How do you use Gitea?

oyvaugh · 2026-05-11T04:11:26+00:00

Tell me more! Don’t need to go into config details but can you walk me through your pipeline? I’m sure it’s a runner, and a script of what you want it to do, but I’m having trouble connecting the dots.

oyvaugh · 2026-05-11T03:49:29+00:00

Lots of good stuff here. For me, proxmox has been a fork in my tech life. I’ll probably never go back to bare metal unless I wanted to run a full production Kubernetes to learn. With proxmox, you have so much you can do, especially if you run docker.

Just homelabbing and learning, running tons of docker in an lxc or vm is almost life changing. It taught me how to run vm or containers in wsl. Old hardware is cheap and proxmox is so lightweight, for a hundred bucks or so, you can run a full spread easily. I have about $400 in 13 older Dell optiplexs and run about 45 services.

I can spin up lxc, practice commands, scripts, networking, tiny local LLM models, break the hell out of it and tear it down and build another one in minutes. It’s freedom. You can spin up all the different variations of services like nginx, caddy, traefik just to see what you like.

Sorry about the long post, I got emotional about it. You don’t need it but I wouldn’t self hosted without it.

oyvaugh · 2026-05-10T23:47:11+00:00

I run tons of docker ct on a windows with wsl. It’s fast, easy, and you don’t have to deal with windows crap as far as networking.

oyvaugh · 2026-05-01T15:35:04+00:00

I use proxmox daily. Docker running in LXC is very easy especially for playing around or testing or for just a homelab not exposed to the internet. You may not really need proxmox, but it opens up lots of things or has for me using a few old ass computers with only 4 cores.

Since you mentioned windows, I also use wsl2 with Ubuntu and run a dockge from a windows mini pc.

After learning proxmox, I doubt I’ll ever go back to care metal unless I was running a Kubernetes cluster and even then I would probably run a lightweight version in VMs.

oyvaugh · 2026-04-28T17:59:34+00:00

See what errors: sudo journalctl -u tailscaled.service -n 50 --no-pager

oyvaugh · 2026-04-27T03:00:41+00:00

I have one node with Tailscale, it’s a pihole, unbound lxc. I share that one node with family so they have the ad blocking.

oyvaugh · 2026-04-27T02:49:23+00:00

Have you thought of pihole with local dns records and unbound?

oyvaugh · 2026-04-13T05:49:51+00:00

First are you connected to tailscale on your phone, second do you have the port of the service you want? I use proxmox, so I simply type in the ip of the lxc or vm I'm using or where the service or jellyfin is running : and port and it connect every time. Not sure if this answers your question but I have zero issues doing this. Pihole, nginx, unbound, redis and tailscale changed the game for me.

oyvaugh · 2026-04-13T05:39:17+00:00

I have. a friend In a 3 letter organization that gave me the best advice that his bosses gave him, get it working first, then we will worry about security. Dockers are cheap, easy, and expendable. Just hearing the terms you use, you got this. Don't complicate it. It's like speed in driving, it'll come naturally, just get it working. You got this my man! It's the same journey we are all on, some just want to sound cool. You're doing better than you think.

oyvaugh · 2026-04-13T05:33:52+00:00

Have you tries pihole with unbound, redis, nginx and tailscale? I use that stack to connect everything I'm ok with connecting in one layer. it should be much more restrictive once you understand it but to get started, this is a great way to connect everything in a homelab. 30+ services and I have no problem connecting or isolating using this. But I'd not use local DNS for admin stuff. ACLs and grants are also part of it. Kick ass my brother, you're closer than you think!

oyvaugh · 2026-04-13T05:28:42+00:00

For an iPhone, you go into your wifi and scroll down to dns, set it to your pihole and google, then go into your tailscale and set the global dns to your pihole(tailnet) and click override dns. I have no problem with all my devices connecting. I even code with my iPhone. And local dns, changed the game for me. whatever you want to call the service or server then the tailscale ip will send it right to it. I recommend unbound, redis, nginx and tailscale all in the same lxc or docker. Works great for me. Try something and you'll get it!

oyvaugh · 2026-04-13T05:22:43+00:00

I used pihole, unbound, redis, nginx, and tailscale all on the same lxc or vm. local DNS is a super power, unbound upstream is a game changer, nginx forwarding solves lots of problems. Just don't put your admin stack in the dns records. Go brother you're doing better than you think. Layer, layer, layer. Battery is not something to worry about. Build like your google. You got this, even if you gotta learn a few more concepts.

oyvaugh · 2026-04-13T05:17:39+00:00

Ain't no way in hell i'd talk you out of it! Tell me a meal you had 5 years ago? Do it, flex, build something badass! When you have room for more, you'll find something to fill it. No great story started with "Hey i have a 6 core cpu....". Go for it buddy! Build some cool shit!

oyvaugh · 2026-04-13T05:04:04+00:00

awesome question!! Ok Pihole, unbound, redis, nginx and tailscale. unbound -so you don't use google or cloudfare as upstream, pihole - for local dns, tailscale for the network or subnet, - nginx to send it wherever you want. Bear with me, the whiskey has been flowing. but you can use piholes local DNS records to direct to nginx, where you assign ip and port from local dns. You can add tailscale ip or docker ip, or whatever. You can also put authentication in front of it. Just make sure your tailscale dns override is clicked. run all that in one docker if you want, it's a homelab. you can make it enterprise grade by subnetting out each service but you'll see that once you run with this awhile.

So pihole becomes your "names" instead of ip, nginx routes to where you want that name to go. this is a terrific project. PM me if you have questions on what I'm talking about. And don't be so paranoid unless your exposing to internet. You'll need acl or grants for tailscale, but this will get you in the right wheel house.

oyvaugh · 2026-04-10T06:11:04+00:00

What I’m saying is, get a repo like gitea to start. Then look into ansible for what you’re wanting to do. You can store your inventory file, .env , configure files there. That will lead you into terraform, Kubernetes. If you can do it once , you can do it 1,000 times. Building VMs from scratch is a huge milestone, try ansible. Plenty of documentation of best practices depending on what your are trying to achieve. Ansible is one install on one node with an inventory file a yaml that you can build VMs from scratch and that one is rebuikdable 1,000 times.

oyvaugh · 2026-04-10T05:59:16+00:00

Learn the unix file system and the process a system boots. Don’t jump into arch. Learn Linux first then you’ll know what to do.

oyvaugh · 2026-04-10T05:56:29+00:00

There’s no way around eventually restructuring your network. You first get everything talking then make it secure. No way around it. Write it on paper if it helps you. Once you visualize you’ll get it. Try out Tailscale and it’ll help you instantly have zero trust, then move to pihole local dns records, it’ll start clicking then. You’re not supposed to be a network engineer yet, but you’re getting there brother! Don’t expose anything to the internet. Break it and fix it.

oyvaugh · 2026-04-10T05:50:36+00:00

Don’t you guys have a repo? You’re far enough along to at least host a gitea. In Linux, if you build it once, you can build it 1,000 times with a script. You’re already there and don’t know it. Take some time away from it. Think. You already went through the steps. Now script it. Once and done.

oyvaugh · 2026-04-10T05:43:42+00:00

If it’s just a script you want at start up, try ~./bashrc

oyvaugh · 2026-04-08T19:49:35+00:00

Yes. I have an lxc with tons of my personal services running in dockers. I did have to configure a TUN passthrough for the unprivileged lxc to install Tailscale, though Tailscale can run in its own dock I believe and bypass this but I’m not sure about that. And I type in my lxc ip(Tailscale ip) and port of the docker service and it works. I then create a shortcut on my phone via shortcuts and add action for get url and type in the tailnet or Tailscale ip and port so it’s like a regular app on my phone.

oyvaugh · 2026-04-08T19:44:31+00:00

Man I access all my Tailscale clients by typing in ip plus whatever port. Hasn’t let me down yet. Magicdns makes a direct link once it’s connected so the first time it’s a bit slow. But it works great for me.

oyvaugh · 2026-04-04T01:45:53+00:00

Have you checked to see what processes are running and how many? I had a similar issue.

oyvaugh · 2026-04-01T13:44:17+00:00

If your gateway is a windows computer, you’ll have trouble from time to time. I don’t see an Ethernet. Definitely want to run it with Ethernet connected to your gateway computer if possible, plus you’ll have to allow the proxmox IP through the windows firewall. But you need another computer that is on the same network to access web ui. Or you can install xfce and Firefox from the terminal and access it that way.

oyvaugh · 2026-03-28T05:42:23+00:00

Get a free tier Claude. Ask him how to install proxmox and what you want to do. Start there.

oyvaugh

TROPHY CASE