FYI, I’m not going to remove this post or anything (and I agree as well), but it’s not likely to be seen by the right people here. /c/Sysadmin is just our community for discussing sysadmin things and I don’t know how much /u/Ruud or any Lemmy devs hang out here.
I’ve never used SolarWinds patch manager, but after all of those breaches I’m very leery on any of their stuff. Another option to look into is manage engine patch manager plus. It can be a bit of a pain but it worked decently enough. Also, very cheap. Just don’t expect a super robust and deliable program
I see a lot of parallels with the path that Reddit is going down that reminds me of the fall of Digg. I see the Reddit API backlash basically being the same as the backlash that Digg v4 got from community members.
Hey @ruud, fellow SysAdmin here! Thank you for hosting this Lemmy instance! It’s a great place, uptime has been excellent!
I’ve a question, if you’re willing to give your opinion. Hardware is not cheap and eventually it might become impossible to pay the bills to host this instance.
What kind of support model do you envision for the future of this instance? Donations, subscription, advertisements?
Thanks anyway, and good luck to you!
Edit: I see that donations are already optional. Nice! But i’m still curious, so is there other options you’ve considered for your Mastadon instance for example?
Hi, I think donations will be the way also in the future. Anything non voluntary wouldn’t work because people will just move to other servers that are free. And so far I’ve seen there’s more than enough willingness to donate.
We tested out Pulseway a while back but weren’t confident in it’s patching process. We ended up using Action1 because of the price and the simplicity of it. They have a good community on discord that’s always helpful and they’re consistently adding new features. The also host weekly webinars (usually about patching) to help to get up and running.
I guess RMM is a broad term though, cuz I’m not sure about the VPN to AD situation you’re talking about. Are you hosting Pulseway on your own server?
AFAIK Action1 is only cloud-based right now, just install the agent and go. You can also set up a service account on your DC and use their deployer to auto install the agent on domain devices.
I have the CPU and RAM of two PowerVault NX3200s that were destined for the skip jammed into one chassis. It powers one hell of a nice Plex server running on UnRaid.
1x 48-port POE Juniper EX220 used as a core switch with a fiber backbone to my upstairs switch; wish it was 10gig, but it was cheap and I needed ports.
1x Dell R720 with 2x Intel Xeon E5-2697 v2 @ 2.70GHz, 256GB RAM, and 80TB of raw storage in a RAID-5 array (64TB usable).
Runs ESXi with VMs for everything from vSphere to Plex to some websites I host myself.
1x Dell R710 with 2x Intel X5650 @ 2.67GHz, 40GB RAM, and 24 TB of raw storage.
Currently unconfigured since I recently migrated off of this server to the R720.
1x Dell R610 with 2x Intel 5550s, 96GB RAM, and no drives.
Got this on a whim, planned to use it for a project, never got to it, now it sits on the bottom of my rack and reminds me of my folly.
Upstairs I have another 48-port Juniper EX220, and I plan to fill most of the ports with 4+ Ethernet drops to every room in my house, plus extras for WAPs, cameras, and remote sensors.
I also use Ruckus R710s for wireless connectivity; I have two right now, and plan to eventually get one of the outdoor-rated Ruckus WAPs to mount on my chimney since WiFi coverage gets a little sparse when you get halfway across my yard.
I was remarking to a friend the other day that I’ve managed to build myself a pretty stellar setup for the early 2010s, at a fraction of the cost it would have taken back then. Though it definitely eats lots of power!
I don’t have any retired hardware from my current job, since I’m 100% cloud (and I don’t miss hardware one bit (well, except for the one time I found that I didn’t have any spare power cables for the homebrew PC)).
I have, however, converted my old QNAP NAS to TrueNAS, and it’s much better now.
On-prem infrastructure is way less fun than having a full cloud stack, how are you enjoying that, and are there any big snags you all have run into?
Currently in the process of doing the same at work, we mainly utilize file servers(already migrated to SharePoint), DC’s (in process of going full AAD, Endpoint Manager[intune], AutoPilot), and Print Servers (currently testing full cloud solution to replace). This would allow us to be “server less” and no on-prem infrastructure aside from switching/routing/firewalls, and we can segment our network completely since users won’t need to talk to anything on-prem anymore.
undefined> On-prem infrastructure is way less fun than having a full cloud stack, how are you enjoying that, and are there any big snags you all have run into?
There are people who do enjoy playing with hardware, and I’m not going to say they’re wrong, especially since I’m glad they’re around. But that’s not what I want to do for a living.
I think the biggest challenge I’ve seen is: with on-prem hardware, you can brick a server or a router, and have to go down to the machine room to reimage it from the console. With cloud infrastructure, it’s possible to not just brick, but destroy your entire machine room.
Having said that, I really like infrastructure-as-code. I’ve set up racks of hardware, and IaC is way more fun.
Usually in these kind of situations I fall back to sharing a OneDrive / Teams (SharePoint) folder out to the external vendor. Anyone can say that they can’t receive the encrypted email and there could be legitimately good reasons for that, but if they don’t know how to login to 365 to access a shared folder that’s on them.
If they absolutely refuse to allow you to share or email an individual vs. a distro group then I’d do it that way, but not using an “anyone with the link” share depending on the sensitivity of the information. If it’s something that isn’t as sensitive sure, but otherwise they’ll need to setup credentials with that distro group and use it to login to access the shared folder.
Exactly this. MECM even has this sort of feature built-in with Orchestration Groups. You can set group 1 to perform updates and reboot at a certain time, then group 2 will only begin its update/reboot cycle when group 1 has completed or crossed a certain threshold.
I keep seeing people talk about wefwef but I dont see it in the play store. Do you have to install it separately? I know I can get it from their website but it feels a bit sketch that I dont see it in the play store.
Sysadmin
Oldest