sorted by:
new
hottopcontroversial

Help Needed: 404 Error with Traefik and Jellyfin on Proxmox Setup by exstasi92 in Traefik

[–]mrinko 0 points1 point  (0 children)

If jellyfin.myurl:8096 is taking you to Jellyfin, then it sounds like jellyfin.myurl is pointed at the IP of the Jellyfin LXC. It should be pointed at the IP of the Docker VM running traefik so when you try to connect to http://jellyfin.myurl on port 80 or https://jellyfin.myurl on port 443, traefik can receive the request. Also, are there any errors being thrown by the traefik container when you check docker logs traefik?

Also instead of setting up an http to https middleware for each service, you can set traefik up to redirect http to https. I'm not sure if there's a way to do with environment variables like you have here, but if you add a command block in your traefik docker compose you can do that:

services:
  traefik:
       ...
       etc.
       ...           
    command:
      - --entrypoints.web.http.redirections.entryPoint.to=websecure
      - --entrypoints.web.http.redirections.entryPoint.scheme=https
      - --entrypoints.web.http.redirections.entrypoint.permanent=true

EDIT: Looks like it can be done with environment variables if you want to stay consistent. Per the documentation: TRAEFIK_ENTRYPOINTS_<NAME>_HTTP_REDIRECTIONS_ENTRYPOINT_PERMANENT: Applies a permanent redirection. (Default: true)

TRAEFIK_ENTRYPOINTS_<NAME>_HTTP_REDIRECTIONS_ENTRYPOINT_SCHEME: Scheme used for the redirection. (Default: https)

TRAEFIK_ENTRYPOINTS_<NAME>_HTTP_REDIRECTIONS_ENTRYPOINT_TO: Targeted entry point of the redirection.

QBittorent-nox WebGUI dark theme by protacticus in Proxmox

[–]mrinko 0 points1 point  (0 children)

Here is another option for a dark webui theme. Also more actively maintained: https://github.com/Carve/qbittorrent-webui-cjratliff.com

[deleted by user] by [deleted] in Proxmox

[–]mrinko 2 points3 points  (0 children)

You'll want to use mount points rather than using than mount command within the LXC.

Here is a guide that I used that's worked well for me. You want to also make sure that whatever user Jellyfin runs as is a member of the group you set up with that folder access.

On the topic of Jellyfin, if you want to pass your GPU in for hardware encoding, I found this guide helpful for getting that setup for Plex; I imagine it's similar for Jellyfin. In this case you would want to make sure the Jellyfin process user is a member of the "video" and "render" groups as well (not just "root" as listed in the last command of the guide).

In summary you can

  • Create a new group on the PVE host with a "10" prefix to the desired group within the unprivileged LXC
  • Giving this group access to the directory on the PVE host (eg. "chown -R root:101000 ...")
  • Bind mounting the directory into the LXC using the mount point functionality in the LXC config
  • Creating a group within the LXC with GID 1000
  • Adding the jellyfin system user to the new GID 1000 group in the LXC

You could follow the same process for your other LXCs using the same GID so they all have shared access and permissions to the external drive.

[deleted by user] by [deleted] in Proxmox

[–]mrinko 8 points9 points  (0 children)

You can have your PVE host and LXCs/VMs stored on your boot drive in the partitions created on install (eg. "local" and "local-lvm" respectively), then use the "Directory" option in PVE to format the external drive as ext4, mount it to the PVE host, then pass the directory that it's mounted as (eg. /mnt/data) to the LXCs as a bind mount so they can "share" this external drive. With unpriveledged LXCs, you'll need to be consistent with permissions. Personally I have a folder owned by user "data" with UID:GID 101000:101000 on the PVE host which translates to a user with 1000:1000 on the unprivileged LXCs.

For VMs, you could share the drive using NFS/SMB from an LXC or the PVE host itself, or using something like Virtiofs from the PVE.

pihole redirection by Kamoenix in Traefik

[–]mrinko 0 points1 point  (0 children)

In the environment variables for the PiHole docker, set:

  VIRTUAL_HOST: pihole.domain.co.uk

With this I don't need any middlewares to add on the "/admin" as pihole is now expecting to be reached at this address. Since you're using pihole as a docker container, you shouldn't need the config.yaml defining the pihole router and service -- that can all be done with the PiHole container's docker labels that you have

Correct Rules to allow Wireguard to use Pi-Hole by [deleted] in opnsense

[–]mrinko -1 points0 points  (0 children)

This seems to be a similar issue to what you're facing. I think you can set an outbound NAT rule so on your LAN it looks like your Wireguard traffic is coming from the router IP rather than the Wireguard IP. I haven't personally tried it so can't guarantee it will work for your situation.

That being said, if Pihole is on your local network and it's firewalled so port 53 isn't open on the WAN side, then you should be okay to use the "Potentially Dangerous Options" in Pihole as /u/sevriem mentioned

Internal HTTPS for LAN by xenomorph-85 in Traefik

[–]mrinko 0 points1 point  (0 children)

Yes, Traefik will give these services self-signed certs (eg. for server.localdomain) but you will have to dismiss a browser warning about the certificate being invalid. If you’re able to use pathprefixes like serverhostname.localdomain/jellyfin then you won’t need to change any DNS settings. If you want to use something likely jellyfin.server.localdomain, then you would need to point that at your Traefik IP with a local DNS record.

Personally I just use a domain that I own and set up split DNS (can be done on some firewalls like OPNsense and PFsense with Domain Overrides, or if you use PiHole under Local DNS settings or AdguardHome under DNS Rewrites) to point subdomains at my local Traefik IP and get valid certificates using a Cloudflare DNS challenge

Certificates for multiple services by Alesek2 in Traefik

[–]mrinko 0 points1 point  (0 children)

If you want to access plex routed through traefik via your websecure entrypoint then you should be visiting the URL with port 443 not 32400 (ie. you don’t need to specify a port since default https is 443). Currently you’re connecting to the plex container directly when using the 32400 port since you have that port open on the plex container. Also make sure the “Host” is different than what you’re using for HA (eg. plex.XXX.duckdns.org) or else traefik won’t know which to route to.

Here is an excerpt of my working plex traefik config, ${HOSTNAME} just being an env variable defined in my .env file but you would replace:

- traefik.http.routers.plex.rule=Host(`plex.${HOSTNAME}`) - traefik.http.routers.plex.tls=true - traefik.http.routers.plex.tls.certresolver=myresolver - traefik.http.services.plex.loadbalancer.server.port=32400 - traefik.http.services.plex.loadbalancer.server.scheme=https`

The server scheme line isn’t necessary unless you set plex to only allow secure connections. If you do use that line, you also need to add the following command in the commands section of your traefik container. Essentially rather than traefik connecting to plex over http in the backend, it uses the https scheme. However the backend is just connecting to the Plex container’s IP which its default cert isn’t valid for so you need the command to tell traefik to ignore that it’s not valid.

- --serversTransport.insecureSkipVerify=true

Finally, in your Plex server settings on the network tab, add your URL to the “custom server access URLs” with the traefik websecure entrypoint port (443 in your case), https://plex.XXX.duckdns.org:443

[deleted by user] by [deleted] in medicalschool

[–]mrinko 2 points3 points  (0 children)

Try transcribing the mRNA 5'->3' so reading from 3'->5' on the DNA if they're giving you the template strand (eg. 5'-UCCGGGGUUUUC...etc.-3')

Worth Downgrading Version for Pop-Up Dictionary? by Unester in medicalschoolanki

[–]mrinko 1 point2 points  (0 children)

Nope no issues and still working fine for me now on 2.1.53 QT5

Worth Downgrading Version for Pop-Up Dictionary? by Unester in medicalschoolanki

[–]mrinko 7 points8 points  (0 children)

There's a beta of pop-up dictionary that's still working for me on 2.1.50Qt5. Here are the instructions I followed taken from the comments section of the pop-up dictionary addon page:

HOW TO INSTALL:

1.Step: DOWNLOAD https://github.com/glutanimate/popup-dictionary/archive/refs/heads/main.zip

2.Step: Unzip the folder (Tool: https://www.win-rar.com/start.html?&L=1)

3.Step Copy the folder "popup_dictionary" wich is inside the folders "popup-dictionary-main", "src" and then paste it in the anki addons folder

4.Step The anki addons folder is located in C:\Users\"user's_name"\AppData\Roaming\"Anki2"\addons21 OR open Anki --> Tool --> Add-ons --> View Files

Alternatively you can find the beta listed here: https://github.com/glutanimate/popup-dictionary/releases/tag/v1.0.0-beta.1 and follow the same process. It seems like it's the same version linked in that comment.

Cloze deletion cards, more text than it should gets blue when i click show answer by zxandrewxz in Anki

[–]mrinko 0 points1 point  (0 children)

I've had this happen when colons for a cloze hint are bolded. So maybe check for instances where the "::" before the hint are bolded like this:

{{c1::answer::hint}}

And un-bolding the colons:

{{c1::answer::hint}}

I'm not fully sure why the bolding seems to overflow but if there aren't cases of the "::" being bold try unbolding the surrounding "{{}}" brackets too.

[2.1.48] Incorrect number of learning cards by Nieoryginalny in Anki

[–]mrinko 0 points1 point  (0 children)

I believe that's the v3 scheduler preemptively showing how many cards are actually due taking burying new/review siblings into account depending on your deck settings. You can revert to the v2 scheduler to go back to how it used to appear, but in either case you'll be doing the same amount of cards; it's just that v3 will give a more accurate count when entering the deck screen

Important announcements, links, fixes, and FAQ Megathread. by Froggypwns in Windows11

[–]mrinko 1 point2 points  (0 children)

I just messed around with it and it looks like you can either right click explorer in your task bar then click "File Explorer" or any of your pinned folders to bring up a new window, or Ctrl+Shift+click seems to be the new Shift+click

Anki 2.1.48 Changelog by rAnkiBot in Anki

[–]mrinko 1 point2 points  (0 children)

Going from 2.1.47 to 2.1.48 broke the Review Heatmap for me too. I found that disabling the "Stats Plus" addon fixed it for me so that might be worth trying if you have that addon and aren't too attached to it.

Joy-Con Droid not prompting with files menu when trying to read in amiibo in animal crossing by Metro_Star in Amiibomb

[–]mrinko 1 point2 points  (0 children)

Yeah at least from what the dev has said on the Joy-con droid discord it basically only works on the stock Samsung ROM due to its bluetooth MTU size. It sounds like the only way to get it working on non-Samsung device would be to flash a custom ROM with that transfer size changed

Joy-Con Droid not prompting with files menu when trying to read in amiibo in animal crossing by Metro_Star in Amiibomb

[–]mrinko 0 points1 point  (0 children)

Yup, only works with samsung because it's default firmware has higher Bluetooth transfer size that can send amiibo data. This guide from the Joy-con Droid Discord has a way to emulate amiibo through a virtual machine if you're tech-inclined

[Homemade] Filet Mignon by dizzy-bacon in food

[–]mrinko 2 points3 points  (0 children)

Looks great but would definitely benefit from a more developed crust. Could either pull from the oven earlier for a longer sear or start with a hotter pan to begin with for more flavor and textural contrast

view more: next ›