If the router is the single point if entry at your edge then I’d run fail2ban on it assuming it can see the traffic

What made you switch to it over tailscale+headscale? Currently that’s been doing everything I need without issue.

Check out the Teamspeak6 beta. I don’t know about offline messages but it addresses all your other complaints. I moved to it from Mumble somewhat recently and have been very happy with it.

Machine wise anything will work. Give yourself a chassis with room to add more disks down the road or just build your storage setup in a way that gives you what flexibility you need (though that tends to come with sacrifices).

I use Nextcloud for general file syncing between devices as occaisonal small file sharing.

Mulvad is great but if you need port forwarding you’ll have to look elsewhere as they no longer provide that feature.

I use keepass2android and “sync” via its native WebDAV support with my nextcloud instance as the source. Been working great forever.

Ah, well, then perhaps I will monitor it.

For internal use I just monitor everything with zabbix. What Ive been wanting is (as I said) a public “status screen” that my few users can hit just to verify if things are in fact down or if it’s just them.

Ok, you might have finally gotten me to consider a “dashboard”. I’ve been wanting a simple public facing service status page and this sounds like a nice solution.

Haha, I’ve never had to deal with something quite that high pressure but I’ve definitely been a little looser than standard during at least a couple emergencies.

Kernel upgrade WHILE you’re out for beers!

Someone just posted their own short reviews of a slew of wiki options in this community so maybe go take a peek at that.

Personally I’m finding I like Otterwiki quite a lot though I’ve not yet dug deep into it.

I use portainer extensively and am quite fond of it. I normally live on the CLI so picking a GUI tool over cli management is unusual for me but I’ve found portainer largely just makes typical management easier and doesn’t get in my way at all.

For your other questions I have no answers. I self host everything so to me “what is worth running” is not a question that makes sense. I run what I need and my needs therefore define what I run.

I stick to IRC over matrix.

500Mbps isn’t a measurement of electrical consumption

To each their own but I think I prefer to stick to Nextcloud and just continue to keep things organized the old fashioned way for the most part.

Though for documents those all get fed to paperless-ngx

That sounds fine. I would only say don’t use Syncthing to actually make your backups. My preference and recommendation is restic, possibly combined with the helper utility autorestic.

Lidarr isn’t really meant for that so you’re always going to fighting things I unfortunately

NPM likes to eat the let encrypt requests which is what I’m assuming is breaking the cert gen inside the container. I believe you can work around this, but honestly I’d recommend just moving to a more advanced but more flexibile proxy solution.

Personally I recommend Traefik. There isn’t a friendly gui to help you but once you wrap your head around it things just work. It also allows for defining proxy parameters right in your compose file via labels so it takes out the need to log into NPM and manage proxy entries there. Just deploy you’re compose fils and you’re off.

As far as making what you’ve got just work, you can either try to get NPM to stop intercepting the LE cert requests or hack up the signal-tls-relay container and jam the NPM certs into it. I wouldn’t recommend either of these options though. I’ve been in a similar scenario and it’s this among other reasons why I moved off NPM. I started with NPM because I thought it would be simple and easy and it is, right up until you want to do a thing even slightly outside of its fairly limited box.

To my knowledge there is no such thing available however you have just enlightened me about TS6’s featureset. It sounds like it is the exact solution you are asking for (and one I’m going to immediately try out myself.)

So you’re going to start backing it up immediately then right? Right?!?!?

I don’t pay any mind to example compose files. My are all quite custom anyway. Only thing that matters is paying attention to changelogs and watching for breaking changes.