The rollout from scratch has not been fully automated yet, and generally requires following the process defined in the /readme and /kubernetes/scripts folders for the initial setup.
After the initial steps are complete, deployments are handled via ArgoCD application manifests defined in the /kubernetes/argocd.
- Router: TP-Link ER7406
- Switch: TP-Link TL-SG2428P
- Access Points:
- ProxMox VE Host:
- MOBO: ASRock IMB-X1231
- CPU: Intel Core i5-13500
- RAM: Kingston Server Premier DDR4-ECC-3200 32 GB x2
- Extension Cards:
- SATA Controller - 2 Port: JMB58x - M.2 M+B Key
- SATA Controller - 6 port: ASM1166 - M.2 M Key
- Storage:
- (ProxMox System) SSD Samsung 840 Pro 256 GB x2
- (Master Nodes) SSD Samsung 860 Evo 1 TB
- (Worker Nodes) SSD Crucial BX500 1TB
- (NAS) SSD Crucial BX500 1TB x2
- (NAS) HDD Seagate IronWolf Pro NAS 12 TB x3
- Virtual Machines:
- TrueNAS Scale with 4 CPUs, 8GB RAM and extension cards (1) and (2) as direct passthrough and SSD (4) and HDD (5) in ZFS pulls for storage
- (Worker) Ubuntu Server with 4 CPUs and 8GB RAM
- (Worker) Ubuntu Server with 6 CPUs and 16GB RAM
- (Master) Ubuntu Server with 2 CPUs and 4 GB RAM x3
- KVM: SiPeed NanoKVM-PCIe-PoE
- (Disabled) ProxMox VE Host (Spare):
- CPU Intel i7-6700
- RAM 16 GB
- Storage:
- SSD SanDisk SD7TB3Q-256G-1006 256GB
- NVME WD Blue NVME 500 GB
- Virtual Machines:
- (x3) Ubuntu Server with 2 CPUs and and 4GB RAM
- (Worker) Raspberry Pi 4B 8GB
- Compute Blade:
- Raspberry Pi CM4 8GB + Crucial P3 Plus 500GB x 2
- Raspberry Pi CM-TBD x 2
Some services are installed out of the box in Microk8s, refer to kubernetes/scripts/00.0-init.sh
| Project | Description | Docs / Repo | Docker / Helm |
|---|---|---|---|
| ArgoCD | Declarative GitOps CD for Kubernetes | docs | |
| Authentik | Identity Provider that emphasizes flexibility and versatility | docs repo |
helm |
| Blocky | Fast and lightweight DNS proxy as ad-blocker for local network | repo docs |
docker |
| Cert Manager | Certificate management for Kubernetes | docs | helm |
| CloudnativePG (CNPG) | CloudNativePG is a comprehensive platform designed to seamlessly manage PostgreSQL databases within Kubernetes environments, covering the entire operational lifecycle from initial deployment to ongoing maintenance | repo docs |
helm |
| PostgreSQL - The PostgreSQL object-relational database system provides reliability and data integrity | docker | ||
| VectorChord - Scalable, fast, and disk-friendly vector search in Postgres, the successor of pgvecto.rs. Required by: Immich |
repo docs |
docker | |
| CoreDNS | CoreDNS is a DNS server that chains plugins and integrates with Kubernetes | repo docs |
helm |
| Headlamp | A Kubernetes web UI that is fully-featured, user-friendly and extensible | repo docs |
helm |
| Ingress NGINX | Ingress NGINX Controller for Kubernetes | repo docs |
helm |
| Kubernetes Metrics Server | Scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. Also required for statistics graphs in Kubernetes Dashboard |
repo | helm |
| MetalLB | A network load-balancer implementation for Kubernetes using standard routing protocols | repo docs |
helm |
| Multus | A CNI meta-plugin for multi-homed pods in Kubernetes | repo docs |
docker |
| NFS Subdir Provisioner | Automatic provisioning of PVs via PVCs | repo | |
| Node Feature Discovery | Node feature discovery for Kubernetes | repo docs |
helm |
| OpenEBS | A popular & widely deployed Open Source Container Native Storage platform for Stateful Persistent Applications on Kubernetes | repo docs |
helm |
| Redis | In-memory database that persists on disk | repo | helm |
| RustFS | RustFS is an open-source, S3-compatible high-performance object storage | repo docs |
helm |
| Sealed Secrets | A Kubernetes controller and tool for one-way encrypted Secrets | repo | helm |
| Tailscale K8s Operator | Secure, remote access to on-premises | repo docs |
helm |
| Zot | A scale-out production-ready vendor-neutral OCI-native container image/artifact registry (purely based on OCI Distribution Specification) | repo docs |
helm |
| Project | Description | Docs / Repo | Docker / Helm |
|---|---|---|---|
| Cloudflare DDNS | Dynamic DNS implementation for the Cloudflare service | repo | docker |
| External DNS | Configure external DNS servers for Kubernetes Ingresses and Services | repo docs |
helm helm-docs |
| Homer | A dead simple static HOMe for your servER to keep your services on hand from a simple yaml config | repo | docker |
| Omada Controller | TP-Link Omada Controller | repo | docker |
| Project | Description | Docs / Repo | Docker / Helm |
|---|---|---|---|
| Intel Device Plugins Operator | Collection of Intel device plugins for Kubernetes | repo docs |
helm |
| Intel GPU Device Plugin | The GPU device plugin provides access to discrete and integrated Intel GPU device files | repo docs |
helm |
| Project | Description | Docs / Repo | Docker / Helm |
|---|---|---|---|
| Borgmatic Exporter | Prometheus exporter for Borgmatic seamlessly integrated into official Borgmatic image | repo | docker |
| Borgmatic | Borgmatic is simple, configuration-driven backup software for servers, workstations and databases | repo-docker-borgmatic repo-borgmatic docs-borgmatic |
docker |
| Syncthing | Open source continuous file synchronization | repo docs |
docker |
| Project | Description | Docs / Repo | Docker / Helm |
|---|---|---|---|
| Victoria Metrics | Fast, cost-effective monitoring solution and time series database | docs / repo | helm |
| Kubernetes Grafana Dashboards - Observability dashboards for Kubernetes | repo | ||
| Speedtest Tracker | Internet performance tracking that runs speedtest against Ookla's Speedtest service | docs | docker |
| Exportarr | AIO Prometheus Exporter for *arr applications | repo | docker |
| Project | Description | Docs / Repo | Docker / Helm |
|---|---|---|---|
| Code Server | VS Code in the browser | repo docs |
docker |
| Renovate | Universal dependency update tool | repo | docker |
| IT Tools | Useful tools for developer and people working in IT | repo | docker |
| CloudBeaver | Cloud Database Manager | repo | docker |
| Miniflux | Minimalist and opinionated feed reader | repo docs |
docker |
| CouchDB | Open-source document-oriented NoSQL database. Usecase is to enable Self-hosted LiveSync for Obsidian | docs repo |
helm |
| Gitea | Lightweight and easy to use version control system | repo docs |
helm |
| PairDrop | Transfer files cross-platform. No setup, no signup | repo | docker |
| BentoPDF | Privacy first PDF toolkit | repo | docker |
| Project | Description | Docs / Repo | Docker / Helm |
|---|---|---|---|
| Tuya Gateway | Lightweight gateway for Tuya / Smartlife | repo | docker |
| Home Assistant | Central control system for smart home with a focus on local control and privacy | docs repo |
docker |
| Mosquitto | An open source MQTT broker | docs repo |
docker |
| Frigate | Open source NVR built around real-time AI object detection | docs repo |
helm |
| Zigbee2MQTT | Zigbee to MQTT bridge | docs repo |
docker |
| PSA Car Controller | Control PSA car with connected_car v4 API | repo | docker |
| Project | Description | Docs / Repo | Docker / Helm |
|---|---|---|---|
| Filebrowser Quantum | FileBrowser Quantum provides an easy way to access and manage your files from the web | repo docs |
docker |
| SearXNG | Privacy-respecting, hackable metasearch engine | repo docs |
docker |
| Invidious | STOPPED WORKING DUE TO YOUTUBE CHANGES, NO FIX Invidious is an open source alternative front-end to YouTube |
repo docs |
docker |
| Immich | High-performance self-hosted solution for backing up, viewing, managing, and sharing photos from your phone or existing galleries | repo docs |
helm |
| Vaultwarden | Password management (alternative Bitwarden server) | repo | docker |
A lot of general information on the topic: TRaSH Guides
| Project | Description | Docs / Repo | Docker / Helm |
|---|---|---|---|
| Jellyfin | Jellyfin puts you in control of managing and streaming your media | repo | docker |
| Jellyseerr | Fork of Overseerr for managing requests for the media library with Jellyfin integration | repo | docker |
| Radarr | Radarr is a movie collection manager for Usenet and BitTorrent users | repo | docker |
| Sonarr | Sonarr is a PVR for Usenet and BitTorrent users | repo | docker |
| Prowlarr | Prowlarr is an indexer manager/proxy | repo | docker |
| Bazarr | Bazarr is a companion application to Sonarr and Radarr to manage | repo | docker |
| Recyclarr | Automatically synchronize recommended settings from the TRaSH guides | repo | docker |
| qBittorrent + Vue | repo-qbittorrent repo-vuetorrent |
docker | |
| qBit Manage | Manage qBittorrent instances with ease | repo | docker |
| Unpackerr | repo | docker | |
| Stash | repo docs |
docker | |
| FlareSolverr | FlareSolverr is a proxy server to bypass Cloudflare and DDoS-GUARD protection | repo docs |
docker |
| Lidarr | Looks and smells like Sonarr but made for music | repo docs |
docker |
| Music Assistant | Music Assistant is a free, opensource Media library manager that connects to your streaming services and a wide range of connected speakers | repo docs |
docker |
| iSponsorBlockTV | SponsorBlock client for all YouTube TV clients | repo docs |
docker |
This section contains the list of standalone applications or plugins that can be used to accompany the deployed services on the phones, computers or smart devices.
| Project | Description | Link |
|---|---|---|
| Jellyfin Tizen | Builds for the Jellyfin Tizen application for the Samsung smart TVs. Use @georift/install-jellyfin-tizen for quick deploys. | docker-builds repo-jellyfin-tizen |
| Obsidian | Obsidian is a note-taking app that lets you store, link, and publish your thoughts on your device. You can customize Obsidian with plugins, themes, and graphs, and sync your notes securely across devices. | obsidian.md |
| Obsidian Plugins - Self-hosted LiveSync | Synchronization plugin, available on every obsidian-compatible platform and using CouchDB or Object Storage (e.g., MinIO, S3, R2, etc.) as the server. | repo |
| Bitwarden Password Manager / Bitwarden App | Password manager that integrates with open-source Bitwarden implementation - Vaultwarden. | |
| Floccus | Sync your bookmarks privately across browsers and devices. Uses Gitea for bookmarks storage. | repo docs |
| Immich-Go | An alternative to the immich-CLI command that doesn't depend on nodejs installation. It tries its best for importing google photos takeout archives. | repo docs |
| Project | Description | Docs / Repo | Docker / Helm |
|---|---|---|---|
| Longhorn | Longhorn is a lightweight, reliable and easy-to-use distributed block storage system for Kubernetes | docs | helm |
| Meshcentral | Web-based remote monitoring and management web site with Intel AMT support | repo docs |
docker |