Messages

Hi all,

sorry for my noob question. But I can't seem see the forest for all the trees.

First, I have some 2x 8GB DDR4 SO-DIMMs here and also a Samsung SSD90 NVMe M.2 SSD here, I want to utilise on the build. I wanted to use them in a n5105 4x i226 device, I finally didn't order. I spare you the whole story...

Second, what I want to run on it is following:

• Proxmox as host
• A small Debian VM with Samba 4 AD DC on it.
• OPNsense as firewall with IPS or IDS. Have not used either up to now, hence no idea what's enough for it.
• Home Assistant installation, with nothing crazy on it.

It's all for a home installation, with a home office, a bunch of IoT devices and maybe a bit of server traffic, but mostly for my own use. Nothing crazy.
Currently Home Assistant, the AD DC VM and two other VMs are hosted on a 10 year old Xenon, which is way fine. But I want to have them on a dedicated device.

What I have found out so far, the n5105 for sure is not up to the task.
But how high should I aim for?
What are your recommendations, where I should start to look?
Some energy efficiency won't hurt as well...

Being able to order from AliExpress would be fine as well.

Thanks for your help.

[Source]

Hi, I just try to wrap my head around this setup I recreate from this NordVPN manual

This is the part where the rule is created: Next, click +Add, change Source to LAN net and Destination to LAN Address, don't change anything else, Save and Apply Changes.

This means I allow traffic from the LAN subnet to the interface IP of the LAN subnet?
Why would this not be allow anyway?
Here I found the explanation what LANx address stands for. The documentation hadn't been very helpful here.

Thanks for your expertise!

Ja, ich glaub daran scheitert es leider irgendwo. Ein wenig Ahnung hab ich schon von Netzwerk, aber ist echt nicht mein Spezialgebiet.

Ich versuch es gerade noch mal anders rum. Zuerst NordVPN konfigurieren und dann meine Anpassungen...
Mal schauen, was da draus wird :)

After realizing what a subpar idea I wanted to realize, I changed the posting.

Finally I managed to get it up and running. I followed strictly this manual.

After successful configuration of  the VPN I only opened access from my main subnet (WAN) to the LAN, not the other way round.
Out of LAN is only possible over the VPN, what is the basic idea of the whole thing anyway.

Hence, I change the posting. It hasn't to do much with the original plan anyway.
Thanks for reading.

Originalposting wegen schlechten Ideen die ich da umsetzen wollte geändert.
Danke an alle, die es gelesen haben.

Ich hab es schlussendlich zum Laufen gebracht, indem ich die Konfiguration von OpenVPN über NordVPN nach dieser Anleitung gemacht habe.

Anschließend hab ich nur mehr den Zugriff von meinem Hauptsubnetz (WAN) auf das LAN erlaubt.
Vom LAN Subnetz raus gehts nur mehr über das VPN.
Ist ja auch Sinn und Zweck der Sache.

Ich habe das Posting geändert, da das Ergebnis mit der ursprünglichen Fragestellung kaum mehr etwas zu tun hatte.