It is not really what I was searching for

Native install.
Redis installed on the network and accessed by nextcloud.
Separate database on host.

EDIT : formating

Didn’t downvote or upvote either cause your post doesn’t really ask or show anything (expect that you really like leeching, less seeding…)

Please edit it to better contribute to the community

Don’t think so, but I will try to check it

I want to protect my home services, so when accessing my domain it goes trough the vps and you only knows its IP (a datacenter IP) but for my friends and family I don’t need this protection so they are accessing my home with a VPN connection and btw they are using the vps to make requests and so protect their privacy.

The simple solution (since my services are publicly available), would be to route all traffic coming from my friends trough my home and then through the vps. But I don’t like this idea since it would add a lot of latency and useless traffic since the client is already going trough my home…

So my question is how could I route directly to the client the local services and let go through the vps the rest of the traffic?

Hum maybe this is a good solution, gonna dig a bit into

Nah it’s not what I want to do.

The request from client for local services goes trough the first VPN and are resolved in my home and then comeback.

The request from client to outside services goes trought my home with the first VPN, are resolved here and then go to the internet trough the second VPN and then comeback to the client

This is not what I exactly want to do. Requests to my home services are protected by not going directly to my home and rather going trough VPS, but since I know my friends I can let them go directly to my home without at any time go trough the VPS (expect to make up the out request).

Edited the post with a diagramm

Right will try to make you a diagram, but I dont think tailscale would be a good solution…

But if I correctly understand how Tailscale works I would need to install tailscale on all machines I wish to give access to friends?

Yeah that’s what I was thinking thank you. But how can I restrict the access of my local network to my friends and family connecting to the VPN provided (is tailscale something to consider?)

Didn’t know if I explained it bad, but it’s not exactly what I want to do. All the request goes trough my home (since people are VPNed to it), if they are requesting outside stuff it goes trough the VPS using VPN connection. But they request inside services it should go directly to them.

Basically I want to know a way of routing everything trough VPS (basically a wire guard connection) but home services to avoid doing a useless journey to the internet

Not your question sorry, but since your hosting next cloud what’s your experience with it, because I find mine pretty slow and not really smooth

Hi, first congrats for going the way of homelabing.

Like you first the hardware :

The elitedesk are great lines of prebuilt PCs mainly for little home servers BUT I wouldn’t recommend to you to take the mini version as it’s very very tiny and therefore doesn’t have great modularity nor upgradeability.

You don’t need to take massive servers or towers but the SFF versions of these or the normal version (starting to get big) are way better and will permit to you to have more space to tweak it and more generally have some place to put storage or else.

But if you can’t allow yourself to have at least a tiny bit bigger that’s okay and you can stay with the mini version that’s not a dummy choice.

For the storage depending on what you’re going to run in 5 years, 120GB could be not enough, adding the backups, you should consider buying at least 256 to 512GB of ssd (preferable for system (SATA or NVME whatsoever)). When it comes to raw and dummy storage, use hard drive, old schooled at first glance they are dirt cheap when getting them on discount. For storing only some videos, photos and music, 2TB usable is nice and making it mirrored (RAID 1) is nice too. But maybe (if one day comes the idea off having larger sizes) using RAID 5 could be nice as you could expend storage easily, you cannot really adapt RAID 1 to RAID 5 without manually doing backups and restoring them.

So buy some hard disks, if you want, you can buy them used (around 15-20 bucks for 2TB good used hard drive). Or you can buy them refurbished or new as you wish. When it comes to network storage hard disks are the best as you basically can’t max out basic NVME drives with your network, basic ones are at around 3000MiB/s so that means 24,000Mib/s of bandwidth so you would need a 25G network (thing that I think you don’t have).

And using more reasonable sized PCs are going to help you fitting all your drives, and maybe putting external NICs in there.

Secondly the software.

Using docker to easily selfhost is a great idea but I really don’t like portainer and mainly the way they manage docker container.

So I would suggest you 2 things if you want to get a bit into tech simply deploy your docker containers with docker compose file, once into you’ll see that it’s very simple.

But if you prefer a simpler approach while not giving up features, as you said you’re a father (congrats), I wouldn’t recommend to you YunoHost it’s a out-of-the-box platform to self host stuff very easily without pretty much technical knowledge.

If the apps are just for you and your wife (pretty close people) using a VPN that give access people to your whole local network (for really close people) or setting up an overlay VPN like tailscale (and selfhost headscale or use netbird) would be nice and pretty straightforward.

If you prefer to make it available online you can also reverse proxy services to make it open to the www from your IP, or use Cloud flare tunnels (don’t like the idea of having cloudflare snipping out all my traffic) or you can use a vps to do the kinda same thing as with cloudflare tunnels without having them on your shoulders.

That’s it for me, hope I guided you, and feel free to ask questions if you wish. Great homelabing journey to you! :)

Would like to understand it to customize it a bit and serve the service to a port instead of an URL for example

edited the original post sorry

Thx

Grok behind. But is that really what people will use next days, removing any websites and only providing answers… Good or not? Let you choose

The biggest problem in my mind is not only the fact of having a computer but much more to see this “”“”“for kid”“”“”" videos. YouTube and the internet is not a place for kids, and 2 years old is really really young to use this