@sheogorath Hmmm last time I used PROXY protocol for this kind of thing, it seemed that most non-http applications didn't support it.
@schrofi Well with my current solution, I can only really host HTTP/S applications.
I know nginx can also proxy TCP, but doing that, you lose the original IP of the connection, so it's extremely ugly imo.
Are there any VPN providers that provide a public IP for your tunnel interface? Ie so you can host things over the tunnel?
My internet connection is CGNAT'ed, so at the moment, I have a GRE/IPSec tunnel to a VPS, then have nginx proxying HTTP/S traffic to my home #K8S cluster.
I'd much rather just have a public IP at home and bypass the reverse proxy all together tbh.
Wife isn't feeling very well today, so I'm trying my best to keep kids away from her so she can rest. Thankfully, my little one is being very easy today. Normally it would be a mission to brush his teeth, wash his face and feed him breakfast, but today he has been very easy about it all! #parenting #parentingwin
@unicornfarts I looked into this years ago, it would be so cool to be your own registrar, but alas it's not possible unless you are ultra wealthy 😂
@fikran I haven't met any of my neighbours! We are in kind of a lock down, so i think people are avoiding going out
I also need to replace the 4G modem/router thing that my provider gave me. It doesn't support bridge mode, meaning there is an extra layer of NAT. Who knows how many layers of NAT I'm going through at the moment 😂
My ERLite NAT's all connections out to the internet, then the ISP provided router does it again, then provider CGNATs everything. So icky.
Ideally, I'd like to set the default route to route everything over the GRE/IPsec tunnel, but both routers involved aren't great and it would limit my throughput quite significantly.
I also looked at one of the VPN providers that assign a public IP address, but again, OpenVPN on my tiny little ERLite would be severely limited on throughput.
I'm using 4G for my home internet connection now. I'm behind CGNAT, so I can't really easily host things at home anymore. :(
At the moment, I have a GRE/IPSec tunnel going to the router at my colo, and then reverse proxying traffic to my home K8S cluster. I don't really like that method so much, but it works for now.
FInally got my #mastodon instance back up after moving flats.
Not sure if this is working or not. The logs are showing a lot of 401's, but at the same time I'm seeing some toots coming in on my federated timeline. Hmmmm
Tomorrow we are moving home, so my #mastodon instance will be down as I'll be moving my home servers. Byebye for a few days! Hopefully everything goes OK!
Self-proclaimed genius, and ruler of the Internet. System admin the rest of the time.
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!