• Stars
    star
    629
  • Rank 71,454 (Top 2 %)
  • Language
    Dockerfile
  • License
    MIT License
  • Created almost 10 years ago
  • Updated over 3 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A docker container that compiles the lastest Netatalk to run a Time Machine server.

docker-timemachine

A docker container to compile the lastest version of Netatalk in order to run a Time Machine server.

Running on ARM / RPi

If you want to use this on an ARM-Device (like the Raspberry Pi), you have two options:

  • Get the precompiled image (latest compilation on 29-03-2018):
    $ docker run -h timemachine --name timemachine --restart=unless-stopped -d -v /external_volume:/timemachine -it -p 548:548 -p 636:636 odarriba/timemachine-rpi
    
  • Build the image directly on your device:
    $ docker build -t timemachine-rpi:latest -f Dockerfile .
    $ docker run -h timemachine --name timemachine --restart=unless-stopped -d -v /external_volume:/timemachine -it -p 548:548 -p 636:636 timemachine-rpi
    

Installation

Step 1 - Start the Server

To download the docker container and execute it, simply run:

$ docker run -h timemachine --name timemachine --restart=unless-stopped -d -v /external_volume:/timemachine -it -p 548:548 -p 636:636 --ulimit nofile=65536:65536 odarriba/timemachine

Replace external_volume with a local path where you want to store your data.

As the image has been started using the --restart=always flag, it will start when the computers boots up.

Step 2 - Add a User

To add a user, run:

$ docker exec timemachine add-account USERNAME PASSWORD VOL_NAME VOL_ROOT [VOL_SIZE_MB]

Or, if you want to add a user with a specific UID/GID, use the following format

$ docker exec timemachine add-account -i 1000 -g 1000 USERNAME PASSWORD VOL_NAME VOL_ROOT [VOL_SIZE_MB]

But take care that:

  • VOL_NAME will be the name of the volume shown on your OSX as the network drive
  • VOL_ROOT should be an absolute path, preferably a sub-path of /timemachine (e.g., /timemachine/backup), so it will be stored in the according sub-path of your external volume.
  • VOL_SIZE_MB is an optional parameter. It indicates the max volume size for that user.

Now you have a docker instance running netatalk.

Step 3 - Enable Auto Discovery

Avahi daemon is commonly used to help your computers to find the services provided by a server.

Avahi isn't built into this Docker image because, due to Docker's networking limitations, Avahi can't spread it's messages to announce the services.

If you want to enable this feature, you can install Avahi daemon on your host following these steps (Ubuntu version):

  • Install avahi-daemon: run sudo apt-get install avahi-daemon avahi-utils
  • Copy the file from avahi/nsswitch.conf to /etc/nsswitch.conf
  • Copy the service description file from avahi/afpd.service to /etc/avahi/services/afpd.service
  • Restart Avahi's daemon: sudo /etc/init.d/avahi-daemon restart

Step 4 - Configure Your Firewall

Make sure

  • your server can receive traffic on port 548 and 636 (e.g., ufw allow 548, (636 respectively)).

  • your Mac allows outgoing connections (Little Snitch?)

Step 5 - Start Using It

To start using it, follow these steps:

  • If you use Avahi, open Finder, go to Shared and connect to your server with your new username and password.

  • Alternatively (or if you don't use Avahi) from Finder press CMD-K and type afp://your-server where your-server can be your server's name or IP address (e.g., afp://my-server or afp://192.168.0.5).

  • Go to System Preferences, and open Time Machine settings.

  • Open Add or Remove Backup Disk...

  • Select your new volume.

In the example below, the Docker instance is running on server central. For USERNAME the account Backup along with a PASSWORD was created. Once connected, the account Backup is available in Time Machine settings: alt text

Advanced Usage

Configure using environment variables

You can configure the container using environment variables (for example, if you use a docker-compose environment).

There are these environment variables:

  • AFP_LOGIN: User name
  • AFP_PASSWORD: User password
  • AFP_NAME: Name of the volume
  • AFP_SIZE_LIMIT: Size in MB of the volume (optional)
  • PUID: For UID
  • PGID: For GID

Using these variables, the container will create a user at boot time (only one per container) and the data will be stored directly in the volume /timemachine, without subfolders.

To find your PUID and GUID use id user as below:

    $ id <dockeruser>
       uid=1000(dockeruser) gid=1000(dockeruser)  groups=1000(dockergroup)

FAQ

I got Docker running, my firewall is configured, but I still don't find the service in Time Machine.

Make sure you actually mount the server volume (see Step 5) before trying to find it in Time Machine settingss.

My container restarted and I can't login

The user accounts are ephemeral and you'll have to run Step 2 again to re-create the accounts. Alternativey, you can script the account creation and upload a custom entrypoint with the details:

#!/bin/bash
set -e

# Repeat for all your accounts
add-account USERNAME PASSWORD VOL_NAME VOL_ROOT [VOL_SIZE_MB]
add-account USERNAME PASSWORD VOL_NAME VOL_ROOT [VOL_SIZE_MB]
/usr/bin/supervisord -c /etc/supervisor/conf.d/supervisord.conf

Save the above file as entrypoint.sh and make sure it is marked as executable (chmod +x entrypoint.sh). Then invoke docker run as:

$ docker run -h timemachine --name timemachine --restart=unless-stopped -d -v /external_volume:/timemachine -it -p 548:548 -p 636:636 -v entrypoint.sh:/entrypoint.sh odarriba/timemachine-rpi

I am still having trouble ...

  • The idea of using avahi-daemon installed in the bare metal server is to avoid having to execute the container with --net=host, which a potentially insecure flag. But, as the last option to check things out, it should be fine. You just should know what you are enabling.

  • A Time Machine network disk is just a disk image in an AFP volume that supports the correct level of encryption. So to be recognised by the TimeMachine daemon, you should mount the unit manually for the first time, configure TimeMachine on your computer, and then the OS will do that for you automatically.

Why do I need to install Avahi on your host and not in the container?

Because if you don't do it this way, the discovery message won't be able to reach your computers.

Contributors

More Repositories

1

elixir_jobs

A job board to publish and find Elixir offers.
Elixir
87
star
2

slackrobot

A Slackbot-like bot for telegram (WIP)
Ruby
11
star
3

fantastic_robot

A Ruby wrapper to communicate with Telegram's Bot API using web hooks.
Ruby
10
star
4

distributed-elixir-example

Example for Distributed Elixir talk on Elixir Barcelona Meetup
Elixir
8
star
5

dotfiles

dotfiles, shell and asdf install script
Shell
8
star
6

ansible-kubeadm

Ansible playbooks to spin up your HA Kubernetes cluster on any Debian machine with SSH access
7
star
7

pipedbeats

(LEGACY) Random streaming radio based on AngularJS and SoundCloud API
JavaScript
6
star
8

chat-irc-server

An IRC-style chat server written in Java
Java
6
star
9

huawei-ibmc-fan-control

Systemd service to manually control fan speeds using iBMC in Huawei servers
Shell
5
star
10

docker-storj-multinode-dashboard

Unofficial docker image to use Storj Multinode Dashboard
Shell
5
star
11

docker-transmission

A docker container to run the latest version of Transmission BitTorrent client.
Shell
5
star
12

docker-supervisord

A base image for Docker containers that uses supervisord to manage services.
4
star
13

advent_of_code_2021

My advent of code solutions for 2021 challenge!
Elixir
4
star
14

xslt_ex

Elixir library to do XSLT transformations on the fly using native libxslt
C
3
star
15

docker-plex

A docker container to run the latest version of Plex Media Server
2
star
16

defend-the-village

A plug-in to run 'Defend the Village' game in a Bukkit Minecraft server.
Java
2
star
17

codingcode.io_old

Another blog about coding
CSS
2
star
18

nodejs-express-skeleton

A Rails-like web application skeleton using NodeJS, Express and Mongoose.
JavaScript
2
star
19

chat-irc-client

An IRC-style chat client written in Java
Java
1
star
20

watchr

An scalable, rock-solid and modern service monitoring tool.
Ruby
1
star
21

crypto-js

Fork of one of the best cryptographic library for JavaScript (originally by Jeff Mott). Includes SHA1, SHA-256, AES, DES, HMAC, MD5 and a lot of things more.
1
star