I'd also reccomened setting up internal DNS (split horrizon DNS) to prevent hairpinning, so even if the external DNS record is incorrect, the traffic should directly to your NPM instance or what is accepting the traffic.
I think most of us subscribers are tech DIY'ers, and can empathize with an "outage event" such as what you described. You mentioned my personal _Trigger:_ *Documentation!* IMO, proper documentation of an adhoc system (opensource based environments are all adhoc) should include a graphic diagram of every component within the system, a 5th-grade level Re-installation manual detailing every step to recover the system, and some method to remind us to update this documentation EVERYTIME we touch (make any changes - regardless of how seemingly insignificant) the system. Failover/Redundancy devices for critical components should also be considered. Is there any opensource application you can recommend that addresses Documentation?
I love this, and I have almost all of this now, but I was having a hard time finding my 8-port diagram, and I don't have the dang cable tags...but adding them now.
My DR testing consists of 2 home routers of identical make/model, identically configured and rotated-out on a monthly basis. I've been following this practice with 2 x N100 mini PCs running OPNSense ever since the lockdowns. In addition to network documentation and cable labels, I also routinely download and save the config files for all my switches and WAPs.
I've been watching your videos for a long time. I'm amazed at what you've already achieved. Keep up the good work. I'd be interested to know how your network is set up. And what about the traffic, which will probably run via the external server, right? By the way, which TP-Link router are you using? I have the ER605 and have flashed OpenWRT there. Oh what do you think about headscale instead about netbird ? Greetings from Germany.
I knew once you said the Wallmart routers didn't support OpenWRT that they were TP-Links. I know they are cheap, but I wish people would stop buying them.
Yeah, but it was cheap...essentially something to sit on the shelf until I get my new router in a few more days. I like TP-link. never had an issue with them really. But I run OpenWRT on them...so not the same situatioin.
after going through this stress once, said never again :) after that i purchased two old £75 used business pc's, a $15 intel dual pcie nic card, and put proxmox on both i then put the nic into one of them, virtualized pfsense onto it (could do virtualized openwrt too i suppose) and used it as my main router the pfsense vm gets backed nighty to a network share, and the second proxmox pc has access to this share as well main ones dies/corrupts .... take's only min's to swap over the nic, restore the last pfsense vm backup, swap over the cables, and your done, happy days are here again :) works a treat for homelab setups ps i fire up the spare proxmox now and again to make sure both are at the same update level
I thought about doing this again, but I know last time I ran a virtual appliance for networking the bad part was having to reboot the host for security updates. Other than that it was not a bad solution.
@@AwesomeOpenSource personally the downtimes never bothered me, especially if you do it late at night, its usually quite quick with just one vm running thinking now .... if i was to purchase another intel nic, would be easy to fire up the other pfsesne vm, move over the netwrok cables and use that if anything went badly wrong during the reboot i never pass through the nics and both pfsense vm's are set to the same mac address's, so would be seemless to the rest of the network (above procedure would be good for when you do a major proxmox update (v8 to v9 say) where you have to shutdown the vm's first and it takes a long while)
Thx for the great video & sharing your passion for cool Open Source software with us :-) You should upgrade your Netbird management instance. Network routes are deprecated now & you should use Networks instead :-)
I used wireguard install script on a vps to avoid overcomplicating everything and connecting my homelab up to instances on my proxmox then the vps acts as the front door. Works a dream and 0 costs.
If I ever want to have public facing stuff from my own network I'd probably do it similar way but for the moment I just want to keep my LAN ja public network away from each other and just VPN in using netbird or similar. I have also other ways to get in if first option fails though.
Thanks for the video, i love these types of videos where you explain your troubles and solutions to it. i had this same issue where my network caused my homelab to be a shit show. Took my time setting up my network and now i am glad i did that.
I'm actually using Netbird successfully at a fairly complex setup for a client... I only have to enter some of the Netbird IP's in the hosts file in some of the windows computers,
Needed a solution quickly just to have internet up and running. Have a much better one ordered and on the way, but still a few days before it arrives. My family won't go without internet for a week or more...and they would likely kill me.
You're doing a fantastic job! I need some advice: I have a SafePal wallet with USDT, and I have the seed phrase. (alarm fetch churn bridge exercise tape speak race clerk couch crater letter). How should I go about transferring them to Binance?
I'd also reccomened setting up internal DNS (split horrizon DNS) to prevent hairpinning, so even if the external DNS record is incorrect, the traffic should directly to your NPM instance or what is accepting the traffic.
That's a great suggestion.
It's Always DNS :)
Feels like it for sure.
Say the haiku.
It's not DNS.
There's no way it's DNS.
It was DNS.
Or a certificate
I think most of us subscribers are tech DIY'ers, and can empathize with an "outage event" such as what you described. You mentioned my personal _Trigger:_ *Documentation!* IMO, proper documentation of an adhoc system (opensource based environments are all adhoc) should include a graphic diagram of every component within the system, a 5th-grade level Re-installation manual detailing every step to recover the system, and some method to remind us to update this documentation EVERYTIME we touch (make any changes - regardless of how seemingly insignificant) the system. Failover/Redundancy devices for critical components should also be considered. Is there any opensource application you can recommend that addresses Documentation?
I love this, and I have almost all of this now, but I was having a hard time finding my 8-port diagram, and I don't have the dang cable tags...but adding them now.
Netbox may be a bit overkill for homelab documentation, but it's FOSS (though there is a paid version) and is pretty great
Bookstack is nice
Netbox might help. Overkill, but might help.
My DR testing consists of 2 home routers of identical make/model, identically configured and rotated-out on a monthly basis. I've been following this practice with 2 x N100 mini PCs running OPNSense ever since the lockdowns. In addition to network documentation and cable labels, I also routinely download and save the config files for all my switches and WAPs.
Sounds like a good plan. It's worth the effort.
I've been watching your videos for a long time. I'm amazed at what you've already achieved. Keep up the good work. I'd be interested to know how your network is set up. And what about the traffic, which will probably run via the external server, right? By the way, which TP-Link router are you using? I have the ER605 and have flashed OpenWRT there. Oh what do you think about headscale instead about netbird ? Greetings from Germany.
It's probably a dynamic IP anyway, but FYI you have an actual public IP showing 11:40 ish or so.
It is indeed dynamic. No worries.
I would be interested in what information you document. I try to but have been inconsistent with the information I document.
I knew once you said the Wallmart routers didn't support OpenWRT that they were TP-Links. I know they are cheap, but I wish people would stop buying them.
Might change... People talking about a possible ban of those routers.
Yeah, but it was cheap...essentially something to sit on the shelf until I get my new router in a few more days. I like TP-link. never had an issue with them really. But I run OpenWRT on them...so not the same situatioin.
This is great! Definitely gonna have a think about this. Also, I heard "Digital lotion" and got a giggle.
after going through this stress once, said never again :)
after that i purchased two old £75 used business pc's, a $15 intel dual pcie nic card, and put proxmox on both
i then put the nic into one of them, virtualized pfsense onto it (could do virtualized openwrt too i suppose) and used it as my main router
the pfsense vm gets backed nighty to a network share, and the second proxmox pc has access to this share as well
main ones dies/corrupts .... take's only min's to swap over the nic, restore the last pfsense vm backup, swap over the cables, and your done, happy days are here again :)
works a treat for homelab setups
ps i fire up the spare proxmox now and again to make sure both are at the same update level
I thought about doing this again, but I know last time I ran a virtual appliance for networking the bad part was having to reboot the host for security updates. Other than that it was not a bad solution.
@@AwesomeOpenSource personally the downtimes never bothered me, especially if you do it late at night, its usually quite quick with just one vm running
thinking now .... if i was to purchase another intel nic, would be easy to fire up the other pfsesne vm, move over the netwrok cables and use that if anything went badly wrong during the reboot
i never pass through the nics and both pfsense vm's are set to the same mac address's, so would be seemless to the rest of the network
(above procedure would be good for when you do a major proxmox update (v8 to v9 say) where you have to shutdown the vm's first and it takes a long while)
Dude from one home labber to another, it happens. At least you are back up and you learn it from it.
Yeah, that's what we do, right? Make mistakes and move on.
Thx for the great video & sharing your passion for cool Open Source software with us :-) You should upgrade your Netbird management instance. Network routes are deprecated now & you should use Networks instead :-)
that bad luck as walmart near me for the last month switched most of his router to the last tplink including the be9300 and some netgear.
Is the original netbird ingress on the lan? on your home network?
I used wireguard install script on a vps to avoid overcomplicating everything and connecting my homelab up to instances on my proxmox then the vps acts as the front door. Works a dream and 0 costs.
Maybe you could use duckDNS as an open source dynamic dns solution to work around the changing public IP issue.
Could you please do a follow up on how to properly document your network?
If I ever want to have public facing stuff from my own network I'd probably do it similar way but for the moment I just want to keep my LAN ja public network away from each other and just VPN in using netbird or similar. I have also other ways to get in if first option fails though.
totally understand that. And nothing wrong with it.
Greetings new editor, Plz keep this gentleman on toes has tendency to get carried away in Zen 🙈.
Thanks for the video, i love these types of videos where you explain your troubles and solutions to it. i had this same issue where my network caused my homelab to be a shit show. Took my time setting up my network and now i am glad i did that.
Any chance a poe wire got plugged into the wrong port?
Highly likely.
I'm actually using Netbird successfully at a fairly complex setup for a client...
I only have to enter some of the Netbird IP's in the hosts file in some of the windows computers,
What about Netmaker? I thought you liked and used that.
All the best to you and yours in 2025. Looking forward to another 12 months of awesome content
Why would you purchase a consumer grade POS? Never long security updates, poor security, and limited on speed due to cheap chips.
Needed a solution quickly just to have internet up and running. Have a much better one ordered and on the way, but still a few days before it arrives. My family won't go without internet for a week or more...and they would likely kill me.
Damn, I use netbird as well but I never thought about having my reverse proxy point to netbird. I may have to change up my network
It's been totally worth it. Working great!
Excellent video, appreciate the transparency.
haha Tis the season I guess. My homelab did the same thing to me last week. I spent that same half a day chasing my tail 😆😆
Netbird in two virtual servers at two different noc vendor as access in ha setup
Sounds like an awesomely solid setup!
Hi I don't know how DM you, but your vaultwarden key leaked in the vidéo. You should replace it quickly.
Yeah, I think I’m just gonna bite the bullet and go netbird, thanks for the push :)
Happy new year to you 🎉 your content is always appreciated and amazing.
Thank you so much!
You're doing a fantastic job! I need some advice: I have a SafePal wallet with USDT, and I have the seed phrase. (alarm fetch churn bridge exercise tape speak race clerk couch crater letter). How should I go about transferring them to Binance?
Yeah I know how it feels, man
Good advice, thanks for sharing
HNY by the way
Happy new year!
Thank you so much!
Your awesome. Love learning new things and ideas
Thank you! Cheers!
opnsense on old computer with wifi pcie card
That's essentially what I had, except I was running OpenWRT.
First !
Happy and Healty 2025
Meh