It’s Sunday somewhere already so why wait?

Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.

I’ll post my ongoing things later/tomorrow but I didn’t want to forget the post again.

  • marcus_too@lemmy.todayEnglish
    11·
    6 days ago

    I know this isn’t sexy but I’ve been working on my documentation. Getting configs etc properly versioned in my gitea instance, readmes updated etc. My memory is not what it once was and I need the hints when things break.

    • d416@lemmy.worldEnglish
      2·
      6 days ago

      Same here. I got Gemini to write a shell script for me that I can run on my Proxmox host which will output all of my configs to a .txt file. I asked it to format the output in a way a LLM can understand so I can just copy/paste it next time I need to consult AI.

      • HandBash@lemmy.worldEnglish
        2·
        6 days ago

        This sounds interesting. Although I’m not even sure of what sort of configuration I would need to keep between reinstalls lol.

  • pebbles@sh.itjust.worksEnglish
    4·
    5 days ago

    My girlfriends phone was having issues connecting to self hosted servers, so I set her DNS from private to network default. Hope this helps any android users that may have issues.

  • JustEnoughDucks@feddit.nlEnglish
    13·
    7 days ago

    Crazy enough, I have everything going that I want to on my server!

    • *arr suite and jellyfin
    • traefik reverse proxy with crowdsec + bouncer for some sites (e.g. not documents or media)
    • paperless-ngx for documents
    • immich for photos
    • leantime to manage personal projects
    • Book stack for a personal wiki
    • calibre-web for my library
    • syncthing for file and music syncing so I don’t have to stream music
    • valheim server for me and my friends
    • boinc for turning my server to a productive heater in the winter
    • home assistant for my in-renovation smart home

    As far as my server goes, I have everything I need. Maybe setting up something for sharing files over the web if needed. I used nextcloud for that before it killed itself completely and I realized I never really needed it.

    Next is working on my smart home because we had to fully strip the house to renovate. KNX first, zwave for things that KNX doesn’t have or are crazy expensive, ESPHome for everything that the other two can’t accomplish. Minimal 2.4GHz interference and don’t have to rely as much as possible on flaky wireless in a brick house.

  • UnPassive@lemmy.worldEnglish
    4·
    6 days ago

    Today I’m experimenting with Ansible. Wanna try setting up a Docker hosted RSS reader with it. Hopefully will write up controls for my whole Docker server with Ansible once I’m more familiar.

  • OhVenus_Baby@lemmy.mlEnglish
    8·
    6 days ago

    I’m trying to figure out setting up TrueNAS scale and docker for the first time. Building a NAS and self hosting a few things from an old all in one mini PC.

  • Anonymouse@lemmy.worldEnglish
    4·
    6 days ago

    I’ve been trying to learn K8s and more recently the Gateway API. The struggles are that most Helm charts don’t know Gateway (most are barely Ingressroute) and I’m trying to find a solution to one service affecting the other gateways.when a service cannot find a pod, the httproute fails and when one route fails, the ingress fails. It’s a weird cascading problem.

    Right now, I’m considering adding a secondary service to each gateway that resolves to a static error page. I haven’t looked into it yet; it cane to me in the brief moment of clarity before I fell asleep last night.

    Also, I may be doing everything wrong, but I am learning and learning is fun.

  • 3dmvr@lemm.eeEnglish
    4·
    6 days ago

    Moved my fediverse apps friendica, lemmy, 35c. (only user is me) to one server since it was overkill having 2 barely using 8% if that if their cpu/ram. Suprisingly easy with yunohost backups, remade users and restored backup if just the apps. Updated enhance panel, switched the sites im making for family to use as a portfolio for local webdev to ols, fairly easy, was using wordpress templates wrong so I fixed that and redid the home pages, now I feel less confident with wordpress and wonder if ive always made sites wrong, think i just forgot since its been years.

      • 3dmvr@lemm.eeEnglish
        2·
        5 days ago

        I initially fd it up because I didnt deselect everything but the apps, but I at least thought to backitup and dload it locally beforehand so it was an easy/quick recovery

      • 3dmvr@lemm.eeEnglish
        2·
        5 days ago

        I have no idea lmao, prob a typo lol, I had streams and pleroma as well

  • arcosenautic@lemmy.worldEnglish
    4·
    6 days ago

    Setting up let’s encrypt auto cert renewal with ACME. Also looking to setup some monitoring service, basic stuff like CPU, memory usage etc. If anyone has recommendations that have an android app available, that would be awesome.

    • Darkassassin07@lemmy.caEnglish
      4·
      6 days ago

      ACME.sh? I love that little tool.

      Cert renewal via DNS-01, independent of any other services or ports. Set it up like 7 years ago and haven’t had to touch it since.

    • tofuwabohu@slrpnk.netOPEnglish
      3·
      6 days ago

      I’m personally using Prometheus Stack and like it, but I just check Grafana in my Android browser. I think Zabbix has an Android app but I don’t know if it has as many possibilities as Prometheus.

  • linuxguy@lemmy.gregw.usEnglish
    7·
    7 days ago

    Looking for a self-hosted period tracking app with companion android app. Have done literally zero investigation at this point but it’s on my todo.

      • MonkeMischief@lemmy.todayEnglish
        2·
        6 days ago

        That’s definitely one of those things I found bizarre and awful yet…entirely unsurprising. I can see how selling that data probably sounds like such a lucrative edge to marketing companies.

        how did we as society come to accept this?

        By not establishing ethical lines high-voltage containment fences on the advertising industry quickly enough, and letting them convince us “this is just how business works”, when their entire existence is about finding the scummiest ways to hack free will for profit.

    • merthyr1831@lemmy.mlEnglish
      1·
      6 days ago

      IMO you should stick with a local device store only. If you’re worried about the state getting hold of the data, having any backups is gonna be a liability.

  • gever4ever@lemmy.worldEnglish
    3·
    6 days ago

    I setup a VPN for my moms Synology so I can request and download media for her through my local qbit instance and using Radarr/Sonarr to move the files over.

    I have a problem where both arrs don’t auto start when I power up the debian VM in Proxmox even though the daemon is running and restart policy is set to always…

    She doesn’t make a lot of requests so I just go and start them manually but I would eventually like to get it fixed…

  • hiddenSin@lemmy.worldEnglish
    8·
    7 days ago

    I have setup a immich docker container and am slowly moving users and images from google photos.

    • xantonin@lemmy.worldEnglish
      1·
      7 days ago

      Replacing Google Photos is still on my to-do list. How do you like Immich so far? Did you compare it to any alternatives?

      • kalpol@lemmy.worldEnglish
        1·
        7 days ago

        Interested in this too - immich gets so much viral hype I’m a little suspicious of it

        • Darkassassin07@lemmy.caEnglish
          2·
          6 days ago

          I set it up a couple weeks ago. It’s alright; facial recognition works pretty well, the files are easy to manage, and setup was pretty straightforward (using docker).

          Searching for images works fairly well, as long as you’re searching for content and not text. Searching ‘horse’ for example does a pretty good job showing you your pictures of horses, but often misses images containing the word horse. Not always, but it’s noticeable to me.

          The mobile apps work well too; syncing files in the background as they appear, optionally creating albums based on folders. Two things I find missing though are the ability to edit faces/people in an image (you’ve gotta do that from a browser), and the ability to see what albums an image is in and quickly navigate to one.

          It’s a developing project that’s well on it’s way. A good choice imo.

  • Owljfien@lemm.eeEnglish
    8·
    7 days ago

    I’m eternally sitting here putting off migrating my homelab from docker to rootless podman due to some rather janky patterns I use. It might be super smooth or it might not so instead I just wait in endless decision paralysis

  • njordomir@lemmy.worldEnglish
    2·
    5 days ago

    I’m running Nextcloud and PaperlessNXG on my servers. Over the last few months I tested out my remote management. Now that I’m back home, I’ve been making a few adjustments based on my learnings. Firstly, Wireguard is slower than a turtle, while Tailscale has been a little bit faster. I’m guessing this is due to my upload speed and switching to fiber may fix this.

    I’d also like to add TubeArchivist back in since there’s some great videos that I don’t trust Google to preserve given the direction things are going.

    The folks on the “privacy” Lemmy gave me some good tips on app replacements and after making a big spreadsheet with all my apps, their licenses, etc., I cut down my remaining proprietary apps by at least 50% and I only have a few proprietary essentials that still depend on Google Play. I’ve been meaning to do this for a long time and I almost have a path towards completely removing all Google, Amazon, and Microsoft products from my life.

    Next, I’d like to set up Wander to eventually get rid of Garmin/Strava but I haven’t been able to figure it out and I’m still locked in to some degree because of my hardware (Garmin watch). The Ring doorbell has to be the next thing to go, but I’m exhausted and haven’t had the motivation to start a new project until the dust settles from the last one.

  • MonkeMischief@lemmy.todayEnglish
    5·
    6 days ago

    I have a family member across the country that wants to break from Google and really isn’t the type to self-host themselves, and I connect to my self hosted NextCloud solely through TailScale.

    NextCloud permissions seem easy enough, but I’m researching how to add them to my Tailnet safely to avoid potential compromise of my network if something happens to their system.

    Presuming this involves ACLs, which look intimidating, but I’m doing some research on that.

    • rumba@lemmy.zipEnglish
      6·
      6 days ago

      ACLs are not a bad as they look.

      Get your nextcloud instance hooked into tailscale

      You just need a sample file

      Group for admins, add yourself

      Tag owner for internal is admins Tag owner for nextcloud is admins

      Action accept, src admin, dst *:*

      Action accept, src nextcloud, dst nextcloud *.

      Then tag your nextcloud ts connection as nextcloud in the webadmin

      Tag all your other clients admin in the webadmin

      Note: you can’t just paste what I put here you need to find a viable template and then follow along. I’m on a mobile device where I would give you something more finalized

      Edit: tag your fam client as nextcloud

      Something like this:
      I stripped down one of my configs, I took out SSH, I don’t think it requires it

      {
	"groups": {
		"group:admins": [
			"[email protected]",
		],
	},

	"tagOwners": {
		"tag:admin":    ["group:admins"],
		"tag:nextcloud": ["group:admins"],
	},

	"acls": [

		{
			"action": "accept",
			"src":    ["tag:admin"],
			"dst":    ["*:*"],
		},

		{
			"action": "accept",
			"src":    ["tag:nextcloud"],
			"dst":    ["tag:nextcloud:*", "autogroup:internet:*"],
		},

	],

}
    • tofuwabohu@slrpnk.netOPEnglish
      2·
      6 days ago

      Is exposing it to the internet not an option? Boarding more family members on could be cool.

      • MonkeMischief@lemmy.todayEnglish
        2·
        5 days ago

        It might be some way, however not easily. My mega-corpo ISP blocks incoming connections on common hosting ports, because they want to keep the network safe sell expensive home-business plans. Lol

        I’m also very amateur at this as I go along, and I’m not sure I’m ready to deal with the fallout of missing some security step and getting my server botted or ransomwared lol.

        I haven’t done the hardware stuff with setting up my own router/firewall box either, for instance.

        So Tailscale works really well for me by seemingly magically bypassing a lot of that nonsense and giving me less to worry about. They allow 3 users for free, but have a relatively inexpensive family plan for like 6 users as well, if that becomes necessary.

        I mainly just need to tell them not to try and use my server as an exit node if they’re across the country 😂.

        But yeah definitely, I’m using this as a way to test the waters for running service alternatives as the web we knew collapses around us lol. I’m not ready to be running something people really rely on yet, though. :)

      • sugar_in_your_tea@sh.itjust.worksEnglish
        4·
        6 days ago

        I expose mine for convenience, and I use multiple layers of security to reduce risk:

        • Cloudflare protections at edge
        • IP filtering at VPS
        • connection from VPS to NAS is over Wireguard
        • TLS handled in my network (so no snooping at VPS)
        • all exposed services are in containers with minimal access

        That cuts most of the issues.

  • Pika@sh.itjust.worksEnglish
    5·
    7 days ago

    I’ve recently setup an recipe archival project using tandoor, I’m working on converting all my grandparents fading old as dust cooking recipes from their misc handwritten cursive notecards to digital.

    Setup was uneventful but it took a little research to figure out how to use a remote postgres server, turns out the app doesn’t give an error when it can’t connect to the server, it just fails to run

    Have to say the actual program itself is absolutely absurd and how they choose their permissions, it breaks all conventional and took quite a bit to get used to.