Hey, all - I'm basically rebuilding my home lab from the ground up and running into priority decisions as I’m switching to a bunch of new core tools/technologies. I'm new to the world of reverse proxies.
Old lab:
- Single ESXi host, lots of VM’s using system services and installed apps
- An old Synology NAS (413j) just for the NFS functionality
- No reverse proxy, Bind9 for DNS and DHCP as Fedora system services
- Docker (with Portainer) running a few containers
- Let’s Encrypt Certificate management as a cron-driven app on the VM currently running DNS/DHCP
New lab goals:
- 3 Proxmox servers (2 new machines running in a cluster now, 3rd will be added once I pull everything off the old ESXi system) running ZFS (local RAID 1 SSD’s).
- Docker up and running in swarm mode (trying to achieve higher overall availability) on 3 VMs
- Retaining old NAS for now just for shared storage, but eventually upgrade it (budget issues)
- Containerize as many apps/services as possible rather than current VM services or installed apps.
- Decided on Traefix for reverse proxy and moving to Technitium for DNS/DHCP services.
I’m ready to start migrating off the ESXi server, but here’s the questions I’m now stuck at:
- What service should I migrate/implement first – Traefix or Technitium for new DNS/DHCP? Both tools are new to me, and I’m stuck in a logic loop.
- Both of those tools can run certbot – is there a best practice choice which one to run it from?
- Is a Docker swarm (with replicas set to 1 and using a common NFS share) a bad idea for providing HA in this small of an environment?