Ey! congrats for the donation. I hope your personal project succeeds!

This could be funny if you have a d event computer, specially for od games

https://games-on-whales.github.io/

If you are interested in the photo storage then start… With the storage.

So pick up a nas or something similar, pay a bit more for the super intuitive fancy gui product and the start from there.

Learn what is nas and how to connect to a pc Thne learn how to do the same with your smartphone Then learn a bit about networking Then… Continuous for the hardest itch and try to Scratch it

And if you need support, come back here, check videos and web pages or even chatgpt, for the basic stuff is quite acceptable

Ehmmmm I still don’t grasp what you mean.

In any case, mandos has a possibility to do it automatically via rsa encryption, so you have the possibility of totally unattended restart.

Because the server is (ideally) in a different location, if one of yiur systems is stolen / compromised then you only delete / revoked the certificates ID and then that machine would not be able to decrypt its own luks system.

I never deployed this system on my own, but I know a few guys who did it

Regards

I am afraid I don’t get the question.

What do you exactly mean?

Chech here, I think is a more sensible way of doing things https://www.recompile.se/mandos

Nginx is considered battle tested.

Very few products have this level of puic scrutiny and and a good record of being safe.

Once this is said, the majority of problems come from misconfigurations, so triple check the things

OK I understood that the request came from internet and tailscale was to link the reverse proxy and the server.

In this case try ipv6, pretty sure you have ipv6 and you will have a public address.

But for this case you will need a dns in your network so example.com can be resolved and then your proxy will make the right request.

Yes doable.

Yes, it is possible, but you need a domain (example.com) that I guess you want to be resolved from internet and a public face ip.

After that, yep, if the reverse proxy can resolve tailscale names (basically it has tailscale installed in the same machine) and the service is reachable via tailscale, then it is perfect.

In fact in my setup I have a public domain name that is translated into a private domain name in the reverse proxy (exactly what you want with the addition of tailscale)

It is almost impossible to achieve those numbers, specially the idle, and the load we can only to be close to them when we use the watt/ per-useful-instruction metric.

recentest hw will have decent idle consumption (n95 is around 2w) but the rest of the hw will consume more and usually you attach more powerful/energy hungry devices so expect <10w in idle and perhaps <25w under load.

Older hw could not be so bad under load but they will idle less and will consume more

Start with a nas, the rest will naturally come when you try to access your data for outside, or organize your data, or save more data types to your nas.

Your nas should be the central device and you build the rest around it.

Now, The question is, which nas? I would recommend synology, they are not too performance, a bit expensive and the company is lately doing suspicious moves, but the sw and the hw are rock solid and they are quite good for beginners from almost all angles. Extra point for how many howtos and tutorials are present in internet.

Once you are comfortable with them, you will realize the rest

How, because Overton window says the opposite

Thanks for the answers

Interesting, thanks.

Last question, is it necessary to have the safety/ standard compliance certified by an external authority? If yes, how is it done? Same for the sw/FW updates

And no safety regulation? No CE marking, no refuse to operate if the gnd line is not well established, no gracefully fail without degrading the safety?

Edit: fast Google search returns several iec (62955), CE marking, and some other low power directives (this is country dependent) which may be enforced via Sw.

I don’t know OP, I am by no mean an expert, but I would spend a bit of time navigating for the terrible passionating world of regulations and directives :(

What are the certifications of that thing?

I mean, I guess it is a 11kw line, there are a few things that the system needs to fulfill about the regulation.

How are those things done?

OK, I’ll take a look

Should I give it a try?

I’ve seen things… Near the gate of Tannhäuser, things you little people wouldn’t believe.

And I am not joking…

How is the i2p doing?

Last time I checked (several years ago) it was slow, non performing and scarce in results.

And my lack of knowledge didn’t help at all :)