Selfhosted

Got a 3 year old kid with another on the way. I just need it to be reliable so the kid can watch Sesame Street and the lights keep working.

I want to move my whole server to NixOS. It's gotten to the point where I have no idea where all the Ubuntu config files went, and handling half of it via Docker vs baremetal. I hope this will allow me to set up proper backups as well, and maybe get better at Nix! I started a few days ago using the VM feature, but it's tricky to work on for now, perhaps I haven't found the right workflow.

Start setting one up.

Might get around to tidying this 20-year-old mess up a bit - tho I'm not sure where to start lol.

I am not a proud man.

I think what I need to do correctly on my homelab this year, is setup off-site backups. I currently only backup to seperate drives and machines inside my own home. I need to setup something at my parents place to take weekly and monthly backups.

Other than that, my media server needs a bigger storage drive.

Buying a 16 TB hard drive for... purposes.

get around cgnat finally

Actually have a decent backup system and data repetition

Moving to a rack is nice, I love my rack. If you’re in or near a city I suggest keeping an eye on Craigslist and ebay (search by distance nearest and lowball ones that have been sitting for months) because it’s not uncommon for nice racks to go real cheap as long as you come get them. I got my rack realllll cheap ($40, 42u, fully enclosed with massive pdu) because it’s a 90s ibm rack and it’s welded steel so it’s like 450lbs. Moving it was a nightmare but it’s real sturdy and I’m never moving it again now that it’s in my basement

For my goals in the short term I have to replace a sas cable that caused a crc error on one drive, it only happened once per smart data but still want to get that done asap. I also have another drive that’s beginning to show some smart issues; it’s on the same sas cable so it may be related because the errors didn’t increase (they all were related to an unclean shutdown, confusing things) but it’s old anyway so better safe than sorry I guess.

Medium term I want to finally upgrade my ups. The one I have now is not a rack mount which is part of what led to the unclean shutdown. It’s also a bit undersized. I have a generator for my house so I don’t need something massive but the one I have is 450va and several years old so with the tired battery I only can get about 5m of runtime. It’s more than enough to cover the transfer from power cutting out to generator power but I want something that’s a bit more reliable in case of generator failure. This is pricey though because my array is pretty huge so it’ll probably be held off unless I find a good deal on a dead one that has cheap batteries available

I also want to put the rack on its own circuit. This is something I should do asap because it’s cheap, just gotta find time and rearrange my panel a bit because it’s pretty full. This would be the other part of the unclean shutdown as the outlet would be in a much better location and I could also install a locking outlet

Would also be nice to pick up a super cheap monitor locally, like something for $15-20 from a pawn shop or Craigslist or something for the rack. Earlier this year I had nginx crash on my server and the webui became inaccessible, I had to drag my nice and kind of large desktop monitor down to the basement to solve the issue, would be nice to just have a shitty small monitor on the rack for that

Speaking of nginx I keep meaning to setup some kind of reverse proxy or mdns for all my dockers so that I can just do whatever.whatever instead ipaddress:3993 which makes my password managers barf but I’ll probably just be lazy and edit my hosts file

Longer term I want to add a secondary low power server that can run something like pfsense to handle my routing, then turn my current wireless routers into access points because they kind of suck as routers.

And of course the array could always be bigger, especially if drive prices fall

I will probably realistically only do the drive and cable replacement, the circuit thing since that’ll be like $40 and a half hour of work, the monitor if I can find one, and maybe the hosts file thing. If I run into cash (unlikely) or a crazy deal (you never know) the ups would be my next priority but there’s a million other things going in life (deductibles just reset for health insurance, hooray)

Learn how to design an implement effective segmentation for my network, get better with OPNsense, and get my private website up and running

I want to replace my single drive Qnap NAS by a diy one. It still works, but I also want to redo my backup process, and it would be a good point to start.

To start - moving services from bare metal to rootless Podman containers running via quadlets. It's something I have had in mind for a while but keep second guessing the distro choice. Long-ish release cadence, systemd-networkd and a recent Podman version in the native repos, well supported, and not Ubuntu.

So far openSUSE Leap seems like the winner. A testing machine is up to install everything, write some deployment scripts, and decide on a storage layout and partitioning scheme.

If anyone has another distro to recommend that checks these boxes let me know!

I like rolling release for the desktop, but only want critical patches in any given month for this server, and a major upgrade no more than every 3-4 years. Or an immutable server distro. But it doesn't seem like networkd is an option for the ones I've looked at (Fedora CoreOS, openSUSE MicroOS), and I am not sure if I want to figure out Ignition/Combustion right now.

Next project - VLANs on Mikrotik.

OP - Navepoint makes good racks for reasonable money. I have a Pro series 9u from them and it went together without any problems. It's on the wall with a pretty big ups in it.

Finally get a cheap mini PC so I can stop running my gaming rig 24/7 for jellyfin. Looking to start self hosting few other services if that goes well.

Goals: keep it running

1. don't break stuff
2. upgrade to microOS from Leap, without violating step 1
3. reduce the physical footprint of my server (currently in a massive case, would like to go to mini-ITX)

My city is also planning to roll out fiber, so upgrading my network may become a priority if that happens. My current ISP is limited to 100mbps, but I should be able to get 10gbit once they hook me up (though I'll probably stop well short of that).

Hardware perspective i need a nas. I got myself some piece of acer oem thats not too shit just need a case and some drives (i dont wanna just make stack of drives on top of the stack of old oems i call a homelab).

Am getting starlink installed cos shitty rural aussie internet is shit. So gonna have to do some fucking around to make that work.

Would like some local media reccommendation algorithm (can probs just write some code to dump jellyfin into openwebui and task an llm).

Gotta set up an image gen ai and hook that up to openwebui.

Gotta set up an email server to make authelia notifications not just dumped to a file.

Ohh and i got literaly no backups of anything (well except my docker composes that are on git).

Other than that we will see what i want.

Add some redundancy to it.

Find a way to copy my iCloud files to Nextcloud.

Replace Blue Iris with Frigate + Coral

Set up Immich with proper backups

Set up Peertube

Increase my storage pool to fit 100% of my local backups.

Nearline my critical backups

Move my remote backups from BackBlaze to synctoy untrusted crypt on a pie at work.

docker-ify everything, my nginx, nextcloud, pihole, jellyfin, and basically everything else is a nightmare and I can't even begin to understand how to modify the shit that ~~2023 me did~~ 2023 chatgpt spat out, so having everything in some neat docker composes is gonna help immensly

also making the Pi that everything's hosted on boot of an SSD instead of a cheap chinese SD card, but that requires money and I'm all out

10gb network, a second proxmox host and outside backup

Thank you, I didn’t realize I needed goals

Centralised identity management, particularly for machine logon, NFS and maybe a few of the services I run.

Moving my servers to Arch (EOS) as my trial for one during 2024 was successful, rock solid. Swapping my router to a Unifi Express as I am switching to an ISP which finally allows me to do so.

Double Storage space (Done!)

Done for the year already!

Hopefully I can finally get the IPv6 stack fully working.

OPNsense works, Proxmox works, LXC works, Docker works but Docker Swarm does not.

Either I move away from Docker Swarm or a miracle happens and they finally fix their IPv6 support in 2025.

From a hardware perspective I need more storage. Am thinking I'll probably end up with a second Synology NAS unit before the end of the year with 4 hard drives at whatever a reasonable price vs size point it at the time I do it (likely 12-14Tb drives at this stage). Bought drives 2 at a time last time so I'm running two RAID1 pairs right now on the existing unit - adding 4 new drives at once to the home lab will let me move all that content to the new drives and reformat the existing ones into a RAID5 array and get an extra 12Tb of storage.

The one I already have does support adding the 5 drive expansion bay, but figuring that with a second NAS I can move some of my Docker instances currently running on a dedicated laptop onto the second NAS which takes one computer out of the setup as well.

Maintenance wise I've just only done my 2024 maintenance stuff that I do each year. This year it was going through my password vault and making sure everything was synced up, had complex passwords, had two factor enabled where applicable, etc, as well as setting up unique email addresses for every service I'm using (they just forward to the same inbox) to help me track who's been selling my info. Have already found a local fast food outlet who has from that.

Have also rotated all my SSH keys, made sure they were all upgraded to Ed25519 from RSA, set up unique keys for the three devices I regularly use so I can revoke one individually if required, made sure all my hardware was running the latest updates (my RPi running my Pi-hole instance was still on Buster so I had to get that updated before I could even update Pi-hole), etc.

Also swapped my Mullvad connection on my gateway to use Wireguard instead of OpenVPN since they're dropping support later this year.

Honestly I'd love to invest in some sort of rack mounting for home, its something I should look into some more, but right now I just have a whole section of the wardrobes in my study for equipment and tech storage. It's working for now although I worry about it in summer with not a massive amount of heat dissipation in there. This weekend is supposed to be close to 40 degrees Celsius both days 🥵

I have a dual socket R620 with 256gb RAM that I never turn on (proxmox) and another box with a single xeon 1518d (esxi). Collapsing both down to a repurposed Sophos SG135 (atom c3558) with 32g ram, 512gb sata and a noctua fan (proxmox). I already use another sg135 running opnsense. I run mostly lightweight loads anymore (HomeAssistant, netbox, unifi controller) so I really don't need things turned on that have overkill horsepower. I have a separate file server that I need to upgrade sometime (old 4 core bulldozer amd) but it keeps chugging away.

• Deprecate the Raspberry Pi entry point for incoming traffic, move to NUC instead.
• Switch from PiHole to Adguard
• Move IoT equipment to separate VLAN

finish setting it up

I have all the hardware laying around collecting dust

I just want jellyfin to organize media properly.

Permissions ok, it detects the fils in the software, then the folders are just empty. I know its my incompetence but been bashing my head against that wall a while.

Certain media categories fix 1 or two podcasts and then other categories break the ones that it fixed.

Naming conventions? Metadata? File types?

One day

Get a domain and set about moving over to HTTPS with Let's encrypt and Nginx.

Learn to write an Nginx config. NPM just works so good though.

Fix my permission issues. I have my media zpool on 777 so all the LXCs work and I have to run Libation in a VM as root. I've been banging my head against this on and off for a while.

Figure out why paperless isn't saving to the correct place. Also, figure out where Paperless is saving to.

Containerise Libation.

I give friends and family access to my server via a relay, just a raspberry pi 0 with Tailscale, pihole and nginx on it. I have reasons for going this route. Anyways, get a couple more of those into the wild. Also streamline the process somewhat.

Learn to and create an ACL config for tailscale so I can have services access nothing, users access services, and admins access everything.

Transition my main host to Linux, maybe Plex to Jellyfin, setup a switch (have an RS900 and access to acquire a free CS2960), a UPS or two. I may also wind up getting my hands on some PoE cameras and APs. Run some cable too.

Replace proxmox with incus.

Thinking about setting up a NixOS or Guix firewall/router. I like OpenWRT but upgrades are a bit annoying, although should improve with the new packaging system.

The idea of having a single config file I can deploy on new hardware almost immediately is very appealing, however.

Hardware-wise:

• Reorganize my networking closet and rack up my switches
• Replace my core switch with 10 gbit, connect up 10Gbit fiber to my laptop dock and one of my nodes still on copper
• Add 3 more nodes to my cluster with nvme storage so that I can start an erasure-coding pool in ceph.

Software wise, too many projects to count lol