tristan

joined 1 year ago
[–] [email protected] 3 points 3 months ago

I do vaguely remember something about it getting changed, but yeah, as you said unless you're sharing it with a bunch of people, it's probably not enough to trigger anything on their side anyway

I think theres a nice variety of methods out there now that there's no "one right way" to do it which I think is great compared to just a few years ago where your only real options were a reverse tunnel or CloudFlare tunnels

[–] [email protected] 2 points 3 months ago

Why would you need an expensive switch for CF tunnels??

It bypasses the switch and forms a tunnel directly to the machine and you don't need to change any configuration on the switch

Both options can expose any service as long as the machine has internet

[–] [email protected] 11 points 3 months ago (2 children)

first your questions

Is the tunnel solution appropriate for jellyfin?

Yes but also no. the tldr is It will work, but video streaming is against CloudFlare rules. I ran this way for about 2 years with Plex just for my own use, so for about 15 hours a week on 480p and I never got my service suspended, but I've heard stories of others getting suspended.... So just know it's a risk

I suppose it's OK for vaultwarden as there isnt much data being transfered?

That's a good use of tunnels

Would it be better to run nginx proxy manager for everything or can I run both of the solutions?

You can definitely run both solutions (tunnel points to npm, npm towards to all other services), and it saves you setting up tunnels for each service

Now for my 2 cents

As others have suggested, tailscale funnel is a valid option. A reverse proxy using a VPS is also a valid option. And as I pointed out, doing the CloudFlare tunnel is an option if you're willing to accept the risk.

My current setup is using a free Oracle VPS with a small nginx docker container forwarding all port 80 and 443 traffic through a tailscale. On the other end is a nginx proxy manager docker container that points to all my services across the network. I have my CloudFlare details configured in nginx proxy manager to generate a wildcard SSL certificate that I apply to all my local services

Inside the network, I use adguard to redirect the domain to the local LAN IP of the nginx proxy manager server to avoid traffic going through the internet.

Then all you need to do is point the domain on CloudFlare dns to the Oracle server, and you'll have several layers of separation between the internet and your local LAN , as well as SSL certs both internally and externally on any services you share

It might not be the most elegant setup, but I share my Plex server (as well as about 30 other things) with several other people and can handle multiple 1080p streams going through it without any issue and it's been nice and stable for over a year without any issues

[–] [email protected] 19 points 4 months ago

Samsung messages was using RCS since 2012... Years before Google messages adopted it.

There are others out there that use it but call it by different names like "advanced messaging", "SMS+" etc

Google was the first to add e2e encryption and push it hard though, but if you send a RCS message from Google messages to Samsungs messages app, it won't have e2e, and most likely will be the same with messaging Apple.

But given how much Apple have fought to make it hard (or at least inconvenient) to message between them, and shut down any apps that made messaging between Apple and Android better, this is a big step for Apple

[–] [email protected] 5 points 5 months ago

The article is from a month ago, about a layoff that happened half a month before that, so this all happened before the ai rollout when they were probably still optimistic it was a good idea

[–] [email protected] 11 points 5 months ago* (last edited 5 months ago)

I was recently asked to make a small Android app using flutter, which I had never touched before

I used chatgpt at first and it was so painful to get correct answers, but then made an agent or whatever it's called where I gave it instructions saying it was a flutter Dev and gave it a bunch of specifics about what I was working on

Suddenly it became really useful..I could throw it chunks of code and it would just straight away tell me where the error was and what I needed to change

I could ask it to write me an example method for something that I could then easily adapt for my use

One thing I would do would be ask it to write a method to do X, while I was writing the part that would use that method.

This wasn't a big project and the whole thing took less than 40 hours, but for me to pick up a new language, setup the development environment, and make a working app for a specific task in 40 hours was a huge deal to me... I think without chatgpt, just learning all the basics and debugging would have taken more than 40 hours alone

[–] [email protected] 39 points 6 months ago

Many years ago I had a Facebook account under my real name, and they blocked it and told me to verify ... I did everything they asked and they wouldn't accept it... I recreated it under a fake name (very obvious it's fake since it uses a celeb name) and have been using it for messaging a couple of friends for like a decade now with no issue

[–] [email protected] 6 points 6 months ago

Did they really need ai for that? Surely if they needed a script they could have just asked on stack overfl...oh

[–] [email protected] 2 points 7 months ago

The difference is that there were concerns Huawei would share the data with the Chinese government for them to spy on various groups/individuals

Most countries like America have no problem with you selling the data to other companies or governments (the US Gov themselves buy huge amounts of data) to spy on you, just not to the Chinese government.

So if the data stays with Toyota (or the people they sell it to), they aren't likely to upset the governments... But if the data is directly shared with Huawei, it's likely to run into some pretty quick walls

[–] [email protected] 3 points 7 months ago

You can do this pretty easily using asterisk and then just point your VoIP clients to it's IP address

But....

Whatever you do, unless you're an expert with network security, don't leave it on its default port if you'll expose it to the internet.

You'll have that many bots trying to get in that it'll DDoS you within a few hours of setting it up. Even if you have it on a different port, you'll have lots of bots trying to get in.

If you ever see those "unlimited international calls" cards sold in third world countries for like $5-10, those are mostly hacked VoIP systems that have accounts or access to a phone line

[–] [email protected] 3 points 7 months ago

This looks great, I don't suppose you plan on a pre-made docker container?

[–] [email protected] 8 points 7 months ago

And how many payments the politicians take from local/competing car companies haha

0
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
 

I've been running several instances nginx proxy manager for a while and using a python script I wrote to keep them synchronised but lately I've been having them crash more often than usual.

I'm tossing up between rebuilding it to aim for better stability or looking at an alternative, so figured I'd ask the community for alternatives

Ideally I would like the ability to have 2 or more instances synchronised but not really important as long as they can share the same certificates

Doesn't need any other fancy features as it's mostly for my internal services with just a few opened for outside access

*Edit

Seems swag might be worth a look, thanks all

view more: next ›