Pretty much all monitoring solutions on the market track cert expiration nowadays. I get an alert when any of my certs have <5 days left

Sorry I 'ever saw this, that sucks.

Turns out mine was broken too. I put the CPU in my gaming rig and it worked fine, so I bought a new motherboard and the problem is gone.

Syslog is considerable overkill for home lab monitoring.

SNMP does what you want. You just need a good monitoring solution that’s not as involved as Prometheus+grafana (I feel you, I’ve been there)

I really enjoy PRTG, but it’s way too expensive for a home lab, still throwing it out there if you feel like you have money to burn.

I hear good word about libreNMS, it’s next on my list when my PRTG licence runs out.

Be warned that monitoring is ultimately a fickle thing; what you don’t write in yaml config for grafana, you get to dig through obscure SNMP libs to find out (though I find that’s easier for me, ymmv) for other tools.

I recommend against: nagios (I like it but if you hate Prometheus it’s definitely not for you), checkmk (throw checkmk into the sun please it just fucking sucks), cacti (NO!), solar winds (why?)

if you feel like you want to become a datacenter admin: zabbix scales very very well, both in performance and ease of admin against hundreds of servers, but it’s overkill for a home lab, and it can get you lost in configs for hours.

It’s a gigabyte ab350m gaming-3 rev 1.0. it boots grub fine but then crashes right after displaying “loading Linux 6.x”, CPU led flashes then dram led stays on, I have to turn it off with the PSU switch.

Either it’s a rev 1.0 bug which is a thing on those motherboards, or the CPU (or igpu) is defective.

https://superuser.com/questions/1854228/proxmox-doesnt-boot-after-cpu-change

I’m currently waiting on support from both the seller and gigabyte but I don’t expect anything out of it, though I’m still yet to test it in a different motherboard.

Oh wow congrats, I’m currently in the struggle of stretching an ab350m to accept a 4600G and failing.

You’re right, you should hit PCIe 3 speeds and it’s weird, but the fact that the drives swap speeds depending on how they’re plugged in points to either drivers or the chipset.

I’m not fully familiar with the overheads associated with all things going on on a chipset, but it’s not unreasonable to think that this workload, plus whatever the chipset has to do (hardware management tasks mostly), as well as the CPU’s other tasks on similar interfaces that might saturate the IO die/controller, would influence this.

B350 isn’t a very fast chipset to begin with, and I’m willing to bet the CPU in such a motherboard isn’t exactly current-gen either. Are you sure you’re even running at PCIe 3.0 speeds too? There are 2.0 only CPUs available for AM4.

It might be that the data to both disks saturates a common link before the second disk reaches full iops capability, and thus the driver then writes at full speed on one disk and at half speed on the other, for twice as long.

DevOps was a lie pushed on devs to make them become sysadmins, unfortunately.

Can’t really go wrong with the old school nagios+thruk. The learning curve is a tad steep but it teaches you a lot of things about your systems.

I used to work for a very very large company and there, a team of 9 people and I’s entire jobs was ensuring that the shitty qradar stack kept running (it did not want to do so). I would like to make abundantly clear that our job was not to use this stack at all, simply to keep it running. Using it was another team’s job.

Maybe it’s time we invent JPUs (json processing units) to equalize the playing field.

Pretty sure you’re looking for Django and specifically Django admin.

It does make sense, to prevent automated tools from pulling it’s code. But I do wish they kept it around, maybe I my viewable if you’re logged in or something like that, but it seems they don’t have the tools to do this.

It requires an LTE capable gateway and a data plan. As for the rest you can simply write your routing tables so that if the main gateway doesn’t work, use the secondary gateway with lower prio.

For starters, brave is chromium. If you care about the open web at all, you should get firefox, end of discussion. It’s also not particularly good at being private, especially considering that whenever chromium stops supporting manifestv2, brave will have to either support it themselves or use manifestv3. This is generally true of all features that enable privacy and are being eroded by google (see: cookies phaseout and ad profiles phase in, web integrity).

If you like the idea of crypto, I suggest you watch the YouTube essay “line goes up”. If you’re still interested in crypto beyond “the idea is cool, I guess” then I still suggest you get firefox and an appropriate crypto wallet extension. Last I checked the standard was metamask but it might have changed since.

Any youtuber you see talking about brave have been paid handsomely to tell you to use it. Do not fall for advertising, and exercise level-headed judgement.

Is the browser good? No, not really. Any and all of its demarcating features, you can get on all others with a few extensions.

Is it still a good idea to support it despites the ceo being a raging bigot? At this point why even do that (btw the Obama points do not stand here, because he is irrelevant to this conversation; this is textbook whataboutism).

Similarly, you could choose to pay J.k. Rowling for her books, and support a very vocal transphobe that has stated outright that she’s using the money she makes to further her agenda, or you could buy and read better books, such as the discworld series. At this point choosing Harry Potter over a better series is choosing transphobia, and choosing brave over a better browser not made by a nutjob is choosing the nutjob’s side.

Indeed, but in that case an off-the-shelf SMTP relay works fine.

So to be clear, you want traffic coming out of your VPS to have a source address that is your home IP?

let’s go back to fundamentals and assume for a second that your VPS provider allows these packets out and your VPS initiates a TCP connection like that. It sends a TCP SYN with source: home address and dest: remote.

The packet gets routed to the remote. The remote accepts and responds SYN/ACK with source: remote and dest: home address.

Where do you think this packet will get routed? When it gets there, do you think the receiving server (and NAT gateways in between) will accept this random SYN/ACK that doesn’t appear to have a corresponding outgoing packets sent first? If so, how?

You need a proxy for outgoing to avoid your source server being on a residential adress, which all but guarantees all mailservers using spamhaus etc will block you by default. DKIM and DMARC are needed in their own right but an SPF fail will already make your mail fall into spam.

Not really. Your VPS’s public IP is not yours to change, for obvious reasons, and it’s unlikely that your hosting provider will let you send packets from your VPS using a source address that is incorrect. if they let you, then any replies to those packets will evidently get routed to the actual IP, ie your home IP. If you really want to forward SMTP to your VPS (which has less chance of being on a Blocklist by virtue of not being a residential IP), I suggest declaring your VPS as your SMTP sender in SPF, instead of declaring your home IP and trying to make that work with the VPS IP. The VPS can then be configured as an SMTP relay (this is a key feature of SMTP) to your home instance, or you could forward all traffic on the appropriate ports at the TCP level, but I don’t advise doing this.

I hope you understand that if what you’re asking was possible, I could rent a VPS, spoof your IP and receive traffic meant for your IP without any issues. For the same reasons, I think the other commenter mentioning x-forwarded-for headers is wrong if you’re not using DKIM (and even then it’s iffy). Otherwise I could just write a payload with mailto: whatever, from:you@yourdomain and x-forwarded-for: your home IP and pass SPF checks without having control over your IP.

if you’re still confused about SMTP feel free to ask more questions