Selfhosted

Gobo , 1 day ago in Make my IPv6 selfhosted service available on IPv4 network.

Setup nginx as a v6 to v4 reverse proxy. Or the inverse if you have a public v4 in a vpc to use as a dmz.

psyolia , 1 day ago in Easy metrics dashboard for multiple systems?

Using the same setup, only have one host, but I remember there were some dashboards for multiple hosts, keep looking^^

dataprolet OP , 1 day ago

I used the following dashboard now, but it's not really satisfying and also doesn't really fit more than 4 nodes.
https://grafana.com/grafana/dashboards/11756-hpc-node-exporter-server-metrics-v2/

slazer2au , 1 day ago in Make my IPv6 selfhosted service available on IPv4 network.

I'd say running the VPS as a proxy or nat64 setup would be the way to go. Cgnat kinda messes everything up.

smileyhead OP , 1 day ago

What I want to do. But the question is how?

VPS as a proxy... but when I point A record to VPS and AAAA record to server in my home, how would the VPS know which traffic to pass and how.

mhzawadi , 1 day ago

A and AAAA records can have different IPs, the VPS will know it's the host for your A and to forward AAAA to your home IP

TCB13 , 1 day ago (edited 9 hours ago)

how would the VPS know which traffic to pass and how.

Install nginx in your VPS and configure it as reverse proxy to your home IPv6:

server {
    listen 80; # listens only on IPv4 port 80
    server_name example.com; # your domain name
    location / {
        proxy_pass http://[2a03:2880:f003:c07:face:b00c::2] # replace with your home server IPv6. Keep the brackets.
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_redirect off;
    }
}

Point your A record to your VPS, and your AAAA to the home server.

---

• Security recommendation about X-Real-IP: https://lemmy.world/comment/10392284
• Once your setup works, try to increase your security by using SSL / disabling plain HTTP: https://lemmy.world/comment/10398545

i_am_not_a_robot , 1 day ago

Be careful with doing this. X-Real-IP and X-Forwarded-For are good for when the client is a trusted proxy, but can be easily faked if you don't whitelist who's allowed to use those headers. Somebody with IPv6 access could send "X-Real-IP: 127.0.0.1" or something and if the server believes it then you'll see 127.0.0.1 in logs and depending on what you're running the user may gain special permissions.

Also be careful with the opposite problem. If your server doesn't trust the proxy, it will show the VPS IP in logs, and if you're running something like fail2ban you'll end up blocking your VPS and then nobody will be able to connect over IPv4.

TCB13 , 1 day ago (edited 23 hours ago)

Fair enough yeah. :)

The OP can solve that potential security issue with this option: https://nginx.org/en/docs/http/ngx_http_realip_module.html#set_real_ip_from on the local server nginx:

http {
(...)
        real_ip_header    X-Real-IP;
        set_real_ip_from  [2a03::aaaac::1]; # Replace with the VPS IPv6 address.
}

This will make sure only the VPS is allowed to override the real IP.

cron , 1 day ago in own homepage to show basic info with a couple of images

Probably overkill, but for projects like this I've setup WordPress in the past. Once everything was done, I converted the WordPress page to a static site with httrack and use the static version.

This gives the ease of setting up and editing combined with the stability and security of a static HTML website.

cron , 1 day ago in Use a spare router as a server

While you can probably use them for some small tasks (like a switch, a file server with a USB thumb drive or a print server), you're probably better off if you can sell them and buy a raspberry pi or similar.

The Fritzbox 7530 for example could be sold for 50€ (at least in my country).

halm , 1 day ago in own homepage to show basic info with a couple of images

You could check out HTML5UP for some simple, well designed site templates. For your needs, maybe something like the Astral template will do?

poVoq , 1 day ago in own homepage to show basic info with a couple of images

Depends on your level of technical expertise.

A static website generator like Hugo is usually a good choice.

swooosh OP , 1 day ago

Thx. Looks good markdown ftw

tagginator Bot , 1 day ago in own homepage to show basic info with a couple of images

New Lemmy Post: own homepage to show basic info with a couple of images (https://lemmyverse.link/lemmy.world/post/16055688)
Tagging: #SelfHosted

(Replying in the OP of this thread (NOT THIS BOT!) will appear as a comment in the lemmy discussion.)

I am a FOSS bot. Check my README: https://github.com/db0/lemmy-tagginator/blob/main/README.md

HybridSarcasm Mod , 1 day ago in Tailscale and two NICs

Tailscale is an overlay network. It will use whatever networking is available. If only one of those NICs is a gateway, then that’s what will be used to reach remote Tailnet resources.

XioR112 , 1 day ago in Use a spare router as a server

Router like this are very low spec for example Fritz!Box 3270 has 360 MHz 1 core CPU, 64 Mb of RAM and 16 Mb of Flash. Only thing you can do with them is flashing OpenWrt, but its latest version doesn't support devices with or less than 8 Mb of flash and 64 Mb of RAM.

thebardingreen , 1 day ago in Use a spare router as a server

You want OpenWRT. They're not too limited, but they're not very powerful either. Fan controller? Probably. Pihole? You can probably hack that together, though I've never tried. Media server? Erm... not my first choice. Other stuff? Limited only by your imagination, time constraints and willingness to troubleshoot weird problems most people have never had before.

Gutless2615 , 1 day ago in Self-hosted diary

You have and use Silverbullet. Why not use templates and Silverbullet? It’s basically made for exactly that use case.

Decronym Bot , 1 day ago (edited 1 day ago) in Docker Help: Port collisions when using container-networking

Acronyms, initialisms, abbreviations, contractions, and other phrases which expand to something larger, that I've seen in this thread:

Fewer Letters	More Letters
HTTP	Hypertext Transfer Protocol, the Web
IP	Internet Protocol
VPN	Virtual Private Network
nginx	Popular HTTP server

---

3 acronyms in this thread; the most compressed thread commented on today has 17 acronyms.

[Thread #776 for this sub, first seen 1st Jun 2024, 09:05]
[FAQ] [Full list] [Contact] [Source code]

beeng , 1 day ago in Home entertainment with NAS?

I do this and just run Ubuntu on a Thinkcenter tiny.

Then this for input off the sofa.

I also put a few Braille dots on few buttons and glow in the dark paint on a few important dots to make it more usable which really works, Braille especially.

Then... A few bookmarks in the firefox, jellyfin, navidrome, Spotify, vlc/MPV from mounted NAS etc.

I don't bother with any media/apps interface, I mostly see them as annoying and not needed with this KB/trackball setup.

Then...Bob's your uncle!

bobbytables , 1 day ago in Home entertainment with NAS?

I have a very similar setup like you. A NUC is providing NAS functionality and is running 24/7. An AppleTV is connected to the projector and has all the apps I need for consuming media (Jellyfin, Netflix, etc.). The NAS is running OG Debian with SMB, Jellyfin and even NFS for easy access.

The NUC provides additional features like synching and a few other things.

Why the AppleTV? Because I had Raspis, FireTVs, PCs, and whatnot connected to the projector and the AppleTV is hands down the most convenient one. The UI is super reduced and simple. The remote works. You can get just about every app you might need. And maintainance is basically zero.

ShepherdPie , 1 day ago

What is your HDD setup using the NUC? Are you just using external drives via USB?

bobbytables , 1 day ago

Just external - I know it's not the best solution. My setup grew on a tight budget over the last 10 years and for me it was the easiest, most affordable, and extendable/replaceable way. I don't need super fast drives in my home and I don't need backups for most of the data stored on a media server. So it kind of is just a bunch of disks with a NUC.

The internal drive for the system is an SSD though. Came with the computer.

Appoxo , 3 hours ago

I do it like that.
8TB external drive on an 11th i5 gen nuc.
Almost every service is dockerized because I can't be bothered to manage the dependencies.