Set speed limits on torrents from high bandwidth trackers (TL, FL, AR)

Remove IPT and Add DocsPedia and MAM to cross-seed
Add 'Not Original' Language CF for Sonarr to block German dual audio releases
2025-10-08 16:47:09 -04:00 · 2025-10-08 09:40:38 -04:00 · 2025-09-24 16:31:30 -04:00 · 2025-09-22 14:26:49 -04:00 · 2025-09-22 14:07:51 -04:00 · 2025-09-17 10:06:17 -04:00
14 changed files with 68 additions and 8 deletions
--- a/README.md
+++ b/README.md
@@ -23,13 +23,12 @@ Having Plex and Jellyfin separate from the rest of my docker infrastructure allo
 **Storage:**
 * `/`: 1 TB NVME SSD
 * `/vm_storage`: 2x 240 GB SSD in ZFS mirror for config and data files
-* `/mnt/storage`: mergerfs + SnapRAID pool totaling 150 TiB usable storage with single disk parity (YOLO). Drives run btrfs allowing me to utilize [snapraid-btrfs](https://wiki.selfhosted.show/tools/snapraid-btrfs/) for instant snapshotting
+* `/mnt/storage`: mergerfs + SnapRAID pool totaling ~90 TiB usable storage. Currently single parity disk but hoping to add a second one soon. Drives run btrfs allowing me to utilize [snapraid-btrfs](https://wiki.selfhosted.show/tools/snapraid-btrfs/) for instant snapshotting
 ## Roadmap
 * Flesh out backup strategy with btrfs snapshots and restic (separately)
-* Potentially migrate media pool to ZFS. I've been lucky so far with no drive failures but realistically if I did have one fail, it would take ages to rebuild with single disk parity and I'd be wishing I had a more robust setup.
+* Move everything to Arch VMs on Proxmox
 * Move everything to Arch LXCs on Proxmox
 * Possibly set up second Proxmox node for backups
 * Immich for photo management
 * Look into [Wazuh](https://github.com/wazuh/wazuh) for threat prevention/detection
--- a/ansible/roles/btc/tasks/bitcoin.yml
+++ b/ansible/roles/btc/tasks/bitcoin.yml
@@ -0,0 +1,11 @@
 - name: Install bitcoin daemon
  ansible.builtin.package:
    name: bitcoin-daemon
    state: present
  become: true
 - name: Enable bitcoind
  ansible.builtin.service:
    name: bitcoind
    state: started
    enabled: yes
--- a/ansible/roles/btc/tasks/tor.yml
+++ b/ansible/roles/btc/tasks/tor.yml
@@ -0,0 +1,6 @@
 - name: Install tor
  ansible.builtin.package:
    name: tor
    state: present
--- a/ansible/roles/btc/tasks/ufw.yml
+++ b/ansible/roles/btc/tasks/ufw.yml
@@ -0,0 +1,32 @@
 - name: Install Uncomplicated Firewall
  ansible.builtin.package:
    name: ufw
    state: present
 # UFW logging can full up the kernel (dmesg) and message logs
 - name: Disable logging
  community.general.ufw:
    logging: 'off'
 - name: Allow OpenSSH inbound
  community.general.ufw:
    rule: allow
    name: OpenSSH # Uses standard profile located in /etc/ufw/applications.d
 - name: Apply rate limiting to ssh inbound
  community.general.ufw:
    rule: limit
    port: ssh
    proto: tcp
 - name: Enable ufw system service
  ansible.builtin.service:
    name: ufw
    state: started
    enabled: yes
 # This is necessary in addition to enabling the system service
 - name: Enable ufw rules
  community.general.ufw:
    state: enabled
    policy: deny
--- a/ansible/roles/qbittorrent/templates/cross-seed/config.js
+++ b/ansible/roles/qbittorrent/templates/cross-seed/config.js
@@ -4,6 +4,7 @@ module.exports = {
    delay: 30,
    torznab: [
 	    "http://prowlarr.local.{{ personal_domain }}/3/api?apikey={{ prowlarr_api_key }}", // ImmortalSeed
 	    "http://prowlarr.local.{{ personal_domain }}/6/api?apikey={{ prowlarr_api_key }}", // Aither
 	    "http://prowlarr.local.{{ personal_domain }}/7/api?apikey={{ prowlarr_api_key }}", // Reelflix
 	    "http://prowlarr.local.{{ personal_domain }}/9/api?apikey={{ prowlarr_api_key }}", // LST
@@ -16,7 +17,6 @@ module.exports = {
 	    "http://prowlarr.local.{{ personal_domain }}/25/api?apikey={{ prowlarr_api_key }}", // seedpool
 	    "http://prowlarr.local.{{ personal_domain }}/27/api?apikey={{ prowlarr_api_key }}", // Upload.cx
 	    "http://prowlarr.local.{{ personal_domain }}/30/api?apikey={{ prowlarr_api_key }}", // DocsPedia
 	    "http://prowlarr.local.{{ personal_domain }}/31/api?apikey={{ prowlarr_api_key }}", // OnlyEncodes+
    ],
    outputDir: null,
--- a/ansible/roles/qbittorrent/templates/docker-compose.yml
+++ b/ansible/roles/qbittorrent/templates/docker-compose.yml
@@ -13,7 +13,7 @@ services:
      - "PGID={{ media_gid }}"
      - "TZ={{ timezone }}"
      - "UMASK=002"
-      #- DOCKER_MODS=arafatamim/linuxserver-io-mod-vuetorrent
+      - DOCKER_MODS=arafatamim/linuxserver-io-mod-vuetorrent
    volumes:
      - "{{ data_dir }}/{{ role_name }}:/config"
      - "{{ media_storage_mnt }}/data/torrents:/data/torrents"
--- a/ansible/roles/qbittorrent/templates/qbitmanage/config.yml
+++ b/ansible/roles/qbittorrent/templates/qbitmanage/config.yml
@@ -79,12 +79,10 @@ tracker:
    tag: rutracker
  seedpool|seedpool.org:
    tag: seedpool
-  upload.cx:
+  upload:
    tag: ULCX
  archlinux:
    tag: archlinux
  animebytes:
    tag: AB
  other:
    tag: other
--- a/ansible/roles/recyclarr/files/includes/sonarr-anime-custom_formats.yml
+++ b/ansible/roles/recyclarr/files/includes/sonarr-anime-custom_formats.yml
@@ -108,3 +108,9 @@ custom_formats:
    assign_scores_to:
      - name: Anime
        score: 10 # Prefer dual audio within the same tier but don't prefer over higher quality releases 
  - trash_ids:
      - 3bc5f395426614e155e585a2f056cdf1 # Season Pack
    assign_scores_to:
      - name: Anime
        score: 10 # Prefer season packs over single episode releases
--- a/ansible/roles/recyclarr/files/includes/sonarr-old-custom_formats.yml
+++ b/ansible/roles/recyclarr/files/includes/sonarr-old-custom_formats.yml
@@ -85,6 +85,8 @@ custom_formats:
      - fbcb31d8dabd2a319072b84fc0b7249c # Extras
      - 15a05bc7c1a36e2b57fd628f8977e2fc # AV1
      - 32b367365729d530ca1c124a0b180c64 # Bad Dual Groups
      - ae575f95ab639ba5d15f663bf019e3e8 # Not Original Language
      - 82d40da2bc6923f41e14394075dd4b03 # No-RlsGroup
      - e1a997ddb54e3ecbfe06341ad323c458 # Obfuscated
      - 06d66ab109d4d2eddb2794d21526d140 # Retags
      - b735f09d3c025cbb7d75a5d38325b73b # Upscaled
--- a/ansible/roles/recyclarr/files/includes/sonarr-old_season_pack-custom_formats.yml
+++ b/ansible/roles/recyclarr/files/includes/sonarr-old_season_pack-custom_formats.yml
@@ -85,6 +85,8 @@ custom_formats:
      - fbcb31d8dabd2a319072b84fc0b7249c # Extras
      - 15a05bc7c1a36e2b57fd628f8977e2fc # AV1
      - 32b367365729d530ca1c124a0b180c64 # Bad Dual Groups
      - ae575f95ab639ba5d15f663bf019e3e8 # Not Original Language
      - 82d40da2bc6923f41e14394075dd4b03 # No-RlsGroup
      - e1a997ddb54e3ecbfe06341ad323c458 # Obfuscated
      - 06d66ab109d4d2eddb2794d21526d140 # Retags
      - b735f09d3c025cbb7d75a5d38325b73b # Upscaled
--- a/ansible/roles/recyclarr/files/includes/sonarr-remux-custom_formats.yml
+++ b/ansible/roles/recyclarr/files/includes/sonarr-remux-custom_formats.yml
@@ -85,6 +85,7 @@ custom_formats:
      - fbcb31d8dabd2a319072b84fc0b7249c # Extras
      - 15a05bc7c1a36e2b57fd628f8977e2fc # AV1
      - 32b367365729d530ca1c124a0b180c64 # Bad Dual Groups
      - ae575f95ab639ba5d15f663bf019e3e8 # Not Original Language
      - 82d40da2bc6923f41e14394075dd4b03 # No-RlsGroup
      - e1a997ddb54e3ecbfe06341ad323c458 # Obfuscated
      - 06d66ab109d4d2eddb2794d21526d140 # Retags
--- a/ansible/roles/recyclarr/files/includes/sonarr-remux_season_pack-custom_formats.yml
+++ b/ansible/roles/recyclarr/files/includes/sonarr-remux_season_pack-custom_formats.yml
@@ -85,6 +85,7 @@ custom_formats:
      - fbcb31d8dabd2a319072b84fc0b7249c # Extras
      - 15a05bc7c1a36e2b57fd628f8977e2fc # AV1
      - 32b367365729d530ca1c124a0b180c64 # Bad Dual Groups
      - ae575f95ab639ba5d15f663bf019e3e8 # Not Original Language
      - 82d40da2bc6923f41e14394075dd4b03 # No-RlsGroup
      - e1a997ddb54e3ecbfe06341ad323c458 # Obfuscated
      - 06d66ab109d4d2eddb2794d21526d140 # Retags
--- a/ansible/roles/recyclarr/files/includes/sonarr-web-custom_formats.yml
+++ b/ansible/roles/recyclarr/files/includes/sonarr-web-custom_formats.yml
@@ -85,6 +85,7 @@ custom_formats:
      - fbcb31d8dabd2a319072b84fc0b7249c # Extras
      - 15a05bc7c1a36e2b57fd628f8977e2fc # AV1
      - 32b367365729d530ca1c124a0b180c64 # Bad Dual Groups
      - ae575f95ab639ba5d15f663bf019e3e8 # Not Original Language
      - 82d40da2bc6923f41e14394075dd4b03 # No-RlsGroup
      - e1a997ddb54e3ecbfe06341ad323c458 # Obfuscated
      - 06d66ab109d4d2eddb2794d21526d140 # Retags
--- a/ansible/roles/recyclarr/files/includes/sonarr-web_season_pack-custom_formats.yml
+++ b/ansible/roles/recyclarr/files/includes/sonarr-web_season_pack-custom_formats.yml
@@ -85,6 +85,7 @@ custom_formats:
      - fbcb31d8dabd2a319072b84fc0b7249c # Extras
      - 15a05bc7c1a36e2b57fd628f8977e2fc # AV1
      - 32b367365729d530ca1c124a0b180c64 # Bad Dual Groups
      - ae575f95ab639ba5d15f663bf019e3e8 # Not Original Language
      - 82d40da2bc6923f41e14394075dd4b03 # No-RlsGroup
      - e1a997ddb54e3ecbfe06341ad323c458 # Obfuscated
      - 06d66ab109d4d2eddb2794d21526d140 # Retags
Author	SHA1	Message	Date
Mike Wilson	d3d0d71ac8	Set speed limits on torrents from high bandwidth trackers (TL, FL, AR)	2025-10-08 16:47:09 -04:00
Mike Wilson	9d16b1efd1	Remove IPT and Add DocsPedia and MAM to cross-seed	2025-10-08 09:40:38 -04:00
Mike Wilson	3cd6580dd9	Add 'Not Original' Language CF for Sonarr to block German dual audio releases	2025-09-24 16:31:30 -04:00
Mike Wilson	76029b6102	Fix deprecated config options in cross-seed	2025-09-22 14:26:49 -04:00
Mike Wilson	a9bf973dc5	Add IPTorrents and ignore uploads for cross-seed	2025-09-22 14:07:51 -04:00
Mike Wilson	d9b568058b	Prefer season packs over single episodes for anime	2025-09-17 10:06:17 -04:00
Mike Wilson	58e5dd177e	Enable vuetorrent and fix ULCX qbitmanage tag	2025-09-17 10:04:09 -04:00
Mike Wilson	9ef90db07b	Add tor and bitcoin-daemon steps	2025-09-05 17:03:39 -04:00
Mike Wilson	458506e798	Add step to enable ufw rules	2025-09-05 16:11:25 -04:00
Mike Wilson	874c759f85	Add UFW task	2025-09-05 15:54:07 -04:00