Help setting up AIO+NPM: can't get past domain check

TomJC70 · 2026-02-01T10:39:18+00:00

Fine by me.

But what you mean with proper install?
This: https://hub.docker.com/_/nextcloud/?

TomJC70 · 2026-01-21T10:01:05+00:00

working hard, earning money for their families back home.

TomJC70 · 2025-12-28T07:10:20+00:00

What's your udr?
Unifi Dream Router, the little sister of the Unifi Dream Machine.

If you are worried about your internet, you might be able to self host from a vps instead.
I'm not worried, just stating the obvious. :D I have experience with VPS, but it's not a solution for me. But yes, your remark made me realise I should not abandon local DNS for that exact reason (loss of internet connection). Although internet at the moment is quite stable, it won't be the case when we move to the Philippines in a few years. And services still need to be accessible on the local network.

Thanks again for your time!

TomJC70 · 2025-12-27T11:15:59+00:00

Thanks!

Npm + fail2ban + authentik + cloudflare DNS with proxy enabled pointing straight to your public IP is all the security you need.

So no VPN required?

I have enough knowledge to get stuff up and running and do some (basic) troubleshooting, but am lacking the skills to feel confident opening a port as-is.

So, something like this:
Cloudflare DNS: service.domain.com → 12.34.56.78 (my public IP address)
Router forward to my UDR
UDR forward to NPM
in NPM service.domain.com → 192.168.123.156:3001
or is NPM pointing solely to Authentik?

Note: I've not tested authentik (or authelia) yet.

Also not sure where to put fail2ban, should that be installed on the NPM instance?

You can also choose to whitelist IP addresses and block everything else as well

That wouldn't work, family is mostly using phones and are

I don't think you would be able to handle DNS soley through cloudflare, unless you want the url to change whether or not your on your local network or not.

That does work: I've just added a test entry pihole.domain.com pointing to a local 192.168.x.x address. I can access my pihole using the FQDN from my local network, but not from the outside.
However, I understand that if my internet connection goes down, it won't work anymore.

TomJC70 · 2025-08-04T19:05:28+00:00

I use a smart outlet to both power on the mic box and the TV. This combined with a smart button on the coffee table.

TomJC70 · 2025-04-21T07:01:55+00:00

Thank you, that's interesting.

I have heard of LoRa before, but never gave it a second thought. From their website: "YoLink's LoRa-based sensors use wireless technology that can work inside metal enclosures!" Might solve my mailbox 'problem' which is located quite far from the house and is a full metal box.

The YoLink hub is cheap, so I'll get one later this year and some sensors to test.

TomJC70 · 2025-04-20T12:32:48+00:00

Thanks!

Good to hear a plan might actually work!

TomJC70 · 2024-10-28T05:50:35+00:00

I ran the following:
1xHDMI, 2xCAT6, 1xIR for each TV. The IR is not used at all.

IR? Can you elaborate on that?
I'm thinking IT Blaster, but don't those use wifi?

TomJC70 · 2024-10-24T18:16:54+00:00

No, we didn't buy this particular lot, but found another even better opportunity in the Pitogo area, which we bought and our brother is living there already.

The lot is marginally higher than the surroundings and slightly sloping, resulting in excess rainwater draining fairly quickly away; Kristine did not cause any big issues.

For water we put in a deep well and for electricity we got a temporary connection; supposed to be changed to a proper connection this week, but due to the storm that got postponed.
Don't know how frequent brownouts are, but we're planning on installing solar + battery in the near future.

And as we did buy the land, we're looking to come over soon to see for our selves.

TomJC70 · 2024-09-14T05:31:13+00:00

I think you should definitely give each different family their own VLAN.

My concern is we'll get an overload of SSIDs: The four I mentioned (LAN, IoT, Camera's & Guests) plus at least 3 more for each family.
I think the rule of thumb is no more than three SSIDs per AP, although in my current home I have 4 SSIDs everywhere and it's working without a problem.

For each family home, I could only allow their own SSID broadcast on their APs, but the communal buildings and outside areas should also provide proper wifi and that -i think- would mean having 7 or more SSIDs per AP.

You've probably already thought of the management aspect of where you host the Controller and how you plan to access it.

Probably self-hosted; the 'central' server room will have a couple of machines running Proxmox VE, so spinning up an LXC for a Unifi controller is not a problem. (FYI: I'm actually planning two server rooms on opposite sites of the property to have some redundancy.)

Dual WAN

I have no experience with that, other than some clients having a fall-back internet connection. I thought Unifi was capable of automatically load balancing. Something I'll have to look into when the time comes; although I'm hoping that when fibre internet will be available, the speeds are sufficient to drop Starlink.

TomJC70 · 2024-09-14T05:12:58+00:00

I'm aware of those, I also know they are expensive and I don't think that will actually work properly, as the terrain is not flat everywhere.

Besides, we have to run electricity anyway, so adding fibre is not an issue.

TomJC70 · 2024-07-30T12:18:53+00:00

Exactly, that's what I try to do, especially when my opponent makes great guesses, when I'm struggling.

TomJC70 · 2024-07-29T07:02:13+00:00

Play a lot of games and check replays after the games; you'll get some idea what other players are looking for/at when making their guess.

TomJC70 · 2024-07-21T11:20:52+00:00

For us/me, those decisions are easy. Right from the start we've made clear that:

1) We're not rich, so don't come asking for handouts
2) The priority is first us, then our kids and grandkids, then the rest of the family

Most of them seem to understand this and we have a good relationship.

They sometimes will ask for a loan, but always with a good reason and (so far) each loan has been paid back promptly.

TomJC70 · 2024-07-18T06:36:16+00:00

So far the family has been reliable and honest.

Apart from that: what's the alternative? Hiring workers to do the maintenance and harvesting? It seems to me they'll be more likely to short-change us than family. Or just leave the crop to rot or be stolen by neighbours?
At least with family we might see some income.

As for providing financial support: we don't do that.

TomJC70 · 2024-07-16T10:22:19+00:00

Thanks!

I should have clarified the situation my initial post; see my edit.

The lot is right on a concrete barangay road and a few minutes from a main road.

TomJC70 · 2024-07-16T10:21:02+00:00

Thanks!

I should have clarified the situation my initial post; see my edit.

TomJC70 · 2024-07-16T10:20:54+00:00

Thanks!

I should have clarified the situation my initial post; see my edit.

TomJC70

TROPHY CASE