nitrolife

I used lvm with SSD cache few years, but time to time I have problems with loads after reboot. If forgot about reboots all work great with LVM raid + LVM cache. Cache can be configured without raid. And you can add or remove cache in any time. Docs: https://man.archlinux.org/man/lvmcache.7

Insert logs in pastebin.com and attach links and you can open ticket on git.

You can use postfix + dovecot + roundcube + spamassassin + opendkim + pigeonhole. Maximum stability. Roundcube have aliases plugin.

You can start from here: https://wiki.archlinux.org/title/Virtual_user_mail_system_with_Postfix,_Dovecot_and_Roundcube

Topic starter don’t use docker containers. He use lxc containers. LXC is virtual machines on host kernel. Case is that: He have 3 virtual machines with shared disk. In 3 VMs have 3 different applications. Applications work under different users and can’t rewrite data on shared disk. That is user permissions problem.

the idea is that: all your applications work under the same user. or at least under the same group. because this is exactly how the differentiation of rights is applied.

A good plan is to create some kind of user in all three containers and run qbittorrent, samba and the third application under it.

A bad plan is to run everything under a random user with 777 rights, but this is a really bad plan.

Create a user in all three containers and work under it. That is not hard. Run qbittorent with that user. Config will be there: /home/user/.config . Then set that user for samba. I don’t know third app , but I think you can find how change user in manual.

You can use Revolt. Literaly Discord clone. https://github.com/revoltchat

or you can’t buy if you’re not successful enough or you’re in the wrong country. For example, in my country, the minimum cost of a 1TB SSD is about $85 and a salary of $2,000 is considered a very successful salary at the upper limit

You need to create an MX record in the DNS zone of your domain. Something like:

@ IN MX 10 my.zome.
@ IN MX 20 server1.my.zome.

You can create 1 MX record or more. 10 and 20 server priority for input mails.

Then you need to create an spf record. There are several options here. For example

@ IN TXT "v=spf1 +a +mx -all"

allows you to send emails from A domain records, then from MX domain records and prohibits from all other hosts.

Theoretically, you can only create an SPF record with A but without MX and dont create MX DNS records. Although I have not tried this configuration.

This is the minimum set after which you will get into spam, but at least the letters will reach.

You also need to make a PTR record to avoid spam folder, but this is not possible on a dynamic IP.

interesting facts about LVM:

1. You can make a volume snapshot of the system before a major change (for example, an update).

2. You can enable caching and use HDD together with SSD cache

3. You can build raid 0,1,5 directly on LVM (you still need modules from mdraid)

4. Even without a raid, you can expand the partition beyond one disk to another or migrate the partition from disk to disk (without even disabling it)

However, all this is done from the console and I do not know if there is a GUI.

If you need fast online share you can use nginx + WebDAV module . You can use ip filters or auth. Or disable any auth.

You can create graph on the UI and then export to json. To be honest, it’s hard for me to imagine a situation where graphs need to be edited so often. After all, there are excellent template engines in Grafana itself. For quick look anyone can use Explore panel. Maybe I don’t have so much data…

Grafana sends an email screenshot of the graph when an event is triggered on the graph. You can see alerts part on any graph for understand.

You can configure grafana without gui. That explain in https://grafana.com/docs/grafana/latest/administration/provisioning/

prometheus use own time series database. you can connect influxdb to grafana and send alarms from grafana, but alertmanager better i think. node-explorer can collect all this data (sensors, VM/PC load etc.)

I use:

1. Monitoring server - prometheus
2. Alert manager for prometheus - alertmanager. You can write any triggers here.
3. Web UI for prometheus - Grafana
4. Exporters for prometheus - node-exporter, blackbox-exporter, mysql-exporter, psql-exporter etc. You can find exporter for everything you need.
5. Some services native support pormetheus. Docker for example: https://docs.docker.com/config/daemon/prometheus/

If you whant cluster you can install thanos on prometheus.

On DNS you need A record if you have ipv4 only or A and AAAA records if you have ipv4 and ipv6.

You DNS outside you home servers? If you have dynamic IP at home you can’t host DNS on home server.

You have only 1 IP? You need port forwarding on you home gateway to home servers if you use somerhing like SSH. If you want access to something web based you need proxy. NGINX for example.

How it exactly work:

• Somewhere someone write youdomain.com in browser.
• Browser ask local dns: who is youdomain.com
• local dns ask another dns, and another and in one iteration request go to you dns. Or maybe some of dns have cached answer. But imagine that not.
• You dns send answer youdomain.com is 111.222.333.444 for example. That is A record.
• DNS work stop on that.
• Browser send request to 111.222.333.444 with HTTP header “Host: youdomain.com” and some path. / or /something maybe.
• Some balancer should get request and send in to right server in you home network.

UPD: don’t show to internet something risky interfaces. Proxmox web panel or something like that. This is a real bad idea. For that type of services VPN extremely greatest. Send you DNS to public without protection not a great idea too. Including pihole. I think you will get into some botnet already on the 3rd day of work.

Try running top and see the global cpu/mem statistics when loading images. Look at what a high-load process is. Check that docker is not installed via snap.

Do I need to allow docker to use more than 6 GB?

Check exactly how much RAM NextCloud daemons are used. How much CPU used?

In general, it looks like an overload that occurs when NextCloud starts processing newly loaded files.