In my thinking, redundancy, defense in depth…maybe? May be overkill. I run them both with no issues.

Honest question: Why fail2ban? Have you considered crowdsec ?

Why not both?

Well, I’m not sure what ‘janky’ encompasses for you but when you add themepark, it looks much better.

Is there something specific you don’t like about Calibre Web? Might help pinpoint the recommendations.

How about Chevereto

I wouch for the VPN route…

Found Barry Kripke

• Portainer for Docker containers
• ssh for most real administration tasks
• Olive Tin for repetitive tasks like sudo apt update
• Netdata for server metrics and ntopng for metrics on standalone pFsense box

I don’t give access to any of my services to anyone, especially family or friends. LOL However, you could investigate Tailscale, Headscale, Wireguard. Additionally, if you set up Cloudflare Tunnel/Zero Trust, you can give individual users a unique access to your server. For example: You can allow alice@mysupercoolserver.com to access https://home.mysupercoolserver/shell but deny bob@mysupercoolserver.com. Only allow bob access only to https://home.mysupercoolserver/media.

Alex “Star-Burns” Osbourne

Had to be a blues guitarist.

Well, it’s been a minute since I messed around with Yunohost. They used to list apps that didn’t work in their catalog. Maybe they have cleaned that up over the years.

I’ve always wondered why they keep listing broken apps in their catalog. I guess in hopes someone fixes it.

Oh I still tinker, but as far as deploying something big, I got what I need/want. I am looking for a couple things, but so far have come up empty handed.

Since I have my server all set up the way I want, I’m not adding a lot of containers any more. But I do look forward to the Command Line Corner. Pretty cool stuff most of the time.

We’ve been communicating with pictures ever since the ancients scrawled pictographs on cave walls with a burnt piece of firewood.

Diversity? Choices? Personally I use Readeck for ‘read it later’, LinkWarden for actual links, and Karakeep for archiving.

Now — what — would — make — you — say — a — thing — like — that?

OP, I’ll have to admit that Linkwarden is one of my favorite and more often used app in my stack. It just works. And I really like the iOS app, Oh, and those emojis…I like them. They are relational to information, and helps me equate a picture with where to find certain information, since I am a visual person.

router modem combo devices and really cheap routers or access points.

I’ve always thought that combo devices are probably good for the average, casual internet user, but not high end, extreme users. I want the best (within reason of course) delivery mechanism that I can get to route the signal from the street to my devices. It’s worth the extra $$ to me.

$409.00

The firewalla is a heavily optimized amlogic based pi. it’s not special.

Damn sure seems special. WOW! What features are/were you running on Opnsense?

I looked for specs on the Firewalla Purple. However, to compare, I’m running pFsense on an Intel Celeron CPU J3160 @ 1.60GHz/4 core/32gb RAM with pfblockerng, suricata, ntopng, and Tailscale, unbound, with customized and publicly available DNSBL lists.

Load average 0.80, 0.51, 0.45

As @frongt@lemmy.zip said, the more ‘things’ you have running, the more load, and 800 Mbps is about what I can do even with a gigabit connection and CAT6 pulled for every connection. If I were try to run huge generic block lists, I will start peeking, which is why I run mostly slimmed down, targeted, custom lists. When you stop and think about it, the amount of list checking, resolving, etc, it’s really pretty amazing.

I tried a while back to see if I could better the 800 Mbps, but nothing produced any thing much higher than the standard 800 Mbps which frustrated me. I just finally accepted the fact that getting as close to a gigabit connection would be the best I could do with what I’ve got. Being the type of person I am, I was rather verklempt I couldn’t squeeze that extra 200 Mbps.

Thank you for the screen shot.