My homelab configurations - a mix of running services, half-finished experiments, and ideas I haven't gotten around to yet. Everything runs on Proxmox using NixOS containers and the occasional VM.
Pi-hole - DNS and ad blocking
- Web interface on port 80
- DNS on port 53
- Uses Steven Black's unified adlist
Immich - Photo backup
- Web interface on port 3001
- fail2ban for brute force protection
- Managed Redis and PostgreSQL
OnlyOffice - Document server
- Port 8000
- Word, Excel, PowerPoint editing
- JWT authentication
Ethercalc - Collaborative spreadsheets
- Port 8000
- Real-time editing
CTFNote - CTF collaboration
- Port 8080
- Docker-based
Linkwarden - Bookmark manager
- Port 3000
- Docker-based
Notes-DB - PostgreSQL server
- PostgreSQL 16 on port 5432
- Daily backups
Wazuh - Security monitoring (SIEM/XDR)
- Set up via ProxmoxVE Helper Scripts
- Not managed by NixOS configurations in this repo
Pi-hole VM - Fedora CoreOS experiment
Alternative Pi-hole running on Fedora CoreOS with Podman. See vms/pihole/README.md.
Repository Layout
hosts/ # NixOS container configurations
vms/ # VM configurations (Fedora CoreOS, etc.)
modules/ # Shared NixOS modules
docs/ # Notes and guides
Common Setup
All containers share settings from modules/common.nix:
- Tailscale
- Weekly auto-updates
- Base container config
Deployment: bash deploy.sh <hostname> <container-id> <proxmox-node>