Skip Navigation

Hey selfhosters, what are you selfhosting?

  • Nextcloud + OnlyOffice
  • *arr media management series (Lidarr, Sonarr, etc)
  • Gitea
  • Vaultwarden
  • PiHole
  • Jellyfin
  • Wiki-js
  • Lemmy
  • Prometheus/Grafana/Loki

Currently all containerised running on a debian VM on a Rockylinux Qemu/KVM hypervisor. Initially I was using rocky+podman but inevitably hit something I wanted to run that just straight up needed docker and was too much effort to try and get working. šŸ¤·

Hardware is an circa 2012 gaming machine with a few ZFS raids for all of my Linux ISOs. It lives an extremely tortured existence and longs for the sweet release of death.

Toying with the idea of migrating it all to on-prem virtualised kubernetes cluster using helm charts to manage the stacks and using NFS mounts for persistent storage because I hate myself (and to upskill I guess)

What about you?

174 comments
  • Nothing šŸ˜€but I'm still enjoying the community

    • Scheduled Jobs
      • script to update subdomain ( E.g. home.domain.com) with external home IP address
      • script to run snapraidrunner
      • script to check docker services and report healthchecks
      • script to update and clean kodi libraries
      • script to backup with borg
    • Snapraid on 4x8TB
    • NAS - Samba shares
      • backups
        • computers
        • phones
      • public
      • media
        • music
        • tv
        • movies
    • SSH Tunnel
    • WireGuard (primary way to access services away from home)
    • Print server
    • Docker
      • Server 1 (ThinkCentre M93p, Intel i5-4570T 8GB RAM)
        • healthchecks (monitors services and makes sure scripts run otherwise notifies me)
        • smtp_to_telegram (most services support email notification, this is a way to use the built in notfication of most services but be notified instantly)
        • trilium (notes with tree structure organization)
        • pinry (image board, think pinterest)
        • portainer (GUI to manage docker services)
        • adguardhome (DNS adblocking like pihole but better in my opinion)
        • rustdesk (remote admin software, think remote desktop)
        • ulogger (what I use to map my motorcyle rides)
        • dozzle (docker log viewer)
        • mariadb (database for services that require mysql)
        • postgres (database for services that require postgres)
      • Server 2 (ThinkCentre M93p, Intel i5-4570, 20GB RAM)
        • omada-controller (controller for my tp-link router/switches/aps)
        • home assistant (control smart devices, setup automations)
        • airsonic (stream my music)
        • airsonic-refix (an alternative GUI for airsonic)
        • paperless-ngx (searchable document archive, I keep manuals and some receipts and tax documents)
        • redis (dependency for some services)
        • lidarr (manages music and auto downloads monitored artists/albums)
        • jackett (manages torrent trackers and can combine them into one query for things like lidarr/sonarr/etc.)
        • openbooks (download ebooks for my paperwhite)
        • sabnzbd (client for usenet downloads, integrates into lidarr/sonarr/etc.)
        • sonarr (manages tv shows and auto downloads them)
        • esphome (makes flashes firmware on devices easier)
        • agendav (web calendar, integrates with baikal or any caldav service)
        • baikal (keeps my calendar and contacts)
        • photoprism (photo manager, prefer over immich until immich has better read only integration)
        • stash (nsfw)
        • deluge (torrent client, integrates with lidarr/sonarr/etc.)
        • portainer (GUI to manage docker services)
        • dozzle (docker log viewer)
        • nginx proxy manager (use it to set subdomains for the servicesā€¦ E.g. arisonic.home.lan)
        • wallabag (save webpages for later viewing, doesn't seem to work on a lot of sites so I usually just use SingleFile and save to a folder on the NAS instead so I might down this)
        • syncthing (mainly use it to backup all the photos and /sdcard/ dir on my phone, but also keep some configs synced between laptops/desktops)
        • adguardhome (backup to the other adguard dns)
        • nginx
          • Homer dashboard (my favorite dashboard, but been looking at homepage lately)
          • DokuWiki (favorite wiki, prefer the classic styling)
          • minimalist-web-notepad (very fast and easy notes for quick and temporary notes)
  • I self-host a ton of software. For context, I'm leveraging docker-compose on top of TrueNAS SCALE:

    • Monitoring
      • Prometheus
      • Grafana
      • the basic dockprom exporters: nodeexporter, cadvisor
      • NUT Exporter (UPS statistics)
      • PiHole exporter
      • UptimeKuma
    • Ad blocking
      • PiHole
      • unbound (censor-resilient DNS resolver)
      • dnsproxy (in order to use PiHole on my smartphone and laptop outside my home network)
    • Media
      • Plex
      • Transmission
      • Sonarr
      • Radarr
      • Bazarr
      • Jackett
      • Flaresolverr
    • Services exposed to the outside world
      • Bunkerweb (security-hardened nginx reverse-proxy)
      • Bird.makeup (Twitter to Mastodon bridge)
      • FreshRSS
      • n8n (automation software, think IFTTT or Zapier, but open-source and on steroids)
      • Self-Host Planning Poker (my very own software!)
      • Courier (parcel tracking software)
      • Overseerr (user-friendly interface for friends and family to request movies and shows, plugs into Sonarr, Radarr and Plex)
      • Lemmy
    • Kresus (personal finance)
    • Wireguard (VPN I use as a gateway into my home network)
    • Caddy (reverse proxy with HTTPS, I use it for serving locally everything I do not expose to the outside world)
    • Restic server (an HTTP server to push Restic backups from various computers at home)
    • wakeonlan-cron-docker (because TrueNAS doesn't allow installing WoL package. Once again, I made it myself)

    What I'm looking into at the moment:

    • Tandoor Recipes (deployed but I cannot make CSRF work with my reverse-proxy so far)

    What I'll be looking into in the near future:

    • Promtail + Grafana Loki to aggregate Docker containers logs in Prometheus/Grafa
    • Immich (Google Photos alternative with automated backups from smartphones)
  • Proxmox host. Fedora server vm.

    • openvpn as a backup (and because i went through the highly laborious process of setting it up)
    • wireguard
    • nitter (twitter alternative frontend. makes twitter usable)
    • audiobookshelf (podcast manager)
    • pihole (block ads by dns)
    • nginx for my website and some related website stuff
    • Vaultwarden (sometimes. I usually keep it off because I prefer KeepassXC anyway)

    The hardware is a 10 year old Thinkpad. I think it's pretty clear by my software list that I don't ask it to do much, but it does so much for me. Like, I wouldn't run Jellyfin off of this thing. In fact my NAS is 4x8TB drives but I keep it mostly shut off. It's powered on maybe about once or twice a week for a few hours at a time. I try to batch my activity with it. Like "oh, yeah, I want file X but it's on my NAS. Maybe later, when I have a need for file Y I will turn it on and retrieve both."

    I can achieve everything I want with even lower spec hardware, but this Thinkpad has a faulty trackpad anyway, which is also how I got it for cheap. I have never measured it, but supposedly it consumes around 6W at idle which is low enough for me.

    • apache - web server/reverse proxy + PHP-FPM interpreter
    • rsnapshot - remote/local backup service
    • dnsmasq - lightweight DNS server
    • gitea - Git service/software forge
    • graylog - log capture, storage, real-time search and analysis tool
    • custom homepage/dashboard
    • jellyfin - media center
    • jitsi - video conferencing and screen sharing
    • libvirt - virtualization toolkit
    • dovecot - IMAP mailbox server
    • matrix + element-web - real-time communication server and web client
    • netdata - lightweight real-time monitoring and alerting system
    • rsyslog/lynis/debsecan/fail2ban/various log and security scanners...
    • mumble - low-latency VoIP/voice chat server
    • nextcloud - file hosting/sharing/synchronization and collaboration platform
    • openldap + ldap-account-manager + self-service password - LDAP directory server and web management tools
    • postgresql - database server
    • samba - cross-platform file sharing server
    • shaarli - bookmarking & link sharing
    • ssh/sftp - remote access and file transfer
    • transmission - bittorrent client/web interface
    • tt-rss - web-based news feed reader
    • wireguard - fast and modern VPN server

    All running on Debian 11/12 physical hosts, VMs or VPS, deployed and managed through https://xsrv.readthedocs.io

    • airsonic
    • audiobookshelf
    • calibre-web
    • freshrss
    • invidious
    • kavita
    • n8n
    • nextcloud (with some neat apps like phonetrack and bookmarks)
    • nginx proxy manager
    • vaultwarden

    All in docker containers on an Ubuntu NUC

    EDIT - also got a dedicated pivpn (wireguard+pihole) on a pizero and time machine server + borg backup server on a pi4 running yunohost

    • Nextcloud
    • OnlyOffice container
    • Jellyfin media server
    • Gitea
    • DokuWiki
    • Woodpecker CI container for building static websites and other CI tasks for hobby projects
    • HAProxy load balancer to forward external traffic to the right services
    • A pair of web servers hosting various websites/apps
    • A pair of Postfix acting as internal mail relays that sends mail through Mailgun
    • SaltStack for configuration management
    • Munin for monitoring
    • MariaDB database for various internal apps
    • Four internal BIND DNS servers (two are the primary and replica on virtual machines, then two more replicas on Pis in the event the VMs go down)
    • OpenLDAP directory server for centralized auth
    • Kanboard for video project tacking
    • Postgres database for DaVinci Resolve projects
    • UniFi controller
    • Backup server hosted on a Raspberry Pi 4 w/ a pair of 5TB external HDDs in a BtrFS mirror

    And most importantly: as of recently I'm self-hosting Lemmy and Kbin instances for myself to try them out! Kbin was a pain to setup, but I seem to be liking it more.

    It's all running on two Ryzen R7 1700 systems with 64GB of RAM in one and 48GB in the other (long story), and virtual disk storage is done over a 10Gb iSCSI link to a TrueNAS system with two 1TB SSDs in a RAIDz mirror. I've also got an unRAID NAS that hosts my video project files. Pretty smooth overall :D

    • Caddy
    • Vaultwarden
    • LLDAP
    • AdGuard + Sync
    • Linkding + Injector
    • Jellyfin + Infuse (tvOS) & FinAmp (iOS)
    • Pocketbase
    • Uptime-kuma
    • Cloudflared

    Services that I'm experimenting with:

    • Owntone
    • Gonic + Supersonic (macOS) & play:Sub / Amperfy (iOS)
    • Calibre (can't get Kobo sync working reliably)
    • Audiobookshelf (love the idea but not using much yet)
  • (copied from an older comment)

    I run basically all of the Arr stack, Plex (more friendly to my less tech savvy family then my preferred solution Jellyfin), HAss, Frigate NVR, Obsidian LiveSync, a few Minecraft worlds, Docspell, Tandoor recipes, gitea, Nextcloud, FoundryVTT, an internet radio station, syncthing, Wireguard, ntfy, calibre, searx, traefik, Wallabag, FreshRSS, Kopia, Navidrome, and a few pet projects.

  • Home assistant

    Plex

    Jellyfin

    Sonarr

    Radarr

    Prowlarr

    Readarr

    Organizr

    Overseerr

    SaBnzbd

    Transmission

    Calibre web

    Homepage

    Memos

    Pwndrop

    Picsur

    Remotely

    Youtube dl

    Changedetection.io

    Uptime Kuma

    Kavita

    Nginx

    And a couple discord bots

  • Everything is running on a Synology NAS. Media lives on a 16TB raid array of HDD, and the containers themselves on a RAID 1 of two NVMe SSDs. This helps with spinning down the HDD when not in use and overall power consumption is very reasonable.

    On the host:

    • Tailscale to connect remotely
    • Synology Photo as a great photo library

    Then everything in Docker containers, deployed via compose stacks from Git and Portainer, very easy to update! Also using Watchtower to automatically updates containers that are using the ā€œlatestā€ tag.

    • arr stack. With notably Recyclarr that allows to sync from TrashGuides the recommended media quality profiles
    • Jellyfin
    • Miniflux for RSS. Recently switched from Feedlyā€¦ itā€™s so much better. Allows full text extraction when the feed isnā€™t.
    • Calibre + Calibre Web for the interface, ebooks management
    • Home Assistant + Zigbee2mqtt for home automation
    • Nginx proxy manager to reverse proxy a handful of services (those with shared logins, e.g. Jellyfinā€¦)
    • Paperless-Ngx for documents management
    • Change detection for websites monitoring (e.g. price changesā€¦)
    • Flame for a simple ā€œdashboardā€ with all these links
    • vaultwarden
    • gitlab
    • Piped/Hyperpipe
    • SearXNG
    • Umami
    • Uptime Kuma
    • ntfy
    • Mastodon
    • Nextcloud
    • RSSHub
    • Nitter
    • Lingva
    • Thelounge
174 comments