USING HTTPS IN YOUR HOMELAB, AND WHY IT'S IMPORTANT

When you have a homelab, you’re going to start having a number of internal websites and services you use. You’ll learn to live with HTTPS warnings when navigating to these sites, but these warnings can still be a problem. What if we wanted to have valid HTTPS everywhere? HTTPS Primer HTTPS encrypts your traffic so things that intercept it (routers, attackers, etc) can’t decode it, and it does this even with an invalid or self-signed certificate.

Read more

PLEASE DON'T SELL SPACE IN YOUR HOMELAB

Hanging out in subreddits like /r/homelab, /r/servers, and /r/datahoarder, I see this question asked too many times: I have extra space in my home server, how can I sell this for other people to use? My answer (and a lot of other people’s answer): don’t. We’re Really Not Trying To Ruin Your Dreams If you come across this post, or if this was sent to you, know that we aren’t doing this for the sole purpose of ruining your day.

Read more

MY THOUGHTS ON LASTPASS AND THEIR RECENT BREACHES

If you’ve poked your head outside in the last few weeks, you’ve noticed that LastPass had a security breach where customer vaults were exposed and downloaded. I’ve been hanging around in /r/lastpass and seeing the mixed reactions has been interesting. Why I’m Leaving I’m leaving LastPass, and had been looking at solutions for the last few months. While the security problems are the last nail in the coffin, I’ll share why I’m leaving besides the breach.

Read more

THE COST OF HOMELAB BACKUPS

If you ave a homelab, you’ve probably collected a few TB of data that needs backed up. Recently in /r/datahoarder and /r/homelab I’ve seen a lot of posts that ask about backups. I’ve talked about my strategy in the past , but I figured I dive a bit more into offsite backups. If you’re not familiar with why you should be keeping backups or some general rules of thumb, I have some information over here.

Read more

SETTING UP A BACKUP 4G INTERNET CONNECTION WITH OPNSENSE

One thing that quickly becomes annoying is disruptions to my main home internet. This is annoying for the obvious reasons: I can’t use remote services, home automation that needs the cloud breaks, etc, but is also frustrating because it’s something I largely can’t control. I’m at the mercy of my ISP to detect outages and resolve them, and sitting around and waiting is one of the worst feelings. After an outage that lasted over a day, I took matters into my own hands and created a backup 4G connection for my home internet.

Read more

THIS SITE'S STACK

This site isn’t anything too special, but I figured I’d share how I host things for others who may be interested in owning their words. Motivation For Self Hosting I’ve run this website (in some form or another) for the last 6+ years. The idea was to share some stuff I do that I think is cool with others and maybe remind myself of projects past. I’ve always just shared written content (for now), and there’s a million different ways to get your words out there.

Read more

NAMING THINGS IN A HOMELAB

There’s an old joke in Programming that 90% of your time is spent naming things, and I think this extends into Homelabs and any other computer environment. Names are there give your systems identifiable places, can describe where they are and what they do, and are the easiest way to identify something, so giving some thought into a naming system is worth it. Styles of Naming Naming schemes, like the environments and systems they reflect, can vary widely.

Read more

MONITORING TRAFFIC WITH OPNSENSE AND ELASTIFLOW

One critical thing for any environment, in my opinion, is monitoring. Being able to detect problems and get an understanding of them is crucial to solving them. One thing that is important to monitor is your network. This is not just an important to get a sense of its health an performance, though. Detecting when client machines talk to potentially malicious hosts is a pretty quick way to pick up on security concerns.

Read more

I DOUBLE NAT MY NETWORK, AND I'M PROUD

I double NAT my home network. And the funny part is I designed it that way. Let me explain. Why This is Bad If you’re a network person, you’ve already groaned. If you haven’t groaned, you probably should. Network Address Translation (NAT) is a service that most consumer routers perform by default. Essentially, it’s what lets you connect your privately addressed network to a publicly addressed network and have things work.

Read more

HOW MY HOMELAB BECAME CRITICAL INFRASTRUCTURE DURING A TORNADO

I recently made a design change to my homelab that paid off in leaps and bounds, and just secured my homelab as a part of my critical infrastructure during emergencies. This change was a pretty simple idea, but recently proved itself during a recent tornado near my home. This post will largely be tooting my own horn, sharing why I think this is a good idea, but will also talk about severe weather and have some pictures.

Read more