kiwijunglist

Based on what I've read., if wireguard is running on the unraid server then the VPN client will always be able to access everything on the same IP as the unraid server. So I would have to run the VPN on my Unifi USG.

Get a z790 that supports 8x sata / 4x NVME and ditch the LSI / SAS stuff. Use larger capacity HDDs eg. 20-24TB Get an i5-12500 / i5-13500 with the 770 gpu Add LSI/SAS when you exceed 8x SATA drives. Should be about 15-20W idle when HDD are asleep. Do you need 650W peak? ... might get better power efficiency at idle if you go for a lower wattage PSU, look at idle efficiency.

Thanks, you are right. It should be ~40 minutes run time at ~100W load. My server and unifi gear is usually idle at 36W so I guess usually it's 15 minute idle time on battery. The battery is 5 years old, it runs 24/7, it would be extremely rare for it to be on battery power. Eg. if I cut the power to do some electrical work for a little while then it would go on battery. The cupboard does get fairly warm though usually around 25-30C in there, maybe up to 35C in extreme hot days.

It all looks very similar. I think your dashboard screenshot looks a little bit nicer.

I think there was another plugin that was depreciated, so I changed to the NUT plugin.

I am using a Cyberpower UPS with unraid via USB connection. Model = CP1500EPFCLCDa It is working with "Network UPS Tools (NUT) for UNRAID" under community apps plugin. These are the settings to communicate with the UPS in the plugin.

Hi sorry, It looks like I posted in the wrong thread. Vorta is no longer available in community apps. I meant to post that in the vorta-docker thread. Sorry.

Additionally I tried to use "Local tunnel firewall:" in the unraid wireguard vpn settings page, but it didn't do anything. I know I could always just change Allowed IPs in the wireguard client settings, but that is not very secure as the client could just change that setting themselves.

Any updates on this?

Thanks for the plugin. I have wireguard VPN working well and can access my server and my dockers and my dockers on different IP and my LAN. My setup is as follows Wireguard Local tunnel network pool 10.2.253.0.0/24 Local access tunnel address: 10.253.0.1 Local endpoint: My Fixed IP address of my WAN Local server uses NAT: No Local Network / Unifi 192.168.1.0/24 (DHCP range .10 - .199) Unraid IP address 192.168.1.173 Static Route for wireguard VPN: Destination Network 10.253.0.0/24 Next Hop: 192.168.1.173 Unraid Docker Ducker custom network type: ipvlan Host access to custom networks: enabled I have a container running borg backup server, it uses custom: br0 network with fixed IP address 192.168.1.201 I am able to access my server, my bridge docker containers via server_ip:port and also I'm able to access my dockers on fixed IP address as well 🙂 QUESTION: How to restrict a wireguard client to only access one IP address (or docker) on my network? I want to setup a server to server tunnel with my brothers server using wireguard. I want to limit access so that my brother can only access 192.168.1.201 (the borgbackup server container) and nothing else. I'm not sure of the best way to make that happen. Whether it is something I can setup in wireguard, or if I have to setup some kind of firewall in unifi and if so how do I go about doing that? Basically I want my brother to be able to SSH my borgserver container only (borgserver uses SSH to communicate to make backups). Thanks

OMG I WANT ABOUT 4 HOURS OF MY LIFE BACK! 😞 Debian based container image, running openssh-daemon only accessable by user named "borg" using SSH-Publickey Auth & "borgbackup" as client. So you can use different SSH key pairs for multiple repos, but the username for ssh connection is always called "borg".

Thanks, I got it working. I now have borgmatic docker connecting to borg-server docker. This is the config.yaml I had to use for borgmatic docker. source_directories: - /mnt/user/somethingtobackuplocation repositories: - path: ssh://[email protected]:2222/backup/borg label: backupserver ssh_command: ssh -i /root/.ssh/borg -p 2222 I am now trying to get vorta-docker to work... I keep geting "invalid user" error in the borg-server docker log file.

I wonder if there is an option to map the codecs folder outside of persistent storage so everytime the plex docker is restarted the codec folder is wiped

Hmm still can't get things to work I ran the borgmatic (client) container, and loaded a console in the container Then I created a ssh key pair Then I copied the .pub file into borgserver container, and restarted borgserver container. When I try to SSH into borgserver container from borgmatic container, I get the following error: Permission denied (publickey)

In answer to the above the correct command is SSH [email protected] -p 2222

Can someone tell me what I'm doing wrong? Docker is set to port 22:2222 Logs look ok Can't SSH into the docker container on 2222

Hi I want the windows smb user to be all to edit my docker config.yaml without permission issues. I assume if it was set to 99:100 it would be ok? My docker containers are all set to PUID: 99 / PGID: 100. I've attached various screenshots that I think would be useful to troubleshoot. Please let me know what to do.

Thanks for this. I searched for AMISCE utility and found it here - https://www.intel.com/content/www/us/en/download/19551/amisce-ami-setup-control-environment-utility-for-m10jnp2sb.html but the .zip file doesn't have SCEWIN_64.exe Any help for this step?

Ran the command echo 1 | sudo tee /sys/bus/pci/drivers/r8125/0000:02:00.0/link/l1_aspm It looks ok to my eyes: However I still don't seem to get any better than C3 pkg(HW) state. Anything else I should do.

Does the backup use rsync or similar to save space? I was thinking to use the backup plugin to backup both my immich docker appdata and also the immich library directory (very very large).

Thanks for the plugin. Can I suggest if you click on a drive it brings up a popup showing individual data for last 7 days, then total data for last 7 days / 30 days / all-time. (or something similar). /sda Percentage Sleep: 30% 97% ... Spin up counts: 53 3 ... Spin down counts: 52 4 ... Date: 2 Jan 1 Jan ... Last 7 days Last 30 days Alltime /sdb Percentage Sleep: 40% 92% ... Spin up counts: 33 2 ... Spin down counts: 34 2 ... Date: 2 Jan 1 Jan ... Last 7 days Last 30 days Alltime The main thing I'm interested in personally is just data on how often the drives are spinning up and down.

You might know this already, while `smartctl --nocheck standby` won't wake a HDD, it will stop a HDD going to sleep when you poll it because it counts as activity. ie. if you set a hdd to sleep after 60 minutes of activity but you use `smartctl --nocheck standby` to poll the HDD every 30 minutes, then the HDD will never go to sleep.

I didn't have to create a custom unifi bridge network to have unifi container see the database container, just use the IP address of the unraid server instead of a host name, much easier. MONGO_HOST: <ip-address>

I typed these commands and I got it working again. /etc/rc.d/rc.inetd restart nginx -s reload

This might be my issue as well.