I’m not great with Docker or networking, so when I picked up an n100 mini pc for self hosting I installed Ubuntu and Tipi to get started.

I used Tipi to install Immich and forwarded my ports, then setup cloudflare tunneling to expose it to the internet. Currently I’m migrating from Google Photos.

But since I’m new to this I’m worried about exposing Immich to the internet without really knowing what I’m doing. Any suggestions on ways to monitor my setup to make sure nothing goes wrong or gets hacked? Ideally any application suggestions would come from the Tipi app store but I’m willing to learn if there’s no other option. Thanks!

    • @BearOfaTime@lemm.eeEnglish
      54 months ago

      Tailscale is a mesh network. It’s all encrypted, like a VPN, but not exactly the same thing.

      It’s kind of like each member of the network having a VPN connection to every other member of the network.

      Tailscale has a neat feature called Funnel, which funnels specified inbound traffic from the internet to a specific resource/service/device.

      That traffic is encrypted too, starting from the entry point (which is hosted by Tailscale).

      This can be useful for example, for something like Nextcloud, so clients don’t have to run the Tailscale app to get access.

    • @Player2@lemm.eeEnglish
      14 months ago

      That’s what I do, everything local only and then remote access through Tailscale