Selfhosting Sunday - What's up?
-
What NIC are you looking at and what OS have you chosen?
It's a complete experiment with cheap network gear from China. I have a HP T730 mini PC that serves as my router. I'm installing a cheap 2.5 Gbps NIC for LAN side. Then there's a switch with 4x2.5 Gbps Ethernet and 2xSFP+ ports. My two main machines (PC and home server) are getting 10 Gbps SFP+ cards that I'll attach with DAC cables.
OS is OpenWRT, because I've been connecting over WiFi to the Internet in both old and new locations. OPNsense just will not work with any wireless adapter I've tried. I will try agan once I route Ethernet to my room.
I'm curious if all of this works with cheap network gear. Today I'm configuring a fresh OpenWRT installation on the router.
-
The computer I'm using currently, I set the BIOS in 2012. WHen I built it, I stuffed every last piece of cutting edge tech of the time into it. Dual CPU, SLI, started with 64gb ram then later on maxed the board out at 128gb. It's still a workhorse tho. It's one of the three I use all the time for music production, selfhosting etc.
My machine is not a workhorse. I got it second hand. It has around 8gb of RAM, and an 80gb HDD I found in a laptop.
But it's enough to work as a testbed, so it's fine with me.
-
What's up, what's down and what are you not sure about?
Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.
i run coolify and I have to make my own solutions so I'm learning a lot about docker.
-
I am currently arguing what to do with my gaming rig and home theater. Either get a long cable which would need a DP-to-HDMI adapter or get a used mini PC (which is currently cheaper than a Raspberry Pi?) and setup Sunshine and Moonlight (but over WiFi and not LAN) to be more flexible when I eventually move the two into separate rooms. Does anyone have some experience with that? Maybe also latency over wireless network?
I don’t have the quantitative metrics, but I will say that I had the flu last year and I just laid on the couch with my steam deck and streamed cyberpunk using Moonlight. The latency was imperceptible to my flu brain, and it was a much better experience than playing for an hour at a much lower quality natively on the deck. I have a friend who also streams his desktop to his Apple TV (hardwired desktop, wireless Apple TV) and he beat metal gear solid V like that.
-
What's up, what's down and what are you not sure about?
Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.
Recently been working on setting up forgejo to migrate away from GitHub. My open source stuff I’ve actually put onto codeberg and I’ve set up a handful of pull mirrors on my local instance for redundancy. This weekend I’ve been testing out woodpecker-ci for automating pushing files to s3 for some static websites for repos on codeberg as well as my forgejo instance. Today will tell if that is successful!
-
I am currently arguing what to do with my gaming rig and home theater. Either get a long cable which would need a DP-to-HDMI adapter or get a used mini PC (which is currently cheaper than a Raspberry Pi?) and setup Sunshine and Moonlight (but over WiFi and not LAN) to be more flexible when I eventually move the two into separate rooms. Does anyone have some experience with that? Maybe also latency over wireless network?
I use sunshine and moonlight using a pi 5 running Android TV as the client. It works perfectly for the occasional video stream but latency for games is a bit rough. You'll probably be fine playing something relaxed like Stardew Valley but platformers (I've tried Ultimate Chicken Horse) and racing games (Mario Kart Wii running in Dolphin) are just bad enough to be unplayable. This is with both devices connected over Ethernet (albeit through a powerline adapter and my router is fairly cheap) so WiFi will probably be worse.
Not sure if sunshine and moonlight just have loads of overhead or if there's a part of my setup causing the latency.
-
I'd appreciate some feedback on what I'm looking to do.
I'm wanting to follow the FUTO guide, but I don't want to build a router, to save on some money for now.
So I'm planning on buying a Mikrotik MT RB750Gr3 and putting OpenWrt on it, then using my current TP-Link Archer C6 as a wireless access point. (will buy a dedicated AP in the future).
One thing I wonder is, if there is a Mikrotik model that would be better?It looks like the hEX refresh is the same price from that vendor.
RB5009 is better but more expensive. There's a PoE version that can power your WiFi APs in the future.
I also question the decision to put OpenWrt on it. RouterOS is solid. There's a learning curve, but it's worth it if you're a nerd.
-
I'm switching my immich instance to an SSD one and switching my VPN from zerotier to tailscale.
Hopefully that means my Immich will be a little more reactive.
If at all possible see if you can do wireguard yourself. Tailscale is basically inserting a third party company for no reason as its just wireguard with their servers involved. For example if you can run opnsense its easy to get running via the GUI. Very rewarding!
-
A new homepage for the business of my wife.
I plan to use Hugo for it, I just wish the documentation would be better.
For the homepage I need a few additional "non-blog" pages and from the documentation I am not sure how to do that the best way.
-
I have been very happy with desec.io, they are a nonprofit based in Berlin.
-
Email...
My wife really wants to further de-google, this means moving custom domains off gsute.Do I move to proton/tuta or go back to self hosting email again like I did for years until about 2010?
If I self host, do I do it at home or on the server that runs my lemmy instance?
Cool your wife is into de googling! My wife thinks I’m a conspiracy nut. I have custom domains on proton and its been great, but with their moves toward AI and crypto who knows. I would probably try tuta if I was setting it up now - but who knows if they will eventually go wonkey then you will wish you self hosted anyway
-
I have a self-hosted AI system that works pretty well. I can interact with it via my phone, the shell, my IRC server, and I can verbally talk to it.
But I want to get it to remember things, so I need to start working on RAG or something. Eventually I'd like to be able to have it draft emails for me, and schedule appointments.
-
Finally switched from plex to jellyfin, seems to be ok so far. Needed to make some small scripts for metadata management but it's running smoothly. Finally decided I'm hosting enough software with user accounts that I've made an authentik instance for SSO with each (ofc jellyfin first)
-
If at all possible see if you can do wireguard yourself. Tailscale is basically inserting a third party company for no reason as its just wireguard with their servers involved. For example if you can run opnsense its easy to get running via the GUI. Very rewarding!
Absolutely. I used Tailscale for a bit because I didn't want to get a VPS (I'm behind CGNAT), but I needed to expose a handful of services and use my own domain name, and I couldn't figure that out w/ Tailscale. So I bought a cheap VPS and configured WireGuard on it to get into my LAN and I'm much happier.
-
What's up, what's down and what are you not sure about?
Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.
Last week got my new epyc server with GPU running ollama and all the trimmings.
This week linked my 2 home bases with wire guard, all the subnets mesh and the wifi isolation is solid. Performance is surprisingly good considering they're 9 time zones apart on different hemispheres.
Migrating plex to jellyfin to get hw accel working.
Also trying to get my second base multiple statics and 10gb if possible, rural fiber in Europe is unbelievably aweome, hope to drop Comcast business back home if it works.
Got someone to work with on a new company, so that's part of this, though my day job relies on this too.
-
I'm not the person you're replying to, but Authentik:
- Has a UI for configuring it, including adding users.
- Supports LDAP if you need it. Authelia needs a separate LDAP server.
- Supports practically every two factor auth protocol you'd need: OIDC (OpenID Connect), OAuth2, SCIM, SAML, RADIUS, LDAP, and proxying for apps that don't support any of them (which is getting rarer).
- Supports permissions and permission groups, i.e. only allow certain users to access particular apps.
- Can be used as the source of truth for Google Workspace and Microsoft Entra. Maybe not as relevant for home use.
I haven't tried Keycloak but I hear it's pretty good, albeit a heavier app to deploy.
I have tried Authelia, and it's much less powerful than Authentik. Authelia requires you to manually modify config files rather than using a web UI. It also only supports OIDC (which is in beta) and proxying.
I'm considering Keycloak myself because it's trusted by security professionals (I think it's a RedHat project), whereas Authentik is basically a passion project.
-
What's up, what's down and what are you not sure about?
Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.
Docker compose. I had a plan to ease into docker, I slipped and fell in the fucking pool. So far I have AdGuard Home and Heimdall working. Some WireGuard variant is next, followed by moving grafana and Prometheus over.
So far so good…..internet blogs, videos, etc have been not great, seems things have changed since dropping the version in your yaml file. All in all, I think the direction I’m heading in is good. Time will tell.
-
Email...
My wife really wants to further de-google, this means moving custom domains off gsute.Do I move to proton/tuta or go back to self hosting email again like I did for years until about 2010?
If I self host, do I do it at home or on the server that runs my lemmy instance?
I went with Tuta because it's my backup if everything else goes wrong. If my house burns down or my VPS shuts down my instance (e.g. billing fail, IP block ban, provider goes under, etc), I don't want to lose access to my email.
I use a custom domain for it, so if I ever need to, switching to a different provider should be as simple as swapping some domain configs.
It's relatively inexpensive too at €3/month when paying annually. I wanted two domains (one for personal, one for online stuff) and didn't need any of the other stuff Proton has, so Tuta worked.
-
Docker compose. I had a plan to ease into docker, I slipped and fell in the fucking pool. So far I have AdGuard Home and Heimdall working. Some WireGuard variant is next, followed by moving grafana and Prometheus over.
So far so good…..internet blogs, videos, etc have been not great, seems things have changed since dropping the version in your yaml file. All in all, I think the direction I’m heading in is good. Time will tell.
Docker compose is great! Good luck!
I've been moving from docker compose to podman, and I think that's the better long term plan for me. However, the wins here are pretty marginal, so I don't recommend it unless you want those marginal wins and everything is already in containers. IMO: Podman > docker compose >>>no containers. Docker compose has way better examples online, so stick with that until you feel like tinkering.
-
Docker compose is great! Good luck!
I've been moving from docker compose to podman, and I think that's the better long term plan for me. However, the wins here are pretty marginal, so I don't recommend it unless you want those marginal wins and everything is already in containers. IMO: Podman > docker compose >>>no containers. Docker compose has way better examples online, so stick with that until you feel like tinkering.
I really like the idea of containers, it def solves my problems of running multiple services in the host OS. I’d like to build my own containers to pull the few “bare metal” services I’ll have outside of docker. Anyway, I’ll keep podman in the back of my head.
One thing I’m already happy I did was create a docker directory and having sub directories keep all of my container volumes separate. Should make backing things up easier as well.
