Just joined a couple of days ago so only fair to sum up the things I host myself.

I have 2 locations I host my personal stuff.

  • Datacenter:

    • Websites
    • DNS servers
    • Lemmy
    • Friendica
    • Mail servers
  • Home:

    • Home Assistant
    • Frigate
    • Jellyfin (incl Sonarr, Radarr etc)
    • Immich
    • Fileserver
    • Nextcloud

In the Datacenter I still run a VMware ESXi server that needs to be replaced (this winter) and at home I have a Truenas server and 4 Proxmox nodes cluster.

  • SayCyberOnceMore@feddit.uk
    link
    fedilink
    English
    arrow-up
    26
    ·
    2 months ago

    Mail servers?

    How are you finding that these days? I thought all the anti-spam stuff meant that self-hosted email was just not worth it these days?

    • IsoKiero@sopuli.xyz
      link
      fedilink
      English
      arrow-up
      18
      ·
      2 months ago

      On residential connections it’s a bit pain in the rear, but if you get VPS (or something similar) it’s perfectly manageable. You just need to maintain stuff properly, like having proper DNS records, and occasionally clear false positives from spam lists. The bigger issue is to have proper backups and precautions, I’ve hosted my own emails for over 10 years and should I lose all the data and ability to receive new messages it would be a massive personal problem.

    • Ron@zegheteens.nlOP
      link
      fedilink
      English
      arrow-up
      8
      ·
      2 months ago

      I also have a mail filter, I have been hosting my own mail server for the last 25 years.

      • Theoriginalthon@lemmy.world
        link
        fedilink
        English
        arrow-up
        4
        ·
        2 months ago

        Out of interest what are you using? I was postfix/courier for a long time, with a must migrate to dovecot 10 years ago. Finally migrated this year and the performance difference is noticeable

        • Ron@zegheteens.nlOP
          link
          fedilink
          English
          arrow-up
          5
          ·
          2 months ago

          I recently moved to Mailcow, it’s a one in all solution. My spam filter is Proxmox mail gateway, also very user friendly.

          • tvcvt@lemmy.ml
            link
            fedilink
            English
            arrow-up
            1
            ·
            2 months ago

            Have you by any chance documented your PMG set up? I’m also a very happy Mailcow user and spinning up PMG is something I’ve been meaning to tackle for years so I can implement archiving with mailpiler, but I’ve never really wrapped my head around how everything fits together.

            • Ron@zegheteens.nlOP
              link
              fedilink
              English
              arrow-up
              1
              ·
              2 months ago

              There is not much to document on how to set it up. The gui is very intuitive.

              You need to setup the relay domains, transports and Options>DNSBL under configuration > mail proxy

              • tvcvt@lemmy.ml
                link
                fedilink
                English
                arrow-up
                1
                ·
                1 month ago

                Thanks for the response. I really should just dive in, but I’ve got this nagging fear that I’m going to forget about some DNS record that will bork my entire mail service. It good to hear about some working instances that people are happy with.

                • Ron@zegheteens.nlOP
                  link
                  fedilink
                  English
                  arrow-up
                  1
                  ·
                  1 month ago

                  After you setup the mail gateway you can telnet to port 25 and do the command line mail test and see if mail is delivered to your mail server. After that is confirmed you change your dns mx records.

    • Suzune@ani.social
      link
      fedilink
      English
      arrow-up
      4
      ·
      2 months ago

      Not really. Postfix is very robust against attackers and knows to how to deal with bots by default. It makes sense to also configure SPF, DKIM and DMARC for your own safety.

      If you want to stop the attackers from hammering, you can also add fail2ban.

      If you want to avoid spam, you can attach a spamfilter to the delivery agent and let Sieve do the rest.

      I’ve been running my postfix/dovecot combo using 4 mail domains for over 5 years without any problems. It’s simply fantastic.

    • Eirikr70@jlai.lu
      link
      fedilink
      English
      arrow-up
      3
      ·
      2 months ago

      It is hard to set up and you might need an SMTP relay since most ISPs close port 25. But it is feasible.

        • Brkdncr@lemmy.world
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          3
          ·
          2 months ago

          Real email security gateways cost money. There’s no good way to deal with it at small scale.

          • Ron@zegheteens.nlOP
            link
            fedilink
            English
            arrow-up
            5
            ·
            2 months ago

            They don’t have to cost money. The mail filter appliances are all based on postfix, spamassassin and a virus scanner like clamav. The thing you pay for is the nice gui.

              • Eirikr70@jlai.lu
                link
                fedilink
                English
                arrow-up
                1
                ·
                2 months ago

                I genuinely don’t understand what you are paying for. I must have missed something.

              • Ron@zegheteens.nlOP
                link
                fedilink
                English
                arrow-up
                1
                ·
                2 months ago

                It is, I looked at several vendor’s and it’s all te same except for the nice gui. They all have their own blacklist that they feed with the spam/ham queries from their devices.

    • Jade@programming.dev
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 month ago

      I host mail via Stalwart, which makes it pretty damn easy - it handles most everything, just giving you a big block of DNS records to upload with all the DKIM SPF MTA-STS nonsense. However, spam filtering from big providers is still occasionally an issue. I still occasionally get reports of mail making it into Gmail’s spam inbox, for example.

    • HelloRoot@lemy.lol
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      2 months ago

      It says jeena.net is up but I get a 504.

      After a minute, it works again.

      Do you have like an on demand server that spins up the containers when a request comes in?

      • Jeena@piefed.jeena.net
        link
        fedilink
        English
        arrow-up
        6
        ·
        2 months ago

        No, I’m running everything on one server, there is sometimes a lot going on on PieFed and the load gets too much so it times out. I haven’t had the time to research it.

        And it says on, just because I set it to retry some times.

  • tofu
    link
    fedilink
    English
    arrow-up
    5
    ·
    edit-2
    2 months ago

    I have VPSes at Hetzner for Mastodon and Bookwyrm. I’m also using Hetzner nameservers with pseudo DynDNS.

    Mail is managed by 1blu with my domain.

    Everything else is at home. I would move at least bookwyrm into my home server, but there’s another admin involved and I’d need to give them limited access to the VM and Proxmox (backup/snapshots/rebuild when doing maintenance).

  • poring@lemmy.zip
    link
    fedilink
    English
    arrow-up
    2
    ·
    2 months ago

    I got a VPS sometime ago just to host a Breezewiki instance because the public ones were down all the time. Then I enjoyed the process so started to host a bunch of other stuff as well:

    • Technitium DNS server
    • Wallos
    • Miniflux

    I’m now working on a backup routine and an alert system for the DNS server (had to make it public so I want to monitor closely for any unknown activity).

    I have a raspberry at home as well to host a few services that I only want to use here:

    • Technitium DNS server which (this one private for my internal network)
    • PairDrop
    • SpeedTest
  • Eirikr70@jlai.lu
    link
    fedilink
    English
    arrow-up
    2
    ·
    edit-2
    2 months ago

    I have everything at home, including the mail server. The only third party to my setup is a SMTP relay. All on an Odroid H4+. With a backup server on a Raspberry Pi 4 at my daughter’s.

  • tired_n_bored@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    2 months ago

    I have some services in my homelab but I never expose anything to the public. For this I have a Contabo VPS hosting a Wikipedia mirror and a XMPP server for anyone who wants to access it