There is also Octave

My server is only available on my LAN and via a VPN. Is fail2ban applicable? Or is it mainly for public facing servers?

I view podman as a mostly drop in replacement for docker but it doesn’t have a daemon (for better and worse). I wouldn’t recommend using podman for you right now. I’d strongly recommend docker-compose (not docker run).

If you’re ever stuck trying to convert a docker run command to a compose.yml file, composerize.com is helpful.

I have about 20 services on my machine so I’m going to need to open a ton of ports (ssh, SSL, multiple higher number ports since some services require several ports). At that point, what is the point of a firewall if so many ports are open? With so many ports open, it seems like a firewall doesn’t add much security vs the complexity it adds.

I had a similar journey and recommend it. I started with Open Media Vault with docker containers configured via a GUI, then to Debian + docker compose, then to Debian deployed with Ansible + docker compose, and now I’m with NixOS + podman compose. The first jump to Debian was the most intimidating for me learning CLI commands for the first time and not having defaults chosen for me, but it was liberating to finally learn the actual tools and not just learn a GUI abstraction for tools.

Thanks. That’s helpful. I decided to get an R720 I found on Ebay for $60. I’m not sure if it was a good choice but I’m excited to try it out!

Used 2nd hand sounds great, but the price range online is huge. Which units would you recommend and about how much should I expect to pay for them?

What is the Wi-Fi card for? What software are you using?

You’ve already received some great suggestions. Another one is Netdata. Personally, I use glances to collect the data and Home Assistant to display the dashboard. But I only do this because I already had Home Assistant running.