I have one and it still sucks. I ordered it after the one I bought on Amazon kind of sucked thinking the L1T would be better and it was worse than the Amazon one.
I've worked with quite a few ISPs and exchanges. I haven't set up port mirrors for the NSA but I have setup temporary mirrors for the FBI upon request.
IaaS is mostly like this already. There are some things where it’s not used like VMs which serverless tries to solve. Additionally people tend to waste tons of resources with IaaS because they don’t scale on usage.
My solution to this has been creating a public bastion server and use Wireguard. Wireguard listens on a random UDP port (port knocking is more difficult here.) This client is set up to have a dynamic endpoint so I don't need to worry about whitelisting. The key and port information are stored in a password manager like Vaultwarden with the appropriate documentation to connect. Firewall rules are set to reject on all other ports and it doesn't respond to ICMP packets either. A lot of that is security through obscurity but I found this to be a good balance of security and practicality.
I've seen this discussed a fair bit, and always the recommendation is to use wire guard and expose ssh only to the "local network" e.g. https://bugs.gentoo.org/928134#c38
First, I don't see how this works where there's a single server (e.g. colocation).
Second, doesn't that just make Wireguard the new hack target? How does this actually mitigate the risk?
If you’re not using any splitters and zero to a few couplers you can expect latency to be ~3ms with the model OP is using. You can easily achieve 1Gbps using NFS with 3-10ms of latency as long as the underlying hardware can support it. I would avoid doing block storage even over ethernet though, that should be reserved for DAC or fiber. These particular adapters are rated for 10W (5V/2A) and I doubt they use all of that. I haven’t seen any noticeable latency spikes using these either but your mileage will vary depending on your cabling and connections (especially older pre-digital cable splitters.)
Moca is a fantastic option if you have a good quality coax run, ideally point to point without splitters. For example a lot of people at some point pulled coax from wherever the cable enters the house to their living room. Now when you get fiber, the fiber probably enters the house in the same spot as the coax does. You can repurpose the coax run to keep your media center hardwired, as a wifi backhaul, etc. and in those use cases (streaming, wifi, etc) the additional 5ms of latency are IMHO irrelevant. Of course, if you can run a new cable with ease, nothing will beat high quality Cat 6. A lot of us just don't have that options, lack of crawl space or attic, etc.
You actually still can, just not on official servers. You don't have to break your device's or the game's security to connect to a third party server, the game just lets you. Unfortunately this is mostly a thing of the past, and most online games released in the past 5 years are completely unplayable without the central servers.
I really love how Velan Studios handled the shutting down of their game Knockout City.
1) They announced the official servers would be shut down months ahead of time with an exact date[0].
2) In that same announcement they also announced that they would be releasing a private server/client build before the shut down happened that would allow people to continue to play using privately hosted servers.
They delivered on the promise to release a private server build[1] and by the time the official servers were shut down, the community had already built out a hosted server solution complete with a custom launcher to support easily connecting to different servers.
Because Velan took the time to plan the games shut down properly and went the extra mile to produce one last release that included everything needed to run the backend, players were able to continue playing the game completely whenever they want.
I really hope that other game studios take similar paths in the future.
Nice setup! I have a very similar Homelab minus the Generac (I regret not getting one before inflation kicked in, especially since I already have LNG to the home.)
My only recommendation would be switching your virtualization over to Proxmox (LXC / KVM) and setting up an HA cluster with Ceph and MLAG. It's relatively easy and free and will give you a lot more features than plain ESXi and even free vSphere/vCenter.
Yeah, the price on this genset I think has gone up around $4000 since I bought it, not including the install
I've been meaning to try Proxmox, but my day job heavily relies on ESXi, so its nice having something to mess with at home. I am also running vSphere with an Enterprise licence, so I get all the fancy stuff
The support will get better over time. 10 years ago I couldn't watch any streaming services on Linux with Firefox or Chrome. There was a brief period where streaming services were still using flash so you could sideload the flash player onto Firefox but that didn't last long. Now I run Pop!_OS 22.04 with an Nvidia GPU and I can play almost all my DRM content including Windows games on Steam. While I still experience awful bugs that I wouldn't have otherwise experienced on Windows or macOS I can finally daily Linux desktop.
