That uses proof of work rather than just detecting and blocking the bots.

The Pi Zero 2w will provide more than enough performance to stream a movie over Wireguard.

How much throughput do you need? The Pi Zero 2w will be fine on a DSL or cable connection, but it will limit your bandwidth on fiber.

The GPU won’t have any issues encoding several video streams at the same time. That’s not really necessary though. The cameras will do the encoding for you. Just set the bitrate and framerate that you want on the camera and pass that through. Most cameras support two streams, the secondary stream is usually limited to SD though. All of my Hikvision cameras support RTSP. It’s mostly just the consumer grade crap that only works with the manufacturers cloud service so they can spy on you or restrict features whenever they want.

Don’t make the mistake I did and buy any Hikivision stuff from Amazon. They are all grey market and the firmware can’t be updated. I tried to update one of mine and now the user interface is stuck in Chinese. You have to get them from an authorized distributor.

It doesn’t, but running everything through a tunnel to get IPv4 access would. OP wants only the IPv4 traffic to go over a tunnel.

My NAS uses a similar amount of power. The drives use most of the power. The PC uses less than 20W on its own. Upgrading to a couple of large helium filled drives will save a good bit of power. SATA drives tend to use a little less power than SAS drives too.

My dynamic IPv6 prefix hasn’t changed in a couple of years. It only changed because I reset the router config and that changed my DUID. That’s good enough for everything I host. I don’t even bother with dynamic DNS anymore.

I wouldn’t bother with trying to host an email server from a residential connection though. Even if you can get your ISP to open port 25 for you, many email servers won’t accept mail from residential IP addresses.

If you need IPv6, you can get a free tunnel from Hurricane Electric. They will give you a /48 if you request it. I used it for years since my old ISP didn’t have IPv6. I am close to one of their servers, so the latency was very low.

Almost every scam email I get comes from a gmail address. If a business is not sending emails from their own domain, I automatically assume it’s a scam.

It’s got enough power for a retro game emulator.

Just remember that you will be required to remove any illegal content that people post. I certainly wouldn’t want to be responsible for that.

That’s what DNS is for.

You would have to specifically open a port in your firewall before anyone could access a device over IPv6 on your network from the internet. Just like you would have to forward a port on IPv4.

Enable file versioning in Syncthing. Then you will have a backup copy of every change for however long you set it to keep them.

HTTP works fine in Firefox unless you set it to HTTPS only. Even then, you only have to click off a warning to open an HTTP site.

Put a multi port NIC in your router PC and use a separate unmanaged switch for each network then.

I would just get a basic layer 2 managed switch and use VLANs. The 5 port and 8 port switches are super cheap these days.

It gets rid of most of the login attempts for me. I don’t use a popular port though. Pick a 5 digit port so they have to put in some effort to find it.

The SSH and VPN traffic is encrypted. Unless your private keys have been compromised, nobody can see what is going over the tunnel. They can log things like the IP addresses that are connecting to it and how much data is being transferred though.

Yeah, I definitely wouldn’t recommend putting something power hungry like a GPU in one of these. A NIC will be fine though.