--add-host=host.docker.internal:host-gateway

# echo "172.17.0.1      nostovo.arnostdudek.cz" >> /etc/hosts

1. login do DSM UI
2. Centrum balicku → nainstalovat LDAP server
3. v nastaveni LDAP serveru zvolime jako Provider
   • FQDN je domenove jmeno [ je nutne platne kvuli platnosti certifikatu ]
   • v Nastaveni pripojeni zakazeme anonymniho uzivatele a vynutime sifrovani [ nutne kvuli bezpecnosti, hesla jsou prenasena nesifrovane ]
4. pridame pozadovane uzivatele

$ sudo dnf install openldap-clients

$ ldapsearch -x -LLL -H "ldaps://nostovo.arnostdudek.cz" -D "uid=root,cn=users,dc=nostovo,dc=arnostdudek,dc=cz" -W -b"cn=users,dc=nostovo,dc=arnostdudek,dc=cz"

Volume: /volumes1/docker/volume-nexus/

https://nostovo.arnostdudek.cz:8081

http://nostovo.arnostdudek.cz:7981

Docker URL: https://nostovo.arnostdudek.cz:32769/repository/nostovo/

1. upravime / vytvorime /etc/docker/daemon.json

   daemon.json

   {
       "insecure-registries": ["nostovo.arnostdudek.cz:32769"]
   }

2. otocime docker

   $ systemctl restart docker

3. a prihlasime se

   $ docker login [-u <user>] [-p <pass>] <URL>
   $ docker login -u admin -p <pass> nostovo.arnostdudek.cz:32769

z https://www.synoforum.com/resources/synology-reverse-proxy-under-the-hood.135/

1. login do DSM UI
2. Ovladaci panely → Prihlasovaci portal → tab Rozsirena nastaveni → Reverzni server proxy
3. Pridat a vyplnime

   Prekladane porty nesmi byt stejne jako porty vystavene dockerem! Zde vzdy <port v kontejneru>-100 zpet na <port v kontejneru> ale jiz HTTPS.

   

4. a prihlasime se

   $ docker login [-u <user>] [-p <pass>] <URL>
   $ docker login -u admin -p <pass> nostovo.arnostdudek.cz:32769

1. login do nexusu
2. Settings → LDAP → Create new
3. LDAP server address: je ve tvaru

   ldaps://<FQDN>:636

4. Search base DN zkopirujeme Base DN z nastaveni LDAP serveru v DSM
5. Authentication method zvolime Simple authentication
6. Username or DN zkopirujeme Bind DN z nastaveni LDAP serveru v DSM
7. Password opet z nastaveni LDAP serveru v DSM
8. overime spojeni
9. zvolime Configuration template Posix with Dynamic Groups
10. User relative DN zvolime „cn=users“ jinak nemusime menit
11. overime nacteni uzivatelu a skupin a take moznost jejich prihlaseni
12. presuneme se do Roles → Create Role
13. vybereme External role mapping, nasledne LDAP
14. Mapped Role nastavime podle detekovanych

https://nostovo.arnostdudek.cz:8080

http://nostovo.arnostdudek.cz:7980

Volume: /volumes1/docker/volume-jenkins-home/

$ docker exec -it -u root jenkins-jenkins1 bash

„Svazek“ → „Pridat slozku“ → vybrat volume a potvrdit → „Cesta pro navazani“ = „/var/jenkins_home“

$ sudo ln -s /var/run/docker.sock /volume1/docker/docker.sock

<wrap fixme> „Svazek“ → „Pridat soubor“ → cil symlinku → „Cesta pro navazani“ = „/var/run/docker.sock“

1. „Manage Jenkins“ > „Global Tool Configuration“ > „Add JDK“
2. Label: openjdk-11
3. Download URL: https://download.java.net/java/GA/jdk11/13/GPL/openjdk-11.0.1_linux-x64_bin.tar.gz
4. Subdirectory of extracted archive: jdk-11.0.1
5. pouzit v buildu dle zadaneho labelu

$ sudo wget -O /etc/yum.repos.d/jenkins.repo https://pkg.jenkins.io/redhat-stable/jenkins.repo
$ sudo rpm --import https://pkg.jenkins.io/redhat-stable/jenkins.io.key

https://nostovo.arnostdudek.cz:8082

http://nostovo.arnostdudek.cz:7982

https://github.com/louislam/uptime-kuma

Volume: /volumes1/docker/volume-uptime-kuma/

Volume: /volume1/docker/volume-handbrake/config

http://192.168.1.2:7984/

https://hub.docker.com/r/jlesage/handbrake

https://github.com/jlesage/docker-handbrake

docker run -d \
    --name=handbrake \
    -p 5800:5800 \
    -v /docker/appdata/handbrake:/config:rw \ # Stores the application's configuration, state, logs, and any files requiring persistency.
    -v /home/user:/storage:ro \ # Contains files from the host that need to be accessible to the application.
    -v /home/user/HandBrake/watch:/watch:rw \ # The location for videos to be automatically converted.
    -v /home/user/HandBrake/output:/output:rw \ # The destination for converted video files.
    jlesage/handbrake

1. Vytvorime slozku pro docker-compose.yml
2. Vytvorime slozku pro vlastni konfiguraci nastoroje - slozka /config
3. Pokud nemame, vytvorime slozky pro vstup, sledovani a vystup
4. Container manager → Projekty → Novy

version: "3"

services:
  # from https://www.youtube.com/watch?v=g25uQxDr7fQ
  handbrake:
    image: jlesage/handbrake
    container_name: handbrake
    environment:
      - TZ=Europe/Prague
      - USER_ID=1026 # Synology Container creator is using this instead of PUID. This is the same as the user id of the user in the container.
      - GROUP_ID=100 # Synology Container creator is using this instead of PGID. This is the same as the group id of the user in the container.
      # Handbrake GUI settings
      - AUTOMATED_CONVERSION_PRESET=nost/qsv h265 icq25 1080p
      - AUTOMATED_CONVERSION_FORMAT=mkv
      - AUTOMATED_CONVERSION_KEEP_SOURCE=0
      - AUTOMATED_CONVERSION_OUTPUT_SUBDIR=SAME_AS_SRC
    ports:
      - 7984:5800
    volumes:
      # NAS path | Container path
      - /volume1/docker/volume-handbrake/config:/config
      - /volume1/homes/nost23/nvidia_geforce:/storage
      - /volume1/homes/nost23/nvidia_geforce/prekodovat:/watch
      - /volume1/homes/nost23/nvidia_geforce/prekodovano:/output
    devices:
      - /dev/dri:/dev/dri # Binds the Intel Quicksync decoder to Plex HW Transcode
    group_add:
      - "937"  # Synology "videodriver" group

1. Povolime webovy portal handbrake → HTTPS na port 8084. Host localhost.