| 1 |
DENIED
|
ROLE_USER
|
null |
|
Show voter details
|
| 2 |
DENIED
|
moderate
|
App\Entity\Entry {#1821
+user: Proxies\__CG__\App\Entity\User {#1885 …}
+magazine: App\Entity\Magazine {#316
+icon: Proxies\__CG__\App\Entity\Image {#297 …}
+name: "selfhosted@lemmy.world"
+title: "selfhosted"
+description: """
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.\n
\n
Rules:\n
\n
- Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.\n
- No spam posting.\n
- Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.\n
- Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).\n
- No trolling.\n
\n
Resources:\n
\n
- [awesome-selfhosted software](https://github.com/awesome-selfhosted/awesome-selfhosted)\n
- [awesome-sysadmin](https://github.com/awesome-foss/awesome-sysadmin) resources\n
- [Self-Hosted Podcast from Jupiter Broadcasting](https://selfhosted.show)\n
\n
> Any issues on the community? Report it using the report flag.\n
\n
> Questions? DM the mods!
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 222
+entryCommentCount: 3916
+postCount: 0
+postCommentCount: 0
+isAdult: false
+customCss: null
+lastActive: DateTime @1729582735 {#324
date: 2024-10-22 09:38:55.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#288 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#284 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#273 …}
+entries: Doctrine\ORM\PersistentCollection {#231 …}
+posts: Doctrine\ORM\PersistentCollection {#189 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#251 …}
+bans: Doctrine\ORM\PersistentCollection {#168 …}
+reports: Doctrine\ORM\PersistentCollection {#154 …}
+badges: Doctrine\ORM\PersistentCollection {#132 …}
+logs: Doctrine\ORM\PersistentCollection {#122 …}
+awards: Doctrine\ORM\PersistentCollection {#111 …}
+categories: Doctrine\ORM\PersistentCollection {#98 …}
-id: 120
+apId: "selfhosted@lemmy.world"
+apProfileId: "https://lemmy.world/c/selfhosted"
+apPublicUrl: "https://lemmy.world/c/selfhosted"
+apFollowersUrl: "https://lemmy.world/c/selfhosted/followers"
+apInboxUrl: "https://lemmy.world/inbox"
+apDomain: "lemmy.world"
+apPreferredUsername: "selfhosted"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1703473826 {#325
date: 2023-12-25 04:10:26.0 +01:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1703473826 {#319
date: 2023-12-25 04:10:26.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#2416 …}
+slug: "Feedback-on-Design-and-Firewall-Options"
+title: "Feedback on Design and Firewall Options"
+url: null
+body: """
All the cool projects I see while lurking around here have thrown me into the world of Self-Hosting! Some months ago I got myself a NAS, flashed it with TrueNAS and started playing. Today, I am ready to face the creation of my first homelab.\n
\n
Since I got the basic data storage working, I decided to continue with the Firewall setup. I’d like to have my security figured out before I start spinning up machines, playing with their configs and unwittingly opening all kind of arcane doors to the unknown. So I turn to the Fediverse!\n
\n
I’d like to create the standard network with a DMZ. Within the network, I plan to use VLANS to manage traffic between devices, and the firewall to limit internet access.\n
\n
This is a sketch of what I think I want to achieve:\n
\n
\n
\n
### Connections\n
\n
- The Consoles will connect only to the internet\n
- The Home Devices (printers) will connect only to the Home WKS\n
- There will be a NAS device hosting VMs with services accessible only from the home network: \n
- The Home Automation will connect to IoT\n
- The Recipes will connect to Home Wks\n
- The Data Archive will connect to Home Wks\n
- Jellybean will connect to: \n
- Home Wks\n
- TV\n
- *arr Stack will connect to: \n
- The Internet\n
- the NAS (presumably Jellybean)\n
- The Home WKS connect to pretty much anything\n
\n
### Available Hardware\n
\n
- OpenWRT compatible Router\n
- 2.5gbs Unmaged Switch\n
- 1gbs Unmaged Switch\n
- QNAS with 2x2.5gbs NIC, running TrueNas\n
- A few Rpis of different specs\n
\n
Questions\n
=========\n
\n
#### Firewall\n
\n
My Main questions relate to the Firewall. It seems that pfsense is the way to go for a SW Firewall:\n
\n
- What HW should i use? would a Raspberry pi 4, 4GB RAM work?\n
- What do you think of Netgear 1100?\n
- I like this device since 3ports would allow me to create a physically separate DMZ\n
- Should I consider other firewalls?\n
\n
#### NAS\n
\n
For Bonus Points, some questions regarding the NAS:\n
\n
- With my current diagram, it seems like it is not possible for the NAS to receive updates from the internet. The obvious change is to place the NAS within the DMZ, but I’d like to keep the Data Archive as far from the net as possible\n
- Should i locate the entire NAS in the DMZ?\n
- My TrueNas has 2x2.5Gb ports. Can i connect each NIC to a different network? Would this have any benefit?\n
\n
Thanks for your time!
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 7
+favouriteCount: 22
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1728288680 {#2445
date: 2024-10-07 10:11:20.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#2402 …}
+votes: Doctrine\ORM\PersistentCollection {#1911 …}
+reports: Doctrine\ORM\PersistentCollection {#1855 …}
+favourites: Doctrine\ORM\PersistentCollection {#1395 …}
+notifications: Doctrine\ORM\PersistentCollection {#1890 …}
+badges: Doctrine\ORM\PersistentCollection {#1935 …}
+children: []
-id: 32551
-titleTs: "'design':3 'feedback':1 'firewal':5 'option':6"
-bodyTs: "'/pictrs/image/74aeb2e6-4e83-4e1a-a2ea-ed075759fd5e.png)':145 '1100':295 '1gbs':239 '2.5':235 '2x2.5gb':384 '2x2.5gbs':244 '3ports':301 '4':285 '4gb':286 'access':130,176 'achiev':142 'ago':23 'allow':303 'anyth':229 'arcan':89 'archiv':198,364 'around':9 'arr':211 'autom':184 'avail':230 'basic':52 'benefit':399 'bonus':318 'chang':347 'compat':233 'config':82 'connect':146,150,160,186,192,200,206,214,225,388 'consid':313 'consol':148 'continu':59 'cool':3 'creat':104,306 'creation':43 'current':327 'd':65,101,358 'data':53,197,363 'decid':57 'devic':123,157,171,299 'diagram':328 'differ':252,393 'dmz':110,310,355,380 'door':90 'entir':376 'face':41 'far':366 'fedivers':99 'figur':71 'firewal':62,126,255,262,275,315 'first':46 'flash':29 'gbs':236 'go':271 'got':25,50 'hardwar':231 'home':156,164,180,183,194,202,208,223 'homelab':47 'host':20,172 'hw':277 'internet':129,154,217,344 'iot':188 'jellybean':204,221 'keep':361 'kind':87 'lemmyf.uk':144 'lemmyf.uk/pictrs/image/74aeb2e6-4e83-4e1a-a2ea-ed075759fd5e.png)':143 'like':66,102,297,331,359 'limit':128 'locat':374 'lurk':8 'machin':78 'main':257 'manag':120 'month':22 'much':228 'nas':28,170,219,316,324,338,352,377 'net':369 'netgear':294 'network':107,113,181,394 'nic':245,390 'obvious':346 'open':85 'openwrt':232 'pfsens':266 'physic':308 'pi':284 'place':350 'plan':115 'play':35,79 'point':319 'port':385 'possibl':335,371 'presum':220 'pretti':227 'printer':158 'project':4 'qnas':242 'question':254,258,321 'ram':287 'raspberri':283 'readi':39 'receiv':340 'recip':190 'regard':322 'relat':259 'router':234 'rpis':250 'run':246 'secur':70 'see':6 'seem':264,330 'self':19 'self-host':18 'separ':309 'servic':175 'setup':63 'sinc':48,300 'sketch':134 'spec':253 'spin':76 'stack':212 'standard':106 'start':34,75 'storag':54 'sw':274 'switch':238,241 'thank':400 'think':138,292 'thrown':12 'time':403 'today':36 'traffic':121 'truena':32,247,382 'turn':96 'tv':210 'unknown':93 'unmag':237,240 'unwit':84 'updat':341 'use':117,280 'vlan':118 'vms':173 'want':140 'way':269 'within':111,353 'wks':165,195,203,209,224 'work':55,288 'world':16 'would':281,302,395"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1706084419
+visibility: "visible "
+apId: "https://lemmyf.uk/post/4971341"
+editedAt: null
+createdAt: DateTimeImmutable @1705999419 {#102
date: 2024-01-23 09:43:39.0 +01:00
}
} |
|
Show voter details
|
| 3 |
DENIED
|
edit
|
App\Entity\Entry {#1821
+user: Proxies\__CG__\App\Entity\User {#1885 …}
+magazine: App\Entity\Magazine {#316
+icon: Proxies\__CG__\App\Entity\Image {#297 …}
+name: "selfhosted@lemmy.world"
+title: "selfhosted"
+description: """
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.\n
\n
Rules:\n
\n
- Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.\n
- No spam posting.\n
- Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.\n
- Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).\n
- No trolling.\n
\n
Resources:\n
\n
- [awesome-selfhosted software](https://github.com/awesome-selfhosted/awesome-selfhosted)\n
- [awesome-sysadmin](https://github.com/awesome-foss/awesome-sysadmin) resources\n
- [Self-Hosted Podcast from Jupiter Broadcasting](https://selfhosted.show)\n
\n
> Any issues on the community? Report it using the report flag.\n
\n
> Questions? DM the mods!
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 222
+entryCommentCount: 3916
+postCount: 0
+postCommentCount: 0
+isAdult: false
+customCss: null
+lastActive: DateTime @1729582735 {#324
date: 2024-10-22 09:38:55.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#288 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#284 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#273 …}
+entries: Doctrine\ORM\PersistentCollection {#231 …}
+posts: Doctrine\ORM\PersistentCollection {#189 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#251 …}
+bans: Doctrine\ORM\PersistentCollection {#168 …}
+reports: Doctrine\ORM\PersistentCollection {#154 …}
+badges: Doctrine\ORM\PersistentCollection {#132 …}
+logs: Doctrine\ORM\PersistentCollection {#122 …}
+awards: Doctrine\ORM\PersistentCollection {#111 …}
+categories: Doctrine\ORM\PersistentCollection {#98 …}
-id: 120
+apId: "selfhosted@lemmy.world"
+apProfileId: "https://lemmy.world/c/selfhosted"
+apPublicUrl: "https://lemmy.world/c/selfhosted"
+apFollowersUrl: "https://lemmy.world/c/selfhosted/followers"
+apInboxUrl: "https://lemmy.world/inbox"
+apDomain: "lemmy.world"
+apPreferredUsername: "selfhosted"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1703473826 {#325
date: 2023-12-25 04:10:26.0 +01:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1703473826 {#319
date: 2023-12-25 04:10:26.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#2416 …}
+slug: "Feedback-on-Design-and-Firewall-Options"
+title: "Feedback on Design and Firewall Options"
+url: null
+body: """
All the cool projects I see while lurking around here have thrown me into the world of Self-Hosting! Some months ago I got myself a NAS, flashed it with TrueNAS and started playing. Today, I am ready to face the creation of my first homelab.\n
\n
Since I got the basic data storage working, I decided to continue with the Firewall setup. I’d like to have my security figured out before I start spinning up machines, playing with their configs and unwittingly opening all kind of arcane doors to the unknown. So I turn to the Fediverse!\n
\n
I’d like to create the standard network with a DMZ. Within the network, I plan to use VLANS to manage traffic between devices, and the firewall to limit internet access.\n
\n
This is a sketch of what I think I want to achieve:\n
\n
\n
\n
### Connections\n
\n
- The Consoles will connect only to the internet\n
- The Home Devices (printers) will connect only to the Home WKS\n
- There will be a NAS device hosting VMs with services accessible only from the home network: \n
- The Home Automation will connect to IoT\n
- The Recipes will connect to Home Wks\n
- The Data Archive will connect to Home Wks\n
- Jellybean will connect to: \n
- Home Wks\n
- TV\n
- *arr Stack will connect to: \n
- The Internet\n
- the NAS (presumably Jellybean)\n
- The Home WKS connect to pretty much anything\n
\n
### Available Hardware\n
\n
- OpenWRT compatible Router\n
- 2.5gbs Unmaged Switch\n
- 1gbs Unmaged Switch\n
- QNAS with 2x2.5gbs NIC, running TrueNas\n
- A few Rpis of different specs\n
\n
Questions\n
=========\n
\n
#### Firewall\n
\n
My Main questions relate to the Firewall. It seems that pfsense is the way to go for a SW Firewall:\n
\n
- What HW should i use? would a Raspberry pi 4, 4GB RAM work?\n
- What do you think of Netgear 1100?\n
- I like this device since 3ports would allow me to create a physically separate DMZ\n
- Should I consider other firewalls?\n
\n
#### NAS\n
\n
For Bonus Points, some questions regarding the NAS:\n
\n
- With my current diagram, it seems like it is not possible for the NAS to receive updates from the internet. The obvious change is to place the NAS within the DMZ, but I’d like to keep the Data Archive as far from the net as possible\n
- Should i locate the entire NAS in the DMZ?\n
- My TrueNas has 2x2.5Gb ports. Can i connect each NIC to a different network? Would this have any benefit?\n
\n
Thanks for your time!
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 7
+favouriteCount: 22
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1728288680 {#2445
date: 2024-10-07 10:11:20.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#2402 …}
+votes: Doctrine\ORM\PersistentCollection {#1911 …}
+reports: Doctrine\ORM\PersistentCollection {#1855 …}
+favourites: Doctrine\ORM\PersistentCollection {#1395 …}
+notifications: Doctrine\ORM\PersistentCollection {#1890 …}
+badges: Doctrine\ORM\PersistentCollection {#1935 …}
+children: []
-id: 32551
-titleTs: "'design':3 'feedback':1 'firewal':5 'option':6"
-bodyTs: "'/pictrs/image/74aeb2e6-4e83-4e1a-a2ea-ed075759fd5e.png)':145 '1100':295 '1gbs':239 '2.5':235 '2x2.5gb':384 '2x2.5gbs':244 '3ports':301 '4':285 '4gb':286 'access':130,176 'achiev':142 'ago':23 'allow':303 'anyth':229 'arcan':89 'archiv':198,364 'around':9 'arr':211 'autom':184 'avail':230 'basic':52 'benefit':399 'bonus':318 'chang':347 'compat':233 'config':82 'connect':146,150,160,186,192,200,206,214,225,388 'consid':313 'consol':148 'continu':59 'cool':3 'creat':104,306 'creation':43 'current':327 'd':65,101,358 'data':53,197,363 'decid':57 'devic':123,157,171,299 'diagram':328 'differ':252,393 'dmz':110,310,355,380 'door':90 'entir':376 'face':41 'far':366 'fedivers':99 'figur':71 'firewal':62,126,255,262,275,315 'first':46 'flash':29 'gbs':236 'go':271 'got':25,50 'hardwar':231 'home':156,164,180,183,194,202,208,223 'homelab':47 'host':20,172 'hw':277 'internet':129,154,217,344 'iot':188 'jellybean':204,221 'keep':361 'kind':87 'lemmyf.uk':144 'lemmyf.uk/pictrs/image/74aeb2e6-4e83-4e1a-a2ea-ed075759fd5e.png)':143 'like':66,102,297,331,359 'limit':128 'locat':374 'lurk':8 'machin':78 'main':257 'manag':120 'month':22 'much':228 'nas':28,170,219,316,324,338,352,377 'net':369 'netgear':294 'network':107,113,181,394 'nic':245,390 'obvious':346 'open':85 'openwrt':232 'pfsens':266 'physic':308 'pi':284 'place':350 'plan':115 'play':35,79 'point':319 'port':385 'possibl':335,371 'presum':220 'pretti':227 'printer':158 'project':4 'qnas':242 'question':254,258,321 'ram':287 'raspberri':283 'readi':39 'receiv':340 'recip':190 'regard':322 'relat':259 'router':234 'rpis':250 'run':246 'secur':70 'see':6 'seem':264,330 'self':19 'self-host':18 'separ':309 'servic':175 'setup':63 'sinc':48,300 'sketch':134 'spec':253 'spin':76 'stack':212 'standard':106 'start':34,75 'storag':54 'sw':274 'switch':238,241 'thank':400 'think':138,292 'thrown':12 'time':403 'today':36 'traffic':121 'truena':32,247,382 'turn':96 'tv':210 'unknown':93 'unmag':237,240 'unwit':84 'updat':341 'use':117,280 'vlan':118 'vms':173 'want':140 'way':269 'within':111,353 'wks':165,195,203,209,224 'work':55,288 'world':16 'would':281,302,395"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1706084419
+visibility: "visible "
+apId: "https://lemmyf.uk/post/4971341"
+editedAt: null
+createdAt: DateTimeImmutable @1705999419 {#102
date: 2024-01-23 09:43:39.0 +01:00
}
} |
|
Show voter details
|
| 4 |
DENIED
|
moderate
|
App\Entity\Entry {#1821
+user: Proxies\__CG__\App\Entity\User {#1885 …}
+magazine: App\Entity\Magazine {#316
+icon: Proxies\__CG__\App\Entity\Image {#297 …}
+name: "selfhosted@lemmy.world"
+title: "selfhosted"
+description: """
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.\n
\n
Rules:\n
\n
- Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.\n
- No spam posting.\n
- Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.\n
- Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).\n
- No trolling.\n
\n
Resources:\n
\n
- [awesome-selfhosted software](https://github.com/awesome-selfhosted/awesome-selfhosted)\n
- [awesome-sysadmin](https://github.com/awesome-foss/awesome-sysadmin) resources\n
- [Self-Hosted Podcast from Jupiter Broadcasting](https://selfhosted.show)\n
\n
> Any issues on the community? Report it using the report flag.\n
\n
> Questions? DM the mods!
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 222
+entryCommentCount: 3916
+postCount: 0
+postCommentCount: 0
+isAdult: false
+customCss: null
+lastActive: DateTime @1729582735 {#324
date: 2024-10-22 09:38:55.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#288 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#284 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#273 …}
+entries: Doctrine\ORM\PersistentCollection {#231 …}
+posts: Doctrine\ORM\PersistentCollection {#189 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#251 …}
+bans: Doctrine\ORM\PersistentCollection {#168 …}
+reports: Doctrine\ORM\PersistentCollection {#154 …}
+badges: Doctrine\ORM\PersistentCollection {#132 …}
+logs: Doctrine\ORM\PersistentCollection {#122 …}
+awards: Doctrine\ORM\PersistentCollection {#111 …}
+categories: Doctrine\ORM\PersistentCollection {#98 …}
-id: 120
+apId: "selfhosted@lemmy.world"
+apProfileId: "https://lemmy.world/c/selfhosted"
+apPublicUrl: "https://lemmy.world/c/selfhosted"
+apFollowersUrl: "https://lemmy.world/c/selfhosted/followers"
+apInboxUrl: "https://lemmy.world/inbox"
+apDomain: "lemmy.world"
+apPreferredUsername: "selfhosted"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1703473826 {#325
date: 2023-12-25 04:10:26.0 +01:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1703473826 {#319
date: 2023-12-25 04:10:26.0 +01:00
}
}
+image: null
+domain: Proxies\__CG__\App\Entity\Domain {#2416 …}
+slug: "Feedback-on-Design-and-Firewall-Options"
+title: "Feedback on Design and Firewall Options"
+url: null
+body: """
All the cool projects I see while lurking around here have thrown me into the world of Self-Hosting! Some months ago I got myself a NAS, flashed it with TrueNAS and started playing. Today, I am ready to face the creation of my first homelab.\n
\n
Since I got the basic data storage working, I decided to continue with the Firewall setup. I’d like to have my security figured out before I start spinning up machines, playing with their configs and unwittingly opening all kind of arcane doors to the unknown. So I turn to the Fediverse!\n
\n
I’d like to create the standard network with a DMZ. Within the network, I plan to use VLANS to manage traffic between devices, and the firewall to limit internet access.\n
\n
This is a sketch of what I think I want to achieve:\n
\n
\n
\n
### Connections\n
\n
- The Consoles will connect only to the internet\n
- The Home Devices (printers) will connect only to the Home WKS\n
- There will be a NAS device hosting VMs with services accessible only from the home network: \n
- The Home Automation will connect to IoT\n
- The Recipes will connect to Home Wks\n
- The Data Archive will connect to Home Wks\n
- Jellybean will connect to: \n
- Home Wks\n
- TV\n
- *arr Stack will connect to: \n
- The Internet\n
- the NAS (presumably Jellybean)\n
- The Home WKS connect to pretty much anything\n
\n
### Available Hardware\n
\n
- OpenWRT compatible Router\n
- 2.5gbs Unmaged Switch\n
- 1gbs Unmaged Switch\n
- QNAS with 2x2.5gbs NIC, running TrueNas\n
- A few Rpis of different specs\n
\n
Questions\n
=========\n
\n
#### Firewall\n
\n
My Main questions relate to the Firewall. It seems that pfsense is the way to go for a SW Firewall:\n
\n
- What HW should i use? would a Raspberry pi 4, 4GB RAM work?\n
- What do you think of Netgear 1100?\n
- I like this device since 3ports would allow me to create a physically separate DMZ\n
- Should I consider other firewalls?\n
\n
#### NAS\n
\n
For Bonus Points, some questions regarding the NAS:\n
\n
- With my current diagram, it seems like it is not possible for the NAS to receive updates from the internet. The obvious change is to place the NAS within the DMZ, but I’d like to keep the Data Archive as far from the net as possible\n
- Should i locate the entire NAS in the DMZ?\n
- My TrueNas has 2x2.5Gb ports. Can i connect each NIC to a different network? Would this have any benefit?\n
\n
Thanks for your time!
"""
+type: "article"
+lang: "en"
+isOc: false
+hasEmbed: false
+commentCount: 7
+favouriteCount: 22
+score: 0
+isAdult: false
+sticky: false
+lastActive: DateTime @1728288680 {#2445
date: 2024-10-07 10:11:20.0 +02:00
}
+ip: null
+adaAmount: 0
+tags: null
+mentions: null
+comments: Doctrine\ORM\PersistentCollection {#2402 …}
+votes: Doctrine\ORM\PersistentCollection {#1911 …}
+reports: Doctrine\ORM\PersistentCollection {#1855 …}
+favourites: Doctrine\ORM\PersistentCollection {#1395 …}
+notifications: Doctrine\ORM\PersistentCollection {#1890 …}
+badges: Doctrine\ORM\PersistentCollection {#1935 …}
+children: []
-id: 32551
-titleTs: "'design':3 'feedback':1 'firewal':5 'option':6"
-bodyTs: "'/pictrs/image/74aeb2e6-4e83-4e1a-a2ea-ed075759fd5e.png)':145 '1100':295 '1gbs':239 '2.5':235 '2x2.5gb':384 '2x2.5gbs':244 '3ports':301 '4':285 '4gb':286 'access':130,176 'achiev':142 'ago':23 'allow':303 'anyth':229 'arcan':89 'archiv':198,364 'around':9 'arr':211 'autom':184 'avail':230 'basic':52 'benefit':399 'bonus':318 'chang':347 'compat':233 'config':82 'connect':146,150,160,186,192,200,206,214,225,388 'consid':313 'consol':148 'continu':59 'cool':3 'creat':104,306 'creation':43 'current':327 'd':65,101,358 'data':53,197,363 'decid':57 'devic':123,157,171,299 'diagram':328 'differ':252,393 'dmz':110,310,355,380 'door':90 'entir':376 'face':41 'far':366 'fedivers':99 'figur':71 'firewal':62,126,255,262,275,315 'first':46 'flash':29 'gbs':236 'go':271 'got':25,50 'hardwar':231 'home':156,164,180,183,194,202,208,223 'homelab':47 'host':20,172 'hw':277 'internet':129,154,217,344 'iot':188 'jellybean':204,221 'keep':361 'kind':87 'lemmyf.uk':144 'lemmyf.uk/pictrs/image/74aeb2e6-4e83-4e1a-a2ea-ed075759fd5e.png)':143 'like':66,102,297,331,359 'limit':128 'locat':374 'lurk':8 'machin':78 'main':257 'manag':120 'month':22 'much':228 'nas':28,170,219,316,324,338,352,377 'net':369 'netgear':294 'network':107,113,181,394 'nic':245,390 'obvious':346 'open':85 'openwrt':232 'pfsens':266 'physic':308 'pi':284 'place':350 'plan':115 'play':35,79 'point':319 'port':385 'possibl':335,371 'presum':220 'pretti':227 'printer':158 'project':4 'qnas':242 'question':254,258,321 'ram':287 'raspberri':283 'readi':39 'receiv':340 'recip':190 'regard':322 'relat':259 'router':234 'rpis':250 'run':246 'secur':70 'see':6 'seem':264,330 'self':19 'self-host':18 'separ':309 'servic':175 'setup':63 'sinc':48,300 'sketch':134 'spec':253 'spin':76 'stack':212 'standard':106 'start':34,75 'storag':54 'sw':274 'switch':238,241 'thank':400 'think':138,292 'thrown':12 'time':403 'today':36 'traffic':121 'truena':32,247,382 'turn':96 'tv':210 'unknown':93 'unmag':237,240 'unwit':84 'updat':341 'use':117,280 'vlan':118 'vms':173 'want':140 'way':269 'within':111,353 'wks':165,195,203,209,224 'work':55,288 'world':16 'would':281,302,395"
+cross: false
+upVotes: 0
+downVotes: 0
+ranking: 1706084419
+visibility: "visible "
+apId: "https://lemmyf.uk/post/4971341"
+editedAt: null
+createdAt: DateTimeImmutable @1705999419 {#102
date: 2024-01-23 09:43:39.0 +01:00
}
} |
|
Show voter details
|
| 5 |
DENIED
|
edit
|
App\Entity\Magazine {#316
+icon: Proxies\__CG__\App\Entity\Image {#297 …}
+name: "selfhosted@lemmy.world"
+title: "selfhosted"
+description: """
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.\n
\n
Rules:\n
\n
- Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.\n
- No spam posting.\n
- Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.\n
- Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).\n
- No trolling.\n
\n
Resources:\n
\n
- [awesome-selfhosted software](https://github.com/awesome-selfhosted/awesome-selfhosted)\n
- [awesome-sysadmin](https://github.com/awesome-foss/awesome-sysadmin) resources\n
- [Self-Hosted Podcast from Jupiter Broadcasting](https://selfhosted.show)\n
\n
> Any issues on the community? Report it using the report flag.\n
\n
> Questions? DM the mods!
"""
+rules: null
+subscriptionsCount: 1
+entryCount: 222
+entryCommentCount: 3916
+postCount: 0
+postCommentCount: 0
+isAdult: false
+customCss: null
+lastActive: DateTime @1729582735 {#324
date: 2024-10-22 09:38:55.0 +02:00
}
+markedForDeletionAt: null
+tags: null
+moderators: Doctrine\ORM\PersistentCollection {#288 …}
+ownershipRequests: Doctrine\ORM\PersistentCollection {#284 …}
+moderatorRequests: Doctrine\ORM\PersistentCollection {#273 …}
+entries: Doctrine\ORM\PersistentCollection {#231 …}
+posts: Doctrine\ORM\PersistentCollection {#189 …}
+subscriptions: Doctrine\ORM\PersistentCollection {#251 …}
+bans: Doctrine\ORM\PersistentCollection {#168 …}
+reports: Doctrine\ORM\PersistentCollection {#154 …}
+badges: Doctrine\ORM\PersistentCollection {#132 …}
+logs: Doctrine\ORM\PersistentCollection {#122 …}
+awards: Doctrine\ORM\PersistentCollection {#111 …}
+categories: Doctrine\ORM\PersistentCollection {#98 …}
-id: 120
+apId: "selfhosted@lemmy.world"
+apProfileId: "https://lemmy.world/c/selfhosted"
+apPublicUrl: "https://lemmy.world/c/selfhosted"
+apFollowersUrl: "https://lemmy.world/c/selfhosted/followers"
+apInboxUrl: "https://lemmy.world/inbox"
+apDomain: "lemmy.world"
+apPreferredUsername: "selfhosted"
+apDiscoverable: true
+apManuallyApprovesFollowers: null
+privateKey: null
+publicKey: null
+apFetchedAt: DateTime @1703473826 {#325
date: 2023-12-25 04:10:26.0 +01:00
}
+apDeletedAt: null
+apTimeoutAt: null
+visibility: "visible "
+createdAt: DateTimeImmutable @1703473826 {#319
date: 2023-12-25 04:10:26.0 +01:00
}
} |
|
Show voter details
|