![open vpn unraid setup open vpn unraid setup](https://nscdn.nstec.com/can-you-run-nord-vpn-on-an-unraid-system-.jpg)
- #Open vpn unraid setup Patch#
- #Open vpn unraid setup upgrade#
- #Open vpn unraid setup software#
- #Open vpn unraid setup windows#
Docker (Compose) will save you a lot of work IMO, if you want to get into this, keep a few things in mind: If I have no options or the best service in a given space is written in COBOL or something equally bad, I'll still take that. If I have a large number of possible services in a given space, I usually gravitate towards Go, because most Go applications are closer to 12-Factor compliance and generally stability than, say, most Python applications. I don't subscribe to any security newsletters or have any automated new version monitoring in place (yet), but I'm planning to do that at some point so that the home lab can run itself with minimal intervention beyond changing a few version numbers in docker-compose files and rerunning my "redeploy everything" script.Īs for languages, it's a very marginal factor. I don't spend very much time on maintenance - if a service is troublesome, it's not worth my time and gets the cut. Not OP, but I'm self-hosting for similar reasons. Nix has a pretty steep learning curve, but considering its power, I think it's absolutely worth it.
#Open vpn unraid setup upgrade#
It only starts eating time when I want to add or upgrade some element to the system, but I always make sure to never do any action that isn't captured in Nix config and backed up, so that I don't have to come back and figure out what exactly I did or how something works again.
#Open vpn unraid setup Patch#
I rarely need to fix anything - it's been pretty reliable - I feel like with each patch I make to my config (which is all checked into git), the system gets more reliable and reproducible - 2 steps forward, no steps back. You an also use the latest stable release of Nix and selectively choose unstable packages, which is probably the way to go. Upgrading on Nix is pretty easy - just bump your lock file and it will get the latest packages, assuming you are on the unstable channel. So I'm not too worried about the security aspect. I use Wireguard as a pinch point into my network to access most services. I also run all services in docker and my network uses VLANs behind an OPNSense firewall. And if I do need to re-install, it should be mostly a one-liner. I used Nix intentionally as it's a rolling release and also it's declarative and intended for reproducible deployments, so I don't need to deal with an OS like Ubuntu that slowly gets crufty and out of date and needs a clean-up or upgrade or complete re-install. Initially I spent a lot of time as I used it as an opportunity to learn Nix/NixOS. Smokeping - use it to collect data to rub into Spectrums face when they go down. Only a couple are public (contacts and calendar), but the rest become available when the VPN is on. HAProxy + LetsEncrypt (on OPNSense) - setup to provide subdomains for each of the services at home. Wireguard (on OPNSense) - allows me to have an always on partial tunnel VPN on my phone and laptops that allows access to home services while remote, and also allows me to use my Ad Guard DNS.
#Open vpn unraid setup software#
OPNSense on a protectli box - amazing open source gateway software that does everything.ĪdGuard Home (on OPNSense) - DNS based ad blocking
#Open vpn unraid setup windows#
Home Assistant - automate my media center, as well as control outdoor lights and door locks, and check if any doors or windows are open or unlocked when I'm away.
![open vpn unraid setup open vpn unraid setup](https://i0.wp.com/www.thesmarthomebook.com/wp-content/uploads/2021/04/Unraid-net-app.jpg)
I use Neo Backup to take a snapshot of all apps, so the phone should theoretically be restorable from scratch. Xbrowsersync - sync bookmarks across device Nextcloud - for caldav and carddav calendar, contacts, and tasks One of my goals is to be able to deploy all this again from scratch with minimal effort, and I think I succeeded, though haven't had to test it yet. This is all running in docker containers on NixOS (other than OPNSense), with automated restic backups to a NAS as well as Backblaze. I've also got LineageOS + MicroG on my phone. My main goal is to replace cloud services so I can be Google-free.