Hi, I have Immich installed as an app on TrueNAS-SCALE-22.12.4.2. I'm trying to get the Immich folder to share via NFS to my client so that I can rsync it across for back up purposes. While I seem to not be getting any problems mounting the dataset on the client (no showing any errors), the folder is showing empty. The Immich dataset belongs to root on Truenas and permissions are set as u(rwx), g(r-x), o(r-x). I thought that because "other" have read permission of the dataset, I should be able to at least read the contents of the dataset folder. This is all I need for backup purposes. Any thought? Clearly I can't start messing around with permissions or changing user of the Immich dataset or I risk Immich not working anymore.
trilobite 2w ago • 100%
It looks Luke the Frigate website is recommending chinese Dahua cameras?
trilobite 2w ago • 40%
gitlab.futo.org
Hi, anyone come across and used the Polycentric + Harbour option for managing digital ID? What do you think about it? Does it really manage IDs in a private and secure way? I came across FLUTO who seem to be great promoters of "software for the benefit of humanity" but you always wonder how much you can trust these thrid parties ... when they decide to sell your data?
trilobite 2mo ago • 100%
This post got me to search in FDroid and i found Chatlaunch forma Whatsapp. Anyone used it?
trilobite 3mo ago • 100%
This thread has reminded me that I have Ruckus APs that mesh. But support had been dropped because they are "old". Presumably there is no open source solution that I can flsh these with, still allowing me the meshing?
trilobite 3mo ago • 100%
Exactly. I moved to Jellyfin because Emby introduced the life time support thing
trilobite 3mo ago • 87%
I'm not sure what the right model is to get money flowing in. It seems like they took the easy route. 100 dollars for a server licence is not really that small amount considering that most server users are families? I would have preferred massive fund raising campaigns .... I'm a bit lazy and need lots of nagging to get my credit card out .... But its right these guys get some income for their work. As long as code remains AGPL ... I bet soon there will be a fork like happened with Emby. I ended up purchasing the server licence a a few month later moved to the forked version ...🙂
Hi, moved to Italy and live south in rurale area where I bought house. I want to setup domotics at home using KNX and Openhab. I can't find decent online shop. UK is not an option as I'll end up paying customs. Anyone can recommend a good shop?
trilobite 3mo ago • 100%
What? $9 for a box of cereal? What the hell of a cereal do you buy? Look, its all proportional. Here a box of cereal is about half that price, yet most people are on €50k or less. OK, we have free health care (that is slowly being eroded) but still, we have petroleum at €1.9/l ... How can you not be living well off with $200k per year?
Hi, I have my TIM (Italy) ONT installed (its a ZXHN F6005, which I think is also installed by OpenFibre in the UK). This is connected to a TIM router and them to a minipc machine that has pfsense installed. I believe the ZTE ONT can be directly connected to the WAN port of the pfSense machine by having pppoe set on the WAN interface. That way I can drop this intermediate TIM router which is simply sucking up energy. I tried setting a pppoe connection the pfsense machine by giving it userid and password but the connection never comes up. Strangely, even when leaving the WAN interface set to pppoe on pfsense and reconnecting it to the intermediate TIM router, the connection comes up (i.e. doesn't seem to be a requirement). Any thoughts?
trilobite 3mo ago • 100%
DEC740
Very nice but looks expensive. Do you think I could upload the pfSense configuration to it? I dread the pain of having to configure the whole thing from scratch.
trilobite 3mo ago • 100%
I dont' have IDS/IPS installed on my pfsense box.
trilobite 3mo ago • 100%
Any more specific recomendation of the machine you have running?
trilobite 3mo ago • 100%
sudo ethtool enp2s0 | egrep 'Speed|Duplex'
Assuming you mean running these in the command prompt of pfSense? Tried but says "not found". Same for "ip link"
trilobite 3mo ago • 75%
I probably didn't realise how CPU intensive the work of 1Gbit connection must be ...
trilobite 3mo ago • 100%
Yes, checked and are all on the 1000M (1G) link
trilobite 3mo ago • 100%
Any thoughts on a good little fanless device that I can use as a pfSense machine that has a resonable CPU. I would just swap the SSD from my curent device to the new one and it should all work nicely.
trilobite 3mo ago • 100%
Ok, starting to think I need a new little device for my pfSense. I was thinking of going OpenSense and buying one of their devices to support the project.
Regarding my switch, the ports where my Rukus APs are connected are showing 1000M on the interface. But I think a step by step testing is what is needed as suggested above.
My old setup was: VSDL modem -> pfsense on mini J1900 Celeron (2 GHz) -> CISCO SG300 10MPP switch -> Rukus R310 wifi -> Laptop Currnet setup Fiber model -> pfsense on mini J1900 Celeron (2 GHz) -> CISCO SG300 10MPP switch -> Rukus R310 wifi -> Laptop Today i got my 1GBit fiber installed (big deal for those like me living in rural areas) only to discover that my current network setup is not allowing me to benefit from it. I was on VSDL copper wire before and was probably in the region of 50-60 MBit/s with my above current setup. Even when removing the wifi bottle and linking with Cat5 UTP wire directly to switch, I'm not getting major improvements. When I got the fiber installed this morning I was disappointed when I saw only marginal gain running at 80 MBit/s (c. +30 MBit). So I decided to connect the laptop via LAN cable directly to modem. I got a starkling 900MBit/s. So, along my network I have bottlenecks. THe first one I tested was my little pfsense machine. I installed the speedtext-cli command and was surprised to find that it was giving my around 300 MBit/s. So a lot better than my laptop on its usual wifi connection but still only 33% of what I get directly off the modem. So my first question is how can it be that my little mini J1900 Celeron (2 GHz) with 4 GB RAM cannot handle this bandwith? Do I need an upgrade for my pfsense machine? I noticed that the peak CPU demand as speedtest-cli was running was in the 60% region, far from a saturated CPU and RAM only occupied for about 30%. If it is my little pfsense machine, how far do I have to go with finding the right little machine that can handle 1 GBit/s. The next question is if I'm getting 300 MBit/s on the WAN connection of the pfSense machine, how is it that I only see a small percentage of this on my laptop? i.e. a drop from 300 MBit/s to 80 MBit/s? I guess I would have to test the switch to start and then move to the wifi access points ...
trilobite 4mo ago • 100%
This is an intersting thread because I read through the lines the concerns that many have about losing parts of their homelab. Something I too am concerned about. While I have learnt to put my data securely on NAS with docker compose (I.e. docker image runs on VM while data i s stored on NAS and nas dataset is mounted via NFS on VM), in still not clear ho I save the config on the docker container. Basicalky, if I want to move that docker image to a new VM, how do I go about it?
trilobite 4mo ago • 100%
Mate, something like Immich or digikam (if you want local) will do a good job at this. Not perfect but perfection is utopia. I fed 40k images to Immich and it did a reasonable job in not too many hrs.
trilobite 4mo ago • 100%
Well, this is what I thought too. Also, any other country under US influence would have handed him over to the US. See the saga that poor Assange has gone through. What worries me is that public opinion is rather silent to stories like those of Assange and Snowden. Whistle blowing should be seen as a right. If the organization I work for is ethically and morally misbehaving, I have the right to blow the whistle through the right internal channels to start with. If nobody listens, then you take it to the next level.
trilobite 4mo ago • 66%
I confirm too that banking apps on /e/ is a bit of a nightmare. But I used /e/ for 3 years or so and was very happy until I moved to GrapheneOS.
trilobite 4mo ago • 75%
Same mistake I made. But I'll probably keep using it until the battery is completely dead.
Hi folks, I installed Radicale earlier today and when I installed it as a user as described on the homepage using `$ python3 -m pip install --upgrade radicale`. I initially created a local storage and ran as normal user `$ python3 -m radicale --storage-filesystem-folder=~/.var/lib/radicale/collections`. I was able to see the webpage when I type the server address (VM on Truenas) `http://192.168.0.2:5234`. So the install went well. But I wanted to create system wide so that I can have multiple users loggin in (family members). So i did the following: - `$sudo useradd --system --user-group --home-dir / --shell /sbin/nologin radicale` - `$sudo mkdir -p /var/lib/radicale/collections && sudo chown -R radicale:radicale /var/lib/radicale/collections` - `sudo mkdir -p /etc/radicale && sudo chown -R radicale:radicale /etc/radicale` Then I created the config file which looks like: ``` [server] # Bind all addresses hosts = 192.168.0.2:5234, [::]:5234 max_connections = 10 # 100 MB max_content_length = 100000000 timeout = 30 [auth] type = htpasswd htpasswd_filename = /etc/radicale/users htpasswd_encryption = md5 [storage] filesystem_folder = /var/lib/radicale/collections [logging] level = debug ``` Of course the users file also exists in the `/etc/radicale`. Then I created the service file as per the guidance without changing anything: ``` [Unit] Description=A simple CalDAV (calendar) and CardDAV (contact) server After=network.target Requires=network.target [Service] ExecStart=/usr/bin/env python3 -m radicale Restart=on-failure User=radicale # Deny other users access to the calendar data UMask=0027 # Optional security settings PrivateTmp=true ProtectSystem=strict ProtectHome=true PrivateDevices=true ProtectKernelTunables=true ProtectKernelModules=true ProtectControlGroups=true NoNewPrivileges=true ReadWritePaths=/var/lib/radicale/collections [Install] WantedBy=multi-user.target ``` Then I hit the usual sequence: ``` $ sudo systemctl enable radicale $ sudo systemctl start radicale $ sudo systemctl status radicale ``` and of course it all seems to be running: ``` user@vm101:/$ sudo systemctl status radicale ● radicale.service - A simple CalDAV (calendar) and CardDAV (contact) server Loaded: loaded (/etc/systemd/system/radicale.service; enabled; vendor preset: enabled) Active: active (running) since Sat 2024-05-25 19:44:54 BST; 18min ago Main PID: 313311 (python3) Tasks: 1 (limit: 4638) Memory: 13.1M CPU: 166ms CGroup: /system.slice/radicale.service └─313311 python3 -m radicale May 25 19:44:54 vm101 systemd[1]: Started A simple CalDAV (calendar) and CardDAV (contact) server. ``` When I run `$ journalctl --unit radicale.service` it only provide the following output, despite the logging level is set to debug: ``` user@vm101:/etc/radical$ sudo journalctl --unit radicale.service -- Journal begins at Sat 2022-12-31 15:45:51 GMT, ends at Sat 2024-05-25 20:04:37 BST. -- May 25 19:25:46 vm101 systemd[1]: Started A simple CalDAV (calendar) and CardDAV (contact) server. May 25 19:44:46 vm101 systemd[1]: Stopping A simple CalDAV (calendar) and CardDAV (contact) server... May 25 19:44:46 vm101 systemd[1]: radicale.service: Succeeded. May 25 19:44:46 vm101 systemd[1]: Stopped A simple CalDAV (calendar) and CardDAV (contact) server. May 25 19:44:54 vm101 systemd[1]: Started A simple CalDAV (calendar) and CardDAV (contact) server. ``` Any clue as to why i get "Can't establish a connection ..." error when I type `http://192.168.0.2:5234`. I'm clearly missing something but can't quite get what it is. Any help would be appreciated. BTW, I'm connecting to the Truenas server (where the VM runs) from my laptop, the same one that allowed me to connect when I used the normal user approach described at the start.
I'm trying to get my head around this. If I have a media folder of videos that I mount via NFS so that I can access from my laptop, my understanding is that I need to disable "Configuring Host Path Validation" if I then have an app like Jellyfin reading that folder for serving videos to my family. It this correct or am I misunderstanding? The alternative is that I would need two difference datasets created, one for the NFS share and one for Jellyfin but this defeats the purpose, plus is an incredible waste of space. Please tell me I have it all wrong ...
Just installed Syncthing on my Scale server. It looks like it doesn't have users but rather folder IDs that are then used to sync devices. One of the cool features of Nextcloud is the ability to share files with other users. Can this be done with Syncthing?
www.cloudron.io
Just thinking of ditching nextcloud and its just too much for my family use. All i needis carddav, caldav and file sync. Have a Debian VM running on Scale and was thinking of using Cloudron docker install. Is this the way others are installing on VMs?