diff --git a/02-selfhosting/monitoring/netdata-n8n-enriched-alerts.md b/02-selfhosting/monitoring/netdata-n8n-enriched-alerts.md index f25536d..d62b7f1 100644 --- a/02-selfhosting/monitoring/netdata-n8n-enriched-alerts.md +++ b/02-selfhosting/monitoring/netdata-n8n-enriched-alerts.md @@ -37,25 +37,19 @@ Netdata alarm fires The Code node matches on `alarm`, `chart`, or `family` field (case-insensitive substring): -| Key | Title | Wiki Article | Notes | -|-----|-------|-------------|-------| -| `disk_space` | Disk Space Alert | snapraid-mergerfs-setup | | -| `ram` | Memory Alert | managing-linux-services-systemd-ansible | | -| `cpu` | CPU Alert | managing-linux-services-systemd-ansible | | -| `load` | Load Average Alert | managing-linux-services-systemd-ansible | | -| `net` | Network Alert | tailscale-homelab-remote-access | | -| `docker` | Docker Container Alert | debugging-broken-docker-containers | | -| `web_log` | Web Log Alert | tuning-netdata-web-log-alerts | Hostname-aware suggestion (see below) | -| `health` | Docker Health Alarm | netdata-docker-health-alarm-tuning | | -| `mdstat` | RAID Array Alert | mdadm-usb-hub-disconnect-recovery | | -| `systemd` | Systemd Service Alert | docker-caddy-selinux-post-reboot-recovery | | -| _(no match)_ | Server Alert | netdata-new-server-setup | | - -> [!info] web_log hostname-aware suggestion (updated 2026-03-24) -> The `web_log` suggestion branches on `hostname` in the Code node: -> - **`majorlab`** → Check `docker logs caddy` (Caddy reverse proxy) -> - **`teelia`, `majorlinux`, `dca`** → Check Apache logs + Fail2ban jail status -> - **other** → Generic web server log guidance +| Key | Title | Wiki Article | +|-----|-------|-------------| +| `disk_space` | Disk Space Alert | snapraid-mergerfs-setup | +| `ram` | Memory Alert | managing-linux-services-systemd-ansible | +| `cpu` | CPU Alert | managing-linux-services-systemd-ansible | +| `load` | Load Average Alert | managing-linux-services-systemd-ansible | +| `net` | Network Alert | tailscale-homelab-remote-access | +| `docker` | Docker Container Alert | debugging-broken-docker-containers | +| `web_log` | Web Log Alert | tuning-netdata-web-log-alerts | +| `health` | Docker Health Alarm | netdata-docker-health-alarm-tuning | +| `mdstat` | RAID Array Alert | mdadm-usb-hub-disconnect-recovery | +| `systemd` | Systemd Service Alert | docker-caddy-selinux-post-reboot-recovery | +| _(no match)_ | Server Alert | netdata-new-server-setup | --- diff --git a/05-troubleshooting/networking/tailscale-ssh-reauth-prompt.md b/05-troubleshooting/networking/tailscale-ssh-reauth-prompt.md index bc8638d..36937a0 100644 --- a/05-troubleshooting/networking/tailscale-ssh-reauth-prompt.md +++ b/05-troubleshooting/networking/tailscale-ssh-reauth-prompt.md @@ -57,7 +57,7 @@ No auth prompt + `ok` output = resolved. Note that this test is only meaningful ## Notes -- ~~Port 2222 on **MajorRig** previously existed as a hard bypass for Tailscale SSH browser auth. This workaround was retired on 2026-03-25 after the Tailscale SSH authentication issue was resolved. The entire fleet now uses port 22 uniformly.~~ +- Port 2222 on **MajorRig** exists as a hard bypass for Tailscale SSH browser auth — regular SSH over Tailscale network, bypassing Tailscale SSH entirely. This is an alternative approach if `check` mode is required for compliance but browser auth is too disruptive. - The `autogroup:self` destination means the rule applies when connecting from your own devices to your own devices — appropriate for a personal homelab fleet. ## Related diff --git a/SUMMARY.md b/SUMMARY.md index 0b709a5..42db083 100644 --- a/SUMMARY.md +++ b/SUMMARY.md @@ -22,6 +22,8 @@ * [Tuning Netdata Web Log Alerts](02-selfhosting/monitoring/tuning-netdata-web-log-alerts.md) * [Tuning Netdata Docker Health Alarms](02-selfhosting/monitoring/netdata-docker-health-alarm-tuning.md) * [Deploying Netdata to a New Server](02-selfhosting/monitoring/netdata-new-server-setup.md) + * [Netdata SELinux AVC Denial Monitoring](02-selfhosting/monitoring/netdata-selinux-avc-chart.md) + * [Netdata n8n Enriched Alert Emails](02-selfhosting/monitoring/netdata-n8n-enriched-alerts.md) * [Linux Server Hardening Checklist](02-selfhosting/security/linux-server-hardening-checklist.md) * [Standardizing unattended-upgrades with Ansible](02-selfhosting/security/ansible-unattended-upgrades-fleet.md) * [Open Source & Alternatives](03-opensource/index.md) @@ -56,4 +58,3 @@ * [Ollama Drops Off Tailscale When Mac Sleeps](05-troubleshooting/ollama-macos-sleep-tailscale-disconnect.md) * [ClamAV CPU Spike: Safe Scheduling with nice/ionice](05-troubleshooting/security/clamscan-cpu-spike-nice-ionice.md) * [Ansible: Vault Password File Not Found](05-troubleshooting/ansible-vault-password-file-missing.md) - diff --git a/index.md b/index.md index 6378d93..6e06b98 100644 --- a/index.md +++ b/index.md @@ -2,9 +2,8 @@ > A growing reference of Linux, self-hosting, open source, streaming, and troubleshooting guides. Written by MajorLinux. Used by MajorTwin. > -> **Last updated:** 2026-03-23 -> **Article count:** 50 - +> **Last updated:** 2026-03-27 +> **Article count:** 53 ## Domains @@ -134,7 +133,10 @@ | Date | Article | Domain | |---|---|---| +<<<<<<< HEAD | 2026-03-23 | [Ansible: Vault Password File Not Found](05-troubleshooting/ansible-vault-password-file-missing.md) | Troubleshooting | +======= +>>>>>>> 335c4b57f20799b3a968460f4f6aa17a8b706fdc | 2026-03-18 | [Deploying Netdata to a New Server](02-selfhosting/monitoring/netdata-new-server-setup.md) | Self-Hosting | | 2026-03-18 | [Tuning Netdata Docker Health Alarms](02-selfhosting/monitoring/netdata-docker-health-alarm-tuning.md) | Self-Hosting | | 2026-03-17 | [Ollama Drops Off Tailscale When Mac Sleeps](05-troubleshooting/ollama-macos-sleep-tailscale-disconnect.md) | Troubleshooting |