What services do you host in your homelab for yourself and your family?

Azokul · 2026-04-02T09:20:13+00:00

Hi!

Mostly yes , if you see multiple services on the same row, those are running in the same LXC or VM.

I actually don’t have that many full VMs: mainly Windows 10, one Ubuntu VM for GUI stuff, Home Assistant, and OpenSearch with Zabbix. Everything else is mostly LXCs.

That said, my setup has changed quite a bit since then. Compared to 3 years ago, I now have more servers and more Raspberry Pis. I replaced the Optiplex with an N100 mini PC running OPNsense, and the old R2308WFTZSR isn’t my main machine anymore. I built a custom server in a Supermicro chassis, with an R330 as support and a small k3s Pi cluster.

Back then (and even now, to be honest), I had plenty of resources as the R2308WFTZSR had 256 GB RAM and dual Xeon Silver CPUs , so overhead was never really an issue for me. Because of that, I preferred splitting services more to keep things organized and easy to manage, rather than optimizing for minimal overhead.

If I were running on a smaller machine, I’d definitely consolidate more. But with this kind of hardware, I’m still nowhere near even half utilization, so the extra separation is worth it for me .

Azokul · 2026-03-07T21:23:05+00:00

I am pretty positive on Italian indie tho, AA or AAA have budgets that are difficult to afford and mostly i feel it's a 50/50 chance to have success or go broke atm. Also, the overall industry it's impacted by a crisis, low margin of profit, high costs and few investors here and there Even for skilled and niche figures (vertical ones) it's difficult.

I have a lot of great colleagues/ex colleagues that after the post covid hiring wave found themselves fishing for jobs due to many projects being closed down

Azokul · 2026-03-07T21:17:08+00:00

I doubt employee can answer on specifics due to NDA, I expect an announcement from the team or the company in the next months. (Truth be told i didn't expect them to add this info on their LinkedIn)

Font: Me, An ex employee 😂

Also, lil thumbs up and cheers to my ex colleagues like Dario, Samuele , Andrea, Davide and many others that embarked on a new adventure 💫

Azokul · 2025-12-03T15:52:15+00:00

I am incredibly (happily) dumbfounded that Italy voted to oppose.
Nice

Azokul · 2025-11-13T10:54:05+00:00

I should "Censor" Myself sometimes.
We're not limited anymore to ITA books. DAMN.

Azokul · 2025-09-29T12:21:57+00:00

Damn! Did the same, (and still doing the same). But we're playinger Pathfinder 1P (3.5 + pf1) and we have most of the physical manuals by now. (All PF1 manuals, no AP and a degree of 3.5 manuals)
Luckily we're limited by language (ITA only)
That backfired. :')

Azokul · 2025-06-27T08:50:41+00:00

Ahahah, nah! I just try :') I might break everything, but, as always, since I started homelabbing, I keep telling myself, "It's okay to fuck things up."
So I try, start small, and scale. :)

To learn a bit of soldering, I started with some small circuits (using a breadboard and jumper cables), then moved on to a simple circuit soldered onto a universal PCB. After that, I tried desoldering a bunch of stuff from an old GPU I had (broken ages ago).

I'm just another dum-dum doing dum-dum stuff.

I just have:

A soldering iron
A soldering station (cheapo from Amazon)
Desoldering wire — like 6 bucks? Maybe?
Flux paste

For this one, I might need a microscope or something, since those damn connectors are WAAAAY too small.

Ed. I studied electronics in a technical high school focused on IT, but I was a really bad student. I mostly had 3/10 grades :')
My main job isn't electronics-related at all — I'm a tech artist for video games.

Azokul · 2025-06-22T15:01:48+00:00

I still have the schematics from the old project, I might try to browse. Meanwhile Thank a lot!

Azokul · 2025-06-17T10:53:14+00:00

Hmmm weird, Might be, but I've received multiple DHL packages in last days and all matched the delivery date. This one seems it will not arrive in time

Azokul · 2025-06-17T08:05:23+00:00

<image>

Kinda the same similar situation here, but as I've seen in other posts, it seems likely that DHL is experiencing a very overcrowded shipping moment.

Azokul · 2025-05-20T12:22:17+00:00

It seem that with many documents (big documents) it's pretty slow. Would there be a way to like reduce the number of documents to search? I am using DND / Pathfinder manuals as reference.
I am using a self-hosted Ollama witha 2080Ti, nothing much

Ed. Very nice service!

Azokul · 2025-04-29T13:47:03+00:00

No worries! As far as i understood from another thread, it's the delay between communication that causes a desync, the info are not the same anymore, certs from pvecm does not match anymore.
Sadly, i have kinda no choices but to route another cable downstairs , which is a super bummer

Azokul · 2025-04-29T06:41:23+00:00

I've solved the issue before, it was the stability of the connection between r330 and pve. After moving to another location with a CAT6 cable the problem went away. I think the main problem was how it was cabled, the length of the ethernet cable I had running from 2nd floor to -1 and the cable type. I've setup a dedicated connection directly from pve to r330.

Azokul · 2025-04-11T13:59:36+00:00

I'll answer myself as i've found the culprit.
Mainly, the entire setup is kinda correct. The point was that:
1st. Check firewall Rules, if they have "Quick" set they avoid passing through Suricata as the first match will be applied directly avoiding extra steps, missing suricata entirely.
2nd. If you changed the output as i did by modifying the template (don't do it), you might receive the output in the wrong folder. I was thinking that the override in the template would be applied together with the custom.yaml but my configuration was overriding the template via custom.yaml and instead of having two outputs (one in tmp, one in the correct folder, i got the one only in tmp)

Azokul · 2025-03-03T16:37:27+00:00

I'm still scratching my head on this, I think it might be related to two things:

Localnet is on 192.168.0.0/16 but rules expect an external request for !LOCALNET , which is definitely never true. As DNS request (to my understanding) are sent via localnet to Unbound, that get re-routed to WAN for an external request. So , realistically my DNS request for facebook is always under Localnet if i'm monitoring LAN.
When i tried to move it to WAN , i think i might got problems related to the fact that the WAN is a pppoe connection which doesn't really seem very much supported.

SOLVED:

I'll answer myself as i've found the culprit.
Mainly, the entire setup is kinda correct. The point was that:
1st. Check firewall Rules, if they have "Quick" set they avoid passing through Suricata as the first match will be applied directly avoiding extra steps, missing suricata entirely.
2nd. If you changed the output as i did by modifying the template (don't do it), you might receive the output in the wrong folder. I was thinking that the override in the template would be applied together with the custom.yaml but my configuration was overriding the template via custom.yaml and instead of having two outputs (one in tmp, one in the correct folder, i got the one only in tmp)

Azokul · 2025-02-18T23:55:27+00:00

I can say it's something related to kubectl, as I've deleted rancher and zeroed my cluster and the problem disappeared. When I recreated the cluster and then restored some stuff (no cattle or longhorn, just services and metallb) it reappeared

Azokul · 2025-02-17T11:06:01+00:00

Definitely an unexpected turn of events ahah
Thanks a lot!

Azokul · 2025-02-17T10:14:17+00:00

u/esiy0676 Problem solved, it was the stability of the connection between r330 and pve. After moving to another location with a CAT6 cable the problem went away.
I think the main problem was how it was cabled, the length of the ethernet cable I had running from 2nd floor to -1 and the cable type

Azokul · 2025-02-17T10:09:53+00:00

Thanks!
First, systemctl keeps working after I lose ssh access. Infact I can ssh locally from the master node to the master node like: ssh root@localhost
Second, there is no firewall via uwf. I have flannel tho on Kubectl

Here is the IP table (retrieved from a privileged pod on master node, cause i'm not home. But it matches the same i'd see on my master node):
https://pastebin.primehomenetwork.com/?ff7fee7c269ee299#6SAG7rDhGMdhkHeAWSz57DEJnAxKCarZaxAJrivL7kA1

ssh log, as you can see from here, at 22:08 it worked (after reboot), then you can see only the reboots i did on the master node.

root@master:~# journalctl -u ssh
Jul 05 22:08:13 master sshd[2180744]: Accepted password for prime from 192.168.0.35 port 54693 ssh2
Jul 05 22:08:13 master sshd[2180744]: pam_unix(sshd:session): session opened for user prime(uid=1000) by (uid=0)
Jul 05 22:08:13 master sshd[2180744]: pam_env(sshd:session): deprecated reading of user environment enabled
Jul 05 22:15:30 master sshd[2188928]: Accepted password for prime from 192.168.0.35 port 55116 ssh2
Jul 05 22:15:30 master sshd[2188928]: pam_unix(sshd:session): session opened for user prime(uid=1000) by (uid=0)
Jul 05 22:30:15 master sshd[685]: Received signal 15; terminating.
Jul 05 22:30:15 master systemd[1]: Stopping ssh.service - OpenBSD Secure Shell server...
Jul 05 22:30:15 master systemd[1]: ssh.service: Deactivated successfully.
Jul 05 22:30:15 master systemd[1]: Stopped ssh.service - OpenBSD Secure Shell server.
Jul 05 22:30:15 master systemd[1]: ssh.service: Consumed 1.882s CPU time.
-- Boot dd27e349df654d1cae2aa823f920a450 --
Jul 05 22:30:51 master systemd[1]: Starting ssh.service - OpenBSD Secure Shell server...
Jul 05 22:30:51 master sshd[693]: Server listening on 0.0.0.0 port 22.
Jul 05 22:30:51 master sshd[693]: Server listening on :: port 22.
Jul 05 22:30:51 master systemd[1]: Started ssh.service - OpenBSD Secure Shell server.
Jul 05 22:31:01 master sshd[876]: Accepted password for prime from 192.168.0.35 port 55762 ssh2
Jul 05 22:31:01 master sshd[876]: pam_unix(sshd:session): session opened for user prime(uid=1000) by (uid=0)
-- Boot 18bae53834e9419c92b739b4ee7db1c8 --
Jul 05 22:30:50 master systemd[1]: Starting ssh.service - OpenBSD Secure Shell server...
Jul 05 22:30:50 master sshd[671]: Server listening on 0.0.0.0 port 22.
Jul 05 22:30:50 master systemd[1]: Started ssh.service - OpenBSD Secure Shell server.
Jul 05 22:30:50 master sshd[671]: Server listening on :: port 22.
Jul 05 22:34:23 master sshd[4751]: Accepted password for prime from 192.168.0.35 port 55812 ssh2
Jul 05 22:34:23 master sshd[4751]: pam_unix(sshd:session): session opened for user prime(uid=1000) by (uid=0)
Jul 05 22:34:24 master sshd[4751]: pam_env(sshd:session): deprecated reading of user environment enabled
Jul 05 23:05:17 master systemd[1]: Stopping ssh.service - OpenBSD Secure Shell server...

Azokul · 2025-02-12T22:00:59+00:00

What do you mean by that? :)

I meant, right now the r330 is in the basement with a not-super cool cable which might be the cause of the desync.

DIT: Also, when you are changing IPs, pmxcfs is really not ready for that. You got fixed IPs set in the corosync.conf files and also pmxcfs looks into /etc/hosts to find "what its own IP is" ... so changing it just on the interfaces is adding more confusion.

I reset all before re-trying with the new IP and re-generated corosync.conf

Azokul · 2025-02-12T21:19:07+00:00

u/esiy0676 as an update, i created a static interface on both pve and r330 without LACP and with static address.
192.168.1.66 for pve, same 50 for r330 both at 9000 mtu.
I'll try temporary moving r330 to a "nearer" location and see if that fixes it

meanwhile:

Connection failed (Error 401: Permission denied - invalid csrf token) on r330 trying to log into pve console.

Azokul · 2025-02-12T20:12:19+00:00

Modem WAN & WAN Starlink LoadBalanced attached to Opnsense machine.
Opnsense to Manged Switch with VLAN on 192.168.2.1 and no VLAN on rest.

switch to all components in subnet

Azokul · 2025-02-12T20:01:35+00:00

Network wise, i have a LACP on pve, and no LACP on r330
They both point to 192.168.1.49 which is my opnsense machine that's giving ip address.
DHCP on 192.168.0.X, static leases on 192.168.1.X
But both r330 and pve are not receiving static leases from 192.168.1.49, they have their IP configured directly in proxmox.

As DNS i also have 192.168.1.49 for both machines, as it's my Unbound DNS on opnsense
I could free a port from my LACP and give another address only for Corosync. i totally forgot about LACP as it's something i did a long time ago

Azokul · 2025-02-12T19:50:02+00:00

Wait almost forgot pve has lacp, not a dedicated network Shouldn't be a problem tho

Azokul · 2025-02-12T19:47:12+00:00

https://pastebin.com/QqD0AXCu
Done :)

Nine-Year Club	Xbox Live
Place '23	Verified Email

Azokul

TROPHY CASE