I’m still a beginner myself, but from my experience I’d say skip Nextcloud at least to start with. I found even the AIO version confusing to set up. Hell, I still do. I have the NextcloudPi image running on a Pi4 but am actively looking for a replacement because it runs like crap on that hardware and I don’t need all of the features it offers/tries to cram into one service.

I’m leaning towards FileRun. Yeah, you have to pay for it once. But so far it seems to be the best alternative that doesn’t try to do too much. And yes, I tried Owncloud Infinite Scale, before everyone jumps on me :)

You can buy a used office computer from businesses that are upgrading (downgrading) to win11 for less than 50 bucks. They tend to be relatively low power, relatively quiet, lots of PCI slots and USB ports so there are many upgrade options, yet low entry price for a decent computer. If you plan on using as a jellyfin server: either mind the chip now for transcoding capabilities (there’s lists out there) or know that if you want that, you’ll have to put in a GPU at some point if the onboard can’t transcode well.

I have a mix of external and internal SSD’s. Some are running way not as fast as they theoretically could, but it all works well enough for me. You can start with what you have, storage is still expensive.

Here’s what I did: I bought a $50 Dell Optiplex desktop with a 4th generation Intel CPU on ebay. I stuffed in 3 HDDs from ServerPartDeals and a boot SSD I had laying around. This machine draws 50 to 60 watts continuously.

I got caddies for the HDDs from my local used computer parts store. I got 5.25 in to 3.5 in adapters from Amazon.

I added a 10 gig SFP+ card (which isn’t fully utilized since my network is mostly 2.5 Gig). Realistically, the onboard gigabit port is adequate.

I got a SATA PCIe card so I can add a 4th drive if needed.

I also bought a Nvidia Quadro P400 graphics card (similar to a GTX 1050, but half the price) for $30 on eBay for Jellyfin transcoding. I couldn’t get the onboard Intel GPU to play nice with Jellyfin.

Excluding the cost of the drives, this setup cost me about $130.

Tailscale works pretty well, but I usually use Wireguard to connect to my router remotely. I’ve had issues getting Tailscale to work well with my reverse proxy, but I suspect that’s a me problem rather than a Tailscale problem. I have OPNsense and Adguard running on an ancient Mac Mini that serves as my router. (If you follow this route, make sure you get a Thunderbolt Ethernet adapter, not a USB one.)

I would recommend putting the pihole and any network management tools on dedicated hardware.

It’s not fun having a random update for Transmission take down your entire internet. Ask me how I know.

I would go for refurb, business line SFF machines. Something like ThinkCentre or Optiplex. Specific form factor based on drive needs but the smaller you go the more power efficient. I have one on the bigger side (internal psu) that runs about 12W idle.

Just double check that it can handle hardware transcoding. Should fit right in your budget!

VPN - I currently pay for Proton, and we use it on the FireTV, but it sucks cause it doesn’t have killswitch.

I have been using Private Internet Access so long I can’t remember when I first started but it’s been years. I’ve had great success with PIA and I never fire up a device locally without it. It does have a killswitch, advanced killswitch, split tunnel, multi-hop with shadowsocks or socks5 proxy, openVPN or Wireguard configurations, and a dedicated IP option.

I’ve tried other top name VPNs, but imho, none come up to what PIA does.

How much is a kWh in your parts? Noise, ambient temperature? You can buy very decent refurbished Lenovo tiny PCs with some 16 GB RAM and 6 cores and half a TB SSD which will run Proxmox and are low power and noise. You can go multi-node Proxmox later if you want to expand. k8s and related are also an option.

Start with a vps so you can ramp up with the software.

Proxmox on a Lenovo micro form factor is probably a good cost effective option. Get a business class ThinkCentre, like an M720 or something similar that’s 3-5 years old that a corpo has just upgraded away from, i5 or Ryzen 5 with however much storage and RAM you want. Spin up a container specifically and only for PiHole+Unbound (and consider adding a pi or some other dedicated hardware for DNS later on for redundancy in case your main goes down), and then the rest is however you want to build your environment.

For me, I’ve got a Pi dedicated to 3 key tasks: PiHole, Unbound, and PiVPN (edit: and Nginx Proxy Manager. It’s dedicated to 4 key tasks…). It’s basically my filtering interface between the home network the rest of the internet immediately after my router handles the frontline defenses, and then I’ve got a Proxmox cluster to run most of the rest of my internal services.

Protonvpn has a Killswitch: https://protonvpn.com/support/what-is-kill-switch

A kill switch is available to all Proton VPN users on Windows, macOS, Linux, iOS and iPadOS. Newer versions of Android now have built-in kill switch feature, as explained below.

Please note that our regular kill switch feature can’t protect you if you intentionally disconnect from a VPN server. However, the feature does protect you while switching servers with Proton VPN.

Our Windows and Linux apps now also feature an Advanced kill switch. In addition to protecting you from accidental VPN disconnections, this prevents you from accidentally using the internet without the VPN turned on, and it will persist when you shut down and restart your device. You will not be able to connect to the internet if you manually disconnect the VPN without also disabling Advanced kill switch.

or are you in a different scenario where that doesn’t work?

I’ve configured my router to set up a VPN connection to proton ( wireguard config ). I then decide which devices gonout without vpn and which with VPN. ( Default being with VPN ). If the wireguard tunnel happens to go down, the devices can’t surf the web.

If you really want something upgradeable, used enterprise SFF is the way to go: https://discountelectronics.com/

However, the hardware market is in a weird spot right now; you’ll get far more bang for your buck with an Intel N150. You can find a 16GB DDR5 w/ 1 TB SSD around the $200 mark, and that’s what I’d roll with in your shoes, assuming you don’t mind living without a spinning disk. Your Jellyfin and Immich instances will run far smoother.

Tailscale is great. Don’t believe the bad press. You can always switch in the future if they change their trajectory.

I run all of that on a Dell Optiplex that I bought refurbished in your price range. I couldn’t figure out the self-signing certificates to run nextcloud without a domain, so I run OwnCloud, but hopefully you’ll have better luck.

If you can get something your local university is discarding due to W10 end. Got my first server this way ( core 2 E-something ) when W7 EOL was anonced and it ran nextcloud very well. If you can’t, go for an used pc. The only thing you should buy new are disks.

Even if the hardware is not performant enough to run it can be a 2nd node for promxox.

Bookmarking as I too am interested in this topic.

Raspberry pi can handle a lot of those tasks fine and others slowly. They are dirt cheap and need very little space. You can add usb storage easily.

I would start there until you know what you’re doing and know what you want.