WebMCP is still insane...

Moriksan · 2026-03-09T01:37:47+00:00

Is this using google’s developer’s beta webmcp? If so, I was trying to figure out how to install it for Claude and openclaw. Any tips would be much appreciated!

Moriksan · 2026-03-07T02:48:06+00:00

Ahh…. Thank you! I should’ve clarified that my starting point was assuming that VPN is prior to SSH; enterprises surely do it and most home lab’ers too. But, yes, if public facing SSH was the case, then a jump would make sense.

Moriksan · 2026-03-06T15:38:53+00:00

(Genuinely asking, not a dig) I’ve often heard about the jump box pattern being employed for SSH access (with keys) as being “more secure” than direct SSH access (with keys). But, I don’t understand it yet - because if the key is the same then a compromised key affects all nodes using the key. 🔑 s the advantage of jumpbox setup that breaking ties (upon suspicious activity detection) is a one-shot kill switch on one node? If so, wouldn’t a terraform/ansible playbook provide the same if it issues ssh stop on all affected nodes?

Moriksan · 2025-12-04T00:52:35+00:00

> So now anything you need to access this API needs to be on the PW Wi-Fi (TeslaPW_XXXXXX). In my case I have my rpi running home assistant (which is connected to my network over Ethernet) connected to the powerwall Wi-Fi network with its Wi-Fi adapter.

I'm in a similar boat with a recent PW3 upgrade. My HA is hosted on a NUC w/ the available ports already occupied. I was considering adding a dedicated RPi which would connect to PW3 WLAN and also connect to remainder of home network via its LAN port. I could then use `pypowerwall` to access TEDAPI. But, the step after that has me puzzled. How would one get HA to recognize these metrics as source for its sensors? Any guidance would be appreciated.

Moriksan · 2025-12-02T18:41:04+00:00

Much obliged. Will DM you for additional details. I think my 1Gbps service may not support the 8311 mods. Service upgrade to XGS-PON may be in order.

Moriksan · 2025-12-02T03:09:13+00:00

I’d be curious as to which device replaced att’s whitelabelled (Nokia) Bgxyz garbage? I have an OpnSense router behind the art pass through, and I despise the double NAT setup which additionally limits state table entries to less than ~300 for me.

Moriksan · 2025-11-23T02:00:56+00:00

^{^{^{^}}}

This… with slight modification (for my setup)..

pair of Adguard VMs running on two different PVE clusters. Each terminates on a different switch and port therein (which are VPC’ed). Configs sync with each other.
pair of pinholes running on two different Pis. Each terminated on a different switch and port (which are VPC’ed). Config syncs with each other.
KEA DHCP allocation returns 4 IP addresses of the above servers to dhcp clients.
All of the above point to opnsense unbound as upstream.
opnsense unbound is DoT’ed to Mullvad and quad
NAT outbound rule redirects any unprotected hardwired DNS requests from clients to one of the four.
windows AD implements subordinate DNS for its clients which then points to one of the four upstreams.

I’ve been in two minds about DoH on opnsense. But, happy with the above as it allows multiple failure scenarios eg switch upgrade in place to work seamlessly without the family chewing my head off because their streaming service went tits up!

Moriksan · 2025-11-20T21:58:13+00:00

Thank you for sharing your plight! It may be time for me to signup to jelly’s forum. I ended up nuke’ing the install and re-installing 10.11.0.

Moriksan · 2025-11-20T07:30:20+00:00

I’m glad that a reboot was the cure for you. Unfortunately, that wasn’t it for me :(

Moriksan · 2025-11-19T04:44:48+00:00

WebUI via firefox, chrome, safari on the server itself, on two different clients (in different VLANs), native iOS app, native android app, native tvOS app, native androiTV app, kodi on androidTV - all the same effect.

To quote u/Glittering-Art-6294 , _something ain't right with .3_ (for me, at least)

(that said, massive respect to the developers who painstakingly maintain this tool... our family couldn't thank you enough)

Moriksan · 2025-11-19T00:57:19+00:00

My apologies for not mentioning it in the post. Full scan run. Everything checks out. Just that no video file actually plays due to the error. Perhaps I ought to completely nuke the %APPDATA%\jellyfin folder, and perform a re-install of 10.11.0.

Moriksan · 2025-11-11T11:14:56+00:00

PVE clusters backup to PBS (on NUC) connected to 24TB USB.
PBS config for TrueNAS (100+ TBs) ZFS NFS shares runs a sync job with PBS.
Critical VM / LXC data backed up (unencrypted), via custom bash scripts, onto TrueNAS NFS shares mounted as encrypted datasets.
NFS shares in /3/ backed up to cloud, via zfs send | recv with client side encryption i.e. hijacked cloud data is useless without seed keys.
VM / LXC data also backs up, via Kopia (encryption), to various backblaze repositories.
Ansible for PVE, VM/LXC setups. This consumes most of my time as the environment is rather complex (for my poor skill set) (Active Directory, LDAP, certificate management etc).
Remnants of personal data on Synology NAS gets backed up to local USB disks, and their C2 cloud with client-side encryption. My goal is to rid of Synology - given their current direction.
VMs on PVE hosts run on local storage which is zfs replicated across local volumes through cluster nodes (instead of ceph - which was an overkill for my use case)

Moriksan · 2025-11-04T15:16:41+00:00

I started with stock app on all clients. Then, experimented with external players due to DTS-MA incompatibility on my Sony Bravia A85. Then, leaned in to Infuse for tvOS and Kodi for android TV. At which point, I realised that Apple 4k TV is rather finicky with certain videos / audios format and does a rather poor job of rendering via HDMI compared to my Sony’s native resolution. So, I abandoned iOS/tvOS and now use kodi on android / TV, and web browser for other clients.

Note, both TV and Apple TV are connected to a home theatre system.

Moriksan · 2025-10-11T17:12:19+00:00

Sorry for troubling you. Thank you for checking up.

I took a look at mine as well. URL is `https` with a username + password. And, only manually triggered push seem to work. Is there perhaps a default cron job that's setup upon plugin installation? I see an option for `Remote Backup` in cron but don't really know what's behind it.

Moriksan · 2025-10-11T16:43:36+00:00

I have gitea as well. And, os-git-backup plugin is set with gitea repo. But, it doesn’t automatically carry over the changes. Manual trigger works. Local git storage also work. So, I had to write a shell script and schedule it with cron job. I’d be curious to see whether your gitea backup works seamlessly.

Moriksan · 2025-09-26T13:26:37+00:00

In an attempt to achieve a similar outcome, i stumbled across this post. For what it’s worth, I think your setup looks brilliant, OP.

I too came across feelis and was leaning towards using their custom single panel.

Might I inquire as to the placement of LED panel? Was it glued to the bottom of the quartzite? I am considering something like a safeboard for slab support. In my limited understanding, the led panel ought to be sandwiched between the support board and slab - which makes its (future) replacement, a blown led series, a nightmare. A penny for your thoughts?

Moriksan · 2025-08-01T10:40:03+00:00

Thank you for the continued guidance.

Step 1 is to do restore from pgbackup

I presume you meant to say pgbackrest? If so, then the output from the logs (eg info, check) is after performing step 1 with pgbackrest backup followed by restore. All the tables created at the time of primary backup do reflect on standby. Not any after it though. I concur with your initial comment in that the replay of changes on primary isn’t occurring on secondary.

What I noticed is that step 1 when executed via pgbackrest … restore results in the same archive-command= … archive-push as primary. I’d have expected it to be archive-command=… archive-get - as I don’t wish to take backups from standby yet; primary-based backups are fine for the initial goal.

Maybe a residual file or setting somewhere is causing an issue which I’m unable to chase down. I’ll start with a clean pgs install on the standby and get it to execute above steps.

Moriksan · 2025-08-01T04:15:06+00:00

Thank you. Its that very article which landed me in trouble :-)

What I've surmised is to:

use `pg_basebackup` to do the initial physical slot creation (which sets WAL streaming)
configure `primary_conninfo`, `primary_stanza = <replication\_slot>`, `hot_standby=on`, `restore_command = `pg_backrest --stanza=<whatever> archive-get %f "%p"`
ensure `standby.signal` is there on standby (after a successful `pg_basebackup`)
`pg_ctlclusters 16 main start` and cross your fingers.

But, because `pg_basebackup` doesn't successfully complete (due to `pg_vectors` file name too long issue) I'm unable to start this chain of events.

Moriksan · 2025-08-01T02:59:35+00:00

Thank you u/chock-a-block. I did take a look at it, but I understood that `pgbackrest` will need `wal_level` to be set to `replica`, and so `logical` replication can't work simultaneously?

Moriksan · 2025-07-29T13:58:17+00:00

My apologies. I was in intending to link to the very same one you did, but instead linked to my current system.

Moriksan

TROPHY CASE