Part 6 - Robustify
- In Part One, We talked about hardware
- In Part Two, We Ubuntified your MicroSD card.
- In Part Three, We got everything set up to my personal liking, but ymmv.
- In Part Four, We built CoreDNS!
- In Part Five, We deployed and configured CoreDNS
- And in Part Seven We add the bits for the eInk display
- Robustification
- Install stuff
- NFSmount /backup
- lldpd
- sysctls
- logrotate config
- snmpd
- syslog-ng
- Disable IPv6
- observium
- collectd
- prometheus
- ssh keys
- git repo
- cpuspeed governor
So here, we’re have more of a smorgasbord of various improvements. Not all of them will be useful to anyone… myself included…
As some of these… improvements… grow, it will make sense to split them out into their own sub-pages.
We need to install some stuff…. Namely
- nfsclient packages
- lldpd
- shell tools
- monitoring and telemetry tools
- python3
- mailutils
apt-get install bwm-ng cpufrequtils cpuinfo cpuset libconfig9 \
libfreetype-dev libio-pty-perl libipc-run-perl libpng-dev \
libpng-tools libsnmp-base libsnmp40 libtime-duration-perl \
libtimedate-perl lldpad lldpd mailutils moreutils nfs-common \
prometheus-node-exporter prometheus-node-exporter-collectors \
python-is-python3 python3-pip smartmontools snmp \
snmp-mibs-downloader sockperf spi-tools tuna tcputils
Apt will ask you to set up postfix.. The nuances and challenges of setting up and maintaining a mail exchanger are myriad and outside the scope of this document.
I found a few sources of “documentation” that were somewhat helpful… So I’ll
include 1
them 2
here 3…
However,
I spent a fair bit of time dorking around with the information on the calomel.org4 site, specifically their network performance page5. There’s a lot of nifty stuff there.
Journald is the new-ish systemd logging mechanism.. It’s got some neat configuration knobs.
The most useful is to push syslogs elsewhere, and set storage to volatile. this offloads a large about of unnecessary writes.
You might knock it….
Hey! SNMPD has been around forever. it’s old and busted. Where’s the new hotness monitoring shit?
And you’d be right. SNMPD HAS been around forever. v1 in 886. and v2 in 917.
Here’s the thing tho…
It still works
You probably don’t care about internal CA Certificates
place this in
/etc/sysctl.d/9933_WPL_DISABLE_ipv6.conf