- Jinja 36.9%
- Shell 33.5%
- Just 21.7%
- Dockerfile 6.4%
- Go Template 1.5%
|
|
||
|---|---|---|
| .forgejo/workflows | ||
| ansible | ||
| authelia | ||
| caddy | ||
| diun | ||
| forgejo | ||
| frigate | ||
| frpc | ||
| frps | ||
| grafana | ||
| mosquitto | ||
| podman | ||
| prometheus | ||
| qbittorrent | ||
| recyclarr | ||
| restic | ||
| searxng | ||
| voidrepo | ||
| .gitignore | ||
| .sops.yaml | ||
| atuin.yml | ||
| authelia.yml | ||
| common.yml | ||
| compose.yml | ||
| default.env | ||
| forgejo.yml | ||
| frigate.yml | ||
| gotify.yml | ||
| homeassistant.yml | ||
| immich.yml | ||
| jellyfin.yml | ||
| justfile | ||
| kavita.yml | ||
| LICENSE | ||
| metrics.yml | ||
| mise.toml | ||
| navidrome.yml | ||
| paperless.yml | ||
| prek.toml | ||
| qbittorrent.yml | ||
| README.md | ||
| sabnzbd.yml | ||
| searxng.yml | ||
| servarr.yml | ||
| slskd.yml | ||
| syncstorage.yml | ||
| vaultwarden.yml | ||
| voidrepo.yml | ||
| wakapi.yml | ||
Selfhosted
My selfhosted config.
Hardware
- Ryzen 5 5600G 3.9GHz 6 core
- Gigabyte B550I Mini ITX
- XPG GAMMIX D45 DDR4-3200 2x16GB
- WD Blue SN550 NVME 1TB
- Kingston Q500 SSD 2x240GB
- WD Red 5400 RPM 5x8TB
- Silverstone SX650-G 650W SFX
- Intel I350-T4 4x1Gb NIC
- APC BK500JP UPS
- Dual Edge TPU M.2
- Dual Edge TPU PCIe Adapter
- Jonsbo N1 Mini ITX
Software
Containers are run with docker, a frp on a VPS is the entrypoint with Caddy acting as a reverse proxy to other services. See compose.yml and the list of includes it contains.
I have previously ran Cloudflare Tunnel but decided to ditch it in favour of having more control over non HTTP traffic and more control over my traffic in general. Using Fast Reverse Proxy makes TCP/UDP much easier to work with and in most cases doesn't require connecting client to install any additional software.
I have previously attempted to run containers using rootless podman with moderate success, but inter-container networking was difficult and at times too slow (slurp4netns). The fact that other tools like kustomize are needed to have a flexible configuration was another downside. Perhaps I will revisit podman again someday.
Configuration
All applications are configured with a single default.env. This env file is encrypted using SOPS with age and must be decrypted first before it can be used: sops decrypt default.env > .env. Prior to commit 6adee98ae6ad SOPS with PGP backend was used.
Individual services can be disabled by commenting them out from the include list in compose.yml.
Backups
Backups are done using restic and resticprofile. See the restic/README.md for details.
Power
- 1 WD Red 5400 RPM 8TB drive consumes about 6W of power.
- At standby with all drives powered ON the consumption is 77W (default BIOS)
- At standby with all drives powered OFF the consumption is 45W (default BIOS)
Todo
Software
- CardDAV and CalDAV for calendar and contacts sync like radicale
- Safe{Wallet} for multisig wallets
- Browser sync, e.g. syncstorage-rs for Firefox
- Code Statistics using wakapi
Hardware
- Replace the NIC with a TPU such as Coral PCIe Accelerator or a dGPU with a small form factor
Mirrors
This repository is hosted on Forgejo which mirrors to the following git forges:
