bigDottee @ bigDottee @geekroom.tech Posts 4Comments 16Joined 2 days ago
You are looking for a disaster recovery plan. I believe you are going down the right path, but it’s something that will take time.
I backup important files to my local NAS or directly store them on the local NAS.
This NAS then backs up to an off site cloud backup provider BackBlaze B2 storage.
Finally, I have a virtual machine that has all the same directories mounted and backs up to a different cloud provider.
It’s not quite 3-2-1… but it works.
I only backup important files. I do not do full system backups for my windows clients. I do technically backup full Linux vms from within Proxmox to my NAS…but that’s because I’m lazy and didn’t write a backup script to back up specific files and such. The idea of being able to pull a full system image quickly from a cloud provider will bite you in the ass.
In theory, when backing up containers, you want to backup the configurations, data, and the databases… but you shouldn’t worry about backing up the container image. That can usually be pulled when necessary. I don’t store any of my docker container data in volumes… I use the folder mapping from host to directory in docker container… so I can just backup directories on the host instead of trying to figure out the best way to backup a randomly named docker volume. This way I know what I’m backing up for sure.
Any questions, just ask!
Somehow, I have never seen this list… and easily over half of those projects I’ve never heard of but could add some great functionality to my home. Thanks for posting it!
I’ll pitch in here.. so website dns (porkbun) is configured to point to your home in, great!
2 things need to happen.
- Your router needs to expose ports 80 and/or 443 for HTTP and HTTPS access. If you are only doing HTTPS then 80 isn’t really necessary. These ports need forwarded to a reverse proxy, such as NGINX or Apache.
- You need to have a reverse proxy setup that can translate the domain name that is being sent to a local IP address:port. You should be able to find some relatively simple/easy reverse proxy configuration generators online to help you get that setup. You’ll want to setup SSL certificates while you’re at this too. Look up “nginx certbot lets encrypt” and that should get you pointed in the right direction.
Once those are done, in theory, you should be able to access your website outside of your home network using your domain name.
I’ve just started to delve into Wazuh… but I’m super new to vulnerability management on a home lab level. I don’t do it for work so 🤷🏼♂️
Anyways, best suggestion is to keep all your containers, vms, and hosts updated best you can to remediate vulnerabilities that are discovered by others.
Otherwise, Wazuh is a good place to start, but there’s a learning curve for sure.
So you definitely still need a local DNS running. AdGuard Home, PiHole, Technitium, Hell your router probably has a local dns server you can enable and add some entries to it.
But once you setup a dns server, you’ll need to point all network clients to the dns server address so it can start resolving the web address to the ip in question.
I cover most of what services I’m running in my own post looking for assistance recently.
I’m not sure if you ever made your way to following through with this… But the three node system isn’t a bad starting point. However, here’s how I would approach it (similar to how I actually got my start in homelabs and how I do things now)
1 system for your router (looks like you picked a Qotom unit, those are decent), 8-16 gb ram
1 system for proxmox virtualization… run all your services in LXC’s or Virtual machines, as much ram as you can get a get for your system
And 1 system dedicated to storage (truenas or unraid), 32gb ECC ram (personal preference but not necessarily needed even with zfs for home use)
I’d start at https://reddit.com/r/homelab … but since we’re on Lemmy, I’d rather suggest posting on !homelab@geekroom.tech (new, but looking to gain traction)
So I was trying to get the syntax highlighting correct and when googling I came across a GitHub issue where someone said an old Lenny instance had syntax highlighting but it was a custom theme or something and Lenny at the time didn’t support it.
Then about a year and half ago the Lenny devs added native support for syntax highlighting.
References:
Well, I can’t seem to find the original GitHub request for Lenny but the requester referenced either heapoverflow.info or heapoverflow.ml
I’d add it to my proxmox cluster and start getting services setup on it. Plain and simple.
Thanks for this! I wasn't aware of this and appears that it was added because another popular instance had it but went down and never came back, leaving a massive gap in functionality.
Thank you for the suggestions! I've updated the post with your recommendations and tried to make things more clear. If there's anything else you find is wrong or should be included, please let me know!
I actually have my instance already setup with Lemmy Federate and it seems to be doing some work :)
Yeah, I'm aware that the router is becoming the bottleneck. I've been looking into either: getting a Layer 3 switch that can do inter-vlan traffic (such as my NAS to all my proxmox hosts without going through the router) OR setting up my router with 2x 1Gig Ethernet ports in LAGG to the core switch. I haven't had the balls to do that yet, same reason I've struggled with removing vlan 1 default, because it breaks the networking gear when I do :(
The network ports are locked down to specific VLAN tags if they have a single client on that port OR have a group of clients that are all going to be on the same VLAN. I really haven't looked into vxlan tags though.
That’s a pretty good post. Makes sense and sounds like, just ipv6, we’ve got a long time before the internet starts making vast changes.
Well... if you don't need to get rid of the files and continue to have space... then great. No matter what, you are applauded for seeding for when the inevitable lone pirate comes sailing by wanting to loot your booty.
Can confirm, genuinely good service and support at reasonable prices.
Also use Cloudflare as new domain registrar because I use them as DNS as well. I can’t say that I’ve had any problems with them at all.