fenndev

joined 2 years ago
sorted by: new top controversial old
Why is everyone using Tailscale? Edit: I meant Traefik in c/selfhosted@lemmy.world
[–] fenndev@leminal.space 77 points 1 year ago (2 children)

Tailscale is a VPN. Caddy is a reverse proxy. I'm not sure why you're comparing the two, unless you meant Traefik?

1
[Request] Retro-Themed/Inspired Terminal-Centric Setups (leminal.space)
 

Hey everyone! I'm looking for some inspiration for retro-themed or retro-inspired setups. Retro-futurism is cool too! Especially Window Manager setups. I appreciate anything y'all can give.

0
(Actually Useful) Decentralized Infrastructure/Distributed Computing Projects? (leminal.space)
 

I've been seeing news about the Helium network for quite a while now and have been curious about it. However, it has been near-impossible to find information on it that isn't either crypto-hypeman speak or "lol crypto LMAO". Not a big fan of crypto myself - just interested in the prospect of contributing to a large-scale infrastructure or computing project. Any recommendations for similar things, or in this 'genre', I suppose?

"SO proof" distro in c/linux@lemmy.ml
[–] fenndev@leminal.space 0 points 1 year ago

"Someone mentions a distro they like" ≠ shilling. I use Bazzite and have been for months. Before that, used Nobara, EndeavourOS, and vanilla Fedora, along with a number of others I tried when I was distro-hopping. Wholeheartedly believe that Bazzite is currently the best generally-available Linux distro for gaming and is up there for general use. It's not perfect, but nothing is - it gets close for the use-cases I mentioned, though.

[Help Requested] Port Forwarding w/ Qbittorrent & Gluetun Docker Compose? in c/selfhosted@lemmy.world
[–] fenndev@leminal.space 1 points 1 year ago (3 children)

Question: Does the green globe icon always indicate that it's working?

1
[Help Requested] Port Forwarding w/ Qbittorrent & Gluetun Docker Compose? (leminal.space)
submitted 1 year ago* (last edited 1 year ago) by fenndev@leminal.space to c/selfhosted@lemmy.world
5 comments fedilink
 

I'm trying to get Qbittorrent set up within Docker on my home server and want to configure port forwarding through my VPN for all of those Linux ISOs. Ideally, I also want to get a pipeline going with the *arr stack. I've heard the easiest way to do this is with Gluetun but I can't for the life of me figure it out or know how to test it. Anyone been through something similar?

Here is my current Docker Compose for reference:


services:
  gluetun:
    image: qmcgaw/gluetun:latest
    container_name: gluetun
    cap_add:
      - NET_ADMIN
    environment:
      - VPN_SERVICE_PROVIDER=airvpn
      - VPN_TYPE=wireguard
      - WIREGUARD_PRIVATE_KEY="[redacted]"
      - WIREGUARD_PRESHARED_KEY="[redacted]
      - WIREGUARD_ADDRESSES=10.131.184.14/32
      - FIREWALL_VPN_INPUT_PORTS=8069
      - SERVER_COUNTRIES=United States
    devices:
      - /dev/net/tun:/dev/net/tun
    volumes:
      - /home/fenndev/.config/gluetun:/config
    ports:
      - 9091:9091  # WebUI
     - 6881:6881
      - 6881:6881/udp
    restart: unless-stopped

qbit:
    image: lscr.io/linuxserver/qbittorrent:latest
    container_name: qbit
    network_mode: "service:gluetun"
    environment:
      - PUID=1000
      - PGID=1000
      - TZ=America/Los_Angeles  # Timezone set to Los A>
      - WEBUI_PORT=9091  # Qbittorrent webUI port
    volumes:
      - /home/fenndev/.config/qbit:/config  # Configura>
      - /home/fenndev/torrents:/downloads  # Torrent da>
    depends_on:
      glueten:
        condition: service_healthy
[SOLVED] Traefik + Vaultwarden 502 Error in c/selfhosted@lemmy.world
[–] fenndev@leminal.space 0 points 2 years ago (1 children)

I have both web and websecure set up as entrypoints.

0
[SOLVED] Traefik + Vaultwarden 502 Error (leminal.space)
submitted 2 years ago* (last edited 2 years ago) by fenndev@leminal.space to c/selfhosted@lemmy.world
3 comments fedilink
 

Edit: Thanks for the help, issue was solved! Had Traefik's loadbalancer set to route to port 8081, not the internal port of 80. Whoops.

Intro

HI everyone. I've been busy configuring my homelab and have run into issues with Traefik and Vaultwarden running within Podman. I've already successfully set up Home Assistant and Homepage but for the life of me cannot get things working. I'm hoping a fresh pair of eyes would be able to spot something I missed or provide some advice. I've tried to provide all the information and logs relevant to the situation.

Expected Behavior:

  1. Requests for *.fenndev.network are sent to my Traefik server.
  2. Incoming HTTPS requests to vault.fenndev.network are forwarded to Vaultwarden
    • HTTP requests are upgraded to HTTPS
  3. Vaultwarden is accessible via https://vault.fenndev.network/ and utilizes the wildcard certificates generated by Traefik.

Quick Facts

Overview

  • I'm running Traefik and Vaultwarden in Podman, using Quadlet
  • Traefik and Vaultwarden, along with all of my other services, are part of the same fenndev_default network
  • Traefik is working correctly with Home assistant, Adguard Home, and Homepage, but returns a 502 Bad Gateway error with Vaultwarden
  • I've verified that port 8081 is open on my firewall and my service is reachable at {SERVER_IP}:8081.
  • 10.89.0.132 is the internal Podman IP address of the Vaultwarden container

Versions

Server: AlmaLinux 9.4

Podman: 4.9.4-rhel

Traefik: v3

Vaultwarden: alpine-latest (1.30.5-alpine I believe)

Error Logs

Traefik Log:

2024-05-11T22:09:53Z DBG github.com/traefik/traefik/v3/pkg/server/service/proxy.go:100 > 502 Bad Gateway error="dial tcp 10.89.0.132:8081: connect: connection refused"

cURL to URL:

[fenndev@bastion ~]$ curl -v https://vault.fenndev.network/
*   Trying 192.168.1.169:443...
* Connected to vault.fenndev.network (192.168.1.169) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
*  CAfile: /etc/pki/tls/certs/ca-bundle.crt
* TLSv1.0 (OUT), TLS header, Certificate Status (22):

Config Files

vaultwarden.container file:

[Unit]
Description=Password 
After=network-online.target
[Service]
Restart=always
RestartSec=3

[Install]
# Start by default on boot
WantedBy=multi-user.target default.target

[Container]
Image=ghcr.io/dani-garcia/vaultwarden:latest-alpine
Exec=/start.sh
EnvironmentFile=%h/.config/vault/vault.env
ContainerName=vault
Network=fenndev_default

# Security Options
SecurityLabelType=container_runtime_t
NoNewPrivileges=true                                    
# Volumes
Volume=%h/.config/vault/data:/data:Z

# Ports
PublishPort=8081:80

# Labels
Label=traefik.enable=true
Label=traefik.http.routers.vault.entrypoints=web
Label=traefik.http.routers.vault-websecure.entrypoints=websecure
Label=traefik.http.routers.vault.rule=Host(`vault.fenndev.network`)
Label=traefik.http.routers.vault-websecure.rule=Host(`vault.fenndev.network`)
Label=traefik.http.routers.vault-websecure.tls=true
Label=traefik.http.routers.vault.service=vault
Label=traefik.http.routers.vault-websecure.service=vault

Label=traefik.http.services.vault.loadbalancer.server.port=8081

Label=homepage.group="Services"
Label=homepage.name="Vaultwarden"
Label=homepage.icon=vaultwarden.svg
Label=homepage.description="Password Manager"
Label=homepage.href=https://vault.fenndev.network/

vault.env file:

LOG_LEVEL=debug
DOMAIN=https://vault.fenndev.network/
1
[Request] Any Guides to FFMPEG, Transcoding, Codecs, and Metadata? (leminal.space)
 

I have a collection of about ~110 4K Blu-Ray movies that I've ripped and I want to take the time to compress and store them for use on a future Jellyfin server.

I know some very basics about ffmpeg and general codec information, but I have a very specific set of goals in mind I'm hoping someone could point me in the right direction with:

  1. Smaller file size (obviously)
  2. Image quality good enough that I cannot spot the difference, even on a high-end TV or projector
  3. Preserved audio
  4. Preserved HDR metadata

In a perfect world, I would love to be able to convert the proprietary HDR into an open standard, and the Dolby Atmos audio into an open standard, but a good compromise is this.

Assuming that I have the hardware necessary to do the initial encoding, and my server will be powerful enough for transcoding in that format, any tips or pointers?

Streaming Video Discord Replacements for Linux? in c/linux@lemmy.ml
[–] fenndev@leminal.space 0 points 2 years ago

For what it's worth, I've been running alternative Discord clients for years (Webcord, discord-screenaudio, and now Vesktop/Vencord) and haven't encountered any issues or bans. By far, the most polished and well integrated is Vesktop/Vencord. I don't consider my Discord account worth risking either, but given that I've yet to see a verifiable report of someone losing access to Discord for using an alternate client (even the ones that enable Nitro subscription features), I think I'm pretty safe.

Personally, I'd say risk it for the biscuit. There are some hacky workarounds but all of them are annoying to set up and finicky. As for alternative platforms, I'm not sure...

Unexpected-Keyboard: A lightweight Android keyboard. in c/opensource@lemmy.ml
[–] fenndev@leminal.space 0 points 2 years ago (2 children)

I use it alongside SwiftKey (with Internet access disabled). It's a godsend in Termux.