🌟 Self-Hosting Journey Update! 🌟

After weeks of work, I’m excited to share my self-hosted setup! 🎉 I’m running everything on a Raspberry Pi 500 with Stormux (Arch Linux ARM-based), 8 GB RAM, and a 512 GB SD card (planning to upgrade to SSD or NAS as soon as I can afford it). Here’s what I’ve built so far:

🔧 Services in Action:
- Development: Forgejo, Code-Server, Woodpecker CI
- Productivity: Joplin Server, Monica CRM, Homepage dashboard
- Monitoring: Prometheus + Alertmanager, Grafana, Netdata, Uptime Kuma
- Networking: AdGuardHome + Unbound, Tailscale VPN
- Tools: MiniFlux, Linkding, TheLounge
- Management: Portainer, Cockpit, Watchtower

🔒 Security & Access:
- Caddy + Cloudflare Zero Trust/Access for reverse proxy & SSO
- FirewallD + Fail2ban for extra protection

📧 Emails Powered by Zoho ZeptoMail:
All email-capable services (e.g., Forgejo, Joplin) are configured for reliable notifications.

💾 Backups: Using IDrive’s 5 TB plan for peace of mind.

This journey has been challenging yet rewarding! 🚀 I’d love to hear your thoughts—especially tips on scaling storage or optimizing performance. Let’s chat! 💬

#SelfHosting #RaspberryPi #Linux #ArchLinuxARM #Stormux #Tech #OpenSource #DIYTech #HomeLab #CloudComputing #AdGuardHome #Grafana #Prometheus #CodeServer #Portainer

@selfhost @selfhosted @selfhosting

  • some_guy@lemmy.sdf.org
    1·
    2 days ago

    It’s amazing what can be run on a single Pi board. It makes me (somewhat) ashamed of the massive compute that I’ve put behind my hobby projects. But then again, I like performance. I’m curious how responsive everything is on this setup?

    • Lanie Carmelo@caneandable.socialOP
      1·
      10 hours ago

      @some_guy Everything is very responsive. I haven’t had any trouble with responsiveness at all. Lol right now the only trouble I’m having is that I removed Monica CRM and BookStack and BookStack because of Monica accessibility needs and BookStack not really being that useful, and I’m trying to install Pleroma to play with that, but Docker’s having some weird DNS issues where it keeps trying to use IPv6, which my ISP doesn’t support, even though I’ve disabled it in my daemon.json.

      • some_guy@lemmy.sdf.org
        1·
        9 hours ago

        Thanks for the feedback. Now I know I fucked up by over-buying when I decided to return to playing with servers last summer. I at least had plausible deniability in my own head. Oh well, cheers.

  • tofuwabohu@slrpnk.net
    3·
    2 days ago

    Sounds very cool! If I understand correctly, you are running docker directly on the bare metal Stormux, so no VM in-between. You mentioned using some external provider for backup storage, how exactly do you do the backups themself? Do you have a script/tool that saves the config and app data for each of your services?

  • seang96@spgrn.com
    1·
    2 days ago

    Wow IDrive looks extremely expensive for backups, unless if there is something I am missing.

      • seang96@spgrn.com
        1·
        18 hours ago

        I guess its comparable to others in ways with free api calls / egress but they charge a flat rate higher than others on storage.

          • seang96@spgrn.com
            1·
            17 hours ago

            Yeah I was looking at all of their services tbh but that one looks expensive at first ignoring the deal ~$8/mo. I suppose if you are actively using 4+ TB its not too bad though.

            • MangoPenguin@lemmy.blahaj.zoneEnglish
              1·
              10 hours ago

              5TB for $10/mo is very cheap, I don’t know of anywhere else that comes close right now. Hetzner storage box is $13/mo for 5TB so that’s probably the closest thing.

              If you’re using under 2TB then their E2 service or Backblaze B2 might be good options, but you have to manage your own backup software.

  • Xanza@lemm.eeEnglish
    11·
    2 days ago

    I really love home labs but this sounds incredibly over engineered for its purpose… I would expect a set up like this for an enterprise environment…

    • Lanie Carmelo@caneandable.socialOP
      11·
      2 days ago

      @Xanza Not sure what you mean. I wanted to use my services with my domain. I tried a reverse proxy by itself and it wouldn’t work because my ISP blocks ports, so I set up Cloudflare instead. Then I found out my services would work better with Caddy, so I set that up. I also originally wasn’t using Unbound, but then I realized my services were having trouble communicating, and I thought it would help to have more control over DNS rules, which it has.

      • Xanza@lemm.eeEnglish
        11·
        2 days ago

        Then I found out my services would work better with Caddy

        Exceptional idea. Cloudflare is nice, but Caddy will always win IMO. Additionally, considering you were able to get Caddy working, that simply drives home that unfortunately your reverse_proxy didn’t work because it was somehow misconfigured. Caddy is also a reverse_proxy.

        My comment is pretty much what I said. You have an extremely complex environment that you’re not fully making use of. For example, you’re having issues with a reverse_proxy, but you had Tailscale presumably the whole time. Why not just use your VPN to reverse_proxy your requests if you were having issues?

        Also using Caddy + Cloudflare is fine if you want to use cloudflare for DNS, however, Caddy handles all certificates itself. So you have Caddy, which can handle all the SSL certs itself, but you put Cloudflare on top of it to manage SSL certs. It’s just convoluted.

        It’s a good environment, but a little overkill.