This is very cool, but you should not use Cloudflare Tunnels to stream media. This is forbidden by their terms of service (or at the very least not the intended use of Tunnels and they may disable your service). Use Wireguard or Tailscale instead.
Personally I'm switching to rathole+traefik, weirdly something I was researching and experimenting with in the early hours of this morning (I have now not slept and have to go to work).
This let's you use your own domain for your tailnet, isn't the funnel but - but isn't it even better? Unless you actually want a publicly routable domain name, then you're back some hosted ingress I guess
Since https://blog.cloudflare.com/updated-tos it is not completely clear if you disable Cloudflare's cache indeed. Still the terms are unclear enough that they could cut you out, and I'd feel uneasy exposing a Jellyfin instance publicly, but that's just me :)
Both my wife and I are reluctant to upload our entire photo collection spanning 20+ years to the cloud. Immich has been working really well for us, the experience for her is just as seamless as it would be for Google Photos, I think.
And at $180/yr for the 2TB of storage we'd need to pay for, vs. maybe $200 in hardware, it pays itself off pretty quickly... if you exclude the time spent setting it up and administering it. But I don't mind, it's a bit like digital gardening for me.
$200 hardware only? my main concern with storing photos locally is the need for a NAS. Even at 2-3TB you still need: a NAS device, 2-3 hard drives and the mini pc to run immich + power bill to run them. it will cost more than $180/yr. cost should not be the main factor people store photos locally.
You don't need a NAS, really. My setup is a second-hand i5-7300U fanless mini-PC I got for $90, 2 x second-hand 4TB HDDs, and 2 x USB 3.5" enclosures. It's messy but it works... I haven't measured power in a bit but I reckon it pulls around 20-30W, which is around $15-20 a year at my current prices.
We back it up daily using restic to an old 2TB NAS that's at my parents place + the occasional manual backup
180/year? That's ~150watt server. That's a very powerful NAS. You'll be paying $200 per month form a cloud provider for such performance. A performant home low power NAS can be build that will consume easily, 30-40W. It won't need to be upgraded for over a decade. Ideally, 5x HDDs with 5 year warranty. The only expense is rolling upgrades of HDDs as storage fills up.
Backup to cloud glacier storage is ~$1.20 per TiB-month
Cost is absolutely a factor. self-hosting can't even be touched. And, the that's just the start of the value proposition.
> Man, paying Google/Apple $5/mo is surely a much better solution for her. And are you really doing 3-2-1 on that?
Just some days back someone on reddit posted how their 14yo son (via a family/linked Google account) used Gemini Live to, err, enjoy himself with the camera on.
All his accounts are now permanently locked for CSAM.
So, yes, not being beholden to a megacorp absolutely has its uses.
That Reddit post was thoroughly debunked as untrue. It had some obvious plot holes and inconsistencies.
Google even came out and said that’s not how account suspensions work: They don’t sequentially ban other accounts that have been associated with a device that was associated with an account, as many pointed out.
I’m surprised how many people fell for that obvious piece of Reddit creative fiction. I think we’ll be hearing about it as an urban legend for years.
Reddit has become a place for posting fiction on advice subs. It started on the relationship advice subs but has spread to all of the advice subs now, like the legal advice post you saw. You have to read Reddit with a lot of skepticism.
Oh, by the way - this was the account he used for his business (I don't remember if it was a custom domain). He's pretty much lost his only way of communicating with customers. This isn't just a "whoops, let me make a new email" situation.
(You can go to the legal advice UK subreddit if you want to see the post.)
> Man, paying Google/Apple $5/mo is surely a much better solution for her.
According to which criteria?
There are values beyond "basic convenience" that are important as well. Being independent from a subscription service is one of them. Having full control over your own media being another.
Moreover, subscriptions in general have disadvantages. For example:
1. If a subscription service decides to increase their prices tenfold, there is nothing a customer can do to stop them.
2. If they decide to stop operating completely, a customer also has no say into the matter.
3. If the subscription service decides to just unilaterally stop offering the service to a particular user, they can do so at their own discretion, at any time.
This all means that whatever value is being "obtained" by using a subscription service, it is only going to last for as long as the provider wants it to last.
and lose a lifetime's worth of pictures because Google identified a pic of your toddler in their pyjamas as CSAM and nuked your life. Or your 13y/o kid fiddled with themselves infront of gemini. etc
Of all the dicking around one can do in a homelab, and I'm guilty of plenty of it, setting up some network storage for photo backup is easily one of the highest value things you can do.
ha even better on /r/localllm husbands are scratching their head why their wives and kids just won't use their local chatgpt. It's fast and i bought 4 5090 for this why won't they use it!
Brothers, maybe they don't want you to see all their private chats with AI?
The upfront costs are pretty big but over time it’s not too bad to do 3-2-1. I doubt you’ll come out on top of Google every time - there’s a reason their prices are so low, and that’s more of an incentive to leave than to save a few dollars.
For me, I run Immich off a Beelink S12 Pro mini PC, with the photos themselves stored on my Synology NAS. Every night, I backup the VM with docker that runs Immich to the NAS, then the entire NAS gets backed up to Synology’s Cloud. My upfront costs were the NAS, the drives, and the mini PC, and my ongoing costs are electricity and the cloud storage fee for Synology’s cloud (about $70/year for a terabyte). That’s not cheaper than Google, but it does prevent them from having access to photos of my kids and family.
yes, the economics, and ease of use, of google/apple cloud storage is unmatched
and yes, most people willing to endeavor into the area are hobbyist, with all that entails
however, reading even one story of someone losing access to their cloud photos for xyz reason, is enough to decide that you ought to have some mechanism in place to ensure ownership of your data
Got a lot of downvotes here but this is just good advice. One of the good things about the split between the "homelab" and "selfhosted" communities - they are solving fundamentally different things.
At the very least, it should be a separate network segment between 'things that have to run all the time, especially for other people' and the network you set up weird storage arrays or BGP or whatever you're having fun with.
Honestly it's not for everyone, but if you have reasonable expectations and needs, and have some linux knowledge (or the motivation to get it) it's not extremely difficult
There should be volunteer groups at local libraries running these services for their local communities.
It’d be a great way for kids to learn to operate services and a great alternative for anyone who wants to use the fantastic open source stuff that’s out there but lacks expertise or time.
For secrets management, I basically just use fnox everywhere (https://fnox.jdx.dev/). It's a frontend to tons more options than sops, although age is still included. I also think the DX is better but to each their own.
98 comments
https://www.xda-developers.com/cloudflare-tunnels-are-great-...
For an easy GUI solution for the latter, highly recommend Nginx Proxy Manager.
Tailscale (but not Headscale) offers Funnel, which is a reverse proxy, but you cannot use it with your own domain.
Pangolin is the closest alternative to CF Tunnel, but self-hosted NetBird with reverse proxy functionality can also be used.
Personally I'm switching to rathole+traefik, weirdly something I was researching and experimenting with in the early hours of this morning (I have now not slept and have to go to work).
https://tailscale.com/docs/concepts/domain-ownership
This let's you use your own domain for your tailnet, isn't the funnel but - but isn't it even better? Unless you actually want a publicly routable domain name, then you're back some hosted ingress I guess
You can't have one without the other.
Man, paying Google/Apple $5/mo is surely a much better solution for her. And are you really doing 3-2-1 on that?
Save the dicking around for your own stuff.
And at $180/yr for the 2TB of storage we'd need to pay for, vs. maybe $200 in hardware, it pays itself off pretty quickly... if you exclude the time spent setting it up and administering it. But I don't mind, it's a bit like digital gardening for me.
We back it up daily using restic to an old 2TB NAS that's at my parents place + the occasional manual backup
Backup to cloud glacier storage is ~$1.20 per TiB-month
Cost is absolutely a factor. self-hosting can't even be touched. And, the that's just the start of the value proposition.
If it was just for backuping my photos I would just buy an external hard drive or 2 tough
> Man, paying Google/Apple $5/mo is surely a much better solution for her. And are you really doing 3-2-1 on that?
Just some days back someone on reddit posted how their 14yo son (via a family/linked Google account) used Gemini Live to, err, enjoy himself with the camera on.
All his accounts are now permanently locked for CSAM.
So, yes, not being beholden to a megacorp absolutely has its uses.
Google even came out and said that’s not how account suspensions work: They don’t sequentially ban other accounts that have been associated with a device that was associated with an account, as many pointed out.
I’m surprised how many people fell for that obvious piece of Reddit creative fiction. I think we’ll be hearing about it as an urban legend for years.
Reddit has become a place for posting fiction on advice subs. It started on the relationship advice subs but has spread to all of the advice subs now, like the legal advice post you saw. You have to read Reddit with a lot of skepticism.
(You can go to the legal advice UK subreddit if you want to see the post.)
> Man, paying Google/Apple $5/mo is surely a much better solution for her.
According to which criteria?
There are values beyond "basic convenience" that are important as well. Being independent from a subscription service is one of them. Having full control over your own media being another.
Moreover, subscriptions in general have disadvantages. For example:
1. If a subscription service decides to increase their prices tenfold, there is nothing a customer can do to stop them.
2. If they decide to stop operating completely, a customer also has no say into the matter.
3. If the subscription service decides to just unilaterally stop offering the service to a particular user, they can do so at their own discretion, at any time.
This all means that whatever value is being "obtained" by using a subscription service, it is only going to last for as long as the provider wants it to last.
Of all the dicking around one can do in a homelab, and I'm guilty of plenty of it, setting up some network storage for photo backup is easily one of the highest value things you can do.
Brothers, maybe they don't want you to see all their private chats with AI?
For me, I run Immich off a Beelink S12 Pro mini PC, with the photos themselves stored on my Synology NAS. Every night, I backup the VM with docker that runs Immich to the NAS, then the entire NAS gets backed up to Synology’s Cloud. My upfront costs were the NAS, the drives, and the mini PC, and my ongoing costs are electricity and the cloud storage fee for Synology’s cloud (about $70/year for a terabyte). That’s not cheaper than Google, but it does prevent them from having access to photos of my kids and family.
My personal backup has been flawless (so far).
Would have spent a couple thousand $ by now, if stayed on it.
and yes, most people willing to endeavor into the area are hobbyist, with all that entails
however, reading even one story of someone losing access to their cloud photos for xyz reason, is enough to decide that you ought to have some mechanism in place to ensure ownership of your data
Cost wise on the right hardware it is very cheap to run, add the privacy/personal control aspect it's no wonder so many people do it.
At the very least, it should be a separate network segment between 'things that have to run all the time, especially for other people' and the network you set up weird storage arrays or BGP or whatever you're having fun with.
It’d be a great way for kids to learn to operate services and a great alternative for anyone who wants to use the fantastic open source stuff that’s out there but lacks expertise or time.
ageis still included. I also think the DX is better but to each their own.> There’s something appealing in that idea, being independent and prepared, a male fantasy likely never coming to life
There’s still cloudflare in the middle of the everything and it doesn’t make it “independent”.