robber

joined 2 years ago
[–] robber@lemmy.ml 1 points 3 weeks ago

That's really helpful, thank you. I've ordered an AX23 which will arrive tomorrow. I'll try to figure it out in the next few days and report back.

[–] robber@lemmy.ml 1 points 3 weeks ago

Thank you! I'll evaluate and report back.

[–] robber@lemmy.ml 1 points 3 weeks ago (2 children)

And openwrt is capable enough?

Yeah it's insane right? Every address is reachable when I open a port range. And it's like there are ~ 10 predefined services (HTTP/S, SMTP, ...) and the category "All other ports" where also 22 is part of. So I really have the choice to either keep everything shut or leave everything wide open.

I think I can't use my own modem but I'll have to double check with my ISP. But yes the Wi-Fi is also provided by that router and it's also quite crappy.

[–] robber@lemmy.ml 1 points 3 weeks ago (6 children)

Thank you! Do you have an example for such a firewall device? Could something like the TP-Link Archer AX55 in IPv6 "pass-through" mode do the job? Or would you go for a standalone firewall? My budget is around a hundret bucks.

 

Hey fellow self-hosting lemmoids

Disclaimer: not at all a network specialist

I'm currently setting up a new home server in a network where I'm given GUA IPv6 addresses in a 64 bit subnet (which means, if I understand correctly, that I can set up many devices in my network that are accessible via a fixed IP to the oustide world). Everything works so far, my services are reachable.

Now my problem is, that I need to use the router provided by my ISP, and it's - big surprise here - crap. The biggest concern for me is that I don't have fine-grained control over firewall rules. I can only open ports in groups (e.g. "Web", "All other ports") and I can only do this network-wide and not for specific IPs.

I'm thinking about getting a second router with a better IPv6 firewall and only use the ISP router as a "modem". Now I'm not sure how things would play out regarding my GUA addresses. Could a potential second router also assign addresses to devices in that globally routable space directly? Or would I need some sort of NAT? I've seen some modern routers with the capability of "pass-through" IPv6 address allocation, but I'm unsure if the firewall of the router would still work in such a configuration.

In IPv4 I used to have a similar setup, where router 1 would just forward all packets for some ports to router 2, which then would decide which device should receive them.

Has any of you experience with a similar setup? And if so, could you even recommend a router?

Many thanks!

[–] robber@lemmy.ml 2 points 1 month ago
[–] robber@lemmy.ml 8 points 1 month ago* (last edited 1 month ago)

Take a look at the podman kube play command which lets you run K8s-style stack definitions on podman. Has partly replaced compose for me (although I still have some docker servers running for stacks that don't play nicely with podman yet).

[–] robber@lemmy.ml 1 points 1 month ago

That's what's kept me from using it, although I very much like the idea of paying for a good service. I would love to see them figure out a way to avoid accounts.

[–] robber@lemmy.ml 9 points 2 months ago* (last edited 2 months ago) (1 children)

IIRC there is a plugin for Caddy that can do what you are looking for.

Edit: here you go

[–] robber@lemmy.ml 1 points 2 months ago

Your comment reminds me of that great tune by Pink Floyd.

https://www.youtube.com/watch?v=zDDzR2zSgsM

[–] robber@lemmy.ml 2 points 3 months ago (1 children)

Probably not what OP is looking for.

But I'm also happy with my Garmin Instinct. I use it disconnected from my phone, it does everything I need offline and stand-alone. To add tracks for navigation I just connect it to my linux laptop and drop the GPX file into the NewFiles (or whatever it's called) folder on the watch. I was surprised how well it works without official apps. The only thing I used the app for was to update the firmware when I bought the watch.

Also, fittrackee looks promising - thanks for the tip!

[–] robber@lemmy.ml 2 points 3 months ago

I would second that. I currently use nix besides Flatpaks for development environments but also find it somewhat overcomplicated. Looking forward to give toolbx a try.

[–] robber@lemmy.ml 4 points 3 months ago

I migrated my home- and webservers from Debian to FCOS a while ago and I'm very happy with how everything works.

Troubleshooting butane/ignition was a bit of a pain in the butt but worth it imo. I suggest just reading through the FCOS docs, they guided me well while setting everything up. I use podman on my webservers and docker on the homeserver (bc nextcloud aio is not fully podman compatible). I use the installer to build a pre-configured ISO that I can deploy where I want to.

Someone in the comments mentioned Flatcar, which I think looks compelling as well, since it's basically the same but more of a community effort.

 

I've been looking into self-hosting LLMs or stable diffusion models using something like LocalAI and / or Ollama and LibreChat.

Some questions to get a nice discussion going:

  • Any of you have experience with this?
  • What are your motivations?
  • What are you using in terms of hardware?
  • Considerations regarding energy efficiency and associated costs?
  • What about renting a GPU? Privacy implications?
 

Just wanted to share my happiness.

AIO is the new (at least on my timeline) installation method of Nextcloud, where most of the heavy-lifting is taken care of automatically.

https://github.com/nextcloud/all-in-one

view more: next ›