After adding about 20 MAC addresses I gave up and just moved pi.alert to my secondary dns server (a pi zero) which has no docker
giddy
joined 2 years ago
Yeah i tried setting my subnet to 192.168.3.0/24 (the one used by my intranet) but they still show up
Thanks!
I use Nginx Proxy Manager to reverse proxy all my services including Vaultwarden -
Setup in NPM -
Open Nginx Proxy Manager Admin Portal
Click Proxy Hosts
Click Add Proxy Host
Fill in the details
Details tab
Domain Names - vault.your.domain
Scheme - http
Forward Hostname/IP - vaultwarden (this should be the name of your vw container)
Forward Port - 80
Tick Block Common Exploits
Tick Websockets Support
Access List - Publicly Accessible
Custom locations tab
Add the following locations
location 1
location - /notifications/hub
Scheme - http
Forward Hostname/IP - vaultwarden
Forward Port - 3012
Click the cog symbol and add the following to the textbox that appears
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
proxy_set_header X-Real-IP $remote_addr;
location 2
location - /notifications/hub/negotiate
Scheme - http
Forward Hostname/IP - vaultwarden
Forward Port - 80
Click the cog symbol and add the following to the textbox that appears
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
location 3
location - /
Scheme - http
Forward Hostname/IP - vaultwarden
Forward Port - 80
Click the cog symbol and add the following to the textbox that appears
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
SSL tab
SSL Certificate - Request a new SSL Certificate
tick Use a DNS Challenge (or just expose port 80 if you accept the risk)
DNS Provider - Dynu (this is my dyndns provider)
Credentials File Content - replace YOUR_DYNU_AUTH_TOKEN with the API key from https://www.dynu.com/en-US/ControlPanel/APICredentials
Email Address for Let's Encrypt - your email
Tick I Agree to the Let's Encrypt Terms of Service
Click Save
Vaultwarden should now be accessible via https://vault.your.domain
Plenty of free hostname providers. I use Dynu
That is better than my NUC and I have no performance issues
How is NC using redis? I can't see any links from the NC container
Can I ask why the separate NC container for cron? Also, I presume the mysqldump container is for easy db backups?
No you can use other databases. It is separate here
+1 for Vaultwarden. Much simpler to set up
I seriously suggest you give Nextcloud another go, this time under Docker. Very simple to do.
Save the following in a new folder as docker-compose.yml
version: '3'
volumes:
db:
services:
nextcloud-app:
image: nextcloud
container_name: nextcloud-app
restart: always
volumes:
- ./data:/var/www/html
environment:
- MYSQL_PASSWORD=changeme
- MYSQL_DATABASE=nextcloud
- MYSQL_USER=nextcloud
- MYSQL_HOST=nextcloud-db
ports:
- "80:80"
links:
- nextcloud-db
nextcloud-db:
image: mariadb
container_name: nextcloud-db
restart: always
command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW
volumes:
- db:/var/lib/mysql
environment:
- MYSQL_ROOT_PASSWORD=changeme
- MYSQL_PASSWORD=changeme
- MYSQL_DATABASE=nextcloud
- MYSQL_USER=nextcloud
run this command in the folder -
docker-compose up -d
open http://localhost
Has anyone tried the docker variant of pi.alert? I presume that one must be smart enough to filter out docker ‘devices’