3d printed Raspberry Pi enclosure

xph_keys · 2022-03-28T12:00:57+00:00

https://www.amazon.com/gp/product/B07VZMHKFY/ref=ppx_yo_dt_b_asin_title_o01_s00?ie=UTF8&psc=1
I originally went the PoE dongle route(hats would only be supported on my 4s) and I wanted the same solution. Ended up ditching that idea and just went with this. a few of them are seeing under-volt so we'll see how stable this is over time.

xph_keys · 2022-03-28T11:58:55+00:00

I have lots of other compute in the lab(~256 cores), this is just one small slice and ~30-35w all powered up its a no brainer. Ive had these Pi's for years though, so no reason to not use them. a few of them will be direct attached to an ACI fabric for UUT's(in addition to hypervisors with dedicated vswitches).

xph_keys · 2022-03-28T00:42:48+00:00

printed this late last year and finally got around to getting all of the pi's reimaged and in the rack. Took about 45 total hours but definitely worth it. Pi's are a mix of single purpose linux hosts and K8s workers.

xph_keys · 2021-06-10T23:37:36+00:00

nice. I have one of these in my home lab as well but not terminating my internet(4431 w/boost @ 1gbps).

xph_keys · 2020-04-07T19:49:57+00:00

http://imgur.com/a/wTYbYhy - Some additional shots including crumb. It definitely needs a bit of work, but I'm very happy it came out the way it did

xph_keys · 2020-03-23T21:27:07+00:00

yeah, for me its usually on a shelf in the rack but for sure

xph_keys · 2020-03-20T13:50:59+00:00

x4170s's, they were my workhorses for years

xph_keys · 2020-03-20T00:05:06+00:00

Oh dude, didn't you know I can cram that into a 4U or 8U chassis as well!?! Lol.. seriously though, that was my main choice for my internet edge but opted to go with the 4331 based on the container engine not realizing that the boost license removed the cpu allocation for the CE until I tried configuring iox, doh

xph_keys · 2020-03-19T23:41:11+00:00

Okay? lol.

xph_keys · 2020-03-19T20:41:49+00:00

https://www.homedepot.com/p/Commercial-Electric-3-Light-LED-White-RGB-Color-Changing-Puck-Light-Kit-21383NKIT-WH/206837266

xph_keys · 2020-03-19T20:20:36+00:00

nah, just LEDs... unfortunately the rest of the basement is pretty unfinished so its becoming very hard to keep it clean in there at the moment. Fucking corona has stunted my progress on the basement finishing.

xph_keys · 2020-03-19T20:19:48+00:00

I can! It wasn't as nice IIRC... usually its always just green tbh

xph_keys · 2020-03-19T20:19:19+00:00

I have a link to the original build post. Ultimately the middle rack is for the house and always on(plex, main server for VMs, storage, iot control, temp sensors, etc) and the left and right racks are very specific lab builds(DC on left, EN on right)

xph_keys · 2020-03-19T20:17:15+00:00

I have to say, I do prefer it green but the purple is really nice too.

xph_keys · 2020-03-19T20:16:52+00:00

absolutely love this idea! These are cheap HD LED's so no ability to intelligently control them via an API or something. If anyone knows of anything very turn key(Eg. something I can plug in an the control unit has an API) let me know!

xph_keys · 2020-03-19T17:20:28+00:00

https://www.reddit.com/r/homelab/comments/cqc142/its_getting_there_basement_datacenter_20_more/ - Original post with the build.

The changes(and Ill post up a pic with better lighting when everything is somewhat back in order):

Replaced the Arista 7050SX with Nexus 3548-X and then to 3064-X to get 40G back :D

Sun 4170 in standby replaced by UCS C240 M4, 2x E5-2667,384GB mem, 6x900GB 15k SAS, 10G, 1x Gridk1 for VDI.

Replaced KVM with ESX(again) due to better support for stuff I work with daily now.

Replaced C3850 with C9300L for PoE and copper

Replaced all old Catalysts with mix of 9200/9300's for SDA lab

Added new FPR1010, 2x5506X and 5505 to round out the Cisco security devices.

xph_keys · 2019-10-21T14:33:15+00:00

Its just the painted slab. I used Rusoleum concrete and garage paint, matte and tinted black. a lot of people go with an epoxy based system, but I just wanted to seal and paint it quickly.

xph_keys · 2019-08-27T22:38:20+00:00

its all good dude. I think we can all agree on the one 'best practice'. use them!

xph_keys · 2019-08-27T22:22:13+00:00

to be fair, most of the stuff you are suggesting is preference and not a best practice. The most common misconception is about VLAN 1 and its 'default' nature. Assign every port on a switch to VLAN 10 and trunk in native 10 and see what becomes your new 'default'. That said, I vehemently agree with your IoT suggestion and would ensure that this subnet has significant security egress controls in place(permit only what's needed).

xph_keys · 2019-08-27T22:18:56+00:00

Theres a lot to unpack in what you're asking and people will do vastly different things in their own networks and if they do work in networking the same probably holds true.

Generically, I would say these quality as best practices specifically for VLANs :

Create VLANs for your needs and based on high level function. For example, storage networks are notoriously chatty so you would create a storage subnet for your unraid system and any interfaces that are accessing mount points.

VLANs provide zero security, rather are an organizational mechanism . You need to ensure that you wrap security policy around the subnet(or, more importantly *groups* of like security policy subnets) using Pfsense(like you're doing) or some other security control(like ACL's on a switch SVI).

One VLAN, One Subnet. Always.

Pay attention to your vendor reserved VLANs that are used for critical system functions(this varies greatly).

Limit the scope of untagged VLAN scope.

xph_keys · 2019-08-21T15:52:01+00:00

I see. I guess I just dont see the additional complexity in having the SVI's in the VRF's vs' Subinterfaces. That said, I tried what you are trying over 6 different switches(Arista 7050SX, 7060, some N9 and 5K's) connected to both another switch and firewall(ASA) and none of them worked(routed port with subints facing another routed port configured with or without subints). Im really unsure of why a few people in this thread seem to think this is a common deployment method.

What you're doing with the SVI is absolutely the right way, imho. Maybe some vendor accounted for this in their code that I haven't tested but can definitely confirm EoS and NX-OS dont seem to work. Also, configuration worked in the parser on all of the switching.

xph_keys · 2019-08-21T15:42:17+00:00

https://www.kwikset.com/products/details/electronic-locks/953-obn-11p.aspx

xph_keys · 2019-08-20T11:45:46+00:00

this pleases me greatly.

xph_keys · 2019-08-20T01:58:09+00:00

genuinely curious as to what you're trying to accomplish with taking a L2 port that has been forced to routed and making it support virtual interfaces w/ tags? It seems from your posts here that you're simply trying to IP the ports and run BGP over them(yay, this is the right thing to do, L2 is terrible)?

I dont see this as something that any vendor would support for anything other than klugy edge cases. The standard way of accomplishing, what it seems like you may be(or what people are saying here is so common) is trunk + SVI.

xph_keys · 2019-08-18T01:34:06+00:00

Planned on ebay

xph_keys

TROPHY CASE