Any ONVIF/ RTSP camera is probably going to work but I still keep them segregated from the Internet.
Motion triggered recording works fine to a SD card on many cameras. I’m so far happy with Reolink.
For remote access look into Tailscale.
Hard SPF and DKIM enforcement helps.
I’ve pushed the limits of the SAF a few times.
Noting that I could buy a new NAS every year with what we save on not Netflix is helpful occasionally.
It’s cheaper to build a new server. Cloud… just isn’t cheap. Makes sense for accounting purposes and business reliability standards to a degree but not much for home use.
This happened to me:
Now my whole family relies on this underpowered house of cards.
“Good” software based RAID (unraid, zfs, etc.) needs reliable access directly to the drives. Usually, USB attached storage doesn’t meet this criteria.
Not using RAID is risky unless you’re very confident in your extensive backups (which you should have anyways).
Personally I have been using a mini PC running TrueNAS with a JBOD over USB3.1 for years and have had some hiccups but nothing catastrophic, but I’m migrating it soon to a device I can use SATA.
Hardware raid is typically not a great idea because you’re usually tied to the chip.
Cloudflare is a business service primarily and the people who should be worried about its monopoly are the businesses, not so much a handful of people running home servers.
Self-hosting an authoritative dns server is not a good idea for several reasons.
Cloudflare doesn’t have access to data hosted in your server unless you’re using their reverse proxy tunnel.
A momentary (if severe) blip in their availability isn’t a good reason to change providers.
But there’s no real reason for that. Losing the smarts. It’s just artificial to achieve lower bom.
If it doesn’t work when the cloud is down, it’s not your thing. Don’t buy it. 8sleep is only the most recent example.
Well, Chinese manufactures cloned the design and came in well under price, took the Chinese market, then improved the product and challenged iRobot globally.
Embrace, extend, extinguish.
I expose homeasssistant via nginx. I run snort and I can assure you I am constantly getting hits. I haven’t tuned it much, so I’m sure there’s false positives in there but I’m equally sure there’s false negatives.
If you can’t figure out how to set up docker, set up a reverse proxy, check and configure TLS, you definitely aren’t ready for self hosting. It’s a highly technical exercise and one bad move will make your Internet connection part of a botnet. (Arguably, you don’t even need to be self hosting for that, but there’s no point in making it easy).
I believe it’s never been easier to set up a home server. I set up Tailscale in between sips of coffee one day and my mind (as an almost-grizzled sysadmin) was blown. My non technical family members can set up a VPN in 10 minutes. It’s a terrible security practice, but there’s pipe-to-bash scripts everywhere now that get things set up and running in minutes. You want Homeassistant container on proxmox? Burn the proxmox image to a usb, boot and install, then run this command. Boom. Homeassistant in a container. Let’s do pihole - another script and we’re done.
It’s ludicrously easy to get going compared to even 10 years ago.
Yes, when you want to change a setting, or configure it for local use, it’s more complicated. But that’s the way it’s always been, and that’s how I learn - follow the cookbook, and then realize you need to change this piece, which requires understanding that piece, and there you go.
Hm I may give that a try just to try something different. But I do have a mx Ergo so it’s not as accessible as yours.
You use the pointer between the keyboard? Doesn’t that cause trouble with the shoulders? I sprawl wide with my key board and wider with my trackball.
Running this all on one system presents a single point of failure. Separate the router from the server, even if simply for sanity.
Last thing I need in my life is a broken system at home when I don’t have time for it!
When I remember. About once a month.
How many people are CGNAT and also no ipv6?
Actually, I don’t want to know. It’s too damn high.
HAOS has add-ons to run a sort of managed version I think of pihole. Good start for containers.
RAID0 is not RAID, because R stands for redundant and RAID0 has dependency on as many drives are in the machine. You need to change that. One drive fails you lose everything.
The question is pertinent to my interests and the answer is to spend some time learning about the benefits and disadvantages of chipsets and processors unfortunately.
If I had time to make dashboards, I wouldn’t waste it making dashboards. Most of the stuff I have just works without a lot of attention, and that’s the way I like it.
I just wait for someone to scream if it breaks.
Pure bare metal is crazy to me. I run proxmox and mount my storage there, and from there it is shared to machines that need it. It would be convenient to do a pass through to TrueNAS, for some of the functions it provides but I don’t trust that my skills for that. I’d have kept TrueNAS on bare metal, but I need so little horsepower for my services that it would be a waste. I don’t think the trade offs of having TrueNAS run my virtualisation environment were really worth it.
My router is bare metal. It’s much simpler to handle the networking with a single physical device like that. Again, it would be convenient to set up opnsense in a VM for failover. but it introduces a bunch of complexity I don’t want or really need. The router typically goes down only for maintenance, not because it crashed or something. I don’t have redundant power or ISPs either.
To me, docker is an abstraction layer I don’t need. VMs are good enough, and proxmox does a good job with LXCs so far.
Why would I spin up a VM and virtual network within that vm and then a container when I can just spin up a VM?
I’ve not spent time learning Docker or k8s; it seems very much a tool designed for a scale that most companies don’t operate at let alone my home lab.