 And welcome to a Sunday livestream, you know I did a few of these in the colder months because it was not pleasant outside Now that I have damaged this is my right arm. I've got my sling unlatched, but yes follow vlog Thursday 341 I was in a motorcycle accident. I have the details in there Self-inflicted off-roading so I type a little bit slower But I'm actually able to get my arm out of the sling now so I can get my fingers on the keyboard going a little bit faster and I'll cover something I see a question already in here, but we'll ask some questions This is not a I put the Zima board in here, but it's not a review of the Zima board It'll be something that I want to talk about though is this device I have one set up and I've been testing it actually for Maybe two months. I got distracted with the merger and everything so I didn't really finish it But it's been running and doing things. It's still running and doing things matter of fact It's still running true nasty right now. I think this is a really clever single board computer So I figure we'll talk a little bit about it. I am not this is not a review more. This is me asking you What would you like me to do in the review because I have a few notes on it and I'm gonna talk about it Maybe I'll try different operating systems But first one I want to try was true nasty next one I'm gonna try that already know it works because my friends that two guys tech did this works great with PfSense as well. So that'll just answer that question right away that a lot of people have well, can it run PfSense? Yes matter of fact because it's a Sorry, I have a hair. I went down my back and when you only have one arm I have limited range of my other arm because of the broken bones The uh, I have the back scratcher handy because I can't reach one side of me I just can't reach there are there are limitations to my mobility right now Which is actually why I'm doing a live stream because I can't go anywhere So I was like I should just hang out with all the people online Also, let me know how you like these live streams. I know they're a little bit random But I think I'm trying to be helpful with everyone in here and I love answering questions and you know Getting people in the community excited about all this Hey Lawrence big fan of your channel. We love the concept of solar winds msp backup and the four names It's been called along the way. I would love an alternative but the functionality uh, that is Yes That is the challenge. It's it's a good product. We don't use it anymore But the functionality of the product was awesome the functionality of solar winds was less awesome And then they became an eel and I don't even know what they read in the backup and it's got a name I can't remember right now I would say It is hard to beat if you're happy with it. You know how to use it. You've done restores with it stick with it um Since the merger we have two backup platforms, but You it's gonna we haven't figured out which one I mean, I know we're not getting rid of beam because that's what the team at cnwr uses And they've got that deployed to a lot of places But we use msp 360 and it works and it's deployed a lot of places for us So we haven't really decided if we're getting rid of msp 360, but both products work. We've done restores with both products So it's a good functional system. And I don't really have an answer for Something that works as smooth as nice is there the one thing that they had a big advantage of is their dashboard It's just nice. Last I looked at it. I don't know. It's but we haven't used a product in over a year Cove. Yeah, that's that's the new name. Cove Yeah, I don't know Uh beam is great, but expensive. Yeah. Yeah For sure. Tom, what about that new amdp? Ct's recently I put my put one of amdp's on current multiple times holding off until you do review Yes, I'm working on so I brought these things home home is my studio, by the way Um, I was going to review them at the office and then with this injury I'm like, I just got to get this done and that's still sitting on my desk But I want to do I've had the zima longer And so I brought the zima board up first, but I'm going to get this review done probably in the next day or two Uh, it's just I'm not going to do anything in depth on it I think it's pretty novel. I'm really happy with it. Uh, this is just a neat little box And I get some of the excitement about it because it's just well made It well funded on Kickstarter. It just I fired it up and it just worked now one of the things I really like about it and I I'm tempted. I need no more distractions, but this this is just distracting me I kind of want to test it with open wrt just to test it, you know I I don't use open wrt So it's kind of like all those things like I can't replace pf sense with it because I have too much functionality That I'm relying on in pf sense But I could probably at least give it a test and put a computer behind it and to see how it goes So I'm curious because I haven't played with open wrt in five 10 years Um, it it might be kind of novel on there, but nonetheless this box is really cool. I'll get the review done of this I've currently got it running a true nas. This is actually the zima board running this and Functionality wise it's great. Now. I thought it was funny when I brought this up before because I think I got a picture of it somewhere uh I got a video I can pull up of it So let's uh share this tab but for people wondering it's Definitely plugged in right now. So I can't really but I've got a card in it that uh has Five sata ports and I got four drives plugged into it works fine for that uh from a use case So I'll be like I said, I'll be doing a review of that on there. Um Can you run proxmox on sure nas? That's a terrible idea I would run proxmox or But not and proxmox is fine true nas is fine. Both of those are going to be Software that you would prefer to have access to the bare metal It's not that you can't do it. There's but I don't think it's a great idea. Um, it's generally just a lot more buggy It's one of those things like It especially if you're a new home user You don't want to dive in on the deep end if you're an experienced tech You're not probably here asking me that question because you already know how to do it Um, but there's just a lot on there that can be a challenge No, the add-on card does not power the drives. That's one of the things this is going to be like a proof of concept messy thing I made not a um Not really a like practical. This is your True low-powered nas. I don't know. Maybe I'll do a separate video for a low-powered nas, but it's not going to be this device. It's not You'd have to print too many things and stuff like that mostly. I just think it's a really cool little affordable box, especially when you talk about things like the um raspberry pi not being really available and The other cool thing about the zima board Is the fact that it will not just the availability of it, but also the fact that it is, uh x86 that's words that's a lot struggling for the letters x86 the nice thing about x86 is going to be way more compatibility Have you tried the kasa os the one that comes with the zima board? I have not and um, I was really looking at this so I don't I think kasa os looks really cool I have a problem kind of well it's the way it handles drives and right now the um Raid support is missing. That's the best way I could describe it So if you put a few drives in this, this is one of the things I just I'm gonna set this up maybe we'll set it up here on the live stream and It's just one of those things like I kind of don't understand Why it doesn't have any raid support in here. I always like to make sure that not only will this do the thing We hope it does but it will do that thing And have an easy way to back up and restore your config because it's all cool that you get things set up I like to make sure you have a good layer Of resiliency or easy process to back things up and easy process to restore things And I haven't really evaluated that with kasa os yet, but if I like that feature of it Um, I think that'd be kind of a cool thing, but yeah kasa os is definitely I think it's a really neat project I really like it From what I've seen but I haven't actually used it. So uh, I will Kind of preface that with some uh caveats here of it looks cool I've seen some people do videos on it, but I don't know if it actually is cool Is there a pc I occurred as far as two mv me's probably? But I don't know why you I mean other than mv me's of not as expensive as they used to be but I don't know why you'd want an mv me on there because It doesn't have any ports to get the data out as fast as those mv me's would be And the other limitation is it's not a really fast processor So I've got just regular ssds hooked up to it It's your nas vm and proxmox can work with past two drives probably a homelab setup rather than production vehicles Yeah, I certainly would never run that in production. Oh cool. So, uh, awesome decoder that you're going to be doing that as well Yeah, I think it's just really cool Security union selling a roadmap on the roadmap but far down it because it's such an extensive video But I'm hoping to get it done sooner than later. It's just an extensive video to dive into Got a question about new unify magic bridge where it's called. How is it different from normal vpn? All the only thing different is it sets up the vpn for you. So that's what makes it different It uses their server to Actually, you know what I can pull that up here Um It uses their cloud server In order to coordinate the connections So let me um, how do I switch back to me? There we go. Oh, there's no way to There's a way to present this Ah, whatever Anyways It talks it has the firewalls talking to and it's what I said my video I described this in the latest video I use this same graphic Simply put it talks to the unify cloud server to do this automatically, but it's nothing you can't set up yourself It's just doing it's just doing some automation when it does it So you don't have to try and figure out what your connections are where I hate to they call hackable sbs because really nothing hackable about it. Well I think the hackable is a great buzzword, but you're right It's not any more or less hackable than other devices Technically, I could grab any computer with a pc i slot and say hackable I don't yeah, I agree with you. It's a little bit of marketing hype on there I hope they get they bring two and a half gig network ports. I actually doesn't the zima have uh Let me find it Pull it up here. I'm pretty sure that ports are two and a half gig But what's the zima blade? I'm just curious now They have another product. Oh cool Spiffy look at that Gigabyte ethernet They have a fancy site. All right, let me go back to the one we're doing over here So you want the zima board? specifications here we go No, I just memory tdp There we go Okay, yeah, they're only gigabit. They're not two and a half gig on this. Okay so Yeah, nothing nothing real impressive To One gig ports, which I think is fine for a single board computer speed is this port speed is usually not your issue with them It's not like you need it to be super fast That's you know, it's usually focusing more so on like low power applications Especially when you want to use it for something like this. I think among other things using it for Do Pull this up here things like this make a lot of sense like if you wanted to Yeah, I don't think the processor can keep up with two and a half gig But if you wanted to use it for something like home assistant, that would be really cool And I think that would be pretty, you know, like a great use case for it would be like, hey, let's use this for home assistance I wish there would be more mini PCs that ecc ram very hard to find some I don't know why you want ecc ram for many PCs. Why would you want the more expensive memory? I I don't get for a home pc. You know what I mean? I I'm I am not Diminishing the value ecc brings to the table. I'm diminishing the value. I see it in the home lab or small environments It just doesn't feel necessary It's um It doesn't seem like that's a problem in the years and years ago in my early days of tech ecc memory was popular because problems with memory Was popular too therefore we'd like to use ecc to Mitigate some of those issues that you may have you just don't see those issues like you used to hardwares become like Substantially more reliable here in 2023 And in all the years leading up to it that it's just Outstanding how reliable hardware is so I don't worry about things like oh, no, I don't have you know ecc memory in here What is in my risk of losing all my data? Probably not Ever look at uh minis forum em 680 which one let's look up that one real quick em 6 I know there's one of them that were Challenging to find That had 10 gig sfp on it It's the network connection. Sometimes if you're trying to find something with a faster connection. I'm looking I see this one There's a few people have reviewed it looks like an antech has a review What's the speed on here? Let's make it bigger wireless hdmi I'm looking right past the network connection audio wireless Where's the network connectivity? I'm probably looking right at it and just somehow don't see it wireless storage storage memory graphics processor Seems like they have missed the network connectivity other than the fact that they have wi-fi on here usb usb gen 2 Hmm. Okay. It's just not on here Someone have it on their lists is that seems like that'd be an important thing Looks cool though We're good if there was a tail scale integration with unify given they have wire guard and a stack now Uh, but it doesn't seem to be as fast as db based tail scale connections Yeah, I don't you know I never looked to see which wire guard they implemented within The unified system. I see it like that because there's wire guard in the kernel or there's wire guard go I don't know what implementation they're using. I actually didn't look misinformed knocking out of the park. Yeah, there's some cool companies with um Coming up with these these mini pcs and low powered pcs are definitely pretty cool In the enterprise servers you get a lot of A ecc memory that's still going to be pretty much to the default in your enterprise systems I just don't really see the the push forward in the home lab Even if pf sense makes sense the chipset that neck it has Is 189 is arm processor. Yeah, that's the whole thing too You may as well buy the neck eight device because it's about the same price if you get the 1100 Have you uh, I don't have in tune but would need to disable if you tinker with hardening office I don't not my not my wheelhouse We as a business we do that and we got a team of people that know how to do that Tom is not on that team or have any interest in that team. Could I muddle through the documents? Probably will I nope I just don't care enough about configuring Uh, all the office 365 settings. I have no interest in it. Like I know it needs to be done I have an interest in other people doing it. It's probably the best way I can describe that Finding 10 gig fse is always the main hurdle I went to hp which has a pc expansion great home lab system for you to play with xcp ng you know, it'd be kind of cool to build a mini system that actually had a bunch of 10 gig connectors on it because the mini systems generally have good fast processors But don't have really good options for hard drives So instead of your storage options being some of the limitation Hey set up a central storage server build a little cluster leave your storage somewhere else But then have really fast connectivity to that storage that seems like a pretty ideal way to use them That's why I was kind of hoping to find some that had some 10 gig connectors on there But there's those ones are still pretty pricey and I haven't found anything like I said exactly That fits that mix as much as I'd like it to I wonder how hard it would be to load kasa os Yes While we're doing the live stream because why not right? I think it'll work on a bunch of 22 I think I have a bunch of 22 Let's fire up my bunch of 22 And uh, maybe we'll load kasa on this Two and a half gig just makes you angry. Yeah I Why not go 10? I don't know how you would go about it Like I said, not my wheelhouse to talk about office things Is it possible to pass ISP connections through manage switch over one cat six? My rack is in my home office the ISP is in the closet want to move my router I don't I mean you can Pass it through you can create like vlands for it That you pass it through we've done that where we partition out a switch to Bring in because of the way the network is piped into a company We've had to split that across networks. It's something that does happen sometimes so it can be done The the thing you have to make sure Because we've watched it be done wrong that you don't mix things up and create yourself a security problem Kasa is a little is a little limiting your view. Okay Very easy to install. Okay What's the catch grand cheap network 10 gig cards like the tx 401 is really much better more spending until x502 um So if you start looking at one you can you find them let's pull them up on amazon for example You can get the intel ones really cheap now because they're the older models Intel 10 Big nick I'll share this tab real quick Oh, here's here's one. I bought so I bought these for a project You can pick up these on amazon right now And you're talking here. I'll drop the link to it in case you just want to know because I actually bought a few of these And I've I've uh, I think I bought how many did I buy Think I bought four of them For a project last year It's these ones here. So the catch is The newer models have newer drivers and things like that But also look in the details of the features Sometimes there's certain hardware offload features and things like that that may or may not be available depending on the card So this though is a pretty modern card for 89 bucks. You're getting the x540 t2 I think it's a one. It's a pc i 8x 10 gig pc i would dual 10 gig copper and if you don't need copper they have This collection here. Here we go It's only uh, five more dollars to get the one x520 da2 which is going to be the one with your um 10 gig connections on it But if you need something like sri or v and the motherboard supports it and the card supports it Well, that's going to be different. That's probably going to be more expensive and more modern and newer card Which raid card can be used for true nas scale? You should never use a raid card for true nas scale or core so Neither one of that's one of those problems that a lot of people run into is you never want to use a raid card you want to use a Host bus adapter something that's going to pass the drives through To true nas true nas interacts directly with the drives more specifically zfs interacts directly with the drives not with a raid card That's where a lot of people make mistakes and have all kinds of goofy problems that are true nas is because they have some type of Raid card in there What can I do to have better battery life in my fedora server blue? I tried auto see and It didn't seem to do much compared to popo s in terms of battery life You know, I don't have many hints there because I don't run into that problem. I run popo s and I Just haven't had any battery life issues or done any testing to see if I switched to a different os I would have different battery life. So it's not something I uh, I tune I just let the os do what it needs to do Generally the the best way I've always find saving battery life is close a bunch of browser tabs because there's always some browser tab pulling some Thing in the background also how many apps I'm running on the system I try to eliminate those if I'm trying to increase battery life But I've never really sat down and tried to do any processor tuning on it You made an exact replica of labert. Ah, yeah the um our system here actually So me uh log into this Did I get the password right? Maybe yes, look at that I get the password right twice. Nope I like I mistyped it Bare metal bare metal restore solution msp360 or chronus. Um, I think a chronus is a good product I really disliked the dashboard to chronus. I found it very cluttered and hard to use so to my team That's why we didn't that's why we stuck with msp360 So I just didn't find it to be as wonderful as I thought it could be I don't think a chronus was a bad product in terms of work But work is only part of it when you manage things at scale. You want it to work. There's You know first check box. Does it work second check box? Can I manage this thing because if things are hard to manage and hard to deal with it's just gonna not be a good product experience Oh, it's waiting me to see yes Where does this thing live? Where's the disk at? Okay, this is on the lab cool All right, so let's uh stop it When was the last time I backed this thing up May 2nd Been a minute since I backed up the template. Let's go ahead and kick off a template backup Then we'll fork it and then we'll load casa os on it while we're sitting here Um, they did a live stream on it. Matter of fact, we can look at their blog And see what they got Is a blog live yet? Nope It's still not live yet. I don't know why it's not live yet. So they don't they haven't released it. They have a live stream on um I don't know there wasn't anything incredible about the last update but long term I think is september is going to be their new ui release. I think they said that and I watched the live stream But now I've forgotten some of it. I didn't take notes I just figured I'll read it in the blog because I read more than I watch youtube I use youtube is not my main source of information in terms of like what's going on with zen I'm usually the one making the videos, which means I spent a lot of time reading in the forums and reading in a blog post It's okay to use same ssh keys across different computers I've been doing that for a couple months years not sure it's good practice Well, you you know my public key is all over the place So if you're saying that you're using You are maintaining your private key in a very secure way, but you're pushing your public key to many systems. Yeah, that's fine The challenge is if if you ever lose your private key Do you know everywhere that private key if it was lost could unlock? So key management is not It's not easy. Uh, but it's important to understand what those systems are for example. I have We have a common LTS private key that is what we use so we can use our jump box to be able to get to Several other things that we've set up for clients with our keys in it and we got a password on our key So by the way, if you have a private key, please have a password on that private key So if anyone ever stole the key One I know I have to re-roll things if something happened on my private key But second I have a password on my private key So they'd have to know both of those pieces of information So it's it's further mitigation. But yeah, it's not a big deal Sometimes you may want to create though different private keys for special projects, especially if they're temporary that we you're just mitigating risk But that can be a little bit challenging to manage um Because the one gig is just what's displayed. It just doesn't matter It doesn't matter what's displayed in there. Actually, let's clone this But it doesn't matter what it thinks it's connected at It's about what transfer speed you get out of it I think you've posted that question in there's there's tons of people that posted that question in the xcp ng forums And there's several Two or three at least write-ups on why that doesn't matter Casa os demo But networked we want to put this on it's on the lab network. So that'll be fine There we go. Now we have an 1 2 22 04 casa os demo um Anyone know how to crawl most popular websites to check if you had an account there Hmm go there and look Yeah, the speed at which they show connected just doesn't matter So when we log into this a bunch of system, uh Which actually i'm gonna do it with the terminal Because now we got to log in. What's the ip address it got? So we'll go here to networking click copy All right now switch where i'm sharing. So stop sharing net present share screen Window That looks like the right one. Here we go And we'll do the thing that I would probably tell those people not to do but I don't feel like doing it the hard way So let's find casa os We started quick setup we're just gonna We're just gonna do this I'll think it i'm assuming it'll artery If you wonder why I type sudo ls is a lazy thing now, I won't get asked again if it prompts for sudo and it's going Let's do another thing What's my go-to ups? Uh, I did a whole long video on ups So I like the ones in that video, but I don't have a go-to Especially when availability was tight on some things and uh, so it was less less of an issue You can use system like hashy court vault to manage those keys. Yeah, that's that's kind of the common solution is hashy court vault That's why it says not easy. It's not like hashy court vault is Is something for everyone, but it is something you can get set up um I already know like a few of my friends use I think it's chef and puppet to manage all the ssa's keys Oh, look it's working Open my browser to the bell of address Fair enough that was fast Now I got to share the other screen. So stop You guys are watching me install it all in real time here Create your account username tom password We went real complicated on this This it'll get destroyed and I'll set it up later. Hey, why not? Cool All right. Well, it works storage. Let's go to the apps. Let's start putting things in here What can we put in what was the first thing all we can do a chat bot chat tp. Ah, this is some neat stuff here Duplicati file browser home assistant Nice. Here's a question. If we install home assistant, let's go ahead and click on install on this Oh, and sync thing was in this list. I really like sync thing. So install that too. Oh Failed to open Proctnet tcp6. What does that mean? Anyone know what that means? Yeah, we're playing with casso s. Yeah password 123456 Yep still still trying to learn anyone Why don't we use radius server for wire to wifi numbers for smb any radius server for their wi-fi for vlan There's reasons you use it where the user authenticates and it puts them on the vlan You want for example based on their credentials. So that's one of the reasons you may use it Do you think ai will put os this for technical setups without needing support? Uh I don't know I I haven't seen until ai gets accurate. No Is there a password i can use and manage for him if not recommendations um You could set up bit warden and have someone else using it and you and this is not the most secure It's not a recommended way, but this is a way to solve your problem for example And there I do have an aging father as well. So I manage my dad's passwords It's the only way because he will lose them So as long as dad doesn't change his master password and you know dad's master password You can have them all in there. You can manage them. You can set them Just tell dad not to change his master password But sometimes you get lucky the fact that aging dad doesn't Want to go through the complexity of changing a master password. So you're good Give it a reboot. I don't know Uh one password works well across multiple devices Broken app. I had a couple weird errors on the apps Yeah, I don't know the sync pro what sync program detect no tim use because i'm i've been using sync thing for like Five six ten years. Maybe it might be longer. I don't know how long i've been using it But i'll have to look at least i've been doing videos about syncing for almost five years Google says it's a firewall issue. Oh Okay Let's try rebooting first So I rebooted that server So we'll watch it reboot Does it say how to solve my firewall issue or just disable firewall? Uh, you mentioned in time back that you paid bit warden private leave and volt warden for the company, huh? I We don't use volt warden. We use bit warden volt warden is a different back end for bit warden Uh, we buy enterprise licenses now We all merged bit warden. We merged the launch system is bit warden and now c and w r So they're all we're all on bit warden. Everybody in the company Is on bit warden I'm actually probably gonna do a video about that IP tables save do word my cost su-du Does the firewalls turned off? So that's not it. Nope. I prefer to support the project I know vault wardens, you know, there's all those weird things like I I've seen people Um, someone put a request like invoice ninja. I use invoice ninja. Someone actually wanted to Use invoice ninja But wanted to not pay $20 a year for an open source tool And it's like a donation to them because all this has is powered by invoice ninja But for $20 a year someone actually was complaining that I was uh, not covering that, you know, their code Code request of hey tom, you should show how to remove the powered by ninja I'm like, yes, you can go into the code and remove it But at some point give give the developers a few dollars and that's how I feel about bit warden There's a lot of effort that's gone into bit warden. So using a different back end I mean if you're a home user and you want to use it, but actively promoting a different back end I feel I don't know Are using obs for stopping screens are shared with youtube. It's super clean. Oh, I'm doing this with um stream yard It's all a bit on unify versus pf sense firewall. Is it worth running pf sense as a transparent bridge to have best of both worlds? I don't think so Mmm And oh is my sir cotta vid from a few years ago still a solid guide Yeah, I don't there's not enough changes in sir cotta. So my older video is still correct I don't know I have a video, but I don't know why you do it I did a video because so many people ask And they just want to keep especially if you already have the controller on there There's reasons you may want to not get rid of it, but running a dual firewall is always just It's a fun learning experience. So outside of being a learning experience. It's not something I'd recommend I'm wondering if asius merlin firmware is good enough for the home user. Should I get pf sense hardware firewall in the future? I would say yeah, definitely go with something like pf sense if you're getting into networking you want Better control over your network. I would definitely lean towards a full pf sense Asus merlin is great for asus routers and it locks a few features within them You know, I know like the open wrt project has actually got a lot better um I'm distracted trying to figure out this so proc net udp6 um failed to open proc net udp Six kasa os What is that error? I mean These are really old posts. This isn't helping me at all So is it firewall custom install? Is it because it wants to be on hdbs? Maybe let's try that That's interesting. You can't even do hdbs Huh Well, I'm liking kasa os a whole lot less I might be bored with this and delete it already Um, I haven't run windows in over 10 years or more So Probably definitely more now. I think I think I got rid of windows around 2008 I've been linux on a desktop for a long time Thanks for turning on an invoice into a great product been using system in for 25 years Retired from night gig and started my own business a few years ago in michigan. Awesome Oh, you're in the but not on the southwest side of michigan. Cool Can clients from routed subnets behind tailscale with exposed subnets connect to each other Or you can only catch the tailscale clients can't find that in manual. So When you're setting up tailscale Tailscale and matter of fact, I think you can probably log into it here so we can actually show you You decide Which routes tailscale can or cannot get to So here's an example Share this tab Let's go back to something that works. I'm going to destroy kasa. I've already quit caring Because I didn't it wasn't I don't know it seems like that should be an obvious problem So here is my tailscale being enabled here are the Advertised routes if you do not advertise routes you can't get to other routes So it is implicit that you advertise them. It doesn't get to pivot off of Those unless you say hey this device should advertise these routes And it's not just the device you have to allow the advertising of routes inside a tailscale So first you tell tailscale. Hey, I like this device to be able to advertise routes And then you go to the device and you say which routes you're going to advertise and that's what allows the Tailscale nodes the other ones to get to these I'm doing this inside of pf sense that way my pf sense advertises Just these two routes that I wanted to be able to get to And this allows access to the different things so they can be reached Yes, serve the uh home did that article on that the um I don't remember what the availability was on I think they were like backordered for a little while Because I was wanting to buy one when they did the video and then I didn't and then it was hard to find and it might be easier to find now The app tt mentioned was files drop. I wouldn't call it synced down. It just looks like a simple way to get Oh picks off your phone. Okay In my work I had the headache of sharing wi-fi passwords throughout the qr code scan What is the solution for this and could you do a demo about pf sense radius wp2 enterprise? um The demand is low for There's very few people that I think would even watch the video for how much how much time it would take me to do it And most of the time if we're doing wpa we're not tying it to radius inside of pf sense. So Clients sometimes have radius servers and we'll do that integration will like unify And that it's just it's a long extensive video that I don't know how much value it would bring It that's always the challenge I have when I'm deciding which videos to make and which ones not to make is Who's going to watch this and Especially when the video has a lot of effort in hours put into it. I go. Hmm. It's only going to get 3000 views Maybe maybe maybe 2000 So I kind of balance it out should my time be spent on something else now The exceptions that are of course, I make videos on like some of this I did a talk at a conference And I made that talk public knowing that that talk would not get a lot of views But I already put the effort in because I'm speaking at the conference to do the talk So I don't know if I'm going to do a video on that topic or not Not until I get through kind of like my backlog of other things Who of your youtube friends went to ltx all of them? I've got some serious fomo I was going to go and I decided not to And I'm kind of glad I did because if I would have gotten the motorcycle accident I would have had to cancel it anyways, but the um The problem is with the merger. I didn't want to I didn't know How because you had to kind of plan that in advance to go all the way to vancouver because things sell out fast And with the merger going on I didn't want to not be available to get things done So I said, you know, I'm just going to skip it. But now that in some ways I'm much more of a full-time creator I've still been doing a lot of consulting, but I'm a lot of more full-time creators. So I plan to go to some more of those events Uh, techno tim did not go. He's so jay from learn linux tv and techno tim I think are the only people I hang out with on youtube that I know And talk to you on a regular basis that didn't go By the way, and I don't know this is for as much true. I don't know where techno tim lives But me and jay live right here in michigan. And so it's quite the challenge for us While the zima Seems nice. It seems a bit hard to embrace since the cpu is kind of eol attempted to pick one up but hesitating I will tell you the zima runs The true nast box here quite well Not fast so well enough And it's probably not the best use case for it. I just wanted to see if it was a viable use case to Set this up and plug some hard drives into it and it worked So I do have a raid z2 setup. Why is it set up z2? It should be set up z1. Whatever it's set up So I do have um this up and running with what processor is it? It's an intel cellar on n 3450 1.1 gigahertz It's not a screaming fast processor, but it is a functional I do like that my one of my staff members set this up and they called the uh, the the pool billiards, I get it I get if you probably had to be in the us to understand it We refer to the game billiards also as pool here in the united states. So that is funny It is the both sides that my home pc could not access subnet on azure behind the tailska host But the tailska host could access my home pc Yeah, it's got to be something you had in the rules. Um that aren't right now I don't know what's not right in the rules because i'm not looking at them But yes, that's definitely an issue Is there a way to pass live audio to a server stream at other house devices? I think that's going to be very dependent on what software you're using to stream Have you done your pf sense 2.7 review? I read the changes. Not sure I need it more than uh vulnerabilities I would definitely upgrade to it php is end of life on the old versions of pf sense I see no reason not to go to 2.7 You should be on 2.7 Matter of fact, um, it's funny because someone contacted us for support and The problem you're going to run into is you can't get package updates if you're Add-ons that you have inside of pf sense require an update That's going to break because they're they're not going to be maintaining the old packages So you need to upgrade to the latest version or don't use pf sense Like I don't recommend not updating things. That's just like a terrible idea And pf sense is pretty solid for updates like they Over the years, there's been minimal amounts of hiccups and even when there were hiccups in the update process The restore process which I've covered in more than one video is so simple with pf sense where you just grab that xml file Reload your pf sense with a clean install pop in your xml file and it just goes right back to working. It's just great Yeah, the protective boxes are not bad They're definitely a nice little option I have a rack with a power edge x20s and I've been looking to decommission replace him with something smaller footprint I may look into nukes To that breaks the banks. Let's hopeful for the zema. Yeah, it comes down to what do you need if you look at my true Nass and I've talked about this when I did well, let's talk about a couple of my true nasses I have a few of them here Here's my other true nass. Let's log into my oldest true nass my slowest most Infully slow true nass Come on We're getting there It serves its purpose to be a second copy of all of my videos and a few other things that run on here, but here's my uh two core intel atom c 338 we got We got a just a wild 1.5 gigahertz and two threads and you're probably thinking time. What do you do with that? Well, it's actually not even using all of the storage. Just a backup. I'm only using about 20% of it It's got 20 terabytes of storage. It's just backups for everything I like to keep I have an offsite copy, but this is my second onsite copy of all my data All my zfs data. It works fine. Does it take a long time to send data to it? a little bit So it comes down to what's your use case. Do you you know, I don't easily recommend Servers without first asking, what are you going to use them for? What do you need? And even my other true nass here is Not that fast either. So if we pull up this true nass This is also an intel atom. Now. This is a newer atom. This is the intel c 3758 And uh, this has a 10 gig card in it and it edits This is all my video editing for my entire production of my youtube channel is done on this and at the same time If you go over to the apps it also runs syncing on it I love syncing for synchronizing all my data in real time. I got net data on here. Oh look I got fresh rss. There's an update to it. So while we're sitting here. Let's go ahead and upgrade fresh rss It runs the things I needed to run I've been trying to use next cloud more to chew an updated You know, like what my thoughts are on next cloud So for my thoughts on next cloud though is going to be next cloud's not Is not as mobile friendly as google docs, but is what it is. Oh happy sys admin day. Yes Um, it's been a couple years, but I don't think there's anything to revisit. Maybe there is because people get excited It's certainly an anger inducing thing Because people are so polarized on this. I'm not I I don't understand this because I was I was having this discussion With someone today about linux. He were arguing about linux desktops and wanted my opinion I was chatting with friends and I'm like use the one that makes you happy But tom you have to have an opinion. Yeah, I run popo s. Don't you hate gnome? No Well, I hate gnome You should hate gnome and other people who also hated gnome were telling me I should hate gnome and I'm like why I don't get it like but I don't I don't really it's like popo s works I know where all the shortcuts are and it does the things they wanted to do I think very little about some of those things and for the most part other than Open sense not having my my big challenge at open sense has been There's too many updates and because we commercially use pfSense I don't know and I don't want to say that I've had problems with open sense People have had problems with open sense and contacted us and the problems we see Might be lack of documentation. We don't know why it was behaving the way it was We know how to solve that problem of pfSense and we switched on the pfSense and a problem was solved But I don't know if it was a knowledge gap. I had an open sense I do know googling to solve the problem didn't solve the problem and I didn't feel like doing a forum post We just loaded pfSense and got the problem solved so It kind of comes down to You know, uh, is it is it better? I don't know homeland people love it. I don't you know, I I'm fine I don't see a reason not to use it. Um, but I don't like constant levels of updates I like the more concise updates you get out of the neck eight pfSense product Uh Collabra. Yes. Collabra is installed as well. Let's make sure you know, this is still updating deploying But yep. Collabra is right here Uh, was zfs and pfSense to you make an upgrade Or fresh install to 2.7 I mean, if you already if you already got zfs upgrades should be fine Always always always back things up Um, probably remove packages now removing packages the default setting on to remove a package Allows you to reinstall it all the settings come back But that's sometimes a problem you run into is packages may have problems But if you remove them before upgrade, you'll eliminate that problem Fresh install is nice though because it's going to be a nice fresh clean install But that's kind of up to you Is it a pain in X to switch udm pro to pfSense for your firewall or home solution or snb? Does pfSense have the capability to access it remotely? Um, I don't know. It's a different platform. So the learning curve between them There's no import export between either of these platforms. So It depends how complicated your rule sets are that would be the best way to describe that Yeah, I'm not homelabbing at 70s. I used to so much Just primary true nas is my primary backup for the house next cloud piehole for redundancy power edge are now complete overkill And probably over killing your power budget and heat budgets Let's make sure this works So continue. Hey, it didn't explode Great Let's update next cloud now upgrade UDM with the latest three softwares pretty good if you're going to be setting up for some uh things and walk Yeah, I mean, I I think the unified drain machine is much better. That's why I did that updated video I think it's become a much better product than it used to be so definitely You know, they've come a long way because they were doing things just stupid They came up with their own way of doing open vpn. They tied it to their cloud and I'm like, why How much engineering time did you waste instead of trying to dominate the market more? I just don't get it like you came up with hey, everyone's doing vpn this pretty common sense way Let's just be weird and and cloud enable our vpn and then oh man, we had some cloud problems Oh, everyone's vpn can't work while we're having cloud problems. That's dumb I'm glad they finally have seen the light and realize They're not clever enough. They did not have an original idea. They just had bad ideas for vpn But hey, they came around to it and now they've gone all the way the other way They've had a really good idea for vpn with their magic site to site as it's called Open sense for you. Hey, whatever works for you Open sense Like I said, I don't know any reason you shouldn't run it As long as it works for the things you want it to do and it makes you happy Absolutely, there's it's not like a product like if you said hey, tom Synology or qnap I have opinions because qnap has just terrible history Of just really bad security vulnerabilities. Therefore, I would say hey make sure you never publicly expose your qnap Because it's got a history of bad security blah blah blah So but when it comes to open sense, they seem pretty on top of things. So yeah, it's a good It seems like a good firewall to run Only ever heard homelabers using it never seen a professional environment same Uh, well some exceptions We we've seen some uh like the it Person that had ghosted a company and we've taken over and they're like, what's this thing here and They've set up like, you know an unmaintained version of open sense or something like that That was Matter of fact in you can have dumb people get ahold of anything. It's not the product's fault It's the because the product by default doesn't have everything open One of my favorite ones on this was a pf sense by the way But there's this it company that's local to us that finally If you google their name the number of people suing them was a higher seo ranking than their website which made me Giggle a lot, but you can understand as we as we cleaned up disasters from this company The they were so bad you understand what they're getting sued But one of them was a lot of the firewall rules were opened And it says I don't know the the comment in the firewall rule was i'll fix this later I don't know why this works. I'll fix it later. It was like basically wide open firewall rules. So Oh man Yeah, ltt. I'm not sure they went with it because of the driver need but here's the problem And um, I don't know this. This has been an interesting, you know subject Is are they maintaining it because they need their internet up all the time? How are they keeping that thing up to date? Are they because there's a lot more updates to open sense? And do they omit or skip those because they're busy doing stuff? I don't know. I'm curious My greatest smaller ones shut down three of the five since there's no real workloads anymore Can probably get away with two or three machines and reclaim the floor space and power bill. Yeah Open sense has a nice ABI uh for programing the adding wire guard. Yep I know they have some api stuff for things like that I just reconfigured pf since to use quad 9. How can we share this working? um You can use pf top to see what look at everything that's going out over port 53 and see if it's landing where you think it should land You know, if you go to pf top you can see all the outbound connections and where things are going As a speed you ever come across companies using consumer hardware and normal desktop pc you go to machines with ecc Do you immediately uh get them to change? Always see it all the time getting them to change is not necessarily always an immediate um priority It just it comes down to the circumstance, you know, we're we'll do assessments We'll make recommendations, but it's not like it's not like it's just automatic that we can get them to switch because it's like It comes on to whether or not you want me to support that that's one of the very key things If you say I would love you to support and maintain this I'm like great. We're gonna replace that because if I replace it to not be some desktop Awesome, uh, we actually had a client that wanted support and it turned out her shipping system for a pretty big warehouse Was set up at a laptop by her friend from college of She was a smart entrepreneur with a low budget and her friend that she graduated with I think that's where he came from Helped her get this set up and it you know if you've ever seen that like Sticker that's been going around as a meme for a long time like hey, this runs something important Don't close lid that was that laptop rant it handled all the shipping for all of her import-export company And uh, we told her that's got to go on a real server and be set up properly and if not we won't support it That's kind of what it came down to and she didn't like what set up properly was going to cost And it probably is still running her shipping company, uh, which I think is interesting. I haven't heard from her Uh, Zavik's agent and proxy in a container. I imagine you can run in a container I've always run it on bare metal, but I don't I think there's probably a docker version Does less encrypt opens or cert require report 80 open for auto renewal No If you are doing like an api call So if you set it up, so it's doing an api call or dns off those are ways that are not going to require that But if you are doing it like challenge response, then it does require that So I don't have port 80 open on my system because i'm doing it via um an api call to Where my dns is There's if you look inside a pf sense, there's a ton of providers that offer that Matter of fact, um Oh, I got to add an account key first. Uh, let's see if we type in pf sense Let's look right at the box here So for in here, they have somewhere rate limit security buildation process So they have all the settings in here for doing certificate the different ways you can do it Uh, you don't need especially if you're doing wild card certificates You do not want to have them, uh Well, I think the only way you can get a wild card certificate is not with challenge response You have to do dns off for that. Hopefully that makes sense Can you do a firewall rule with? x a dns name for the target instead of ip Um, yeah, I guess I don't understand exactly what you're trying to do though Do you have any recommendation solutions for sso on both linux os levels well across various services next cloud sure nas Haven't seen too many good guides on it for sso. That's because there's not any guides because of the lack of support The it's not that there's not sso services It's the integration of a singular sso service is the problem If you can't get stuff that's integrated in there and it's not built in like true nas doesn't have an sso option That's really where it comes down to in how are you going to do sso with sure nas if it doesn't even have an sso service That it can attach to and I don't even mean an open source one I mean it does not have an sso service it can attach to I thought about doing a video explaining that because I think that's the most confusing part is people see these different And there are some open source sso systems, but the problem is If there's not integration In in each of the products Then it's not going to work. It's not going to solve any of the problems that you're you're having on there Matter of fact, I don't even think popo s a bunch of might popo s maybe I don't think there's an sso service for signing in a popo s I even looked maybe there's a way to read there's always a way to hack it together But I don't think natively it supports it for example Some insurance companies won't allow open source firewalls in some case. I've seen that term in condition and a policy I have never seen it in the united states for all of our clients that they will not allow open source firewalls I Not something I've run into matter of fact, um if there is requirements for Because the routers don't even have to have FIPS in in some circumstances provided They're not doing the web filtering. So I've never seen an insurance call out an open source firewall specifically In reality is almost every firewall out there Palo Alto runs on free bsd along with a bunch of customization all these big companies 40 nets a linux box, you know, so it's kind of funny to say that For them to actually call it out not that i'm saying there's no insurance company That's dumber than some of the other insurance companies, but definitely not something we run into across our clients Trinite scale is running now. I made a volume made a share But no idea what I need to do for smart monitoring on the disc and checking pool health So the system will check pool health automatically smart monitoring I don't I think people get too excited about that. I don't find it particularly useful I don't think I've had a smart monitor. Tell me Matter of fact, I can tell you specifically With one of our systems and we're using nice nas hard drives designed for This workload smart has been useless. Matter of fact smart passes I've had a couple drives die on my 45 drive server. We had two drives dead And zero of those two times did smart. Tell me anything technically one of the other drives died, but We ended up not we never reformatting it worked again So I don't know if it actually died, but it never had a smart error We just reformatted it moved it to another slot. So we kind of ruled that one out But generally speaking matter of fact, we have another client We don't know it's just a bad batch of them or something The this was a pretty large one we put in for a client and we had like four drives I think went bad No smart errors on any of them ZFS will tell you though if there's a problem audit there is pool scrubbing that is built into By default if you go into I think it's under data protection Yeah, you'll by default you're going to have a scrub task And this scrub task will let you know if there's any problems with the drive So this is unless you took it out and I'm looking at you Linus tech tips When he lost his large drive array, they had somehow managed to get rid of the scrub task This will actually verify the integrity and that's what's more important Is that ZFS and the integrity of the drives in your pool are all good So the EU insurance companies won't allow an open source firewall. That's weird Don't know about logging the OS itself, but I've recently set up a key cloak for SSO for a web-based client app Also use it for next cloud yesterday configured guacamole supports Oauth and SAML And this is what it comes down to is You know Cool if you have that built in but to my knowledge, let me look here in TrueNAS I don't think there's any Oauth and SAML built in to TrueNAS It'd probably be under advanced right Council crown jobs, just control storage sessions Self-encrypting drives replication. I don't see anything in here for to my knowledge. It doesn't support it So it comes out. I know I know next cloud does which is cool, but That reminds me. I should look at my TrueNAS health. I've been a few months since the checked. Yeah, it's probably not a bad idea Probably not a bad idea to do it. You know, I'm a little disappointed so far in cost OS I I get I I thought it looked novel But I think we're just going to go ahead and destroy this Right here. I don't know Any reason to keep it? It just seems like it's kind of broken I'm It might be because it says it recommends Debian Maybe if I rebuild it I'll rebuild it on Debian because that might make more sense Because what I do have Somewhere in here That I've been playing with where's portainer I forgot the IP address of it. So I'll just copy paste it I think portainer is pretty cool and this is This is something I think is just a great thing to play with right here. So setting things up in portainer one It's easy two you can manage multiple servers with it and three It just works out of the box like really really easy. So I'm happy with how easy it works Do scrubs also balance the rate arrays? So unless you are expanding vdebs You do not need to balance the rate arrays. The rate arrays are automatically balanced The only time you'll get a rate array in balance And I believe I have a video on this as a topic You can put a rate array out of balance by expanding a vdev And all the data was on the existing vdevs The solution for that is to move all the data somewhere and move it back and it'll rebalance The rebalancing is automated in in zfs Hello world So kasa had in okay interesting didn't work in lxc. Hmm. Uh, we're just asking tom questions and tom's answering them That's generally What I do, what's my favorite hypervisor? All day every day is zen orchestra. This is where we do everything from our lab work To tom's work to whatever it is tom's projects that he's got going on. That's all done. Hey, I have a deb Debian 11 lab. I could have used this I mean, I even started this in four months But um, yeah, everything is a zen orchestra with xcp and g zen orchestra I've got plenty of videos on it. I got getting started videos. It's fully open source Yeah, portainer is just awesome Ooh, look new version is available so we can actually update my I don't feel like updating portainer right now What about hyper v? Uh, yeah, microsoft's hypervisor. No No, I just I'm not a big hyper v person at all Didn't even realize it live streamed. Love you. Lawrence was watching uh valerant, but this is much better Hey, I'll keep it going for a little bit longer. I do know I need to start cooking soon because my wife is going to bug me for She's been doing yard work because of my messed up arm Uh, that's why I'm here doing a live stream too. It's really nice outside. I'd like to be outside But I'm kind of limited right now since my motorcycle accident My bones are still broken. Oh you dislike Dislike portainer Comes out of whatever you want. I I don't So the docker stuff we have running I'm not running portainer on it because I run Just I I build everything right in docker directly Um, and I don't do that much in docker every day. So As an edge you like open source project have you tried audio bookshelf? It's the only one I have found that works well for streaming audiobooks interesting Um, I might look at that. I only listen to them on my phone So will it work well for listening to them on my phone? And I guess that's the question. I use downpour On my phone. I buy my audiobooks from downpour if you haven't heard of it It's one of the only places that um, doesn't have any DRM. Maybe there's another one But I know downpour I like because they don't have DRM Do you have a comparison between sentinel one and bit defender? What do you recommend? Uh sentinel one I don't have a comparison because I don't use bit defender But yeah sentinel one is a far superior project I I've talked to enough people that have moved away from bit defender And moved to sentinel one that they think sentinel one is far superior after using wealth products For your backups you trusting health check or still restoring a check in on always Untested backups are wishful thinking If you don't go in here once in a while Go find one of your backups of things And uh restore them What do we just back up today? We backed up a bunch who didn't we? There's my a bunch of labs here. Let's go ahead and do that now. Let's just do a restore so for a bunch to Find somewhere to send it All right, so let's uh Full restore go ahead. Oh, it's a full backup. Cool hit. Okay All right, let's go ahead and test it So I got portainers set up back in the config including stacks too, man. I owe my trainer. That's very cool Pizza time pizza sounds good. I'm I'm grilling steak So glad the feature to portainer is not locked out. I didn't know it was before that's neat Have you tried not breaking bones? Yes, I've Definitely tried I managed to Go almost 50 years I'm pushing 50 and it's the first time I broke bones. So I think that's impressive Portainers great if you just want something simple to manage some containers without thinking too much How is yacht for podman container orchestration never used it so I don't know But 10 years ago canonical made a bunch of orange box. How would you go about making an updated version? I don't know. I never used that either for her third brand for enterprise You know it kind of I always like hgst Uh, but we've had really good luck with western digital And we've had with the enterprise series ones pretty good luck with seagates And x I think it's our xo series But like anytime the volume of drives we go through Especially with the 45 drive servers like we we sold some xl 60s a bunch of the 30s And once you buy that many hard drives you're just and they were all shipping with seagate and We had some go bad. But does that bias me? I don't know I I only we ended up buying like a hundred of them the best place to figure out hard drive stats is really really The back plays reports Please report Drive reports 2023 Like hands down, this is where you can find out about which drives and really good statistics on them There's no one that does as good a job as back plays and I'm aware of when it comes to breaking down drive statistics Best way to run xcp and gvm or dedicated hardware. Um, I wouldn't virtualize my virtualization platform So dedicated hardware for sure Can you please do some videos on router os? No, no interest on it. Here's the problem In everyone asked me this and first, well, let's actually pull up, uh You're looking for videos on Chairs to have instead hours in his playlist So he's got some meekertik videos somewhere Is it these ones or Let's just go for meekertik. There we go So we One of the problems I have with doing and you could find these, uh, I I My problem with meekertik is always the same people ask me to do videos because the documentation sucks It's hard to do videos when the documentation sucks But when you even look at this person, uh, the network or I don't know personally But he seems to know meekertik very very well And his videos despite being one of the only ones on meekertik Just don't get any engagement or views So for all the effort for I would have to put into trying to learn it to something I don't really use the then create a video on it that no one's going to watch but a handful of people doesn't feel like A strong reason to uh do it. There's a lot of quirkiness of meekertik But the network burg has videos on there. So that's probably the best resource for them Do you really need to have a crash to get out of yard work? Yeah, probably Uh, yeah, okay, so your son had it and got the surgery. Hmm Um, Cisco VMs in the orchestra environment I don't see why not I don't really run any Cisco VMs though. So I don't really know why While this person just keeps repeating themselves about the router west stuff. That's funny Do you see pfcents doing advs firewalls policy firewall permissions? No I don't think that's going to be something that they are going to get into. It's niche It's I mean honestly, it's not used in enterprise But mostly enterprise companies are looking for something that can do large-scale management of the firewall and because pfcents can't do that Um, there I seen someone ask about Cisco VMs. I'm not sure what they're talking about either I'm assuming run some Cisco software I'm broke. I got a mini pc with three usp ports I want to buy three external hard drives and make a nas that will host jellyfin and other media stuff Do you think performance will be poor? I think you will have a lot of problems and probably corrupt data If you try to run a nas across usb My experience was always very poor running nas on usb I did it as a thought experiment and it definitely broke things It just wasn't it didn't work well our restore was successful. Let's see if it actually boots For those of you that weren't watching someone asked if I tested my backups Yes, I do we're gonna test them right now. We just here's this backup restored from backup fire it up Let's make sure it works Untested backups are just wishful thinking you should try to restore them on a regular schedule Mikrotik has their own youtube channel as well that doesn't have a lot on it They tell you about new products that are released, but this is kind of the problem They're just not a company with great documentation and I always like there's someone in my forum that wrote this They they were a long time Mikrotik user that was answering questions in my forum But one of the write-ups said Mikrotik is that weird device that has terrible documentation That has some weird incantation that you will find in a forum that you have no idea why it works You just copy and paste the commands and it does the thing you hoped it would do in a way that is just weird and I was like, yeah, that's You know I've seen a few people joke and say they joke in the forum something like it's called latvian logic because they just have a Different way of doing it Okay, that doesn't make it easy to use or easy for people to use so yeah It's probably for the Cisco telephony and call center stuff. Ah So as ray hasn't poked his head in here asking to join ray But either way our restore is successful Which means we can destroy this. I don't need another copy of it remove Yeah, I do like the xcp and g platforms just it just works well for doing all these things You can see all the backups which ones were done how long it took to do them I did find it. I wonder if this bug still exists. I found a bug in unify I thought I was doing something wrong turned out it was unify Oh ray or sinny Yeah, he pops in once in a while Uh, best way to learn maker tick is just buy a fuse since they are cheap break it reset it and keep doing your internal docs Yes, it's like beat your head against the wall with it. My problem is I don't have enough time to beat my head against the wall of a product Because it that doesn't really save me much money because My time I feel is better spent On products that have good documentation. I mean they are cheaper. They have a reasonable price point on them But for the time it comes down to what is your time worth is is what you're really asking with those But let's go over to a weird problem. I found. Oh, I got a lot of windows open. All right unified downloads So if anyone runs into this and I'm gonna report I don't know why I reported to I guess I'll just Tweeted them So let's say I want to download the latest version right here that was on july 5th So we click download Now it does indeed Download the right version But what it does over here? They've got this link is broken. This link is to a old version right here So if you're someone like me that might go copy link and put it into download You'll find yourself with the wrong version because the version it downloads isn't the same as that download link That was an interesting problem I got a tweet. I just found this out the other day. So When I was fixing something for someone and I'm like, what am I doing wrong? I keep it keeps telling me I'm loading the wrong version and I realized the link is just broken Do you have tnsr or somewhere in production or in a lab? No, I just haven't had the time to play with it or the interest So no not at this time Is there a way to Yes, um, I always have a hard time seeing that word q q s q s q s Just can I join backups or aren't disc rights does then have vm tools agent? Yes, there's an agent loaded that does help with that So for example, if you're running something in windows or And you've got the tools loaded. Yes, it should be fine to be able to do that I actually go a slightly different route And we look at the backups here if we edit this backup I don't mind doing it and this is obviously not for everyone Um, may go to share this tab One of the things you can do is set the snapshot to be in offline mode And what that means and here we're I'll I'll show you how I do a backup of my unify controller right now in real time My production unify controller. So let's go ahead reset this we'll go back over to my unify And we're going to re incremental offsite backup of unify we're going to go ahead and run the backup job There we go All this is going to do is uh stop this Bring it to a full stop and then restart it. I do this with a lot of my systems and I'm fine with that as an answer because I don't mind rebooting them at odd hours You know, I'll say if I wanted to set this up as an automation I'll do it some off hours do this automation. So it will do it and it's only off Long enough just long enough to grab that off state snapshot. So I don't have to worry about any data in flight So that is um, what anything you got with databases that is always a concern. So this is my go-to solution For solving that problem without you know, I do have the proper things loaded But this thing's going to be down for what? Um I know I've been talking for maybe 20 seconds 30 seconds So 30 40 seconds. Oh, there it's back up and running 30 or 40 seconds of downtime Is worth it to me to not worry about any of the problems that may come from grabbing data That's in flight Cheap way to learn vmware disaster recovery would be buying those noble thin clients. Sure Uh backups built in xcd never used it if so is that a plus in the book? Maybe you should try yes I really like the fact that the backups are so integrated and they're just smooth Being able to set all the parameters and it's a the relationship with the backups is also the fact that you can have multiple backups so this backup encompasses Kind of like it sounds full back of everything This one's only an incremental backup of the unify if you look different devices have different backups in here Actually, we're going to go ahead and suspend this one It was less than a backup of this one five months nothing changes on it That's why it's been a while for the backup But it get it is part of this backup so I can look at what these are successful But having all this built into quickly know when something was done when a backup was done uh of these devices Is just really slick Would you be concerned if nas has smart errors for current sector current count on There's one for both iron wolf management and the drive analyzer say everything is healthy I've definitely seen drives that misreport the problem with smart is it gets misreported because the tools that read it May not be aligned with the manufacturer who made it and the specs may be out and it's reading the wrong thing Uh, if you listen to two and a half admins the last episode um Well, hold on i'll say the episode number because I laughed that they were we were it was a great topic but if you listen to two and a half admins and we go to Podcasts which episode was it? two and a half admins Episode I believe it was either 152 or 151 probably episode 152 They were talking about how their drive keeps saying there's errors because the smart is reading the temperature status As one of the error oppositions. It's just reading it wrong um, so It's it's one of those problems. So no, I would trust the software That is made for the drive more than I would trust smart If you copy and paste it from the previous screen networks. All right Why do you prefer xc media or proxmox? Uh, thanks for your speed answer Uh scalability built-in backups that are really really well integrated and smooth And it's used in the enterprise a lot. We have a lot of enterprise clients using it. So it's been a really popular I think it's a more flexible and well more scalable system. It's Flexibility is debatable because the debbie and being built uh that proxmox is built on offers a lot of flexibility So I wouldn't say proxmox is inflexible But definitely zen orchestra is just a really solid tool. There's no wrong proxmox if you like using it thumbs up it works good Cisco has vmware images for some of their products for example converting and importing zen orchestra has not been successful Never tried it. So I just don't know I'm moving from microtech to pf senses. I can't be bothered to learn what those bloody jump chains are So video and how to set up gpus. There's documentation on how to do it, but I don't have a video on it I don't ever really use gpu pass through Do you want a gray log in a vm or docker or just a tutorial video or using packages or is it the preferred way? We actually have it. It's run it. It's a dedicated vm And it is running in docker. So I call it gray log Docker because it's a singular vm That runs docker because this is the easier way to get it updated. Uh, but yeah It's uh, it works great. I really it's kind of it is very similar to the way I did it in my demo video is almost Well, the only thing different it's going to be like i'm using an nfs mount Uh for all the data Wazoo for home lab. I think it's going to be a steep learning curve, but worth it. It's a good tool. It's neat I would definitely recommend playing with that. I don't see a reason not to use it I used to listen to packet pushers, uh, the data nuts podcast if you listen to it any other recommendations similar podcasts um The podcasts I listen to technical ones are going to be Is two and a half admins, um risky business security now Sometimes bad voltage um I don't unsupervised learning is not bad Sometimes this week in google dark net diaries And that's about it for my technical podcast most of my tech news I read Fidel dual e5 207 30 giga ram and dual one gig is good enough for a gig pf sense firewall Uh, probably what I don't know how old that processor is Compare it to the speed of the processors that netgate uses and you'll get an idea netgate if you go look at their appliances They tell you what processor do a comparison by looking up cpu mark on the processors They suggest and the speeds that they're getting and compare that to what your cpu benchmarks at my xcp sheet at I'm running out of words here xcp ng local array failed pull metadata backup failed due to new uid still have them vm backups So all recovered well yeah Make sure you have backups that's what it's all about Make a youtube short of my favorite podcast. That's not a bad idea I don't How is the discoverability of shorts? I notice shorts when I search for things never get found But maybe I don't look for things that are in short form content I see a few good shorts. I see a whole lot of dumb shorts uh, I feel like it's the dumbing down of things when I see too many shorts because TikTok has some good info But it has a lot of just dumb garbage on it that I don't have an interest in and I'm hoping that doesn't come to the youtube platform There's already enough dumb on it because I don't I like it's actually funny Wendell had mentioned this and I believe completely like someone asked wendell like what should I do about getting on youtube? And he's like create more how-tos and things that you're passionate about we don't need more dumb things on the internet Everyone tries to just like hey, let's do reaction videos prank videos. I just just like all of that as a content category Much of them are just overrated and you know, I prefer I'm much more. I'm a nerd. So I want nerdy things Proxima has a very restrictive sounding license. I if you wrote or use anything that communicated with it, then you have To release the code as I read the license your browser for example I don't know. I never read the license. So I don't know anything about the proxmox license to have an opinion on that Far as I know it's open source But I don't know the details But I do know that this has been going for an hour and a half So I'm going to wind it down because one I'm out of water and two It's time to start firing up the grill because I know the wife wants some food I bet there's a message from here about that Not yet, but I know there will be as I told her I'd be cooking by three which means I have to like the grill now I'm uh old school when it comes to cooking and uh, I'm all about You know real wood fire. So can we find a picture of my grill? There we go So if I'm cooking It's going to be on like an open fire Spending some time on it. I'm doing steaks. This is uh smoking some ribs the other day. So um, What uh, what else did I got? What else does it thinks the grill picture? Do I have a good steak picture? But uh somewhere Anyways, it's always got to be real fire Real fire bust man. I don't I this is the one spot that I don't want gadgets or anything like that I wanted all to be You know old school if you will for doing this I do put a temperature thing in it, but I don't think that's the same. I thought I had a video of it Oh, well We'll just leave that picture up there because why not it's ribs Yeah, we got we got steaks for today though But nonetheless love hearing from all of you for I'm just staring at it kind of like I'm hungry by the way. I didn't I didn't eat yet today. So it's time to eat because it's uh About it's about three all it's about two two thirty Eastern standard time and I'm in Detroit. So that means we are in eastern standard time So I'm going to go deal with grill things Thank you all for joining hit me up in the forum sit me up on whatever the hell they call twitter today And whatever the hell it's called tomorrow if you want to say hi over there Um, wherever you want to find me, but that's I keep my forums because I don't change the name of my forums or rebrand it very often I I don't know what's going on over at the twitter. I used to say tell people to hit me up there But who knows because by the way, it turns out that you can also just randomly lose your your account They could just rename it to different things Uh, because why not? Why not whatever's going on over there? I hope they're having fun All right, thanks everyone and see you next time