It’s Sunday somewhere already so why wait?
Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.
I’ll post my ongoing things later/tomorrow but I didn’t want to forget the post again.
You must log in or register to comment.
I know this isn’t sexy but I’ve been working on my documentation. Getting configs etc properly versioned in my gitea instance, readmes updated etc. My memory is not what it once was and I need the hints when things break.
Pretty cool! I also try to improve my documentation
I’ve been trying to learn K8s and more recently the Gateway API. The struggles are that most Helm charts don’t know Gateway (most are barely Ingressroute) and I’m trying to find a solution to one service affecting the other gateways.when a service cannot find a pod, the httproute fails and when one route fails, the ingress fails. It’s a weird cascading problem.
Right now, I’m considering adding a secondary service to each gateway that resolves to a static error page. I haven’t looked into it yet; it cane to me in the brief moment of clarity before I fell asleep last night.
Also, I may be doing everything wrong, but I am learning and learning is fun.
I’m trying to figure out setting up TrueNAS scale and docker for the first time. Building a NAS and self hosting a few things from an old all in one mini PC.
Today I’m experimenting with Ansible. Wanna try setting up a Docker hosted RSS reader with it. Hopefully will write up controls for my whole Docker server with Ansible once I’m more familiar.
I setup a VPN for my moms Synology so I can request and download media for her through my local qbit instance and using Radarr/Sonarr to move the files over.
I have a problem where both arrs don’t auto start when I power up the debian VM in Proxmox even though the daemon is running and restart policy is set to always…
She doesn’t make a lot of requests so I just go and start them manually but I would eventually like to get it fixed…
Moved my fediverse apps friendica, lemmy, 35c. (only user is me) to one server since it was overkill having 2 barely using 8% if that if their cpu/ram. Suprisingly easy with yunohost backups, remade users and restored backup if just the apps. Updated enhance panel, switched the sites im making for family to use as a portfolio for local webdev to ols, fairly easy, was using wordpress templates wrong so I fixed that and redid the home pages, now I feel less confident with wordpress and wonder if ive always made sites wrong, think i just forgot since its been years.
Great to hear the yunohost migration worked. What’s 35C?
I initially fd it up because I didnt deselect everything but the apps, but I at least thought to backitup and dload it locally beforehand so it was an easy/quick recovery
I have no idea lmao, prob a typo lol, I had streams and pleroma as well
This is what I found, a Discord bot. Hopefully GP comes back with an answer.
Managed to set up immich remote machine learning (old 7th gen Optiplex to gaming PC). If only I bought an nvidia card… I wasn’t able to get it my AMD 7800 XT to work with immich ML… Next up is setting up microservices because immich is crippling my unraid server 🤦🏼😭
Wow. I was thinking of setting up immich. Why is it crippling your unraid server?
Honestly I’m not sure. I had the ML on my AMD gaming PC but the other (metadata and thumbnail) services were still on the unraid server… Photoprism doesn’t have that issue at all…
I’ve switched back to PP until I sort out the microservices…
Trying to figure out how to get my qBittorrent docker container to route all traffic through my VPS through wireguard. The catch is that the webui needs to be accessible through LAN.
Considering moving my stuff into a VirtualBox VM or two rather than running directly on my PC. Then at some point in the future when I have the hardware for it I can fairly easily move it to proxmox. Also means installing a clean OS on my main PC is a quicker task as it would just be install virtual box, load up the VMs and a lot of stuff would already be done.
Consider using containers. I used to think this way, though now my goal is to get down to almost all containers since it’s nice to be able to spin up and down just what the one ‘thing’ needs.
I have a family member across the country that wants to break from Google and really isn’t the type to self-host themselves, and I connect to my self hosted NextCloud solely through TailScale.
NextCloud permissions seem easy enough, but I’m researching how to add them to my Tailnet safely to avoid potential compromise of my network if something happens to their system.
Presuming this involves ACLs, which look intimidating, but I’m doing some research on that.
ACLs are not a bad as they look.
Get your nextcloud instance hooked into tailscale
You just need a sample file
Group for admins, add yourself
Tag owner for internal is admins Tag owner for nextcloud is admins
Action accept, src admin,
dst *:*Action accept, src nextcloud, dst nextcloud *.
Then tag your nextcloud ts connection as nextcloud in the webadmin
Tag all your other clients admin in the webadmin
Note: you can’t just paste what I put here you need to find a viable template and then follow along. I’m on a mobile device where I would give you something more finalized
Edit: tag your fam client as nextcloud
Something like this:
I stripped down one of my configs, I took out SSH, I don’t think it requires it{ "groups": { "group:admins": [ "bob@bob.com", ], }, "tagOwners": { "tag:admin": ["group:admins"], "tag:nextcloud": ["group:admins"], }, "acls": [ { "action": "accept", "src": ["tag:admin"], "dst": ["*:*"], }, { "action": "accept", "src": ["tag:nextcloud"], "dst": ["tag:nextcloud:*", "autogroup:internet:*"], }, ], }Thanks! This is very helpful! I really appreciate it! :D
No problem. They really should spend about 10 hours having somebody make a GUI for it
Is exposing it to the internet not an option? Boarding more family members on could be cool.
It might be some way, however not easily. My mega-corpo ISP blocks incoming connections on common hosting ports, because they want to
keep the network safesell expensive home-business plans. LolI’m also very amateur at this as I go along, and I’m not sure I’m ready to deal with the fallout of missing some security step and getting my server botted or ransomwared lol.
I haven’t done the hardware stuff with setting up my own router/firewall box either, for instance.
So Tailscale works really well for me by seemingly magically bypassing a lot of that nonsense and giving me less to worry about. They allow 3 users for free, but have a relatively inexpensive family plan for like 6 users as well, if that becomes necessary.
I mainly just need to tell them not to try and use my server as an exit node if they’re across the country 😂.
But yeah definitely, I’m using this as a way to test the waters for running service alternatives as the web we knew collapses around us lol. I’m not ready to be running something people really rely on yet, though. :)
I’ve recently setup an recipe archival project using tandoor, I’m working on converting all my grandparents fading old as dust cooking recipes from their misc handwritten cursive notecards to digital.
Setup was uneventful but it took a little research to figure out how to use a remote postgres server, turns out the app doesn’t give an error when it can’t connect to the server, it just fails to run
Have to say the actual program itself is absolutely absurd and how they choose their permissions, it breaks all conventional and took quite a bit to get used to.
I’m still using Docker Rootless, which I want to change for Podman since Rootless is second-class for Docker, but I haven’t been able to read the documentation enough to understand Podman Quadlets to migrate my compose files, and there are some incompatible configurations so even if using
podlet, I have to edit some things manually.I also want to migrate to MicroOS if possible in my server, but I’m still testing things in a VM to understand enough and the cost-benefit u.u
Anyone know how to set up NPM on truenas scale? I’ve spent all day trying to get my SSL certs and it fails every damn time. Just says the donation is unknown or that it can’t find my npm install 😮💨
I’m using a freedns domain tho so maybe I’m gonna need to try buying a domain.
My big problem is remote stuff. None of my users have aftermarket routers to easily manipulate their DNS. One has an android modem thing which is hot garbage. I’m using a combination of making their pi be their DHCP and one user is running on avahi.
Chrome, the people’s browser of choice, really, really hates http so I’m putting them on my garbage ######.xyz domain. I had plans to one day deal with Https, just not this day. Locally I just use the domain for vaultwarden so the domain didn’t matter. But if people are going to be using it then I’ll have to get a more memorable one.
System updates have been a faff. I’m 'ssh’ing over tailscale. When tailscale updates it kicks me out, naturally. Which interrupts the session, naturally. Which stops the update, naturally. Also, it fucks up dkpg beyond what --configure -a can repair. I’ll learn to update in background one day, or include tailscale in the unattended-upgrades. Honestly, I should put everything into unattended-upgrades.
Locally works as intended though, so that’s nice. Everything also works for my fiancee and I remotely all as intended, which is also nice. My big project is coalescing what I’ve got into something rational. I’m on the make it good part of the “make it work > make it good” cycle.
System updates have been a faff. I’m 'ssh’ing over tailscale. When tailscale updates it kicks me out, naturally. Which interrupts the session, naturally. Which stops the update, naturally.
Have a look at Screen. You can create a persistent terminal to start your update in, disconnect (manually or by connection loss), and resume the session when you reconnect, with it having completed the update while you were gone.
Set up pi-hole on my network and I’m realizing it clashes with my VPN on my desktop and private relay on my Apple devices lol. Progress everywhere else though?
