I just reviewed the post again. It’s a stellar example of modern writing trends.

Read this:
Ultimate Blow Minds Change My Life Your Anything Basic Insane Advanced

Don’t you feel kinda gross now?

This was painful to read. Yuck. It was written like clickbait. Like AI writes. Yuck.
And of course it was crossposted. If you’ve got something you need everyone to know, you gotta crosspost it everywhere.

I haven’t gotten enough into JC2 to answer that question, but you just gave me another reason to play the game.

Um … characters in JC3 … well Mario gets developed. You get to see him dancing to a boom box. And he sends you to steal a scooter from some girl he doesn’t like. … There’s an announcer on the radio that crows about your victories. … There are some silly characters added with the DLCs. … And Sheldon. … But mostly I didn’t notice the characters.

JC3 was absolutely great. I finished it 100%.
JC2 is cool. I’ve not finished it.
JC4 is not fun. Boring. I’ve got about 3 hours into it.

Ya. JC5 is a no go.

Cool.

Here. SSH key issues. There was a huge forum war.
https://forum.proxmox.com/threads/ssh-keys-in-a-proxmox-cluster-resolving-replication-host-key-verification-failed-errors.138102/
But its still a thing. That still needs to be fixed by a human. Today that’s me.

Regarding CEPH and corosync on the same network … well I’m just getting started with that now. I do have them on different vlans, but its the same 10gb set of nics. I’m hoping if it gets really lousy, my netadmin can prioritize the corosync vlan. I’ll burn that bridge when I come to it.

EDIT … The linked forum post above leads to the SSH key answer, but its convoluted.
Here’s what I put in my own wiki.

Get the right key from each server.
cat ~/.ssh/id_rsa.pub

Make sure they match in here. Fix em if they don’t.
/etc/pve/priv/authorized_keys

There’s a couple symlinks to fix too, but this should get it.

SSH key management in PVE is handled in a set of secondary files, while the original debian files are replaced with symlinks. Well, that’s still debian. And in some circumstances the symlinks get b0rked or replaced with the original SSH files, the keys get out of sync, and one machine in the cluster can’t talk to another. The really irritating thing about this is that the tools meant to fix it (pvecm updatecerts) don’t work. I’ve got an elaborate set of procedures to gather the certs from the hosts and fix the files when it breaks, but it sux bad enough that I’ve got two clusters I’m putting off fixing.

Corosync is the cluster. It’s a shared file system that immediately replicates any changes to all members. That’s essentially anything under /etc/pve/. Corosync is very sensitive. I believe they ask for 10ms lag or less between hosts, so it can’t work over a WAN connection. Shit like VM restores or vmotion between hosts can flood it out. Looks fukin awful when it goes down. Your whole cluster goes kaput.

All corosync does is push around this set of config files, so a dedicated NIC is overkill, but in busy environments, you might wind up resorting to that. You can put cororsync on its own network, but you obviously need a network for that. And you can establish throttles on various types of host file transfer activities, but that’s a balancing act that I’ve only gotten right in our colos where we only have 1gb networks. I have my systems provisioned on a dedicated corosync vlan and also use a secondary IP on a different physical interface, but corosync is too dumb to fall back to the secondary if the primary is still “up”, regardless of whether its actually communicating, so I get calls on my day off about “the cluster is down!!!1” when people restore backups.

Oh. I have RCT3 Platinum. That’s been discontinued.
https://store.steampowered.com/app/2700/RollerCoaster_Tycoon_3_Platinum/

Honestly, I’ve barely played it other than this map I just downloaded. Its been sitting in my collection untouched for years.

I use PVE professionally. I could spent some time bitching about how it handles ssh keys and the fragile corosync cluster management. I could complain about the sloppy release cycle and the way they move fast and break shit. Or all the janky shit they’ve slapped together in PBS. I could go on.

But I actually pay for a license for my homelab. And ya, it is THE thing at work now.

I’ve often heard it said that Proxmox isn’t a great option. But its the best one.
If you do try it, don’t bother asking questions here.
Go to the source. https://forum.proxmox.com/

ok. i gave that about 10 minutes. weird as hell. mr bones shooting people was unexpected.

Yes, that’s the thing. Even that graphic is starting to decay.
I remember when it was legible. I wonder how many iterations of screen grabs it took to get that bad.

I’ve just discovered that you can’t buy RCT3 on Steam anymore. Not that they were making much. I bought it for pennies a few years ago.

Hmm. I used to volunteer with Free Geek in Portland OR. It was essentially that, an e-disposal site and we made refurbs for community organizations. But they did have a store for sale to the public.

I have so much computer junk. I got rid of most of it, but then I got a bunch more when we closed the company office. Got at least 10 monitors, 5 PCs, a mini, couple laptops … and a storage shelf to put it on.

They fit.

Buy? That’s garbage. Look in garbage places. Used shops of any sort.
I like the college junk store suggestion. I used to do that.

You better watch it. You will shortly have a closet full of junk computer parts.

The video looked very like Serious Engine, so I downloaded it to see. Nope. Its Unity.

Comically long intro of a narrator and text. Ok, I’m a homeless traitor in Nazi Germany, trying to get my dog back.

Got out of the truck. Oh good. A box jumping obstacle. Hit the space bar. No jump. So I keep trying. And it knocks this box back into the corner, where I can see a mug of something floating there. Health or powerup or some shit. But I can’t get to it because I just kicked this box in the way.

I finally checked the controls. There’s no jump, just kick. You don’t jump in this game. Like old DOOM.

I gave up. I’m in this far. I’ll try it again later.

Despite OP insisting otherwise, I’m gonna assume you are correct. I use a lot of flavors of linux for a lot of things, but I don’t have it on a laptop (other than as an alt boot in case of a crash), so it seems logical to me that’s why this joke went over my head.

Is this mildly infuriating? No. This is a joke comm, not a group cry.

Ok. Yes, my use case is a private document and media store. I’m ungoogling.
VPN seems like a good place to start. But I’d like a simple answer, and I expect there are none to be had. As you’ve illustrated here, I’ll find a reason to punch holes in the firewall. And then I’m going to need to secure a web server. Life happens. I’ll keep it simple for now while I sort things. Thanks for your perspective.

Ya. I understand VPN. I do enterprise IT stuff. The things I build assume a secure environment. VPN is step one.
Nailing down a web server on the internet tho … there’s so many ways to attack. There’s so many things to secure. And its a bit complex to manage all that.
The nextcloud site covers hardening the server, but doesn’t even mention vpn.
I’ve been watching threads like this. I’m pretty convinced vpn is the answer.

Well, I might as well put a dog in the fight. I’m considering my final, actually secure deployment of nextcloud.

This discussion has convinced me that a vpn is the only answer.
And almost everyone says wireguard.

K. Thats what I will build.