Ok thanx I’ll try ouroborous so!
Beiträge von RoiBurgonde
-
-
Ok, but I thought Ouroboros was not developed anymore? Is it safe?
-
Hello,
I'm using OMV 6 with some différent containers in docker. I used to download the images updates of my containers with Watchtower, but for a few months it doesn't work anymore and I've got these kind of messages :
ZitatAlles anzeigenCould not do a head request for "sha256:41412d9e9d18db9b05a4643a8b80069038c4d10581ce4240808253d777f146b8", falling back to regular pull.
Reason: registry responded to head request with "401 Unauthorized", auth: "Bearer realm=\"https://auth.docker.io/token\",service=\"registry.docker.io\",scope=\"repository:library/sha256:pull\",error=\"insufficient_scope\""
Unable to update container "/jdownloader": Error response from daemon: pull access denied for sha256, repository does not exist or may require 'docker login': denied: requested access to the resource is denied. Proceeding to next.
Could not do a head request for "sha256:61f6bed2bfdee179c32a9ab8a3f40d02921c25f121c417e4b8255b279d0a7964", falling back to regular pull.
Reason: registry responded to head request with "401 Unauthorized", auth: "Bearer realm=\"https://auth.docker.io/token\",service=\"registry.docker.io\",scope=\"repository:library/sha256:pull\",error=\"insufficient_scope\""
Unable to update container "/transmission": Error response from daemon: pull access denied for sha256, repository does not exist or may require 'docker login': denied: requested access to the resource is denied. Proceeding to next.
Could not do a head request for "sha256:26f36850f51b8ccb87fa254ef3fb08b10edf4685a651a8ae3f90928778e57ba1", falling back to regular pull.
Reason: registry responded to head request with "401 Unauthorized", auth: "Bearer realm=\"https://auth.docker.io/token\",service=\"registry.docker.io\",scope=\"repository:library/sha256:pull\",error=\"insufficient_scope\""
Unable to update container "/nordlynx-jdowloader-qbittorent_nordlynx_1": Error response from daemon: pull access denied for sha256, repository does not exist or may require 'docker login': denied: requested access to the resource is denied. Proceeding to next.
Could not do a head request for "sha256:63ee17560c0fa7a9048a9522e94fb6a392c016b536defca46a42bda134a057c3", falling back to regular pull.
Reason: registry responded to head request with "401 Unauthorized", auth: "Bearer realm=\"https://auth.docker.io/token\",service=\"registry.docker.io\",scope=\"repository:library/sha256:pull\",error=\"insufficient_scope\""
Unable to update container "/heimdall": Error response from daemon: pull access denied for sha256, repository does not exist or may require 'docker login': denied: requested access to the resource is denied. Proceeding to next.I don't know how to resolve that problem. Any ideas?
Thanx in advance!
-
use fixed IP for OMV and use 8.8.8.8 or other like this as DNS sever for OMV ( Do not Use IP of the adguard docker)
Hi! It works perfectly now when I use a static IP in OMV with other DNS server!
Thanx Mr. raulfg3 !!
-
one reason why my ad blocker is now on a Rpi
OK, so if I want to make it works correctly, I have to do like you.
What kind of Rpi do I need for that?
-
AFAIK the port options are not necessary, my bad, but there is a guide here the second post references a stack/yaml file
Ok I installed with the stack in portainer. Easiest way for me, thanx. But the point is I've got the same problem. Can't access OMV GUI when DCHP server from Adguard is activated.
When I look into my ISP router configuration, my Rpi is marked as not connected... I don't know why, because Adguard is marked as connected...
-
Best guess as with most docker ad blockers you have a port setting of 80:80 in your compose file, if you have not changed OMV's default port which is 80 to say something like 81 then you can't reach OMV's GUI
Hi !
I created a macvlan so normally it is supposed to avoid ports conflicts, doesn't it?
-
Hi everyone,
Hope that somebody will be able to help me with my new problem.
I installed AdGuard Home in docker on my Rpi4 OMV.
As I can't change the DNS in my ISP router (it's forbidden by ISP in France), and as I don't want to configure DNS on each home's devices, I have to use DHCP server of AdGuard Home.
All seem to work perfectly except one thing : i can't access to OMV GUI anymore (and others Web Containers GUI like Heimdall...)
To install I created a macvlan :
Codesudo docker network create --driver macvlan --attachable --subnet=192.168.1.0/24 --gateway=192.168.1.254 -o parent=eth0 --ip-range=192.168.1.45/32 adguard_networkThen I created a docker-compose file:
Code
Alles anzeigenversion: "3.6" services: adguardhome: container_name: adguardhome image: adguard/adguardhome:latest ports: - 53:53/tcp - 53:53/udp - 67:67/udp - 68:68/tcp - 80:80/tcp - 443:443/tcp - 853:853/tcp - 3000:3000/tcp volumes: - /srv/dev-disk-by-uuid-**********************/appdata/adguard/work:/opt/adguardhome/work - /srv/dev-disk-by-uuid-**********************/appdata/adguard/conf:/opt/adguardhome/conf #pour persister la configuration restart: unless-stopped networks: adguard_network: ipv4_address: 192.168.1.45 #IP fixe assignée au peripherique reseau virtuel Adguardhome networks: adguard_network: external: trueIs somebody have a clue of what is wrong? Why can't I reach OMV GUI anymore when I use DHCP server of AdGuard Home?
Thanx guys...
-
In fact Syncthing suits perfectly now for my needs.
I’d really want to try Seafile once, just to see... but only if I can install it easily in a docker container.
But thanx for your answer to this thread.
SWAG does include reverse_proxy.conf files for Syncthing. Why? I don’t see why. All of the reverse_proxy files that I have used have worked without a hitch super easily. It’s great to be able to access Airsonic or Navidrome from a remote location on someone else’s machine, but I can’t see why anyone would want to do that with Syncthing, or if it’s even possible.
I can answer : I used reverse proxy with syncthing once to share folders and files on someone’s else’s machine. Very useful...
-
Hi Agricola,
Ok what you say makes sense.
So I tried to reinstall the docker container without SWAG, and files sync when my two devices are on different networks.
So it is much easier than I thought at the beginning! As we say in France "Why do easy when you can do difficult?" (I don't know if it is well traduced
)In fact I just want a personal cloud, without using Google, Apple or others... I want to save my files in case of drive failure...
At the beginning, when I created my NAS, I discovered Nextcloud, so I tried it, and abandoned it because of some issues (and there were too much applications in it I didn't use). Next I discovered Seafile which seemed to be a good solution for what I want. But I never succeeded to install it (I didn't find any official Seafile container for Rpi4).
Finally I found Syncthing. Now that it seems to work, I hope I won't have issues with it...
Thanx for your help!
-
Ok,
The new question is : is Fail2ban automatically activated or do I have to activate myself? How configure it?
For the moment the only strong password I use is to access the web GUI.
Thanx
-
Alles anzeigen
These links might point you in the right direction.
https://blog.linuxserver.io/20…rypt-nginx-starter-guide/
https://docs.linuxserver.io/general/swag
Please note that swag and letsencrypt are more or less the same thing.
Thanx for the docs!
I read it twice but I understood it partially. So I want your expert analysis just to know if I did things correctly.
I'm going to detailed my work now :
After reading the docs I decided to use SWAG container in my docker compose to install Syncthing. Here is the Stack I used in Portainer:
ZitatAlles anzeigen---
version: "2.1"
services:
syncthing:
image: ghcr.io/linuxserver/syncthing
container_name: syncthing
hostname: syncthing #optional
environment:
- PUID=1000
- PGID=100
- TZ=Europe/Paris
volumes:
- /srv/dev-disk-by-label-WD8To/appdata/syncthing:/config
- /srv/dev-disk-by-label-WD8To/Syncthing:/data1
ports:
- 8384:8384
- 22000:22000
- 21027:21027/udp
restart: unless-stopped
swag:
image: linuxserver/swag
container_name: swag
cap_add:
- NET_ADMIN
environment:
- PUID=1000
- PGID=100
- TZ=Europe/Paris
- URL=**********.duckdns.org
- SUBDOMAINS=wildcard
- VALIDATION=duckdns
- DUCKDNSTOKEN=**************************************************
volumes:
- /srv/dev-disk-by-label-WD8To/appdata/swag:/config
ports:
- 443:443
restart: unless-stopped
As you can see I used Duckdns as authorization method.
I forwarded port 443 in my web router.
The stack installed without error and I had got two new containers : "swag" and "syncthing" which are working together (if my understanding of the docs is correct).
Then I renamed syncthing.subdomain.conf.sample to syncthing.subdomain.conf in appdata/swag/nginx/proxy-confs/ and modified it like this:
ZitatAlles anzeigen## Version 2020/12/09
# make sure that your dns has a cname set for syncthing and that your syncthing container is not using a base url
server {
listen 443 ssl;
listen [::]:443 ssl;
server_name syncthing.*;
include /config/nginx/ssl.conf;
client_max_body_size 0;
# enable for ldap auth, fill in ldap details in ldap.conf
#include /config/nginx/ldap.conf;
# enable for Authelia
#include /config/nginx/authelia-server.conf;
location / {
# enable the next two lines for http auth
#auth_basic "Restricted";
#auth_basic_user_file /config/nginx/.htpasswd;
# enable the next two lines for ldap auth
#auth_request /auth;
#error_page 401 =200 /ldaplogin;
# enable for Authelia
#include /config/nginx/authelia-location.conf;
include /config/nginx/proxy.conf;
resolver 127.0.0.11 valid=30s;
set $upstream_app syncthing;
set $upstream_port 8384;
set $upstream_proto https;
proxy_pass $upstream_proto://192.168.1.44:$upstream_port;
}
}
As you can see I put yellow font color to indicate the changes. But I don't know here if the changes are correct. The address is my NAS address where OMV is installed.
Thanks to changes, I could access to the Synchting GUI of the NAS using https://syncthing.*********.duckdns.org.
I add a username and a password to access the GUI.
After that I installed the syncthing client on my Mac. And I shared a folder between my Mac and my server (using Show ID to accept new Remote Devices in the web GUI).
I succeeded to share and sync files between my Mac and my NAS on the same network.
Then I wanted to know if I could do the same things on different networks, so i stopped my Mac wifi and I shared my internet phone to connect the Mac. The NAS was always on my router network.
I tried to make changes in the Mac shared folder (add files, delete files) and it seemed that files were added or deleted also on the folder NAS.
So to resume, I think I did it! All seems to work. But... although i understand why I can reach the server GUI, I don't understand why the files syncs between the server and the MacBook when the two are on different networks.
So now my question is : does my work seem to be good for experts? Am i well protected ? Is it a risk that somebody could access to my data?
Thanx in advance.
N.B: English is not my native language so I hope all was clear for you...
-
When I’m home syncing files between my laptop and the rpi4 is ok.
Now how syncing files between the rpi4 and another computer at work?
Thanx
-
Hello everybody,
I succeeded to install Syncthing in docker on my Raspberry Pi 4 with OMV 5. It works perfectly between the server and my computer.
Now I'd like to keep on synchronizing files when I'm not at home (at work for exemple).
I think it's possible but I don't know how. I read things about LetsEncrypt, Nginx... I created a domain on duckdns, but I don't really understand how to use LetsEncrypt or Nginx with Syncthing to synchronize from everywhere...
Could someone help me?
Thanx in advance.
-
Hi !
I'd like to install Seafile on my Rpi 4 in docker (with portainer if possible).
I tried different things I found but it doesn't work (I'm a noob
)Is there somebody who succeed to install Seafile in docker on a RPi4?
Thanx in advance.
-
Ok, thanx.
I'll keep using the new name...
-
Hello,
I needed to reinstall OMV 5 after an update which caused an issue with my mounted hard drive via usb on my Rpi4.
Before my absolute path was /srv/disk-by-label-WD8To and now it is /srv/disk-by-label-usb-USB-WJAX...-0-0/
Is it possible to change absolute path to return to first one without format the disk?
Thanx in advance.
-
Hi,
I reinstalled OMV, docker, portainer...
And now it works!
-
Hi Jeff, thanx for the tutorial.
I did all what you explained, but it still doesn't work.
When I want to download a file I've got an issue : "invalid download directory"
I check the stack several times but it seems to be good :
Any idea?
Thanx in advance.
-
I'll post a video on how to do this on Friday.
GREAT!! Thanx TechnoDadLife!!!!
