21 күн бұрын
Пікірлер
@funkiam9214 4 сағат бұрын
nice video! thx for sharing!
@fastabst 19 сағат бұрын
thank you! it works just perfect!
@gjermundification Күн бұрын
There is a separate linux distro for the purpose of kubernetes / docker called: Talos.
@gjermundification Күн бұрын
How does docker in proxmox compare to running docker pods in kubernetes?
@obxphillyfpv7435 3 күн бұрын
Appreciate your guides. Doing a wonderful service.
@RedVegas 3 күн бұрын
Basic auth won’t work, I get the prompt for user and pass but it won’t allow me to login. If I disable it works fine. How can I fix the middleware issue?
@EllisWhitehead 4 күн бұрын
This was a fantastic guide. Thanks so much, Anand!
@heaton922 4 күн бұрын
Great channel, support you
@heaton922 4 күн бұрын
Thanks so much
@FizzGiGG55123 4 күн бұрын
Hey Anand. I had to use cgroup, not cgroup2, in my CT config using Debian 12.2-1 standard template as cgroup2 threw an error. lxc.cgroup.devices.allow: c 10:200 rwm lxc.mount.entry: /dev/net dev/net none bind,create=dir
@greyowl9295 7 күн бұрын
thanx, much appreciated
@FloTexaTenn 9 күн бұрын
Followed guides, used Auto-Traefik, and now Deployarr. ALL EXCELLENT. Regarding the last statement in the video regarding Synology and their old Docker version... They have been calling it Container Manager for quite some time now, so you'll never likely see an update to "Docker" on a Syno.
@mohsenfazzani8770 9 күн бұрын
It is better to let us see your screen than to see your face. To put your face on the screen when speaking
@SeanAnthony 10 күн бұрын
Hey I love your videos! Question for you. I use Proxmox and run a handful of apps as Linux containers (LXC ). Can I make a Traefik LXC and have all my other LXCs go thru the Traefik as a reverse proxy? I know i can do this using a VM with all my apps running in a docker environment. Keep up the great work!
@AnandsLab 10 күн бұрын
Of course you can. Traefik can proxy almost anything. Check out my traefik guide. I talk about adding external apps there. Or hop on to our discord and there are many who can help you out.
@obxphillyfpv7435 11 күн бұрын
I just got JellyFin working on a reverse proxy watching your guides and some tweaks. Id totally recommend this to someone who doesn't want to spend much time beyond installing apps. Appreciate your work
@fabolt 11 күн бұрын
Never use swap for lxc container if possible. It can make leak data from the container through the host to other containers
@RedVegas 11 күн бұрын
I’d love to see a video on the cloud flare tunnels and crodsec guides
@user-hl7lx8ds7t 12 күн бұрын
NICE
@walideshtiwi6303 12 күн бұрын
Many Thanks , i liked your video can you make video for HAproxy in pfsense
@user-hl7lx8ds7t 12 күн бұрын
thank you
@MFHaZe 13 күн бұрын
Great video covering all questions and steps. Thank you for spending the time to do this. Also, a Debian server drive resize video would be nice. if you ever do another :)
@znight348 13 күн бұрын
Does this not work with LXC install? or what system requirements do i need as i getting lots of errors when running this script..
@AnandsLab 13 күн бұрын
My dev environment is lxc. So it definitely works. What errors? Join the discord for help
@michaelventarola7100 14 күн бұрын
Do you have any video's on setting up Crowdsec ?
@nixonone2031 15 күн бұрын
good job
@varunaeeriyaulla 18 күн бұрын
I use Debian instead of Ubuntu for LXCs. Even docker runs on Debian out-of-the box without any modifications. Yes, on unprivileged mode.
@stefanmi1 19 күн бұрын
Can you please do a video on how to keep containers behind a vpn container? Example, gluetun+qbit container used to keep *arr apps behind the vpn and set up kill switch for *arr containers if vpn goes down.
@AnandsLab 10 күн бұрын
Request fulfilled. This series is ongoing. First one out last Sunday. Check it out.
@stefanmi1 10 күн бұрын
@@AnandsLab thanks! I did see it. I figured it out with other resources but I'll def be watching the series.
@bruhzooka 19 күн бұрын
Google is the devil.
@bgsmacker 23 күн бұрын
nice and straight to the point. i like it. but where do you get the modified .ISO for local log in?
@seisto 23 күн бұрын
Thanks!
@AnandsLab 21 күн бұрын
Thank you!
@plotikai 25 күн бұрын
this is a fantastic guide! thank you for putting this together, are you able to do a future video about putting all your services on a tailnet using tailscale, traefik, and your custom domain with SSL enabled?
@Hemshemsems 25 күн бұрын
Uhm. I can't connect to the gui. I installed 8.2 on a zfs R1 and had no internet while installing it, i have a Minisforum ms-01. I have the ip i set and want, set to static in /ect/netw/interf, gateway is 192.168.1.1 and so on. What am i missing here?
@1rk1n 26 күн бұрын
I appreciate you taking the time to make the video to pair with the documentation. I got stuck a few times, and this helps me go back and address the steps I might've missed.
@harveymendoza401 28 күн бұрын
can i use this as remote desktop? Hows the performance?
@NeverEnoughRally 28 күн бұрын
This works spot on for getting the natively installed version of jellyfin working, but for the life of me I can not sort out how to get it to work with docker. I feel it's a user/group thing, any extra thoughts on getting this working with docker?
@NeverEnoughRally 27 күн бұрын
Yup I was right, I had to assign a user that was in group of the card0 and renderD128. That allowed transcoding in docker. Now if you could just help me figure out handbrake! 😁
@FizzGiGG55123 28 күн бұрын
I'm already subscribing at 2:49 after you started talking about privileged and unprivileged. I am roughly 12 hours into trying out Proxmox and have not learned a ton yet, so I'm very impressionable. :P Every other video I found on YT, so far, that was talking about initial setups and how to do blah blah blah just had you untick the "Unprivileged container" box. It didn't feel right to me, for obvious reasons. It felt lazy, but maybe that was how it was done in this new ecosystem. I didn't know. So, thank you for staying security minded, I'll be checking out your other vids!!
@grahamstapleton3473 29 күн бұрын
Fantastic video, great info realy well presented with documentation. I have been a bit caught out using the files from your repo which over time have changed a small ammount. Any chance you will be doig a video on Frigate NVR any time soon? fingers crossed. Thank again.
@TaylorOberst 29 күн бұрын
I'm able to get the GPU to passthru, however, after adding the lines for the network, the system will not boot
@TaylorOberst 29 күн бұрын
nevermind, that didn't work a second time
@Excited-IT-Architect Ай бұрын
Hi Anand, as a next step of this series I would appreciate if you could produce a video of how to cinfigure UMANIC LXC for iGPU usage.
@fragdq Ай бұрын
I don't understand the focus on Cloudflare. What if i don't wanna use ir have anything to do with CF? Cant use auto https with Traefik then or what? Im using Caddy right now for all my projects. No issues at all. Im just gathering information about Traefik at the moment to see if a migration from caddy to Traefik would be worth it, or if it has any benefits at all.
@MrLordmaximus Ай бұрын
Qustion for you. So if i have a iGPU and a discrete GPU. Can i pass iGPU to LXC and discrete GPU to VM (for example windows VM)?
@AnandsLab Ай бұрын
Absolutely.
@Johnnydee212 Ай бұрын
Thanks Anand. Tried this and it does work but for some reason my permission on my LXC for the render and Card are crw-rw---- so plex cannot access it. I need to change the permissions from the host then reboot the LXC and it works but i need to do this everytime i reboot. Is this not the case for you?
@AnandsLab Ай бұрын
In that case, you have two options. But first try this: Install acl on host and lxc. Then on the host run sudo setfacl -Rm u:101000:rw /dev/dri. Now if you check inside the LXC the user 1000 should have rw access. Check your user id inside the lxc with id command. If it is other than 1000 then you will have to adjust the setfacl command. The second option is to change ownership of render128 on proxmox host. But i prefer the first.
@wizzbangtg Ай бұрын
With an Unpriviledged LXC, the way I get around that is to do some user and group mappings so things look right and you can assign groups to the (jellyfin) user to use the hardware correctly. First you will need to Find Device Numbers ls -l /dev/dri In My case with an Intel APU the device numbers are 226 and 128. Process is the same for AMD iGPUs Now Find the group numbers for the group(s) for these devices (renderer and video) cat /etc/group Mine are 44 and 104. Now you need to add these groups to the SubGroup file in the host. nano /etc/subgid Add at the bottom of the file as below. root:100000:65536 root:44:1 root:104:1 In the above I also added the 100000 group so root maps correctly too. We are going to have to do some user and group remapping so the devices come through to the LXC correctly. This is done in the .conf file for your container. I will just past as an example what I do. These lines are just for the devices and group mappings. lxc.cgroup2.devices.allow: c 226:0 rwm lxc.cgroup2.devices.allow: c 226:128 rwm lxc.mount.entry: /dev/dri/renderD128 dev/dri/renderD128 none bind,optional,create=file lxc.idmap: u 0 100000 65536 lxc.idmap: g 0 100000 44 lxc.idmap: g 44 44 1 lxc.idmap: g 45 100045 62 lxc.idmap: g 107 104 1 lxc.idmap: g 108 100108 65428 The above mappings will map the devices and groups into your LXC Container. After starting your container check /dev/dri sith an ls -l to ensure the groups mapped correctly. If so, add these groups to the jellyfin user and restart jellyfin. Now your hardware render will work You can also pass in an Nvidea GPU but it is a bit more involved. Hope this is helpful.
@nickmichniewicz3519 29 күн бұрын
I had to add these lines to my docker compose file devices: - /dev/dri:/dev/dri
@AnandsLab 29 күн бұрын
@@nickmichniewicz3519 of course I thought that was obvious but you have a good point.
@wizzbangtg 29 күн бұрын
@@nickmichniewicz3519 That is one way to do it, passing dri as a device. In my opinion the clearner way is to is to mount the actual device(s) you need and not entire structure. This works with both Inel and AMD APUs. Nvidea cards are another story. lxc.mount.entry: /dev/dri/renderD128 dev/dri/renderD128 none bind,optional,create=file lxc.mount.entry: /dev/dri/card0 dev/dri/card0 none bind,optional,create=file But like I always say. There is usually more than one way to do what we do and if it works, it is not wrong.
@kano96 Ай бұрын
Great video and got it all working per the video, however unable to access the traefik dashboard via my internal network.....any ideas?
@kano96 Ай бұрын
don't worry I reviewed your video again saw you mention enabling the api.insecure=true and it's associated ports. all working now!
@Sherbibv Ай бұрын
What about vm passthrough?
@AnandsLab Ай бұрын
iGPU passthrough to a VM is a bit more tricky. I am not doing this yet as I still need the iGPU available on host, which won't be the case if i pass it through. But out of interest I will try to cover this in a separate video.
@Sherbibv Ай бұрын
@@AnandsLabi know that for older versions of Intel cpus you could have both host video and also pass the gpu to a vm.
@wizzbangtg Ай бұрын
@@Sherbibv I am not saying it can't happen but I have never seen it be successful due to passing the iGPU to a VM as a hardware device. This gives the VM full control over the hardware. That is providing you tell the Proxmox host to not use said iGPU, otherwise it does not pass into the VM. But, you can pass an iGPU to many LXC containers without issue. I am sure there is a limit but I have had 6 seperate LXC containers running at the same time without issue. All using the iGPU for transcoding.
@Excited-IT-Architect Ай бұрын
Thanks a lot for this helpful video! Please still let us know where we can find the extracts you are using. Thank you.
@AnandsLab Ай бұрын
Oops! Adding it to the description.
@Damia-cz8og Ай бұрын
@AnandsLab RHEL yes install desktop not proxmox yes terminal install alll desktop apps docker yeah or not
@MarkConstable Ай бұрын
I don't prefer docker in any environment.
@AnandsLab Ай бұрын
Please elaborate to help others.
@MarkConstable Ай бұрын
@@AnandsLab It's a hot mess of confusing overlays and hides how applications really work in a native environment. I can copy a LXC and VM system to bare metal and vice versa, but a docker environment totally messes that up unless it's docker to docker.
@jims888 Ай бұрын
I know this has been a debate for some time, but for today, Is it a good idea to run Docker on a lot of Proxmox LXCs? Also please make a video on how to SSH with key, if you would. Thanks!
@1rk1n Ай бұрын
I hope this video wasn't made JUST for me, for being a noob on your discord ^^. Thank you much. The explanation of the permission(s) was enlightening too. Be safe on vacation.
@AnandsLab Ай бұрын
It was, kind of. I had planned it but moved it up in the schedule :-)
@kyesil Ай бұрын
Docker on lxc so much efficient. Before I am using docker on VM. Now convert docker on lxc. %30 storage %50 CPU usage %50 ram usage decreased. Proxmox lxc lot's of save money. Before vm on VMware esxi 2times expensive server cost
@AnandsLab Ай бұрын
It definitely is. Just need to ensure good backups although I never had to restore one in 2 years
@declanmcardle Ай бұрын
For the video with passing a graphics card through, can you give a definitive answer as to whether the inbuilt graphics GPU on the CPU can be passed through or must it be a separate physical card in a PCIe slot - thanks.
@AnandsLab Ай бұрын
Already recorded. And I am passing through my igpu. Not a dedicated card.