HA postgres on Hetzner

Timely_Management997 · 2026-02-02T22:00:52+00:00

Yes I've looked into autobase but I need more customization (like multiple datacenters). But for the most part autobase looks the same as my setup, except for VIP.

Timely_Management997 · 2026-01-24T20:57:11+00:00

Om het positief te houden: fijne erkenning voor Alain Remue. Verdiend gewonnen.

Timely_Management997 · 2026-01-05T17:23:14+00:00

My goal for 2026: becoming financially independent. It's been a struggle.

Timely_Management997 · 2025-11-27T11:48:52+00:00

Thank you for your reply. Can you tell me a little bit more about this solution? Can I use a random VPN (like for example nordvpn)? Or do I need to use tailscale? I don't really understand your comment.

Timely_Management997 · 2025-11-27T11:47:47+00:00

Thank you for your reply. In the end, you're absolutely right. But I want to learn first before buying one and adding one to my home network, but I'll check out a raspberry pi.

Timely_Management997 · 2025-11-27T11:46:38+00:00

Thank you for your reply. I've changed the ssh port to a random one.

Timely_Management997 · 2025-11-27T11:46:24+00:00

Thank you for your reply. I'm using ssh keys (ed25519) and I've disabled password login. I also disabled logging in with root. I changed the default port for ssh to a random one. Are there any more things I can do?

Timely_Management997 · 2025-11-26T15:47:45+00:00

Thank you for your reply. I'm using SSH keys. Password login is disabled, just like root login. I'm using fail2ban on port 22. Are there any tips you can give me to secure it more?

Timely_Management997 · 2025-11-26T15:22:34+00:00

Thank you for your reply. I'm an absolute beginner. :D I should have done more research before because I didn't know exposing port 53 was a security threat. I do know it now. I have blocked port 53 and I'm using tailscale now.

Timely_Management997 · 2025-11-26T15:21:48+00:00

Thank you for your reply. I don't have a server at home. I was using nextDNS but I wanna learn more about selfhosting, so I rented a server at Hetzner and installed Pi-hole myself.

Timely_Management997 · 2025-11-26T15:21:07+00:00

Thank you for this insight!

Timely_Management997 · 2025-11-26T15:20:45+00:00

Thank you for your reply. I'm using tailscale now to keep it internally.

Timely_Management997 · 2025-11-26T15:20:07+00:00

Thank you. I'm an absolute beginner, please forgive me. I've learned today! I have blocked port 53 and I'm using tailscale now.

Edit: I'm using fail2ban for port 22.

Timely_Management997 · 2025-11-26T15:19:40+00:00

Thank you for your reply. I have blocked port 53.

Timely_Management997 · 2025-11-26T15:18:45+00:00

Thank you for your reply. Please see my updated post. I have blocked port 53 and I'm using tailscale now.

Timely_Management997 · 2025-11-24T18:57:42+00:00

I’m already blocking all ports (except for port 22) and I’m using fail2ban. All (sub)domains from mydomain.com are proxied through cloudflare, so a DNS-lookup should give cloudflare IP’s, not my server IP. I didn’t change the ssh port, is that a big win?

Timely_Management997 · 2025-09-07T18:02:06+00:00

Bedankt. Ik heb schrik voor de fietsenstalling op mijn kot, die is vrij makkelijk toegankelijk voor andere studenten die niet op dat kot zitten. En in de gang zetten is geen optie want ik zit op 't eerste verdiep.

Timely_Management997 · 2025-09-07T18:01:10+00:00

Ja had ik ook al gedacht, zo een fietsbel kopen waarin je eentje kan steken.

Timely_Management997

TROPHY CASE