I got tailscale cert to work but I feel kind of bad about learning tailscale instead of headscale
this post was submitted on 19 Oct 2025
118 points (96.8% liked)
Selfhosted
52553 readers
520 users here now
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
-
No spam posting.
-
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
-
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
-
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
-
No trolling.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
founded 2 years ago
MODERATORS
I was going to read into these. What benefits do you see in headscale?
load more comments
(2 replies)
Have you looked into netbird? I have been thinking of setting that up over tailscale
Set up Zipline to share bigger files with my friends.
Updated several Syncthing Server and one of them that comes as Yunohost Package got an new ID.
So that little thingy flooded all my other Syncthing Servers with Sharing requests... Its pretty anoying and surely its that one that serves the outside Backup...
I've been deploying Gitea (or Forgejo, still can't decide), but I've fallen into the Ansible rabbit hole and can't get out. Also learned Terraform in the last week and I'm still on the fence about using it in my homelab. It's nice for the cloud but I don't think it's as useful on-prem.
Forgejo has everything Gitea has, with more and being more open
My concern when it forked was that forgejo would last a few months and then fizzle out.
That doesn't seem to be the case.
load more comments
(1 replies)
I installed gitlab on mine. Time to organize my projects!
Cool, have fun! Any particular reason for Gitlab over other forges?
…. I didn’t consider that there might be alternatives lol. :p but it is what we’re use at work, and I’m just a dumb cat with some servers! :3
I just heard it's a bit more of a hassle to set up than like gutes/forgejo, but if you already got that, enjoy!
load more comments
(2 replies)
I actually did something for quite a while. Finished long overdue wiring for outdoor access point and one more camera, replaced a main switch since the old one started to behave unreliably, installed frigate (which still needs some work), cleaned up some wiring while messing around, updated a bunch of firmwares, replaced switch in garage to managed one and made some changes on my workstation and some other minor stuff.
Next would be to move cameras into their own VLAN and harden that setup a bit. And I really should get around on better backups for my VPS. But it's a new week coming up, if the work isn't too busy I might get something more done.
I actually just wrote about today's fun experience! https://gotosocial.michaeldileo.org/@mdileo/statuses/01K7YKQ9584YBY1QTYQ8RMW7SS
almost done re setting everything up after a catastrophic failure (ended up replacing multiple drives, the CPU, the motherboard, the psu, and the ram).
now I'm just running long command after long command, waiting for drives to zero, ensuring extended smart checks pass on new drives, cloning to my backup drives...
this things been down for a few weeks and I'm so excited to have it back up soon!
anyways, moral of the story is, the 3-2-1 strategy is a good strategy for a lot of reasons. just do it, it may save your ass down the line.
I finally got my home services covered with my website's wildcard ssl. Which is great, because now I can setup ELK Stack and setup an auth portal on my vps, and get Plex and gitlab out of the house securely.
At this point my whole setup is mostly in maintenance mode - I've got everything I need up and running, making some minor changes here and there (like swapping out StirlingPDF for Bento), and keeping things up to date. I only started this hobby about 6 months ago or so, and I'm really satisfied with where things are at. We'll see when the next Big New Thing arrives.
I've been trying to convince a VPS to run two instances of mariadb - one for local databases, one to replicate the homelab. Got mariadb@server and mariadb@replica sorted out through systemd, but now stuck on replication from mysql to mariadb. Looks like I'll be ripping out mariadb and putting everything on mysql.
Have you checked if statement-based replication works from mysql to mariadb?
load more comments
(2 replies)
load more comments
(2 replies)
Finally finished setting up and testing a Peertube instance. The video stuff and object storage related things certainly make it more involved than other fediverse software, but overall it is working quite nicely. Just need to find some workable solution to using GPU acceleration in containers, but I think I mostly figured it out (might work after a server restart, but my sweet, sweet uptime makes me procrastinate on that 😅 ).
load more comments
(2 replies)
I have noticed that Microsoft and google are trying to scan my domain for /php-myadmin and similar links that I thankfully do not have.
I had already fail2ban running but it failed to ban a single IP. I did setup custom filters that would ban admin panel scanning attempts but somehow now it also bans my home IP and my phone 5G ip sometimes. No idea how to fix it so far. Also, this filter/jail doesnt necessarily jail everyone attempting to reach these links, just sometimes it does.
I'll have to look at my fail2ban logs and see if I'm having similar issues.
It should be possible to mod your jail to whitelist an IP range on your local Network.
I'm doing that on one of my jails.
load more comments
(1 replies)
I threw a thinkcenter in my laundry room and did the bare minimum to securely SSH into it (fail2ban, nonstandard port, root login disabled, can't login with password, etc), to be used as a testing platform for building my workplace a new website.
Just gotta relearn HTML/CSS and figure out what platform to use.
Also set up traefik/Authelia/maybe Anubis for the new domain and block any access outside of my home or workplace.