Yea, it’s not the first time I’ve seen this discussion either.
I don’t wanna seem like I’m not believing you or belittling your experience, I just find it weird that we (we, users, as a whole, not just you and I) have such wildly different experiences with it.

As is, I have a vastly better experience with my own nextcloud than with corporate’s onedrive, with more stuff on mine.

Wish I knew why it’s so inconsistent.
Even though my nextcloud experience is fine, I know plenty of people with the opposite.

Legit have had none of these issues.
I do get a notification once in a while if I modify a picture fast enough, like a quick crop and it’s still uploading. Like snap pic and edit within the same 5 seconds or so.
Basically just a: “there are multiple versions of the same file (which is true), which one do you wanna keep”.

Then again mine is running on a pretty beefy server which might hide issues rooted in performance.
I remember it being hell when I was running it on a RPi.

Yea only times I’ve had issues is if I run out of space allocated to the container that runs it.
I currently have 16GB of phone uploads and 540G overall, it works fine

Nextcloud’s instant upload feature?
Whenever I take a picture or screenshot it’s uploaded there.

Nextcloud might be overkill if that’s the only feature you need. I’ve never used the more involved stuff like chat or document editing, just sync.

Some subjects you might wanna look into.

1. NAT hairpin, also called NAT loopback If you’re sending packets to your ISP’s public IP from inside your LAN and it fails, your ISP modem (or whichever device does the NAT, probably doesn’t support NAT hairpin.

2. Split-horizon DNS That’s when you configure your own DNS for your hosted services, but with a different config on your LAN (which would point towards your services LAN IP) and another config with your public DNS provider (which would point to your public IP)

3. Carrier NAT This could break your chances of having a reachable service as they likely won’t make a port forwarding rule for you in their stuff.

4. IPv6 address types Link-local addresses are within fe80::/10 (kinda similar to how 169.254.0.0/24 is used in ipv4). This IP wouldn’t be reachable from the outside.
   Global unicast addresses are all in 2000::/3, this would be reachable from the outside.

5.IPv6 DNS Make sure to configure both A (ipv4) and AAAA (ipv6) records with the right info. Although if your LAN devices only have ipv4 addresses and you’re doing Split-horizon, you could theoretically omit the AAAA on your LAN

6. Phone DNS shenanigans.
   Some recent phones ignore the DNS they receive through DHCP and instead use something like Google’s which breaks split-horizon and can confuse troubleshooting. This wasn’t in the SSID settings, but in a global “private DNS” setting.

As for your problems, it depends.
There might be a way to make this work without the VPS, but I don’t have all the info.
That said, a VPS or something like a cloudflare tunnel could come in handy. I usually prefer to host directly but still, that’s an option if port forwarding doesn’t work with your ISP.
You’d configure the DNS for your services to the VPS IP and configure the VPS to reach your stuff.
Using the VPS kinda also gets rid of NAT hairpin problems although it is inefficient to go through the VPS from the LAN with the downside of not working when your Internet is down.
You can still use the VPS and Split-horizon DNS if you wanna have local availability from your LAN when your Internet is down.

Good luck

mTLS is great and it’s a shame Firefox mobile still doesn’t support it.

Probably something for @jerry@fedia.io

Thanks, that’s an interesting read.
I know that’s one person’s opinion and not a thorough research, but that’s still plenty of red flags.

I’ve used the 100 searches in the free trial, thought the search was fine, better than Google’s these days. The subscription is a bit steep so I held off, kinda glad I did after digging more into this.

Having what little employees they have also make a mac-only browser, AI stuff and email that their user base doesn’t seem to want is all a bit weird.
Buying a t-shirt factory (wtf) with the money they could have used to potentially lower the subscription, but decided to burn through it to give out free t-shirts. That just screams narcissism-driven to me.

Their vague statements on privacy isn’t convincing at all.
Some variation of “we don’t care about your data” isn’t in any way compelling evidence that you care about protecting the privacy of said collected data.

In my opinion they lack focus, commitment and conviction into what I thought was their primary mission at first glance: being a privacy-focused no nonsense search engine.
Although that’s probably on me for reading what I wanted to see between the lines and that never was their stated mission, which would explain a lot.

Yup.
This kind of spam has been going on for a while and is usually removed promptly.
Sorry, I think our local murder bot was offline at the time.
Anyway, they’ve since been banned along with a several alt accounts.
Don’t hesitate to report those if you see more.

Oh and I think we would rather not advertise their spam URL if you wouldn’t mind editing the link out from the quoted part.

Thanks,

Haven’t had to use port forwarding for gaming in like 30 or so years, so I just looked up Nintendo’s website…

Within the port range, enter the starting port and the ending port to forward. For the Nintendo Switch console, this is port 1024 through 65535

LMAO, no thanks, that’s not happening.

For your question, you could likely route everything through a tunnel and manage the port forwarding on the other end of the tunnel.

I have a couple of friends and family members who i think are probably here, but we don’t talk about it.

This. Same as it was on reddit back then too.

a home-instance temp ban will override a remote instance perma ban (there’s a PR in the works to fix this , but it’s the way things are currently)

The way things work now is annoying.

Troll creates an account on instance A, posts racist shit or other uninspired bait on instance B.
Gets instantly permabanned from instance B.
3 days later, home instance A decides to ban them for a week.
Thus, a week later, user is automatically unbanned from home instance and all federated instances, including where they were permabanned.
Current behaviour is bananas.

This particular troll’s lack of creativity is unsurprising.

On par for people complaing about a ban.

Ultimately, do whatever you think you’ll be able to keep up with.
The best documentation system is useless if you keep putting it off because it’s too much work.

It can be in git even if you’re not doing ‘config as code’ or ‘infrastructure as code’ yet/ever.
Even just a text file with notes in markdown is better than nothing. Can usually be rendered, tracked, versionned.
You can also add some relevant files as needed too.

Like, even if your stuff isn’t fully automated CI/CD magic, a copy of that one important file you just modified can be added as necessary.

Cool project.
TBH, I’m just about to locally ban a few kbin magazines that are just completely overrun with spam.
Wish they’d delegate some of the moderation at least.

They targeted smaller unattended mastodon and misskey instances… to create accounts there and post their spam all over the place including larger instances and lemmy.
Several hundred posts were removed since then.

Being on lemmy, I never really used kbin much.
All I know is there’s a ton of spam coming from there, and their moderation seems spread thin.

Are you trying to recover data here?
Seems like you didn’t use it and (maybe?) don’t have data to lose here?

Yea I’ve been using nextcloud for a while and it’s fine.
I remember when I used owncloud before nextcloud was even a thing and the upgrade experience was absolute shit.
These days it’s just fine.