Before I do anything on Linux, I do this first...
Рет қаралды 101,054
Күн бұрынAfter setting up my Linux servers, there are a few things I do before I use them for their intended purpose. This ranges from security, to tools, to config. Join me as we set up our first Linux server in this tutorial and walk through setting it up proper (and maybe some bonus items sprinkled in).
Video Notes: technotim.live/posts/fist-13-...
Support me on Patreon: / technotim
Sponsor me on GitHub: github.com/sponsors/timothyst...
Subscribe on Twitch: / technotim
Become a KZbin member: / @technotim
Merch Shop: l.technotim.live/shop
Gear Recommendations: l.technotim.live/gear
Get Help in Our Discord Community: l.technotim.live/discord
2nd channel: / @technotimtalks
(Affiliate links may be included in this description. I may receive a small commission at no cost to you.)
#Homelab #Linux #TechnoTim
00:00 - Intro
00:34 - What are we going to cover today?
01:14 - Choose your distribution
01:37 - Update installation
02:11 - Configure Automatic Updates
03:03 - Create new account, disable root, sudoers
04:01 - Install and configure SSH server, Key based authentication
06:13 - Configure static IP
07:37 - Configure zshell and oh-my-zsh
08:17 - Fix LVM and default partitioning on Ubuntu
08:51 - Set or change your hostname with hostname ctl
09:28 - Set a Time Zone with timedatectl
10:11 - Set NTP time with systemd-timesyncd
10:59 - Install qemu-guest-agent for Proxmox virtualization
12:11 - Configure Linux firewall with ufw
13:08 - Install and configure fail2ban
16:44 - Bonus items
16:57 - Configure backups
17:24 - Remote logging and monitoring with Prometheus and fluentd
18:01 - What is the first thing you do when setting up a Linux server?
18:52 - Stream Highlight - Where are these companies throwing out servers???
Thank you for watching!
@TechnoTim 3 жыл бұрын
What's the first thing you do after installing Linux? 🐧
@nevoyu 3 жыл бұрын
I install Centos. Make sure the VM and podman tools are installed and after that I'm literally good to go because I set everything you set in this video during installation. I also keep root login but disable root access for ssh. Make sure my ssh certs are set and we're good to go.
@rollover36 3 жыл бұрын
First thing is follow guides like this one and get it done! Thanks a lot. I don't setup new servers that often so I prefer to do it manually step by step.
@Shane-Singleton 3 жыл бұрын
Depending on the distro i'll do the update and then I install SSH, CURL, and CIFS-Utils as most of my machines need to access an NFS share. I've been using MX-Linux lately and it has been working out really well. Prior i've been using Xubuntu but I've just been testing with various distros lately and for the moment MX is my favorite. I currently only have one Linux host up and running and that's my Docker host. And that's serving all of my services so far.
@aytviewer2421 3 жыл бұрын
Likely obvious, but my first step is to perform apt update... Beyond that, honestly, it's been hit or miss for me depending on what I am trying to accomplish. I need to be consistent and your video is going to help me do just that. Many thanks!
@lelandclayton5462 3 жыл бұрын
I Install Debian Sid, been using Debian since the beginning. Check out the Kernel and make sure I don't need to install any firmware files or if the Kernel is missing something. Setup my Hosts file, setup Setup a Static IP, Setup NTP Client, Create a user, Setup OpenSSH and setup certs. Install Fish Shell, FZF, Screen, Curl, glances and import my Aliases. No need to run apt update/upgrade since during the install it pulls the latest packages from the Debian Repo when installing and since I am running Sid it already enables contrib and non-free. From there it just depends on what I want the Server to do.
@dcsonic3 3 жыл бұрын
I’d like to see a Prometheus setup video.
@TechnoTim 3 жыл бұрын
thank you!
@bett0diaz 3 жыл бұрын
@@TechnoTim or any monitoring system that allow to check the system performance over time. your videos are great. thanks!
@mikaell.5770 3 жыл бұрын
I'm really interested with Prometheus and Fluentd. And also how to use them to monitor docker containers metrics.
@kristopherleslie8343 3 жыл бұрын
@@bett0diaz Netdata also!
@Brainpitcher 2 жыл бұрын
@@TechnoTim so what about a Prometheus setup video
@dimitriid 3 жыл бұрын
Now that you mention it, I think you should do a video on Ansible as it can be potentially extremely useful to anybody that might do any kind of system administration and should go hand in hand with things like Proxmox.
@TechnoTim 3 жыл бұрын
thank you!
@abrudner 3 жыл бұрын
Seconded, would love to see how you set up a VM in Proxmox using Ansible! Great video Tim!
@jasonperry6046 3 жыл бұрын
I would love to see a video on logging and monitoring
@CrashLoopBackOff-K8s 2 жыл бұрын
I have been watching almost all of your videos since discovering your channel recently. This is another incredibly useful presentation that includes not only the "what", but also some of the "why". Really appreciate the time and value you've given to the community over the years. Thank you.
@s0litaire2k 3 жыл бұрын
If I'm setting up a test server (or testing a config for a production server before going live) I usually install "etckeeper" it logs changes to everything in /etc using a local git repository. So changes can be logged and restored if I mess things up. (or on a production server if i need to keep an audit log of changes).
@TechnoTim 3 жыл бұрын
thank you!
@mattice2104 3 жыл бұрын
It's saved me so much time. A simple git diff shows what changes were made.
@dancersys Жыл бұрын
Thanks a lot, Tim! I occasionally found the channel a couple days ago and I've been watching your videos for these days and I still can't stop watching. I'm a Win sysadmin and I have never deal with Linux servers. Your videos have inspired me to start implementing some things on Ubuntu server and start studying it in general. Thank you, I used to hate it before :D
@TechnoTim Жыл бұрын
Thank you!
@jadecamaro 3 жыл бұрын
I am totally subscribed to you now after checking out 4 of your videos. They are well done and cover a variety of home lab topics I am involved or interested in. Keep up the great work!
@TechnoTim 3 жыл бұрын
Awesome! Thank you!
@includenull 3 жыл бұрын
I would love to see a video about logging, specifically logging from a remote server to a another and any security concerns with that.
@TechnoTim 3 жыл бұрын
thank you!
@AliciaSykes 3 жыл бұрын
Another nice, useful and easy-to-follow video as usual- thank you Techno Tim, keep up the awesome work!
@TechnoTim 3 жыл бұрын
Thanks again!
@AdmV0rl0n 3 жыл бұрын
I'm at 6M36s and I have to say, you have been very clear and concise with good info thus far. I like that you go down the path of the more correct or better option, SSH keys, doing DHCP the right way.. I'll continue and add as I watch for feedback.. 7M04s - wow, I am out of date in network configuration and setup.. The fix LVM is an awesome piece. The only feedback there is a 'how to check if your disk isn't all used' first.. Wow.. am I out of date in hostname handling.. :) UFW - excellent, clear, concise. Lotta people sink explaining Fail2Ban. You covered that very nicely. And you covered the key and pass aspect of it. Very nice. Thanks for your time and efforts - Appreciate it.
@TechnoTim 3 жыл бұрын
Thank you so much!
@MrEric377 3 жыл бұрын
OMG, Tim. It is like you can read my thoughts and know what I am doing because I needed this video. I ran into the ubuntu LVM storage issue and thanks to your discord community helped me figure out. I also love the tips on backup and logging. I would really like to know how you save logs and if you use a monitor. I am very interested in this topic. Great video!
@TechnoTim 3 жыл бұрын
Very welcome!
@mikebailey783 3 жыл бұрын
Flippin' heck, this is a great video. Right, I've got a new checklist for setting up my Linux installations now. Thanks!
@TechnoTim 3 жыл бұрын
Glad it helped!
@michaeldeffenbaugh6936 3 жыл бұрын
8:34 IIRC you can omit dropping into the lvm interactive environment. I believe lvextend is a native command in Ubuntu (it is in RHEL/CentOS/Fedora). Great video!
@NM-vw6xq 3 жыл бұрын
Great video Tim! I've been using Linux (mainly Mint) for years and was not familiar with some of these commands. Very practical and helpful. Would love to see a follow up Ansible video on automating some of this.
@TechnoTim 3 жыл бұрын
Glad it was helpful!
@Mak100ish 3 жыл бұрын
Such great timing! Getting my new Linux server next week 👌
@TechnoTim 3 жыл бұрын
Great to hear!
@mmorris9751 3 жыл бұрын
This is exactly what I've been lloking for, well done! I would like to see a docker setup running multiple containers for diff roles. Thanks
@TechnoTim 3 жыл бұрын
Thank you!
@deancantave5233 3 жыл бұрын
Tim, this was an excellent video! You explain things quite well. I’m trying to see if I would set this up at home because I actually use Mac bit of course, configuring your own Linux desktop/server instances at home give you more flexibility to configure security, networking, etc.
@TechnoTim 3 жыл бұрын
For sure! Thank you! If you’re using a mac, you will feel right at home with a Linux terminal!
@BramVanMol 3 жыл бұрын
Great vid! Thx really useful! Monitoring would be a great topic for a video.
@TechnoTim 3 жыл бұрын
Thanks for the idea!
@yeezul 3 жыл бұрын
Great video! I'd love to see one about the logging part eventually 😉
@TechnoTim 3 жыл бұрын
Thanks for the idea!
@Shambolicoholic 3 жыл бұрын
Great stuff as usual Tim. Going to try these out and see if they fit my flow.
@TechnoTim 3 жыл бұрын
Good luck!
@GhostZodick 3 жыл бұрын
Man, I love your videos. You are so professional and knowledgeable
@Billyfelicianojp 3 жыл бұрын
Yes I would like to see more about remote logging and monitoring.
@vincentducheman 3 жыл бұрын
Hello Tim, thanks for this great video again ! I'd like to see a monitoring setup video ;) will be really useful !
@TechnoTim 3 жыл бұрын
Noted!
@stokley121 3 жыл бұрын
Hey man, really like your videos. Going to tune into the Twitch streams when I can, great content.
@Coolblockj 3 жыл бұрын
One thing I'd love to see that I believe you have mentioned before is your logging setup, like Kibana and log stash and the like
@HinkleMcKrinkle Жыл бұрын
First off, your videos are awesome and I can't tell you how much I have enjoyed diving into the homelab life through your guides! Did you ever automate the rest of these steps in Ansible? I did see the apt, zsh, Qemu, and time zone stuff you did in your ansible video and deployed all of those to my servers.
@DavidOraha 3 жыл бұрын
This was awesome Tim!! Thank you :)
@TechnoTim 3 жыл бұрын
Glad you enjoyed it!
@crazyglue1337 3 жыл бұрын
Good stuff as usual. I'll be getting the qemu agent going soon. Prometheus and grafana with multiple vms would be a great next vid
@denzilhoff6026 3 жыл бұрын
I might suggest looking at Netdata in conjunction with Promethius as well.
@TechnoTim 3 жыл бұрын
thank you!
@therus000 2 жыл бұрын
ill be happy to know something about logging and monitoring in simple way. thanx for this video
@pluralcloud1756 3 жыл бұрын
Awesome-- well thought thru and presented-- thanks
@sinkleir 3 жыл бұрын
that's a really good video Tim, you're doing good work :)
@TechnoTim 3 жыл бұрын
Thank you!
@chrisbowie1438 3 жыл бұрын
To change the timezone you can also use "dpkg-reconfigure tzdata"
@jimbo-dev 3 жыл бұрын
Interesting to see the workflow of other users. You mentioned ”proper time zone” and I started wondering if UTC is the proper time zone when talking about servers. For homelab it probably doesn’t matter, but if in some day there’s need to scale on multiple timezones UTC may make things easier 🤔
@TechnoTim 3 жыл бұрын
For sure! My homelab isn't colocated so I can just use my local timezone but you are spot on! This was more of an example of how to change it but I should have called that out! Thank you!
@chrisumali9841 3 жыл бұрын
Thanks for the demo and tips, have a great day
@TechnoTim 3 жыл бұрын
Thanks for watching!
@asimabusallam3147 3 жыл бұрын
thanks Tim, for ur time to help
@TechnoTim 3 жыл бұрын
You bet
@vash5556 3 жыл бұрын
for adding a user into the sudo group on ubuntu you can do it the even easier way and just do a sudo adduser sudo and it will add that user to the sudo group for you.
@TechnoTim 3 жыл бұрын
nice tip!
@plampix 3 жыл бұрын
If you're using rsync to back-up data, you should look into dirvish, which still uses rsync, but does a lot more (clean up backups, allow hooks pre/post backup on server/client (which I use in combination with run-parts on an /etc/dirvish/{pre/post}-client.d)).
@orenshish 3 жыл бұрын
Really good videos and uses We would love to see a video on server monitoring.
@alexanderschwaighofer1550 3 жыл бұрын
Awesome love to see your videos!!! Such high quality content! I learnt a few new things, e.g. fail2ban and the ufw commands
@TechnoTim 3 жыл бұрын
Thank you!
@krzychaczu 3 жыл бұрын
That's a very good set of good practice! 👍 Just one note, regarding 8:20 In mu opinion, that's actually very smart by Ubuntu that the initial LVM is just 30G (with just 3G used). Having just one LV atop a whole disk is like not having LVM at all. Please consider the following practice for updates: Before apt update, create a snapshot of the system volume (lvcreate with -s option). 4G for a snapshot volume should be more than enough. Update the system, see if it runs fine, drop the snapshot after some time. In case of issues, you can restore the system from a snapshot. LVM snapshots are also great for a backup of an online service, like a website or a database. Create an LV snapshot, mount it as a lv-to-backup, backup this volume, unmount and drop the snapshot.
@TechnoTim 3 жыл бұрын
Thank you for explaining this!
@SyberPrepper 3 жыл бұрын
A great step by step video. Thanks!
@TechnoTim 3 жыл бұрын
You're welcome!
@ImARichard 3 жыл бұрын
I recently setup Loki to feed log data into grafana. I havent even scratched the surface of what it appears to be able to do. But thats definitely nice for chasing down issues Ive had like DDOS attacks while playing games online and whatnot.
@TechnoTim 3 жыл бұрын
thank you!
@OpiumZA 3 жыл бұрын
Dude, super informative video thanks
@user-kd7fw4hn4h 3 жыл бұрын
That video is very interesting and very well explained! Thank you!
@TechnoTim 3 жыл бұрын
Glad you liked it!
@mrviprb 3 жыл бұрын
Thanks for the very useful video Tim. Monitoring video will be absolutely helpful. 😊
@justinjurica6455 3 жыл бұрын
Shout out from Anchorage! Great video!
@TechnoTim 3 жыл бұрын
Hey, thanks! Shoutout from Mpls!
@cyril6581 Жыл бұрын
Thanks for the video, I have made an ansible playbook with all of these steps!
@TechnoTim Жыл бұрын
Thank you! Nice work! I did the same in a follow up video!
@mediis 3 жыл бұрын
Yep, I had to rebuild my desktop, and saved everything I did so I can ansible-ize it for the next time, so that is a very good point to make. The one added thing I do for servers/VMs/containers is I add an admin account. That way I have a common gateway with ansible, and it's handy when I forget my Pihole user, Yes, a more detailed monitoring video would be good to see. As I start to build out more necessary network services it would be good to keep tabs on them ... and maybe a stupid dashboard to pretend our hard weekend work is justified!
@TechnoTim 3 жыл бұрын
thank you!
@PaulBunkey 3 жыл бұрын
Great vid! About the monitoring&logging: can you please make a tutorial of FileBeat-ElasticSearch-Kibana stack setup? It would help a lot of people. (PS. it's my long lasting dream. Never got into learning it, because I'm not Linux guy, but there is so much demand for it, I'll push myself to setup some playground swarm of VMs and try to implement the infamous ELK stack)
@ajaychavda2826 3 жыл бұрын
Thank you Tim !! Can you please make a video for backup and monitoring logs of Linux server .
@andreasgramfalt8240 3 жыл бұрын
Great video! Some comments thou: 1 you should absolutly use DHCP with static leases instead. Then you only have one place to change defalt gw, DNS and such things if you need to. And regarding lvm, to save litte space unallcolated is a good thing to be able to expand and get up quick again in case of running out of space.
@TechnoTim 3 жыл бұрын
Thanks for the tips!
@samorisystems6604 3 жыл бұрын
Thank You for the video, Its a nice checklist. You left out installing your favourite Hypervisor, mine is VMware I will also add Gns3.
@TechnoTim 3 жыл бұрын
Thanks for sharing!
@googleman2030 3 жыл бұрын
Great Video ... Wanted to get your thoughts on using Network Based Accounts to manage the various servers ... Maybe a setup and deployment video if you think it's a good idea ...
@TechnoTim 3 жыл бұрын
thank you!
@michaelharbuck3314 3 жыл бұрын
Super. Thanks Techno Tim.
@TechnoTim 3 жыл бұрын
You're welcome!
@asociatiamontanavidraru275 3 жыл бұрын
Hi Tim. Many thx for your work man. Done today an install and for Ubuntu Srv 20.4 during install you can do: ssh+addkey(launchpad), set hostname and add Canonical Livepatch Client and maybe keepalived. This mean your procedure can be simplified ? In my case ssk key import from launchpad didn't worked but still testing. What do you think about this ?
@hnasr 3 жыл бұрын
Nice tips and best practices!
@TechnoTim 3 жыл бұрын
Glad you like them!
@parnashish1910 3 жыл бұрын
Useful video. Thanks for creating it.
@TechnoTim 3 жыл бұрын
Thank you!
@nikitachernyshov5790 2 жыл бұрын
Thank you so much! Great video!
@bengerber4542 3 жыл бұрын
It should be noted that Docker completely breaks UFW and goes around it. Since both backend iptables, docker takes priority. You can test it if you try to block any port that docker wants, it won't work. Big security flaw. Using straight iptables instead allows you to actually have control over docker port-wise. There are some klugey work arounds like ufw-docker on github.
@jespervikstrom2092 3 жыл бұрын
Hello, I would not lock the root account in case something goes bad. The preferred method is to disallow the root account to access the server via SSH, which is done within the SSH configuration. This way you will be able to log in with the root account in a console if needed.
@Mr.Leeroy 3 жыл бұрын
yeah, makes no sense unless you are a script kiddie, who does not really know what he's executing and is better of this way.
@TechnoTim 3 жыл бұрын
thank you!
@TechnoTim 3 жыл бұрын
thank you!
@bingebinge3722 3 жыл бұрын
I thought I was looking at Johnny Depp talking about computing...
@TechnoTim 3 жыл бұрын
Maybe you are :)
@saktibiswal6445 3 жыл бұрын
My thoughts exactly!!
@Wahinies 3 жыл бұрын
Figures willy wonka would be using linux
@squalazzo 3 жыл бұрын
please, really interested in both prometheus and fluentd!
@TechnoTim 3 жыл бұрын
thank you!
@JeanLucGARNIER 3 жыл бұрын
Nice video again, although speed looks to be x1.50... 😁 A kind of check-list/script would be great to remind us all steps to go when starting a new server! I'm also very interested in log centralization and monitoring: did you create any tutorial on this?
@TechnoTim 3 жыл бұрын
I created one on monitoring and alerts for kubernetes!
@JeanLucGARNIER 3 жыл бұрын
Thanks @@TechnoTim, I've put it in Watch Later list! 😉 However, not sure it will apply as I don't plan to install Kubernetes... I'll watch and tell you there!
@superworstje 3 жыл бұрын
A video about server monitoring will be very interesting. Also a video about ansible where you will do al these 13 tasks automated will be nice.
@TechnoTim 3 жыл бұрын
thank you!
@cheako91155 3 жыл бұрын
This comes from BSD: Daily log summary emails! I admittedly haven't set-up this since Google turned off it's SMTP service... That's two things missing from this configuration, email also. Likely the easiest way, currently, is to setup an IMAPD and have your email provider pull from this.
@vargas2005 3 жыл бұрын
thanks as always , great and useful video,
@TechnoTim 3 жыл бұрын
Thank you!
@_vioh723 3 жыл бұрын
First thing I do is come to your channel to learn how to do it XD Great video
@TechnoTim 3 жыл бұрын
Glad to hear that!
@Mikesco3 3 жыл бұрын
Regarding lvm on minute 9: I'm going to spectate it has to do with SSD over provisioning. It is good practice to reserve a certain amount of free space if using an SSD to prolong the lifetime of the drive because each sector can only be written a limited amount of times, over provisioning sets aside a reserve of spear sectors to replenish the amount that starts to reach end of life and also because of how drives free up memory for reuse (Trim) When I set up anything directly on an SSD I leave a space of about 10-15% unpartitioned.
@TechnoTim 3 жыл бұрын
Thank you! Good call!
@CyberFreaked 3 жыл бұрын
I never change timezone on my servers and always use UTC, same for personal accounts on servers I have a deployment user and use some sort of deployment to provision my servers. Furthermore you don't have to to `apt-get update` everytime when installing stuff manually, once should be good
@TechnoTim 3 жыл бұрын
Good call! If I were to co locate my servers I would definitely use UTC!
@aytviewer2421 3 жыл бұрын
Thanks a bunch! The timing of this info is perfect for me. AND YES, please do a video on LOGGING sometime soon. One question: Does fail2ban detect bad SSH Key login attempts? Thanks again!
@TechnoTim 3 жыл бұрын
Great suggestion!
@hsmptg 3 жыл бұрын
Great advices!!!
@TechnoTim 3 жыл бұрын
thank you!
@JeanFrancoCaringi 3 жыл бұрын
Terrific Thanks!
@jeffherdzina6716 3 жыл бұрын
Being in the corporate world. Updating servers should not be taken lightly. Especially Production servers. Like updating a program from one version of Python to another one could cause issues, as well as stop a programs dead in it's tracks. Not to mention, making a few Developers really mad. So I have heard....LOL. I noticed that a few have mentioned Ansible in the comments below. Working with Redhat and Ubuntu servers. We use Ansible, Daily in our three environments. Adding /removing users, copy and transferring files from one server to another, building MYSQL databases, and Checking server security issues with OWASP. Having Ansible, Chef or Puppet on your resume, is something that will help you land that SA job. Terraform is yet another biggie to have on your resume.
@-morrow 3 жыл бұрын
sure, but all of our production servers run debian stable and we've never had issues with automatic updates for years now. security patches don't raise versions, hence compatibility is warranted. perhaps consider more robust distros or configs.
@jeffherdzina6716 3 жыл бұрын
@@-morrow Wishing my bosses are as open minded as yours. Using automatic updating is thing of the future for us. And yes we have pitched it to them a few times. Bosses, go figure.
@TechnoTim 3 жыл бұрын
thank you!
@LawrenceSingha 3 жыл бұрын
Wonderful steps and very very useful... Could you do a video of the bonus feature as you mentioned in 13++, would like to see. Thank you TT learnt so much from you
@TechnoTim 3 жыл бұрын
thank you!
@bertnijhof5413 3 жыл бұрын
I have a FreeBSD 12.2 backup-server on a 32-bits Pentium 4. For backup up I use ZFS (send | ssh receive). I use ZFS on all (Ubuntu) PCs. For monitoring the backup I use XFCE, XRDP and Conky on FreeBSD and Remmina on Ubuntu. After 12 Linux years I still default to some Windows left-overs, like samba and xrdp :) :) I do the backup each Saturday, since >90% of the backups are VBox VMs and rerunning a week of updates is OK . My data is also backed up once a week, but it is stored on 2 mirrored ZFS datasets on 2 HDDs by my Ubuntu desktop.
@TechnoTim 3 жыл бұрын
Nice!
@DingDingPanic Жыл бұрын
Besides the ones you mentioned Tim, I also setup Bash aliases and my first aliases are newalias="sudo nano /home//.bash_aliases" and aliasrf="source .bashrc". I also add this line to the .bashrc file cuz the default blue color text in Ubuntu is hard to read: LS_COLORS=$LS_COLORS:'di=0;35:' ; export LS_COLORS
@darrenoleary5952 Жыл бұрын
On the topic of key based authentication, I have configured a single device (rPi) first before i roll it out to all my other rPis. Just wanting to know what is best practice, or is it more personal preference? Different keys on : * each device to have it's own key-pair; * each device type to have their own key-pair; * one key-pair for all devices
@aytviewer2421 2 жыл бұрын
This is a great guide. Wondering if there is anything new in Ubuntu Server 22.04 that overrides some of the configurations highlighted in this video?
@TechnoTim 2 жыл бұрын
Thanks! To my knowledge it should be the same!
@brettbyrnes577 3 жыл бұрын
This is an awesome video!
@TechnoTim 3 жыл бұрын
Thank you!
@hmortensen1 3 жыл бұрын
Great list. What about installing a NUT client, so your machine gets information from UPS.
@jebucaro Жыл бұрын
This is very useful, Ty! 🤓
@OrderWZM 3 жыл бұрын
Thank you, Tim. Can you please redirect me to the Streamlabs OBS setup. Basically- I am setting up my iPad stream. And having some trouble .. also best way to screencast is using wired connection iPad to Mac or any other suggestion ?
@TechnoTim 3 жыл бұрын
thank you! You'll need a lightning to HDMI adapter, that's what I use
@perfect.stealth 3 жыл бұрын
I love your videos. Thank you so much. I always wonder how to access the Hypervisor from a VM. Is it even safe to do? Also, what is the smartest setup for a virtual network in terms of firewall. Should the HV manage the firewall or should i make a VM with say pfSense? And then forward all traffic to it. If yes, how do i then access the Hypervisor? I hope i make sense and that you find the time to reply. Thank you 😁
@TechnoTim 3 жыл бұрын
I manage mine with VLANS and firewall rules, then a client firewall for everything else.
@perfect.stealth 3 жыл бұрын
@@TechnoTim thanks for the reply 😊
@ebol08 3 жыл бұрын
Excellent job! Greetings from America/Argentina
@mason8714 3 жыл бұрын
Good video! Be nice if you could say the commands you are typing and a quickly explain the commands for the newbies 😊
@Stroid9 3 жыл бұрын
Thanks for the video. It was very helpful! I´m new to Linux servers and your videos are a very helpful resource! One question, how does one automate these steps which script? Again Thank you!
@TechnoTim 3 жыл бұрын
Thank you! Well, I just released this which is an automation followup! kzbin.info/www/bejne/rWrIdIhql6yaoLM
@Stroid9 3 жыл бұрын
@@TechnoTim yes i saw is. It was really good. Exactly what I was looking for!
@camerontgore 3 жыл бұрын
Awesome inclusion of UFW and Fail2ban! Never heard of fail2ban but now I need to go set those up!!!
@TechnoTim 3 жыл бұрын
thank you!
@James-xg4jr 3 жыл бұрын
logging and monitoring video.......YES PLEASE
@TechnoTim 3 жыл бұрын
thank you!
@techsudo5170 2 жыл бұрын
Great stuff thank you 👏 I like NMAP!
@kamertonaudiophileplayer847 3 жыл бұрын
I pick CentOS. Generally upgrade and update are not required, unless you run a desktop version. Why? Most security risks are coming from a user actions. No local users? No risks. A key based option is preferred if you server is accessible outside.
@steffbeckers 3 жыл бұрын
At 05:41 Tim says to edit the /etc/ssh/sshd_config with the "d" for daemon, but nano opens /etc/ssh/ssh_config and starts editing this one. Which one would be correct?
@leocrotet 3 жыл бұрын
A little tip: You should automate all that things using ansible or even a custom script It's so much time consuming to do it manually
@Mr.Leeroy 3 жыл бұрын
for homelab it makes more sense to have a VM template.
@TechnoTim 3 жыл бұрын
thank you!
@leocrotet 3 жыл бұрын
@@Mr.Leeroy i personally prefer using ansible because it's working with multiple OS
@StephenConnolly67 3 жыл бұрын
Thanks Tim, I'd like to see something on TerraForm and Proxmox.
@TechnoTim 3 жыл бұрын
Noted!
@weuzeify 2 жыл бұрын
great video that you man
@TechnoTim 2 жыл бұрын
Appreciate it!
@alexeichekovic5923 3 жыл бұрын
Really great vidéo ! :) Prometheus !
@TechnoTim 3 жыл бұрын
Thank you very much!
@todddelozier8172 3 жыл бұрын
Haha, sometimes documentation doesn't tell you if they are displaying a placeholder for a command or if you actually type something in for a given command. I.e. Do I enter 1, '1', or " '1' "?
@TechnoTim 3 жыл бұрын
“1” 😀
@gaby1491 3 жыл бұрын
its probably best to configure the firewall on proxmox since you only allow users to log in using ssh keys. this is because if the user missconfigures the firewall by accident they will lose access to the server because they wont be able to log in via the console since the console is asking for a password and not a ssh-key.
@TechnoTim 3 жыл бұрын
thank you!
@gaby1491 3 жыл бұрын
@@TechnoTim you are welcome!
@kjyhh 3 жыл бұрын
Great to display a number on the topper right!
@TechnoTim 3 жыл бұрын
Thank you!
@KilroyandChristian 3 жыл бұрын
Thanks Tim