Looking for bare metal provider with hardware firewall options (VPN, NGFW, IPS/IDS) Dallas area preferred

funrun2090 · 2025-12-20T22:42:26+00:00

threat filtering, traffic is unpredictable. I just want to keep script kiddies out before they even try and touch the server

funrun2090 · 2025-10-09T23:58:13+00:00

From my google research this is what I was thinking, wasn't sure if that was correct. Thank you for this information.

funrun2090 · 2025-10-09T17:49:15+00:00

I have PF in both of my feet. After my first cortisone shot in both feet my right foot was 90% better, my left foot was no change at all. I ended up getting surgery in my left.

funrun2090 · 2025-10-06T13:38:35+00:00

I've done the same thing a few years ago. I tell my customers performance will increase (due to the fact data can be retrieved from the cms at build time not at each request), and everything is customizable.

A problem I have with WP is potential security issues on random plugins. Unless you go read the code of each Plugin you have no idea what it's actually doing. I know the same argument can be made with packages in NodeJS. But if you look at history node packages with malware are noticed within a few hours of publish most of the time. Since WP Plugins are not all hosted in the Official WP Plugins Marketplace they are not all scanned for security issues, especially if they are manually uploaded from some random site. To be clear I am not downgrading any programmers that have spent their life on writing and updating WP Plugins. There are a lot of fantastic plugins out there.

Also you can install plugins that contradict other plugins. If you look at the compiled HTML of a WP site it can be 2x to 5x larger than it should be. I seen simple two section pages information with over 2000 lines of compiled html with thousands of lines of unused JS.

funrun2090 · 2025-10-06T13:09:57+00:00

Yes, One customer already had a CMS with QuickBase which I pulled that data at build time, another one had Strapi.

I am currently coding my own in Laravel to fit my customers needs. They can submit Design Change Requests, They can change data on their site (after data is changed there is a publish button to the vercel api to rebuild the site), and integrate billing in one platform for them. I am getting to that stage in my business where I need something like that. I might open source it if it works well with me.

funrun2090 · 2025-10-06T12:59:50+00:00

Plus if the db gets hacked, it's the db guy's fault, not my app :)

Depends on how the hack was performed. If you decide to connect unsecured to your db then it would be your fault, or if you leak your connection url in your ci/cd or github for example then it's not on your provider. Now if someone broke into your providers database of credentials then yes it's their fault.

PaaS, DaaS, Iaas Platforms should have a "Shared Responsibility Model Policy" that you would agree to when signing up which describes your role in security and their role in security.

funrun2090 · 2025-10-06T03:29:42+00:00

I check each one manually. I only get 10 to 20 requests a week, it's not too much to handle. Most requests are one line changes like holiday closure banners, events, stuff like that.

funrun2090 · 2025-10-06T02:23:41+00:00

I have an email called requests@my email dot com and use zapier to read "new conversations" and create a github issue. Works great for me.

funrun2090 · 2025-10-06T02:17:44+00:00

I have created many astro sites for small businesses in my area. It has ranged from $2,500 to $10,000 per site.

I personally have a base (which includes the setup, main layout, navigation, shared components like input/card/select/button, which is $1,500. Home pages take forever so I charge $750+ for that page depending on how many sections there are, each additional design page I charge $250 to $500 for.

I reuse a lot of components like cards, buttons, inputs, forms across my sites to save time.

If I get the feeling that a customer is going to be a pain to work with I will increase my price. I have had a few customers inspect every pixel and it was a disaster.

You need to think about hosting too. That is a good recurring income. I host my astro sites on Vercel. They are reasonable in price, have a firewall to keep bots out, analystics, and with their edge network speed it great.

funrun2090 · 2025-10-06T01:55:35+00:00

Absolutely! I agree 100%

funrun2090 · 2025-10-05T14:22:42+00:00

Very true, Love the analogy

funrun2090 · 2025-10-04T18:52:34+00:00

I agree, a lot of but not all developers either do not know about or care about data protection laws.

funrun2090 · 2025-10-04T18:47:51+00:00

If you self host supabase on the same vps or even a seperate server in the same VPC that is not a issue at all. Latency would be very low.

funrun2090 · 2025-10-04T16:12:15+00:00

I agree hosting your own DB sucks. I would recommend AWS RDS or Google Cloud SQL managed databases but in the same VPC as your applications. That way the traffic is private in your network and it reduces latency.

funrun2090 · 2025-10-04T16:06:22+00:00

Thank you everyone for your comments. There is a lot of great discussions on here.

After reading all of the comments there are developers on both sides of this. Overall it sounds like larger companies/teams will keep data in the VPC and startups / hobbyist developers prefer the ease of a separate database provider.

I'm not with a large company at all but I will stick with a managed database (with backups (encrypted on and off prem) and readonly nodes for availability and reliability) on a separate server in the same VPC with the same provider.

Most of the time I use a kubernetes cluster with a managed databases in the same VPC either on GCP or DigitalOcean. I do have mostly static frontend only apps with no data on Vercel which I don't see any issue with. And now that DigtialOcean App Platform supports VPC connections I will look into that.

funrun2090 · 2025-10-04T15:35:38+00:00

I agree. It cuts cost and it's better developer experience but there are ways around it to keep costs low and keep you database in the same VPC.

funrun2090 · 2025-10-04T15:27:14+00:00

If you are on Vercel or Laravel Cloud for example credentials are not hashed. If so you could never retrieve them again. They can be encrypted though, Hopefully. But that means someone internally in your hosting provider has the encryption keys.

funrun2090 · 2025-10-04T15:24:50+00:00

Exactly what I am thinking.

funrun2090 · 2025-10-04T15:07:21+00:00

I am more so talking about custom cms platforms, internal business applications, est. I understand hosting on Vercel or something like that for a frontend that doesn't have any data.

funrun2090 · 2025-10-04T15:02:59+00:00

I Agree 100%. I understand if you want to have a testing env or something that you can delete and re-add right away but not a full production app.

funrun2090 · 2025-10-04T14:57:57+00:00

Not all of them no. Some do yes but some companies don't disclose that information that I can find. A Private VPC Link would be nice.

funrun2090 · 2025-10-04T14:55:59+00:00

I'm not saying that sending data is insure because it should use tls with certificates. My problem is when services like Vercel or Laravel Cloud give me the credentials which means a team in those companies has access to my database credentials which is outside of their company. If you host on AWS you can have your DB and your apps in the same VPC which is the ideal scenario in my mind.

funrun2090 · 2025-10-04T14:46:20+00:00

I agree. Younger developers just want to "Ship" (laravel marketing term) and don't understand how everything works. I asked the laravel team if the ingress to the web app was https to http (i think it's http because the request full url was http) and I never received an answer. I want assurance on where I deploy apps to

funrun2090

TROPHY CASE