joakim/rick-infra
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
89b43180fc36a7537372372d36670b7d0327f733
rick-infra/now-what.md
Joakim 846ab74f87 Fix Nextcloud DNS resolution and implement systemd cron for background jobs 
- Enable IP forwarding in security playbook (net.ipv4.ip_forward = 1)
- Add podman network firewall rules to fix container DNS/HTTPS access
- Implement systemd timer for reliable Nextcloud background job execution
- Add database optimization tasks (indices, bigint conversion, mimetypes)
- Configure maintenance window (04:00 UTC) and phone region (NO)
- Add security headers (X-Robots-Tag, X-Permitted-Cross-Domain-Policies)
- Create Nextcloud removal playbook for clean uninstall
- Fix nftables interface matching (podman0 vs podman+)

Root cause: nftables FORWARD chain blocked container egress traffic
Solution: Explicit firewall rules for podman0 bridge interface
2025-12-20 19:51:26 +01:00

732 B
Raw Blame History

Now what?

  • Redeploy on clean VPS to test playbook

    • Must set up mini-vps for sigvild and devigo

  • What gets served on jnss.me?

  • Backups

  • Titan email provider support. For smtp access to hello@jnss.me

  • Vaultvarden

  • Configure and set up Nextcloud

    • OAuth
    • Settings
    • Contacts and calendars
    • Storage bucket integration?
    • SMTP setup for email sending

  • Gitea

    • SSH passthrough setup
    • Figure out how to disable registration and local password
    • SMTP setup for email sending

  • Authentik Invitations for users?

  • Sail the high seas

    • Set up Jellyfin
    • Set up *arr applications

  • "Blog post"

Reference in New Issue View Git Blame Copy Permalink