the prophecy has been fulfilled
Rescuer6394
joined 1 year ago
i'm not good with names.
my server's name is... server
in Italy, there is literally a law obligating houses to have a bidet. the separated from the toilet kind.
Available from internet:
- jellyfin
- jellyseerr
- immich
- paperless-ngx
- owncloud ocis
- traefik
- homarr
Available only from local:
- the *arr stack
- qbittorrent
- jackett
- watchtower
- apprise
- netdata (kinda new, still have to fully understand how it works)
- portainer
- speedtest-tracker
- homepage
Security
All the services available from internet, just goes through traefik to terminate https, I rely on the build in authentication of each service. To add another layer of security, I have fail2ban active on all those services.
I have a public IP, and I have open on my router ports 80, 443, a random port for ssh and vpn.
Hardware:
Memory:
System RAM: total: 8 GiB available: 7.73 GiB used: 4.46 GiB (57.7%)
Report: arrays: 1 slots: 4 modules: 2 type: DDR3
CPU:
Info: 6-core model: AMD Phenom II X6 1090T bits: 64 type: MCP cache: L2: 3 MiB
Graphics:
Device-1: NVIDIA GP107 [GeForce GTX 1050 Ti] driver: nvidia v: 535.98
docker compose files
All the docker compose files + how I configured everything is available at: https://github.com/simone-viozzi/my-server
Bonus:
Since I like the ability of btrfs to do snapshots, I created all important docker volumes as btrfs subvolumes. Then I created a backup script that literally sends the subvolume (encrypted) to an external cloud. This does not allow incremental backups and most likely is not the best backup solution... but it works... the repo is: https://github.com/simone-viozzi/btrfs2cloud-backup
yes this would be good, it would avoid being obligated to open a community to block them.