The only one I haven’t seen mentioned here that is a requirement for me is OPNsense. I’ve been using it for a couple years, and pfSense before that for a very long time. Never going back to commercial routers and their shitty / buggy / backdoored software. I highly recommend OPNsense over pfSense for the UI improvements alone, but there are other reasons to use/support OPNsense over pfSense.
On my network it handles internet firewall, internal firewall, and all routing across 5 VLANs and between two internet gateways. It does 1-1 NAT for my public IPs, inbound VPN, outbound VPN for my *arr stack, and RDNS blocklists with the data source being a script I wrote that merges from several sources and deduplicates the list. It is my internal certificate authority (I don’t miss you at all, Windows CA), DHCP for the guest wifi, and does pihole-like ad blocking via DNS for my entire network. And it does all that running in a VM with 2GB of RAM, of which it only uses about 60% on my install.
It is an incredibly powerful tool, not terribly difficult to learn, has a pretty damn good UI for FOSS, and in my opinion is a fantastic foundation for a complex home network / homelab. Unlike pfSense, which corrupted itself twice over the years I ran it, it has never let me down. And every update has been painless over the years.
Second OPNsense. pfSense also is maintained by some pretty shitty individuals.
Why “shitty individuals”?
https://web.archive.org/web/20160314132836/http://www.opnsense.com/
This was the website that pfsense maintainers made as soon as OPNsense was announced. They sniped the name, derided the project and only ended up handing over the domain after they were legally compelled to.
One person affiliated with Netgate in particular can be seen around forums and social media and has serious axes to grind. He’s… not pleasant.
Add to that Netgate’s practices (IIRC secret proprietary blob required to build pfsense, double-check that fact / unremovable installation tracking) and the picture painted is one of petulance and anger.
[edit] oh yeah, and this gem! https://arstechnica.com/gadgets/2021/03/buffer-overruns-license-violations-and-bad-code-freebsd-13s-close-call/
Damn, now I get where is your “shitty individuals” coming from. Thanks for the info.
Pi-hole. Get rid of at least some ads on the network level. Maybe add unbound for a faster DNS response.
In terms of most used for me, it would be:
- Nextcloud: contains my contacts, calendar, and photos synced with my phone, as well as access to files on my server from any web browser.
- Home assistant: both automated and remote control of your lights, thermostat, etc.
- Audiobookshelf: only really useful if you have an audiobook collection
- Vault Warden: self-hosted bitwarden. Not really all that important to self-host, since a bit warden’s clients are open source.
- Frigate: only useful if you have security cameras.
- Navidrome: only useful if you have a music collection.
- Jellyfin: only useful if you have a movie / TV collection.
Gonna also throw in: Nextcloud Memories.
It makes the photo organizing part of NextCloud AMAZING. I’m so happy I got to dump Google Photos for good.
Opnsense
Vaultwarden
Email
Home assistant
Emby
Gitea
Paperless-ngx
Firefox
Firefox
You mean you self-host your profile?
No. I host Firefox that runs in a browser.
It’s one of my favourite things. So places that may block certain sites can be bypassed.
How do you self host Firefox? This is something I’d like to setup!
It’s this: https://github.com/jlesage/docker-firefox
Please not these posts again
This thread is pinned for a reason: https://lemmy.world/post/60585