Thanks for this. You always have the coolest ideas and most practical solutions, and it's very inspiring.

Excellent idea! Yet another very helpful service on my network. Thanks as always for your careful explanations. Great work.

"We don't need IPv4" - Love it. IPv6 isn't the future. IPv6 is now! Perfect guide. Something I need to add to my ever growing list of things to do.

Your solution is quite simple and elegant. What about the apt-cacher-ng ?

Sweet! This actually gave me some ideas about copying the config files onto my fresh Debian installs. I was using self hosted gitea but having a simple wget command and piped it to bash is a better idea.

Great Video as always! Really nice how much faster my updates are now with a cache in place.

Perfect and thank you for sharing. Simple yet super efficient and works for any repository

Was running apt-cacher-ng on a Pi, before, and a Debian vm most recently. This was 'easier' to set up, mostly. I have a dozen or so iron and vm Debians, and at least that many Pis. Took less than an hour to spin up a minimal VM and install, another 20-30 minutes to get the rest set up, and it's cooking away for them all. It'd be nice to have a text doc with what needs to be changed on your scripts from your domain and particular setup, but other than that, very nice.

Very nice video and overall good idea! I personally like Ansible more than a shell script - especially because you plan to reconfigure all your servers. But that doesn't matter as long as it works for you. :)

Now that i have more than 20 LXCs i'm starting to automate updates with ansible and this will come handy to save some bandwidth (not that I'm behing a metered connection, but if the servers are up 24/7 better put them to good use). Thanks for the video.

I was actually recently thinking about looking into caching for fun, but decided it was too much work for not enough gain. Thanks a bunch, it's now basically a turnkey solution for me (not quite, but close enough), so that equation has flipped and I can "just do it". Neat!

Nice! Gonna set this up today

PERFECT! a project for the weekend! Thank You!

Thank you for posting this! I've been meaning to set up apt-cacher-ng for a while now but I'd rather use nginx for the exact reasons you explained

What a nice video. Thanks!

Excellent work. Will immidiately spin up an lxc with nginx + apt cache and try this out 🙂 ps. added a couple of lines so that icons also load.

I was worried about a chicken-egg problem running the cacher in a container, especially applying the cache to sources.list of the proxmox hosts. The solution was pretty simple: sources.list supports multiple sources and will prefer the first entry. So I have my local cache entries listed first followed by the default upstream sources.

Great video as always . thanks

At the 5:00 minute mark he mentions that a proxy doesn't let him cache https traffic, but by setting up a mirrored cache using an http web server how does that do any better? Does modifying the source list allow for caching https content?

long time ago I thought about the same but honestly it is a lot to set up - I am surprised nobody made it yet as a package or container that are already preconfigured

suggestion to improve the rewrite script readability: use cat/EOF to pipe a multiline string to a file.

Man I was just reading about this. Does anyone know how this compares to something like a Squid cache in pf/OPNsense? I've been planning on getting a dedicated machine for *sense, wondering how much I need to worry about storage on it.

It will be interesting to show how to do cache for docker dependencies.. Homelab cluster with bunch of VMs with docker inside each VM..

For reference, the .sources files are deb822 format. Its intended to reduce the need for separate keyring files, iirc. Also, I can't help but want to try and write an ansible playbook to replace that bash script.😂

can also be done with lancache and adding the rules into there. but in that case your also adding in another DNS resolver

Hmm.. not in a place to try this, but one might rewrite all repos, but put the repo hostname as first part of the URL, where one can extract it in the nginx config again, making it able to cache arbitrary repos.

Is there a way to do this for youtube videos or even DRM media like Netflix?

How do you keep all of your containers updated without having to do manual apt upgrades on each one?

Do you have an automatic way of generating ipv6 DNS entries based on slaac or is this step still a manual process. I assume you use opnsense?

I have to do the same for my opensuse systems

Would love to see a similar solution for RH based linux distros :-)

What about setting up a local DNS and use a CNAME for the local cache?

While looping over files with find, variable mirror gets emptied after first loop. This results in first file to be ok and subsequent files to write incomplete URLs. I am however not familiar with bash scripting enough to explain why. Edit: Also in your blog you place nginx log files in /var/debcache/ but at the end of blog you tail files in /etc/debcache/

Will this break the dist upgrade process? Say Ubuntu 22.04 to 24.04. Since it is renaming the repositories in sources.list.

does anyone know how to do the same for conda, pip and flatpak?

This is interesting. Personally I have a pacman cache for in my homelab using similar setup because I prefer Arch over Debian. Now if someone were to make similar tutorial for RPM-based distro...

Awesome thanks!

Works well except my proxmox cache falls out of sync in a day or two. If I clear the cache it works again for a couple days and then back to "File has unexpected size (374493 != 380514). Mirror sync in progress?" Edit: Update after looking more into things I think it might be the that it is trying to connect to the download.proxmox server using IPv6 and I don't have IPv6 enabled on any of my systems. Edit2: Update2 after changing the config to point to the IPv4 address and reboot. I still get get the error.

Actually it is possible to cache even https packages. like I have run in years apt-cacher-ng on my network to cache my apt updates, and true on the clients I have added the apt-cacher-ng as a apt proxy, and if it's a https repo then I have changed in the source list files so if its a https repo then changed it to http and then added "HTTPS///" with 3 / in front of the domain since that tells apt-cacher-ng that it's a https repo so it downloads the update over https ofc internal its then only http between the cache and the client but that is only on the local network

Are there any changes you would have to make to allow offline clients to update this way?

great idea. Personally I would have hijacked DNS.

Now, I just need a mirror who serves my ISP with anything higher than 300kbps in a Gigabit link.

Why not squid?

Seems like a lot of work over apt install apt-cacher-ng on a spare server, and apt install auto-apt-proxy on the clients.

Now put that in a conatiner 😅 and I'll run in my stack