Scaling up your Mastodon Sidekiq workers for better performance

Mastodon has recently gained popularity amongst tech-savvy users after Elon Musk has bought Twitter. With November’s wave of new Mastodon users, many servers experienced mayor problems with their performance - so did metalhead.club, the Mastodon instance that I’m hosting myself. Here’s how I tackled performance issues on metalhead.club.

▸ Read more

Network settings for second Wireguard-based default gateway

Situation: One of my servers is located at my home. It’s connected to the internet via two different interfaces at the same time:

  • Physical Interface: Connected to Deutsche Telekom ISP via DSL / landline.
  • Virtual Wireguard VPN interface: Connected to one of my data center servers, has a public IPv6 address.

The “data center server” acts as a gateway for my home server and routes a static IPv6 address to it. This setup lets me reach my home server via a static and public IP address, although my DSL provider does not assign a static IPv6 subnet to my landline. (But that is subject to another story … ;-) ).

After finishing the setup, I ran into the problem of asymmetric routing: Packets addresses to my static IPv6 address (and thus routed via the Wireguard VPN) did arrive at my home server, but the response packets were not send back the same way: They were routed via my Deutsche Telekom landline and therefore originated from another source IP address, which the original requester did not expect.

▸ Read more

Dell XPS 13 boot loop: Replacing the CMOS battery

I use my Dell XPS 13 9360 on a daily basis since early 2017 and never regretted the investment. But over the years, the battery has degraded and in the end - two weeks ago - my laptop started to behave unexpectedly: When I shut it off, the power indicator went off, but after about 4-5 more seconds it turned back on and my laptop started as if the power button was pressed.

▸ Read more

No SSH and HTTP connections to OPNsense WAN interface via IPv6

A few days ago I noticed that I could not use my OPNsense firewall as a SSH jump host to my other servers. I’m not sure how long this issue has existed, or if it has always existed, but since I’ve had IPv6 connectivity after a long time of IPv4-only internet, I could definitely feel the consequences.

While ssh root@opnsense worked perfectly, ssh -6 root@opnsense failed with a timeout. Verbose output of the ssh command showed that the client was trying to access the correct IPv6 address of my firewall, but obviously it did not receive any response.

▸ Read more

Repair your Fedora's (EFI) GRUB Bootloader

It happened again - this time on my Fedora machine! I ended up with a laptop that won’t boot after some package changes. Last time that happened was ~ 4 years ago when Arch Linux could not decrypt my main partitions due to some changes on a crypto library. This time the accident was caused by a simple dnf command:

dnf autoremove

I intended to remove dangling packages from my system - expecting my package manager to know which packages are needed and which not. Unfortunately some really important packages (amongst some legacy packages) were removed. My laptop was not even able to start any boot loader - it booted straight to the device diagnosis application that the hardware manufacturer ships.

▸ Read more