Currently I simply dont.

On Xenn you should be capable with the correct drivers to put a couple of virtual GPU Profiles on your VMs to use.

On Hyper-V there is a command out there, but I don’t know if its a dedicated access or if you are capable of sharing it across multiple instances.

On Proxmox though? Not sure but i think it was possible to forward it to a VM but thats all. Just dedicated acces afaik.

Just for the sake of testing maybe try it with a oneliner:

sudo mount -t cifs -o user=testuser,domain=testdomain //192.168.1.100/share /mnt

Either way using the logs is the best way to check for discepancies. Also check in on the logs on the fileserver. Though idk what to advice to trace the logon stuff and trace whats making it fail.

Just for the case that you dont know where to look in windows: eventviewer is the place to go. Which predifined filter though - simply google that.

Wishing ya the best of luck mate!

Well not so much the adress of the AD server.

It should be the domain name of your domain that you have created.

As in Joh.Doe@CompanyWork.internal

The part behind the @ is the domain the user is registered to and even though the AD server might be named prod-ad-001 the text should be the domain you are trying to auth towards and the share you are accessing to should obvioisly have a connection the the AD to forward the credentials and ask if Auth is positive.

In FSTAB:

//192.168.188.52/media /home/shareuser/shared/ cifs vers=3.0,credentials=/home/shareuser/.smbcred,uid=1000,gid=1000,iocharset=utf8 0 0

In .smbcred are the credentials. The content of the file:

username=shareuser
password=shicjwvfiak                        domain=192.168.188.52

Should work.

Instead of the IP put the FQDN of your Share holding Server and make sure DNS is properly working.

Yes. Documentation. Documentation aaaalll the way.

You are right. In two months you wont remember the shit you had to enable/disable to make things work.

Doing things that arent a reocurring doing should be documented. Not crazy. A basic how to set up is enough.

Common/reocurring errors/situations? Document 'em

Got a semi permanent fix for problem, so that it will most likely never come up again, but possibly in 5 years? Document it fella.

You’ll kiss your past self on the head and say thanks when you have an critical ticket in 5 years and remember nothing about the doing itself but that you wrote some documentation.

It will save your ass and possibly you might come out as the hero of the day for having a solution right away for a super nieche problem.

I’ve making a private hosted documentation for stuff, tricks and problems i learn at work.

I’ve had plenty of situatuons where i remembered that i already encountered such a situation yeeeaars ago at my previois employer and that i’ve written somtehting down in my personal documentation. Bam and just by a few mins I’ve got either a really good or at least a shittysysadmin-style solution that works.

We have such robust worker rights, that this is counting as spying on the employee. They were checking if they were actually sick or not.

This is illegal in germany. Anyone suing will have a good time in labor court :3

Ohhh shit. Those managers are in for a good time.

Workes court will pull them in little pieces. This shit is so fucking illegal in germany.

I would guess, a monitoring system like CheckMK or Icinga?

You could check what has been alarming even if the check is green again, by the time you look into it.

Nah, probably not. All routers you can buy today will route and by default have their firewall active. Make sure, auto-updates are activated on your router.

Check your server OS’ses and the Software running on them for updates on a regular basis - since they are partially made available to the public and are potential attack vectors.

Though if you only port-forwarded a couple ports that dont include the RDP port or something wildly stupid, you should be safe.

Follow some best practises as:

• try to dont run your Gameserver Software as administrator but instead with a account with as low privileges as possible.
• update your OS’ses, Softwares and Router/FW Appliance.

Don’t let yourself fool by the guys telling ya to setup a full fledged firewall system when you obviously don’t even know basic networking. You would be overwhelmed by the configurationpossibilities.

If you want to dangle your foot in some cold water - try em out and put some machines behind them to learn what behaves how. But dont make em your only protection against the public internet when you don’t know basic networking stuff.

Happy Sailin’ matey!

Just checking in to say thanks for asking that question. Always had that same question as a fellow sysadmin :D

Now since i see all those ideas: hell yes. I will reach out to the maintainers of the next project that I find that could use some support and offer them my support :D

Could you install a basic secondary graphics card and fully forward it to the VM? That should make you capable of using its HDMI Ports - and this way you should also have no HDMI DRM Bullshit errors from apps like Netflix and Disney.

Ich find das mega. Ich werd mal schauen ob da schon was deployment fähig ist und setz mich im notfall auch mit diesem kubernetis stuff auseinander.

Find das projekt mega interessant, auch für family usw.

A few more titles that you will hate, but actually describe your role. You are in no sense just a senior developer.

You are an

• Architect
• Solution Architect
• Project Manager and Team Leader
• Service Manager

Which one fits best, you have to decide. But i would put this up on my resume if i had your responsibilities.

Nice. Danke fürs teilen :D

Endlich! Verfickte scheiße. Das man in der command line den user nicht wechseln kann. Holy shit solche basic scheiße. Ganz ehrlich wer stellt sich bitte nen Headless Windowssserver hin, wenn solch eine grützige CLI einen erwartet.

Nutze seit einiger Zeit ein DS220+ Synology NAS. Ist nicht mehr wegzudenken. Erfüllt sooo viel und vorallem auch so einfach. VPN Server aufsetzen? 3 oder 4 klicks. Fertig. Es ist sehr angenehm zu nutzen und bringt einiges mit. Security? Die bekommen regelmäßig security updates. Abgesehen von vermutlich eingebauten Backdoors für NSA oder so, find ich das ist ne seehr angenehme Lösung. Hab das teil auch portforwarded, ohne mir sorgen machen zu müssen. Notizen app hat es übrigends auch. Nutze ich überaus häufig. Formatierung ist manchmal bissl frickelig, aber das stört wenig.

2FA kommt auch von Haus aus. FailToBan etc alles mit dabei, ohne dass man sich alles mögliche ständig ansehen muss.

Ich lass automatisiert jeden tach Backups auf ne Hetzner Storage Box laufen. Die werden in Verschlüsselter form und via rsync hochgeladen. Jeden tag bekomm ich ne push benachrichtigung aufs handy, dass das backup erfolgreich war. Jedes mal erneut die bestätigung: nice. War richtig die kohle in die hand zu nehmen. Kann dateien und dienste ohne probleme aus snapshots wiederherstellen, wenn ich mal was verdusselt habe, oder jemand meiner family was aus seinen sachen ausversehen weggelöscht hat.

Rund-um-Paket halt. Kostspielig im vergleich zu selbst bauen, aber dafür halt peace of mind, wenn mal was gemacht werden muss, oder im kathastrophenfall, etwas kaputt geht.

Kalender und Kontaktsync mach ich via CalDav und CardDav (DavX5 im Fdroid store ist zu empfehlen, damit android smartphones auch supported werden)

Yes. Yes it does :D

Thanks for the info. Maybe something is bugged with mine. I’ll have a look into it. Currently its not being used of the first few months of use, that were… lets say bumpy at best…

Their plugins arent really reliable. Can tell you that. The Mullvad VPN Plugin does not like it at all if you ever should run out of VPN Time. If your VPN is not being paid the connection shits itself and doesnt reconnect properly when the VPN is being paid for again. Besides that, the Seamless-Tunnel Option (aka. dont allow network traffic if its not through the VPN) is working but hella buggy if you want to disable it for testing.

Got myself a Opal one. Not sure what I will be using it from now on tbh. Maybe the other Options are more reliable but I couldnt be bothered to check em out in the last months.

Danke! Dann werd ich in meinen nächsten gesprächen auch mal fragen auf das Team, meine Position und wie die hirarchie aussieht stellen.