u/muthappamk1

Hey! Please rate my budget homelab setup and give me suggestions on how to improve.

Infrastructure:

• Dell Optiplex 7010 SFF (i5-3470, 12GB RAM, 128GB SSD and 2 x 1 TB HDD). Had to remove the CD drive to make space for 2 HDDs 😅

• Intel NUC5CPYH (Celeron J3060, 4GB RAM, 128GB SSD)

Dell Optiplex is running Immich, NextCloud, Audiobookshelf, Navidrome, couple of websites, couple of telegram bots, Syncthing and Maybe Finance. System and Drive monitoring and health via Glances and Scrutiny. All running via Docker managed via Portainer. Samba is also set up for media and I use VLC on the TV to stream it. Didn't go the Jellyfin route because I'm not sure if the CPU will be able to handle the transcoding.

Intel NUC is running network wide DNS filtering via Pi-hole and DNS resolver via Unbound. Uptime Kuma is also set up to monitor the services on the Optiplex and send alerts when they go down.

Both the machines are on different ISPs and they all connect together as one network via Tailscale. So, all services are accessible from anywhere via the tailnet. Both the Optiplex and the NUC are set up to be used as exit nodes as well as subnet advertising so that I can access both the routers from anywhere.

Security wise, I have set up strict Tailscale ACLs for all my devices and I have also disabled SSH via local LAN. Only Tailscale SSH is allowed.

I do also have an inverter for power outages.

Backups: 3-2-1 backup. Periodic backups to an external drive which is stored at a different location and restic encrypted backups to Google Drive.

What do you guys think? Any suggestions? What can I do better?

Hey! Please rate my budget homelab setup and give me suggestions on how to improve.

Infrastructure:

• Dell Optiplex 7010 SFF (i5-3470, 12GB RAM, 128GB SSD and 2 x 1 TB HDD). Had to remove the CD drive to make space for 2 HDDs 😅

• Intel NUC5CPYH (Celeron J3060, 4GB RAM, 128GB SSD)

Dell Optiplex is running Immich, NextCloud, Audiobookshelf, Navidrome, couple of websites, couple of telegram bots, Syncthing and Maybe Finance. System and Drive monitoring and health via Glances and Scrutiny. All running via Docker managed via Portainer. Samba is also set up for media and I use VLC on the TV to stream it. Didn't go the Jellyfin route because I'm not sure if the CPU will be able to handle the transcoding.

Intel NUC is running network wide DNS filtering via Pi-hole and DNS resolver via Unbound. Uptime Kuma is also set up to monitor the services on the Optiplex and send alerts when they go down.

Both the machines are on different ISPs and they all connect together as one network via Tailscale. So, all services are accessible from anywhere via the tailnet. Both the Optiplex and the NUC are set up to be used as exit nodes as well as subnet advertising so that I can access both the routers from anywhere.

Security wise, I have set up strict Tailscale ACLs for all my devices and I have also disabled SSH via local LAN. Only Tailscale SSH is allowed.

I do also have an inverter for power outages.

Backups: 3-2-1 backup. Periodic backups to an external drive which is stored at a different location and restic encrypted backups to Google Drive.

What do you guys think? Any suggestions? What can I do better?