Hey, thanks for sharing bro.

Didn’t downvote. I use AI, and not ashamed of it. I don’t write huge programs and I damn sure don’t release anything to the public mainly because, in the back of my mind, I can just see some poor chap using my code and now smoke is coming out of his server. It works for me. Usually it’s ‘write a script that does _________’ or Docker compose files. It seems pretty accurate for those uses and if I need a bash command sequence explained, it’s good for that too.

I also use AI when I master my audio tracks before I upload them. I am clinically deaf and there are some frequencies that I just can’t hear well enough to make a judgement call. It’s pretty good at that too.

Good resource. Bookmarked. Thanks for sharing.

Sweet. What kind of throughput do you get with the USB to RJ45?

Well shit, you’re set!

We have two very prominent universities in the area. Around graduation I discreetly dumpster dive their trash bins. You’d be surprised what I’ve found. Laptops, desktops usually small form factor, monitors, you name it.

Very good resource. Bookmarked.

Two 3060’s and two 3070’s. With the 6 core chips.

Nice! I generally stay at the upper end of the models which use DDR3. Yes, it’s not as snappy as DDR4, but the prices are much better.

Yet another good option. Just looked them up on Amazon. Going for around $130 USD.

I have actually been rather pleasantly surprised with the 7020 SFF. Going in, I was like 'OK it’s a $117 USD. Not going to break the bank to test it out. So I now have 40+ containers running on the 720 and my load averages look like it’s not even turned on. LOL

Same: https://lemmy.world/post/47654461/24048649

I’m looking for a couple more Optiplex 7020 SFF or similar and just get rid of all the heavy equipment.

Now, I still got the rack because I think they look cool

I recently decommissioned one of my Dell T320s, and replaced it with the Dell Optiplex 7020 SFF with the i7-4790 and maxed out to 32 gb RAM. I paid $117 USD for the Optiplex 7020 SFF which came with 8GB RAM, and I maxed it out with three more 8 GB RAM sticks for about $75 USD.

The Dell T320 costs ~$40/month in electrical costs in my locale to run. The Dell Optiplex 7020 SFF costs $5-8/month to run. So, less than the duration of this year, I will have recouped my initial $200 investment in the Optiplex 7020 SFF just in power consumption alone, and I’ll have ‘left over’ money if I wanted to get yet another Optiplex 7020 SFF. I have 40+ containers running on the Optiplex 7020 SFF, and it hasn’t broke a sweat yet. Far more quieter than the Dell T320 and less heat funneling into the server room.

I’m going to sell the T320 which is also maxed out at 32 GB RAM, so I’ll have more $$ to replace the other T320. Winner winner chicken dinner.

I used to be of the erroneous mind set that a server had to be some big honkin’, dim the lights, piece of equipment, but that’s not necessarily true now days with modern architecture. Doesn’t take a lot to get a lot back.

I actually have one of these: Dell Optiplex 3020 Micro

Has a 16 GB RAM max. Doesn’t come with HDMI but you can utilize one of these VGA/HDMI or Display port /HDMI

Surprisingly snappy little machines. Drop in another 8 GB stick of RAM for $25 and you’re off to the races.

Dell Optiplex 7020 SFF with the i7-4790 maxed out to 32 gb RAM are pretty nice too and can be found on Amazon for around $125.

I actually like Ai when used correctly and privately. I see it as a tool for specific jobs but not made to be shoved down our throats every single chance companies get

I would concur: ‘When used correctly’.

You’ll get a mixed reactive crew here. Probably 70% pro/30% con with the 30% quite vocal that they shadow the 70% at times. Pay no attention to the grumps or their down votes. LOL

I’ve run CassaOS briefly just to test it out. I’ve never run ZimaOS tho. ZimaOS looks like they have a larger app store for addons. It doesn’t seem like ‘a lot of work’, especially utilizing CTOZ, but ‘a lot of work’ is subjective I guess.

https://www.zimaspace.com/docs/zimaos/casaos-to-zimaos-migration

There is a distro (not totally open source) called SELKS, which sets up suricata, elastic and some other tooling (kibana) in a commonly-used setup.

I did not know about SELKS. I will definitely check it out. Thank you for the tip.

but suricata will not automatically correlate primitives into actual alerts from different vlans without transforms, which are cpu-intensive for what they do.

It is possible to offload the correlation to a downstream SIEM or log aggregator like Wazuh or ELK. Again, it’s something I’m currently trying to spool up on. I know it can be done, I’m just trying different things until I do get it right. I appreciate any input.

How did you monitor your vlans with suricata?

At present I only monitor the VLAN serving the ‘computer room’ which includes the servers. It’s where all the ‘stuff’ happens so I figured I’d start with the most important. However I am in the process of learning how to SPAN (Switch Port Mirroring) where you configure your managed switch to copy traffic from specific VLAN port or all VLANs ports to a dedicated ‘monitoring port’ where a micro server is running Suricata. The mirrored traffic will retain their VLAN tags and Suricata can parse these tags.

Those are the lofty plans. LOL I’m still fiddling around with it and Suricata because you have to actually set Suricata up to be able to do that. It doesn’t right out of the box.

So, I have a standalone pFsense box running Suricata (IDS/IPS) on WAN & LAN, pfblockerng (filtering), unbound, ntopng (traffic analysis), and Tailscale as an overlay on the firewall. The servers are on their separate VLANs, IoT, phone, laptops and other devices are also isolated. On the server I run Cloudflare Tunnels/Zero Trust, UFW, Tailscale as an overlay, and Fail2Ban. Everything is ‘default deny until something complains’. I’ve never run oPensense so I can’t speak to their software, but pFsense has been rock solid for me for years. I utilize Lnav to review logs. It’s lean, easy to install, and it just works.

To be quite honest about updates like Docker container updates, I wait until all the early adopters work out all the bugs for me and update when I feel comfortable. Updates to Ubuntu Jammy are usually straight forward and I can’t say I’ve had many issues over the years with Ubuntu Jammy updates. There may be a rare occasion, but nothing really stands out at this moment. The only issue I can think of here recently is when Docker updated but Portainer hadn’t caught up, but that was about a 30 minute fix.

It took me a while to get everything lined out from the modem to the servers, but my track record makes me feel pretty comfortable with how I have everything set up. In fact, literally most of the time, I just enjoy the set up and scout for the next project.