I using hetzner as a VPS provider for hosting my kbin instance. There are probably cheaper hosting companies out there but they works and have never had any problem with them.
So you install your own server (apache or nginx or whatever) and also run your own postgresql from the same unmanaged space? And the server software serves both the php app and the database?
Thanks for answering my questions. I've always used managed hosting but it's becoming too limiting and I'm seeking to expand my options.
I use pfsense's HAProxy integration and a combination of Cloudflare or Lets Encrypt certificates for external stuff. For internal-only stuff I have a root CA I distributed to my computers that I use to sign certificates. My docker box that serves most of my internal stuff has an nginx-proxy-manager container with a wildcard certificate so that I don't have to sign one for every new subdomain on my docker host, and the various containers with services in it talk to it over a private docker network. Buying a cheap domain and managing it through Cloudflare simplifies a ton of stuff.
Why not use a self-hosted Nextcloud server? It has a lot of features that could make what you do a lot easier. Share notes, email, pictures, files, video. There's a lot of plugins available too.
I will take a look at nextcloud! Are file transfers to nextcloud robust against network dropouts? The reporters file video from remote villages so they need something that can take slow or interrupted connections.
As far as the money, you could use DuckDNS. It's free with the certificate. Not wanting to expose your network, I'm not understanding why you would want to use https. You could use wireguard instead.
Caddy reverse proxy handles that for me. I just set my domains' DNS to point to my public IP, where port 80 and 443 are forwarded to a server with Caddy listening.
Pretty much everyone uses Let’s Encrypt for their certs. They are free, and often built in to your reverse proxy.
Since you have multiple services, I’ll assume you have a reverse proxy set up. So just google Let’s Encrypt and the name of your reverse proxy and you should find a tutorial.
I’m not sure how using DynDNS impacts on this. If you have your own domain, use Cloudflare Tunnels. You install the software on your server, and it keeps a connection to Cloudflare. No port forwarding, no problems with IP addresses, you can use it behind CGNAT. It also will provide SSL for you for the browser to Cloudflare part, but I highly recommend still setting up Let’s Encrypt for the Cloudflare to Server part.
I don't use DynDNS but I do have two HAProxy servers, one locally and the other on a VPS. The VPS has a cron job that renews the certs every three weeks, and my local server rsyncs them to the right place every so often.
Then, on my pihole I send requests for my services to the local IP but on the same domain. Because the certs are looking at the domain name and not the IP the cert is valid both on my LAN and from the Internet.
Look up Let’s Encrypt and their tool Certbot. They generate free https certs. Though I’m less sure about if you can use it on dyndns? You may need to buy a domain name and CNANE it to your dyndns name. I like nanecheap for domain names though if you’re new to the concept.
There’s a rabbit hole of consequences and alternatives to what I just wrote though. Does dyndns hide your home IP? I’m not sure tbh
It would come down to the specific DNS provider you’re using and what their GUI is like. in theory CNAMEs are dead simple though.
DNS names are just stored as text, so if you use tools like mxtoolbox you can see the DNS records for a given site. Following the standard text format, a CNAME formatted like below would create www.example.net that would use the IP address from www.example.com
I have free wildcard certs provided from my domain registrar. I host with Kubernetes, which allows for TLS secrets using Ingress. For external/public usage, I also have an NGINX reverse proxy in front of it.
I use letsencrypt for everything. It’s mostly simple to setup and you’ll get certs for free. If you set it up right, they’ll automatically renew forever too
David (primary author) seems a great guy and works pretty diligently on this.
It worked well enough as a test instance for me a bit ago. I guess I could stand it up again and see just where it’s at now. Gramps, for me, is still by far the best family tree software assuming you don’t want anything cloud related.
selfhosted
Activo
Esta revista es de un servidor federado y podría estar incompleta. Explorar más contenido en la instancia original.