Toes♀

I’d suggest using IFME (https://x265.github.io/download.html) it does support MKV.

Due to the nature of video, using another codec will have some differences even if it’s minimal.

But if you encode the video as AV1 with conservative settings it should be possible to reclaim a lot of that space with minimal impact.

Metadata should be retainable but you’ll likely need to experiment.

So it depends. For example some legacy apple stuff had a bad DHCP implementation where it would try to hold onto an IP address it had before.

When there’s one DHCP server with a reserved ip it won’t assign that ip to the wrong device. (Unless you’re running some buggy software that takes your configuration as suggestions)

Where the advice to set it anyways comes from scenarios where that DHCP server goes down for long enough that everyone starts self assigning addresses. It’s a real hassle to find the correct system when that happens.

Kubuntu LTS is the same Day service and support to the following link unsubscribe.

ERROR Insert Coin

Avoiding spam filters and ISP blocks are a common issue with self hosted email.

Ideally you’ll have a mature domain, dkim configured and an IP that’s not blacklisted on a network that allows email traffic.

OVH offers pretty cheap email hosting if you just want a turn key solution.

Otherwise if you want your home lab to work this way you may need to configure something akin to a forward proxy on a VPS to act as a gateway for your homelab.

This could be achieved using wireguard and iptables. By routing the email traffic to your homelab.

I forgot about an old install of tumbleweed and had thousands of packages that needed updating. To my shock it worked.

Glad to help, just keep in mind not everyone is connected to a NAT, so if you see a leaked LAN IP that condition will leak their WAN IP.

So this comes down to how the browser, OS and VPN handle this.

My understanding has been that Windows handles openvpn poorly and is prone to leaking.

However, Linux when using wireguard works fairly well but may leak lan IPs.

People who configure their router to use a VPN service are safe because it’s transparent to the OS.

Then there’s the rare few that are using socks and their IP information gets leaked by webRTC fairly easily.

Now my understanding of these may be outdated, so I would suggest building test units to evaluate these conditions and confirm it for yourself in your app.

Generally speaking the kind of person that’s concerned with this problem also runs their browser with JavaScript disabled and by extension webrtc disabled.

I watched a ocean of computers go dead on the floor because I couldn’t convince the sysadmin to do exactly that when pushing a major change.

But how do I integrate everything into Microsoft 365 with that snazzy OneDrive feature? /s

https://www.abc.net.au/news/2024-07-19/what-is-crowdstrike-outage-explained/104120260

This has happened and taken a bunch of services down around the world.

Even that can’t be trusted these days. The computer can be configured to come back on and connect to the network.

This is why I’m only interested in laptops with removable batteries but it’s become rarer and rarer.

I’d suggest using OVH. https://help.ovhcloud.com/csm/en-ie-dns-dynhost?id=kb_article_view&sysparm_article=KB0051641

Depending on your country you may need to use ovh canada

Syncthing like others suggested is probably the way to go.

But if you want more options you can do a lot with WebDAV. https://www.digitalocean.com/community/tutorials/how-to-configure-webdav-access-with-apache-on-ubuntu-18-04

Finally I feel motivated.

So I’ve been the person who denies projects like these in the office.

There are two non-negotiable requirements for equipment like this.

1. It absolutely must not in any way interact with outside servers or remote services. All data must stay contained within the company.

2. The software must be open for inspection with a locally reproducible build. Or accredited by a trustworthy provider such as Microsoft.

Failure to meet those requirements and the proposal is dead.

Hey I just had another thought. Do you have your ISP provided router in bridge mode? That would help if you’re not using it for anything else.

If your lan devices only have a fe80, your clients are not receiving a proper router advertisement.

Which routes and firewall rules should I be checking?

Since the OPNsense device is getting a ipv6 address and is able to ping ipv6 devices on the internet.

It sounds like you don’t have ipv6 configured for the LAN. Try enabling “Assisted” mode.

https://docs.opnsense.org/manual/radvd.html

Confirm the ipv6 addresses your clients in the LAN are being assigned an ipv6 address within the scope of what your ISP is assigning.

If you are check default routes and firewall rules.

If you aren’t, investigate “router advertisement”.