[GTALUG] Opinions on container management for self-hosting
Mike Holloway
mike.holloway at protonmail.com
Mon Sep 9 14:14:36 EDT 2024
Hey folks, here to add some more usage datapoints to the thread.
Recently (1+ years now?) experienced a breakthrough with Podman in my homelab - everything is converted over on both Fedora and Guix (!). (Jellyfin, Nextcloud, RSS aggregator, Gitea, quassel-core). LetsEncrypt is handled by a standard OS reverse proxy service but I don't think containerizing it would be too hard; classic OS service setup is mostly owing to intertia and habit.
My docker-compose.yml files are all working with podman-compose (the pip package) and I've gone through a few Fedora `dnf system-upgrade` processes which give me confidence in the forward viability of the setup.
Not sure but there could be some differences between what myself and Alvin are deploying which accounts for quirks I'm unaware of.
As for the "container needs updates" problem, I'm actually quite curious what folks are using since I haven't settled on a solution just yet, but the time is looking right for that consideration.
Cheers,
Mike
Sent with Proton Mail secure email.
On Monday, 9 September 2024 at 12:53, Mark Prosser via talk <talk at gtalug.org> wrote:
> > I have been using docker-compose with nginxproxy/nginx-proxy and
> > nginxproxy/acme-companion.
> > It is a nice proxy in that it will proxy multiple sites based on their
> > docker configuration.
> > The acme companion handles getting lets-encrypt certificates for each
> > site so that I no longer need to be buying a wildcard cert.
>
>
> That's pretty cool. I did give nginx-proxy a try a long while back, but
> I ended up settling on Caddy. It also handles the LE cert portion.
>
> > I have tried moving a number of things to podman but it still has enough
> > quirks that it may be while before I move my self-hosted apps.
> >
> > Most of the other things you mention have a fairly high upfront
> > technical cost. At least from my point of view.
>
>
> That's a fair point. I'm just glad to hear my config isn't too far off
> someone else's.
>
> Warm regards,
>
> --
> Mark Prosser
> // E: mark at zealnetworks.ca
> // W: https://zealnetworks.ca
>
> ---
> Post to this mailing list talk at gtalug.org
> Unsubscribe from this mailing list https://gtalug.org/mailman/listinfo/talk
More information about the talk
mailing list