I am happy in the camp of diun+dockcheck too, they both dont get enough love.

Ask a hardware sub, maybe try /r/Homelab /r/HomeServer /r/BuildaPC etc.

As example, some software pushes out updates that can (and sometimes will) break your setup.

Of course nobody pushes out something like that on purpose to mess with users. But mistakes happen all the time. And even if the dont, some version upgrades require the user to take manual steps, when these are ignored and with something like Watchtower just blindly upgraded, setups can and very likely will break.

Imo its not worth the very short amount of time saved by automatic-updates versus the amount of time it costs to fix such a mess when it occurs.

For example, NPM (Nginx Proxy Manager) had a update months ago that broke many users setups. They of course did warn about this in the changenotes, but i remember people here on sub saying “well damn i used watchtower and it updated npm overnight and i wake up and nothing works anymore, took me hours to figure out the reason and fix it”.

https://github.com/NginxProxyManager/nginx-proxy-manager/releases/tag/v2.10.0

Zabbix can monitor PostgreSQL, MySQL and iirc MongoDB. No clue about details tho, check the docs.

I like Grafana/Loki/promtail etc.

But Datalust Seq is also nice.

Graylog can do a lot but its too bloated and too hungry for my taste (damn elasticsearch).

This sub is about software, not any hardware builds or purchase advice. Try /r/Homelab /r/HomeServer /r/BuildaPC etc instead.

“Halp i am bored and lazy and dont know what to selfhost plx recommend me anything!”

Caddy is very basic, and thats why it works so easily. There is nothing wrong with it.

However it lacks some features that other reverse proxies offer. But if you dont need any of those, use Caddy.

Additional security? Not directly. But fail2ban and CrowdSec are easily set up too. And Caddy also combines very well with Authelia for authentication.

/r/Cloudflare?

so i have free time recently, and i like to make a project like cloudflare that cover some of features that cloudflare provides . how does cloudflare it works , 🤔🤔🤔 I’m just looking for a start point i know it’s waste of time for some of you , but i really want to try something new

Thanks for the laughs!

Or any recent guides?

No sorry, nobody has ever written any guides about reverse proxy with Lets Encrypt. Ever. And nobody has ever made any YouTube videos about. Its a shame.

/r/Synology?

It’s frustrating. I don’t know what else to do.

Follow the excellent Jellyfin documentation for hardware-transcoding.

The /dev/dri doesnt magically appear when you run Jellyfin inside a VM. You should also ask /r/Proxmox if you need help to passthrough your device to the VM.

Internal DNS

Please avoid using .local for things like that, its already used by mDNS (aka Apple Bonjour) and using it as standard TLD for your private hosts can cause weird issues, dont do it. Instead use TLDs that are assigned for that purpose, like .private or .home or .lan or .home.arpa etc.

External DNS

If you want to expose your Jellyfin (and possibly other services) with your reverse proxy, you better get started right away with using one domain for both, internal and external. As in, your local services are connectable under the same as the ones you open to the public. This does not mean you need to open everything for everyone. So completely forget about using private TLDs like .home and instead use your own domain (doesnt need to be a paid one, you can use free subdomains from duckdns or dedyn too for example). So if you have example.com as your domain, you simply add a subdomain to that like local.example.com and to make things easy, with a wildcard CNAME * record, like *.local.example.com. Then you can set your reverse proxy to get valid SSL certificates for *.local.example.com and you can set your local DNS (Pihole for example) to point portainer.local.example.com to the IP of your reverse proxy, which in turn redirects the access to the actual service, Portainer in this example. That way you have working, proper SSL inside your home network, without needing to open any ports to the public or even buying a domain, and fully selfhosted.

This exact question has been asked sooo many times here already, i will not go into further detail, you can simply search this sub for more info.

Would it be possible to use a DNS server and reverse proxy together?

Together? You can run both, yes.

Can I have Internal and external DNS?

What does that mean? Do you mean running a DNS server inside your network as internal? Yes of course. And external means what? Another DNS server running somewhere else? Or in relation to the above, you mean that your domain resolves to one thing when youre inside your network, but the same domain resolves to something else for people on the outside? Of course thats possible too. You run your internal DNS with your Pihole, and external you manage for your public domain, whichever provider you pick for that.

Should I switch to running a bare-metal hypervisor?

To run VMs in addition to containers? Or instead? Easy answer, if you want to run VMs then yes you could, if you dont then whats the point? Using Proxmox would allow you to run VMs, LXC and you can also use Docker inside a VM or in a LXC… lots of options.

What should I use for a DNS Server?

Whatever suits your needs. Do you want just DNS and nothing else? Basic dnsmasq gets that done. Do you want a WebUI? Do you want adblocking/filtering? Pihole or Adguard Home, there is also Technitium and blocky and many more. Pihole would be my recommendation because its very simple to setup, its useful to most users, works very well and the dev team is top.

But just as the question “what is the best distro or OS?” its silly and pointless. The choice depends entirely on the exact scenario and mostly upon yourself, your knowledge level, how much time youre willing to invest and learn, what features you want and which you dont need etc.

I have been recommended using pfsence or pi-hole.

They are very much not comparable. Pihole is a DNS-based adblocker, it does that very well but not much else. pfSense is a software firewall/router appliance, it does a lot more. Also, fuck pfSense. If you want to run something like that, consider /r/OPNsense instead or much lighter maybe ipfire or OpenWRT, again it all depends on your needs.

Edit: Great that this subs “spam protection” is still garbage

I’ve already tried Uptime Kuma, which would be perfect, but it has a bug with the headers and body of the call.

Then maybe report that bug so it can get fixed?

Other than that, maybe Smokeping or Statping-ng also work for you.

And the lazy low-effort post of the day is…

Look at the subreddit sidebar and find this: awesome-selfhosted, category document management, and more.

Cloudbeaver:

version: "3.3"

services:
  cloudbeaver:
    container_name: cloudbeaver
    image: dbeaver/cloudbeaver:23.2.0
    restart: unless-stopped
    ports:
      - 8978:8978
    environment:
      - TZ=Europe/Berlin
      - CB_SERVER_URL=http://192.168.20.50:8978
      - CB_SERVER_NAME=Cloudbeaver
    volumes:
      - ./data:/opt/cloudbeaver/workspace
    healthcheck:
      test: "wget --no-verbose --tries=1 --spider --no-check-certificate http://localhost:8978 || exit 1"
      start_period: 60s

Not exactly clear what you mean.

But to use Jellyfin on a SmartTV through Tailscale you can simply use a device that runs as Tailscale subnet router and correctly set up the routes.

Searching this sub for “emulator” gives me EmulatorJS as first result in seconds…