archedraft

For anyone wondering the answer is yes! I had to edit my let's encrypt config and made "blueiris" a sub domain. As soon as I changed that it started working immediately. I was also able to close my stunnel port forwarding rule in my router! Let's Encrypt is pretty cool stuff. 😎 server { listen 443 ssl; root /config/www; index index.html index.htm index.php; server_name blueiris.random.server.name.org; ssl_certificate /config/keys/letsencrypt/fullchain.pem; ssl_certificate_key /config/keys/letsencrypt/privkey.pem; ssl_dhparam /config/nginx/dhparams.pem; ssl_ciphers 'ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA'; ssl_prefer_server_ciphers on; client_max_body_size 0; location / { include /config/nginx/proxy.conf; proxy_pass https://192.168.1.100:8777; # NOTE: Port 8777 is the stunnel port number and not the blue iris http port number } }

Has anyone had any luck setting up Let's Encrypt to work with Blue Iris and Stunnel? I currently have Blue Iris and Stunnel working together (meaning I can port forward my stunnel port in my router and stunnel will redirect to the Blue Iris port, thus giving https). I was hoping to setup Let's Encrypt to work with Stunnel in order to use Let's Encrypts 443 port and close the Stunnel port to the world. I have Let's Encrypt successfully working with Nextcloud. The next cloud config file is "letsencrypt\nginx\site-confs\nextcloud". I was thinking that all I would have to do is copy the nextcloud config and rename it as follows: "letsencrypt\nginx\site-confs\blueiris" and I changed the new blue iris config to as follows: server { listen 443 ssl; server_name fake.archedraft.server.name.org; root /config/www; index index.html index.htm index.php; ###SSL Certificates ssl_certificate /config/keys/letsencrypt/fullchain.pem; ssl_certificate_key /config/keys/letsencrypt/privkey.pem; ###Diffie–Hellman key exchange ### ssl_dhparam /config/nginx/dhparams.pem; ###SSL Ciphers ssl_ciphers 'ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA'; ###Extra Settings### ssl_prefer_server_ciphers on; ssl_session_cache shared:SSL:10m; ### Add HTTP Strict Transport Security ### add_header Strict-Transport-Security "max-age=63072000; includeSubdomains"; add_header Front-End-Https on; client_max_body_size 0; location /stunnel { proxy_pass https://192.168.1.105:8998/stunnel/; include /config/nginx/proxy.conf; } } When I restart the Let's Encrypt Docker and attempt to connect to https://fake.archedraft.server.name.org/stunnel - I revived the following message in my browser: 404 Not Found nginx/1.14.0 Any ideas on what I am screwing up?

Wow that’s awesome! Thanks bonienl.

Well some of us do have some long memories... [emoji16] Although, if you look at the past year, you guys are kicking butt and taking names! I have thought multiple times recently, “dang it, I just updated and there’s another update!!”

Thanks for sharing! Do you have blue iris saving the videos to a mapped unRAID network drive on your windows VM? I was just wondering if in doing so you have noticed any delays or transfer speed issues?

Thanks for the response so far! For those using Blue Iris as a VM, what resources (CPU and RAM) have you dedicated for blue iris? Their website has the minimal requirements and has the recommended requirements. The recommended requirements seem to be more geared towards a lot of cameras. I did a little research on hikvision and they offer a large range of cameras! Do either of you have exterior cameras and would be willing to share which ones you are using?

I am looking for suggestions on an exterior security camera system that detects motion, starts recording the video and sends a notification to my iPhone. I would prefer the video to be stored on my unRAID server and not in the cloud. Can anyone suggest a system that they have working with unRAID or know of a system that could work? I am not looking to spend thousands of dollars on a state of the art security system but maybe $200-$300 dollars on a 3 exterior camera system... I am not sure if this is even a reasonable budget so let me know if I am crazy! Thanks!

My guess is that OS 10.13 doesn’t support some older usb hubs that the older mac versions did. I have an older hub that worked just fine on all the past OS X versions up until 10.13. I ended up buying a new one that specifically said it supports OS X and it worked like you would expect.

YES, exactly! Thanks for being my inner spirit animal.

Just wanted to report that my parity check speeds are the same as before. The faster VM boot time is very noticeable. Thanks.

Host Intel® Core™ i7-3770S CPU @ 3.10GHz ASRock - H77 Pro4-M 32 gigs of ram Guest - Win 10 OVMF 6 cores 16 gigs ram GTX 750 ti Boot to Tianocore times unRAID 6.5.2 53 seconds unRAID 6.5.3-rc1: 36 seconds Novabench Results (No idea if Novabench is any good but tested with it for fun) unRAID 6.5.2 1401 unRAID 6.5.3-rc1: 1512 Guest - OS X 10.13 OVMF 4 cores 8 gigs ram Radeon 6450 Boot to Tianocore times unRAID 6.5.2 1 minute 10 seconds unRAID 6.5.3-rc1: 1 minute 11 seconds Novabench Results (Novabench didn't recognize the CPU or RAM so the tests below should be taken with a grain of salt) unRAID 6.5.2 402 unRAID 6.5.3-rc1: 411

Last I checked (+2 years ago) in order to get 9p shares working on OSX someone would need to develop the OSX driver (kext) files. I don’t believe Apple had any intention on nativity supporting KVM so that would leave someone who knew their stuff to develop 3rd party. Anyway, that was years ago so maybe someone did or maybe Apple has changed their position on KVM...

Ha! Anyone who doesn’t use CA is either unaware of its awesomeness or enjoys physical and mental punishment of themselves. P.S. No offense if the later is your thing. For each their own.

I’ve not heard of anyone trying this before. My gut reaction would be that it probably wouldn’t although I would definitely try. FWIW, I am using an old usb to audio adapter and plug my speakers into that. Works good for my needs.

I believe I remember reading in the first beta that implemented encryption, that there would potentially be a future feature to encrypt an existing disk while keeping all existing data without the need to format it first. Just wondering if this is still on the “near” future road map? I would really like to encrypt my disks but currently they are pretty filled up and the only semi easy way I am aware of would be to make my only parity drive a data drive to copy all the data off a disk, reformat with encryption the old disk, copy back all the data and repeat for each disk. I would prefer not to do this if there is another option on the horizon.

^This... I did the same thing you are asking and built on the lower end with an i3 and 4 GB of RAM. Then found out how useful unRAID was and upgraded to an i5 and 16Gb of RAM! And then I found even more use and now I have an i7 and 32 GB of RAM... Moral of my story, buy all the fancy computer parts. At the very least buy newer enough parts that can be upgraded in the not too distant future.

/ban (sigh, I miss my CS Source days)

Mine does the same. Try to shutdown leads to the VM restarting. I have no clue where to start with that.

Sweet, thanks for the link. I’ll see how long I can get by without one but I am sure it won’t be too long...

It’s just your computers way of communicating that it is mad and it’s all you’re fault. It can be really disheartening when you come home from a days worth of work and even your computer doesn’t like you!

It is like the old days! I miss them! Both of my USB hubs are powered but are old as dirt. One works for sure with 10.11 (Yosemite) but no longer works on 10.13. My suspicion is that 10.13 blacklisted some older hardware but that isn’t based on any real facts.

[Mention]gridrunner[/mention] do you happen to have a USB hub hooked up with it or are all your usb devices connected directly into your pcie card?

Fresco Logic FL1100 The link I posted above uses the same chipset.

Hmmm, did you happen to have this setup working on an older version of OS X? Say 10.11? I’ve been attempting to follow this thread closely the last few weeks but I haven’t heard of anyone having the USB controller pass through issues that I was having. Finally got frustrated and bought the same chipset usb controller that gridrunner is using. I’m stumped why the usb hub isn’t working...

It would be interesting to see if your mouse would work directly plugged into your motherboard. I’m assuming you are passing through the motherboard usb controller? I never tried that since I bought the new usb pcie.