beerclue

@beerclue@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Native Arch Linux Games - Share Your Favorites⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
rimworld, project zomboid, starsector…
⁨Comment⁩ on ⁨Self host sff project⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
This was my starting up machine. Of course, an nvme makes sense, especially running windows on it. I went for Proxmox, and now I have 4 different machines, a cluster of 3 similar sffs, and a chunkier boi with an i7, 64gb ram and a quadro gpu. This one was the most expensive, around 250€.

Beware, this is how it starts. From a single machine in my office, I went to a mini Datacenter in my cellar, with 4 “servers” (micro-pcs), two Nas devices, a raspberry pi cluster, a dell wyse cluster, new switches and access points, and so much more :))
⁨Comment⁩ on ⁨Self host sff project⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
you can get away with half that. i run my setup (similar to what you wrote) on a dell micro sff with an i5 6500t and 16gb ram that i paid 90€ for. not the snappiest, but works just fine.
⁨Comment⁩ on ⁨VMware’s rivals ramp efforts to create alternative stacks⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
I don’t use any GUI… I use terraform in the terminal or via CI/CD. There is an API and also a Terraform provider for Proxmox, and I can use that, together with Ansible and shell scripts to manage VMs, but I was looking for k8s support.

Again, it works fine for small environments, with a bit of manual work and human intervention, but for larger ones, I need a bit more. I moved away from a few VMs acting as k8s nodes, to k8s as a service (at work).
⁨Comment⁩ on ⁨VMware’s rivals ramp efforts to create alternative stacks⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
I do the same in Proxmox VMs, in my homelab, which is… fine. I was talking more about native support, manageable via an API or something.

Say I need to increase the number of nodes in my cluster. I spin up a new VM using the template I have, adjust the network configuration, update the packages, add it to the cluster. Oh, maybe I should also do an update on all of them while I’m there, because now the new machine runs a different docker version. I have some Ansible and bash scripts that automates most of this. It works for my homelab.

At work however, I have a handful of clusters, with dozens of nodes. The method above can become tedious fast and it’s prone to human errors. We use external Kubernetes as a service platforms (think DOKS, EKS, etc), who have Terraform providers available. So I open my Terraform config and increase the number of pods in one of my pre-production clusters from 9 to 11. I also change the version from 1.32 to 1.33. I then push my changes to a new merge request, my Gitlab CI spins up, who calls Atlantis to run a terraform plan, I check the results and ask it to apply. It takes 2 minutes. I would love to see this work with Proxmox.
⁨Comment⁩ on ⁨VMware’s rivals ramp efforts to create alternative stacks⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Man, I’ve been living and working in Germany for close to 10 years now. Proxmox is like that 50yo colleague of mine. Hard worker, reliable, really knowledgeable, a treasure trove of info, but he can’t be budged. He insists on installing any new VM using the GUI (both Windows and Linux), he avoids learning “new things” like Docker or Kubernetes, and really distrusts “the cloud”.

I will keep using Proxmox, as I have for many years both at work and at home, but we are migrating from a VM (with Docker) setup to Kubernetes. It would have been great for Proxmox to offer some support there, but…
⁨Comment⁩ on ⁨Introducing reitti: a selfhosted alternative to Google Timeline⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
I see what you mean, interesting. Didn’t really look at NixOS as a server os. I personally prefer using multiple compose files (in the process of migrating to k8s). I share resources too, like in your example, I just point to the existing DB instance, not create a new one for each new service.
⁨Comment⁩ on ⁨Introducing reitti: a selfhosted alternative to Google Timeline⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
May I ask what you mean by NixOS support? There’s a docker compose you could use in their repo…
⁨Comment⁩ on ⁨RETIRED: Readarr - Sonarr for Ebooks Book Manager and Automation⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
I believe R-- stands for Readarr and G–R-- stands for GoodReads.
⁨Comment⁩ on ⁨how are my fellow peeps hosting your music collection these days?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Hosted with Jellyfin, for clients I use Symfonium on Android and Feishin on desktop.
⁨Comment⁩ on ⁨What's the real difference between a shell script and Ansible (and which should I use)?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
ansible can seem like just a fancy way to run shell scripts with extra syntax, but the real power shows up when you start managing more than one machine or need repeatable, “idempotent” (i love this word) setups. ansible handles state rather than just running commands, so you can describe what you want instead of how to do it step by step. it’s also easier to maintain over time, especially if your setup grows or changes. just add that new vm to the inventory list.

if you’re already comfortable with shell scripts and just want to get a few vms going, you could totally get by without ansible. but if you’re planning to do this more than once, or want to be able to rebuild things cleanly, it’s worth it, imo. it could save you a lot of headaches later on.

i use it at work, i manage about 40 vms in our pre-production environment with ansible. if i need to install a new package on all, it’s one line and one command (ran in a pipeline). if i need to change the settings for unattended-upgrades on the debian machines only, same thing.

however, our “production” environment is k8s and a handful of external services, and we use terraform to manage all that.

i guess it all depends on your needs.
⁨Comment⁩ on ⁨OpenAI's annualized revenue hits $10 billion, up from $5.5 billion in December 2024⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
They also have an API, I think a chunk of that revenue comes from there. Think 3rd party apps and services having chat bots, writing assistants, etc that use openai’s API.
⁨Comment⁩ on ⁨If we replace most plastic with a non plastic alternative and would that really be better?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Not exactly answering your dilemma, but I was watching a cooking channel yesterday (Sorted), and they were talking about seaweed - it’s wild (heh). You can use it to make straws, bags, packaging and all sorts of stuff that’s foodsafe and biodegradable. And apparently, even if we replaced all the plastic used for that kind of thing with seaweed, we’d barely make a dent in the ocean’s seaweed supply - we’d use less than 1% of it.
⁨Comment⁩ on ⁨Ansible sounds interesting⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Oversimplifying it, Ansible playbooks are nothing more than some commands that should be run on a remote machine via ssh. Ansible knows or has modules for a variety of different package managers (apt, yum, etc) and automagically knows how to handle services or various config files.

It can get complex, but I think just the startup phase, until you have an inventory of remote machines, the ssh keys are in place, etc. I second the Jeff Geerling recommendation, his stuff is solid, both ready to use playbooks, and tutorials.

I would suggest to also look into cloudinit. Makes setting up VMs on proxmox easier, faster, more consistent, with users, networking, ssh keys, etc ready to use (by you or by Ansible).
⁨Comment⁩ on ⁨This was the theme song used in a documentary about a failed corporation. Can you name the company?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Do they make cardigans?
⁨Comment⁩ on ⁨Is it possible to set what DNS server cloudflare tunnels uses when resolving local ips?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Yeah, I think coredns offers all the options you need.
⁨Comment⁩ on ⁨C4illin/ConvertX: Self-hosted online file converter that supports 1000+ formats⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
This is a great addition to my home-lab, no more “free online convert” tools needed.
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Am tot auzit și eu, da’… sursa?
⁨Comment⁩ on ⁨Cucumbers taste like the white part of watermelons⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
My family pickles watermelons, for generations. They are delicious.
⁨Comment⁩ on ⁨How do I host Jellyfin in the most secure manner possible?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
I agree with you, but this was specifically about jellyfin.
⁨Comment⁩ on ⁨How do I host Jellyfin in the most secure manner possible?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
I don’t think so, but don’t quote me on that. My machines come with a 65w charger.
⁨Comment⁩ on ⁨How do I host Jellyfin in the most secure manner possible?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
A micro sized PC with an i5 and 8gb or ram can cost under 100€, and it’s way more powerful compared to a pi. Power efficient too. That’s what I used for a long time for my jellyfin server.
⁨Comment⁩ on ⁨Testing vs Prod⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
I personally use my home lab to test and learn, and I try to mimic a corporate environment. I have multiple instances of DNS, proxy, etc and I have a “prod” and a separate “staging” k8s environment. I try as much as possible, without going nuts about it, to update and try new changes that might be breaking in the staging cluster.
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Jizăs Craist.
⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
I don’t think I’ve ever encountered what you say… I use WG it to access a network, not a device. I have a few dozen devices, physical and virtual, why should I set up wg on all of them? Tailscale, maybe, it’s a different story, but I prefer to “self host” and not rely on a 3rd party provider. Wireguard was relatively easy to set up too, a few years ago… and in the meantime, if I need to add a new client, it’s a two minute job.
⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
Right, but I have wireguard on my opnsense. So when I want to reach jellyfin.example.com, if I am at home, it goes phone -> DNS -> proxy -> jellyfin (on the same network). If I am connected to the VPN, it goes from phone -> internet -> opnsense public ip -> wireguard subnet -> local subnet -> DNS -> proxy -> jellyfin. I see some unneeded extra steps here… Am I wrong?
⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
Oh, I get that, but it just doesn’t make any sense to me to be physically next to the server, and connect to it via VPN…
⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
My network is not publicly accessible. I can only access the internal services while connected to my VPN or when I’m physically at home. I connect to WG to use the local DNS (pihole) or to access the selfhosted stuff. I don’t need to be connected while I’m at home… In a way, I am always using the home DNS.

Maybe I’m misunderstanding what you’re saying…
⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
I can stay connected, still works, but I don’t think I need the extra hoops.
⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
I also have a different subnet for WG. Not sure I understand what you’re saying…