You are me, 3 years ago! I’m diagnosed with ADHD and what you described is exactly how I felt when I was starting out. I even bought a RaspberryPi 4B+ CanaKit which sat in the box for over a year, just like you.

3 years later I have the Pihole, OPNsense router & firewall, Jellyfin, Traefik reverse proxy, and a bunch of other stuff too. My advice would be to start super small so you don’t feel overwhelmed. It is incredibly easy to get overwhelmed with all of this.

For what it’s worth, before I started hosting anything, I started with NextDNS. I just set up my iPhone and computers (then mac, now mostly linux) to use that service. It comes with super easy-to-use instructions and you can start for free. If you don’t like it, you can always just delete the account and it’ll be like you never used it at all. Very low risk but doing this will teach you about DNS. From there you can begin to move to a Pihole and Docker, if you’re comfortable.

Feel free to DM if you want. It’s a great community here and we’re all a pretty relaxed group.

I can’t even specify the allowed IPs for a connection

Funny. This was the exact use case which cemented my pf/OPN sense decision. I used to use pf, now use OPNsense. And as you probably know, the IP specificity issue is not just regarding Wireguard, it’s also regarding your reverse proxy, if you’re running one.

As an aside, I have OPNsense handling DHCP which broadcasts two PiHoles (redundancy) as the DNS to my networked machines/devices. Then for upstream DNS, I have those two piholes pointed at a dedicated technitium dns box – it’s it’s an authoritative dns server, not just a recursive one like unbound. As I said in my previous comment, there are probably better or fancier setups but this one, for my needs, is sufficient.

I’ve always been flummoxed by Ubiquity products. I’m no sysadmin but I understand my way around networking and I absolutely agree with your “halfway implemented” critique. I installed Ubiquity at my parents’ house so that I could more easily do remote troubleshooting when something their network goes down. But for myself, I just stick with OpnSense at home. It’s not perfect but it suits my needs.

This was a fun writeup to read. Thanks for taking the time to post it.

You should ask @brucethemoose@lemmy.world. He seems to know all about this stuff.

Open WebUI now has a docker environment variable so you can, by default, turn off the login page. You just declare it when you’re spinning up the container and you’re good to go.

That’s really smart. I just found out about fabric yesterday and it is helping me with things like what you stated. Prompt engineering is a huge thing.

I’m sorry if I offended. I can’t code or understand existing code and have always felt that technical people code. I guess I should expand my definition. Again, sorry that my words felt like a punch in the gut… wasn’t my intention at all.

I use my phone all the time, but I just use a wireguard VPN to tunnel into my home container of Open WebUI. Then I can interact with my desktop machine using a NVIDIA gpu. I’m currently testing mistral-nemo. It’s pretty great but it gets a bit verbose sometimes.

This made me smile. Thank you. The grass is always greener and I sometimes daydream of working in IT instead of healthcare. Maybe someday.

Yeah, I have an NVDIA GPU and it is magic. The best part is when you are using Ollama, open a second terminal window and enter the command, watch -n 0.5 nvidia-smi and you can see your GPU usage go up and down in real-time as you ask the GPT questions. Pretty cool.

Hopefully they get the ARC folks up and running soon.

Got it. Thanks. I’ll try that. It won’t wipe my existing data, right?

I don’t do anything special. When I connect the device to my machine by USB, it is recognized and mounts itself. Once that happens, it becomes connectable via CLI and GUI. Very much like what happens in a windows or mac environment.

Have you looked at snapcast? It’s one of the tools I’m going to evaluate for a similar use case. I’m not sure if it works with Plex OOTB but it the docs say it supports UPnP. Snapcast is actively maintained so you can just create an issue on github and see how they reply.

Same. I just know there is a lot more out there and hope those ppl chime in. 🤞

I use JF and tag my music with the MB ID too. Not what I’m asking.

I want to know if ppl use the playlist auto-generator plugins, lyrics plugin or others to enhance their experience.

Mildly racist

👆This is a troll account. Look at the acct history.

Pihole blocks the basics for Roku. Things like logs ads etc. but there’s a lot more telemetry that they’re collecting. Here’s a hackernews thread about the topic and the associated article it references.

I did end up setting up my new Protectli appliance today. As i said below, I ended up with OPNsense and I have been able to replicate 97% of pfBlockerNG’s functionality on OPNsense. I’ve been able to load all of my previous DNS blocklists (including my own personal blocklists on Github), set up cron jobs (in the GUI) to update these lists every week and and whitelisted some sites too. The only thing that sucks is that regex isn’t supported. Instead they do wildcard domains (*.ampproject.org). Not nearly as good as regex but it’s better than nothing.

I also used pfBlockerNG for hardcoded ip address blocks (like Roku hard-coding 8.8.8.8). For that, I used the alias function in the firewall and just set up floating rules for that. Definitely not as convenient as a list, but they don’t change very much. Also, for IP addresses for security, OPNsense has a whole IDS section that pfBlockerNG used to handle.

pfBlockerNG made everything clean and easy but I’ve been able to get 97% of the functionality in pfBlockerNG in OPNsense. The 3% deficit is lack of regex support.

Edit: I saw the article you were referring to. That’s how I set up IP blocking. But Unbound in OPNSense supports blocklists (it’s even called DNSBL) and that is much easier/quicker to set up than using aliases IMO. Just make sure you toggle on Advanced Mode. That’s how you quickly load the custom blocklist urls. Just remember to seperate the urls with a comma. I forgot the first time and nothing worked.

I bought a netgate box a couple of years back and it was total garbage. My new 2.5gb Protectli came in yesterday. Looks like I’ll be putting OPNsense on it.