I understand this could be posted in a hardware forum or I could use a stats comparison tool (and I've poked around a fair bit as is), but I'm curious, specifically from the self-hosted, roll-your-own NAS perspective, does the Minisforum n5 Pro seem like a decent machine for self-hosting? Any impressions? What percebtage of this is the marketing hype-train and what percentage would still be good if it shipped unbranded in a cardboard box. What would you expect this to cost?

https://www.minisforum.com/pages/n5_pro

Currently I'm running one of the DS-Series Synology NAS but I want to remove the Synology dependency because I don't fully trust them to deliver and not remove features. I would rather give the TrueNaAS thing a try (or something in that direction) now so I'm prepared to jump ship when I need to. I'm lucky enough to be able to buy a decent NAS and hang onto it for a while, but I want to come in below the point where an extra $100 doesn't really get me much anymore.

I am specifically interested in the hardware because I don't plan to use the default OS.

Hello! How are folks self-hosting online storage, similar to Google Drive?

Some options I've found:

• https://filebrowser.org/ (maintenance-only mode)
• https://www.seafile.com/en/home/ (weird disk layout scares me)
• https://tinyfilemanager.github.io/ (i like simple!)
• https://github.com/mickael-kerjean/filestash

A bunch more: https://github.com/awesome-selfhosted/awesome-selfhosted?tab=readme-ov-file#file-transfer---web-based-file-managers

I mainly just need basic file management features. I don't plan to share files outside of my tailscale VPN. I do need to support multiple users though.

I'm not considering Nextcloud because that seems too big. I'm also not considering syncthing for this project because I don't want copies on multiple devices.

I'm currently just using ssh+nautilus and that's worked great for just me, but something similar to Google Drive would be easier to onboard my family.

Hi everyone! 👋

Three months ago, I posted about ChartDB - a self-hosted, open-source tool for visualizing and designing your database schemas. Since then, we’ve shipped tons of new features and fixes, and we’re excited to share what’s new!

Why ChartDB?

• ✅ Self-hosted - Full control, deployable anywhere via Docker
• ✅ Open-source - Actively maintained and community-driven
• ✅ No AI/API required - Deterministic SQL export, no external calls
• ✅ Modern & Fast - Built with React + Monaco Editor
• ✅ Multi-DB Support - PostgreSQL, MySQL, MSSQL, SQLite, ClickHouse, Cloudflare D1… and now Oracle!

Latest Updates (v1.11 → v1.13)

• 🆕 Oracle Support - Import and visualize Oracle schemas
• 🆕 Custom Types for Postgres - Enums and composite types
• 🆕 Areas for Diagrams - Group tables visually into logical zones
• Transparent Image Export - Great for docs & presentations
• PostgreSQL SQL Import - Paste DDL scripts to generate diagrams
• Improved Canvas UX - Faster, smoother, less lag
• Inline Foreign Key DDL - Clean, readable SQL exports
• Better JSON Import - Sanitize broken JSON gracefully
• Read-Only Mode - View diagrams without editing access
• DBML Enhancements - Support for comments, enums, inline refs

…plus 40+ bug fixes and performance improvements

🧠 What’s Next?

• AI-powered foreign key detection
• Git integration for diagram versioning
• More database support & collaboration tools

🔗 GitHub: https://github.com/chartdb/chartdb
🔗 Docs: https://docs.chartdb.io/ 🔗 Live Demo / Cloud Version: https://chartdb.io/

We’d love to hear your feedback, contributions, or just how you're using it.
Thanks for all the support so far! 🙌

So, right out the gate, I realize Watchtower has been abandoned. I get that. Still, it's a great app. 95% of the time, it works every time.

The issue I have is as follows:

INFO[93549] Found new searxng/searxng:latest image (5613a99caf5d) 
INFO[93565] Found new prom/prometheus:latest image (b5239da13ab0) 
INFO[93584] Found new ghcr.io/karakeep-app/karakeep:latest image (c5fcb1a653c6) 
INFO[93592] Stopping /CADVISOR-PROMETHEUS (342680d2a684) with SIGTERM 
INFO[93593] Creating /CADVISOR-PROMETHEUS                
INFO[93594] Stopping /SEARXNG (0842827f17a9) with SIGTERM 
INFO[93597] Creating /SEARXNG                            
ERRO[93597] Error response from daemon: the container-wide MAC address must match the endpoint-specific MAC address for the main network, or be left empty 
INFO[93597] Removing image 9e24e9a9806c                  
INFO[93597] Session done                                  Failed=1 Scanned=38 Updated=2 notify=no

It doesn't do this everytime, and it's not one particular container. It seems random. For the example of SearxNG, I have not specified a MAC address.

docker run -d \
  --name searxng \
  -p 8989:8080 \
  -v /srv/docker/searxng/data:/etc/searxng \
  -e SEARXNG_BASE_URL="https://" \
  -e SEARXNG_INSTANCE_NAME="SearxNG" \
  -e SEARXNG_CONTACT_INFO="mail.com" \
  -e SEARXNG_LANGUAGE="en-US" \
  -e SEARXNG_AUTOCOMPLETE="duckduckgo" \
  -e SEARXNG_THEME="simple" \
  -e SEARXNG_OUTGOING_METHOD="default" \
  -e SEARXNG_ENABLE_METRICS="true" \
  -e SEARXNG_ENABLE_CAPTCHA="false" \
  -e SEARXNG_ENABLE_INFINITE_SCROLL="true" \
  -e SEARXNG_ENABLE_PIWIK_ANALYTICS="false" \
  -e SEARXNG_ENABLE_ADVANCED_SEARCH="true" \
  -e SEARXNG_ENABLE_PRIVATE_RESULTS="true" \
  -e SEARXNG_ENABLE_TORIFICATION="false" \
  -e SEARXNG_ENABLE_HTTPS_EVERYWHERE="true" \
  -e SEARXNG_ENABLE_PROXY="false" \
  -e SEARXNG_ENABLE_PLUGINS="true" \
  searxng/searxng

In fact, I've never specified a specific MAC for any of my containers, and just let Docker do what it do. I'm just wondering if anyone has run up on this issue, and what did you do to remediate it, besides use another updater app? I like Watchtower, but only 95% of the time. LOL

It's not a huge issue spinning the container back up. Takes less than 30 sec. However, that's not how it's supposed to work, so I seek input.

ETA: Just adding this for anyone who is testing the Watchtower fork or are thinking about it. Day 2, and everything is running just fine. I have not had any of the issues that I had with OG Watchtower:

time="2025-07-01T17:28:21Z" level=info msg="Found new netdata/netdata:edge image (7cbd870f51b0)"
time="2025-07-01T17:28:42Z" level=info msg="Found new influxdb:2 image (b4355848b856)"
time="2025-07-01T17:28:54Z" level=info msg="Found new ghcr.io/karakeep-app/karakeep:latest image (c5fcb1a653c6)"
time="2025-07-01T17:29:03Z" level=info msg="Found new redis:latest image (ed3a2af6d0d4)"
time="2025-07-01T17:29:04Z" level=info msg="Stopping /CADVISOR-REDIS (84a28cf8904d) with SIGTERM"
time="2025-07-01T17:29:06Z" level=info msg="Stopping /ROOT-INFLUXDB2-1 (a14e51a1b7db) with SIGTERM"
time="2025-07-01T17:29:07Z" level=info msg="Stopping /NETDATA (bde1241c0073) with SIGTERM"
time="2025-07-01T17:29:09Z" level=info msg="Creating /NETDATA"
time="2025-07-01T17:29:09Z" level=info msg="Creating /ROOT-INFLUXDB2-1"
time="2025-07-01T17:29:10Z" level=info msg="Creating /CADVISOR-REDIS"
time="2025-07-01T17:29:10Z" level=info msg="Session done" Failed=0 Scanned=38 Updated=4 notify=no
time="2025-07-02T17:28:07Z" level=info msg="Found new openlistteam/openlist:latest image (0926eda3de9a)"
time="2025-07-02T17:28:23Z" level=info msg="Found new portainer/portainer-ce:latest image (71de3839351a)"
time="2025-07-02T17:28:32Z" level=info msg="Found new ghcr.io/karakeep-app/karakeep:latest image (c5fcb1a653c6)"
time="2025-07-02T17:28:57Z" level=info msg="Found new bigbeartechworld/big-bear-btop:latest image (737e9af25da3)"
time="2025-07-02T17:29:01Z" level=info msg="Stopping /BTOP-PLUS-PLUS (751299b8b022) with SIGTERM"
time="2025-07-02T17:29:04Z" level=info msg="Stopping /PORTAINER (aa754cb14780) with SIGTERM"
time="2025-07-02T17:29:05Z" level=info msg="Stopping /OPENLIST (2ca56a872944) with SIGTERM"
time="2025-07-02T17:29:06Z" level=info msg="Creating /OPENLIST"
time="2025-07-02T17:29:06Z" level=info msg="Creating /PORTAINER"
time="2025-07-02T17:29:07Z" level=info msg="Creating /BTOP-PLUS-PLUS"
time="2025-07-02T17:29:08Z" level=info msg="Session done" Failed=0 Scanned=38 Updated=4 notify=no

cross-posted from: https://lemmy.world/post/32242829

Chapters 00:00 Intro 01:47 Buying cheap and power hungry homelab gear 04:53 How to configure C-States? 07:59 Does Powertop hurt your performance? 08:43 How to find out what prevents HDD spindown? 10:05 Is an all-SSD NAS worth it? 12:21 ARM-powered homelab? 13:51 Exposing your homelab services? 16:40 TrueNAS/Unraid vs. a regular Linux distro? 17:59 My backup strategy 19:32 Getting friends and family into backups 20:05 Cheap VPS for hosting Headscale 20:48 To UPS or not to UPS? 21:39 My storage setup

so i have the server i need and everything but it all comes crashing down with pterodactyl as I don't know much on it can someone help or guide me please

What do you guys think of installing casaos ontop of openmediavault? Good or bad idea. This guy did it. https://youtu.be/UWlrodHF1EE I think its interesting but is it good for normal people?

As organizations are looking to reclaim their digital sovereignty, IONOS and Nextcloud are building the fully featured office suite “Nextcloud Workspace”: a powerful Microsoft 365 alternative. As long-standing partners, we have the expertise to enable large companies and organizations with an all-round office suite as European answer to US products. Announced at the Nextcloud Summit earlier this month, this collaboration for digitally sovereign office software that meets the highest data protection requirements will launch in 2025.

To meet the rigorous needs of public institutions and enterprises, Nextcloud Workspace will integrate a full range of collaboration tools, including file storage and sharing, document editing, email, calendaring, video conferencing, chat, and AI-powered productivity features. Of course, this offering will be fully GDPR compliant and securely hosted in Europe.

Organizations can trust Nextcloud to deliver a fully integrated office and collaboration suite, thanks to the company’s experience in creating the world’s leading private cloud platform. IONOS, Europe’s largest cloud and hosting provider, is the ideal partner to ensure full GDPR compliance and protection from US legal exposure. Hosting will be managed exclusively in Germany, at IONOS’ extensive network of data centers.

(I am not affiliated with the project at all, just an end user.)

Announcement: Retirement of Readarr

We would like to announce that the Readarr project has been retired. This difficult decision was made due to a combination of factors: the project's metadata has become unusable, we no longer have the time to remake or repair it, and the community effort to transition to using Open Library as the source has stalled without much progress.

Third-party metadata mirrors exist, but as we're not involved with them at all, we cannot provide support for them. Use of them is entirely at your own risk. The most popular mirror appears to be rreading-glasses.

Without anyone to take over Readarr development, we expect it to wither away, so we still encourage you to seek alternatives to Readarr.

Key Points

• Effective Immediately: The retirement takes effect immediately. Please stay tuned for any possible further communications.
• Support Window: We will provide support during a brief transition period to help with troubleshooting non metadata related issues.
• Alternative Solutions: Users are encouraged to explore and adopt any other possible solutions as alternatives to Readarr.
• Opportunities for Revival: We are open to someone taking over and revitalizing the project. If you are interested, please get in touch.
• Gratitude: We extend our deepest gratitude to all the contributors and community members who supported Readarr over the years.

Thank you for being part of the Readarr journey. For any inquiries or assistance during this transition, please contact our team.

Sincerely,
The Servarr Team

The github repo has been archived.

It never made sense to me to put password managers in the cloud. Regards to what you intend it to do, you’re making it accessible to a wider audience than necessary. And yet, I’m using iCloud. It’s time for a change.

I’m thinking of just running a locally hosted password manager on my home server and letting my devices sync with it somehow when I’m at home. I have a VPN into my home network when I’m away that automatically triggers when I leave the house, so even that’s not that big an issue, but I’m really not familiar with what’s gonna cleanly integrate with all my stuff and be easy to use. All I know is I wanna kill the cloud functionality of my setup.

I already have a jellyfish server so I figured I would just throw this onto that. Any suggestions?

Hello Self-Hosters,

What is the best practice for backing up data from docker as a self-hoster looking for ease of maintenance and foolproof backups? (pick only one :D )

Assume directories with user data are mapped to a NAS share via NFS and backups are handled separately.

My bigger concern here is how do you handle all the other stuff that is stored locally on the server, like caches, databases, etc. The backup target will eventually be the NAS and then from there it'll be double-backed up to externals.

1. Is it better to run #cp /var/lib/docker/volumes/* /backupLocation every once in a while, or is it preferable to define mountpoints for everything inside of /home/user/Containers and then use a script to sync it to wherever you keep backups? What pros and cons have you seen or experienced with these approaches?

2. How do you test your backups? I'm thinking about digging up an old PC to use to test backups. I assume I can just edit the ip addresses in the docker compose, mount my NFS dirs, and failover to see if it runs.

3. I started documenting my system in my notes and making a checklist for what I need to backup and where it's stored. Currently trying to figure out if I want to move some directories for consistency. Can I just do docker-compose down edit the mountpoints in docker-compose.yml and run docker-compose up to get a working system?

Announcing Linkwarden 2.11

Today, we're excited to announce the release of Linkwarden 2.11! 🥳 This update brings significant improvements and new features to enhance your experience.

For those who are new to Linkwarden, it’s basically a tool for saving and organizing webpages, articles, and documents all in one place. It’s great for bookmarking stuff to read later, and you can also share your resources, create public collections, and collaborate with your team. Linkwarden is available as a Cloud subscription or you can self-host it on your own server.

This release brings a range of updates to make your bookmarking and archiving experience even smoother. Let’s take a look:

What’s new:

✨ Customizable Readable View

You can now configure the font style, font size, line height, and line width for the readable view. This allows you to create a more personalized reading experience that suits your preferences.

This feature essentially gives Linkwarden what other read-it-later apps like Pocket offered.

📝 Add Notes to Highlights

You can now add notes to your highlights in the readable view and view them in the highlights sidebar. This is a great way to jot down your thoughts or insights while reading, making it easier to remember key points later.

⚙️ Customizable Dashboard

The dashboard has received a major overhaul! You can now customize it to show the information that matters most to you. Choose from various widgets like recent links, pinned links, or your saved collections. This makes it easier to access the content you care about right from the dashboard.

📥 Import from Pocket

Good news for Pocket users! You can now import your saved links from Pocket into Linkwarden. This makes it easy to transition to Linkwarden without losing your existing bookmarks.

🌐 Crowdin translation

We’ve integrated Crowdin for translations, making it easier to contribute translations for Linkwarden. If you’re interested in helping out with translations, check out our Crowdin page.

To start translating a new language, please contact us so we can set it up for you. New languages will be added once they reach at least 50% translation completion.

🎨 Improved UI

Thanks to Shadcn UI, the user interface has been improved with a more modern and polished look. This update enhances the overall user interface, making it easier to use Linkwarden.

✅ And more...

There are also a bunch of smaller improvements and fixes in this release to keep everything running smoothly.

Full Changelog: https://github.com/linkwarden/linkwarden/compare/v2.10.2...v2.11.0

Want to skip the technical setup?

If you’d rather skip server setup and maintenance, our Cloud Plan takes care of everything for you. It’s a great way to access all of Linkwarden’s features—plus future updates—without the technical overhead.

We hope you enjoy these new enhancements, and as always, we'd like to express our sincere thanks to all of our supporters and contributors. Your feedback and contributions have been invaluable in shaping Linkwarden into what it is today. 🚀

QQ: how low power can I go for a #sbc machine to act as a #tailscale or #wireguard client? I guess it is possible to use a #raspberrypi zero w 2

Additionally: where can I get something like that in #London ?

Cc @selfhosted

Kind of an odd question, and something I think is a long shot, but here goes.

I’ve long known and used GitHub pages for the odd static site, and generally like the service, Microsoft ownership aside, for the purpose of free hosting for temporary sites.

I was just trying to figure out how to host an instance of something for a popup event and wanted to be able to have a url that was mostly readable/recognizable. So my mind jumped to GitHub pages. I know it possible to connect GH pages to a custom domain, I used to host my personal website like this, but is the reverse possible? Can I expose my self hosted services on

user.github.io

in some way?

What’s your go too (secure) method for casting over the internet with a Jellyfin server.

I’m wondering what to use and I’m pretty beginner at this

Hello,

as you may can guess i am here because i need some help because i want to self host some stuff and i am pretty new to this stuff. I did a loto f research and i came up with a lot of stuff. I will present you my thoughts and maybe some people here can tell me if i am good or not.

First the Hardware.

I did a lot of research and came up with a HP Elitedesk 800 G5 Mini as my home server.

It can hold 2x NVME SSD and 1xSata SSD. It has an Intel 5 9500T and is upgradeable to 64gb of Ram.

I can get one from ebay used for maybe 150-170€. Then i need to upgrade the ram because it comes with 8gb only. I thought maybee upgrade it to 32gb for now. And buy 2 nvme ssds both 2tb dont know which brand is cheap and good there. The sata ssd could be my operating system i have 1 with 120 gb at home hope this is enough.

The NVME SSDs are 1 for storage of mainly photos videos and maybe a small audio collection. The other is to make a backup of all this. (Mirrored)

Second Operating System

I know there area lot of things out there and i know people can recommend a lot of stuff but …. I wanna keep it as simple as possible for my first homeserver ... also i dont ´have too Much time with an 2 year old child. So my thoughts were using Ubuntu server with docker and portainer. Just that.

Third My apps and Stuff.

So mainly i wanted to run the following Applications on that.

-            Immich

-            Homeassisstant

-            Joplin

-            Audiobookshelf

-            Calibre Ereader

-            CalDav App for a Calender Sync with MY Phone and MY wife

-            Pi hole

-            Vaultwarden

-            And Homarr as a Dashboard for all of this.

Fourth Using all this from my phone

Thats the only part where i didnt have time to do some research how i use all off that safly from my phone.

I guess i need some kind of VPN for a secure use?

I hope that part is easy.

Son ow i shared all off my initial researches and thoughts. I hope i wrote not to much mistakes.

And i hope you guys can help me out a little.

Greetings

Today I can share a major development status update of XPipe, a connection hub that allows you to access your entire server infrastructure from your local desktop. It can make your life easier when working with any kind of servers by eliminating all the commonly tedious tasks that come up when interacting with remote systems, either from the terminal or from a graphical interface. XPipe comes with integrations for SSH, docker and other containers, various hypervisors, and more without requiring setup on your remote systems. You can also keep using your favourite text/code editors, terminals, password managers, shells, command-line tools, and more with it.

Docker compose

This release introduces support for docker compose. Containers in compose projects are grouped together and can be managed all at the same time via compose project entries.

The container state information shown is also improved, always showing the container state in combination with the system information.

Batch mode

There is now a batch mode available that allows you to select multiple systems via checkboxes and perform actions for the entire batch. This can include starting/stopping, automatically adding available subconnections, or running scripts on all selected systems.

You can toggle the batch mode in the top left corner.

Password managers

The password manager integrations have been upgraded:

• There is now support for KeePassXC
• All password manager integrations have been reworked to work out of the box without configuration
• There is now support to use password manager SSH agents more easily
• You can now unlock the xpipe vault with your password manager

Terminals

The terminal integration comes with many new features:

• There is now built-in support for the terminal multiplexers tmux, zellij, and screen. This is especially useful for terminals without tabbing support.
• There is also now built-in support for custom prompts with starship, oh-my-posh, and oh-my-zsh.
• On Windows, you now have the ability to use a WSL distribution as the terminal environment, allowing you to use the new terminal multiplexer integration seamlessly on Windows systems as well.

SSH

Various improvements were made to the SSH implementation:

• The SSH gateway implementation has been reworked so that you can now use local SSH keys and other identities for connections with gateways
• The VSCode SSH remote integration has been reworked to allow more connections it to be opened in vscode. It now supports essentially all simple SSH connections, custom SSH connections, SSH config connections, and VM SSH connections. This support includes gateways
• There is now built-in support to refresh an SSO openpubkey with the opkssh tool when needed
• There is now the option to enable verbose ssh output to diagnose connection issues better
• For VMs, you can now choose to not use the hypervisor host as SSH gateway and instead directly connect to the VM IP

Other

• Connection names, e.g. VM names, will now automatically update on refresh when they were changed
• You can now launch custom scripts within XPipe with a command output dialog window without having to open a terminal
• Various installation types like the linux apt/rpm repository and homebrew installations now support automatic updates as well
• The k8s integration will now automatically add all namespaces for the current context when searching for connections
• The application window will now hide any unnecessary sidebars when being resized to a small width. This makes it much easier to use XPipe in a tiling window arrangement
• The webtop has been updated to have terminal multiplexers, proper konsole tab support, disabled kwallet, and more
• Various error messages and connection creation dialogs now contain a help link to the documentation sections

A note on the open-source model

Since it has come up a few times, in addition to the note in the git repository, I would like to clarify that XPipe is not fully FOSS software. The core that you can find on GitHub is Apache 2.0 licensed, but the distribution you download ships with closed-source extensions. There's also a licensing system in place with limitations on what kind of systems you can connect to in the community edition as I am trying to make a living out of this. I understand that this is a deal-breaker for some, so I wanted to give a heads-up.

Outlook

If this project sounds interesting to you, you can check it out on GitHub, visit the Website, or check out the Docs for more information.

Enjoy!

Hi!

I have a subsonic instance running but I rarely listen to Albums. Stuff I really like are DJ performances like by the channel The Moment.

So I thought: why not download and self-host them before Google makes Youtube sign-in only, (like Elon and Facebook did).

That stuff is probably quite hard to organize. But the type of music simply breaks the common services, like Jellyfin, or Subsonic.

I know of funkwhale. But I'd like to keep the contents private. I just wanna listen to music at work (so being open to the web is a plus). I thought funkwhale is a bit too... "social" for me. I'm a (re)uploader, not creator.

You got any ideas? Maybe a youtube-cloner with audio-only support? (I know how to download videos already)

Edit: Of course, I'd download the sets legally, e.g. from their patreon discord, or whatever. ;)

Also: I know that restricting it to my VPN would be ideal for security and legality reasons. But that's a bit inconvenient. And I want to check my options.

Hey all. I'm starting to plan out how to build a home camera system. For now I just want to use it to keep an eye on the dogs while I'm out of the house, so all of it indoors and with audio, but with plans to expand in the future. My one hard requirement is that the camera themselves are only communicating locally and the streams are accessible outside my network in a secure manner.

I already have a server running some docker containers, including a reverse proxy*, with a GPU (Arc B580) installed for other video streaming. I also got a Google Coral on its way for future camera detection funs. Would the B580 be able to cope with say 2-4 camera streams (of say 1080p quality) and streaming a 4k HDR movie? This support page says it might be possible, but could stretch the limits a bit.

My imagined setup is PoE IP cameras with RTSP streaming to my home server running Frigate (I'm open to suggestions) with some Home Assistant on the side.

For cameras I've seen Dahua and Hikvision recommended. Do they all have/is RTSP a common feature on IP cameras? As none of the cameras I've looked at on Dahua's website has explicitly said they support it.

I've been thinking about installing a separate network card on the server as well just for the cameras. But this might be a bit over-kill, and might be enough to block them on the router? But I image I will need a special switch for PoE either way.

Outside of buying cameras, switch, and cables and then configuring it all, are there any big ticket items I've missed? Or is my set up kinda meek and a separate server for the video streams is recommended?

• I know a reverse proxy isn't typically as safe as a VPN tunnel, but it's a balance with easy of use.

Here's the link to the docker docs

Evening y’all

I’ll try to keep it brief, I need to move my reverse proxy (traefik) to another machine and I’m opting to utilize Docker Swarm for the first time this way I’m not exposing a bunch of ports on my main server over my network, so ideally I’d like to have almost everything listening on local host while traefik does it’s thing in the background

Now I gotta ask, is Docker Swarm the best way to go about this? I know very little about Kubernetes and from what I’ve read/watched it seems like Swarm was designed for this very purpose however, I could be entirely wrong here.

What are some key changes that differ typical Compose files from Swarm?

Snippet of my current compose file:

services:
  homepage:
    image: ghcr.io/gethomepage/homepage
    hostname: homepage
    container_name: homepage
    networks:
      main:
        ipv4_address: 172.18.0.2
    environment:
      PUID: 0 # optional, your user id
      PGID: 0 # optional, your group id
      HOMEPAGE_ALLOWED_HOSTS: MY.DOMAIN,*
    ports:
      - '127.0.0.1:80:3000'
    volumes:
      - ./config/homepage:/app/config # Make sure your local config directory exists
      - /var/run/docker.sock:/var/run/docker.sock #:ro # optional, for docker integrations
      - /home/user/Pictures:/app/public/icons
    restart: unless-stopped
    labels:
      - "traefik.enable=true"
      - "traefik.http.routers.homepage.rule=Host(`MY.DOMAIN`)"
      - "traefik.http.routers.homepage.entrypoints=https"
      - "traefik.http.routers.homepage.tls=true"
      - "traefik.http.services.homepage.loadbalancer.server.port=3000"
      - "traefik.http.routers.homepage.middlewares=fail2ban@file"
  traefik:
    image: traefik:v3.2
    container_name: traefik
    hostname: traefik
    restart: unless-stopped
    security_opt:
      - no-new-privileges:true
    networks:
      main:
        ipv4_address: 172.18.0.26
    ports:
      # Listen on port 80, default for HTTP, necessary to redirect to HTTPS
      - target: 80
        published: 55262
        mode: host
      # Listen on port 443, default for HTTPS
      - target: 443
        published: 57442
        mode: host
    environment:
      CF_DNS_API_TOKEN_FILE: /run/secrets/cf_api_token # note using _FILE for docker secrets
      # CF_DNS_API_TOKEN: ${CF_DNS_API_TOKEN} # if using .env
      TRAEFIK_DASHBOARD_CREDENTIALS: ${TRAEFIK_DASHBOARD_CREDENTIALS}
    secrets:
      - cf_api_token
    env_file: .env # use .env
    volumes:
      - /etc/localtime:/etc/localtime:ro
      - /var/run/docker.sock:/var/run/docker.sock:ro
      - ./config/traefik/traefik.yml:/traefik.yml:ro
      - ./config/traefik/acme.json:/acme.json
      # - ./opt:/opt
      #- ./config/traefik/config.yml:/config.yml:ro
      - ./config/traefik/custom-yml:/custom
      # - ./config/traefik/homebridge.yml:/homebridge.yml:ro
    labels:
      - "traefik.enable=true"
      - "traefik.http.routers.traefik.entrypoints=http"
      - "traefik.http.routers.traefik.rule=Host(`traefik.MY.DOMAIN`)"
      #- "traefik.http.middlewares.traefik-ipallowlist.ipallowlist.sourcerange=127.0.0.1/32, 192.168.1.0/24, 208.118.140.130, 172.18.0.0/16"
      #- "traefik.http.middlewares.traefik-auth.basicauth.users=${TRAEFIK_DASHBOARD_CREDENTIALS}"
      - "traefik.http.middlewares.traefik-https-redirect.redirectscheme.scheme=https"
      - "traefik.http.middlewares.sslheader.headers.customrequestheaders.X-Forwarded-Proto=https"
      - "traefik.http.routers.traefik.middlewares=traefik-https-redirect"
      - "traefik.http.routers.traefik-secure.entrypoints=https"
      - "traefik.http.routers.traefik-secure.rule=Host(`traefik.MY.DOMAIN`)"
      #- "traefik.http.routers.traefik-secure.middlewares=traefik-auth"
      - "traefik.http.routers.traefik-secure.tls=true"
      - "traefik.http.routers.traefik-secure.tls.certresolver=cloudflare"
      - "traefik.http.routers.traefik-secure.tls.domains[0].main=MY.DOMAIN"
      - "traefik.http.routers.traefik-secure.tls.domains[0].sans=*.MY.DOMAIN"
      - "traefik.http.routers.traefik-secure.service=api@internal"
      - "traefik.http.routers.traefik.middlewares=fail2ban@file"

networks:
  main:
    external: true
    ipam:
     config:
       - subnet: 172.18.0.0/16
         gateway: 172.18.0.1

I censored out my actual domain with MY.DOMAIN so if that confuses people i apologize.

I've just re-discovered ollama and it's come on a long way and has reduced the very difficult task of locally hosting your own LLM (and getting it running on a GPU) to simply installing a deb! It also works for Windows and Mac, so can help everyone.

I'd like to see Lemmy become useful for specific technical sub branches instead of trying to find the best existing community which can be subjective making information difficult to find, so I created !Ollama@lemmy.world for everyone to discuss, ask questions, and help each other out with ollama!

So, please, join, subscribe and feel free to post, ask questions, post tips / projects, and help out where you can!

Thanks!