I think dd is the right tool for the job. Consider using pv though. It can be much much faster.

Take a look at tubearchivisit. Works great and is in development.

Sonarr prowlarr radarr and many more. These are very powerful media download managers. I recommend using usenet.

One router (opnsense) a big Poe switch and unifi aps made a huge difference. Also wiring Ethernet everywhere helped a lot.

Previously we had devolo mesh plugs.

Ahh nice good to know. For my use case I’d rather not distribute the certificates to all my services.

True multiple drives speed up reads significantly. As long as the videos are sequential read speeds can be very fast (600MB/s) even on one drive though. Results may vary.

I have a ~40TB HDD array and jellyfin is super fast. Just put the database and cache files on a SSD.

For bulk storage of 4k videos with high bitrates HDDs are way cheaper.

Full pass through has no advantage when my reverse proxy terminates ssl and internal services are http only right?

Regardless of fqdn nginx has to decrypt and restream anyways.

I think mixing RAM sticks is mostly fine today. Maybe you won’t get 100% performance but I don’t think it will be very noticeable. You may still run into issues with some capacity combinations depending on the mainboard/cpu. Regarding clock speeds usually all run on the clock of the slowest one.

Matching RAM latency also matters for performance.

When using different capacity RAM channels matter so take care on the order of population.

Reminds me of: https://www.wired.com/story/null-license-plate-landed-one-hacker-ticket-hell/

A guy thought it would be funny to change his license plate to NULL.

SATA minimum rated connection cycles is 50. 😂

I use it in readonly mode. Works great nice app and great search capabilities.

I use nextcloud and immich in read only mode on top. Works like a charm. I sync my phone over weebdav every night.

My first server was called xenon because I misread Xeon for Xenon but I decided to stick with it. My new server is called argon. For beefy servers I will now go with noble gases. Now that I think about it maybe I will use other elements in the future. Bismut sounds cool.

I have only one cloud VM and called it firstborn. 🤷

All my PCs get names I like Aveline, Elisabeth, Amanda, Eve…

I have yet to decide on a naming scheme for mobile phones.

Networking hardware gets descriptive names for their location and purpose.

Just read it. Awesome. Thanks a lot.

Pid 3386 behave or I am gonna SIGKILL all your children. That’s not an EMPTY THREAT. In fact I will start with the first one RIGHT NOW.

What do I take if I need more example domains on the second level? Do I use otherexample.com?

Thanks for a all the details. Makes perfect sense. I got it to work!

I just switched to porkbun. Saves me about 20EUR per year. Thanks for the tip.

I missed the keyword “glue records”. Ultimately I managed to get my dns server to work but decided against using it for now as the acme plugin is not able to do what I want. https://github.com/mariuskimmina/coredns-tlsplus/issues/2

Which provider do you use? Can you enter an ip there?

Note: Adding a user to the docker is effectively root.

I got a dahua put it on its own vlan. It is powered and connected via Poe. I stream an rtsp stream to frigate for detection and frigate restreams to home assistant.

If you want a WiFi solution and a constant life stream you may experience degraded performance on your other devices but you have to check youself.

Just want to note here:

Snapshots are NOT a backup.

While btrfs is quite stable corruption/disk failure can always happen. Bcachefs had a little opsie daisy that caused some FS level corruption. Snapshots won’t help in this case.

Snapshots are great for quick restoration on user error.

Tasmota nous sametplugs work great and have a tiny footprint. They integrate nicely in home assistant. They must be calibrated once with a resistive load eg old light bulb.

Disk IO can cause rediculous load averages. The highest one I have seen:

My HDDs were sweating that day. Turns out running btrfs defrag once a blue moon is a good idea…

Can you link me to an example or show me an example docker compose yml that adds an addon? I currently run a script that manually installs all my addons to the docker container by copying. Maybe you can show me with this: https://github.com/danielperna84/custom_homematic or any other really.

This is the way usually but some people just don’t learn from their mistakes…

Thanks sounds like a fun weekend project. My 72 cores are bored most of the time anyways. 😃

Can you recommend me a vulnerability scanner?

Vaultwarden really is great. The offline edits are my only grime with it. Also I dislike how happily the browser extension discards your inputs when you click outside.

If you run opnsense it can do this for you. With an OK GUI.

Which vpn provider do you use for torrents?

Bonus points for creating lots and lots of networks grouping the databases together with only their respective containers.

ip a is a huge mess.

Thank you very much. I knew I needed a few nat rules but was unsure which exactly. I think I will be able to figure it out now. 😃

Jes exactly but without being http/https only and without decrypting the traffic on the vps.

That’s why the forwarded for header won’t work. It’s one layer below.

Thanks. Will checkout Yggdrasil.

That’s not what I want accomplish. The clients connecting to machine B should not know that their traffic was handled by machine A. I will use DNATs to accomplish my goal. It is possible because tailscale can do exactly that. Thank you for your input though.

Maybe I am wrong we will see soon. 🙃

Wow this may have been the missing piece to get my setup working. If I manage to do it will send you an URL to a git repo.

Looks nice. I think I will build two docker containers with wireguard and iptables. This blog will be a great help.

I have heard of it seems like a good option. If you use it please tell me if it can fullfil my requirements.

Mhh I didn’t know headscale exists. Tailscale being proprietary was the main thing keeping me from using it.