Hellmo_Luciferrari
I want to self host more, but power draw is a concern.
So I have gone the route of running to Pi 4 8gb models as my hosts of choice.
So far I am hosting:
Non-Docker:
- PiHole
- Unbound
- Wireguard (and Wireguard-UI)
Docker:
- ForgeJo
- Dozzle
- Homarr
- LinkWarden
- Traefik
- Watchtower
There are a few other services I want to get up, but I haven't gotten around to it:
- Jellyfin
- Immich
- Nextcloud
As to why:
- ForgeJo to host my own git repositories (Docker Compose files, Chezmoi dot files, Miscellaneous configs)
- PiHole for ad blocking
- Unbound, well, having my own DNS
- Wireguard so I can connect to my home network
- Dozzle for easy log checking for my docker containers
- Linkwaren so I can backup bookmarks in a privacy friendly way
- Homarr for easy access to other web services I host
- Traefik so I can resolve IP:port to a hostname with SSL certificates even though everything I host is internal only
- Watchtower to update my Docker containers
You can still use PiHole as your DNS when not home if you setup a VPN. For me that was the route I went.
That worked, thank you!
I don't know what I was expecting, but a CAP file wasn't it. I thought it would have just been a BIN file of sorts. Though, I guess now that I think about it, it has been a while since I have done BIOS updates in any other way than through an executable running some sort of flasher mechanism.
Thanks!
Looks like for my mobo they offer an exe, but also a CAP file, which may be a bios update file, who knows. More research needed I suppose.
However, I am at least on the latest as of now since it was back in May that my bios last had an update, and I only switched in the past month.
I haven't investigated updating via USB for my bios. But that likely is the least fuss way to do it.
I will likely have to do some tinkering, and more reading up on this from the documentation I am thinking. I am getting HTTP 200 statuses basically across the board. When going to the FQDN it doesn't redirect to the PiHole admin page like I was expecting. Again, likely some configuration that I have wrong.
Begrudgingly 2 of the 3 are Google email addresses, and 1 is a Microsoft email address. I will however be ditching both of those providers for something a bit more privacy focused soon and making those addresses burner addresses.
Shows in traefik, no errors there.
I hate to report back, but something isn't quite working for pihole behind Traefik.
running "docker logs traefik" returns no error, and yet no certificate was presented to my pihole.
Not sure what else I might be missing or that I might have wrong.
I know I don't want to open up any more ports than I have to, but you're right, that does sound like another alternative to setting up VPN.
Since I access more than just my pihole when connected to my home network. And because I want access to my home services, and don't want to open up access to the public, opening one port and connecting to VPN is the way to do it. I have one port opened up for my VPN, and in order to connect you have to have my IP or my domain pointed at the IP, and you have to have a Wireguard profile setup, and know what port is open. So that does help a tad bit with my security concerns.
Edit: how would I go about that if I felt so inclined? Any tips?