There is no need to have them on separate VMs, as containers are already isolated and additional VMs will add more overhead.
It is worth exploring the LXC containers too, even though I prefer Docker with compose for its declarativeness.
There is no need to have them on separate VMs, as containers are already isolated and additional VMs will add more overhead.
It is worth exploring the LXC containers too, even though I prefer Docker with compose for its declarativeness.
Yes, I also heard that he passed, and I really feel bad for the guy, he did an amazing job. Thanks for the link, I didn’t know there was a new place.
Check this project https://github.com/whyvl/wireproxy
I would suggest giving Proxmox a go and virtualise your VMs, as you can easily make snapshots and recover if something goes south.
You can also check https://tteck.github.io/Proxmox/ containing easy deployable scripts to make your life easier.
I would also try to run everything out of Docker compose and create a repo containing all configuration files.
If you don’t need public access you can create an A-name record pointing to your private IP. This way you will still be able to use SSL certificates but still route your traffic using the internal network.
I am probably going to install an arr stack on the docker containers, but they will write to the HDD. What file systems shall I use for the drives? This topic seems to be quite the rabbit hole and I simply want to properly build this system, as I am planning to leave it running in a remote location so reliability is a very important factor.
They require you to buy a minimum of 800Gb, which for most people is an overkill
I am really looking forward to having a viable alternative to NVIDIA. I would love buying Intel or AMD and being able to enable CUDA support on the GPU out of the box.
And Ubuntu is based on Debian.
https://distrowatch.com/dwres-mobile.php?resource=origin
And you are very wrong.
The whole idea of self-hosted is to build something yourself and learn your way around some new technology or software. Plus building something yourself allows you to change and upgrade it down the path, while Synology doesn’t provide any of the sort.
Obsidian is amazing, though it isn’t FOSS but your notes are saved in Markdown, so even if something happens with the app, they will remain yours.
Another alternative may be Joplin and AnyType, but I think AnyType is also not 100% FOSS.
You are increasing the attack vector immensely, and it is up to you to ensure that it is well protected and up to date. The attack effort won’t be high though and most of the attacks would be pretty basic, still I wouldn’t risk something so personal, like your image library.
I would suggest for you to look into Wireguard or Tailscale for accessing your personal Immich instance.
So posting news from Iran state owned media is not propaganda in your eyes? How would you feel if someone here posts news from an Israeli state owned media source? It is obvious that both sides have a beef in this war and their news coverage of it won’t be impartial.
I am all about accurate and impartial news coverage. And a lot of serious media outlets have been very critical to the state of Israel and I would rather see news from those covering the conflict.
And instead is owned by Iran. Come on, give me a break. And starting that BBC, AP and Reuters are owned by Israel is bold of you.
And don’t tell me that your website doesn’t spread propaganda, because they most certainly do. Just propaganda that’s closer to your liking.
I just wonder if the kids of those warmongering politicians are going to the front? I think we should make a law where someone wants to wage a war their kids to be at the forefront and witness first hand all the killings and destruction first hand.
Am I the only one who is bothered by the source of this article? For the record that is an Iranian state controlled website. And considering they have a beef in this fight they will be opinionated. Can we try to stick to more trustworthy sources? Like APNews, Reuters, BBC, etc.
Obsidian? Saves everything in Markdown. It is offline but you can sync things with syncthing. Has a great app on mobile too. I run syncthing on my phone too and sync everything between my devices.
Last week I played a bit with Rainmeter and find the idea pretty cool. It is similar to conky but less nerdy and more user friendly. Pity we don’t have anything like that in Linux.
To be honest I don’t really know, but I know that what you want can easily be solved with SOCKS5 proxy. I think Wireguard and other VPNs are added to encrypt the traffic. There are also other alternatives to SOCKS5 proxy adding encryption.
In Wireguard you have those Allowed IPs, you can allow only those IPs to be reachable from outside and you can configure them per client if I am not wrong. I think the easiest way would be for you to run those services over Docker, that way each server will have an IP from your docker network and you can isolate the traffic. https://www.procustodibus.com/blog/2021/03/wireguard-allowedips-calculator/
My personal suggestion is to spin up a VM, install Debian, Ubuntu, or whatever your poison is, run docker compose or podman compose, spring up a Docker or two and Wireguard and try to achieve what you want. Heck you can even run Wireguard from a container. Once confident with your setup you can migrate it to Nix.