That’s never made sense to me; why build an authn frontend instead of just clicking your user if the security is just an illusion anyways. “Use a VPN” is fine for a mainframe, but an active project in 2026 should aspire to be better.
Edit: or make note of that on their several pages with reverse proxy configuration.
Examples dating back over six years https://github.com/jellyfin/jellyfin/issues/5415
Not for zfs. I mount zfs on proxmox. Why I don’t just run samba on proxmox, I’m not sure. There is some fuckery with permissions to make it work in a container and permissions are unnecessary for my use case.
But you don’t really need a ui for zfs. I ran it for 10 years on TrueNAS and only used it for initial setup.
Currently running proxmox and using cockpit to present smb, which is all that I was doing with TrueNAS. Gotta set up a few pieces manually but not really a hassle.
Caddy is a proxy
Your router is almost certainly also a firewall.
The point of the reverse proxy, caddy, is to enable hosting on 443 instead of 42069 (and other stuff). Don’t open that to the public Internet.
Caddy can’t reach your web server (or at least, get expected response from), iocane, so it’s throwing up 421.
Depends on what you’re controlling and your geographic location.
I have one of their devices with an intel CPU. I didn’t even boot the OS. Just popped in the firmware and told it to boot proxmox. But it’s an i5 with 32GB RAM so a different scenario than you’re thinking of. Im still bitter about waiting for Black Friday to upgrade the RAM and paying double.
It’s LPDDR, I think that’s not upgradable, and not a lot.
It may be simplest to move it to a hosted server. Depending on the length of outages, your comfort with electrical things, and your budget, you could get a bigger battery and use the inverter in the UPS (there are caveats-the inverter in the UPS is not rated for higher end of its load past the battery capacity it’s got and may burn itself out, and the charger may not work properly with the larger battery or with different chemistry), or get a battery/inverter box like a Ecoflow or that sort of thing. Solar may be a good bet too.
I don’t know about matrix but failing over between public IPs probably requires a HA sync of some type and also DNS failover.
The original ticket is 2019. That’s 7 years ago.
It responds to and serves content to unauthenticated requests. That’s sorta table stakes if you’re creating an authenticated web service and providing guides to set it up with a reverse proxy.