It looks nice, but honestly, once I set up everything (which I do on each of the *arr anyways), there is nothing left to be managed. That‘s the whole point of this setup, to get rid of managing things manually.

So even if I love that project and am very appreciative for all the work, I don’t have any use case in my setup that would want me to use this.

Is this the only point, when it comes to security? In my experience, the ease of use is also a factor. Today, VPN clients are just one button and it runs. I2P is almost there, but requires you to setup some configs manually. So is it really worth to drive a tank to just go grocery shopping?

Tomorrow passwords will be cracked in no time, because most algorithms are not quantum safe. Same with password length.

I never said it is not an attack vector. There are dozens if not hundreds. The question is about the probability, which is always a dimension if you manage risks. There is no need to list all theoretical possible attack vectors, if the probability of actually happening only affects 2 people on this planet.

Videos for educational purposes should not sensationalize unlikely attacks, as it only causes unnecessary fear. I’d rather have someone using torrent on VPN than not using anything at all because they are now afraid of the government.

That’s not what I was talking about?

If someone is actually trying to convict you just based on the correlation of the connection times, you probably don’t just share a copyrighted movie. So why mentioning this as an actual threat in the first place?

By the way OP, similar but worse is the ability to handle 25Gbits. But someone made a working router for that as well and CPU was also a factor: https://michael.stapelberg.ch/posts/2022-04-23-fiber7-25gbit-upgrade/

True. But since OP is using a benchmark anyways, I don‘t know how close to real world that is. If they are doing lots of filesharing, let‘s say with P2P networks, it could be way worse because of the number of connections. So I agree with you - I was just working with the info I had :)

And he is currently at 1/3 of the potential speed and 3*60% = 180% CPU load for 1Gbits. So I wouldn’t even bother troubleshooting further when you already know the hardware will be an issue sooner or later.

The question is what you do with your pfsense. IDS/IPS are quite CPU hungry and Celerons are not really fast CPU’s.

DNS? Why so complicated? Just edit your hosts file 😏

Agree. I just got it for fun and because it was cheap. I used it for my disposable e-mail addresses but now switched to .org

Also, don‘t use it for any mail servers. Spam Assassin gives a negative score by default on *.xyz domains. Stupid as shit, but I had to learn the hard way.

My HA is running in docker. It is easier than you might think. Forget about LXC. And just take your time migrating the stuff and only when the service works in docker, you can shut off the VM. Believe me, management of docker is way easier than 5 VM‘s with different OS‘s. Docker Compose is beautiful and easy.

If you need help, just message me, I might be able to give you a kickstart

I was assuming you were able to get rid of the other 5 VM‘s by doing so. If not, obviously you would have not less overhead.

Add a new VM, install docker-ce on it and slowly migrate all the other containers/vm‘s to docker. End result is way less overhead, way less complexity and way better sleep.

Don‘t forget that the copyright law is a civil law, so there needs to be someone being able to proof to have suffered from any damages. Having a law case within a border is usually much cheaper to having one internationally, because every country has a different law system and you need a lot more lawyers, just to then find out there was no damage. So the risk of paying a lot of law fees without getting any damages covered is just too high. Obviously, it makes sense that big studios will try to hunt down big trackers, but I think even with my 25/25Gbit I am far away of being an interesting target, especially on an international level. At least this is how my view on this is.

Thanks for the heads up. I am well aware of this. Obviously I would try not to get too much attention and would probably block all Swiss clients from accessing my server. Having legal issues internationally at that scale without any money involved is unlikely. But that‘s just my hypothesis.

Edit: only because I‘m a pirate does not mean I have no moral values. I would never want to distribute heavily illegal content. Only copyrighted content.

I had to start somewhere, I think everyone is able to understand that. I was not even asking for specific invites, just in general. Maybe there is someone trying to run a new private tracker and is in need of seeding power. Without asking, I would never know.

Glad to hear that bandwidth is no issue anymore. Then I use my bandwidth for something else :)

I just checked and only for the cheaper subscription they use CGNAT. So I will not be affected by it.

Thanks for this very helpful response. The way you describe it makes absolutely sense and I will use this as a guide in the future.

Yep, I know, that‘s why I was looking for people who are the owners of the trackers and just need someone with decent bandwidth. Other than that it is just a game of patience.

Yeah, I will keep on using usenet and just would use torrent as a supplement or additional source. Mainly only interested in movies/shows and games. But to be honest, I don‘t mind seeding other stuff for a couple of weeks, but will eventually have to delete it to save some space for the things I really want.

Maybe there are some screenshots on some old IDE drives or chatlogs of IRC, but I‘d have to invest a lot of time with low chances of finding something useful. So please, don’t trust me blindly. I know that trust has to be built first and that private communities can be fragile at times. So your questions are very valid and relatable :)

Sorry, forgot to mention the period. It is per year.

Oh I‘m not inexperienced in that area, so I absolutely know what you mean. I just kind of lost the connection to that scene.

Very true. Currently I‘m only at about 45TB of space, but could extend it fairly easily to 198TB or more.

In Switzerland, the ISP Init7 is offering all their connections for CHF 777.- (USD 861.-) per year and you just get the maximum speed, which is currently 25/25Gbps. This provider is well known for fighting for net neutrality and being against any censorships or mass surveillance. I just love them very much and wish that other countries would have such awesome ISP‘s as well.

Not everyone is able to afford subscriptions of indexers and hosters. I just would like to contribute to the community with what I have.

I have no idea what you smoked, but 25Gbps (Gigabits per second) is 3.125GBps (Gigabytes per second)

Thanks for the hint. Have been out of the game for 15 years and kinda lost all my contacts, since I was mainly using usenet the past few years

Technically yes, but I don‘t have the nerve and time to manage it properly and I wouldn’t want to host a mediocre service. Also legal stuff etc is making many things complicated.

Then I‘m still curious what kind of provider you are talking about, because I simply don’t understand it. Could you maybe send me a pm with the name of it?

IPTV - I use a UK centric provider that costs £30 GBP every 3 months (Equivalent to 10 GBP a month). This gives live TV (sky), Netflix, Disney+, Amazon Prime and a few other bits and bobs in this price. You also get a backup stream so if the primary goes down you can still use your IPTV.

1. what provider are you talking about here?
2. your setup only focuses on streaming IPTV, right?

First of all, thanks for the effort you put into this guide, this is super helpful for a lot of people.

What do you mean by „This gives (…) Netflix (…)“? With IPTV you just get an MPEG stream. But with Netflix you want to select the media you want to watch. So how would that work?

Lemmy users be like „I fucking love decentralized freedom“, until someone joins they don’t like.

I‘m the author of this one and currently it is kind of a mess. Focus was on downloading stuff via usenet and torrent and now many home automation tools came along:

https://github.com/kylhuk/Download-Box

Nice, glad to hear! If you get stuck, feel free to message me!

As I have no idea what level of knowledge you have in IT, it might be hard to understand. I try to keep it ELI5. Years ago, if you wanted to run software, you had to buy a PC/server, which meant you had to buy all the hardware for it. As hardware development continued, things like CPU‘s suddenly got faster and were able to handle multiple tasks at once. So people had to come up with ways to share this power between different software components. For various reasons, you didn’t want to install everything on the same operating system, to avoid compatibility issues. The ideas of Virtual Machines and Containers was born. The key difference between those two concepts is, that in VM‘s, you have a full operating system running the software. In Containers, you share the operating system base, but the containers itself are isolated.

So, docker is providing an easy way to manage containers. Since the container itself does not have that much overhead in terms of „blocked resources“, we can create one container per application we want to run. One for Sonarr, one for Radarr, etc.

Since docker is running on Linux kernels, is there a way for you to have a Linux server? Or could you maybe install Linux in a VM?

Agree with this comment. Use docker. In the beginning a little bit more complex, but if used properly, you never have to care about updating anymore. @OP if you need some help, I can give you some advice and my Docker Compose file.

So I‘m a Synology user for years (currently a DS921+ with a DX517 extension) and use it mainly to store movies/shows.

For you here are some things that might be useful to know:

• Consumer NAS are massively underpowered in terms of CPU and RAM. Both is needes if you run a few Docker containers. Especially the transcoding of media files is very CPU intensive.
• using a very small „compute“ node, like an Intel NUC, takes care of this problem. I run all Docker containers on this one, while I use the NAS only as storage.
• Consumer NAS are super easy to setup and also to scale, in case you need more diskspace.
• I was never a big fan of Plex for various reasons. I use Emby and I‘m very happy about it. I also hears many good things about Jellyfin