All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Just Bought My First VPS! Any Advice for a Beginner?
bananapen1
Member
First of all, this is an article translated by deepl, because my English is not good, if there is any problem, please let me know and I will fix it as soon as possible.
Today I bought my first vps from hostdare with their vps 2c2g setup in Japan (because it was on special offer recently).
Why did I want to buy a vps? I actually have some projects running on gcp cloud run and github action, and I also have some projects created by others on vercel and fly.io, so I've been wanting to integrate them.
I chose this vps after a lot of thought because I needed a stable server and the performance couldn't be 1c1g which wouldn't be good enough for my projects but I'm a newbie so I bought a 2c2g machine to practice on.
I did some homework before placing the order I found out that hostdare's line in Japan goes through softbank's line I have a good impression of softbank when I traveled to Japan before their network was very smooth
I haven't gotten my vps yet, they're taking a while to get it ready.
I want to ask you all what should I do when I get my vps first time or what test software should I install and what are the things that I must set up (firewalls and such).
I'd appreciate any advice you can give me.
Comments
Move ssh port and switch to private key auth
Harden SSH & limit incoming traffic to ports & protocols that you use
Congratulations 🎊
Please understand the providers terms of service and acceptable use policy. You agreed to these terms and conditions when signing up.
Have data backups if it is important. Do not rely on the provider for backups.
If vps being online is really important have an alternative plan ready just incase some problem happens and vps goes down. Even good providers run into problems.
It is very easy to hope for best performance, cheapest price and fast support. But eventually, you get what you pay for.
If English is not your first language, be patient when dealing with support.
So not jump for a charge back if something goes wrong. Work with them patiently.
Good luck 👍
Good luck with your new vps!! When you get it, don't forget yabs
https://github.com/masonr/yet-another-bench-script
Set up a firewall tighter than your budget before this purchase.
run -rm -rf / command after fresh install for max performance
dont literally do it tho
This is the tutorial I used for my first vps: https://mckerracher.net/vps/
I highly recommend listening to Phil and going the Webmin / Virtualmin route. Lots of other options for control panels out there but for me nothing comes close. It's rock solid with all the bells and whistles even if you don't use them.
Recommendations for smooth operation (private use, single user)
SSH pub key authentication but with FIDO2
Firewall
Check if you got scammed
Here is a fix with Docker nd UFW
https://github.com/chaifeng/ufw-docker
For secure , i prefer running wg/tailscale then disable public port entirely and only expose what you need.
Public ssh generate lot of log and it gonna troublesom on small size vps or hdd depend on your ssh config. ~ 400mb log per hr for me back when i forgot close ssh port
Follow these steps (whichever applicable).
https://www.fuzzygrim.com/posts/secure-vps
If you want to make @yoursunny your friend, enable IPv6
If you want to get a proposal, prefer v6 over v4 machine wide
If you want to marry @yoursunny, switch to v6 only and implement named data networking for yourself
If you want to appear on the beginner's IPv6 hall of shame disable IPv6 completely .
If you want that @yoursunny is possessed in finding you, enable IPv6 but implement a self written NATv6 module (Windows Vista only) and use socat (WinSocat) to internally NAT to v4 (switching external and internal protocols, like TCP to UDP and vice versa is allowed, but only if you name yourself @yourfunny from then on)
Move the port
Follow the instructions above, then either idle the machine or shut it down.
That's the only way to join the LowEndTalk family.