I’m on iOS and do the same thing.

The WireGuard app has a setting to “connect on demand”. It’s in the individual connections/configurations.

You can then set either included or excluded SSIDs. There’s also an option to always connect when you’re on mobile/cellular data.

I imagine the Android app is similar.

Neat, I’ll have to look it up. Thanks for sharing!

Nextcloud isn’t exposed, only a WireGuard connection allows for remote access to Nextcloud on my network.

The whole family has WireGuard on their laptops and phones.

They love it, because using WireGuard also means they get a by-default ad-free/tracker-free browsing experience.

Yes, this means I can’t share files securely with outsiders. It’s not a huge problem.

Cluster of Pi4 8GBs. Bought pre-pandemic; love the little things.

Nomad, Consul, Gluster, w/ TrueNas-backed NFS for the big files.

They do all sorts of nifty things for us including Nightscout, LanguageTool OSS, monitoring for ubiquiti, Nextdrive, Grafana (which I use for home monitoring - temps/humidity with alerts), Prometheus & Mimir, Postgres, Codeserver.

Basically I use them to schedule dockerized services I want to run or am interested in playing with/learning.

Also I use Rapsberry Pi zero 2 w’s with Shairport-sync (https://github.com/mikebrady/shairport-sync ) as Airplay 2 streaming bridges for audio equipment that isn’t networked or doesn’t support AirPlay 2.

I’m not sure I’d buy a Pi4 today; but they’ve been great so far.

As someone who runs a self-hosted mail service (for a few select clients) in AWS, this comment ring true in every way.

One thing that saved us beyond SPF and DKIM was DMARC DNS records and tooling for diagnosing deliverability issues. The tooling isn’t cheap however.

But even then, Microsoft will often blacklist huge ranges of Amazon EIPs and if you’re caught within the scope of that range it’s a slow process to fix.

Also, IP warming is a thing. You need to start slow and at the same time have relatively consistent traffic levels.

Is it worth it, not really no - and I don’t think I’d ever do it again.

As someone who’s working for their third VC-backed firm, I took the previous comment to mean that the VC money was used to grow the company knowingly in the red, like many growth-stage, VC-funded businesses.

Heck a fair number of post-IPO tech firms continue to operate in the red as a result of their share sales.

• NAS: TrueNAS
• HomeKit Bridge: HomeBridge
• Spelling/Grammar: LanguageTool Server
• DBs: MariaDB, PostgreSQL, MongoDB, Influx
• In-memory caches: Memcached, Reddis
• Dashboards/Alerting: Grafana
• File Storage/Sharing: Nextcloud
• Metrics/Logs: Prometheus, Mimir
• Media: Plex

Most of these are run on a RPi4 cluster (Consul as mesh/discovery, Nomad for orchestration). This list doesn’t include stuff on the router/firewall (WG, DNS, filtering, blah blah blah… )

Large/important volumes on SAN-> B2.

Desktop Macs -> Time Machine on SAN & Backblaze (for a few)

Borgbackup is great and what we used for all our servers when they were pets. It’s a great tool, very easy to script and use.