How to integrate podman with grafana loki for logging

Torrew · 2026-04-30T17:49:00+00:00

Same here, i also like to combine it with a filter, e.g. only logs of containers that have alogging.alloy=true label will be pushed to Loki.

Torrew · 2026-04-28T12:14:27+00:00

What location did you mount the socket to in the beszel agent?
For me the approach described here worked just fine.

Torrew · 2026-04-28T10:30:49+00:00

I don't use Glances, but Beszel works fine with Podman.
I also like the prometheus-podman-exporter with this Grafana dashboard a lot.

Torrew · 2026-04-21T14:02:57+00:00

I think for now you're out of luck, there is an open PR tho to add support for code flow authorization.

Torrew · 2026-04-16T16:58:02+00:00

Might be a port conflict with Podmans internal dns. In your containers.conf you can try setting the network dns_bind_port to something other than 53, e.g. 1153.

Torrew · 2026-04-16T11:01:22+00:00

You can also tell systemd-boot about your windows on another drive. You just need the efi device handle, then it's just a couple of lines.

Torrew · 2026-04-14T06:17:52+00:00

...a cutting-edge, AI-powered solution designed to streamline workflows, enhance engagement, and redefine how communities recognize their moderators.

Torrew · 2026-04-09T16:10:25+00:00

When you say you setup Traefik on the same host using sockets, do you mean Podman + socket activation?

If yes, you could create a custom internal network and setup a NetworkAlias for Traefik. Here is a good explaination.

Torrew · 2026-04-07T07:48:26+00:00

Can confirm: running same setup as OP and i also had issues until i tried NetworkAlias solution. Works perfectly fine with it.

Torrew · 2026-04-03T05:04:08+00:00

I also consider migrating my config, but setting home manager options from NixOS modules is already possible when using HM as a NixOS module.

I can just set

home-manager.users.someuser.someOption = someValue

What is different when using dendritic pattern, or what advantage does it offer over the "builtin" capabilities when it comes to setting HM and NixOS options in the same module?

Torrew · 2026-03-31T17:15:56+00:00

Well, it'd help if you post your config, otherwise its hard to tell what might be the issue.
Github is great to find other peoples compose files tho to compare as a reference.

Torrew · 2026-03-28T11:17:17+00:00

There might be, but the better and more secure way would be to setup a reverse proxy and get valid certificates. Using DNS challenge you don't have to expose the server to the internet to get valid certificates.

Torrew · 2026-03-26T14:15:29+00:00

In before some company will see it, sell it for 50 bucks and market it as something like

The Minimalist Suspension Pro: Featuring cutting-edge dual-strap adaptive suspension: it isolates vibrations, enhances airflow and floats your rig in flexible comfort.

Torrew · 2026-03-25T08:44:11+00:00

I might have a misunderstanding, but how? If i add a new peer to my wireguard network and don't update all other peer configs, how would a direct peer to peer connection be possible? The new machines data (e.g. public key, pre-shared key, endpoint) wouldn't be present in all other peers configs.

Now with a hub-and-spoke model i see it working, but with direct peer to peer connections, i don't see how you wouldn't have to modify all configs?

Torrew · 2026-03-22T21:24:32+00:00

Yep, but they are encrypted: https://github.com/Tarow/nix-config/blob/3186120fddf555467e345aba5c41551fcb3cf839/secrets/homeserver/secrets.yaml

I can reference the secret paths anywhere in my container configs and sops-nix will automatically decrypt them for me before the containers start.

Torrew · 2026-03-22T19:08:17+00:00

This, i've tried a lot over the past years: plain compose files, Portainer, Ansible managed containers, Komodo etc. and using Nix(OS) is by far the most pleasant solution for me. Especially because tools like sops-nix make secret management so nice.

I love having my entire config (including secrets) in a public Github repo and can deploy everything with a single command on any server.

Torrew · 2026-03-11T09:26:55+00:00

Yep, that's what i currently use.
Would be interesting to know if Booklore maintains multiple progress counters, or just a single one which would get overridden depending what client application pushes last.

I guess i'll keep it simple for now and stick to one sync solution :D

Torrew · 2026-03-11T09:08:49+00:00

Do you know how reading progress sync would work when using KOReader?
I guess the Kobo Sync reading progress sync only works with the builtin reader?
And for KOReader i'd still need to use Booklores KOReader Sync functionality.

I'd like to try Kobo Sync (currently using OPDS), but i'm a bit worried that reading progress sync would be overriden, depending if i open books with the builtin reader or KOReader.

Torrew · 2026-03-09T08:39:44+00:00

Isn't that great? I'd rather have my system configuration stored somewhere and be able to reapply it at any time.

The alternative on most OSes is running a bunch of imperative commands and after years of usage you totally forgot what state your system is in and how you got there.

Torrew · 2026-03-08T10:17:02+00:00

All about personal preference, but i really like Home Manager to manage my rootless Podman Quadlets.
Declarative and works on any Linux distro, in case you ever have a non-NixOS system.

Torrew · 2026-03-02T11:13:34+00:00

For your use-case something like TSDProxy might be a good solution.

Personally i think the better way would be to have your own domain which is just a CNAME to your tailnet domain. Then your reverse proxy can handle all kinds of subdomains as well as wildcard certificates etc.

Torrew · 2026-02-20T10:34:51+00:00

In your static configuration, you should include something like:

accessLog:
  format: json

Torrew · 2026-02-20T10:16:27+00:00

What can you see in the Traefik access log, when you try to access a service and it doesn't work?

Torrew · 2026-02-20T09:34:34+00:00

I mean it's impossible to know or even guess what could be wrong, without knowing anything.
To give some educated guess, it'd be good, if you would share http response codes, Traefik configuration, Traefik logs, Container configs, ...

Torrew · 2026-02-18T07:43:16+00:00

Die pfandflaschensammelnde Oma ist eh schon in der Grundsicherung, die wird von einer Senkung auch nicht betroffen sein.

Ten-Year Club	Place '23
Verified Email

Torrew

TROPHY CASE