Aran

Pics please! I decided not to use pfsense as a vm because when your server is down, you lose your internet connection.

Ok, lets bump this topic! Those fractal cases are popular. I had one for my previous server. Too bad they don't sell a hot-swap backplate. Here's my humble unraid server: Cheap €30 case - MS-Tech CA-0210 Icy Dock (black vortex something something) 4in3 5.25" drive cage. The ultimate server room! Specs in sig. Post your rig. I'ts very interesting to see what hardware other people are using. Please keep this topic alive!

Yep, i had to update my keys. Problem solved. Sorry for the wall of text.

Ok, i updated unraid to 6.2.4 and none of my dockers worked any more. I installed transmissionvpn yesterday but i can't get it to work. I'm still in a learning-process. The new variables are added and i got this: /plugins/dynamix.docker.manager/scripts/docker create --name="activ-transmissionvpn" --net="bridge" --privileged="true" -e TZ="Europe/Paris" -e HOST_OS="unRAID" -e "VPN_ENABLED"="yes" -e "VPN_USER"="*****" -e "VPN_PASS"="*****" -e "VPN_REMOTE"="ippower.zapto.org" -e "VPN_PORT"="1194" -e "VPN_PROTOCOL"="tcp" -e "VPN_PROV"="custom" -e "ENABLE_PRIVOXY"="no" -e "LAN_NETWORK"="192.168.8.0/24" -e "WHITELIST"="192.168.*.*" -e "DEBUG"="false" -e "PUID"="99" -e "PGID"="100" -e "STRONG_CERTS"="no" -e "NAME_SERVERS"="8.8.8.8,8.8.4.4" -e "PHP_TZ"="Europe/Paris" -e "VPN_DEVICE_TYPE"="tun" -p 9091:9091/tcp -p 8118:8118/tcp -v "/mnt/user/Films/":"/data":rw -v "/mnt/cache/appdata/activ-transmissionvpn":"/config":rw activ/arch-transmissionvpn usermod: no changes [info] Env var PUID defined as 99 [info] Env var PGID defined as 100 [info] Permissions already set for /config [info] Starting Supervisor... 2017-02-03 12:22:57,782 CRIT Set uid to user 0 2017-02-03 12:22:57,782 INFO Included extra file "/etc/supervisor/conf.d/transmission.conf" during parsing 2017-02-03 12:22:57,783 INFO supervisord started with pid 20 2017-02-03 12:22:58,787 INFO spawned: 'checkproc-script' with pid 23 2017-02-03 12:22:58,789 INFO spawned: 'start-script' with pid 24 2017-02-03 12:22:58,791 INFO spawned: 'transmission-script' with pid 25 2017-02-03 12:22:58,791 INFO spawned: 'privoxy-script' with pid 26 2017-02-03 12:22:58,794 DEBG 'start-script' stdout output: [info] VPN is enabled, beginning configuration of VPN 2017-02-03 12:22:58,794 INFO success: checkproc-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs) 2017-02-03 12:22:58,794 INFO success: start-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs) 2017-02-03 12:22:58,794 INFO success: transmission-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs) 2017-02-03 12:22:58,794 INFO success: privoxy-script entered RUNNING state, process has stayed up for > than 0 seconds (startsecs) 2017-02-03 12:22:58,796 DEBG 'transmission-script' stdout output: [info] VPN is enabled, checking VPN tunnel local ip is valid 2017-02-03 12:22:58,797 DEBG 'privoxy-script' stdout output: [info] Privoxy set to disabled 2017-02-03 12:22:58,797 DEBG fd 24 closed, stopped monitoring <POutputDispatcher at 47382796251216 for <Subprocess at 47382795261856 with name privoxy-script in state RUNNING> (stderr)> 2017-02-03 12:22:58,797 DEBG fd 20 closed, stopped monitoring <POutputDispatcher at 47382795772200 for <Subprocess at 47382795261856 with name privoxy-script in state RUNNING> (stdout)> 2017-02-03 12:22:58,797 INFO exited: privoxy-script (exit status 0; expected) 2017-02-03 12:22:58,797 DEBG received SIGCLD indicating a child quit 2017-02-03 12:22:58,799 DEBG 'start-script' stdout output: [info] VPN config file (ovpn extension) is located at /config/openvpn/pfSense-TCP-1194-tvpn.ovpn 2017-02-03 12:22:58,820 DEBG 'start-script' stderr output: mknod: /dev/net/: File exists 2017-02-03 12:22:58,822 DEBG 'start-script' stdout output: [info] Default route for container is 172.17.0.1 2017-02-03 12:22:58,824 DEBG 'start-script' stdout output: [info] Adding 192.168.8.0/24 as route via docker eth0 2017-02-03 12:22:58,824 DEBG 'start-script' stdout output: [info] ip route defined as follows... -------------------- 2017-02-03 12:22:58,824 DEBG 'start-script' stdout output: default via 172.17.0.1 dev eth0 172.17.0.0/16 dev eth0 proto kernel scope link src 172.17.0.2 192.168.8.0/24 via 172.17.0.1 dev eth0 2017-02-03 12:22:58,825 DEBG 'start-script' stdout output: -------------------- 2017-02-03 12:22:58,826 DEBG 'start-script' stdout output: [info] iptable_mangle support detected, adding fwmark for tables 2017-02-03 12:22:58,839 DEBG 'start-script' stdout output: [info] iptables defined as follows... -------------------- 2017-02-03 12:22:58,839 DEBG 'start-script' stdout output: -P INPUT DROP -P FORWARD ACCEPT -P OUTPUT DROP -A INPUT -i tun0 -j ACCEPT -A INPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT -A INPUT -i eth0 -p tcp -m tcp --sport 1194 -j ACCEPT -A INPUT -i eth0 -p tcp -m tcp --dport 9091 -j ACCEPT -A INPUT -i eth0 -p tcp -m tcp --sport 9091 -j ACCEPT -A INPUT -p udp -m udp --sport 53 -j ACCEPT -A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT -A INPUT -i lo -j ACCEPT -A OUTPUT -o tun0 -j ACCEPT -A OUTPUT -s 172.17.0.0/16 -d 172.17.0.0/16 -j ACCEPT -A OUTPUT -o eth0 -p tcp -m tcp --dport 1194 -j ACCEPT -A OUTPUT -o eth0 -p tcp -m tcp --dport 9091 -j ACCEPT -A OUTPUT -o eth0 -p tcp -m tcp --sport 9091 -j ACCEPT -A OUTPUT -p udp -m udp --dport 53 -j ACCEPT -A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT -A OUTPUT -o lo -j ACCEPT 2017-02-03 12:22:58,839 DEBG 'start-script' stdout output: -------------------- 2017-02-03 12:22:58,839 DEBG 'start-script' stdout output: [info] Starting OpenVPN... 2017-02-03 12:22:58,843 DEBG 'start-script' stdout output: [info] OpenVPN started root@powernas:~# docker exec -it activ-transmissionvpn ifconfig eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 inet 172.17.0.2 netmask 255.255.0.0 broadcast 0.0.0.0 ether 02:42:ac:11:00:02 txqueuelen 0 (Ethernet) RX packets 11 bytes 666 (666.0 B) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 11 bytes 570 (570.0 B) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536 inet 127.0.0.1 netmask 255.0.0.0 loop txqueuelen 1 (Local Loopback) RX packets 640 bytes 49280 (48.1 KiB) RX errors 0 dropped 0 overruns 0 frame 0 TX packets 640 bytes 49280 (48.1 KiB) TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 I guess it never connects to the vpn and transmission is not starting.

Ok, thanks for the info. This needs to be plugged in to the motherboard? Indeed. I found howto's on this forum and others. This will not be a problem. Thanks! Found it. There's some very usefull info in that topic!

In terms of power: yes. The passmark score of the xeon is not much better. But when it comes to expandability that asrock falls a bit short. The pci-e layout is also not optimal for passing through 2 video cards and an usb-card. I also need another pci-e 8x slot for my future sas controller. That is a no go with this motherboard.

Ok, so i want to step up to server-grade hardware. To keep it simple: This is what i already have: asrock Z170A X1/3.1 intel i7-6700 16gb ram regular hdd's (4TB total) 1 ssd (cache & VM's)(need another ssd for VM only) corsair AX850 psu This is what i want to do with my unraid setup: 1 win10 VM with gpu & usb passthrough 1 win10 VM headless 1 openelec VM with gpu passthrough 2 dockers - torrent and pyload This is what i had in mind from ebay (belgium) ASUS Z9PA-U8iKVM http://www.benl.ebay.be/itm/ASUS-Z9PA-U8iKVM-Intel-C602A-5Jahre-ARS-ATX-12Zoll-x-9-6Zol-/122286416079?hash=item1c78d6a0cf:g:~zgAAOSwa~BYYsIs Intel Xeon E5-2650 SR0KQ http://www.benl.ebay.be/itm/Intel-Xeon-E5-2650-SR0KQ-8-Core-H-T-2-GHz-2-8Ghz-Turbo-Socket-2011-20MB-C2-/182425854420?hash=item2a796da1d4:g:ECIAAOSwCGVYALoi 4x 8GB 32GB RAM RDIMM ECC REG DDR3 http://www.benl.ebay.be/itm/4x-8GB-32GB-RAM-RDIMM-ECC-REG-DDR3-1333-MHz-f-Dell-PowerEdge-R710-R715-R810-/351589822058?hash=item51dc62ee6a:g:r0MAAOSwys5WWB0s DELL PERC H310 http://www.benl.ebay.be/itm/DELL-PERC-H310-INTERNAL-SAS-PCI-EXPRESS-RAID-CARD-0HV52W-/381903899068?hash=item58eb3f09bc:g:VowAAOSwImRYZdLe This is what i know (correct me if i'm wrong): the motherboard needs another plugin card for those 8 extra sata ports. But i don't need them, i have the Dell H310. that cpu with number SR0KQ means VT-d support. Right? i know there are dual socket motherboards for a few bucks more but i dont need it. i know there are e5-2670 cpu's for sale but they still cost 5x the price of an e5-2650. I don't need that much passmark score (no plex). i know the Z9PA-U8 is standard ATX size with EEB mounting hole locations. This is what i don't know : Can i fit a 'normal' cpu cooler on that socket? I haven a spare CM Hyper 212 evo for example. What is that extra black/red cable on the H310? I'm not sure about the ram. I assume those are compatible? The mother of all questions: is this the right platform for an unraid server? This is what i forgot: don't know, forgot it... Thanks for your time!

Hi, i'm searching a new motherboard for my setup based on the i7-6700 non K. My current motherboard is a Gigabyte Z170 with 90° turned sata ports and they sit too close to my hotswap drive cages. I can buy a cheap asrock B150 Pro4/3.1 board but on the other hand i'm curious about the (more expensive) supermicro boards. Can someone point me in the good direction for a good supermicro ATX-board with 6 to 8 sata3 ports? Thank's.

So far so good: https://www.dropbox.com/sh/gtr02wquudv893x/AAD13LAeXODbXp9_ioGYOms4a?dl=0 It took me 50min to install windows 10 and the mechanical hard drive is killing me. I only had 4gb of ram from my notebook to test with. The new system will have an ssd and 8gb ram though. Overall i think this might actually work. (where did the pyload docker img go in the CA plugin??)

Very true Ok, i'll test it an keep this post up to date.

I was thinking about that but it will take some time and i can't use my mediacenter at the same time. This new server is not for me btw.

It has a realtek nic onboard. For a nas/server i prefer an intel one. Even when we're on a budget. There are sata-power cables (4 hdd's) included in the box. You have to plug them in onto the motherboard. (i use the same motherboard for my htpc) I already have a notebook-style PS but i think they also ship one with the motherboard. (they do, i remember now ) I forgot to mention, openVPN will also be installed as a docker img. (edited the first post) Hm, things are adding up... In the end we have quite a few services running so it may be better to buy an i3. The 2 HT-cores will be usefull for the VM. Shame, i like to see how far one can go with those low power itx-boards

Not much. Some basic web browsing from an android-box with rdp-app and an automatic file mover that moves pictures from a dropbox folder to the unraid array. That's about it. Maybe iSpy (camera security) could be installed later with max 2 ip-cams. (i haven't tested the zoneminder docker yet)

Well, i'm running a win10 vm with only 2gb ram and it runs fine. So i'm not worried about the ram but you could be right about the cpu. Maybe an AM1 mobo with a 5350 is a better choice? I've seen a few people on this forim running unraid on an AM1 platform.

Hi, a friend of my moved to his new home and asked my if i could build him a low budget, low power NAS. The nas wil basically be used as a fileserver and music streamer. No movies so there's no need for plex. We only have $500 to spend with the hdd's included (we're in Belgium) and this is what i had in mind so far: hdd: Toshiba 2TB 3.5" 7.2k SATA 6Gb/s (x2) € 140,00 nic: Intel EXPI9301CTBLK € 29,90 mobo: Asrock J3160DC-ITX * € 127,10 case: Cooler Master Elite 110 € 44,80 ram: Team Group So-DIMM DDR3 1600 8GB € 40,30 usb-stick: Sandisk 16GB Cruzer Fi € 9,80 total: €391,90 *We already have a powersupply for the motherboard. Will this run fine with: - 3 to 4 basic dockers (pyload, a music manager, ...) - just one headless win10 VM with this setup? (That celeron has 4 cores so i assume it would be ok) - run openVPN server One other thing i would like to ask: my own server need an lcd attached in order to boot up. I read the FAQ about this but i had no luck. I would very much like to be able to run the server headless. Thanks in advance.

Same here. I spend 3 weeks gathering info from github, docker.com, this forum and openvpn itself. Could not get it up and running until someone posted the link to this topic. I somehow must have over looked it. (don't get me wrong, appreciate the hard work put into this) After reading the full 18 pages i was able to solve all problems but one. The vpn-server was up and running without errors but i could not connect. Turned out that my ISP router was able to port forward only TCP, not UDP. (is this normal?) My problems: no webui: changed eth0 to bond0 in config file (i use bonding) TUN/TAP error: a simple reboot fixed it our second router is set to 'bridge mode' but nat was still enabled. Disabled nat manualy. port forwarding didn't work with UDP. Using TCP fixed it. At the end of the day, I've learned A LOT.

Ok, so i managed to log in to the webui. I also use bonding so post #45 was helpfull, thanks! Then i configured everything as described in post #9 but stumbled upon the TUN/TAP error... ['Sat Oct 1 20:06:36 2016 ERROR: Cannot open TUN/TAP dev /dev/net/tun: No such file or directory (errno=2)'] I'm still in a learning process and searched the web but i have no idea where to start.

True. This topic can be closed/deleted by the mods. I'm new to unraid and still need to find my way in the forums. Thanks for the link!

Yes, i'm aware of that But i don't now what. I only changed the ip and port in the config file. But even when doing a fresh install the webui won't load.

Hi, i have no access to openvpn webui. I use openvpn-as docker img. Brought to you by linuxserver.io We do accept donations at: https://www.linuxserver.io/donations ------------------------------------- GID/UID ------------------------------------- User uid: 99 User gid: 100 ------------------------------------- [cont-init.d] 10-adduser: exited 0. [cont-init.d] 20-time: executing... [cont-init.d] 20-time: exited 0. [cont-init.d] 30-config: executing... [cont-init.d] 30-config: exited 0. [cont-init.d] 40-openvpn-init: executing... [cont-init.d] 40-openvpn-init: exited 0. [cont-init.d] 50-interface: executing... MOD Default {} {} MOD Default {} {} MOD Default {} {} MOD Default {} {} [cont-init.d] 50-interface: exited 0. [cont-init.d] done. [services.d] starting services [services.d] done. { "_INTERNAL": { "run_api.active_profile": "Default", "webui.edit_profile": "Default" }, "Default": { "admin_ui.https.ip_address": "192.168.1.211", "admin_ui.https.port": "943", "auth.ldap.0.name": "My LDAP servers", "auth.ldap.0.ssl_verify": "never", "auth.ldap.0.timeout": "4", "auth.ldap.0.use_ssl": "never", "auth.module.type": "pam", "auth.pam.0.service": "openvpnas", "auth.radius.0.acct_enable": "false", "auth.radius.0.name": "My Radius servers", "cs.cws_proto_v2": "true", "cs.https.ip_address": "all", "cs.https.port": "943", "cs.prof_sign_web": "true", "cs.ssl_method": "SSLv3", "cs.tls_version_min": "1.0", "host.name": "192.168.1.211", "sa.initial_run_groups.0": "web_group", "sa.initial_run_groups.1": "openvpn_group", "vpn.client.routing.inter_client": "false", "vpn.client.routing.reroute_dns": "true", "vpn.client.routing.reroute_gw": "true", "vpn.daemon.0.client.netmask_bits": "20", "vpn.daemon.0.client.network": "172.27.224.0", "vpn.daemon.0.listen.ip_address": "all", "vpn.daemon.0.listen.port": "9443", "vpn.daemon.0.listen.protocol": "tcp", "vpn.daemon.0.server.ip_address": "all", "vpn.server.daemon.enable": "true", "vpn.server.daemon.tcp.n_daemons": 8, "vpn.server.daemon.tcp.port": "9443", "vpn.server.daemon.udp.n_daemons": 8, "vpn.server.daemon.udp.port": "1194", "vpn.server.group_pool.0": "172.27.240.0/20", "vpn.server.port_share.enable": "true", "vpn.server.port_share.ip_address": "1.2.3.4", "vpn.server.port_share.port": "1234", "vpn.server.port_share.service": "admin+client", "vpn.server.routing.private_access": "nat", "vpn.server.routing.private_network.0": "192.168.1.0/24", "vpn.server.routing.private_network.1": "192.168.122.0/24", "vpn.server.routing.private_network.2": "172.17.0.0/16", "vpn.tls_refresh.do_reauth": "true", "vpn.tls_refresh.interval": "360" }} } Not sure what went wrong. [edit] ok, i used the peter_sm plugin instead. Works fine now.

I logged in to my router, closed those ports and changed the static ip of my unraid server. There are no login attempts so far. Not in unraid or my openmediavault, which i use to make backups. We cannot log in directly into the router by the way. We need to use the ISP's website. So if there's no internet,... well We also cannot use the router until we changed it's default password which is done when the ISP-technician installed it so that's not the problem. I'm indeed by far an expert in this networking/it-world but i'm not a total amateur either (same goes for my english btw ) and i'm confident about getting pfsense running properly after doing proper research and a lot of patience. Many thanks to everyone for helping me out. I learned a lot.

Good idea. I also changed my root password to something much stronger.

Well, i don't know what to say... i logged in to my isp-account and discovered that ports between 7999 and 8080 where open! I can't remember changing any settings there... Strange. Meanwhile, the login attemps keep comming: Jul 20 12:06:09 powernas sshd[17199]: Received disconnect from 221.194.44.223: 11: [preauth] Jul 20 12:06:09 powernas sshd[17199]: Disconnected from 221.194.44.223 [preauth] Jul 20 12:06:19 powernas sshd[17203]: Connection closed by 116.31.116.42 [preauth] Jul 20 12:06:22 powernas sshd[17244]: Failed password for root from 116.31.116.42 port 22251 ssh2 Jul 20 12:06:22 powernas sshd[17244]: Failed password for root from 116.31.116.42 port 22251 ssh2 Jul 20 12:06:22 powernas sshd[17244]: Failed password for root from 116.31.116.42 port 22251 ssh2 Jul 20 12:06:23 powernas sshd[17244]: Received disconnect from 116.31.116.42: 11: [preauth] Jul 20 12:06:23 powernas sshd[17244]: Disconnected from 116.31.116.42 [preauth] Jul 20 12:06:28 powernas sshd[17264]: Failed password for root from 116.31.116.42 port 32005 ssh2 Jul 20 12:06:29 powernas sshd[17264]: Failed password for root from 116.31.116.42 port 32005 ssh2 Jul 20 12:06:29 powernas sshd[17264]: Failed password for root from 116.31.116.42 port 32005 ssh2 Jul 20 12:06:29 powernas sshd[17264]: Received disconnect from 116.31.116.42: 11: [preauth] Jul 20 12:06:29 powernas sshd[17264]: Disconnected from 116.31.116.42 [preauth] Jul 20 12:06:33 powernas sshd[17285]: Failed password for root from 116.31.116.42 port 50732 ssh2 Jul 20 12:06:33 powernas sshd[17285]: Failed password for root from 116.31.116.42 port 50732 ssh2 Jul 20 12:06:33 powernas sshd[17285]: Failed password for root from 116.31.116.42 port 50732 ssh2 Jul 20 12:06:34 powernas sshd[17285]: Received disconnect from 116.31.116.42: 11: [preauth] Jul 20 12:06:34 powernas sshd[17285]: Disconnected from 116.31.116.42 [preauth] Jul 20 12:06:41 powernas sshd[17310]: Failed password for root from 116.31.116.42 port 10820 ssh2 Jul 20 12:06:41 powernas sshd[17310]: Failed password for root from 116.31.116.42 port 10820 ssh2 Jul 20 12:06:42 powernas sshd[17310]: Failed password for root from 116.31.116.42 port 10820 ssh2 Jul 20 12:06:42 powernas sshd[17310]: Received disconnect from 116.31.116.42: 11: [preauth] Jul 20 12:06:42 powernas sshd[17310]: Disconnected from 116.31.116.42 [preauth] Jul 20 12:06:47 powernas sshd[17338]: Failed password for root from 116.31.116.42 port 34846 ssh2 Jul 20 12:06:47 powernas sshd[17338]: Failed password for root from 116.31.116.42 port 34846 ssh2 Jul 20 12:06:48 powernas sshd[17338]: Failed password for root from 116.31.116.42 port 34846 ssh2 Jul 20 12:06:48 powernas sshd[17338]: Received disconnect from 116.31.116.42: 11: [preauth] Jul 20 12:06:48 powernas sshd[17338]: Disconnected from 116.31.116.42 [preauth] Is it usefull/wise to shut down the telnet-service on my unraid for now?

Thanks! I will google that from here on. It's a bit off topic. I'm from Belgium so the prices are a bit different. AM1 platform is a good pick but they do not use intel nic's. My unraid server is shut down right now and i suppose i can't do anything about the security until i have my pfsense up and running?

Output: But i'm a total amature when it comes to networking so i have no clue how to read the results