Selfhosted

Available from internet:

• jellyfin
• jellyseerr
• immich
• paperless-ngx
• owncloud ocis
• traefik
• homarr

Available only from local:

• the *arr stack
• qbittorrent
• jackett
• watchtower
• apprise
• netdata (kinda new, still have to fully understand how it works)
• portainer
• speedtest-tracker
• homepage

Security

All the services available from internet, just goes through traefik to terminate https, I rely on the build in authentication of each service. To add another layer of security, I have fail2ban active on all those services.

I have a public IP, and I have open on my router ports 80, 443, a random port for ssh and vpn.

Hardware:

Memory:
  System RAM: total: 8 GiB available: 7.73 GiB used: 4.46 GiB (57.7%)
  Report: arrays: 1 slots: 4 modules: 2 type: DDR3
CPU:
  Info: 6-core model: AMD Phenom II X6 1090T bits: 64 type: MCP cache: L2: 3 MiB
Graphics:
  Device-1: NVIDIA GP107 [GeForce GTX 1050 Ti] driver: nvidia v: 535.98

docker compose files

All the docker compose files + how I configured everything is available at: https://github.com/simone-viozzi/my-server

Bonus:

Since I like the ability of btrfs to do snapshots, I created all important docker volumes as btrfs subvolumes. Then I created a backup script that literally sends the subvolume (encrypted) to an external cloud. This does not allow incremental backups and most likely is not the best backup solution... but it works... the repo is: https://github.com/simone-viozzi/btrfs2cloud-backup

I welcome any advice / criticism!

I have been self hosting things for over 15 years. I now host on 7 computers. I'm proud of the fact that I stay under 100W idle, including 3 Omada WLAN APs and network technology (all via PoE and all is on a UPS). For most of the services i normally used the helper scripts. i'm currently in the process of moving everything to komodo. there should be an lxc for each service or service group, komodo pulls the compose files from gitea and deploys everything.

Proxmox pve0: M910x i5.7500 4x3,4GHz, 32 GB RAM, 256 GB NVMe

• OPNSense (VM)
• Omada (LXC/komodo-server - control for 3 WLAN-APs)
• apt-cacher-ng (LXC/komodo-server - cache for debian-updates)
• searxng (LXC/komodo-server - my standard google-alternative)
• technitium (LXC/komodo-server - DNS, Adblock)
• nginx (LXC/komodo-server - own ssl-domain over cloudflare, no ports open to the www, my devices connect only via tailscale)

UNRAID-NAS - odroid h2+ Intel J4115 4x1,8 GHz, 32 GB RAM, 2x24GB HDD - fileserver)

Proxmox Backup Server (M90n-1: i5-8265U, 8 GB RAM, 256 GB NVMe, 2TB SSD)

Proxmox pve1 (M90n-1: i5-8265U, 8 GB RAM, 256 GB NVMe)

• bifrost (LXC/komodo-server - hue emulator)
• paperless (LXC/komodo-server - DMS)
• paperless-ai (LXC/komodo-server - tagging DMS)
• mosquitto (LXC/komodo-server - mqtt broker)
• zigbee2mqtt (LXC/komodo-server - mqtt-zigbee bridge)
• snowflake (LXC/komodo-server - tor relais)
• RaspberryMatic (VM - Homematic)

Proxmox pve2 (M90n-1: i5-8265U, 8 GB RAM, 256 GB NVMe)

• ghost (LXC comm-script, business soltion, wanna play around)
• hoarder (LXC/komodo-server - bookmarks with AI tagging)
• memos (LXC/komodo-server - notes - I play around)
• obsidian-sync (LXC/komodo-server - notes, but I hate the need of action for this)
• vaultwarden (LXC/komodo-server - password manager backup for my payed bitwarden instance)
• gitea (LXC/komodo-server - hoe to, IP-addresses, compose-files)
• komodo-management (LXC/komodo-server - komodo main-server to manage all the servers)
• firefly-iii (LXC/komodo-server - finance - I'm looking for an alternaticve for actualbudget )
• actual-budged (LXC/komodo-server - finance with AI tagging)
• investbrain (LXC/komodo-server - stock management, but only in USD, I wait for other currencies)

Proxmox pve3 (M920x: i7-8700, 64 GB RAM, 250 GB NVMe, 2 TB NVMe)

• ollama+open webui (LXC/komodo-server - AI)
• immich (LXC/komodo-server - photo backup for my ios-photos)
• iobroker (LXC/komodo-server - smarthome for some tricky scripts)
• home assistant (VM - smarthome - for UI, its stupid for scripts)
• nextcloud (LXC/alpine - Im using it for documents, but Im looking for an alternative)
• plex/jellyfin/management (LXC/komodo-server - multimedia)

*raspberry pi 5

• venus OS (solar/accu management software)

i'm happy to have found an entry point and an alternative to reddit here, even though my second post (question about suitable hardware with 32 answers) has already been deleted. hello everyone!

Using LXD:

• ddclient
• Jellyfin (2)
• Minecraft (proxy + 4 servers)
• Satisfactory server
• V Rising
• Gitea vcs
• wordpress
• rtorrent
• other web servers

Using rootless Podman + Systemd service:

• Vaultwarden
• Linkding
• Traefik
• Immich photo backup
• Nextcloud (though I hate it, probably will stop)
• Grafana
• Prometheus
• Prowlarr/Radarr/Sonarr/Lidarr/Bazarr/Recyclarr
• Rtorrent + Flood
• Jellyseerr
• Navidrome (Subsonic server)
• Miniflux (RSS)
• Woodpecker (CI integration for Gitea)
• Tubearchivist (yt-dl)
• wg-easy (wireguard)
• searxng

All services are split across 2 DIY servers (in towers). 15TB of media stored on HDD with btrfs duplicated across both servers. One server host is Alpine Linux, the other is Opensuse MicroOS. LXD containers usually are Debian 12 or Alpine. I'm beginning to migrate some things to a cluster of (12) raspberry pi 3s. Unsure what to choose for rpi's, maybe, Fedora CoreOS (ublue), although Alpine does work extremely well on them (once you get them set up with it).

+ router running fresh tomato :)

Also mailcow for email, on a VPS, although I need to switch to a new provider, having difficulty with delivery using Linode and OVHCloud.

I'm running a Kubernetes cluster on the Dell hardware, then another single node k8s cluster on the Lenovo, mostly to run Adguard home / DNS in case the big cluster goes down for whatever reason.

Hardware:

• Two Dell r610s, each with 12 cores and 96 GB of RAM, running ESXi 6.7
• Lenovo M900, 4 core, 16 GB RAM, Ubuntu and k3s
• Synology 1515 with 12 TB usable
• Synology 1517 with 32 TB usable
• Juniper SRX 220H (Firewall)
• Juniper EX 2200 48 port switch
• UnFi in-wall WiFi APs

I run the following services, all in Kubernetes, with FluxCD doing GitOps from a repo in GitHub (for now, might move to Gitea later):

• Authentik
• Bookstack
• Calibre
• Flame (Homepage)
• Frigate NVR
• Home Assistant
• Memos
• Monica
• Plex
• Prowlarr
• Radarr
• Rocket Chat
• Sonarr
• Tandoor
• Tautulli
• Unifi
• UptimeKuma
• VS Code
• Zigbee2MQTT

A Lack Rack with VMWare and TrueNAS servers, pfsense, Jellyfin, Zoneminder, web/email, Nextcloud, Minecraft, LineageOS build machine, .....other stuff

Currently self-hosting on an old HP Z600 I bought second hand with the following specs:

• CPU — 2x Intel(R) Xeon(R) CPU X5660 @ 2.80GHz
• RAM — 96GB ECC DDR3 (6*16GB)
• Disks — 4TB HDD for Ubuntu, 10TB HDD for NextCloud and 2TB Sata SSD for Docker

For services, I'm currently running the following:

Docker

• Portainer — CF Tunnel
• FreshRSS — CF Tunnel
• ArchiveBox — CF Tunnel
• Adguard Home — Local
• 2x Uptime Kuma — CF Tunnel
• LinkAce — CF Tunnel
• TheLounge — CF Tunnel
• Watchtower — Local

For public access dockers

• Feedropolis
• Mirotalk SFU
• FiveFilters RSS
• Taiga
• 2x Mattermost Servers
• 8x Wordpress Staging Sites
• 1x Wordpress Dev Sites

For ubuntu, I'm running a few services and apps like:

• ScreamingFrog -9 sites using LAMP stack
• Aria2c with AriaNG
• NextCloud
• Plex
• 4x WebHooks server for communities
• Couple of API end points using Apache reverse proxy
• OpenVPN
• CrowdSec

I only have a few services:

• jellyfin (media server)
• firefly iii (expense manager)
• freshrss (rss aggregator)
• personal telegram bot to auto convert news link to epub for reading in my ereader

All of the service other than jellyfin is hosted on a vps. Jellyfin is hosted from my home and can be accessed remotely via wireguard. However because my isp doesn't provide a public ip, I need to use my vps as wireguard jump host

Client <-> vps <-> home server

Plex+arrs etc Nextcloud Komga SWAG Photoprism HA

128TB.

My main hypervisor is proxmox which runs an unraid vm with the iGPU passed through to accelerate PLEX and disk controllers to manage the storage. I also have 2 Endeavour OS VMs, one that runs Thunderbird and Insync. Another that has a quadro p2000 passed through to tinker with. I also have a homeassistant vm and a proxmox CT running docker.

I'm working up to transitioning the dockers on unraid to a proxmox container but at the same time if it's not broke why fix it.

I also want to mess with networking by putting in OPNsense or pfsense and routing some traffic through a vps.

Hi everyone! I’m a big fan of self hosting :)

I have a dedicated server in Hetzner

• Intel Core i7-8700
• 2x SSD M.2 NVMe 1 TB
• 4x RAM 32768 MB DDR4

Been running it for almost a year without any issues. I host several things there. I’m using caprover.com for managing my deployments since I contributed on the project a few years ago and it’s so easy to get started.

Some of the things I host there:

• nextcloud
• MySQL
• Postgres
• privatebin
• some Hasura instances
• Kuma (for monitoring)
• Browserless Chrome (which I use for web scrapping)
• Plausible (analytics)
• A private Ragnarok Online Server

I have setup a cron job that dumps my all of my databases (Postgres and MySQL) to my Google drive every midnight.

Hope this can help as inspiration for anyone else. Cheers!

A cobbled together Ryzen 2400g with 16GB of ram. Open Media Vault/Docker: Plex Nextcloud stack with dns refresh/ssl/nginx Sonarr/transmission stack with VPN PiHole Octoprint

Occasionally I run a game server or two when the need comes up, mostly Valheim lately.

On my own hardware: At home I have a Raspberry Pi 4 running JellyFin as a local media server, also experimenting with PiHole. One of these days I'd like to pull my NextCloud server in-house.

VPS: Nextcloud (including calendar, notes, contacts & RSS/Atom), GoToSocial, WordPress, Gemini, and personal website with a mix of home-grown parts and sections managed through Eleventy.

I've also experimented with self-hosting Calckey , Snac2 and Mastodon, but Mastodon's too heavy for a single user and Snac2 is lighter than I want to go with for now. I may try Calckey again at some point, though.

Eventually I'd like to set up Wallabag and migrate from Pocket.

Ceph (rbd,s3) on 4 poweredges.

Nomad, Consul servers running in a 3 node raft on some ARM SBCs.

Nomad clients on 2 poweredges and 3 arm SBCs running:

• s3 CSI (media and large file storage is all on s3)
• rbd CSI (all the stateful jobs have rbd block devices)
• NATS cluster with Jetstream to enable MQTT support
• mosquito mqtt (had to run mosquito for mqtt v5)
• mosquito<->nats bridge (via benthos)
• nodered (just for easy Google home integration)
• zwavejs2mqtt
• zigbee2mqtt
• frigate (can only talk mqtt v5 so had to run mosquito just for this)
• grafana
• gotify
• gitea
• drone CI
• postgresql
• BitTorrent client
• ceph rgw s3 gateways
• NATS based home automation lambdas - I wrote these in go
• Adguard home
• traefik as main ingress
• Prometheus
• prom node exporter
• jellyfin
• jackett
• a program I wrote that manages torznab->acquisiton->s3 lifecycle
• a website
• wireguard servers

And that is just in the server room - I also have more like the 3d printer and CNC machine controllers etc.

Personally, I host Sandstorm, and Discord music bot, and Minecraft.

I host one of the worlds last gopher sites. And some Telegram bots, on Raspberry Pi's.

I have a MediaWiki instance on my laptop (I've found the features of all other wikis/mindmaps/knowledge databases decisively insufficient after having a taste of MW templates, Semantic MediaWiki and Scribunto).

Also some smaller things like pihole-standalone, Jellyfin and dictd.

I run a bunch of bots, some databases plus

• Jellyfin
• Unifi controller
• Radar
• Sonarr
• Lidarr
• Bazarr
• nzbhydra2
• Sabnzbd
• Heimdall
• Twitch points miner 2

Lemmy, mostly :D. I also recently started up my own Matrix home server. I took a stab at email, but it was more trouble than it's worth considering my relatively newly acquired cloud hosting IP is on several blacklists. Now that I actually have a server running again Gitea might be next on the list of services that gets added.

I have a meager ds418play with 2x4tb drives set up with RAID. I forget what it's called, but it is one drive redundancy, 1:1. I run Plex and an FTP server on it for file storage.

Virtualized with libvirt:

• Nomad (3 nodes)
• Consul (3 nodes)
• Vault (3 nodes)
• Gitlab + CI
• Nextcloud
• Sonarr, radarr, bazarr, jackett, deluge
• Prometheus
• opensearch
• puppet
• powerdns (international authoritive main + replica), unbound (internal recursor), ntp (2 nodes)
• powerdns (public authoritive replica)
• haproxy (2 nodes)
• nfs, samba
• Seaweedfs (S3) (3 nodes)
• rsnapshot
• package repositories (deb, rpm - plain dirs/files served by apache, with some scripts to manage repo metadata)
• postgresql + patroni (2 nodes)
• container registry (to investigate replacing with zot)
• openldap, keycloak (2 nodes)
• unifi controller

In nomad:

• Grafana
• Vaultwarden
• Tandoor
• Matrix
• Puppetboard
• Prometheus exporters for various things

Offsite rpi @ parents

• Rsnapshot, samba

Rpi doing router duties, to be replaced with rb3011 when I finalize it's config in terraform

VPS:

• Powerdns (public authoritive primary), haproxy, postfix (secondary MX)
• Postfix (primary MX), dovecot, spamassassin, opendmarc, opendkim

Old laptop: k8s playground for learning

Short-term todo:

• Homeassistant

Public dns names have A records pointing to haproxy vps, which proxies to home over tunnel, and AAAA records pointing straight to home (I have static ipv6 prefix, but no static ipv4 address)

Can't ask too much off my little laptop, but here it is

• HomeAssistant
• Frigate NVR
• PiHole
• Wireguard VPN

Just testing from selfhosted instance!

I might be the only person self hosting a gopher server. Its running on a Raspi 4 on my home network, using Flask Gopher.

• Two NextCloud instances, one is a RPi4 with a big external HDD which I use for backups, the other one contains everything else, including PhoneTrack. Happy to have a self-hosted privacy-friendly way to share my location with family.
• Email using mailcow.
• Jabber server using prosody. Using it with immediate family and two friends. Still super happy.
• Web server including personal blogs. Currently looking to migrate away from Wordpress into something static without comments.
• pihole
• Half-finished home automation stuff.

I cover most of what services I’m running in my own post looking for assistance recently.

https://geekroom.tech/post/242

I'm hosting Trillium Note for my personal note taking.

• website
• email
• dns
• adblocking
• home assistent
• home gallery
• eve-ng
• check_mk
• nagios
• git
• ansible
• backuppc
• zoneminder
• unifi controller
• central syslog
• syslog2irc
• kodi
• 3x moodeaudio

Since I'm moving very soon I'm also redoing everything, so this more of a "soon-to-be" than a current, but I will have:

3x ryzen 5600 w/ 32gb of ECC ram, 10gb network and some enterprise disks 1x mikrotik switch 1x mikrotik router

And I will host, using Kubernetes (Talos OS):

• ceph
• owncloud infinite scale
• Immich
• Jellyfin
• Homeassistant
• Hashicorp vault
• Oneuptime
• gitea
• plane
• actual (finance software)
• probably forgetting some stuff

Currently I play around with a Raspi 4 8GB with docker-compose. Most services are accessible with VPN only:
Caddy (as easy reverse proxy)
Portainer (container dashboard)
Linkding (bookmarks)
Baikal (calendar, todo list to sync with Android by caldav)
Agendav (web calendar frontend)
Dillinger (browser markdown editor with PDF export)
Trilium (note app)
Syncthing (google drive/onedrive alternative)
Seafile (file sharing)
Jellyfin (media server)