I’m now using Fedora CoreOS which can be deployed from config files. It’s really neat to be able to define everything the way you need it and just start up the VM with no further config necessary. I’m using podman to manage my services.

There are many different ways, but personally (and hopefully I don’t get crucified for saying this) I use Plex and Plexamp. Plexamp has got to be the best music app I’ve ever used. I even tied it into Last.fm to get recommendations for new music based on my listening.

You’d need to set up Plex media server to go this route: https://support.plex.tv/articles/200264746-quick-start-step-by-step-guides/

Personally I host via Docker.

It might be a little overkill if you don’t have other media, though, and it’s not fully open source.

deleted by creator

Yep, a bastion is what you’re looking for. I use an rpi + a Dynamic DNS record in a script on the pi to automatically update firewall and ssh rules if my IP updates. Of course, you may need to do some configuration depending on their network setup.

I have this level1techs KVM which can drive my 5120x1440 @ 120hz monitor (without DSC) AND my 3840x2160 @ 240hz monitor (also without DSC). It’s $450, but Wendell and level1techs are great and it’s well worth the price.

I’m running Fedora on one host and Ubuntu on the other. With Windows, you can use DSC to drive huge resolutions at 240hz.

I just set this up and it seems perfect for my usecase. Thanks!

Frigate is absolutely fantastic, especially Frigate+. I use all Reolink and it works great.

There’s a few ways, but for example you can use a service like cloudflared which comes with its own certs (and then set up WAF rules to only allow your IP), or you could set something up using let’s encrypt via reverse proxy (for example, using Opnsense and the let’s encrypt plugin which actually validates domains that aren’t otherwise exposed to the internet, there by giving you full blown validated SSL).

If you don’t care about validation errors then you can use nginx reverse proxies (locally, not exposing any ports externally) and apply self-signed certs through the proxy regardless of whether or not the software allows SSL config.

Yep, should be free unless you want more firewall features!

Maybe nginx does, but cloudflared does not, as far as I know (since it’s an outbound tunnel). I haven’t ever had to open any ports for cloudflared. However, it obviously requires you to use cloudflare.

I’m not sure that it would fix all of your issues, but you could put some stuff behind a reverse proxy and use something like duckdns to setup dynamic dns.

The only decent keypads I’ve found are z-wave and made by Ring, unfortunately. There’s an HA blueprint for them at the bottom.

Remember, always print your recovery code to pdf and save it to the same drive. This way, when it happens, you’re forced to only use Linux.

Does this apply to heat pumps?

Does Floccus count? It syncs via caldev into the native bookmarks.

Bluetooth can do it locally, but yes, for things on ZigBee or Z-Wave, it’s gotta have an antenna hub. WiFi switches and lights most likely do “phone-home” to the cloud in some way (usually for color or brightness control via app, Govee especially loves this). The down side, other than the obvious privacy implications, is that if your ISP has an outage, so do your switches.

Home Assistant attempts to mitigate both the privacy and offline issues, while putting all of the different brands and hubs into one place.

https://github.com/tubearchivist/tubearchivist, maybe?

I feed to https://adsb.fi for this reason.