# man michele-branchini

MICHELE-BRANCHINI(1)     Useless User Commands     MICHELE-BRANCHINI(1)

NAME
       michele-branchini - mass deployer of mass destruction ๐Ÿ’ฃ

SYNOPSIS
       michele-branchini [--coffee=LITERS] [--sleep=false] [--yolo] task

DESCRIPTION
       Italian-based liability ๐Ÿ‡ฎ๐Ÿ‡น Sticks pieces of IT together and
       watches them burn ๐Ÿ”ฅ Somehow still employed โ€” presumably
       because nobody else wants to maintain what he built.

       Operates AS215288 ๐ŸŒ because breaking things at home wasn't
       enough โ€” needed to do it at internet scale.

       Runs a "datacenter" in his garage ๐Ÿš๏ธ Air quotes mandatory.
       Proxmox cluster, Ceph storage, UPS that beeps at 3am โฐ
       Cooling strategy: open the garage door ๐Ÿฅถ

       Owns more MikroTik gear than an average ISP, but has it
       configured worse than an AVM Fritz!Box running factory
       defaults ๐Ÿคก Runs RouterOS 7 exclusively โ€” if you're still
       on v6, we have nothing to talk about ๐Ÿšช

ROLES
       ~ Poor Network Engineer ๐Ÿ“‰
       ~ Crappy Infrastructure Architect ๐Ÿ—๏ธ
       ~ Overconfident Hacker ๐Ÿ’€
       ~ Unauthorized MikroTik Evangelist ๐Ÿ“ก
       ~ General-purpose Peasant ๐Ÿง‘โ€๐ŸŒพ

OPTIONS
       --coffee=LITERS โ˜•
              Mandatory. Minimum 3. Below this threshold, output
              is undefined behavior. Above 8, output becomes
              indistinguishable from a DDoS attack.

       --sleep=BOOL ๐Ÿ˜ด
              Defaults to false. Cannot be overridden. Has been
              deprecated since 2005. Maintainer shows no intent
              to fix.

       --yolo ๐ŸŽฒ
              Skip all validation, testing, and common sense.
              This is the default in production. Passing --no-yolo
              triggers a panic attack, not a kernel panic.

       --budget=0 ๐Ÿ’ธ
              Hardcoded. Not configurable. All infrastructure
              runs on spite and second-hand hardware.

RETURN VALUES
       0      Success (theoretical) โœจ
       1      Generic failure (Tuesday) ๐Ÿ˜
       2      DNS. It's always DNS. ๐Ÿงฌ
       127    Command not found in $PATH or in life ๐Ÿคท
       418    I'm a teapot (actual HTTP status of most services) ๐Ÿซ–

ENVIRONMENT
       LOCATION       Where the Adriatic sea meets bad routing decisions ๐ŸŒŠ
       TIMEZONE       CET (but operates in "whenever I wake up") ๐Ÿ•
       EDITOR         nano (yes, really. judge me.) ๐Ÿ”ช
       SHELL          /bin/zsh
       PATH           /usr/bin:/sbin:/opt/regret

FILES
       ~/.config/impostor-syndrome  always present, 100% CPU ๐ŸŽญ
       ~/.ssh/authorized_keys       surprisingly well-maintained ๐Ÿ”
       /dev/null                    where my documentation goes ๐Ÿ“„
       /var/log/mistakes            error: disk full ๐Ÿ’พ
       /proc/self/status            State: R (running on fumes) โ›ฝ

BUGS ๐Ÿชฒ
       Yes.

       Cannot estimate time. "5 minutes" means anywhere between
       5 minutes and the heat death of the universe โณ

       Frequently says "it works on my machine" with zero
       irony and full confidence ๐Ÿค

       Has deployed with --force in production and would
       do it again without hesitation or remorse ๐Ÿซก

       Opens 45 browser tabs to fix one issue. Closes none
       of them. Ever ๐Ÿ—‚๏ธ

       Deletes resources on the first try, restores them
       on the fourth. Calls this "experience" ๐ŸŽ“

CAVEATS โš ๏ธ
       Do not ask for ETAs.
       Do not let him near production on Fridays ๐Ÿบ
       Do not mention Kubernetes at dinner unless you have
       3 hours and no will to live ๐Ÿ

SEE ALSO
       stackoverflow(1), chatgpt(1), kubectl-get-pods(1),
       tcpdump(8), wireshark(1), nelson-pass(1), caffeine(3),
       regret(8)

AUTHOR
       Self-taught. For better or worse. Mostly worse ๐Ÿคทโ€โ™‚๏ธ
       Restarted multiple times. Each reboot comes back
       slightly more opinionated and less patient.

๐Ÿง  things I pretend to understand

๐ŸŒ Networking โ€” BGP, OSPF, MPLS, VLANs, and other acronyms I use to sound important at dinner parties. MikroTik enthusiast (read: hostage).

๐Ÿ—๏ธ Infrastructure โ€” Kubernetes clusters that occasionally serve traffic. Proxmox, Ceph, and enough YAML to make a grown man cry.

๐Ÿ” Security โ€” RPKI, DNSSEC, TLS everywhere, and a healthy paranoia that borders on clinical. If it’s not encrypted, it’s not deployed.

โš™๏ธ Automation โ€” CI/CD pipelines, GitOps, Infrastructure as Code. Because doing things manually once is a mistake, twice is a skill issue.

๐Ÿ  Self-hosting โ€” Running 40+ services on a homelab cluster. If a SaaS exists, I’ve probably deployed a worse version of it at home.

๐Ÿค– Troubleshooting โ€” Gave up. It’s all on AI’s shoulders now. I just approve the pull requests and pray.

๐ŸŽต Audio / Music โ€” Passionate about music, too broke to buy gear. So I built it all โ€” DACs, amplifiers, speakers. Disciple of Nelson Pass โ€” the man who proved that Class A single-ended is the only topology worth burning electricity for. If it has a circuit board and makes sound, I’ve probably soldered it together at 2am with questionable flux and zero regard for my fingertips ๐Ÿ”ฅ

๐Ÿ”จ things I’ve built (and occasionally break)

๐ŸŒ AS215288 โ€” My own Autonomous System. Because getting a /24 and peering with the internet seemed like a reasonable weekend project. Dual-stack, BGP, RPKI-signed, and mostly operational.

๐Ÿš๏ธ The Garage Datacenterโ„ข โ€” A Proxmox cluster that runs Ceph storage, a UPS that screams at 3am, and my entire digital life. Cooling is provided by opening the garage door. PUE ratio: incalculable.

The Garage Datacenterโ„ข โ€” a rack full of MikroTik gear, patch panels, and questionable cable management

Exhibit A: the "datacenter". Cable management by natural selection ๐Ÿงฌ

๐Ÿ• NTP Pool Contributor โ€” Two-node Stratum-1 NTP server in HA, feeding accurate time to the NTP Pool Project. Because apparently my homelab wasn’t extra enough โ€” now I’m responsible for telling the internet what time it is. Two nodes, because even time deserves high availability.

Two-node Stratum-1 NTP servers in HA โ€” because even time deserves redundancy

Exhibit B: two boxes whose only job is knowing what time it is. They take it very seriously โฑ๏ธ

โ˜ธ๏ธ The Homelab Clusterโ„ข โ€” A k3s cluster running on top of the Proxmox cluster. INCEPTION TIME, BABY! ๐ŸŒ€ Dual-stack networking, MetalLB with BGP, 40+ self-hosted apps. It’s like AWS, but with more emotional damage, less uptime guarantees, and exactly one disgruntled SRE who is also the CEO, the customer, and the guy who forgot to pay the electricity bill.

๐Ÿ‘จโ€๐Ÿ‘ฉโ€๐Ÿ‘งโ€๐Ÿ‘ฆ A Family โ€” Most ambitious project to date. Zero documentation, no rollback strategy, and the forked processes consume 100% of available resources. Wife has root privileges and uses them liberally. Uptime: permanent. Maintenance windows: non-existent. Cannot be containerized.

๐Ÿฆ‡ This Website โ€” A Hugo site served by a 6MB Rust binary because Nginx was too mainstream and WordPress was never an option. CI/CD auto-deploys from Git because I’m too lazy to SSH into things. Dracula theme, obviously โ€” because 99.9% of tech YouTube thumbnails feature a terminal with Dracula, and I’m preparing for my inevitable career pivot to content creator.

๐Ÿ“ฌ contact (if you must)

๐Ÿ’ฌ Telegram: @winkelwoss
๐Ÿšจ NOC: noc@as215288.net
๐Ÿค Peering: peering@as215288.net
๐Ÿ” PeeringDB: AS215288

โš–๏ธ disclaimer

No production systems were harmed in the making of this website. That’s a lie. Several were harmed. Some are still recovering ๐Ÿฅ

All opinions expressed here are my own and do not represent anyone with better judgement. Uptime is aspirational. SLAs are fictional. Backups are… probably running ๐Ÿคž

Yes, there are emojis everywhere. They reconnect me with my inner child ๐Ÿ‘ถ
The one who didn't mass-delete production databases. Yet.