Shimitar @ Shimitar @downonthestreet.eu

Posts

12

Comments

463

Joined

6 mo. ago

Wire guard + some nft tables or ip tables rules is a much better solution.

Ssh on itself can do the port forward part but for the routing you still need the above mentioned rules. In addition, ssh will not autoreconnect if anything happens and you need to add autossh or some other solution to keep it rolling.

LFS is great, I started with it 25 years ago (not joking, it was GCC 2.9 time)

But quickly discovered Gentoo and been there since that time. LFS is not maintainable, Gentoo is the good of LFS plus perfect maintainability.

I had good experiences 10y ago with amazon "white labels" mechanical drives... But its aneddotical and didn't go with amazon for my sdds anyway.

I could upgrade my requirements to server grade, but not the budget, so I would say the driving factor is budget :)

Hand me a bunch of server grade ssds for the price of consumer and I would gladly install them.

Very interesting, thanks...

At least ssds are much less hot and lot quieter than mechanical drives, and in a home, not chilled, and not isolated environment means even more than power consumption to me.

Edit: my 4 x 4tb ssds anyway are much less power hungry than the 2x6Tb spinning drives they replaced, so much that my overall server consumption dropped significantly in my home assistant readings (via ZigBee power meter).

I usually pick the cheapest of a brand I trust. Kingston atm for my ssds.

Don't care, even the crappiest is way faster than what I need plus less energy hungry than mechanicals.

I focus on size, buy the biggest I can afford according to the raid level I need. Currently have 4 x 4Tb Kingston ssds in RAID5.

Edit: don't buy ssds on aliexpress, don't go that cheap.... Go cheap like buy consumer level stuff not server grade stuff, but still from reputable sellers and brands.

Yeah, would be great to buy server grade stuff, but I don't have a server grade budget.

Bad example, you picked a reserved range that confused me :)

You can with srv DNS records. I never tested if browser do honor that or just go to port 443 anyway.

Create the subdomains and have them all point to your PUBLIC IP (10.172.. But keep in mind 10... Are -not- public ip)

You will need to setup redirect from your router/gateway to your internal ip.

Unless you are on cg-nat (that would explain a 10... class ip) in that case, you will definitely need a real public static ip

To "match" the various ports all to 443, you will need a reverse proxy, since those ports are not standard. This could be mitigated with srv DNS records, but I really strongly suggest not to go public without https and reverse proxy.

This, but I prefer nginx.

And no real need for tailscale or cloudflare. If you do not like to depend on a third party service, either port forward and ddns or an external vps+wire guard if you have gcnat

The idea rocks... Love it!

... Something that added to a Gentoo distribution would be amazing ...

Msata and ssd, they are both sata and ssd.

Maybe one is faster because its newer or so, but there shouldn't be much difference. Its not nvme, its msata.

I would slap the two disks in Linux software raid1 to leverage drive failure and use an external disk for backups, maybe over the network (local or remote).

If you don't want to waste 50% of your space, use one disk as home, the other as root&boot&swap (is swap even a good idea? Maybe zram). Any extra space on the other dunnow... Mybe additional home space?

I would do it. Its fun...

Will you mess up? Yes. Who cares, Do it, just ensure its data you can lose no worries.

I would host on a vps, just to keep you home safe from swat raids (assuming you in the us, other nations should be safe).

Never had issues. Both with nvidia and Intel cards.

Good old half life... Lol

I read that since they rebased with oppo future unlockability is at stakes.

Motorola seems hit and miss.

While pixels would be a choice, I would prefer something with a microSD

Only for devices with MIUI. Any device (all new ones) that comes with their new android rebrand Hyperion or whatever its called, cannot be unlocked.

Xiaomi doesn't allow unlocking anymore, it seems.

That's very bleak, I hope there is more to that.