this post was submitted on 18 May 2025
142 points (98.0% liked)

Selfhosted

49756 readers
226 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
142
What's up, selfhosters? It's selfhosting Sunday again! (lemmy.nocturnal.garden)
submitted 2 months ago by tofu@lemmy.nocturnal.garden to c/selfhosted@lemmy.world
114 comments fedilink hide all child comments
 

What’s up, what’s down and what are you not sure about?

Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.

I finally finished my first iteration of my Minilab including a very smooth migration from the old server yesterday so I can go to the service side of things again. I plan to get some kind of selfhosters VPN for external access to stuff that's not exposed to the internet, I'll have to investigate which one.

(page 2) 50 comments
sorted by: hot top controversial new old
[–] dieTasse@feddit.org 3 points 2 months ago

Hi, I finally set up tailscale on my raspbery pi, in exit node mode so I have access to my whole network. I also set AdGuard an the very same pi with dhcp. I finally bought home assistant voice device, didn't arrive yet, but cant wait to experiment with it.

I still have to setup Authelia for sso, I want to setup a device on my network as a (proton) vpn gateway (zero knowledge right now) and then I want to start learning about pfsense to properly segment my network (into subnets) and have more control.

[–] JadedBlueEyes@programming.dev 3 points 2 months ago

I finally dealt with the AI scrapers hammering my Forgejo instance - https://jade.ellis.link/blog/2025/05/18/actually-stopping-forgejo-ai-scraping Hopefully next week I'll be able to get back to actually programming Continuwuity rather than fighting fires.

[–] Churbleyimyam@lemm.ee 2 points 2 months ago

I installed Jitsi Meet on my YUNOhost server and am very impressed. It works really well and needed basically no setting up after installing.

[–] onlinepersona@programming.dev 2 points 2 months ago (2 children)

My problem is that I'm moving in the not so far future and I don't know where to put my server. Physical security is important and if someone gets into my house, takes the computer and leaves, it'll be worthless due to encryption. But if it's in somebody's datacenter (co-location or whatever), they could be forced to monitor my traffic, tamper with my system, and I'd have to entrust the key to somebody in order to boot the system and decrypt the drives should it restart for an update or for any other reason.

I'm considering asking a friend to host the homeserver and reimburse them for a better internet connection (fiber) + electricity costs. But I'm not sure they'd be up for it.

How would you solve the problem?

Anti Commercial-AI license

[–] milicent_bystandr@lemm.ee 2 points 2 months ago

Myself right now I'd probably take it with me - in fact that's that I'm planning to do in a couple of months - but it sounds like my needs are a bit less than yours, and i can do some stuff just over LAN and on the 'server' (which is also a laptop) itself.

For more, I think I'd also ask a friend like you're thinking.

I did that before with a relative - just had to ask them to restart the server every now and again!

About trusted encryption keys, I did it with a simple password for boot encryption, that my relative knew, so in the event of theft it'd still be hard for thieves to get anything; but after boot I'd ssh in and unlock the second disk with my own password, then start up the services.

[–] tofu@lemmy.nocturnal.garden 2 points 2 months ago (2 children)

What do you actually need to run on your server? I'd look into downsizing. A single small form factor computer or even a newer Raspi can do a lot these days.

[–] cmeu@lemmy.dbzer0.com 2 points 2 months ago

Yep - while only drawing a fraction of the power and creating almost no noise

[–] onlinepersona@programming.dev 2 points 2 months ago

My problem isn't the hardware, it's that the place I'm moving to will have a bad internet connection. My current homeserver has stuff like a CI (currently being tested), a builder for software (compiling rust, C/C++, go, and whatever else), immich, nextcloud with an extension to download from youtube and other sources (basically to circumvent geoblocking of multiple friends and family), and it could be expanded to host other services e.g a seedbox. All that stuff needs good hardware and a good connection.

Anti Commercial-AI license

[–] cmeu@lemmy.dbzer0.com 2 points 2 months ago

Trying to get the right combo of iptables rules to shuttle traffic from vps to home lab server (as I think I'll need to do once my ISP upgrade puts me behind CGNAT for the first time...

Got it working sorta, but I didn't like seeing my vps private link address instead of the remote in logs.

[–] jhdeval@lemmy.world 2 points 2 months ago

I have a question on top of my matrix setup. Has any one integrated VoIP? I am trying to bring all communication in house.

[–] MaceyDay@lemmy.world 2 points 2 months ago

I finally bought a tiny PC to replace my aging APU border router/firewall (OpenBSD), so I'm trying to wrap my head around building a router currently inside the network that it will be protecting.

I have Debian installed as hypervisor, Incus, and sticking with OpenBSD for the firewall. pf makes too much sense to me too switch to firewalld. I'll also move the network-related containers off my main lab host once this is up and running.

[–] njordomir@lemmy.world 2 points 2 months ago

Went through and verified that a number of things were backing up and updating correctly. I feel a little less weight on my shoulders knowing things are working as they should.

[–] VitabytesDev@feddit.nl 2 points 2 months ago

Finally found what's causing my laptop's DNS servers to change automatically in the background. It was the systemd-resolved FallbackDNS setting. Disabled it in a config and now I can access all my custom DNS names.

load more comments
view more: ‹ prev next ›