I’m running Nextcloud and PaperlessNXG on my servers. Over the last few months I tested out my remote management. Now that I’m back home, I’ve been making a few adjustments based on my learnings. Firstly, Wireguard is slower than a turtle, while Tailscale has been a little bit faster. I’m guessing this is due to my upload speed and switching to fiber may fix this.

I’d also like to add TubeArchivist back in since there’s some great videos that I don’t trust Google to preserve given the direction things are going.

The folks on the “privacy” Lemmy gave me some good tips on app replacements and after making a big spreadsheet with all my apps, their licenses, etc., I cut down my remaining proprietary apps by at least 50% and I only have a few proprietary essentials that still depend on Google Play. I’ve been meaning to do this for a long time and I almost have a path towards completely removing all Google, Amazon, and Microsoft products from my life.

Next, I’d like to set up Wander to eventually get rid of Garmin/Strava but I haven’t been able to figure it out and I’m still locked in to some degree because of my hardware (Garmin watch). The Ring doorbell has to be the next thing to go, but I’m exhausted and haven’t had the motivation to start a new project until the dust settles from the last one.

My girlfriends phone was having issues connecting to self hosted servers, so I set her DNS from private to network default. Hope this helps and android users that may have issues.

Today I’m experimenting with Ansible. Wanna try setting up a Docker hosted RSS reader with it. Hopefully will write up controls for my whole Docker server with Ansible once I’m more familiar.

I setup a VPN for my moms Synology so I can request and download media for her through my local qbit instance and using Radarr/Sonarr to move the files over.

I have a problem where both arrs don’t auto start when I power up the debian VM in Proxmox even though the daemon is running and restart policy is set to always…

She doesn’t make a lot of requests so I just go and start them manually but I would eventually like to get it fixed…

I’m still using Docker Rootless, which I want to change for Podman since Rootless is second-class for Docker, but I haven’t been able to read the documentation enough to understand Podman Quadlets to migrate my compose files, and there are some incompatible configurations so even if using podlet, I have to edit some things manually.

I also want to migrate to MicroOS if possible in my server, but I’m still testing things in a VM to understand enough and the cost-benefit u.u

I’ve been trying to learn K8s and more recently the Gateway API. The struggles are that most Helm charts don’t know Gateway (most are barely Ingressroute) and I’m trying to find a solution to one service affecting the other gateways.when a service cannot find a pod, the httproute fails and when one route fails, the ingress fails. It’s a weird cascading problem.

Right now, I’m considering adding a secondary service to each gateway that resolves to a static error page. I haven’t looked into it yet; it cane to me in the brief moment of clarity before I fell asleep last night.

Also, I may be doing everything wrong, but I am learning and learning is fun.

Moved my fediverse apps friendica, lemmy, 35c. (only user is me) to one server since it was overkill having 2 barely using 8% if that if their cpu/ram. Suprisingly easy with yunohost backups, remade users and restored backup if just the apps. Updated enhance panel, switched the sites im making for family to use as a portfolio for local webdev to ols, fairly easy, was using wordpress templates wrong so I fixed that and redid the home pages, now I feel less confident with wordpress and wonder if ive always made sites wrong, think i just forgot since its been years.

Setting up let’s encrypt auto cert renewal with ACME. Also looking to setup some monitoring service, basic stuff like CPU, memory usage etc. If anyone has recommendations that have an android app available, that would be awesome.

Managed to set up immich remote machine learning (old 7th gen Optiplex to gaming PC). If only I bought an nvidia card… I wasn’t able to get it my AMD 7800 XT to work with immich ML… Next up is setting up microservices because immich is crippling my unraid server 🤦🏼😭

I finally set up Joplin server. It is a revelation after too long using Syncthing to sync databases. I wasn’t able to use Joplin on Android anymore- the sync to file system had gotten too slow. Now everything syncs pretty much instantly!

Anyone know how to set up NPM on truenas scale? I’ve spent all day trying to get my SSL certs and it fails every damn time. Just says the donation is unknown or that it can’t find my npm install 😮‍💨

I’m using a freedns domain tho so maybe I’m gonna need to try buying a domain.

I know this isn’t sexy but I’ve been working on my documentation. Getting configs etc properly versioned in my gitea instance, readmes updated etc. My memory is not what it once was and I need the hints when things break.

My big problem is remote stuff. None of my users have aftermarket routers to easily manipulate their DNS. One has an android modem thing which is hot garbage. I’m using a combination of making their pi be their DHCP and one user is running on avahi.

Chrome, the people’s browser of choice, really, really hates http so I’m putting them on my garbage ######.xyz domain. I had plans to one day deal with Https, just not this day. Locally I just use the domain for vaultwarden so the domain didn’t matter. But if people are going to be using it then I’ll have to get a more memorable one.

System updates have been a faff. I’m 'ssh’ing over tailscale. When tailscale updates it kicks me out, naturally. Which interrupts the session, naturally. Which stops the update, naturally. Also, it fucks up dkpg beyond what --configure -a can repair. I’ll learn to update in background one day, or include tailscale in the unattended-upgrades. Honestly, I should put everything into unattended-upgrades.

Locally works as intended though, so that’s nice. Everything also works for my fiancee and I remotely all as intended, which is also nice. My big project is coalescing what I’ve got into something rational. I’m on the make it good part of the “make it work > make it good” cycle.

So I recently sandboxed a webapp I am getting ready to launch.

Basically Unifi switch > Vlan port > Server > Hosting Webapp instances, worker instance, cloudflared and DBs.

Pretty chuffed at the docker config actually. Just configuring my WAF and tunnel settings with Cloudflare to reduce the scanning from VPS providers. Anyone have a solution or will I need to configure some sort of nginx instance to do it as Cloudflare only allows a certain length for each WAF rule for free.

Side thought, does anyone know of a tutorial for CICD to auto build my containers and deploy? I’ve been reading github and codeberg docs and playing around to no avail. I’m temped to just write a go script to handle it on my server.

Trying to figure out how to get my qBittorrent docker container to route all traffic through my VPS through wireguard. The catch is that the webui needs to be accessible through LAN.