Self-Hosted Main

502 readers

1 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

For Example

Service: Dropbox - Alternative: Nextcloud
Service: Google Reader - Alternative: Tiny Tiny RSS
Service: Blogger - Alternative: WordPress

We welcome posts that include suggestions for good self-hosted alternatives to popular online services, how they are better, or how they give back control of your data. Also include hints and tips for less technical readers.

Useful Lists

Awesome-Selfhosted List of Software
Awesome-Sysadmin List of Software

founded 1 year ago

MODERATORS

[email protected]

Looking for best practices related to CrowdSec on my setup (Ubuntu Server -> CloudFlare Tunnels) (alien.top)

submitted 10 months ago by [email protected] to c/[email protected]

0 comments fedilink hide all child comments

I used to have a previous setup where I was exposing my *arr stack to the internet using wireguard to a VM, which had (traefik+crowdsec), then connected with Cloudflare. I had taken my sweet time to figure out a complete CrowdSec setup with Traefik logs, bouncers, and whatnot (it's been a couple of years, so I barely remember anything).

I recently completely migrated my stack to Cloudflare Tunnels, and it's such a bliss. But I am still wondering how I can protect my Ubuntu home server.

Is something like this enough, which reads logs from journald and blocks bad actors through iptables? https://github.com/crowdsecurity/example-docker-compose/tree/main/journald Or does there need to be a bouncer as well?
Do you recommend any other collections?
How do I configure it to see the reports on the CrowdSec hub? As I don't want to spend my compute on running the dashboard.

I will be happy if anyone can share their existing configuration for a similar setup.

no comments (yet)

sorted by: hot top controversial new old

there doesn't seem to be anything here