How’s your stuff doing? Unplanned interruptions or achieving uptime records?
I’m currently sailing rather smooth. Most of my stuff is migrated to Komodo, there will stay some exceptions and I only have to migrate Lemmy itself I think. Of course that’s when I found a potential replacement but I’ll let it sit for a while before touching it again. Enjoying the occasional Merge Request notification from the Renovate Bot and knowing my stuff is mostly up to date.
I’m thinking about setting up some kind of Wiki for my other niche hobby (Netrunner LCG) lore as there’s a fandom one that most people avoid touching and updating but since I likely won’t have time to start writing some articles on my own as a kickoff I’m hesitant. Also not sure which wiki I’d choose as well.
You must log in or # to comment.
Purchased 5 1tb drives to expand my study server. Going from 600GB to 4TB is going to make more complex labs possible.
I have been experimenting with a btrfs raid array and am getting some new hard drives in the mail today, hoping it goes smoothly and they work 😬 All part of a larger goal of migrating my synology NAS to a purpose built machine.
Also got my first contribution and donation on my OIDC SSO project, which is really exciting!
Ey! congrats for the donation. I hope your personal project succeeds!
Pretty smooth sailing at the moment. I’ve got:
- sonarr
- radarr
- jackett
- bazarr
- transmission
- kuma uptime
- grafana
- promethius
- blackbox
- mastodon
- traefik
- authelia
- forgejo
- immich
- syncthing
All running on a 4 node raspberry pi kubernetes cluster.
I’ve finally setup Netbird instead of Tailscale to VPN to my network. Took some time since I wanted it to work with pocket-id and had some issues configuring everything properly. Runs like a charm now.
I’ve just finished to configure my homelab with wg-easy yesterday to do exactly that. Took me weeks because podman. And now I learn that there was a better way? Oh well…
Just got some power measuring plugs. Home Assistant and immich-running raspberry pi + NAS (dual 20TB in raid 1) + switch clock in at around 30W. Surround receiver playing music ups that by 90W. After a minor water leak I added 5 leak sensors to the system that will blink lights and send texts if they detect anything.
The biggest problem is that I’m still running lights through hue and some of them have an annoying tendency to drop off the network…
Get yourself a Sonoff ZigBee bridge! Hue light support is practically native, and they act as extenders to reach your other ZigBee devices! Just don’t expect to be able to sync them with any movies or peripherals. I think there is a virtual Hue bridge on HACS and that might help with that, but idk
I have that. I just got hue first, so all my lamps (or at least the old ones) are registered in hue. I haven’t taken the time to move all of it over, so now I have two competing networks.
I updated my Dietpi setup today, because a new version was available. It went very well, and everything works perfectly after a reboot.
and everything works perfectly after a reboot
I always hold my breath whenever I’ve done anything major to the server and I need to reboot.
Right? It’s like a trust fall. You just have to cross your fingers and hope for the best.
Chose yesterday late evening as the time to migrate my containers from docker to podman (still rootful). By luck most things work again, except wireguard/qbittorrent
What made you want to switch from docker to podman?
Aiming to go daemonless and then rootless for as many containers as possible to minimize attack surface
Nice. I’m aiming to go from bare metal to rootless podman managed via quadlets. Networking seems like the difficult part.
I started out rewriting my network backup scripts only to realize I was adding functionality to a previous script I wrote to automatically mount and dismount luks encrypted volumes. I still want to type in my luks passphrase because I don’t want everything automated and prefer to include inconvenience as an additonal security measure in securing some of my data.
I also came to the realization recently that the reason I don’t relate strongly to other self hosters is because I’ve unknowingly been trying to create a minimal self hosted system that is more beneficial to small, low powered devices.
I’ve been using Alpine Linux, I install only the bare, older but well established tools and have been creating scripts soley based off those tools instead of seeking out bigger, more complicated modern tools. For example creating workflows by only using
rsyncor using https://github.com/RayCC51/BashWrite to create a blog that only usesbashand GNUsedto create a static blog site.At least now that I’m aware of this, I can keep an eye out for such projects or communities and would hopefully be able to contribute something in that direction.
I also came to the realization recently that the reason I don’t relate strongly to other self hosters is because I’ve unknowingly been trying to create a minimal self hosted system that is more beneficial to small, low powered devices.
There’s absolutely nothing wrong with minimal. The way technology is in this timeline, you really don’t need a lot to get a lot out of it.
Your perspective aligns with a lot of self-hoisters who run things on rpi’s and such, but not the “home labbers”. Also, see the pubnix, tildeverse, smol web, indie web, and to some extent the retro computing communities. You are definitely not alone!
I actually started with RPi’s. The first one, a used Pi 4b, is dedicated only to HomeAssistant. I don’t tinker with it anymore because it does what I want and I don’t want unexpected downtime when I have to use the bathroom or use the lights in my room.
I bought a used Pi5 with the intention of upgrading later. In life I am quite minimal and find a joy in using what little tools and material I have to create something new. That seems to hold true to technology and scripting too. The RPi5 with an old USB3 HDD is actually way more power than I can currently use and can imagine using for a long time. The extra room to work is convenient though.
I’ll have a look into some of the places you suggested, those seem like the places to draw good inspiration from, thank you.
Trying to run a fediverse server on a decade-old Wi-Fi router and encountering some
unexpected issues. Making progress, though.Sounds cool, which software are you using?
Hell yeah!
Everything here is smooth sailing. I have been trying to track down a bothersome Suricata entry.
202.136.163.11 PROTOCOL-ICMP destination unreachable port unreachable packet detected 202.136.163.11 PROTOCOL-ICMP destination unreachable port unreachable packet detected 202.136.163.11 PROTOCOL-ICMP destination unreachable port unreachable packet detected 202.136.163.11 PROTOCOL-ICMP destination unreachable port unreachable packet detectedad nauseum. There are three individual ips. One from Singapore, one from China and one from Romania. They are being blocked, so that’s good. Thing is, these are from realitvly ‘clean’ sources:
120.132.37.195 was not found in our database202.136.163.11 was found in our database! This IP was reported 5 times. Confidence of Abuse is 0%:On the server side, I have nothing calling out to these ip. That’s what was really bugging me. Nothing server side, just these three bothersome ip hammering Suricata. Generally, I would dismiss as benign and part of normal UDP behavior. However, it’s the constant hammering that makes me suspicious. Could be high volume port scanning. However, it could also be known attack campaigns like UDP amplification attempts.
Other than that, I might find something to get into today.
Trying to smoothly orchestrate prowlarr, radarr, jellyfin, and transmission (via Proton vpn), using a big beautiful docker compose file. It’s been working OK but not without roadbumbs and tough learnings. Keep messing up directory permissions one way or another.
Next step is setting up fail2ban on my public facing jellyfin to control things a little better. Everything is hosted at home, and I don’t want to use cloud flare tunnels, are streaming video is technically not allowed in them.
If you have more good tips on securing a home server, let me know!
Also, this is all running on an ancient 2012 mac mini running Ubuntu. Slow as molasses and sometimes the fans make a noise. I should start looking into back-up solutions, at least for the configs.
Working on automating tasks so I don’t have to block out hours of time a week managing everything. Just got watchtower running and going to see how it does before trying out some other automations.
Just got watchtower running and going to see how it does before trying out some other automations.
If you find that watchtower (original) screws up the updates frequently there is a watchtower fork that runs so much smoother. I don’t have any issues with it at all. The original watchtower app hasn’t had an update in 2 years, so it might be something to keep in mind.
I’m actually using this one which seems to be more actively maintained than the one you linked.
Bookmarked! Thanks for that. Learning all kinds of stuff today.
In fact you must use the fork. The old one no longer works with recent Docker, due to API versioning. I found that out last night when I brought up my compose stack and traefik wouldn’t start, because it too needed an update.
no longer works with recent Docker, due to API versioning
I had that issue with Portainer recently. I had to drop back to the previous docker version, and held it until Portainer works through the snag. I didn’t think about original watchtower being affected. I just got tired of having to fix broken updates, and went looking for something better. When original watchtower worked tho, it worked well.
Bad week for me. Tandoor had become the home of quite a lot of recipes, and well, I’m never gonna just pull a docker container again without a backup, cause I did a pull and the bastard stopped working.
So I setup Django and got started doing my own recipe server cause I was never very enthused about Tandoor, too much netflix-like Presentation bullshit and did not allow for the very simple thing I wanted, which was, a compact list of my recipes by alphabet that I can swiftly click on the one I want.
I also need to get my Python chops back cause I think there will be jobs again, soon enough.
Meanwhile, anyone got any suggestions of a better recipe app? Needs to run as a Linux server, that’s about it. I can go Tailscale if it has no security. If I get mine to something usable I’ll make it available.
Had a productive session this weekend migrating my promtail config to grafana Alloy and setting up a syslog receiver to capture output from my cron jobs. Next up I’ll be messing with some scripts to sync my dashboard config across several instances which should be pretty neat if it works
I finally moved my mail server from Hetzner to my homelab.
Pretty smooth sailing so far. For now I’m using Scaleway for outgoing mails since I can’t set a PTR record here but I might just try sending a few without PTR to see how other providers react.
From my experience using a mailserver with no PTR and an ISP who likes to put their addresses on a PBL, it’s very good. Gmail tends to be the most annoying and wants that PBL listing removed or you’ll go to spam for new recipients, but other than that 10/10. I’d be interested to hear what your findings are if you do test it!
Yes, but that doesn’t help you with the large providers (Gmail, Outlook, …) unfortunately.
@domi No … agree it would’t. My thought was more about helping each other improve deliverability between self hosters - but then overtime a network of self hosted servers that trusted each other might become appealing to Google , Outlook to eventually trust.
