non_burglar
@non_burglar@lemmy.world
- Comment on What's up, selfhosters? - The Sunday thread 17 hours ago:
Finally moved all my lxc onto a lower-power Xeon D host, consumes 1/3 the electricity of my previous Dell R430, same essential performance.
- Comment on Looking for a VPS. I don't know who to choose. 22 hours ago:
Hmm… Let me look.
- Comment on Looking for a VPS. I don't know who to choose. 1 day ago:
24gb memory and 4 OCPU . the CPU doesnt sound like much, but if its using the ampere back end and not the amd micro, the CPU performance scales up with demand (to a point).
I have two containers running, one using 16gb memory and another using 4gb, they each have one cpu and they perform fine for what they do.
- Comment on Looking for a VPS. I don't know who to choose. 1 day ago:
No.
- Comment on Looking for a VPS. I don't know who to choose. 1 day ago:
Credit card? Have things changed? I have two containers hosted there and I never gave mine.
- Comment on Immich: opinion revised 6 days ago:
Yes, more control over what happens between server/client. Sorry, that wasnt clear.
Immich aims to be a google photos replacement, which has this function built in.
Now, I don’t care if it works only one way, but it should be clear.
- Comment on Immich: opinion revised 1 week ago:
I love immich. I just wish for two things:
- synchronised deletes on client server
- the edit tools on mobile to actually work on the photo at hand instead of creating a new photo with new metadata. May as well not have the tools, tbh.
- Comment on Rant! 100GB Log file in Nextcloud. 1 week ago:
I don’t disagree that logrotate is a sensible answer here, but making that the responsibility of the user is silly.
- Comment on Jellyfin is not just good... but *better* than Plex now?! 1 week ago:
Although I have my issues with plex, jellyfin has its own problems:
- STILL can’t clear out the TS transcoded files automatically. So if you watch a bunch of TV episodes on a weekend, your jellyfin container will run out of space and break.
- STILL can’t handle subtitles properly. I swear, this must be jellyfin’s Waterloo.
- jellyfin cannot demux 5.1 and present stereo sound on certain streams. I think this is a tooling issue. But it’s low level enough that I can handle it manually with mkvtoolnix myself on the few cases it happens.
- Comment on Spamassassin for Remote IMAP 1 week ago:
These projects are poorly maintained and abandoned because the industry of email has been reduced to a very few players, and they don’t care about IMAP standards, dmarc, dkim or any of it.
You’re running head on into the primary reason no one self-hosts email anymore; it has gone from being a nuisance to being adversarial.
- Comment on Docker in LXC vs VM 1 week ago:
Oh, nice. Thanks!
This is me showing my docker ignorance, I suppose.
- Comment on Docker in LXC vs VM 1 week ago:
I just snapshot the parent lxc. The data itself isn’t part of the container at any level, so if I bung up compose yml or env, I can just flip it back. The only real benefit is that all my backups are in the same place in the same format.
Like I’m not actually opposed to managing docker in one unit, I just haven’t got there yet and this has worked so far.
If I were to move to a single platform for several docker, what would you suggest? For admin and backups?
- Comment on Docker in LXC vs VM 1 week ago:
I use individual lxc for each docker compose so I don’t have to revert 8 services at once if I need to restore.
- Comment on What's up, selfhosters? - Sunday thread 2 weeks ago:
Thank you for replies, I’m grateful.
- Comment on What's up, selfhosters? - Sunday thread 2 weeks ago:
Sorry to pester you, but I’m confused: my google calendar app does not allow removing the original google calendar. How were you able to do so?
And both of your installs can sync from device to NC? I have not been able to get around this… Only one-way sync from NC to davx to 3rd party android calendar.
- Comment on What's up, selfhosters? - Sunday thread 2 weeks ago:
Which calendar client did you use?
- Comment on wanderer v0.15.1 - 2 weeks ago:
So I went to the demo and I have a few questions:
- Couldn’t figure out how to use 3d in demo (not critical)
- developer discord link on github is expired
- distinction between “public” and “shared” trails isn’t clear
- "Completion Status" for trails… what does this mean?
- Couldn’t import a trail in demo:
haystack-mountain-101522-105940.gpx {"message":"TypeError: Cannot read properties of null (reading 'id')"}
I am actually really impressed with what you have so far, and I’d love to start using this!
- Comment on wanderer v0.15.1 - 2 weeks ago:
Ok, I think I can deal with recording on an OSM client. I’ll give Wanderer a try.
- Comment on wanderer v0.15.1 - 2 weeks ago:
I want to try this. I’m one of the unfortunate victims of Gaia GPS turning to trash.
However, I can’t seem to find in the docs how tracks can be recorded…
Is there an app?
Do I need to be in contact with the server to record a track?
Do I need to ask my friends to send me gpx exports if they aren’t on strava?
Do you envision an integration with opentrailmap so in can share trails without having to expose Wanderer to public?
- Comment on Interest in a website containing the docker-compose files of projects listed in the awesome-selfhosted list 3 weeks ago:
It’s not actually going that great, there is already infighting on the direction of the scripts.
- Comment on Homelab upgrade - "Modern" alternatives to NFS, SSHFS? 3 weeks ago:
Are you having trouble reading context?
No, I’m not applying 2005 security, I’m saying NFS hasn’t evolved much since 2005, so throw it in a dedicated link by itself with no other traffic and call it a day.
Yes, iscsi allows the use of mounted luns as datastores like any other, you just need to use the user space iscsi driver and tools so that iscsi-ls is available. Do not use the kernel driver and args. This is documented in many places.
If you’re gonna make claims to strangers on the internet, make sure you know what you’re talking about first.
- Comment on Homelab upgrade - "Modern" alternatives to NFS, SSHFS? 3 weeks ago:
Yes, i have. Same security principles in 2005 as today.
Proxmox iscsi support is fine.
- Comment on Homelab upgrade - "Modern" alternatives to NFS, SSHFS? 3 weeks ago:
Oh, OK. I should have elaborated.
Yes, agreed. It’s so difficult to secure NFS that it’s best to treat it like a local connection and just lock it right down, physically and logically.
When i can, I use iscsi, but tuned NFS is almost as fast. I have a much higher workload than op, and i still am unable to bottleneck.
- Comment on Homelab upgrade - "Modern" alternatives to NFS, SSHFS? 3 weeks ago:
I don’t know what you’re on about, I’m talking about segregating with vlans and firewall.
If you’re encrypting your San connection, your architecture is wrong.
- Comment on Homelab upgrade - "Modern" alternatives to NFS, SSHFS? 3 weeks ago:
Your workload just won’t see much difference with any of them, so take your pick.
NFS is old, but if you add security constraints, it works really well. If you want to tune for bandwidth, try iSCSI , bonus points if you get zfs-over-iSCSI working with tuned block size. This last one is blazing fast if you have zfs at each and you do Zfs snapshots.
Beyond that, you’re getting into very tuned SAN things, which people build their careers on, its a real rabbit hole.
- Comment on Synology NAS Patch Required - MitM Vulnerability 3 weeks ago:
According to this, 6.2.4.x is not affected.
- Comment on Virtualizing my router - any experience to share? Pos/cons? 3 weeks ago:
OVS is fine, you can make live changes and something like spanning port traffic is a bit less hassle than using tc, but beyond that, it’s not really an important component to a failover scenario over any other vswitch, since it has no idea what a TCP stream is.
- Comment on Virtualizing my router - any experience to share? Pos/cons? 3 weeks ago:
For sure, if your thing is leaning into network configs, nothing wrong with it, especially if you have proper failover set up.
I think virtualized routing looks fun to the learning homelabber, and it is, but it does come with some caveats.
- Comment on Virtualizing my router - any experience to share? Pos/cons? 3 weeks ago:
HA… Do you mean failover? It would need some consideration, either a second wan link or accepting that a few TCP sessions might reset after the cutover, even with state sync. But it’s definitely doable.
I’m currently in a state of ramping down my hardware from a 1u dual Xeon to a more appropriate solution on less power-hungry gear, so I’m not as interested in setting up failover if it means adding to my power consumption simply for the uptime. After 25 years in IT, its become clear to me that the solutions we put in place at work come with some downsides like power consumption, noise, complexity and cost that aren’t offset by any meaningful advantage.
All that said, i did run that setup for a few years and it does perform very well. The one advantage of having a router virtualized was being able to revert to a snapshot if an upgrade failed, which is a good case for virtualizing a router on its own.
- Comment on Virtualizing my router - any experience to share? Pos/cons? 3 weeks ago:
I did it for a few years, it looks interesting on paper, but in practice, it’s a nightmare.
At home, you’ll be getting real sick of asking for change windows to reboot your hypervisor.
At work, you will rue the day you convinced mgmt to let it happen, only to now have hypervisor weirdness to troubleshoot on top of chasing down bgp and TCP header issues. If it’s a dedicated router, you can at least narrow the scope of possible problems.