manwichmakesameal

@manwichmakesameal@lemmy.world

• ⁨Comment⁩ on ⁨hosting a VPN with a different ISP⁩ ⁨⁨1⁩ ⁨hour⁩ ago⁩:

  Another solution I don’t see mentioned (yet) is have both ends connect to a VPS running your WG endpoint. Then both sides only have to have egress ability, nothing coming in, no CGNAT to worry about.

• ⁨Comment⁩ on ⁨How do you healthcheck your containers?⁩ ⁨⁨4⁩ ⁨hours⁩ ago⁩:

  Negative. All done in uptimekuma/HA. You’ll need an access-token from your home assistant server but it’s pretty straightforward.

• ⁨Comment⁩ on ⁨How do you healthcheck your containers?⁩ ⁨⁨21⁩ ⁨hours⁩ ago⁩:

  I use uptimekuma with notifications through home assistant. I get notifications on my phone and watch. I had notifications set up to go to a room on my matrix homeserver but recently migrated it and don’t feel like messing with the room.

• ⁨Comment⁩ on ⁨Getting the right setup for Vaultwarden compose.yaml⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:

  FWIW, here’s my compose file. I 100% use https for everything internal. With LetsEncrypt and Pihole, why wouldn’t you? It’s dead-simple.

  networks:
    backend:
      external: True
  
  services:
    vaultwarden:
      container_name: vw-svr-00
      image: vaultwarden/server
      environment:
        - TZ=My/Timezone
        - DOMAIN=https://my.internal.domain/
  #    ports:
  #      - "82:80"
      volumes:
        - ./vw_data:/data
      networks:
        - backend
      restart: always
      labels:
        - "traefik.enable=true"
        - "traefik.http.routers.vaultwarden.rule=Host(`my.internal.domain`)”
        - "traefik.http.routers.vaultwarden.entrypoints=websecure"
        - "traefik.http.routers.vaultwarden.tls=true"
        - "traefik.http.services.vaultwarden.loadbalancer.server.port=80"