They cut all such scenes and pasted into The Boys, in a Mark Twain style “Sprinkle these around as you see fit!”.

first you should check logs of cloudflare tunnel - most likely it cannot access your docker network. if you are using cloudflare container - it should use same network as a Immich instance.

in short: find the tunnel log and see what is happening there.

matrix I, skipped classes and watch it more than ten times in cinema.

Kinda like it, but there are some ux things I don’t like. i.e. - tags are not in the search

usually i add more than 1 ip and also vultr firewall can be managed to change ip. tailscale can be used as well. there are options!

if you configure ssh access only from your home ip - then fail2ban is not needed.

sorry, this is kinda like a firewall, but protecting websites, so many vulnerabilities are filtered out. it does not protect you 100% percent (nothing does). it might be hard to setup, in that case there is an option to use waf as a service, i.e. - cloudflare has such offering, maybe there are others as well. i have looked into vultr - they seem to offer only a “usual” type of firewall, not http/application based.

Get some WAF for the public facing app, maybe at least https://github.com/nbs-system/naxsi .

Any observed impact to performance?

Since they are federated - choose to your liking ;) https://joinbookwyrm.com/instances/

yep, bookwyrm ;)

it takes time to be good at it, but maybe you could start with Yunohost and slowly learn the ropes.

a book - https://ziurkes.group.lt/book/4399/s/unix-and-linux-system-administration-handbook (use it as a reference, not as a novel - it is more than 1k pages)

it works fine, depending on popularity of your instance - you might have to add more resources in the future.

as for aarch64 - there are docker images available for lemmy and lemmy-ui