lidstah

joined 1 year ago
sorted by: new top controversial old
What are YOU self-hosting? in c/selfhosted@lemmy.world
[–] lidstah@lemmy.sdf.org 2 points 1 year ago

Not really, in my case it's just that I either access it from home or through VPN, so I don't need to expose it outside of my home and work networks.

What are YOU self-hosting? in c/selfhosted@lemmy.world
[–] lidstah@lemmy.sdf.org 4 points 1 year ago* (last edited 1 year ago) (2 children)

Everything runs in a kubernetes cluster hosted on my homelab, except the public services access point which is a VM hosted on a non-profit ISP and service provider infrastructure, which I contribute to, through a wireguard VPN between the VM and home:

Public-facing:

  • an old static website (nginx-unprivileged), which was my first website and which I keep online because nostalgia
  • Ghost, personal blog
  • OpenSMTPd + rspamd + dovecot (dovecot only accessible from home, not public)
  • privatebin
  • picoshare
  • Whoogle + Tor
  • SearxNG

Work related (I work from home 75% of time), not public-facing:

  • dolibarr ERP for managing prospects and clients billing
  • gitea
  • bookstack for personal documentation
  • edit: forgot Harbor as container registry.
  • vaultwarden
  • eck-operator
  • wireguard operator for personal, family and friends access from outside
  • awx operator
  • draw.io
  • zalando postgresql operator for postgres needs
  • mariadb-galera for mariadb needs
  • bitlbee-libpurple for all clients' slack needs
  • Authentik as OIDC/LDAP/SAML provider (also used to identify family and friends)
  • internal DNS (pdns-resolver + powerdns with postgres backend) serving work zone and home zone.

Home stuff, not public-facing:

  • Games: Minetest, EQEmu server (Everquest), planar ally, bzflag, veloren
  • Home-cinema/music: Jellyfin, Koel, alltube, and the usual tools to share Linux isos.
  • Immich to sync photos
  • homeassistant (more a PoC than anything else right now)
  • mealie for recipes (I like cooking original meals for friends and family) and lunch/dinner planning
  • another instance of vaultwarden for family
  • piHole to keep the children a bit safer online (notably blocking malware/scams/nsfw sites)

all of this running on a 3 control-planes/6 workers talos linux k8s cluster, itself hosted on a franken-proxmox cluster (a mix of server/"old" desktops/Ryzen NUCs) and a bunch of NAS (VM dedicated NAS, data storage NAS, backup NAS).

Traefik, Caddy, Nginx, etc. what is your reverse proxy of choice, and why? in c/selfhost@lemmy.ml
[–] lidstah@lemmy.sdf.org 1 points 1 year ago
  • almost everywhere: HAProxy. I like the syntax, ACLs, map files, stick-tables... there's too much to say in a single post, but I use it since 2012 and it never failed me, whatever the need, both at home and at work.
  • kubernetes: ingress-nginx. Mostly because it's the first one I tried back in the days and it just works :). Although I should try one of the haproxy based ingresses, or Traefik, which seems interesting too.
view more: ‹ prev next ›