Immich/PhotoPrism/whatever you use for image backup. Cloud providers are snooping through your shit.
Plex/Jellyfin for streaming
Sonarr, Radarr, Prowlarr, SABnzbd, qBittorrent to support the streaming service(s)
Pi-hole. Get rid of at least some ads on the network level. Maybe add unbound for a faster DNS response.
I like AdGuard Home myself.
Using unbound on opnSense with blacklists. Works wonders and do not require an additional device.
I use unbound with pi-hole inside an Ubuntu lxc container. No additional device needed.
Pi-hole can run inside a docker container no problem. In fact I have it running on my unraid server that way.
I keep one in a docker container and one in an actual pi, that way I can perform updates and upgrades without interrupting DNS service at the house.
This is the way.
Paperless-ngx
The rest is already in the other comments
A reverse proxy, in my case Caddy.
How did you set up you SSL certificates, are you using a self signed certificate or do you use a custom subdomain?
Caddy automatically sets up certificates for you. Since I don’t want my subdomain to appear in certificate transparency logs, I use a wildcard certificate which requires using a plugin for my DNS provider.
Thanks, that sounds good. Can you explain more how you used the plugin for the wildcard certificate?
To get a TLS certificate from Let’s Encrypt, they need to verify that you are in control of your domain. For regular domains, this can be done via HTTP, for wildcard certificates they require you to create a DNS record with a special token to verify ownership of the domain.
This means that in order to automatically obtain a TLS certificate, caddy needs to interact with the API of your domain registrar to set up this record. Since there are many different providers, this isn’t built into caddy itself and you require a version that includes the corresponding caddy-dns module. Caddy modules need to compiled into the binary, so it’s not always trivial to set up (in my case I have a systemd timer that rebuilds a local container image whenever a new version of the docker.io/caddy:builder image is available).
Duh, you need a reverse proxy to host most of the stuff (if you want to run more than 1 service and use HTTPS). I use Traefik btw, though I heard Caddy is very easy to use.
Nextcloud, vaultwarden.
Arr stack plus Jellyfin/Plex, Nextcloud and Gitea.
In terms of most used for me, it would be:
- Nextcloud: contains my contacts, calendar, and photos synced with my phone, as well as access to files on my server from any web browser.
- Home assistant: both automated and remote control of your lights, thermostat, etc.
- Audiobookshelf: only really useful if you have an audiobook collection
- Vault Warden: self-hosted bitwarden. Not really all that important to self-host, since a bit warden’s clients are open source.
- Frigate: only useful if you have security cameras.
- Navidrome: only useful if you have a music collection.
- Jellyfin: only useful if you have a movie / TV collection.
Gonna also throw in: Nextcloud Memories.
It makes the photo organizing part of NextCloud AMAZING. I’m so happy I got to dump Google Photos for good.
Audiobookshelf also supports podcasts (and ebooks, but I haven’t tested that).
Cool, I didn’t know. Going to try it out.
Jellyfin is also useful for music collection. I tried both it and Navidrome to start with, and ended up only using Jellyfin.
Audiobookshelf also finds, manages, streams podcasts. After Google killed off Google Podcasts, ABS has been an even better replacement in my experience.
Depends on what your usecase is for what is “essential.”
I think keeping household documents, taxes, medical bills, etc… In a local only paperless-ngx instance is quite essential to the organization of a household where everything is searchable and able to be organized on multiple levels compared to a simple document folder on 1 computer.
Having a document or self-hosted wiki with an in - case - of - death document that gets backed up in an encrypted, but accessible by family place is probably the most “essential” thing.
Some WebDAV server, can be Nextcloud but actually something more lightweight is better.
Also a XMPP server is very nice to have. Even if you don’t have many contacts on it (yet), it works very well has a notification service and can even be extended to act as a Unified Push distributor.
Radicale is next on my list
and can even be extended to act as a Unified Push distributor.
wait wait wait wait.
That works? Teach me how!
Nextcloud.
I was hosting nextcloud at home for years. Then when I worked in a Datacenter I got to host some servers there from free so I set up a two-node proxmox with nextcloud and some other stuff. Now I don’t work there anymore and I really felt the hole nextcloud left, no more notes syncing for notes, tasks, calendar, podcasts no more place to upload my photos from my phone … So now I’m hosting nextcloud at home again.
I also host jellyfin which is nice but if I don’t have it doesn’t actively hamper my workflow.
I used to have a Nextcloud instance on a shared webhost… It ran like shit but you can’t beat the storage space… VPS storage is expensive.
Now I use syncthing on my home server
Jellyfin/Plex like many have mentioned.
I personally like Syncthing for petty much everything else. For general file syncing of course. But also with Joplin pointed to a synced directory for notes. With keepass as a password vault. With synced config directories for some apps across devices like newsboat for RSS, and neomutt for email. I also used to use it with rtorrent via a watch directory, though I currently am using a seedbox for that purpose.
VPN (openvpn/wireguard) is a good idea if you want to access your services outside your local network, without exposing them all globally.
Same, Syncthing is amazing. I use it with Mobius Sync on iOS and have it synching my keepass, Obsidian vault, photos, and a folder for random file transfers between devices. It’s so much better, faster, and more stable than all the most popular corporate cloud providers.
I use my searxng instance several times a day.
DNS server/cache/pihole. If that goes down I can’t browse anything.
I also selfhost a SaaS that I built. It’s essential to me that it’s available to my customers although I don’t use it personally.
It’s not very exciting, but: Network UPS Tools (NUT).
Keep everything in good shape in the event of a power outage.
I use NUT with an Eaton Ellipse but it periodically stops working and I’m forced to restart the container
Huh. Losing USB access?
Yes but I don’t know why
I’m running NUT on the host os - no container. If that’s an option for you it will probably be much more reliable.
Audiobookshelf, Calibre-Web, Plex/Jellyfin, FreshRSS, NextCloud, DokuWiki.
-
Samba (I can move files now, sweet!)
-
Jellyfin (I can watch stuff, sweet!)
-
Qbittorrent-wireguard (for pirating copyrighted material from the internet illegally)
-
Somesuch Wireguard solution (for accessing the backend and doin stuff)
-
A proxy somewhere else
The rest is extra. This gets my usual goals completed pretty well.
for pirating copyrighted material from the internet illegally
I’m pretty sure that’s not the phase we use now
-