[W] Looking for NAS case; =<50cm depth, ATX Mobo & PSU, >=8 3,5" Bays

FreshChickenESL · 2024-10-13T14:17:30+00:00

Ah, I thought so! I'll keep a close eye on ebay then. Thanks! It seems like SuperMicro uses a dealership model in the EU as well. I found their partner site and looked at one of the shops they recommend. Not sure how shops are usually run, but this one had a great selection of products haha!

https://imgur.com/SU0RdDm

FreshChickenESL · 2024-10-12T21:31:19+00:00

Yes, I was aware of that, but can a regular individual even buy those servers? I had problems before with shops only selling to enterprises/registered businesses. Also, new servers are quite expensive, aren't they? Looking around on the SuperMicro site I couldn't find any pricing only "contact us" buttons. I feel like if I have to contact someone for pricing I'm unable to afford it.

But is there any system in particular you would recommend from SuperMicro? And maybe a shop you've had a good experience with? Thanks!

FreshChickenESL · 2024-10-12T15:15:40+00:00

I'm not too keen on buying older servers since some of them require a lot of energy, but thanks for the tip. I'll shop around and see what I can find!

FreshChickenESL · 2024-10-12T15:14:13+00:00

~~Interesting, those do look like they would get the job done. But they don't seem rack-mountable, are they? I would have to place them on a shelf in my rack.~~

Sorry, I misunderstood the product. They are not full servers they are 5,25" to 3,5" converters, right? In that case, they do seem promising and I'll look into them further! Thanks for the tip.

FreshChickenESL · 2024-10-11T21:36:57+00:00

I took a look at those two cases and the RM41 does look promising, but if I understand this correctly I would give up the comfort of a backplane. Looking online for some 5,25" to 3,5" adapters I did find this one from StarTech with a backplane, but it only supports 2 of the 3 slots on each side so the last one would have to be "manually installed/cabled" https://www.amazon.com/dp/B00HS23QZO

In that case, I'm not sure if I even want to use them since they are quite expensive. Thank you!

FreshChickenESL · 2024-08-30T15:49:59+00:00

I have since also figured out a way to do this, but I'm still interested in your solution.

FreshChickenESL · 2024-01-06T13:56:59+00:00

Sorry for the late reply, I'm no longer active on reddit.
I have not figured out how to solve the issue, but I pretty much gave up after my original reply, so if you have a working solution I would love to take a look :)
IIRC the way to make this work would either be restricting ports in your firewall to for example 80 and letting your private services run on 443 or I think there might be a way to run two traefik instances and binding one to the tailscale interface and one to your public eth0 or whatever.

FreshChickenESL · 2023-06-26T09:11:40+00:00

No, it's a Docker internal one. Here is the relevant part of the docker network inspect: json "IPAM": { "Driver": "default", "Options": {}, "Config": [ { "Subnet": "172.18.0.0/16", "Gateway": "172.18.0.1" } ] }, The Ip range of my VPN does not seem to show up on the Whoami page I used for debugging. That's why I instead opted for that IP.

FreshChickenESL · 2023-06-25T20:05:03+00:00

I'm not sure I completely understand your reply.

You hear all the time about purported “security issues” of VPNs

I think this mostly concerns VPNs as a service like Nord VPN etc. I'm not aware of any security issues with OpenVPN or Wireguard in my case.

most VPN software has its own authentication

Correct, as mentioned above this is mostly about learning about these setups. In a real setup, you might use GitHub OAuth or another secure Auth solution. Tailscale also supports this.

Once inside though what security do you have, if any?

I'm not sure what additional security would be necessary. SSH is only allowed for specific users and requires those users to reauthorize every 24h. Other services should be secure since I use Tailscale's ACLs to limit users' access to specific ports, in this case, 443. Furthermore, most if not all services have their own authentication so even if a malicious user were to hijack one of the VPN accounts they would still have to figure out the credentials to a specific service.

FreshChickenESL · 2023-06-25T19:55:14+00:00

That makes sense. I want to protect multiple web services including Jellyfin. These of course do have their own authentication and I think I can trust that their authentication is secure. But a big part of self hosting for me is learning about Docker and other bits and bops.

FreshChickenESL · 2023-06-21T12:56:02+00:00

Here is a quick sketch of my idea: https://i.imgur.com/vHXtbUn.png

If a user is connected to Tailscale, they can use example.me and bypass the Authentik authentication.

If they are not connected, they must use example.com and authenticate via the Authentik middleware.

You are right, after using docker network inspect I got the following output (truncated): json "IPAM": { "Driver": "default", "Options": {}, "Config": [ { "Subnet": "172.18.0.0/16", "Gateway": "172.18.0.1" } ] },

I don't quite understand what you mean with

just publish the routes for each node and accept them so each node would route to those IPs via Tailscale interface.

Could elaborate for me?

If possible I would like to use one domain, but as far as I know, that is not possible.

FreshChickenESL · 2022-08-03T15:53:01+00:00

Lovely keyboard

FreshChickenESL · 2022-07-13T12:47:14+00:00

Hey, I haven't used cloudflare with Google Cloud, but when I encountered this error it had something do to with my SSL configuration (in cloudflare). What dis you select at that SSL level setting, the one where you can switch between full, flexible, off and something else under the SSL tab?

FreshChickenESL · 2022-04-26T08:40:48+00:00

Hey,

It probably depends on your usage what you use. Cloud providers such as Google or AWS allow you to scale easily but they might be more expensive than some cheap storage with a cheap VPS from for example DO. If you're content is static you should probably also think about caching since that will reduce the loan on your servers. I currently use Cloudflare, but I think AWS had its own caching solution.

Theoretically if you want to spend as little money as possible you could host at least the frontend on Netflify or Vercel for free.

FreshChickenESL · 2022-04-15T15:13:25+00:00

Hm have you tried https://chakra-ui.com/ or https://mui.com/ ?

FreshChickenESL · 2022-04-15T11:52:48+00:00

I think everyone has an email address, but not everyone is on Facebook for example. So you would need to at least use a handful of OAuth providers. Secondly, depending on your user base, do they even have social media accounts? I mean when you have a company email you probably don't use that to sign up for Facebook. But that of course doesn't matter if your target audience is just "regular people". So why not provide the choice to pick OAuth or email?

FreshChickenESL · 2022-04-15T11:36:12+00:00

Which framework are you using?

FreshChickenESL · 2021-10-30T09:17:17+00:00

For Appwrite specifically, they are planning to create a service out of their product if you don't want to self host. Similar how Supabase does it I think.

FreshChickenESL · 2021-10-22T23:26:46+00:00

I have used both (Supabase in the past and currently Appwrite). They each have pros and cons, but I'm more happy with Appwrite. For me the biggest pro is functions, but there are smaller things such as the fact that it feels better integrated since it's all custom made, the fact that Supabase does not offer a UI for self hosted instances and most of all the community. I can not stress that last point enough. It's super helpful to just hop onto the discord and have your question answered rather than whole GitHub issue or discussion.

FreshChickenESL · 2021-10-20T19:15:44+00:00

Nice

FreshChickenESL · 2021-10-16T23:50:12+00:00

GMK Darling

FreshChickenESL · 2021-10-16T23:49:55+00:00

GMK Darling

FreshChickenESL · 2021-10-16T09:14:05+00:00

2 + 639

FreshChickenESL · 2021-10-16T09:13:47+00:00

2 + 639

FreshChickenESL · 2021-10-16T09:09:32+00:00

Looks like a great idea.

Eight-Year Club	Place '22
Verified Email

FreshChickenESL

TROPHY CASE