Hellmo_Luciferrari

@Hellmo_Luciferrari@lemm.ee

• ⁨Comment⁩ on ⁨What do you prefer to selfhost?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:

  I haven’t gotten around to setting it up yet, but for a google photos type self hosted setup there is Immich which looks promising!

• ⁨Comment⁩ on ⁨What do you prefer to selfhost?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:

  I want to self host more, but power draw is a concern.

  So I have gone the route of running to Pi 4 8gb models as my hosts of choice.

  So far I am hosting:

  Non-Docker:

  • PiHole
  • Unbound
  • Wireguard (and Wireguard-UI)

  Docker:

  • ForgeJo
  • Dozzle
  • Homarr
  • LinkWarden
  • Traefik
  • Watchtower

  ---

  There are a few other services I want to get up, but I haven’t gotten around to it:

  • Jellyfin
  • Immich
  • Nextcloud

  ---

  As to why:

  • ForgeJo to host my own git repositories (Docker Compose files, Chezmoi dot files, Miscellaneous configs)
  • PiHole for ad blocking
  • Unbound, well, having my own DNS
  • Wireguard so I can connect to my home network
  • Dozzle for easy log checking for my docker containers
  • Linkwaren so I can backup bookmarks in a privacy friendly way
  • Homarr for easy access to other web services I host
  • Traefik so I can resolve IP:port to a hostname with SSL certificates even though everything I host is internal only
  • Watchtower to update my Docker containers
• ⁨Comment⁩ on ⁨Traefik and external services⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I will likely have to do some tinkering, and more reading up on this from the documentation I am thinking. I am getting HTTP 200 statuses basically across the board. When going to the FQDN it doesn’t redirect to the PiHole admin page like I was expecting. Again, likely some configuration that I have wrong.

• ⁨Comment⁩ on ⁨Traefik and external services⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  Shows in traefik, no errors there.

• ⁨Comment⁩ on ⁨Traefik and external services⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I hate to report back, but something isn’t quite working for pihole behind Traefik.

  running “docker logs traefik” returns no error, and yet no certificate was presented to my pihole.

  Not sure what else I might be missing or that I might have wrong.

• ⁨Comment⁩ on ⁨Traefik and external services⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I will give this a shot! Thank you for the help. I will report back, in hopes that between your knowledge and my fumbles that someone else too can learn from this!

• ⁨Comment⁩ on ⁨Traefik and external services⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  so in my traefik.yml file I have cloudflare set as my certresolver as follows:

  certificatesResolvers:
    cloudflare:
      acme:
        email: email@example.com
        storage: acme.json
        caServer: https://acme-v02.api.letsencrypt.org/directory # prod (default)
        # caServer: https://acme-staging-v02.api.letsencrypt.org/directory # staging
        dnsChallenge:
          provider: cloudflare
          #disablePropagationCheck: true # uncomment this if you have issues pulling certificates through cloudflare, By setting this flag to true disables the need to wait for the propagation of the TXT record to all aut>
          #delayBeforeCheck: 60s # uncomment along with disablePropagationCheck if needed to ensure the TXT record is ready before verification is attempted 
          resolvers:
            - "1.1.1.1:53"
            - "1.0.0.1:53"
  
  

  And I had to get the secret mounted via the docker-compose file.

  So where you have:

  tls:

          certResolver: examplecom-dns
  
  

  Do I have to redefine all of the same information I did in my Traefik yml but in this separate config.yml?

  (I did set it up in my traefik.yml and docker-compose.yml to mount and use this config, which I had commented out for later use.

  ---

  Thank you so much for the help!

• ⁨Comment⁩ on ⁨Traefik and external services⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  Would the file provider configs live on the Traefik server, or would they need to be on the external service. Reading through this, and looking at the example configuration files doesn’t really seem to point that out. Sorry for the noob questions.

  Trying to understand this, but the way the documentation is written is different than I am used to.

  Thank you!

• Traefik and external services
  Submitted ⁨⁨4⁩ ⁨months⁩ ago⁩ to ⁨selfhosted@lemmy.world⁩ | ⁨12⁩ ⁨comments⁩
• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  Good to know. Thank you!

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I ran into an issue where I changed nothing, and all of a sudden none of my SSL certs worked on top of most of the hosts were not working through the reverse proxy. I had not even changed ip addresses on any of them. I am not sure what was going on.

  It was more of a “I didn’t want to troubleshoot” and gave up, so I shut down my servers.

• ⁨Comment⁩ on ⁨Telegram says it has 'about 30 engineers'; security experts say that's a red flag⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  Using SMS through signal defeats the purpose of signal…

  The UI is fine, what more do you expect out of it? It has a list of chats, a menu button with menu options, like it’s a messaging app not a social media platform akin to discord or telegram.

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  Today I learned about Linkwarden, and I am so excited to check it out. Thank you!

  NPM I did use, however it was ultimately the catalyst as to why I quit homelabbing. But when it did work, it was simple even for SSL cert renewal.

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I will have to check out gitolite. Thank you!

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  Traefik or Caddy are the 2 I am bouncing back and forth between currently. I may spin up a nextcloud instance.

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I still want to get familiarized with NixOS and the concepts behind it. Just haven’t taken the time.

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I may have to check out BookStack. I dig the looks of it.

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I think Traefik is going to be what I investigate using. However the last time I tried, I was a little lost. I will have to comb over the documentation better this time.

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  That is good advice, and honestly never really occurred to me to set specific versions for containers.

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I will likely dabble with Logseq.

  I used NGINX Proxy Manager for a while, then had some issues that ultimately killed my homelab setup, so not sure that I want to go down that route again, or if I want to investigate Caddy, Traefik, or another.

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I think I am going down the docker compose route. When I started using docker, I didn’t use compose, however, now I plan to. Though, Ansible has been on my list of things to learn, as well as nixOS.

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  Thank you for the suggestion. The fact that it’s FOSS wins my vote. I have been trying to go all open source where possible.

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I think I need to utilize this strategy because I get lazy and don’t update external documentation.

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I really should spend time familiarizing with maintaining a git repo. I’ll likely find one I can self host.

• ⁨Comment⁩ on ⁨Homelab Organization⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I have looked at Obsidian, it looks nice, but the closed source part is why I can’t personally use it. Though, from discussions I have seen Logseq be thrown out when talking about similar software.

  The wiki idea is a good one. The way to handle that is to have the wiki backed up incrementally.

• Homelab Organization
  Submitted ⁨⁨4⁩ ⁨months⁩ ago⁩ to ⁨selfhosted@lemmy.world⁩ | ⁨54⁩ ⁨comments⁩
• ⁨Comment⁩ on ⁨FCC proposes ending cellphone carrier locks after 60 days⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I can see two sides to this:

  Removable batteries are great, if you want longevity for a phone, and don’t mind sacrificing water resistance.

  On the other side of the coin:

  Removable batteries have more potential to lower water resistance ratings.

  I think more manufacturers should give the choice of a model with a removable battery.

• ⁨Comment⁩ on ⁨FCC proposes ending cellphone carrier locks after 60 days⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  “Verizon agrees that the FCC should consider the merits and trade-offs of handset unlocking requirements,” Verizon spokesperson Rich Young told The Register, though that support is conditional.

  Screw verizon with an acid covered cactus. What possible “merits” are there to locking a device down for anyone but the companies selling the phones? Rich Young can go kick rocks.

  I will not buy a phone through a carrier, I will not buy a phone with a locked bootloader. Period.

  I am done with anticonsumer bullshit.

• ⁨Comment⁩ on ⁨Lindroid is an Android app that lets you run Linux in a container, with support for hardware-acceleration - Liliputing⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  You should go another level deeper, VirtualBox > Windows > WSL > Waydroid > Lindroid

• ⁨Comment⁩ on ⁨Lindroid is an Android app that lets you run Linux in a container, with support for hardware-acceleration - Liliputing⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:

  I have seen the likes of similar, like Andronix but I typically don’t want to buy into proprietary software where possible. Thank you for sharing!