Hi all!
I have decided to setup and selfhost my own private Lemmy instance.
I will be doing with docker (podman, actually).
Should I host at home or use a dedicated VPS?
Anybody selfhosting its own Lemmy?
Do you guys have any hints for me?
Shimitar
Me
- 22 posts
- 331 comments
Joined 3 years ago
Cake day: April 29th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
- 1 year
Thank you! This is really interesting, will look into it.
- 1 year
I have heard of headscale, and agree that would fix my allergies.
But I don’t have a use case for that either, so…
Maybe in the future, who knows.
- 1 year
Thank you, I am allergic to tailscale (joking).
I already selfhost lots of stuff for family and friends using reverse proxy+https a public domain(s) and a VPS tunneled back (wireguard) home since I am behind CGNAT. And authelia on top of it all.
My setup should be safe enough also for a Lemmy instance.
- 1 year
Ok, indeed, will go with latest for sure, thanks
- 1 year
Thanks! I have a more powerful hardware than a pi, how is it about bandwidth?
I will have two, maybe three users.
Lemmy selfhost hints
English
- Shimitar@feddit.itto
1 yearNo please, hover links are just useless to tablet and mobile users, anybody without a mouse actually!
- Shimitar@feddit.itto
Mostly not being dependent from a specific vendor, that’s all.
I prefer to use a VPS of my choice that I can replace when I want or need to.
As far as its backed by wireguard its safe enough I guess.
Stop spreading FUD. Syncthing for Android is very well supported and, while the official client will not have updates, there are other clients that are actively developed.
- Shimitar@feddit.itto
Sorry third post. Trying to summarize.
-
Get external access. Either via port-forward (you lucky American) or via VPS+ssh-tunnel or VPS+wireguard. Stay away from an hard dependency like tailscale and cloudflare (my personal opinion).
-
Setup a reverse proxy with SSL certs via let’s Encrypt (don’t go wildcard, no need to, just add complexity)
That’s the concept, implementation requires clearly extra steps…
See my wiki (https://wiki.gardiol.org/). O describe both the simple and the complex solution. But to be honest, the complex solution is not fully described yet.
-
- Shimitar@feddit.itto
If you need also external access, because you are behind a CGNAT or in general have no public IP at all, get a VPS and setup some tunneling.
I don’t like tailscale/cloudflare dependency so I have a different solution.
I have documented it all here: https://wiki.gardiol.org/
- Shimitar@feddit.itto
Slap a good reverse proxy in front of it (nginx I what I use) and set it up with HTTPS using let’s Encrypt. For added layer of security setup also some SSO like Authelia.
Or just go the VPN way but then, that will not be access from internet, only via VPN, only you will be accessing it.
- Shimitar@feddit.itto
Thanks, good to know alternatives to Lemmy.world!
Nothing against .world, but variety and alternatives are the gist of lemmy.
- 1 year
Thanks for the podman restart suggestion!
healthchecks.io seems not free or at least, very not open?
- 1 year
Nice tool! Simple to setup and pretty lightweight. It seems it cannot restart services tough, not monitor them specifically…
Service monitoring
English
Hi all!
i have a nice setup with some containers (podman rootless) and bare metal services (anything i can install bare metal, goes bare metal usually).
I used Monit, in the past, to keep an eye on my services and automatically restart something that for any reason goes down. I stopped using Monit because doesnt scale well on mobile browser and it’s frankly clumsy to configure.
I could go back to Monit i guess, but i am wondering if there is anything better out there to try.
A few requirements (not necessarily mandatory, but preferable):
- Open Source (ideally: true open source, not just commercial sulutions with dumbed down free verisons)
- Not limited, or focuesd, on containers (no Watchtower and similar)
- For containers, it can just support “works” or “restart”
- For containers, if it goes above the minimum “works” and “restart” must support podman
- Must support bare metal services (status, start, stop)
- Must send email or other kind of notifications (ok IM notifications, but email preferred)
- Should additionally monitor external machines (es other servers on the LAN), or generic IP addresses
- Should detect if a web service is alive but blocked
- No need for fancy GUIs or a Web GUI (it’s a pro point, but not required)
- No need for data reporting, graphics and such aminities. They are a plus, but 100% not required.
What do you guys use?
First copy on offline USB disk on my server itself. Disk is turned on, backup done, disk goes off. Once a day.
Second copy on a USB drive connected to an OpenWRT router of my home, the furthest away from the server (in case of fire, I could be able to grab either of the two).
Third copy offsite on a VPS.
I use restic & backrest with great satisfaction.
Amazing, thanks, will try it out!
This is for Gentoo but very applicable to your case as well:
https://wiki.gardiol.org/doku.php?id=gentoo%3Apip