It’s Sunday somewhere already so why wait?

Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.

I’ll post my ongoing things later/tomorrow but I didn’t want to forget the post again.

  • WhyFlip@lemmy.world
    link
    fedilink
    English
    arrow-up
    0
    ·
    26 days ago

    Adding a second vdev today to my primary pool running on Scale. New vdev will be 12TB by 4 wide, with existing at 10TB by 5 wide. Drives are all 7,200 RPM enterprise grade, CRM drives.

    May also add a second pool with the drives from my previous build which would be 10TB by 4 wide. These drives are 5,400 RPM so I would not use them in my primary pool.

    Also, Noctua sent me a bracket (at no charge) so I can correct the orientation of the CPU fan to be facing front to back (currently left to right). I also have a couple 80mm fans and a 120mm fan to add to the server case. Once all of that is in place I hope to start running Ldarr against my libraries without CPU temps hitting 95°C.

  • linuxguy@lemmy.gregw.us
    link
    fedilink
    English
    arrow-up
    0
    ·
    26 days ago

    Looking for a self-hosted period tracking app with companion android app. Have done literally zero investigation at this point but it’s on my todo.

      • MonkeMischief@lemmy.today
        link
        fedilink
        English
        arrow-up
        0
        ·
        edit-2
        26 days ago

        That’s definitely one of those things I found bizarre and awful yet…entirely unsurprising. I can see how selling that data probably sounds like such a lucrative edge to marketing companies.

        how did we as society come to accept this?

        By not establishing ethical lines high-voltage containment fences on the advertising industry quickly enough, and letting them convince us “this is just how business works”, when their entire existence is about finding the scummiest ways to hack free will for profit.

  • overload@sopuli.xyz
    link
    fedilink
    English
    arrow-up
    0
    ·
    edit-2
    26 days ago

    Had Jellyseer break on me again on Truenas scale, something about a jellyfin API blah blah blah. Decided that Sonarr and Radarr are fine enough to interface with that I don’t need it and deleted the image.

  • shadshack@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    0
    ·
    26 days ago

    I’ve got a project to look forward to. Have my Proxmox server with a UPS, running NUT to watch the battery percentage and power down gracefully if the % gets too low. I have Home Assistant watching that so it’s supposed to notify me before that happens. It’s not notifying me though, so I gotta look into that. I know it’s not working this morning because the power went out, so now I’m just sitting here theorizing instead of actually looking at it. 🙃

  • dotslashme@infosec.pub
    link
    fedilink
    English
    arrow-up
    0
    ·
    26 days ago

    Currently trying to figure out how to create and maintain an internal CA in order to enable pod to pod TLS communication, while using letsencrypt for my public ingresses.

  • Pika@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    0
    ·
    26 days ago

    I’ve recently setup an recipe archival project using tandoor, I’m working on converting all my grandparents fading old as dust cooking recipes from their misc handwritten cursive notecards to digital.

    Setup was uneventful but it took a little research to figure out how to use a remote postgres server, turns out the app doesn’t give an error when it can’t connect to the server, it just fails to run

    Have to say the actual program itself is absolutely absurd and how they choose their permissions, it breaks all conventional and took quite a bit to get used to.

  • cass80@programming.dev
    link
    fedilink
    English
    arrow-up
    0
    ·
    26 days ago

    Finished setting up an email server and am now looking into a matrix nextcloud bridge. Doesn’t seem to exist, so I guess I’m writing one.

  • MonkeMischief@lemmy.today
    link
    fedilink
    English
    arrow-up
    0
    ·
    26 days ago

    I have a family member across the country that wants to break from Google and really isn’t the type to self-host themselves, and I connect to my self hosted NextCloud solely through TailScale.

    NextCloud permissions seem easy enough, but I’m researching how to add them to my Tailnet safely to avoid potential compromise of my network if something happens to their system.

    Presuming this involves ACLs, which look intimidating, but I’m doing some research on that.

    • rumba@lemmy.zip
      link
      fedilink
      English
      arrow-up
      0
      ·
      edit-2
      26 days ago

      ACLs are not a bad as they look.

      Get your nextcloud instance hooked into tailscale

      You just need a sample file

      Group for admins, add yourself

      Tag owner for internal is admins Tag owner for nextcloud is admins

      Action accept, src admin, dst *:*

      Action accept, src nextcloud, dst nextcloud *.

      Then tag your nextcloud ts connection as nextcloud in the webadmin

      Tag all your other clients admin in the webadmin

      Note: you can’t just paste what I put here you need to find a viable template and then follow along. I’m on a mobile device where I would give you something more finalized

    • tofuwabohu@slrpnk.netOP
      link
      fedilink
      English
      arrow-up
      0
      ·
      26 days ago

      Is exposing it to the internet not an option? Boarding more family members on could be cool.

      • sugar_in_your_tea@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        0
        ·
        26 days ago

        I expose mine for convenience, and I use multiple layers of security to reduce risk:

        • Cloudflare protections at edge
        • IP filtering at VPS
        • connection from VPS to NAS is over Wireguard
        • TLS handled in my network (so no snooping at VPS)
        • all exposed services are in containers with minimal access

        That cuts most of the issues.

      • MonkeMischief@lemmy.today
        link
        fedilink
        English
        arrow-up
        0
        ·
        25 days ago

        It might be some way, however not easily. My mega-corpo ISP blocks incoming connections on common hosting ports, because they want to keep the network safe sell expensive home-business plans. Lol

        I’m also very amateur at this as I go along, and I’m not sure I’m ready to deal with the fallout of missing some security step and getting my server botted or ransomwared lol.

        I haven’t done the hardware stuff with setting up my own router/firewall box either, for instance.

        So Tailscale works really well for me by seemingly magically bypassing a lot of that nonsense and giving me less to worry about. They allow 3 users for free, but have a relatively inexpensive family plan for like 6 users as well, if that becomes necessary.

        I mainly just need to tell them not to try and use my server as an exit node if they’re across the country 😂.

        But yeah definitely, I’m using this as a way to test the waters for running service alternatives as the web we knew collapses around us lol. I’m not ready to be running something people really rely on yet, though. :)

  • merthyr1831@lemmy.ml
    link
    fedilink
    English
    arrow-up
    0
    ·
    26 days ago

    Anyone know how to set up NPM on truenas scale? I’ve spent all day trying to get my SSL certs and it fails every damn time. Just says the donation is unknown or that it can’t find my npm install 😮‍💨

    I’m using a freedns domain tho so maybe I’m gonna need to try buying a domain.

  • Korhaka@sopuli.xyz
    link
    fedilink
    English
    arrow-up
    0
    ·
    26 days ago

    Considering moving my stuff into a VirtualBox VM or two rather than running directly on my PC. Then at some point in the future when I have the hardware for it I can fairly easily move it to proxmox. Also means installing a clean OS on my main PC is a quicker task as it would just be install virtual box, load up the VMs and a lot of stuff would already be done.

    • csm10495@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      0
      ·
      26 days ago

      Consider using containers. I used to think this way, though now my goal is to get down to almost all containers since it’s nice to be able to spin up and down just what the one ‘thing’ needs.

  • happydoors@lemm.ee
    link
    fedilink
    English
    arrow-up
    0
    ·
    26 days ago

    Set up pi-hole on my network and I’m realizing it clashes with my VPN on my desktop and private relay on my Apple devices lol. Progress everywhere else though?

  • slax@sh.itjust.works
    link
    fedilink
    English
    arrow-up
    0
    ·
    26 days ago

    Managed to set up immich remote machine learning (old 7th gen Optiplex to gaming PC). If only I bought an nvidia card… I wasn’t able to get it my AMD 7800 XT to work with immich ML… Next up is setting up microservices because immich is crippling my unraid server 🤦🏼😭

      • slax@sh.itjust.works
        link
        fedilink
        English
        arrow-up
        0
        ·
        25 days ago

        Honestly I’m not sure. I had the ML on my AMD gaming PC but the other (metadata and thumbnail) services were still on the unraid server… Photoprism doesn’t have that issue at all…

        I’ve switched back to PP until I sort out the microservices…

  • marcus_too@lemmy.today
    link
    fedilink
    English
    arrow-up
    0
    ·
    26 days ago

    I know this isn’t sexy but I’ve been working on my documentation. Getting configs etc properly versioned in my gitea instance, readmes updated etc. My memory is not what it once was and I need the hints when things break.

    • d416@lemmy.world
      link
      fedilink
      English
      arrow-up
      0
      ·
      26 days ago

      Same here. I got Gemini to write a shell script for me that I can run on my Proxmox host which will output all of my configs to a .txt file. I asked it to format the output in a way a LLM can understand so I can just copy/paste it next time I need to consult AI.

      • HandBash@lemmy.world
        link
        fedilink
        English
        arrow-up
        0
        ·
        26 days ago

        This sounds interesting. Although I’m not even sure of what sort of configuration I would need to keep between reinstalls lol.

  • AustralianSimon@lemmy.world
    link
    fedilink
    English
    arrow-up
    0
    ·
    edit-2
    26 days ago

    So I recently sandboxed a webapp I am getting ready to launch.

    Basically Unifi switch > Vlan port > Server > Hosting Webapp instances, worker instance, cloudflared and DBs.

    Pretty chuffed at the docker config actually. Just configuring my WAF and tunnel settings with Cloudflare to reduce the scanning from VPS providers. Anyone have a solution or will I need to configure some sort of nginx instance to do it as Cloudflare only allows a certain length for each WAF rule for free.

    Side thought, does anyone know of a tutorial for CICD to auto build my containers and deploy? I’ve been reading github and codeberg docs and playing around to no avail. I’m temped to just write a go script to handle it on my server.