Selfhosting Sunday - What's up?
-
Email...
My wife really wants to further de-google, this means moving custom domains off gsute.Do I move to proton/tuta or go back to self hosting email again like I did for years until about 2010?
If I self host, do I do it at home or on the server that runs my lemmy instance?
Cool your wife is into de googling! My wife thinks I’m a conspiracy nut. I have custom domains on proton and its been great, but with their moves toward AI and crypto who knows. I would probably try tuta if I was setting it up now - but who knows if they will eventually go wonkey then you will wish you self hosted anyway
-
I have a self-hosted AI system that works pretty well. I can interact with it via my phone, the shell, my IRC server, and I can verbally talk to it.
But I want to get it to remember things, so I need to start working on RAG or something. Eventually I'd like to be able to have it draft emails for me, and schedule appointments.
Same, except the irc, I have a python thing to interface.
Stealing your idea, that sounds awesome.
-
Finally switched from plex to jellyfin, seems to be ok so far. Needed to make some small scripts for metadata management but it's running smoothly. Finally decided I'm hosting enough software with user accounts that I've made an authentik instance for SSO with each (ofc jellyfin first)
Doing that switch soon.
Plex doesn't do hw accel well, which kind of defeats the purpose.
-
If at all possible see if you can do wireguard yourself. Tailscale is basically inserting a third party company for no reason as its just wireguard with their servers involved. For example if you can run opnsense its easy to get running via the GUI. Very rewarding!
Absolutely. I used Tailscale for a bit because I didn't want to get a VPS (I'm behind CGNAT), but I needed to expose a handful of services and use my own domain name, and I couldn't figure that out w/ Tailscale. So I bought a cheap VPS and configured WireGuard on it to get into my LAN and I'm much happier.
-
What's up, what's down and what are you not sure about?
Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.
Last week got my new epyc server with GPU running ollama and all the trimmings.
This week linked my 2 home bases with wire guard, all the subnets mesh and the wifi isolation is solid. Performance is surprisingly good considering they're 9 time zones apart on different hemispheres.
Migrating plex to jellyfin to get hw accel working.
Also trying to get my second base multiple statics and 10gb if possible, rural fiber in Europe is unbelievably aweome, hope to drop Comcast business back home if it works.
Got someone to work with on a new company, so that's part of this, though my day job relies on this too.
-
I'm not the person you're replying to, but Authentik:
- Has a UI for configuring it, including adding users.
- Supports LDAP if you need it. Authelia needs a separate LDAP server.
- Supports practically every two factor auth protocol you'd need: OIDC (OpenID Connect), OAuth2, SCIM, SAML, RADIUS, LDAP, and proxying for apps that don't support any of them (which is getting rarer).
- Supports permissions and permission groups, i.e. only allow certain users to access particular apps.
- Can be used as the source of truth for Google Workspace and Microsoft Entra. Maybe not as relevant for home use.
I haven't tried Keycloak but I hear it's pretty good, albeit a heavier app to deploy.
I have tried Authelia, and it's much less powerful than Authentik. Authelia requires you to manually modify config files rather than using a web UI. It also only supports OIDC (which is in beta) and proxying.
I'm considering Keycloak myself because it's trusted by security professionals (I think it's a RedHat project), whereas Authentik is basically a passion project.
-
What's up, what's down and what are you not sure about?
Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.
Docker compose. I had a plan to ease into docker, I slipped and fell in the fucking pool. So far I have AdGuard Home and Heimdall working. Some WireGuard variant is next, followed by moving grafana and Prometheus over.
So far so good…..internet blogs, videos, etc have been not great, seems things have changed since dropping the version in your yaml file. All in all, I think the direction I’m heading in is good. Time will tell.
-
Email...
My wife really wants to further de-google, this means moving custom domains off gsute.Do I move to proton/tuta or go back to self hosting email again like I did for years until about 2010?
If I self host, do I do it at home or on the server that runs my lemmy instance?
I went with Tuta because it's my backup if everything else goes wrong. If my house burns down or my VPS shuts down my instance (e.g. billing fail, IP block ban, provider goes under, etc), I don't want to lose access to my email.
I use a custom domain for it, so if I ever need to, switching to a different provider should be as simple as swapping some domain configs.
It's relatively inexpensive too at €3/month when paying annually. I wanted two domains (one for personal, one for online stuff) and didn't need any of the other stuff Proton has, so Tuta worked.
-
Docker compose. I had a plan to ease into docker, I slipped and fell in the fucking pool. So far I have AdGuard Home and Heimdall working. Some WireGuard variant is next, followed by moving grafana and Prometheus over.
So far so good…..internet blogs, videos, etc have been not great, seems things have changed since dropping the version in your yaml file. All in all, I think the direction I’m heading in is good. Time will tell.
Docker compose is great! Good luck!
I've been moving from docker compose to podman, and I think that's the better long term plan for me. However, the wins here are pretty marginal, so I don't recommend it unless you want those marginal wins and everything is already in containers. IMO: Podman > docker compose >>>no containers. Docker compose has way better examples online, so stick with that until you feel like tinkering.
-
Docker compose is great! Good luck!
I've been moving from docker compose to podman, and I think that's the better long term plan for me. However, the wins here are pretty marginal, so I don't recommend it unless you want those marginal wins and everything is already in containers. IMO: Podman > docker compose >>>no containers. Docker compose has way better examples online, so stick with that until you feel like tinkering.
I really like the idea of containers, it def solves my problems of running multiple services in the host OS. I’d like to build my own containers to pull the few “bare metal” services I’ll have outside of docker. Anyway, I’ll keep podman in the back of my head.
One thing I’m already happy I did was create a docker directory and having sub directories keep all of my container volumes separate. Should make backing things up easier as well.
-
What's up, what's down and what are you not sure about?
Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.
I’m trying to figure out a basic CRM for my local sports club. I use docker to self host a voting platform called RALLLY that we use a lot and enjoy. If people can recommend a CRM I’d give it a go today. I tried a platform called twenty yesterday but couldn’t get it off the ground
-
I really want to self host a system that will let me upload documents to be indexed by a vector DB, then run natural language queries using some kind of RAG approach. Classic problem: Having a software product and technical knowledge base and wanting quick answers to questions like "How should screen X behave if I am not a registered user?".
Closest I've found is LlamaIndex but this is still more of a foundation than a turn-key solution and right now I'm too time poor to do the assembly required... I realise I'm describing close-to-frontier tech, but anything more turn-key out there yet?
Thanks for any suggestions!
Ollama + OpenWebUI also can do this.
-
If at all possible see if you can do wireguard yourself. Tailscale is basically inserting a third party company for no reason as its just wireguard with their servers involved. For example if you can run opnsense its easy to get running via the GUI. Very rewarding!
My ISP blocks all outgoing ports. Maybe I'm not trying hard enough but anything I try port forwarding ends up getting blocked.
Minecraft and port 80 are the 2 I've tried and they've been unresponsive
-
I hear about Incus being the next best thing. I've never played around with it. Is it all that and a bag o' chips?
I think so.
It is LXD + KVM, so way more and finer tune control on lxc instances. It can run OCI images as well, so for docker instances with only a few configs and no persistent storage, it is actually quite handy. For docker instances that need pretty complicated compose files, I just run docker inside an lxc for now, until I figure that out.
-
I hear about Incus being the next best thing. I've never played around with it. Is it all that and a bag o' chips?
Side question, but where are you hearing this about incus?
I'm wrapping up 9 years of using proxmox and I have very specific reasons for switching to incus, but I this is the third time I'm fielding questions in the last month about incus.
-
Absolutely. I used Tailscale for a bit because I didn't want to get a VPS (I'm behind CGNAT), but I needed to expose a handful of services and use my own domain name, and I couldn't figure that out w/ Tailscale. So I bought a cheap VPS and configured WireGuard on it to get into my LAN and I'm much happier.
I'm considering going this route - just to hide my (static) home IP.
What's the rough sizing I'd need for a VPS? I'm guessing the smallest possible, but with the best / unlimited data usage?
-
Ive been using Zola for a bit now and love it. Very simplistic. Could be worth a look but simple pages can be html or markdown. Couldnt be much simpler. Super fast to build
I will look into that too, thank you for the suggestion
-
What's up, what's down and what are you not sure about?
Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.
Found out that docker volumes are important after restarting my server
-
Found out that docker volumes are important after restarting my server
That’s a mistake you only make once!
-
That’s a mistake you only make once!
Meh, made it a few times.
Some images treat volumes differently .
Looking at you, nextcloud.
