First questio is: can you ask your home internet provider for ipv6?

Otherwise sign up to tailscale and connect your vps server (and your pc/devices) to it.

I moved next to a cemetery. When asked how’s the area I loved to reply (accompanied by my wife eye roll) “dead quiet!”

As a side note, look into dockge instead of portainer. It’s foss, and it saves the yaml files in the path of the container, so you can manipulate them manually if you want. In portainer if for some reason it gets corrupted you lose all the docker-compose.yml

Absolutely this, nothing else is required. Well, maybe alertmanager if you want to receive alerts

That’s a lot of us here 😅

We want a detailed report after please. You write really well and sounds like you’d have quite a few things to write about!

Or just keep your sanity and tell me to fuck off, idk

That’s cheating! (Just joking, good for you, I wish all the happiness to you, seriously!)

Why not host your own git repo (e.g. gitea) so you can do 2 or 4 without opening services outside?

The chat server (matrix and xmpp have different ones, but same functionality) that act like a whatsapp desktop client. Have you ever run whatsapp desktop client on your pc, where you have to pair it with your phone? Same thing, but you do it withing a special “bridge” (usually as a bot) in matrix or xmpp. So you get all the messages in one place. But it doesn’t work for calls, just for messages.

Frienda no, but I do use whatsapp bridges so I can have all conversations in one place.

Family with extreme nagging, and because I’m the IT guy of the house so they kinda trust me/can’t be bothered to try and out-talk me.

Gajim on pc (I use arch btw - well endeavourOS because I can’t be bothered) and don’t remember what on android (there is the full list or clients and capabilities on xmpp.org)

No.

Yeah ok. First of all, because I can 😁. I mean z what’s good being an IT nerd if I can’t change stuff when I want?

Jokes aside, I’ve been reading more recently on matrix and looks like there are some security issues in the design of the app/protocol. I’m on mobile now, I’ll look for sources when I’m on pc. Also I don’t like that it is a server centric system (so data is primarily on the server instead of the clients). Also it takes more resources than I was expecting. For less than 10 users I can’t have less than 4gb of ram (on a dedicated debian server, running docker) or it swaps so much it kills the system.

So basically I’m testing out if xmpp is a better system for those issues.

I’ve been using matrix for years to this purpose, but moving to xmpp/prosody now

Via vpn within a guest browser session is the first thing that comes to mind. What are yourconcernss exactly?

Having multiple interfaces in each vm can lead to issues with routing if you screw something up.

Like you said I’d expose the services via reverse proxy in the public vlan, and enable ssh access on the firewall only from a jumpbox or the ip of your pc (or maybe the vlan you are in).

my 6 months old nephew wailing scream. Once I left the phone on my desk and walked to the copier. The phone started wailing. My desk buddy knew what that scream meant, and brought me the phone, thus filling the whole office with baby screams.

Most of EU don’t pay for sms either

I’ve been told that zerotier is even better. Haven’t tried it myself (it looks more complicated to selfhost) but the guy suggesting it knows waaaaay more than me on these things. Just if you want to look into another option.

For what it’s worth (from a random guy on the internet) selt-hosting tailscale is quite easy! 🙂

I’m self hosting headscale (foss implementation of tailscale control server) for this scenario. Works great!

I guess they really never got over losing that slavery thing…