wompmacho/docs-public
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: wompmacho:4379fb2d9aa54c4a80efe037ad415d0fcbfe9ad7
Branches Tags
wompmacho:main
...
compare: wompmacho:main
Branches Tags
wompmacho:main

1 Commits
4379fb2d9a ... main

Author SHA1 Message Date
wompmacho
9be590a3a5 adding blog post on labels / proxy / dns
All checks were successful
deploy-docs / build-and-deploy (push) Successful in 2m50s
Details
2026-04-28 02:39:13 +00:00
1 changed files with 48 additions and 0 deletions
Expand all files Collapse all files

48
posts/automated-homelab-proxy-dns.md Normal file
View File

@@ -0,0 +1,48 @@
---
title: "Label-Based Proxy & DNS"
description: "How to automate Nginx Proxy Manager and Pi-hole DNS using Docker labels."
date: 2026-04-28T14:45:00-04:00
lastmod: 2026-04-28
author: wompmacho
tags: ["docker", "automation", "pihole", "npm", "homelab", "iac"]
---
Managing a homelab often involves a lot of manual repetition: spin up a container, add a DNS record in Pi-hole, then create a proxy host in Nginx Proxy Manager (NPM).
By leveraging **Docker labels**, we can treat our homelab as **Infrastructure as Code (IaC)**, defining our entire environment within a single `docker-compose.yaml` file.
<!-- more -->
## The Core Concept
Instead of configuring our infrastructure in multiple Web UIs, we define the requirements directly at the service level. This ensures that our proxy and DNS settings live and die with the containers they serve. Two key "shim" containers make this automation possible:
1. **[npm-docker-sync](https://github.com/Redth/npm-docker-sync)**: This container monitors the Docker socket for `npm.proxy.*` labels. When it detects a new service, it calls the Nginx Proxy Manager API to instantly create or update a proxy host.
2. **[docker-pihole-dns-shim](https://github.com/theonlysinjin/docker-pihole-dns-shim)**: Similarly, this service watches for `pihole.custom-record` labels. It syncs these records to your Pi-hole instance, ensuring that `myservice.local` always points to your Docker host or reverse proxy IP.
## Simple Service Example: Dozzle
For a standard service like [Dozzle](https://git.wompmacho.com/wompmacho/configs/src/branch/main/docker_compose/dozzel/docker-compose.yaml), the configuration is clean, portable, and self-documenting:
```yaml
services:
dozzle:
container_name: dozzle
image: ghcr.io/amir20/dozzle:latest
labels:
# Nginx Proxy Manager Automation
- "npm.proxy.domains=dozzle"
- "npm.proxy.port=8888"
- "npm.proxy.scheme=http"
# Pi-hole Automation (Point to Docker Host IP)
- "pihole.custom-record=[[\"dozzle\", \"10.0.0.190\"]]"
```
When this container starts, the DNS record for `dozzle` is created, and a proxy host is instantly available in NPM. No manual clicking required.
## Why Websockets Matter
If your UI feels unresponsive or "frozen" (common with GTK/Broadway apps like Nicotine+), its often because the websocket connection is blocked. Always include `npm.proxy.websockets=true` in your labels to ensure the reverse proxy allows the real-time communication required by modern interactive apps.
By adopting this **Infrastructure as Code** approach, we make our homelab reproducible, version-controlled, and significantly easier to maintain.