1
119
submitted 3 days ago* (last edited 1 day ago) by ramenshaman@lemmy.world to c/selfhosted@lemmy.world

First, a hardware question. I'm looking for a computer to use as a... router? Louis calls it a router but it's a computer that is upstream of my whole network and has two ethernet ports. And suggestions on this? Ideal amount or RAM? Ideal processor/speed? I have fiber internet, 10 gbps up and 10 gbps down, so I'm willing to spend a little more on higher bandwidth components. I'm assuming I won't need a GPU.

Anyways, has anyone had a chance to look at his guide? It's accompanied by two youtube videos that are about 7 hours each.

I don't expect to do everything in his guide. I'd like to be able to VPN into my home network and SSH into some of my projects, use Immich, check out Plex or similar, and set up a NAS. Maybe other stuff after that but those are my main interests.

Any advice/links for a beginner are more than welcome.

Edit: thanks for all the info, lots of good stuff here. OpenWRT seems to be the most frequently recommended thing here so I'm looking into that now. Unfortunately my current router/AP (Asus AX6600) is not supported. I was hoping to not have to replace it, it was kinda pricey, I got it when I upgraded to fiber since it can do 6.6gbps. I'm currently looking into devices I can put upstream of my current hardware but I might have to bite the bullet and replace it.

Edit 2: This is looking pretty good right now.

2
140
submitted 2 years ago* (last edited 2 years ago) by devve@lemmy.world to c/selfhosted@lemmy.world

Hello everyone! Mods here 😊

Tell us, what services do you selfhost? Extra points for selfhosted hardware infrastructure.

Feel free to take it as a chance to present yourself to the community!

🦎

3
13

Im trying self host my things (like Wallabag).. but this is extremely complicated to me and I have lot issues with it. And i know its probably to ruin what i do with self host and do somehing shit.

that being said, i remember see some people where provide services/instances for free to use wallabag and other things , where we can use it. If I use one, obviously i would donate money to them

i know i need to trust on who do this, but my question is if you know any instance or services trustworthy to sign up a wallabag account, since i cannot self host mine .

Thank you and merry xmas.

4
26
submitted 6 hours ago* (last edited 6 hours ago) by haui_lemmy@lemmy.giftedmc.com to c/selfhosted@lemmy.world

VLC as always saves the day. Most recently for me when you want to watch HDR UHD ripped to 1080p. With plex, this becomes a problem you need to buy a plex pass for and more significantly, must have a '16 Intel CPU or newer to be able to remap it while VLC does so in the fly.

Details: In plex, the colors are so washed out it looks like a black and white movie. In VLC, the colors hit you like

Addition: I tried two remedies while packing with handbrake. BT.709 colorspace and a custom one from reddit. Both lead to the movie being so dark that you cant see most of the details.

Conclusion: VLC being open source, we should be able to see what they are doing and copy this behavior. if plex wont do it without payment, this could be huge for jellyfin for example.

Anyone with actual knowledge who can shed light on this?

5
200
submitted 1 day ago* (last edited 23 hours ago) by madeofpendletonwool@lemmy.world to c/selfhosted@lemmy.world

Hey all,

For quite a long time now I've been working Pinepods. It’s a Rust based podcast management system that manages podcasts with multi-user support and relies on a central database with clients to connect to it. It’s complete with a browser based client where your podcasts and settings follow you from device to device due to everything being stored on your server. There's installable clients on just about every platform - now including a beta build of an Android client! (Also a flatpak, aur, Mac, windows, deb, appimage, and rpm client as well)

Over time this project has really grown into something great, and many quality of life features have been baked in. The experience of using Pinepods at this point is getting close to some of the larger self-hosted projects such as Immich, and as feature complete as a client such as AntenaPods. I can't believe that a project hasn't previously heavily focused on becoming a fully feature complete Self-hosted Podcast platform because of how rooted in the spirit of open source the podcast ecosystem is built to be.

So many nice to haves have been added at this point:

  • chapter support
  • sorting/filtering/searching throughout
  • RSS feed hosting for other apps to use
  • Great mobile support everywhere (PWA, beta android client)
  • Nextcloud/Gpodder sync support -Postgres or MariaDB
  • simple API's for things like Homepage Widgets!

And lately I've even been working on a feature that allows you to subscribe to hosts! This will let you follow them from show to show. I've built a side project called PodPeopleDB for that: https://www.pinepods.online/blog/2024/12/08/podpeople-db

Chances are, if there's a feature in a podcast app that's a must have for you, it's already built in, and if it isn't, I want to know about it so I can add it!

If you’re on the fence you can try it out without installing the server too! Check the website for more info!

Now is the perfect time to check it out and enjoy continued feature updates! Feel free to open issues or PRs if you experience any problems. Or drop a line on the discord. I’m happy to help!

GitHub: https://github.com/madeofpendletonwool/Pinepods

Official site: https://pinepods.online

In case you're unware. What is podcasting 2.0?

6
8
submitted 18 hours ago by trilobite@lemmy.ml to c/selfhosted@lemmy.world

I've been running VMs on some old DELL T110ii but realise that I've loaded it a bit too much so want to leave it doing the job of NAS with Truenas Scale and move all my VMs to Proxmox. The idea is that I would have two optiplex that provide redundancy. Truenas Scale has got me used to ZFS but clear may not be an option with Optiplex 3020 as ZFS is pointless with one SSD. Has anyone got some similar arrangement and has their VMs and containers running on these simple desktop machines? How are you managing high availability and resilience?

7
15
submitted 23 hours ago by Kuvwert@lemm.ee to c/selfhosted@lemmy.world

Greetings self hosters!

I'm looking for suggestions on a document management service.

I currently use next cloud (AIO) to live collaborate, edit, and store my documents, but I want to be able to embed them in my WordPress site. Currently this is impossible to do nicely with nextcloud.

Do you happen to know of a self hostable document sharing solution that allows me to use the next cloud WebDAV credentials and embed those documents into my WordPress pages? Also if there is a full text search functionality that I can also embed into WordPress?

Any suggestions would be great! I am testing filestash.app and it works, but its not super reliable and does not offer a built in full text search despite the tin claim.

What would you do?

8
15

So today, my TrueNAS scale boot drive bit the bullet, throwing a "boot pool is read only error"/not showing up in the BIOS from time to time...

Now, usually that wouldn't be a big deal except that I don't have any images of that install and my ZFS pools aren't exported...

What should I do?

9
90
10
89
submitted 1 day ago* (last edited 1 day ago) by redxef@feddit.org to c/selfhosted@lemmy.world

Hi!

I've been working on a smart playlist plugin for Jellyfin for a couple of weeks, and by now it's at a stage where I can say it's usable and doesn't have any show-stopper bugs. The playlists are created and edited in the plugin's settings.

A simple configuration for all liked pop songs would look like this:

Id: Favourite Pop
Name: Favourite Pop
Program: |
  (and (is-type "Audio") (is-favorite) (is-genre "pop" (genre-list)))
SortProgram: |
  (begin *items*)

It supports reflection, so any filter or property can be added without modifying the plugin directly; most of the pre-defined filters are implemented this way.

There also is a mirror at Codeberg: codeberg.org/redxef/jellyfin-smart-playlist

11
34
submitted 1 day ago* (last edited 1 day ago) by Linsensuppe@feddit.org to c/selfhosted@lemmy.world

I want to host a Vaultwarden (or Bitwarden if necessary) instance, but it keeps asking for a domain and a SSL certificate. I dont own a domain and dont want to enable port forwarding on my router to expose it to the outside.

Is it possible to host a instance only internally and access it via the IP or a domain set on my local DNS? How about SSL is it possible and/or necessary?

12
10
submitted 1 day ago* (last edited 1 day ago) by Trincapinones@lemmy.dbzer0.com to c/selfhosted@lemmy.world

I am learning how to configure SDNs and I have created a VLAN that has a bridge vmbr1 in my node with ip 10.0.0.1/8, the VMs (10.0.1.2/8 & 10.0.1.3/8) can communicate correctly between them, but I have TrueNAS in one of them with a NFS share in which I store my ISOs and I can not get my host node (the one that is 10.0.0.1/8 in vmbr1) to communicate with that NFS share.

Is there something I have misconfigured or is it that the VMs inside an SDN cannot communicate with the node host?

Edit: The VMs can ping each other but not the nodes, and the VM 1 can mount and see the NFS share (VM 2) but the nodes can't.

The mount is correct because I've configured it before and it worked, and if I change the network device of the VMs to vmbr1 instead of VlanNet (the SDN) it works again.

13
42

Currently I'm running some services though Docker on a Proxmox VM. Before I had Proxmox, I thought containers were a very clean way of organizing my system. I'm currently wondering if I can just install the services I always use on the VM directly. What are the pros and cons of that?

14
16

I created my community using Sharkey, and I didn’t want to bother the service maintainers any more than I already have, so I’m reaching out here for help. 😂

How did you get your servers online? I manage my domain through Cloudflare, and I tried setting up a tunnel to access my instance. The server is online, and I can access the admin panel via an IP address, but I get an error when I type in the domain via my browser (Firefox). Cloudflare users, I could really use your help!

15
50

Or do you use anything else to archive the mighty www?

16
9

Hi folks, I've got a VM that is running my Firefly iii instance and Paperless instance as containers. A lot of work and time goes into managing these tools and I want to make sure I don't lose them. This is my setup:

Turenas Scale machine 1 -> VM1 - Docker containers. The VM sits on its own dataset in Truenas.

I replicate the dataset to Truenas Scale 2 one a week and this machine only goes on on Sunday to save power.

I Rsync the dataset to a 3rd machine where there is a hard disk that I store offsite.

I recognize that I could lose up to one week of work but that is nothing compared to the human hrs spent building those databases from scratch.

Apart from snapshotting e rsyncing every day, what else could I do to make this more resilient without increasing CAPEX and OPEX costs?

17
34

Hey all,

I've been using requestarr via Discord for the past year or so to have a remote user request option for my *arr stack.

Looking to move away from Discord completely and have been having trouble finding an alternate that would run on a more FOSS or secure platform. I run discovarr my local users but I'm hesitant to post that up as a web app for external access.

Does anybody around here know of a program or app or container even that would provide similar or replacement functionality via Matrix or signal or something of the like?

Thanks!

18
239
submitted 4 days ago* (last edited 4 days ago) by altran1502@lemmy.world to c/selfhosted@lemmy.world

Hello everyone, Alex from Immich here!

On behalf of the team, I'd like to express my heartfelt gratitude for your support in 2024.

Since the first day I posted the video prototype on the self-hosted subreddit, Immich has been on a journey. I still remember the project’s early days and loved seeing those first issues open on GitHub. How exciting it has been to build something useful for so many people. I am grateful for the compassionate community as well as the feedback and criticism we have received this year.

The project's core idea is to do good things without a hidden agenda or ill motives, to give people a delightful choice to manage their digital media besides the solutions from exploitative big cloud providers. Just last year, we were daydreaming of how wonderful it would be if we could do those things daily as our full-time job. One might have said it is good karma, but Louis Rossman from FUTO found us and extended the invitation for the company to fund the project to let us develop the software full-time. It was a dream come true for all the core contributors to talk about Immich, interact with the users, have fun writing code, and build out the features of Immich every day. We would not be here without your love and support for the project.

Similar to last year, here’s a recap of everything the project accomplished in 2024:

Milestones

  • A new logo

  • GPU acceleration for machine learning
  • Library watching
  • Search enhancement with advanced filtering

  • Built-in OpenTelemetry metrics
  • Read-only albums
  • Email notifications
  • Microservices container be gone
  • Web translation
  • Immich-hosted map tiles
  • Star rating
  • Basic editing on mobile
  • Theming on mobile
  • Folder view

  • Tag support
  • Album sync on mobile
  • Automatic database backup
  • Auto-switching server URL in the mobile app
  • Alternative machine learning URL switching
  • Supporter Badge / buy.immich.app
  • and more

Fun

  • Over 30k stars were added to Immich’s sky on GitHub :star: [editor's note: Jan 16, 23940]
  • Going from MIT to AGPLv3 License
  • Over 900 awesome people from the community helped make Immich a better software.
  • Overcame our first marketing fallout with the choice of wording in the product key purchase introduction
  • Immich isn’t even 3 years old yet. Technically, we are still an infant.
  • Alex got his 150-day comment streak on Reddit.
  • As shy as an infant, the project managed to get a lot more screentime from many YouTubers
  • Coming down from 12 breaking changes in 2023 to 8 breaking changes released in 2024

Next Year

  • A stable release is our top priority, and we are pushing hard to have it ready by Q1 of 2025.
  • After the stable release is out, we have a series of cool features in mind that we want to add to the application, such as (in no particular order)
    • Proper SemVer :P
    • Workflows/Automation
    • Plugin system
    • OCR
    • Pet Detection
    • Federation
    • and more
  • We want to offer additional mechanisms and services built directly into Immich to help you with your 3-2-1 backup strategy. This will make self-hosting Immich even easier while allowing you to maintain peace of mind when dealing with your most precious memories.

Finally, the team will attend FOSDEM 2025 in Brussels, Belgium, on February 1st and 2nd. If you are around, stop by and say “hi.” We will have a stand there on Sunday (02-02), and we also registered for a lightning talk session. We're looking forward to seeing some of you there!

As always, if you find the project helpful, you can support us at https://buy.immich.app

Have a happy holiday! 🎊

Immich Team

19
13

I have a VM running Immich on an outward facing vlan on my main server. I have a old dell with some GPUs in them running llm/ml workloads, on my internal, private vlan. The outward facing vlan can not talk to any other networks other than the internet. I wanted to use the old dell as the remote ML server for Immich, and am looking for possible solutions to my problem.

I have an intel dual x540 nic in the old dell as well as the built in gigabit. I was going to attempt to run the x540 on the external vlan, allowing the old dell to be seen on both networks. Just was not sure if this was the easiest or or most secure solution. I could also set up a wireguard connection between them, but wasn't sure about bandwidth or any other issues that would come with that setup. I was also contemplating just putting the old dell on the same vlan, which there is nothing important or critical on it, just always like to practice best security.

Am I on the right track with wireguard? it seems like it would be the easiest to set up and most secure. Or am I overlooking some other solution someone is using for this predicament?

20
50
21
40
  • Use cloudflare to get an api token
  • Set an a record for a wildcart cert *.domain.com pointing towards your servers local IP such as 192.168.0.1, turn off cloudflare proxy
  • Go into NPM and setup the SSL cert using dns challenge and your api token
  • setup a proxy host user your subdomain.domain.com pointing towards your docker container
  • key step!!!! make sure you do not have conflicting ports 80 and 443 on your machine. On unraid the device management ports are set to this, but for NPM to do local proxies, it needs access to these ports.
22
91
submitted 5 days ago by monty33@lemmy.ml to c/selfhosted@lemmy.world

cross-posted from: https://lemmy.ml/post/23767236

23
13
submitted 3 days ago* (last edited 2 days ago) by ludicolo@lemmy.ml to c/selfhosted@lemmy.world

Ladies and gents it is the final frontier.

I am trying to conquer the matrix docker ansible playbook. So far, because of all the knowledge I have gained setting this damn thing up around 4 times now (conduit, dendrite, synapse with sqlite3, conduwuit) things are going swimmingly.

I would say that except for now when I am running the playbook I keep getting this error:

" fatal: [matrix.example.com]: FAILED! => changed=false msg: |- The matrix_homeserver_generic_secret_key variable must be defined and have a non-null and non-empty value.

If you're observing this error on a new installation, you should ensure that the `matrix_homeserver_generic_secret_key` is defined.
If you think you've defined it, but are still getting this error, then it's likely that you have a typo
in your domain name in `inventory/hosts` or in one of the directories leading up to your `inventory/host_vars/matrix.example.com/vars.yml` file.

If you're observing this error on an existing homeserver installation, you can fix it easily and in a backward-compatible way by adding
`matrix_homeserver_generic_secret_key: "{{ matrix_synapse_macaroon_secret_key }}"`
to your `vars.yml` file. Using another secret value for the new variable is also possible and shouldn't cause any trouble.  "

The thing is I do have a secret key and from what I can also tell is the folder structure is also correct.

I mean hell i even changed it back to "matrix.example.com" just for shits and giggles and still nothing.

I have tried putting the playbook in my home directory I even tried the instructions for an existing homeserver and it still pops up.

I am losing my mind!

This is the guide I am following:

https://github.com/spantaleev/matrix-docker-ansible-deploy/blob/master/docs/quick-start.md

My server is running ubuntu 20.04 and my machine I am running ansible on is running arch.

As always any help is massively appreciated!

EDIT:

These are the file structures I have tried:

I set it up multiple different times in different locations:

/home/inventory/host_vars/matrix.bishbash.com

/home/inventory/hosts

/home/matrix-docker-ansible-deploy/inventory/host_vars/

/Home/matrix-docker-ansible-deploy/inventory/hosts

/desktop/ansible playbook/matrix-docker-ansible-deploy/inventory/host_vars

/desktop/ansible playbook/matrix-docker-ansible-deploy/inventory/hosts

Is is my ansible vars.yml :

***
# The bare domain name which represents your Matrix identity.
# Matrix user IDs for your server will be of the form (`@alice:example.com`).
#
# Note: this playbook does not touch the server referenced here.
# Installation happens on another server ("matrix.example.com", see `matrix_server_fqn_matrix`).
#
# If you've deployed using the wrong domain, you'll have to run the Uninstalling step,
# because you can't change the Domain after deployment.
matrix_domain: matrix.bishbash.com

# The Matrix homeserver software to install.
# See:
#  - `roles/custom/matrix-base/defaults/main.yml` for valid options
# - the `docs/configuring-playbook-IMPLEMENTATION_NAME.md` documentation page, if one is available for your implementation choice
#
# By default, we use Synapse, because it's the only full-featured Matrix server at the moment.
#
# Note that the homeserver implementation of a server will not be able to be changed without data loss.
matrix_homeserver_implementation: synapse

# A secret used as a base, for generating various other secrets.
# You can put any string here, but generating a strong one is preferred (e.g. `pwgen -s 64 1`).
matrix_homeserver_generic_secret_key: 'I_put_my_actual_key_here'

# By default, the playbook manages its own Traefik (https://doc.traefik.io/traefik/) reverse-proxy server.
# It will retrieve SSL certificates for you on-demand and forward requests to all other components.
# For alternatives, see `docs/configuring-playbook-own-webserver.md`.
matrix_playbook_reverse_proxy_type: playbook-managed-traefik

# This is something which is provided to Let's Encrypt when retrieving SSL certificates for domains.
#
# In case SSL renewal fails at some point, you'll also get an email notification there.
#
# If you decide to use another method for managing SSL certificates (different than the default Let's Encrypt),
# you won't be required to define this variable (see `docs/configuring-playbook-ssl-certificates.md`).
#
# Example value: someone@example.com
traefik_config_certificatesResolvers_acme_email: ''

# A Postgres password to use for the superuser Postgres user (called `matrix` by default).
#
# The playbook creates additional Postgres users and databases (one for each enabled service)
# using this superuser account.
postgres_connection_password: 'I_made_a_password_here'

# By default, we configure Coturn's external IP address using the value specified for `ansible_host` in your `inventory/hosts` file.
# If this value is an external IP address, you can skip this section.
#
# If `ansible_host` is not the server's external IP address, you have 2 choices:
# 1. Uncomment the line below, to allow IP address auto-detection to happen (more on this below)
# 2. Uncomment and adjust the line below to specify an IP address manually
#
# By default, auto-detection will be attempted using the `https://ifconfig.co/json` API.
# Default values for this are specified in `matrix_coturn_turn_external_ip_address_auto_detection_*` variables in the Coturn role
# (see `roles/custom/matrix-coturn/defaults/main.yml`).
#
# If your server has multiple IP addresses, you may define them in another variable which allows a list of addresses.
# Example: `matrix_coturn_turn_external_ip_addresses: ['1.2.3.4', '4.5.6.7']`
#
#matrix_coturn_turn_external_ip_address: '' ```
24
22

I have rootless podman containers all connected a network with caddy that proxies them by their hostname. It seems that the default networking mode doesn't preserve the source ip and instead shows all traffic coming internally from 10.89.1.98. Preserving that ip requires pasta/slirp4netns which is incompatible with adding the container to a network. I've found a few solutions but I'm having trouble deciding what is the right way to move forward.

Using the host network or running caddy with host loopback abilites

Would require exposing all the ports on all my containers which means I would lost the ability to access containers by the DNS inside the podman network. I have a lot of containers and manually managing ports is not something I want to do again.

socket activation + libsdsock with caddy

Socket forwarding done using systemd. I've tested it and it works but it requires systemd on the container, and caddy is built on alpine which uses a different boot system. There are ways to get the systemd libs on alpine but it would be quite hacky.

socket activation + libsdsock with another os

Caddy provides ways to build with extensions on debian but it seems tricky to do in a Containerfile because systemd init issues.

Has anyone experienced this issue before? What direction did you take?

25
36

For instance how can I use my *.domain.com SSL certs and NPM to route containers to a subdomain without exposing them? The main domain is exposed.

view more: next ›

Selfhosted

40717 readers
382 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS