• 2 Posts
  • 12 Comments
Joined 1 year ago
cake
Cake day: June 13th, 2023

help-circle

  • Had something along these lines - a mail server that ended up used almost exclusively for sending automated internal emails. We’d migrated to a third party for email sending because managing DNS etc for clients got pretty painful. Mail server got removed by the tech lead and repointed to our third party mail provider without telling anyone, and 3 days into the months we’d hit our billing limit, on the lead’s day off. Turns out that one service had been sending an order of magnitude more email than all of our other services put together, as someone had been using email as a logging method.

    That was a… fun day.









  • Up until now I’ve been using docker and mostly manually configuring by dumping docker compose files in /opt/whatever and calling it a day. Portainer is running, but I mainly use it for monitoring and occasionally admin tasks. Yesterday though, I spun up machine number 3 and I’m strongly considering setting up something better for provisioning/config. After it’s all set up right, it’s never been a big problem, but there are a couple of bits of initial with that are a bit of a pain (mostly hooking up wireguard, which I use as a tunnel for remote admin and off-site reverse proxying.

    Salt is probably the strongest contender for me, though that’s just because I’ve got a bit of experience with it.




  • I’ve got a mix of hosting environments personally. A dedicated box hosted with Hetzner (their auction prices can be pretty decent) plus a Pi 4 and an old NAS for internal services. Docker containers used for pretty much everything - mostly set up with a big ol’ /opt/ folder with a bunch of service specific folders with docker-compose.yml files and bind mounts galore. Got a wireguard VPN bridging between then because that seemed sensible.

    Running Portainer for some extra management and monitoring, then a bundle of stuff:

    • Mailcow for email
    • Owncloud for for sync and storage
    • Phototropism
    • Bitwarden
    • Emby for media playback
    • NextPVR for recording
    • Private instances of Pleroma and Lemmy
    • A slightly broken telegram/grafana stack with some container monitoring stuff hooked in
    • The odd dedicated game server when the need arises … and some things I’ve forgotten about.

    Got a spare old i5 machine around set up to auto hook into Portainer if I need some extra grunt at some point, but it’s more likely to be used when I can’t be bothered paying for the dedicated box.

    Aware a lot of it’s suboptimal, but it’s easy to work with and familiar, and that’s enough to make it workable.