I have an #OpenWRT router. Let’s say I install Tailscale on it and want to create an interface that specifically routes to one of my exit nodes. Can I do that?
Everything I’ve seen about Tailscale on OpenWRT just provides direct router access to the tailnet (100.x.x.x), but I specifically want to route certain traffic to an exit node.
Can I do this? Do me proud, Fediverse! Hoping I can get good answers here without resorting to Reddit.
I’ve done something similar, though not with openwrt. There may be a decent way to do this on the firewall, but I ended up using the ACLs available from the Tailscale console.
I removed the default allow all rule. I made a group called admins that can access everything and then added a set of routes that everyone on the tail net could access.
I’ve only recently set this up, but initial testing seems to have this working as hoped.
I’m not sure this hits the nail for you or not, but I recently solved a question I had regarding tailscale and routing traffic through an exitnode that was using a VPN. Could be worth a peek.
The future of selfhosted services is going to be... Android?
Wait, what?
Think about it. At some point everyone has had an old phone lying around. They are designed to be constantly connected, constantly on... and even have a battery and potentially still a SIM card to survive power outages.
We just need to make it easy to create APK packaged servers that can avoid battery-optimization kills and automatically configure an outbound tunnel like ngrok, zerotrust, etc...
The goal: hosting services like #nextcloud, #syncthing, #mastodon!? should be as easy as installing an APK and leaving an old phone connected to a spare charger / outlet.
It would be tempting to have an optimized ROM, but if self-hosting is meant to become more commonplace, installing an APK should be all that's needed. #Android can do SSH, VPN and other tunnels without the need for root, so there should be no problem in using tunnels to publicly expose a phone/server in a secure manner.
In regards to the suitability of home-grade broadband, I believe that it should not be a huge problem at least in Europe where home connections are most often unmetered: "At the end of June 2021, 70.2% of EU homes were passed by either FTTP or cable DOCSIS
3.1 networks, i.e. those technologies currently capable of supporting gigabit speeds."
PS. syncthing actually already has an APK and is easy to use. Although I had to sort out some battery optimization stuff, it's a good example of what should become much more commonplace.
That’s definitely a good call. Before I even had a NAS, I’d just throw some movies and stuff on my macbook when I had to travel. Problem is that when you’re loading it up, you think you know what you’ll want to watch and then later you just wish you had different choices.
I was going to host pihole on an old android until I noticed it getting quite warm while continuously connected to power. Realised I didn’t know the lifespan of the battery and didn’t want it tp start a fire.
Not exactly timely, but I bet I'm not the only one who easily forgets about that particular thing. Most of my stuff is set to autoupdate so I tend to forget.
The upgrade downloaded a large number of packages, I think about 160, during which network connectivity continued to function. After downloading, my router PC reset, and that first boot after the upgrade took quite a few minutes. I ended up running the 90 second timer out after which it reset to 20 seconds a number of times. I was just about to start digging for an HDMI cable to see what when I heard the router beep and my internet came back. Perfect upgrade, didn't need to fix anything afterwards.
The UI is way, way better. I also haven’t had opnsense corrupt itself, but PFsense did that to me twice in the five or so years I used it.
Other than that there aren’t a lot of functional differences. There was some drama years ago with the guy who runs PFsense and I guess he’s kind of a giant asshole, that’s what led to the fork, but I don’t remember the details.
I have a docker container running in portainer. I have added an SMB volume to the container. Does anyone know how I can update this docker container using docker-compose without undoing my changes? Thanks @selfhosted@Docker@portainerio
@Dirk thanks. That's how I did it but I am not sure if updating using docker compose would overwrite it. Portainer is running on a VM so I will make sure to snapshot it and try so I can restore it if needed.
@selfhosted I self-host a few services on my box, but I'm looking for a 'dashboard' like solution to use as a portal to click to each of those. I've seen this before, but can't for the life of me remember what it's called... suggestions? :debian: :linux:
I use Heimdall. You can set it up in no time with docker compose and manage it all through the web interface after that.
Its simple but also has some neat integrations with certain apps and will give live stats for certain things. Like pihole gives you live stats on what’s being blocked for instance.
I'm planning on setting up a #rasberrypi music streamer. I'll be throwing headless #plexamp to play my music library and I'll probably use #moodeaudio as the base image to get me bluetooth, airplay and a few other bits. Does anyone know how I can integrate podcasts into the platform? I was thinking of setting up an #audiobookshelf server and clients on my mobile devices but I'm not sure how to stream a podcast to the pi so that it keeps track of my position across all my devices.
What's a good, cheap, no external power GPU to buy for VMs? Want to chuck a few in my Dell R730 server to make my desktop VMs more usable. Right now have an old K620 for a Windows VM, seems like 1030s are a good bet since I have a bunch of low profile slots I otherwise have no use for.
@TrenchcoatFullofBats I think this is the winning answer. Looks like it's about a 1060 6GB, which should be enough horsepower for several desktop VMs, and keeps open my full profile slots should I ever want to install something even more powerful in the future. vGPU support is also nice so I don't have to juggle which VM gets which GPU.
I’m looking for a self hosted solution to this problem:
I want to create a full text search index from a collection of PDF manuals (text, not images, I don’t care about OCR here). There is a UI to search for text matches in documents, and clicking a search hit opens the PDF scrolled to where the search hit is (bonus points if the search hit is hilighted)
Hi guys, I can't get my vaultwarden instance to work with Caddy. I follow this guide, but I don't understand where I'm going wrong. Does anyone have a working config to share? Thanks in advance
I'm trying to figure out how to stop having to unblock the pihole, in order to bypass cookie consent alerts. I think this is a devious new attempt by the advertising brigade to ensure that adverts are played, but more and more cookie consent blockers are not working properly if you've got an adblocker, and as I've got one at the network level, this is a real frustration. I've tried a few browser-based bypassers, but that doesn't work for many mobile devices, and sort of defeats the purpose of havign a network-level adblocker...
Has anyone else hit this issue and how have you worked around it?
I am searching for something to sync my phone contacts between multiple phones for some time. Best case it shouldn't use DAVx^5 and should support Android and iOS. Thanks for your suggestions!
What I found so far:
Nextcloud - but needs DAVx^5
Radicale - also needs DAVx^5
SoGo - needs some CARD-DAV application
Because Davx5 only works with Android and he stated he wants something that syncs across all of his devices. I came across this posting because I am also looking for a solution to sync contacts between my Android and iPhone. I am trying to get away from Nextcloud because it’s overkill for my use case… So far I have tried Radicale and Baikal but neither works for iOS.
Started my first dive into true self-hosting (hosting on my own local machine).
I figured out VPN tunneling and have access to a static IP via VPN but I'm not sure how to port forward with a VPN. I have Spectrum Home internet and need to research how to port forward/if something else is possible.
Maybe some people at @selfhosted could help me bridge the gap. This will likely become a lemmy post. Thanks federation!
When I was new to #SysAdmin stuff, #Plesk helped me a lot with setting things up, especially email. But this is just stupid. I'm already paying for a server package that comes with Plesk, but it can't administer #PostgreSQL?
So I did figure out that yes, #Mastodon can federate #Lemmy and #Kbin content. The problem is that Mastodon doesn't know what to do with it, so it (the group) looks like a user that boosts all posts and comments.
I found myself browsing the "federated group" @selfhosted over on https://kbin.social, as I think Kbin has a nicer UX for it.
I didn't really want to create a separate account for group stuff, but that might be what we do in the short term. 🤔
I wrote this in another thread, so copy pasting it here:
I believe that the limitation is part of the Mastodon app, and not related to the Fediverse. There might be a character limit but I don’t think it’s as limited as Mastodon’s.
Btw, Mastodon isn’t really fit for this type of conversation. Mastodon aims to replace tweeter - microblogging interaction, where Lemmy aims to replace Reddit - thread interactions.
Each comment on Lemmy will be treated as microblog on mastodon which isn’t really practical.
Except that that sounds like a Mastodon lack of features. Cuz Twitter had threads. As long as you were replying to someone each conversation was a sub thread and so on.