@sheogorath Hmmm last time I used PROXY protocol for this kind of thing, it seemed that most non-http applications didn't support it.

@schrofi Well with my current solution, I can only really host HTTP/S applications.
I know nginx can also proxy TCP, but doing that, you lose the original IP of the connection, so it's extremely ugly imo.

Are there any VPN providers that provide a public IP for your tunnel interface? Ie so you can host things over the tunnel?

My internet connection is CGNAT'ed, so at the moment, I have a GRE/IPSec tunnel to a VPS, then have nginx proxying HTTP/S traffic to my home cluster.

I'd much rather just have a public IP at home and bypass the reverse proxy all together tbh.

Wife isn't feeling very well today, so I'm trying my best to keep kids away from her so she can rest. Thankfully, my little one is being very easy today. Normally it would be a mission to brush his teeth, wash his face and feed him breakfast, but today he has been very easy about it all!

Just watched the last episode of . I'm gonna miss this TV show!

@hyde I haven't seen all of the episodes, but the ones I have seen, some were quite good imo

Currently running hashcat in order to figure the IPMI password for a machine I got given years ago.
Annoyingly, I can't figure out how to factory reset the BMC, and the manufacturer isn't being helpful either as its an old machine.

Does anyone know any cheap inbound mail relay providers? Ie somewhere that I can set my MX records to them, and pass it on to my mail server. Preferably with some spam filtering too.

@unicornfarts I looked into this years ago, it would be so cool to be your own registrar, but alas it's not possible unless you are ultra wealthy πŸ˜‚

Recently found out that lemons are a hybrid between citron and sour orange, and aren't found in the wild. Turns out that life never gave us lemons, we invented them.

@fikran I haven't met any of my neighbours! We are in kind of a lock down, so i think people are avoiding going out

We moved to a new flat last week. We have no furniture other than a bed as Ikea, and afaik all other new/second hand furniture shops are closed due to being in tier 4. It's such a pain.

I also need to replace the 4G modem/router thing that my provider gave me. It doesn't support bridge mode, meaning there is an extra layer of NAT. Who knows how many layers of NAT I'm going through at the moment πŸ˜‚

My ERLite NAT's all connections out to the internet, then the ISP provided router does it again, then provider CGNATs everything. So icky.

Show thread

Ideally, I'd like to set the default route to route everything over the GRE/IPsec tunnel, but both routers involved aren't great and it would limit my throughput quite significantly.
I also looked at one of the VPN providers that assign a public IP address, but again, OpenVPN on my tiny little ERLite would be severely limited on throughput.

Show thread

I'm using 4G for my home internet connection now. I'm behind CGNAT, so I can't really easily host things at home anymore. :(

At the moment, I have a GRE/IPSec tunnel going to the router at my colo, and then reverse proxying traffic to my home K8S cluster. I don't really like that method so much, but it works for now.

FInally got my instance back up after moving flats.
Not sure if this is working or not. The logs are showing a lot of 401's, but at the same time I'm seeing some toots coming in on my federated timeline. Hmmmm

Tomorrow we are moving home, so my instance will be down as I'll be moving my home servers. Byebye for a few days! Hopefully everything goes OK!

Show older

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!