• 0 Posts
  • 9 Comments
Joined 1Y ago
cake
Cake day: Aug 17, 2023

help-circle
rss

I’ve been running OPNsense as a VM in Proxmox for a year on an AliExpress box that doesn’t have ECC. If I might ask, why do you have a requirement for ECC?

Before this box, I ran a Dell R230 with pfSense but got tired of the noise and 40 watt power draw.

I’ve had zero issues without ECC, so I’m just curious about your need for it.


Two users and a handful of service accounts. I use it so I have a centralized user authentication system instead of managing multiple individual user accounts.


I tried a couple of LDAP solutions out there; Windows Server AD, Open LDAP, Samba4 in Debian, TurnKey Solutions LDAP before finally settling on Zentyal. It has a nice to use web GUI and can work in conjunction with AD RSAT tools that I have installed in a throwaway Windows VM for when I need more granular controls the web GUI can’t do.

All my Debian VM’s and laptops connect to Zentyal AD via SSSD.


I just cannot find a use case for Nextcloud. I have gone as far as installing it and sync’ing it with my LDAP for user auth and sync pictures from my phone to my NAS. All the other features are just a big ole m’eh for me.

This has just been my experience, so maybe I’m missing something that would just make it all click and make me not live without it. So far though, I’ve spun up and spun down an instance 3 times and never missed it afterwards.


Zabbix for agent / snmp based statistics.

Uptime Kuma for up/down states with a webhook notification into Discord so I get instant alerts on my phone when one goes down.


That’s an error on my part, apologies. I copy/pasted and tried to redact my url from the APP_URL=https://bookstack.example.com section and ended up deleting the entire line; yay replying from mobile. :|

I currently use Bookstack on Docker in Unraid but the above docker compose snippet is from when I used a debian VM with docker installed on it to run my docker stacks.


Here you go, this is my docker compose. You can modify the pieces as you see fit.

version: ‘3’ services:

Bookstack

bookstack:
    image: lscr.io/linuxserver/bookstack
    container_name: bookstack
    environment:
        - PUID=${PUID}
        - PGID=${PGID}
        - APP_URL=
        - DB_HOST=bookstack_db
        - DB_USER=bookstack
        - DB_PASSWORD=${BS_DB_PASS}
        - DB_DATABASE=bookstackapp
    volumes:
        - ${DATA_DIR}/bookstack:/config
    ports:
        - 6875:80
    restart: unless-stopped
    depends_on:
        - bookstack_db
bookstack_db:
    image: lscr.io/linuxserver/mariadb
    container_name: bookstack_db
    environment:
        - PUID=${PUID}
        - PGID=${PGID}
        - MYSQL_ROOT_PASSWORD=${BS_DB_PASS}
        - TZ=${TIMEZONE}
        - MYSQL_DATABASE=bookstackapp
        - MYSQL_USER=bookstack
        - MYSQL_PASSWORD=${BS_DB_PASS}
    volumes:
        - ${DATA_DIR}/bookstack/mariadb:/config
    restart: unless-stopped

I’m going to go a different route than your question. If you have a spare m.2 slot and room in your PC, you can install a m.2 network adapter. I recently installed a m.2 to 2.5gbe adapters in a Dell 3060 SFF as a proof of concept at home for getting Proxmox ceph cluster working over 2.5gbe.

I used this adapter. https://www.ebay.com/itm/256214788974?mkcid=16&mkevt=1&mkrid=711-127632-2357-0&ssspo=96RQC3CqQ_u&sssrc=4429486&ssuid=9BfwgvpgRMG&var=&widget_ver=artemis&media=COPY


I use Apache Guacamole with Duo 2FA and LDAP authentication. All of it is self hosted and sitting behind Nginx for SSL. Works great aside from when I’m in the office and they do some security te blocking that I’m too lazy to find a work around for as I rarely go into the office.