SFF Optiplec are great. I went with a decently spec’d Intel NUC running Proxmox that handles all my home services nicely without using too much power.

Fully custom? Sick! Where do I get one? 😅

Oh this looks interesting, thank you. So you basically just backup the relevant parts of the file system and then use this to restore in case of an incident/ emergency? A little more hands on than just restoring from a Proxmox backup, but probably also more agnostic/ interoperable.

I recently started playing with scenes too. Maybe I should go that route with more of my lights

Molto bello!

Yes, definitely. That’s one of the reasons I’ve implemented this way. If a light (for example) had the physical switch turned off and back on, a lot of smart bulbs will go to the on state, even if HA had previously set (and expects it to be) off. The next execution may turn it off in an off state, on in an on state, on from an off state or off from an on state, but either way that truth table will resolve after an iteration

Oh that’s good to know. I have a handful of Kasa bulbs and I don’t give them WAN access. They seem to be mostly fine without WAN, but I do get communication issues with them from time to time (which is why I’m exploring zigbee as an alternative). Thank you for the reply!

Great points. I have white a few smart switches through the house to control things both physically and via Home Assistant. Most of the other lights are wifi based and work mostly as expected with occasional drops (which can get annoying). Was wanting to experiment with ZigBee to see if it was more reliable, but it sounds like that might not be the case

Ambient Weather looks great. Just with it had air quality as well

I’ll check this out, thanks!

Thanks for the reply. Something like this guy? That looks perfect, thanks!

Rsync or SCP?

That would be my exit sign

Good idea. I should back these up to Tresorit from time to time as well. Thanks!

Maybe this isn’t a robust strategy, but I run HA in Proxmox and have nightly snapshots of that VM. Anytime I need to restore I just revert to the appropriate snapshot

I left to Tuta (E2EE and German based) and switched from Simple Login to Addy. Took less than an hour and it’s been smooth sailing.

Ah, I guess I might need to add my RootCA to my phone, laptop, pc huh? That would get rid of the untrusted warnings. Yes, please feel free to share if you have documentation!

Update: I setup my own local CA and got it working. Thanks for the tip!

Gotcha, that matches my assumptions. Yes everything is internal. It’s accessible remotely via Wireguard, but I mostly wanted to get some practice with NGINX/ TLS certs (also way easier to refer to things around the house with <service>.homelab isntead of IP:port, haha.

So if I did want this to be fully encrypted, I would essentially need to configure each service (jellyfin, home assistant, etc) to have SSL on them with this self-signed cert/ key that I used on NGINX (or perhaps new cert/ key) and then I would be all set?

I haven’t. I created this custom cert and uploaded in in NGINX (NGINX itself isn’t using SSL) and applied it to each proxy client, then when I visit one of them it appears to be HTTPS, but I feel that it probably isn’t actually giving me the protections I imagine.

They’re both different VMs on different VLANs running on the same Proxmox host