kiwijunglist

Based on what I've read., if wireguard is running on the unraid server then the VPN client will always be able to access everything on the same IP as the unraid server. So I would have to run the VPN on my Unifi USG.

Get a z790 that supports 8x sata / 4x NVME and ditch the LSI / SAS stuff. Use larger capacity HDDs eg. 20-24TB Get an i5-12500 / i5-13500 with the 770 gpu Add LSI/SAS when you exceed 8x SATA drives. Should be about 15-20W idle when HDD are asleep. Do you need 650W peak? ... might get better power efficiency at idle if you go for a lower wattage PSU, look at idle efficiency.

Thanks, you are right. It should be ~40 minutes run time at ~100W load. My server and unifi gear is usually idle at 36W so I guess usually it's 15 minute idle time on battery. The battery is 5 years old, it runs 24/7, it would be extremely rare for it to be on battery power. Eg. if I cut the power to do some electrical work for a little while then it would go on battery. The cupboard does get fairly warm though usually around 25-30C in there, maybe up to 35C in extreme hot days.

It all looks very similar. I think your dashboard screenshot looks a little bit nicer.

I think there was another plugin that was depreciated, so I changed to the NUT plugin.

I am using a Cyberpower UPS with unraid via USB connection. Model = CP1500EPFCLCDa It is working with "Network UPS Tools (NUT) for UNRAID" under community apps plugin. These are the settings to communicate with the UPS in the plugin.

Hi sorry, It looks like I posted in the wrong thread. Vorta is no longer available in community apps. I meant to post that in the vorta-docker thread. Sorry.

Additionally I tried to use "Local tunnel firewall:" in the unraid wireguard vpn settings page, but it didn't do anything. I know I could always just change Allowed IPs in the wireguard client settings, but that is not very secure as the client could just change that setting themselves.

Any updates on this?

Thanks for the plugin. I have wireguard VPN working well and can access my server and my dockers and my dockers on different IP and my LAN. My setup is as follows Wireguard Local tunnel network pool 10.2.253.0.0/24 Local access tunnel address: 10.253.0.1 Local endpoint: My Fixed IP address of my WAN Local server uses NAT: No Local Network / Unifi 192.168.1.0/24 (DHCP range .10 - .199) Unraid IP address 192.168.1.173 Static Route for wireguard VPN: Destination Network 10.253.0.0/24 Next Hop: 192.168.1.173 Unraid Docker Ducker custom network type: ipvlan Host access to custom networks: enabled I have a container running borg backup server, it uses custom: br0 network with fixed IP address 192.168.1.201 I am able to access my server, my bridge docker containers via server_ip:port and also I'm able to access my dockers on fixed IP address as well 🙂 QUESTION: How to restrict a wireguard client to only access one IP address (or docker) on my network? I want to setup a server to server tunnel with my brothers server using wireguard. I want to limit access so that my brother can only access 192.168.1.201 (the borgbackup server container) and nothing else. I'm not sure of the best way to make that happen. Whether it is something I can setup in wireguard, or if I have to setup some kind of firewall in unifi and if so how do I go about doing that? Basically I want my brother to be able to SSH my borgserver container only (borgserver uses SSH to communicate to make backups). Thanks

OMG I WANT ABOUT 4 HOURS OF MY LIFE BACK! 😞 Debian based container image, running openssh-daemon only accessable by user named "borg" using SSH-Publickey Auth & "borgbackup" as client. So you can use different SSH key pairs for multiple repos, but the username for ssh connection is always called "borg".

Thanks, I got it working. I now have borgmatic docker connecting to borg-server docker. This is the config.yaml I had to use for borgmatic docker. source_directories: - /mnt/user/somethingtobackuplocation repositories: - path: ssh://[email protected]:2222/backup/borg label: backupserver ssh_command: ssh -i /root/.ssh/borg -p 2222 I am now trying to get vorta-docker to work... I keep geting "invalid user" error in the borg-server docker log file.

I wonder if there is an option to map the codecs folder outside of persistent storage so everytime the plex docker is restarted the codec folder is wiped

Hmm still can't get things to work I ran the borgmatic (client) container, and loaded a console in the container Then I created a ssh key pair Then I copied the .pub file into borgserver container, and restarted borgserver container. When I try to SSH into borgserver container from borgmatic container, I get the following error: Permission denied (publickey)

In answer to the above the correct command is SSH [email protected] -p 2222