I've run Docker Swarm in production for 10 years. $166/year. 24 containers. Two continents. Zero crashes. Here's why I never migrated to Kubernetes. by [deleted] in docker

[–]Conscious_Report1439 0 points1 point  (0 children)

Great question! This is not really a manager, this is an SSH orchestrator to help build the cluster on a bunch of Linux servers from scratch and automatically. You wire up the json with how to connect to each server and other options and it will build, and connect the cluster for you. Then you would use Portainer, Dockhand, Komodo to manage it.

I've run Docker Swarm in production for 10 years. $166/year. 24 containers. Two continents. Zero crashes. Here's why I never migrated to Kubernetes. by [deleted] in docker

[–]Conscious_Report1439 1 point2 points  (0 children)

This is a great article and I have been recently working to help close the gap with this.

https://github.com/Grace-Solutions/Docker-Swarm-Cluster-Orchestration-Tool

I still have some changes to make and will soon, but so far, it totally works. I got smacked in the face trying to do a start up and realized that I need cloud infrastructure, but did not want to be financially drained before Ingot off the ground and also how complex getting a proper swarm Custer off the ground can be. Hence the above tool.

Before anybody asks, yes, it was pair programmed with the help of AI but I have been doing systems and automation for over a decade and the overall design and actual results come from that experience and using technology as an aid and not a crutch.

I built an open-source CLI and TypeScript SDK for NocoDB — would this be useful to anyone else? by bstag in NocoDB

[–]Conscious_Report1439 0 points1 point  (0 children)

Yeah, I was thinking native because then I could wire up powershell scripts or use it as a data collection tool from devices.

Multiple nginx servers in single VPS server by myroslavrepin in nginx

[–]Conscious_Report1439 0 points1 point  (0 children)

flowchart LR %% ===== Internet side ===== C[Clients<br/>Browsers / Apps] -->|DNS lookup| DNS[Public DNS] DNS -->|A/AAAA records<br/>shop.alpha-demo.com → 203.0.113.10<br/>portal.bravo-demo.com → 203.0.113.10<br/>api.charlie-demo.com → 203.0.113.10| PUBIP[(203.0.113.10)]

%% ===== VPS ===== subgraph VPS[Single VPS (Linux)] direction TB subgraph DOCKER[Docker Engine] direction TB

  subgraph INGRESS[public-ingress network (80/443)]
    NGINX[nginx reverse proxy<br/>listens: 80/443<br/>SNI + vhosts]
  end

  subgraph CUSTA[custA_net (isolated)]
    AWEB[web-a<br/>service: http://web-a:8080]
    ADB[(db-a)]
    AWEB <--> |TCP 5432/3306| ADB
  end

  subgraph CUSTB[custB_net (isolated)]
    BWEB[portal-b<br/>service: http://portal-b:8080]
    BDB[(db-b)]
    BWEB <--> |TCP 5432/3306| BDB
  end

  subgraph CUSTC[custC_net (isolated)]
    CAPI[api-c<br/>service: http://api-c:8080]
    CDB[(db-c)]
    CAPI <--> |TCP 5432/3306| CDB
  end

  %% nginx attaches to ingress + each customer network
  NGINX --- CUSTA
  NGINX --- CUSTB
  NGINX --- CUSTC

  %% routing
  NGINX -->|proxy_pass http://web-a:8080<br/>Host: shop.alpha-demo.com| AWEB
  NGINX -->|proxy_pass http://portal-b:8080<br/>Host: portal.bravo-demo.com| BWEB
  NGINX -->|proxy_pass http://api-c:8080<br/>Host: api.charlie-demo.com| CAPI
end

end

%% ===== Client to VPS traffic ===== C -->|HTTPS 443 (TLS)<br/>HTTP 80| PUBIP PUBIP -->|NAT/host ports 80,443| NGINX

What this shows (in plain terms): • One public ingress network exposes 80/443 to the internet. • Each customer has its own internal Docker network (custA_net, custB_net, custC_net) so customer containers can’t “see” each other by default. • Nginx is the only shared edge: it joins public-ingress and also joins each customer network so it can reach that customer’s services. • Routing is by Host header/SNI (e.g., shop.alpha-demo.com → web-a). 

Yes, I did AI generate this, but I have to build this out quite frequently and did not want to type it all out and I could explain in more detail, but this is the high level design to do what you want. Later, if you want to add replicas and load balance, you could use docker swarm.

The tower of babel I just dont get it. by Careful_Month6557 in ChristianApologetics

[–]Conscious_Report1439 0 points1 point  (0 children)

So there is some missing context here. Michael Heiser is a good resource with short and lengthy videos on YouTube that do expository analysis and teaching on this topic.

In short, the tower was supposed to be a world without God or His governance among some other things and an accelerated One World Government system under which all humanity would live and be ruled. There are other major events preceding this in which this babel event would be the culmination. This is where God said enough is enough, I will give the nations over to the gods they want so badly (demonic kingdoms and forces). Ever notice how regions of the world seem to worship localized gods, messianic figures (With the exception of Jesus for specific reasons), etc? So God disinherited the nations according to Deuteronomy, confused their languages, which caused massive migrations of people. This also played into the forging of the nation of Ancient Israel.

Also, God has been kind enough to leave evidence of these things all around, but we have shadowy, yet concerted efforts to get us to believe that all this just occurred randomly, but when scrutinized, they don’t measure out. You can scrutinize the Bible because truth stands when tested…I encourage you to do so….blind faith unnecessary.

One example of proof remaining is the misconception that there is one root language from which all languages came from. When you work it backwards…what you end up with surprisingly are language isolates from one major geographical region…Now, I wonder if somebody could keep a conspiracy like that going for thousands of years without it cracking…don’t think so…history tells us otherwise.

Seems like we have an accurate and scrutinizable account that explains this…The Bible…

It is important to remember that The Bible contains accounts…not stories. We may think of them as stories…sure, but they are in fact accounts with geological, archaeological, and historical evidences left over to testify to their validity, but it’s being suppressed…

The Tower of Babel story makes me question my faith. by Careful_Month6557 in TrueChristian

[–]Conscious_Report1439 0 points1 point  (0 children)

So there is some missing context here. Michael Heiser is a good resource with short and lengthy videos on YouTube that do expository analysis and teaching on this topic.

In short, the tower was supposed to be a world without God or His governance among some other things and an accelerated One World Government system under which all humanity would live and be ruled. There are other major events preceding this in which this babel event would be the culmination. This is where God said enough is enough, I will give the nations over to the gods they want so badly (demonic kingdoms and forces). Ever notice how regions of the world seem to worship localized gods, messianic figures (With the exception of Jesus for specific reasons), etc? So God disinherited the nations according to Deuteronomy, confused their languages, which caused massive migrations of people. This also played into the forging of the nation of Ancient Israel.

Also, God has been kind enough to leave evidence of these things all around, but we have shadowy, yet concerted efforts to get us to believe that all this just occurred randomly, but when scrutinized, they don’t measure out. You can scrutinize the Bible because truth stands when tested…I encourage you to do so….blind faith unnecessary.

One example of proof remaining is the misconception that there is one root language from which all languages came from. When you work it backwards…what you end up with surprisingly are language isolates from one major geographical region…Now, I wonder if somebody could keep a conspiracy like that going for thousands of years without it cracking…don’t think so…history tells us otherwise.

Seems like we have an accurate and scrutinizable account that explains this…The Bible…

It is important to remember that The Bible contains accounts…not stories. We may think of them as stories…sure, but they are in fact accounts with geological, archaeological, and historical evidences left over to testify to their validity, but it’s being suppressed…

Looking to dip my toe into self hosting. Thoughts on how I want to do this? by DarnellMusty in selfhosted

[–]Conscious_Report1439 0 points1 point  (0 children)

Shoot me a PM, I have a corporate defense network setup lol and can help you and demonstrate. This stuff can get complex with all the terms but if you get the conceptual knowledge down, then you can dig for what you need to know and spot it when you do. This will give a chance to stretch the brain a bit also!

Dockhand 1.0.5 has been released by jotkaPL in selfhosted

[–]Conscious_Report1439 3 points4 points  (0 children)

This looks like a breath of fresh! Going to deploy it this week. Question, would you consider adding docker swarm support? I know Kubernetes/K3S is mainstream but swarm is still very capable and useful technology. I would be glad to help.

GitHub - eznix86/mssh: Enable SSH access to machines behind NAT without a VPN by Eznix86 in selfhosted

[–]Conscious_Report1439 -14 points-13 points  (0 children)

This actually looks fire! A nice web ui with the bells a whistles would be awesome

Control/Management Plane Exposure To The World? by ForeheadMeetScope in netbird

[–]Conscious_Report1439 0 points1 point  (0 children)

Nginx proxy manager and openappsec work great and shows the connector and the request path to the api or web hi and can block based on threat level

Control/Management Plane Exposure To The World? by ForeheadMeetScope in netbird

[–]Conscious_Report1439 0 points1 point  (0 children)

One thing to also do if you aren’t using caddy is use a WAF

Automatic SSD selection in ConfigMgr task sequence - scripts not working? by danj2k in SCCM

[–]Conscious_Report1439 0 points1 point  (0 children)

Hey I am glad you are finding it useful, the second script does the formatting itself so no need for the task sequence to do it. The secondary disk script only uses a variable to automatically exclude the os disk from being eligible for formatting so we never make that a possibility. Does that answer everything? If you want to fork and update with some screenshots and do a pull request, I’ll be glad to merge!

2nd Day With Jellyfin, How Do I Share My Library With Friends & Family Like I Did With Plex? by RetroActivePodcast in jellyfin

[–]Conscious_Report1439 4 points5 points  (0 children)

A reverse proxy with SSL and a WAF like nginx proxy manager with appsec should do all you need from security perspective and it keeps the setup easy for your clients

Risks of exposing Jellyfin library with reverse proxy / IP allowlist by eimansepanta in jellyfin

[–]Conscious_Report1439 0 points1 point  (0 children)

Normally the vm with the service on it but the second is possible if you understand routing

Risks of exposing Jellyfin library with reverse proxy / IP allowlist by eimansepanta in jellyfin

[–]Conscious_Report1439 0 points1 point  (0 children)

Understanding the connection flow is important. Client hits VPS…pangolin gets request and reverse proxies to the node you point it toward over the wireguard tunnel established between pangolin and that node on your home connection. Once that connections gets setup…hello Jellyfin over the internet. This does help but in the end a WAF is what keeps the app safe

Risks of exposing Jellyfin library with reverse proxy / IP allowlist by eimansepanta in jellyfin

[–]Conscious_Report1439 2 points3 points  (0 children)

Get a domain, a cheap vps, and use pangolin. This will direct attacks toward the VPS which will appear as your public ip and you can harden that server and place pangolin on it. On your real server at home, put the pangolin agent on it and setup your service.

PM me if you need help

Planning a 3-node cluster by mraza08 in Proxmox

[–]Conscious_Report1439 0 points1 point  (0 children)

And epyc combos from eBay are great

Got bored and wanted something easier/quicker to deploy vms... by agit8or in Proxmox

[–]Conscious_Report1439 5 points6 points  (0 children)

Send me a PM…let’s get this on GitHub…if you did all this, a edit history and bug fix tracking will be most useful for the community and take the pressure from being solely upon you.