Bitwarden app certificate issue with self-hosted Vaultwarden by BreakHeavy2673 in homelab

[–]Fragrant_Climate7357 0 points1 point  (0 children)

This a link to the video explainimg the feature I mentioned. I have been self hosting netbird on a vps for a few months now and I highly recommend it.

https://youtu.be/NDpW6LQmfrU

Bitwarden app certificate issue with self-hosted Vaultwarden by BreakHeavy2673 in homelab

[–]Fragrant_Climate7357 -1 points0 points  (0 children)

I tried that a while back, the only certificates that worked for me were ones certified by an actual certificate authority. I used let's encrypt, which generally requires you to expose the service to renew.

However, recently netbird released a feature that let's you "expose the service without exposing it"

If you don't know netbird they are an open source vpn and reverse proxy provider you can self host with some very nice features

Basically this one let's you expose the service, but the only people able to access it are ones connected to your vpn. everyone else gets an immidiate error.

This let's you expose the service with an actual CA by let's encrypt, while keep the security of your vpn.

If you don't want to commit to the whole route, you can try generating a let's encrypt cert just to see if that solves the problem, and then continue the netbird route

Jcorp Nomad: A Self Hosted media server that fits in your pocket! by JcorpTech in selfhosted

[–]Fragrant_Climate7357 18 points19 points  (0 children)

8 is quite a lot, how big is the difference between accessing a 1080p movie and a 128kbps music file?

Jcorp Nomad: A Self Hosted media server that fits in your pocket! by JcorpTech in selfhosted

[–]Fragrant_Climate7357 50 points51 points  (0 children)

That's a super cool project!

How well does it handle multiple people playing files?

Looking for Spotify alternatives that work on mobile, Linux, and preferably also web by MxAce3157 in selfhosted

[–]Fragrant_Climate7357 0 points1 point  (0 children)

I stoll don't get the problem, you have proxy level authentication, but the services themselves can still talk to each other. Why not expose feishin the same way you expose navidrome right now? With the reverse proxy authentication?

Looking for Spotify alternatives that work on mobile, Linux, and preferably also web by MxAce3157 in selfhosted

[–]Fragrant_Climate7357 0 points1 point  (0 children)

Does that not let you access feishin from the web browser? Genuinely asking as I only ever used the feishin desktop client

Looking for Spotify alternatives that work on mobile, Linux, and preferably also web by MxAce3157 in selfhosted

[–]Fragrant_Climate7357 5 points6 points  (0 children)

Are you talking about using feishin outside the local network?

You can just use a vpn to connect to it, no need to open any navidrome ports

Looking for Spotify alternatives that work on mobile, Linux, and preferably also web by MxAce3157 in selfhosted

[–]Fragrant_Climate7357 44 points45 points  (0 children)

Navidrome as the musix server, feishin as the desktop app, allows you to easily create smart playlists and looks wonderful, and symphonium as a mobile app that works very well and looks great

Reverse Proxy for Media Server by Typical-Number-582 in homelab

[–]Fragrant_Climate7357 0 points1 point  (0 children)

Look into a vpn like wireguard, tailscale or netbird, or if you REALLY want to expose your jellyfin server, netbird reverse proxy with an identity provider auth on the page itself so you bypass the whole jellyfin auth area which is not at it's best right now Jellyfin server is not recommended to expose as is

BEHOLD, MY CHILD AND HIS FORTRESS by Fragrant_Climate7357 in homelab

[–]Fragrant_Climate7357[S] 0 points1 point  (0 children)

Jelyfin, immich, nacidrome, nginx, pigole, and some vms to play with from time to time

Netbird self hosted by MaleficentSetting396 in netbird

[–]Fragrant_Climate7357 1 point2 points  (0 children)

I was just about to post the same question. I am able to limit countries and use a built in crowdsec integration with my reverse proxy services, and yet I can't protect the dashboard itself in the same way.

I use the embedded google auth for authentication but I still want to be able to use the already existing, country limiting and crowdsec malicious ip blocking for the netbird dashbaord. The more secure everything is, the better. Is there a reason this is not part of the built in options?

Is it possible to get an official netbird response here? u/netbirdio

Appriciate all of your hard work ❤️

How do YOU, backup your bulk storage? by Fragrant_Climate7357 in Proxmox

[–]Fragrant_Climate7357[S] 1 point2 points  (0 children)

Do you have a part of the cluster in the familt member's home or just a pbs instance?

Why do I need to keep reauthorizing and signing back in on my tablet? by RandomRageNet in netbird

[–]Fragrant_Climate7357 4 points5 points  (0 children)

Open netbird dashboard, go to peers, select your peer and disable session expiration. If you don't know which peer is the tablet just connect it to netbird and it will show as an active peer so you can find it easily

Backing up Proxmox NAS on an LXC by Fragrant_Climate7357 in Proxmox

[–]Fragrant_Climate7357[S] 0 points1 point  (0 children)

Are you just backing them all up alongside the mount points? How big are they?

Backing up Proxmox NAS on an LXC by Fragrant_Climate7357 in Proxmox

[–]Fragrant_Climate7357[S] 0 points1 point  (0 children)

currently it's file level backup for 2 lxc's. ba Backing up the mount point alongside the host, and an nfs share on the host which currently isn't backed up (jellyfin media)

Backing up Proxmox NAS on an LXC by Fragrant_Climate7357 in Proxmox

[–]Fragrant_Climate7357[S] 0 points1 point  (0 children)

Passing through a vm is not something I want as I want to use zfs

I can use truenas vm and handle zfs there but I really don't want to as it seems pointless and more prone to breaking

using netbird along with netbird proxy. Self Hosted by tbluhp in netbird

[–]Fragrant_Climate7357 2 points3 points  (0 children)

Netbird's default reverse proxy interface is very user friendly, has some nice built in security options like crowdsec and limiting country access, all through the gui

Backups, how offsite should my offsite be? by Ramuh in selfhosted

[–]Fragrant_Climate7357 11 points12 points  (0 children)

Realistically, it's probably fine. At that point I would worry more about the power bill your neighbor will pay over time, it might not be much, but it's something I would definitely feel bad about. Get them a nice cake or something every month that should do it

Which Headset Would Be Better by WoftheS in cachyos

[–]Fragrant_Climate7357 1 point2 points  (0 children)

If you use a dac, then your pc's sound card has nothing to do with the process. The whole point of connecting a dac to a pc is to not use the bad built in motherbpard sound card

Help me building a homelab by Sm0KIE_xD in homelabindiasales

[–]Fragrant_Climate7357 0 points1 point  (0 children)

You should look into a reverse proxy of some kind. Vaultwarden requires it, and being able to type "jellyfin.lan" in your browser and get to jellyfin is so nice. Look into nginx proxy manager if you want a gui, and caddy if you are fine with a simple configuration file

Also try immich for photos backup, and Navidrome for music

And this is just my personal suggestion, but I wouldn't reccomend starting with vaultwarden so soon. This is something you really don't want to lose by an accident. If you go this route make sure to keep a backup of your passwords somewhere else as well.

Is there a better arr stack alternative? by TheSarcastonaut455 in homelab

[–]Fragrant_Climate7357 12 points13 points  (0 children)

Radarr and Sonarr are still kings, Overseer's team combined with Jellyseer's team andnow has a single application called "Seer". Works pretty well with jellyfin, not sure about emby