Comment

Comment on Deploying Nextcloud on AWS ECS with Pulumi

Everyone is free to pick their poison, but I have to ask…why? What is the target audience here? This is a massively overkill architecture IMHO. Not to talk about the fact you now need 3 managed services (fargate, s3 and aurora at least) for a single self hosted tool, and that is being generous (not counting cloudwatch, ALBs, etc.).

Why do you need security groups to allow egress anywhere (or, at all)?
I would pin the image to a digest, rather than using latest.
what is the average monthly cost for this infra for you?

source

Sort:hotnew top

cichy1173@szmer.info ⁨1⁩ ⁨week⁩ ago
Not that cheap. Both Aurora and Fargate can be pricy, so using this for personal cloud, not as business solution, is not only a overkill, but also expensive tool, that you will not fully reuse for other services. I think, in personal selfhosted area, we agree to not use that oeverkilled architecture to cut costs massively.

source
- loudwhisper@infosec.pub ⁨1⁩ ⁨week⁩ ago
  Oh yeah, I am aware. Mostly here I would question the idea to have multi-AZ redundancy and using a manage service for DB (which indeed is expensive). All of this when a 5$ VPS could host the same (maybe still using s3 for storage) and accept the few hours downtime in the rare event your VPS explodes and you need to restore it from a backup.
  
  So from my PoV this is absolutely overkill but I concede that it depends a lot on the requirements. I can’t ever imagine having requirements so tight that need such infra to run (in fact, I think not even most businesses have these requirements, I have written on the topic at loudwhisper.me/blog/hating-clouds/) for my personal stuff…
  
  source
  - cichy1173@szmer.info ⁨1⁩ ⁨week⁩ ago
    Yes, just like I said, when running it for personal use, going with SLA 99,(9) is too expensive. As far as long we say about serverless solutions, they can be great and helpful (I can say that from both SysOps and DevOps perspective that work on many projects), but I don’t think they should be used in homelab form, as they do not provide that much customisations, and homelabs are the place where we want to experiment and have some fun, not just deploy something in a way that will “just work”.
    
    source
    loudwhisper@infosec.pub ⁨1⁩ ⁨week⁩ ago
    Plus, at this point why not using directly managed Nextcloud (or alternatives)… If anyway you use a managed storage, runtime and database, in a vendor lock…
    
    source
    -> View More Comments
EncryptKeeper@lemmy.world ⁨1⁩ ⁨week⁩ ago
Folks in IT. This is one of those “deploy something enterprise grade because you can” type of scenarios. It’s like asking why somebody would play a dry milsim game like Arma when Call of Duty exists. This will cost you more than a simple VPS on a platform but it wouldn’t exactly break the bank either.

source
- loudwhisper@infosec.pub ⁨1⁩ ⁨week⁩ ago
  Well yeah, wouldn’t break the bank, but a conservative cost estimate (without considering network costs, for example, quite relevant for a data intensive app) would bring this setup to about $40/month. That is about 5 times more expensive than a VPC with 4x the resources.
  
  OP said this is some sort of “enterprise self-hosting” solution, which I guess then kind of makes sense. For a company providing nextcloud as a service I would never vendor lock myself and let AWS take a huge chunk of my revenue forever, but I can imagine folks have different opinions.
  
  source
  - EncryptKeeper@lemmy.world ⁨1⁩ ⁨week⁩ ago
    An $8 VPS would not be sufficient for a heavily used multi-user Nextcloud instance, and it wouldn’t come with enough storage either.
    
    You could cloud host this thing for less absolutely, but not a whole lot less. I have a Vultr VPS (cheaper than Digital Ocean, Linode, and other cheapo VPS providers) and all it does is reverse proxy and do some caching and it’s scraping by at a total of $24 a month. A $40 solution that’s more functional if not over-engineered for the difference in price equivalence to a Netflix subscription is not that huge a deal.
    
    source
    loudwhisper@infosec.pub ⁨1⁩ ⁨week⁩ ago
    But the estimation is with each NC instance with half a CPU and 1GB of memory. This is a super conservative estimation, that doesn’t include anything besides a tiny Fargate deployment and Aurora instances.
    
    For a heavily used NC instance (assuming a company offering it as a service), the cost is going to become massive pretty fast.
    
    Also, as I side note, if a company is offering NC as a service, but doesn’t manage a single piece of NC deployment… What is the company product? And most importantly, how are they going to make money when AWS is going to eat a linearly scalable chunk of their revenue forever?
    
    source