I’m about 99% sure it does, I don’t use it that way but It does allow DNS zones. For example:
It’s a lot more technical then Adguard Home for sure. Both work just fine though, I came from Adguard Home as I use a PXE server to provision some of my devices and Technitium is super easy to configure that.
I had to create an account as per the usual process for these types of apps, but it was all local. I never had to do one to connect to their servers. I know it generates a unique instance ID which I believe phones home to their servers but I don’t mind personally.
As for my experience, a lot of it is locked behind their paid plans, so I just keep it limited to what I use which is fine. I do like it as it does better than NocoDB for my needs (the input forms is what I needed) and it does better there. I don’t recall the other reasons for not using NocoDB otherwise, but it’s a long while.
Their pricing is here: https://baserow.io/pricing
So, that’s mostly what is locked behind.
My sleep form I built which feeds the database:
Overall, it does meet my needs so that’s all I ask. :)
In no particular order, the most essential ones are those I constantly use throughout my day and also weekly.
Proxmox holds all of these in different LXC’s and VM’s
Aside from that, i do have other services I use every so often like Memos, Joplin Server (holds most of my notes), Pingvin and a few others.
Good to know about the 5Ghz WiFi on the newer devices.
I’m still new to Matter so I appreciate the info you gave for not all devices not using WiFi. :)
Matter runs over your WiFi so as long as your server you run Home Assistant on for example has wired or wireless access you are good to go. My Home Assistant is on LAN and wired so no wireless, but they all communicate through the WiFi network. if you have a Bluetooth dongle or onboard, Home Assistant would also use that to pair and communicate if needed.
2.4Ghz WiFi is only supported and no newer generations yet.
Grafana + Prometheus dashboards can be quite addicting or useful. Noted.lol put together a nice tutorial for getting started.
For most of my services though, I simply use Uptime Kuma which then sends an alert to Gotify when my services go down or whatnot, Gotify then instantly notifies my phone so I can be aware. It helps keep the spouse happy when their go to service for some reason crashed. :)
Authentik is my IDP provider so I put it in front of all my publicly facing Apps which support OIDC login. For example, I can log into my Portainer instance from an external network, but to do so, I log into Authentik First which sends it to my service.
For the apps which support HTTP headers, like I said, Pomerium acts as the service which passes my credentials to the device. I admit - Authentik does this also without the need for Pomerium, (through their flow settings) but I found Pomerium to be much easier to set up for this than Authentik and haven’t looked back or felt the need to change it.
With that, I use Pomerium for apps which accept a HTTP Headers, for example, my Fresh Tomato firmware flashed router, it has a HTTP dialog. This allows me to login from the road if I need to manage something like rebooting it or updating firewall rules etc.
My access flow is this :
router.example.com —> Cloudflare Tunnel —> Pomerium IP —>Authentik —> Router’s Gui.
It works flawlessly. I don’t often use it, but when I do, it helps. I also had it enabled for AdguardHome but moved to Technitium DNS which I prefer and that doesn’t have the HTTP Headers so it’s not fully compatible with Pomerium that I’m aware of.
I am a former IT Desktop drone…er…support worker… I used to swap towers for my local municipality back when Windows XP was being replaced with 7. I saw passwords on post-its attached to the monitor, mouse pad, and even under the keyboard or keyboard drawer (I had to get under desks to do the swap). Our policy was to remove those whenever we saw them and trash them in a different can across the building or a different one. They have a standard 90 day password cycle and most people couldn’t handle that. I would answer the phone often to 'unlock" their account after 3 attempts. My all time favorite when I would help an end user with software was when I would encounter someone’s “God Mode” icon for some of the registry hacks that used to float around. Everyone had Admin privileges (ironically), so it wasn’t really needed anyway.
Their primary server admins and IT folks in the main office were Top notch though. Never any downtime and the main security guy was very strong in making sure everything was adhered to. We, as desktop support didn’t have the master password to decrypt a laptop which was GPG protected and had to bring it to him if we had a user which locked themselves out. With great consternation, only a few machines would be allowed to XP and those were VLAN’d and isolated from the outside world.
The rest of the server admins handled everything with ease seemingly. The fun part was when they had a third party come in and do a security audit. No problems on the server side, but it wasn’t a success. They did the 'ol drop a flash drive randomly in different locations test. Knowing human nature, they knew someone would pick it up, plug it in and be baited with an excel file which looked like it had financials. Unbeknownst to the user, it sent a ping to their reporting server and the drive ID. Which was later reported back. They also did physical security penetration tests - walk in behind you type of thing. I remember seeing a group of guys non company ID badges try to follow me into the main IT office. I stopped them and asked who they were and what they wanted (this was a Govt building), and the look of confusion mixed with satisfaction from them that I stopped them was priceless. I let the head IT guy know who was at the door and left it up to them to unlock it for them.
I now work in a help desk position for a software company and miss those days of desktop support. But, I know for a fact that I.T. Guys an Gals don’t get enough recognition. They are the understated backbone of a company’s well-being especially when holidays and weekends are prime time for systems to fail and they are practically on call no matter what.
I use Proxmox and don’t use Truenas. My setup is basically to install Cockpit on the host server via apt-get and then the 45 Drives cockpit-sharing plugin. This provides the NFS and Samba sharing I need and use. I host Home Assistant in a VM and Docker containers in a few LXC containers which host about 10 containers each. Then, in combination with https://tteck.github.io/Proxmox/ you can set up pretty much anything you need from there.
This is on in computer terms, ancient; a 13 year old Dell Optiplex 990 with 16gb Ram and software such as Authentik and Vaultwarden from different dedicated LXC containers. Never have any issues with overload of the system resources or running out of memory. It’s pretty much rock solid.
As Another Proxmox user - I’ve been doing well with it. I use these scripts for the LXC’s which has been fantastic:
https://tteck.github.io/Proxmox/
I also can log into it from the web as it’s secured by Authentik, SSO OIDC login when Away from home and need to manage it. Rare! But the option is there! :)
Mine are where they are stationed:
Front Door Lamp, Patio Door Lamp, Desk Lamp and Bedroom Lamp. We don’t have many obviously:)
So, left of couch as you look at it is next to front door so light there, other side, by patio, you guessed it patio light. And the rest are pretty much bland like that.
Mine are where they are stationed:
Front Door Lamp, Patio Door Lamp, Desk Lamp and Bedroom Lamp. We don’t have many obviously:)
So, left of couch as you look at it is next to front door so light there, other side, by patio, you guessed it patio light. And the rest are pretty much bland like that.
The older IDE drives with the 5.25" platters and smaller ones make great wind chimes. The laptop ones are a bit .ore fragile due to thinner material. Years ago, we used to do this with a few of them.
Xpipe https://xpipe.io/ is an alternative it runs and stores your data locally on your machine and not web based. I’ve been playing with that a bit, it does auto discover Containerized apps and you can sort of exec into them to run commands and also browse the directories of your containerized apps with a simple click in a File type GUI. It uses your OS’s default Terminal application so it won’t bring any extra with you so it’s more native to your OS.
I’ve been a Konsole user on KDE for a few years now and it’s pretty much what I’ve been used to. Trying out Xpipe now and Termius about a year ago, I can say that Xpipe is stronger in it’s ability to interface with my containerized apps (Docker), but lacks the polish that Termius has visually. They both get the job done, but at the end of the day, I still reflexively just hit my Ctrl+Alt+T key combo to log into my machines.
Then, for a whole different take, SSWifty! https://github.com/nirui/sshwifty - Instead of launching an app, deploy this on your server, and then use your browser’s session to securely access your sites.
I got lost with setting up a nice inbox downloader to store all my emails on a HDD attached to my RPI4, but haven’t quite mastered the SMTP server part or found the right software to run on it. It’s currently powered off waiting for a reflash of the SD Card so I can try again. The end goal for mine is to set up fetchmail and have it grab from my inboxes then imap capabilities so I can read it in Thunderbird. (Don’t talk to me about webmail, I know it’s the way but I’m older than Star Wars (Original one) and am stuck in my ways. Now get off of my lawn!
Seriously though, I have tinkered with it before as an AdguardHome Server, but somehow, my latency increased so I dropped that. Most of it’s life was spent hosting Home Assistant on it until I moved that to the umm…more controversial Proxmox VM method. I’m also on the fence about setting up the Raspberry Pi Nextcloud on it. (Maybe).
Here is a good resource for 36 different things you could possibly do with yours.
I’ve tried this a few times, so I know I’ve added more hits to your counters! I know it can be run on non-pi devices which is cool, ever think of changing the name to suggest it’s not just for the 'ol pi? :)
Great job on the cabling and the setup! As an Apartment dweller, I hope you don’t mind my living vicariously through your setup!
Let me preface this with that I am an experienced CLI user and with Docker, so this really is not in my interest generally, but getting older and dealing with a variety of other personal issues, having a nice dashboard to deploy things sometimes is just really nice ya know? So I figured I would put on my dusty beginner’s hat to get this a run.
For the beginner, it’s a nice system to get started and get your feet wet with a no-nonsense app install experience. I tested this in a VM on my desktop and installed Sonarr and Sabnzbd which if you use Docker with these, you know the proper volume mapping is key. They take the hassle out of doing this for the end user. With that said though - file permissions are a bit off and both Sonarr and Sabnzbd needed the proper permissions set for the folders. Not a deal breaker for someone accustomed to the CLI, but for a new self hoster, this can be a bit frustrating.
Their app store is pretty impressive and I guess growing, the install on the server was painless to get running. It’s something to keep an eye on, it’s in good company with the other ones like Umbel and CasaOS, each has their own qualities.
For those wanting more fine grained control over the apps and installs, Tipi is a bit more opinionated to the port numbers and paths used and you can’t easily modify those (at least from what I could tell). In the long run, this is a non issue for the most part if you are starting on a freshly installed server and don’t want to handle the challenges of proper path mapping, reverse proxying and so forth. (They include Traefik in the install). Not having to worry if port 3000 is already taken or 8080 is, you can trust that it will handle it and it does!
I have an Rpi4 4gb model and run Uptime-Kuma who’s sole purpose is to monitor my server and alert me if it should go down. I also have it acting as a Tailscale exit node.