Babby's first security tenant is to lock everything down and only use wireguard. It does the job, but you sacrifice a lot of the "A" in the CIA triad.

>>108153014
filtered by networking like i said

>>108153352

>>108153860
see
>>108121569

>>108153860
There are no 3Gb NICs and switches anon

man the local used hdd market is so shit here rn
nothing but relics from 2014 with 99k hours
i guess i'll hit ebay and roll the dice cant get any worse

File: networkingbook.jpg (271 KB, 832x1248)

271 KB JPG

>>108154293
>says they're saturating their 10g link
>link is policed by their ISP to 3gbps
>doesn't know how to read, how to even think
i'm not giving the other guy a (You) because he's eagerly stupid and you're regular stupid.

>>108153447
What forms of offline backups do you recommend for a large RAIDZ2 nfs?
Just.. a couple more HDDs in a shelf?

>>108155084
>>says they're saturating their 10g link
Likely for LAN transfers

>>108155157
>Just.. a couple more HDDs in a shelf?
Sure. If you can store your data in its entirety in an offline/offsite location, then you're fine. Just make sure to back up to it regularly.

>>108155347
The thing I am confused about is.. the whole 3-2-1 backup thing. I assume even though my zraid2 has failsafes, it does still only count as 1 storage device?

File: Screenshot 2026-02-15 at (...).png (377 KB, 2298x1140)

377 KB PNG

Bought a Hetzner server. This is my first time setting up a stateless firewall and goddamn is it a fucking pain in the dick.
I want my own static ipv4 to be the only one allowed to make incoming connections, BUT I need to be able to make web requests, DNS lookups, ICMP pings, etc from the server just for routine use. A stateful firewall would know to let replies through but for a stateless one I need to add ephemeral ports etc manually.

Questions,
1. Does this look roughly correct?
2. Is there no way to block incoming icmp without losing the ability to get replies to my own icmp requests?
3. All UDP ports from 32768 up are basically open now, seems to be the only way to get DNS replies. This is inherently less secure than a stateful firewall right?

I don't want to rely on a host firewall because I use Docker and mixing docker with normal rules is painful.

>>108155608
For the purpose of trying to satisfy the whole 3-2-1 thing, treat any zpool like a singular device. Even if you have multiple pools on the same computer, if your psu or motherboard or cpu shits itself then the "redundancy" zfs offers is moot. It's for uptime, not a backup.
Obviously you can make your data storage more "redundant" within a single device with stuff like this, but that doesn't detract from the risk of the entire device being rendered inoperable for one reason or another. Even if your offsite backup is literally just a single HDD, it still meets the basic requirement of being able to store your data in its entirety offsite.

>>108156093
you could just allow everything inbound and outbound in that console and put UFW on the actual VM server which is stateful. it'll be much easier. are you sure that's not stateful and you're just getting confused about the semantics of where connections are initiated from? you normally allow all outbound (which allows reverse traffic (ephemeral, etc) from both tcp and udp) and then you selectively allow inbound.

>>108156188
It's a dedicated server, not a VM. So if I want to use a host firewall, I'd need to either make it coexist with docker's auto-inserted rules or setup proxmox/other hypervisor myself. I don't really want to do either.
>are you sure that's not stateful
Certain
https://docs.hetzner.com/robot/dedicated-server/firewall/
>Hetzner Online's stateless firewall is [...]
>you normally allow all outbound [...] and then you selectively allow inbound
Yeah that's what I do for stateful firewalls, doesn't work for stateless

>>108153480
why not firewall

>>108156235
your rules look good for stateless but it's very important to note that if you do it this way you are creating a massive surface area for recon, DoS, whatever. the only real way to do this safely is with conntrack enabled host firewalling.
i would NEVER use stateless firewalling on a public exposed server no matter what. it's not safe. stateless firewalling is primarily suited for protecting control planes, not data planes.
>t. glowie

File: ay i.jpg (403 KB, 912x1774)

403 KB JPG

sysadmin bros, it's over

>>108156639
Thanks anon. I've just enabled ufw too. It was actually less painful than I thought it would be to have it coexist with docker.
(Ports that docker is configured to expose are still exposed regardless of ufw settings, but as long as I don't choose any weirdly high port numbers for my docker services then the stateless fw is enough to avoid accidental exposure of those)

File: 1765950959710656.png (1.13 MB, 832x864)

1.13 MB PNG

Blog update: I have finished migrating my s3 storage from MinIO to SeaweedFS. Seems to be working fine so far.

>>108155084
You're unable to hold two thoughts in your mind at the same time. You wont explain what you're telling other people to look up because you don't understand it yourself. You couldn't explain it if you tried.

if I have a lot of open ports with nothing listening to it, is it considered a security issue?

>>108158385
no. you can only be attacked if a vulnerable service is running on that port.

goodnight niggers

Have any of you been having issues it m installing the latest jellyfin anew? It won't install under windows 10 or 11 into the ProgramData folder at it should

>>108159924
I use arch for my servers as god intended.

>>108157619
>MinIO
why did this become so jewish?

>>108159991
unrelentingly based
arch for servers
anyone who says arch is unstable is retarded and low iq

File: image.png (107 KB, 1485x696)

107 KB PNG

>>108160201

File: ports.jpg (104 KB, 1038x339)

104 KB JPG

>>108158385
i use security through obscurity

>>108160201
I don't understand what the MinIO thought process was. Was it too expensive to maintain the project? Did they think that the open source version was cutting into their business offering's profits?

It seems so ludicrous to me that they would just willingly throw away all the free mindshare they controlled as being the go-to object storage system that everyone used.

File: pvw5akjpglg21.jpg (26 KB, 540x462)

26 KB JPG

>order a refurb elitedesk all excited
>it arrives
>put debian on it, set up remote desktop and ssh
>lose all interest

>>108163329
Non-paying users provide no benefit to their billion dollar startup.

>>108163329
>>108160201
why do people still assume a company or corporation has your best interest in mind? you are scum to them.

>>108163365
It'll be waiting for you when you get in the mood. What are you planning to do with it?

File: 1754347173895414.jpg (142 KB, 1280x1024)

142 KB JPG

>>108163393
The non-paying users of MinIO are not just like random ass people though. The kind of person who bothers to run their own s3 storage in their free time is typically going to be a person with a day job in tech, and probably on a team that interacts with object storage in some way.

In other words, there's a non-insignificant overlap between the users of their open source product and the wagies who are influencing their company's decisions on what overpriced software vendor to go with. That's the marketing value they get out of this.

If you've ever made the mistake of giving your contact info to a booth at an industry even then you'll know that the SaaS sales motherfuckers will hound you for weeks trying to call and buy you lunches and lobby you if they get even a hint that you might be on a team relevant to maybe purchasing their product. Sales and advertising is a big part of these companies.

tldr; it strikes me as them throwing away something that provided good marketing value for their business while costing them very little

>>108163527
just the usual self-hosted alternatives to media services. first step would be to migrate the Jellyfin setup that's already on my laptop.

ve had to learn GitHub actions even though it's not-my-job(TM)
what do people consider a good CI?
I. e. something that the community considers good, not what fag cloud tech managers consider good.

>>108164016
>a good CI
Depends, what are you trying to do with it?

>>108164040
basic code project in Go
I might just go with Gitea or forgejo

>>108163698
Management makes purchasing decisions, retard. As a manager would I rather purchase something free and off the street or pay for something I know is quality? Free is a signal that the product isn't worth using.

>>108164054
Gitea actions are like 95% compatible with Github actions. I've been using them on my personal setup and they work. Not familiar with forgejo's actions.

As for golang related CI, golangci-lint is pretty standard to have running on every PR. We have it set up at work and it does what it says it does. idk if it's really essential for hobby projects with one user, but it saves you from manually having to run tests and lint all the time I guess.

Goreleaser is another one which is pretty handy to have for handling builds and releases. There are a lot of different options with it and you can hook it up to pretty much anything, though it can be a little annoying to configure. I have it set up to automatically do+push binary builds and docker builds for go projects.


>>108164076
bait used to be believable

>>108164274
thanks anon
linting happens automatically with gopls in vscode

>>108164054
>in Go
use case?

>>108164589
social site

>>108164632
i remember twitch source code got leaked and it's all Go, you should change the logo and use it

>>108164750
this is very jeet-brained, anon.
firstly, you don't start with a ton of source code you don't understand even if it's written by pros.
you start with what you need and build from there.
and i'd just use AI to help me scaffold it anyway, AI would unironically do a better job now than most industry code monkeys.

File: 149738309291.png (102 KB, 450x443)

102 KB PNG

>>108165055
>this is very jeet-brained
.
.
.
>i'd use AI to help me

>>108165075
ah yes
the jeet thinks white people don't use AI to get things done because somehow a snobbish elitism prevents us from doing so. only jeets should get the benefits of this new groundbreaking tech after all.
hmm. ahaha. oh hoho.

>>108165359
>i cant even do the easiest part by myself without AI therefore you're a jeet

kek thirdie nocoders are so funny.

>>108165415
>>i cant even do the easiest part by myself without AI therefore you're a jeet
what are you even talking about? where did I say I couldn't do something by myself? I only came here to check if anyone had any recs for good CI software and it turns out I already knew the answer anyway (Gitea).

>>108165415
also didn't you just tell me to use the twitch source code? fuck you're completely retarded

File: file.png (45 KB, 956x444)

45 KB PNG

tfw have to use powerline ethernet for one of my secondary computers

>>108165759
it gets that both directions? last time I tried to use powerline i got 20mbit down and 200mbit up--exactly the opposite of what i needed.

File: 1767040895117.png (126 KB, 330x424)

126 KB PNG

>>108165055
>and i'd just use AI to help me scaffold it

>>108165427
>where did I say I couldn't do something by myself

>>108165897
Everytime I tried such contraptions they would get hot and smell like burnt plastic 24/7

File: Screenshot 2026-02-17 at (...).png (453 KB, 886x1190)

453 KB PNG

>>108165759
>have to use powerline ethernet
I guarantee you don't have to. If you can't drill and you don't want to run copper ethernet cable, run some <1mm transparent fibre instead. It's almost invisible and can sneak through gaps in doorframes.
(You want the version with blue connectors instead of green, and will need some suitable media converters assuming you don't already have switches with SFP ports.)

Stupid question... where do you all get your cabinets from...? seems like second hand ones near me are immediately sold now. Need one that can hold a 2u server at 28inches, new ones are pretty pricey from what i am seeing.

I've never used anything but windows before and can't even into the command line or powershell there

Should I stick with the default OS my Ugreen NAS came with, or should I try to stumble my way through installing ZFS with TrueNAS?

Are there any guides to using TrueNAS and ZFS made for utter complete novices that have extremely clear step by step instructions?

>>108168637
https://nascompares.com/guide/truenas-on-a-ugreen-nas-installation-guide/
Maybe this will help

>>108165942
you don't seem to understand what scaffolding is, chimpanzee-ass nigger

so glad i never went down the zfs rabbit hole, miss me with that gay stuff, plain raid1 forever

>>108170100
data integrity is of no concern to you then. glhf.

>>108170100
This maverick isn't even using any filesystem, just raid1
Radical

>>108170100
jbod supremacy

I want to format my Raspberry.
How can I make my setup and configs reproducible?
Should I just ansible or cloud-init somehow? I want to be able to format and reimage my Raspberry easily without having to set up everything manually every time.

>>108170119
>data integrity
what would be an example of an event where my data gets disintegrated?

>>108170210
when bitrot happens.

>>108170226
how often did that happen to you?

>>108170251
how often do you want it to happen? having a file get corrupted. your os not knowing anything about it and you non the wiser making a backup of the corrupt data. all because of a file system choice.

>>108170272
damn that would suck
isn't btrfs good for that too? i assume i would need lots of ram for the nas with zfs
what was it like, 1G ram for every 1TB zfs?

>>108170318
zfs has a better software raid implementation and they are the gold standard. it's honestly shocking that it is basically free to use
zfs has checksumming for every block of data instead of the shitty half-measures btrfs does because it's meant for desktops
>what was it like, 1G ram for every 1TB zfs?
also stop spreading this brain-dead propaganda. if you don't use deduplication you won't need a ton of ram. you do need some ram for caching, but unused ram is wasted ram. i'd rather use it for something useful than to let it sit and just look at how much i don't use. the cache also adjusts automatically and can also be put on a scratch disk that you don't care about.

>>108170360
i am asking because my nas box has 4G ddr4 x 4 slots already and would be a pain in the ass to buy more ram in the current market.
how is zfs when it comes to brownouts or blackouts? i have a ups, but still. lets say on a practical level, i use zfs, and i pull the plug suddenly. does it need obligatory recheck/resilver whatever its called?

is fedora coreos considered a good container-focused distro around here?

>>108170100
Most people just do mirrored vdevs, which is just raid 10 but with zfs's features.

>>108170394
You can add an slog disk which protects your asynchronous writes in the case of power loss.

>>108170360
>if you don't use deduplication

1gb/tb rule is for arc. it was never about dedup.

>>108170318
you can do fine on less memory if you have a SSD cache for any iops-intensive operations. if it's just a big box of file storage, you don't need to worry about it.

>>108170394
it picks up where it left off, maybe with a couple seconds of writes lost. nothing you need to do, no resilvering.

>>108170394
>how is zfs when it comes to brownouts or blackouts?

zfs writes the new version to a fresh, empty block on the disk. only after that write is 100% finished does zfs update the "pointer" to look at the new data instead of the old. if the power cuts: the pointer still points to the old, perfectly intact version of the file. you might lose the last 5 seconds of work, but your filesystem will never be corrupted. it's arguably one of the most resilient file systems out there since it's copy on write. your file system will never be corrupted that way. it's much better than the journal system that most file systems use. also this forgot about that >>108170465
>i have a ups, but still. lets say on a practical level, i use zfs, and i pull the plug suddenly. does it need obligatory recheck/resilver whatever its called?
resilvering only happens if one disk gets removed and replaced, which is normal for any raid system. rechecking is manual or scheduled as a maintenance task. you don't have to run it since the on-disk structure is always consistent (since it is still copy on write). mounting is instant. there is no scanning and repairing drive like with ntfs or ext4."
>>108170469
>1gb/tb rule is for arc. it was never about dedup.
no it is about the dedupliaction table ddt that stores a lost of every blocks checksum. to be fast this table has to live in the ram.

>>108170125
as an enlightened intellectual I use ReFS

>>108171862
if only they allowed you to install your os on that thing. still dogshit compared to zfs.

>>108171862
>using windows in 2026
ranjesh...

>finally got around to adding hardware acceleration and simplifying my dl procedures
>finally got around to getting remote access so my brother can view my jellyfin server
2026 off to a good start

>>108171932
>troon immediately starts flaming
shoo, go shoot up a hockey rink or something.

>>108172097
Ranjesh you can't call everyone who's right a tranny.

>>108172097
just use cloud services if you depend on windows

Reminder that raid is overkill for your fancy media servers. Just use mergerfs.

GUYS, I HAVE A 24 SLOT SWITCH, THEN A ROUTER WITH 4 SLOTS AND WIFI, I WANNA MAKE IT SO I CAN CONNECT TO DEVICES ON EITHER ONE

HOOOW???

>>108172164
What the fuck are you on about you dumb faggot just plug them in.

>>108172107
actually i can, just like the unemployed tinkertroons are projecting calling everyone an indian.

>>108172176
I TRIED BUT SHIT ON THE ROUTER CANT CONNECT TO THE SWITCH IDK WHAT IM DOING

>>108172164
CABLES!!!1111

>>108172271
did you use monster cables?

>>108172271
Probably router demons. Did you put holy water on your wifi cables?

>Interesting service
>docker
lmao no

>>108172164
router port#1 --cat5-- switch port#1
router port#2 --cat6-- switch port#8
router port#3 --cat5-- switch port#16
router port#4 --cat6-- switch port#24

this is the only way

>>108172164
just be yourself

>>108172302
what kind of elitist bullshit is this?

>>108172789
Ship literally anything else besides a docker file if you're not Indian. I'm not touching that slop.

>>108172871
kek you're delusional. point me to a service worth running in the year of our lord 2026 that does not have a docker image

>>108172871
What service is getting "shipped" as a docker file but is somehow unable to be run standalone? link the service in question that you're talking about

>>108172940
nta, booklore only offers docker, but it's a meme project so that checks out

File: 1742985513084675.png (150 KB, 556x690)

150 KB PNG

>2026
>his application can't be trivially shipped as a single reasonably-sized binary with zero dependencies

>>108172940
RomM was the one that annoyed me today.

I have a debian box that just serves and scrapes, but I'm in dependency hell because everything is written with meme languages. Should I do a fresh debian install with cockpit to take advantage of containers? Thanks

>>108173931
proxmox

>>108173931
>cockpit
sounds a bit gay

>>108173966
What benefits does it provide for the extra overhead? I want minimal maintenance

>>108173931
no need to do a fresh install, just dockerize everything, minimal maintenance with close to zero overhead

>>108173010
this picoclaw shit will make people take Go seriously (if they hadn't already seen how it's powering tons of major projects already)
and the RAM shortage
literally just vibe-code your shit in Go, retards lmfao

>>108173994
>pseudo ipmi functionality with the web-ui
>snapshots of your vms with natively supported zfs
>community scripts for fast setup of services with lxc containers https://community-scripts.github.io/ProxmoxVE/

File: 54E9B3DD-185A-4B5B-A77B-F(...).gif (182 KB, 220x124)

182 KB GIF

>run memtest
>60+ errors
FUCK

>>108174900
Rerun, clearly the errors were reported in error

>>108174900
I feel yah.

>one of the two ram sticks in my server shits the bed
>look two weeks for exact same ram stick so i can replace it
>get one on ebay for $20 more than i wanted to pay
>at least i found one
>it arrives in bubble wrap instead of antistatic bag/package
>its toast
>fight with idiot seller for another two weeks to get my money back
>i still have no replacement

File: A3E753E7-8DB9-4FED-BACC-0(...).jpg (177 KB, 567x1019)

177 KB JPG

>>108174959
>>108175354
I swapped the modules around and it works now

I don’t know why that fixed it when reseating and cleaning the contacts/sockets didn’t, but I’ll take it

can’t think of a good domain name…

>>108175708
Same. I bought a domain to finally get away from mememail addresses but the domain name I bought is a variation of my first and last name so now I'm afraid to use it for any service in fear of giving away too much info. I wanted to buy a new domain to get rid of this problem but I can't think of any good ones that aren't already bought or are too goddamn expensive

>>108175708
>>108176648
Mine's a fake business based on a personal hobby
Something with aerospace in it when all you do is launch model rockets
Something with consulting in it when all you do is argue with tards on 4chan
etc

Bonus if the domain actually goes somewhere that looks legit

>>108175708
cunny.island

>>108175708
epstein.island

>>108175708
IamOnTheList.int

>>108177411
>>108177432
.island it not a tld retards

>>108177592
wait no shit it is I'm the retard goddamnit

>>108177631
now you have to use them.

File: file.png (48 KB, 1030x278)

48 KB PNG

>>108177631
forgot pic
>>108177633
they're too expensive tho

File: pasted file.png (20 KB, 1695x201)

20 KB PNG

>>108177643

>>108178056
report send your way. expect visitors. prepare your ass hole.

File: shitpost_2.png (21 KB, 1669x190)

21 KB PNG

>>108178073

why do people use gay names for their servers like Valhala and Yggdrasil and Gondor

>>108178340
I asume you use cool names like "Server1", "Worker", "Tank", and "Prod1"?

>>108178340
I named my computer BANANA

>>108178340
sounds like something that would earn a lot of upvotes in the plebbit community
maybe that's the reason

>>108178390
>I named my computer BANANA
My desktop is 'Shoebox' (although ive since been told it looks more like a leather briefcase and i agree with the sentiment), I have a banana pi r3 mini named 'Watchdog', i dont have any clever names for anything else

>>108178340
i use old workstations and office pcs for servers. so mine are called esprimo, thinkpad, thinkcenter, thinkstation and precision.

>>108172564
Definitely don't use Cat5e anywhere, it's obsolete. Cat5 for users, Cat6 for servers.

>>108178923
>Definitely don't use Cat5e
>Cat5 for users
Yeah, fuck users that need more than 100-BaseT

>>108178923
>don't use Cat5e, use Cat5
Are you retarded?

Also, Cat5e4Lyfe.

>>108178957
Do you even saturate fast ethernet? Post graph of your networks average traffic.

>>108178987
oh god please not this again

File: graph.png (59 KB, 1225x286)

59 KB PNG

>>108178987
There are enough peaks where being limited to 3rd world lan would be an inconvenience, yes

>>108179049
>Averaging well bellow 50Mib/s.
Honestly you should have gone token ring. 100Mb is wasted on you.

>>108163698
Teto, NO!!

>>108179095
It's funny because that's the kind of logic C-level uses to justify not upgrading their ancient pos 100mbit switches in SEA.
Same C-level that then throws a fit because those sites regularly shit the bed the moment anything happens in the network, like, say a totally unexpected monthly patch window.
And instead of addressing the root cause, they go and force arbitrary, global restrictions like hard throttling the CMS to 5mbps.
We are a Fortune 500 company :)

>>108178963
If you aren't a suspicious hoarder of porn downloaded through bypassing the mandatory identity verification, you don't need business-tier cabling to your computer.

>>108179168
Cool argument, one does not "need" a computer at all

>>108179168
thanks, rabbi
i'll stick to my Cat5e

>>108179203
>i'll stick to my Cat5e
on short distances you don't require more than a Cat5 that you crimped yourself, it's not like you're running cable through an office building..

I'm running truenas and I have a ds4246 jbod with iom6 (sas2) controllers hooked to an lsi 9305, I've had this setup for a couple years with no issues. I recently bought another ds4246 (also iom6) and It came with a netapp short daisy chain cable which I'm using to chain to the 1st shelf rather than buy another $25 8644 to qsfp cable. Problem is that the entire 2nd shelf of 24 drives is having backlog problems while just receiving snapshots causing it to run slow. Is this due to daisy chaining or is it something else?
The drives in the 2nd shelf are known good, they actually came with the 1st one when I bought it but I later bought larger drives and mothballed the original ones, but now I need a bit more space and we are all well aware of the current fuckery.

>>108179049
>just 4 spikes above 100Mbps
and yet people would prefer wifi6 instead of fast ethernet

How bad is a .xyz domain anyways?

>>108179165
can i get a job there
i dont like sushi and anime tho

>>108180033
What would be bad about it?

>>108163365
same situation as you, bought my server 3 months ago. Your post finally prompted me to start setting it up now, will report back later

i am a complete noob at this. I run navidrome in docker and want to expose the server so that I can connect to it from outside of my home; should I just purchase a domain name, set up a reverse proxy with something like nginx proxy manager and then forward the port that's in my docker config? Is that sufficient?

>>108180376
yeah that should be fine
>t. been running that setup for years now for more than just navidrone

File: file.png (45 KB, 650x265)

45 KB PNG

fuck

>>108180376
Another thing you can do if you want to be entirely self-hosted and (practically) impenetrable is use wireguard/tailscale/headscale, something where you can do dns rewrites like adguard home, and a reverse proxy to set up your domain name(s). This makes it so your server is only accessible by devices inside your wg network and allows you to set up completely arbitrary urls and domains (I use .lan, but you can do .home, .g, .buttfuck, whatever you want) also externally inaccessible. This is what I do myself to access all of my applications and services when I'm not at home and it works great and is completely free and under your control.

>>108180203
everyone knows it costs 90 cents a year and it's used by a trillion spammers with scam attempts like
>login here to redeem your prize! discord.gg.prize.xyz

File: file.png (82 KB, 1600x970)

82 KB PNG

>>108180721
I've never encountered xyz spam/phish in years, maybe even a decade

>>108180759
NTA but there's no way .xxx has zero % spam my man

>>108153447
Today I learned that you need to forward your Tailscale port on the router of your Jellyfin network, if you want to stream on remote clients, otherwise DERP will get in the way, your clients will work in relay mode and that will absolutely destroy your streaming capabilities.
I went from 1 sec of stuttering for every second of playback on a 10 GB movie, to 0 stutter, 0 frame drops on a 80 GB movie.

I'd highly appreciate anymore tips on improving and perfecting my mediocre networking skills.

>>108181183
Whatever you're doing sounds too complicated for my taste. I'd just open up a Wireguard port and access my entire LAN.

>>108181451
that anon is just making it sound complicated, you're already doing what he said worked for him

>>108181451
That's what I did. I opened up a wireguard port.
But nothing suggested I should have checked or kept this in mind when I installed tailscale and jellyfin.
By mere luck and a little help from cringegpt, I stumbled on this issue while troubleshooting, and then solved it.
Once solved, it seemed an absolutely basic and fundamental thing to do first right after installing Tailscale.
By extension, it now seems absurd to me that Tailscale wouldn't warn you, even before installing, of this very basic thing called DERP which fundamentally dirsupts/changes how your VPN behaves, and instead it just switches your shit to "relay" (=ultra giga slow mode).
It should spit up a huge warning telling you I AM NO LONGER WORKING IN DIRECT MODE BUT RELAY INSTEAD.
Conclusion: I might be retarded, but so are people working on Tailscale

>>108180721
This doesn't mean that Gmail or Exchange Online or any other big mail provider blacklist entire TLDs.

File: traffic.png (30 KB, 747x310)

30 KB PNG

>>108178987
>Post graph of your networks average traffic.

Now let's see yours, gayboy.

>>108181654
What's happening ion the holes?

>>108181624
That's what I mean. I don't even know what relay/direct mode is, what DERP is, or what Tailscale does that Wireguard doesn't. But I do know that Wireguard needs a UDP port to perform its basic function. So it seems to me that your reliance on tools that are meant to make life easier are actually making your life harder, by obfuscating basic principles.

Hey, I'm a complete noob when it comes to servers, any advice for getting started? I have an old gaming laptop (Dell G5 15 5587 for reference) that I don't have any other use for and I was wondering what I might be able to use it for.

>>108181874
>any advice for getting started?
just get started

>>108181664
When i masturbate i keep the network airgapped for security purposes.

>>108181183
tailscale's derp servers are likely overloaded and definitely not intended for streaming. i tried pushing large downloads through them and they would throttle me heavily after a few gb.
>>108181874
install a linux, pick a task and go make it happen.
>>108181654
do you run an isp? this looks like the aggregate of a bunch of normal users.

I've got a 1L desktop as my server, but I'm wondering what kind of storage configuration I should have. Is it better to get an external JBOD enclosure or keep things separate with a dedicated NAS

Would it be a bad idea to put my 3d printer on top of my server rack?

>>108183509
if you have hdds, the vibration of printing might not be good

File: 1412118897983.jpg (381 KB, 739x802)

381 KB JPG

>>108178987
It's him!!!!

>>108183065
>do you run an isp? this looks like the aggregate of a bunch of normal users.
No that's just me torrenting gay pornography

>>108179165
it's funny to call working at a call center "working at a fortune 500". your business unit is saving money to buy compute to replace you ladyboys with something i'd prefer to talk to, that is objectively more humanoid in behavior.

What cloud backup system do you use? I have a mix of win+mac+linux desktops+linux servers. I'm using Backblaze on two of them but I'm not very satisfied with it for various reasons.
Restic looks great at first, but part of me is worried about making fancy compresses+encrypted+deduplicated backups that can only be restored using the tool that made them. I'm seriously considering just going with an unencrypted sync to some S3-compatible service, or to rsync dot net. There's a risk of the service getting compromised but have to compare that against the risk of me being unable to access the backup when I need it.

Not sure if this is the right thread but here goes nothing
thinking about buying my own router because the ISP provided gateway is dogshit that drops bandwidth every day unless you reboot it daily
what's the /g/-approved budget router for around 40~50 USD? I dont care about wifi 6

>>108184756
anything that can run openwrt without shitting the bed

>>108184756
if you don't need wifi any computer with two ethernet ports is likely fast enough to handle openwrt. if you need wifi cudy and xiaomi have products that can be loaded with openwrt. i think most gl.inet products are out of the price range.

>>108184868
found a local xiaomi seller that has the a4 gigabit that seems to be the 2021 version (openwrt compatible) for 40 bucks
will decide whether I really want to fall for the openwrt meme

>>108184756
wait what's on the isp end? fiber? cat? coax?

>behind CGNAT
>no static IP
is there any way I could still get wireguard to work? or have a domain connected to whatever my IP is?

>>108185008
I just plan on using bridge mode with the gateway
and my own router

any real open source alternative to google drive? nextcloud shills their enterprise shit no? i hate that, that's why i moved from plex to jellyfin and removed proxmox too

>>108185064
no

>>108185064
get a vps and wireguard to it

>>108185064
>>108185515
you'd need to have two tunnels if you mean to use it for inbound management. one is VPS from home network, the other is to VPS from external device. if you mean to expose services to the public then you need to open some ports on the VPS and the DNAT them inbound to his home network devices. make sure you have your LAN prefixes with proper TEP nexthop in the routing table of the VPS and also the reverse path of having a route to the VPS TEP taking the nexthop of the internal TEP.

Test test. Is this jeware still blocking me?

>>108185714
i dont remember why i chose pihole instead, i think adguard tries to sell you shit or maybe it's made by a shit company. anyway i use pihole and it works fine. can't block youtube ads though you need ublock for that

got an old dell latitude with 24GB RAM, 1TB HDD and an 2nd gen i5. It's just picking up dust and I'd like to turn it into a home server.
>recommended lightweight distro for homeservers?
>any configs, optimizations and tips to make it not consume too much power?

do you guys run a port forwarding script for gluetun + torrent client? most of vpn clients change the port with time and it seems messy, no idea how it would work with proxmox + debian vm

>>108186856
I just have a VPS as wireguard jump point
From there, I forward a bunch of ports to different rtorrent instances at home

>>108186322
>any configs, optimizations and tips to make it not consume too much power?
speaking from someone who tried, it'll never match an actual miniPC in terms of low power draw, the best you could do is whatever the laptop's specced as bare minimum, maybe a smidge lower but you'll still be better off on an actual server. but just to dip your toes through the water, should be okay.

>>108186322
Unless you're in europe the actual power cost is a lot less than you're probably thinking.

File: 1768954627608427.png (424 KB, 1205x665)

424 KB PNG

>200 EUR
https://www.amazon.co.uk/gp/product/B0DR8YBN5X

>>108187169 (Me)
wheres the catch?

File: 1745954370266015.png (2 KB, 381x245)

2 KB PNG

>rack mountable switch comes with rubber feet preinstalled

>>108185714
>>108185721
>Anyone running a adguard on their router?
I have AdGuardHome running on a Banana Pi R3 Mini (running openwrt, but because its lightweight, i dont use the firewall or routing capabilities) and from my Firewall, I have it set as the primary, enforced DNS server.

I think it runs great. When my parents come over my stepdad brings his laptop and he doesn't see nearly as many ads compared to elsewhere (he doesnt use ad blocking extensions on his laptop).
It works well for blocking in-app ads too. Many phone apps give me ads when I'm away from home and i just dont get them when I'm on my home network.

i have a very old usb printer with no networking. how easy is it to plug a SBC into it and allow printing over the network?

File: goodluck.jpg (139 KB, 931x708)

139 KB JPG

how do you reply without sounding mad?

File: image-630.png (2.13 MB, 1116x1572)

2.13 MB PNG

>>108187596
I'm not retarded enough to pay for Cisco and Vmware.

File: live mom and dad reaction.jpg (282 KB, 738x483)

282 KB JPG

>>108153447
immich's external folder feature is just not working for me despite fixing permissions. What's a good alternative with most of the same features?

>>108187766
Photoprism

>>108187766
zenphoto
because i dont need queer stuff like AI classifiers

>>108187854
>>108188016
guess I was wrong, it definitely seems like a permissions issue.

>>108188085
777

File: reaction analysis verdict.jpg (125 KB, 604x604)

125 KB JPG

>>108188122
tried that already.
i'm just going to go to work

>>108188158
Is the folder a network share?

Good morning hsg anons, I want something like a Roku or Firestick for watching shit on my TV, but I kinda want to use my media server for this purpose it’s an old PC so it has a graphics card. I will probably have a keyboard in the den because typing with a remote fucking sucks, but some kind of remote would be nice for browsing. Do general-purpose remote controls for use with desktops (Linux) exist? Alternatively is there a Roku-type thing that has an Ethernet port? Or any better option I’m missing for controlling this server at a distance, like a little tablet with keyboard and joysticks/arrow buttons?

>>108187283
What does “enforced” mean here? To what extent to various devices actually respect that config?

>>108188585
>What does “enforced” mean here?
Any device on the network that doesn't have a DNS server manually configured/set will use my AdGuardHome DNS server
>To what extent to various devices actually respect that config?
Most devices will just use my server automatically due to lack of their own DNS settings but I keep my network segregated and devices I don't trust like my Roku TVs are on it. Firewall policy is locked down to the bare minimum for functionality on this network, like AWS cloud services, azure, etc... The only 'allow all' outbound is for NTP, everything else is seperated into blocks per device type and requirements. Outbound DNS is blocked, so devices on this network are forced to use my AdGuardHome DNS server.

I suppose I could do the same for my other networks, but my phone, for example doesnt have a DNS server explicitly set so when I'm home it automatically uses my home server

>>108187177
Probably that it isn't actually New. Likely came out of enterprise and they just lie that they're new. Lots of that sort of thing on Amazon. Amazon co-mingle's stock as well so even if the seller you're buying from isn't doing that, it doesn't matter. You aren't necessarily getting the particular item they listed for sale anyway. It's crazy.
Sometimes they can reset the SMART data, but sometimes they don't and they just accept a given number of returns from people who are knowledgeable enough to check (fewer than you would expect).
It's not that good a price anyway, at least for before the disappearance of all HDDs from the market.

File: fb1.png (1.29 MB, 1024x1614)

1.29 MB PNG

i want to have sex with my managed switch

>>108188532
Are you talking mostly about controlling the media player UI?
You could use moonlight on your phone, where you can swipe for access to the normal phone keyboard, or you could use a video game controller. Not sure about any specifically stick shaped controllers for Linux but I'm sure they're out there, just haven't looked.

>>108188532
>>108189297
You may also be into this:
https://www.aliexpress.com/item/1005004467913924.html
Not 100% sure because I don't completely understand what you want, but I just remembered it exists.

>>108189277
I've ordered one (they don't allow buying more than one anyway) and closely inspect it to see any signs of it being used
>It's not that good a price anyway
for me the second cheapest option is 320 EUR so its a pretty good deal

>>108189277
Thankfully Amazon is ending the comingling of stock, but people will still reset the SMART data on drives to make them appear new.

>>108189461
>Thankfully Amazon is ending the comingling of stock
I'm glad to hear that.
>but people will still reset the SMART data on drives to make them appear new.
Definitely. You may already be aware but for anyone else reading along, they use software called Victoria HDD to do this, and it's pretty simple. Also, if you see someone saying that SMART data can be faked but FARM data for Seagate's cannot, that was once true, but isn't anymore. FARM has been cracked too, though you could still check it for comparison just in case the seller didn't know about it or didn't know it had been cracked.

just got 7x 16tb used enterprise disks from work for free ;)

>>108189751
nice

>>108189751
post SMART data

File: uhh.png (72 KB, 472x468)

72 KB PNG

>>108190146
Why would i post it? Dont be silly haha

>>108189461
Huh? What does this even mean? Every third party fba Amazon item is required to have a barcode to track sales. If you've ordered anything from Amazon surely you seen that additional barcode.

>>108189277
yeah no this is not how it works. Every fba item is required to have a barcode to track your exact items

>>108191104
They used to mix up stock from any seller selling the same item and you'd just get whatever was easiest to pull off the shelf. It made avoiding bad sellers impossible. They're stopping that so that one guy selling 10 5090 boxes with bricks inside doesn't fuck all the other sellers.

>>108191110
https://www.geekwire.com/2025/after-years-of-backlash-amazon-finally-ends-a-practice-that-many-sellers-have-long-loathed/
just the first article on google news. do your own search if you want another source.

>>108191110
No I've been selling on Amazon fba for over a decade and it has never worked like that. Your items are required to have a barcode which they immediately scan into the system upon receiving your freight shipments. When your item sells the warehouse locates that exact item, scans the barcode then pulls it from inventory to be packed and shipped

>>108191141
yeah no I'm going to trust my own experience over this AI hallucinated gobshite

>>108191178
retard
https://sellingpartners.aboutamazon.com/amazon-accelerate-2025-a-new-era-of-tools-and-technology-for-independent-sellers
amazon mentions it here. what's your excuse for being wrong now?

>>108191228
did you miss the part about how sellers don't have to apply an fba sticker anymore with the new system? My exact argument

>>108191273
the site never listed if a seller applied fba stickers so it was impossible for buyers to filter for that.

started working on a project to scare a wifi intruder of my apt
step 1: setup
>dusted off old laptop
>already had ubuntu installed
>attach usb nic
>configure network bridges
>setup switch + ap + cables
>install libvirt
>install virtualized pfsense
>configure pfsense
>working.mp4
next step is setup captive portal

>already bought my .org domain
>didn't realize the .net domain was open too
FUCK
should I bite the bullet and buy the .net one too?

>>108192416
gotta catch 'em all

>>108188179
I mean, it's on the debian system with docker, though a windows computer in the livingroom has access to it as well.
just not sure what's going on. not even stash is working.

File: 1763581662408.mp4 (1.18 MB, 960x720)

1.18 MB MP4

>>108192416
the internet was definitely a better place back when .org domains could not be aquired by some random dude, instead they were gatekept for actual nonprofit organisations.

no offense just ranting against the judaic domain cabal.

File: CgldEYQU8AA2MPn.jpg (34 KB, 493x585)

34 KB JPG

Why is gluetun such dogshit? Keeps failing it's dumbass health check every couple minutes and then taking even longer to reestablish connection. People have been asking for years for a way to disable that bullshit but the dev refuses because
>Durr there's no point because it means the vpn has no connection so why turn the health check off????
BECAUSE COCKHOLE THE CONNECTION IS PERFECTLY FUCKING FINE, ITS YOUR BULLSHIT SEEING 3 WHOLE DROPPED PACKETS AND IMMEDIATELY NUKING THE WHOLE MOTHERFUCKER AND THEN TAKING 5 TO 10 MINUTES TO RECONNECT, YOU FUCKING TWAT.

>shimmie2 now has an AI based tagger
i don't know if anyone else runs this but i thought people might like to know this

>>108194796
how good are these tags?
I've been waiting for something like this for ages

>>108193891
just change vpn bro

>>108193891
mine never actually reconnected when it was a base for qbittorrent
this shit always required some docker fuckery to properly work

>>108194796
what ai are you supposed to run for such things? it needs giga nigga resources, doesn't it?

>>108195845
If it's anything like panoptikon it doesn't need much. Even cpu worked fine for that.

File: lol ibm.png (186 KB, 587x830)

186 KB PNG

Imagine not selfhosting your shit.

I still have my 10 year old IBM Cloud account and this is the kind of shit I get mailed every month. Service deprecations, removals or price hikes. It's astonishing how much it has degraded since I last used them. Wonder how long until these retards also fuck up NS1.

File: 1740519245678863.png (125 KB, 905x418)

125 KB PNG

these were $50 each in November. Not even DDR4 LRDIMM serverchads are safe

>>108196550
I paid $20 for 16GB DDR4 RDIMM
It's now $120 per DIMM
The audacity of these ewaste sellers.

fuck AI for this shit. I held off on upgrades because I was short money. Now even with surplus in my budget, I can't afford any of the upgrades I wanna do

>>108194813
it depends on the model. it does alright but obviously you want to manually adjust them afterwards or mess with the threshold so it doesn't hallucinate a bunch of tags.

>>108195845
https://huggingface.co/SmilingWolf
these are the models. they don't need that much.

>>108197535
use that money to use ai to make more money

I made a shitty script to mount all lvmthin (Proxmox) parts for data recovery in case it is of help for any one.
note: it is very shitty

#!/bin/bash
directory="/dev/mapper"
mount_directory="/tmp/proxmox"

declare -A vm_names

vm_names["102"]="nas"
vm_names["103"]="sync"
vm_names["104"]="proxy"
vm_names["105"]="mc"
vm_names["106"]="git"
vm_names["107"]="ci"
vm_names["108"]="im"
vm_names["109"]="media"
vm_names["110"]="bot"
vm_names["111"]="db"
vm_names["201"]="gw"

for file in "$directory"/*; do
    if [[ "$file" =~ ^.+vm--[0-9]+--disk--[0-9]+$ ]]; then
        echo "discovering partitions of $file"
        sudo sudo kpartx -a $file
    fi
done
echo "-------------------------------------------"
for file in "$directory"/*; do

    if [[ "$file" =~ ^.+vm--[0-9]+--disk--[0-9]+p[0-9]+$ ]]; then
        echo "---"
        echo $file
        vm_id=$(echo "$file" | grep -oP "[0-9]{3}")
        # echo "vm id: $vm_id"
        if [[ -v vm_names[$vm_id] ]]; then
            vm_name=${vm_names[$vm_id]}
        else
            vm_name=$vm_id
        fi
        echo "vm name: $vm_name"

        disk_id=$(echo "$file" | grep -oP "disk--[0-9]+p[0-9]+" | cut -d '-' -f 3)
        mount_route="$mount_directory/$vm_name/disk$disk_id"
        echo "mount route: $mount_route"
        mkdir -p $mount_route
        if ! mountpoint -q "$mount_route"; then
            sudo mount $file $mount_route
            if [ $? -eq 0 ]; then
                echo "Successfully mounted $file on $mount_route"
            else
                echo "Mount failed with error code: $?"
            fi
        else
            echo "$mount_route is already mounted. Skipping."
        fi
    fi
done

File: OBS_Studio_Logo.svg.png (151 KB, 960x960)

151 KB PNG

>>108153447
Hey /hsg/, dumb question but I need some insight please:

I got an RTMP server on Debian using the guide below, for use as a quick-and-dirty streaming solution in the house: I'd stream my desktop, window, or game using OBS and anybody on the network can view the stream in VLC. If we need to chat then we simply use Steam, SIP client, or phone call, depending on the situation.
https://obsproject.com/forum/resources/how-to-set-up-your-own-private-rtmp-server-using-nginx.50/

What I want to have is a short looping video with text on it to act as a "front page" when nobody is streaming, so that if we open the stream in VLC then this "front page" would show up instantly instead of waiting for VLC to look for a stream on an empty RTMP server for a few minutes wasting time (also my family isn't tech savvy so the text has instructions on what is happening). Would this be a good idea or not? Is it a strain on the hardware/software to have a video running 24/7, even if it is entirely black with a little bit of white text? Also, how to ensure that this text stream stops when one of us starts streaming to the server?

Alternatively, are there any other better recommendations to fulfill the use case above from the list here? The above solution works but it's kind of sloppy honestly and if there's a more professional option then it would be more appealing for us to use more often.
https://github.com/awesome-selfhosted/awesome-selfhosted?tab=readme-ov-file#media-streaming---video-streaming

Thanks in advance

>>108199566
I use mediamtx (https://github.com/bluenviron/mediamtx) as a streaming server and I've had a good experience with it. Quite easy to set up and use. Checking the docs, it seems like it has support for the feature you want.

https://mediamtx.org/docs/usage/always-available

File: cat;doom.png (1.02 MB, 941x1177)

1.02 MB PNG

from the sick and demented minds of OCI board
>docker/containerd always does sha256 checksumming, for both compressed and decompressed content
>it can't be disabled or replaced with another hash even in trusted environment
and just like that, your 10Gbps local registry will slow down to a crawling 1Gbps anyways.

>>108199566
>I'd stream my desktop,
if you are just pushing rtmp from your computer you don't need a server at all just point vlc at your desktop ip and dump rtmp from there.

reminder hating Mikrotik is not a personality

>>108181183
Tell me more on how to set up tailscale.

Any reason why my VPS provider would refuse to put my server behind a NAT? I don't want it to be pubically exposed and it needs a private IP.

Trying to host a domain controller and quickbooks on the cheap and have users RDP in using Tailscale.

File: 4bosxv.jpg (11 KB, 250x181)

11 KB JPG

>>108200430
>pubically exposed

>>108200430
How much VPS resources do you pay for? You could create a virtual firewall and put your virtual server behind it.

>>108200999
I was considering pfsense or opnsense. It's 24GB RAM, 6 vCores Ryzen 9950x, and 500GB NVMe RAID10, for $60/mo. Killer deal.

Do pf/opnsense do virtual machines? Doubt it. I would have to make a separate smaller VPS for the firewall, then somehow get them to connect the main VPS to that.

Honestly it's beyond my wheelhouse. I've never installed xxsense and this needs to be scalable to potential clients.

>>108156093
why the fuck is a stateless firewall used ANYWHERE for ANYTHING in 2026?!?!

>>108201028
>I would have to make a separate smaller VPS for the firewall
Thats literally what i just suggested...
>then somehow get them to connect the main VPS to that
my employer does this all the time with vsphere
>>108201028
>this needs to be scalable to potential clients
Then why not block every connection from WAN

>retards using fluxer with no e2ee and federation
sad

>>108197829
checked the demo and it's kino, is there something similar for random ass meme images instead of waifus?

>>108198773
you should make it ask for vm names

>>108201081
ACLs enforced by ASICs are inherently stateless. it maximizes forwarding rate, without a CPU heavy software based penalty.
>>108200430
what?

>>108204697
Having users RDP into your DC is best practice, didn't you know?

what stack do you use to block bots on your web services?

I don't want to use cloudflare anymore. With the current cf settings, I block most bots via http user agents and geo ips. I can do this easily with nginx.

It's the cf js challenge I want to keep for my "network firewall" to deter bots. In 24 hours I got 300 visitors, and only 2% of those solved the js challenge successfully. I'd like to maintain this extra request filtering from getting to my apps.

I'll probably go with this

https://github.com/mitchellkrogza/nginx-ultimate-bad-bot-blocker

but I still need the extra js layer

>>108205590
oh, and I also do not want to use Anubis to provide Js challenges. I don't like how ambiguous it's setup and config docs are.

>>108153447
Which anime girl would be most apt to name my router and wifi ssid after?

File: 126021108_p0.png (2.01 MB, 1650x2000)

2.01 MB PNG

>>108205729
Yukari. A Touhou character with a vague but powerful power over boundaries.

File: 1743326607006138.png (27 KB, 1080x657)

27 KB PNG

>>108205965
At first I was thinking Lain, but it felt too generic. Yukari is a lot better.

my friends are finally cool with uninstalling discord. i already have fast upload and everything on my network plugged into ups's and i know how to host things without getting my anus gaped. what kind of hardware do i need to host a couple servers that might see 200 users max on voice at the same time? could i do that off one of those n100/n150 mini pc appliances?

File: file.png (48 KB, 370x447)

48 KB PNG

>>108153447
Which one and why?
Leaning towards Nginx Proxy Manager but as a beginner it might be overwhelming

>>108155084
>policed
this is not a real networking term and I have no idea what you're talking about.
not that hard to go above 1gbps speeds with a local transfer. can even manage it over Wi-Fi with modern Wi-Fi 7.
>t. network engineer

>realize inside of rack is an unmanagable clusterfuck nightmare
>dread having to do any kind of organization
>put it off for years
>fuck it, i need to tidy this up

this is such a mess that im actually considering suicide than trying to fix it. i basically have to take everything out, label all cables and be without internet for about 2 days. reminder, please do it right the first time and dont just throw shit in "because it werks". god what the fuck was I smoking. this is HORRIBLE

>>108206852
post gore pics!

File: rack.jpg (2.29 MB, 1984x1445)

2.29 MB JPG

>>108206862
>inb4 some anon says its not that bad
i'm ashamed of myself.

File: file.jpg (50 KB, 1500x786)

50 KB JPG

>>108206925
It's not that bad, at least it's on the ground. I had the same kind of mess but mounted high on the wall close to the ceiling, in a desert climate country so the dust is 10x worse, and on a wobbly shitty ladder.
Luckily it was mostly hardware replacement so there was no cleaning needed besides the rack, and I had these on hand so installation was a breeze.
https://www.amazon.com/dp/B085RW49C9
You'll be fine, it'll take 4-6 hours at most.

>>108207041
Those are some nice cage nuts. definitely better than traditional ones. I'll have to pick some up.

>it'll take 4-6 hours at most.
The last time I attempted it I accidentally knocked something loose and it took basically the entire day to figure out what happened, so I'm factoring that in too. I'll be happy when it's finished and I can open the rack and know exactly what's going on.

>>108207098
The only problem with the PATCHBOX/dev/Mount is that they work only with 1U items iirc.
In your case it seems the uppermost item can't be mounted with them, and you won't be able to attach the fans close to the devices on the bottom racks without the thumb studs getting in the way.

>>108204805
what?
>>108206780
https://networklessons.com/quality-of-service/qos-traffic-policing-explained

>>108207379
not familiar with that term (probably because it falls under QoS and also because I've never worked in the ISP space).
the more important point though is that your actual connection speed vs the bearer speed of your WAN has nothing do with your LAN speed, which is what the other guy was talking about. As such, I still have no idea what your point is.

>>108207557
>never worked in the ISP space
silence. you dont know enough to call yourself a network engineer yet if you dont understand CCNA curriculum like QoS. QoS isn't just for ISPs, junior admin.

File: 1765937001480756.png (272 KB, 640x574)

272 KB PNG

>>108206780
>this is not a real networking term and I have no idea what you're talking about.
I love it when the server fags try and get cute. Do you not know what traffic shaping is? Have ever made a QoS policy before?

Jesus how does basic networking filter people so fucking hard lmao

I have a 12tb in the pc at my parents house, and I use it, but I don't really like needing to either keep the pc on all the time or keep having to wake it up when i need it.
I have a server running off a wyse 5070 here but it's only external drives. what is there that's comparable that can support that can support internal drives?
I won't be able to install it now, but I should probably buy now before prices get worse, it's just about the only computer thing I really NEED, assuming nothing fails on me. The wyse I bought for $40 in July seems to be going for $65 now, scary times. I knew I should have bought two then, just to have it.

>>108207638
>silence. you dont know enough to call yourself a network engineer yet if you dont understand CCNA curriculum like QoS. QoS isn't just for ISPs, junior admin.
If you want to mind break them, let them try to get their heads around output discards on a non-congested LAN ;)

File: 1741490983422670.jpg (70 KB, 482x481)

70 KB JPG

>>108207638
>anon still can't explain what this has to do with the other anons 10G LAN

File: 1647213275968.jpg (48 KB, 1125x553)

48 KB JPG

>>108207659
>literally just a word for QoS
I administrate networks rather than just reading about them

File: 1767475355231596.png (317 KB, 898x897)

317 KB PNG

>>108207734
Clearly you do administer them, I design them.

>>108207734
port changes aren't administering a network, junior.
>>108207707
he was talking about north-south traffic flows and a non 802.3bz standard for speed which further enforced my read and my policing reference, avatar posting retard. now i'm really not giving you another (You) and im serious. you are a very consistent retarded person.

when did this change from home servers to network engineering general

>>108207794
from the top:
>the thread starts with a gigabit switch
>someone replies that you don't need it 99% of the time
>someone replies saying they regularly saturate their 10gb LAN
>someone replies asking for logs to back up regular saturation
>someone replies saying its still worth it even if they only occasionally benefit
>then some retard chimes in (presumably you), saying the other anons "link" is a 3gbps policed link for no determinable reason.
take your meds I suppose?

>>108207780
fortunately you're not paid to do this :^)

>>108207951
go read
>>108153014
and go back to redd*t. you dont know shit about networking nor how to follow a chain of comments on this website. you cant be smug and stupid at the same time, you can only be one thing at a time.

>>108153447
I have a bunch of SCSI disks I am trying to mount to a linux live distro.
I'm using a dell T440 that has a hardware RAID controller.

Tried setting the raid controller to 'advanced HBA' mode, the OS does not recognize any HDDs.

Setting SATA to either AHCI or RAID does nothing.

Help - I want the disks as a JBOD, is this possible? Is this a driver issue? Dell indicates it supports Ubuntu Server (which I tried).

>>108208092
I used to work dell tech support for workstation and servers almost a decade ago so take this with a grain of salt but I think settiing SATA to AHCI/RAID only affects onboard SATA ports and not the PERC controller where you're likely connecting to
also make sure your ubuntu natively has the drivers for the PERC controller (google or chat an ai for this)
also also for JBOD I think you'll have to set a setting called passthrough mode though I'm not sure all controllers support that

>>108210397

>>108206581
I use Npmplus but not through the script. It's easy to setup with anubis and crowdsec. The only downside is that the dev is very active and regularly adds/breaks compose flags with every update.

Otherwise top-tier choice, you get quic/zstd/mlkem out of the box.

Zoraxy is probably easier but also kinda lags in features.

>>108206581
caddy is the most noob friendly of the bunch
traefik is probably the most feature rich
nginx is what most services that use it have documentation for at least from experience

Started organizing my rack, and yeah, it's 100% nightmarish. I gave up after 3 hrs and went to sleep. The hardest part is trying to organize it in a way that makes it look clean but also easily accessible/recognizable. It is extremely difficult, maybe physically impossible

File: 1638390520786.jpg (136 KB, 1243x932)

136 KB JPG

>>108206852
>be without internet for about 2 days
You have 2 hours, Scotty.