bolha.us

29 posts20 participants0 posts today

AreskulA fancy tool to check disk usage! 💁 (replace df) - Progress bar - Shows tabled results - Colors according to space leftalias dufl = duf --only local<a href="https://mastodon.social/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://mastodon.social/tags/sysadmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sysadmin</a> <a href="https://mastodon.social/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homelab</a> <a href="https://github.com/muesli/duf" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/muesli/duf</a>

prozakNeed some advice. Setting up Endless Os to a couple of laptops to give out to kids. Unfortunately my ISO was the “small one”, is there a suggested list of educational applications ? I got Kiwix, Scratch… anything else that is uber cool for 6-11 years old? <a href="https://corteximplant.com/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homelab</a> <a href="https://corteximplant.com/tags/selfhosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#selfhosted</a>

Kancept<a href="https://mastodon.social/@lucas3d" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@lucas3d</a> I have thought about this as an alternative. Having a main 2.5gb Ethernet as the main haul, but use the Infiniband between nodes for the internode back haul/main machine side channel to upload ISOs and other large scale data moves to the cluster from my main machine. My ProxMox cluster is Lenovo Tinys, so I'd also need to upgrade to ones that supported PCIe to use a card in them, but that's already on the roadmap. It'd be nice if they made a Tiny with an Infiniband so we could use them as poor man blades or something. So maybe the answer is keep three of the dual port Infiniband cards, sell the rest off to fund a migration to a 10gb Ethernet network. The three cards I keep will be for future migration of the nodes. Does Infiniband support more than three nodes in a round robin? All the articles I've read have had three nodes and I don't know if that is coincidence or if that's an Infiniband limitation. I don't know enough about Infiniband to know. <a href="https://infosec.exchange/tags/infiniband" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infiniband</a> <a href="https://infosec.exchange/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homelab</a> <a href="https://infosec.exchange/tags/networking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#networking</a>

KanceptMy hardlined network is currently all 1GB ethernet connections. I have a few machines that have 2.5gb Ethernet ability and am debating going the cheap route and just getting a 2.5gb switch. I also have 2 Sun Infiniband 40gb switches and a ton of Infiniband PCIe cards, but holy heck is rack mount network gear loud AF. I'd love to move to 40gb but can't seem to find decent desktop switches for it. Is it only data centre grade equipment? Should I just sell it off and go 10gb Ethernet? I know Infiniband offers a lot more than just basic networking, but only one or two of my machines would support those goodies. <a href="https://infosec.exchange/tags/infiniband" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infiniband</a> <a href="https://infosec.exchange/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homelab</a> <a href="https://infosec.exchange/tags/networking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#networking</a>

💓 EV∆ ∆ΠΠ∆ 💓🎁 Machine Build Sunday 🎁Twelve hours of additional system fun today! Rack rebuild state: 95% Talos II OpenBMC validated ✔️ GPU boxes rebuilt and upgraded ✔️ EPYC workstation rebuild to 4U ✔️ Router rebuild 25G + QAT: 50% Network upgraded: ✔️ UPS' upgraded: ✔️Supervillain Agenda 2025 1. Mandate all screws and bolts to be replaced with Torx head 2. Mandate all packing tape to be silent type, with zero residue <a href="https://mastodon.bsd.cafe/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homelab</a> <a href="https://mastodon.bsd.cafe/tags/sunday" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sunday</a>

MichaelAnd done, my kubectl now takes its client certs from pass, which is in turn encrypted with a GnuPG key on a completely different host. That should improve my security against someone breaking into my C&C host quite considerably.<a href="https://social.mei-home.net/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HomeLab</a>

MichaelThat was really straightforward. I've now got the gpg-agent from my desktop forwarded to my Homelab's C&C host, and I can use the private key on my desktop to decrypt pass secrets on the C&C without having to have the key there or having to enter the password for decrypting the key there.Next step: Configuring kubectl to use pass to get the k8s certs, instead of having it sitting unencrypted in the .kube/config file.<a href="https://social.mei-home.net/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HomeLab</a>

diegolakatosAfter more than 130 hours and with all the tests being successful I just replaced an old 4tb disk with an old 12tb disk, now I just need to wait for the resilver to complete. <a href="https://hachyderm.io/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homelab</a> <a href="https://hachyderm.io/tags/truenas" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#truenas</a>

MichaelAnd Consul has also been removed. Considering that it was my main service discovery mechanism in the Homelab, I will chalk the fact that nothing exploded up as a win.<a href="https://social.mei-home.net/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HomeLab</a>

MichaelFinally done with the Vault migration to k8s and now removing Consul. I've just taken down the three Consul servers and am now just sitting here waiting whether anything a "git grep consul" wasn't able to find is using Consul DNS still.Sadly, the last step of the migration, moving the control plane over to my Pis, needs to wait a little bit longer, because I will need a weekend for that, and next weekend I will be away.<a href="https://social.mei-home.net/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HomeLab</a>

Paco Hope #resist<a href="https://phpc.social/@outofcontrol" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@outofcontrol</a> The way I plan my stuff is a mirrored pair of root drives, like 128G SSDs, and then whatever storage drives. Personally I tend to put it all in one chassis. I don’t, for example, have my VMs using iSCSI or NFS for their root volumes. (I might to that for data volumes.)TrueNAS will set up ZFS right. You can trust the defaults. I think I might have RAID5 ZFS and be booting off the ZFS volume on my TrueNAS box. For my internet connected VMs I tend to do Xcp-ng on bare metal, with Xen Orchestra and Portainer to manage containers on my docker host VMs.<a href="https://infosec.exchange/tags/selfhosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#selfhosted</a> <a href="https://infosec.exchange/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homelab</a>

MichaelTIL: When you run "less" on a CA certificate in PEM format, it doesn't show the actual cert, but instead parses the cert and outputs the certificate information? How did I manage not to realize that for so many years?<a href="https://social.mei-home.net/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Linux</a> <a href="https://social.mei-home.net/tags/TIL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#TIL</a> <a href="https://social.mei-home.net/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HomeLab</a>

gyptazy<a href="https://mastodon.gyptazy.com/tags/ProxLB" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ProxLB</a> - an opensource & advanced VM loadbalancer for <a href="https://mastodon.gyptazy.com/tags/Proxmox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Proxmox</a> clusters. Including affinity & anti-affinity rules, maintenance mode (evacuating nodes) and more. I just published my slides about it.Project: <a href="https://github.com/gyptazy/ProxLB" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/gyptazy/ProxLB</a> Slides: <a href="https://cdn.gyptazy.com/files/talks/ProxLB-Intelligent-Workload-Balancing-for-Proxmox-Clusters.pdf" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://cdn.gyptazy.com/files/talks/ProxLB-Intelligent-Workload-Balancing-for-Proxmox-Clusters.pdf</a><a href="https://mastodon.gyptazy.com/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homelab</a> <a href="https://mastodon.gyptazy.com/tags/vmware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#vmware</a> <a href="https://mastodon.gyptazy.com/tags/alternatives" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#alternatives</a> <a href="https://mastodon.gyptazy.com/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a> <a href="https://mastodon.gyptazy.com/tags/python" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#python</a> <a href="https://mastodon.gyptazy.com/tags/coding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#coding</a> <a href="https://mastodon.gyptazy.com/tags/devops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devops</a> <a href="https://mastodon.gyptazy.com/tags/virtualization" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#virtualization</a> <a href="https://mastodon.gyptazy.com/tags/proxmoxve" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#proxmoxve</a>

Gregory P. Smith (he/him) :python: 🚲🦝 :donor:Last night in <a href="https://infosec.exchange/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HomeLab</a> : * Dang it, this proxmox server isn't booting after I removed the GPU. * & I don't have inputs on left on my monitor or display cables on other machines in convenient to move places. * ... Oh right! My crowdfunded <a href="https://infosec.exchange/tags/JetKVM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#JetKVM</a> arrived last month, I should open one and try it out.Success! That new little Ethernet connected h264 streaming <a href="https://jetkvm.com/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://jetkvm.com/</a> is literal magic. A joy to use. Also a potential Security Nightmare, so I'm treating it as a crash-cart and won't leave it attached, at least with USB connected.Original problem: Motherboard BIOS device numbering combined with Linux stupidity. enp3s0 turned itself into enp2s0 upon removal of the PCIe GPU (why?!?) which didn't match the setup in /etc/network/interfaces.This is partially systemd's fault. But also Linux's in general. A friend ironically pointed out that the <a href="https://systemd.io/PREDICTABLE_INTERFACE_NAMES/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://systemd.io/PREDICTABLE_INTERFACE_NAMES/</a> is properly in YELLING CASE even though it is the wrong solution to this decades old problem in the face of non-server hardware UEFI BIOS that renumbers IO bus ports based on device presence. The rotten cheese was merely moved, not thrown out.I'd call my (likely hand edits) to /etc/network/interfaces and the concept of that file listing actual interfaces the problem. None of the above configuration methods really do what we _want_ to express."The only network interface with the active Ethernet connection? yeah use that one.""The interface that gets an address showing X as its default gateway""The faster interface""Don't believe this interface's lies - it's an untrusted network."There are ways to express some configuration desires in a more robust to changes manner, but they tend to be hacks instead of the first thing you reach for. Thus problems.

Ariel (🐿 arc)This morning's *absolute* WTF moment:Pod network traffic 100% packet loss outbound UNTIL I `tcpdump` it on the node, then it starts working fine.<a href="https://eigenmagic.net/tags/k8s" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#k8s</a> <a href="https://eigenmagic.net/tags/Kubernetes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Kubernetes</a> <a href="https://eigenmagic.net/tags/Cilium" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cilium</a> <a href="https://eigenmagic.net/tags/kh8s" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#kh8s</a> <a href="https://eigenmagic.net/tags/Networking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Networking</a> <a href="https://eigenmagic.net/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HomeLab</a>

James Wynn 🧐I noticed that most of the noise I can hear through the walls from my wall-mounted rack is from my NAS vibrating, and it decreases my like 90% if I just lift it up. Any good ideas for insulating the vibrations? Maybe setting it on a piece of foam? Its just sitting on a rack shelf.<a href="https://mastodon.social/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homelab</a> <a href="https://mastodon.social/tags/selfhosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#selfhosted</a>

Gavin CampbellDid a few upgrades to the server rack this weekend. Added a 16 bay disk array that is hooked up to bot my servers. Installed the new console. Added another UPS that I won’t be hooking up until my panel upgrade this week. I’ve also swapped in some Noctua fans so this setup is pretty quiet yet cool. Feel free to bug me if you have any questions. <a href="https://hometech.social/tags/SelfHosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SelfHosted</a> <a href="https://hometech.social/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HomeLab</a>

Out of Control :laravel: 🇨🇦Currently using a Synology DS916+. It works well for what it does, and has a nice photo app on it. But I can't do all the things I want on it. So... starting to look to do DIY. I get hung up on, cpu/machine to use, disk storage and backups.I currently have a mix of WD drives from 2TB up to 10TB. Probably about 20 drives sitting around. Does anyone have a place that has guides and recommended hardware suggestions? I've seen some links in the past, which I didn't keep :(<a href="https://phpc.social/tags/homelab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#homelab</a> <a href="https://phpc.social/tags/diy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#diy</a>

MichaelNew blog post: <a href="https://blog.mei-home.net/posts/k8s-migration-23-baremetal-ceph-shutdown/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://blog.mei-home.net/posts/k8s-migration-23-baremetal-ceph-shutdown/</a>Shutting down my baremetal Ceph cluster and migrating the hosts over to the new cluster.Also a graphic example of why you should read the docs - in full - before starting work. Instead of just assuming you already know how it works.<a href="https://social.mei-home.net/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HomeLab</a> <a href="https://social.mei-home.net/tags/Blog" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Blog</a>

MichaelOh, and Nextcloud is not better at all. My preferred entry in the release notes today:[stable31] Remove space by @backportbot in "#51149"<a href="https://social.mei-home.net/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HomeLab</a>

Recent searches

Search options

Administered by:

Server stats:

#homelab