How to build your own copilot for Home and Office use
Run copilot isn't a magic thing, i was asked how to run this on a mac as example, alternatively you can place a copilot server within the office for everyone usage.
That's the same way how OpenAI, Google β¦ and all other work, what is different? they have better hardware, more developer, more budget. The only difference is if you ask your pilot about special things, like how you will start with as example money laundering, you get a valid answer
The solution is completely Open Source youβre free to modify it yourself, it combines local running AI Stack and the Home Assistant. Who do not know Home Assistant see https://www.home-assistant.io/ It runs completely from Docker container, if you want remove it, just delete the container. It will not pollute you system.
Note: This will require some basic understanding on several technologies, like docker networking and Linux, as a Systemadmin Devops or Linux Engineer you should understand what iβm talking about.
Β
Feel free to contribute!
Β
Requirements
Β
Installed Gnoppix 24.8 or Debian 12 and some manual steps.
Β
Assumed you have a modern computer as example:
GPU: recom NVIDIA 3090i or better with 12+ GB RAM
CPU 4-24 cores ( if you have not such a powerful GPU, you can run it also by CPU) as faster as better
SSD : Samsung EVO 980 2GB
RAM: 64+GB
Local setuped domain : gnoppix.local (feel free to change it whatever you prefer)
Β
Software Overview:
Hereβs the tech stack Iβm using:
Β
Β
I've warned you repeatedly that you'll need a substantial amount of storage space. This guide isn't sponsored by NVIDIA; I've just been using their hardware as it was available. I've tried contacting AMD but haven't received any responses, so I recommend using NVIDIA for now.
Β
For this general setup, I've used Docker's internal naming conventions. If needed, you can separate different services, for example, running Ollama in a Kubernetes cluster for handling more concurrent requests. This structure might change in the future. I initially developed this solution as a freelance project for a friend's company
Β
You need to have docker installed and running
Structure
Running everything from the /opt/copilot folder it looks like as followed:
Stacks live in /opt/gnoppix-co-pilot
Here is the folder structure. Most sub folders are created when binding volumes.
βββ gnoppix-co-pilot
β βββ .env
βΒ Β βββ compose.yaml
βΒ Β βββ ollama
βΒ Β βββ open-webui
βΒ Β βββ searxng
βΒ Β βββ stable-diffusion-webui-docker
βΒ Β βββ whisper
βββ gnoppix-home-assistant
βΒ Β βββ compose.yaml
βΒ Β βββ faster-whisper
βΒ Β βββ home-assistant
βΒ Β βββ wyoming-piperΒ
Step1.)
Β
Create a username and password for ollama
echo $(htpasswd -nB ollamauser) | sed -e s/\\$/\\$\\$/gΒ
Youβll then want to place this in your .env using the OLLAMA_API_CREDENTIALS variable. This is then used in the ollama service in your compose file.
Β
Basic Auth Hash
Β
If you want to create a hash value for Basic Auth . Youβll need to use the credential from above.
echo 'ollamauser:ollamapass!' | base64Β
2.) Install NVIDIA CTK
Β
curl -fsSL https://nvidia.github.io/libnvidia-container/gpgkey | sudo gpg --dearmor -o /usr/share/keyrings/nvidia-container-toolkit-keyring.gpg \
&& curl -s -L https://nvidia.github.io/libnvidia-container/stable/deb/nvidia-container-toolkit.list | \
sed 's#deb https://#deb [signed-by=/usr/share/keyrings/nvidia-container-toolkit-keyring.gpg] https://#g' | \
sudo tee /etc/apt/sources.list.d/nvidia-container-toolkit.listΒ
Update the packages list from the repository:
Β
sudo apt-get updateΒ
Install the NVIDIA Container Toolkit packages
Β
sudo apt-get install -y nvidia-container-toolkitΒ
Configure the container runtime by using the nvidia-ctk command and restart docker
Β
sudo nvidia-ctk runtime configure --runtime=docker
sudo systemctl restart dockerΒ
3.) Build the container
Β
cd /opt/gnoppix-co-pilot
# docker compose up -d --buildΒ
or just run
Β
cd /opt/gnoppix-co-pilot
docker compose up -d --build --force-recreate --remove-orphansΒ
4.) Create docker network for traefik (skip the step if you already using traefik) change the network if you already use 172.16.10.x
Β
docker network create traefikΒ
docker network create -d gnoppixvlan \
--subnet=172.16.10.0/24 \
--gateway=172.16.10.1 \
-o parent=eth1 \
iot_gnoppixvlan
Β
compose-traefik.yml looks like this:
Β
services:
# Ollama
ollama:
image: ollama/ollama:latest
container_name: ollama
restart: unless-stopped
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
- OLLAMA_KEEP_ALIVE=24h
- ENABLE_IMAGE_GENERATION=True
- COMFYUI_BASE_URL=http://stable-diffusion-webui:7860
networks:
- traefik
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./ollama:/root/.ollama
labels:
- "traefik.enable=true"
- "traefik.http.routers.ollama.rule=Host(`ollama.gnoppix.local`)"
- "traefik.http.routers.ollama.entrypoints=https"
- "traefik.http.routers.ollama.tls=true"
- "traefik.http.routers.ollama.tls.certresolver=cloudflare"
- "traefik.http.routers.ollama.middlewares=default-headers@file"
- "traefik.http.routers.ollama.middlewares=ollama-auth"
- "traefik.http.services.ollama.loadbalancer.server.port=11434"
- "traefik.http.routers.ollama.middlewares=auth"
- "traefik.http.middlewares.auth.basicauth.users=${OLLAMA_API_CREDENTIALS}"
deploy:
resources:
reservations:
devices:
- driver: nvidia
count: 1
capabilities: [gpu]
# open web ui
open-webui:
image: ghcr.io/open-webui/open-webui:latest
container_name: open-webui
restart: unless-stopped
networks:
- traefik
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
- 'OLLAMA_BASE_URL=http://ollama:11434'
- ENABLE_RAG_WEB_SEARCH=True
- RAG_WEB_SEARCH_ENGINE=searxng
- RAG_WEB_SEARCH_RESULT_COUNT=3
- RAG_WEB_SEARCH_CONCURRENT_REQUESTS=10
- SEARXNG_QUERY_URL=http://searxng:8080/search?q=<query>
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./open-webui:/app/backend/data
labels:
- "traefik.enable=true"
- "traefik.http.routers.open-webui.rule=Host(`chat.gnoppix.local`)"
- "traefik.http.routers.open-webui.entrypoints=https"
- "traefik.http.routers.open-webui.tls=true"
- "traefik.http.routers.open-webui.tls.certresolver=cloudflare"
- "traefik.http.routers.open-webui.middlewares=default-headers@file"
- "traefik.http.services.open-webui.loadbalancer.server.port=8080"
depends_on:
- ollama
extra_hosts:
- host.docker.internal:host-gateway
searxng:
image: searxng/searxng:latest
container_name: searxng
networks:
- traefik
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./searxng:/etc/searxng
depends_on:
- ollama
- open-webui
restart: unless-stopped
# stable diffusion
stable-diffusion-download:
build: ./stable-diffusion-webui-docker/services/download/
image: comfy-download
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./stable-diffusion-webui-docker/data:/data
stable-diffusion-webui:
build: ./stable-diffusion-webui-docker/services/comfy/
image: comfy-ui
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
- CLI_ARGS=
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./stable-diffusion-webui-docker/data:/data
- ./stable-diffusion-webui-docker/output:/output
stop_signal: SIGKILL
tty: true
deploy:
resources:
reservations:
devices:
- driver: nvidia
device_ids: ['0']
capabilities: [compute, utility]
restart: unless-stopped
networks:
- traefik
labels:
- "traefik.enable=true"
- "traefik.http.routers.stable-diffusion.rule=Host(`stable-diffusion.gnoppix.local`)"
- "traefik.http.routers.stable-diffusion.entrypoints=https"
- "traefik.http.routers.stable-diffusion.tls=true"
- "traefik.http.routers.stable-diffusion.tls.certresolver=cloudflare"
- "traefik.http.services.stable-diffusion.loadbalancer.server.port=7860"
- "traefik.http.routers.stable-diffusion.middlewares=default-headers@file"
# whisper
mongo:
image: mongo
env_file:
- .env
networks:
- traefik
restart: unless-stopped
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./whisper/db_data:/data/db
- ./whisper/db_data/logs/:/var/log/mongodb/
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
- MONGO_INITDB_ROOT_USERNAME=${DB_USER:-whisper}
- MONGO_INITDB_ROOT_PASSWORD=${DB_PASS:-whisper}
command: ['--logpath', '/var/log/mongodb/mongod.log']
translate:
container_name: whisper-libretranslate
image: libretranslate/libretranslate:latest-cuda
env_file:
- .env
networks:
- traefik
restart: unless-stopped
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./whisper/libretranslate/data:/home/libretranslate/.local/share
- ./whisper/libretranslate/cache:/home/libretranslate/.local/cache
user: root
tty: true
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
- LT_DISABLE_WEB_UI=True
- LT_LOAD_ONLY=${LT_LOAD_ONLY:-en,de,fr,es}
- LT_UPDATE_MODELS=True
deploy:
resources:
reservations:
devices:
- driver: nvidia
count: all
capabilities: [gpu]
whisper:
container_name: whisper
pull_policy: always
image: pluja/whishper:latest-gpu
env_file:
- .env
networks:
- traefik
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./whisper/uploads:/app/uploads
- ./whisper/logs:/var/log/whishper
- ./whisper/models:/app/models
restart: unless-stopped
labels:
- "traefik.enable=true"
- "traefik.http.routers.whisper.rule=Host(`whisper.gnoppix.local`)"
- "traefik.http.routers.whisper.entrypoints=https"
- "traefik.http.routers.whisper.tls=true"
- "traefik.http.routers.whisper.tls.certresolver=cloudflare"
- "traefik.http.services.whisper.loadbalancer.server.port=80"
- "traefik.http.routers.whisper.middlewares=default-headers@file"
depends_on:
- mongo
- translate
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
- PUBLIC_INTERNAL_API_HOST=${WHISHPER_HOST}
- PUBLIC_TRANSLATION_API_HOST=${WHISHPER_HOST}
- PUBLIC_API_HOST=${WHISHPER_HOST:-}
- PUBLIC_WHISHPER_PROFILE=gpu
- WHISPER_MODELS_DIR=/app/models
- UPLOAD_DIR=/app/uploads
deploy:
resources:
reservations:
devices:
- driver: nvidia
count: all
capabilities: [gpu]
networks:
traefik:
external: trueΒ
Β
V2 this version is for local usage without expose the ports
Β
compose-v2 .yml
Β
docker network create gnoppixaiΒ
services:
ollama:
image: ollama/ollama:latest
container_name: ollama
restart: unless-stopped
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
- OLLAMA_KEEP_ALIVE=1h
- ENABLE_IMAGE_GENERATION=True
- COMFYUI_BASE_URL=http://stable-diffusion-webui:7860
networks:
- ai-stack
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./ollama:/root/.ollama
ports:
- "11434:11434" # Add this line to expose the port
deploy:
resources:
reservations:
devices:
- driver: nvidia
count: 1
capabilities: [gpu]
open-webui:
image: ghcr.io/open-webui/open-webui:latest
container_name: open-webui
restart: unless-stopped
networks:
- ai-stack
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
- 'OLLAMA_BASE_URL=http://ollama:11434'
- ENABLE_RAG_WEB_SEARCH=True
- RAG_WEB_SEARCH_ENGINE=searxng
- RAG_WEB_SEARCH_RESULT_COUNT=3
- RAG_WEB_SEARCH_CONCURRENT_REQUESTS=10
- SEARXNG_QUERY_URL=http://searxng:8080/search?q=<query>
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./open-webui:/app/backend/data
depends_on:
- ollama
extra_hosts:
- host.docker.internal:host-gateway
ports:
- "8080:8080" # Add this line to expose the port
searxng:
image: searxng/searxng:latest
container_name: searxng
networks:
- ai-stack
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./searxng:/etc/searxng
depends_on:
- ollama
- open-webui
restart: unless-stopped
ports:
- "8081:8080" # Add this line to expose the port
stable-diffusion-download:
build: ./stable-diffusion-webui-docker/services/download/
image: comfy-download
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./stable-diffusion-webui-docker/data:/data
stable-diffusion-webui:
build: ./stable-diffusion-webui-docker/services/comfy/
image: comfy-ui
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
- CLI_ARGS=
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./stable-diffusion-webui-docker/data:/data
- ./stable-diffusion-webui-docker/output:/output
stop_signal: SIGKILL
tty: true
deploy:
resources:
reservations:
devices:
- driver: nvidia
device_ids: ['0']
capabilities: [compute, utility]
restart: unless-stopped
networks:
- ai-stack
ports:
- "7860:7860" # Add this line to expose the port
mongo:
image: mongo
env_file:
- .env
networks:
- ai-stack
restart: unless-stopped
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./whisper/db_data:/data/db
- ./whisper/db_data/logs/:/var/log/mongodb/
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
- MONGO_INITDB_ROOT_USERNAME=${DB_USER:-whishper}
- MONGO_INITDB_ROOT_PASSWORD=${DB_PASS:-whishper}
command: ['--logpath', '/var/log/mongodb/mongod.log']
ports:
- "27017:27017" # Add this line to expose the port
translate:
container_name: whisper-libretranslate
image: libretranslate/libretranslate:latest-cuda
env_file:
- .env
networks:
- ai-stack
restart: unless-stopped
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./whisper/libretranslate/data:/home/libretranslate/.local/share
- ./whisper/libretranslate/cache:/home/libretranslate/.local/cache
user: root
tty: true
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
- LT_DISABLE_WEB_UI=True
- LT_LOAD_ONLY=${LT_LOAD_ONLY:-en,fr,es}
- LT_UPDATE_MODELS=True
deploy:
resources:
reservations:
devices:
- driver: nvidia
count: all
capabilities: [gpu]
ports:
- "5000:5000" # Add this line to expose the port
whisper:
container_name: whisper
pull_policy: always
image: pluja/whishper:latest-gpu
env_file:
- .env
networks:
- ai-stack
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- ./whisper/uploads:/app/uploads
- ./whisper/logs:/var/log/whishper
- ./whisper/models:/app/models
restart: unless-stopped
depends_on:
- mongo
- translate
environment:
- PUID=${PUID:-1000}
- PGID=${PGID:-1000}
- PUBLIC_INTERNAL_API_HOST=${WHISHPER_HOST}
- PUBLIC_TRANSLATION_API_HOST=${WHISHPER_HOST}
- PUBLIC_API_HOST=${WHISHPER_HOST:-}
- PUBLIC_WHISHPER_PROFILE=gpu
- WHISPER_MODELS_DIR=/app/models
- UPLOAD_DIR=/app/uploads
deploy:
resources:
reservations:
devices:
- driver: nvidia
count: all
capabilities: [gpu]
ports:
- "8000:80" # Add this line to expose the port
networks:
gnoppixai:
external: trueΒ
The missing thing is your LLMβs in case you do not use Gnoppix else apt install gnoppix-llm
Β
Llama 3.1 - censored- under test for chat, wait few days until a dolphin update which unchain the module .
dophin-llama3 - latest uncensored and recommended for chat
lava-llama3 - analyses pictures
llama3-chatqa - document sheet creation and analyses
juggernautXL_v9Rdphoto2Lightning for image creration allinall the best currently
text2voice: WhisperSpeech
If you want try yourself: https://huggingface.co/models?sort=trending
Β
Β