Skip Navigation

Posts
3
Comments
66
Joined
2 yr. ago

  • Run long smart test on the disk and check smart data after that. Other possibility is ZFS pool is nearly full.

  • Depends what are you doing. Something like keep base os patched is pretty much nil efforts. Some apps more problematic than others. Home Assistant is always a pain to upgrade and something like postfix is requires nearly 0 maintenance.

  • circular dependency seems to be the case. I guess adding second external resolver to /etc/resolve.conf will help. Second entry will not be used unless first one ( pi-hole) is responding. But it need to be tested.BTW, why do you want to send host's DNS via pihole?

  • what exactly do you mena under subdomains? Any DNS provider will support adding NS entries for subdomains if you want to host you sub-zone somwhere, And any should allow you to use names with "." in it for "fake" subzone, likea.subzone1 IN A x.x.x.xa.subzone2 IN A y.y.y.y

  • nope, it is very deeply customized debian. Need to be installed from scratch.

  • Open source projects need to make money somehow. I found VyOS method quite acceptable. They giving good instruction and tools to build your own stable ISO. So do not be lazy or contribute somehow. Unfortunately their paid support costs too much. I was considering trying to push VyOS to be used as virtual router at my work, but it costs more than Cisco C8000v

  • Try VyOS. I run it on APU2 myself. No GUI no convolution.

  • Deleted

    Self-hosted VoIP?

    Jump
  • Very strange line from specs.USB Driver Windows XP/7/8/10/11, Linux (driver free on Raspberry Pi Raspbian system)Does it mean binary blob driver only? and you need to pay for it to use it on PC?

  • If you still use HTTP for cert verification on ACME, you are doing it wrong. Use DNS-01 only, there is no need to allow any inbound traffic to your servers. and HTTP will not give you wildcard anyway.

  • using wildcards is really bad security practice. and at age of ACME absolutely unnecessary.

  • No HA. Classic HA is evil, shared control plane is good way to loose both FWs. Need redundancy use 2 independent FW + routing protocols. Losing session states during fail-over is not a big problem these days. I did in-place upgrades, but I'm running LTS and not yet done any major version upgrades. So far no problems.

  • Sorry, what do yo want to know? IT just a linux based router pretended to be a juniper FW. NAT/IPv6/PPPoE/VRFs are working as expected.

  • Can you promise a near 100% uptime? Otherwise, some email might not reach you. Just lol. Mail get queued just fine by everyone. If you really concern , setup second MX.

  • VyOS: Debian based router + firewall. Linux makes it easier for people to pick up the CLI but I’ve heard complaints about it being difficult to follow. Currently CLI only, at least without third-party solutions, but is powerful and competes directly with OPNsense for features for the most part. Seems to be just as stable. my mistake, FOSS version is not LTS but a rolling release and needs to be compiled.

    Very misleading statement. Both rolling and LTS are FOSS, they just do not provide LTS binaries for free. Want LTS? build it yourself , all tools and guides(bit outdated) is out there. It will took 30 min you your time to setup.

  • Stable is not "pay only" . Just build it yourself, all tools are available. it will take 30 minutes of your time if you have docker environment ready.

  • Are you running it natively as "jail" ?

  • All of them not equate in same league. Do you know any type 1 free supervises out there? Xen probably.

  • Nothing can beat bhyve for PFSence.

  • I do not understand why everyone calling hosting email difficult? IT is like 5 RFC you need to read and implement. Sofware wise you will need mail agent, something for DKIM ( if it not build in in agent), "local delivery agent" ( probably presenting it as IMAP) + mail reader of your choice. Nothing too complex