this post was submitted on 26 May 2025
46 points (91.1% liked)

Selfhosted

46672 readers
2475 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
46
how to set up a remote managed node for mom (startrek.website)
submitted 3 days ago by nagaram@startrek.website to c/selfhosted@lemmy.world
22 comments fedilink hide all child comments
 

I run my production Jellyfin server and a few other services on a Optiplex sff computer with a thicc hard drive and a low profile GPU.

I want to build two more of these with thicc Hard drives so that my parents and my in-laws can have a local Jellyfin instance that I manage remotely and they just need a box plugged in somewhere at their homes.

Is it possible to make Proxmox build a VPN tunnel on boot so I can just have it in my cluster dash. Like using tailscale or openvpn.

Or am I going to have to go with my original plan and put that on the same box as the Jellyfin server and then just VNC in?

Any tips or ideas?

top 22 comments
sorted by: hot top controversial new old
[–] AtariDump@lemmy.world 21 points 3 days ago (1 children)

Are you ready to be tech support for when the “weird box in the corner” stops working?

And there’s no mention of how far away these people live; the further away the less likely I setup something like this. I have no desire to try and fix a bootloader issue from 1,000 miles away just to waste several hours and have to ship them a new X.

I know this because I’ve done it, and I wouldn’t do it again. If someone doesn’t specifically ask for a home hosted solution (and have some sort of technical knowledge), I never offer a home hosted solution.

[–] nagaram@startrek.website 8 points 3 days ago (1 children)

15 minutes drive to my MIL and 4 hours to my own Mom.

My dad used to do tech support and wants to learn some of this stuff while he's recovering from surgery and I'm at my MILs several times a month anyways. So it all works out. Also it's only fair as the FIL has helped me do so much with my car over the years I wanted to pay them back and he likes movies more than me.

[–] AtariDump@lemmy.world 5 points 3 days ago

Just making sure you know what you’re in for.

[–] Estebiu@lemmy.dbzer0.com 14 points 3 days ago (2 children)

Wait, why not create them an account on your instance ?

[–] Revan343@lemmy.ca 8 points 3 days ago (1 children)

I would guess shitty internet in one or both places making local streaming a better option

[–] nagaram@startrek.website 6 points 3 days ago

That's me! Gotta love Spectrum baby!

I actually got into this because I used to have sporadic hour+ long Internet outages when I was trying to watch all of Star Trek.

[–] merthyr1831@lemmy.ml 3 points 3 days ago

Yeah even if you're someone who is super concerned about Jellyfin's API safety, it'll likely be less maintenance setting them up on tailscale than duplicating the streaming hardware. But that's assuming OP's family are as tech illiterate as mine

[–] oldfart@lemm.ee 4 points 2 days ago

I like to leave ssh over tor hidden service on remote boxes. It's pretty resilient and can serve as emergency access for when something happens to the VPN. Not a great primary access method because of the latency.

[–] pezhore@infosec.pub 8 points 3 days ago (1 children)

Speaking as someone who has recently taken on a far-remote (e.g. about 22 hour drive away) support for a MIL, the best thing you could do is set up a VPN.

  1. It works both ways (typically) so you can easily remote in to their system when they're on the VPN for updates/troubleshooting
  2. it minimizes the hardware "on-site" at their location
  3. Depending on your VPN client, it can have an easy to use GUI, further lowering the barrier if your remote person is tech-inept

For me, I'm still on Plex with a very old lifetime account with my MIL using a dedicated user account - that access is over the Internet. The VPN is to provide access to Overseerr so that she can do things like request specific movies/TV shows without having to email/call.

It's not perfect - one day I woke up to 26 seasons of "Into the Country", but it works fairly well.

I sat down with her one day while visiting about a year or so ago and walked her through connecting to the VPN, then getting to the hosted site, then disconnecting from the VPN - basically running drills and making her take notes until she felt she could do it by herself.

[–] nagaram@startrek.website 3 points 3 days ago (1 children)

That's not a bad call.

There's fortunately pretty tech literate people at both locations. I can walk them through most of it with very little a long the lines of finger puppets and crayons.

[–] pezhore@infosec.pub 2 points 2 days ago

We were visiting for about a week and I think it took three separate days, about 20 minutes each day before she felt comfortable doing the VPN stuff herself.

It was definitely painful, but if you're patient, it's doable.

Good luck with whichever option you choose!

[–] captainastronaut@seattlelunarsociety.org 9 points 3 days ago (1 children)

I run my Jellyfin on a Synology NAS and it connects to Tailscale on boot. (Doesn’t require any of their cloud stuff to be active, either). Maybe a cheap/used NAS is your answer?

[–] nagaram@startrek.website 5 points 3 days ago

I already have a stack of Optiplex 30XX SFF PCs. It would be cheaper spending the $100-$200 for a high capacity HDDs TBH. And the idea is that I manage the content on it from my own 30tb store.

12-16tbs of TV and movies is kind of a lot lol.

[–] groet@feddit.org 6 points 3 days ago

wg-quick creates a systemd service for each wireguard config you have. So if you set up a tunel called wg0, you should be able to run 'sudo systemctl enable wg-quick@wg0' This will make your tunnel connect on every boot. I have the same setup on my proxmox, so i can reach certain services of my homelab proxied through a root server (the other end of the wireguard tunnel)

[–] oshu@lemmy.world 3 points 3 days ago (1 children)

You can do this easily with Tailscale or a similar wiregaurd vpn.

[–] nagaram@startrek.website 2 points 3 days ago (3 children)

Is it pretty easy to set up on a CLI?

I'd want to do that if possible.

[–] danielquinn@lemmy.ca 11 points 3 days ago (1 children)

Yes. Tailscale is surprisingly simple.

# systemctl start tailscale
# tailscale up
[–] nagaram@startrek.website 1 points 3 days ago

Hell yeah

[–] johntash@eviltoast.org 3 points 3 days ago (1 children)

Yep, you can install it directly on the proxmox host too.

Just make sure you test it and also test upgrades so you can avoid having to be on-site for those.

[–] signalsayge@lemm.ee 1 points 2 days ago

Or run the docker container if you're going that direction (https://hub.docker.com/r/tailscale/tailscale).

[–] oshu@lemmy.world 2 points 3 days ago

Yes its CLI based

[–] Appoxo@lemmy.dbzer0.com 1 points 3 days ago

If you wanna mirror the movies: syncthing
Remote: Depends on if you want to install a jump station you VNC/RDP/Teamviewer in or directly access it.