Either self-hosted or cloud, I assume many of you keep a server around for personal things. And I’m curious about the cool stuff you’ve got running on your personal servers.

What services do you host? Any unique stuff? Do you interact with it through ssh, termux, web server?

  • @eric@lemmy.ca
    link
    fedilink
    English
    145 months ago

    Lenovo ThinkStation P330 Tiny. Debian + Podman systemd quadlets, running these services:

    • Jellyfin
    • Sonarr
    • Radarr
    • Qbittorrent w/ VPN
    • Linkwarden
    • Calibre Web
    • Immich
    • Lidare
    • Postgres
    • Prowlarr
    • Vaultwarden
    • krolden
      link
      fedilink
      55 months ago

      P330 tiny is so good I just wish there was a ryzen version with a pcie slot. Quicksync is great but I hate Intel.

    • @tau
      link
      25 months ago

      Do you have any tips (or examples) using quadlets? I tried using them but I couldn’t wrap my head around them.

      • @eric@lemmy.ca
        link
        fedilink
        English
        2
        edit-2
        5 months ago

        I used this guide https://www.redhat.com/sysadmin/quadlet-podman

        I have a folder on my in my home folder called containers symlinked to /etc/containers/systemd with my .container files. This is my jellyfin.container for using the Nvidia Quadro on my server.

        [Unit]
        Description=Podman - Jellyfin
        Wants=network-online.target
        After=network-online.target
        Requires=nvidia-ctk-generate.service
        After=nvidia-ctk-generate.service
        
        [Container]
        Image=lscr.io/linuxserver/jellyfin:latest
        AutoUpdate=registry
        ContainerName=jellyfin
        Environment=PUID=1000
        Environment=PGID=100
        Environment=TZ=America/St_Johns
        Environment=DOCKER_MODS=ghcr.io/gilbn/theme.park:jellyfin
        Environment=TP_THEME=dracula
        Volume=/home/eric/services/jellyfin:/config
        Volume=/home/eric/movies:/movies
        Volume=/home/eric/tv:/tv
        Volume=/home/eric/music:/music
        PublishPort=8096:8096
        PublishPort=8920:8920
        PublishPort=7359:7359/udp
        PublishPort=1900:1900/udp
        AddDevice=nvidia.com/gpu=all
        SecurityLabelDisable=true
        
        [Service]
        Restart=always
        TimeoutStartSec=900
        
        [Install]
        WantedBy=default.target
        

        I use sudo podman auto-update to update the images to utilize the AutoUpdate=registry option.

  • @Veraxis@lemmy.world
    link
    fedilink
    English
    13
    edit-2
    5 months ago

    Two old HP thin client PCs configured as 4TB SFTP file servers using vsftpd on Debian. Each one uses software RAID 1 with both an NVMe and SATA SSD internally, and are in two separate locations with a cron job which syncs one to the other every 24 hours.

    People who actually know what they are doing will probably find this silly, but I had fun and learned a lot setting it up.

    • @umbrella@lemmy.ml
      link
      fedilink
      2
      edit-2
      5 months ago

      tell me about the cron thing. im thinking of doing just that on mine for backup.

      are you scping them together?

      • @Veraxis@lemmy.world
        link
        fedilink
        English
        2
        edit-2
        5 months ago

        I am using lftp and mirror. One server functions as the “main” server, which mirrors the backup server to itself once per day at a specific time (they both run 24/7 so I set it to run very early in the morning when it is unlikely to be accessed).

        In my crontab I have:

        # # * * * /usr/bin/lftp -e "mirror -eRv [folder path on main server] [folder path on backup server]; quit;" sftp://[user]@[address of backup server]:[port number]

  • @chevy9294@monero.town
    link
    fedilink
    English
    11
    edit-2
    5 months ago

    On my Raspberry Pi 4 4gb with encrypted sd is:

    • pihole
    • wireguard server
    • vaultwarden
    • cloudflare ddns
    • nginx proxy manager
    • my website
    • ntfy server
    • mollysocket
    • findmydevice server
    • watchtower

    Pi is overkill for this kind of job. Load average is only 0.7% and ram usage is only 400M

    • Vik
      link
      fedilink
      English
      25 months ago

      can you tell us how you got this running with an encrypted SD card?

      • @chevy9294@monero.town
        link
        fedilink
        English
        75 months ago

        That was really hard to do. I created a note for myself and I will also publish it on my website. You can also decrypt the sd using fido2 hardware key (I have a nitrokey). If you don’t need that just skip steps that are for fido2.

        The note:

        Download the image.

        Format SD card to new DOS table:

        • Boot: 512M 0c W95 FAT32 (LBA)
        • Root: 83 Linux

        As root:

        xz -d 2023-12-11-raspios-bookworm-arm64-lite.img.xz
        losetup -fP 2023-12-11-raspios-bookworm-arm64-lite.img
        dd if=/dev/loop0p1 of=/dev/mmcblk0p1 bs=1M
        cryptsetup luksFormat --type=luks2 --cipher=xchacha20,aes-adiantum-plain64 /dev/mmcblk0p2
        systemd-cryptenroll --fido2-device=auto /dev/mmcblk0p2
        cryptsetup open /dev/mmcblk0p2 root
        dd if=/dev/loop0p2 of=/dev/mapper/root bs=1M
        e2fsck -f /dev/mapper/root
        resize2fs -f /dev/mapper/root
        mount /dev/mapper/root /mnt
        mount /dev/mmcblk0p1 /mnt/boot/firmware
        arch-chroot /mnt
        

        In chroot:

        apt update && apt full-upgrade -y && apt autoremove -y && apt install cryptsetup-initramfs fido2-tools jq debhelper git vim -y
        git clone https://github.com/bertogg/fido2luks && cd fido2luks
        fakeroot debian/rules binary && sudo apt install ../fido2luks*.deb
        cd .. && rm -rf fido2luks*
        

        Edit /etc/crypttab:

        root            /dev/mmcblk0p2          none            luks,keyscript=/lib/fido2luks/keyscript.sh
        

        Edit /etc/fstab:

        /dev/mmcblk0p1    /boot/firmware  vfat    defaults          0       2
        /dev/mapper/root  /               ext4    defaults,noatime  0       1
        

        Change root to /dev/mapper/root and add cryptdevice=/dev/mmcblk0p2:root to /boot/firmware/cmdline.txt.

        PATH="$PATH:/sbin"
        update-initramfs -u
        

        Exit chroot and finish!

        umount -R /mnt
        
  • @perishthethought@lemm.ee
    link
    fedilink
    English
    11
    edit-2
    5 months ago

    You might like to search this community, and also \c\self_hosted, since this question gets asked a lot.

    For me:

    • Audiobookshelf
    • Navidrome
    • FreshRss
    • Jellyfin
    • Forgejo
    • Memos
    • Planka
    • File Storage
    • Immich
    • Pihole
    • Syncthing
    • Dockge

    I created two things - CodeNotes (for snippets) and a lil’ Weather app myself 'cause I didn’t like what I found out there.

  • JustEnoughDucks
    link
    fedilink
    105 months ago

    I have an orangepi zero 3 with pihole

    Then an ITX PC with

    • mealie (meal planner, recipe parser, grocery list maker with a bunch of features and tools)

    • immich for self hosting a google photos alternative

    • *arr stack for torrenting Linux ISOs

    • Jellyfin for LAN media playing

    • home assistant for my VW car, our main hanging renovation lights, smoke and CO monitors, and in the future, all of the KNX smart systems in our house

    • Syncthing for syncing photo backup and music library with phone

    • Bookstack for a wiki, todos, journal, etc… (Because I didn’t want to install better services for journals when I don’t use it much)

    • paperless-ngx for documents

    • leantime for managing my personal projects, tasks, and timing

    • Valheim game server

    • Calibre-web for my eBook library backup

    • I had nextcloud but it completely broke on an update and I can’t even see the login fields anymore, it just loads forever until it takes down my network and server, so I ditched it since I never used it anyway

    • crowdsec for much better (preemptive) security than fail2ban

    • traefik for reverse proxy

    • krolden
      link
      fedilink
      25 months ago

      Have you integrated your matrix instance with keycloak? Ive been wanting to set it up to allow local matrix users the ability to SSO with other stuff like jellyfin with just their matrix ID.

  • @PerogiBoi@lemmy.ca
    link
    fedilink
    75 months ago

    Minetest server, arr suite, plex, Pihole, calibre, homesssistant, Nextcloud.

    Interact with it through a Homarr webpage and all of it is virtualized through proxmox.

    • @Meltrax@lemmy.world
      link
      fedilink
      55 months ago

      I’ve been a software engineer for 8 years and I’ve had my own Jellyfin server (and before that, Plex) set up for 4 years on a server that I built myself.

      Despite this, I don’t have a damn clue what “virtualized through Proxmox” means any time I read it.

      • Possibly linux
        link
        fedilink
        English
        55 months ago

        They are just running things in VMs. They may even have a cluster with some sort of high availability.

        1000002710

        • @Analog@lemmy.ml
          link
          fedilink
          English
          35 months ago

          Or containers, but lxc instead of docker-like. They’re like full VMs in operation but super lightweight. Perfect for some needs.

            • @Analog@lemmy.ml
              link
              fedilink
              English
              15 months ago

              U crazy! lxc is incredibly lightweight compared to a vm, I’m often amazed at what it can do with just a few hundred MB of memory.

              Also you can map storage straight from the host and increase allocation instantly, if needed. Snapshotting and replication are faster too.

              I’m always bummed when I’m forced to run a VM, they seem archaic vs PVE CTs. Obviously there are still things VMs are required for, though.

  • @not_amm@lemmy.ml
    link
    fedilink
    English
    55 months ago

    For local use only I use Docker Rootless hosting:

    • SearXNG (with some modifications, like not using Redis nor Caddy)
    • FreshRSS
    • Jellyfin (for my small collection of series and movies)
    • Gotify
    • Stirling-PDF
    • PiHole (more as an experiment, rather than looking for a complete DNS solution since I can’t change my router’s DNS)
    • Paperless-NGX (I don’t use it much, it’s more as an experiment)
    • Homer
    • DokuWiki

    I’ve found problems using Docker Rootless and Tumbleweed as my server’s OS, since some configurations are different and some containers don’t even work, but I’ve also learned a lot :)

    • @floquant@lemmy.dbzer0.com
      link
      fedilink
      2
      edit-2
      5 months ago

      I can’t change my router’s DNS

      Do you mean you can’t change the DNS server in the DHCP settings or the server the router itself uses? In the first case you might be able to use Pi-Hole’s DHCP server instead, while for the latter it shouldn’t be an issue - I actually usually leave upstream servers configured there to avoid loops. BTW, you might also be able to flash OpenWRT to your router

      • @not_amm@lemmy.ml
        link
        fedilink
        15 months ago

        Nothing for Redis since it’s optional and I had problems running SearXNG with it. For Caddy, I forgot to mention that I use Nginx-Proxy-Manager as my reverse proxy for HTTPS hehe

    • @lemmyingly@lemm.ee
      link
      fedilink
      15 months ago

      You could turn off the DHCP server on your router and let your server handle it. You can then tell your clients to use Pi hole via the DHCP running on your server

    • youmaynotknow
      link
      fedilink
      15 months ago

      Are you using Kavita for your books as well? I have my books on Calibre, but I’m seriously considering putting it all under Kavita.

        • youmaynotknow
          link
          fedilink
          25 months ago

          I guess that’s going to be the way. I’m moving all the services I have under UnRaid to ProxMox, and wanted to lower the app count. Thanks for the tip.

  • atocci
    link
    fedilink
    5
    edit-2
    5 months ago

    Just Jellyfin and modded Minecraft right now. Nothing super interesting, but great fun.

    I’m using SSH to interact with the Minecraft server in tmux, and the web interface for Jellyfin.

  • Onno (VK6FLAB)
    link
    fedilink
    55 months ago

    I use Docker and (currently) VMware and host whatever I need for as long (or short) as I need it.

    This allows me to keep everything separate and isolated and prevents incompatible stuff interacting with each other. In addition, after I’m done with a test, I can dispose of the experiment without needing to track down spurious files or impacting another project.

    I also use this to run desktop software by only giving a container access to the specific files I want it to access.

    I’m in the process of moving this to AWS, so I have less hardware in my office whilst gaining more flexibility and accessibility from alternative locations.

    The ultimate aim is a minimal laptop with a terminal and a browser to access what I need from wherever I am.

    One side effect of this will be the opportunity to make some of my stuff public if I want to without needing to start from scratch, just updating permissions will achieve that.

    One step at a time :)

  • BlueÆther
    link
    fedilink
    55 months ago

    ATM I have the following running:

    • Caddy
    • NextCloud
    • Webpress
    • Plex
    • Actual Budget
    • Portainer
    • Vaultwarden
    • Grafana
    • Stable Diffusion
    • QBT
    • *arr stack
    • 4 Debian instances with differing bits and bobs on
    • MIT Scratch
    • Neon KDE (Drives lounge TV)
    • Win10 and 11 vms
    • TrueNAS
    • OpnSense
    • Homepage
    • Navidrome
    • SoulSeek
      • BlueÆther
        link
        fedilink
        45 months ago

        it’s an i5 13xxx with 64GB ram and a HBA passed through to TrueNAS with 7 disks on it and a second network card passed through to OpnSense for WAN/LAN

        All the above runs in Proxmox and has a bit of room for expansion still ;) This was a 50th to myself to replace an IBM M4 space heater