If I remember correctly, 1000Base-T standard has a requirement that device has to negotiate pinout on the fly. No matter which pin is connected to which. Obvioiusly just randomly wiring a cable up has other problems, like signal-to-noise, but in theory it should work even if you make a cable that’s as unstandard as you can make it.
I’d first recommend that you think about what you need.
This is the absolutely correct option. I’ve set up way too many things without a use case and lost interest shortly after. If you have a real world use case for your project, even if it’s just for yourself, you’ll have the incentive to keep it going. If you’re just setting things up for the sake of it the hobby loses it’s appeal pretty quickly. Of course you’ll learn a thing or two on the way but without a real world use case the things you set up will either become a burden to keep up with or they’re eventually just deleted.
Personally, tinkering with things that are just removed after a while gave me skills which landed me on my current job, but it’s affected myself enough that I don’t enjoy setting things up just for the sake of it anymore. Of course time plays a part on this, I’ve been doing this long enough that when I started a basic LAMP server was a pretty neat thing to have around, so take this with a grain of oldtimer salt, but my experience is that setting up things that are actually useful on a long term is way more rewarding than spinning up something which gets deleted in a month and it’ll keep the spark going on for much longer.
Seafile. I’ve used it for years, but I’m moving over to nextcloud as I could use other features it provides. They have paid options too, but unless you need LDAP or something more sophisticated for user management the community edition works just fine.
I personally like mikrotik routers. They have all the features you could wish for and then some and they’re relatively cheap for the things they can do. I have RB4011iGS+ (I don’t think that exaxt model is available anymore) and it’s been rock solid. As I have fiber I just pulled the SPF-module from ISP’s box and plugged it in on my own hardware, so the router ISP provided is just gathering dust right now.
But it depends on what you’re really after. If you just need basic firewall/NAT/DHCP functionality and your connection speed is below 1Gbit pretty much any router will do. If you have fast connection and/or need for totally separate networks/VLAN/something else it’s a whole another matter.
have seen some people have networking issues with them.
I’ve been a happy customer for hetzner for almost a decade and I haven’t had any issues with their networking. If you’re running virtualization you need to take care of you MAC addresses or they won’t allow traffic and eventually will kick you off from their platform (and they have a good reason to do so). As long as you play by their rules on their hardware it’s rock solid, specially for the price.
I used to have old ThinkStation as a home server. Even older ones like S20 I have couple of laying around is still pretty capable system (I’m typing this on one) and as they’ve been CAD workstations and things like that when they were new many have 12+GB of RAM already. I got mine for free troguh a work contact, but they should be available via ebay or (preferably) your local version of it for pretty cheap.
Then you just need new drives and their prices have dropped too. 100€ is a bit of a stretch, but if you can get a whole computer from someone in the industry it should be possible. I have a few systems laying around I could get rid of for a case of beer or something, but shipping alone from here would eat up majority of your budget (if anyone is interested in x3550 m3 throw me a message, located in Finland, I might remember the model wrong but that’s roughly in the ballpark).
Other than thinkstations I’d say you’ll want a xeon CPU with at least 4 hyperthread cores, 16GB RAM and all the drives your budget has left. SSD for a boot drive(s) is nice to have, but spinning rust will get you there eventually.
Many rack mounted servers only accept SAS-drives which are a bit more expensive. Tower mounts generally use SATA so you can just throw in whatever you have laying around. The main concern is amount of RAM available. For older systems it might be a bit difficult to find suitable components, so more you have already in place the better. For VM server I think 16GB or above is fine for learning and it might be possible to shoehorn most of the stuff in even with 8GB. Performance will definetly take a hit with less RAM, but with that budget some compromises are necessary.
So, in short, with that budget it might be possible if you have a friend who has access to discarded workstations or happen to stumble in a good deal with local companies. It’ll require some compromises and/or actively hunting for parts and with old hardware there’s always possibility of failure so plan accordingly.
Depends on whom you ask from. For me selfhosting is all about the software and renting hardware is a perfectly fine solution for that. You don’t need to worry about UPS’s, maintaining hardware and all the jazz which comes with your own gear. Sure, then you’re depending on your VPS provider that services actually stay up, but even a small VPS provider has more people working on things than just yourself. And they have power solutions, like industrial scale power solutions with generators, multiple connection points to the internet and things like that which are either impossible or very expensive to set up just for your own hardware.
And then there’s the other side, like home automation, where relying on internet connectivity to get your lights on is, in my opinion, a bit silly thing to do for yourself and running server for that locally makes perfect sense. So, right solution depends on your needs, but if you want to define what counts as self hosting in my opinion it boils down to who has the root/administrator credentials on your server. Other may have different opinions.
While I agree with @rglullis@communick.news, this isn’t strictly speaking on-topic for this community, that kind of knee-jerk response is very much out of the topic as well. The first community rule is to be civil and in general I, perhaps optimistically, would like that conversation over fediverse in global would be civil, or at least well argumented, a bit like it used to be (more or less, YMMV) back in the usenet days.
And on the topic of self-hosting, that’s a line drawn in the water. I run various of things by myself (postfix+dovecot, LAMP, bitwarden, seafile, nextcloud…) on a rented servers running linux+kvm. And I get money by doing that, it’s a very much a business case, so I’m a bit reluctant to ask questions about the setup I have in here as I think it wouldn’t be fair to ask for advice from hobbyists in a project where money is directly involved. But for me personally that setup checks both sides of things. I get money by doing it, but at the same time I personally can get out of the walled gardens like M365 or Gsuite.
TL;DR: There’s no need to be rude, you can choose to politely point people in the right direction.
I do wonder about when VPNs started being used as proxies…
About at the same time operators at the US noticed that they could profit from profiling users behaviour. In here that’s very much illegal thing to do and most use cases for VPN is to connect yourself into corporate network. VPNs are of course useful to protect you from MITM attacks at open wifi networks and things like that, but hiding your behavior from your ISP is very much an US thing.
While I think you could techincally spoof your originating IP at the VPN server to match your clients IP it wouldn’t do anything useful. That’s not how IP routing works. What you’re trying to achieve with a setup like that?
Not necessarily. VPN can be used for that, but I’d be that more common use case is to access networks which are otherwise firewalled off from the public internet, like corporate LAN.
And if you’re concenred on data written on sectors since reallocated you should physically destroy the whole drive anyways. With SSDs this is even more complicated, but I like to keep it pretty simple. If the data which has been stored on the drive at any point of it’s life is under any kind of NDA or other higly valuable contract it’s getting physically destroyed. If the drive spent it’s life storing my family photos a single run of zeroes with dd is enough.
At the end the question is that if at any point the drive held bits of anything even remotely near a cost of a new drive. If it did it’s hammer time, if it didn’t, most likely just wiping the partition table is enough. I’ve given away old drives with just ‘dd if=/dev/zero of=/dev/sdx bs=100M count=1’. On any system that appears as a blank drive and while it’s possible to recover the files from the drive it’s good enough for the donated drives. Everything else is either drilled trough multiple times or otherwise physically destroyed.
Dd. It writes on disk at a block level and doesn’t care if there’s any kind of filesystem or raid configuration in place, it just writes zeroes (or whatever you ask it to write) to drive and that’s it. Depending on how tight your tin foil hat is, you might want to write couple of runs from /dev/zero and from /dev/urandom to the disk before handing them over, but in general a single full run from /dev/zero to the device makes it pretty much impossible for any Joe Average to get anything out of it.
And if you’re concerned that some three-letter agency is interested of your data you can use DBAN which does pretty much the same than dd, but automates the process and (afaik) does some extra magic to completely erase all the data, but in general if you’re worried enough about that scenario then I’d suggest using an arc furnace and literally melting the drives into a exciting new alloy.
You can’t configure DNS server by name on anything, so you’d need some kind of script/automation to query current IP address of your pihole from google/your ddns provider/someone and update that on your parents router which can be a bit tricky or straight impossible depending on the hardware.
VPN would solve both 1 and 2 from your list as your pihole would be available with static address on both locations. You can’t authenticate on DNS server by MAC as you don’t receive originating MAC at all. Other solution would be to get a static IP address from some provider and tunnel traffic so that your pihole could be reached trough that static address.
Best ones I have are registered after either a random thought or a brainstorming session. For me pronounceable is a must (at least to some extent), short is strong second and funny is of course always nice, but not necessity. Including TLD is always nice, but unfortunately it’s rather difficult at least with the TLD’s I usually use.
Unifi ticks most of the boxes you have. Wifi will work without controller and they act as an bridge, so DHCP and other services work as-is, VLAN support is there (if you want to use different SSID for different VLAN then you need a controller) and so on. I have couple of their APs and I’ve been pretty happy, but that being said, their push for their own cloud-only products and the way they manage updates, longevity and other stuff isn’t the best (to say the least). For now it works absolutely great for what I need it, but at the future situation may change with a short notice.
No idea about T-link, but mikrotik devices are interesting. For wifi I don’t have any kind of experience, so I can’t recommend them, but on paper they seem pretty nice.
Lantronix has a product called Spider, which (several years ago when I used one) works wonders. To the host side it looks like a standard monitor, keyboard, mouse and usb. I’m not quite sure if they still actively develop that, but at least the product page is still available. It’s not cheap, so it might not be what you’re looking for, but I was impressed on what it can do (since the company I worked back then too care of the invoice). It can’t do power cycle or hit reset button, but beyond that it was pretty close to IPMI and other remote server management solutions.
With my own wallet I’d look for piKVM, but it’s not really cheap either and I don’t have any personal experience with it. For power cycle there’s a ton of companies who manufacure wall-warts which you can control over wifi, APC and other big players included, and for home gamers nodeMCU and shelly are solid options if you’re familiar with electronics, but they can’t do KVM over IP, so it might require using different products to remotely accessing the host and for power management.
I have older 1500VA FSP running my hardware. I’ve changed batteries on it twice and it just keeps going and the batteries are easy to buy&replace. I suppose newer models are similar, but check the documentation before deciding.
You want a reverse proxy. But if nextcould is already reserving ports 80/443 you need a bit more configuration as it’s not possible for multiple processes to use the same port.
Most, but not all, do. So it might be as simple as setting a static address, or it may overlap in the future.
You could ask from ISP (or try it out yourself) if you can use some addresses outside of DHCP pool, my ISP router had /24 subnet with .0.1 as gateway but DHCP pool started from .0.101 so there would’ve been plenty of addresses to use. Mine had a ‘end user’ account too from wehere I could’ve changed LAN IP’s, SSID and other basic stuff, but I replaced the whole thing with my own.