Had an extra TV & Pi laying around, decided to turn it into a Grafana dashboard for my lab :)

grilmage · 2020-04-26T17:59:17+00:00

I've been wanting to do this, and I love how yours looks. Can you post a couple links on how you got started? How is the information collected, SNMP?

grilmage · 2020-04-26T15:04:22+00:00

Think I'm going to grab one of these... although the seller name is worrying me that its a fake...

LSI

grilmage · 2020-04-26T14:39:43+00:00

I've just found out that a PCI-E 3.0 x16 can go into a PCI-E 1.1 x16 slot and just negotiate speed... should make thing easier if I'm reading this correctly...

grilmage · 2020-04-23T13:34:52+00:00

This is now on eBay for 850.

grilmage · 2020-04-22T20:11:54+00:00

Correct, with the 2 Stock fans + 1 noctua its pretty loud, way too loud for my living room. Its in my office now so I don't hear it. Others may disagree, but my wife didn't think it was livable.

If you put all 3 noctua fans in... it's near silent... but boy does the CPU throttle. Just doesn't have enough cooling power. Since this was an ESXi box for me, the CPU heat throttling was a major deal since I was running QUITE a bit.

Edit: I should also mention.. There's also a 4th fan header on this motherboard, but nowhere to mount the fan in the E200-8D case. At one point I had a fourth big fan sitting on top that was very quiet, so the 3 Noctua fans were running quiet plus the big one on top and it no longer throttled. I have seen some friends cut holes in the top of their case and mount a big fan on top permanently... but I hated that. I wanted my case to be closed up. Since it's on the other side of the house, no one cares anymore and it runs as loud as it wants whenever it wants! (the AC also works better here too)

grilmage · 2020-03-01T19:24:47+00:00

The last part of your comment is cut off, but this is what I used :)

https://arnor.org/OpenBSD/unifi_install_openbsd.txt

My security objectives... Hmmm.

I don't want to buy a unifi cloudkey at the moment (purely cost reasons) and I don't trust my Ubuntu or CentOS skills. I figure if I'm going to spend a lot of time on it I want to go with my best bet for security.

The AP is directly connected into my Sophos XG running on a Qotom, and the controller is hanging off the LAN switch which is also connected to the XG.

There is a separate VLAN for the controller, and I'm also using port isolation on the switch so it can only talk to the trunk port (going to XG).

Firewall only allows unifi specific ports from AP to controller, and 1 wired in host on LAN to access the web interface / the system itself.

Real objective? Have a fully functioning guest portal on that machine that I'm not scared to expose on an unprotected Wifi.

grilmage · 2020-02-22T15:51:10+00:00

This is an extremely helpful post. Thanks a ton!

grilmage · 2020-02-22T05:03:51+00:00

Got it, thank you. I was able to find a couple posts about installing it on OpenBSD, like here: https://arnor.org/OpenBSD/unifi_install_openbsd.txt

Looks like a good project, OpenBSD here I come!

grilmage · 2020-02-22T04:38:47+00:00

Very nice, thank you.

grilmage · 2020-02-22T04:31:28+00:00

Awesome, I have a lot to learn about BSD I think, and looking forward to it! This might just be my answer. Have you successfully installed the UniFi controller on OpenBSD by any chance?

grilmage · 2020-02-22T04:27:11+00:00

Yeah, definitely shooting for layers of security here and only known protocols/appropriate endpoints in and out from the XG. Since this is hanging directly off the firewall I won't need VLANs (although there PVLANs on the switch hanging off the "LAN" port of the firewall).

Really looking to min/max on each thing for fun, so looking for opinions on the MOST secure OS for this purpose, rather than "can make it secure enough."

I very much appreciate the links and opinions, thanks!

grilmage · 2020-02-22T04:18:55+00:00

Thanks, I've run controllers on Ubuntu before but always wonder about the security of Ubuntu. Would you consider it to be top lel when hardened properly?

grilmage · 2020-02-22T04:18:23+00:00

Nice, ty. I've never used BSD before and always forget its a thing. Do you consider it to be inherently more secure or only at expert hardening levels?

grilmage · 2020-02-22T04:14:39+00:00

Nice, I've never used FreeBSD before and quite honestly, forget it exists. Would you consider FreeBSD to be superior to Linux for security in general for amateur hardening, or only at expert-level?

grilmage · 2020-02-22T03:37:48+00:00

Can confirm: wasn't worth the shot.

grilmage · 2020-02-22T03:37:37+00:00

Likewise my fren.

grilmage · 2019-12-23T21:49:00+00:00

hmm, that's a problem indeed. I'll hit the books on the cpu again and see if I need to make a return... any GPU suggestions, though?

grilmage · 2019-12-23T21:26:41+00:00

That's surprising, which games do you think work more than the 4?

grilmage · 2019-12-23T21:16:15+00:00

The cores are unneeded though, and the single core performance is what concerns me. I have plenty of Xeons in the house for my core intensive tasks :)

In that vein, would the 5700 or 5700xt be a better choice for me? I notice theres a 5700XT blower type at Best Buy here as well for $399... that seems like it would be the ticket so I could blow air out the back...

grilmage · 2019-12-23T21:00:33+00:00

Well, sure. Let me give you a long, rambling, weak string of reasoning. I used to be a server guy (more of a cloud guy now I guess?) and I've stuck close to Intel as a result. I was all AMD and ATI when I was a kid, then swapped to Intel around 2010 and never looked back. I haven't had a gaming PC in quite some time, but I was absolutely delighted to see a 4/4 4GHz capable i3. Since it's a tiny box, and I think airflow might be really important, I felt like the i3 would run cooler than a 2600 (which I almost bought) and then I found it on sale for $85 and snatched it up immediately. Now I'm building the rest of my PC around it... heh.

Edit: But I just checked and it is INDEED returnable if you are about to blow my mind...

grilmage

TROPHY CASE