Lychee: Difference between revisions
Wikisailor (talk | contribs) |
Wikisailor (talk | contribs) |
||
| (4 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
==Introduduction== | ==Introduduction== | ||
Lychee is the Linux desktop that will be used as a '''[[Remote Access Terminal | remote desktop]]'''. The host is on the '''[[Remote Access Terminal | | Lychee is the Linux desktop that will be used as a '''[[Remote Access Terminal | remote desktop]]'''. The host is on the '''[[Remote Access Terminal | Terminals network]]''' with a IP address of x.x.x.10. The main purpose of the '''[[Virtual Machines | Virtual Machine]]''' is to allow access to a desktop inside the '''[[Home Lab]]''' virtual network on Pear, using NoMachine. | ||
'''Update Feb 2026''' '''[[Lychee]]''' has been destroyed to make way for a new Linux desktop. | |||
===Upated Evolving Role=== | ===Upated Evolving Role=== | ||
| Line 11: | Line 13: | ||
Nothing to add yet as the GPU is still on Walnut so not installed Jellyfin yet. Some of the the files will be copied over in anticipation. | Nothing to add yet as the GPU is still on Walnut so not installed Jellyfin yet. Some of the the files will be copied over in anticipation. | ||
==Docker | ==[[Docker Installation with N8N & NPM]] leading to [[Letsencrypt Wildcard SSL Cert]]== | ||
It was felt that N8N would be a good method of creating a few agents within the network. N8N is installed as a Docker image and we started to install on Walnut However, it quickly became apparent that we would need a separate proxy on the N8N host to terminate a SSL connection or at least it is not so easy to get N8N to terminate a SSL connection to satisfy | It was felt that N8N would be a good method of creating a few agents within the network. N8N is installed as a Docker image and we started to install on Walnut However, it quickly became apparent that we would need a separate proxy on the N8N host to terminate a SSL connection or at least it is not so easy to get N8N to terminate a SSL connection to satisfy Cloudflare's strict mode. the first solution was to have a separate revers proxy on walnut hat would be able to terminate a SSL connection. NPM was selected to do this so it was installed on walnut but the remote access still didn't work even from within the LAN. At this point it was becoming difficult to diagnose exactly where the fault/s were because we had walnut (a virtual machine) hosting docker over the Linus emulator that was in turn hosting N8N and NPM and then traffic was being fwd'ed from Walnut to NPM as SSL and NPM would be terminating that connection then calling N8N on a HTTP connection on port 80. So to simplify the install it was decided to use Lychee as the host for N8N. | ||
The advantage of using Lychee as the N8N host is that it will support Docker directly with no WSL2 layer to complicate anything. Eventually it did become apparent that it would be a lot easier if there was a separate SSL cert to Cloudflare as we still got the termination issues and still extra problems caused by using Cloudflare's origin certs locally, so it was decided to obtain a SSL cert from Letsencrypt. Once the decision was made the follow on | The advantage of using Lychee as the N8N host is that it will support Docker directly with no WSL2 layer to complicate anything. Eventually it did become apparent that it would be a lot easier if there was a separate SSL cert to Cloudflare as we still got the termination issues and still extra problems caused by using Cloudflare's origin certs locally, so it was decided to obtain a SSL cert from Letsencrypt . Once the decision was made the follow on decision was made to make it a wildcard cert rather than do individual SAN certs as this would give a lot of flexibility in the future for other projects. | ||
* The details of getting the a wildcard Letsencrypt cert can be found '''[[Letsencrypt Wildcard SSL Cert | here]]'''. | |||
* The details of installing Docker with N8N and NPM can be found '''[[Docker Installation with N8N & NPM | here]]''' | |||
Latest revision as of 04:25, 2 February 2026
Introduduction
Lychee is the Linux desktop that will be used as a remote desktop. The host is on the Terminals network with a IP address of x.x.x.10. The main purpose of the Virtual Machine is to allow access to a desktop inside the Home Lab virtual network on Pear, using NoMachine.
Update Feb 2026 Lychee has been destroyed to make way for a new Linux desktop.
Upated Evolving Role
The Proxmox host, Pear does have a fairly large CPU and RAM available it's resources are not infinite and as Lychee will be used for remote access it will need to have a better CPU and RAM added than the regular VMs it will need to be used for other things when not in use as a remote desktop. One of those extra roles will be as a Jellyfin server instead of Walnut, when Nvidia have GPU drivers available for Linux. Another role that it has already taken on is as a N8N server, more details can be found Here. The main additional facility that will be made available to the host is the GPU, when we can we will pass the PCIE to Lychee using the same notes as were used for doing that to Walnut, some notes have been made and are available here. With the evolving role Lychee has moved to Production and has a new IP x.x.x.27
Jellyfin
Nothing to add yet as the GPU is still on Walnut so not installed Jellyfin yet. Some of the the files will be copied over in anticipation.
Docker Installation with N8N & NPM leading to Letsencrypt Wildcard SSL Cert
It was felt that N8N would be a good method of creating a few agents within the network. N8N is installed as a Docker image and we started to install on Walnut However, it quickly became apparent that we would need a separate proxy on the N8N host to terminate a SSL connection or at least it is not so easy to get N8N to terminate a SSL connection to satisfy Cloudflare's strict mode. the first solution was to have a separate revers proxy on walnut hat would be able to terminate a SSL connection. NPM was selected to do this so it was installed on walnut but the remote access still didn't work even from within the LAN. At this point it was becoming difficult to diagnose exactly where the fault/s were because we had walnut (a virtual machine) hosting docker over the Linus emulator that was in turn hosting N8N and NPM and then traffic was being fwd'ed from Walnut to NPM as SSL and NPM would be terminating that connection then calling N8N on a HTTP connection on port 80. So to simplify the install it was decided to use Lychee as the host for N8N.
The advantage of using Lychee as the N8N host is that it will support Docker directly with no WSL2 layer to complicate anything. Eventually it did become apparent that it would be a lot easier if there was a separate SSL cert to Cloudflare as we still got the termination issues and still extra problems caused by using Cloudflare's origin certs locally, so it was decided to obtain a SSL cert from Letsencrypt . Once the decision was made the follow on decision was made to make it a wildcard cert rather than do individual SAN certs as this would give a lot of flexibility in the future for other projects.
