Zenarmor performance @ Intel Atom C3758R

[Seimus]

With the 2.5g, Microtik doesn't really have any choices or I might have bought one. Knock the POE requirement away and the crs326-24s+2q+ and some 2.5g modules would do the trick. 2.5g modules are around $20 from Wiitek (I have a couple of these in service right now, not hot at all), hard to say if I'm getting real 2.5g speeds, but I'm getting more than 1.5g speeds through a Moca 2.5 pair of converters and about 100 feet of RG6, average 4ms ping times which is right in line with what the manufacturer says.

This is not a bad idea at all.

There are some Extreme Networks switches that fit your needs, but you are going to want to wait until you see a bounced of the truck sale. That's how I got my 5420m-48w-4ye (48 gigabit ports with 90 watts POE each port, and 4x25g, with 2x stacking that can be 2x10g, and dual 900 watt supplies) at $400 I couldn't resist. Was brand new in box, but I'm not going to register it.

I totally forgot there is as well Extreme. I had the pleasure with their switches 5-7years ago and I was not so pleased... That 5420m-48w-4ye how loud/noisy it is?

Also look at some of the FS switches, again wait for a bounced off the truck sale on ebay.

Not a bad idea as well will check FS too.

Regards,
S.

[dirtyfreebooter]

but this thread seems like it has a lot of misinformation in it

So far I haven't seen anything that isn't true in the sense that it's a total lie ?!

I use an old unifi cloud key gen2

The problem with those things is that once they are declared EOL you can't use them for anything else...

yea i apologize, i didn't realize cpus like N5105 lacked AVX and that mongo with arm64 was so aggressive to essentially eliminate support for for Pi 3 and 4. really annoying to homelabers for sure.

as far the cloud key, they were introduced in august 2018, so it goes for 10+ years, with PoE and 1w idle, i find that acceptable for $150.. time vs money. that being said, i dont think they have been sold/in-stock on the official store for a while now, only the gen2 plus model with the hdd slot. though there are plenty on ebay.

what i found worked well with the new UniFi OS server was to setup a Debian LXC on Proxmox 9.1, containers supported with keyctl=1 setting. i just setup LXC, updated system packages, ran the UniFi OS installer from https://ui.com/download/software/unifi-os-server and everything was setup without really any interaction. but if you running proxmox on N5105, i guess you are still out of luck with no AVX.

[nero355]

Podman is just an alternative to Docker and something I don't feel like maintaining either :)

That's the beauty of it: you don't manage anything.  It manages itself, including updates.  You don't touch a thing on the OS.  From the user perspective it's just an app installer.  You run it.  It installs UOS.  Done.

That wasn't the case in the past.  You needed to install and maintain Docker yourself, as well as each container (MongoDB, Network) and their connections.

It's the same crap like with Docker : https://github.com/containers/podman/blob/main/docs/tutorials/basic_networking.md

I don't need those additional Network Interfaces on my Host ;)

[OPNenthu]

Podman is just an alternative to Docker and something I don't feel like maintaining either :)

That's the beauty of it: you don't manage anything.  It manages itself, including updates.  You don't touch a thing on the OS.  From the user perspective it's just an app installer.  You run it.  It installs UOS.  Done.

That wasn't the case in the past.  You needed to install and maintain Docker yourself, as well as each container (MongoDB, Network) and their connections.

It's the same crap like with Docker : https://github.com/containers/podman/blob/main/docs/tutorials/basic_networking.md

I don't need those additional Network Interfaces on my Host ;)

There are none.  It doesn't change anything on your host network and what you'll see in 'ip a' is the same as what you had before.  It listens on the host IP rather than some internal 172.x address like what Docker does with virtual interfaces.

This is all I see on my UOS VM:

Code Select Expand

$ ip -4 a
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000
    inet 127.0.0.1/8 scope host lo
       valid_lft forever preferred_lft forever
2: ens18: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
    altname enp0s18
    altname enxbc2411e2f30a
    inet 192.168.1.116/24 brd 192.168.1.255 scope global dynamic noprefixroute ens18
       valid_lft 73385sec preferred_lft 58071se

Just add the host IP to DNS as 'unifi.' and you're done.  Maybe also open the needed host firewall ports.

The entire UOS stack is hidden from you in its own podman context.  You don't interact with it.  Just install it in a VM and see.

Maybe this explanation from ChatGPT explains it best:

UniFi OS isn't just "Podman + containers"—it's a full appliance OS. It uses its own management layer to:

• deploy containers
• restart them
• control networking
• enforce updates

So even though Podman is underneath, you're not meant to interact with it directly like a normal host.