I hereby claim:
- I am bartprokop on github.
- I am bartprokop (https://keybase.io/bartprokop) on keybase.
- I have a public key ASA4nBh4hUMxsG4FPsa7mLLuiksx9RQ5KdOhzwRk6xturwo
To claim this, I am signing this object:
# btrfs subvolume create svols/media | |
# | |
[media] | |
comment = Music, Video and so on | |
path = /mnt/t20raid/media | |
public = yes | |
only guest = yes | |
writable = yes |
# Install Docker first | |
pacman -S docker | |
# Create subvolume for Docker images | |
cd /mnt/t20root | |
btrfs subvolume create svols/docker | |
# Create subvolume 'svols/docker' | |
btrfs subvolume list . | |
# ID 256 gen 1349 top level 5 path svols/root |
# Generate initial login password for installation | |
tr -dc A-Za-z0-9 </dev/urandom | head -c 15 ; echo '' | |
# Clear known SSH key after (re-) installing OS on bare metal: | |
ssh-keygen -R 195.154.112.70 | |
# # Host 195.154.112.70 found: line 52 | |
# /c/Users/proko/.ssh/known_hosts updated. | |
# Original contents retained as /c/Users/proko/.ssh/known_hosts.old | |
# Try to SSH to new server using username and password from server properties. |
# Prerequisites: docker installed and operational. | |
# Get latest image for node software. | |
docker pull storjlabs/storagenode:latest | |
# Create reasonable place for node storage and identity | |
mkdir -p /srv/storj/identity | |
mkdir -p /srv/storj/storage | |
docker run --rm -e SETUP="true" \ |
I hereby claim:
To claim this, I am signing this object:
Updates to /etc/config/network
should include the following:
# on the eth1 interface that is wired to ONT, we want to enable baby jumbo frame
# this will allow pppoe client to set MTU of 1500 matching ethernet MTU on lan interface
config device
option name 'eth1'
option mtu '1508'
I prefer to run UniFi controller in my DMZ network zone, instead of doing Docker port forward. So I just created VLAN aware Docker network.
docker network create --driver=ipvlan --subnet=192.168.17.0/24 --gateway=192.168.17.1 --ip-range=192.168.17.64/28 -o parent=enp1s0 ipvlan17
opkg update opkg install umdns
mkdir /etc/umdns
SSH advertisemnt comes from dropbear. Add following to afvertise LUCI:
ubus call umdns update ubus call umdns browse
Install necessary packages
opkg update
opkg install luci-proto-wireguard
Generate keys on each peer. I use https://github.com/warner/wireguard-vanity-address to have some nice prefix