Category Archives: IT

Using the Dream Machine Pro with VO Fiber (&VoIP)

Do you want to have more control over your network, and maybe separate your IoT devices from your computer and NAS? Then you need to install a router that can handle VLAN’s and gives you more configuration possibilities.

I sorted out my Fritzbox (as a router) and connected my Fiber line (Optical Network Terminal, ONT) to a Unifi Dream Machine Pro (UDMP). Connecting the UDMP directly via SFP+ Fiber module to the Fiber cable entering the house apparently is not supported by the ISP’s in Luxembourg. It seems that they do an additional authentication based on the ONT’s MAC address additionally to the PPPoE authentication.

Internet access configuration

Here’s my setup:

I entered the PPPoE login and password and entered VLAN 35 for incoming traffic. In theory, in Luxembourg Internet access on the WAN side comes through VLAN 35 and VoIP through VLAN 39. But I only configured VLAN 35 and Internet as well as VoIP work on WAN VLAN 35.

This Internet configuration also works with VO’s vDSL Internet access.

You can also activate the IPv6 link using 48 as the prefix. This is experimental. I was able to activate IPv6 but did not (yet) investigate further if it correctly works..

My ISP, Visual Online, provides a public (dynamic) IP as standard. So I do not have a double-NAT situation. Some providers in Luxembourg (like Post) do not offer a public dynamic IP in their standard Fiber package, so these configurations will automatically use a double-NAT situation. If you want to avoid this, you have to book the additional public IP option (NOT the static one but the dynamic public IPv4).

VoIP Phone server configuration

To use VoIP on your phones, you need to have a phone server. Most households in Luxembourg use their FritzBox as the landline VoIP server (if they still have a landline). Alternatively, you might also use FreePBX (or another Asterisk based solution). this is still on my To-Do-list. In the meanwhile, my FritzBox now acts (only) as a Voice over IP phone server behind the UDMP router. Port 1 of the FritzBox is connected to the router, using the internal VoIP VLAN I set up for my phone server and phones. You need to configure this in the Internet / Account information settings. You also have to select other internet provider as your ISP.

Internet account information setup of the FritzBox VoIP server

Here is the working configuration for one of my telephone lines:

Telephony > Telephone Numbers >> Telephone Numbers *setting for one of my CID’s*

You need to define the Telephony provider, the username, password and FQDN (or IP)/Registrar for your SIP telephony account.

I configured the FritzBox to keep port forwarding enabled every 30 seconds. I do not know if this is absolutely necessary, but with this configuration my VoIP landline works just fine and remains always available.

IPTV configuration

I cannot state if IPTV would work using the above configuration as I do not have an IPTV contract.

Note on the FritzBox admin interface access

Normally connecting to the FritzBox’s web interface requires a password only (no username). Be aware, that if you configure the Fritzbox as a normal network client (and not as a router), as in my case, you need to create a user account with username and password to able to access the web interface. If you want to have a backup login possibility, keep the WLAN active, as you should be able to connect through the FritzBox WLAN with the standard admin password without a user login.

TrueNAS media server

Leave a reply

Plex user ID: 972

Emby user ID: 989

Unlock Proxmox VM

Leave a reply

qm unlock [VMID]

Manual lock deletion

rm /var/lock/qemu-server/lock-[VMID].conf

Rsync

Leave a reply

Look for differences in two folders:

rsync -avnc $SOURCE $TARGET

Error treatment

Leave a reply

Have the live system log displayed:

tail -f /var/log/syslog
tail -f /var/log/kern.log

Get all error messages across log files

journalctl -p err -f

/cat var/log/syslog |grep -iE "error|fail"
dmesg |grep -iE "error|failed"

Grab the system log from a remote server (and save on your desktop):

scp root@10.X.Y.Z://var/log/syslog ~/Desktop/syslog

Linux DNS management

Leave a reply

Find out which DNS servers are used by your Linux system:

resolvectl status

Get the IP for a hostname:

nslookup www.apple.com

Linux memory management

Leave a reply

ZFS memory management is done by ARC.

arcstat

More details:

arc_summary | more
arc_summary -d | more

Disk management commands

Leave a reply

List partitions and drives

lsblk

Manipulate partition or list them with:

fdisk -l

Using the disk free command:

df -h

Partition manager utility

parted -l

Get detailed info on hardware, memory, firmware, mainboard, bus

lshw

Relative to mounted drives:

lshw -class disk

Get that information as html (JSON, XML) page:

lshw -class disk -html

List disks by ID, label, UUID…:

ls -l /dev/disk/by-id
ls -l /dev/disk/by-label
ls -l /dev/disk/by-partlabel
ls -l /dev/disk/by-partuuid
ls -l /dev/disk/by-path
ls -l /dev/disk/by-uuid

sfdisk utility for manipulating disk partitions. List block devices:

fsdisk -l

source: https://learnubuntu.com/list-drives/

Smart monitor tool

smartctl -a /dev/nvme0

Mount a drive

mkdir /media/usbstick
mount /dev/sdbX /media/usbstick

Delete files

Delete all files in all folders starting with 2023 living in the current folder

rm -rf 2023*

Syncing data from TrueNAS to QNAP using rsync

Leave a reply

I was looking for a solution to backup my data from my main NAS, a TrueNAS core instance, to a QNAP. Although I found a really good tutorial by Raid Owl explaining how to back up from TrueNAS to Synology, I did not find, at the time, one for QNAP. The following tutorial should give you an idea what you need to do to achieve syncing data from TrueNAS to QNAP using rsync. Bear in mind, that although rsync does copy your data from A to B but it is technically not a backup solution.

Preparing the QNAP

Create a share

On the QNAP, create a location where the backups should go. In the Control Panel, Privilege: Shared Folders, create a shared folder (e.g. TNbackup) and set the permissions. I personally do prefer that no user (besides the rsync user) has access to the backup data share, to avoid that it becomes corrupted. So deny or read only for all other users should do the trick.

Create a user

Create a user that TrueNAS will use to connect to the QNAP. Let’s say we call it rsync. Make sure that the rsync user is part of the administrator group. This is mandatory for it to access the QNAP via ssh. Give it read/write permissions on the TNbackup share.

In the Users tab of the control panel, enable the home folder for all users in the advanced settings.

In the Network & File Services tab of the Control Panel, activate SSH on port 22 and SFTP. You can also set the Access Permissions here.

Verify that you can log in to your QNAP using ssh and your newly created user.

ssh rsync@[QNAP-IP]

Prepare the SSH configuration on QNAP

In the terminal session, open the sshd configuration file in the VI editor. Unfortunately NANO is not installed on QNAP.

sudo vi /etc/ssh/sshd_config

Find and uncomment the next two lines deleting the #-sign. Position your cursor at the beginning of the corresponding line and hit the “i”-key for insert-mode.

#PubkeyAuthentication yes
#AuthorizedKeysFile  .ssh/authorized_keys

After deleting the two #-signs, hit the Escape-key. Save using “:w” followed by the return key and quit using “:q”, followed by the return-key.

Now navigate to your users home folder:

cd /share/homes/rsync/

Create the .ssh folder and the authorized-keys (empty) file:

mkdir .ssh
chmod 700 .ssh
touch .ssh/authorized_keys

You can check if the file has been created by using this command:

ls .ssh/

Set the user permissions on the .ssd folder:

sudo chmod -R 700 .ssh
sudo chown -R rsync .ssh

You might need to restart the rsync and ssh services on QNAP using the GUI.

Preparing TrueNAS

Create a home folder for your user, using the Shell provided in the GUI:

cd /mnt/[DATASET POOL]/
mkdir home
cd home
mkdir rsync

Create the user using the Accounts/User tab and add a new one, filling out the following fields:

Full name: [RSYNC to QNAP]
Username: rsync
Password: [password]
Confirm password: [password]
User ID (auto filled by TrueNAS)
Primary Group: rsync
Auxiliary Groups: [choose one that has access to the fileshares you want to backup]
Home Directory: /mnt/[DATASET POOL]/home/rsync

That’s it for now. later on, we will fill in the SSH Public Key. Save for now.

Let’s go on and create the SSH key on TrueNAS using ssh with the rsync user. Make sure that the SSH service is running on TrueNAS (GUI: services tab). When creating the key, you can skip all the prompts with the Return-key.

ssh rsync@[TrueNAS-IP]
ssh-keygen

To see the generated key, use:

cat .ssh/id_rsa.pub

Copy everything from that file, from ssh-rsa to something like truenas-local.

Go back to the TrueNAS GUI, edit the rsync user and paste the string into the SSH Public-Key field.

Now log in to your QNAP via SSH:

ssh rsync@[QNAP-IP]
vi .ssh/authorized_keys

Hit “i” for insert mode. Paste the key in the file. Hit Escape. Write to disk with “:w” and quit with “:q”.

To test if the connection is working, go back to your TrueNAS SSH session and connect to your QNAP:

ssh rsync@[QNAP-IP]

The QNAP will NOT ask for the password as it uses the key that we just generated and shared between the machines (for the user rsync). You have to accept the host key fingerprint (it will be saved in your known hosts file). If you do not accept it, the rsync task will most probably fail.

Create the Rsync task on TrueNAS

In the TrueNAS GUI, go to the Tasks tab, Rsync Tasks. Create a new Rsync Task.

Source:
Path: /mnt/[DATASET POOL]/fileshare_on_TrueNAS
User: rsync
Direction: PUSH
Description: Backup TrueNAS to QNAP
Schedule: what ever you like

Remote:
Remote Host: [IP OF QNAP]
Rsync Mode: SSH
Remote SSH Port: 22
Remote Path: /share/[destination fileshare_on_QNAP]

I had to untick the compress tickbox for rsync to run. I also decided to untick the delete option. This means that if I inadvertently delete a file on my TrueNAS, it will still exist on the QNAP. Don’t forget to save.

Alternatively to setting the auxiliary group in the TrueNAS user (see above), you can also make sure that the rsync user has the correct ACL permissions (read) on the TrueNAS fileshare that you want to sync.

Run the task manually. If it fails, click on the error button and download the error log.

Be reminded that this procedure will syn the TrueNAS folder’s content to the QNAP, but it is technically not a backup!

peerTube administration

Leave a reply

Upgrade

Run the upgrade script:

cd /var/www/peertube/peertube-latest/scripts && sudo -H -u peertube ./upgrade.sh

sudo systemctl restart peertube

Update peerTube configuration

Check for configuration changes, and report them in your config/production.yaml file

cd /var/www/peertube/versions
diff -u "$(ls --sort=t | head -2 | tail -1)/config/production.yaml.example" "$(ls --sort=t | head -1)/config/production.yaml.example"

Source: https://docs.joinpeertube.org/install/any-os