Skip Navigation

bigDottee

@ bigDottee @geekroom.tech

Posts
0
Comments
39
Joined
1 yr. ago

  • Asking for suggestions regarding Rootless Podman

    Jump

  • I agree that you’ll want to figure out inter-pod networking.

    In docker, you can create a specific “external” network (external to the docker container is my understanding) and then you can attach the docker compose stack to that network and talk using the hostnames of the containers.

    Personally, I would avoid host network mode as you expose those containers to the world (good if you want that, bad if you don’t)… possibly the same with using the public IP address of your instance.

    You could alternatively bind the ports to 127.0.0.1 which would restrict them from exposing to internet… (see above)

    So just depends on how you want to approach it.

  • Deleted

    Permanently Deleted

    Jump

  • I am running AdGuard Home DNS, not PiHole.. but same idea. I have AGH running in two LXCs on proxmox (containers). I have all DHCP zones configured to point to both instances, and I never reboot both at the same time. Additionally, I watch the status of the service to make sure it’s running before I reboot the other instance.

    Outside of that, there’s really no other approach.

    You would still need at least 2 DNS servers, but you could setup some sort of virtual IP or load balancing IP and configure DHCP to point to that IP, so when one instance goes down then it fails over to the other instance.

  • Looking to start self hosting by going through Louis Rossman's recently released guide. Any pointers for a newbie are most welcome.

    Jump

  • Thanks mate!

  • Anyone here tried Owncloud?

    Jump

  • Like others, I started with owncloud but when Nextcloud forked I switched within a year. I haven’t looked back and is working without any issues and is performant.

    I don’t really care about the enterprise shit since it’s not being shoved in my face 🤷🏼‍♂️

  • What host names do you use?

    Jump

  • Man I’m lame.

    Used to be {env}-function##

    Now it’s {env}-{vlanlocation}-function##

    VLAN location such as DMZ, Infra, Jump for jump boxes, IOTSec or IOTInsec, Etc

  • How is the Piracy community adapting to port forwarding becoming a rarer premium feature, and most users on public trackers do not have it? Is the bitorrent protocol in need of update?

    Jump

  • I seem to be out of the loop in regards to proton controversy and I haven’t found anything outstanding against them…

    Can you help me understand what you’re specifically referring to? I’m a proton user… so kinda want to know lol

  • [Help] IPv4 address reaches website, but domain doesn't... (wrong community?)

    Jump

  • I wouldn't say you're doing it wrong, but a reverse proxy allows you to not only have a specific domain to use and multiple backends, etc... but it also can translate to not needing to have a port open for every single service you run on the backend.

    RP's can certianly be a load balancer, but usually for home lab / selfhosted purposes, we don't need a load balancer.

  • Traffic routing security comparison

    Jump

  • I use both WireGuard and OpenVPN to vpn into my home network.

    However, it doesn’t matter whether you use a domain or just up… if you get blocked from accessing either / both … you’re screwed. 🤷🏼‍♂️

  • Backups: Am I doing this right?

    Jump

  • You are looking for a disaster recovery plan. I believe you are going down the right path, but it’s something that will take time.

    I backup important files to my local NAS or directly store them on the local NAS.

    This NAS then backs up to an off site cloud backup provider BackBlaze B2 storage.

    Finally, I have a virtual machine that has all the same directories mounted and backs up to a different cloud provider.

    It’s not quite 3-2-1… but it works.

    I only backup important files. I do not do full system backups for my windows clients. I do technically backup full Linux vms from within Proxmox to my NAS…but that’s because I’m lazy and didn’t write a backup script to back up specific files and such. The idea of being able to pull a full system image quickly from a cloud provider will bite you in the ass.

    In theory, when backing up containers, you want to backup the configurations, data, and the databases… but you shouldn’t worry about backing up the container image. That can usually be pulled when necessary. I don’t store any of my docker container data in volumes… I use the folder mapping from host to directory in docker container… so I can just backup directories on the host instead of trying to figure out the best way to backup a randomly named docker volume. This way I know what I’m backing up for sure.

    Any questions, just ask!

  • GitHub - Ravencentric/awesome-arr: A collection of *arrs and related stuff.

    Jump

  • Somehow, I have never seen this list… and easily over half of those projects I’ve never heard of but could add some great functionality to my home. Thanks for posting it!

  • [Help] IPv4 address reaches website, but domain doesn't... (wrong community?)

    Jump

  • I’ll pitch in here.. so website dns (porkbun) is configured to point to your home in, great!

    2 things need to happen.

    1. Your router needs to expose ports 80 and/or 443 for HTTP and HTTPS access. If you are only doing HTTPS then 80 isn’t really necessary. These ports need forwarded to a reverse proxy, such as NGINX or Apache.
    2. You need to have a reverse proxy setup that can translate the domain name that is being sent to a local IP address:port. You should be able to find some relatively simple/easy reverse proxy configuration generators online to help you get that setup. You’ll want to setup SSL certificates while you’re at this too. Look up “nginx certbot lets encrypt” and that should get you pointed in the right direction.

    Once those are done, in theory, you should be able to access your website outside of your home network using your domain name.

  • How do you keep track of vulnerabilities?

    Jump

  • I’ve just started to delve into Wazuh… but I’m super new to vulnerability management on a home lab level. I don’t do it for work so 🤷🏼‍♂️

    Anyways, best suggestion is to keep all your containers, vms, and hosts updated best you can to remediate vulnerabilities that are discovered by others.

    Otherwise, Wazuh is a good place to start, but there’s a learning curve for sure.

  • Home Assistant in Proxmox, local dns not working

    Jump

  • So you definitely still need a local DNS running. AdGuard Home, PiHole, Technitium, Hell your router probably has a local dns server you can enable and add some entries to it.

    But once you setup a dns server, you’ll need to point all network clients to the dns server address so it can start resolving the web address to the ip in question.

  • Featured

    Welcome to !selfhosted@lemmy.world - What do you selfhost?

    Jump

  • Looking to start self hosting by going through Louis Rossman's recently released guide. Any pointers for a newbie are most welcome.

    Jump

  • I’m not sure if you ever made your way to following through with this… But the three node system isn’t a bad starting point. However, here’s how I would approach it (similar to how I actually got my start in homelabs and how I do things now)

    1 system for your router (looks like you picked a Qotom unit, those are decent), 8-16 gb ram

    1 system for proxmox virtualization… run all your services in LXC’s or Virtual machines, as much ram as you can get a get for your system

    And 1 system dedicated to storage (truenas or unraid), 32gb ECC ram (personal preference but not necessarily needed even with zfs for home use)

    I’d start at https://reddit.com/r/homelab … but since we’re on Lemmy, I’d rather suggest posting on !homelab@geekroom.tech (new, but looking to gain traction)

  • What would you do with hardware like this?

    Jump

  • I’d add it to my proxmox cluster and start getting services setup on it. Plain and simple.

  • Maybe it's time to admit that i just own a hard drive full of very, very dead torrents

    Jump

  • Well... if you don't need to get rid of the files and continue to have space... then great. No matter what, you are applauded for seeding for when the inevitable lone pirate comes sailing by wanting to loot your booty.

  • Looking for a VPS. I don't know who to choose.

    Jump

  • Can confirm, genuinely good service and support at reasonable prices.

  • Least terrible domain registrars

    Jump

  • Also use Cloudflare as new domain registrar because I use them as DNS as well. I can’t say that I’ve had any problems with them at all.