New Setup Advice and do I need Cloudflare?

[SmoothBrain]

Hi all,

 

Hoping to get some advice before I start installing apps on my new build. 

 

'OldServer' - refers to an Unraid build that will be retired

'NewServer' refers to new Unraid build and licence

 

 

I decided to start an new Unraid server from scratch as my 'Old Server' has just accumulated too many issues over the years. I'm aware of being able to create a new config within Unraid but didn't want to deal with it, plus want to keep the 'OldServer' active as it still serves Plex to the family while I figure everything out.

 

Note: I have a Static IP from ISP and CGNAT has been disabled. I may have ports 80 and 443 open by ISP too but will need to call them to confirm.

 

The apps to be installed on 'NewServer' are:

 

• notifiarr (using trash guides settings) - following this guide (https://www.youtube.com/watch?v=eDlWTze8EKo)
• sonarr/radarr/readarr/prowlarr
• Plex
• lancache 
• audiobookshelf
• nextcloud
• kavita

 

I have two main questions:

 

1. Do I need Cloudflare?

 

This is mentioned all the time and before I go and set it up, I want to make sure it's actually needed. For Plex, I have 2-3 users who are not within the house so will need to be able to use Plex elsewhere (plus I like to use it while travelling). The main ones will be audiobookshelf, nextcloud and kavita. How do people access these outside the network without Cloudflare or is it not possible? Users need to be able to just click on the app and have it work, not connect to VPNs etc. each time or anything like that. I can walk them through initial setup and settings as needed but from then it needs to be user friendly. From a management perspective, I don't particularly need to access the server whilst i'm out. And it looks like I can manage everything using Unraid Connect anyway?

 

    2. Which order do I install everything in?

 

I suppose this is more for the *arrs and trash guide/hard links. I want to make sure everything works properly so is there an order I should do this? Question 2 also relates to  Question 1 as if I need to go down the Cloudflare route does that get installed before or after everything else?

 

 

Thanks for any advice provided and happy to provide any more information needed

[Gunny]

For external users to access those services, you either need to port forward the services or run a cloudflare tunnel (or something similar).  Since you don't have CGNAT you can simply port forward, then have a dynamic dns entry setup just in case your static ip changes after a reboot or something.  I would start there, get things working, and then you can migrate to a cloudflare tunnel if you choose.

[SmoothBrain]

Hi Gunny,

 

Thanks for your response. It actually helped push me into doing Cloudflare tunnel and got everything working. Much appreciated

[xokia]

Be careful with cloudflare and your plex server. You can get banned if you use plex and their orange cloud under a free account.

 

I have debated using cloudflare myself since they offer some nice additional security features. I only run nextcloud, homeassistant, and vaultwarden that are externally visible from outside. I have plex too but cloudflare wouldn't help with that. I have SSL setup through IONOS and SWAG proxy. Only port 443 and port 80 open with a redirect to 443. Hoping that's enough. Also have fail2ban enabled. 3 bad access attempts and the IP gets banned.

 

 I'd also like to figure out how to ban countries but havent figured out how to do that with out a paid account to DBIP or Maxmind. Cloudflare has that going for it. *edit* got DBIP and country ban working. Works as expected.

Edited November 23, 2023 by xokia