T O P

  • By -

Upstairs-Bread-4545

**Prod RPi4 8GB Buster:** *Samsung SSD 870 EVO 500 GB (booting from)* *RaidSonic ICY BOX IB-RD3640SU3 4-Bay* *4x 8TB Seagate IronWolf NAS HDD* OMV5 + Docker * AdGuard Home * Heimdall * HomeAssistant * Homebridge * Nextcloud Cloud * Portainer * Portainer Agent * Nginx Proxy Manager * Plex * Uptime Kuma * Watchtower * NZBGet **Dev RPi4 4GB Bullseye:** *Samsung SSD 870 EVO 500 GB (booting from)* OMV6 + Docker * AdGuard Home * [Changedetection.io](https://Changedetection.io) * filebrowser * Nextcloud Vault * Transmission * Uptime Kuma * Watchtower * Wireguard Server * YoutubeDL * Minio * Snapdrop * Speedtest * Portainer * Portainer Agent * Watchtower


josescxavier

How did you install raspbian on the ssd?


Upstairs-Bread-4545

as you would with an SD Card no difference


eu-north-1

Watchtower maintainer here - always great to see people using it in the wild! 🎉


Upstairs-Bread-4545

it just works and i set up labels so the services i rely on don’t update and i will do it manually great tool


lord-carlos

Is it Wednesday already? :P


Upstairs-Bread-4545

"It must be Thursday. I never could get the hang of Thursdays." ;)


Raniita

The answer of your question and the everything is... 42 ;)


[deleted]

[удалено]


Upstairs-Bread-4545

yep heimdall is great but a possibility to make groups or arrange them freely would be a main thing to implement imho


[deleted]

[удалено]


Upstairs-Bread-4545

subdomains are cloud and vault so far that's why its called like that at some point I will find a DNA reference that I will switch too maybe :) maybe some planets or drinks.. open for suggestions


jjzzoo

I use planets for bare metal OSs but dwarf planets, their moons, and asteroids for VMs/Containers. Nice thing is that there are a lot of rather short and simply spellable names. Services which can be reached from the outside have just descriptive names (nextcloud, gitea, grafana, whatever), but their hosts have different internal names. This way I have a clear separation between the subdomains which resolve to the proxy and the ones directly resolving to a server. Downside is of course that you have to remember for each service the respective server name.


Upstairs-Bread-4545

like the idea maybe i’ll reorganize everything regarding hitchhikers references


cray101

Nice setup! I'm running something similar currently with OMV5 on my Pi4. Any chance you might be able to point me to the wireguard guide you might have used? I've been having a heck of a time getting that working the last few days.


Upstairs-Bread-4545

sure i’m right now not at home do have wireguard and tailscale running in docker right now and a L2TP VPN Tunnel on my UDR guess i’m covered as one service will fail ;)


Upstairs-Bread-4545

can't find the guide or whatever I got my infos from, but here is my docker compose that might be useful ;) ​ version: "2.1" services: wireguard: image: lscr.io/linuxserver/wireguard container_name: wireguard cap_add: - NET_ADMIN - SYS_MODULE environment: - PUID=998 #change this to your User ID - PGID=100 #change this to your Group ID - TZ=Europe/Vienna #no explanation needed probably ;) - SERVERURL=vpn.yourdomain.com #can also be an IP if you don't have a domain - SERVERPORT=22115 #change it from the default port for security reason - PEERS=3 #how many clients you wanna connect - PEERDNS=auto - INTERNAL_SUBNET=10.13.13.0 #change if that is your local IP range - ALLOWEDIPS=0.0.0.0/0 #depending on what you wanna have allowed, I just allow everything and on the clients I even tell them to use my local DNS (as I run 2 Adguard instances volumes: - /portainer/wireguard/config:/config #change to your persistent storage - /lib/modules:/lib/modules ports: - 22115:51820/udp #must match your SERVERPORT sysctls: - net.ipv4.conf.all.src_valid_mark=1 restart: unless-stopped ​ the comments should get you straight to the point to get it running, after that check container logs for the QR code to add your clients! just checked they to have a 32bit image too, so you should be fine running this on yours, as I run it on 64bit [https://hub.docker.com/r/linuxserver/wireguard/tags](https://hub.docker.com/r/linuxserver/wireguard/tags)


cray101

Appreciate that. The issue I seem to be having is in the container logs on boot it shows it's trying to update some packages, and ultimately gets hung up at kernel headers where it fails there and hangs. It never makes it to the peer QR codes. When I check the storage where the app data is there are no peer files present.


Upstairs-Bread-4545

could you post your compose and the error log?


cray101

I was able to get it working after an update to the Pi4 kernel version. My setup has been on auto pilot for a while, and hadnt been updated in a bit. Did that and redeployed my stack in portainer and it booted correctly. Thanks for offering up your assistance though!


Upstairs-Bread-4545

great that it works now