2·
1 month ago@rtxn I’m no expert in networking with VirtualBox, but did you already had a look into the manual?
https://www.virtualbox.org/manual/ch06.html#network_udp_tunnel
o/1MS\o ⌨️🐧 | #WeAreNatenom
SELECT
‘#bicycle 🚴♂️’
,‘#databases’
,‘#sql’
,‘#selfhosting’
,‘#Linux 🐧’
,‘Team vi’
,‘#mdRzA’
,‘Generation X’
FROM life
WHERE 0 = 0
;
- 0 Posts
- 22 Comments
Joined 4 years ago
Cake day: May 5th, 2022
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
6·2 months agoDas Schild “Gehwegschäden” ist auch sehr passend dazu.
🙃
@Cenzorrll For comparison of LVM with BTRFS there are several article available.
https://www.baeldung.com/linux/btrfs-lvm
https://fedoramagazine.org/choose-between-btrfs-and-lvm-ext4/From personal experience, I have an encrypted software RAID1 with mdadm and BTRFS on top.
Is not LVM, but same direction.
Before implementing this, I made some tests.
Related to encryption, when RAID1 was implemented with BTRFS, the CPU load had been doubled, because every BTRFS disk has an encryption process.
With software RAID1, only one encryption process is there.
@irmadlad You are welcome.
The Arch Wiki also has a lot information about Power Management.
And I would say, most of them are independent if Arch Linux is used or not.
@irmadlad That have also been my intentions, when I created the udev rules.
They are most generic and I use them on several systems for reducing some small power consumption.
Example: enabling of PCI power managementACTION=="add|change", \\ SUBSYSTEM=="pci", \\ ATTR{power/control}="auto"The things, which you listed in your first post are from my view good topics, for getting maximum results from minimum effort.
I started at
https://wiki.archlinux.org/title/powertop
and went further from there.
@irmadlad Instead of using
--auto-tune,I used the output frompowertop --htmland created some udev rules for activating of power management functions of relevant devices during startup.
With--auto-tunesome of my USB HID devices like mice are getting not usable because of activated power management.
@androidul I would say, selfhosting is doing the best out of available possibilities.
For me it is just an 11 years old PC, which was much to good to put to waste.My intention with the example from @jwildeboer was more about the usage of Mini-PCs than about their rack mounting.
But it also shows, what could be possible with more ressources.
I personally use my previous desktop PC with an i7-4790T CPU and 32GB Ram for selfhosting.
@jwildeboer shows his homelab in his blog using some Mini-PCs.
https://jan.wildeboer.net/2025/05/Cute-Homelab/
I would suggest, when you don’t need HDDs for storage reasons, to go with a refurbished Mini-PC with as much RAM as possible.
@early_riser @jwildeboer has a blog post about using step-ca for something like this.
https://jan.wildeboer.net/2025/07/letsencrypt-homelab-stepca/
@damnthefilibuster There was just a post in my timeline about some applications for Docker Container Monitoring.
Maybe there are other alternatives, which fits better your needs:
@damnthefilibuster Is it a subjective impression or do you have information about used ressources on your device?
Are you running something like Beszel for getting information about the used ressources, especial from running containers?
https://github.com/henrygd/beszelI’m running my services with rootless podman, but I can’t compare it with docker. It’s more related to security reason.
The architecture may also be problem, when you want to use Containers (Docker, Podman). Some images are not available for all architectures.
The 3B has a 64bit ArmV8 CPU, there is a better support.I have some Odroid devices with 32bit ArmV7 CPU, where often images are not available for.
https://wiki.geekworm.com/Raspberry/_Pi/_3/_Model/_B
@bordam As far as I noticed, related to AI boom the prices for RAM and SSDs could be get more higher.
Also, the end of Windows 10 could also trigger more selling of PCs and Notebooks, which also would make pressure on RAM prices.So I think, it is better not to wait and to buy, when it is possible.
There are some articles from a german computer publication about RAM and Flash prices, unfortunately in german only.
https://heise.de/-11066715
https://heise.de/-11073558
@bordam Personally I would suggest, take so much Ram as you have money available.
If you have services relying on databases like Nextcloud (Valkey / Redis, MariaDB / PostgreSQL) more RAM could be helpful.
My current not finished setup with podman containers already takes 2 GB Ram.
Also prices for Ram and SSDs are predicted to rise or are already rising, so if you buy now, I would suggest to buy maximal large hardware parts.
@SinTan1729 Thank you, now I can better understand why you want to avoid to open the privileged ports for non-root users which makes sense for your scenario.
I’m in the easy situation, that I don’t have to think about such a scenario, because my selfhosting system is exclusive for me.
I don’t know the exact agreement with your friends, but to avoid security issues I personally would use following way:
- deny usage of all ports by firewall
- allow only necessary ports by firewall
- enable privileged ports by sysctl
So it reduces additional layers and complexity.If one of your friends would provide a service on a specific port it has to be discussed with you.
And if this is a privileged port, it is also possible.Or you can handle e.g. a web request with a rule in caddy.
@SinTan1729 How many user do you have on your machine, which could open and run a service on a privileged port?
And when there is no application, which is providing a service on a privileged port, then there is no security issue from my point of view.
And if you want to get absolutely secure, then you can restrict the access only to specific ports based on firewall rules.
https://www.digitalocean.com/community/tutorials/ufw-essentials-common-firewall-rules-and-commands#how-to-allow-all-incoming-http-and-https
@SinTan1729 Using privileged ports can be activated with a sysctl setting:
https://access.redhat.com/solutions/7044059
@filister I don’t have an arr stack running, but I’m using several podman quadlets for running successfully e.g. PostgreSQL, Nextcloud, HomeAssistant and some more.
Did you checked the journal with
journalctl --identifier=\for possible errors?
@rtxn Maybe you find the reason in the chapter for Bridged Networking.
https://www.virtualbox.org/manual/ch06.html#network_bridged
With bridged networking, Oracle VM VirtualBox uses a device driver on your host system that filters data from your physical network adapter. This driver is therefore called a net filter driver. This enables Oracle VM VirtualBox to intercept data from the physical network and inject data into it, effectively creating a new network interface in software.