SmartHomeBeginner is a leading blog for articles and tutorials on smart home, media server, and home server related topics. All made available FREELY to everyone.
SmartHomeBeginner has existed in various forms (blog.avserver.info [2010-2012], linuxplained.com [2012-2014], and htpcbeginner.com [2014-2018]) since 2010.
Our articles are in-depth and written in such a way that even beginners can follow and implement complex projects. Great examples are our Docker and Traefik guides.
Our content has helped millions of readers and our authors spend several hours answering questions and helping the readers.
Пікірлер
can i use this as remote desktop? Hows the performance?
This works spot on for getting the natively installed version of jellyfin working, but for the life of me I can not sort out how to get it to work with docker. I feel it's a user/group thing, any extra thoughts on getting this working with docker?
Yup I was right, I had to assign a user that was in group of the card0 and renderD128. That allowed transcoding in docker. Now if you could just help me figure out handbrake! 😁
I'm already subscribing at 2:49 after you started talking about privileged and unprivileged. I am roughly 12 hours into trying out Proxmox and have not learned a ton yet, so I'm very impressionable. :P Every other video I found on YT, so far, that was talking about initial setups and how to do blah blah blah just had you untick the "Unprivileged container" box. It didn't feel right to me, for obvious reasons. It felt lazy, but maybe that was how it was done in this new ecosystem. I didn't know. So, thank you for staying security minded, I'll be checking out your other vids!!
Fantastic video, great info realy well presented with documentation. I have been a bit caught out using the files from your repo which over time have changed a small ammount. Any chance you will be doig a video on Frigate NVR any time soon? fingers crossed. Thank again.
I'm able to get the GPU to passthru, however, after adding the lines for the network, the system will not boot
nevermind, that didn't work a second time
Hi Anand, as a next step of this series I would appreciate if you could produce a video of how to cinfigure UMANIC LXC for iGPU usage.
I don't understand the focus on Cloudflare. What if i don't wanna use ir have anything to do with CF? Cant use auto https with Traefik then or what? Im using Caddy right now for all my projects. No issues at all. Im just gathering information about Traefik at the moment to see if a migration from caddy to Traefik would be worth it, or if it has any benefits at all.
Qustion for you. So if i have a iGPU and a discrete GPU. Can i pass iGPU to LXC and discrete GPU to VM (for example windows VM)?
Absolutely.
Thanks Anand. Tried this and it does work but for some reason my permission on my LXC for the render and Card are crw-rw---- so plex cannot access it. I need to change the permissions from the host then reboot the LXC and it works but i need to do this everytime i reboot. Is this not the case for you?
In that case, you have two options. But first try this: Install acl on host and lxc. Then on the host run sudo setfacl -Rm u:101000:rw /dev/dri. Now if you check inside the LXC the user 1000 should have rw access. Check your user id inside the lxc with id command. If it is other than 1000 then you will have to adjust the setfacl command. The second option is to change ownership of render128 on proxmox host. But i prefer the first.
With an Unpriviledged LXC, the way I get around that is to do some user and group mappings so things look right and you can assign groups to the (jellyfin) user to use the hardware correctly. First you will need to Find Device Numbers ls -l /dev/dri In My case with an Intel APU the device numbers are 226 and 128. Process is the same for AMD iGPUs Now Find the group numbers for the group(s) for these devices (renderer and video) cat /etc/group Mine are 44 and 104. Now you need to add these groups to the SubGroup file in the host. nano /etc/subgid Add at the bottom of the file as below. root:100000:65536 root:44:1 root:104:1 In the above I also added the 100000 group so root maps correctly too. We are going to have to do some user and group remapping so the devices come through to the LXC correctly. This is done in the .conf file for your container. I will just past as an example what I do. These lines are just for the devices and group mappings. lxc.cgroup2.devices.allow: c 226:0 rwm lxc.cgroup2.devices.allow: c 226:128 rwm lxc.mount.entry: /dev/dri/renderD128 dev/dri/renderD128 none bind,optional,create=file lxc.idmap: u 0 100000 65536 lxc.idmap: g 0 100000 44 lxc.idmap: g 44 44 1 lxc.idmap: g 45 100045 62 lxc.idmap: g 107 104 1 lxc.idmap: g 108 100108 65428 The above mappings will map the devices and groups into your LXC Container. After starting your container check /dev/dri sith an ls -l to ensure the groups mapped correctly. If so, add these groups to the jellyfin user and restart jellyfin. Now your hardware render will work You can also pass in an Nvidea GPU but it is a bit more involved. Hope this is helpful.
I had to add these lines to my docker compose file devices: - /dev/dri:/dev/dri
@@nickmichniewicz3519 of course I thought that was obvious but you have a good point.
@@nickmichniewicz3519 That is one way to do it, passing dri as a device. In my opinion the clearner way is to is to mount the actual device(s) you need and not entire structure. This works with both Inel and AMD APUs. Nvidea cards are another story. lxc.mount.entry: /dev/dri/renderD128 dev/dri/renderD128 none bind,optional,create=file lxc.mount.entry: /dev/dri/card0 dev/dri/card0 none bind,optional,create=file But like I always say. There is usually more than one way to do what we do and if it works, it is not wrong.
Great video and got it all working per the video, however unable to access the traefik dashboard via my internal network.....any ideas?
don't worry I reviewed your video again saw you mention enabling the api.insecure=true and it's associated ports. all working now!
What about vm passthrough?
iGPU passthrough to a VM is a bit more tricky. I am not doing this yet as I still need the iGPU available on host, which won't be the case if i pass it through. But out of interest I will try to cover this in a separate video.
@@AnandsLabi know that for older versions of Intel cpus you could have both host video and also pass the gpu to a vm.
@@Sherbibv I am not saying it can't happen but I have never seen it be successful due to passing the iGPU to a VM as a hardware device. This gives the VM full control over the hardware. That is providing you tell the Proxmox host to not use said iGPU, otherwise it does not pass into the VM. But, you can pass an iGPU to many LXC containers without issue. I am sure there is a limit but I have had 6 seperate LXC containers running at the same time without issue. All using the iGPU for transcoding.
Thanks a lot for this helpful video! Please still let us know where we can find the extracts you are using. Thank you.
Oops! Adding it to the description.
@AnandsLab RHEL yes install desktop not proxmox yes terminal install alll desktop apps docker yeah or not
I don't prefer docker in any environment.
Please elaborate to help others.
@@AnandsLab It's a hot mess of confusing overlays and hides how applications really work in a native environment. I can copy a LXC and VM system to bare metal and vice versa, but a docker environment totally messes that up unless it's docker to docker.
I know this has been a debate for some time, but for today, Is it a good idea to run Docker on a lot of Proxmox LXCs? Also please make a video on how to SSH with key, if you would. Thanks!
I hope this video wasn't made JUST for me, for being a noob on your discord ^^. Thank you much. The explanation of the permission(s) was enlightening too. Be safe on vacation.
It was, kind of. I had planned it but moved it up in the schedule :-)
Docker on lxc so much efficient. Before I am using docker on VM. Now convert docker on lxc. %30 storage %50 CPU usage %50 ram usage decreased. Proxmox lxc lot's of save money. Before vm on VMware esxi 2times expensive server cost
It definitely is. Just need to ensure good backups although I never had to restore one in 2 years
For the video with passing a graphics card through, can you give a definitive answer as to whether the inbuilt graphics GPU on the CPU can be passed through or must it be a separate physical card in a PCIe slot - thanks.
Already recorded. And I am passing through my igpu. Not a dedicated card.
Noooooooooo. Run it in a VM. Better still, don't use Proxmox.
See my other detailed response. I have had no issues in 2 years of running it.
New Sub; Detroit, Michigan, US Well Done Sir, Im working on Setting up ProxMox...Again, and getting to actually work and do seomthign this time lol Keep It Up!
Uh the state up north 🤮. lol! Thanks for joining. Go bucks!
@@AnandsLab Thanks for Taking Toledo 🤣🔫
Wish I found your channel when I started home labbing. Looking forward to learning from you and to future content!
Thanks for the kind words.
Great video. Its nice to see someone using proxmox on a mini PC. Others have full servers and HA etc but thats not an option for all. Would be great to see videos on best practices for using a single mini pc for proxmox and look at proxmox mirror and failure and recovery, backup of proxmox configuration and recovery, updating risks and recovery process. Etc.... Question. I have 2 m2 same as you with proxmox and VMs on them but it seems that the mirror doesnt have VMs on both just the OS. Be greeat to see some detail on that.
Thanks!. If you watched my homelab tour video, I have a very humble setup and a true "simple" home lab and not "enterprise" home lab. I like energy efficiency. All of what you mentioned are good topics to cover. Not enough time for what I want to do. Are your M.2s in RAID mirror? If so, the information should exactly be the same. I am using ZFS RAID MIRROR.
I love the tutorials but I don't like the fact its locked behind a cost
Sorry. Its the only way for me to continue funding my work. Again, everything that the script does can be done following my guides. I am not including any special gimmicks into the script.
youre a king for this one brother! just bought premium membership for your site, amazing work mate
Thanks for the support.
saludos desde argentina, es una explicacion perfecta para solucionar el error failed to run vncproxy proxmox,gracias y excelente contenido!!!
Muchas gracias!
would be nice a video for proxmox backup services
This is planned but it will about at least 2 months before it comes out :-(
great! very tnx
Seems very long. Can you not do it from windows partition manager? I could swear I do that there but I might be wrong
Windows partition manager cannot expand the same partition that it resides on.
Where you purchased this PC hardware ? Is it available in India ?
Not sure about India. In EU, I got it from AliExpress. Link is in the description
Which authenticator did you use? Google or MS? Does the QR code work for either?
Neither. I use Authy. You can use use any authenticator of your choice.
I think traefik has too many issues to make it useable, I can't get it to foreward a single port. lol The automation is killing it. in a enviroment that is clean and has domains that never used a cert or anything it may just work, but if anything isn't perfect the whole thing crashes... Thats not going to work in a production enviroment.
If you take the time to understand Traefik like you did for NPM, you will have a different opinion. My website, smarthomebeginner.com has been working on Traefik for 4 years and serving 1000s of pages every day. I think that would qualify as a Production environment.
good video but one suggestion, please keep the focus on the computer screen or the picture you are showing. We can see you, picture in picture of the video anyways.
Thanks. Already addressed. I was starting out then. My recent videos should be easier on the eye :-)
Holy crap, the cuts. Cut after cut after cut. It's like you can't string two sentences together, so you have to cut EVERY SENTENCE. It's jarring and annoying. Stop it.
Its a learning process. I already addressed it. I was starting out then. My recent videos should be easier on the eye :-)
Amazing work, keep it up! Cant wait to see your channel grow.
everytime I set this up I get 2 mouses pointers on windows vms and the UI from the web is pretty much a struggle to use. I install all the drivers and not sure what else needs to be installed. Once I enable remote desktop then I can access the vm from rdp without issue but the web UI is completely unuseable for me atleast right now. the network connection icon will also indicate as disconnected even thought I have a connection and can browse the internet. wondering someone might point me to what I need to change to get this to work.
Is qnap supported?
Not at this point. First I will attempt synology as that’s what I have.
I have an idea, why people like using nginxproxymanager rather than going through a hell of terminal configurations with traefik....
Thanks.
You're welcome
Wow! I've been in the industry for decades and today I actually learned a few new things! Thank you! very useful and clear!
Glad it was helpful!
i found a notable problem in the portainer section. I got the portainer YML from your repo and inside, it used the EE version and not the CE. I ran it and when i try to create a portainer user it asks me to register which I don't want to do. So I stopped the docker compose and changed the YML to download CE instead. but when i docker compose UP; portainer will not start. Checked online if there is a way to downgrade and it is a bit length process. basically 3hrs of following the guide and now I have to go back to the beginning.
You have to downgrade what? I point this out. The fix is easy, you delete portainer persistent storage in appdata folder and portainer images. This should fix accidental mistakes.
@@AnandsLab thank you that worked. your fast response is really appreciated
Glad it worked. You should also have seen the instructions to downgrade in the portainer container logs, pointing to this portal.portainer.io/knowledge/can-i-downgrade-from-portainer-business-to-portainer-ce
Does the script allow setting Docker Swarm for raspberry pi cluster?
Sorry it does not work in Swarm mode.
another masterclass
nah too many redflags to me
Please elaborate
Yeah, also me… i am strong supporter of OS, also supporting author and also a strong eyebrow raiser of suspiccious things.. i do not see any red flags or feel funny here.. but you intruiged me :)
To clarify, I am the developer and the author of the video. Right now about 450 domains have pulled their SSLs using Deployarr. My aim is to sustain what I have done for 15 years via my website and now this channel. Doing bad things with the script goes against that. Plus, even though the script is compiled. It’s not too difficult to reverse engineer the source code. So I am genuinely curious what the red flags are.
One more thing, installing the guest tools and enabling spice, breaks the mouse on virtual machine, it just doesnt line up with my actual mouse anymore...
I did not experience these but thanks for taking the time to share your experience.
I would add, that for some (for me for example) u have to change the boot order, cause for whatever reason, it lists the drivers image first in boot sequence, so it will never boot the windows instalator this way...
Thanks for sharing.
Thanks for the video, but I’m afraid I have to disagree with your vision. To use Docker on top of an LXC container, privileged or unprivileged, is nonsense. Docker can run perfectly containers on top of a VM. Do you want a container? Use LXC directly and forget Docker. You are also ignoring fundamental knowledge such as DNS, FQDN, PVE firewall, ecc.
To each their own. I would not call Docker on LXC a nonsense. It works great and offers some great advantages over a VM. I have had only 1 issue over the last 2 years that too was a issue on Docker side and not proxmox.
Hi Anand, first of all thanks for all those wonderful tutorials you made. I did follow the traefik3 one all the way, like you explained in the video, I even got my Letsencrypt CA for my domain including wildcards no issues what so ever. The problem I'm facing is that I cnnot open my traefik.domainname . It says that this url is aready accupied from registrar where Iam hosting from., but that is correct I own this domainname.this domain is now served by Cloudflare. any hints to look for?
POST PUBLICATION NOTES: 1. At this point Deployarr is designed with Cloudflare as provider. Others may work but are not currently tested. 2. Planned features: Internal Domains, Synology Support, non-CF providers.
Already paid the $70 for auto traffic. Do I have to pay for this one too?
I appreciate the support. It’s the same. Just a name change. It has been communicated many times.
A nice tool good tutorial
Thank you very much