• 1 Post
  • 21 Comments
Joined 1 year ago
cake
Cake day: June 13th, 2023

help-circle


  • Seconded on Cockpit project w File Sharing.

    Probably not best practice, but it’s possible to install it on the PVE host itself since its ZFS manager and Identity manager plugins and other features fills some gaps in what Proxmox doesn’t do (or would have to drop to CLI to do).

    Also recommend RClone in a systemd can take care of various file movements, syncs and backup tasks you may need against the host, vdumps or SMB file shares.




  • Down-under, we have some other mechanisms to try to preserve democracy:

    Mandatory voting and preferential voting. This provides opportunities for third parties and independents who engage with voters.

    Ethics Committees, used at state levels but pushes for a Federal Ethics Committee. “They allow Parliament to scrutinise the Executive more effectively, making it more responsible to the people”

    Caps on political donations is another measure, supported by progressives but not yet by the conservatives.


  • Makes sense. It’s a shame when these should be fundamental principals and accountability of the person’s elected.

    The concern for me is there would be those that act without conscience or care, the ‘wreckers’ that don’t have any current policy or engage in rational debate, they’re in plain sight already today and not being held to account?


  • I think a problem with blind voting is, who do the citizens know who represented them and acted in their interest, and therefore who they should support and vote for? Backroom deals and corruption would run rife. Greater transparency is better than less.

    A conscience vote, where the party leaders do not enforce a particular party line, instead accept the will of the representative member (notionally on behalf of their constituents) should be more commonplace. This is essentially the same as getting an independent. Best bet is to break up the 2-party system.


  • I can see where you’re coming from, and agree, but ISPs in Australia providing services on the National Broadband Network NBN will almost always describe this as a modem router.

    It’s not uncommon, right or wrong, even Verisign USA describe a modem vs router thus: “The modem is responsible for sending and receiving signals from the ISP, while the router disperses the signal to devices on the network”

    So, this doesn’t exclusively modulate and demodulate (mo-dem) an analog to digital signal in this case, and 100% it doesn’t have the physical hardware to do so, but it is nonetheless required to negotiate (‘modulate’?) the internet connection with an ISP, albeit software-defined through digital PPP Ethernet protocols.

    All this is a bit off topic, but I hope the OP (or others) may better define the internet service needed, and may determine if this device may be suitable for their requirements.

    I’m glad it includes openwrt support for later down the track. It’s one of the few AX devices with such support and I chose it specifically for this reason!


  • Meets definition of a modem/router depending on what physical connection and protocols your ISP provides.

    My Ethernet WAN connects to the ISPs NTU (optical fibre network termination unit), but WAN is capable of negotiating PPPoE, PPTP or L2TP with PAP/CHAP. Can also Dual WAN, Port forward, NAT.

    The documentation is a little lacking. And no ADSL/VDSL etc. but it meets reqs for some.






  • Doesn’t meet your power requirements (only up to 850VA) but i recommend Cyberpower Bric meets the rest. I have mine connected to my Proxmox host, usb passthrough to VM running HassOS with the NUT add-on. Neat little LCD and silent unless humming on battery. Can choose if you want an audible alarm enabled or put it on mute.

    APC is still very well regarded UPS brand for small business, and your specs seems like they should be achievable across many leading brands. Have you looked into latest models for your spec?

    Maybe share a list of candidates you’re considering and can get opinions on those?


  • Agree. Best to have that dedicated hardware, and a degree in network engineering first! Hah :)

    tech waffle...

    You might achieve network isolation without dedicated managed switches by: using prosumer routers or OpenWRT, with a Hypervisor like Proxmox, which support VLAN tagging. But this wouldn’t save your home connection from a DDoS. To help with that, running public services behind CloudFlare seems to be one of the better choices, even our Lemmy hosts are using.

    If you’re starting out, best keep internet facing home services private through a VPN, maybe ZeroTier or TailScale. Don’t advertise them publically at all.


  • Agree with the VPS in this case. For sure you can create public-facing services in a home server or home lab, but to do so you need:

    1. Domain name hosting.
    2. an Internet Service Provider who will allow you expose port 80/443 web services and on a Static IP (most do not, or paid extra on business plans). OR use a Cloud proxy like CloudFlare which your home IP can be updated through a DynDNS service and served on private ports.
    3. Setup NAT/Port Forwarding on your modem to route incoming requests to internal services. First to a firewall or threat gateway like PFSense, a web proxy like Traefik/NGinX, and security harden and maintain your modem, router, network and served applications.

    If you’re new to these things, Id start with something more mature for personal or family home use first. Like NextCloud, HomeAssistant or Jellyfin media server. Lots of YouTubers have covered how these can be set up as a reference.

    Lemmy is still alpha, full of bugs and security vulnerabilities and needs regular hotfixes and babysitting. Permitting Joe Public into your home services is ripe for disaster unless you have the time and expertise.