this post was submitted on 06 Jan 2025
400 points (97.6% liked)

Selfhosted

40971 readers
527 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
 

Futo (Louis Rossman) at it again with great content, this time a Guide to a Self Managed life. This 14hrs long guide comes in two video parts, aswell as a written guide for those who prefer. Both video and written quide comes with complete chapters and timestamps. This should be a great starting point for those who have the time and want to start learning from the very beginning.

Video Link to Part 1: Youtube - Invidious

Video Link to Part 2: Youtube - Invidious

Happy selfhosting in 2025 everyone ✨

top 50 comments
sorted by: hot top controversial new old
[–] Emerald@lemmy.world 11 points 2 days ago* (last edited 2 days ago)

That wiki has some pretty wild quotes:

Unlike professional hosting services with static IPs, residential plans assign dynamic IP addresses that change as often as the relationship partners of people with borderline personality disorder.

[–] shakcked@lemm.ee 121 points 4 days ago (2 children)

Hey everyone in the comments complaining, this video is for me and other like me not for you. He took time to go through each step as if a complete beginner (aka me) was doing this. That means working through something as simple as downloading pfsense iso. Show me another complete guide that troubleshoots along with me and doesn't assume everything works perfectly.

He clearly states at the beginning this is not the only way to do this. He also clearly states where things could be better (pf vs OPN) but why momentum has kept him from making a change.

I'm glad y'all are at where y'all are at but this video will help win so many more people over. Having a single tutorial that takes me from zero to a selfhost solution that replicates 80% of google's everyday offering is HUGE. Is it perfect, probably not? Does it work, looks like it! And hopefully, finally getting something working will give me the confidence to implement improvements or try my own thing.

@Sips thanks for providing this as I might have missed it since it's not Rossman's channel. I was disappointed to come into the comments and see more complaints than appreciation. I've been thinking about this for a while and occasionally looking at tutorials and guides but everytime it felt like I had to piece meal all the parts to get the features I wanted. This meant troubleshooting each individual tutorial and then hoping it was completely interoperable with the next tutorial for the features/software I want. That kept me from even starting at all. Glad this exists now and knowing Rossman/Futo, it will only be improved as time goes on. Rant over.

[–] Landless2029@lemmy.world 5 points 2 days ago

Yep

Warning:Β This becomes a rabbit hole very quickly because there are so many items to cover. I’m not going to breadcrumb you. I want to provide you with everything, which means we have to start from the BEGINNING!

[–] Sunny@slrpnk.net 25 points 4 days ago

Thanks dude! Best of luck on your selfhosting adventures ✨

[–] ikidd@lemmy.world 29 points 3 days ago* (last edited 3 days ago) (1 children)

I get how momentum keeps you on a path, and he admits that he'd rather use OPNsense in the wiki, but dammit, now he's got a bunch of other people going down the same pfSense road to the rugpull. And man, Wireguard is so much less confusing and difficult than OpenVPN, but because of the drama the pfSense weirdos made with Donnenfeld over the kernel patches for WG, there's precious little support for WG in the pfSense environment. Wireguard is definitely more noob friendly.

And if you're watching this because you need this level of help to selfhost, you definitely should not be hosting email yourself. Love Mailcow, used it for years, but I'm a veteran of the spam wars from way back and know how to deal with the current landscape. He is too, so he should know better.

[–] scrubbles@poptalk.scrubbles.tech 27 points 3 days ago (4 children)

Rule one of self hosting. Do not self host your own email. Only pain will you find.

You of course can, but there are so many additional hoops you have to jump through. I use my main domain for my email, but proton is one of the few subscriptions I happily pay for

[–] erev@lemmy.world 13 points 3 days ago (1 children)

I selfhost my own mail server (my primary mail in fact).

My LE certs expired on Christmas eve, when I was also getting sick. I didn't realize my mail server was down for a week until about NYE. Luckily Postfix queued all my emails and there was nothing important lost, but I am reevaluating self hosting my mail server. That being said, this was also the worst issue I've faced in over a year of self hosting mail. And it only arose because my dumbass still hasn't automated my certificate rotation.

[–] rumba@lemmy.zip 3 points 3 days ago (1 children)

If you're using let's encrypt, it's worth automating the cert renewals. Even for systems where the automation is difficult and not supported.

It's also worth running some kind of monitoring system. You can check certificates with OpenSSL really easily. Fire off a message to NTFY.

[–] erev@lemmy.world 3 points 3 days ago (1 children)

I have the renewal process itself automated, just not the replacement process.

load more comments (1 replies)
[–] ikidd@lemmy.world 5 points 3 days ago* (last edited 3 days ago) (1 children)

I've been self-hosting email for so long (and ran/consulted on corporate email systems for a long time), I'm pretty sure my original domain (25 years) lends it's respectability to new domains I host at the same address. The hell of it is I host on a resi IP address and have never had a single blacklist event. I don't even know how that's possible other than the fact that I've done it for so long with no incidents that I think I'm on a whitelist or something.

load more comments (1 replies)

Same principle as, "A lawyer who represents himself has a fool for a client?"

[–] azron@lemmy.ml 4 points 3 days ago (1 children)

This mentality is backwards. Hosting email has pitfalls yes but in a world where more people do it the less deep those pitfalls will become.

If you are curious and want to host email go for it!

Until you have a bad config as the other commenter pointed out and miss a critical email like an interview or medical item

[–] abe@civv.es 33 points 4 days ago (9 children)

@Sunny@slrpnk.net There is absolutely no way any starter will see that page and not be intimidated. I am a well seasoned selfhoster and even I saw that and went "Wow that's a lotta words and images on a single page."

Even arch wiki has sensible ToC with pages divided into what the current topic is.

[–] HotChickenFeet@sopuli.xyz 1 points 2 days ago

I've been self hosting for years, and am familiar with many of the topics here, but it's still an interesting read for things like talking about breaking out the three part router yourself. I'm really glad he out this together because it means I can see what others do in detail, even if it's NOT the 100% recommended way (OPNSense, wireguard, etc)

On one hand, I agree that having a small overview with links to make this non monolithic would go a long way to making this functional and less scary.

On the other hand some information is scattered fairly heavily. Take the switch discussion. He mentions a 15 dollar switch, and then the upper end 1000$ switch early on, to emphasize the range. It's not until a much much later section he talks about the more practical 20$ switch or 400$ switch he'd use here. So it being monolithic aides Ctrl+F to find this segmented info.

He also mentions the capability/value of having a manged switch (the latter switch is managed) specifically with VLAN, and yet doesn't to my mind ever state why/when I would do something with the switch management to that end. As far as I can tell, many newer switches will pass VLAN tags (even when unmanaged) from the router, which will enable you to offer a WAP with split SSIDs so you could use something like TP-link 8 port 2.5gb unmanged switch (which at 100$ seems like a meaningful bridge between the 15$ 4 port 1 GB switch, and $400 16 port 2.5gb, 8 port poe switch). He talks about PoE & speed merits but IMHO doesn't really cover the significance of a managed switch other than saying it had features for vlan (even though the cheapie would pass VLAN tags)

What does the managed switch offer me for VLAN? Specifically just the capability to isolate certain ports so specific hard lines are mapped to a certain vlan?

[–] zer0@lemm.ee 11 points 4 days ago (1 children)

That's a possibility indeed, but at least he documented all the steps, it's great to see that because it looks like a lot of work. But I agree at the first that big long page for sure can be intimidated (CTRL+F is your best friend here).

[–] taiidan@slrpnk.net 4 points 4 days ago

I think solely focusing on usability for "power-users" single page makes sense. Nevertheless, I think web design seems to prefer many pages though I don't know if that's driven by user-friendliness or driving up the "click-through" rate.

[–] Sunny@slrpnk.net 9 points 4 days ago

actually yeah, fair point. I think perhaps the videoes are probably what they aim to be more beginner friendly rather than the written one.

load more comments (6 replies)
[–] ShortN0te@lemmy.ml 11 points 4 days ago (6 children)

This guide is heavily opinionated and simply outdated. 2 examples:

  1. use of openvpn. Wireguard is by design way more secure (use of keys instead of passwords) and is way more performant.
  2. use of pfSense. Yes pfSense is ok but the company behind it has shown it hostility towards open source and foss multiple times. Why should a beginner use PFsense when OPNsense exists. OPNsense is not even mentioned.

And that are only 2 points i discovered while scrolling through. Louis is a great guy but as it looks like he should leave that topic to other people.

[–] HotChickenFeet@sopuli.xyz 1 points 2 days ago* (last edited 2 days ago)

Edir: i see this was already mentioned.

Not sure if you meant the video, or written guide, but for the written guide -

OPNsense is not even mentioned.

When we build a router using a standard computer, we can install router software like pfSense or OPNsense,

There’s a bit of a debate between pfSense and OPNsense. TL;DR, the developers of pfSense are not the nicest people sometimes. If this bothers you, consider checking out OPNsense. Since I’ve been using pfSense for a decade, I’ve built much of my infrastructure around it. I am well aware of its quirks and don’t feel like setting up my network from scratch, so I am using pfSense for this tutorial. Regardless of the developers, you are infinitely better off using pfSense on your own hardware than standard routers.

[–] Sunny@slrpnk.net 23 points 4 days ago (2 children)

I completely agree that WireGuard and OPNsense are excellent choices, and I would have chosen them myself. However, I don't think it's fair to suggest that someone should "leave the topic to others" simply because they've made different choices. While WireGuard is indeed superior, OpenVPN is still a solid option and widely used today. Similarly, although OPNsense is better, pfSense remains a great piece of software - even though the company behind it isnt perfect.

People should still be able to use whatever software they like without being juged by it. Its better for people to at least start with something, rather than nothing: then its also more likely they will get more educated on topic and the different matters of opinions later on.

[–] ShortN0te@lemmy.ml 5 points 4 days ago

OpenVPN is still a solid option and widely used today.

Absolutely, but Wireguard is simpler to setup and comes by default and by design with a more secure default config.

  • Create keys on host and on clients
  • Generate a config
  • You now have a secure VPN Setup.

Now look at all those options you need to tune on OpenVPN.

even though the company behind it isnt perfect.

But then why recommending pfSense? OPNsense is the same with a much more FOSS friendly company behind it. Yes pfSense is at the moment ok but no reason to use it over OPNsense imho.

People should still be able to use whatever software they like without being juged by it.

Yes. And i never judged anyone running thr software, only ppl who recommend it.

Its better for people to at least start with something, rather than nothing

I am not sure about it. Personally, when i get into a new topic i like to have comparisons. They show me what is actually relevant and what i should look out for. But maybe it is just me.

I said multiple times "recommend" here, but that is actually my main problem, i would be much more ok when he simply said there is x and y also available but i use z because of 123...

[–] Sunny@slrpnk.net 6 points 4 days ago (2 children)

Also, you must have not read the wiki properly, because he does mention OPNsense.

load more comments (2 replies)
load more comments (3 replies)
[–] LiveLM@lemmy.zip 9 points 4 days ago* (last edited 4 days ago)

Appreciate the written version, though the wiki formatting looks a little weird on mobile. The text on the table of contents is rather small.

[–] asbestos@lemmy.world 9 points 4 days ago

Long live futo, I hope they stay this way

[–] lps@social.trom.tf 9 points 4 days ago (2 children)

@Sunny sadly in an ironic twist, they no longer seem to be maintaining their #selfhosted #peertube instance @futo_tech :(

[–] jeena@piefed.jeena.net 6 points 4 days ago (1 children)

So they do have a PeerTube instance, just chose not to upload anything to it?

[–] lps@social.trom.tf 6 points 3 days ago (1 children)

@jeena they had been up until 1 mth ago, I assume it was mirrored until YouTube broken the auto syncingπŸ€·β€β™‚οΈ

[–] lps@social.trom.tf 1 points 2 days ago

@jeena Thankfully I just spotted a recent upload by #louisrossman on their instance, though it seems it only includes some short videos that he put up, it's not entirely synced with their YT channel. Regarding #immich photo #peertube

peertube.futo.org/videos/watch…

@futo

load more comments (1 replies)

I haven't finished going through all of it yet, but it seems pretty extensive and inclusive. This is great!

This should be added to the Self Hosted community wiki

[–] jeena@piefed.jeena.net 7 points 4 days ago (8 children)

So why are the videos not self hosted?

[–] neo@lemmy.hacktheplanet.be 17 points 4 days ago* (last edited 4 days ago) (1 children)

Probably because in the current state it would not reach many people. I like PeerTube as much a the next guy but FUTO has to keep things a bit pragmatic too I imagine.

[–] jeena@piefed.jeena.net 9 points 4 days ago (1 children)

They could always upload a copy to YouTube to reach the rest also.

load more comments (1 replies)
load more comments (7 replies)
load more comments
view more: next β€Ί