Debian with docker compose or podman.
this post was submitted on 01 Dec 2024
67 points (98.6% liked)
Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ
55016 readers
497 users here now
⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.
Rules • Full Version
1. Posts must be related to the discussion of digital piracy
2. Don't request invites, trade, sell, or self-promote
3. Don't request or link to specific pirated titles, including DMs
4. Don't submit low-quality posts, be entitled, or harass others
Loot, Pillage, & Plunder
📜 c/Piracy Wiki (Community Edition):
💰 Please help cover server costs.
 |
 |
|---|---|
| Ko-fi | Liberapay |
founded 2 years ago
MODERATORS
That's what I'm running. I'm sure you could squeeze more performance out of a specialized OS, but headless Debian is fast and easy enough.
This. Besides, stability beats out 2-5% performance gains any day of the week, for servers.
Are there any resources available for how to do this? I feel like I more or less understand how Docker works conceptually, but every time I try to actually use it, I feel in over my head very quickly
Search for dockstarter and trash guides. It will give you the foundations of what you need
load more comments
(1 replies)
look for docker-compose + whatyouwant specifically, it's way more straightforward. once you have one set up, it get easier adding on different software.
The best thing is: if something doesn't work, you tweak the compose file instead of having to retype or edit a command.
And you can have a GitHub of your compose files and any supporting config files.
I don't get how some people can raw dog a docker run command!
load more comments
(1 replies)
Debian!
Always Debian.
I’m very happy running lxc containers in proxmox
This has worked well for me too, for many years now!
I just recently discovered proxmox and am slowly moving my docker containers off my NAS. Picked up a used Intel NUC, i5-8259, 32gb ram, 512gb HDD. It's been great so far, very happy with its ability paired with proxmox.
any specific reason why switch?
Performance mostly, encoding is better, reducing load on my NAS and using it specifically for storage. Immich performs better as well, it's pretty resource hungry I found. I also am planning to set up Frigate for home security and that's the main reason I wanted something with a bit more power.
I use Unraid and I'm loving it. Super stable, easy to manage, set up dockers, let's me pool my hard drives and set up parity. Highly recommend. Only thing that I've had a hard time with is finding a stable flash drive - you'd be surprised how many start to fail when used 24/7
Came here to suggest unraid as well. There are probably better options, but for a first timer, I can’t imagine a better solution. The ability to just add a hard drive to the array with virtually not configuration, as well as adding up to two parity disks is great. Caching is super easy too.
Plus they now support zfs so there’s that.
Unraid would be a very good choice for someone who is reaching out and asking this question. Debian can do the same but I suspect it’ll be easier to setup and manage on unraid.
Disk management in unraid is also great.
load more comments
(4 replies)
Using debian 12.
Easy, Linux. I prefer Arch based because of AUR.
I wouldn't use Arch on a Server. Everything you install will probably be in a docker container anyway, so fast updates for system packages isn't important compared to stability. Good choices would be Debian or Fedora Server. I personally use Fedora but the reason is just that I use Fedora on Desktop too, so I know they have really good defaults (They're really fast in adopting new stuff like Wayland, Pipewire, BTRFS with encryption and so on) and it's nice that Cockpit us preinstalled, so I can do a lot of stuff using a WebUI. Debian is probably more stable tho, with Fedora there is a chance that something could break (even though it's still pretty small) but Devian really just works always. The downside is of course very outdated packages but, as I said, on a Server that doesn't matter because Docker containers update independetly from the system.
load more comments
(1 replies)
Now that Truenas Scale supports just plain Docker (and it's running on Debian) I think it's a great option for an all-in-one media box. I've had my complaints with Truenas over the years, but it's done a really great job at preventing me from shooting myself in the foot when it comes to my data.
I believe raidz expansion is also now in stable (though still better to do a bit of planning for your pool before pulling the trigger).
load more comments
(2 replies)
I use Alma because RHEL is designed for enterprise stability. Debian is also a good option.
Just don't use Ubuntu. They do too much invisible fuckery with the system that hinders use on a server. For basic desktop use it's fine, but never for a server.
Edit: but you should be doing most stuff in Docker anyway, so the actual OS isn't going to matter too much. If you're already comfortable with one base (Debian, RHEL) just use that one or a derivative.
Just don't use Ubuntu. They do too much invisible fuckery with the system that hinders use on a server.
Would that warning also apply to Mint, since it’s based on Ubuntu, as well as other Ubuntu-based distros?
I wouldn't use Mint or other desktop-focused OS for a server. Ubuntu's advantage of newer packages gets largely negated by how long Mint takes to release a new major release, so I'd rather use Debian.
I do think Ubuntu is fine for servers too, like almost any other point release distro.
Probably. I don't know what Mint or others do under the hood, but I do know they're definitely targeted at desktop use.
I assume any Linux or *BSD distro will work, especially one with Docker (which is most/all of them?) so you don't have to worry about things being packaged for your distro so long as there's a docker image. My server is Alpine Linux.
I use Alpine Linux for server-based stuff because it’s so light and the packages are kept up-to-date.
Like others in here, I also set mine up with Debian and docker compose. Since it's an always on server I wanted maximum stability. I don't use unRAID, so not sure about compatibility for that.
Data protection is a big concern. Is that something you have in your setup?
I run nightly archiving backups using Borg Backup.
It's compression + de-duplication algorithms have me able to store 18 historical backups of about 422gb ea, in only 367gb of disk space.
That then gets mirrored to a cold storage drive manually every few months.
load more comments
(2 replies)
Unfortunately not in my setup, but that's just because I don't have the money to upgrade it at the moment and nearly everything I have is stuff I can easily redownload.
Once I can save up for it I will up my storage and get some back ups set up.
I have been fighting with Docker and Fedora on these exact items all weekend. Good luck
I use Unraid on my NAS. I like it for storage, I don't like it for running services. It's still running my media stack, but only until I get that moved to a Debian server.
Depending on how involved you want to be and what you want to learn, Unraid might be a good fit for you. It's easy and mostly just works.
I second UNRAID, but also for your media stack. I have my home server running UNRAID and around 20 services, with zero issues.
load more comments
(1 replies)
I dunno what the best is, but if you choose nixos configure openvpn instead of trying to use the protonvpn package.
Just wanted to add that Wireguard is better than OpenVPN in every way and you should use that except when you want to use it for torrenting. I don't know remember the reason but that's the one time when you should be using OpenVPN. I think it had something to do with OpenVPN supporting TCP and Wireguard being UDP only or something like that.
Wireguard uses UDP which results in better latency and power usage (e.g. mobile). This does not mean Wireguard can't tunnel TCP packets, just like OpenVPN also supports tunneling UDP.
I'm using Wireguard succesfully for torrenting.
As a note: while UDP is preferable for stability/power usage, UDP VPN traffic is often blocked by corporate firewalls (work, public free wifi, etc) and won't connect at all. I run OpenVPN using TCP on a standard port like 80/443/22/etc to get through this, disguised as any other TLS connection.
Good point. Setting up shadowsocks and tunneling wireguard through is on my to-do list. I believe ss also works over TCP so it should work reliably in filtered networks.
interesting. proton has example openvpn configs on their site which was hugely helpful to me. dunno if they have wireguard equivalents, or if those are needed.
I'd be weird if they didn't have Wireguard configs, Wireguard is basically the standard nowadays. It's faster and safer (the code base is way smaller, so the chance of there being security vulnerabilities is a lot lower and can be fixed more easily).
load more comments
(2 replies)
I'm sure any server oriented Linux distro will do fine. I use Debian.
I will note, I don't know if you're planning on having remote access (e.g. through tailscale or reverse proxy), but if you are, I found it quite a challenge to get proton to play nice with them
For newcomers I'd recommend docker and images like gluetun for setting up the VPN. It makes it easy to forward ports (for remote access) while keeping the torrent client behind the VPN.
load more comments
(1 replies)
load more comments
(2 replies)
I'm currently playing with setting up a home server on an old PC, using Proxmox as the main OS and using LXC and VMs for the services, not fully set up yet (still working on figuring out reverse proxy to make my services available on the internet)
It's neat tho, and there's some helpful scripts for installing various containers and things online.
I would need that because I’m basically starting from zero with learning all this stuff lol. Using Tautulli remotely is a challenge for me right now if that gives any indication of my level of knowledge here
remotely is a challenge for me right now
I've seen you mention this a few times and like mentioned elsewhere in here, set yourself a Tailnet up.
It's fugging brilliant, the docs are wrote by some very clever people (note, I am best described as a copy / pasta person?) and are through, and you can use a github or even a Google account for authentication.
Even grabbing a cheapo raspberry pi4 gives you a 1GB port (the rpi3 only has a 100Mbps rj-45 port and would still suffice for lesser needs) for your own ~~VPN~~ Wireguard to home, that is P2P encrypted and can be used as an Exit Node / subnet router
ie: if you're on someone else's internet/cellular you can simply hit up your exit node to break out of any nanny filters, stop anyone else noseying at your traffic (obv bar your ISP seeing outgoing requests unless you have a another...VPN on your router), and also view and/or manage any devices on your home network/Tailnet by IP address.
Hell, I dumped a rpi down at a family members house that is part of the "stack" so I can help out remotely but it seems someone has knocked the aerial out of the HAT again :/
Best thing ever.
load more comments
(1 replies)
load more comments
(1 replies)
view more: next ›