eBay, FB marketplace, craigslist. Basically any dell, hp, or Lenovo workstation big enough to have a pcie slot.

Intel is usually the most prevalent. 6th or 7th Gen i3 or better. 4 to 8G ram, at least a 64G SSD.

Here’s one that’s a little overkill on the ram. But you’ll need a cheap small SSD if you get it.

https://ebay.us/m/RdCOjG

Used SFF PC: $40

Pcie 10gbe network card: $30

OPNsense: free

Done.

Both.

I have a free vps providing me a public IPv4 address, connected to my opnsense router via tailscale, and use a simple port forward from the VPs to the router’s tailscale IP.

I have certain port/connections coming in either via the tailscale IP or my external IPv6 address all forwarded to my internal Caddy reverse proxy which itself is only running IPv4.

And I use cloudflare for my dynamic DNS resolution of my domain. A records are my public VPS IPv4 and AAAA are my own public IPv6 addresses respectively.

If/when I change to a service provider that doesn’t use CGnat for IPv4, I can stop doing the forwarding from my VPS.

That’s so we can stream music/video without needing to use the VPN.

But, I also run tailscale on my phone, so I can do admin stuff remotely from it, albeit painfully, on this small screen when things break. 🤣

Tubiferry plugin for lidarr.

Soulseek has far more music on it than you can typically find on free public torrent sites.

Just a heads up.

The only brand new, 10gbe managed switches that I can find for less than 60 bucks are off-brand chinese junk. No thank you.

As far as electricity cost goes? After doing that math, it might cost me a dollar fifty a year to use. That machine sitting on the bottom is a much bigger chunk than the switch itself, as it has 6 7200rpm SAS drives in it. Plus it’s a Xeon E3 CPU.

Those drives, each, use as much electricity as that switch does, even before considering the CPU itself.

It is a MANAGED switch, my guy. A simple 8 port switch would not work here.

I have multiple VLANs running.

Also, one of those connections is a 10gbe DAC to the big machine which is my NAS and main server.

Not too many 8 port managed switches out there with an sfp+ 10gbe port for 50 bucks, which is what I paid for that Brocade switch in my picture.

But hey, if you feel like buying one for me, I’ll happily take it, and start using it instead.

The used 48 port was cheaper than the used 24 port.

You call it waste, I call it reuse.

Such professional. Much clean.

Not pictured: my raspberry running adguard. It’s tucked behind a TV, because it also runs Kodi.

Also not pictured, my Sophos SG-135 rev 2 running OPNsense. It’s in the box where my Starlink equipment is, on the other side of this room.

Sounds to me like your DNS on the router itself is crashing.

There’s a couple of things you could do. Set up something like pihole or adguard home, and set the forwarding to something other than your internal DNS server.

Personally, I use AGH, and the default quad9 for forwarding all but my own domains. Those get handled by my OPNsense router’s Unbound DNS and/or DNSMasq, depending on which domain (local or one of owned domains)

Everything other than those gets forwarded to quad9’s public DoH service.

ZFS ARC, baby!

laughs in FreeBSD

Uh. OpnSense on bare metal can also do snapshots, if you set it up correctly…

And that’s the fault of whoever uses those hubs. You can use practically any zigbee hub you wish. Zigbee is zigbee.

You didn’t look very hard.

Cheap zigbee stuff exists everywhere. And zigbee is an open standard, so if it works, it will work until the equipment breaks.

The Linux kernel isn’t really much different between any distribution of Linux.

If it works on one, it works on the rest, in like 99% of cases.

The only real exception to that is custom distributions built specifically for a particular device or subset of devices.

In other words, for embedded devices, like phones, routers, TVs and such.

And those aren’t going to be running Ubuntu.

In my own experience, certain things should always be on their own dedicated machines.

My primary router/firewall is on bare metal for this very reason.

I do not want to worry about my home network being completely unusable by the rest of my family because I decided to tweak something on the server.

I could quite easily run OpnSense in a VM, and I do that, too. I run proxmox, and have OpnSense installed and configured to at least provide connectivity for most devices. (Long story short: I have several subnets in my home network, but my VM OpnSense setup does not, as I only had one extra interface on that equipment, so only devices on the primary network would work)

And tbh, that only exists because I did have a router die, and installed OpnSense into my proxmox server temporarily while awaiting new-to-me equipment.

I didn’t see a point in removing it. So it’s there, just not automatically started.

My reasons for keeping OpnSense on bare metal mirror yours. But additionally I don’t want my network to take a crap because my proxmox box goes down.

I constantly am tweaking that machine…

Lidarr + last.fm recommended list.

I have a few smart playlists set up that are each various genres of music. It’s not perfect, but it works well enough.