Build
I have been asked about my design, and therefore – this post. The heavy lifting is by Ghost CRM. I then added some code for the TOC (Table of Content), Share on Social Media buttons, Copy to the Clipboard and some language based highlight color for the code segments, logo, background color ...
Docker
The VM clearly wins in terms of flexibility and security. The KVM VM is much better isolated from the host than the CT, can have full root rights, use features such as GPU pass-through and supports live migration.
Basics
Make it small, use Alpine images. The smallest of them all is probably Alpine. I also included notes on Dockge and Portainer. For most of my VM apps Alpine is more than enough. It's small because it's lacking the bloat from GNU.
MyNewLab
Use Ansible to ensure that your nodes, VMs, and containers (CTs) are always up-to-date. You can create multiple playbooks and execute them with a single command or through a script.
Build
After a long time, a totally new under the hood, Pi-hole is here. This is an update to my old post, A redundant DNS - Pi-Stack. This HA DNS will use Pi-hole, Unbound, Nebula-sync and keepalived.
Build
The Koozali SME Server is a server and gateway and an industrial-strength communications server that optionally allows all the computers on your network to share a single Internet connection. A FOSS server for small – medium-sized enterprises. Koozali SME Server 11 Alpha1 released on Feb 4th 2025.
Basics
ZFS is the new normal and replaces the RAID card generation. Why - our disks are too big and the problems with bit rot had to be addressed. After the release of the code as open source in 2001 it quickly moved into MacOS, FreeBSD and Linux. This is a guid for Proxmox users. #zfs
MyNewLab
As we have moved, I need to downsize my lab drastically. I will create a series of posts how I create my new lab. Not only will I lower the number of servers but also use smaller machines, NUCs- and SFF-machines. As I need to do a lot of travelling, this will take a long time to get ready.
Yazi - ⚡️ Blazing Fast Terminal File Manager Yazi (means "duck") is a terminal file manager written in Rust, based on non-blocking async I/O. It aims to provide an efficient, user-friendly, and customizable file management experience.
Generating passwords isn't complicated. You can do it using normal CLI commands. Today, we can't use an easy password like your mother's middle name or your first pets. They need to be long and complicated.
A personalized SSH banner is fun. But also most companies have them. It is easy to do the banner. So follow this quick guide and you have one.
All servers should be protected against Brute Force Attacks. Fail2Ban may reduce the rate of incorrect authentication attempts, but it can't eliminate the risk presented by weak authentication.
VLAN in our home and home lab. How to segregate, allow traffic between VLAN. Networking is the base knowledge we need to run a home lab. This is about how not why, The way is for you to read about.
Running a Kubernetes cluster using Talos on Proxmox. Talos is small, efficient and has safety by design. Adding my new favorite to my cluster to replace my K8s and K3s clusters. I will still keep the K0s cluster I have.
PDM is a perfect dashboard for our Proxmox setup. Perfect for a home lab, but It's still in ALPHA, so do not rely on it for production.
The Kaamos, also known as the Polar Night, is the time of the year when there are at least 24 consecutive hours of darkness. Kaamos can be long in the North - 52 days.
If you do not have a fixed IP, you will need a DDNS.
Sometimes you need a small desktop on the cluster to do stuff. Alpine is a pure Linux OS, it's tiny. Adding a desktop, and it's there, a lightweight, minimalistic and customizable Linux experience in a VM. It uses OpenRC, not systemd. Alpine Linux is widely used
Happy New Year, 2025.
I wish you all happy holidays and a fantastic new year 2025 🎄🎁
I will outline the process necessary to set up and utilize Terraform, from HashiCorp, within Proxmox, and also how I spin up VPS instances. And a quick word about what is Ansible's role.
