Darkassassin07

I host an openVPN server, from an IPv4 network/public IP. I also have a domain that points to that public IPv4 address and nothing else. (there's some subdomains behind cloudflare, but the base domain just has an A record pointed at my public ipv4, no AAAA records.)

Lately, I've noticed my connection dramatically slows down while on mobile data and the server IP address displayed in the VPN client is NOT the address my domain points to. It is instead, an IPv6 address that I do not recognize.... I do still have a connection, which gives me access to my private services, so I am successfully reaching my server.

What could be causing this? Would this be something to do with IPv6 (my phone) -> IPv4 (my server)?

I can manually specify my IPv4 address in the openvpn client and get a connection, so why would it retrieve and use an IPv6 address? Where is that address even comming from, it's not in my DNS...?

/edit:

openvpn-status.log shows the remote client as connected from an ipv4 address which matches what comes up at whatismyipaddress.com viewed from the client while disconnected from the VPN. (it displays both an IPv6 and an IPv4 for the phones mobile data connection, openvpn sees the ipv4 when connected)

So the server sees the phones IPv4 as the source of the connection, but the phone is using an IPv6 address I don't recognize to reach the server...

I have had around a dozen smart bulbs/switches/plugs from three companies for 5-10 years now. Globe Suite, Meross, and 'C by GE' (General Electric). All three are dependent on their respective cloud services, and are integrated with Google Home. (I know, I know.... It's time to dump this crap, it's why I'm here) Globe Suite has been great tbh, but 'C by GE' is absolute trash, and one of the two Meross devices have now died, prompting a long awaited change.

My big sticking point is knowing where to start with hardware. I don't know much about the different communication protocols/methods or what to choose (zigbee? Z-wave? Do I need some sort of Hub? Can/should I just use a wifi connection like the current setup? 🤷), and I don't really know where to look to purchase smart devices that aren't cloud dependent. (buying from Canada)

Funds are tight so this'll be an over time project. For now I'm looking to replace three switches. One single pole. One 3-way. Ane one dimmer. Neutral wires are available at all three locations.

Later I'll be looking to replace 3 smart plugs. Adding current/power monitoring would be neat, but definitely not a priority as I have an Iotawatt at the pannel. After that 4 dimmable white light smart bulbs. Finally there's an RGBW LED controller that'll need replacing. The plugs, bulbs, and leds are all Globe Suite; I'm not in a major hurry to replace them as they've given me next to no trouble compared to the other two companies garbage.

Where do I start? Where do you guys buy hardware, and what manufacturers?

What should I be looking for in hardware I can integrate with HA and essentially firewall off from the internet?

Finally, how about things like sensors? (weather, motion, moisture, sound)

The next week or so I'll fire up an HA container just to poke around a bit more. That part I'm pretty confident in, it's just figuring out some hardware to go with it. Thanks for any advice :)

Sonarr and Radarr keep grabbing releases from a couple specific groups ( 'SuccessfulCrab' and 'ELiTE') for items that clearly haven't even aired yet. These almost always contain only .scr or .lnk files, which have been blocklisted in my torrent client. This leaves Sonarr/Radarr awaiting manual intervention for 'complete' downloads that contain no files.

How do I get them to block anything and everything that contain the strings 'SuccessfulCrab' and 'ELiTE' ??? I want them to stop even trying to grab anything released by those two groups.

I'm so sick of dealing with these.

[EDIT]

OK, so I have been looking at this from the wrong angle.

It is not these groups that I'm upset with, but malware uploaders masquerading as release groups. These names can and will change, making this a game of wack-a-mole if I try to fight it this way.

Initially I'd followed instructions below to block these names/strings being grabbed by the arrs and that does work fantastically; but as above, wack-a-mole. Plus both SuccessfulCrab and ELiTE have plenty of good releases out there, it's not their fault someone's using their names.

So, I'm now running Cleanuparr.

This will maintain a large list of unwanted filetypes in qbittorrent. Then when qbit marks a torrent as complete because there are no wanted files, cleanupparr removes it from both qbit and the arr that requested it, while also triggering a new search for the item.

It can also cleanup items failing to import, stalled downloads, torrents stuck downloading metedata, or things that are just absurdly slow; with varying time scales/stringency.

I'll run this for a bit and see how it goes.

I have a pile of part lists for tools I'm maintaining, in pdf format; and I'm looking for a good way to take a part number, search through the collection of pdfs, and output which files contain that number. Essentially letting me match random unknown part numbers to a tool in our fleet.

I'm pretty sure the majority of them are actual text you can select and copy+paste, so searching those shouldn't be too difficult; but I do know there's at least a couple in there that are just a string of jpgs packed in a pdf file. They will probably need OCR, but tbh I can probably live with skipping over those altogether.

I've been thinking of spinning up an instance of paperless-ngx and stuffing them all in there so I can let it index the contents including using OCR, then use it's search feature; but that also seems a tad overkill.

I'm wondering if you fine folks have any better ideas. What do you think?

What do you prefer to use for a password manager?

How well does it work on mobile? (specifically, using autofill on android 14)

I'm currently using Vaultwarden; but the android app, which is where I'm using it 95% of the time, has always been a bit flakey getting autofill to popup. Now it's decided to stop working entirely; so I'm going to look around at some alternatives for now.

/edit:

Well, idk what happened.

I spent about 30min trying different things: switched androids autofill settings to another app, changed them back, cleared app data, force stopped everything relevant, re-installed bitwarden, restarted the device, messed with accessibility; nothing seemed to work. Bitwarden adamantly refused to popup for autofill in anything I'd tried. (4-5 different sites in chrome, firefox, and duckduckgo. The openvpn app, Jerboa, my bank. Nothing worked. Absolutely 0 sign of autofill anywhere.)

I made this post and went for a walk.

Now suddenly autofill is working again.

I hate technology sometimes.

/edit again:

The best option I've seen so far: There is an 'autofill' QuickSettings button you can add to the notification tray that opens the vault and asks which item to fill with. (just like the 'open vault' inline autofill option). If inline isn't popping up, use that.

It's 2028; Trump has lost his bid for re-re-election. America has somehow held together as a single nation and succeeded in electing a new leader.

You've been tasked with designing and creating a sculpture/statue/art piece to commemorate the ordeal America has just survived.

What do you do/create?

Text/drawn art prefered, but you can post AI art if you really want. LMK if I'm posting this in the wrong place; happy to move it if I've picked wrong.

The banner image is completely broken:

And the server hosting the communities profile image has an expired ssl cert;

Are any of you aware of projects similar to DizqueTV; a HDHomeRun tuner simulator that creates simulated live tv channels? (Dizque depends on Plex integration and cannot be used without it)

I'm looking for a solution to create simulated 'tv' channels by defining local content to be played on a schedule. Ideally just selecting a few shows to be played, mixed together. These channels would then be added to Emby/Plex/Jellyfin for users to tune into just like regular livetv.

I've been keeping an eye on Dizque for over a year now awaiting plex independence, but I don't think that'll be anytime soon. Wondering if there's alternatives.

/edit; should probably link the project I'm talking about...

https://github.com/vexorian/dizquetv

In the last couple of weeks, I've started getting this error ~1/5 times when I try to open one of my own locally hosted services.

I've never used ECH, and have always explicitly restricted nginx to TLS1.2 which doesn't support it. Why am I suddenly getting this, why is it randomly erroring, then working just fine again 2min later, and how can I prevent it altogether? Is anyone else experiencing this?

I'm primarily noticing it with Ombi. I'm also mainly using Chrome Android for this. But, checking just now; DuckDuckGo loads the page just fine everytime, and Firefox is flat out refusing to load it at all.

Firefox refuses to show the cert it claims is invalid, and 'accept and continue' just re-loads this error page. Chrome will show the cert; and it's the correct, valid cert from LE.

There's 20+ services going through the same nginx proxy, all using the same wildcard cert and identical ssl configurations; but Ombi is the only one suddenly giving me this issue regularly.

The vast majority of my services are accessed via lan/vpn; I don't need or want ECH, though I'd like to keep a basic https setup at least.

Solution: replace local A/AAAA records with a CNAME record pointing to a local only domain with its own local A/AAAA records. See below comments for clarification.

After almost a year of repeated emails stating the transition from Google Domains will have no effect on customers, no action is required; I just got this email:

Update Dynamic DNS records Hi there, As previously communicated, Squarespace has purchased all domain name registrations and related customer accounts from Google Domains. Customers are in the process of being moved to Squarespace Domains, but before we migrate your domain [redacted] we wanted to inform you that a feature you use, Dynamic DNS (DDNS), will not be supported by Squarespace.

So apparently SquareSpace will be entirely useless to me and I've got "as soon as 30 days" to move.

Got any suggestions for good registrars to migrate to?

(it's a .pw domain if that matters)

/edit. I'm a moron.

I already use cloudflare as my name server, Google/SquareSpace only handles the registration.

I'll be fine. Thanks for the help everyone!