Kopia repository server on docker

General Topics
1

Hello everyone, I’m trying to use kopia server installed on docker on an unraid server. Could someone tell me a tutorial or a good guide to follow for configuration, please? I’m missing out a lot…

2

Hi, what do you need? I am running a repository server on docker on my synology. Here is my docker-compose:


version: '3.7'
services:
    kopia:
        user: ${UID}:${GID}
        image: kopia/kopia:latest
        hostname: diskstation
        container_name: kopia-server
        restart: unless-stopped
        networks:
            - kopia
        ports:
            - 8010:51515
        cap_add:
            - SYS_ADMIN
        security_opt:
            - apparmor:unconfined
        devices:
            - /dev/fuse:/dev/fuse:rwm
        command:
            - server
            - start
            - --disable-csrf-token-checks
            - --enable-actions
            - --tls-cert-file=/certs/fullchain.pem
            - --tls-key-file=/certs/privkey.pem
            - --address=0.0.0.0:51515
            - --server-username=${SERVER_USR}
            - --server-password=${SERVER_PWD}
            - --server-control-username=${SERVER_CTRL_USER}
            - --server-control-password=${SERVER_CTRL_PWD}
        environment:
            KOPIA_PASSWORD: ${REPOSITORY_PWD}
            TZ: Europe/Berlin
            USER: "nas"
        volumes:
            # Mount local folders needed by kopia
            - /volume1/docker/kopia-server/config:/app/config
            - /volume1/docker/kopia-server/cache:/app/cache
            - /volume1/docker/kopia-server/logs:/app/logs
            # Mount local folders to backup
            - /volume1/media:/nas_media:ro
            - /volume1/homes:/nas_homes:ro
            - /volume1/photo:/nas_photo:ro
            - /volume1/video:/nas_video:ro
            # Mount backup location
            - /volume1/backups/kopia-repo:/app/backup
            # Mount path for restoring snaphots
            - /volume1/backups/restore:/tmp
            # Mount paths for certificates
            - /usr/syno/etc/certificate/_archive/XiNQp0/fullchain.pem:/certs/fullchain.pem:ro
            - /usr/syno/etc/certificate/_archive/XiNQp0/privkey.pem:/certs/privkey.pem:ro
networks:
  kopia:
    name: kopia

You then need to create the users on the repository server. The will get a username and a password. After that you can connect to the repository server.

You may have to take a look at here: Repository Server | Kopia

3 Likes
3

Many thanks, it’s a good point of start. Do you use self-generated certificates?

4

Hi,

nope. This is a letsencrypt certificate, that is mounted.

Cheers,

2 Likes
5

If you have another question, feel free to ask.

2 Likes
6

Woow, kopia repository server on unraid nas started and now is working. Many thanks.

7

How do you handle the Letsencrypt rotation - given that the client refuses to connect, unless it has the SHA-Fingerprint of the Key in question when connecting to the repository from remote?

1 Like
8

Currently, I re-generate the hash and restart the docker when it is necessary. Have not come up with a more automated solution yet.

Cheers,

1 Like