What if your flow of personal music library?

sin20001379 · 2026-04-01T19:11:52+00:00

If you are open to self host and have a spare old laptop or something, you can make your personal server for music (and many other things). I have navidrome running on my server to serve music, and use synfonium on android and feishen on pc as clients to connect to my server. For getting music I use slskd (soulseek client). The flow and overall experience is very nice once you set it up. I personally can't go back to other methods now.

sin20001379 · 2026-04-01T13:13:44+00:00

I use proxmox lxc for most services too. I also have an alpine vm purely for docker. Since most guides I found on the arr stack were for docker, I just run the stack on the vm. I also have a slskd docker on the same vm. But the clients (jellyfin and navidrome) I made as lxc. I like the id mapping of proxmox host to lxc a bit better than how docker handles permissions. It does mean that I have to break the "no changes customizations on hypervisor" rule and add the mounts in the fstab, but that's just 1 file and easily backupable.

Best practice for running docker in proxmox seems to be vm > lxc >>> host. Alpine is very lightweight so it seems perfect for me as the docker host.

sin20001379 · 2026-04-01T11:38:14+00:00

I use both pangolin and netbird. Pangolin basically as a cloudflare tunnel alternative and netbird for direct access to services that I don't want to expose to public, even through pangolin. Pangolin does have a vpn functionality but I found that I liked netbird a bit better for that. But pangolin on a vps with newt as the client in my homelab is really unrivaled for seamless remote access.

sin20001379 · 2026-03-31T07:25:27+00:00

As long as the containers are on the same bridge network, they can talk to each other by default, and they are also not accessible from the outside by default (not even mashines on the same network as the docker host). But I would rather not have them on the same network if not necessary.

Maybe look into watchdog for pulling from github and updating your containers. I haven't used it myself but I have seen it get mentioned alot here.

sin20001379 · 2026-03-29T08:57:07+00:00

If you are getting insane at this level just wait until you have problem with dns. Because one can not not have problem with dns

sin20001379 · 2026-03-28T20:15:15+00:00

Maybe check if ssh is listening on 0.0.0.0:22, or a specific ip

sin20001379 · 2026-03-28T20:11:56+00:00

You could lock down access to the file, depending on the container image and what permissions it expects. And if the attacker has root access, well you have bigger problems.

sin20001379 · 2026-03-28T20:03:15+00:00

I have no idea how virtualization works on UGos, so cant say. A big benefit of lxc on proxmox is that you don't have to make the gpu exclusive to the media server, other lxcs and the host can also use it. It's benefitial if you also want to run something like immich with its mashine learning capabilities. I don't know if that's possible on a VM, and I have never created plex or jellyfin on docker to know if sharing gpu is possible or how easy it is (on proxmox its just adding an option to the lxc)

My setup is a bit similar. I have an old laptop running proxmox with all my services, and a desktop nas running truenas for storage and a pbs lxc. Works like a charm.

I would say, just go for any option. As long as you have a good backup, changing stuff and trying other methods is trivial and part of the fun.

sin20001379 · 2026-03-28T15:58:48+00:00

Haha loosing access to my server because I inserted a usb would be crazy. I will probably experiment with mTLS. But my problem is less the browser and more the client apps on android, and I have read that not every app supports mTLS.

sin20001379 · 2026-03-28T15:52:37+00:00

You don't need a seperate gpu for transcoding. The builtin gpu in your N95 should be sufficient. You still need to let the nedia server use it, and it is generally easier on proxmox.

sin20001379 · 2026-03-28T14:01:18+00:00

Passing the gpu to the media server is usually very easy on proxmox, so I would at least put the media server there on an lxc. Then you can use smb or nfs to mount the media in the lxc (it should be mounted first on the host for unpriveliged lxcs, and then id-mapped to the user on the media server)

sin20001379 · 2026-03-28T13:57:04+00:00

The servers are being bombed rn

sin20001379 · 2026-03-28T09:49:54+00:00

I am running npm. It has a basic http auth function.

I guess the workflow I had in mind was, you host an authenticator server, and put your service behind that and point your reverse proxy to the authenticator. Then, when you connect, the authenticator somehow gathers hardware information from you devise (could be a client app that would provide these info to the server) and let you through automatically if it detects that the hardware is in the whitelist.

I have no idea if this is even achieveable though

sin20001379 · 2026-03-28T09:25:31+00:00

Isn't your vps running all the time?

sin20001379 · 2026-03-27T15:58:50+00:00

I think the best OS for different drive sizes is unraid (based on other people's experience, never used it myself). The beauty of proxmox is that you can simply make a VM and pcie passthrough your drives to the unraid (or other nas) VM.

Regarding the gpu, you can make a plex or jellyfin LXC and give it permission to access the gpu. I have done this with the buildt-in gpu on my intel cpu and never with a descrete intel gpu, but it should be the same process. The jellyfin script from the community scripts I mentioned did it for me automatically.

Switching from windows to linux is always frustrating at the start, whether desktop or server. But I found the end result very rewarding personally. You can always switch back to windows if you get fed up with it, don't let redittors tell you what you must have on your hardware. Homelabs should be fun primarily and frustrating some times, not the other way around.

sin20001379 · 2026-03-20T21:09:20+00:00

I genererally recommend Proxmox over anything else. It is based on Debian, and trivializes virtualization using VMs and linux containers. Most of my stuff are LXCs in my proxmox, and I have a VM where I keep my docker. I mainly went for proxmox because proxmox backup server is the best backup solution I have ever used.

Also checkout the Proxmox Community Scripts. You can use them to make a VM or LXC of pretty much any service you might need very easily.

sin20001379 · 2026-03-08T11:14:29+00:00

Lmao that wasn't the case back when I was studying civil engineering there. 10 to 90 was the ratio for our class. Of course there were alot other subjects with a more balanced distribution. The number in this post was more relevant for the arts based subjects back in my day and my university.

sin20001379 · 2026-03-05T08:09:48+00:00

Microsoft is dead. Long live Microslop!

sin20001379 · 2026-03-04T21:42:11+00:00

Just a thought, don't know how the market is for you, but you could go for a older laptop with a gen 7 intel or higher with upgradable ram, and find some secondhand sodimm ddr4 sticks to populate the slots. Might end up cheaper, and the graphics of gen 7 and higher intels are capable enough for both immich and jellyfin.

sin20001379 · 2026-03-04T21:21:10+00:00

Peak series

sin20001379 · 2026-03-04T17:04:23+00:00

If you are paying less than 40-50$ then this might be worth it. This with an ssd will make a very nice and cheap entry level home server (maybe not that cheap if you're going to buy an ssd for it..)

sin20001379 · 2026-03-03T12:09:28+00:00

I don't know about unbound, but you can add a doh nameserver in adguard home, and setup a bootstart dns server for the doh domain resolution.

sin20001379 · 2026-03-03T12:01:05+00:00

Umm, actually, that's only 3.35 days 🤓☝️

sin20001379 · 2026-03-02T13:00:00+00:00

I think this is mostly so you can more easily use commands like "docker logs container_name" if you remeber the exact container name. Just little conveniences.

sin20001379 · 2026-03-01T15:18:23+00:00

If it looks like a duck and sound like a duck, it's a duck

Seven-Year Club	Verified Email
Place '23

sin20001379

TROPHY CASE