How’s your stuff doing? Unplanned interruptions or achieving uptime records?
I’m currently sailing rather smooth. Most of my stuff is migrated to Komodo, there will stay some exceptions and I only have to migrate Lemmy itself I think. Of course that’s when I found a potential replacement but I’ll let it sit for a while before touching it again. Enjoying the occasional Merge Request notification from the Renovate Bot and knowing my stuff is mostly up to date.
I’m thinking about setting up some kind of Wiki for my other niche hobby (Netrunner LCG) lore as there’s a fandom one that most people avoid touching and updating but since I likely won’t have time to start writing some articles on my own as a kickoff I’m hesitant. Also not sure which wiki I’d choose as well.
You must log in or # to comment.
Purchased 5 1tb drives to expand my study server. Going from 600GB to 4TB is going to make more complex labs possible.
I have been experimenting with a btrfs raid array and am getting some new hard drives in the mail today, hoping it goes smoothly and they work 😬 All part of a larger goal of migrating my synology NAS to a purpose built machine.
Also got my first contribution and donation on my OIDC SSO project, which is really exciting!
Ey! congrats for the donation. I hope your personal project succeeds!
I’ve finally setup Netbird instead of Tailscale to VPN to my network. Took some time since I wanted it to work with pocket-id and had some issues configuring everything properly. Runs like a charm now.
I’ve just finished to configure my homelab with wg-easy yesterday to do exactly that. Took me weeks because podman. And now I learn that there was a better way? Oh well…
Pretty smooth sailing at the moment. I’ve got:
- sonarr
- radarr
- jackett
- bazarr
- transmission
- kuma uptime
- grafana
- promethius
- blackbox
- mastodon
- traefik
- authelia
- forgejo
- immich
- syncthing
All running on a 4 node raspberry pi kubernetes cluster.
Just got some power measuring plugs. Home Assistant and immich-running raspberry pi + NAS (dual 20TB in raid 1) + switch clock in at around 30W. Surround receiver playing music ups that by 90W. After a minor water leak I added 5 leak sensors to the system that will blink lights and send texts if they detect anything.
The biggest problem is that I’m still running lights through hue and some of them have an annoying tendency to drop off the network…
Get yourself a Sonoff ZigBee bridge! Hue light support is practically native, and they act as extenders to reach your other ZigBee devices! Just don’t expect to be able to sync them with any movies or peripherals. I think there is a virtual Hue bridge on HACS and that might help with that, but idk
I have that. I just got hue first, so all my lamps (or at least the old ones) are registered in hue. I haven’t taken the time to move all of it over, so now I have two competing networks.
Chose yesterday late evening as the time to migrate my containers from docker to podman (still rootful). By luck most things work again, except wireguard/qbittorrent
What made you want to switch from docker to podman?
Aiming to go daemonless and then rootless for as many containers as possible to minimize attack surface
Nice. I’m aiming to go from bare metal to rootless podman managed via quadlets. Networking seems like the difficult part.
I updated my Dietpi setup today, because a new version was available. It went very well, and everything works perfectly after a reboot.
and everything works perfectly after a reboot
I always hold my breath whenever I’ve done anything major to the server and I need to reboot.
Right? It’s like a trust fall. You just have to cross your fingers and hope for the best.
Everything here is smooth sailing. I have been trying to track down a bothersome Suricata entry.
202.136.163.11 PROTOCOL-ICMP destination unreachable port unreachable packet detected 202.136.163.11 PROTOCOL-ICMP destination unreachable port unreachable packet detected 202.136.163.11 PROTOCOL-ICMP destination unreachable port unreachable packet detected 202.136.163.11 PROTOCOL-ICMP destination unreachable port unreachable packet detectedad nauseum. There are three individual ips. One from Singapore, one from China and one from Romania. They are being blocked, so that’s good. Thing is, these are from realitvly ‘clean’ sources:
120.132.37.195 was not found in our database202.136.163.11 was found in our database! This IP was reported 5 times. Confidence of Abuse is 0%:On the server side, I have nothing calling out to these ip. That’s what was really bugging me. Nothing server side, just these three bothersome ip hammering Suricata. Generally, I would dismiss as benign and part of normal UDP behavior. However, it’s the constant hammering that makes me suspicious. Could be high volume port scanning. However, it could also be known attack campaigns like UDP amplification attempts.
Other than that, I might find something to get into today.
Trying to run a fediverse server on a decade-old Wi-Fi router and encountering some
unexpected issues. Making progress, though.Sounds cool, which software are you using?
Hell yeah!
Trying to smoothly orchestrate prowlarr, radarr, jellyfin, and transmission (via Proton vpn), using a big beautiful docker compose file. It’s been working OK but not without roadbumbs and tough learnings. Keep messing up directory permissions one way or another.
Next step is setting up fail2ban on my public facing jellyfin to control things a little better. Everything is hosted at home, and I don’t want to use cloud flare tunnels, are streaming video is technically not allowed in them.
If you have more good tips on securing a home server, let me know!
Also, this is all running on an ancient 2012 mac mini running Ubuntu. Slow as molasses and sometimes the fans make a noise. I should start looking into back-up solutions, at least for the configs.
Bad week for me. Tandoor had become the home of quite a lot of recipes, and well, I’m never gonna just pull a docker container again without a backup, cause I did a pull and the bastard stopped working.
So I setup Django and got started doing my own recipe server cause I was never very enthused about Tandoor, too much netflix-like Presentation bullshit and did not allow for the very simple thing I wanted, which was, a compact list of my recipes by alphabet that I can swiftly click on the one I want.
I also need to get my Python chops back cause I think there will be jobs again, soon enough.
Meanwhile, anyone got any suggestions of a better recipe app? Needs to run as a Linux server, that’s about it. I can go Tailscale if it has no security. If I get mine to something usable I’ll make it available.
Tried to setup a personal matrix server last night, got it to federate, next step is Matrix’s Element Call, spent too many hours trying to block the
/_synapseendpoint with Traefik because it is recommended by Matrix, no luck unfortunately.All this in hopes I can add a Music Bot to my instance or something similar.
Working on automating tasks so I don’t have to block out hours of time a week managing everything. Just got watchtower running and going to see how it does before trying out some other automations.
Just got watchtower running and going to see how it does before trying out some other automations.
If you find that watchtower (original) screws up the updates frequently there is a watchtower fork that runs so much smoother. I don’t have any issues with it at all. The original watchtower app hasn’t had an update in 2 years, so it might be something to keep in mind.
I’m actually using this one which seems to be more actively maintained than the one you linked.
Bookmarked! Thanks for that. Learning all kinds of stuff today.
In fact you must use the fork. The old one no longer works with recent Docker, due to API versioning. I found that out last night when I brought up my compose stack and traefik wouldn’t start, because it too needed an update.
no longer works with recent Docker, due to API versioning
I had that issue with Portainer recently. I had to drop back to the previous docker version, and held it until Portainer works through the snag. I didn’t think about original watchtower being affected. I just got tired of having to fix broken updates, and went looking for something better. When original watchtower worked tho, it worked well.
I finally moved my mail server from Hetzner to my homelab.
Pretty smooth sailing so far. For now I’m using Scaleway for outgoing mails since I can’t set a PTR record here but I might just try sending a few without PTR to see how other providers react.
From my experience using a mailserver with no PTR and an ISP who likes to put their addresses on a PBL, it’s very good. Gmail tends to be the most annoying and wants that PBL listing removed or you’ll go to spam for new recipients, but other than that 10/10. I’d be interested to hear what your findings are if you do test it!
Yes, but that doesn’t help you with the large providers (Gmail, Outlook, …) unfortunately.
@domi No … agree it would’t. My thought was more about helping each other improve deliverability between self hosters - but then overtime a network of self hosted servers that trusted each other might become appealing to Google , Outlook to eventually trust.
Had a productive session this weekend migrating my promtail config to grafana Alloy and setting up a syslog receiver to capture output from my cron jobs. Next up I’ll be messing with some scripts to sync my dashboard config across several instances which should be pretty neat if it works
