23
submitted 4 months ago by [email protected] to c/[email protected]

I have a "homelab" (well it's not a lab hosted at home, but on the cloud) running k3s and hosting my website, IRC and Matrix. I'm moving all of these services to Podman, since it's easier and you don't have to deal with the headaches of k3s.

I spent a lot of time the past months searching about Podman and couldn't find so much information about it. I managed to get a Authentik pod up and running with Quadlet (systemd unit), and I have a basic Caddy container acting as the reverse proxy for it. These are hosted in another VPS I have, and they are running rootless.

I want to move the other services to Podman, but I'm a bit lost. Right now, I have all the Podman containers allocate specific ports on the host, and communication between Caddy and Authentik, for example, is done by specifying the local IP address of my VPS.

Is it a bad approach to do inter pod/container communication using the local host IP address? I read that you can create a network that pods/containers can use and each gets assigned its own IP from the network range, but I also read that it doesn't go well with rootless. I started using slirp4netns, but then migrated to pasta since I had some issues with getting IPv6 with the former.

So, what would be the "correct" approach here? Create a separate network for the pods and use their assigned IP addresses, or use the local IP address from the host to communicate between pods?

[-] [email protected] 6 points 11 months ago

Care to share how you disabled every bit of AI in the phone?

[-] [email protected] 12 points 11 months ago

Yet companies are manipulating survey results to justify the FOMO jump to AI bandwagon. I don't know where companies get the info that people want AI (looking at you Proton).

73
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]

I am looking for suggestions of cheap, OpenWrt compatible routers that may have Wifi 6, for future proofing. My idea was to use it as a main router, but also as a travel router so I can plug it whenever I travel somewhere else.

I also want to learn how to use OpenWrt (I have an old router at home to test it out, but it's not ideal for everyday use since it's 100Mbps and doesn't have gigabit ports).

It'd be nice to have:

  • Wifi 6
  • OpenVPN or WireGuard support
  • Compatibility with OpenWrt
  • Ideally less than 60 EUR

A small form factor is also appreciated but not a requirement.

I checked the device tables and lists on the OpenWrt wiki, but it's hard to decide. A beginner's guide to the operating system recommended some routers but most of them are too expensive for my use case.

Currently, I'm leaning towards the GL iNet Opal (1200) but it doesn't support OpenWrt, the other option is the BananaPi BPI-WIfi 6. What would be your suggestions?

[-] [email protected] 4 points 1 year ago

I found Tailscale/Headacale way more difficult to setup than Wireguard.

[-] [email protected] 4 points 1 year ago

I tried 5 different credit cards to setup my account and none of them worked for the free tier. Contacted customer support, they simply said "well we can't do anything about it, it's clearly a problem in your end and not ours even though you tried 5 different credit cards to pay for the service".

[-] [email protected] 9 points 1 year ago

That's usually what happens with FOSS. The problem as I see it is that the dev doesn't have time to update the app and there's almost no one stepping up to hel fix longstanding issues. I'm pretty sure the dev will be more than happy to see people submitting PRs to fix some issues with the app :)

[-] [email protected] 12 points 2 years ago

I'd recommend Forgejo/Gitea as others have mentioned or https://sourcehut.org (instance available at https://sr.ht/)

[-] [email protected] 3 points 2 years ago

Haven't seen some of these before. Ones I particularly like are:

  • Tirar o cavalo da chuva: take your horse away from the rain = give up on something
  • Lavar as mãos: wash (the) hands = do not involve yourself in something
[-] [email protected] 4 points 2 years ago* (last edited 2 years ago)

If you own a domain name you can use the DNS-01 challenge instead of hosting a web server to serve the challenge response.

With DNS-01 it will add a TXT record to your DNS zones and check if the record exists to verify that you own the domain and then issue the certificate.

Depending on which tool you use, they usually support DuckDNS and some other free DDNS providers. If you have your domain on a registrar, chances are that it's also supported.

[-] [email protected] 14 points 2 years ago

Why is Gitness on the news and why is it being considered as the de-facto alternative to GitHub? Why is GitLab/SourceHut/Forgejo (and Codeberg)/Gitea not being considered?

Forgejo for example has almost a 1:1 compatibility with GitHub Actions and it didn't make the news. If you were to replace GitHub, Codeberg or Forgejo is a very good replacement for it.

[-] [email protected] 3 points 2 years ago

I was looking for it as well. I want to host the website using Caddy because I have a lot of config options available and I can fine tune it for my use cases.

I read a tutorial about using a Hugo Docker image, but then the hosting would be done by Hugo and not Caddy itself.

[-] [email protected] 4 points 2 years ago

I'm not using k8s just to host my website, I have other services on it as well.

I know it's overkill for small stuff, but I'm running k3s and not k8s (so it's a lightweight engine). The reason I'm doing this is for learning purposes, I want to learn more about k8s and thought I could do an experiment with it on a VPS.

I plan on renting another VPS and adding another node to the cluster, as it's pretty cheap (Hetzner ARM server costs around 3.8 EUR without VAT with 2 vCPUs and 4GB RAM). For example, it's much more cheaper than the VPS I have on Vultr that has 1GB RAM and 1 vCPU.

[-] [email protected] 12 points 2 years ago

An Oblivion remaster made in Skyrim

owait, that already exists, Skyblivion is a thing

16
submitted 2 years ago by [email protected] to c/[email protected]

I have a small VPS that hosts some services I use daily and I'd like to migrate that to a K8s cluster. One of the services being hosted is my personal website, built with Hugo and served by Caddy.

Right now, I have the code for my website on Codeberg and I have a CI pipeline that builds the website and uploads it to my VPS via rsync.

I want to move the website to the k8s cluster, but I have no idea how to do it "securely". What I have right now is a separate user on my VPS called deploy and it rsyncs the files to the data directory Caddy is using to serve my files.

I thought I could do the same on the k8s cluster server, but it's usually not a good idea to mount host paths with k8s unless absolutely necessary, because container escaping is an actual problem.

So far the only alternative I could think of is to change the CI pipeline to publish my website on another branch and signal it to my K8s cluster so the files should be updated, but I'd like to know what better options exist and how easy they are to setup.

view more: next ›

xinayder

0 post score
0 comment score
joined 2 years ago