this post was submitted on 16 Mar 2025
143 points (98.0% liked)

Selfhosted

44364 readers
717 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
 

I know for many of us every day is selfhosting day, but I liked the alliteration. Or do you have fixed dates for maintenance and tinkering?

Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.

This post is proudly sent from my very own Lemmy instance that runs at my homeserver since about ten days. So far, it's been a very nice endeavor.

top 50 comments
sorted by: hot top controversial new old
[–] evulhotdog@lemmy.world 1 points 46 minutes ago

I use Mend Renovate to keep up with the latest and greatest container images in my private repo.

[–] domi@lemmy.secnd.me 3 points 2 hours ago

I finally got IPv6 working in Docker Swarm...by moving from Docker Swarm to regular Docker.

Traefik now properly gets IPv6 addresses and forwards them to the backend.

[–] eodur@lemmy.world 4 points 3 hours ago

I recently setup Music Assistant and have been trying to make it work in my VLANs with my esp32 devices. It has been slow going. Nothing has the level of logging required to easily debug the issues I've encountered but I'm slowly working through it all.

[–] Appoxo@lemmy.dbzer0.com 9 points 4 hours ago (1 children)

For the first time I configured ssh with pubkey auth.
Auth between windows (agent) and alpine (host) to use as a helper/backup proxy in veeam (helper is used to mount file level restore assistant)
Took me 3 hours to find out that
Windows didnt know the private key
Pubkey auth wasnt active
Fucked up pubkey auth
Alpine isnt supported by Veeam so it didnt work
Needed to install a small debian VM.

:|
At least I did my first pubkey auth setup.

[–] rumba@lemmy.zip 2 points 3 hours ago

It gets better.

[–] Smokeydope@lemmy.world 4 points 4 hours ago

I just spent a good few hours optimizing my LLM rig. Disabling the graphical interface to squeeze 150mb of vram from xorg, setting programs cpu niceness to highest priority, tweaking settings to find memory limits.

I was able to increase the token speed by half a second while doubling context size. I don't have the budget for any big vram upgrade so I'm trying to make the most of what ive got.

I have two desktop computers. One has better ram+CPU+overclocking but worse GPU. The other has better GPU but worse ram, CPU, no overclocking. I'm contemplating whether its worth swapping GPUs to really make the most of available hardware. Its bee years since I took apart a PC and I'm scared of doing somthing wrong and damaging everything. I dunno if its worth the time, effort, and risk for the squeeze.

Otherwise I'm loving my self hosting llm hobby. Ive been very into l learning computers and ML for the past year. Crazy advancements, exciting stuff.

[–] rumba@lemmy.zip 1 points 2 hours ago

What should I do next?

  1. Set up peertube in a proxmox, difficulty: My hosting provider doesn't allow 443 or 80, I have cloudflare working for other things but I think this invades their TOS

  2. Set up immich in a proxmox. Difficulty: I need regular backups off site and it's going to be pretty large.My wife is a professional photographer.

  3. Set up my Coral TPU with frigate replacing my aging win10 blue iris.

[–] quelsh@programming.dev 6 points 5 hours ago

I migrated my whole native service infrastructure to Docker services this weekend. I prepared for it the previous weeks; basically looking up information about details I wasn't sure about. The services were mailing, file cloud, and traccar with modoboa, ownCloud respectively. I moved to mailcow and Nextcloud and replaced my feedly account with NextCloud News as a bonus. So far pretty happy with it, had a couple set-backs but also learned a lot in the process. This was the first time for me doing something productive with Docker

[–] bananoidandroid@feddit.nu 2 points 4 hours ago (1 children)

I've set up a reverse proxy to try out hosting a few APIs but i'm curious about best practice and haven't found any good way to do it. Anyway, i have them running dotnet 9 on debian, and hosting them on http ports and then reverse proxying to apache that serves them externally with certbot on 443 to some real hostnames. I would really want to host them on https internally as well, but is there a neat way to "cert" them without an internal CA-service? My experience with self-signed certs are mostly that they always force me to trust the server cert in my connection strings, which is also unsafe so i just don't bother. Is it worth working on and which is the best approach here?

[–] rumba@lemmy.zip 3 points 2 hours ago (1 children)

Non SSL behind your ingress proxy is acceptable professionally in most circumstances, assuming your network is properly segmented it's not really a big deal.

Self-signing and adding the CA is a bit of a pain in the ass and adds another unnecessary layer for failure in a home network.

If it really grinds your gears you could issue yourself a real wild card cert from lets encrypt then at DNS names with that wild card on your local DNS server with internal IPs, but to auto renew it you're going to have to do some pretty decent DNS work.

To be honest I've scrapped most of my reverse proxies for a nice tailscale network. Less moving parts, encrypted end-to-end.

[–] bananoidandroid@feddit.nu 2 points 2 hours ago

Thanks! I initially considered going the wildcard route until i saw the workload involved for my host! There does seem to exist autorenewal programs for the largest hosts out there but i'm trying to support my local businesses so it's unfortunately out of of my scope at the moment, but i'll checkout your suggestion and see what tailscale has to offer!

[–] habitualcynic@lemmy.world 1 points 3 hours ago

I’m patiently (cf impatiently) awaiting the arrival of an Aoostar WTR Pro and components to build my first NAS and full Arr stack for Linux ISO’s.

I completed a proof of concept and learning a month ago on a Pi 5, and I can’t wait to get my hands dirty with something more real!

I’ll take any advice anyone throws my way :D and thanks to this community for the learning and inspiration since I joined Lemmy!

[–] vfsh@lemmy.blahaj.zone 6 points 6 hours ago (1 children)

I spent two hours last night beating myself over the head with RAM sticks. Got an ewasted server that had the alarm misconfigured, figured I'd upgrade it and put in a valid configuration since it was just off my size. Slapped in some matching size sticks and it wouldn't boot. It took my embarrassingly long to realize that the speeds werent the same and that the server really cared about the speeds being the same, more than it cared about sizes being the same incidentally.

I work in IT that should have been the first fuckin thing I checked smh

[–] almost1337@lemm.ee 3 points 4 hours ago

I remember when I worked in a data center and there was a custom server order that needed something like 64 sticks per server, and procurement didn't bother to make sure that we had sets that were the same speed, timing, or brand. Thankfully I caught it before we wasted a ton of time troubleshooting.

[–] ItJustDonn@slrpnk.net 3 points 5 hours ago* (last edited 5 hours ago) (1 children)

Total noob to Docker (desktop for windows) and I'm just trying to figure out how (and where) to add a config to my Navidrome image or change lines on the image itself, to point it to my music library and create admin login credentials (ಥ﹏ಥ) If I can accomplish that then I eventually want to try Immich or NextCloud afterward.

I want to switch to Linux but I'm not sure where to start! I want to

  • play current-gen games (graphically speaking) on steam, as well as
  • lots of retro games with Launchbox/RetroArch
  • do 3D modeling in blender, and
  • produce music in a free DAW.

I don't know if any of those factors impose restrictions due to software/hardware differences (or if that even makes a difference), but I want to move over everything I can into a linux environment

[–] sugar_in_your_tea@sh.itjust.works 3 points 4 hours ago* (last edited 4 hours ago)

All of those should be fine, the main caveats w/ Linux are:

  • anti-cheat games generally don't work - there are exceptions, and this is a limitation by the developer, not Linux
  • Windows-only software can be iffy - e.g. photoshop and whatnot
  • using an NTFS drive on Linux can have surprises - don't mount your game lib on Linux, just redownload

Blender works perfectly fine, gaming on Steam and Heroic works well, emulators work well, and while I don't know anything about Linux music production, I know there are software options available.

Anyway, I recommend buying a separate disk and trying Linux out. That way you don't touch your current Windows install while messing w/ stuff.

[–] SirMaple__@lemmy.world 4 points 6 hours ago* (last edited 6 hours ago)

My current project is email. Setting up Mailcow and moving my domains over to VMs on a OVH KS-3 server right here in Canada. I'm sick of depending on cloud email providers and want more control of my data. Also getting Addy.io setup to move my aliases over from SimpleLogin. End game is to dump Proton and go all selfhosted for email and Mullvad for VPN. For Mullvad I found that you can buy a 6 or 12 month gift card vouncher on Amazon and it works out to being less than paying Mullvad directly per month.

[–] non_burglar@lemmy.world 8 points 8 hours ago (1 children)

Migrating from proxmox to incus, continued.

  • got a manually-built wireguard instance rolling and tested, it's now "production"
  • setting up and testing backups now
  • going to export some NFS and iscsi to host video files to test playback over the network from jellyfin
  • building ansible playbooks to rebuild instances
  • looking into ansible to add system monitoring, should be easy enough

Lots of fun, actually!

[–] tofu@lemmy.nocturnal.garden 3 points 7 hours ago (1 children)

What's your motivation for the switch? Second time in a short while I've heard about people migrating to incus.

[–] non_burglar@lemmy.world 2 points 6 hours ago (1 children)

I've moved to all containers and I'm gradually automating everything. The metaphor for orchestration and provisioning is much clearer in incus than it was in lxd, and makes way more sense than proxmox.

Proxmox is fine, I've used it for going on 8 years now, I'm still using it, in fact. But it's geared toward a "safe" view of abstraction that makes lxc containers seem like virtual machines, and they absolutely aren't, they are much, much more flexible and powerful than vms.

There are also really annoying deficiencies in proxmox that I've taken for granted for a long time as well:

  • horrible builtin resource usage metrics. And I'm happy to run my influxdb/grafana stack to monitor, but users should be able to access those metrics locally and natively, especially if they're going to be exported by the default metrics export anyway.
  • weird hangovers from early proxmox versions on io delay. Proxmox is still making users go chase down iostat rabbit holes to figure out why io_wait and "io delay" are not the same metric, and why the root cause is almost always disk, yet proxmox shows the io_wait stat as if it could be "anything"
  • integration of pass through devices is a solved problem, even for lxc, yet the bulk of questions for noobs is about just that. Pass through is solved for so many platforms, why proxmox just doesn't have that as a GUI option for lxc is baffling.
  • no install choices for zfs on root on single disk (why???)
  • etc

Ultimately, I have more flexibility with a vanilla bookworm install with incus.

[–] tofu@lemmy.nocturnal.garden 1 points 4 hours ago (1 children)

Thanks a lot for your response! I too was a bit misguided by the way Proxmox presents LXCs but I'm mostly on VMs and haven't explored LXCs further so far.

[–] non_burglar@lemmy.world 1 points 1 hour ago

No worries. And don't misunderstand: I think proxmox is great, I've simply moved on to a different way of doing thing.

[–] ItTakesTwo@feddit.org 5 points 8 hours ago

Fumbling around with k3s to get my toes into deploying a Kubernetes cluster from scratch for the first time ever. No real long term usage planned, just some testing to gather experience.

[–] voklen@programming.dev 3 points 7 hours ago

This week I realised my Mastodon instance was severely out of date because I was using nix flakes and didn't autoupdate but now that's been fixed 😄

[–] 4grams@awful.systems 11 points 11 hours ago* (last edited 5 hours ago) (1 children)

I’m building services out for my family as things enshittify. Moved the family over to an immich instance, run a family blog on Wordpress (working on rolling my own since it’s over complicated and with all the Wordpress shenanigans…), plex (lifetime account, works for now). I have a number of self-built projects as well, a “momboard” like system that is integrated with my Wordpress blog for access and control, a pi based backup server that lives at my friends house and nails a VPN connection to my router and I’m playing with Meshtastic as an offline communication system for my kids scout troop when we’re camping without cell signal. Lots of home automation with home assistant as well.

I host it all on Debian servers, raspberry pi’s and esp32 devices (Meshtastic and home automation). I used to run kubernoodles but it was more complicated than needed and for my use case, docker, ansible and bash scripts manage it all just fine.

[–] eodur@lemmy.world 1 points 3 hours ago (1 children)

How's your experience with meshtastic been? I've just started experimenting with it. There are very few nodes in my area, so my potential use cases seem limited.

[–] 4grams@awful.systems 1 points 3 hours ago

Very limited so far. I don’t have much near me but there has been enough sproradic connectivity that I pick up the occasional chatter in the default channel and have about 145 nodes it’s aware of.

Mostly been my son and I playing around. He wants to get his neighborhood friends involved :).

[–] harsh3466@lemmy.ml 3 points 8 hours ago

I'm integrating my Mac mini (running Asahi Linux) into my server setup. It's slow going as I also have to move some data around so I can repurpose some hard drives.

[–] refreeze@lemmy.world 10 points 11 hours ago (2 children)

I just set up wanderer and workout-tracker. Along with installing gadgetbridge on my phone, I now have a completely self hosted fitness/workout stack with routes, equipment tracking, heatmaps, general health metrics like HRV, heart rate, etc through my Garmin watch, without having Garmin Connect installed. Awesome!

[–] bluegandalf@lemmy.ml 1 points 3 hours ago

Wait, is that possible? I thought gadgetbridge didn't work with Garmin! Nedd to check this out. Thanks for the inspiration!

load more comments (1 replies)
[–] sugar_in_your_tea@sh.itjust.works 6 points 10 hours ago* (last edited 4 hours ago)

Been messing around w/ podman, and after hours of slamming my head against the wall, I decided Seafile isn't worth it. :) It launches a bunch of stuff inside one container, and I just couldn't figure out how to get that to work w/ quadlet (worked fine w/ podman kube play though).

I got forgejo set up and now I'm looking into setting up runners so I can finally migrate off hosted gitlab onto my own forgejo instance.

Some other things I'm planning on doing this week:

  • migrate existing services to podman quadlet from docker compose - will make each existing service into a pod and play w/ pod networking
  • set up technitium - tested it locally and it worked well, so just need to move it and configure it; hope to use it as the primary DNS for my house
  • set up owncloud ocis - there's a new POSIX FS option, which was my main hangup when I last looked into a nextcloud alternative (I only need storage + collabora)
  • probably some kind of dashboard, because the number of services I host is getting a bit long

If I get time, I want to install openSUSE MicroOS onto my NAS and start migrating everything to it (from openSUSE Leap). I really like the idea of an immutable base OS, and my NAS is already 90% containers (pretty much just Samba left). I need to fix some permission issues anyway (keep having to chown my videos so samba and jellyfin can work together), and this should make things a bit more obvious.

I'll probably also start a blog about my self-hosting journey, because the info around podman is kinda sparse, especially when it comes to quadlet.

Edit: got OCIS working, but it was a bit of a pain. Starting that blog really sounds like a good idea...

[–] dishpanman@lemmy.ca 10 points 12 hours ago (3 children)

I started hosting audiobookshelf since Jellyfin was pretty clunky for audiobooks.

load more comments (3 replies)
[–] assaultpotato@sh.itjust.works 5 points 11 hours ago (5 children)

I need to migrate off Docker Desktop for Windows and Storage Spaces but I fear the process will be difficult due to my data volume and the stupidity of Windows. I should never have gone Windows, but I wanted to use Steam Big Picture off the media PC and didn't want to deal with getting that functional on Linux.

But Docker Desktop for Windows keeps crashing WSL and bricking the network devices randomly, and also continuously grows memory consumption until the machine reboots. Piece of shit.

[–] domi@lemmy.secnd.me 1 points 2 hours ago

Piece of shit.

Docker on Windows is was what ended up pushing me to Linux on my workstation. What an absolute pain in the ass.

load more comments (4 replies)
[–] tux7350@lemmy.world 5 points 12 hours ago* (last edited 8 hours ago) (3 children)

I'm working on my first kubernetes cluster. I'm trying to set the systems up with NixOS. I can get a kublet and a control plane running. But I'm getting permission errors when trying to use kubectl rootless on the system running the control plane. I think I figured out which file i need to change, now I just want to record that change in my configuration.nix.

[–] L_Acacia@lemmy.ml 4 points 11 hours ago (1 children)

nixos doesn't play well with rootless containers in my experience

[–] tux7350@lemmy.world 2 points 8 hours ago* (last edited 8 hours ago) (1 children)

Ah sorry to hear that. Did you find something better that works for you? I'm open to suggestions :D

[–] johntash@eviltoast.org 1 points 6 hours ago

Not who you asked but I moved to Talos Linux for k8s

load more comments (2 replies)
load more comments
view more: next ›