They’re actually about the same heat wise. I use some relative cheap NICs based on the Intel 82599 controller and 10G SFP+ modules.

It’s not a bad setup, I wish there was a second NVMe slot in my M920q boxes, but what are you going to do?

Building a M920x with 4 NVMe and 10gig Ethernet is very tempting.

Hey that’s almost me! My home lab is three M920q systems with 10Gb fiber for Ceph. I didn’t know you could do multiple NVMes though, right now I’m doing some janky AF USB drives.

St Louis style is basically sauce and plastic cheese on cardboard.

St Louis Style Pizza (Wikipedia)

when has slacktivism ever changed the minds

Hey, don’t you remember how changing your Twitter profile picture to have a green overlay encouraged the Arab Spring to bring lasting democracy all over the Middle East?!? /s

They should tap into the gamer market. HBO Min/Max - Optimize your viewing habits to minimize not fun while maximizing fun fun!

If birthright citizenship can be “blocked” by an executive order and now thanks to SCOTUS, there can’t be a national injunction, the next democrat president better fucking executive order gun control and a whole slew of things.

mom, Barbie says she can’t connect to the Internet, is the wifi down?

I would get multiple drives and do RAID. Here’s a helpful calculator to figure out drive quantity, size, and configuration. The reason to do RAID is redundancy. Hard drives will fail (even NAS branded drives). You do not want your photos, media, etc to be lost in that case. I personally do not go with anything below RAID5 (and for super sensitive things, I’ll even go RAID6 - despite the hit on overall capacity. If the optiplex has drive capacity for multiple drives, I strongly recommend you go this route.

Okay, then I’m thinking your router/NAT maybe causing the problem. Typically, your ISP won’t block subdomains for dns, they may outright block Source NAT (SNAT), but if you could get through via the IP, you should be good to go.

An easy way to check is to visit a site like this and check for port 443: https://www.yougetsignal.com/tools/open-ports/. You don’t need to be on the server that’s hosting your portfolio, just any thing that’s on the same network as your portfolio (something behind your external router)

Just to make sure.

1. When on your home network, doing nslookup (or similar), your fqdn resolves to your public IP
2. When on a hotspot, if you go to https://fqdn/ it does not connect (probably with the ERR_CONNECTION_TIMED_OUT that you mentioned below)
3. When on hotspot, if you to telnet to port 443 on 206.x.x.x, it connects

What happens if you, on the hotspot, try browsing to https://206.x.x.x? When you are on the same network as the portfolio, can you reach https://[internal ip]?

What I’m leaning towards is a router/firewall that may be causing some issues. To help with troubleshooting, does your website server have any local firewalls (for ubuntu that would typically be ufw, but it could be iptables or firewalld)?

Try this command from a terminal on the system from which you’re attempting to connect:

nslookup <yourfqdn>

It should come back with something like this:

~ ❯ nslookup stronk.bond
Server:         127.0.0.53
Address:        127.0.0.53#53

Non-authoritative answer:
Name:   stronk.bond
Address: 172.67.174.80

If it says something like “can’t find” that means that your dns isn’t configured appropriately. Does your IP address start with 192.168, 10., or 172.? That would be a private IP address (something which isn’t accessible from the internet.

Oh! And where is everything - is your workstation/laptop on the same network as your portfolio? Is the portfolio on a different network? That could effect things as well.

What does your nginx config look like for ssl? It should specify a certificate and key file - that certificate subject needs to match your fully qualified domain name (fqdn). Certificate can have subject alternative names (SAN) for other names and even IP addresses.

For instance, you could have a single certificate for foo.bar with a SAN for just foo and an IP SAN for 192.168.1.30.

Certificates also need to be signed by a certificate authority (CA), and in order for your browser to visit https://foo.bar/ without a warning your browser must trust that CA.

If you did a self signed cert, this is most likely the problem you’re running into.

It’s important to know that your communication is still encrypted because of SSL, but since your browser doesn’t trust the CA (or the subject doesn’t match the FQDN) the browser will say it’s not secure.

Yep, it’s official. They released it to let everyone know of a super limited edition of More songs about buildings and food.

https://store.talkingheadsofficial.com/products/more-songs-about-buildings-and-food-super-deluxe-editionstore-exclusive-4lp-4-7

Edit: deleting most of my comment because it’s a duplicate from the person who answered hours ago, leaving my indexers comment.

Something that you didn’t mention, but needs addressing - indexers. Yes, there are free indexers but they’re often capped at a certain number of grabs per day. Expect to pay for access to these as well - but some have lifetime memberships at a reasonable price. Get more than one and sabnzbd can prioritize by user-assigned weight. (By the way,these are typically what gets hit by content protection/LE). Indexers provide the nzb files that tell you download client where in the providers’ server to find the download bits/bytes.

The *arr stack works wonderfully with Usenet, I think if you go this route, you’ll be surprised how little you have to fall back to torrents.

Ubiquiti cameras are amazing. They’re a bit pricey to get started, but the data is all local (and will work air gapped from the internet). At a minimum you’ll need a Cloud Key and a camera of choice: https://store.ui.com/us/en?category=all-cameras-nvrs

If you can see your plot from your house, you can go with an indoor camera angled thru a window (that’s what I do and it works great).

I haven’t seen a better works right out of the box camera system that keeps your data local.

Well, looks like the National Institute for the Deaf (NTID) had at one point partnered with Georgia Tech on an app, PopSign, but that download link doesn’t work anymore.

Similarly, NTID had a free class, but it got cancelled.

I’m a little surprised there isn’t more from the first (and largest) national technical deaf institute…

We were visiting for about a week and I think it took three separate days, about 20 minutes each day before she felt comfortable doing the VPN stuff herself.

It was definitely painful, but if you’re patient, it’s doable.

Good luck with whichever option you choose!

Speaking as someone who has recently taken on a far-remote (e.g. about 22 hour drive away) support for a MIL, the best thing you could do is set up a VPN.

1. It works both ways (typically) so you can easily remote in to their system when they’re on the VPN for updates/troubleshooting
2. it minimizes the hardware “on-site” at their location
3. Depending on your VPN client, it can have an easy to use GUI, further lowering the barrier if your remote person is tech-inept

For me, I’m still on Plex with a very old lifetime account with my MIL using a dedicated user account - that access is over the Internet. The VPN is to provide access to Overseerr so that she can do things like request specific movies/TV shows without having to email/call.

It’s not perfect - one day I woke up to 26 seasons of “Into the Country”, but it works fairly well.

I sat down with her one day while visiting about a year or so ago and walked her through connecting to the VPN, then getting to the hosted site, then disconnecting from the VPN - basically running drills and making her take notes until she felt she could do it by herself.

It’s typically stylized mRemoteNG.