Category: Uncategorized

How to Run Immich for Self-Hosted Photo Storage: Your Ultimate Guide

Tired of subscription fees and privacy concerns with cloud-based photo storage? Ready to take back control of your precious memories? If you’re a self-hosting enthusiast or just dipping your toes into the homelab world, Immich is a name you absolutely need to know. It’s a powerful, open-source, self-hosted photo and video backup solution that offers a remarkable alternative to giants like Google Photos or Apple Photos. At OpenClaw Resource, we believe in empowering you with the knowledge to build your own digital fortress, and Immich is a cornerstone of a robust self-hosted media strategy.

This comprehensive guide will walk you through everything you need to know to get Immich up and running, ensuring your photos are safe, private, and entirely under your command.

Why Choose Immich for Self-Hosted Photo Storage?

Before we dive into the “how,” let’s quickly discuss the “why.” Immich isn’t just another photo gallery. It’s designed to be a full-featured replacement for commercial cloud services, offering:

• Complete Control: Your data stays on your hardware, in your home. No third-party access, no data mining.
• Feature Parity (and Beyond): Immich boasts AI-powered object and facial recognition, automatic backup from mobile devices, shared albums, timeline view, map view, and even a robust API for integrations.
• Open Source: The community-driven nature means constant development, transparency, and a vibrant support network.
• Cost-Effective: Beyond your initial hardware investment, there are no recurring fees for storage.

Prerequisites: What You’ll Need

To successfully run Immich, you’ll need a few essential components. Don’t worry, most homelabbers will already have these or similar setups.

• A Server: This can be anything from a Raspberry Pi 4 (for smaller libraries and lighter usage) to a more robust mini-PC like an Intel NUC, or a dedicated server running Proxmox or ESXi. The key is sufficient CPU power for AI tasks and enough RAM. We recommend at least 8GB RAM for a smooth experience.
• Operating System: A Linux-based OS is preferred. Ubuntu Server, Debian, or your favorite distribution will work perfectly.
• Docker and Docker Compose: Immich is containerized, making deployment incredibly straightforward. Ensure you have Docker and Docker Compose installed on your server.
• Ample Storage: Photos and videos consume significant space. Plan for plenty of HDD or SSD storage. Consider a RAID setup (e.g., RAID 1 or RAID 5/6) for data redundancy using tools like TrueNAS SCALE or a software RAID solution.
• Networking Basics: A basic understanding of networking, including port forwarding if you plan to access Immich from outside your home network (though we recommend a VPN for security).

Step-by-Step Immich Deployment with Docker Compose

This guide focuses on the most common and recommended deployment method: Docker Compose.

1. Prepare Your Server Environment

First, ensure your server is up to date and has Docker and Docker Compose installed. If you’re new to Docker, here’s a quick way to install it on Ubuntu:

sudo apt update
sudo apt upgrade -y
sudo apt install ca-certificates curl gnupg lsb-release -y
sudo mkdir -p /etc/apt/keyrings
curl -fsSL https://download.docker.com/linux/ubuntu/gpg | sudo gpg --dearmor -o /etc/apt/keyrings/docker.gpg
echo "deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.gpg] https://download.docker.com/linux/ubuntu $(lsb_release -cs) stable" | sudo tee /etc/apt/sources.list.d/docker.list > /dev/null
sudo apt update
sudo apt install docker-ce docker-ce-cli containerd.io docker-compose-plugin -y
sudo usermod -aG docker $USER # Add your user to the docker group
newgrp docker # Apply group changes immediately

Verify installations:

docker --version
docker compose version

2. Create Your Immich Directory and Docker Compose File

Choose a location on your server for your Immich configuration and data. We recommend creating a dedicated directory:

mkdir ~/immich
cd ~/immich

Now, create a docker-compose.yml file. You can find the latest official docker-compose.yml on the Immich GitHub repository. For simplicity, here’s a basic structure you can adapt. Use nano docker-compose.yml to create and edit the file:

version: "3.8"

services:
  immich-server:
    container_name: immich_server
    image: ghcr.io/immich-app/immich-server:release
    command: ["start-server.sh"]
    volumes:
      - immich_data:/usr/src/app/upload
      - /path/to/your/photos:/mnt/photos # Mount an external drive for existing photos
    env_file:
      - .env
    ports:
      - 2283:3001 # Immich web UI
    depends_on:
      - immich-redis
      - immich-database
      - immich-microservices
    restart: always

  immich-microservices:
    container_name: immich_microservices
    image: ghcr.io/immich-app/immich-microservices:release
    command: ["start-microservices.sh"]
    volumes:
      - immich_data:/usr/src/app/upload
      - /path/to/your/photos:/mnt/photos # Mount an external drive for existing photos
    env_file:
      - .env
    depends_on:
      - immich-redis
      - immich-database
    restart: always

  immich-web:
    container_name: immich_web
    image: ghcr.io/immich-app/immich-web:release
    environment:
      - VITE_SERVER_URL=http://localhost:2283 # Adjust if using a reverse proxy
    ports:
      - 3000:3000 # Immich web client
    restart: always

  immich-redis:
    container_name: immich_redis
    image: redis/redis-stack-server:latest
    command: redis-server --requirepass ${REDIS_PASSWORD}
    volumes:
      - immich_redis:/data
    restart: always

  immich-database:
    container_name: immich_database
    image: postgres:15-alpine
    env_file:
      - .env
    volumes:
      - immich_database:/var/lib/postgresql/data
    restart: always

volumes:
  immich_data:
  immich_redis:
  immich_database:

Important Customizations:

• /path/to/your/photos: Change this to the actual path on your server where your existing photos are stored, or where you want to store new uploads. This is crucial for Immich to access your media.
• Ports: If port 2283 or 3000 are in use, change them to available ports.

3. Create Your .env File

Next, create a .env file in the same directory (nano .env) to store environment variables, especially sensitive ones like passwords. Replace the bracketed values with strong, unique passwords.

DB_HOSTNAME=immich-database
DB_USERNAME=postgres
DB_PASSWORD=[YOUR_POSTGRES_PASSWORD]
DB_DATABASE_NAME=immich
DB_PORT=5432

REDIS_HOSTNAME=immich-redis
REDIS_PASSWORD=[YOUR_REDIS_PASSWORD]
REDIS_PORT=6379

JWT_SECRET=[YOUR_JWT_SECRET]

Save both files.

4. Deploy Immich

With your docker-compose.yml and .env files ready, navigate to your ~/immich directory and run:

docker compose up -d

This command will download all necessary Docker images and start the Imm

Best UPS for Home Server Protection: Keeping Your Data Safe on OpenClaw

For anyone running a home server, whether it’s a dedicated OpenClaw rig for self-hosting apps, a robust homelab for experimentation, or just a powerful media server, power fluctuations are the silent assassins of data. A sudden blackout, a voltage spike, or even a momentary brownout can corrupt files, damage hardware, and bring your meticulously configured system to a grinding halt. This is where an Uninterruptible Power Supply (UPS) becomes not just a luxury, but an absolute necessity. At OpenClaw, we understand the dedication that goes into building and maintaining your self-hosting environment, and protecting that investment is paramount.

Choosing the best UPS for your home server isn’t as simple as picking the cheapest option. It requires understanding your server’s needs, the types of power issues you might face, and the features that will truly safeguard your data. Let’s dive in and ensure your OpenClaw server stays online and your data remains intact.

Why Your Home Server Needs a UPS

Think of a UPS as a guardian angel for your electronics. Here’s why it’s indispensable for your home server:

• Blackout Protection: The most obvious benefit. A UPS provides battery backup power, giving your server time to shut down gracefully or ride out short outages. This prevents data corruption and ensures your system starts clean when power returns.
• Surge Protection: Beyond just outages, power surges can fry sensitive electronics. A good UPS includes built-in surge suppression to absorb these dangerous spikes.
• Voltage Regulation (AVR): Brownouts (under-voltage) and over-voltage conditions can be just as damaging as a full blackout. Many UPS units feature Automatic Voltage Regulation (AVR) to stabilize the incoming power, providing clean and consistent electricity to your server.
• Hardware Longevity: Constant power fluctuations put stress on your server’s power supply and other components. A UPS helps extend the lifespan of your valuable hardware.
• Data Integrity: The primary goal. A graceful shutdown initiated by a UPS prevents applications from crashing mid-write, significantly reducing the risk of corrupted files and databases.

Types of UPS for Home Servers

Not all UPS units are created equal. Understanding the different types will help you choose the right one for your OpenClaw setup:

• Standby (Offline) UPS: These are the most basic and affordable. They typically pass AC power directly to your devices and only switch to battery backup when an outage is detected. They offer basic surge protection but usually lack advanced voltage regulation. Good for very basic setups with less sensitive equipment.
• Line-Interactive UPS: This is generally the sweet spot for home servers and homelabs. They include AVR technology to correct minor power fluctuations without switching to battery. This means your server receives cleaner power more consistently, extending battery life and improving overall protection.
• Online (Double-Conversion) UPS: The gold standard for critical applications, but also the most expensive and often overkill for most home servers due to higher cost and fan noise. An online UPS continuously converts incoming AC power to DC, then back to AC, providing a constant, clean power supply completely isolated from the utility. This offers the highest level of protection.

For most OpenClaw users and homelab enthusiasts, a Line-Interactive UPS offers the best balance of features, protection, and cost-effectiveness.

Key Factors When Choosing Your UPS

Now that you know the types, let’s look at the crucial specifications:

1. VA Rating and Wattage

This is the most critical factor. VA (Volt-Amperes) and Watts measure the capacity of the UPS. While VA is often advertised, Wattage is the true indicator of how much power the UPS can deliver to your devices.

• How to Calculate: Sum the maximum power draw (in Watts) of all devices you plan to connect: your server, modem, router, external hard drives, network switch, etc. Look for the power supply’s wattage on your server. Add about 20-30% buffer to this total to account for future expansion and peak loads.
• Rule of Thumb: A good starting point for a typical home server (e.g., a mini-ITX OpenClaw build with a few drives) is usually a 700W-1000W (1350VA-1500VA) UPS. For more powerful homelabs with multiple servers, switches, and other gear, you might need 1200W-1500W (2000VA-2200VA) or more.

2. Runtime

How long do you need your server to run on battery? For most home users, enough time for a graceful shutdown (5-10 minutes) is sufficient. If you experience frequent, short outages and want uninterrupted operation, you’ll need a higher VA/Wattage UPS or one that supports external battery packs.

3. Outlets and Types

• Battery Backup Outlets: Ensure there are enough outlets for all your critical devices.
• Surge-Only Outlets: Useful for less critical devices like monitors or printers that don’t need battery backup but still require surge protection.
• Spacing: Check if the outlets are spaced widely enough to accommodate bulky power bricks.

4. Management Software and Connectivity

This is crucial for server protection. A UPS with a USB or network (SNMP) port allows your server to communicate with the UPS. When the UPS detects a power outage, it can signal your server to initiate an automatic, graceful shutdown via software like NUT (Network UPS Tools) or the manufacturer’s proprietary software (e.g., APC PowerChute, CyberPower PowerPanel Personal). This prevents abrupt power loss and data corruption.

5. Form Factor and Noise

UPS units come in tower or rackmount forms. For home use, a tower unit is common. Consider the noise level, especially if your server is in a living area. Some larger units can have audible fans.

Recommended UPS Brands and Models for OpenClaw Users

Here are a few reputable brands and product lines that consistently perform well for home server and homelab applications:

• APC (American Power Conversion): A household name in UPS technology. Their Back-UPS Pro series (e.g., APC Back-UPS Pro BR1500MS) offers excellent line-interactive protection, AVR, and robust management software. They are reliable and widely available.
• CyberPower: Another strong contender offering great value. The CyberPower PFC Sinewave Series (e.g., CyberPower CP1500PFCLCD) is particularly popular because it provides pure sine wave output, which is ideal for sensitive electronics and Active PFC (Power Factor Correction) power supplies found in many modern servers.
• Eaton: Known for their robust and high-quality solutions, often found in business environments. Their Eaton 5S or Eaton 3S series can be good options for home users looking for premium protection, though they might be a bit pricier.

When selecting a specific model, always check the Wattage rating, not just the VA, and ensure it has a USB or network port for server communication.

Practical Tips for UPS Usage

• Don’t Overload: Only connect critical devices that need battery backup. Leave non-critical items like monitors or chargers on surge-only outlets or separate surge protectors.
• Test Regularly: Most UPS units have a self-test function. Run it periodically (e.g., once a month) to ensure the battery is healthy.
• Battery Replacement: UPS batteries typically last 3-5 years. When they start to degrade, replace them. Most reputable brands offer easy-to-install replacement battery cartridges.
• Software Setup: Install the UPS management software (or NUT) on your server and configure it to perform a graceful shutdown after a specified period on battery power. This is the most critical step for data protection.
• Placement: Place your UPS in a cool, dry, well-ventilated area. Avoid direct sunlight or cramped spaces that can lead to overheating.

Conclusion

Investing in a quality UPS is one of the smartest decisions you can make for your OpenClaw home server, homelab, or any self-hosting setup. It’s a relatively small cost compared to the potential loss of data, hardware damage, and the frustration of rebuilding a corrupted system. By understanding your power needs

Unleash a Cleaner Internet: Your Comprehensive Guide to Setting Up Pi-hole for Ad Blocking

Tired of intrusive ads cluttering your browsing experience, slowing down your network, and even posing security risks? Welcome to the world of Pi-hole! At OpenClaw, we’re all about empowering you with self-hosting solutions and homelab wizardry. Today, we’re diving deep into Pi-hole, a fantastic open-source tool that acts as a DNS sinkhole, effectively blocking ads and trackers across your entire network. Imagine a smoother, faster, and more private internet experience for every device in your home – that’s the Pi-hole promise.

Setting up Pi-hole might sound intimidating if you’re new to the homelab scene, but trust us, it’s a rewarding project that’s well within reach. This comprehensive guide will walk you through every step, from choosing your hardware to configuring your network, ensuring you’re blocking ads like a pro in no time.

What You’ll Need: The Essential Pi-hole Toolkit

Before we begin the setup process, let’s gather our ingredients. The beauty of Pi-hole is its minimal hardware requirements, making it an ideal entry point into self-hosting.

• A Dedicated Device: The most popular choice, and what we’ll focus on, is a Raspberry Pi. A Raspberry Pi 3 Model B+ or a Raspberry Pi 4 (any RAM variant) is more than sufficient. You can also run Pi-hole on an old PC, a virtual machine (like with Proxmox VE), or even a small SBC like an Orange Pi. For beginners, the Raspberry Pi offers the best balance of cost, power efficiency, and community support.
• MicroSD Card: A high-quality 8GB or 16GB MicroSD card (Class 10 or higher) for your Raspberry Pi. We recommend reputable brands like SanDisk or Samsung for reliability.
• Power Supply: A compatible USB-C (for Pi 4) or Micro-USB (for Pi 3B+) power supply. Ensure it provides adequate amperage (e.g., 5V 3A for Pi 4) to prevent stability issues.
• Ethernet Cable: For a stable, wired connection, which is highly recommended for your Pi-hole.
• Internet Connection: Obviously!
• Computer with SD Card Reader: To flash the operating system onto your MicroSD card.

Step 1: Preparing Your Raspberry Pi – OS Installation

The first step is to get an operating system onto your Raspberry Pi. For Pi-hole, a lightweight, headless (no graphical interface) version of Raspberry Pi OS (formerly Raspbian Lite) is ideal. This minimizes resource usage, leaving more power for Pi-hole itself.

1. Download Raspberry Pi Imager: Head over to the official Raspberry Pi website and download the Raspberry Pi Imager for your computer’s operating system.
2. Flash the OS:
   • Insert your MicroSD card into your computer’s card reader.
   • Open Raspberry Pi Imager.
   • Click “CHOOSE OS” and select “Raspberry Pi OS (other)” -> “Raspberry Pi OS Lite (64-bit)” or “(32-bit)” depending on your Pi model (64-bit is generally preferred for Pi 4).
   • Click “CHOOSE STORAGE” and select your MicroSD card. Double-check this step carefully to avoid wiping the wrong drive!
   • Click the gear icon (settings) before writing. Here, you can pre-configure SSH (essential for headless setup), set a hostname, and set a username/password. This saves a lot of hassle later.
   • Click “WRITE” and confirm. The process will take a few minutes.
3. Eject and Insert: Once the flashing is complete, safely eject the MicroSD card from your computer and insert it into your Raspberry Pi.

Step 2: Connecting and Accessing Your Raspberry Pi

Now, connect your Raspberry Pi:

1. Plug in the Ethernet cable from your Pi to your router.
2. Connect the power supply. Your Pi will boot up.
3. Find Your Pi’s IP Address: You’ll need to know your Pi’s IP address on your network to connect via SSH. You can usually find this in your router’s administration interface (look for “connected devices” or “DHCP clients”). Alternatively, if you have a tool like Advanced IP Scanner (for Windows) or nmap (for Linux/macOS), you can scan your network.
4. SSH into Your Pi: Open a terminal (macOS/Linux) or use an SSH client like PuTTY (Windows). Type the following command, replacing your_username with the username you set in the imager (default is pi if you didn’t set one) and your_pi_ip with your Pi’s IP address:

   ssh your_username@your_pi_ip

   Enter your password when prompted. If this is your first time connecting, you’ll be asked to confirm the authenticity of the host; type ‘yes’.

5. Update Your Pi: It’s always a good practice to update your system after a fresh OS install.

   sudo apt update && sudo apt upgrade -y

Step 3: Installing Pi-hole

With your Pi updated and accessible, installing Pi-hole is surprisingly simple thanks to its official installer script.

1. Run the Installer: In your SSH terminal, execute the following command:

   curl -sSL https://install.pi-hole.net | bash

   This command downloads and runs the official Pi-hole installation script.

2. Follow the On-Screen Prompts: The installer is user-friendly and will guide you through several configuration steps:
   • Static IP Address: The installer will recommend setting a static IP address for your Pi-hole. This is crucial as your network devices will rely on Pi-hole’s IP for DNS. Confirm this choice.
   • Upstream DNS Provider: Choose your preferred upstream DNS server. Options include Google, Cloudflare, OpenDNS, and more. Cloudflare (1.1.1.1) is a popular, privacy-focused choice.
   • Block Lists: The installer will offer to install default block lists. Leave these selected.
   • Web Admin Interface: Confirm you want to install the web admin interface (highly recommended for easy management).
   • Web Server (Lighttpd): Confirm you want to install the web server (Lighttpd) and PHP modules.
   • Logging: Decide if you want to log queries. This is useful for troubleshooting but can be disabled for maximum privacy.
3. Note Your Admin Password: At the end of the installation, you’ll be presented with a summary, including the IP address of your Pi-hole’s web interface and a randomly generated password for the admin portal. WRITE THIS DOWN! You’ll need it to log in.

Step 4: Configuring Your Network to Use Pi-hole

This is the final, crucial step. For Pi-hole to block ads, your network devices need to be configured to use it as their DNS server. You have two primary methods:

Method A: Router-Level Configuration (Recommended)

This is the most effective method as it forces all devices connected to your router to use Pi-hole for DNS, including new devices joining your network. The exact steps vary by router manufacturer, but the general process is:

1. Access Your Router’s Admin Panel: Open a web browser and navigate to your router’s IP address (e.g., 192.168.1.1 or 192.168.0.1). Log in with your router’s credentials.
2. Locate DNS Settings: Look for sections like “WAN,” “Internet,” “DHCP,” “LAN Settings,” or “DNS Server.”
3. Change Primary DNS: Change the primary DNS server to your Pi-hole’s static IP address.
4. Secondary DNS (Optional but Recommended): For redundancy, you can set a secondary DNS server. Some routers allow you to enter a second DNS server. You could use your Pi-hole’s IP again or a public