I run docker exclusively in VMs and VPS and it works fine.

https://github.com/grocy/grocy/issues/828

So Grocy doesn’t directly support OIDC/SAML but it does support auth being passed along via the reverse proxy. This is how my grocy is configured. No double logins required.

A VPS is already a VM and nesting VMs, even if you get it to work, is generally a Bad Idea™️.

What you’re asking for is squarely in “bare metal” territory. Does that reduce your flexibility? Sure. But it doesn’t entirely eliminate it. Down the road if you decide you need more RAM or disk those are things you can have added (at a cost). CPU would likely necessitate a migration to a different system so I’d keep that in mind during initial sizing. Also, if you are using proxmox, migration will be as simple as backing up a container/VM and restoring it at the destination.

Your other alternative is multiple VPSes or possibly augmenting the bare metal server with one or more VPSes.

As far as unified billing goes, just have all the services with the same provider. Most providers I’ve encountered offer both services.

I can’t speak to providers in our around Sydney, but I’d recommend checking out lowendbox.com to start your search.

Only by exposing the docker socket. And it doesn’t support managing network or volumes.

Just because something doesn’t fit your use case doesn’t make it a terrible product. Portainer isn’t meant to complement managing docker via CLI. It’s meant to be the management interface.

If you want to manage your environment via CLI, I agree, don’t use Portainer. If you’re content (or prefer) a GUI, Portainer is a solid option. Esp if you have multiple hosts or want to manage more than just the compose stack. Last time I checked Dockge doesn’t do either.

Personal preference? I prefer the Portainer’s presentation over the CLI. I especially find it easier to manage networks and volumes.

But my main reason is I have multiple docker hosts and it gives me a “single pane on glass” to manage everything from.

soft meow

You’ve obviously never met my cat.

These deals are still active https://www.racknerd.com/BlackFriday/

Also tagging @h0bbl3s@lemmy.world since I should have linked this last night.

Should check out Racknerd. I’ve got a 4 core, 4 gb ram, 50 gb disk VPS for $50/yr.

The problem her was that this wasn’t a traditional update. It was delivered automatically as a “content” update (like how old av would have definition update). We were given no room to test.

Is feel a lot better about this if it was a “supporter” tag not this “unlicensed” crap.

I was really hoping this was going to be a rant about clouds in the sky.

I mean, if you spent the kind of scratch on an android phone you would on an iPhone and then not fuck around with it, you’d have a similar experience on Android.

Years ago I used to flash roms and generally tinker until I decided I needed my phone to be stable and stopped. My Note 20 is polished and stable, no complaints.

My wife has always had iPhones. I’ve used both and find iOS frustrating. These days, unless you’re scraping the bottom of the barrel, it’s mostly about comfort and preference.

DDOS protection is going to depend on the VPS. But for most services you could spin up a pretty lean Debian vm running a proxy like nginx proxy manager and run that over the tunnel. Something like opnsense seems like overkill.

Still are if you don’t buy a select a size roll.

I gave it the old college try about 6 months ago. Found out how to send the req for a subnet to my ISP. Configured my opnsense. When it worked, it worked. But it would randomly stop routing regularly. After a lot of troubleshooting determined it was the isp and have up.

Maybe I’ll try again in another 6 months.

I also have one of these old Google apps accounts. I wish they would accidentally delete it so I could get the last couple stragglers off and take my domain elsewhere.

A guy can dream.

I’m fond of Beekeeper Studio and a sqlite DB.