 Alright, I think it's live. I'm probably live for a few seconds. I'm trying to get comfortable in my seat here Welcome to vlog Thursday, whatever episode number I think it's 200 228 tiny pilot give away I've been working on in I actually give a shout out to those you that may know Wendell I like the way he did his giveaway by offering a post in the forums So I plan to do the same thing and yes I'll announce that right at the beginning that I'm going to be doing this giveaway Which let's see here I'll pull up the forum post And actually I got to share the screen I Did not go as planned so stream yard doesn't like this is the tool I'm using right now It's called stream yard and turn apparently just doesn't like the cam link that is one of the input devices at my studio That's why I'm well. I technically have two studios Cuz I have the big studio and then this is my office, so I'm sitting in the office right now and Let's see Stop screen share screen And what are we gonna share we're gonna share a tab this tab Cool so Yes, there is a post in my forums. It is linked in the description of this I think I can post a forum post here I just want to make sure everyone has an opportunity to link and I put the details in there Which is we're sorry for those of you that are outside the United States, but at this time It's just a pain to ship internationally. So we're going to do a free giveaway of the tiny pilot I've done a review of it The review is controversial because I know there's two projects and I mentioned there's two projects in there But the people with the caps locks were ready and angry for all the Fun stuff related to it. It's apparently not a big deal I I you know, I click like on those comments, man I'm I'm up voting some of the really angry people because hey, why not nonetheless the Tiny pilot's a good little product. It's a little bit more commercial driven than the other alternative project But honestly, I don't care what you do with it Do what you want if you'd like to reload it and repurpose it for whatever makes you happy awesome Here's the thing. We have a lot of equipment that's kind of stacking up here at Lawrence systems So one of the goals is going to be to get rid of some of this stuff that's stacking up here at Lawrence systems And I just trying to find a easy way to do it So we're just gonna start offering it in the forums and be like we'll pick a winner We know a lot of people are gonna want this stuff Especially because some of the next things we're seeing how it goes with something small But we have some bigger things that we will probably ship to people as well So it's gonna be hey, why not give give those things away and that's gonna be what? The first thing because we already have it boxed up and it's all those things It's been sitting there and I'm like I all the devices I have have IPMI So we're not using it here, and I was like do I want to do a follow-up review? I don't know I'm it's a neat project. I think it's really cool And I think it could really be fun for someone else. So I'm gonna give that away But I also to make things even more fun I will probably at some point do a bigger build giveaway because I've been talking to some different vendors on that the Actually, it's just most things when I in conversation I have and I'm like why not This is kind of a cool way to benefit people or you know randomly I wish I could benefit more people There's obviously a finite amount of hardware can give it away But you know there might be a couple of these things that they're collecting dust here. Let's see You know what we can do to help some people out So that's the story behind the giveaway There's not anything more to it than that and that's about it So yeah, just kind of I want to I like helping the whole net people by creating videos and all the technical people to watch your videos But hey the you know, what do I do with this hardware it and it's literally a problem of We have boxes of stuff here, so I keep we kind of got to go through and start sorting it out at some point Yeah, so that's that's how that's going So nonetheless the I there's a way we can just have it pick randomly It'll actually grab all the names out of a forum post and we're gonna use some type of randomness to grab it So that's how that'll work in case anyone's wondering. I'm not gonna actually I mean I'll read the forum post, but I'm not the one picking it We're letting some type of script with some level of entropy actually grab it That's gonna be the important part there So that that's how that's gonna go What was I trying to click on now? Whoops wrong clicky things. So let's stop sharing nets Let's remove that and share what I was Gonna have for my next topic now. I have not Where does it stop share there we go stop screen share Share screen. I'm still getting used to when you share. I don't know how to share tabs really easy But it's got a different one when you want to share things like Firefox And there we go These are a few machines. Well, this one's actually running and we'll update this one while it's sitting here This is running a 2.6. So we'll go ahead and update it to the absolute latest version right here This is the community edition at the top but these are some PF sent systems we have set up and these are the new PF sense plus on the 2105 that was released yesterday and I really I like what they've done here with PF sense plus I know some people are gonna be upset that it's only available in plus essentially But what we have is the ability now to go to VPN you can set up WireGuard because WireGuard is back. It's it's back as a package it when this is done updating It's a package in the community edition as well. You have to it's an advanced package as a part of the 2.6 series and In the PF sense plus specifically this is where there's that divergence of code You're gonna be able to get these features, which is that VPN import now VPN client export awesome It works in both community edition and plus but VPN import is gonna be is a new feature I think it's gonna be pretty cool so you can go to a client import and The goal of this is gonna be if you build out a PF sense with a VPN server And you're doing a business site to site very common use case you want to get it tied to the other one You can do it manually, but it's faster when you can just go export file and Import file. That's it and it's gonna be able to set it up and work I haven't tested it, but it's a new feature. They added. I think it's really cool to be able to do the export client Export and then client import for the open VPN file So you'll be able to create a VPN server in this one Then we're gonna go here to client export Download it save file and go over here VPN Open VPN. Oh, yeah, that's right client import Browse and There we go. It's gonna give me an error. I got to put the certificate in It's gonna be actually this is a shared key one Test test import Nope, I didn't set the password up right so Shared key does not appear to be valid Well, I need to work on how it works. How's that either way? It's there, which is kind of cool So that is definitely a new feature. That's gonna be kind of cool that you're gonna be able to work this I got it working the other day I had it working when I set up a the demo before this and now it's broken because I don't know That happens. Oh look this rebooted There we go Yeah, yeah, yeah crash information but the Wireguard and PF sense plus with their 2105 version is now it's a beta package. This is not a Use in production, but it's back in the PF sense plus so anyone running a decade device is gonna have it And I just thought this was really cool You know that this is all coming back and all this code's getting properly used that was written and I'm excited to see this in here. So we can start building Wireguard tunnels again inside of here. So that's another thing that's gonna be I'm probably gonna do a dedicated video on this. I just haven't gotten to it yet because it just came out the other day I did do a video on the new Pia true Nass. I don't care about this crash data report. Here we go That's gonna be it's some neat stuff. That's definitely coming on here. That's gonna be great to see I Don't know if they're going to put the wire guard back in as an actual tab I Think that's what your It's I think what they're going to do is leave it as a separate package the wire guard is Really is not gonna be adopted by tomorrow in the business community So it's it's better to do a slow go wait till everything's right Before we build all the wire guard tunnels and everything else with it for the business uses for the most part I mean wire guard is faster than IP sec, but wire guard is not Double the speed of IP sec so for the most part you'll probably still see people because they so many of them have existing when you're doing site to site IP sec tunnels But open VPN is really popular and so is wire guard for the same reason Because when you have one of the clients CG Nat being really popular that a lot of the Endpoints a lot of the systems that are connected may not have a public IP address This is where wire guard and open VPN do better with dealing with that issue when it comes to getting these things configured so definitely gonna be a Popular thing we get along the way here. Oh, let's see Yeah, the tiny pilot comments. It's not from comments here It is definitely if you want to win the tiny pilot as it said in the description you have to post the forums so Yeah, so that's definitely The The dark theme is just a yeah dark theme is definitely much better. Oh, yeah, can can you link the dark theme? system, I'll show you how to do it general setup and It's called theme PF since dark dark beta we have read I haven't looked at red in a long time. How's red looking? Probably ugly and Now we have a redpia. That's not pretty at all. We're gonna go back to Let's go back over here and change decks. That's I'm gonna go with no What's a dark beta look like let's look at this one Hold on there and get that out of the way go back over here. I think dark beta looks like dark I don't maybe there's some font differences. Whoops Go back over here play around with General setup. Let's just go back to the just PF sense dark. I think the fonts look small. Let's see save See if this fixes the fonts looking they look tiny to me Yes, this one has better the fonts are a little bit bigger. So hopefully yeah, we're gonna go with that Um What else do we have? What about PI KVM? There's a link in the forums for those you don't want to learn more about the PI KVM I covered that the beginning of the thing you can rewind but we're giving away a PI KVM link in the link in the Description of the video here. All right So here we have The other features I wanted to talk about in here beside really is just wire guard and that but the What was it? What was the other issue? Oh the VP not the VPN but the problem with the multiple WAN That is Another thing that's gonna get fixed and this is a popular topic on reddit right now And people keep tagging me and this trying to tell me that they're not gonna fix it Which they are gonna fix it. It's targeted in their red mine for 2.5 And it is the multi WAN port forwarding issue. It is a weird buggy issue that's going on right now So we're definitely aware of this issue But it is something that's not gonna be fixed until 2.5 to that's the target for that you can follow the development and all the bug updates for PF sense inside their ticket system So it's not hard to figure out when these things will be fixed and things like that. So that's Yeah, that that's absolutely something that's being addressed and it is coming But unfortunately we don't have a date for that I see we as a as the community part of the community I'm not part of neck eat so my we is a community statement of we don't have a date for one two five two is coming out We don't know when it's coming out, but we can't follow their Ticketing system and realize that they've quashed so many little bugs and the incremental updates like the major version updates Yeah, they take a long time with the incremental update versions They come out. I mean kind of as needed, but when there's something Plaguing the system and there's a bunch of little quirkiness that came from 250 to 251 now to 252 and I don't think there's really any software that there's not a Point release like a major Uprilice that is smooth and that's why there's always point releases case and point You know some of the issues when you switch to true nas version 12 There was a lot of little things in edge cases found and now that we're all the way on true nas 12 U4 which just got released awesome now we can You know get down to business so to speak and say alright It's very stable anything we have in there is really minor is 16 CPUs overkill Hmm that come isn't that a matter of opinion? Let me zoom it in here. I Don't know I don't think 16 processors assigned to this is overkill. I maybe I'm wrong I could be right. I don't know. I think it's good. I'm good with 16 processors But yeah, I don't maybe maybe it is overkill Such as life So isn't it isn't it fun though if you have 16 processors to assign to it to assign 16 processors to it I mean I'm just saying That's that's what makes sense to me Hold on and open up something else here. There we go. I can Add that back to the stream Yeah, I do have 16 processors assigned to it in my virtualization system, so I Don't think it's overkill if this server that it's on the host that it's on Has 32 cores. How much does the other host have? 48 cores so if I move it over to this host I could even you know, I got 48 cores available so You know that that would be even better, right? Does I think somewhere in here tells me how many cores I Have a hundred and forty virtual CPUs. I could be assigning to this so up to 80 cores can be assigned all together What's really overkill? Most of the stuff doesn't really use much Processing power and you look at it like our production stuff is pretty weak. It's just You know the invoicing great logs actually probably one of the heavier usage ones in here and look at that man Some logs must have got sent there and rotated to hit 13 percent, but I do have 24 cores assigned to this Um, you know, it's funny I the people from gray log reached out to me and uh Gray log I did the video a while ago and it reached out to me. Thank me for the video Cool, and it's a popular video and I really you know We're actively using gray log and I may do some follow-up videos on it because they've had some new versions Um, but then their youtube Channel commented on my youtube channel this morning saying hey, we like this video and I'm like The video's been around for a while and your twitter team reached out to me And they told me they would send me a shirt or something. I said thanks They asked me are my shipping address and they said they'd send the shirt. I didn't get the shirt They said they're sending it. So I don't know. I love swag I'm a sucker for swag. So if there happen to be any vendors on here and you want to send me swag um, you know Please note the true nas shirt i'm wearing, uh, you know, I'm I'm definitely I will sport most of the swag that gets sent to us Uh, that's definitely a thing. Um, yeah What else was I wanted to talk about today? Um, those are like the main topics I wanted at the time had it that you oh, uh true nas So I don't think it got done But it's getting close. We're gonna go and try and log into it right now I don't know what the password is, but well, I wonder if I can guess the password um I think it's at 96 Oh, it is True nas scale uh We're in There we go Um, yes, it's still alpha which I've told people this it's not ready for production A few people said they've been testing with it. So they might be something I do is, uh You know start playing a little bit more because they've done a lot of updates to it Someone really complained when I said it was alpha and they're saying they're using it I guess they've done a lot to Really enhance it. Oh look, they've got all the drives set up cool So, okay, it's further along than I thought so this is kind of neat. Let's play around with this so do this and uh uh name test pool I understand if I encrypt it create. Why is it not? Where's the create test pool? Build this Oh, there we go data vdoves No, we'll go read z create Create pool. There we go So yes, this is going to be exciting when true nas scale comes out now to talk about true nas scale so true nas built on free bsd true nas core and uh It's been around for a while and you know bsd Was there first was zfs and a lot of the extensible features that came with it including Like the jail system and everything the downside of bsd is the jail system is not as popular as the linux container System or all the related i'm going to generalize it as linux containers But obviously there's a lot more uh to it But what they've done inside of true nas is they modularized the python system That is the middleware. So the interface that you use is the middleware and making it modular Is a pretty big task But it's one of the reasons at first they merged the free nas and true nas code base into one Modulized the python middleware then you can now extract the middleware and with open zfs 2.0 You can bring this over to a debian base. So this is actually really Really neat thing that the Platform is moving towards because a lot of people love the idea of having a linux base debian is you know pretty cool here System for doing all of their virtualization and storage in one spot. So having that in here is really cool I've a few people have told me they've got kubernetes Working in here at least what i've seen in comments. I mean it's not something I've really done But boy is this cool the fact that they have this in here being able to build the I think the virtual machines are built on kvm um Where is Okay, i scuzzy is in here smb is in here So that's nice Applications this Select the pool test pool choose and of course Docker images this is Ah, this is pretty cool stuff here. So this is This is where I know there's going to be a lot of excitement around the whole You know as it moves forward and everything else. So I think that's really cool. Um Let's see. Oh someone asks if more than one person can win I only have one tiny pilot As far as can someone win again an algorithm is choosing it at random So it is going to really depend on the number of people and the pool of entropy and that will drive the statistics of Who could possibly win twice? So Yeah, there's I'm not picking it We're letting a system that will come up with that'll grab all the names out of the forum and grab a winner. Uh Yes, so that's uh, I can't really answer who's going to be able to win But nonetheless back to this right here I wonder if we can get any of these. Oh, they have mini i o installed ipfs Oh, I hate that this is in here. I'm actually not happy that That they're catering to someone They're catering is if we need this. I'm not a big fan. This is just silliness. We need plex But we don't need chia. We do not need chia miners inside of our You know how much hard drive prices are going up and it's not even a cool system. It's not even Uh, it look up chia mining and and be join me in being anger about this, uh The chia coin makes no sense to me because if you are doing something for the greater good And you're doing something like to create a shared storage for stuff and in trade for shared storage You ended up getting Magic crypto coin that'd be cool I I like that concept like you you're providing a service you're creating value on the internet And then people rent that resource, you know, this is actually something that people come up with before It's kind of like the shared thing the way chia works is we take and need a high speed hard drive to Chew up calculations with creating nonsense and then we have to stick this nonsense on very large hard drives And then you just keep these hard drives online and hope you get a magic crypto coin with some money So it's got all these people Just buying massive amounts of hard drives and driving the price through the roof of hard drives And it's just silliness. I don't know And it's it all all you think it's doing is shifting the shortage from video cards to hard drives And it's the same people because the people that have a bunch of money they made in bitcoin Have the ability to create these shortages and hard drives so That it's you know, I don't know. I'm not a big fan of it because Um, we've already seen the price go up. We've had to adjust prices on quotes We have for people getting quotes on, you know nvr systems Uh, and yeah, there anyways I I'm not going to rant about it. Let's actually try to install something here See if it works Cool next, uh, sure Uh, yeah, we'll just leave it configure path next Change my time zone Let's see. Do we have merica Why is it not say merica detroit? That's what i'm looking for denver What where's detroit? Louisville. Oh, they took out detroit No Do we have just east turn in here? Yeah, okay I always like that detroit's in there submit Let's see if this actually works Wow, that was fast. Well, I don't know if it's working yet, but it seems fast Deploying, okay I actually like that because while it's deploying it relinquishes control. So Neat Detroit tigers Yes Detroit tigers, um, and for those of you that are familiar with the trait Uh, also known as the motor city and for a while a lot of people would say things I've seen a lot of people call them the motor city kitties. Um, I think there's a couple Um There's a couple different. I think subreddit's for that. All right Good Oh, let's see Home assistant on proxmox cool 166 watching like 36 likes. I know the like to watch ratio is so slow here. This is still deploying Back to available applications. What else do we have in here installed managed? Catalogs now while there's really not much in here now at least from their catalog installed failed to start kubernetes cluster Oh None object is not iterable. Well Man, we'll see we'll see if it actually finishes either way. It looks cool I wonder bringing up though the true nascale is coming along as you can see it exists. It is not finished Uh So it's gonna take some time. It's one of the things as much as you can make the UI system somewhat portable and What they're in the modular nature of the middleware? It's still not exactly a drop-in because Despite what someone may be typing in the comments linux and free bsd are different things and uh, you can read more on that They are they're not interchangeable. They they have their own similarities But they also have things that make them not drop in interchangeable either way It's pretty cool that they have that on they have this in here So i'll probably play a little bit more with this I don't know if i'm ready to deploy it, but I do think it's pretty cool I like what they're doing with it. Like i'm i'm excited about the project. I just don't really want to use it until it's working Is there any updates? No, great. Yeah, we just installed this one uh today Because they they did update fairly recently We only got this set up just before I started this so Um is portainer an option? um It it's one of those things like it's going to be I don't know how they're going to do all of it in there There's obviously a lot of other management tools once you have it on linux that people will start integrating within this But that also is a big no-no in the free bsd True nas system because if you start integrating stuff willing you break updates to the system So I don't know how they're going to handle people who want to load third party things in here And honestly if instead of even loading third party just Build a db and server and load portainer and get it all configured like use podman use whatever Things you want and build your own stack on the hardware as opposed to loading true nas because at some point Why road true nas just use it matter of fact um one of the other things I'm working on some more videos on because there's a good write-up On some enhancements is you know, I've been playing with the Houston ui from 45 drives and the 45 drive system Which by the way the houston ui and the zfs manager 100 open source 100 things you can get on github And if you get those and download them you can then manage all your zfs pools Easily through a web ui and then add on to that all the other things you want and to just build your own server at that point So while i'm excited about the project I do know when once you start wanting those more advanced and extensible features Which are great then go use them you can use them in things like you know the Houston ui and make it all happen Let's see look at all the stuff in here Uh proxmox next cpng, but you still like i'm sorry that i'm sorry that you still like vmware That's all right. I have no problem with that. I just like to make jokes Honestly, i'm We work with so many different things We're not experts in vmware, but we've worked with it. It's not that much difficult It's not that much more difficult to work with once you learn where things are same with proxmox I certainly think proxmox is a great system We focus more on xcp ng because we kind of specialize in it But it's not like the other ones are necessarily bad or ones people You know, I don't think people shouldn't be using it is how I word that They're definitely good systems I do not plan to go for two hours like I often do. I don't have as many things to talk about today. Um, we are Uh Gonna wrap this up I'm gonna say by five, but I may wrap it up a little bit sooner depending on how many questions people have for me Uh, because outside of the true nas in a few other things I didn't have a whole lot on my table to talk about because I actually wanted to get a few things done And it's beautiful outside and I've been here since 7 a.m So I'm ready to get out from behind the keyboard because well 7 a.m EST is when I get here roughly and it is currently 4 30 p.m EST so But if there's enough if there's enough questions, I like answering questions That's it's easy because I don't have to think of anything Yeah, uh This is one of the biggest driving forces Because I use it at work It's hard when you're using one product at work to use another product at home Because especially when you want to test scenarios in your lab Usually there are things you want to test deployment for so a lot of what people run is driven by corporate Places they work and you know Nailing down what you're usually going to be favoring the products that are most used in your corporate environments. So Uh evening bike ride. Yes, that's definitely Something that I'm going to be doing that's uh Then for those of you that follow me on twitter Uh, let's see if this will work. Well, let's work if I do this One of those I don't know type thing. There we go Yeah, I I'll I'll try not to fall but I did spend last weekend riding my um motorcycle So I did manage to uh fall off of it. I wasn't always falling off of it, but sometimes that happens So that's uh Yeah, I got it stuck on the dirt You can't see just how steep that hill is but that still was that it's a pretty steep hill And so this is a big coming down the hill and uh, then I came down really fast and hit the ground Such as life, but This is why I want to go do more of Is uh go out riding enjoy enjoy the day. This is how I get away from the The day-to-day stuff of being behind a keyboard because you're not checking your phone You're not thinking about much wells. Actually. Yes, when you do stop and think about a lot of things You end up laying in the dirt So you try not to think about anything else and focus on the motorcycle. That's one of the ways I find it very relaxing to do that I don't think this doctor image ever installed Well, where's it apps It's thinking It's not the right bike for that yet is um Interested here. I wouldn't use the tribute file system. There's stuff any news from the folks at 40 writer eyes and a collab video. Um, it's more It's me Coming up with a timing on it. I really just I've been so busy with a bunch of business things that go on here If you notice there's actually been a lot less videos on the channel because well There's a lot of things we have to focus on so I hired more people to do business management here. So that is Hiring people and organizing the business management side is kind of a priority because I have bills to pay And that's what pays the bills. So Because of that it's kind of a cause a delay in videos We have a lot of projects for doing and one thing about all these projects is they can't I can't exactly show a lot of them unfortunately, but That is still something that's coming, um Viking canoeing you manage free time awesome. That's same for me But uh, yeah, I mean the really when it comes down to about using things like if you want to use sep Or any of those do you need the distributed file system one of the things about distributed file systems? There are inherent speed issues with it. So when you start building out these systems cool It's redundant across multiple servers with high availability That comes at the expense of a really intricate set up with well some dollars put into it to make it perform The same as a single system scale out systems to build all the switching fabric between there and make them properly redundant There's a big cost involved in setting that up And if you want the same low performance you'll get out of a standalone You know true NAS server that takes some money putting it all in there This is why it's not something that everyone's just doing or everyone would be doing it. So that's You know kind of the use cases. Do you need absolutely robust high availability with something like sep? Cool Do you have the budget to create that absolute high availability system with it? And make it the same performance you would get out of a single system. So the Chart of can we have a large storage server a redundant storage server or a fast storage server? Really expands with how much budget you have for said devices. So Um She has sucked the fun out of distributed file systems have cloud topics. Yeah, someone had commented on the homelab show That even the used hard drives were getting expensive like the stuff The demand for the drives that they're either just not available or prices gone up That does apparently include some of the used hard drives So, yeah, anywhere that you can get storage is uh been Yes um Let's see True NAS scale was zero to your next call. It'd be awesome. Can't wait for release candidate Yeah, that would be kind of quite. I need to do probably I even look to see if they've come up with Anything major new in zero tier, but um, I want to keep an eye on it I think with more and more people I keep recommending zero tier anytime someone mentions cgnat I'm like zero tier is a great way to get back into the system. Um And You know, that's It's just a great tool to get around all that problem with cgnat and not having a public IP address Now this is something I completely agree and I've joked about this the the best move for chia is um Invent a bs file system Uh minor that doesn't really create any value creates a bunch of people getting excited about it The real money is buy stocks and all the drive companies watch the price go up And then when chia fades away to be something silly that no one bothers with anymore They still sold all the hard drives and then of course then you can short sell because there'll be a big stock crash because all these people Will be throwing all these, you know 16 terabyte hard drives on ebay for nothing because the coin isn't worth anything So no one wants to keep 30 16 terabyte hard drive spinning anymore That's my that's a completely uneducated guests of the um The uneducated guests of the whole system Oh, there's you know, I I don't watch any football But I used to like the sign they had for bary sanders They used to have on the whole side of a building Uh, it just it said bary sanders actual size I always thought it was a cool advertisement and the only reason I know who bary sanders is because I don't really watch any Sportball of any type Not any football soccer any of them But I always thought the bary sanders they had on the side of the building in downtown detroit was cool Because it's just an actual size and it was like as tall as a building Uh Let's see. What else do we have here? Um something else I do know and I have may I can look this up real quick um sink thing Has a new feature that I have not tried So I don't know if this is actually only in their beta Um, but let me go ahead and share. Whoops Slide this over this way and this over this way. It's a little bit different sharing things inside the There we go, um This is one of those cool projects that they've been doing a lot of updates And I have not really dove into this but I've seen somewhere that they're offering a encrypted Uh, non-cryptic indication but someone said they're doing encrypted synchronization I've seen people mention it, but I don't know where that feature is yet Now, I don't know if it's a mix-up, but if people ask you about it I'm like, okay, I haven't really revisited We always are using the latest version because we have it auto updating But I'm not using any I mean we use the encryption in terms of the protocols encrypted But I may revisit this and reset it up because I haven't done the stink thing in free nas 12 video So this is uh, definitely You know, I'm one of my favorite little synchronization products if you don't want to deal with corporate companies Um having your data you want to be able to sync between your devices Sync thing is just one of my favorite little go-tos for keeping all of my data constantly synchronized. So definitely um A really cool project But I don't know. Let me see if there's in ry pet on Untrusted device encryption Filed okay Can participate in syncing cluster with the following assumption limitations file data file sizes Folder key encrypted. Okay, so it's away and this may be a this is cool if this works the You would be able to sync to a cloud. It's considered beta. That's one of the reasons I don't see it in mind. I'm not on the beta release. So maybe I should switch to beta release I kind of get what I think I understand what they probably want to do here Is be able to choose a cloud storage provider where all the files can live But they're encrypted before they're sent. So they're able to be synchronized. You're able to have an untrusted Device as in some cloud device spun up somewhere line node or wherever else and be able to Have all those files synced encrypted but on the fly. They're decrypted on each endpoint that has the keys for it. So It's pretty cool. I like that an untrusted device can participate in syncing cluster with the following assumptions limitations Device cannot observe file data file or directory sim links or sim link targets file modification time permissions version vectors The untrusted device will be able to say file sizes or which parts or are Change on other devices, but that's fair. I mean that's not that much data So you're able to obscure the majority of the data They're going to know how big the file is but anyone knows How big the file is if they can watch the transfer itself because they're like, oh you transferred this much data Therefore the file must be this big. So it's a I think it's a really sounds like a pretty reasonable trade-off So this is something I will look into and do a new video on because I'm already using sync thing I just probably have to switch over to the beta of it So that's pretty cool. What are some other things people want to ask me about? I I've had a few people ask me about resilient. I've never used it, but this It's one it's paid to it seems to have some more features in sync thing But if you don't need those features then Then why do you have it like that's uh I don't know It's it's not a I don't think it's a bad product, but Um, if you don't need them and then sync thing will do the trick and it's free And it's well documented protocol. So Um Um Would you do consider doing a video about how to safely use your to connect to other networks Basically makes your connection for file share game server Uh, but for what other network? well, here's the thing if it's It's all those if you work under the assumed breach state what that means is Uh, if you're assuming someone has access like it's public facing Then your thread factors become what if someone gets on the same zero to network? Well Then all the things they're going to have access to all the things that are on that network or on that device You just have to think about did you put good passwords and 2fa on those devices? So let's say i'm inside the network like, you know inside I can get to your pf sense But I can't because I don't know the username password or did you use password 1 2 3 as your password? On your pf sense. That's where the problems kind of come in is you have to look at all those internal threat vectors There's not once you're letting someone inside the network. There's always going to be that inherent risk Um that you didn't use strong credentials or that you don't keep something internal facing up to date And this is a common thing that people do. Um, they update everything but don't update the Internal stuff because they always assume it's behind the firewall But that's not always the case that it's just behind the firewall um And safe because it's behind the firewall, which is why of course um This Exists so Actually chrome tab Unpatch systems next gen firewall passing an external audit This is why I posted this meme on twitter because This is what a lot of people will think unfortunately. I mean, this is where that pivoting comes in uh People go through and pivot into the network because they got someone internally to click a link once they click the link internally They Are pivoting around your network and looking for things to exploit So the biggest it's not really I need to do a video on zero tier and the network access is much as Keep everything patched that zero tier would have Access to so place yourself as a threat actor wherever you're loading zero tier. What do they have access to is it patched? That's how you secure it Um, and it's just most things I know it sounds like overly obvious because it kind of is It is overly obvious if everything's not patched behind the firewall and you're letting people behind the firewall There's your attack factor Um, I seen someone say I think it's stable. I'm going to go back and say you're probably referring to same thing I even tested a same thing with that feature. Maybe I mean same thing It's such a solid product. I probably would imagine it to relatively stable product as well Even if it's something that they call beta. So yeah, it's worth looking at um I want to set the code environment my zen server headless. What do you recommend vnc? um I Don't I mean I guess The way I would probably look at it I'm assuming your code environment is going to be running linux And if you're going to run a linux code environment, you're not running it locally You want to remote into it? Uh x2go is probably I've got a videos on x2go. It's basically a similar As windows rdp, but for linux. That's one way to do it Probably one of the easier ways to do it because it uses ssh as a transport So as long as you have ssh access to that linux machine wherever you decide to put it Then yes, you'd be able to access it via x2go That's so I will you know, I still use x2go myself because all they ever have to do is worry about having rdp open or rdp access And uh, I'm it's not rdp, but ssh access and it just lets me in and like I said, it does work very similar to rdp So uh, I'm going to say x2go is probably a good solution But generally for your code environment unless you need to have it remote having it local is usually a little better But you know because emulating a screen Less so Uh an issue the other thing too it depends on what type of development you're doing some people just develop my friend Does all this dev work in vim? So he ssh is in uh with tmux sessions in vim So but that depends if you're using a if you want to use a nice ui with an ide Then yeah, you're probably gonna just want to run it on linux on there um If pf sense isn't routing would you have to tell what is uh tell what's doing the routing? Uh firewalls the door router tells the traffic to walk through the door in most cases. They are the same but not always Yeah, I think you're answering someone else's question, but that's still a good point. Um Made on that. All right. What else do we have here in terms of questions? um To to to let's see Oh, that's funny Yep, we had the boss's story to public drive because he clicked the link in email Thank you guys for snapshot backups Well, one of the things I was just having a conversation with someone was when we were talking about how there's not enough network segmentation But I also said the the segmentation doesn't just stop at the network A huge problem is especially as you climb up the corporate ladder of people They those people at that high level of the company frequently think they need Access to everything You don't you compartmentalize access to everything like honestly does the person sitting in a c suite really need access to Some obscure amount of documentation information or all these other things But that's why they're usually the most targeted because They are the people who will click something. Maybe they're less tech savvy. They're more, you know business oriented They get excited about something they see in an email and they need the separation of privilege They do not need access to as much as they do, but if they do have that access That's the pivot point by which they you can have the segmented network all day But if you gave someone the c suite access to every single Uh directory of information Then all that is access to be encrypted and uh, definitely a problem Um, how much do you use bgp? I don't use it very often. Uh, my friends I have several friends that work as experts in bgp. I mean I've played with it some I'm just not an expert in it. I thought about doing some videos just to kind of explain I've done a few videos when bgp's gone wrong, but my day-to-day job doesn't require bgp Um, if you make a whole lot of videos on True nas it turns out the mail you a shirt. I don't know if they have a swag store at all Um, they just after I made a bunch of videos about it. They reached out to me and sent me a shirt So I I need another shirt that says I made a bunch of videos on sure nas and and all I got with this shirt And a lot of consulting and a lot of happy people learning how to use true nas Um What routing pro calls to use a lot? Mostly just gin putting static routes in for a lot of things it kind of depends on what the situation we're consulting in It's not like we're doing It's not like there's some demand for it most a lot of the work we do is with this small and medium business market They don't have their own bgp. They don't have their own asn Uh, so you're not you freak. I mean one small everyone step But it's not as often so it's only on like kind of the edge case in circumstances when they do have Open shores path first set up os pf for a larger scale network, but we don't do those every day I I'm more like hey, let's set up a dozen vpns across a dozen sites and time all together Matter of fact, I'm seeing some companies because of the complexity of it start looking at other solutions for that so um Uh, whoops, I seen there we go. That's what I was looking for At work we have os pf internal and bgp external. This is going to be a more common use case You'll see uh, it really just depends on if this is something you need for your network And how you need the pathing to go so maybe I'll do a video talking about that sometime But it's not it's not something I do day to day And when I don't even though I can do something when I don't do a day to day It's hard for me to make a video on it because The things I make videos on or things I'm fluid on like I'm very like I just use this all the time So it's easy to me walk through a video when it's not something I use it becomes harder to do a video on it Because I have to really make sure I am Making things like really Concise but really what I'm doing when I'm working on it is you know, you're carefully going through it I'm got the documentation and reading it because you're setting it up and when you get into setting up tricky network routes You have to get them right and even the enterprise companies like Verizon if you look on my channel For Verizon bgp those companies goof up bgp way more often than they should so Uh I use the docker image you follow the bitward instruction So there's not really any reason for me to make a video on hosting bitward and on prem Because their documentation I in my bitward video. I say we host on prem, but their documentation Tells you how to do it. It's really there's not anything about it that's special or gotcha or hard If as long as you know how to set up a non-prem server, that's what it comes down to Can you load a linux server? Cool. Can you load docker? Cool. Can you run the bitward install script? Great. You're all set The important things that you need to make bitward and work Are a certificate and making sure you have The email setup those are the two things you have to do and it's not really tricky. It's about Being able to get the email setup Man, which one are we using Mail hop probably I don't remember mail gun or mail hop one of those two It's been a while since I looked those are two services that we have in the back end here Access to to get the emails out. That's an important part email is an important function of it So if you don't have access to a mail server that you can really mail off of then that's going to stop your bitward and install There's certificate parts relatively easy You can use your certificates through bit warden itself. It has a certificate management system in there Which uses let's encrypt so that part's automated, but you got to get dns, right? So once again the self-hosted server is not as much about bit warden at all It's all about do you know how to get dns and certificates working? So Or do you know how to get email working? So it's it's and that's and that's not an easy answer For setting up bit warden because what mail service are you using and are you going to be able to authenticate the mail records for you? Interestructions tell you you have to set those up Because there's a variety of mail servers once again that it becomes well And I think this is a good point someone said hey time you talked a lot more about zfs on the home lab show That you did about true nas and i'm like no no Setting up zfs and hard drives are all the questions that people bring me constantly in the true nas world That's where the questions come from it is not as much about true nas They can figure out how to do a lot of the other functions inside of it But when you have a pile of hard drives in front of you then the next two hours is forum posts of I have 10 hard drives. What's the best way to configure it? And then the opinions start flying in the forums. So Yeah It's it's one of those things it's there there's different nuances to it. So um Hey tom, what do you use for immutable offline storage? I uh Like that video because i'm actually gonna grab it. It's under my desk And uh, I'll show you it right now. So Right here I'm gonna unplug it from my system As soon as I get the all right just I'm waiting for the uh notice to tell me it's done disconnecting I think it's done All right, there we go. Um, I did a video on this but I mean there's nothing special about it It's just an mvme in an external case Uh sand disc I compared it to the sand disc Uh one which I have one of those two. I have a few of these these go in safes. Um So once in a while I have these as far as I also use back plays and everything else This is one more physical step Uh that I do every now and then for immutable offline backups because it literally will be inside of a safe Not in this building but uh back plays is the other answer for that So hopefully that clears that part up Also, if you screw up zfs in your true dance thing, you're doing everything else, right? It doesn't matter Yeah, if you set up your drives wrong, um, everything is based on how you set those drives up That is the fundamental basis of it. And when you have a dozen hard drives, there's a lot of different options Uh, make a video about sitting up ledson and crypt across pfsense xcp gilinx I did it's called a j proxy with pfsense. Uh, let's encrypt an h a proxy got a video on it already. So How do you back up the bit warden vault? That's easy syncing um Bit warden has its own backup and uh, you just drop it in syncing and then syncing will carry the data somewhere Uh, wherever you wanted to carry it to usually for us syncing carries it to a series of true dance servers that then back up to back plays Um, I think this is m2. Um, if you look for usb c housing on my Channel, I have the link to what this is exactly. I can't remember right now So, uh, it will let me look for the video real quick because I know It's probably the only thing that's going to be usb c There we go. Um Here's the link to the video But it's the video is titled and let me Share it back out so share share screen chrome tab There we go. This video right here called, uh, one terabyte portable And it has links to a couple different devices and I I still have those devices from the bottom At the same time, they're about the same speed as each other. So they get the job done for doing You know just being able to pull all the data um What you set up to your managed pf sense for us without going on site with remote access I have a video on remote accessing pf sense um Let's see What else do we have in here? See eric has joined the channel Good Um, what else I answer all the questions because we're coming up our count. Oh, it's five o'clock. We're not coming up on it It is five o'clock because there are any final questions for me here Um that I probably did a video on because so far you guys are uh doing great here for picking out things that I already did videos on Which I like that answer because you know, um, by the way, and if you haven't seen it We're trying to curate everything here to this site For curation Which is laurance dot technology And what this is going to be well is I should say it's not going to be it's slowly getting there is a uh site of documentation including groups of tutorials so everything can be just grouped like this To be able to you know say here's all my pf sense videos You know everything's tagged everything's in this or draw this embedded youtube videos There's not they're not anything different than you'll find on youtube They're just organized differently so you can watch And click on something and watch it right within here But then you can see how there's categories on the side to let you drill down Into like here's just all the true nasty videos so this is uh Is this kind of nice to be able to do this we're just trying to curate everything now By the way, these are only tutorials other videos They do like announcement videos or vlog thursday any of the other stuff that is on my channel does not go in here This is only four tutorials and it's laurance dot technology So, um, it's definitely something, you know, we've been working on for a little while to try to keep it organization on there. So um best home use wreck mount layer 3 switch I I I don't know pick one whatever works for you. I've covered unify I've covered micro tick whichever one works for you Double shot of coffee your next single shot. Oh, I'm I'm a coffee lover. I definitely, um Double shot or more. So yeah, I drink a lot of coffee. I love coffee coffee is definitely one of my favorites Uh pizza or barbecue. Well, yes, of course I like both too much. I can't pick. I can't pick a favorite there Barbecue is really good pizza is really good depends on the day there we go Currently, you have an entire unify network if you have a unify network, then You know, it's easier to stay with unify. I actually um working on an idea I want to do because some people don't realize how Compatible these things are I thought about doing a multi switch multi vlan video Where I jump through all the switches and show how the vlands are configured in all of them To prove my point that there is no even though vlan is a standard from the networking side of it How each company does it is a little different You can take a vlan and start it on a unify move it through a micro tick move it through a sysco Move it through your several other brands of switch But when you start looking at the interfaces, you're like, why does each company do this differently? And you're like welcome to the world of networking and why people have favorite products once you figure out your favorite product You can usually stay with it because you're like, I don't like the way they do vlands and things like that. So Um Barbecue chicken pizza, why not both? Yes, I seen That's a good one there. Oh Let's see What else do we have here? Unified to sysco switch to pf sense Uh express for a filter. Yes, I do both if I go, I mean at home I'm just doing filtered coffee when I'm out and about I mean I'll get an espresso I just don't have an I'll do express at home. So Have you done a video about site to site VPNs the one site behind? Uh ds light if you're using open v I've done an open vpn site to site. So open vpn will allow one of the systems to not have a public ip so um Any sfp plus pf sense box recommendations not really I whatever works I mean the intel cards are affordable and they're cheap um Build a system with an intel card in it Or buy one of those super micros I don't use checkpoint or palo Alto. So use whichever one makes you happy Cisco sg 5500 nope or 550. Nope. I don't know. I don't I don't have one. So I don't have an answer Any any other final questions? Final questions Anyone who wants to register for the giveaway if you didn't hear about it earlier The link is in the description of this video for the tiny pilot We will pick a winner Next week that put the date in there when we'll pick the winner It'll be picked at random. So no, I don't know who's going to win instructions in there Sorry, we're only shipping to the united states for this particular offer I don't know if in the future other than if we do some amazon giveaways Um, I just don't like dealing with any of the paperwork related to international shipping I used to do that years ago another lifetime back when I was an ebay seller and it was always Difficult and I hate paperwork. So anyways um The um Yeah, that's what I have to say about that. I don't want to ship internationally. Sorry. Sorry for my friends that I know Many of you are over in europe. Um, I'll see if some point if I can work something out Oh thoughts I will answer this question Steve Gibson did a great, uh deep dive on the amazon sidewalk go check out his episode on Him reading the white paper on sidewalk. So, uh, I think it's a neat feature. Um, whatever if you I don't think there's a crossover of people who put listening devices in their house from Google or amazon that are also worried about it So while I see people worried about it, and I think it's a novel approach to what they're doing to solve this problem I don't think the same people are If you drew the venn diagram people who are worried about sidewalk and people who listening devices in there They're not the same people that was probably very little crossover in there. So Yeah, um I don't know. I don't use those things in my house. So If you do that's fine, but you've got to remember You've now put some type of device from some large company in there and are going to do things like enable sidewalk by default Which they are of course they are they would not make it opt in by default They're of course going to make it opt out by default. By the way, it's it's a novel thing It's going to have some interesting uses and as always, uh, I support the electronic frontier foundation I've brought this up before because they Help take a legal look at some of these things and figure out, you know, what's right and what's uh, not right about it And time will tell because every company has the best of intentions of something something do no evil And later we figure out what they're going to do. So Yeah, so I think the homelab people are more like running home assistant and things you can host yourself That's my guess that in which of course means you don't care about sidewalk and it's really not a thing. So Oh, yeah, the the the the crossover where these two people meet is definitely of this is when you have a partner or spouse that Does like these devices. Yes. So there can be the homelab people who are big privacy advocates who do not like these things but then um A child or spouse or partner that does like these things. Yeah, that's definitely um a potential crossover there All right, thank you all for joining me. I'm happy that you could hang out for this hour Hopefully smashing that like button before you leave because there's only 84 likes. Oh, man Uh, see if we can't get that number up a little bit higher Hopefully try click Anyways, uh giveaway links links and once again, I've said all that I'm not gonna say that again But it's uh down below description. That's where we put things actually all the things my forums and all the ways to contact me Twitter uh DM me if for some reason you need to but no, sorry, I don't do twitter tech support Uh, but you know if you want to send me a message. I do reply and say hi Once in a while I pop in the discord and say hi some of you may be wandered over there From there, but hey, whatever works and thank you for joining See you I don't know may I next week for the live stream, but I'll at least get a couple videos done in between. Thanks