RouterOS has WG built in as well as ZeroTier. RouterOS has become quite powerful lately, but make sure you have at least an ARM/ARM64 CPU for it.

All of my remote routers are running RouterOS without anything on top of it. RouterOS is powerful enough for anything I throw on it. But I am using much beefier routers, I have 2 x 5009 and a HAP AX3 which have plenty of flash and ram ro run the additional packages I need.

As for normal computers, I have it on a UPS and I backup core files to off-site areas. Additionally, I buy SSDs that have a little bit of powerloss protection.

I’ve never had issues with mini PCs but I’ve had issues with PIs. I’ve since switched to high endurance SD cards for my Pis and they’ve been rock solid. One’s actually semi exposed to the elements for about a year now without a hiccup.

With RouterOS you can still use DoH with either a self hosted list or a selected ad list. If you want to selfhost a DNS server I’d just host a Adguard Home instance on a VPS for all of your devices.

I also have 2 VPN system for my remote management on 2 separate systems. I learned that the hard way when one of my clients is 8 timezones away.

My ISP blocks all outgoing ports. Maybe I’m not trying hard enough but anything I try port forwarding ends up getting blocked.

Minecraft and port 80 are the 2 I’ve tried and they’ve been unresponsive

I’m using the rb5009 but im using RouterOS not openwrt. Any reason why you’d want to do that?

I personally think if you’re buying a purpose built hardware and then putting your own software on it, you should move to a mini computer with OpnSense.

I’m switching my immich instance to an SSD one and switching my VPN from zerotier to tailscale.

Hopefully that means my Immich will be a little more reactive.

Once again people blaming software people for hardware problems!

I just wish pebble was still a thing. I miss my pebble time 2.

I just use google OAuth since everyone I know has a google account. It just can’t use OAuth on private IP addresses, just FQDNs.

I want to be able to upload/download/share my photos from anywhere in the world without using a VPN. Additionally, this satisfies the wife requirement. It works in the background without her needing her to turn on the VPN. I don’t want her to keep asking me how do I turn on the VPN? If it’s just me, then no issue, I’ll use a VPN.

It’s hard to explain from scratch.

Caddy is a reverse proxy software that essentially redirects traffic from a certain port to another port. For example external:port => internal:port. It also enables SSL encryption meaning everything will be encrypted en route between the external and the user.

VPS is a virtual private server. Just someone else’s computer you can expose to the Internet.

Tailscale is a mesh VPN that uses wire guard as its transport. I use this to tunnel between my VPS and my Immich server to hide my home IP and to allow encrypted traffic between my Immich server and my VPS.

A zero-day (also known as a 0-day) is a vulnerability in software or hardware that is typically unknown to the vendor and for which no patch or other fix is available. The vendor thus has zero days to prepare a patch, as the vulnerability has already been described or exploited.

There’s no fix other than security through layers.

Pretty much I have caddy on a VPS that’s pointing to my internal IP using a tailscale tunnel. You are still exposing the web gui to the Internet so I just changed authentication to OAuth to mitigate since risk. There is still a possibility of attacks via zero days, but my immich is on a VM and I’m creating firewall rules to just allow certain ports out.

You will need a VPS as your other endpoint

You know, I’ve always attributed it to wifi shenanigans. Never crossed my mind that it was a hardware fault.

Thankfully in my household I have a rule, if it’s not handheld, it’s s wired. So thankful we don’t have much issues with it

Unifi U6 Mesh. Love the form factor

I’m thinking of bumping mine up to 128k since I do mostly photography and videography, but I’ve heard that 1M can increase write speeds but decrease read speeds?

I’ll have a RAIDZ1 and a RAIDZ2 pool for hot storage and warm storage.

Can you play doom on your calculator app?

With this you can play doom on your emulated calculator!

I enjoy a program called Alldup. It’s quite nice for my uses

Really simple

Proxmox

Openmedia vault

Adguard

Uptime Kuma

Prometheus and Graphana

Mkcert

Jellyfin

Homebox

I’m a big fan of Mikrotik with Unifi WiFi.

Mikrotik I have a RB5009 which is powerful enough for all of my needs.

This article is reposted. Or mirrored or whatever.

https://www.msn.com/en-us/money/other/these-cheap-loans-are-becoming-a-hit-with-home-buyers-but-there-are-catches/ar-BB1qJ72W

I’d rather fund quality original news none-for-profit. But all major news articles are in it for the money. How do you expect me to pay for something that has a vested interest in making money off the stuff they report?