Why don’t you build your own?

And that’s the biggest ISPs, plus he can still use Tailscale or Zerotier and still be able to access his network. Plus IPv6 IPs should be easy to assign and won’t be paid or limited.

Usually German ISPs are giving you IPv6.

Most likely you are under CGNAT, so your best bet is Tailscale, Wireguard, CloudFlare Tunnel or Zero Tier. Pick your poison.

But maybe people elect politicians, and perhaps they should look for their constituents rights first? I know that’s an utopia, but imagine the world…

With this GPU you can install a media server like Plex or Jellyfin and offload the transcoding on the GPU, but mind you you will still have a high idle load consumption.

Normally in a headless home server I would need virtualisation and low idle power consumption. So this GPU and PSU are a bit of an overkill if you are not planning to fully utilise them.

Another piece of the puzzle is probably your WiFi router, as you normally won’t get speeds near 1Gbps over WiFi. In order to benefit maximally from it, you need to connect your devices (laptops, stationary PC, TV, etc.) with a cable to get the most of it.

You should also try to disable some pfSense plugins, like OpenVPN, zenArmor, etc. as they will severely limit your bandwidth throughput. But as others said, most likely you will also need to upgrade your hardware box, and you can migrate to OPNsense while at it.

Or Dockge

Just changing the SSH port to non standard port would greatly reduce that risk. Disable root login and password login, use VLANs and containers whenever possible, update your services regularly and you will be mostly fine

If you are behind CGNAT and use some tunnel (Wireguard, Tailscale, etc.) to access your services which are running on Docker containers, the attack vector is almost not existing.

Do you really need multiple VMs, can’t you run all at one? The easiest would be to install some windows/Linux on a single machine. Then stream your games with Sunshine/Moonshine and connect over RDP/VPN?

https://github.com/awesome-selfhosted/awesome-selfhosted - just pick one or more services from the list and start looking into their documentation.

YouTube and the web are full of information and guides how you can do it. Me personally I would suggest you to use Docker container and Docker compose if possible. You can see how you can install Docker or Podman to run the containers.

I am very much interested

Frigate or Bluetooth I guess

That’s why I also switched to Obsidian. Used it for a while, but the inability to port it to another app turned me off.

You mean OpenTofu, right?

Have you tried https://shadowsocks.org/? I don’t have any experience with it, but heard it is good at masquerading your traffic and making it almost impossible for your ISP to block it

The reality is that you won’t learn much just by reading, you need to try to debug stuff and eventually work in the area to truly learn.

But I am sure there are plenty of tutorials and video courses in various platforms where you can learn a bit on the topic. Coursera might be a good place to start as you can enroll for free to those courses if I am not wrong.

https://www.baeldung.com/linux/network-speed-testing try some of the options offered here.

You can also try rsync/rclone too and see how they perform.

SCP encrypts your traffic before sending it, so it might be CPU/RAM bottleneck. You can try with different cypher or different compression levels, which are defined in your .ssh/config file.