled to add or enable a device but no luck
Wtf is this bullshit. Is it because of the bios or is that a red herring? I'm not sure because it's only truenas being stupid here. The nic is realtek 8125b which is known to be problematic but the b550 board had dual 8125 nics and they both ran flawlessly the entire time, as did the x570 initially. Has something like this ever happened to anyone else?

Made the jump and got a NAS
Opted for 12TB which I probably won't use rn but hopefully it will last some years

I'm aware of the need to keep a separate backup on top. Do I just buy another 12TB drive and do it that way, or do I use my existing 4TB, 2TB and 1TB drive I have and just keep the irreplaceable stuff backed up?

>>105900917
>OS inside VM would never cause a problem
kek

>>105900951
What are you talking about

Is $267 a good deal for the following supposedly unused computer?

Trying to setup my first home server

```
Upgraded Workstation Dell OptiPlex 3020,
Processor: i7-4790K 4.4GHz,
Memory: 16GB,
Primary Drive: SanDisk SSD PLUS 480GB,
Secondary Drive: 500GB,
Integrated Graphics: Intel HD Graphics 4600 1GB,
Network Card: Gigabit,
USB 3.0 Ports,
PCIe Expansion Slot for Graphics Card.
```

>>105901048
Depends where you are
in US or Europe this is way overpriced
in South America or Australia might be fine
i would look for something with DDR4 at least

Did any of you watch that recent Linus Tech Tips video about building a server for LAN parties?

I like watching their server videos even though I don't have servers myself, and I have no plans to get my own server. I just think it's interesting seeing these very powerful computers being assembled, which can deal with massive amounts of data.

Aside from the higher price, how bad of an idea is it really to use ssds for storage over hdds? Mainly asking because it seems like if you want anything remotely compact you have to go with ssds, there are compact hdd cases but they're too expensive imo. Like you can get an hdd rack and connect it to your server I guess, but using a usb connection for it feels iffy.

>>105890944
Depends how sensitive you are about security.

Tested backups and Ansible/Chef/Puppet/whatever can take care of reproduction benefits of containers/VMs, so you can quickly get up and running again if your servers catch fire.

VMs provide better out-of-the-box isolation than bare metal workloads, so you'll have to do more SELinux and firewall stuff to achieve a similar level of isolation on bare metal. Don't fall into the trap of believing that containers offer meaningful security - that's almost like running stuff on bare metal.

>>105888363
You also need a NAT post-routing rule on the Wireguard peer on you server. Something like this in your wgX.conf (replace the IP address with your own Wireguard address):

PostUp = iptables -t nat -A POSTROUTING -o eth0 -s 10.6.0.0/24 -j MASQUERADE
PostDown = iptables -t nat -D POSTROUTING -o eth0 -s 10.6.0.0/24 -j MASQUERADE

>>105901048
Major power draw once you get a feel for things look for a lower power system

>>105901490
Would you need such security in home server settings without anything connected outside your network?

>>105898314
Migrating to OPNsense would be temporary
Unless the freebsd NIC ecosystem unfucks itself in the next few years which I doubt

>>105901738
What NICs are you using?
It's been a while for me since I ran pfsense on bare metal, I now run OPNsense on hyper-v (soon to be proxmox) and it works great

>>105901755
Just gigabit intel right now but when the time comes for multi-gig, I want more options than just an X550 which really doesn't support Nbase-t properly or the rj45 x710 which is more expensive than the entire router itself

If I'm migrating its going to be Linux based.

How is this ODROID-H4 Ultra system https://pcpartpicker.com/list/Yw7jDj
Ran some numbers and wanted to run these services that seem to be in spec
Nextcloud (with Talk): ~4-5 cores, ~12-16 GB RAM, ~150-250 GB NVMe, ~10-12W
Jellyfin or Plex: ~2.5 cores, ~4-6 GB RAM, ~20-50 GB NVMe, ~8-10W
Vaultwarden: ~0.5 core, ~0.5 GB RAM, ~1-2 GB NVMe, ~0.2W
Syncthing: ~0.5 core, ~0.5 GB RAM, ~1-2 GB NVMe, ~0.2W
Duplicati: ~1 core, ~1 GB RAM, ~1 GB NVMe, ~0.4W
Netdata: ~0.5 core, ~0.5 GB RAM, ~1 GB NVMe, ~0.2W
Paperless-ngx: ~1 core, ~2 GB RAM, ~10 GB NVMe, ~0.4W
WireGuard: ~0.5 core, ~0.3 GB RAM, ~1 GB NVMe, ~0.1W
Portainer: ~0.5 core, ~0.5 GB RAM, ~1-2 GB NVMe, ~0.2W
Coturn: ~0.5-1 core, ~0.5-1 GB RAM, ~1-2 GB NVMe, ~0.2-0.3W
Prometheus + Grafana: ~0.5 core, ~0.5-1 GB RAM, ~5-10 GB NVMe, ~0.1-0.2W
Bookstack: ~0.5 core, ~0.5-1 GB RAM, ~5-10 GB NVMe, ~0.1-0.2W
Uptime Kuma: ~0.3 core, ~0.3-0.5 GB RAM, ~2-5 GB NVMe, ~0.1W
Heimdall: ~0.2 core, ~0.3 GB RAM, ~1-2 GB NVMe, ~0.1W
ClamAV: ~0.5 core, ~0.5 GB RAM, ~2 GB NVMe, ~0.2W

>>105865404 (OP)
i hate myself for setting up proxmox
i use only one vm on it and proxmox refuses to work with dhcp at all
i barely remember the network and storage configuration, so i cant easily reinstall without spending like a week on it

Recently started building out a Home Server.
Going with a Jonsbo N3 + MINISFORUM BD795i SE + Generic M.2 SATA expansion card (for drives) + 64gb ram.
Mainly going to be used for media serving and file dumps, but I'm sure I'll expand it's uses once I get everything up and running, thus the overkill CPU.
The more I build out this mini server, the more I realize my main PC is an oversized POS. I should have jumped to SFF a long time ago. ATX is a waste of space for anybody not making use of the multiple PCIe lanes. I'm going to downsize my main PC once the Server is completed.
I'm honestly wondering how I fell for the ATX, full tower, rainbow vomit RGB meme for so long.

>>105899597
Yes you are clinically retarded. You're on /g/.
But so is the SNIA who made the SAS4 cables mechanically the same.
Add terms like "external miniSAS HD 24" to your searches.
SAS4 internal<->external brackets are very thin on the ground.
The only thing I found was http://www.minerva.com.tw/datasheet/Gen_4/Adapter/GD2808A.pdf
And it seems that monstrosity (look at all the dip switches) is more for external PCIe than external SAS.

>>105900922
Buying a second 12TB drive could be considered a parity or backup drive depending on HOW you intend to use it..
But honestly you shouldn't call it a backup if the second drive is located inside of the same server or inside the same location. A true backup should be located offsite.

>>105902152
What would you purpose would be a safe second location for important documents like bills ect?
I plan to run a paperless NGX server to put all my bank statements and other documents on my server and I worry about that.

>>105896458
The wider case makes it easier to work in, but the choice to shorten the mobo compartment was an odd choice. Your CPU coolers, GPU and PCIe card choices will be limited due to the height.

>>105902169
I personally keep a backup at my parents' home. They know not to touch it and I can check on it whenever I decide to visit.

>>105902213
Must be nice to have a place you can trust

Lads, give me 1 (one) more thing for me to run, that empty spot is bothering me.

>>105896458
I nearly bought that one but decided to go for a cheap used Fractal Node 304 instead.
Being able to use ATX PSU was the main reason, that Jonsbo looks way nicer tho.

>>105902282
I almost bought it as well but the prices and performance is really shit compared to a 11 year old case.

>>105902293
Did you get the Node 304 as well? I ended up 3d printing a new front cover for it.
Silverstone has the SG13 which is kinda similar but has a nicer front pannel imo.

>>105902325
I did but my usecase is a ODROID-H4 Ultra with the itx attachment so the case fans should be enough for cooling and the goal is to cool my 3.5 drives. I just wanted to build a low power server to do my daily needs which this SBC can do with ease. I might buy a ODROID-H4+ for some single use servers but that might not be needed

>>105902346
I'm running something low power as well, just one of those N100 motherboards, don't even have any fans running at all, just getting rid of the original solid front cover has been enough.
Got a Corsair PSU with silent fans at low loads and it's whisper quiet.
I have it hidden behind my TV in my bedroom so I wanted it to be as quiet as possible.
Currently I only have on HDD tho, the rest are all Sata SSDs.

>>105902381
I think that's a fair usecase, I'm using 1tb SSD to run my services and serve as cache and pushed the actual storage to HDD 2 for raid1 and 1 for periodic backups.
I'm trying to reduce and remove the clutter and paper waste in my house so I hope this works out. I just want all my documents including bills digitized and I think I can avoid single point of failure with important documents leveraging sychthing on my phone and other devices, that should have a lower storage footprint because it's vital personal docs like my birth certificate and social security and move that to off site storage so I'm not fucked if I have a flood or fire.

>>105902267
github.com/dockur/windows

>>105902457
I also use syncthing and have nothing but praises about it.
Use it to keep a copy of my important stuff on my main PC, my laptop and NAS and photos on my phone, tablet and NAS.

>>105902457
>it's vital personal docs like my birth certificate and social security and move that to off site storage so I'm not fucked if I have a flood or fire.
You can request for copies of these documents (this is easier to do whilst you still own the OG documents, and harder to do if you lose them). You could then move the OG documents to a safety-deposit-box at a bank. Most banks have fire resistant boxes, so you'll need to put them in waterproof bags to meet the other requirement.

>>105902646
anon probably wants digital copies backed up for easy use. did that occur to you in this /hsg/ thread on /g ...

>>105902524
Can't think of a single usecase for this (on my low power home server).

>>105902646
I'm going to do that for safety, there can never be enough redundancy, going to do that with my car title too

>>105902657
YES.
I'm also suggesting anon make a physical backup in this /hsg/ thread on /g/...you know, because shit could go sideways with that digital backup as well...

>>105902267
Immich

>>105902665
Office suite.

>>105902152
I get you. But my idea was a setup in raid, so 2 12tb drives already with 1 drive dependency

And then on top of that a backup to a physical drive that i suppose i could store elsewhere. the question is whether it's worth paying the extra for a full 12tb drive or to make do with the 4tb+2tb+1tb I have now, even if it's a little more cumbersome to do it that way

newthread >>105903758

>>105901542
It actually was much easier than that.
In pic related, I had the DNS Server set to disable rather than to my router...

>>105895569
The Rock 5C interests me, seems to be a more powerful Pi 5 with specs and useful IO for a little home server at the same price of the Pi 5. I'm just reticent because of software compatibilty. Like the other anon said, the versatility of the Intel N chips becomes hard to beat.