-
This was exactly a use case I had in mind when building https://canine.sh -- also uses k3s as a provider, and provides a Heroku-like devex.
How to actually reliably expose a homelab to the broader internet is a little tricky, cloudflare tunnels mostly does the trick but can only expose one port at a time, so the set up is somewhat annoying
-
SaaSHub
SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives
-
Cryptomator
Cryptomator for Windows, macOS, and Linux: Secure client-side encryption for your cloud storage, ensuring privacy and control over your data.
While i get the whole homelab thing is exiting and a great learning experience, it's simply not worth the time and effort for the majority of people.
You will end up paying much more for your services, along with spending a ton of time maintaining it (and if you don't, you will probably find yourself on the end of a 0-day hack sometime).
In Northern/Western Europe, where power costs around €0.3/kWh on average, just the power consumption of a simple 4 bay NAS will cost you almost as much as buying Google Drive / OneDrive / iCloud / Dropbox / Jottacloud / Whatever.
A simple Synology 4 bay NAS like a DS923+ with 4 x 4TB Seagate Ironwolf drives will use between 150 kWh and 300 kWh per year (100% idle vs 100% active, so somewhere in between), which will cost you between €45 and €90 per year, and that's power alone. Factoring in the cost of the hardware will probably double that (over a 5 year period).
It's cheaper (and easier) to use public cloud, and then use something like Cryptomator (https://cryptomator.org/) to encrypt data before uploading it. That way you get the best of both worlds, privacy without any of the sysadm tasks.
-
OP has admittedly over-engineered their setup. Depending on your goals (cost, speed, space, autonomy), there are less-rigorous solutions for the layperson.
I, for one, don't want to have Google, etc. as a dependency[1], so I will pay some energy cost to do that.
1: see: https://hn.algolia.com/?dateRange=all&page=0&prefix=true&que...
-
This is cool - I have a similar home lab on a Mac Mini [1].
The encryption question is interesting. I don't have disk encryption turned on, because I want the computer to recover from power failure. If power turns off then on, the server would be offline until I decrypt it.
How does your "Wake on LAN" work with the encryption?
[1] https://github.com/contraptionco/toolbox
-
homelab
Discontinued Configuration-as-code for my homelab [GET https://api.github.com/repos/shepherdjerred/homelab: 404 - Not Found // See: https://docs.github.com/rest/repos/repos#get-a-repository] (by shepherdjerred)
> As a bare minimum, you should update your server and docker images daily, or at least whenever there's an update (which you won't know unless you check).
I got this setup automatically with Renovate: https://github.com/shepherdjerred/homelab/blob/main/src/cdk8...
Related posts
-
Kubescape : Comprehensive Kubernetes Security from Development to Runtime
-
Kubescape: Kubernetes security platform for your IDE, CI/CD, and clusters
-
CodiumAI PR-Agent Dominates the Dev World with Versatility and Open-Source Power
-
Kubescape 3.0 is available to enhance your K8s security experience
-
Check your secrets into Git [video]