Mastodawn

Has anyone managed to get #OwnTracks running with container manager on their #synology #nas ? I plan to (try to) use it with @tailscale , if possible. Reading the owntracks quicksetup guide. but it only mentions VPS. Would be sweet if anyone has seen a guide suitable for newbies like me. #selfHosting Seems to be at least some frustration on the matter: https://github.com/owntracks/talk/issues/253

I don't understand: is the Docker Container the quick install? · Issue #253 · owntracks/talk

Hi! I've read your documentation, your git readme, and the readme of the Docker repo, but I still don't understand what the Docker Container does. What is the recorder? Why is Docker not mentioned ...

GitHub

Show thread

Ronnie André Bjørvik Sletta Mar 8

@hsorlie @tailscale i can take a look at it tomorrow, to see what I figure out. There are some interesting problems to work on here.

VPS can (almost) always be changed with whatever you want to run your software on. It is just a virtual computer somewhere, and you can for the most part view your docker containers as the same. (of course with some caveats)

Show thread

Ronnie André Bjørvik Sletta Mar 8

@hsorlie @tailscale I have a working setup now, so I just have to do write a guide for you to follow. It was a bit convoluted. 😊

Show thread

Henrik Sørlie Mar 8

@rsletta @tailscale This is all kinds of awesome. Thank you! Can't wait to read the guide!

Show thread

Ronnie André Bjørvik Sletta Mar 8

@hsorlie @tailscale I don't know how fast I'll be able to write a post about it, but you might be able to figure it out from the repo I threw the working config into. My first repo on Codeberg. 🤓

Download the files, and put everything into the root of the directory you want to use for the Project.

Create a .env file from the .env.example.txt, containing your tailscale auth key (like for Immich)

Edit the ts-server.json file, so it points to the subdomain you want(I used owntracks) and your tailnet domain.

Create a new Project and give it a name. Select the path to your chosen directory. It will pick up the existing compose.yaml, so you can just select that, and press next until it start up.

I installed the iOS app to test it. I include a screenshot of the settings for reference. Remember to toggle the authentication off. Tailscale is the "only" guards in this setup, something I find sufficient, since the containers aren't even exposing ports on your local networks. They can only be access via the Tailscale node.

https://codeberg.org/rsletta/owntracks-and-tailscale-in-containers

Show thread

Henrik Sørlie Mar 9

@rsletta @tailscale Thanks! I'll have a go at this this evening. 🤞

Show thread

Henrik Sørlie Mar 9

@rsletta @tailscale Tried to follow your instructions to the best of my abilities. I have the project running in container manager, green lights and all. However, the android app won't connect to the recorder. I'm not quite sure what questions to ask in order to begin to track down the errors here, but I'll start with a few things I was not confident about when I set this up: 1 - Does the tailscale authkey only go one place, the .env file? I see what seems to be a placeholder for it in the yaml, so I tried both with and without there as well... 2 - Should I be able to open the web interface on my laptop with just http://owntracks.<ts-domain>.ts.net:443 ? 3 - Does the android app require anything else than the url to connect? I have directed it to http://owntracks.<ts-domain>.ts.net/pub , but I haven't given it anything else. No username, password. Device ID and Tracker ID is preset for me. Under TLS it says Client certificate: not set. Thank you again!

Show thread

Ronnie André Bjørvik Sletta Mar 9

@hsorlie @tailscale my bad for being imprecise.

The auth key from Tailscale goes in the .env file. It has to be a new key, created the same way as the one for immich. You can put the key directly into the compose file if you want to, replacing ${TS_AUTHKEY}.

Did you put your own tailnet domain in ts-serve.json?

If all the containers are running, and you see the node in the Machine dashboard on Tailscale, you should be able to reach the service. You don’t have to type :443, since that is the standard https port. Since they are green, it might be something with the Tailscale setup. You could try to stop the project, clear the Tailscale/state directory, generate a new auth key, and try re-building it.

It can be tricky to troubleshoot, and I had my share of issues trying to get it up and running. But if the containers are green, and logs seem fine, I would start by checking the Tailscale dashboard. I have an old Android phone in a drawer, so I’ll install it on it to see how it looks.

Show thread

Ronnie André Bjørvik Sletta Mar 9

@hsorlie @tailscale oh, one detail I noticed in your post. You mention http://owntracks… that needs to be https. It should redirect, but you never know.

Show thread

Ronnie André Bjørvik Sletta Mar 9

@hsorlie @tailscale regarding the app. I did have to set the host too, and explicitly turn auth off. And select http at the top. I forgot to point to that. It defaults to MQTT, which is another protocol.

Show thread

Henrik Sørlie Mar 9

@rsletta @tailscale Copy! Android app looks quite different, with different settings. But I have http mode, the correct URL (I think). There is not an option to turn auth off, but I have no username and no password (and no TLS client certificate).

Show thread

Ronnie André Bjørvik Sletta

@hsorlie @tailscale Seems you are on the right track regarding the app. I just plopped in the url and I got an entry in the recorder. However I also noticed that the info icon revealed a nice section, with logs at the bottom. And it seems like I have some issues with the connection timing out I would need to dig into.