Afaik, you can set it up not to have any image, or have any other one.

We’re unlikely to see the grand price fall in the coming year. Can get a bit cheaper, though.

The expenses are mostly upfront though. I’ve spent like $400 on a relatively fancy NAS and two 3TB WD Red CMR drives five years ago, and since then, there was that.

Of course, depending on your use case, there could be extra expenses as well, some of them recurring:

• Bigger drives
• Backup storage (I already had a place I could back up to)
• Domain name and DNS records (if you expose it to the public Web with a URL; you can otherwise just use a VPN tunnel to access NAS from outside the home network, which is free unless you do anything fancy)
• Some kind of paid software (if you don’t enjoy the perfectly good collection of open-source apps)
• Etc.

Now, for the streaming alternative:

• Netflix Standard: $18/mo
• Spotify: $12/mo
• Total: $30/mo, or $360/yr. Just these two services alone.

Your NAS system will pay off in a little over a year (maybe two years if you go all in with huge drives, fancy NAS configs, extra expenses here and there), and it’s smooth sailing from there.

My unit works for 5 years already with no maintenance, is still fully supported by the manufacturer, and I don’t expect to replace it in a few more years.

Self-hosting allows you to have all your files on all your devices, like many have used to with the streaming services. Also, some smart TVs specifically require to connect to some server to grab movies from.

If you don’t need any of that, regular hard drive will suit you best.

I would argue either RAID 5 or ZFS RAIDz1 are inherently unsafe, since recovery would take a lot of read-write operations, and you better pray every one of 4 remaining drives will hold up well even after one clearly failed.

I’ve witnessed many people losing their data this way, even among prominent tech folks (looking at you, LTT).

RAID6/ZFS RAIDz2 is the way. Yes, you’re gonna lose quite a bit more space (leaving 24TB vs 32TB), but added reliability and peace of mind are priceless.

(And, in any case, make backups for anything critical! RAID is not a backup!)

Yay!

Yay!

Can’t it automatically be renewed?

F I N A L L Y

Now tell me it supports IPv6 and I’ll be the happiest man alive

I would be fairly comfortable running a direct WireGuard connection even without Tailscale, but my location and use case simply won’t allow me to.

Your setup is valid, nothing wrong with it, and yes, it is more secure. Just can’t be used in my case.

I mean any connection through these protocols is just not working over the Internet. DPI equipment detects respective packets and cuts the connection, irrespective of the port you assign.

Yep

It’s not illegal to use VPN in my area, but connections are blocked on a protocol level, both through OpenVPN and Wireguard.

I already managed to make caddy work, so, hooray!

I also found a setting on my router that fully isolates certain devices from the local network. I want to put the server in there, so that the rest of my LAN is not under threat. I also want to figure out VLANs.

That’s a good piece of advice, but due to several considerations (extreme censorship interrupting VPN connections, family using NAS for automatic backups, and some others) I cannot go that route.

For now I’m only toying around, experimenting a little - and then closing ports and turning my Pi off. I do have my NAS constantly exposed, but it is solidly hardened (firewall, no SSH, IP bans for unauthorized actions, etc. etc.), fully updated, hosts no sensitive data, and all that is important is backed up on an offline drive.

Yep!

For me it’s a sense of reliability and control - my stack will keep working even if new censorship rolls out (I live in a heavily censored and sanctioned jurisdiction), or if there’s a global outage, or whatever else. I am also the sole authority over my piece of the Internet, and no one can do anything to alter it or take it away.

Update: tried Caddy, love it, dead simple, super fast, and absolutely works!

Yep, sharing stuff for others requires more expertise, as I’ll get responsible for other people’s experience. If I screw something up now, only I will be affected.

Thanks for clarification!

For now just some experiments alongside NAS

Planning to host Bitwarden, Wallabag and other niceties on the server, and then when I get something more powerful, spin up Minecraft server and stuff